@avinashchby/aireview 0.1.0

package/dist/rules/placeholder-code.js

@@ -0,0 +1,113 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.placeholderCodeRule = void 0;
+/** Comment patterns indicating placeholder/stub code. */
+const PLACEHOLDER_COMMENT_PATTERNS = [
+    { pattern: /\bTODO\b/i, severity: 'warning', label: 'TODO comment' },
+    { pattern: /\bFIXME\b/i, severity: 'warning', label: 'FIXME comment' },
+    { pattern: /\bHACK\b/i, severity: 'warning', label: 'HACK comment' },
+    { pattern: /\bXXX\b/i, severity: 'warning', label: 'XXX comment' },
+    { pattern: /implement\s+this/i, severity: 'info', label: 'Placeholder: "implement this"' },
+    { pattern: /add\s+your\s+code\s+here/i, severity: 'info', label: 'Placeholder: "add your code here"' },
+    { pattern: /your\s+code\s+here/i, severity: 'info', label: 'Placeholder: "your code here"' },
+    { pattern: /implement\s+me/i, severity: 'info', label: 'Placeholder: "implement me"' },
+    { pattern: /add\s+implementation/i, severity: 'info', label: 'Placeholder: "add implementation"' },
+    { pattern: /\bplaceholder\b/i, severity: 'info', label: 'Placeholder comment' },
+    { pattern: /not\s+yet\s+implemented/i, severity: 'info', label: 'Placeholder: "not yet implemented"' },
+];
+/** Patterns for elided code comments. */
+const ELIDED_COMMENT = /^(\/\/|#)\s*\.\.\.$/;
+/** Create a finding for the placeholder-code rule. */
+function makeFinding(line, column, snippet, message, explanation, severity, filePath) {
+    return {
+        ruleId: 'placeholder-code',
+        category: 'placeholder-code',
+        severity,
+        message,
+        filePath,
+        line,
+        column,
+        snippet,
+        explanation,
+    };
+}
+/** Check comments for placeholder patterns. */
+function checkComments(parserResult, filePath) {
+    const findings = [];
+    for (const comment of parserResult.comments) {
+        for (const { pattern, severity, label } of PLACEHOLDER_COMMENT_PATTERNS) {
+            if (pattern.test(comment.text)) {
+                findings.push(makeFinding(comment.line, comment.column, comment.text, `${label} found`, 'Replace placeholder code with actual implementation.', severity, filePath));
+                break; // Only flag once per comment
+            }
+        }
+    }
+    return findings;
+}
+/** Check function declarations for empty/stub bodies. */
+function checkFunctionDecls(parserResult, filePath) {
+    const findings = [];
+    for (const fn of parserResult.functionDecls) {
+        if (fn.isEmpty || fn.bodyLineCount === 0) {
+            findings.push(makeFinding(fn.line, 1, `function ${fn.name}`, `Empty function body: '${fn.name}'`, 'Empty functions suggest incomplete implementation. Add the function logic.', 'error', filePath));
+        }
+        else if (fn.returnsNullish) {
+            findings.push(makeFinding(fn.line, 1, `function ${fn.name}`, `Function '${fn.name}' only returns a nullish/empty value`, 'Functions returning only null/undefined/empty are likely stubs.', 'error', filePath));
+        }
+    }
+    return findings;
+}
+/** Check source lines for placeholder patterns not captured by parser. */
+function checkLines(parserResult, filePath) {
+    const findings = [];
+    const lines = parserResult.lines;
+    for (let i = 0; i < lines.length; i++) {
+        const line = lines[i];
+        const trimmed = line.trim();
+        const lineNum = i + 1;
+        checkThrowPatterns(trimmed, lineNum, filePath, findings);
+        checkElided(trimmed, lineNum, filePath, findings);
+        checkTestOnlyStatements(trimmed, lineNum, filePath, findings);
+    }
+    return findings;
+}
+/** Check for NotImplementedError / "Not implemented" throws. */
+function checkThrowPatterns(trimmed, lineNum, filePath, findings) {
+    if (/throw\s+new\s+Error\s*\(\s*['"]Not implemented/.test(trimmed)) {
+        findings.push(makeFinding(lineNum, 1, trimmed, '"Not implemented" error thrown', 'Replace the thrown error with actual implementation.', 'error', filePath));
+    }
+    if (/raise\s+NotImplementedError/.test(trimmed)) {
+        findings.push(makeFinding(lineNum, 1, trimmed, 'NotImplementedError raised', 'Replace NotImplementedError with actual implementation.', 'error', filePath));
+    }
+}
+/** Check for elided code comments like "// ..." or "# ...". */
+function checkElided(trimmed, lineNum, filePath, findings) {
+    if (ELIDED_COMMENT.test(trimmed)) {
+        findings.push(makeFinding(lineNum, 1, trimmed, 'Elided code comment suggests missing implementation', 'The "..." comment indicates code was omitted. Add the missing logic.', 'info', filePath));
+    }
+}
+/** Check for test-only statements (console.log/print as only line). */
+function checkTestOnlyStatements(trimmed, lineNum, filePath, findings) {
+    if (/^console\.log\s*\(\s*['"]test['"]\s*\)\s*;?\s*$/.test(trimmed)) {
+        findings.push(makeFinding(lineNum, 1, trimmed, 'console.log("test") appears to be placeholder code', 'Replace test logging with actual implementation.', 'warning', filePath));
+    }
+    if (/^print\s*\(\s*['"]test['"]\s*\)\s*$/.test(trimmed)) {
+        findings.push(makeFinding(lineNum, 1, trimmed, 'print("test") appears to be placeholder code', 'Replace test printing with actual implementation.', 'warning', filePath));
+    }
+}
+/** The placeholder-code rule. */
+exports.placeholderCodeRule = {
+    id: 'placeholder-code',
+    category: 'placeholder-code',
+    severity: 'warning',
+    languages: ['javascript', 'typescript', 'python'],
+    description: 'Detect placeholder/stub code commonly left by LLMs.',
+    check(parserResult, filePath) {
+        const findings = [];
+        findings.push(...checkComments(parserResult, filePath));
+        findings.push(...checkFunctionDecls(parserResult, filePath));
+        findings.push(...checkLines(parserResult, filePath));
+        return findings;
+    },
+};
+//# sourceMappingURL=placeholder-code.js.map

package/dist/rules/placeholder-code.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"placeholder-code.js","sourceRoot":"","sources":["../../src/rules/placeholder-code.ts"],"names":[],"mappings":";;;AAEA,yDAAyD;AACzD,MAAM,4BAA4B,GAAkE;IAClG,EAAE,OAAO,EAAE,WAAW,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE;IACpE,EAAE,OAAO,EAAE,YAAY,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,eAAe,EAAE;IACtE,EAAE,OAAO,EAAE,WAAW,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE;IACpE,EAAE,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,aAAa,EAAE;IAClE,EAAE,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,+BAA+B,EAAE;IAC1F,EAAE,OAAO,EAAE,2BAA2B,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,mCAAmC,EAAE;IACtG,EAAE,OAAO,EAAE,qBAAqB,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,+BAA+B,EAAE;IAC5F,EAAE,OAAO,EAAE,iBAAiB,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,6BAA6B,EAAE;IACtF,EAAE,OAAO,EAAE,uBAAuB,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,mCAAmC,EAAE;IAClG,EAAE,OAAO,EAAE,kBAAkB,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,qBAAqB,EAAE;IAC/E,EAAE,OAAO,EAAE,0BAA0B,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,oCAAoC,EAAE;CACvG,CAAC;AAEF,yCAAyC;AACzC,MAAM,cAAc,GAAG,qBAAqB,CAAC;AAE7C,sDAAsD;AACtD,SAAS,WAAW,CAClB,IAAY,EACZ,MAAc,EACd,OAAe,EACf,OAAe,EACf,WAAmB,EACnB,QAAkB,EAClB,QAAgB;IAEhB,OAAO;QACL,MAAM,EAAE,kBAAkB;QAC1B,QAAQ,EAAE,kBAAkB;QAC5B,QAAQ;QACR,OAAO;QACP,QAAQ;QACR,IAAI;QACJ,MAAM;QACN,OAAO;QACP,WAAW;KACZ,CAAC;AACJ,CAAC;AAED,+CAA+C;AAC/C,SAAS,aAAa,CACpB,YAA0B,EAC1B,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,MAAM,OAAO,IAAI,YAAY,CAAC,QAAQ,EAAE,CAAC;QAC5C,KAAK,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,IAAI,4BAA4B,EAAE,CAAC;YACxE,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC/B,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,IAAI,EAC1C,GAAG,KAAK,QAAQ,EAAE,sDAAsD,EACxE,QAAQ,EAAE,QAAQ,CACnB,CAAC,CAAC;gBACH,MAAM,CAAC,6BAA6B;YACtC,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,yDAAyD;AACzD,SAAS,kBAAkB,CACzB,YAA0B,EAC1B,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,MAAM,EAAE,IAAI,YAAY,CAAC,aAAa,EAAE,CAAC;QAC5C,IAAI,EAAE,CAAC,OAAO,IAAI,EAAE,CAAC,aAAa,KAAK,CAAC,EAAE,CAAC;YACzC,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,EAAE,CAAC,IAAI,EAAE,CAAC,EAAE,YAAY,EAAE,CAAC,IAAI,EAAE,EACjC,yBAAyB,EAAE,CAAC,IAAI,GAAG,EACnC,4EAA4E,EAC5E,OAAO,EAAE,QAAQ,CAClB,CAAC,CAAC;QACL,CAAC;aAAM,IAAI,EAAE,CAAC,cAAc,EAAE,CAAC;YAC7B,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,EAAE,CAAC,IAAI,EAAE,CAAC,EAAE,YAAY,EAAE,CAAC,IAAI,EAAE,EACjC,aAAa,EAAE,CAAC,IAAI,sCAAsC,EAC1D,iEAAiE,EACjE,OAAO,EAAE,QAAQ,CAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,0EAA0E;AAC1E,SAAS,UAAU,CACjB,YAA0B,EAC1B,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,MAAM,KAAK,GAAG,YAAY,CAAC,KAAK,CAAC;IAEjC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACtB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAC5B,MAAM,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC;QAEtB,kBAAkB,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;QACzD,WAAW,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAClD,uBAAuB,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAChE,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,gEAAgE;AAChE,SAAS,kBAAkB,CACzB,OAAe,EACf,OAAe,EACf,QAAgB,EAChB,QAAmB;IAEnB,IAAI,gDAAgD,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACnE,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,OAAO,EAAE,CAAC,EAAE,OAAO,EACnB,gCAAgC,EAChC,sDAAsD,EACtD,OAAO,EAAE,QAAQ,CAClB,CAAC,CAAC;IACL,CAAC;IAED,IAAI,6BAA6B,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QAChD,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,OAAO,EAAE,CAAC,EAAE,OAAO,EACnB,4BAA4B,EAC5B,yDAAyD,EACzD,OAAO,EAAE,QAAQ,CAClB,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,+DAA+D;AAC/D,SAAS,WAAW,CAClB,OAAe,EACf,OAAe,EACf,QAAgB,EAChB,QAAmB;IAEnB,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACjC,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,OAAO,EAAE,CAAC,EAAE,OAAO,EACnB,qDAAqD,EACrD,sEAAsE,EACtE,MAAM,EAAE,QAAQ,CACjB,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,uEAAuE;AACvE,SAAS,uBAAuB,CAC9B,OAAe,EACf,OAAe,EACf,QAAgB,EAChB,QAAmB;IAEnB,IAAI,iDAAiD,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACpE,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,OAAO,EAAE,CAAC,EAAE,OAAO,EACnB,oDAAoD,EACpD,kDAAkD,EAClD,SAAS,EAAE,QAAQ,CACpB,CAAC,CAAC;IACL,CAAC;IAED,IAAI,qCAAqC,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACxD,QAAQ,CAAC,IAAI,CAAC,WAAW,CACvB,OAAO,EAAE,CAAC,EAAE,OAAO,EACnB,8CAA8C,EAC9C,mDAAmD,EACnD,SAAS,EAAE,QAAQ,CACpB,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,iCAAiC;AACpB,QAAA,mBAAmB,GAAS;IACvC,EAAE,EAAE,kBAAkB;IACtB,QAAQ,EAAE,kBAAkB;IAC5B,QAAQ,EAAE,SAAS;IACnB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC;IACjD,WAAW,EAAE,qDAAqD;IAElE,KAAK,CAAC,YAA0B,EAAE,QAAgB;QAChD,MAAM,QAAQ,GAAc,EAAE,CAAC;QAC/B,QAAQ,CAAC,IAAI,CAAC,GAAG,aAAa,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC;QACxD,QAAQ,CAAC,IAAI,CAAC,GAAG,kBAAkB,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC;QAC7D,QAAQ,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC;QACrD,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF,CAAC"}

package/dist/rules/security-antipatterns.d.ts

@@ -0,0 +1,4 @@
+import { Rule } from '../types.js';
+/** Rule detecting common security anti-patterns in source code. */
+export declare const securityAntipatternsRule: Rule;
+//# sourceMappingURL=security-antipatterns.d.ts.map

package/dist/rules/security-antipatterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-antipatterns.d.ts","sourceRoot":"","sources":["../../src/rules/security-antipatterns.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAyB,MAAM,aAAa,CAAC;AAgQ1D,mEAAmE;AACnE,eAAO,MAAM,wBAAwB,EAAE,IAOtC,CAAC"}

package/dist/rules/security-antipatterns.js

@@ -0,0 +1,174 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.securityAntipatternsRule = void 0;
+const RULE_ID = 'security-antipatterns';
+const CATEGORY = 'security-antipatterns';
+/** Keywords that precede hardcoded secret values. */
+const SECRET_KEYWORDS = [
+    'key', 'secret', 'token', 'password', 'api_key', 'apiKey',
+    'API_KEY', 'SECRET', 'TOKEN', 'PASSWORD', 'aws_access_key',
+    'PRIVATE_KEY',
+];
+/** Build a finding with standard fields pre-filled. */
+function makeFinding(filePath, line, snippet, severity, message, explanation) {
+    return {
+        ruleId: RULE_ID,
+        category: CATEGORY,
+        severity,
+        message,
+        filePath,
+        line,
+        column: 0,
+        snippet,
+        explanation,
+    };
+}
+/** Detect eval/exec/Function constructor calls from AST data. */
+function detectDangerousCalls(pr, filePath) {
+    const findings = [];
+    const lang = pr.language;
+    for (const call of pr.functionCalls) {
+        const snippet = pr.lines[call.line - 1] ?? '';
+        if (call.method === 'eval' && !call.object) {
+            findings.push(makeFinding(filePath, call.line, snippet, 'error', 'eval() is a code injection vector', 'eval() executes arbitrary strings as code, enabling injection attacks. ' +
+                'Use JSON.parse() for data, or a sandboxed interpreter if dynamic execution is required.'));
+        }
+        if (call.method === 'exec' && !call.object && lang === 'python') {
+            findings.push(makeFinding(filePath, call.line, snippet, 'error', 'exec() executes arbitrary code at runtime', 'exec() can run any Python code from a string, enabling injection. ' +
+                'Use ast.literal_eval() for safe data parsing or refactor to avoid dynamic execution.'));
+        }
+        if (call.method === 'Function' && !call.object) {
+            findings.push(makeFinding(filePath, call.line, snippet, 'error', 'Function() constructor is equivalent to eval()', 'new Function() compiles strings into executable code, same risk as eval(). ' +
+                'Refactor to use static functions or a safe template engine.'));
+        }
+    }
+    return findings;
+}
+/** Detect innerHTML assignments in source lines. */
+function detectInnerHtml(pr, filePath) {
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        const line = pr.lines[i];
+        if (/\.innerHTML\s*[+=]/.test(line)) {
+            findings.push(makeFinding(filePath, i + 1, line, 'warning', 'innerHTML assignment enables XSS attacks', 'Setting innerHTML with user-controlled data allows script injection. ' +
+                'Use textContent for text, or a sanitizer like DOMPurify for HTML content.'));
+        }
+    }
+    return findings;
+}
+/** Detect dangerouslySetInnerHTML in React code. */
+function detectDangerousJsx(pr, filePath) {
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        if (pr.lines[i].includes('dangerouslySetInnerHTML')) {
+            findings.push(makeFinding(filePath, i + 1, pr.lines[i], 'warning', 'dangerouslySetInnerHTML bypasses React XSS protections', 'This intentionally bypasses React\'s built-in escaping. Ensure the HTML is sanitized ' +
+                'with DOMPurify or a similar library before rendering.'));
+        }
+    }
+    return findings;
+}
+/** SQL keywords used to detect injection patterns. */
+const SQL_KW = /\b(SELECT|INSERT|UPDATE|DELETE|DROP|ALTER|CREATE|UNION)\b/i;
+/** Detect SQL string concatenation and template injection. */
+function detectSqlInjection(pr, filePath) {
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        const line = pr.lines[i];
+        if (!SQL_KW.test(line))
+            continue;
+        const hasConcatInjection = /["'`].*\b(SELECT|INSERT|UPDATE|DELETE|DROP)\b.*["'`]\s*\+/.test(line) ||
+            /\+\s*["'`].*\b(SELECT|INSERT|UPDATE|DELETE|DROP)\b/.test(line);
+        const hasFstring = /f["'].*\b(SELECT|INSERT|UPDATE|DELETE|DROP)\b.*\{/.test(line);
+        const hasTemplate = /`.*\b(SELECT|INSERT|UPDATE|DELETE|DROP)\b.*\$\{/.test(line);
+        if (hasConcatInjection || hasFstring || hasTemplate) {
+            findings.push(makeFinding(filePath, i + 1, line, 'error', 'SQL string concatenation enables SQL injection', 'Building SQL queries with string concatenation or interpolation allows injection attacks. ' +
+                'Use parameterized queries (? placeholders) or an ORM\'s query builder.'));
+        }
+    }
+    return findings;
+}
+/** Regex for hardcoded secret assignment patterns. */
+const SECRET_ASSIGN_RE = new RegExp(`(?:${SECRET_KEYWORDS.join('|')})\\s*[:=]\\s*["'\`]([A-Za-z0-9_\\-/+]{20,})["'\`]`, 'i');
+const BEARER_RE = /Bearer\s+[A-Za-z0-9_\-/+.]{20,}/;
+/** Detect hardcoded secrets in source lines. */
+function detectHardcodedSecrets(pr, filePath) {
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        const line = pr.lines[i];
+        if (SECRET_ASSIGN_RE.test(line)) {
+            findings.push(makeFinding(filePath, i + 1, line, 'error', 'Hardcoded secret detected', 'Secrets in source code can leak via version control. ' +
+                'Use environment variables or a secrets manager (e.g., AWS Secrets Manager, Vault).'));
+        }
+        else if (BEARER_RE.test(line)) {
+            findings.push(makeFinding(filePath, i + 1, line, 'error', 'Hardcoded Bearer token detected', 'Bearer tokens in source code are a credential leak risk. ' +
+                'Load tokens from environment variables or a secure credential store.'));
+        }
+    }
+    return findings;
+}
+/** Detect shell=True in subprocess calls. */
+function detectShellTrue(pr, filePath) {
+    if (pr.language !== 'python')
+        return [];
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        if (/subprocess\.\w+\(.*shell\s*=\s*True/.test(pr.lines[i])) {
+            findings.push(makeFinding(filePath, i + 1, pr.lines[i], 'warning', 'subprocess with shell=True enables shell injection', 'shell=True passes the command through the system shell, allowing injection via ' +
+                'unsanitized input. Use subprocess.run() with a list of arguments instead.'));
+        }
+    }
+    return findings;
+}
+/** Detect child_process.exec usage in Node. */
+function detectChildProcessExec(pr, filePath) {
+    if (pr.language === 'python')
+        return [];
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        if (/child_process\.exec\b/.test(pr.lines[i]) ||
+            /child_process["']]\s*\)\s*\.exec\b/.test(pr.lines[i])) {
+            findings.push(makeFinding(filePath, i + 1, pr.lines[i], 'warning', 'child_process.exec runs commands in a shell', 'exec() spawns a shell, making it vulnerable to injection. ' +
+                'Use child_process.execFile() or spawn() with an argument array instead.'));
+        }
+    }
+    return findings;
+}
+/** Detect disabled TLS verification. */
+function detectDisabledTls(pr, filePath) {
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        const line = pr.lines[i];
+        if (/rejectUnauthorized\s*:\s*false/.test(line)) {
+            findings.push(makeFinding(filePath, i + 1, line, 'warning', 'TLS certificate verification is disabled', 'rejectUnauthorized: false disables certificate validation, enabling MITM attacks. ' +
+                'Remove this option or configure proper CA certificates.'));
+        }
+        if (/verify\s*=\s*False/.test(line) && pr.language === 'python') {
+            findings.push(makeFinding(filePath, i + 1, line, 'warning', 'TLS certificate verification is disabled', 'verify=False disables certificate validation in requests, enabling MITM attacks. ' +
+                'Remove this option or pass a CA bundle path.'));
+        }
+    }
+    return findings;
+}
+/** Main check: runs all sub-detectors and merges results. */
+function check(parserResult, filePath) {
+    return [
+        ...detectDangerousCalls(parserResult, filePath),
+        ...detectInnerHtml(parserResult, filePath),
+        ...detectDangerousJsx(parserResult, filePath),
+        ...detectSqlInjection(parserResult, filePath),
+        ...detectHardcodedSecrets(parserResult, filePath),
+        ...detectShellTrue(parserResult, filePath),
+        ...detectChildProcessExec(parserResult, filePath),
+        ...detectDisabledTls(parserResult, filePath),
+    ];
+}
+/** Rule detecting common security anti-patterns in source code. */
+exports.securityAntipatternsRule = {
+    id: RULE_ID,
+    category: CATEGORY,
+    severity: 'error',
+    languages: ['javascript', 'typescript', 'python'],
+    description: 'Detects security anti-patterns including injection vectors, hardcoded secrets, and unsafe configurations',
+    check,
+};
+//# sourceMappingURL=security-antipatterns.js.map

package/dist/rules/security-antipatterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-antipatterns.js","sourceRoot":"","sources":["../../src/rules/security-antipatterns.ts"],"names":[],"mappings":";;;AAEA,MAAM,OAAO,GAAG,uBAAuB,CAAC;AACxC,MAAM,QAAQ,GAAG,uBAAgC,CAAC;AAElD,qDAAqD;AACrD,MAAM,eAAe,GAAG;IACtB,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ;IACzD,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,EAAE,gBAAgB;IAC1D,aAAa;CACd,CAAC;AAEF,uDAAuD;AACvD,SAAS,WAAW,CAClB,QAAgB,EAChB,IAAY,EACZ,OAAe,EACf,QAAsC,EACtC,OAAe,EACf,WAAmB;IAEnB,OAAO;QACL,MAAM,EAAE,OAAO;QACf,QAAQ,EAAE,QAAQ;QAClB,QAAQ;QACR,OAAO;QACP,QAAQ;QACR,IAAI;QACJ,MAAM,EAAE,CAAC;QACT,OAAO;QACP,WAAW;KACZ,CAAC;AACJ,CAAC;AAED,iEAAiE;AACjE,SAAS,oBAAoB,CAC3B,EAAgB,EAChB,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,MAAM,IAAI,GAAG,EAAE,CAAC,QAAQ,CAAC;IAEzB,KAAK,MAAM,IAAI,IAAI,EAAE,CAAC,aAAa,EAAE,CAAC;QACpC,MAAM,OAAO,GAAG,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;QAE9C,IAAI,IAAI,CAAC,MAAM,KAAK,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YAC3C,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,OAAO,EAC7D,mCAAmC,EACnC,yEAAyE;gBACzE,yFAAyF,CAAC,CAAC,CAAC;QAChG,CAAC;QAED,IAAI,IAAI,CAAC,MAAM,KAAK,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;YAChE,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,OAAO,EAC7D,2CAA2C,EAC3C,oEAAoE;gBACpE,sFAAsF,CAAC,CAAC,CAAC;QAC7F,CAAC;QAED,IAAI,IAAI,CAAC,MAAM,KAAK,UAAU,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YAC/C,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,OAAO,EAC7D,gDAAgD,EAChD,6EAA6E;gBAC7E,6DAA6D,CAAC,CAAC,CAAC;QACpE,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,oDAAoD;AACpD,SAAS,eAAe,CACtB,EAAgB,EAChB,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,IAAI,oBAAoB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACpC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,SAAS,EACxD,0CAA0C,EAC1C,uEAAuE;gBACvE,2EAA2E,CAAC,CAAC,CAAC;QAClF,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,oDAAoD;AACpD,SAAS,kBAAkB,CACzB,EAAgB,EAChB,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,yBAAyB,CAAC,EAAE,CAAC;YACpD,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,SAAS,EAC/D,wDAAwD,EACxD,uFAAuF;gBACvF,uDAAuD,CAAC,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,sDAAsD;AACtD,MAAM,MAAM,GAAG,4DAA4D,CAAC;AAE5E,8DAA8D;AAC9D,SAAS,kBAAkB,CACzB,EAAgB,EAChB,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,SAAS;QAEjC,MAAM,kBAAkB,GACtB,2DAA2D,CAAC,IAAI,CAAC,IAAI,CAAC;YACtE,oDAAoD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClE,MAAM,UAAU,GAAG,mDAAmD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClF,MAAM,WAAW,GAAG,iDAAiD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAEjF,IAAI,kBAAkB,IAAI,UAAU,IAAI,WAAW,EAAE,CAAC;YACpD,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,OAAO,EACtD,gDAAgD,EAChD,4FAA4F;gBAC5F,wEAAwE,CAAC,CAAC,CAAC;QAC/E,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,sDAAsD;AACtD,MAAM,gBAAgB,GAAG,IAAI,MAAM,CACjC,MAAM,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,mDAAmD,EAClF,GAAG,CACJ,CAAC;AACF,MAAM,SAAS,GAAG,iCAAiC,CAAC;AAEpD,gDAAgD;AAChD,SAAS,sBAAsB,CAC7B,EAAgB,EAChB,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEzB,IAAI,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAChC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,OAAO,EACtD,2BAA2B,EAC3B,uDAAuD;gBACvD,oFAAoF,CAAC,CAAC,CAAC;QAC3F,CAAC;aAAM,IAAI,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAChC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,OAAO,EACtD,iCAAiC,EACjC,2DAA2D;gBAC3D,sEAAsE,CAAC,CAAC,CAAC;QAC7E,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,6CAA6C;AAC7C,SAAS,eAAe,CACtB,EAAgB,EAChB,QAAgB;IAEhB,IAAI,EAAE,CAAC,QAAQ,KAAK,QAAQ;QAAE,OAAO,EAAE,CAAC;IACxC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,IAAI,qCAAqC,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5D,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,SAAS,EAC/D,oDAAoD,EACpD,iFAAiF;gBACjF,2EAA2E,CAAC,CAAC,CAAC;QAClF,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,+CAA+C;AAC/C,SAAS,sBAAsB,CAC7B,EAAgB,EAChB,QAAgB;IAEhB,IAAI,EAAE,CAAC,QAAQ,KAAK,QAAQ;QAAE,OAAO,EAAE,CAAC;IACxC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,IAAI,uBAAuB,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YACzC,oCAAoC,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC3D,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,SAAS,EAC/D,6CAA6C,EAC7C,4DAA4D;gBAC5D,yEAAyE,CAAC,CAAC,CAAC;QAChF,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,wCAAwC;AACxC,SAAS,iBAAiB,CACxB,EAAgB,EAChB,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEzB,IAAI,gCAAgC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAChD,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,SAAS,EACxD,0CAA0C,EAC1C,oFAAoF;gBACpF,yDAAyD,CAAC,CAAC,CAAC;QAChE,CAAC;QAED,IAAI,oBAAoB,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAChE,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,SAAS,EACxD,0CAA0C,EAC1C,mFAAmF;gBACnF,8CAA8C,CAAC,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,6DAA6D;AAC7D,SAAS,KAAK,CAAC,YAA0B,EAAE,QAAgB;IACzD,OAAO;QACL,GAAG,oBAAoB,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC/C,GAAG,eAAe,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC1C,GAAG,kBAAkB,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC7C,GAAG,kBAAkB,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC7C,GAAG,sBAAsB,CAAC,YAAY,EAAE,QAAQ,CAAC;QACjD,GAAG,eAAe,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC1C,GAAG,sBAAsB,CAAC,YAAY,EAAE,QAAQ,CAAC;QACjD,GAAG,iBAAiB,CAAC,YAAY,EAAE,QAAQ,CAAC;KAC7C,CAAC;AACJ,CAAC;AAED,mEAAmE;AACtD,QAAA,wBAAwB,GAAS;IAC5C,EAAE,EAAE,OAAO;IACX,QAAQ,EAAE,QAAQ;IAClB,QAAQ,EAAE,OAAO;IACjB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC;IACjD,WAAW,EAAE,0GAA0G;IACvH,KAAK;CACN,CAAC"}

package/dist/rules/type-safety.d.ts

@@ -0,0 +1,4 @@
+import { Rule } from '../types.js';
+/** Rule detecting type safety issues in TypeScript, JavaScript, and Python. */
+export declare const typeSafetyRule: Rule;
+//# sourceMappingURL=type-safety.d.ts.map

package/dist/rules/type-safety.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"type-safety.d.ts","sourceRoot":"","sources":["../../src/rules/type-safety.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAyB,MAAM,aAAa,CAAC;AAsM1D,+EAA+E;AAC/E,eAAO,MAAM,cAAc,EAAE,IAO5B,CAAC"}

package/dist/rules/type-safety.js

@@ -0,0 +1,148 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.typeSafetyRule = void 0;
+const RULE_ID = 'type-safety';
+const CATEGORY = 'type-safety';
+/** Variable name segments that imply numeric type. */
+const NUMERIC_NAMES = /\b(count|length|size|total|num|amount)\b/i;
+/** Build a finding with standard fields pre-filled. */
+function makeFinding(filePath, line, snippet, severity, message, explanation) {
+    return {
+        ruleId: RULE_ID,
+        category: CATEGORY,
+        severity,
+        message,
+        filePath,
+        line,
+        column: 0,
+        snippet,
+        explanation,
+    };
+}
+/** Check if file is TypeScript based on path. */
+function isTsFile(filePath) {
+    return /\.tsx?$/.test(filePath);
+}
+/** Detect `any` type annotations from parser AST data. */
+function detectAnyAnnotations(pr, filePath) {
+    if (!isTsFile(filePath))
+        return [];
+    const findings = [];
+    const anyAnnotations = pr.typeAnnotations.filter((ta) => ta.isAny);
+    const escalate = anyAnnotations.length > 3;
+    for (const ta of anyAnnotations) {
+        const snippet = pr.lines[ta.line - 1] ?? '';
+        const severity = escalate ? 'error' : 'warning';
+        findings.push(makeFinding(filePath, ta.line, snippet, severity, `${escalate ? 'Excessive ' : ''}\`any\` type annotation defeats TypeScript safety`, escalate
+            ? `This file has ${anyAnnotations.length} \`any\` annotations (>3), indicating systematic ` +
+                'type safety bypass. Replace with specific types, generics, or `unknown` with type guards.'
+            : 'The `any` type disables all type checking. Use `unknown` with type narrowing, a ' +
+                'specific interface, or a generic type parameter instead.'));
+    }
+    return findings;
+}
+/** Detect `as any` casts in source lines. */
+function detectAsAnyCasts(pr, filePath) {
+    if (!isTsFile(filePath))
+        return [];
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        if (/\bas\s+any\b/.test(pr.lines[i])) {
+            findings.push(makeFinding(filePath, i + 1, pr.lines[i], 'warning', '`as any` cast bypasses type checking', 'Type assertions to `any` silence the compiler but hide potential runtime errors. ' +
+                'Use a specific type assertion or add proper type narrowing logic.'));
+        }
+    }
+    return findings;
+}
+/** Detect @ts-ignore, @ts-nocheck, and bare @ts-expect-error comments. */
+function detectTsDirectives(pr, filePath) {
+    if (!isTsFile(filePath))
+        return [];
+    const findings = [];
+    for (const comment of pr.comments) {
+        const text = comment.text;
+        const snippet = pr.lines[comment.line - 1] ?? '';
+        if (/@ts-nocheck/.test(text)) {
+            findings.push(makeFinding(filePath, comment.line, snippet, 'error', '@ts-nocheck disables type checking for the entire file', 'This directive silences all TypeScript errors in the file. ' +
+                'Remove it and fix the underlying type errors to maintain type safety.'));
+        }
+        else if (/@ts-ignore/.test(text)) {
+            findings.push(makeFinding(filePath, comment.line, snippet, 'warning', '@ts-ignore suppresses the next type error without explanation', 'Use @ts-expect-error with a description instead. It will error when the ' +
+                'suppressed issue is fixed, preventing stale suppressions.'));
+        }
+        else if (/@ts-expect-error\s*$/.test(text)) {
+            findings.push(makeFinding(filePath, comment.line, snippet, 'warning', '@ts-expect-error without explanation', 'Add a description after @ts-expect-error explaining why the suppression is ' +
+                'needed, e.g. // @ts-expect-error - legacy API returns untyped data.'));
+        }
+    }
+    return findings;
+}
+/** Detect bare `# type: ignore` in Python without specific error code. */
+function detectPythonTypeIgnore(pr, filePath) {
+    if (pr.language !== 'python')
+        return [];
+    const findings = [];
+    for (const comment of pr.comments) {
+        if (/type:\s*ignore\s*$/.test(comment.text)) {
+            const snippet = pr.lines[comment.line - 1] ?? '';
+            findings.push(makeFinding(filePath, comment.line, snippet, 'warning', 'Bare `type: ignore` suppresses all type errors on this line', 'Specify the error code, e.g. `# type: ignore[assignment]`, so only the ' +
+                'intended error is suppressed and new issues are still caught.'));
+        }
+    }
+    return findings;
+}
+/** Detect loose equality with null/undefined. */
+function detectLooseEquality(pr, filePath) {
+    if (pr.language === 'python')
+        return [];
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        const line = pr.lines[i];
+        if (/[!=]=\s*null\b/.test(line) && !/[!=]==\s*null\b/.test(line)) {
+            findings.push(makeFinding(filePath, i + 1, line, 'info', 'Loose equality with null', 'Use `=== null` or `!== null` for strict equality. Loose equality (`==`) also ' +
+                'matches undefined, which may hide bugs.'));
+        }
+        if (/[!=]=\s*undefined\b/.test(line) && !/[!=]==\s*undefined\b/.test(line)) {
+            findings.push(makeFinding(filePath, i + 1, line, 'info', 'Loose equality with undefined', 'Use `=== undefined` for strict equality. Loose equality (`==`) also matches ' +
+                'null, which may not be the intended behavior.'));
+        }
+    }
+    return findings;
+}
+/** Detect implicit boolean coercion of numeric-named variables. */
+function detectImplicitCoercion(pr, filePath) {
+    if (pr.language === 'python')
+        return [];
+    const findings = [];
+    for (let i = 0; i < pr.lines.length; i++) {
+        const line = pr.lines[i];
+        const match = line.match(/\bif\s*\(\s*(\w+)\s*\)/);
+        if (match && NUMERIC_NAMES.test(match[1])) {
+            findings.push(makeFinding(filePath, i + 1, line, 'info', `Implicit boolean coercion of numeric variable \`${match[1]}\``, `\`${match[1]}\` looks numeric and will be falsy when 0. ` +
+                `Use an explicit check like \`${match[1]} !== 0\` or \`${match[1]} != null\` ` +
+                'to make the intent clear.'));
+        }
+    }
+    return findings;
+}
+/** Main check: runs all sub-detectors and merges results. */
+function check(parserResult, filePath) {
+    return [
+        ...detectAnyAnnotations(parserResult, filePath),
+        ...detectAsAnyCasts(parserResult, filePath),
+        ...detectTsDirectives(parserResult, filePath),
+        ...detectPythonTypeIgnore(parserResult, filePath),
+        ...detectLooseEquality(parserResult, filePath),
+        ...detectImplicitCoercion(parserResult, filePath),
+    ];
+}
+/** Rule detecting type safety issues in TypeScript, JavaScript, and Python. */
+exports.typeSafetyRule = {
+    id: RULE_ID,
+    category: CATEGORY,
+    severity: 'warning',
+    languages: ['javascript', 'typescript', 'python'],
+    description: 'Detects type safety issues including any types, suppression directives, and loose equality',
+    check,
+};
+//# sourceMappingURL=type-safety.js.map

package/dist/rules/type-safety.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"type-safety.js","sourceRoot":"","sources":["../../src/rules/type-safety.ts"],"names":[],"mappings":";;;AAEA,MAAM,OAAO,GAAG,aAAa,CAAC;AAC9B,MAAM,QAAQ,GAAG,aAAsB,CAAC;AAExC,sDAAsD;AACtD,MAAM,aAAa,GAAG,2CAA2C,CAAC;AAElE,uDAAuD;AACvD,SAAS,WAAW,CAClB,QAAgB,EAChB,IAAY,EACZ,OAAe,EACf,QAAsC,EACtC,OAAe,EACf,WAAmB;IAEnB,OAAO;QACL,MAAM,EAAE,OAAO;QACf,QAAQ,EAAE,QAAQ;QAClB,QAAQ;QACR,OAAO;QACP,QAAQ;QACR,IAAI;QACJ,MAAM,EAAE,CAAC;QACT,OAAO;QACP,WAAW;KACZ,CAAC;AACJ,CAAC;AAED,iDAAiD;AACjD,SAAS,QAAQ,CAAC,QAAgB;IAChC,OAAO,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;AAClC,CAAC;AAED,0DAA0D;AAC1D,SAAS,oBAAoB,CAC3B,EAAgB,EAChB,QAAgB;IAEhB,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,MAAM,cAAc,GAAG,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC;IACnE,MAAM,QAAQ,GAAG,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC;IAE3C,KAAK,MAAM,EAAE,IAAI,cAAc,EAAE,CAAC;QAChC,MAAM,OAAO,GAAG,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;QAC5C,MAAM,QAAQ,GAAG,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;QAChD,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,EAAE,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,EAC5D,GAAG,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,mDAAmD,EAClF,QAAQ;YACN,CAAC,CAAC,iBAAiB,cAAc,CAAC,MAAM,mDAAmD;gBACzF,2FAA2F;YAC7F,CAAC,CAAC,kFAAkF;gBAClF,0DAA0D,CAAC,CAAC,CAAC;IACrE,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,6CAA6C;AAC7C,SAAS,gBAAgB,CACvB,EAAgB,EAChB,QAAgB;IAEhB,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,IAAI,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YACrC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,SAAS,EAC/D,sCAAsC,EACtC,mFAAmF;gBACnF,mEAAmE,CAAC,CAAC,CAAC;QAC1E,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,0EAA0E;AAC1E,SAAS,kBAAkB,CACzB,EAAgB,EAChB,QAAgB;IAEhB,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,MAAM,OAAO,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;QAClC,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,MAAM,OAAO,GAAG,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;QAEjD,IAAI,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7B,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,IAAI,EAAE,OAAO,EAAE,OAAO,EAChE,wDAAwD,EACxD,6DAA6D;gBAC7D,uEAAuE,CAAC,CAAC,CAAC;QAC9E,CAAC;aAAM,IAAI,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACnC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,IAAI,EAAE,OAAO,EAAE,SAAS,EAClE,+DAA+D,EAC/D,0EAA0E;gBAC1E,2DAA2D,CAAC,CAAC,CAAC;QAClE,CAAC;aAAM,IAAI,sBAAsB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,IAAI,EAAE,OAAO,EAAE,SAAS,EAClE,sCAAsC,EACtC,6EAA6E;gBAC7E,qEAAqE,CAAC,CAAC,CAAC;QAC5E,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,0EAA0E;AAC1E,SAAS,sBAAsB,CAC7B,EAAgB,EAChB,QAAgB;IAEhB,IAAI,EAAE,CAAC,QAAQ,KAAK,QAAQ;QAAE,OAAO,EAAE,CAAC;IACxC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,MAAM,OAAO,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;QAClC,IAAI,oBAAoB,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5C,MAAM,OAAO,GAAG,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;YACjD,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,IAAI,EAAE,OAAO,EAAE,SAAS,EAClE,6DAA6D,EAC7D,yEAAyE;gBACzE,+DAA+D,CAAC,CAAC,CAAC;QACtE,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,iDAAiD;AACjD,SAAS,mBAAmB,CAC1B,EAAgB,EAChB,QAAgB;IAEhB,IAAI,EAAE,CAAC,QAAQ,KAAK,QAAQ;QAAE,OAAO,EAAE,CAAC;IACxC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEzB,IAAI,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACjE,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,MAAM,EACrD,0BAA0B,EAC1B,+EAA+E;gBAC/E,yCAAyC,CAAC,CAAC,CAAC;QAChD,CAAC;QAED,IAAI,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3E,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,MAAM,EACrD,+BAA+B,EAC/B,8EAA8E;gBAC9E,+CAA+C,CAAC,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,mEAAmE;AACnE,SAAS,sBAAsB,CAC7B,EAAgB,EAChB,QAAgB;IAEhB,IAAI,EAAE,CAAC,QAAQ,KAAK,QAAQ;QAAE,OAAO,EAAE,CAAC;IACxC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC;QACnD,IAAI,KAAK,IAAI,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC1C,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,MAAM,EACrD,mDAAmD,KAAK,CAAC,CAAC,CAAC,IAAI,EAC/D,KAAK,KAAK,CAAC,CAAC,CAAC,6CAA6C;gBAC1D,gCAAgC,KAAK,CAAC,CAAC,CAAC,iBAAiB,KAAK,CAAC,CAAC,CAAC,aAAa;gBAC9E,2BAA2B,CAAC,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,6DAA6D;AAC7D,SAAS,KAAK,CAAC,YAA0B,EAAE,QAAgB;IACzD,OAAO;QACL,GAAG,oBAAoB,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC/C,GAAG,gBAAgB,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC3C,GAAG,kBAAkB,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC7C,GAAG,sBAAsB,CAAC,YAAY,EAAE,QAAQ,CAAC;QACjD,GAAG,mBAAmB,CAAC,YAAY,EAAE,QAAQ,CAAC;QAC9C,GAAG,sBAAsB,CAAC,YAAY,EAAE,QAAQ,CAAC;KAClD,CAAC;AACJ,CAAC;AAED,+EAA+E;AAClE,QAAA,cAAc,GAAS;IAClC,EAAE,EAAE,OAAO;IACX,QAAQ,EAAE,QAAQ;IAClB,QAAQ,EAAE,SAAS;IACnB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC;IACjD,WAAW,EAAE,4FAA4F;IACzG,KAAK;CACN,CAAC"}

package/dist/scanner/discovery.d.ts

@@ -0,0 +1,3 @@
+/** Discover all scannable files in the given paths. */
+export declare function discoverFiles(paths: string[], ignorePatterns?: string[]): Promise<string[]>;
+//# sourceMappingURL=discovery.d.ts.map

package/dist/scanner/discovery.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"discovery.d.ts","sourceRoot":"","sources":["../../src/scanner/discovery.ts"],"names":[],"mappings":"AAOA,uDAAuD;AACvD,wBAAsB,aAAa,CACjC,KAAK,EAAE,MAAM,EAAE,EACf,cAAc,GAAE,MAAM,EAAO,GAC5B,OAAO,CAAC,MAAM,EAAE,CAAC,CAmBnB"}

package/dist/scanner/discovery.js

@@ -0,0 +1,76 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.discoverFiles = discoverFiles;
+const fast_glob_1 = __importDefault(require("fast-glob"));
+const ignore_1 = __importDefault(require("ignore"));
+const promises_1 = require("node:fs/promises");
+const node_path_1 = require("node:path");
+const node_fs_1 = require("node:fs");
+const index_js_1 = require("../parsers/index.js");
+/** Discover all scannable files in the given paths. */
+async function discoverFiles(paths, ignorePatterns = []) {
+    const extensions = new Set((0, index_js_1.getSupportedExtensions)());
+    const allFiles = [];
+    for (const p of paths) {
+        const absPath = (0, node_path_1.resolve)(p);
+        const info = await (0, promises_1.stat)(absPath).catch(() => null);
+        if (!info)
+            continue;
+        if (info.isFile()) {
+            const ext = getExtension(absPath);
+            if (extensions.has(ext))
+                allFiles.push(absPath);
+        }
+        else if (info.isDirectory()) {
+            const found = await discoverInDirectory(absPath, extensions, ignorePatterns);
+            allFiles.push(...found);
+        }
+    }
+    return allFiles;
+}
+/** Get file extension including the dot. */
+function getExtension(filePath) {
+    const dot = filePath.lastIndexOf('.');
+    return dot === -1 ? '' : filePath.slice(dot);
+}
+/** Discover files within a directory using fast-glob. */
+async function discoverInDirectory(dirPath, extensions, ignorePatterns) {
+    const extList = [...extensions].map((e) => e.slice(1));
+    const pattern = `**/*.{${extList.join(',')}}`;
+    const gitignore = await loadGitignore(dirPath);
+    const ig = (0, ignore_1.default)().add(gitignore).add(ignorePatterns);
+    const entries = await (0, fast_glob_1.default)(pattern, {
+        cwd: dirPath,
+        absolute: true,
+        ignore: ['**/node_modules/**', '**/dist/**', '**/.git/**', '**/vendor/**'],
+        dot: false,
+    });
+    return filterWithGitignore(entries, dirPath, ig);
+}
+/** Load .gitignore patterns from the target directory. */
+async function loadGitignore(basePath) {
+    const gitignorePath = (0, node_path_1.join)(basePath, '.gitignore');
+    if (!(0, node_fs_1.existsSync)(gitignorePath))
+        return [];
+    try {
+        const content = await (0, promises_1.readFile)(gitignorePath, 'utf-8');
+        return content
+            .split('\n')
+            .map((line) => line.trim())
+            .filter((line) => line && !line.startsWith('#'));
+    }
+    catch {
+        return [];
+    }
+}
+/** Filter file paths using the ignore instance. */
+function filterWithGitignore(files, basePath, ig) {
+    return files.filter((file) => {
+        const rel = (0, node_path_1.relative)(basePath, file);
+        return !ig.ignores(rel);
+    });
+}
+//# sourceMappingURL=discovery.js.map

package/dist/scanner/discovery.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"discovery.js","sourceRoot":"","sources":["../../src/scanner/discovery.ts"],"names":[],"mappings":";;;;;AAQA,sCAsBC;AA9BD,0DAA2B;AAC3B,oDAA6C;AAC7C,+CAAkD;AAClD,yCAAoD;AACpD,qCAAqC;AACrC,kDAA6D;AAE7D,uDAAuD;AAChD,KAAK,UAAU,aAAa,CACjC,KAAe,EACf,iBAA2B,EAAE;IAE7B,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,IAAA,iCAAsB,GAAE,CAAC,CAAC;IACrD,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,MAAM,OAAO,GAAG,IAAA,mBAAO,EAAC,CAAC,CAAC,CAAC;QAC3B,MAAM,IAAI,GAAG,MAAM,IAAA,eAAI,EAAC,OAAO,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;QACnD,IAAI,CAAC,IAAI;YAAE,SAAS;QAEpB,IAAI,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC;YAClB,MAAM,GAAG,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;YAClC,IAAI,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,CAAC;aAAM,IAAI,IAAI,CAAC,WAAW,EAAE,EAAE,CAAC;YAC9B,MAAM,KAAK,GAAG,MAAM,mBAAmB,CAAC,OAAO,EAAE,UAAU,EAAE,cAAc,CAAC,CAAC;YAC7E,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,4CAA4C;AAC5C,SAAS,YAAY,CAAC,QAAgB;IACpC,MAAM,GAAG,GAAG,QAAQ,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;IACtC,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;AAC/C,CAAC;AAED,yDAAyD;AACzD,KAAK,UAAU,mBAAmB,CAChC,OAAe,EACf,UAAuB,EACvB,cAAwB;IAExB,MAAM,OAAO,GAAG,CAAC,GAAG,UAAU,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IACvD,MAAM,OAAO,GAAG,SAAS,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;IAE9C,MAAM,SAAS,GAAG,MAAM,aAAa,CAAC,OAAO,CAAC,CAAC;IAC/C,MAAM,EAAE,GAAG,IAAA,gBAAM,GAAE,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;IAEvD,MAAM,OAAO,GAAG,MAAM,IAAA,mBAAE,EAAC,OAAO,EAAE;QAChC,GAAG,EAAE,OAAO;QACZ,QAAQ,EAAE,IAAI;QACd,MAAM,EAAE,CAAC,oBAAoB,EAAE,YAAY,EAAE,YAAY,EAAE,cAAc,CAAC;QAC1E,GAAG,EAAE,KAAK;KACX,CAAC,CAAC;IAEH,OAAO,mBAAmB,CAAC,OAAO,EAAE,OAAO,EAAE,EAAE,CAAC,CAAC;AACnD,CAAC;AAED,0DAA0D;AAC1D,KAAK,UAAU,aAAa,CAAC,QAAgB;IAC3C,MAAM,aAAa,GAAG,IAAA,gBAAI,EAAC,QAAQ,EAAE,YAAY,CAAC,CAAC;IACnD,IAAI,CAAC,IAAA,oBAAU,EAAC,aAAa,CAAC;QAAE,OAAO,EAAE,CAAC;IAE1C,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,IAAA,mBAAQ,EAAC,aAAa,EAAE,OAAO,CAAC,CAAC;QACvD,OAAO,OAAO;aACX,KAAK,CAAC,IAAI,CAAC;aACX,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;aAC1B,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;IACrD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,mDAAmD;AACnD,SAAS,mBAAmB,CAC1B,KAAe,EACf,QAAgB,EAChB,EAAU;IAEV,OAAO,KAAK,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;QAC3B,MAAM,GAAG,GAAG,IAAA,oBAAQ,EAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QACrC,OAAO,CAAC,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAC1B,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/scanner/git-diff.d.ts

@@ -0,0 +1,8 @@
+/** A file changed in a git diff with its changed line numbers. */
+export interface ChangedFile {
+    filePath: string;
+    changedLines: Set<number>;
+}
+/** Get files and changed lines from git diff. */
+export declare function getChangedFiles(ref?: string): Promise<ChangedFile[]>;
+//# sourceMappingURL=git-diff.d.ts.map

package/dist/scanner/git-diff.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"git-diff.d.ts","sourceRoot":"","sources":["../../src/scanner/git-diff.ts"],"names":[],"mappings":"AAKA,kEAAkE;AAClE,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;CAC3B;AAED,iDAAiD;AACjD,wBAAsB,eAAe,CAAC,GAAG,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC,CAG1E"}