Integrating Runtime Application Self-Protection (RASP) in Modern Applications

# Title: Integrating Runtime Application Self-Protection (RASP) in Modern Applications
# Description: Deploying RASP solutions to detect and prevent real-time attacks within running applications.
# Category: Security
# Category Context: Flags unsafe code, secrets, and insecure configurations.

rules:
  - name: "Implement RASP Solutions"
    description: "Ensure that Runtime Application Self-Protection (RASP) mechanisms are integrated into the application to detect and prevent real-time attacks."
    applyTo: "src/**/*.js"
    severity: high
    checks:
      - type: "dependency"
        pattern: "rasp-library"
        message: "RASP library is missing. Integrate a RASP solution to enhance application security."
      - type: "code"
        pattern: "rasp.initialize()"
        message: "RASP initialization code is missing. Ensure RASP is properly initialized in your application."

  - name: "Configure RASP Agents"
    description: "Verify that RASP agents are correctly configured to monitor and protect the application during runtime."
    applyTo: "config/**/*.json"
    severity: medium
    checks:
      - type: "config"
        key: "rasp.enabled"
        expectedValue: true
        message: "RASP is not enabled in the configuration. Set 'rasp.enabled' to true to activate RASP protection."

  - name: "Monitor RASP Alerts"
    description: "Ensure that RASP alerts are monitored and acted upon to maintain application security."
    applyTo: "logs/**/*.log"
    severity: low
    checks:
      - type: "log"
        pattern: "RASP Alert"
        message: "Unaddressed RASP alerts detected. Review and respond to RASP alerts promptly to mitigate potential threats."