npm - 0xray - Versions diffs - 2.0.0 → 2.1.0 - Mend

0xray 2.0.0 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (590) hide show

package/.opencode/codex.codex +2 -2
package/.opencode/commands/dependency-audit.md +3 -3
package/.opencode/enforcer-config.json +2 -2
package/.opencode/init.sh +22 -19
package/AGENTS.md +6 -6
package/README.md +276 -76
package/dist/AGENTS.md +6 -6
package/dist/CHANGELOG.md +91 -10
package/dist/README.md +276 -76
package/dist/agents/architect.d.ts +2 -0
package/dist/agents/backend-engineer.d.ts +8 -0
package/dist/agents/bug-triage-specialist.d.ts +2 -0
package/dist/agents/code-analyzer.d.ts +7 -0
package/dist/agents/code-reviewer.d.ts +2 -0
package/dist/agents/code-reviewer.js +1 -1
package/dist/agents/content-creator.d.ts +9 -0
package/dist/agents/database-engineer.d.ts +8 -0
package/dist/agents/devops-engineer.d.ts +8 -0
package/dist/agents/frontend-engineer.d.ts +8 -0
package/dist/agents/frontend-ui-ux-engineer.d.ts +8 -0
package/dist/agents/growth-strategist.d.ts +8 -0
package/dist/agents/index.d.ts +24 -0
package/dist/agents/librarian-agents-updater.d.ts +30 -0
package/dist/agents/log-monitor.d.ts +2 -0
package/dist/agents/mobile-developer.d.ts +9 -0
package/dist/agents/multimodal-looker.d.ts +9 -0
package/dist/agents/performance-engineer.d.ts +8 -0
package/dist/agents/refactorer.d.ts +2 -0
package/dist/agents/registry.d.ts +35 -0
package/dist/agents/researcher.d.ts +2 -0
package/dist/agents/security-auditor.d.ts +2 -0
package/dist/agents/seo-consultant.d.ts +8 -0
package/dist/agents/strategist.d.ts +7 -0
package/dist/agents/tech-writer.d.ts +8 -0
package/dist/agents/testing-lead.d.ts +2 -0
package/dist/agents/types.d.ts +45 -0
package/dist/analytics/consent-manager.d.ts +93 -0
package/dist/analytics/emerging-pattern-detector.d.ts +67 -0
package/dist/analytics/pattern-learning-engine.d.ts +80 -0
package/dist/analytics/pattern-performance-tracker.d.ts +97 -0
package/dist/analytics/predictive-analytics.d.ts +41 -0
package/dist/analytics/prompt-pattern-analyzer.d.ts +99 -0
package/dist/analytics/routing-performance-analyzer.d.ts +101 -0
package/dist/analytics/routing-refiner.d.ts +104 -0
package/dist/analytics/routing-refiner.js +1 -1
package/dist/analytics/simple-pattern-analyzer.d.ts +80 -0
package/dist/architect/architect-tools.d.ts +70 -0
package/dist/architect/architectural-integrity.d.ts +20 -0
package/dist/benchmark/performance-benchmark.d.ts +103 -0
package/dist/benchmark/performance-benchmark.js +3 -3
package/dist/cli/commands/analytics-disable.d.ts +9 -0
package/dist/cli/commands/analytics-enable-action.d.ts +8 -0
package/dist/cli/commands/analytics-preview.d.ts +9 -0
package/dist/cli/commands/analytics-status.d.ts +9 -0
package/dist/cli/commands/antigravity-status.d.ts +9 -0
package/dist/cli/commands/archive-logs.d.ts +24 -0
package/dist/cli/commands/credible-init.d.ts +11 -0
package/dist/cli/commands/grok-install.d.ts +7 -0
package/dist/cli/commands/hermes-install.d.ts +2 -0
package/dist/cli/commands/hermes-install.js +4 -4
package/dist/cli/commands/mcp-install.d.ts +4 -0
package/dist/cli/commands/mcp-install.js +1 -1
package/dist/cli/commands/openclaw-install.d.ts +2 -0
package/dist/cli/commands/openclaw-install.js +1 -1
package/dist/cli/commands/opencode-install.d.ts +2 -0
package/dist/cli/commands/plugin-commands.d.ts +19 -0
package/dist/cli/commands/plugin-commands.js +2 -2
package/dist/cli/commands/publish-agent.d.ts +15 -0
package/dist/cli/commands/publish-agent.js +5 -5
package/dist/cli/commands/security-audit.d.ts +23 -0
package/dist/cli/commands/skill-install.d.ts +5 -0
package/dist/cli/commands/skill-install.js +1 -1
package/dist/cli/commands/status.d.ts +41 -0
package/dist/cli/commands/status.js +3 -3
package/dist/cli/commands/storyteller.d.ts +19 -0
package/dist/cli/commands/storyteller.js +2 -2
package/dist/cli/index.d.ts +7 -0
package/dist/cli/index.js +8 -8
package/dist/cli/server.d.ts +1 -0
package/dist/cli/server.js +1 -1
package/dist/config/default-agents.d.ts +12 -0
package/dist/core/activity-logger.d.ts +72 -0
package/dist/core/adaptive-kernel.d.ts +109 -0
package/dist/core/agent-spawn-gate.d.ts +56 -0
package/dist/core/agent-spawn-gate.js +1 -1
package/dist/core/boot-orchestrator.d.ts +99 -0
package/dist/core/boot-orchestrator.js +28 -28
package/dist/core/bridge.mjs +22 -22
package/dist/core/codex-formatter.d.ts +96 -0
package/dist/core/codex-formatter.js +2 -2
package/dist/core/codex-injector.d.ts +75 -0
package/dist/core/codex-injector.js +11 -10
package/dist/core/config-loader.d.ts +71 -0
package/dist/core/config-loader.js +4 -2
package/dist/core/config-paths.d.ts +62 -0
package/dist/core/config-paths.js +24 -23
package/dist/core/context-loader.d.ts +122 -0
package/dist/core/context-loader.js +7 -5
package/dist/core/context-validator.d.ts +53 -0
package/dist/core/features-config.d.ts +462 -0
package/dist/core/features-config.js +1 -1
package/dist/core/framework-logger.d.ts +76 -0
package/dist/core/index.d.ts +5 -0
package/dist/core/index.js +1 -1
package/dist/core/kernel-patterns.d.ts +130 -0
package/dist/core/logging-config.d.ts +10 -0
package/dist/core/model-router.d.ts +61 -0
package/dist/core/orchestrator.d.ts +72 -0
package/dist/core/orchestrator.js +3 -2
package/dist/core/system-prompt-generator.d.ts +35 -0
package/dist/core/system-prompt-generator.js +2 -2
package/dist/core/trace-context.d.ts +12 -0
package/dist/core/xray-activation.d.ts +14 -0
package/dist/core/xray-activation.js +29 -24
package/dist/delegation/agent-delegator.d.ts +186 -0
package/dist/delegation/agent-delegator.js +3 -3
package/dist/delegation/agent-expertise.d.ts +16 -0
package/dist/delegation/analytics/index.d.ts +12 -0
package/dist/delegation/analytics/learning-engine.d.ts +85 -0
package/dist/delegation/analytics/outcome-tracker.d.ts +118 -0
package/dist/delegation/analytics/routing-analytics.d.ts +61 -0
package/dist/delegation/ast-code-parser.d.ts +174 -0
package/dist/delegation/codebase-context-analyzer.d.ts +164 -0
package/dist/delegation/complexity-analyzer.d.ts +111 -0
package/dist/delegation/complexity-core.d.ts +119 -0
package/dist/delegation/config/types.d.ts +247 -0
package/dist/delegation/dependency-graph-builder.d.ts +95 -0
package/dist/delegation/index.d.ts +25 -0
package/dist/delegation/metrics-aggregator.d.ts +92 -0
package/dist/delegation/session-coordinator.d.ts +133 -0
package/dist/delegation/strategy-selector.d.ts +28 -0
package/dist/delegation/voting-coordinator.d.ts +49 -0
package/dist/delegation/voting-types.d.ts +155 -0
package/dist/delegation/weighted-voting-aggregator.d.ts +37 -0
package/dist/enforcement/core/index.d.ts +15 -0
package/dist/enforcement/core/rule-executor.d.ts +158 -0
package/dist/enforcement/core/rule-hierarchy.d.ts +146 -0
package/dist/enforcement/core/rule-registry.d.ts +197 -0
package/dist/enforcement/core/violation-fixer.d.ts +106 -0
package/dist/enforcement/enforcer-tools.d.ts +78 -0
package/dist/enforcement/enforcer-tools.js +2 -2
package/dist/enforcement/index.d.ts +23 -0
package/dist/enforcement/loaders/agent-triage-loader.d.ts +99 -0
package/dist/enforcement/loaders/agents-md-validation-loader.d.ts +76 -0
package/dist/enforcement/loaders/base-loader.d.ts +83 -0
package/dist/enforcement/loaders/codex-loader.d.ts +77 -0
package/dist/enforcement/loaders/codex-loader.js +2 -2
package/dist/enforcement/loaders/index.d.ts +37 -0
package/dist/enforcement/loaders/loader-orchestrator.d.ts +97 -0
package/dist/enforcement/loaders/processor-loader.d.ts +60 -0
package/dist/enforcement/rule-enforcer.d.ts +142 -0
package/dist/enforcement/test-auto-healing.d.ts +83 -0
package/dist/enforcement/types.d.ts +501 -0
package/dist/enforcement/validators/architecture-validators.d.ts +155 -0
package/dist/enforcement/validators/base-validator.d.ts +88 -0
package/dist/enforcement/validators/code-quality-validators.d.ts +89 -0
package/dist/enforcement/validators/index.d.ts +15 -0
package/dist/enforcement/validators/security-validators.d.ts +53 -0
package/dist/enforcement/validators/testing-validators.d.ts +81 -0
package/dist/enforcement/validators/validator-registry.d.ts +92 -0
package/dist/execution/opencode-cli-invoker.d.ts +8 -0
package/dist/execution/proposal-applier.d.ts +24 -0
package/dist/governance/codex-policy.service.d.ts +57 -0
package/dist/governance/governance-core.d.ts +46 -0
package/dist/governance/governance-service.d.ts +38 -0
package/dist/governance/governance-types.d.ts +83 -0
package/dist/index.d.ts +28 -0
package/dist/index.js +6 -6
package/dist/inference/deploy-verifier.d.ts +26 -0
package/dist/inference/deploy-verifier.js +1 -1
package/dist/inference/index.d.ts +10 -0
package/dist/inference/inference-accumulator.d.ts +29 -0
package/dist/inference/inference-cycle.d.ts +110 -0
package/dist/inference/inference-cycle.js +7 -7
package/dist/inference/semantic-patterns.d.ts +7 -0
package/dist/inference/session-capture.d.ts +32 -0
package/dist/integrations/base/ExampleIntegration.d.ts +47 -0
package/dist/integrations/base/Integration.d.ts +267 -0
package/dist/integrations/base/README.md +2 -2
package/dist/integrations/base/index.d.ts +12 -0
package/dist/integrations/base/registry.d.ts +273 -0
package/dist/integrations/base/types.d.ts +168 -0
package/dist/integrations/governance/governance-client.d.ts +76 -0
package/dist/integrations/governance/index.d.ts +99 -0
package/dist/integrations/governance/index.js +1 -1
package/dist/integrations/governance/types.d.ts +239 -0
package/dist/integrations/grok/grok-cli.d.ts +25 -0
package/dist/integrations/grok/grok-cli.js +6 -6
package/dist/integrations/grok/hooks/pre-tool-use.js +1 -1
package/dist/integrations/grok/plugin/0xray/.mcp.json +3 -3
package/dist/integrations/grok/plugin/0xray/hooks/hooks.json +2 -2
package/dist/integrations/hermes-agent/__init__.py +78 -72
package/dist/integrations/hermes-agent/__pycache__/__init__.cpython-313.pyc +0 -0
package/dist/integrations/hermes-agent/__pycache__/conftest.cpython-313-pytest-9.0.2.pyc +0 -0
package/dist/integrations/hermes-agent/__pycache__/schemas.cpython-313.pyc +0 -0
package/dist/integrations/hermes-agent/__pycache__/test_plugin.cpython-313-pytest-9.0.2.pyc +0 -0
package/dist/integrations/hermes-agent/__pycache__/test_plugin.cpython-313.pyc +0 -0
package/dist/integrations/hermes-agent/__pycache__/tools.cpython-313.pyc +0 -0
package/dist/integrations/hermes-agent/after-install.md +14 -14
package/dist/integrations/hermes-agent/bridge.mjs +14 -14
package/dist/integrations/hermes-agent/logs/framework/routing-outcomes.json +1 -0
package/dist/integrations/hermes-agent/plugin.yaml +5 -5
package/dist/integrations/hermes-agent/schemas.py +12 -12
package/dist/integrations/hermes-agent/test_plugin.py +128 -125
package/dist/integrations/hermes-agent/tools.py +85 -23
package/dist/integrations/openclaw/README.md +16 -16
package/dist/integrations/openclaw/api-server.d.ts +87 -0
package/dist/integrations/openclaw/api-server.js +9 -9
package/dist/integrations/openclaw/client.d.ts +122 -0
package/dist/integrations/openclaw/config.d.ts +96 -0
package/dist/integrations/openclaw/config.js +1 -1
package/dist/integrations/openclaw/hooks/xray-hooks.d.ts +124 -0
package/dist/integrations/openclaw/index.d.ts +101 -0
package/dist/integrations/openclaw/index.js +4 -4
package/dist/integrations/openclaw/types.d.ts +426 -0
package/dist/integrations/plugins/index.d.ts +10 -0
package/dist/integrations/plugins/plugin-integration.d.ts +289 -0
package/dist/integrations/plugins/plugin-registry.d.ts +224 -0
package/dist/integrations/plugins/plugin-registry.js +2 -2
package/dist/mcps/agent-resolver.d.ts +46 -0
package/dist/mcps/architect-tools.server.d.ts +17 -0
package/dist/mcps/architect-tools.server.js +4 -4
package/dist/mcps/auto-format.server.d.ts +19 -0
package/dist/mcps/auto-format.server.js +4 -4
package/dist/mcps/boot-orchestrator.server.d.ts +49 -0
package/dist/mcps/boot-orchestrator.server.js +4 -4
package/dist/mcps/config/config-loader.d.ts +52 -0
package/dist/mcps/config/config-validator.d.ts +40 -0
package/dist/mcps/config/index.d.ts +31 -0
package/dist/mcps/config/plugin-server-registry.d.ts +127 -0
package/dist/mcps/config/server-config-registry.d.ts +51 -0
package/dist/mcps/config/server-config-registry.js +7 -7
package/dist/mcps/connection/connection-manager.d.ts +39 -0
package/dist/mcps/connection/connection-pool.d.ts +64 -0
package/dist/mcps/connection/mcp-connection.d.ts +66 -0
package/dist/mcps/connection/mcp-connection.js +1 -1
package/dist/mcps/connection/process-spawner.d.ts +24 -0
package/dist/mcps/enforcer-tools.server.d.ts +27 -0
package/dist/mcps/enforcer-tools.server.js +4 -4
package/dist/mcps/estimation.server.d.ts +21 -0
package/dist/mcps/estimation.server.js +1 -1
package/dist/mcps/framework-compliance-audit.server.d.ts +22 -0
package/dist/mcps/framework-compliance-audit.server.js +4 -4
package/dist/mcps/framework-help.server.d.ts +14 -0
package/dist/mcps/framework-help.server.js +7 -7
package/dist/mcps/governance.server.d.ts +33 -0
package/dist/mcps/in-process-skill-registry.d.ts +20 -0
package/dist/mcps/in-process-skill-registry.js +6 -6
package/dist/mcps/knowledge-skills/api-design.server.d.ts +15 -0
package/dist/mcps/knowledge-skills/api-design.server.js +4 -4
package/dist/mcps/knowledge-skills/architecture-patterns.server.d.ts +15 -0
package/dist/mcps/knowledge-skills/architecture-patterns.server.js +4 -4
package/dist/mcps/knowledge-skills/bug-triage-specialist.server.d.ts +33 -0
package/dist/mcps/knowledge-skills/bug-triage-specialist.server.js +1 -1
package/dist/mcps/knowledge-skills/code-analyzer.server.d.ts +31 -0
package/dist/mcps/knowledge-skills/code-analyzer.server.js +1 -1
package/dist/mcps/knowledge-skills/code-review.server.d.ts +46 -0
package/dist/mcps/knowledge-skills/code-review.server.js +4 -4
package/dist/mcps/knowledge-skills/content-creator.server.d.ts +13 -0
package/dist/mcps/knowledge-skills/content-creator.server.js +1 -1
package/dist/mcps/knowledge-skills/database-design.server.d.ts +43 -0
package/dist/mcps/knowledge-skills/database-design.server.js +4 -4
package/dist/mcps/knowledge-skills/devops-deployment.server.d.ts +43 -0
package/dist/mcps/knowledge-skills/devops-deployment.server.js +4 -4
package/dist/mcps/knowledge-skills/git-workflow.server.d.ts +15 -0
package/dist/mcps/knowledge-skills/git-workflow.server.js +4 -4
package/dist/mcps/knowledge-skills/growth-strategist.server.d.ts +13 -0
package/dist/mcps/knowledge-skills/growth-strategist.server.js +1 -1
package/dist/mcps/knowledge-skills/log-monitor.server.d.ts +24 -0
package/dist/mcps/knowledge-skills/log-monitor.server.js +1 -1
package/dist/mcps/knowledge-skills/mobile-development.server.d.ts +19 -0
package/dist/mcps/knowledge-skills/mobile-development.server.js +4 -4
package/dist/mcps/knowledge-skills/multimodal-looker.server.d.ts +55 -0
package/dist/mcps/knowledge-skills/multimodal-looker.server.js +3 -2
package/dist/mcps/knowledge-skills/performance-optimization.server.d.ts +72 -0
package/dist/mcps/knowledge-skills/performance-optimization.server.js +4 -4
package/dist/mcps/knowledge-skills/project-analysis.server.d.ts +37 -0
package/dist/mcps/knowledge-skills/project-analysis.server.js +1 -1
package/dist/mcps/knowledge-skills/refactoring-strategies.server.d.ts +33 -0
package/dist/mcps/knowledge-skills/refactoring-strategies.server.js +4 -4
package/dist/mcps/knowledge-skills/security-audit.server.d.ts +48 -0
package/dist/mcps/knowledge-skills/security-audit.server.js +4 -4
package/dist/mcps/knowledge-skills/seo-consultant.server.d.ts +26 -0
package/dist/mcps/knowledge-skills/seo-consultant.server.js +1 -1
package/dist/mcps/knowledge-skills/session-management.server.d.ts +23 -0
package/dist/mcps/knowledge-skills/session-management.server.js +1 -1
package/dist/mcps/knowledge-skills/skill-invocation.server.d.ts +29 -0
package/dist/mcps/knowledge-skills/skill-invocation.server.js +1 -1
package/dist/mcps/knowledge-skills/strategist.server.d.ts +17 -0
package/dist/mcps/knowledge-skills/strategist.server.js +1 -1
package/dist/mcps/knowledge-skills/tech-writer.server.d.ts +47 -0
package/dist/mcps/knowledge-skills/tech-writer.server.js +5 -5
package/dist/mcps/knowledge-skills/testing-best-practices.server.d.ts +36 -0
package/dist/mcps/knowledge-skills/testing-best-practices.server.js +4 -4
package/dist/mcps/knowledge-skills/testing-strategy.server.d.ts +47 -0
package/dist/mcps/knowledge-skills/testing-strategy.server.js +4 -4
package/dist/mcps/knowledge-skills/ui-ux-design.server.d.ts +69 -0
package/dist/mcps/knowledge-skills/ui-ux-design.server.js +6 -6
package/dist/mcps/lint.server.d.ts +17 -0
package/dist/mcps/lint.server.js +6 -6
package/dist/mcps/mcp-client.d.ts +157 -0
package/dist/mcps/mcp-client.js +3 -3
package/dist/mcps/model-health-check.server.d.ts +16 -0
package/dist/mcps/model-health-check.server.js +4 -4
package/dist/mcps/orchestrator/config/agent-capabilities.d.ts +35 -0
package/dist/mcps/orchestrator/execution/execution-planner.d.ts +62 -0
package/dist/mcps/orchestrator/handlers/complexity-handler.d.ts +32 -0
package/dist/mcps/orchestrator/handlers/status-handler.d.ts +69 -0
package/dist/mcps/orchestrator/handlers/task-handler.d.ts +52 -0
package/dist/mcps/orchestrator/server.d.ts +38 -0
package/dist/mcps/orchestrator/server.js +2 -2
package/dist/mcps/orchestrator/types.d.ts +79 -0
package/dist/mcps/orchestrator.server.d.ts +10 -0
package/dist/mcps/performance-analysis.server.d.ts +27 -0
package/dist/mcps/performance-analysis.server.js +4 -4
package/dist/mcps/processor-pipeline.server.d.ts +31 -0
package/dist/mcps/processor-pipeline.server.js +4 -4
package/dist/mcps/protocol/protocol-constants.d.ts +46 -0
package/dist/mcps/registry.json +1 -1
package/dist/mcps/researcher.server.d.ts +31 -0
package/dist/mcps/researcher.server.js +5 -5
package/dist/mcps/security-scan.server.d.ts +20 -0
package/dist/mcps/security-scan.server.js +4 -4
package/dist/mcps/simulation/index.d.ts +12 -0
package/dist/mcps/simulation/server-simulations.d.ts +39 -0
package/dist/mcps/simulation/server-simulations.js +3 -3
package/dist/mcps/simulation/simulation-engine.d.ts +51 -0
package/dist/mcps/state-manager.server.d.ts +28 -0
package/dist/mcps/state-manager.server.js +1 -1
package/dist/mcps/tools/index.d.ts +14 -0
package/dist/mcps/tools/tool-cache.d.ts +53 -0
package/dist/mcps/tools/tool-discovery.d.ts +27 -0
package/dist/mcps/tools/tool-executor.d.ts +41 -0
package/dist/mcps/tools/tool-registry.d.ts +42 -0
package/dist/mcps/types/index.d.ts +13 -0
package/dist/mcps/types/json-rpc.types.d.ts +35 -0
package/dist/mcps/types/mcp.types.d.ts +105 -0
package/dist/metrics/agent-metrics.d.ts +169 -0
package/dist/metrics/agent-metrics.js +1 -1
package/dist/metrics/index.d.ts +6 -0
package/dist/monitoring/advanced-profiler.d.ts +51 -0
package/dist/monitoring/memory-monitor.d.ts +113 -0
package/dist/monitoring/nudge-watchdog.d.ts +88 -0
package/dist/monitoring/test-auto-generation-monitor.d.ts +64 -0
package/dist/orchestrator/agent-spawn-governor.d.ts +127 -0
package/dist/orchestrator/enhanced-multi-agent-orchestrator.d.ts +156 -0
package/dist/orchestrator/enhanced-multi-agent-orchestrator.js +2 -2
package/dist/orchestrator/intelligent-commit-batcher.d.ts +114 -0
package/dist/orchestrator/intelligent-commit-batcher.js +3 -3
package/dist/orchestrator/multi-agent-orchestration-coordinator.d.ts +127 -0
package/dist/orchestrator/multi-agent-orchestration-coordinator.js +9 -9
package/dist/orchestrator/orchestrator.d.ts +143 -0
package/dist/orchestrator/orchestrator.js +8 -6
package/dist/orchestrator/self-direction-activation.d.ts +109 -0
package/dist/orchestrator/universal-librarian-consultation.d.ts +98 -0
package/dist/orchestrator/universal-registry-bridge.d.ts +85 -0
package/dist/orchestrator/universal-registry-bridge.js +1 -1
package/dist/performance/performance-budget-enforcer.d.ts +158 -0
package/dist/performance/performance-regression-tester.d.ts +108 -0
package/dist/plugin/xray-codex-injection.d.ts +55 -0
package/dist/plugin/xray-codex-injection.js +15 -14
package/dist/postprocessor/PostProcessor.d.ts +108 -0
package/dist/postprocessor/PostProcessor.js +1 -1
package/dist/postprocessor/analysis/FailureAnalysisEngine.d.ts +39 -0
package/dist/postprocessor/autofix/AutoFixEngine.d.ts +48 -0
package/dist/postprocessor/autofix/FixValidator.d.ts +23 -0
package/dist/postprocessor/config.d.ts +6 -0
package/dist/postprocessor/escalation/EscalationEngine.d.ts +154 -0
package/dist/postprocessor/monitoring/MonitoringEngine.d.ts +40 -0
package/dist/postprocessor/redeploy/RedeployCoordinator.d.ts +91 -0
package/dist/postprocessor/services/RegressionAnalysisService.d.ts +40 -0
package/dist/postprocessor/services/RegressionAnalysisService.js +2 -2
package/dist/postprocessor/success/SuccessHandler.d.ts +57 -0
package/dist/postprocessor/triggers/APITrigger.d.ts +35 -0
package/dist/postprocessor/triggers/GitHookTrigger.d.ts +38 -0
package/dist/postprocessor/triggers/GitHookTrigger.js +14 -14
package/dist/postprocessor/triggers/WebhookTrigger.d.ts +47 -0
package/dist/postprocessor/types.d.ts +227 -0
package/dist/processors/doc-write-guard.d.ts +6 -0
package/dist/processors/implementations/agents-md-validation-processor.d.ts +63 -0
package/dist/processors/implementations/agents-md-validation-processor.js +2 -2
package/dist/processors/implementations/async-pattern-processor.d.ts +48 -0
package/dist/processors/implementations/codex-compliance-processor.d.ts +7 -0
package/dist/processors/implementations/commit-batcher-processor.d.ts +13 -0
package/dist/processors/implementations/console-log-guard-processor.d.ts +33 -0
package/dist/processors/implementations/coverage-analysis-processor.d.ts +20 -0
package/dist/processors/implementations/error-boundary-processor.d.ts +7 -0
package/dist/processors/implementations/inference-improvement-processor.d.ts +36 -0
package/dist/processors/implementations/inference-improvement-processor.js +2 -2
package/dist/processors/implementations/log-protection-processor.d.ts +30 -0
package/dist/processors/implementations/log-protection-processor.js +2 -2
package/dist/processors/implementations/nudge-processor.d.ts +22 -0
package/dist/processors/implementations/performance-budget-processor.d.ts +50 -0
package/dist/processors/implementations/postprocessor-chain-validator.d.ts +46 -0
package/dist/processors/implementations/pre-validate-processor.d.ts +7 -0
package/dist/processors/implementations/publish-preflight-processor.d.ts +38 -0
package/dist/processors/implementations/publish-preflight-processor.js +3 -3
package/dist/processors/implementations/refactoring-logging-processor-wrapper.d.ts +7 -0
package/dist/processors/implementations/refactoring-logging-processor.d.ts +31 -0
package/dist/processors/implementations/regression-testing-processor.d.ts +20 -0
package/dist/processors/implementations/regression-testing-processor.js +2 -2
package/dist/processors/implementations/session-capture-processor.d.ts +14 -0
package/dist/processors/implementations/session-summary-processor.d.ts +27 -0
package/dist/processors/implementations/session-summary-processor.js +2 -2
package/dist/processors/implementations/spawn-governance-processor.d.ts +58 -0
package/dist/processors/implementations/state-validation-processor.d.ts +11 -0
package/dist/processors/implementations/storytelling-trigger-processor.d.ts +42 -0
package/dist/processors/implementations/storytelling-trigger-processor.js +2 -2
package/dist/processors/implementations/test-auto-creation-processor.d.ts +17 -0
package/dist/processors/implementations/test-execution-processor.d.ts +11 -0
package/dist/processors/implementations/typescript-compilation-processor.d.ts +38 -0
package/dist/processors/implementations/version-compliance-processor.d.ts +112 -0
package/dist/processors/processor-interfaces.d.ts +127 -0
package/dist/processors/processor-manager.d.ts +80 -0
package/dist/processors/processor-types.d.ts +190 -0
package/dist/public/about.html +6 -6
package/dist/public/enterprise.html +1 -1
package/dist/public/features.html +2 -2
package/dist/public/index.html +4 -4
package/dist/reporting/framework-reporting-system.d.ts +19 -0
package/dist/reporting/log-parser.d.ts +10 -0
package/dist/reporting/metrics.d.ts +15 -0
package/dist/reporting/report-formatter.d.ts +5 -0
package/dist/reporting/report-formatter.js +1 -1
package/dist/reporting/types.d.ts +102 -0
package/dist/scripts/activate-kernel-pipeline.d.ts +7 -0
package/dist/scripts/activate-kernel-pipeline.js +2 -2
package/dist/scripts/integration.d.ts +37 -0
package/dist/scripts/pre-command +1 -1
package/dist/security/comprehensive-security-audit.d.ts +158 -0
package/dist/security/index.d.ts +13 -0
package/dist/security/prompt-security-validator.d.ts +44 -0
package/dist/security/security-agent-coordinator.d.ts +72 -0
package/dist/security/security-auditor.d.ts +56 -0
package/dist/security/security-hardener.d.ts +62 -0
package/dist/security/security-hardening-system.d.ts +239 -0
package/dist/security/security-headers.d.ts +64 -0
package/dist/security/security-orchestration-layer.d.ts +119 -0
package/dist/security/security-scanner.d.ts +119 -0
package/dist/services/inference-tuner.d.ts +77 -0
package/dist/services/inference-tuner.js +2 -2
package/dist/session/index.d.ts +3 -0
package/dist/session/session-cleanup-manager.d.ts +118 -0
package/dist/session/session-monitor.d.ts +133 -0
package/dist/session/session-state-manager.d.ts +145 -0
package/dist/skills/hermes-agent/SKILL.md +11 -11
package/dist/skills/registry.json +1 -1
package/dist/skills/storyteller/SKILL.md +1 -1
package/dist/skills/xray-orchestrator/SKILL.md +141 -0
package/dist/skills/xray-orchestrator/index.d.ts +13 -0
package/dist/skills/xray-orchestrator/index.js +224 -0
package/dist/state/context-providers.d.ts +4 -0
package/dist/state/index.d.ts +5 -0
package/dist/state/index.js +2 -1
package/dist/state/state-manager.d.ts +42 -0
package/dist/state/state-manager.js +5 -4
package/dist/state/state-types.d.ts +5 -0
package/dist/testing/memory-regression-suite.d.ts +105 -0
package/dist/utils/batch-operations.d.ts +25 -0
package/dist/utils/codex-parser.d.ts +61 -0
package/dist/utils/command-runner.d.ts +32 -0
package/dist/utils/import-resolver.d.ts +54 -0
package/dist/utils/import-resolver.js +1 -1
package/dist/utils/language-detector.d.ts +44 -0
package/dist/utils/path-resolver.d.ts +48 -0
package/dist/utils/path-resolver.js +2 -2
package/dist/utils/shutdown-handler.d.ts +27 -0
package/dist/utils/test-template-generator.d.ts +25 -0
package/dist/utils/token-manager.d.ts +48 -0
package/dist/utils/token-manager.js +1 -1
package/dist/validation/estimation-validator.d.ts +61 -0
package/dist/validation/estimation-validator.js +1 -1
package/dist/validation/report-content-validator.d.ts +42 -0
package/package.json +4 -3
package/scripts/hooks/pre-command +1 -1
package/scripts/hooks/run-hook.js +2 -2
package/scripts/node/auto-reflection-generator.mjs +2 -2
package/scripts/node/postinstall.cjs +1 -1
package/scripts/node/release.js +6 -6
package/scripts/node/release.mjs +10 -10
package/scripts/node/universal-version-manager.js +53 -54
package/scripts/node/version-manager.mjs +1 -1
package/src/integrations/grok/plugin/0xray/.mcp.json +3 -3
package/src/integrations/grok/plugin/0xray/hooks/hooks.json +2 -2
package/src/mcps/architect-tools.server.ts +4 -4
package/src/mcps/auto-format.server.ts +4 -4
package/src/mcps/boot-orchestrator.server.ts +4 -4
package/src/mcps/config/server-config-registry.ts +7 -7
package/src/mcps/connection/mcp-connection.ts +1 -1
package/src/mcps/enforcer-tools.server.ts +4 -4
package/src/mcps/estimation.server.ts +1 -1
package/src/mcps/framework-compliance-audit.server.ts +4 -4
package/src/mcps/framework-help.server.ts +7 -7
package/src/mcps/in-process-skill-registry.ts +6 -6
package/src/mcps/knowledge-skills/api-design.server.test.ts +8 -8
package/src/mcps/knowledge-skills/api-design.server.ts +4 -4
package/src/mcps/knowledge-skills/architecture-patterns.server.ts +4 -4
package/src/mcps/knowledge-skills/bug-triage-specialist.server.ts +1 -1
package/src/mcps/knowledge-skills/code-analyzer.server.ts +1 -1
package/src/mcps/knowledge-skills/code-review.server.ts +4 -4
package/src/mcps/knowledge-skills/content-creator.server.ts +1 -1
package/src/mcps/knowledge-skills/database-design.server.ts +4 -4
package/src/mcps/knowledge-skills/devops-deployment.server.ts +4 -4
package/src/mcps/knowledge-skills/git-workflow.server.ts +4 -4
package/src/mcps/knowledge-skills/growth-strategist.server.ts +1 -1
package/src/mcps/knowledge-skills/log-monitor.server.ts +1 -1
package/src/mcps/knowledge-skills/mobile-development.server.ts +4 -4
package/src/mcps/knowledge-skills/multimodal-looker.server.ts +3 -2
package/src/mcps/knowledge-skills/performance-optimization.server.ts +4 -4
package/src/mcps/knowledge-skills/project-analysis.server.ts +1 -1
package/src/mcps/knowledge-skills/refactoring-strategies.server.ts +4 -4
package/src/mcps/knowledge-skills/security-audit.server.test.ts +23 -23
package/src/mcps/knowledge-skills/security-audit.server.ts +4 -4
package/src/mcps/knowledge-skills/seo-consultant.server.ts +1 -1
package/src/mcps/knowledge-skills/session-management.server.ts +1 -1
package/src/mcps/knowledge-skills/skill-invocation.server.ts +1 -1
package/src/mcps/knowledge-skills/strategist.server.ts +1 -1
package/src/mcps/knowledge-skills/tech-writer.server.ts +5 -5
package/src/mcps/knowledge-skills/testing-best-practices.server.test.ts +28 -28
package/src/mcps/knowledge-skills/testing-best-practices.server.ts +4 -4
package/src/mcps/knowledge-skills/testing-strategy.server.test.ts +19 -19
package/src/mcps/knowledge-skills/testing-strategy.server.ts +4 -4
package/src/mcps/knowledge-skills/ui-ux-design.server.ts +6 -6
package/src/mcps/lint.server.ts +6 -6
package/src/mcps/mcp-client.ts +3 -3
package/src/mcps/model-health-check.server.ts +4 -4
package/src/mcps/orchestrator/server.ts +2 -2
package/src/mcps/performance-analysis.server.ts +4 -4
package/src/mcps/processor-pipeline.server.ts +4 -4
package/src/mcps/registry.json +1 -1
package/src/mcps/researcher.server.ts +5 -5
package/src/mcps/security-scan.server.ts +4 -4
package/src/mcps/simulation/server-simulations.ts +3 -3
package/src/mcps/state-manager.server.ts +1 -1
package/src/opencode/codex.codex +2 -2
package/src/opencode/commands/dependency-audit.md +3 -3
package/src/opencode/enforcer-config.json +2 -2
package/src/skills/hermes-agent/SKILL.md +11 -11
package/src/skills/registry.json +1 -1
package/src/skills/storyteller/SKILL.md +1 -1
package/src/skills/xray-orchestrator/SKILL.md +141 -0
package/src/skills/xray-orchestrator/index.ts +268 -0
package/.opencode/hooks/hook-metrics.json +0 -380
package/.opencode/skills/api-design/SKILL.md +0 -37
package/.opencode/skills/architect-tools/SKILL.md +0 -37
package/.opencode/skills/architecture-patterns/SKILL.md +0 -37
package/.opencode/skills/auto-format/SKILL.md +0 -37
package/.opencode/skills/backend-engineer/SKILL.md +0 -49
package/.opencode/skills/boot-orchestrator/SKILL.md +0 -37
package/.opencode/skills/bug-triage/SKILL.md +0 -43
package/.opencode/skills/code-analyzer/SKILL.md +0 -45
package/.opencode/skills/code-review/SKILL.md +0 -52
package/.opencode/skills/content-creator/SKILL.md +0 -38
package/.opencode/skills/database-engineer/SKILL.md +0 -46
package/.opencode/skills/devops-engineer/SKILL.md +0 -49
package/.opencode/skills/enforcer/SKILL.md +0 -37
package/.opencode/skills/framework-compliance-audit/SKILL.md +0 -37
package/.opencode/skills/frontend-engineer/SKILL.md +0 -49
package/.opencode/skills/frontend-ui-ux-engineer/SKILL.md +0 -41
package/.opencode/skills/git-workflow/SKILL.md +0 -37
package/.opencode/skills/growth-strategist/SKILL.md +0 -48
package/.opencode/skills/hermes-agent/SKILL.md +0 -212
package/.opencode/skills/inference-improve/SKILL.md +0 -97
package/.opencode/skills/lint/SKILL.md +0 -37
package/.opencode/skills/log-monitor/SKILL.md +0 -44
package/.opencode/skills/mobile-developer/SKILL.md +0 -42
package/.opencode/skills/model-health-check/SKILL.md +0 -37
package/.opencode/skills/multimodal-looker/SKILL.md +0 -45
package/.opencode/skills/orchestrator/SKILL.md +0 -37
package/.opencode/skills/performance-analysis/SKILL.md +0 -37
package/.opencode/skills/performance-engineer/SKILL.md +0 -41
package/.opencode/skills/performance-optimization/SKILL.md +0 -37
package/.opencode/skills/processor-pipeline/SKILL.md +0 -37
package/.opencode/skills/project-analysis/SKILL.md +0 -42
package/.opencode/skills/refactoring-strategies/SKILL.md +0 -37
package/.opencode/skills/registry.json +0 -66
package/.opencode/skills/researcher/SKILL.md +0 -37
package/.opencode/skills/security-audit/SKILL.md +0 -47
package/.opencode/skills/security-scan/SKILL.md +0 -37
package/.opencode/skills/seo-consultant/SKILL.md +0 -43
package/.opencode/skills/session-management/SKILL.md +0 -36
package/.opencode/skills/state-manager/SKILL.md +0 -37
package/.opencode/skills/storyteller/SKILL.md +0 -130
package/.opencode/skills/strategist/SKILL.md +0 -32
package/.opencode/skills/tech-writer/SKILL.md +0 -37
package/.opencode/skills/testing-best-practices/SKILL.md +0 -37
package/.opencode/skills/testing-strategy/SKILL.md +0 -43
package/.opencode/skills/ui-ux-design/SKILL.md +0 -603
package/scripts/validate-stringray-comprehensive.js +0 -636
/package/dist/integrations/openclaw/hooks/{strray-hooks.js → xray-hooks.js} +0 -0

package/dist/security/comprehensive-security-audit.d.ts ADDED Viewed

@@ -0,0 +1,158 @@
+/**
+ * 0xRay Comprehensive Security Audit System
+ *
+ * Multi-agent security audit system with vulnerability scanning,
+ * automated remediation, compliance checking, and weighted voting
+ * for architectural decisions.
+ *
+ * @version 1.22.13
+ */
+export type SeverityLevel = "critical" | "high" | "medium" | "low" | "info";
+export type ComplianceStandard = "owasp-top-10" | "cwe" | "nist" | "iso-27001" | "pci-dss";
+export interface Vulnerability {
+    id: string;
+    title: string;
+    severity: SeverityLevel;
+    category: VulnerabilityCategory;
+    cwe: string;
+    owasp?: string | undefined;
+    file: string;
+    line: number;
+    column?: number | undefined;
+    description: string;
+    impact: string;
+    recommendation: string;
+    codeSnippet: string;
+    confidence: number;
+    autoRemediation?: RemediationStep[] | undefined;
+}
+export type VulnerabilityCategory = "injection" | "authentication" | "authorization" | "cryptography" | "configuration" | "data-protection" | "input-validation" | "sensitive-data-exposure" | "security-misconfiguration" | "dependency-vulnerability";
+export interface RemediationStep {
+    step: number;
+    action: string;
+    code?: string | undefined;
+    file?: string | undefined;
+    line?: number | undefined;
+    estimatedEffort: "low" | "medium" | "high";
+    automated: boolean;
+}
+export interface SecurityAuditConfig {
+    projectPath: string;
+    scanDepth?: "shallow" | "medium" | "deep";
+    includeDependencies?: boolean;
+    complianceStandards?: ComplianceStandard[];
+    enableAutoRemediation?: boolean;
+    enableWeightedVoting?: boolean;
+    agentWeights?: Record<string, number>;
+    outputPath?: string | undefined;
+}
+export interface WeightedVote {
+    agentId: string;
+    agentName: string;
+    vote: "approve" | "reject" | "abstain";
+    weight: number;
+    reasoning: string;
+    concerns?: string[] | undefined;
+}
+export interface ArchitecturalDecision {
+    id: string;
+    title: string;
+    description: string;
+    proposedBy: string;
+    votes: WeightedVote[];
+    finalDecision: "approved" | "rejected" | "needs-revision";
+    approvedBy: WeightedVote[];
+    rejectedBy: WeightedVote[];
+    timestamp: Date;
+}
+export interface ComplianceResult {
+    standard: ComplianceStandard;
+    passed: boolean;
+    score: number;
+    findings: Vulnerability[];
+    recommendations: string[];
+}
+export interface SecurityAuditReport {
+    metadata: {
+        auditId: string;
+        timestamp: Date;
+        projectPath: string;
+        totalFilesScanned: number;
+        duration: number;
+    };
+    summary: {
+        totalVulnerabilities: number;
+        bySeverity: Record<SeverityLevel, number>;
+        byCategory: Record<VulnerabilityCategory, number>;
+        securityScore: number;
+        complianceScore: number;
+    };
+    vulnerabilities: Vulnerability[];
+    compliance: ComplianceResult[];
+    remediation: {
+        totalIssues: number;
+        automatable: number;
+        manualRequired: number;
+        estimatedFixTime: string;
+        prioritizedFixes: RemediationPlan[];
+    };
+    architecturalDecisions: ArchitecturalDecision[];
+    agentConsensus: {
+        participatingAgents: string[];
+        averageAgreement: number;
+        contentiousIssues: Vulnerability[];
+    } | undefined;
+}
+export interface RemediationPlan {
+    vulnerabilityId: string;
+    title: string;
+    severity: SeverityLevel;
+    priority: number;
+    steps: RemediationStep[];
+    dependencies: string[];
+    estimatedTime: string;
+}
+export declare class ComprehensiveSecurityAuditSystem {
+    private config;
+    private vulnerabilities;
+    private architecturalDecisions;
+    private agentVotes;
+    private readonly severityWeights;
+    private readonly defaultAgentWeights;
+    private readonly dangerousPatterns;
+    constructor(config: SecurityAuditConfig);
+    runAudit(): Promise<SecurityAuditReport>;
+    private getProjectFiles;
+    private auditFile;
+    private createVulnerability;
+    private isFalsePositive;
+    private auditImports;
+    private auditDependencies;
+    private checkCompliance;
+    private evaluateStandard;
+    private evaluateOWASP;
+    private evaluateCWE;
+    private evaluateNIST;
+    private evaluateISO27001;
+    private evaluatePCIDSS;
+    private groupByCategory;
+    private generateRemediationPlan;
+    private prioritizeFixes;
+    private estimateFixTime;
+    private estimateFixTimeForVuln;
+    private calculateSummary;
+    private collectAgentVotes;
+    private simulateAgentVote;
+    private resolveArchitecturalDecisions;
+    private calculateAgentConsensus;
+    private saveReport;
+    generateMarkdownReport(report: SecurityAuditReport): string;
+    private getScoreEmoji;
+    private getSeverityEmoji;
+    addVote(vote: WeightedVote): void;
+    getVulnerabilities(): Vulnerability[];
+    getArchitecturalDecisions(): ArchitecturalDecision[];
+}
+export declare function createSecurityAuditSystem(config: SecurityAuditConfig): ComprehensiveSecurityAuditSystem;
+export declare function runQuickSecurityAudit(projectPath: string): Promise<SecurityAuditReport>;
+export declare function runDeepSecurityAudit(projectPath: string, outputPath?: string): Promise<SecurityAuditReport>;

package/dist/security/index.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+/**
+ * 0xRay AI v1.22.60 - Security Module Index
+ * Unified exports for the comprehensive security system
+ */
+export { SecurityScanner, securityScanner } from "./security-scanner.js";
+export { PromptSecurityValidator, promptSecurityValidator, } from "./prompt-security-validator.js";
+export * from "./security-headers.js";
+export * from "./security-hardening-system.js";
+export * from "./security-hardener.js";
+export * from "./security-auditor.js";
+export { ComprehensiveSecurityAuditSystem, createSecurityAuditSystem, runQuickSecurityAudit, runDeepSecurityAudit, type Vulnerability, type VulnerabilityCategory, type SeverityLevel, type RemediationStep, type RemediationPlan, type SecurityAuditConfig, type SecurityAuditReport, type WeightedVote, type ArchitecturalDecision, type ComplianceResult, type ComplianceStandard, } from "./comprehensive-security-audit.js";
+export { SecurityOrchestrationLayer, createSecurityOrchestrationLayer, runSecurityOrchestration, type SecurityAgent, type SecurityAgentType, type AgentStatus, type SecurityTask, type SecurityTaskType, type AgentVote, type SecurityDecision, type OrchestrationConfig, type SecurityOrchestrationReport, } from "./security-orchestration-layer.js";
+export { SecurityAgentCoordinator, createSecurityAgentCoordinator, runMultiAgentSecurityScan, type SecurityAgentConfig, type SecurityAgentContext, type AgentVotingResult, type MultiAgentSecurityResult, } from "./security-agent-coordinator.js";

package/dist/security/prompt-security-validator.d.ts ADDED Viewed

@@ -0,0 +1,44 @@
+/**
+ * 0xRay Framework - AI Prompt Security Validator
+ *
+ * Specialized security validation for AI agent prompts and responses
+ * Prevents prompt injection, system prompt override, and malicious inputs
+ */
+export interface PromptSecurityConfig {
+    enabled: boolean;
+    maxPromptLength: number;
+    allowedPatterns: RegExp[];
+    blockedPatterns: RegExp[];
+    sanitizeLevel: "basic" | "strict" | "paranoid";
+}
+export interface SecurityValidationResult {
+    isSafe: boolean;
+    violations: string[];
+    sanitizedPrompt?: string | undefined;
+    riskLevel: "low" | "medium" | "high" | "critical";
+}
+export declare class PromptSecurityValidator {
+    private config;
+    constructor(config?: Partial<PromptSecurityConfig>);
+    /**
+     * Validate AI prompt for security issues
+     */
+    validatePrompt(prompt: string): SecurityValidationResult;
+    /**
+     * Check for system prompt override attempts
+     */
+    private containsSystemPromptOverride;
+    /**
+     * Check for prompt injection attempts
+     */
+    private containsInjectionAttempts;
+    /**
+     * Sanitize prompt by removing dangerous patterns
+     */
+    private sanitizePrompt;
+    /**
+     * Validate agent response for safety
+     */
+    validateResponse(response: string): SecurityValidationResult;
+}
+export declare const promptSecurityValidator: PromptSecurityValidator;

package/dist/security/security-agent-coordinator.d.ts ADDED Viewed

@@ -0,0 +1,72 @@
+/**
+ * Security Agent Integration
+ *
+ * Integrates the security orchestration layer with the framework's agent system.
+ * Provides coordination between security agents using weighted voting.
+ *
+ * @version 1.22.13
+ */
+import { EventEmitter } from "events";
+import { SecurityOrchestrationLayer, SecurityAgent, SecurityDecision, OrchestrationConfig } from "./security-orchestration-layer.js";
+import { Vulnerability } from "./comprehensive-security-audit.js";
+export interface SecurityAgentConfig {
+    agentId: string;
+    agentType: string;
+    capabilities: string[];
+    weight: number;
+}
+export interface SecurityAgentContext {
+    projectPath: string;
+    scanDepth: "shallow" | "medium" | "deep";
+    complianceStandards: string[];
+    enableAutoRemediation: boolean;
+}
+export interface AgentVotingResult {
+    agentId: string;
+    agentName: string;
+    vote: "approve" | "reject" | "abstain";
+    weight: number;
+    reasoning: string;
+    concerns: string[];
+    confidence: number;
+}
+export interface MultiAgentSecurityResult {
+    auditId: string;
+    timestamp: Date;
+    duration: number;
+    participatingAgents: string[];
+    vulnerabilities: Vulnerability[];
+    decisions: SecurityDecision[];
+    agentVotes: AgentVotingResult[];
+    summary: {
+        totalVulnerabilities: number;
+        critical: number;
+        high: number;
+        medium: number;
+        low: number;
+        securityScore: number;
+        complianceScore: number;
+    };
+    weightedApproval: number;
+    approved: boolean;
+    recommendations: string[];
+}
+export declare class SecurityAgentCoordinator extends EventEmitter {
+    private orchestration;
+    private agentRegistry;
+    private isActive;
+    constructor(config?: Partial<OrchestrationConfig>);
+    private setupEventHandlers;
+    registerAgent(config: SecurityAgentConfig): void;
+    unregisterAgent(agentId: string): boolean;
+    getRegisteredAgents(): SecurityAgentConfig[];
+    runCoordinatedSecurityScan(context: SecurityAgentContext): Promise<MultiAgentSecurityResult>;
+    private collectAgentVotes;
+    private calculateWeightedApproval;
+    getOrchestrationLayer(): SecurityOrchestrationLayer;
+    getActiveAgents(): SecurityAgent[];
+    getPendingTasks(): import("./security-orchestration-layer.js").SecurityTask[];
+    isCoordinatorActive(): boolean;
+}
+export declare function createSecurityAgentCoordinator(config?: Partial<OrchestrationConfig>): SecurityAgentCoordinator;
+export declare function runMultiAgentSecurityScan(projectPath: string, context?: Partial<SecurityAgentContext>): Promise<MultiAgentSecurityResult>;

package/dist/security/security-auditor.d.ts ADDED Viewed

@@ -0,0 +1,56 @@
+/**
+ * Security Audit Tool
+ *
+ * Comprehensive security auditing for the framework and its components.
+ * Identifies vulnerabilities, misconfigurations, and security weaknesses.
+ *
+ * @version 1.0.0
+ * @since 2026-01-07
+ */
+export interface SecurityIssue {
+    severity: "critical" | "high" | "medium" | "low" | "info";
+    category: string;
+    file: string;
+    line?: number;
+    description: string;
+    recommendation: string;
+    cwe?: string;
+}
+export interface SecurityAuditResult {
+    totalFiles: number;
+    issues: SecurityIssue[];
+    summary: {
+        critical: number;
+        high: number;
+        medium: number;
+        low: number;
+        info: number;
+    };
+    score: number;
+}
+export declare class SecurityAuditor {
+    private readonly dangerousPatterns;
+    private readonly dangerousImports;
+    /**
+     * Run comprehensive security audit
+     */
+    auditProject(projectPath?: string): Promise<SecurityAuditResult>;
+    private getAllFiles;
+    private shouldSkipDirectory;
+    private shouldAuditFile;
+    private auditFile;
+    private isFalsePositive;
+    private auditImports;
+    private auditFilePermissions;
+    private auditPackageJson;
+    private auditConfiguration;
+    private auditDependencies;
+    private getRecommendationForCategory;
+    private generateSummary;
+    private calculateSecurityScore;
+    /**
+     * Generate security audit report
+     */
+    generateReport(result: SecurityAuditResult): string;
+}
+export declare const securityAuditor: SecurityAuditor;

package/dist/security/security-hardener.d.ts ADDED Viewed

@@ -0,0 +1,62 @@
+/**
+ * Security Hardening Module
+ *
+ * Implements additional security measures and hardening for the framework.
+ * Addresses vulnerabilities identified during security audit.
+ *
+ * @version 1.0.0
+ * @since 2026-01-07
+ */
+import { SecurityIssue } from "./security-auditor.js";
+export interface SecurityHardeningConfig {
+    enableInputValidation: boolean;
+    enableRateLimiting: boolean;
+    enableAuditLogging: boolean;
+    enableSecureHeaders: boolean;
+    maxRequestSizeBytes: number;
+    rateLimitWindowMs: number;
+    rateLimitMaxRequests: number;
+}
+export declare class SecurityHardener {
+    private config;
+    constructor(config?: Partial<SecurityHardeningConfig>);
+    /**
+     * Apply security hardening based on audit results
+     */
+    hardenSecurity(auditResult: {
+        issues: SecurityIssue[];
+    }): Promise<{
+        appliedFixes: string[];
+        remainingIssues: SecurityIssue[];
+    }>;
+    private applyFixForIssue;
+    private fixHardcodedSecrets;
+    private fixFilePermissions;
+    private fixDependencyManagement;
+    private addInputValidation;
+    /**
+     * Add security headers to HTTP responses
+     */
+    addSecurityHeaders(headers: Record<string, string>): Record<string, string>;
+    /**
+     * Validate input data
+     */
+    validateInput(input: any, schema: any): {
+        valid: boolean;
+        errors: string[];
+    };
+    /**
+     * Check rate limiting
+     */
+    checkRateLimit(identifier: string, requests: Map<string, number[]>): boolean;
+    /**
+     * Log security events
+     */
+    logSecurityEvent(event: {
+        type: string;
+        severity: "low" | "medium" | "high" | "critical";
+        message: string;
+        metadata?: Record<string, any>;
+    }): void;
+}
+export declare const securityHardener: SecurityHardener;

package/dist/security/security-hardening-system.d.ts ADDED Viewed

@@ -0,0 +1,239 @@
+/**
+ * Security Hardening System
+ *
+ * Comprehensive security hardening implementation with OWASP compliance.
+ * Implements defense-in-depth security architecture for enterprise applications.
+ *
+ * @version 1.0.0
+ * @since 2026-01-08
+ */
+import { EventEmitter } from "events";
+import { IncomingMessage, ServerResponse } from "http";
+export declare const SECURITY_CONFIG: {
+    readonly headers: {
+        readonly "X-Content-Type-Options": "nosniff";
+        readonly "X-Frame-Options": "DENY";
+        readonly "X-XSS-Protection": "1; mode=block";
+        readonly "Strict-Transport-Security": "max-age=31536000; includeSubDomains";
+        readonly "Content-Security-Policy": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'";
+        readonly "Referrer-Policy": "strict-origin-when-cross-origin";
+        readonly "Permissions-Policy": "geolocation=(), microphone=(), camera=()";
+        readonly "Cross-Origin-Embedder-Policy": "require-corp";
+        readonly "Cross-Origin-Opener-Policy": "same-origin";
+        readonly "Cross-Origin-Resource-Policy": "same-origin";
+    };
+    readonly rateLimiting: {
+        readonly windowMs: number;
+        readonly maxRequests: 100;
+        readonly skipSuccessfulRequests: false;
+        readonly skipFailedRequests: false;
+    };
+    readonly inputValidation: {
+        readonly maxStringLength: 10000;
+        readonly maxArrayLength: 1000;
+        readonly maxObjectDepth: 10;
+        readonly allowedCharacters: RegExp;
+        readonly sqlInjectionPatterns: readonly [RegExp, RegExp];
+        readonly xssPatterns: readonly [RegExp, RegExp, RegExp, RegExp];
+    };
+    readonly encryption: {
+        readonly algorithm: "aes-256-gcm";
+        readonly keyLength: 32;
+        readonly ivLength: 16;
+        readonly saltRounds: 12;
+    };
+    readonly audit: {
+        readonly logLevel: "detailed";
+        readonly retentionDays: 90;
+        readonly sensitiveFields: readonly ["password", "token", "secret", "key", "authorization"];
+    };
+};
+export type SecurityEventType = "input_validation_failure" | "rate_limit_exceeded" | "authentication_failure" | "authorization_failure" | "suspicious_activity" | "sql_injection_attempt" | "xss_attempt" | "csrf_attempt" | "security_header_missing" | "encryption_failure" | "audit_log_failure";
+export type SecuritySeverity = "low" | "medium" | "high" | "critical";
+export interface SecurityEvent {
+    id: string;
+    type: SecurityEventType;
+    severity: SecuritySeverity;
+    message: string;
+    source: string;
+    userId?: string;
+    ipAddress?: string;
+    userAgent?: string;
+    timestamp: number;
+    metadata: Record<string, unknown>;
+    stackTrace?: string;
+}
+export interface ValidationResult {
+    isValid: boolean;
+    errors: string[];
+    sanitizedValue?: unknown;
+    securityEvents: SecurityEvent[];
+}
+export interface RateLimitEntry {
+    count: number;
+    resetTime: number;
+    lastRequest: number;
+}
+export interface SecurityMiddlewareOptions {
+    enableRateLimiting?: boolean;
+    enableInputValidation?: boolean;
+    enableSecurityHeaders?: boolean;
+    enableAuditLogging?: boolean;
+    enableCsrfProtection?: boolean;
+    enableHsts?: boolean;
+    customHeaders?: Record<string, string>;
+    trustedOrigins?: string[];
+    rateLimitOptions?: Partial<typeof SECURITY_CONFIG.rateLimiting>;
+}
+/**
+ * Core security hardening system
+ */
+export declare class SecurityHardeningSystem extends EventEmitter {
+    private rateLimitStore;
+    private securityEvents;
+    private encryptionKey;
+    private auditLogEnabled;
+    private started;
+    private pendingEncryptionKey;
+    private boundSecurityEvent;
+    private boundRateLimitExceeded;
+    private boundValidationFailure;
+    constructor(encryptionKey?: string);
+    start(): void;
+    /**
+     * Setup event handlers for security events
+     */
+    private setupEventHandlers;
+    destroy(): void;
+    /**
+     * Create security middleware for HTTP requests
+     */
+    createSecurityMiddleware(options?: SecurityMiddlewareOptions): (req: IncomingMessage, res: ServerResponse) => Promise<boolean>;
+    /**
+     * Check rate limiting for requests
+     */
+    private checkRateLimit;
+    /**
+     * Apply security headers to response
+     */
+    private applySecurityHeaders;
+    /**
+     * Validate CSRF token
+     */
+    private validateCsrfToken;
+    /**
+     * Validate and sanitize input data
+     */
+    validateInput(input: unknown, context?: string): ValidationResult;
+    /**
+     * Validate string input
+     */
+    private validateString;
+    /**
+     * Validate object input
+     */
+    private validateObject;
+    /**
+     * Validate array input
+     */
+    private validateArray;
+    /**
+     * Check for security patterns in input
+     */
+    private checkSecurityPatterns;
+    /**
+     * Encrypt sensitive data using AES-256-GCM
+     * SECURITY: Proper encryption with random IV and authentication tag (H-001 fix)
+     *
+     * @param data - Plaintext data to encrypt
+     * @returns Base64-encoded string containing encrypted data + IV + auth tag
+     */
+    encryptData(data: string): string;
+    /**
+     * Decrypt sensitive data using AES-256-GCM
+     * SECURITY: Proper decryption with IV and auth tag verification (H-001 fix)
+     *
+     * @param encryptedData - Base64-encoded string containing encrypted data + IV + auth tag
+     * @returns Decrypted plaintext data
+     * @throws Error if decryption fails or authentication tag doesn't match
+     */
+    decryptData(encryptedData: string): string | null;
+    /**
+     * Hash password securely with unique salt
+     * SECURITY: Generates unique random salt for each password (H-003 fix)
+     */
+    hashPassword(password: string): Promise<{
+        hash: string;
+        salt: string;
+    }>;
+    /**
+     * Verify password hash
+     */
+    verifyPassword(password: string, hash: string, salt: string): Promise<boolean>;
+    /**
+     * Generate secure random token
+     */
+    generateSecureToken(length?: number): string;
+    /**
+     * Log audit event
+     */
+    private logAuditEvent;
+    /**
+     * Sanitize headers for audit logging
+     */
+    private sanitizeHeadersForAudit;
+    /**
+     * Emit security event
+     */
+    private emitSecurityEvent;
+    /**
+     * Handle security events
+     */
+    private handleSecurityEvent;
+    /**
+     * Handle rate limit exceeded
+     */
+    private handleRateLimitExceeded;
+    /**
+     * Handle validation failure
+     */
+    private handleValidationFailure;
+    /**
+     * Get client IP address
+     */
+    private getClientIP;
+    /**
+     * Get rate limit info for IP
+     */
+    private getRateLimitInfo;
+    /**
+     * Get object depth
+     */
+    private getObjectDepth;
+    /**
+     * Cleanup old rate limit entries
+     */
+    private cleanupRateLimitStore;
+    /**
+     * Get security events
+     */
+    getSecurityEvents(limit?: number): SecurityEvent[];
+    /**
+     * Clear security events
+     */
+    clearSecurityEvents(): void;
+    /**
+     * Get security statistics
+     */
+    getSecurityStats(): {
+        totalEvents: number;
+        eventsByType: Record<SecurityEventType, number>;
+        eventsBySeverity: Record<SecuritySeverity, number>;
+        recentEvents: SecurityEvent[];
+    };
+    /**
+     * Enable/disable audit logging
+     */
+    setAuditLogging(enabled: boolean): void;
+}
+export declare const securityHardeningSystem: SecurityHardeningSystem;