@aegis-scan/core 0.2.0

package/dist/config.d.ts

@@ -0,0 +1,8 @@
+import type { AegisConfig } from './types.js';
+/**
+ * Shape of a user-provided config file (aegis.config.json).
+ * `projectPath` and `mode` are always set by CLI args, never from the file.
+ */
+export type ConfigFileShape = Partial<Omit<AegisConfig, 'projectPath' | 'mode'>>;
+export declare function loadConfig(projectPath: string, mode?: AegisConfig['mode']): Promise<AegisConfig>;
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,WAAW,EAAiB,MAAM,YAAY,CAAC;AA8C7D;;;GAGG;AACH,MAAM,MAAM,eAAe,GAAG,OAAO,CAAC,IAAI,CAAC,WAAW,EAAE,aAAa,GAAG,MAAM,CAAC,CAAC,CAAC;AA8BjF,wBAAsB,UAAU,CAC9B,WAAW,EAAE,MAAM,EACnB,IAAI,GAAE,WAAW,CAAC,MAAM,CAAU,GACjC,OAAO,CAAC,WAAW,CAAC,CA0CtB"}

package/dist/config.js

@@ -0,0 +1,111 @@
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { z } from 'zod';
+import { detectStack } from './detect.js';
+const ConfigFileSchema = z.object({
+    stack: z.object({
+        framework: z.string().optional(),
+        database: z.string().optional(),
+        auth: z.string().optional(),
+        ai: z.string().optional(),
+        payment: z.string().optional(),
+        deploy: z.string().optional(),
+        language: z.string().optional(),
+        hasI18n: z.boolean().optional(),
+        hasTests: z.boolean().optional(),
+    }).optional(),
+    locale: z.string().optional(),
+    compliance: z.array(z.string()).optional(),
+    scanners: z.record(z.record(z.unknown())).optional(),
+    rules: z.record(z.string()).optional(),
+    ignore: z.array(z.string()).optional(),
+    target: z.string().optional(),
+}).strict();
+const DEFAULT_IGNORE = [
+    'node_modules',
+    '.git',
+    '.next',
+    '.nuxt',
+    'dist',
+    'build',
+    'coverage',
+    '.turbo',
+    '.vercel',
+    '.cache',
+    'out',
+    '.output',
+    '__pycache__',
+    '.pytest_cache',
+    '.venv',
+    'venv',
+    'vendor',
+    'target',
+    '.gradle',
+    '.idea',
+    '.vscode',
+];
+/**
+ * Attempt to load aegis.config.json from the project directory.
+ * Only JSON config is supported — JS config files are not loaded to avoid
+ * arbitrary code execution.
+ */
+async function loadConfigFile(projectPath) {
+    const jsonPath = path.join(projectPath, 'aegis.config.json');
+    if (fs.existsSync(jsonPath)) {
+        try {
+            const raw = fs.readFileSync(jsonPath, 'utf-8');
+            const parsed = JSON.parse(raw);
+            const result = ConfigFileSchema.safeParse(parsed);
+            if (result.success) {
+                return result.data;
+            }
+            // Validation failed — log warning but don't crash, fall back to auto-detection
+            console.warn(`[aegis] Config validation warning in ${jsonPath}: ${result.error.issues.map((i) => `${i.path.join('.')}: ${i.message}`).join(', ')}. Falling back to auto-detection.`);
+            return null;
+        }
+        catch {
+            // Malformed JSON — fall through
+        }
+    }
+    return null;
+}
+export async function loadConfig(projectPath, mode = 'scan') {
+    if (!fs.existsSync(projectPath)) {
+        throw new Error(`Project path does not exist: ${projectPath}`);
+    }
+    const stack = detectStack(projectPath);
+    const config = {
+        projectPath,
+        stack,
+        mode,
+        ignore: [...DEFAULT_IGNORE],
+    };
+    // Load and merge user config file (values override auto-detected)
+    const fileConfig = await loadConfigFile(projectPath);
+    if (fileConfig) {
+        if (fileConfig.stack) {
+            config.stack = { ...stack, ...fileConfig.stack };
+        }
+        if (fileConfig.locale !== undefined) {
+            config.locale = fileConfig.locale;
+        }
+        if (fileConfig.compliance !== undefined) {
+            config.compliance = fileConfig.compliance;
+        }
+        if (fileConfig.scanners !== undefined) {
+            config.scanners = fileConfig.scanners;
+        }
+        if (fileConfig.rules !== undefined) {
+            config.rules = fileConfig.rules;
+        }
+        if (fileConfig.ignore !== undefined) {
+            // Merge with defaults — never lose node_modules/.git protection
+            config.ignore = [...new Set([...DEFAULT_IGNORE, ...fileConfig.ignore])];
+        }
+        if (fileConfig.target !== undefined) {
+            config.target = fileConfig.target;
+        }
+    }
+    return config;
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAClC,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAG1C,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IAChC,KAAK,EAAE,CAAC,CAAC,MAAM,CAAC;QACd,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAChC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC/B,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC3B,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QACzB,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC9B,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC7B,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC/B,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;QAC/B,QAAQ,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;KACjC,CAAC,CAAC,QAAQ,EAAE;IACb,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,UAAU,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC1C,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE;IACpD,KAAK,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACtC,MAAM,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACtC,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC9B,CAAC,CAAC,MAAM,EAAE,CAAC;AAEZ,MAAM,cAAc,GAAG;IACrB,cAAc;IACd,MAAM;IACN,OAAO;IACP,OAAO;IACP,MAAM;IACN,OAAO;IACP,UAAU;IACV,QAAQ;IACR,SAAS;IACT,QAAQ;IACR,KAAK;IACL,SAAS;IACT,aAAa;IACb,eAAe;IACf,OAAO;IACP,MAAM;IACN,QAAQ;IACR,QAAQ;IACR,SAAS;IACT,OAAO;IACP,SAAS;CACV,CAAC;AAQF;;;;GAIG;AACH,KAAK,UAAU,cAAc,CAAC,WAAmB;IAC/C,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,mBAAmB,CAAC,CAAC;IAC7D,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAC/C,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC/B,MAAM,MAAM,GAAG,gBAAgB,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YAClD,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACnB,OAAO,MAAM,CAAC,IAAuB,CAAC;YACxC,CAAC;YACD,+EAA+E;YAC/E,OAAO,CAAC,IAAI,CACV,wCAAwC,QAAQ,KAAK,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,mCAAmC,CACvK,CAAC;YACF,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,gCAAgC;QAClC,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,WAAmB,EACnB,OAA4B,MAAM;IAElC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CAAC,gCAAgC,WAAW,EAAE,CAAC,CAAC;IACjE,CAAC;IAED,MAAM,KAAK,GAAG,WAAW,CAAC,WAAW,CAAC,CAAC;IAEvC,MAAM,MAAM,GAAgB;QAC1B,WAAW;QACX,KAAK;QACL,IAAI;QACJ,MAAM,EAAE,CAAC,GAAG,cAAc,CAAC;KAC5B,CAAC;IAEF,kEAAkE;IAClE,MAAM,UAAU,GAAG,MAAM,cAAc,CAAC,WAAW,CAAC,CAAC;IACrD,IAAI,UAAU,EAAE,CAAC;QACf,IAAI,UAAU,CAAC,KAAK,EAAE,CAAC;YACrB,MAAM,CAAC,KAAK,GAAG,EAAE,GAAG,KAAK,EAAE,GAAG,UAAU,CAAC,KAAK,EAAmB,CAAC;QACpE,CAAC;QACD,IAAI,UAAU,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;YACpC,MAAM,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC;QACpC,CAAC;QACD,IAAI,UAAU,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;YACxC,MAAM,CAAC,UAAU,GAAG,UAAU,CAAC,UAAU,CAAC;QAC5C,CAAC;QACD,IAAI,UAAU,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;YACtC,MAAM,CAAC,QAAQ,GAAG,UAAU,CAAC,QAAQ,CAAC;QACxC,CAAC;QACD,IAAI,UAAU,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;YACnC,MAAM,CAAC,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC;QAClC,CAAC;QACD,IAAI,UAAU,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;YACpC,gEAAgE;YAChE,MAAM,CAAC,MAAM,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,cAAc,EAAE,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QAC1E,CAAC;QACD,IAAI,UAAU,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;YACpC,MAAM,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC;QACpC,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/detect.d.ts

@@ -0,0 +1,3 @@
+import type { DetectedStack } from './types.js';
+export declare function detectStack(projectPath: string): DetectedStack;
+//# sourceMappingURL=detect.d.ts.map

package/dist/detect.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"detect.d.ts","sourceRoot":"","sources":["../src/detect.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAuBhD,wBAAgB,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,aAAa,CAoM9D"}

package/dist/detect.js

@@ -0,0 +1,250 @@
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+function readJsonSafe(filePath) {
+    try {
+        const content = fs.readFileSync(filePath, 'utf-8');
+        return JSON.parse(content);
+    }
+    catch {
+        return {};
+    }
+}
+function readFileSafe(filePath) {
+    try {
+        return fs.readFileSync(filePath, 'utf-8');
+    }
+    catch {
+        return '';
+    }
+}
+function hasDep(deps, ...names) {
+    return names.some((n) => n in deps);
+}
+export function detectStack(projectPath) {
+    const pkgPath = path.join(projectPath, 'package.json');
+    const pkg = readJsonSafe(pkgPath);
+    const deps = {
+        ...(pkg['dependencies'] ?? {}),
+        ...(pkg['devDependencies'] ?? {}),
+    };
+    // ---- Language ----
+    let language = 'unknown';
+    if (fs.existsSync(path.join(projectPath, 'tsconfig.json')) || hasDep(deps, 'typescript')) {
+        language = 'typescript';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'package.json'))) {
+        language = 'javascript';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'requirements.txt')) || fs.existsSync(path.join(projectPath, 'pyproject.toml'))) {
+        language = 'python';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'Gemfile'))) {
+        language = 'ruby';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'go.mod'))) {
+        language = 'go';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'Cargo.toml'))) {
+        language = 'rust';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'composer.json'))) {
+        language = 'php';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'pom.xml')) || fs.existsSync(path.join(projectPath, 'build.gradle'))) {
+        language = 'java';
+    }
+    // ---- Framework ----
+    let framework = 'unknown';
+    // Check Node/JS frameworks first
+    if (hasDep(deps, 'next')) {
+        framework = 'nextjs';
+    }
+    else if (hasDep(deps, 'nuxt', '@nuxt/core')) {
+        framework = 'nuxt';
+    }
+    else if (hasDep(deps, '@remix-run/react', '@remix-run/node', '@remix-run/serve')) {
+        framework = 'remix';
+    }
+    else if (hasDep(deps, 'astro')) {
+        framework = 'astro';
+    }
+    else if (hasDep(deps, 'svelte', '@sveltejs/kit')) {
+        framework = 'svelte';
+    }
+    else if (hasDep(deps, 'vue', '@vue/core')) {
+        framework = 'vue';
+    }
+    else if (hasDep(deps, 'react', 'react-dom')) {
+        framework = 'react';
+    }
+    else if (hasDep(deps, 'fastify')) {
+        framework = 'fastify';
+    }
+    else if (hasDep(deps, 'express')) {
+        framework = 'express';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'go.mod'))) {
+        framework = 'go';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'Cargo.toml'))) {
+        framework = 'rust';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'requirements.txt')) || fs.existsSync(path.join(projectPath, 'pyproject.toml'))) {
+        const reqContent = readFileSafe(path.join(projectPath, 'requirements.txt'));
+        const pyprojectContent = readFileSafe(path.join(projectPath, 'pyproject.toml'));
+        const combined = reqContent + pyprojectContent;
+        if (/\bdjango\b/i.test(combined)) {
+            framework = 'django';
+        }
+        else if (/\bflask\b/i.test(combined)) {
+            framework = 'flask';
+        }
+    }
+    else if (fs.existsSync(path.join(projectPath, 'Gemfile'))) {
+        const gemfileContent = readFileSafe(path.join(projectPath, 'Gemfile'));
+        if (/\brails\b/i.test(gemfileContent)) {
+            framework = 'rails';
+        }
+    }
+    else if (fs.existsSync(path.join(projectPath, 'composer.json'))) {
+        const composer = readJsonSafe(path.join(projectPath, 'composer.json'));
+        const composerDeps = {
+            ...(composer['require'] ?? {}),
+            ...(composer['require-dev'] ?? {}),
+        };
+        if (hasDep(composerDeps, 'laravel/framework')) {
+            framework = 'laravel';
+        }
+    }
+    // ---- Database ----
+    let database = 'unknown';
+    if (hasDep(deps, '@supabase/supabase-js', '@supabase/ssr', '@supabase/auth-helpers-nextjs')) {
+        database = 'supabase';
+    }
+    else if (hasDep(deps, 'firebase', 'firebase-admin', '@firebase/firestore')) {
+        database = 'firebase';
+    }
+    else if (hasDep(deps, '@prisma/client', 'prisma')) {
+        database = 'prisma';
+    }
+    else if (hasDep(deps, 'drizzle-orm', 'drizzle-kit')) {
+        database = 'drizzle';
+    }
+    else if (hasDep(deps, 'mongoose')) {
+        database = 'mongoose';
+    }
+    else if (hasDep(deps, 'pg', 'postgres', 'node-postgres')) {
+        database = 'raw-pg';
+    }
+    else if (!fs.existsSync(path.join(projectPath, 'package.json')) &&
+        (fs.existsSync(path.join(projectPath, 'requirements.txt')) || fs.existsSync(path.join(projectPath, 'Gemfile')))) {
+        database = 'none';
+    }
+    // ---- Auth ----
+    let auth = 'unknown';
+    if (hasDep(deps, '@supabase/supabase-js', '@supabase/ssr', '@supabase/auth-helpers-nextjs')) {
+        auth = 'supabase-auth';
+    }
+    else if (hasDep(deps, 'next-auth', '@auth/core', '@auth/nextjs')) {
+        auth = 'next-auth';
+    }
+    else if (hasDep(deps, '@clerk/nextjs', '@clerk/clerk-react', '@clerk/clerk-sdk-node')) {
+        auth = 'clerk';
+    }
+    else if (hasDep(deps, 'lucia')) {
+        auth = 'lucia';
+    }
+    else if (hasDep(deps, 'passport', 'passport-local', 'passport-jwt')) {
+        auth = 'passport';
+    }
+    // ---- AI ----
+    let ai = 'unknown';
+    if (hasDep(deps, 'openai', '@openai/openai')) {
+        ai = 'openai';
+    }
+    else if (hasDep(deps, '@anthropic-ai/sdk', 'anthropic')) {
+        ai = 'anthropic';
+    }
+    else if (hasDep(deps, '@mistralai/mistralai', 'mistral', 'mistralai')) {
+        ai = 'mistral';
+    }
+    else if (hasDep(deps, 'ollama', '@ollama/ollama')) {
+        ai = 'ollama';
+    }
+    else {
+        // Check Python requirements for AI libs
+        const reqContent = readFileSafe(path.join(projectPath, 'requirements.txt'));
+        if (/\bopenai\b/i.test(reqContent)) {
+            ai = 'openai';
+        }
+        else if (/\banthropic\b/i.test(reqContent)) {
+            ai = 'anthropic';
+        }
+        else if (/\bmistral/i.test(reqContent)) {
+            ai = 'mistral';
+        }
+        else if (/\bollama\b/i.test(reqContent)) {
+            ai = 'ollama';
+        }
+        else {
+            ai = 'none';
+        }
+    }
+    // ---- Payment ----
+    let payment = 'unknown';
+    if (hasDep(deps, 'stripe', '@stripe/stripe-js', '@stripe/react-stripe-js')) {
+        payment = 'stripe';
+    }
+    else {
+        const reqContent = readFileSafe(path.join(projectPath, 'requirements.txt'));
+        if (/\bstripe\b/i.test(reqContent)) {
+            payment = 'stripe';
+        }
+        else {
+            payment = 'none';
+        }
+    }
+    // ---- Deploy ----
+    let deploy = 'unknown';
+    if (fs.existsSync(path.join(projectPath, 'vercel.json')) || fs.existsSync(path.join(projectPath, '.vercel'))) {
+        deploy = 'vercel';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'Dockerfile')) || fs.existsSync(path.join(projectPath, 'docker-compose.yml')) || fs.existsSync(path.join(projectPath, 'docker-compose.yaml'))) {
+        deploy = 'docker';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'railway.toml')) || fs.existsSync(path.join(projectPath, 'railway.json'))) {
+        deploy = 'railway';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'fly.toml'))) {
+        deploy = 'fly';
+    }
+    else if (fs.existsSync(path.join(projectPath, 'netlify.toml'))) {
+        deploy = 'netlify';
+    }
+    else {
+        deploy = 'none';
+    }
+    // ---- i18n ----
+    const hasI18n = hasDep(deps, 'next-intl', 'react-i18next', 'i18next', 'vue-i18n', '@nuxtjs/i18n', 'react-intl', 'lingui') ||
+        fs.existsSync(path.join(projectPath, 'messages')) ||
+        fs.existsSync(path.join(projectPath, 'locales')) ||
+        fs.existsSync(path.join(projectPath, 'i18n'));
+    // ---- Tests ----
+    const hasTests = hasDep(deps, 'vitest', 'jest', '@jest/core', 'mocha', 'jasmine', 'playwright', '@playwright/test', 'cypress') ||
+        fs.existsSync(path.join(projectPath, '__tests__')) ||
+        fs.existsSync(path.join(projectPath, 'tests')) ||
+        fs.existsSync(path.join(projectPath, 'spec')) ||
+        fs.existsSync(path.join(projectPath, 'e2e'));
+    return {
+        framework,
+        database,
+        auth,
+        ai,
+        payment,
+        deploy,
+        language,
+        hasI18n,
+        hasTests,
+    };
+}
+//# sourceMappingURL=detect.js.map

package/dist/detect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"detect.js","sourceRoot":"","sources":["../src/detect.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAGlC,SAAS,YAAY,CAAC,QAAgB;IACpC,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QACnD,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAA4B,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,QAAgB;IACpC,IAAI,CAAC;QACH,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,SAAS,MAAM,CAAC,IAA6B,EAAE,GAAG,KAAe;IAC/D,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC;AACtC,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,WAAmB;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IACvD,MAAM,GAAG,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;IAElC,MAAM,IAAI,GAA4B;QACpC,GAAG,CAAE,GAAG,CAAC,cAAc,CAA6B,IAAI,EAAE,CAAC;QAC3D,GAAG,CAAE,GAAG,CAAC,iBAAiB,CAA6B,IAAI,EAAE,CAAC;KAC/D,CAAC;IAEF,qBAAqB;IACrB,IAAI,QAAQ,GAA8B,SAAS,CAAC;IACpD,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,eAAe,CAAC,CAAC,IAAI,MAAM,CAAC,IAAI,EAAE,YAAY,CAAC,EAAE,CAAC;QACzF,QAAQ,GAAG,YAAY,CAAC;IAC1B,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC,EAAE,CAAC;QACjE,QAAQ,GAAG,YAAY,CAAC;IAC1B,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC,CAAC,EAAE,CAAC;QAChI,QAAQ,GAAG,QAAQ,CAAC;IACtB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,EAAE,CAAC;QAC5D,QAAQ,GAAG,MAAM,CAAC;IACpB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC,EAAE,CAAC;QAC3D,QAAQ,GAAG,IAAI,CAAC;IAClB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC,EAAE,CAAC;QAC/D,QAAQ,GAAG,MAAM,CAAC;IACpB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,eAAe,CAAC,CAAC,EAAE,CAAC;QAClE,QAAQ,GAAG,KAAK,CAAC;IACnB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC,EAAE,CAAC;QACrH,QAAQ,GAAG,MAAM,CAAC;IACpB,CAAC;IAED,sBAAsB;IACtB,IAAI,SAAS,GAA+B,SAAS,CAAC;IAEtD,iCAAiC;IACjC,IAAI,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,EAAE,CAAC;QACzB,SAAS,GAAG,QAAQ,CAAC;IACvB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,CAAC;QAC9C,SAAS,GAAG,MAAM,CAAC;IACrB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,kBAAkB,CAAC,EAAE,CAAC;QACnF,SAAS,GAAG,OAAO,CAAC;IACtB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,EAAE,CAAC;QACjC,SAAS,GAAG,OAAO,CAAC;IACtB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,QAAQ,EAAE,eAAe,CAAC,EAAE,CAAC;QACnD,SAAS,GAAG,QAAQ,CAAC;IACvB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,KAAK,EAAE,WAAW,CAAC,EAAE,CAAC;QAC5C,SAAS,GAAG,KAAK,CAAC;IACpB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,OAAO,EAAE,WAAW,CAAC,EAAE,CAAC;QAC9C,SAAS,GAAG,OAAO,CAAC;IACtB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,SAAS,CAAC,EAAE,CAAC;QACnC,SAAS,GAAG,SAAS,CAAC;IACxB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,SAAS,CAAC,EAAE,CAAC;QACnC,SAAS,GAAG,SAAS,CAAC;IACxB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC,EAAE,CAAC;QAC3D,SAAS,GAAG,IAAI,CAAC;IACnB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC,EAAE,CAAC;QAC/D,SAAS,GAAG,MAAM,CAAC;IACrB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC,CAAC,EAAE,CAAC;QAChI,MAAM,UAAU,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAC,CAAC;QAC5E,MAAM,gBAAgB,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC,CAAC,CAAC;QAChF,MAAM,QAAQ,GAAG,UAAU,GAAG,gBAAgB,CAAC;QAC/C,IAAI,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACjC,SAAS,GAAG,QAAQ,CAAC;QACvB,CAAC;aAAM,IAAI,YAAY,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACvC,SAAS,GAAG,OAAO,CAAC;QACtB,CAAC;IACH,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,EAAE,CAAC;QAC5D,MAAM,cAAc,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,CAAC;QACvE,IAAI,YAAY,CAAC,IAAI,CAAC,cAAc,CAAC,EAAE,CAAC;YACtC,SAAS,GAAG,OAAO,CAAC;QACtB,CAAC;IACH,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,eAAe,CAAC,CAAC,EAAE,CAAC;QAClE,MAAM,QAAQ,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,eAAe,CAAC,CAAC,CAAC;QACvE,MAAM,YAAY,GAA4B;YAC5C,GAAG,CAAE,QAAQ,CAAC,SAAS,CAA6B,IAAI,EAAE,CAAC;YAC3D,GAAG,CAAE,QAAQ,CAAC,aAAa,CAA6B,IAAI,EAAE,CAAC;SAChE,CAAC;QACF,IAAI,MAAM,CAAC,YAAY,EAAE,mBAAmB,CAAC,EAAE,CAAC;YAC9C,SAAS,GAAG,SAAS,CAAC;QACxB,CAAC;IACH,CAAC;IAED,qBAAqB;IACrB,IAAI,QAAQ,GAA8B,SAAS,CAAC;IACpD,IAAI,MAAM,CAAC,IAAI,EAAE,uBAAuB,EAAE,eAAe,EAAE,+BAA+B,CAAC,EAAE,CAAC;QAC5F,QAAQ,GAAG,UAAU,CAAC;IACxB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,UAAU,EAAE,gBAAgB,EAAE,qBAAqB,CAAC,EAAE,CAAC;QAC7E,QAAQ,GAAG,UAAU,CAAC;IACxB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,gBAAgB,EAAE,QAAQ,CAAC,EAAE,CAAC;QACpD,QAAQ,GAAG,QAAQ,CAAC;IACtB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,aAAa,EAAE,aAAa,CAAC,EAAE,CAAC;QACtD,QAAQ,GAAG,SAAS,CAAC;IACvB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE,CAAC;QACpC,QAAQ,GAAG,UAAU,CAAC;IACxB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,IAAI,EAAE,UAAU,EAAE,eAAe,CAAC,EAAE,CAAC;QAC3D,QAAQ,GAAG,QAAQ,CAAC;IACtB,CAAC;SAAM,IACL,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;QACtD,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,CAAC,EAC/G,CAAC;QACD,QAAQ,GAAG,MAAM,CAAC;IACpB,CAAC;IAED,iBAAiB;IACjB,IAAI,IAAI,GAA0B,SAAS,CAAC;IAC5C,IAAI,MAAM,CAAC,IAAI,EAAE,uBAAuB,EAAE,eAAe,EAAE,+BAA+B,CAAC,EAAE,CAAC;QAC5F,IAAI,GAAG,eAAe,CAAC;IACzB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,WAAW,EAAE,YAAY,EAAE,cAAc,CAAC,EAAE,CAAC;QACnE,IAAI,GAAG,WAAW,CAAC;IACrB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,eAAe,EAAE,oBAAoB,EAAE,uBAAuB,CAAC,EAAE,CAAC;QACxF,IAAI,GAAG,OAAO,CAAC;IACjB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,EAAE,CAAC;QACjC,IAAI,GAAG,OAAO,CAAC;IACjB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,UAAU,EAAE,gBAAgB,EAAE,cAAc,CAAC,EAAE,CAAC;QACtE,IAAI,GAAG,UAAU,CAAC;IACpB,CAAC;IAED,eAAe;IACf,IAAI,EAAE,GAAwB,SAAS,CAAC;IACxC,IAAI,MAAM,CAAC,IAAI,EAAE,QAAQ,EAAE,gBAAgB,CAAC,EAAE,CAAC;QAC7C,EAAE,GAAG,QAAQ,CAAC;IAChB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,mBAAmB,EAAE,WAAW,CAAC,EAAE,CAAC;QAC1D,EAAE,GAAG,WAAW,CAAC;IACnB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,sBAAsB,EAAE,SAAS,EAAE,WAAW,CAAC,EAAE,CAAC;QACxE,EAAE,GAAG,SAAS,CAAC;IACjB,CAAC;SAAM,IAAI,MAAM,CAAC,IAAI,EAAE,QAAQ,EAAE,gBAAgB,CAAC,EAAE,CAAC;QACpD,EAAE,GAAG,QAAQ,CAAC;IAChB,CAAC;SAAM,CAAC;QACN,wCAAwC;QACxC,MAAM,UAAU,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAC,CAAC;QAC5E,IAAI,aAAa,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;YACnC,EAAE,GAAG,QAAQ,CAAC;QAChB,CAAC;aAAM,IAAI,gBAAgB,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;YAC7C,EAAE,GAAG,WAAW,CAAC;QACnB,CAAC;aAAM,IAAI,YAAY,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;YACzC,EAAE,GAAG,SAAS,CAAC;QACjB,CAAC;aAAM,IAAI,aAAa,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;YAC1C,EAAE,GAAG,QAAQ,CAAC;QAChB,CAAC;aAAM,CAAC;YACN,EAAE,GAAG,MAAM,CAAC;QACd,CAAC;IACH,CAAC;IAED,oBAAoB;IACpB,IAAI,OAAO,GAA6B,SAAS,CAAC;IAClD,IAAI,MAAM,CAAC,IAAI,EAAE,QAAQ,EAAE,mBAAmB,EAAE,yBAAyB,CAAC,EAAE,CAAC;QAC3E,OAAO,GAAG,QAAQ,CAAC;IACrB,CAAC;SAAM,CAAC;QACN,MAAM,UAAU,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAC,CAAC;QAC5E,IAAI,aAAa,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;YACnC,OAAO,GAAG,QAAQ,CAAC;QACrB,CAAC;aAAM,CAAC;YACN,OAAO,GAAG,MAAM,CAAC;QACnB,CAAC;IACH,CAAC;IAED,mBAAmB;IACnB,IAAI,MAAM,GAA4B,SAAS,CAAC;IAChD,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,EAAE,CAAC;QAC7G,MAAM,GAAG,QAAQ,CAAC;IACpB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,oBAAoB,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,qBAAqB,CAAC,CAAC,EAAE,CAAC;QAC9L,MAAM,GAAG,QAAQ,CAAC;IACpB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC,EAAE,CAAC;QAC1H,MAAM,GAAG,SAAS,CAAC;IACrB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC,EAAE,CAAC;QAC7D,MAAM,GAAG,KAAK,CAAC;IACjB,CAAC;SAAM,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC,EAAE,CAAC;QACjE,MAAM,GAAG,SAAS,CAAC;IACrB,CAAC;SAAM,CAAC;QACN,MAAM,GAAG,MAAM,CAAC;IAClB,CAAC;IAED,iBAAiB;IACjB,MAAM,OAAO,GACX,MAAM,CAAC,IAAI,EAAE,WAAW,EAAE,eAAe,EAAE,SAAS,EAAE,UAAU,EAAE,cAAc,EAAE,YAAY,EAAE,QAAQ,CAAC;QACzG,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC;QACjD,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;QAChD,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC;IAEhD,kBAAkB;IAClB,MAAM,QAAQ,GACZ,MAAM,CAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,kBAAkB,EAAE,SAAS,CAAC;QAC7G,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,CAAC,CAAC;QAClD,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;QAC9C,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QAC7C,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,CAAC;IAE/C,OAAO;QACL,SAAS;QACT,QAAQ;QACR,IAAI;QACJ,EAAE;QACF,OAAO;QACP,MAAM;QACN,QAAQ;QACR,OAAO;QACP,QAAQ;KACT,CAAC;AACJ,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,8 @@
+export * from './types.js';
+export { detectStack } from './detect.js';
+export { calculateScore, getGrade, getBadge, CATEGORY_WEIGHTS } from './scoring.js';
+export { loadConfig, type ConfigFileShape } from './config.js';
+export { Orchestrator } from './orchestrator.js';
+export { exec, commandExists, walkFiles, readFileSafe, clearWalkFilesCache, type ExecResult, type ExecOptions } from './utils.js';
+export { getVersion } from './version.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,QAAQ,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AACpF,OAAO,EAAE,UAAU,EAAE,KAAK,eAAe,EAAE,MAAM,aAAa,CAAC;AAC/D,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,IAAI,EAAE,aAAa,EAAE,SAAS,EAAE,YAAY,EAAE,mBAAmB,EAAE,KAAK,UAAU,EAAE,KAAK,WAAW,EAAE,MAAM,YAAY,CAAC;AAClI,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC"}

package/dist/index.js

@@ -0,0 +1,8 @@
+export * from './types.js';
+export { detectStack } from './detect.js';
+export { calculateScore, getGrade, getBadge, CATEGORY_WEIGHTS } from './scoring.js';
+export { loadConfig } from './config.js';
+export { Orchestrator } from './orchestrator.js';
+export { exec, commandExists, walkFiles, readFileSafe, clearWalkFilesCache } from './utils.js';
+export { getVersion } from './version.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,QAAQ,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AACpF,OAAO,EAAE,UAAU,EAAwB,MAAM,aAAa,CAAC;AAC/D,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,IAAI,EAAE,aAAa,EAAE,SAAS,EAAE,YAAY,EAAE,mBAAmB,EAAqC,MAAM,YAAY,CAAC;AAClI,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC"}

package/dist/orchestrator.d.ts

@@ -0,0 +1,7 @@
+import type { Scanner, AegisConfig, AuditResult } from './types.js';
+export declare class Orchestrator {
+    private scanners;
+    register(scanner: Scanner): void;
+    run(config: AegisConfig): Promise<AuditResult>;
+}
+//# sourceMappingURL=orchestrator.d.ts.map

package/dist/orchestrator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"orchestrator.d.ts","sourceRoot":"","sources":["../src/orchestrator.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,WAAW,EAAE,WAAW,EAAmC,MAAM,YAAY,CAAC;AAcrG,qBAAa,YAAY;IACvB,OAAO,CAAC,QAAQ,CAAiB;IAEjC,QAAQ,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI;IAI1B,GAAG,CAAC,MAAM,EAAE,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;CAiGrD"}

package/dist/orchestrator.js

@@ -0,0 +1,101 @@
+import { calculateScore } from './scoring.js';
+const SCANNER_TIMEOUT_MS = 120_000; // 2 minutes per scanner
+function withTimeout(promise, ms, label) {
+    return new Promise((resolve, reject) => {
+        const timer = setTimeout(() => reject(new Error(`Scanner '${label}' timed out after ${ms / 1000}s`)), ms);
+        promise.then((val) => { clearTimeout(timer); resolve(val); }, (err) => { clearTimeout(timer); reject(err); });
+    });
+}
+export class Orchestrator {
+    scanners = [];
+    register(scanner) {
+        this.scanners.push(scanner);
+    }
+    async run(config) {
+        const startTime = Date.now();
+        // Check availability and run all scanners in parallel
+        const scanPromises = this.scanners.map(async (scanner) => {
+            let available;
+            try {
+                available = await scanner.isAvailable(config.projectPath);
+            }
+            catch {
+                available = false;
+            }
+            if (!available) {
+                return {
+                    scanner: scanner.name,
+                    category: scanner.category,
+                    findings: [],
+                    duration: 0,
+                    available: false,
+                };
+            }
+            const scanStart = Date.now();
+            try {
+                const result = await withTimeout(scanner.scan(config.projectPath, config), SCANNER_TIMEOUT_MS, scanner.name);
+                return {
+                    ...result,
+                    available: true,
+                    duration: result.duration ?? Date.now() - scanStart,
+                };
+            }
+            catch (err) {
+                return {
+                    scanner: scanner.name,
+                    category: scanner.category,
+                    findings: [],
+                    duration: Date.now() - scanStart,
+                    available: true,
+                    error: err instanceof Error ? err.message : String(err),
+                };
+            }
+        });
+        const scanResults = await Promise.all(scanPromises);
+        // Aggregate and deduplicate findings (same file + line + title = duplicate)
+        const rawFindings = scanResults.flatMap((r) => r.findings);
+        const seen = new Set();
+        const allFindings = [];
+        for (const f of rawFindings) {
+            const key = `${f.file ?? ''}:${f.line ?? 0}:${f.title}`;
+            if (!seen.has(key)) {
+                seen.add(key);
+                allFindings.push(f);
+            }
+        }
+        // Calculate confidence based on SECURITY-focused external tools.
+        // npm-audit, react-doctor, license-checker are always available (built-in node tools)
+        // and don't indicate real external security tool installation.
+        const SECURITY_EXTERNAL_NAMES = ['semgrep', 'gitleaks', 'nuclei', 'trivy', 'testssl', 'zap', 'trufflehog'];
+        const securityExternals = scanResults.filter((r) => SECURITY_EXTERNAL_NAMES.includes(r.scanner));
+        const securityAvailable = securityExternals.filter((r) => r.available).length;
+        let confidence;
+        if (securityAvailable >= 2) {
+            confidence = 'high';
+        }
+        else if (securityAvailable >= 1) {
+            confidence = 'medium';
+        }
+        else {
+            confidence = 'low';
+        }
+        // Calculate score (confidence is passed so scoring can cap grade when low)
+        const scoreResult = calculateScore(allFindings, confidence);
+        const duration = Date.now() - startTime;
+        return {
+            score: scoreResult.score,
+            grade: scoreResult.grade,
+            badge: scoreResult.badge,
+            blocked: scoreResult.blocked,
+            blockerReason: scoreResult.blockerReason,
+            breakdown: scoreResult.breakdown,
+            findings: allFindings,
+            scanResults,
+            stack: config.stack,
+            duration,
+            timestamp: new Date().toISOString(),
+            confidence,
+        };
+    }
+}
+//# sourceMappingURL=orchestrator.js.map

package/dist/orchestrator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"orchestrator.js","sourceRoot":"","sources":["../src/orchestrator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAG9C,MAAM,kBAAkB,GAAG,OAAO,CAAC,CAAC,wBAAwB;AAE5D,SAAS,WAAW,CAAI,OAAmB,EAAE,EAAU,EAAE,KAAa;IACpE,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,YAAY,KAAK,qBAAqB,EAAE,GAAG,IAAI,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAC1G,OAAO,CAAC,IAAI,CACV,CAAC,GAAG,EAAE,EAAE,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAC/C,CAAC,GAAG,EAAE,EAAE,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAC/C,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,OAAO,YAAY;IACf,QAAQ,GAAc,EAAE,CAAC;IAEjC,QAAQ,CAAC,OAAgB;QACvB,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAC9B,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,MAAmB;QAC3B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,sDAAsD;QACtD,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,EAAuB,EAAE;YAC5E,IAAI,SAAkB,CAAC;YACvB,IAAI,CAAC;gBACH,SAAS,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YAC5D,CAAC;YAAC,MAAM,CAAC;gBACP,SAAS,GAAG,KAAK,CAAC;YACpB,CAAC;YAED,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,OAAO;oBACL,OAAO,EAAE,OAAO,CAAC,IAAI;oBACrB,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,QAAQ,EAAE,EAAE;oBACZ,QAAQ,EAAE,CAAC;oBACX,SAAS,EAAE,KAAK;iBACjB,CAAC;YACJ,CAAC;YAED,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC7B,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,WAAW,CAC9B,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,EACxC,kBAAkB,EAClB,OAAO,CAAC,IAAI,CACb,CAAC;gBACF,OAAO;oBACL,GAAG,MAAM;oBACT,SAAS,EAAE,IAAI;oBACf,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;iBACpD,CAAC;YACJ,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO;oBACL,OAAO,EAAE,OAAO,CAAC,IAAI;oBACrB,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,QAAQ,EAAE,EAAE;oBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;oBAChC,SAAS,EAAE,IAAI;oBACf,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;iBACxD,CAAC;YACJ,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAEpD,4EAA4E;QAC5E,MAAM,WAAW,GAAc,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;QACtE,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;QAC/B,MAAM,WAAW,GAAc,EAAE,CAAC;QAClC,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;YAC5B,MAAM,GAAG,GAAG,GAAG,CAAC,CAAC,IAAI,IAAI,EAAE,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;YACxD,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;gBACnB,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACd,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YACtB,CAAC;QACH,CAAC;QAED,iEAAiE;QACjE,sFAAsF;QACtF,+DAA+D;QAC/D,MAAM,uBAAuB,GAAG,CAAC,SAAS,EAAE,UAAU,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;QAC3G,MAAM,iBAAiB,GAAG,WAAW,CAAC,MAAM,CAC1C,CAAC,CAAC,EAAE,EAAE,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CACnD,CAAC;QACF,MAAM,iBAAiB,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC;QAC9E,IAAI,UAAsB,CAAC;QAC3B,IAAI,iBAAiB,IAAI,CAAC,EAAE,CAAC;YAC3B,UAAU,GAAG,MAAM,CAAC;QACtB,CAAC;aAAM,IAAI,iBAAiB,IAAI,CAAC,EAAE,CAAC;YAClC,UAAU,GAAG,QAAQ,CAAC;QACxB,CAAC;aAAM,CAAC;YACN,UAAU,GAAG,KAAK,CAAC;QACrB,CAAC;QAED,2EAA2E;QAC3E,MAAM,WAAW,GAAG,cAAc,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC;QAE5D,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAExC,OAAO;YACL,KAAK,EAAE,WAAW,CAAC,KAAK;YACxB,KAAK,EAAE,WAAW,CAAC,KAAK;YACxB,KAAK,EAAE,WAAW,CAAC,KAAK;YACxB,OAAO,EAAE,WAAW,CAAC,OAAO;YAC5B,aAAa,EAAE,WAAW,CAAC,aAAa;YACxC,SAAS,EAAE,WAAW,CAAC,SAAS;YAChC,QAAQ,EAAE,WAAW;YACrB,WAAW;YACX,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,QAAQ;YACR,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,UAAU;SACX,CAAC;IACJ,CAAC;CACF"}

package/dist/scoring.d.ts

@@ -0,0 +1,15 @@
+import type { Finding, ScanCategory, Grade, Badge, AuditResult, Confidence } from './types.js';
+export declare const CATEGORY_WEIGHTS: Record<ScanCategory, number>;
+export declare function getGrade(score: number): Grade;
+export declare function getBadge(grade: Grade): Badge;
+export interface ScoreResult {
+    score: number;
+    grade: Grade;
+    badge: Badge;
+    blocked: boolean;
+    blockerReason?: string;
+    breakdown: AuditResult['breakdown'];
+    confidence: Confidence;
+}
+export declare function calculateScore(findings: Finding[], confidence?: Confidence): ScoreResult;
+//# sourceMappingURL=scoring.d.ts.map

package/dist/scoring.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scoring.d.ts","sourceRoot":"","sources":["../src/scoring.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,YAAY,EAAE,KAAK,EAAE,KAAK,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAK/F,eAAO,MAAM,gBAAgB,EAAE,MAAM,CAAC,YAAY,EAAE,MAAM,CAazD,CAAC;AAYF,wBAAgB,QAAQ,CAAC,KAAK,EAAE,MAAM,GAAG,KAAK,CAO7C;AAED,wBAAgB,QAAQ,CAAC,KAAK,EAAE,KAAK,GAAG,KAAK,CAU5C;AAED,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,KAAK,CAAC;IACb,KAAK,EAAE,KAAK,CAAC;IACb,OAAO,EAAE,OAAO,CAAC;IACjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,WAAW,CAAC,WAAW,CAAC,CAAC;IACpC,UAAU,EAAE,UAAU,CAAC;CACxB;AAED,wBAAgB,cAAc,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,UAAU,GAAE,UAAmB,GAAG,WAAW,CAuDhG"}

package/dist/scoring.js

@@ -0,0 +1,130 @@
+// Spec-specified relative weights. These do NOT need to sum to 1.0 here;
+// calculateScore normalizes by dividing each weight by the sum so the
+// final score is always on a 0–1000 scale regardless.
+export const CATEGORY_WEIGHTS = {
+    security: 0.20,
+    dast: 0.10,
+    dependencies: 0.10,
+    compliance: 0.10,
+    quality: 0.075,
+    infrastructure: 0.075,
+    accessibility: 0.05,
+    performance: 0.05,
+    'ai-llm': 0.05,
+    i18n: 0.025,
+    runtime: 0.025,
+    attack: 0.05,
+};
+/** Base deduction per finding severity. Actual deduction uses diminishing returns. */
+const SEVERITY_BASE_DEDUCTIONS = {
+    blocker: Infinity,
+    critical: 40,
+    high: 15,
+    medium: 5,
+    low: 1,
+    info: 0,
+};
+export function getGrade(score) {
+    if (score >= 950)
+        return 'S';
+    if (score >= 850)
+        return 'A';
+    if (score >= 700)
+        return 'B';
+    if (score >= 500)
+        return 'C';
+    if (score >= 300)
+        return 'D';
+    return 'F';
+}
+export function getBadge(grade) {
+    const map = {
+        S: 'FORTRESS',
+        A: 'HARDENED',
+        B: 'SOLID',
+        C: 'NEEDS_WORK',
+        D: 'AT_RISK',
+        F: 'CRITICAL',
+    };
+    return map[grade];
+}
+export function calculateScore(findings, confidence = 'high') {
+    // Check for blockers first — scanners are responsible for emitting severity: 'blocker'
+    const blockerFinding = findings.find((f) => f.severity === 'blocker');
+    if (blockerFinding) {
+        const breakdown = buildBreakdown(findings);
+        // Force all scores to 0
+        for (const cat of Object.keys(breakdown)) {
+            breakdown[cat].score = 0;
+        }
+        return {
+            score: 0,
+            grade: 'F',
+            badge: 'CRITICAL',
+            blocked: true,
+            blockerReason: `Blocker finding: ${blockerFinding.title} (${blockerFinding.id})`,
+            breakdown,
+            confidence,
+        };
+    }
+    const breakdown = buildBreakdown(findings);
+    // Normalize weights so they sum to 1.0, preserving relative ratios
+    const weightSum = Object.values(CATEGORY_WEIGHTS).reduce((a, b) => a + b, 0);
+    // Calculate weighted total score (0–1000)
+    let totalScore = 0;
+    for (const [cat, weight] of Object.entries(CATEGORY_WEIGHTS)) {
+        const catData = breakdown[cat];
+        const catScore = catData.score; // already 0–1000 for this category
+        totalScore += catScore * (weight / weightSum);
+    }
+    // Round to nearest integer
+    const score = Math.round(totalScore);
+    let grade = getGrade(score);
+    let badge = getBadge(grade);
+    // Cap grade when confidence is low — S requires comprehensive scanning
+    // A is still achievable with low confidence, but S (FORTRESS) requires proof
+    if (confidence === 'low' && grade === 'S') {
+        grade = 'A';
+        badge = getBadge(grade);
+    }
+    return {
+        score,
+        grade,
+        badge,
+        blocked: false,
+        breakdown,
+        confidence,
+    };
+}
+function buildBreakdown(findings) {
+    // Initialize breakdown with full scores per category
+    const breakdown = {};
+    for (const cat of Object.keys(CATEGORY_WEIGHTS)) {
+        breakdown[cat] = { score: 1000, maxScore: 1000, findings: 0 };
+    }
+    // Apply deductions per category with diminishing returns.
+    // Each subsequent finding of the same category deducts less (1/sqrt(n) scaling).
+    // This prevents 40 HIGH findings from completely zeroing a category while
+    // still penalizing projects with more findings.
+    const categoryFindingCount = {};
+    for (const finding of findings) {
+        const cat = finding.category;
+        if (!(cat in breakdown))
+            continue;
+        breakdown[cat].findings += 1;
+        const baseDeduction = SEVERITY_BASE_DEDUCTIONS[finding.severity] ?? 0;
+        if (baseDeduction === Infinity) {
+            breakdown[cat].score = 0;
+            continue;
+        }
+        if (baseDeduction === 0)
+            continue;
+        // Diminishing returns: nth finding deducts base / sqrt(n)
+        categoryFindingCount[cat] = (categoryFindingCount[cat] ?? 0) + 1;
+        const n = categoryFindingCount[cat];
+        const actualDeduction = baseDeduction / Math.sqrt(n);
+        breakdown[cat].score = Math.max(0, breakdown[cat].score - actualDeduction);
+    }
+    return breakdown;
+}
+//# sourceMappingURL=scoring.js.map

package/dist/scoring.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scoring.js","sourceRoot":"","sources":["../src/scoring.ts"],"names":[],"mappings":"AAEA,yEAAyE;AACzE,sEAAsE;AACtE,sDAAsD;AACtD,MAAM,CAAC,MAAM,gBAAgB,GAAiC;IAC5D,QAAQ,EAAE,IAAI;IACd,IAAI,EAAE,IAAI;IACV,YAAY,EAAE,IAAI;IAClB,UAAU,EAAE,IAAI;IAChB,OAAO,EAAE,KAAK;IACd,cAAc,EAAE,KAAK;IACrB,aAAa,EAAE,IAAI;IACnB,WAAW,EAAE,IAAI;IACjB,QAAQ,EAAE,IAAI;IACd,IAAI,EAAE,KAAK;IACX,OAAO,EAAE,KAAK;IACd,MAAM,EAAE,IAAI;CACb,CAAC;AAEF,sFAAsF;AACtF,MAAM,wBAAwB,GAA2B;IACvD,OAAO,EAAE,QAAQ;IACjB,QAAQ,EAAE,EAAE;IACZ,IAAI,EAAE,EAAE;IACR,MAAM,EAAE,CAAC;IACT,GAAG,EAAE,CAAC;IACN,IAAI,EAAE,CAAC;CACR,CAAC;AAEF,MAAM,UAAU,QAAQ,CAAC,KAAa;IACpC,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,GAAG,CAAC;IAC7B,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,GAAG,CAAC;IAC7B,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,GAAG,CAAC;IAC7B,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,GAAG,CAAC;IAC7B,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,GAAG,CAAC;IAC7B,OAAO,GAAG,CAAC;AACb,CAAC;AAED,MAAM,UAAU,QAAQ,CAAC,KAAY;IACnC,MAAM,GAAG,GAAyB;QAChC,CAAC,EAAE,UAAU;QACb,CAAC,EAAE,UAAU;QACb,CAAC,EAAE,OAAO;QACV,CAAC,EAAE,YAAY;QACf,CAAC,EAAE,SAAS;QACZ,CAAC,EAAE,UAAU;KACd,CAAC;IACF,OAAO,GAAG,CAAC,KAAK,CAAC,CAAC;AACpB,CAAC;AAYD,MAAM,UAAU,cAAc,CAAC,QAAmB,EAAE,aAAyB,MAAM;IACjF,uFAAuF;IACvF,MAAM,cAAc,GAAG,QAAQ,CAAC,IAAI,CAClC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAChC,CAAC;IACF,IAAI,cAAc,EAAE,CAAC;QACnB,MAAM,SAAS,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;QAC3C,wBAAwB;QACxB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,CAAmB,EAAE,CAAC;YAC3D,SAAS,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC;QAC3B,CAAC;QACD,OAAO;YACL,KAAK,EAAE,CAAC;YACR,KAAK,EAAE,GAAG;YACV,KAAK,EAAE,UAAU;YACjB,OAAO,EAAE,IAAI;YACb,aAAa,EAAE,oBAAoB,cAAc,CAAC,KAAK,KAAK,cAAc,CAAC,EAAE,GAAG;YAChF,SAAS;YACT,UAAU;SACX,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;IAE3C,mEAAmE;IACnE,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;IAE7E,0CAA0C;IAC1C,IAAI,UAAU,GAAG,CAAC,CAAC;IACnB,KAAK,MAAM,CAAC,GAAG,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,gBAAgB,CAA6B,EAAE,CAAC;QACzF,MAAM,OAAO,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,mCAAmC;QACnE,UAAU,IAAI,QAAQ,GAAG,CAAC,MAAM,GAAG,SAAS,CAAC,CAAC;IAChD,CAAC;IAED,2BAA2B;IAC3B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;IACrC,IAAI,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC5B,IAAI,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;IAE5B,uEAAuE;IACvE,6EAA6E;IAC7E,IAAI,UAAU,KAAK,KAAK,IAAI,KAAK,KAAK,GAAG,EAAE,CAAC;QAC1C,KAAK,GAAG,GAAG,CAAC;QACZ,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC1B,CAAC;IAED,OAAO;QACL,KAAK;QACL,KAAK;QACL,KAAK;QACL,OAAO,EAAE,KAAK;QACd,SAAS;QACT,UAAU;KACX,CAAC;AACJ,CAAC;AAED,SAAS,cAAc,CAAC,QAAmB;IACzC,qDAAqD;IACrD,MAAM,SAAS,GAAG,EAA8B,CAAC;IACjD,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAmB,EAAE,CAAC;QAClE,SAAS,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC;IAChE,CAAC;IAED,0DAA0D;IAC1D,iFAAiF;IACjF,0EAA0E;IAC1E,gDAAgD;IAChD,MAAM,oBAAoB,GAA2B,EAAE,CAAC;IAExD,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC;QAC7B,IAAI,CAAC,CAAC,GAAG,IAAI,SAAS,CAAC;YAAE,SAAS;QAElC,SAAS,CAAC,GAAG,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC;QAC7B,MAAM,aAAa,GAAG,wBAAwB,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACtE,IAAI,aAAa,KAAK,QAAQ,EAAE,CAAC;YAC/B,SAAS,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC;YACzB,SAAS;QACX,CAAC;QACD,IAAI,aAAa,KAAK,CAAC;YAAE,SAAS;QAElC,0DAA0D;QAC1D,oBAAoB,CAAC,GAAG,CAAC,GAAG,CAAC,oBAAoB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QACjE,MAAM,CAAC,GAAG,oBAAoB,CAAC,GAAG,CAAC,CAAC;QACpC,MAAM,eAAe,GAAG,aAAa,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACrD,SAAS,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG,eAAe,CAAC,CAAC;IAC7E,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,81 @@
+export type Severity = 'blocker' | 'critical' | 'high' | 'medium' | 'low' | 'info';
+export type ScanCategory = 'security' | 'dast' | 'dependencies' | 'compliance' | 'quality' | 'accessibility' | 'performance' | 'infrastructure' | 'i18n' | 'ai-llm' | 'runtime' | 'attack';
+export interface Finding {
+    id: string;
+    scanner: string;
+    category: ScanCategory;
+    severity: Severity;
+    title: string;
+    description: string;
+    file?: string;
+    line?: number;
+    column?: number;
+    fix?: string;
+    owasp?: string;
+    cwe?: number;
+    reference?: string;
+}
+export interface ScanResult {
+    scanner: string;
+    category: ScanCategory;
+    findings: Finding[];
+    score?: number;
+    duration: number;
+    available: boolean;
+    error?: string;
+}
+export interface Scanner {
+    name: string;
+    description: string;
+    category: ScanCategory;
+    isAvailable(projectPath: string): Promise<boolean>;
+    scan(projectPath: string, config: AegisConfig): Promise<ScanResult>;
+}
+export interface DetectedStack {
+    framework: 'nextjs' | 'react' | 'vue' | 'svelte' | 'nuxt' | 'astro' | 'remix' | 'express' | 'fastify' | 'django' | 'flask' | 'rails' | 'laravel' | 'spring' | 'go' | 'rust' | 'unknown';
+    database: 'supabase' | 'firebase' | 'prisma' | 'drizzle' | 'mongoose' | 'raw-pg' | 'none' | 'unknown';
+    auth: 'supabase-auth' | 'next-auth' | 'clerk' | 'lucia' | 'passport' | 'none' | 'unknown';
+    ai: 'openai' | 'anthropic' | 'mistral' | 'ollama' | 'none' | 'unknown';
+    payment: 'stripe' | 'none' | 'unknown';
+    deploy: 'vercel' | 'docker' | 'railway' | 'fly' | 'netlify' | 'none' | 'unknown';
+    language: 'typescript' | 'javascript' | 'python' | 'ruby' | 'go' | 'rust' | 'php' | 'java' | 'unknown';
+    hasI18n: boolean;
+    hasTests: boolean;
+}
+export interface AegisConfig {
+    projectPath: string;
+    stack: DetectedStack;
+    locale?: string;
+    compliance?: string[];
+    scanners?: Record<string, Record<string, unknown>>;
+    rules?: Record<string, Severity>;
+    ignore?: string[];
+    target?: string;
+    mode: 'scan' | 'audit' | 'pentest' | 'siege' | 'fortress';
+}
+export type Grade = 'S' | 'A' | 'B' | 'C' | 'D' | 'F';
+export type Badge = 'FORTRESS' | 'HARDENED' | 'SOLID' | 'NEEDS_WORK' | 'AT_RISK' | 'CRITICAL';
+export type Confidence = 'low' | 'medium' | 'high';
+export interface AuditResult {
+    score: number;
+    grade: Grade;
+    badge: Badge;
+    blocked: boolean;
+    blockerReason?: string;
+    breakdown: Record<ScanCategory, {
+        score: number;
+        maxScore: number;
+        findings: number;
+    }>;
+    findings: Finding[];
+    scanResults: ScanResult[];
+    stack: DetectedStack;
+    duration: number;
+    timestamp: string;
+    confidence: Confidence;
+}
+export interface Reporter {
+    name: string;
+    format(result: AuditResult): string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,QAAQ,GAAG,SAAS,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;AAEnF,MAAM,MAAM,YAAY,GACpB,UAAU,GAAG,MAAM,GAAG,cAAc,GAAG,YAAY,GAAG,SAAS,GAC/D,eAAe,GAAG,aAAa,GAAG,gBAAgB,GAAG,MAAM,GAAG,QAAQ,GAAG,SAAS,GAClF,QAAQ,CAAC;AAEb,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,YAAY,CAAC;IACvB,QAAQ,EAAE,QAAQ,CAAC;IACnB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,YAAY,CAAC;IACvB,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,OAAO,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,OAAO;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,YAAY,CAAC;IACvB,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACnD,IAAI,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;CACrE;AAED,MAAM,WAAW,aAAa;IAC5B,SAAS,EAAE,QAAQ,GAAG,OAAO,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,OAAO,GAAG,OAAO,GAAG,SAAS,GAAG,SAAS,GAAG,QAAQ,GAAG,OAAO,GAAG,OAAO,GAAG,SAAS,GAAG,QAAQ,GAAG,IAAI,GAAG,MAAM,GAAG,SAAS,CAAC;IACxL,QAAQ,EAAE,UAAU,GAAG,UAAU,GAAG,QAAQ,GAAG,SAAS,GAAG,UAAU,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,CAAC;IACtG,IAAI,EAAE,eAAe,GAAG,WAAW,GAAG,OAAO,GAAG,OAAO,GAAG,UAAU,GAAG,MAAM,GAAG,SAAS,CAAC;IAC1F,EAAE,EAAE,QAAQ,GAAG,WAAW,GAAG,SAAS,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,CAAC;IACvE,OAAO,EAAE,QAAQ,GAAG,MAAM,GAAG,SAAS,CAAC;IACvC,MAAM,EAAE,QAAQ,GAAG,QAAQ,GAAG,SAAS,GAAG,KAAK,GAAG,SAAS,GAAG,MAAM,GAAG,SAAS,CAAC;IACjF,QAAQ,EAAE,YAAY,GAAG,YAAY,GAAG,QAAQ,GAAG,MAAM,GAAG,IAAI,GAAG,MAAM,GAAG,KAAK,GAAG,MAAM,GAAG,SAAS,CAAC;IACvG,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,aAAa,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IACnD,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;IACjC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,GAAG,OAAO,GAAG,SAAS,GAAG,OAAO,GAAG,UAAU,CAAC;CAC3D;AAED,MAAM,MAAM,KAAK,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;AACtD,MAAM,MAAM,KAAK,GAAG,UAAU,GAAG,UAAU,GAAG,OAAO,GAAG,YAAY,GAAG,SAAS,GAAG,UAAU,CAAC;AAC9F,MAAM,MAAM,UAAU,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;AAEnD,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,KAAK,CAAC;IACb,KAAK,EAAE,KAAK,CAAC;IACb,OAAO,EAAE,OAAO,CAAC;IACjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC,YAAY,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACvF,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,WAAW,EAAE,UAAU,EAAE,CAAC;IAC1B,KAAK,EAAE,aAAa,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,UAAU,CAAC;CACxB;AAED,MAAM,WAAW,QAAQ;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,MAAM,EAAE,WAAW,GAAG,MAAM,CAAC;CACrC"}

package/dist/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}

package/dist/utils.d.ts

@@ -0,0 +1,37 @@
+export interface ExecOptions {
+    cwd?: string;
+    timeout?: number;
+    env?: NodeJS.ProcessEnv;
+}
+export interface ExecResult {
+    stdout: string;
+    stderr: string;
+    exitCode: number;
+}
+/**
+ * Safe child_process.execFile wrapper.
+ * ALWAYS resolves — even on non-zero exit codes — so callers can read stdout/stderr
+ * from tools that exit 1 when findings exist (gitleaks, semgrep, npm audit, etc.).
+ * Only rejects on timeout or signal kill.
+ */
+export declare function exec(command: string, args?: string[], options?: ExecOptions): Promise<ExecResult>;
+/**
+ * Checks if a command exists on PATH.
+ */
+export declare function commandExists(command: string): Promise<boolean>;
+/**
+ * Clears the walkFiles result cache. Useful in tests or between audit runs.
+ */
+export declare function clearWalkFilesCache(): void;
+/**
+ * Recursive file walker returning ABSOLUTE paths.
+ * Filters by ignored directory names and optional file extensions (without dot).
+ * Results are memoized by (dir, ignore, extensions) key for the lifetime of the process
+ * or until clearWalkFilesCache() is called.
+ */
+export declare function walkFiles(dir: string, ignore?: string[], extensions?: string[]): string[];
+/**
+ * Reads a file, returning null on any failure (file not found, permission denied, etc.).
+ */
+export declare function readFileSafe(filePath: string): string | null;
+//# sourceMappingURL=utils.d.ts.map

package/dist/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,WAAW;IAC1B,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;CACzB;AAED,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;;;GAKG;AACH,wBAAgB,IAAI,CAClB,OAAO,EAAE,MAAM,EACf,IAAI,GAAE,MAAM,EAAO,EACnB,OAAO,GAAE,WAAgB,GACxB,OAAO,CAAC,UAAU,CAAC,CA2BrB;AAED;;GAEG;AACH,wBAAsB,aAAa,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAQrE;AAMD;;GAEG;AACH,wBAAgB,mBAAmB,IAAI,IAAI,CAE1C;AAED;;;;;GAKG;AACH,wBAAgB,SAAS,CACvB,GAAG,EAAE,MAAM,EACX,MAAM,GAAE,MAAM,EAAO,EACrB,UAAU,GAAE,MAAM,EAAO,GACxB,MAAM,EAAE,CAmDV;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAM5D"}

package/dist/utils.js

@@ -0,0 +1,123 @@
+import * as childProcess from 'node:child_process';
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+/**
+ * Safe child_process.execFile wrapper.
+ * ALWAYS resolves — even on non-zero exit codes — so callers can read stdout/stderr
+ * from tools that exit 1 when findings exist (gitleaks, semgrep, npm audit, etc.).
+ * Only rejects on timeout or signal kill.
+ */
+export function exec(command, args = [], options = {}) {
+    const { cwd, timeout = 120_000, env } = options;
+    return new Promise((resolve, reject) => {
+        childProcess.execFile(command, args, {
+            cwd,
+            timeout,
+            maxBuffer: 50 * 1024 * 1024, // 50 MB
+            env: env ?? process.env,
+        }, (error, stdout, stderr) => {
+            if (error && error.killed) {
+                reject(new Error(`Command timed out: ${command} ${args.join(' ')}`));
+                return;
+            }
+            // Always resolve — non-zero exit is normal for many security tools
+            resolve({
+                stdout: stdout ?? '',
+                stderr: stderr ?? '',
+                exitCode: error ? error.code ?? 1 : 0,
+            });
+        });
+    });
+}
+/**
+ * Checks if a command exists on PATH.
+ */
+export async function commandExists(command) {
+    try {
+        const whichCmd = process.platform === 'win32' ? 'where.exe' : 'which';
+        const result = await exec(whichCmd, [command], { timeout: 5000 });
+        return result.exitCode === 0;
+    }
+    catch {
+        return false;
+    }
+}
+/** Module-level cache for walkFiles results — avoids redundant directory traversals
+ *  when multiple scanners walk the same directories in a single audit run. */
+const _walkFilesCache = new Map();
+/**
+ * Clears the walkFiles result cache. Useful in tests or between audit runs.
+ */
+export function clearWalkFilesCache() {
+    _walkFilesCache.clear();
+}
+/**
+ * Recursive file walker returning ABSOLUTE paths.
+ * Filters by ignored directory names and optional file extensions (without dot).
+ * Results are memoized by (dir, ignore, extensions) key for the lifetime of the process
+ * or until clearWalkFilesCache() is called.
+ */
+export function walkFiles(dir, ignore = [], extensions = []) {
+    const resolvedDir = path.resolve(dir);
+    const cacheKey = `${resolvedDir}:${ignore.join(',')}:${extensions.join(',')}`;
+    const cached = _walkFilesCache.get(cacheKey);
+    if (cached)
+        return cached;
+    const results = [];
+    const visited = new Set();
+    function walk(current) {
+        // Resolve symlinks to detect cycles
+        let realPath;
+        try {
+            realPath = fs.realpathSync(current);
+        }
+        catch {
+            return;
+        }
+        if (visited.has(realPath))
+            return;
+        visited.add(realPath);
+        let entries;
+        try {
+            entries = fs.readdirSync(current, { withFileTypes: true });
+        }
+        catch {
+            return;
+        }
+        for (const entry of entries) {
+            const fullPath = path.join(current, entry.name);
+            if (entry.isDirectory()) {
+                if (ignore.includes(entry.name))
+                    continue;
+                walk(fullPath);
+            }
+            else if (entry.isFile()) {
+                if (extensions.length === 0) {
+                    results.push(fullPath);
+                }
+                else {
+                    // Fix: path.extname returns '.ts' — slice(1) removes the dot to match ['ts', 'js']
+                    const ext = path.extname(entry.name).slice(1);
+                    if (extensions.includes(ext)) {
+                        results.push(fullPath);
+                    }
+                }
+            }
+        }
+    }
+    walk(resolvedDir);
+    _walkFilesCache.set(cacheKey, results);
+    return results;
+}
+/**
+ * Reads a file, returning null on any failure (file not found, permission denied, etc.).
+ */
+export function readFileSafe(filePath) {
+    try {
+        return fs.readFileSync(filePath, 'utf-8');
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=utils.js.map

package/dist/utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,YAAY,MAAM,oBAAoB,CAAC;AACnD,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAclC;;;;;GAKG;AACH,MAAM,UAAU,IAAI,CAClB,OAAe,EACf,OAAiB,EAAE,EACnB,UAAuB,EAAE;IAEzB,MAAM,EAAE,GAAG,EAAE,OAAO,GAAG,OAAO,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC;IAEhD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,YAAY,CAAC,QAAQ,CACnB,OAAO,EACP,IAAI,EACJ;YACE,GAAG;YACH,OAAO;YACP,SAAS,EAAE,EAAE,GAAG,IAAI,GAAG,IAAI,EAAE,QAAQ;YACrC,GAAG,EAAE,GAAG,IAAI,OAAO,CAAC,GAAG;SACxB,EACD,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE;YACxB,IAAI,KAAK,IAAK,KAAsC,CAAC,MAAM,EAAE,CAAC;gBAC5D,MAAM,CAAC,IAAI,KAAK,CAAC,sBAAsB,OAAO,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;gBACrE,OAAO;YACT,CAAC;YACD,mEAAmE;YACnE,OAAO,CAAC;gBACN,MAAM,EAAE,MAAM,IAAI,EAAE;gBACpB,MAAM,EAAE,MAAM,IAAI,EAAE;gBACpB,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAE,KAAmC,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;aACrE,CAAC,CAAC;QACL,CAAC,CACF,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,OAAe;IACjD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,KAAK,OAAO,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC;QACtE,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;QAClE,OAAO,MAAM,CAAC,QAAQ,KAAK,CAAC,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;8EAC8E;AAC9E,MAAM,eAAe,GAAG,IAAI,GAAG,EAAoB,CAAC;AAEpD;;GAEG;AACH,MAAM,UAAU,mBAAmB;IACjC,eAAe,CAAC,KAAK,EAAE,CAAC;AAC1B,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,SAAS,CACvB,GAAW,EACX,SAAmB,EAAE,EACrB,aAAuB,EAAE;IAEzB,MAAM,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACtC,MAAM,QAAQ,GAAG,GAAG,WAAW,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;IAE9E,MAAM,MAAM,GAAG,eAAe,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC7C,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAE1B,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,MAAM,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;IAElC,SAAS,IAAI,CAAC,OAAe;QAC3B,oCAAoC;QACpC,IAAI,QAAgB,CAAC;QACrB,IAAI,CAAC;YACH,QAAQ,GAAG,EAAE,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC;QACtC,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QACD,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC;YAAE,OAAO;QAClC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAEtB,IAAI,OAAoB,CAAC;QACzB,IAAI,CAAC;YACH,OAAO,GAAG,EAAE,CAAC,WAAW,CAAC,OAAO,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAC7D,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QAED,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YAEhD,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;gBACxB,IAAI,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC;oBAAE,SAAS;gBAC1C,IAAI,CAAC,QAAQ,CAAC,CAAC;YACjB,CAAC;iBAAM,IAAI,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;gBAC1B,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBAC5B,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBACzB,CAAC;qBAAM,CAAC;oBACN,mFAAmF;oBACnF,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBAC9C,IAAI,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;wBAC7B,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;oBACzB,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,CAAC,WAAW,CAAC,CAAC;IAClB,eAAe,CAAC,GAAG,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACvC,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,QAAgB;IAC3C,IAAI,CAAC;QACH,OAAO,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/version.d.ts

@@ -0,0 +1,2 @@
+export declare function getVersion(): string;
+//# sourceMappingURL=version.d.ts.map

package/dist/version.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"version.d.ts","sourceRoot":"","sources":["../src/version.ts"],"names":[],"mappings":"AAMA,wBAAgB,UAAU,IAAI,MAAM,CAYnC"}

package/dist/version.js

@@ -0,0 +1,20 @@
+import { readFileSync } from 'fs';
+import { join, dirname } from 'path';
+import { fileURLToPath } from 'url';
+let cachedVersion;
+export function getVersion() {
+    if (cachedVersion !== undefined)
+        return cachedVersion;
+    try {
+        // Read from cli package.json (the main published package)
+        const __dirname = dirname(fileURLToPath(import.meta.url));
+        const pkgPath = join(__dirname, '../../cli/package.json');
+        const pkg = JSON.parse(readFileSync(pkgPath, 'utf-8'));
+        cachedVersion = pkg.version ?? '0.0.0';
+    }
+    catch {
+        cachedVersion = '0.0.0';
+    }
+    return cachedVersion;
+}
+//# sourceMappingURL=version.js.map

package/dist/version.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"version.js","sourceRoot":"","sources":["../src/version.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,IAAI,CAAC;AAClC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACrC,OAAO,EAAE,aAAa,EAAE,MAAM,KAAK,CAAC;AAEpC,IAAI,aAAiC,CAAC;AAEtC,MAAM,UAAU,UAAU;IACxB,IAAI,aAAa,KAAK,SAAS;QAAE,OAAO,aAAa,CAAC;IACtD,IAAI,CAAC;QACH,0DAA0D;QAC1D,MAAM,SAAS,GAAG,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QAC1D,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,wBAAwB,CAAC,CAAC;QAC1D,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;QACvD,aAAa,GAAI,GAAG,CAAC,OAAkB,IAAI,OAAO,CAAC;IACrD,CAAC;IAAC,MAAM,CAAC;QACP,aAAa,GAAG,OAAO,CAAC;IAC1B,CAAC;IACD,OAAO,aAAa,CAAC;AACvB,CAAC"}

package/package.json

@@ -0,0 +1,45 @@
+{
+  "name": "@aegis-scan/core",
+  "version": "0.2.0",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/RideMatch1/a.e.g.i.s.git",
+    "directory": "core"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "files": [
+    "dist"
+  ],
+  "keywords": [
+    "security",
+    "audit",
+    "scoring",
+    "scanner"
+  ],
+  "description": "AEGIS core engine \u2014 orchestrator, scoring, config",
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "scripts": {
+    "build": "tsc",
+    "test": "vitest run",
+    "clean": "rm -rf dist"
+  },
+  "dependencies": {
+    "zod": "^3.23.0"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.8.0",
+    "vitest": "^3.1.0"
+  }
+}