@aion0/bastion 0.1.7
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +21 -0
- package/README.md +183 -0
- package/README.zh.md +468 -0
- package/config/default.yaml +73 -0
- package/dist/cli/commands/config.d.ts +3 -0
- package/dist/cli/commands/config.d.ts.map +1 -0
- package/dist/cli/commands/config.js +31 -0
- package/dist/cli/commands/config.js.map +1 -0
- package/dist/cli/commands/env.d.ts +3 -0
- package/dist/cli/commands/env.d.ts.map +1 -0
- package/dist/cli/commands/env.js +83 -0
- package/dist/cli/commands/env.js.map +1 -0
- package/dist/cli/commands/health.d.ts +3 -0
- package/dist/cli/commands/health.d.ts.map +1 -0
- package/dist/cli/commands/health.js +45 -0
- package/dist/cli/commands/health.js.map +1 -0
- package/dist/cli/commands/openclaw.d.ts +3 -0
- package/dist/cli/commands/openclaw.d.ts.map +1 -0
- package/dist/cli/commands/openclaw.js +1062 -0
- package/dist/cli/commands/openclaw.js.map +1 -0
- package/dist/cli/commands/proxy.d.ts +8 -0
- package/dist/cli/commands/proxy.d.ts.map +1 -0
- package/dist/cli/commands/proxy.js +433 -0
- package/dist/cli/commands/proxy.js.map +1 -0
- package/dist/cli/commands/start.d.ts +3 -0
- package/dist/cli/commands/start.d.ts.map +1 -0
- package/dist/cli/commands/start.js +62 -0
- package/dist/cli/commands/start.js.map +1 -0
- package/dist/cli/commands/stats.d.ts +3 -0
- package/dist/cli/commands/stats.d.ts.map +1 -0
- package/dist/cli/commands/stats.js +32 -0
- package/dist/cli/commands/stats.js.map +1 -0
- package/dist/cli/commands/stop.d.ts +3 -0
- package/dist/cli/commands/stop.d.ts.map +1 -0
- package/dist/cli/commands/stop.js +28 -0
- package/dist/cli/commands/stop.js.map +1 -0
- package/dist/cli/commands/token.d.ts +3 -0
- package/dist/cli/commands/token.d.ts.map +1 -0
- package/dist/cli/commands/token.js +32 -0
- package/dist/cli/commands/token.js.map +1 -0
- package/dist/cli/commands/trust-ca.d.ts +3 -0
- package/dist/cli/commands/trust-ca.d.ts.map +1 -0
- package/dist/cli/commands/trust-ca.js +44 -0
- package/dist/cli/commands/trust-ca.js.map +1 -0
- package/dist/cli/commands/wrap.d.ts +3 -0
- package/dist/cli/commands/wrap.d.ts.map +1 -0
- package/dist/cli/commands/wrap.js +70 -0
- package/dist/cli/commands/wrap.js.map +1 -0
- package/dist/cli/daemon.d.ts +11 -0
- package/dist/cli/daemon.d.ts.map +1 -0
- package/dist/cli/daemon.js +82 -0
- package/dist/cli/daemon.js.map +1 -0
- package/dist/cli/index.d.ts +3 -0
- package/dist/cli/index.d.ts.map +1 -0
- package/dist/cli/index.js +35 -0
- package/dist/cli/index.js.map +1 -0
- package/dist/config/index.d.ts +3 -0
- package/dist/config/index.d.ts.map +1 -0
- package/dist/config/index.js +60 -0
- package/dist/config/index.js.map +1 -0
- package/dist/config/manager.d.ts +12 -0
- package/dist/config/manager.d.ts.map +1 -0
- package/dist/config/manager.js +73 -0
- package/dist/config/manager.js.map +1 -0
- package/dist/config/paths.d.ts +10 -0
- package/dist/config/paths.d.ts.map +1 -0
- package/dist/config/paths.js +16 -0
- package/dist/config/paths.js.map +1 -0
- package/dist/config/schema.d.ts +85 -0
- package/dist/config/schema.d.ts.map +1 -0
- package/dist/config/schema.js +3 -0
- package/dist/config/schema.js.map +1 -0
- package/dist/dashboard/api-routes.d.ts +6 -0
- package/dist/dashboard/api-routes.d.ts.map +1 -0
- package/dist/dashboard/api-routes.js +671 -0
- package/dist/dashboard/api-routes.js.map +1 -0
- package/dist/dashboard/api.d.ts +4 -0
- package/dist/dashboard/api.d.ts.map +1 -0
- package/dist/dashboard/api.js +25 -0
- package/dist/dashboard/api.js.map +1 -0
- package/dist/dashboard/page.d.ts +3 -0
- package/dist/dashboard/page.d.ts.map +1 -0
- package/dist/dashboard/page.js +1622 -0
- package/dist/dashboard/page.js.map +1 -0
- package/dist/dlp/actions.d.ts +13 -0
- package/dist/dlp/actions.d.ts.map +1 -0
- package/dist/dlp/actions.js +3 -0
- package/dist/dlp/actions.js.map +1 -0
- package/dist/dlp/ai-validator.d.ts +28 -0
- package/dist/dlp/ai-validator.d.ts.map +1 -0
- package/dist/dlp/ai-validator.js +214 -0
- package/dist/dlp/ai-validator.js.map +1 -0
- package/dist/dlp/engine.d.ts +34 -0
- package/dist/dlp/engine.d.ts.map +1 -0
- package/dist/dlp/engine.js +342 -0
- package/dist/dlp/engine.js.map +1 -0
- package/dist/dlp/entropy.d.ts +22 -0
- package/dist/dlp/entropy.d.ts.map +1 -0
- package/dist/dlp/entropy.js +43 -0
- package/dist/dlp/entropy.js.map +1 -0
- package/dist/dlp/message-cache.d.ts +45 -0
- package/dist/dlp/message-cache.d.ts.map +1 -0
- package/dist/dlp/message-cache.js +251 -0
- package/dist/dlp/message-cache.js.map +1 -0
- package/dist/dlp/patterns/context-aware.d.ts +4 -0
- package/dist/dlp/patterns/context-aware.d.ts.map +1 -0
- package/dist/dlp/patterns/context-aware.js +45 -0
- package/dist/dlp/patterns/context-aware.js.map +1 -0
- package/dist/dlp/patterns/high-confidence.d.ts +4 -0
- package/dist/dlp/patterns/high-confidence.d.ts.map +1 -0
- package/dist/dlp/patterns/high-confidence.js +140 -0
- package/dist/dlp/patterns/high-confidence.js.map +1 -0
- package/dist/dlp/patterns/prompt-injection.d.ts +4 -0
- package/dist/dlp/patterns/prompt-injection.d.ts.map +1 -0
- package/dist/dlp/patterns/prompt-injection.js +244 -0
- package/dist/dlp/patterns/prompt-injection.js.map +1 -0
- package/dist/dlp/patterns/validated.d.ts +4 -0
- package/dist/dlp/patterns/validated.d.ts.map +1 -0
- package/dist/dlp/patterns/validated.js +21 -0
- package/dist/dlp/patterns/validated.js.map +1 -0
- package/dist/dlp/remote-sync.d.ts +47 -0
- package/dist/dlp/remote-sync.d.ts.map +1 -0
- package/dist/dlp/remote-sync.js +252 -0
- package/dist/dlp/remote-sync.js.map +1 -0
- package/dist/dlp/semantics.d.ts +27 -0
- package/dist/dlp/semantics.d.ts.map +1 -0
- package/dist/dlp/semantics.js +93 -0
- package/dist/dlp/semantics.js.map +1 -0
- package/dist/dlp/structure.d.ts +25 -0
- package/dist/dlp/structure.d.ts.map +1 -0
- package/dist/dlp/structure.js +86 -0
- package/dist/dlp/structure.js.map +1 -0
- package/dist/dlp/validators.d.ts +6 -0
- package/dist/dlp/validators.d.ts.map +1 -0
- package/dist/dlp/validators.js +46 -0
- package/dist/dlp/validators.js.map +1 -0
- package/dist/index.d.ts +2 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +200 -0
- package/dist/index.js.map +1 -0
- package/dist/license/verify.d.ts +18 -0
- package/dist/license/verify.d.ts.map +1 -0
- package/dist/license/verify.js +71 -0
- package/dist/license/verify.js.map +1 -0
- package/dist/metrics/collector.d.ts +11 -0
- package/dist/metrics/collector.d.ts.map +1 -0
- package/dist/metrics/collector.js +17 -0
- package/dist/metrics/collector.js.map +1 -0
- package/dist/metrics/dashboard.d.ts +6 -0
- package/dist/metrics/dashboard.d.ts.map +1 -0
- package/dist/metrics/dashboard.js +66 -0
- package/dist/metrics/dashboard.js.map +1 -0
- package/dist/metrics/pricing.d.ts +10 -0
- package/dist/metrics/pricing.d.ts.map +1 -0
- package/dist/metrics/pricing.js +62 -0
- package/dist/metrics/pricing.js.map +1 -0
- package/dist/optimizer/cache.d.ts +14 -0
- package/dist/optimizer/cache.d.ts.map +1 -0
- package/dist/optimizer/cache.js +58 -0
- package/dist/optimizer/cache.js.map +1 -0
- package/dist/optimizer/estimator.d.ts +6 -0
- package/dist/optimizer/estimator.d.ts.map +1 -0
- package/dist/optimizer/estimator.js +12 -0
- package/dist/optimizer/estimator.js.map +1 -0
- package/dist/optimizer/reorder.d.ts +9 -0
- package/dist/optimizer/reorder.d.ts.map +1 -0
- package/dist/optimizer/reorder.js +27 -0
- package/dist/optimizer/reorder.js.map +1 -0
- package/dist/optimizer/trimmer.d.ts +9 -0
- package/dist/optimizer/trimmer.d.ts.map +1 -0
- package/dist/optimizer/trimmer.js +47 -0
- package/dist/optimizer/trimmer.js.map +1 -0
- package/dist/plugin-api/index.d.ts +3 -0
- package/dist/plugin-api/index.d.ts.map +1 -0
- package/dist/plugin-api/index.js +6 -0
- package/dist/plugin-api/index.js.map +1 -0
- package/dist/plugin-api/types.d.ts +77 -0
- package/dist/plugin-api/types.d.ts.map +1 -0
- package/dist/plugin-api/types.js +6 -0
- package/dist/plugin-api/types.js.map +1 -0
- package/dist/plugins/adapter.d.ts +12 -0
- package/dist/plugins/adapter.d.ts.map +1 -0
- package/dist/plugins/adapter.js +116 -0
- package/dist/plugins/adapter.js.map +1 -0
- package/dist/plugins/builtin/audit-logger.d.ts +9 -0
- package/dist/plugins/builtin/audit-logger.d.ts.map +1 -0
- package/dist/plugins/builtin/audit-logger.js +53 -0
- package/dist/plugins/builtin/audit-logger.js.map +1 -0
- package/dist/plugins/builtin/dlp-scanner.d.ts +19 -0
- package/dist/plugins/builtin/dlp-scanner.d.ts.map +1 -0
- package/dist/plugins/builtin/dlp-scanner.js +284 -0
- package/dist/plugins/builtin/dlp-scanner.js.map +1 -0
- package/dist/plugins/builtin/metrics-collector.d.ts +4 -0
- package/dist/plugins/builtin/metrics-collector.d.ts.map +1 -0
- package/dist/plugins/builtin/metrics-collector.js +111 -0
- package/dist/plugins/builtin/metrics-collector.js.map +1 -0
- package/dist/plugins/builtin/token-optimizer.d.ts +10 -0
- package/dist/plugins/builtin/token-optimizer.d.ts.map +1 -0
- package/dist/plugins/builtin/token-optimizer.js +120 -0
- package/dist/plugins/builtin/token-optimizer.js.map +1 -0
- package/dist/plugins/builtin/tool-guard.d.ts +20 -0
- package/dist/plugins/builtin/tool-guard.d.ts.map +1 -0
- package/dist/plugins/builtin/tool-guard.js +259 -0
- package/dist/plugins/builtin/tool-guard.js.map +1 -0
- package/dist/plugins/context.d.ts +8 -0
- package/dist/plugins/context.d.ts.map +1 -0
- package/dist/plugins/context.js +33 -0
- package/dist/plugins/context.js.map +1 -0
- package/dist/plugins/event-bus.d.ts +9 -0
- package/dist/plugins/event-bus.d.ts.map +1 -0
- package/dist/plugins/event-bus.js +25 -0
- package/dist/plugins/event-bus.js.map +1 -0
- package/dist/plugins/index.d.ts +18 -0
- package/dist/plugins/index.d.ts.map +1 -0
- package/dist/plugins/index.js +148 -0
- package/dist/plugins/index.js.map +1 -0
- package/dist/plugins/loader.d.ts +14 -0
- package/dist/plugins/loader.d.ts.map +1 -0
- package/dist/plugins/loader.js +98 -0
- package/dist/plugins/loader.js.map +1 -0
- package/dist/plugins/types.d.ts +91 -0
- package/dist/plugins/types.d.ts.map +1 -0
- package/dist/plugins/types.js +3 -0
- package/dist/plugins/types.js.map +1 -0
- package/dist/proxy/certs.d.ts +10 -0
- package/dist/proxy/certs.d.ts.map +1 -0
- package/dist/proxy/certs.js +110 -0
- package/dist/proxy/certs.js.map +1 -0
- package/dist/proxy/connect.d.ts +11 -0
- package/dist/proxy/connect.d.ts.map +1 -0
- package/dist/proxy/connect.js +298 -0
- package/dist/proxy/connect.js.map +1 -0
- package/dist/proxy/forwarder.d.ts +14 -0
- package/dist/proxy/forwarder.d.ts.map +1 -0
- package/dist/proxy/forwarder.js +342 -0
- package/dist/proxy/forwarder.js.map +1 -0
- package/dist/proxy/passthrough.d.ts +4 -0
- package/dist/proxy/passthrough.d.ts.map +1 -0
- package/dist/proxy/passthrough.js +68 -0
- package/dist/proxy/passthrough.js.map +1 -0
- package/dist/proxy/providers/anthropic.d.ts +4 -0
- package/dist/proxy/providers/anthropic.d.ts.map +1 -0
- package/dist/proxy/providers/anthropic.js +46 -0
- package/dist/proxy/providers/anthropic.js.map +1 -0
- package/dist/proxy/providers/classify.d.ts +14 -0
- package/dist/proxy/providers/classify.d.ts.map +1 -0
- package/dist/proxy/providers/classify.js +37 -0
- package/dist/proxy/providers/classify.js.map +1 -0
- package/dist/proxy/providers/claude-web.d.ts +8 -0
- package/dist/proxy/providers/claude-web.d.ts.map +1 -0
- package/dist/proxy/providers/claude-web.js +50 -0
- package/dist/proxy/providers/claude-web.js.map +1 -0
- package/dist/proxy/providers/gemini.d.ts +4 -0
- package/dist/proxy/providers/gemini.d.ts.map +1 -0
- package/dist/proxy/providers/gemini.js +38 -0
- package/dist/proxy/providers/gemini.js.map +1 -0
- package/dist/proxy/providers/index.d.ts +27 -0
- package/dist/proxy/providers/index.d.ts.map +1 -0
- package/dist/proxy/providers/index.js +32 -0
- package/dist/proxy/providers/index.js.map +1 -0
- package/dist/proxy/providers/messaging.d.ts +2 -0
- package/dist/proxy/providers/messaging.d.ts.map +1 -0
- package/dist/proxy/providers/messaging.js +53 -0
- package/dist/proxy/providers/messaging.js.map +1 -0
- package/dist/proxy/providers/openai.d.ts +4 -0
- package/dist/proxy/providers/openai.d.ts.map +1 -0
- package/dist/proxy/providers/openai.js +38 -0
- package/dist/proxy/providers/openai.js.map +1 -0
- package/dist/proxy/providers/telegram.d.ts +8 -0
- package/dist/proxy/providers/telegram.d.ts.map +1 -0
- package/dist/proxy/providers/telegram.js +35 -0
- package/dist/proxy/providers/telegram.js.map +1 -0
- package/dist/proxy/router.d.ts +12 -0
- package/dist/proxy/router.d.ts.map +1 -0
- package/dist/proxy/router.js +26 -0
- package/dist/proxy/router.js.map +1 -0
- package/dist/proxy/safety.d.ts +13 -0
- package/dist/proxy/safety.d.ts.map +1 -0
- package/dist/proxy/safety.js +58 -0
- package/dist/proxy/safety.js.map +1 -0
- package/dist/proxy/server.d.ts +8 -0
- package/dist/proxy/server.d.ts.map +1 -0
- package/dist/proxy/server.js +126 -0
- package/dist/proxy/server.js.map +1 -0
- package/dist/proxy/streaming.d.ts +21 -0
- package/dist/proxy/streaming.d.ts.map +1 -0
- package/dist/proxy/streaming.js +70 -0
- package/dist/proxy/streaming.js.map +1 -0
- package/dist/storage/database.d.ts +6 -0
- package/dist/storage/database.d.ts.map +1 -0
- package/dist/storage/database.js +44 -0
- package/dist/storage/database.js.map +1 -0
- package/dist/storage/encryption.d.ts +11 -0
- package/dist/storage/encryption.d.ts.map +1 -0
- package/dist/storage/encryption.js +47 -0
- package/dist/storage/encryption.js.map +1 -0
- package/dist/storage/migrations.d.ts +3 -0
- package/dist/storage/migrations.d.ts.map +1 -0
- package/dist/storage/migrations.js +265 -0
- package/dist/storage/migrations.js.map +1 -0
- package/dist/storage/repositories/audit-log.d.ts +115 -0
- package/dist/storage/repositories/audit-log.d.ts.map +1 -0
- package/dist/storage/repositories/audit-log.js +586 -0
- package/dist/storage/repositories/audit-log.js.map +1 -0
- package/dist/storage/repositories/cache.d.ts +26 -0
- package/dist/storage/repositories/cache.d.ts.map +1 -0
- package/dist/storage/repositories/cache.js +44 -0
- package/dist/storage/repositories/cache.js.map +1 -0
- package/dist/storage/repositories/dlp-config-history.d.ts +17 -0
- package/dist/storage/repositories/dlp-config-history.d.ts.map +1 -0
- package/dist/storage/repositories/dlp-config-history.js +30 -0
- package/dist/storage/repositories/dlp-config-history.js.map +1 -0
- package/dist/storage/repositories/dlp-events.d.ts +35 -0
- package/dist/storage/repositories/dlp-events.d.ts.map +1 -0
- package/dist/storage/repositories/dlp-events.js +57 -0
- package/dist/storage/repositories/dlp-events.js.map +1 -0
- package/dist/storage/repositories/dlp-patterns.d.ts +70 -0
- package/dist/storage/repositories/dlp-patterns.d.ts.map +1 -0
- package/dist/storage/repositories/dlp-patterns.js +187 -0
- package/dist/storage/repositories/dlp-patterns.js.map +1 -0
- package/dist/storage/repositories/optimizer-events.d.ts +28 -0
- package/dist/storage/repositories/optimizer-events.d.ts.map +1 -0
- package/dist/storage/repositories/optimizer-events.js +49 -0
- package/dist/storage/repositories/optimizer-events.js.map +1 -0
- package/dist/storage/repositories/plugin-events.d.ts +34 -0
- package/dist/storage/repositories/plugin-events.d.ts.map +1 -0
- package/dist/storage/repositories/plugin-events.js +64 -0
- package/dist/storage/repositories/plugin-events.js.map +1 -0
- package/dist/storage/repositories/requests.d.ts +68 -0
- package/dist/storage/repositories/requests.d.ts.map +1 -0
- package/dist/storage/repositories/requests.js +113 -0
- package/dist/storage/repositories/requests.js.map +1 -0
- package/dist/storage/repositories/sessions.d.ts +23 -0
- package/dist/storage/repositories/sessions.d.ts.map +1 -0
- package/dist/storage/repositories/sessions.js +42 -0
- package/dist/storage/repositories/sessions.js.map +1 -0
- package/dist/storage/repositories/tool-calls.d.ts +49 -0
- package/dist/storage/repositories/tool-calls.d.ts.map +1 -0
- package/dist/storage/repositories/tool-calls.js +61 -0
- package/dist/storage/repositories/tool-calls.js.map +1 -0
- package/dist/storage/repositories/tool-guard-rules.d.ts +50 -0
- package/dist/storage/repositories/tool-guard-rules.d.ts.map +1 -0
- package/dist/storage/repositories/tool-guard-rules.js +120 -0
- package/dist/storage/repositories/tool-guard-rules.js.map +1 -0
- package/dist/tool-guard/alert.d.ts +30 -0
- package/dist/tool-guard/alert.d.ts.map +1 -0
- package/dist/tool-guard/alert.js +113 -0
- package/dist/tool-guard/alert.js.map +1 -0
- package/dist/tool-guard/extractor.d.ts +10 -0
- package/dist/tool-guard/extractor.d.ts.map +1 -0
- package/dist/tool-guard/extractor.js +309 -0
- package/dist/tool-guard/extractor.js.map +1 -0
- package/dist/tool-guard/rules.d.ts +18 -0
- package/dist/tool-guard/rules.d.ts.map +1 -0
- package/dist/tool-guard/rules.js +255 -0
- package/dist/tool-guard/rules.js.map +1 -0
- package/dist/tool-guard/streaming-guard.d.ts +57 -0
- package/dist/tool-guard/streaming-guard.d.ts.map +1 -0
- package/dist/tool-guard/streaming-guard.js +389 -0
- package/dist/tool-guard/streaming-guard.js.map +1 -0
- package/dist/utils/hash.d.ts +2 -0
- package/dist/utils/hash.d.ts.map +1 -0
- package/dist/utils/hash.js +8 -0
- package/dist/utils/hash.js.map +1 -0
- package/dist/utils/logger.d.ts +11 -0
- package/dist/utils/logger.d.ts.map +1 -0
- package/dist/utils/logger.js +54 -0
- package/dist/utils/logger.js.map +1 -0
- package/dist/utils/timeout.d.ts +5 -0
- package/dist/utils/timeout.d.ts.map +1 -0
- package/dist/utils/timeout.js +26 -0
- package/dist/utils/timeout.js.map +1 -0
- package/dist/version.d.ts +5 -0
- package/dist/version.d.ts.map +1 -0
- package/dist/version.js +23 -0
- package/dist/version.js.map +1 -0
- package/package.json +67 -0
|
@@ -0,0 +1,251 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
/**
|
|
3
|
+
* Message-level DLP cache.
|
|
4
|
+
*
|
|
5
|
+
* LLM API requests carry the full conversation history in a `messages[]` array.
|
|
6
|
+
* Without caching, every turn re-scans ALL previous messages — O(N²) cumulative.
|
|
7
|
+
*
|
|
8
|
+
* This module hashes individual messages and caches their DLP findings so that
|
|
9
|
+
* only new/unseen messages are scanned. Complexity drops to O(N).
|
|
10
|
+
*
|
|
11
|
+
* Cache also distinguishes between "new findings" (first detection) and
|
|
12
|
+
* "cached findings" (repeated from history) so the caller can decide
|
|
13
|
+
* whether to record duplicate DLP events.
|
|
14
|
+
*/
|
|
15
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
16
|
+
exports.DlpMessageCache = void 0;
|
|
17
|
+
const hash_js_1 = require("../utils/hash.js");
|
|
18
|
+
const engine_js_1 = require("./engine.js");
|
|
19
|
+
const logger_js_1 = require("../utils/logger.js");
|
|
20
|
+
const log = (0, logger_js_1.createLogger)('dlp-cache');
|
|
21
|
+
// ── LRU Cache ──
|
|
22
|
+
class LRUCache {
|
|
23
|
+
maxSize;
|
|
24
|
+
cache = new Map();
|
|
25
|
+
constructor(maxSize) {
|
|
26
|
+
this.maxSize = maxSize;
|
|
27
|
+
}
|
|
28
|
+
get(key) {
|
|
29
|
+
const v = this.cache.get(key);
|
|
30
|
+
if (v !== undefined) {
|
|
31
|
+
// Move to end (most recently used)
|
|
32
|
+
this.cache.delete(key);
|
|
33
|
+
this.cache.set(key, v);
|
|
34
|
+
}
|
|
35
|
+
return v;
|
|
36
|
+
}
|
|
37
|
+
set(key, value) {
|
|
38
|
+
this.cache.delete(key);
|
|
39
|
+
this.cache.set(key, value);
|
|
40
|
+
if (this.cache.size > this.maxSize) {
|
|
41
|
+
const first = this.cache.keys().next().value;
|
|
42
|
+
this.cache.delete(first);
|
|
43
|
+
}
|
|
44
|
+
}
|
|
45
|
+
get size() { return this.cache.size; }
|
|
46
|
+
clear() { this.cache.clear(); }
|
|
47
|
+
}
|
|
48
|
+
function preview(text, maxLen = 60) {
|
|
49
|
+
const oneLine = text.replace(/\n/g, '\\n');
|
|
50
|
+
return oneLine.length > maxLen ? oneLine.slice(0, maxLen) + '...' : oneLine;
|
|
51
|
+
}
|
|
52
|
+
/** Extract the text content of a single message for DLP scanning */
|
|
53
|
+
function messageText(msg) {
|
|
54
|
+
if (typeof msg.content === 'string')
|
|
55
|
+
return msg.content;
|
|
56
|
+
// Content blocks array (Anthropic multimodal: [{type:"text", text:"..."}, ...])
|
|
57
|
+
if (Array.isArray(msg.content)) {
|
|
58
|
+
return msg.content
|
|
59
|
+
.filter((b) => typeof b.text === 'string')
|
|
60
|
+
.map((b) => b.text)
|
|
61
|
+
.join('\n');
|
|
62
|
+
}
|
|
63
|
+
return '';
|
|
64
|
+
}
|
|
65
|
+
/** Compute a stable hash for message content */
|
|
66
|
+
function messageHash(msg) {
|
|
67
|
+
const raw = typeof msg.content === 'string'
|
|
68
|
+
? msg.content
|
|
69
|
+
: JSON.stringify(msg.content ?? '');
|
|
70
|
+
return (0, hash_js_1.sha256)(raw);
|
|
71
|
+
}
|
|
72
|
+
class DlpMessageCache {
|
|
73
|
+
cache;
|
|
74
|
+
hits = 0;
|
|
75
|
+
misses = 0;
|
|
76
|
+
constructor(maxSize = 5000) {
|
|
77
|
+
this.cache = new LRUCache(maxSize);
|
|
78
|
+
}
|
|
79
|
+
get stats() {
|
|
80
|
+
return { hits: this.hits, misses: this.misses, size: this.cache.size };
|
|
81
|
+
}
|
|
82
|
+
/**
|
|
83
|
+
* Scan a request body with message-level caching.
|
|
84
|
+
*
|
|
85
|
+
* If parsedBody has a `messages[]` array, each message is individually
|
|
86
|
+
* hashed and checked against the cache. Only new messages are scanned.
|
|
87
|
+
*
|
|
88
|
+
* Falls back to full-body scan for non-messages payloads.
|
|
89
|
+
*/
|
|
90
|
+
scanWithCache(body, parsedBody, patterns, action) {
|
|
91
|
+
const messages = parsedBody.messages;
|
|
92
|
+
if (!Array.isArray(messages) || messages.length === 0) {
|
|
93
|
+
// Not a messages-format request — full scan
|
|
94
|
+
const t0 = performance.now();
|
|
95
|
+
const result = (0, engine_js_1.scanText)(body, patterns, action);
|
|
96
|
+
log.info('DLP scan (full body)', {
|
|
97
|
+
bodyBytes: body.length,
|
|
98
|
+
patterns: patterns.length,
|
|
99
|
+
findings: result.findings.length,
|
|
100
|
+
action: result.action,
|
|
101
|
+
durationMs: +(performance.now() - t0).toFixed(2),
|
|
102
|
+
});
|
|
103
|
+
return { ...result, newFindings: result.findings, cachedFindings: [] };
|
|
104
|
+
}
|
|
105
|
+
const t0 = performance.now();
|
|
106
|
+
const newFindings = [];
|
|
107
|
+
const cachedFindings = [];
|
|
108
|
+
const details = [];
|
|
109
|
+
let scannedNew = 0;
|
|
110
|
+
let scannedNewBytes = 0;
|
|
111
|
+
let cacheHit = 0;
|
|
112
|
+
let skippedEmpty = 0;
|
|
113
|
+
let cachedFindingsCount = 0;
|
|
114
|
+
// Scan system prompt (Anthropic format)
|
|
115
|
+
const system = parsedBody.system;
|
|
116
|
+
if (system) {
|
|
117
|
+
const sysText = typeof system === 'string' ? system : JSON.stringify(system);
|
|
118
|
+
const sysHash = (0, hash_js_1.sha256)(sysText);
|
|
119
|
+
const cached = this.cache.get(sysHash);
|
|
120
|
+
if (cached !== undefined) {
|
|
121
|
+
cachedFindings.push(...cached);
|
|
122
|
+
cachedFindingsCount += cached.length;
|
|
123
|
+
cacheHit++;
|
|
124
|
+
this.hits++;
|
|
125
|
+
details.push({
|
|
126
|
+
index: -1, role: 'system', bytes: sysText.length,
|
|
127
|
+
source: 'cache', hash: sysHash.slice(0, 8),
|
|
128
|
+
findings: cached.map(f => f.patternName),
|
|
129
|
+
preview: preview(sysText),
|
|
130
|
+
});
|
|
131
|
+
}
|
|
132
|
+
else {
|
|
133
|
+
const result = (0, engine_js_1.scanText)(sysText, patterns, 'warn');
|
|
134
|
+
this.cache.set(sysHash, result.findings);
|
|
135
|
+
newFindings.push(...result.findings);
|
|
136
|
+
scannedNew++;
|
|
137
|
+
scannedNewBytes += sysText.length;
|
|
138
|
+
this.misses++;
|
|
139
|
+
details.push({
|
|
140
|
+
index: -1, role: 'system', bytes: sysText.length,
|
|
141
|
+
source: 'scanned', hash: sysHash.slice(0, 8),
|
|
142
|
+
findings: result.findings.map(f => f.patternName),
|
|
143
|
+
preview: preview(sysText),
|
|
144
|
+
});
|
|
145
|
+
}
|
|
146
|
+
}
|
|
147
|
+
// Scan each message individually
|
|
148
|
+
for (let i = 0; i < messages.length; i++) {
|
|
149
|
+
const msg = messages[i];
|
|
150
|
+
const text = messageText(msg);
|
|
151
|
+
const role = msg.role ?? 'unknown';
|
|
152
|
+
if (!text) {
|
|
153
|
+
skippedEmpty++;
|
|
154
|
+
details.push({
|
|
155
|
+
index: i, role, bytes: 0,
|
|
156
|
+
source: 'empty', hash: '-',
|
|
157
|
+
findings: [],
|
|
158
|
+
preview: '(empty)',
|
|
159
|
+
});
|
|
160
|
+
continue;
|
|
161
|
+
}
|
|
162
|
+
const hash = messageHash(msg);
|
|
163
|
+
const cached = this.cache.get(hash);
|
|
164
|
+
if (cached !== undefined) {
|
|
165
|
+
cachedFindings.push(...cached);
|
|
166
|
+
cachedFindingsCount += cached.length;
|
|
167
|
+
cacheHit++;
|
|
168
|
+
this.hits++;
|
|
169
|
+
details.push({
|
|
170
|
+
index: i, role, bytes: text.length,
|
|
171
|
+
source: 'cache', hash: hash.slice(0, 8),
|
|
172
|
+
findings: cached.map(f => f.patternName),
|
|
173
|
+
preview: preview(text),
|
|
174
|
+
});
|
|
175
|
+
}
|
|
176
|
+
else {
|
|
177
|
+
const result = (0, engine_js_1.scanText)(text, patterns, 'warn');
|
|
178
|
+
this.cache.set(hash, result.findings);
|
|
179
|
+
newFindings.push(...result.findings);
|
|
180
|
+
scannedNew++;
|
|
181
|
+
scannedNewBytes += text.length;
|
|
182
|
+
this.misses++;
|
|
183
|
+
details.push({
|
|
184
|
+
index: i, role, bytes: text.length,
|
|
185
|
+
source: 'scanned', hash: hash.slice(0, 8),
|
|
186
|
+
findings: result.findings.map(f => f.patternName),
|
|
187
|
+
preview: preview(text),
|
|
188
|
+
});
|
|
189
|
+
}
|
|
190
|
+
}
|
|
191
|
+
const allFindings = [...newFindings, ...cachedFindings];
|
|
192
|
+
const totalMessages = messages.length + (system ? 1 : 0);
|
|
193
|
+
const durationMs = +(performance.now() - t0).toFixed(2);
|
|
194
|
+
const hitRate = totalMessages > 0 ? +((cacheHit / totalMessages) * 100).toFixed(1) : 0;
|
|
195
|
+
// Summary log
|
|
196
|
+
log.info('DLP scan (message cache)', {
|
|
197
|
+
messages: totalMessages,
|
|
198
|
+
cacheHit,
|
|
199
|
+
scannedNew,
|
|
200
|
+
skippedEmpty,
|
|
201
|
+
hitRate: `${hitRate}%`,
|
|
202
|
+
scannedNewBytes,
|
|
203
|
+
bodyBytes: body.length,
|
|
204
|
+
savedBytes: body.length - scannedNewBytes,
|
|
205
|
+
newFindings: newFindings.length,
|
|
206
|
+
cachedFindings: cachedFindingsCount,
|
|
207
|
+
totalFindings: allFindings.length,
|
|
208
|
+
action,
|
|
209
|
+
durationMs,
|
|
210
|
+
cacheTotal: this.cache.size,
|
|
211
|
+
cacheHitsTotal: this.hits,
|
|
212
|
+
cacheMissesTotal: this.misses,
|
|
213
|
+
});
|
|
214
|
+
// Per-message detail log
|
|
215
|
+
for (const d of details) {
|
|
216
|
+
const tag = d.source === 'cache'
|
|
217
|
+
? (d.findings.length > 0 ? 'HIT+FINDING' : 'HIT')
|
|
218
|
+
: d.source === 'scanned'
|
|
219
|
+
? (d.findings.length > 0 ? 'SCAN+FINDING' : 'SCAN')
|
|
220
|
+
: 'SKIP';
|
|
221
|
+
log.info(` msg[${d.index}] ${d.role} ${tag}`, {
|
|
222
|
+
bytes: d.bytes,
|
|
223
|
+
hash: d.hash,
|
|
224
|
+
findings: d.findings.length > 0 ? d.findings : undefined,
|
|
225
|
+
preview: d.preview,
|
|
226
|
+
});
|
|
227
|
+
}
|
|
228
|
+
if (allFindings.length === 0) {
|
|
229
|
+
return { action: 'pass', findings: [], newFindings: [], cachedFindings: [] };
|
|
230
|
+
}
|
|
231
|
+
// Apply redaction on the original body string
|
|
232
|
+
let redactedBody;
|
|
233
|
+
if (action === 'redact') {
|
|
234
|
+
redactedBody = body;
|
|
235
|
+
for (const f of allFindings) {
|
|
236
|
+
for (const m of f.matches) {
|
|
237
|
+
redactedBody = redactedBody.replaceAll(m, `[${f.patternName.toUpperCase()}_REDACTED]`);
|
|
238
|
+
}
|
|
239
|
+
}
|
|
240
|
+
}
|
|
241
|
+
return { action, findings: allFindings, redactedBody, newFindings, cachedFindings };
|
|
242
|
+
}
|
|
243
|
+
/** Clear the cache (for testing or config changes) */
|
|
244
|
+
clear() {
|
|
245
|
+
this.cache.clear();
|
|
246
|
+
this.hits = 0;
|
|
247
|
+
this.misses = 0;
|
|
248
|
+
}
|
|
249
|
+
}
|
|
250
|
+
exports.DlpMessageCache = DlpMessageCache;
|
|
251
|
+
//# sourceMappingURL=message-cache.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"message-cache.js","sourceRoot":"","sources":["../../src/dlp/message-cache.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;GAYG;;;AAEH,8CAA0C;AAC1C,2CAAwD;AAExD,kDAAkD;AAElD,MAAM,GAAG,GAAG,IAAA,wBAAY,EAAC,WAAW,CAAC,CAAC;AAEtC,kBAAkB;AAElB,MAAM,QAAQ;IAEQ;IADZ,KAAK,GAAG,IAAI,GAAG,EAAa,CAAC;IACrC,YAAoB,OAAe;QAAf,YAAO,GAAP,OAAO,CAAQ;IAAG,CAAC;IAEvC,GAAG,CAAC,GAAW;QACb,MAAM,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC9B,IAAI,CAAC,KAAK,SAAS,EAAE,CAAC;YACpB,mCAAmC;YACnC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACvB,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QACzB,CAAC;QACD,OAAO,CAAC,CAAC;IACX,CAAC;IAED,GAAG,CAAC,GAAW,EAAE,KAAQ;QACvB,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACvB,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QAC3B,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC;YACnC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC,KAAM,CAAC;YAC9C,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,IAAI,IAAI,KAAa,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;IAC9C,KAAK,KAAW,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;CACtC;AASD,SAAS,OAAO,CAAC,IAAY,EAAE,MAAM,GAAG,EAAE;IACxC,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IAC3C,OAAO,OAAO,CAAC,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC;AAC9E,CAAC;AAED,oEAAoE;AACpE,SAAS,WAAW,CAAC,GAAY;IAC/B,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ;QAAE,OAAO,GAAG,CAAC,OAAO,CAAC;IACxD,gFAAgF;IAChF,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;QAC/B,OAAO,GAAG,CAAC,OAAO;aACf,MAAM,CAAC,CAAC,CAA0B,EAAE,EAAE,CAAC,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC;aAClE,GAAG,CAAC,CAAC,CAA0B,EAAE,EAAE,CAAC,CAAC,CAAC,IAAc,CAAC;aACrD,IAAI,CAAC,IAAI,CAAC,CAAC;IAChB,CAAC;IACD,OAAO,EAAE,CAAC;AACZ,CAAC;AAED,gDAAgD;AAChD,SAAS,WAAW,CAAC,GAAY;IAC/B,MAAM,GAAG,GAAG,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ;QACzC,CAAC,CAAC,GAAG,CAAC,OAAO;QACb,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;IACtC,OAAO,IAAA,gBAAM,EAAC,GAAG,CAAC,CAAC;AACrB,CAAC;AA4BD,MAAa,eAAe;IAClB,KAAK,CAAyB;IAC9B,IAAI,GAAG,CAAC,CAAC;IACT,MAAM,GAAG,CAAC,CAAC;IAEnB,YAAY,OAAO,GAAG,IAAI;QACxB,IAAI,CAAC,KAAK,GAAG,IAAI,QAAQ,CAAC,OAAO,CAAC,CAAC;IACrC,CAAC;IAED,IAAI,KAAK;QACP,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC;IACzE,CAAC;IAED;;;;;;;OAOG;IACH,aAAa,CACX,IAAY,EACZ,UAAmC,EACnC,QAAsB,EACtB,MAAiB;QAEjB,MAAM,QAAQ,GAAG,UAAU,CAAC,QAAQ,CAAC;QACrC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtD,4CAA4C;YAC5C,MAAM,EAAE,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;YAC7B,MAAM,MAAM,GAAG,IAAA,oBAAQ,EAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;YAChD,GAAG,CAAC,IAAI,CAAC,sBAAsB,EAAE;gBAC/B,SAAS,EAAE,IAAI,CAAC,MAAM;gBACtB,QAAQ,EAAE,QAAQ,CAAC,MAAM;gBACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM;gBAChC,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,UAAU,EAAE,CAAC,CAAC,WAAW,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;aACjD,CAAC,CAAC;YACH,OAAO,EAAE,GAAG,MAAM,EAAE,WAAW,EAAE,MAAM,CAAC,QAAQ,EAAE,cAAc,EAAE,EAAE,EAAE,CAAC;QACzE,CAAC;QAED,MAAM,EAAE,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,WAAW,GAAiB,EAAE,CAAC;QACrC,MAAM,cAAc,GAAiB,EAAE,CAAC;QACxC,MAAM,OAAO,GAAwB,EAAE,CAAC;QACxC,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,IAAI,eAAe,GAAG,CAAC,CAAC;QACxB,IAAI,QAAQ,GAAG,CAAC,CAAC;QACjB,IAAI,YAAY,GAAG,CAAC,CAAC;QACrB,IAAI,mBAAmB,GAAG,CAAC,CAAC;QAE5B,wCAAwC;QACxC,MAAM,MAAM,GAAG,UAAU,CAAC,MAAM,CAAC;QACjC,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,OAAO,GAAG,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YAC7E,MAAM,OAAO,GAAG,IAAA,gBAAM,EAAC,OAAO,CAAC,CAAC;YAChC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YACvC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;gBACzB,cAAc,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC;gBAC/B,mBAAmB,IAAI,MAAM,CAAC,MAAM,CAAC;gBACrC,QAAQ,EAAE,CAAC;gBACX,IAAI,CAAC,IAAI,EAAE,CAAC;gBACZ,OAAO,CAAC,IAAI,CAAC;oBACX,KAAK,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,OAAO,CAAC,MAAM;oBAChD,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;oBAC1C,QAAQ,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC;oBACxC,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC;iBAC1B,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,MAAM,MAAM,GAAG,IAAA,oBAAQ,EAAC,OAAO,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;gBACnD,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;gBACzC,WAAW,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC;gBACrC,UAAU,EAAE,CAAC;gBACb,eAAe,IAAI,OAAO,CAAC,MAAM,CAAC;gBAClC,IAAI,CAAC,MAAM,EAAE,CAAC;gBACd,OAAO,CAAC,IAAI,CAAC;oBACX,KAAK,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,OAAO,CAAC,MAAM;oBAChD,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;oBAC5C,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC;oBACjD,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC;iBAC1B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,iCAAiC;QACjC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACzC,MAAM,GAAG,GAAG,QAAQ,CAAC,CAAC,CAAY,CAAC;YACnC,MAAM,IAAI,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;YAC9B,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,IAAI,SAAS,CAAC;YAEnC,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,YAAY,EAAE,CAAC;gBACf,OAAO,CAAC,IAAI,CAAC;oBACX,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC;oBACxB,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,GAAG;oBAC1B,QAAQ,EAAE,EAAE;oBACZ,OAAO,EAAE,SAAS;iBACnB,CAAC,CAAC;gBACH,SAAS;YACX,CAAC;YAED,MAAM,IAAI,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;YAC9B,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YAEpC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;gBACzB,cAAc,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC;gBAC/B,mBAAmB,IAAI,MAAM,CAAC,MAAM,CAAC;gBACrC,QAAQ,EAAE,CAAC;gBACX,IAAI,CAAC,IAAI,EAAE,CAAC;gBACZ,OAAO,CAAC,IAAI,CAAC;oBACX,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,MAAM;oBAClC,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;oBACvC,QAAQ,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC;oBACxC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC;iBACvB,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,MAAM,MAAM,GAAG,IAAA,oBAAQ,EAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;gBAChD,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;gBACtC,WAAW,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC;gBACrC,UAAU,EAAE,CAAC;gBACb,eAAe,IAAI,IAAI,CAAC,MAAM,CAAC;gBAC/B,IAAI,CAAC,MAAM,EAAE,CAAC;gBACd,OAAO,CAAC,IAAI,CAAC;oBACX,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,MAAM;oBAClC,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;oBACzC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC;oBACjD,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC;iBACvB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,MAAM,WAAW,GAAG,CAAC,GAAG,WAAW,EAAE,GAAG,cAAc,CAAC,CAAC;QACxD,MAAM,aAAa,GAAG,QAAQ,CAAC,MAAM,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACzD,MAAM,UAAU,GAAG,CAAC,CAAC,WAAW,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;QACxD,MAAM,OAAO,GAAG,aAAa,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,GAAG,aAAa,CAAC,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAEvF,cAAc;QACd,GAAG,CAAC,IAAI,CAAC,0BAA0B,EAAE;YACnC,QAAQ,EAAE,aAAa;YACvB,QAAQ;YACR,UAAU;YACV,YAAY;YACZ,OAAO,EAAE,GAAG,OAAO,GAAG;YACtB,eAAe;YACf,SAAS,EAAE,IAAI,CAAC,MAAM;YACtB,UAAU,EAAE,IAAI,CAAC,MAAM,GAAG,eAAe;YACzC,WAAW,EAAE,WAAW,CAAC,MAAM;YAC/B,cAAc,EAAE,mBAAmB;YACnC,aAAa,EAAE,WAAW,CAAC,MAAM;YACjC,MAAM;YACN,UAAU;YACV,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI;YAC3B,cAAc,EAAE,IAAI,CAAC,IAAI;YACzB,gBAAgB,EAAE,IAAI,CAAC,MAAM;SAC9B,CAAC,CAAC;QAEH,yBAAyB;QACzB,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;YACxB,MAAM,GAAG,GAAG,CAAC,CAAC,MAAM,KAAK,OAAO;gBAC9B,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,KAAK,CAAC;gBACjD,CAAC,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS;oBACtB,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,MAAM,CAAC;oBACnD,CAAC,CAAC,MAAM,CAAC;YACb,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,IAAI,IAAI,GAAG,EAAE,EAAE;gBAC7C,KAAK,EAAE,CAAC,CAAC,KAAK;gBACd,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,QAAQ,EAAE,CAAC,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;gBACxD,OAAO,EAAE,CAAC,CAAC,OAAO;aACnB,CAAC,CAAC;QACL,CAAC;QAED,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC7B,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,EAAE,WAAW,EAAE,EAAE,EAAE,cAAc,EAAE,EAAE,EAAE,CAAC;QAC/E,CAAC;QAED,8CAA8C;QAC9C,IAAI,YAAgC,CAAC;QACrC,IAAI,MAAM,KAAK,QAAQ,EAAE,CAAC;YACxB,YAAY,GAAG,IAAI,CAAC;YACpB,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;gBAC5B,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,CAAC;oBAC1B,YAAY,GAAG,YAAY,CAAC,UAAU,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,WAAW,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC;gBACzF,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,WAAW,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,EAAE,CAAC;IACtF,CAAC;IAED,sDAAsD;IACtD,KAAK;QACH,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;QACnB,IAAI,CAAC,IAAI,GAAG,CAAC,CAAC;QACd,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;IAClB,CAAC;CACF;AApMD,0CAoMC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"context-aware.d.ts","sourceRoot":"","sources":["../../../src/dlp/patterns/context-aware.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE/C,iFAAiF;AACjF,eAAO,MAAM,oBAAoB,EAAE,UAAU,EAuC5C,CAAC"}
|
|
@@ -0,0 +1,45 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.contextAwarePatterns = void 0;
|
|
4
|
+
/** Context-aware patterns: only flag when surrounding text confirms the match */
|
|
5
|
+
exports.contextAwarePatterns = [
|
|
6
|
+
{
|
|
7
|
+
name: 'email-address',
|
|
8
|
+
category: 'context-aware',
|
|
9
|
+
regex: /\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}\b/g,
|
|
10
|
+
description: 'Email Address',
|
|
11
|
+
requireContext: ['email', 'contact', 'user', 'customer', 'address', 'send to', 'mailto'],
|
|
12
|
+
},
|
|
13
|
+
{
|
|
14
|
+
name: 'phone-number',
|
|
15
|
+
category: 'context-aware',
|
|
16
|
+
regex: /\b(?:\+1[-.\s]?)?(?:\(?[0-9]{3}\)?[-.\s]?)?[0-9]{3}[-.\s]?[0-9]{4}\b/g,
|
|
17
|
+
description: 'US Phone Number',
|
|
18
|
+
requireContext: ['phone', 'call', 'tel', 'mobile', 'cell', 'fax', 'contact'],
|
|
19
|
+
},
|
|
20
|
+
{
|
|
21
|
+
name: 'ip-address',
|
|
22
|
+
category: 'context-aware',
|
|
23
|
+
regex: /\b(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b/g,
|
|
24
|
+
description: 'IPv4 Address',
|
|
25
|
+
requireContext: ['ip', 'server', 'host', 'address', 'connect', 'network'],
|
|
26
|
+
},
|
|
27
|
+
{
|
|
28
|
+
name: 'drivers-license',
|
|
29
|
+
category: 'context-aware',
|
|
30
|
+
regex: /(?<![A-Za-z0-9_-])[A-Z][0-9]{7,12}(?![A-Za-z0-9_-])/g,
|
|
31
|
+
description: 'Driver License Number (letter prefix + 7-12 digits)',
|
|
32
|
+
requireContext: ['driver', 'license', 'licence', 'DL', 'driving'],
|
|
33
|
+
contextVerify: {
|
|
34
|
+
antiPatterns: [/(?:version|v\d|build|release|commit|sha|hash|ref)/i],
|
|
35
|
+
},
|
|
36
|
+
},
|
|
37
|
+
{
|
|
38
|
+
name: 'passport-number',
|
|
39
|
+
category: 'context-aware',
|
|
40
|
+
regex: /(?<![A-Za-z0-9_-])[A-Z]{1,2}[0-9]{6,9}(?![A-Za-z0-9_-])/g,
|
|
41
|
+
description: 'Passport Number',
|
|
42
|
+
requireContext: ['passport'],
|
|
43
|
+
},
|
|
44
|
+
];
|
|
45
|
+
//# sourceMappingURL=context-aware.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"context-aware.js","sourceRoot":"","sources":["../../../src/dlp/patterns/context-aware.ts"],"names":[],"mappings":";;;AAEA,iFAAiF;AACpE,QAAA,oBAAoB,GAAiB;IAChD;QACE,IAAI,EAAE,eAAe;QACrB,QAAQ,EAAE,eAAe;QACzB,KAAK,EAAE,qDAAqD;QAC5D,WAAW,EAAE,eAAe;QAC5B,cAAc,EAAE,CAAC,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,SAAS,EAAE,QAAQ,CAAC;KACzF;IACD;QACE,IAAI,EAAE,cAAc;QACpB,QAAQ,EAAE,eAAe;QACzB,KAAK,EAAE,uEAAuE;QAC9E,WAAW,EAAE,iBAAiB;QAC9B,cAAc,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,CAAC;KAC7E;IACD;QACE,IAAI,EAAE,YAAY;QAClB,QAAQ,EAAE,eAAe;QACzB,KAAK,EAAE,gGAAgG;QACvG,WAAW,EAAE,cAAc;QAC3B,cAAc,EAAE,CAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC;KAC1E;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,eAAe;QACzB,KAAK,EAAE,sDAAsD;QAC7D,WAAW,EAAE,qDAAqD;QAClE,cAAc,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,SAAS,EAAE,IAAI,EAAE,SAAS,CAAC;QACjE,aAAa,EAAE;YACb,YAAY,EAAE,CAAC,oDAAoD,CAAC;SACrE;KACF;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,eAAe;QACzB,KAAK,EAAE,0DAA0D;QACjE,WAAW,EAAE,iBAAiB;QAC9B,cAAc,EAAE,CAAC,UAAU,CAAC;KAC7B;CACF,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"high-confidence.d.ts","sourceRoot":"","sources":["../../../src/dlp/patterns/high-confidence.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE/C,6DAA6D;AAC7D,eAAO,MAAM,sBAAsB,EAAE,UAAU,EAwI9C,CAAC"}
|
|
@@ -0,0 +1,140 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.highConfidencePatterns = void 0;
|
|
4
|
+
/** High-confidence patterns: very low false positive rate */
|
|
5
|
+
exports.highConfidencePatterns = [
|
|
6
|
+
{
|
|
7
|
+
name: 'aws-access-key',
|
|
8
|
+
category: 'high-confidence',
|
|
9
|
+
regex: /(?<![A-Z0-9])AKIA[0-9A-Z]{16}(?![A-Z0-9])/g,
|
|
10
|
+
description: 'AWS Access Key ID',
|
|
11
|
+
contextVerify: {
|
|
12
|
+
confirmPatterns: [/(?:aws|amazon|iam|access.?key|secret.?key|credential)/i],
|
|
13
|
+
},
|
|
14
|
+
},
|
|
15
|
+
{
|
|
16
|
+
name: 'aws-secret-key',
|
|
17
|
+
category: 'high-confidence',
|
|
18
|
+
regex: /(?<![A-Za-z0-9/+_-])[A-Za-z0-9/+=]{40}(?![A-Za-z0-9/+_-])/g,
|
|
19
|
+
description: 'AWS Secret Access Key (40-char base64)',
|
|
20
|
+
// This is broad — only used when near "aws" or "secret" context
|
|
21
|
+
requireContext: ['aws', 'AWS_SECRET', 'AWS_SECRET_ACCESS_KEY'],
|
|
22
|
+
contextVerify: { minEntropy: 3.5 },
|
|
23
|
+
},
|
|
24
|
+
{
|
|
25
|
+
name: 'github-token',
|
|
26
|
+
category: 'high-confidence',
|
|
27
|
+
regex: /(?<![A-Za-z0-9_-])(?:ghp|gho|ghs|ghr)_[A-Za-z0-9]{36}(?![A-Za-z0-9_-])/g,
|
|
28
|
+
description: 'GitHub Personal Access Token (ghp_/gho_/ghs_/ghr_)',
|
|
29
|
+
},
|
|
30
|
+
{
|
|
31
|
+
name: 'github-fine-grained-token',
|
|
32
|
+
category: 'high-confidence',
|
|
33
|
+
regex: /(?<![A-Za-z0-9_-])github_pat_[A-Za-z0-9]{22}_[A-Za-z0-9]{59}(?![A-Za-z0-9_-])/g,
|
|
34
|
+
description: 'GitHub Fine-grained PAT',
|
|
35
|
+
},
|
|
36
|
+
{
|
|
37
|
+
name: 'slack-token',
|
|
38
|
+
category: 'high-confidence',
|
|
39
|
+
regex: /(?<![A-Za-z0-9_-])xox[bporas]-[0-9]{10,13}-[A-Za-z0-9-]{20,}(?![A-Za-z0-9_-])/g,
|
|
40
|
+
description: 'Slack Token',
|
|
41
|
+
},
|
|
42
|
+
{
|
|
43
|
+
name: 'stripe-secret-key',
|
|
44
|
+
category: 'high-confidence',
|
|
45
|
+
regex: /(?<![A-Za-z0-9_-])sk_(?:live|test)_[A-Za-z0-9]{24,}(?![A-Za-z0-9_-])/g,
|
|
46
|
+
description: 'Stripe Secret Key (sk_live_/sk_test_)',
|
|
47
|
+
},
|
|
48
|
+
{
|
|
49
|
+
name: 'private-key',
|
|
50
|
+
category: 'high-confidence',
|
|
51
|
+
regex: /-----BEGIN (?:RSA |EC |DSA |OPENSSH )?PRIVATE KEY-----/g,
|
|
52
|
+
description: 'Private Key Header',
|
|
53
|
+
},
|
|
54
|
+
// ── LLM Provider API Keys ──
|
|
55
|
+
{
|
|
56
|
+
name: 'openai-api-key',
|
|
57
|
+
category: 'high-confidence',
|
|
58
|
+
regex: /(?<![A-Za-z0-9_-])sk-(?!ant-)[A-Za-z0-9_-]{40,}(?![A-Za-z0-9_-])/g,
|
|
59
|
+
description: 'OpenAI API Key (also matches DeepSeek, Moonshot, Tongyi, and other sk- prefixed keys)',
|
|
60
|
+
contextVerify: {
|
|
61
|
+
confirmPatterns: [/(?:api|key|token|secret|openai|deepseek|moonshot|credential|bearer)/i],
|
|
62
|
+
minEntropy: 3.5,
|
|
63
|
+
},
|
|
64
|
+
},
|
|
65
|
+
{
|
|
66
|
+
name: 'anthropic-api-key',
|
|
67
|
+
category: 'high-confidence',
|
|
68
|
+
regex: /(?<![A-Za-z0-9_-])sk-ant-[A-Za-z0-9_-]{36,}(?![A-Za-z0-9_-])/g,
|
|
69
|
+
description: 'Anthropic API Key',
|
|
70
|
+
},
|
|
71
|
+
{
|
|
72
|
+
name: 'google-ai-api-key',
|
|
73
|
+
category: 'high-confidence',
|
|
74
|
+
regex: /(?<![A-Za-z0-9_-])AIzaSy[A-Za-z0-9_-]{33}(?![A-Za-z0-9_-])/g,
|
|
75
|
+
description: 'Google AI / Gemini API Key',
|
|
76
|
+
},
|
|
77
|
+
{
|
|
78
|
+
name: 'huggingface-token',
|
|
79
|
+
category: 'high-confidence',
|
|
80
|
+
regex: /(?<![A-Za-z0-9_-])hf_[A-Za-z0-9]{20,}(?![A-Za-z0-9_-])/g,
|
|
81
|
+
description: 'Hugging Face Access Token',
|
|
82
|
+
},
|
|
83
|
+
{
|
|
84
|
+
name: 'replicate-api-token',
|
|
85
|
+
category: 'high-confidence',
|
|
86
|
+
regex: /(?<![A-Za-z0-9_-])r8_[A-Za-z0-9]{37,}(?![A-Za-z0-9_-])/g,
|
|
87
|
+
description: 'Replicate API Token',
|
|
88
|
+
requireContext: ['replicate', 'REPLICATE', 'REPLICATE_API_TOKEN'],
|
|
89
|
+
},
|
|
90
|
+
{
|
|
91
|
+
name: 'groq-api-key',
|
|
92
|
+
category: 'high-confidence',
|
|
93
|
+
regex: /(?<![A-Za-z0-9_-])gsk_[A-Za-z0-9]{48,}(?![A-Za-z0-9_-])/g,
|
|
94
|
+
description: 'Groq API Key',
|
|
95
|
+
},
|
|
96
|
+
{
|
|
97
|
+
name: 'perplexity-api-key',
|
|
98
|
+
category: 'high-confidence',
|
|
99
|
+
regex: /(?<![A-Za-z0-9_-])pplx-[A-Za-z0-9]{48,}(?![A-Za-z0-9_-])/g,
|
|
100
|
+
description: 'Perplexity API Key',
|
|
101
|
+
},
|
|
102
|
+
{
|
|
103
|
+
name: 'xai-api-key',
|
|
104
|
+
category: 'high-confidence',
|
|
105
|
+
regex: /(?<![A-Za-z0-9_-])xai-[A-Za-z0-9]{48,}(?![A-Za-z0-9_-])/g,
|
|
106
|
+
description: 'xAI (Grok) API Key',
|
|
107
|
+
},
|
|
108
|
+
{
|
|
109
|
+
name: 'cohere-api-key',
|
|
110
|
+
category: 'high-confidence',
|
|
111
|
+
regex: /(?<![A-Za-z0-9_-])[A-Za-z0-9]{40}(?![A-Za-z0-9_-])/g,
|
|
112
|
+
description: 'Cohere / Mistral / Together AI API Key (40-char token)',
|
|
113
|
+
requireContext: ['cohere', 'CO_API_KEY', 'mistral', 'MISTRAL_API_KEY', 'TOGETHER_API_KEY', 'TOGETHER_AI'],
|
|
114
|
+
contextVerify: { minEntropy: 3.5 },
|
|
115
|
+
},
|
|
116
|
+
{
|
|
117
|
+
name: 'azure-openai-api-key',
|
|
118
|
+
category: 'high-confidence',
|
|
119
|
+
regex: /(?<![A-Za-z0-9_-])[a-f0-9]{32}(?![A-Za-z0-9_-])/g,
|
|
120
|
+
description: 'Azure OpenAI API Key (32-char hex)',
|
|
121
|
+
requireContext: ['azure', 'AZURE_OPENAI', 'openai.azure.com'],
|
|
122
|
+
contextVerify: { minEntropy: 3.5 },
|
|
123
|
+
},
|
|
124
|
+
{
|
|
125
|
+
name: 'telegram-bot-token',
|
|
126
|
+
category: 'high-confidence',
|
|
127
|
+
regex: /\b\d{8,10}:AA[A-Za-z0-9_-]{33,35}\b/g,
|
|
128
|
+
description: 'Telegram Bot Token',
|
|
129
|
+
},
|
|
130
|
+
{
|
|
131
|
+
name: 'password-assignment',
|
|
132
|
+
category: 'high-confidence',
|
|
133
|
+
regex: /(?:password|passwd|pwd|pass_?word|secret_?key|auth_?token|access_?token|api_?key|apikey|credential)[\s]*=\s*['"]?(?!(?:localStorage|document|window|console|JSON|Object|Array|Math|Date|String|Number|Boolean|null\b|undefined\b|true\b|false\b|function\b|new |this\.|self\.|require|import|export|return |typeof |void |os\.|config\.|process\.env|getenv|settings\.|env\[|environ|\$\{|System\.))([^\s'"(]{6,})/gi,
|
|
134
|
+
description: 'Password or secret assignment (key=value pattern)',
|
|
135
|
+
contextVerify: {
|
|
136
|
+
antiPatterns: [/(?:example|placeholder|your[_-]?|xxx|test[_-]?|sample|dummy|changeme)/i],
|
|
137
|
+
},
|
|
138
|
+
},
|
|
139
|
+
];
|
|
140
|
+
//# sourceMappingURL=high-confidence.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"high-confidence.js","sourceRoot":"","sources":["../../../src/dlp/patterns/high-confidence.ts"],"names":[],"mappings":";;;AAEA,6DAA6D;AAChD,QAAA,sBAAsB,GAAiB;IAClD;QACE,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,4CAA4C;QACnD,WAAW,EAAE,mBAAmB;QAChC,aAAa,EAAE;YACb,eAAe,EAAE,CAAC,wDAAwD,CAAC;SAC5E;KACF;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,4DAA4D;QACnE,WAAW,EAAE,wCAAwC;QACrD,gEAAgE;QAChE,cAAc,EAAE,CAAC,KAAK,EAAE,YAAY,EAAE,uBAAuB,CAAC;QAC9D,aAAa,EAAE,EAAE,UAAU,EAAE,GAAG,EAAE;KACnC;IACD;QACE,IAAI,EAAE,cAAc;QACpB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,yEAAyE;QAChF,WAAW,EAAE,oDAAoD;KAClE;IACD;QACE,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,gFAAgF;QACvF,WAAW,EAAE,yBAAyB;KACvC;IACD;QACE,IAAI,EAAE,aAAa;QACnB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,gFAAgF;QACvF,WAAW,EAAE,aAAa;KAC3B;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,uEAAuE;QAC9E,WAAW,EAAE,uCAAuC;KACrD;IACD;QACE,IAAI,EAAE,aAAa;QACnB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,yDAAyD;QAChE,WAAW,EAAE,oBAAoB;KAClC;IAED,8BAA8B;IAE9B;QACE,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,mEAAmE;QAC1E,WAAW,EAAE,uFAAuF;QACpG,aAAa,EAAE;YACb,eAAe,EAAE,CAAC,sEAAsE,CAAC;YACzF,UAAU,EAAE,GAAG;SAChB;KACF;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,+DAA+D;QACtE,WAAW,EAAE,mBAAmB;KACjC;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,6DAA6D;QACpE,WAAW,EAAE,4BAA4B;KAC1C;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,yDAAyD;QAChE,WAAW,EAAE,2BAA2B;KACzC;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,yDAAyD;QAChE,WAAW,EAAE,qBAAqB;QAClC,cAAc,EAAE,CAAC,WAAW,EAAE,WAAW,EAAE,qBAAqB,CAAC;KAClE;IACD;QACE,IAAI,EAAE,cAAc;QACpB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,0DAA0D;QACjE,WAAW,EAAE,cAAc;KAC5B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,2DAA2D;QAClE,WAAW,EAAE,oBAAoB;KAClC;IACD;QACE,IAAI,EAAE,aAAa;QACnB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,0DAA0D;QACjE,WAAW,EAAE,oBAAoB;KAClC;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,qDAAqD;QAC5D,WAAW,EAAE,wDAAwD;QACrE,cAAc,EAAE,CAAC,QAAQ,EAAE,YAAY,EAAE,SAAS,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,aAAa,CAAC;QACzG,aAAa,EAAE,EAAE,UAAU,EAAE,GAAG,EAAE;KACnC;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,kDAAkD;QACzD,WAAW,EAAE,oCAAoC;QACjD,cAAc,EAAE,CAAC,OAAO,EAAE,cAAc,EAAE,kBAAkB,CAAC;QAC7D,aAAa,EAAE,EAAE,UAAU,EAAE,GAAG,EAAE;KACnC;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,sCAAsC;QAC7C,WAAW,EAAE,oBAAoB;KAClC;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,QAAQ,EAAE,iBAAiB;QAC3B,KAAK,EAAE,sZAAsZ;QAC7Z,WAAW,EAAE,mDAAmD;QAChE,aAAa,EAAE;YACb,YAAY,EAAE,CAAC,wEAAwE,CAAC;SACzF;KACF;CACF,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"prompt-injection.d.ts","sourceRoot":"","sources":["../../../src/dlp/patterns/prompt-injection.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE/C,wDAAwD;AACxD,eAAO,MAAM,uBAAuB,EAAE,UAAU,EAqP/C,CAAC"}
|