zift 0.2.2

Scan codebases for embedded authorization logic and generate Policy as Code (Rego/OPA today)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23

[rule]
id = "ts-session-auth-check"
languages = ["typescript", "javascript"]
category = "middleware"
confidence = "medium"
description = "Session/request authentication status check"
query = """
(call_expression
  function: (member_expression
    property: (property_identifier) @method)
) @match
"""

[rule.predicates.method]
match = "^(isAuthenticated|isLoggedIn|isAuthorized)$"

[[rule.tests]]
input = """
if (req.isAuthenticated()) {
  next();
}
"""
expect_match = true