nyx-scanner 0.2.0-alpha

A CLI security scanner for automating vulnerability checks
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

use crate::labels::{Cap, DataLabel, LabelRule};

// TODO: refactor this
pub static RULES: &[LabelRule] = &[
    LabelRule {
        matchers: &["document.location", "window.location"],
        label: DataLabel::Source(Cap::all()),
    },
    LabelRule {
        matchers: &["JSON.parse"],
        label: DataLabel::Sanitizer(Cap::JSON_PARSE),
    },
    LabelRule {
        matchers: &["eval"],
        label: DataLabel::Sink(Cap::SHELL_ESCAPE),
    },
];