minimal change for EXUI-2271 (#4105)

* minimal change for EXUI-2271

* Enable all xuiNode logging

* node-lib update

* vuln

* node-lib version updated

* cve

---------

Co-authored-by: RiteshHMCTS <[email protected]>
Co-authored-by: Ritesh Dsouza <[email protected]>

api/.env.defaults

@@ -16,5 +16,5 @@ LAUNCH_DARKLY_CLIENT_ID=5de6610b23ce5408280f2268
 ROARR_LOG=false # enable this for more verbose logging when going through proxy
 MC_HTTP_PROXY=http://172.16.0.7:8080
 MC_NO_PROXY=localhost
-DEBUG=xuiNode:*,-xuiNode:auth:s2s
+DEBUG=xuiNode:*
 PACT_BROKER_URL=http://localhost:80

api/lib/appInsights.ts

@@ -16,7 +16,7 @@ if (showFeature(FEATURE_APP_INSIGHTS_ENABLED)) {
     .setAutoCollectPerformance(true)
     .setAutoCollectExceptions(true)
     .setAutoCollectDependencies(true)
-    .setAutoCollectConsole(true)
+    .setAutoCollectConsole(true, true)
     .setUseDiskRetryCaching(true)
     .setSendLiveMetrics(true)
     .start();

package.json

@@ -93,7 +93,7 @@
     "@hmcts/nodejs-healthcheck": "1.7.0",
     "@hmcts/properties-volume": "^0.0.13",
     "@hmcts/rpx-xui-common-lib": "2.0.30",
-    "@hmcts/rpx-xui-node-lib": "2.29.5",
+    "@hmcts/rpx-xui-node-lib": "2.29.6",
     "@microsoft/applicationinsights-web": "^3.1.0",
     "@ng-idle/core": "^14.0.0",
     "@ng-idle/keepalive": "^14.0.0",

yarn-audit-known-issues

@@ -1,12 +1,11 @@
 {"value":"@babel/traverse","children":{"ID":1096886,"Issue":"Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code","URL":"https://github.com/advisories/GHSA-67hx-6x53-jw92","Severity":"critical","Vulnerable Versions":"<7.23.2","Tree Versions":["7.22.15"],"Dependents":["@babel/core@npm:7.22.15"]}}
 {"value":"@hapi/address","children":{"ID":"@hapi/address (deprecation)","Issue":"Moved to 'npm install @sideway/address'","Severity":"moderate","Vulnerable Versions":"4.1.0","Tree Versions":["4.1.0"],"Dependents":["@hapi/joi@npm:17.1.1"]}}
 {"value":"@hapi/formula","children":{"ID":"@hapi/formula (deprecation)","Issue":"Moved to 'npm install @sideway/formula'","Severity":"moderate","Vulnerable Versions":"2.0.0","Tree Versions":["2.0.0"],"Dependents":["@hapi/joi@npm:17.1.1"]}}
-{"value":"@hapi/joi","children":{"ID":"@hapi/joi (deprecation)","Issue":"Switch to 'npm install joi'","Severity":"moderate","Vulnerable Versions":"17.1.1","Tree Versions":["17.1.1"],"Dependents":["@hmcts/rpx-xui-node-lib@npm:2.29.5"]}}
+{"value":"@hapi/joi","children":{"ID":"@hapi/joi (deprecation)","Issue":"Switch to 'npm install joi'","Severity":"moderate","Vulnerable Versions":"17.1.1","Tree Versions":["17.1.1"],"Dependents":["@hmcts/rpx-xui-node-lib@npm:2.29.6"]}}
 {"value":"abab","children":{"ID":"abab (deprecation)","Issue":"Use your platform's native atob() and btoa() methods instead","Severity":"moderate","Vulnerable Versions":"2.0.6","Tree Versions":["2.0.6"],"Dependents":["jsdom@virtual:145e7af5a4eef7edc3b5342155c9759e46fd272a65da8c54e71e3a726711ad979907e1887a3fdcf00ecab676547214a60ab3eeb7f8437d187eab031c26d7a1bb#npm:20.0.3"]}}
 {"value":"are-we-there-yet","children":{"ID":"are-we-there-yet (deprecation)","Issue":"This package is no longer supported.","Severity":"moderate","Vulnerable Versions":"3.0.1","Tree Versions":["3.0.1"],"Dependents":["npmlog@npm:6.0.2"]}}
 {"value":"boolean","children":{"ID":"boolean (deprecation)","Issue":"Package no longer supported. Contact Support at https://www.npmjs.com/support for more info.","Severity":"moderate","Vulnerable Versions":"3.2.0","Tree Versions":["3.2.0"],"Dependents":["global-agent@npm:2.2.0"]}}
 {"value":"chromedriver","children":{"ID":1094902,"Issue":"chromedriver Command Injection vulnerability","URL":"https://github.com/advisories/GHSA-hm92-vgmw-qfmx","Severity":"moderate","Vulnerable Versions":"<119.0.1","Tree Versions":["116.0.0"],"Dependents":["accessibility-checker@npm:3.1.73"]}}
-{"value":"class-transformer","children":{"ID":"class-transformer (deprecation)","Issue":"This release contains a breaking change from 0.3.1 but otherwise functions properly. Please read the changelog on Github to learn more.","Severity":"moderate","Vulnerable Versions":"0.3.2","Tree Versions":["0.3.2"],"Dependents":["rpx-exui@workspace:."]}}
 {"value":"cookie","children":{"ID":1099846,"Issue":"cookie accepts cookie name, path, and domain with out of bounds characters","URL":"https://github.com/advisories/GHSA-pxg6-pf52-xh8x","Severity":"low","Vulnerable Versions":"<0.7.0","Tree Versions":["0.4.0","0.4.1","0.4.2"],"Dependents":["cookie-parser@npm:1.4.6","csurf@npm:1.11.0","express-session@npm:1.17.3"]}}
 {"value":"cross-spawn","children":{"ID":1100563,"Issue":"Regular Expression Denial of Service (ReDoS) in cross-spawn","URL":"https://github.com/advisories/GHSA-3xgq-45jj-v275","Severity":"high","Vulnerable Versions":">=7.0.0 <7.0.5","Tree Versions":["7.0.3"],"Dependents":["dotenv-extended@npm:2.9.0"]}}
 {"value":"csurf","children":{"ID":"csurf (deprecation)","Issue":"Please use another csrf package","Severity":"moderate","Vulnerable Versions":"1.11.0","Tree Versions":["1.11.0"],"Dependents":["rpx-exui@workspace:."]}}
@@ -26,7 +25,7 @@
 {"value":"mermaid","children":{"ID":1100231,"Issue":"Prototype pollution vulnerability found in Mermaid's bundled version of DOMPurify","URL":"https://github.com/advisories/GHSA-m4gq-x24j-jpmf","Severity":"high","Vulnerable Versions":"<=10.9.2","Tree Versions":["10.9.1"],"Dependents":["ngx-markdown@virtual:478250b179e2f7a41962cb81e8de022adafb1a3a18c5c9a01a14fbfc1b28d5290463c48c9e2b547a1f1c34dc9b7b468a7fcd7685a99bff9367385d59331a4cd4#npm:17.2.1"]}}
 {"value":"micromatch","children":{"ID":1098681,"Issue":"Regular Expression Denial of Service (ReDoS) in micromatch","URL":"https://github.com/advisories/GHSA-952p-6rrq-rcjv","Severity":"moderate","Vulnerable Versions":"<4.0.8","Tree Versions":["4.0.5"],"Dependents":["http-proxy-middleware@npm:1.1.2"]}}
 {"value":"npmlog","children":{"ID":"npmlog (deprecation)","Issue":"This package is no longer supported.","Severity":"moderate","Vulnerable Versions":"6.0.2","Tree Versions":["6.0.2"],"Dependents":["node-gyp@npm:9.4.0"]}}
-{"value":"passport","children":{"ID":1093639,"Issue":"Passport vulnerable to session regeneration when a users logs in or out","URL":"https://github.com/advisories/GHSA-v923-w3x8-wh69","Severity":"moderate","Vulnerable Versions":"<0.6.0","Tree Versions":["0.5.3"],"Dependents":["@hmcts/rpx-xui-node-lib@npm:2.29.5"]}}
+{"value":"passport","children":{"ID":1093639,"Issue":"Passport vulnerable to session regeneration when a users logs in or out","URL":"https://github.com/advisories/GHSA-v923-w3x8-wh69","Severity":"moderate","Vulnerable Versions":"<0.6.0","Tree Versions":["0.5.3"],"Dependents":["@hmcts/rpx-xui-node-lib@npm:2.29.6"]}}
 {"value":"protractor","children":{"ID":"protractor (deprecation)","Issue":"We have news to share - Protractor is deprecated and will reach end-of-life by Summer 2023. To learn more and find out about other options please refer to this post on the Angular blog. Thank you for using and contributing to Protractor. https://goo.gle/state-of-e2e-in-angular","Severity":"moderate","Vulnerable Versions":"7.0.0","Tree Versions":["7.0.0"],"Dependents":["protractor-screenshot-utils@virtual:478250b179e2f7a41962cb81e8de022adafb1a3a18c5c9a01a14fbfc1b28d5290463c48c9e2b547a1f1c34dc9b7b468a7fcd7685a99bff9367385d59331a4cd4#npm:1.0.6"]}}
 {"value":"puppeteer","children":{"ID":"puppeteer (deprecation)","Issue":"< 22.8.2 is no longer supported","Severity":"moderate","Vulnerable Versions":"13.7.0","Tree Versions":["13.7.0"],"Dependents":["accessibility-checker@npm:3.1.73"]}}
 {"value":"q","children":{"ID":"q (deprecation)","Issue":"You or someone you depend on is using Q, the JavaScript Promise library that gave JavaScript developers strong feelings about promises. They can almost certainly migrate to the native JavaScript promise now. Thank you literally everyone for joining me in this bet against the odds. Be excellent to each other.\n\n(For a CapTP with native promises, see @endo/eventual-send and @endo/captp)","Severity":"moderate","Vulnerable Versions":"1.5.1","Tree Versions":["1.5.1"],"Dependents":["webdriver-manager@npm:12.1.9"]}}

yarn.lock

@@ -3528,9 +3528,9 @@ __metadata:
   languageName: node
   linkType: hard
 
-"@hmcts/rpx-xui-node-lib@npm:2.29.5":
-  version: 2.29.5
-  resolution: "@hmcts/rpx-xui-node-lib@npm:2.29.5"
+"@hmcts/rpx-xui-node-lib@npm:2.29.6":
+  version: 2.29.6
+  resolution: "@hmcts/rpx-xui-node-lib@npm:2.29.6"
   dependencies:
     "@hapi/joi": "npm:^17.1.1"
     axios: "npm:^1.7.7"
@@ -3552,7 +3552,7 @@ __metadata:
     session-file-store: "npm:^1.5.0"
     ts-auto-mock: "npm:^3.5.0"
     ttypescript: "npm:^1.5.13"
-  checksum: 10/420ffeab7890eba6bae0afa904c047b3d17c8c5128d972c71130d3018641f7935041e9349559601978fbd923f81a5091f7f631c091a1a7e7f2ff69ebf3a6d8c5
+  checksum: 10/52c5f57beaedc6ef130092abff7462107f5d4f87761d8b164d1c7d7019028bf23cba34d05819bb5c7243a72a8f00e5534d919ee56000c25b548bca5f7730d679
   languageName: node
   linkType: hard
 
@@ -21954,7 +21954,7 @@ __metadata:
     "@hmcts/nodejs-healthcheck": "npm:1.7.0"
     "@hmcts/properties-volume": "npm:^0.0.13"
     "@hmcts/rpx-xui-common-lib": "npm:2.0.30"
-    "@hmcts/rpx-xui-node-lib": "npm:2.29.5"
+    "@hmcts/rpx-xui-node-lib": "npm:2.29.6"
     "@microsoft/applicationinsights-web": "npm:^3.1.0"
     "@ng-idle/core": "npm:^14.0.0"
     "@ng-idle/keepalive": "npm:^14.0.0"