@anren-utils/mcp-audit 1.0.0

package/dist/parseProject/parseRemoteProject.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"parseRemoteProject.js","sourceRoot":"","sources":["../../src/parseProject/parseRemoteProject.ts"],"names":[],"mappings":"AAmBA;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,WAAW,CAAC,GAAW;IACrC,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,QAAQ,GAAG,SAAS,CAAC,QAAQ,CAAC;QAEpC,OAAO;QACP,IAAI,QAAgB,CAAC;QACrB,IAAI,QAAQ,KAAK,YAAY,IAAI,QAAQ,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;YAClE,QAAQ,GAAG,QAAQ,CAAC;QACtB,CAAC;aAAM,IAAI,QAAQ,KAAK,WAAW,IAAI,QAAQ,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;YACvE,QAAQ,GAAG,OAAO,CAAC;QACrB,CAAC;aAAM,IAAI,QAAQ,KAAK,YAAY,IAAI,QAAQ,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;YACzE,QAAQ,GAAG,QAAQ,CAAC;QACtB,CAAC;aAAM,CAAC;YACN,QAAQ,GAAG,SAAS,CAAC;QACvB,CAAC;QAED,sBAAsB;QACtB,MAAM,KAAK,GAAG,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAE5D,oCAAoC;QACpC,sCAAsC;QACtC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;QACxE,CAAC;QAED,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;QACxB,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;QACvB,+DAA+D;QAC/D,MAAM,QAAQ,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,uCAAuC;QAExE,sCAAsC;QACtC,MAAM,IAAI,GAAG,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAEjE,MAAM,cAAc,GAAyB;YAC3C,KAAK;YACL,IAAI;YACJ,IAAI;YACJ,QAAQ;YACR,WAAW,EAAE,GAAG;SACjB,CAAC;QACF,OAAO,cAAc,CAAC;IACxB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,SAAS,EAAE,CAAC;YAC/B,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;QACD,MAAM,KAAK,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,uBAAuB,CACpC,cAAoC;IAEpC,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,cAAc,CAAC;IAC7C,IAAI,UAAkB,CAAC;IAEvB,qEAAqE;IACrE,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC9B,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAClD,UAAU,GAAG,SAAS,CAAC,CAAC,CAAE,CAAC;IAC7B,CAAC;SAAM,CAAC;QACN,yBAAyB;QACzB,MAAM,GAAG,GAAG,gCAAgC,KAAK,IAAI,IAAI,EAAE,CAAC;QAC5D,MAAM,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAC3C,IAAI,CAAC,IAAI,EAAE,CACZ,CAAmB,CAAC;QACrB,UAAU,GAAG,IAAI,CAAC,cAAc,CAAC;IACnC,CAAC;IACD,OAAO;QACL,UAAU;QACV,cAAc,EAAE,qCAAqC,KAAK,IAAI,IAAI,IAAI,UAAU,eAAe;KAChG,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,sBAAsB,CACnC,cAAoC;IAEpC,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,cAAc,CAAC;IAC7C,IAAI,UAAkB,CAAC;IAEvB,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC9B,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAClD,UAAU,GAAG,SAAS,CAAC,CAAC,CAAE,CAAC;IAC7B,CAAC;SAAM,CAAC;QACN,yBAAyB;QACzB,MAAM,GAAG,GAAG,kCAAkC,KAAK,IAAI,IAAI,EAAE,CAAC;QAC9D,MAAM,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAC3C,IAAI,CAAC,IAAI,EAAE,CACZ,CAAmB,CAAC;QACrB,UAAU,GAAG,IAAI,CAAC,cAAc,CAAC;IACnC,CAAC;IACD,OAAO;QACL,UAAU;QACV,cAAc,EAAE,qBAAqB,KAAK,IAAI,IAAI,QAAQ,UAAU,eAAe;KACpF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,uBAAuB,CACpC,cAAoC;IAEpC,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,cAAc,CAAC;IAC7C,IAAI,UAAkB,CAAC;IAEvB,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC9B,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAClD,UAAU,GAAG,GAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC;IACjC,CAAC;SAAM,CAAC;QACN,yBAAyB;QACzB,eAAe;QACf,MAAM,GAAG,GAAG,sCAAsC,KAAK,IAAI,IAAI,EAAE,CAAC;QAClE,MAAM,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAC3C,IAAI,CAAC,IAAI,EAAE,CACZ,CAAmB,CAAC;QACrB,UAAU,GAAG,IAAI,CAAC,cAAc,CAAC;IACnC,CAAC;IACD,OAAO;QACL,UAAU;QACV,cAAc,EAAE,sBAAsB,KAAK,IAAI,IAAI,UAAU,UAAU,eAAe;KACvF,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,UAAgC;IACtE,+BAA+B;IAC/B,QAAQ,UAAU,CAAC,QAAQ,EAAE,CAAC;QAC5B,KAAK,QAAQ;YACX,OAAO,MAAM,uBAAuB,CAAC,UAAU,CAAC,CAAC;QACnD,KAAK,OAAO;YACV,OAAO,MAAM,sBAAsB,CAAC,UAAU,CAAC,CAAC;QAClD,KAAK,QAAQ;YACX,OAAO,MAAM,uBAAuB,CAAC,UAAU,CAAC,CAAC;QACnD;YACE,MAAM,IAAI,KAAK,CAAC,yBAAyB,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC;IACpE,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CAAC,MAAc;IACrD,MAAM,OAAO,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;IACpC,MAAM,EAAE,cAAc,EAAE,GAAG,MAAM,iBAAiB,CAAC,OAAO,CAAC,CAAC;IAC5D,SAAS;IACT,OAAO,CAAC,MAAM,KAAK,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAChD,IAAI,CAAC,IAAI,EAAE,CACZ,CAA6B,CAAC;AACjC,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,iCAAiC,CAC9C,cAAoC,EACpC,cAAwB;IAExB,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,cAAc,CAAC;IAC7C,IAAI,UAAkB,CAAC;IAEvB,qEAAqE;IACrE,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC9B,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAClD,UAAU,GAAG,SAAS,CAAC,CAAC,CAAE,CAAC;IAC7B,CAAC;SAAM,CAAC;QACN,yBAAyB;QACzB,MAAM,GAAG,GAAG,gCAAgC,KAAK,IAAI,IAAI,EAAE,CAAC;QAC5D,MAAM,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAC3C,IAAI,CAAC,IAAI,EAAE,CACZ,CAAmB,CAAC;QACrB,UAAU,GAAG,IAAI,CAAC,cAAc,CAAC;IACnC,CAAC;IACD,0FAA0F;IAC1F,OAAO,mFAAmF,CAAC;AAC7F,CAAC"}

package/dist/parseProject/parseRemoteWorkspace.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=parseRemoteWorkspace.d.ts.map

package/dist/parseProject/parseRemoteWorkspace.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"parseRemoteWorkspace.d.ts","sourceRoot":"","sources":["../../src/parseProject/parseRemoteWorkspace.ts"],"names":[],"mappings":""}

package/dist/parseProject/parseRemoteWorkspace.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=parseRemoteWorkspace.js.map

package/dist/parseProject/parseRemoteWorkspace.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"parseRemoteWorkspace.js","sourceRoot":"","sources":["../../src/parseProject/parseRemoteWorkspace.ts"],"names":[],"mappings":""}

package/dist/parseProject/parseWorkspace.d.ts

@@ -0,0 +1,19 @@
+import type { PackageJsonInfo } from "../types.js";
+import { type RemoteProjectUrlInfo } from "./parseRemoteProject.js";
+interface ParseWorkspaceOptions {
+    /** 项目地址链接 */
+    projectRoot: string;
+    /** 项目根package.json文件内容 */
+    packageJsonRoot: PackageJsonInfo;
+}
+export interface RemoteWorkspaceInfo {
+    gitInfo?: RemoteProjectUrlInfo;
+    branchName?: string;
+    subPackageNames: string[];
+}
+/**
+ * 工具项目地址，判断是本地工程还是远程仓库
+ */
+export declare function parseWorkspace(options: ParseWorkspaceOptions): Promise<RemoteWorkspaceInfo | null>;
+export {};
+//# sourceMappingURL=parseWorkspace.d.ts.map

package/dist/parseProject/parseWorkspace.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"parseWorkspace.d.ts","sourceRoot":"","sources":["../../src/parseProject/parseWorkspace.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AACnD,OAAO,EAGL,KAAK,oBAAoB,EAC1B,MAAM,yBAAyB,CAAC;AAEjC,UAAU,qBAAqB;IAC7B,aAAa;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,0BAA0B;IAC1B,eAAe,EAAE,eAAe,CAAC;CAClC;AAWD,MAAM,WAAW,mBAAmB;IAClC,OAAO,CAAC,EAAE,oBAAoB,CAAC;IAC/B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,qBAAqB,uCAQ5D"}

package/dist/parseProject/parseWorkspace.js

@@ -0,0 +1,140 @@
+import { readdirSync, promises } from "fs";
+import { join } from "path";
+import yaml from "js-yaml";
+import { getPackageJsonUrl, parseGitUrl, } from "./parseRemoteProject.js";
+/**
+ * 工具项目地址，判断是本地工程还是远程仓库
+ */
+export function parseWorkspace(options) {
+    const { projectRoot } = options;
+    // 分辨是本地工程还是远程仓库
+    if (projectRoot.startsWith("http://") || projectRoot.startsWith("https://")) {
+        // 远程项目
+        return parseRemoteWorkspace(options);
+    }
+    return parseLocalWorkspace(options);
+}
+/**
+ * @Desc: 获取本地项目中Monorepo项目相关信息
+ * @param {string} projectRoot 本地项目地址
+ * @param {PackageJsonInfo} packageJsonRoot 项目根package.json文件内容
+ * @return {string[]} 项目中的子包位置信息，例如：[ 'packages/**', 'apps/**', 'features/**' ]
+ */
+async function getMonorepoInfoByLocal(projectRoot, packageJsonRoot) {
+    // 判断指定目录下是否有文件名包含workspace.yaml的文件，例如：pnpm-workspace.yaml
+    const fileNames = await readdirSync(projectRoot);
+    const workspaceFileName = fileNames.find((fileName) => fileName.includes("workspace.yaml"));
+    if (workspaceFileName) {
+        const workspaceFile = join(projectRoot, workspaceFileName);
+        const fileContent = await promises.readFile(workspaceFile, "utf8");
+        const fileInfo = yaml.load(fileContent);
+        return {
+            workspaces: fileInfo.packages,
+        };
+    }
+    // 判断packageJson文件中是否有workspaces字段
+    if (packageJsonRoot.workspaces && packageJsonRoot.workspaces.length > 0) {
+        return {
+            workspaces: packageJsonRoot.workspaces,
+        };
+    }
+    return null;
+}
+/**
+ * @Desc: 获取本地项目中workspace相关信息
+ * @param {options} options 包含projectRoot和packageJsonRoot 项目根package.json文件内容
+ * @param {string[]} options.projectRoot 本地项目地址
+ * @param {string} options.packageJsonRoot package.json文件内容
+ */
+async function parseLocalWorkspace(options) {
+    const { projectRoot, packageJsonRoot } = options;
+    const monorepoInfo = await getMonorepoInfoByLocal(projectRoot, packageJsonRoot);
+    if (!monorepoInfo) {
+        // 本地项目不是monorepo工程
+        return null;
+    }
+    const { workspaces } = monorepoInfo;
+    // 获取子包所在位置
+    const workspaceNames = workspaces.map((workspace) => workspace.split("/")[0]);
+    const subPackageNames = await Promise.all(workspaceNames.map(async (workspaceName) => {
+        if (!workspaceName) {
+            return [];
+        }
+        const packageName = join(projectRoot, workspaceName);
+        // 获取所有子包项目
+        const subFileNames = await readdirSync(packageName);
+        return subFileNames.map((sub) => workspaceName + "/" + sub);
+    }));
+    return {
+        subPackageNames: subPackageNames.flat(),
+    };
+}
+/**
+ * @Desc: 获取远程项目中Monorepo项目相关信息
+ * @param {string} projectRoot 远程项目地址
+ * @param {PackageJsonInfo} packageJsonRoot 项目根package.json文件内容
+ * @return {string[]} 项目中的子包位置信息，例如：[ 'packages/**', 'apps/**', 'features/**' ]
+ */
+async function getMonorepoInfoByRemote(projectRoot, packageJsonRoot) {
+    const gitInfo = parseGitUrl(projectRoot);
+    const { owner, repo } = gitInfo;
+    const { branchName } = await getPackageJsonUrl(gitInfo);
+    const projectInfoUrl = `https://api.github.com/repos/${owner}/${repo}/contents?ref=${branchName}`;
+    const contentInfoList = (await fetch(projectInfoUrl).then((resp) => resp.json()));
+    const workspaceFileInfo = contentInfoList.findLast((item) => item.name.includes("workspace.yaml"));
+    if (workspaceFileInfo) {
+        const fileContent = await fetch(workspaceFileInfo.download_url).then((resp) => resp.text());
+        const fileInfo = yaml.load(fileContent);
+        return {
+            gitInfo,
+            branchName,
+            workspaces: fileInfo.packages,
+        };
+    }
+    // 判断packageJson文件中是否有workspaces字段
+    if (packageJsonRoot.workspaces && packageJsonRoot.workspaces.length > 0) {
+        return {
+            gitInfo,
+            branchName,
+            workspaces: packageJsonRoot.workspaces,
+        };
+    }
+    return null;
+}
+/**
+ * @Desc: 获取远程项目中workspace相关信息
+ * @param {options} options 包含gitInfo和packageJsonRoot 项目根package.json文件内容
+ * @param {string[]} options.projectRoot 远程项目地址
+ * @param {string} options.packageJsonRoot package.json文件内容
+ */
+async function parseRemoteWorkspace(options) {
+    const { projectRoot, packageJsonRoot } = options;
+    const monorepoInfo = await getMonorepoInfoByRemote(projectRoot, packageJsonRoot);
+    if (!monorepoInfo) {
+        // 远程项目不是monorepo工程
+        return null;
+    }
+    const { gitInfo, branchName, workspaces } = monorepoInfo;
+    const { owner, repo } = gitInfo;
+    // 获取子包所在位置
+    const workspaceNames = workspaces.map((workspace) => workspace.split("/")[0]);
+    const subPackageNames = await Promise.all(workspaceNames.map(async (workspaceName) => {
+        if (!workspaceName) {
+            return [];
+        }
+        const packageInfoUrl = `https://api.github.com/repos/${owner}/${repo}/contents/${workspaceName}?ref=${branchName}`;
+        // 获取所有子包项目
+        const subFileInfoList = (await fetch(packageInfoUrl)
+            .then((resp) => resp.json())
+            .catch((err) => {
+            return [];
+        }));
+        return subFileInfoList.map((sub) => workspaceName + "/" + sub.name);
+    }));
+    return {
+        gitInfo,
+        branchName,
+        subPackageNames: subPackageNames.flat(),
+    };
+}
+//# sourceMappingURL=parseWorkspace.js.map

package/dist/parseProject/parseWorkspace.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"parseWorkspace.js","sourceRoot":"","sources":["../../src/parseProject/parseWorkspace.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AAC3C,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,IAAI,MAAM,SAAS,CAAC;AAE3B,OAAO,EACL,iBAAiB,EACjB,WAAW,GAEZ,MAAM,yBAAyB,CAAC;AAwBjC;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,OAA8B;IAC3D,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC;IAChC,gBAAgB;IAChB,IAAI,WAAW,CAAC,UAAU,CAAC,SAAS,CAAC,IAAI,WAAW,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC5E,OAAO;QACP,OAAO,oBAAoB,CAAC,OAAO,CAAC,CAAC;IACvC,CAAC;IACD,OAAO,mBAAmB,CAAC,OAAO,CAAC,CAAC;AACtC,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,sBAAsB,CACnC,WAAmB,EACnB,eAAgC;IAEhC,0DAA0D;IAC1D,MAAM,SAAS,GAAG,MAAM,WAAW,CAAC,WAAW,CAAC,CAAC;IACjD,MAAM,iBAAiB,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE,CACpD,QAAQ,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CACpC,CAAC;IACF,IAAI,iBAAiB,EAAE,CAAC;QACtB,MAAM,aAAa,GAAG,IAAI,CAAC,WAAW,EAAE,iBAAiB,CAAC,CAAC;QAC3D,MAAM,WAAW,GAAG,MAAM,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;QACnE,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,CAA2B,CAAC;QAClE,OAAO;YACL,UAAU,EAAE,QAAQ,CAAC,QAAQ;SAC9B,CAAC;IACJ,CAAC;IACD,kCAAkC;IAClC,IAAI,eAAe,CAAC,UAAU,IAAI,eAAe,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxE,OAAO;YACL,UAAU,EAAE,eAAe,CAAC,UAAsB;SACnD,CAAC;IACJ,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,mBAAmB,CAChC,OAA8B;IAE9B,MAAM,EAAE,WAAW,EAAE,eAAe,EAAE,GAAG,OAAO,CAAC;IACjD,MAAM,YAAY,GAAG,MAAM,sBAAsB,CAC/C,WAAW,EACX,eAAe,CAChB,CAAC;IACF,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,mBAAmB;QACnB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,MAAM,EAAE,UAAU,EAAE,GAAG,YAAY,CAAC;IACpC,WAAW;IACX,MAAM,cAAc,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9E,MAAM,eAAe,GAAG,MAAM,OAAO,CAAC,GAAG,CACvC,cAAc,CAAC,GAAG,CAAC,KAAK,EAAE,aAAa,EAAE,EAAE;QACzC,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC;QACrD,WAAW;QACX,MAAM,YAAY,GAAG,MAAM,WAAW,CAAC,WAAW,CAAC,CAAC;QACpD,OAAO,YAAY,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,aAAa,GAAG,GAAG,GAAG,GAAG,CAAC,CAAC;IAC9D,CAAC,CAAC,CACH,CAAC;IACF,OAAO;QACL,eAAe,EAAE,eAAe,CAAC,IAAI,EAAE;KACxC,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,uBAAuB,CACpC,WAAmB,EACnB,eAAgC;IAEhC,MAAM,OAAO,GAAG,WAAW,CAAC,WAAW,CAAC,CAAC;IACzC,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC;IAChC,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,iBAAiB,CAAC,OAAO,CAAC,CAAC;IACxD,MAAM,cAAc,GAAG,gCAAgC,KAAK,IAAI,IAAI,iBAAiB,UAAU,EAAE,CAAC;IAClG,MAAM,eAAe,GAAG,CAAC,MAAM,KAAK,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CACjE,IAAI,CAAC,IAAI,EAAE,CACZ,CAAqB,CAAC;IACvB,MAAM,iBAAiB,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC,IAAI,EAAE,EAAE,CAC1D,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CACrC,CAAC;IAEF,IAAI,iBAAiB,EAAE,CAAC;QACtB,MAAM,WAAW,GAAG,MAAM,KAAK,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAC,IAAI,CAClE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CACtB,CAAC;QACF,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,CAA2B,CAAC;QAClE,OAAO;YACL,OAAO;YACP,UAAU;YACV,UAAU,EAAE,QAAQ,CAAC,QAAQ;SAC9B,CAAC;IACJ,CAAC;IACD,kCAAkC;IAClC,IAAI,eAAe,CAAC,UAAU,IAAI,eAAe,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxE,OAAO;YACL,OAAO;YACP,UAAU;YACV,UAAU,EAAE,eAAe,CAAC,UAAU;SACvC,CAAC;IACJ,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,oBAAoB,CACjC,OAA8B;IAE9B,MAAM,EAAE,WAAW,EAAE,eAAe,EAAE,GAAG,OAAO,CAAC;IACjD,MAAM,YAAY,GAAG,MAAM,uBAAuB,CAChD,WAAW,EACX,eAAe,CAChB,CAAC;IAEF,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,mBAAmB;QACnB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,GAAG,YAAY,CAAC;IACzD,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC;IAChC,WAAW;IACX,MAAM,cAAc,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9E,MAAM,eAAe,GAAG,MAAM,OAAO,CAAC,GAAG,CACvC,cAAc,CAAC,GAAG,CAAC,KAAK,EAAE,aAAa,EAAE,EAAE;QACzC,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,MAAM,cAAc,GAAG,gCAAgC,KAAK,IAAI,IAAI,aAAa,aAAa,QAAQ,UAAU,EAAE,CAAC;QACnH,WAAW;QACX,MAAM,eAAe,GAAG,CAAC,MAAM,KAAK,CAAC,cAAc,CAAC;aACjD,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;aAC3B,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;YACb,OAAO,EAAE,CAAC;QACZ,CAAC,CAAC,CAAqB,CAAC;QAE1B,OAAO,eAAe,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,aAAa,GAAG,GAAG,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC;IACtE,CAAC,CAAC,CACH,CAAC;IACF,OAAO;QACL,OAAO;QACP,UAAU;QACV,eAAe,EAAE,eAAe,CAAC,IAAI,EAAE;KACxC,CAAC;AACJ,CAAC"}

package/dist/render/index.d.ts

@@ -0,0 +1,9 @@
+import type { NormalizedResult } from "../audit/normalizeAuditResult.js";
+import type { PackageJsonInfo } from "../types.js";
+/**
+ * 讲auditResult渲染为markdown格式的字符串
+ * @param {object} auditResult 规范化的审计结果
+ * @param {object} packageJson 包的package.json内容
+ */
+export declare function render(auditResult: NormalizedResult, packageJson: PackageJsonInfo): Promise<string>;
+//# sourceMappingURL=index.d.ts.map

package/dist/render/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/render/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAanD;;;;GAIG;AACH,wBAAsB,MAAM,CAC1B,WAAW,EAAE,gBAAgB,EAC7B,WAAW,EAAE,eAAe,mBAQ7B"}

package/dist/render/index.js

@@ -0,0 +1,24 @@
+import { renderMarkdown } from "./markdown.js";
+const desc = {
+    severityLevels: {
+        low: "低危",
+        moderate: "中危",
+        high: "高危",
+        critical: "严重",
+        info: "信息",
+    },
+};
+/**
+ * 讲auditResult渲染为markdown格式的字符串
+ * @param {object} auditResult 规范化的审计结果
+ * @param {object} packageJson 包的package.json内容
+ */
+export async function render(auditResult, packageJson) {
+    const data = {
+        audit: auditResult,
+        desc,
+        packageJson,
+    };
+    return await renderMarkdown(data);
+}
+//# sourceMappingURL=index.js.map

package/dist/render/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/render/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,cAAc,EAAqB,MAAM,eAAe,CAAC;AAElE,MAAM,IAAI,GAAG;IACX,cAAc,EAAE;QACd,GAAG,EAAE,IAAI;QACT,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,IAAI;QACV,QAAQ,EAAE,IAAI;QACd,IAAI,EAAE,IAAI;KACX;CACF,CAAC;AAEF;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,MAAM,CAC1B,WAA6B,EAC7B,WAA4B;IAE5B,MAAM,IAAI,GAAiB;QACzB,KAAK,EAAE,WAAW;QAClB,IAAI;QACJ,WAAW;KACZ,CAAC;IACF,OAAO,MAAM,cAAc,CAAC,IAAI,CAAC,CAAC;AACpC,CAAC"}

package/dist/render/markdown.d.ts

@@ -0,0 +1,12 @@
+import type { NormalizedResult } from "../audit/normalizeAuditResult.js";
+import type { AuditSeverity, PackageJsonInfo } from "../types.js";
+export interface MarkdownDesc {
+    severityLevels: Record<AuditSeverity, string>;
+}
+export interface MarkdownData {
+    audit: NormalizedResult;
+    desc: MarkdownDesc;
+    packageJson: PackageJsonInfo;
+}
+export declare function renderMarkdown(data: MarkdownData): Promise<string>;
+//# sourceMappingURL=markdown.d.ts.map

package/dist/render/markdown.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"markdown.d.ts","sourceRoot":"","sources":["../../src/render/markdown.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,KAAK,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAElE,MAAM,WAAW,YAAY;IAC3B,cAAc,EAAE,MAAM,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;CAC/C;AAED,MAAM,WAAW,YAAY;IAC3B,KAAK,EAAE,gBAAgB,CAAC;IACxB,IAAI,EAAE,YAAY,CAAC;IACnB,WAAW,EAAE,eAAe,CAAC;CAC9B;AAID,wBAAgB,cAAc,CAAC,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,MAAM,CAAC,CAUlE"}

package/dist/render/markdown.js

@@ -0,0 +1,16 @@
+import ejs from "ejs";
+import { join } from "path";
+import { getDirname } from "../utils/index.js";
+const templatePath = join(getDirname(import.meta.url), "./template/index.ejs");
+export function renderMarkdown(data) {
+    return new Promise((resolve, reject) => {
+        ejs.renderFile(templatePath, data, (err, str) => {
+            if (err) {
+                reject(err);
+                return;
+            }
+            resolve(str);
+        });
+    });
+}
+//# sourceMappingURL=markdown.js.map

package/dist/render/markdown.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"markdown.js","sourceRoot":"","sources":["../../src/render/markdown.ts"],"names":[],"mappings":"AAAA,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAc/C,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,sBAAsB,CAAC,CAAC;AAE/E,MAAM,UAAU,cAAc,CAAC,IAAkB;IAC/C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,GAAG,CAAC,UAAU,CAAC,YAAY,EAAE,IAAI,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YAC9C,IAAI,GAAG,EAAE,CAAC;gBACR,MAAM,CAAC,GAAG,CAAC,CAAC;gBACZ,OAAO;YACT,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,CAAC;QACf,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/render/template/audit.ejs

@@ -0,0 +1,30 @@
+您所审计的工程总共有 **<%- audit.summary.total %>** 个风险漏洞。
+
+其中：
+
+- **<%- desc.severityLevels.critical %>漏洞**：共计 **<%- audit.summary.critical %>** 个
+- **<%- desc.severityLevels.high %>漏洞**：共计 **<%- audit.summary.high %>** 个
+- **<%- desc.severityLevels.moderate %>漏洞**：共计 **<%- audit.summary.moderate %>** 个
+- **<%- desc.severityLevels.low %>漏洞**：共计 **<%- audit.summary.low %>** 个
+
+> 说明：
+>
+> - **<%- desc.severityLevels.critical %>**漏洞被认为是极其严重的，应该立即修复。
+> - **<%- desc.severityLevels.high %>**漏洞被认为是严重的，应该尽快修复。
+> - **<%- desc.severityLevels.moderate %>**漏洞被认为是中等严重的，可以选择在时间允许时修复。
+> - **<%- desc.severityLevels.low %>**漏洞被认为是轻微的，可以根据自行需要进行修复。
+
+下面是漏洞的详细信息
+
+<% if (audit.summary.critical) { %>
+<%- include('./detail.ejs', {type:'critical'}); %>
+<% } %>
+<% if (audit.summary.high) { %>
+<%- include('./detail.ejs', {type:'high'}); %>
+<% } %>
+<% if (audit.summary.moderate) { %>
+<%- include('./detail.ejs', {type:'moderate'}); %>
+<% } %>
+<% if (audit.summary.low) { %>
+<%- include('./detail.ejs', {type:'low'}); %> 
+<% } %>

package/dist/render/template/detail-item.ejs

@@ -0,0 +1,32 @@
+### `<%- item.name -%>`
+
+**漏洞描述**：
+<% item.problems.forEach((problem) => { %>
+- <%- problem.title %>
+  - npm漏洞编号：`<%- problem.source %>`
+  - 漏洞详细说明：<%- problem.url %>
+  - 漏洞等级：<%- desc.severityLevels[problem.severity] %>
+  - 受影响的版本：`<%- problem.range %>`
+<% }); %>
+
+**依赖关系**：
+<% if(item.depChains.length === 0) { %>
+<% if(item.name === packageJson.name) { %>
+当前工程
+<% } else { %>
+- `<%- packageJson.name %>` / <%- item.name %>
+<% } %>
+<% } else { %>
+<% item.depChains.forEach((chain) => { %>
+<% if(chain.length === 1 && chain[0] === packageJson.name) { %>
+当前工程
+<% } else { %>
+- `<%- packageJson.name %>` / <%- chain.map(c=>`\`${c}\``).join(' / ') %>
+<% } %>
+  <% }); %>
+  <% } %>
+
+**漏洞包所在目录**：
+<% item.nodes.forEach((path) => { %>
+- `<%- path %>`
+<% }); %>

package/dist/render/template/detail.ejs

@@ -0,0 +1,7 @@
+## <%-desc.severityLevels[type] %>漏洞
+
+共计 **<%- audit.summary[type] %>** 个
+
+<% audit.vulnerabilities[type].forEach(function(item){ %>
+<%- include('./detail-item.ejs', {item: item}) %>
+<% }); %>

package/dist/render/template/index.ejs

@@ -0,0 +1,8 @@
+# `<%- packageJson.name %>`审计结果
+
+<% if(audit.summary.total) { %>
+<%- include('./audit.ejs'); %>
+<% } %>
+<% if(audit.summary.total === 0) { %>
+你项目的所有直接依赖和间接依赖都没有发现任何风险漏洞。
+<% } %>