npm - @bryan-thompson/inspector-assessment-client - Versions diffs - 1.30.1 → 1.32.0 - Mend

@bryan-thompson/inspector-assessment-client 1.30.1 → 1.32.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (69) hide show

package/lib/services/assessment/modules/securityTests/SecurityResponseAnalyzer.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"SecurityResponseAnalyzer.d.ts","sourceRoot":"","sources":["../../../../../src/services/assessment/modules/securityTests/SecurityResponseAnalyzer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,EACL,2BAA2B,EAC3B,IAAI,EACL,MAAM,oCAAoC,CAAC;AAC5C,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAEzD,OAAO,KAAK,EAAE,2BAA2B,EAAE,MAAM,wBAAwB,CAAC;AAK1E,OAAO,EAAgB,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAElE,OAAO,EAAoB,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAYxE,YAAY,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAC3D,YAAY,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAEzD;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,YAAY,EAAE,OAAO,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,OAAO,CAAC;IAClB,WAAW,EAAE,WAAW,GAAG,aAAa,GAAG,SAAS,CAAC;IACrD,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,oBAAoB;IACnC,UAAU,EAAE,OAAO,CAAC;IACpB,IAAI,EAAE,OAAO,CAAC;IACd,eAAe,EAAE,cAAc,GAAG,aAAa,GAAG,SAAS,CAAC;IAC5D,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;GAGG;AACH,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,OAAO,CAAC;IAClB,UAAU,EAAE,kBAAkB,GAAG,mBAAmB,GAAG,SAAS,CAAC;IACjE,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,OAAO,CAAC;IAClB,aAAa,EACT,uBAAuB,GACvB,sBAAsB,GACtB,WAAW,GACX,SAAS,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;;;GAOG;AACH,MAAM,WAAW,uBAAuB;IACtC,QAAQ,EAAE,OAAO,CAAC;IAClB,iBAAiB,EACb,kBAAkB,GAClB,mBAAmB,GACnB,YAAY,GACZ,WAAW,GACX,iBAAiB,GACjB,SAAS,CAAC;IACd,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;;;;;;GAUG;AACH,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,OAAO,CAAC;IAClB,iBAAiB,EACb,WAAW,GACX,aAAa,GACb,iBAAiB,GACjB,eAAe,GACf,UAAU,GACV,eAAe,GACf,UAAU,GACV,iBAAiB,GACjB,SAAS,CAAC;IACd,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,MAAM,kBAAkB,GAC1B,sBAAsB,GACtB,iBAAiB,GACjB,SAAS,GACT,SAAS,CAAC;AAEd;;GAEG;AACH,MAAM,MAAM,0BAA0B,GAClC,kBAAkB,GAClB,iBAAiB,GACjB,2BAA2B,GAC3B,gBAAgB,GAChB,qBAAqB,GACrB,iBAAiB,CAAC;AAEtB;;;GAGG;AACH,MAAM,WAAW,yBAAyB;IACxC,UAAU,EAAE,OAAO,CAAC;IACpB,IAAI,EAAE,OAAO,CAAC;IACd,SAAS,EAAE,kBAAkB,CAAC;IAC9B,uBAAuB,EAAE,0BAA0B,EAAE,CAAC;IACtD,QAAQ,EAAE;QACR,kBAAkB,EAAE,MAAM,EAAE,CAAC;QAC7B,YAAY,EAAE,MAAM,EAAE,CAAC;QACvB,eAAe,EAAE,MAAM,CAAC;QACxB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,MAAM,mBAAmB,GAAG,YAAY,GAAG,QAAQ,GAAG,UAAU,CAAC;AAEvE;;;;;;GAMG;AACH,qBAAa,wBAAwB;IAEnC,OAAO,CAAC,eAAe,CAAkB;IACzC,OAAO,CAAC,iBAAiB,CAA4B;IACrD,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,YAAY,CAAuB;IAC3C,OAAO,CAAC,gBAAgB,CAAmB;;IAc3C;;;;;;OAMG;IACH,eAAe,CACb,QAAQ,EAAE,2BAA2B,EACrC,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,IAAI,GACT,cAAc;IAqBjB;;OAEG;IACH,mBAAmB,CACjB,IAAI,EAAE,IAAI,EACV,YAAY,EAAE,OAAO,EACrB,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,OAAO,EAAE,eAAe,EACxB,kBAAkB,CAAC,EAAE,2BAA2B,GAC/C,gBAAgB;IAWnB;;;OAGG;IACH,yBAAyB,CACvB,QAAQ,EAAE,2BAA2B,GACpC,gBAAgB;IAsFnB;;;;;;;;;OASG;IACH,2BAA2B,CACzB,QAAQ,EAAE,2BAA2B,GACpC,oBAAoB;IAmGvB;;;;;;;;;;OAUG;IACH,8BAA8B,CAC5B,QAAQ,EAAE,2BAA2B,GACpC,qBAAqB;IAyFxB;;;;;;;;;;;OAWG;IACH,8BAA8B,CAC5B,QAAQ,EAAE,2BAA2B,GACpC,qBAAqB;IA6FxB;;;;;;;;;;OAUG;IACH,gCAAgC,CAC9B,QAAQ,EAAE,2BAA2B,GACpC,uBAAuB;IAwJ1B;;;;;;;;;;;;;OAaG;IACH,4BAA4B,CAC1B,QAAQ,EAAE,2BAA2B,GACpC,mBAAmB;~~IAoPtB~~;;;;;;;;;;;;OAYG;IACH,wBAAwB,CACtB,QAAQ,EAAE,2BAA2B,GACpC,yBAAyB;IA6D5B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA8BG;IACH,kBAAkB,CAAC,QAAQ,EAAE,2BAA2B,GAAG;QACzD,QAAQ,EAAE,OAAO,CAAC;QAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB;IAwCD;;OAEG;IACH,iBAAiB,CAAC,QAAQ,EAAE,2BAA2B,GAAG,OAAO;IAIjE;;OAEG;IACH,8BAA8B,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO;IAIvD;;OAEG;IACH,aAAa,CAAC,QAAQ,EAAE,2BAA2B,GAAG,mBAAmB;IAIzE;;OAEG;IACH,0BAA0B,CAAC,KAAK,EAAE,OAAO,GAAG,mBAAmB;IAI/D;;OAEG;IACH,sBAAsB,CAAC,QAAQ,EAAE,2BAA2B,GAAG,MAAM;IAQrE;;OAEG;IACH,oBAAoB,CAClB,SAAS,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,EACvD,YAAY,EAAE,MAAM,GACnB,OAAO;IAIV;;OAEG;IACH,mBAAmB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAIlD;;OAEG;IACH,mBAAmB,CAAC,eAAe,EAAE,MAAM,GAAG,OAAO;IAIrD;;OAEG;IACH,oBAAoB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAInD;;;OAGG;IACH,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO;IAIpE;;OAEG;IACH,qCAAqC,CACnC,MAAM,EAAE,MAAM,EACd,YAAY,EAAE,MAAM,GACnB,OAAO;IAOV;;OAEG;IACH,yBAAyB,CACvB,OAAO,EAAE,MAAM,EACf,YAAY,EAAE,MAAM,EACpB,IAAI,CAAC,EAAE,IAAI,GACV,kBAAkB;IAQrB;;OAEG;IACH,oBAAoB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAInD;;OAEG;IACH,wBAAwB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAIvD;;OAEG;IACH,8BAA8B,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAI7D;;OAEG;IACH,qBAAqB,CAAC,QAAQ,EAAE,2BAA2B,GAAG,OAAO;IAIrE;;OAEG;IACH,oBAAoB,CAAC,QAAQ,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,GAAG,OAAO;IAOxE;;OAEG;IACH,sBAAsB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAIrD;;OAEG;IACH,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAQjD;;;OAGG;IACH,OAAO,CAAC,uBAAuB;IAyB/B;;;OAGG;IACH,OAAO,CAAC,qBAAqB;IAqF7B;;;OAGG;IACH,OAAO,CAAC,0BAA0B;IA0DlC;;OAEG;IACH,OAAO,CAAC,wBAAwB;CAmBjC"}
1	+ {"version":3,"file":"SecurityResponseAnalyzer.d.ts","sourceRoot":"","sources":["../../../../../src/services/assessment/modules/securityTests/SecurityResponseAnalyzer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,EACL,2BAA2B,EAC3B,IAAI,EACL,MAAM,oCAAoC,CAAC;AAC5C,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAEzD,OAAO,KAAK,EAAE,2BAA2B,EAAE,MAAM,wBAAwB,CAAC;AAK1E,OAAO,EAAgB,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAElE,OAAO,EAAoB,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAYxE,YAAY,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAC3D,YAAY,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAEzD;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,YAAY,EAAE,OAAO,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,OAAO,CAAC;IAClB,WAAW,EAAE,WAAW,GAAG,aAAa,GAAG,SAAS,CAAC;IACrD,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,oBAAoB;IACnC,UAAU,EAAE,OAAO,CAAC;IACpB,IAAI,EAAE,OAAO,CAAC;IACd,eAAe,EAAE,cAAc,GAAG,aAAa,GAAG,SAAS,CAAC;IAC5D,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;GAGG;AACH,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,OAAO,CAAC;IAClB,UAAU,EAAE,kBAAkB,GAAG,mBAAmB,GAAG,SAAS,CAAC;IACjE,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,OAAO,CAAC;IAClB,aAAa,EACT,uBAAuB,GACvB,sBAAsB,GACtB,WAAW,GACX,SAAS,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;;;GAOG;AACH,MAAM,WAAW,uBAAuB;IACtC,QAAQ,EAAE,OAAO,CAAC;IAClB,iBAAiB,EACb,kBAAkB,GAClB,mBAAmB,GACnB,YAAY,GACZ,WAAW,GACX,iBAAiB,GACjB,SAAS,CAAC;IACd,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;;;;;;GAUG;AACH,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,OAAO,CAAC;IAClB,iBAAiB,EACb,WAAW,GACX,aAAa,GACb,iBAAiB,GACjB,eAAe,GACf,UAAU,GACV,eAAe,GACf,UAAU,GACV,iBAAiB,GACjB,SAAS,CAAC;IACd,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,MAAM,kBAAkB,GAC1B,sBAAsB,GACtB,iBAAiB,GACjB,SAAS,GACT,SAAS,CAAC;AAEd;;GAEG;AACH,MAAM,MAAM,0BAA0B,GAClC,kBAAkB,GAClB,iBAAiB,GACjB,2BAA2B,GAC3B,gBAAgB,GAChB,qBAAqB,GACrB,iBAAiB,CAAC;AAEtB;;;GAGG;AACH,MAAM,WAAW,yBAAyB;IACxC,UAAU,EAAE,OAAO,CAAC;IACpB,IAAI,EAAE,OAAO,CAAC;IACd,SAAS,EAAE,kBAAkB,CAAC;IAC9B,uBAAuB,EAAE,0BAA0B,EAAE,CAAC;IACtD,QAAQ,EAAE;QACR,kBAAkB,EAAE,MAAM,EAAE,CAAC;QAC7B,YAAY,EAAE,MAAM,EAAE,CAAC;QACvB,eAAe,EAAE,MAAM,CAAC;QACxB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,MAAM,mBAAmB,GAAG,YAAY,GAAG,QAAQ,GAAG,UAAU,CAAC;AAEvE;;;;;;GAMG;AACH,qBAAa,wBAAwB;IAEnC,OAAO,CAAC,eAAe,CAAkB;IACzC,OAAO,CAAC,iBAAiB,CAA4B;IACrD,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,YAAY,CAAuB;IAC3C,OAAO,CAAC,gBAAgB,CAAmB;;IAc3C;;;;;;OAMG;IACH,eAAe,CACb,QAAQ,EAAE,2BAA2B,EACrC,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,IAAI,GACT,cAAc;IAqBjB;;OAEG;IACH,mBAAmB,CACjB,IAAI,EAAE,IAAI,EACV,YAAY,EAAE,OAAO,EACrB,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,OAAO,EAAE,eAAe,EACxB,kBAAkB,CAAC,EAAE,2BAA2B,GAC/C,gBAAgB;IAWnB;;;OAGG;IACH,yBAAyB,CACvB,QAAQ,EAAE,2BAA2B,GACpC,gBAAgB;IAsFnB;;;;;;;;;OASG;IACH,2BAA2B,CACzB,QAAQ,EAAE,2BAA2B,GACpC,oBAAoB;IAmGvB;;;;;;;;;;OAUG;IACH,8BAA8B,CAC5B,QAAQ,EAAE,2BAA2B,GACpC,qBAAqB;IAyFxB;;;;;;;;;;;OAWG;IACH,8BAA8B,CAC5B,QAAQ,EAAE,2BAA2B,GACpC,qBAAqB;IA6FxB;;;;;;;;;;OAUG;IACH,gCAAgC,CAC9B,QAAQ,EAAE,2BAA2B,GACpC,uBAAuB;IAwJ1B;;;;;;;;;;;;;OAaG;IACH,4BAA4B,CAC1B,QAAQ,EAAE,2BAA2B,GACpC,mBAAmB;IAqPtB;;;;;;;;;;;;OAYG;IACH,wBAAwB,CACtB,QAAQ,EAAE,2BAA2B,GACpC,yBAAyB;IA6D5B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OA8BG;IACH,kBAAkB,CAAC,QAAQ,EAAE,2BAA2B,GAAG;QACzD,QAAQ,EAAE,OAAO,CAAC;QAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB;IAwCD;;OAEG;IACH,iBAAiB,CAAC,QAAQ,EAAE,2BAA2B,GAAG,OAAO;IAIjE;;OAEG;IACH,8BAA8B,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO;IAIvD;;OAEG;IACH,aAAa,CAAC,QAAQ,EAAE,2BAA2B,GAAG,mBAAmB;IAIzE;;OAEG;IACH,0BAA0B,CAAC,KAAK,EAAE,OAAO,GAAG,mBAAmB;IAI/D;;OAEG;IACH,sBAAsB,CAAC,QAAQ,EAAE,2BAA2B,GAAG,MAAM;IAQrE;;OAEG;IACH,oBAAoB,CAClB,SAAS,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,EACvD,YAAY,EAAE,MAAM,GACnB,OAAO;IAIV;;OAEG;IACH,mBAAmB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAIlD;;OAEG;IACH,mBAAmB,CAAC,eAAe,EAAE,MAAM,GAAG,OAAO;IAIrD;;OAEG;IACH,oBAAoB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAInD;;;OAGG;IACH,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO;IAIpE;;OAEG;IACH,qCAAqC,CACnC,MAAM,EAAE,MAAM,EACd,YAAY,EAAE,MAAM,GACnB,OAAO;IAOV;;OAEG;IACH,yBAAyB,CACvB,OAAO,EAAE,MAAM,EACf,YAAY,EAAE,MAAM,EACpB,IAAI,CAAC,EAAE,IAAI,GACV,kBAAkB;IAQrB;;OAEG;IACH,oBAAoB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAInD;;OAEG;IACH,wBAAwB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAIvD;;OAEG;IACH,8BAA8B,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAI7D;;OAEG;IACH,qBAAqB,CAAC,QAAQ,EAAE,2BAA2B,GAAG,OAAO;IAIrE;;OAEG;IACH,oBAAoB,CAAC,QAAQ,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,GAAG,OAAO;IAOxE;;OAEG;IACH,sBAAsB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAIrD;;OAEG;IACH,kBAAkB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO;IAQjD;;;OAGG;IACH,OAAO,CAAC,uBAAuB;IAyB/B;;;OAGG;IACH,OAAO,CAAC,qBAAqB;IAqF7B;;;OAGG;IACH,OAAO,CAAC,0BAA0B;IA0DlC;;OAEG;IACH,OAAO,CAAC,wBAAwB;CAmBjC"}

package/lib/services/assessment/modules/securityTests/SecurityResponseAnalyzer.js CHANGED Viewed

@@ -815,9 +815,9 @@ export class SecurityResponseAnalyzer {
         // CWE-326: Weak Key Length
         const weakKeyPatterns = [
             {
-                // Match single digit key_length (1-9 bytes = weak)
-                pattern: /"key_length"\s*:\s*[1-9](?!\d)/i,
-                evidence: "key_length < 10 bytes (weak key)",
+                // Match key_length 1-15 bytes (< 16 bytes = weak for AES-128/HMAC)
+                pattern: /"key_length"\s*:\s*(?:[1-9]|1[0-5])(?!\d)/i,
+                evidence: "key_length < 16 bytes (weak key)",
             },
             {
                 pattern: /"key_secure"\s*:\s*false/i,

package/lib/services/assessment/registry/AssessorDefinitions.d.ts ADDED Viewed

@@ -0,0 +1,38 @@
+/**
+ * Assessor Definitions
+ *
+ * Declarative configuration for all 19 assessors.
+ * Single source of truth for assessor registration, phase ordering,
+ * config flags, and Claude bridge support.
+ *
+ * @module assessment/registry/AssessorDefinitions
+ * @see GitHub Issue #91
+ */
+import type { AssessorDefinition } from "./types.js";
+import { AssessmentPhase } from "./types.js";
+/**
+ * All assessor definitions in phase order.
+ * This is the single source of truth for assessor registration.
+ *
+ * Order within phases:
+ * - Phase 0 (PRE): Temporal only
+ * - Phase 1 (CORE): Functionality, Security, Documentation, ErrorHandling, Usability
+ * - Phase 2 (PROTOCOL): ProtocolCompliance
+ * - Phase 3 (COMPLIANCE): AUP, Annotations, Libraries, Manifest, Portability, APIs, Auth
+ * - Phase 4 (CAPABILITY): Resources, Prompts, CrossCapability
+ * - Phase 5 (QUALITY): FileModularization, Conformance
+ */
+export declare const ASSESSOR_DEFINITIONS: AssessorDefinition[];
+/**
+ * Map of assessor ID to definition for fast lookup.
+ */
+export declare const ASSESSOR_DEFINITION_MAP: Map<string, AssessorDefinition>;
+/**
+ * Get assessor definitions by phase.
+ */
+export declare function getDefinitionsByPhase(phase: AssessmentPhase): AssessorDefinition[];
+/**
+ * Get all phases in execution order.
+ */
+export declare function getOrderedPhases(): AssessmentPhase[];
+//# sourceMappingURL=AssessorDefinitions.d.ts.map

package/lib/services/assessment/registry/AssessorDefinitions.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"AssessorDefinitions.d.ts","sourceRoot":"","sources":["../../../../src/services/assessment/registry/AssessorDefinitions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AA4D1C;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,oBAAoB,EAAE,kBAAkB,EA4SpD,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,uBAAuB,EAAE,GAAG,CAAC,MAAM,EAAE,kBAAkB,CAEnE,CAAC;AAEF;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,KAAK,EAAE,eAAe,GACrB,kBAAkB,EAAE,CAEtB;AAED;;GAEG;AACH,wBAAgB,gBAAgB,IAAI,eAAe,EAAE,CASpD"}

package/lib/services/assessment/registry/AssessorDefinitions.js ADDED Viewed

@@ -0,0 +1,370 @@
+/**
+ * Assessor Definitions
+ *
+ * Declarative configuration for all 19 assessors.
+ * Single source of truth for assessor registration, phase ordering,
+ * config flags, and Claude bridge support.
+ *
+ * @module assessment/registry/AssessorDefinitions
+ * @see GitHub Issue #91
+ */
+import { AssessmentPhase } from "./types.js";
+// Core assessor imports
+import { FunctionalityAssessor } from "../modules/FunctionalityAssessor.js";
+import { SecurityAssessor } from "../modules/SecurityAssessor.js";
+import { DocumentationAssessor } from "../modules/DocumentationAssessor.js";
+import { ErrorHandlingAssessor } from "../modules/ErrorHandlingAssessor.js";
+import { UsabilityAssessor } from "../modules/UsabilityAssessor.js";
+// Protocol compliance
+import { ProtocolComplianceAssessor } from "../modules/ProtocolComplianceAssessor.js";
+// MCP Directory compliance gap assessors
+import { AUPComplianceAssessor } from "../modules/AUPComplianceAssessor.js";
+import { ToolAnnotationAssessor } from "../modules/ToolAnnotationAssessor.js";
+import { ProhibitedLibrariesAssessor } from "../modules/ProhibitedLibrariesAssessor.js";
+import { ManifestValidationAssessor } from "../modules/ManifestValidationAssessor.js";
+import { PortabilityAssessor } from "../modules/PortabilityAssessor.js";
+import { ExternalAPIScannerAssessor } from "../modules/ExternalAPIScannerAssessor.js";
+import { TemporalAssessor } from "../modules/TemporalAssessor.js";
+import { AuthenticationAssessor } from "../modules/AuthenticationAssessor.js";
+// Capability assessors
+import { ResourceAssessor } from "../modules/ResourceAssessor.js";
+import { PromptAssessor } from "../modules/PromptAssessor.js";
+import { CrossCapabilitySecurityAssessor } from "../modules/CrossCapabilitySecurityAssessor.js";
+// Code quality assessors
+import { FileModularizationAssessor } from "../modules/FileModularizationAssessor.js";
+import { ConformanceAssessor } from "../modules/ConformanceAssessor.js";
+// Pattern configuration for ToolAnnotationAssessor
+import { loadPatternConfig, compilePatterns, } from "../config/annotationPatterns.js";
+// Test estimators
+import { estimateTemporalTests, estimateFunctionalityTests, estimateSecurityTests, estimateDocumentationTests, estimateErrorHandlingTests, estimateUsabilityTests, estimateProtocolComplianceTests, estimateAUPComplianceTests, estimateToolAnnotationTests, estimateProhibitedLibrariesTests, estimateManifestValidationTests, estimatePortabilityTests, estimateExternalAPIScannerTests, estimateAuthenticationTests, estimateResourceTests, estimatePromptTests, estimateCrossCapabilityTests, estimateFileModularizationTests, estimateConformanceTests, } from "./estimators.js";
+/**
+ * All assessor definitions in phase order.
+ * This is the single source of truth for assessor registration.
+ *
+ * Order within phases:
+ * - Phase 0 (PRE): Temporal only
+ * - Phase 1 (CORE): Functionality, Security, Documentation, ErrorHandling, Usability
+ * - Phase 2 (PROTOCOL): ProtocolCompliance
+ * - Phase 3 (COMPLIANCE): AUP, Annotations, Libraries, Manifest, Portability, APIs, Auth
+ * - Phase 4 (CAPABILITY): Resources, Prompts, CrossCapability
+ * - Phase 5 (QUALITY): FileModularization, Conformance
+ */
+export const ASSESSOR_DEFINITIONS = [
+    // ============================================================================
+    // Phase 0: PRE - Temporal (must run first for clean baseline)
+    // ============================================================================
+    {
+        id: "temporal",
+        displayName: "Temporal",
+        assessorClass: TemporalAssessor,
+        resultField: "temporal",
+        phase: AssessmentPhase.PRE,
+        configFlags: {
+            primary: "temporal",
+            defaultEnabled: false, // Opt-in
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateTemporalTests,
+    },
+    // ============================================================================
+    // Phase 1: CORE - The original 5 assessors
+    // ============================================================================
+    {
+        id: "functionality",
+        displayName: "Functionality",
+        assessorClass: FunctionalityAssessor,
+        resultField: "functionality",
+        phase: AssessmentPhase.CORE,
+        configFlags: {
+            primary: "functionality",
+            defaultEnabled: true, // Enabled unless explicitly disabled
+        },
+        requiresExtended: false,
+        supportsClaudeBridge: false,
+        estimateTests: estimateFunctionalityTests,
+    },
+    {
+        id: "security",
+        displayName: "Security",
+        assessorClass: SecurityAssessor,
+        resultField: "security",
+        phase: AssessmentPhase.CORE,
+        configFlags: {
+            primary: "security",
+            defaultEnabled: true,
+        },
+        requiresExtended: false,
+        supportsClaudeBridge: true, // Supports Claude semantic analysis
+        estimateTests: estimateSecurityTests,
+    },
+    {
+        id: "documentation",
+        displayName: "Documentation",
+        assessorClass: DocumentationAssessor,
+        resultField: "documentation",
+        phase: AssessmentPhase.CORE,
+        configFlags: {
+            primary: "documentation",
+            defaultEnabled: true,
+        },
+        requiresExtended: false,
+        supportsClaudeBridge: false,
+        estimateTests: estimateDocumentationTests,
+    },
+    {
+        id: "errorHandling",
+        displayName: "Error Handling",
+        assessorClass: ErrorHandlingAssessor,
+        resultField: "errorHandling",
+        phase: AssessmentPhase.CORE,
+        configFlags: {
+            primary: "errorHandling",
+            defaultEnabled: true,
+        },
+        requiresExtended: false,
+        supportsClaudeBridge: false,
+        estimateTests: estimateErrorHandlingTests,
+    },
+    {
+        id: "usability",
+        displayName: "Usability",
+        assessorClass: UsabilityAssessor,
+        resultField: "usability",
+        phase: AssessmentPhase.CORE,
+        configFlags: {
+            primary: "usability",
+            defaultEnabled: true,
+        },
+        requiresExtended: false,
+        supportsClaudeBridge: false,
+        estimateTests: estimateUsabilityTests,
+    },
+    // ============================================================================
+    // Phase 2: PROTOCOL - Unified protocol compliance
+    // ============================================================================
+    {
+        id: "protocolCompliance",
+        displayName: "Protocol Compliance",
+        assessorClass: ProtocolComplianceAssessor,
+        resultField: "mcpSpecCompliance", // Legacy field name for BC
+        phase: AssessmentPhase.PROTOCOL,
+        configFlags: {
+            primary: "protocolCompliance",
+            // BC: Enable if ANY of these deprecated flags is true
+            deprecated: ["mcpSpecCompliance", "protocolConformance"],
+            defaultEnabled: false, // Opt-in
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateProtocolComplianceTests,
+    },
+    // ============================================================================
+    // Phase 3: COMPLIANCE - MCP Directory compliance gap assessors
+    // ============================================================================
+    {
+        id: "aupCompliance",
+        displayName: "AUP",
+        assessorClass: AUPComplianceAssessor,
+        resultField: "aupCompliance",
+        phase: AssessmentPhase.COMPLIANCE,
+        configFlags: {
+            primary: "aupCompliance",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: true, // Supports Claude semantic analysis
+        estimateTests: estimateAUPComplianceTests,
+    },
+    {
+        id: "toolAnnotations",
+        displayName: "Annotations",
+        assessorClass: ToolAnnotationAssessor,
+        resultField: "toolAnnotations",
+        phase: AssessmentPhase.COMPLIANCE,
+        configFlags: {
+            primary: "toolAnnotations",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: true, // Supports Claude behavior inference
+        estimateTests: estimateToolAnnotationTests,
+        // Custom setup for pattern configuration
+        customSetup: (assessor, config, logger) => {
+            if (config.patternConfigPath) {
+                const patternConfig = loadPatternConfig(config.patternConfigPath, logger);
+                const compiledPatterns = compilePatterns(patternConfig);
+                assessor.setPatterns(compiledPatterns);
+            }
+        },
+    },
+    {
+        id: "prohibitedLibraries",
+        displayName: "Libraries",
+        assessorClass: ProhibitedLibrariesAssessor,
+        resultField: "prohibitedLibraries",
+        phase: AssessmentPhase.COMPLIANCE,
+        configFlags: {
+            primary: "prohibitedLibraries",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateProhibitedLibrariesTests,
+    },
+    {
+        id: "manifestValidation",
+        displayName: "Manifest",
+        assessorClass: ManifestValidationAssessor,
+        resultField: "manifestValidation",
+        phase: AssessmentPhase.COMPLIANCE,
+        configFlags: {
+            primary: "manifestValidation",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateManifestValidationTests,
+    },
+    {
+        id: "portability",
+        displayName: "Portability",
+        assessorClass: PortabilityAssessor,
+        resultField: "portability",
+        phase: AssessmentPhase.COMPLIANCE,
+        configFlags: {
+            primary: "portability",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimatePortabilityTests,
+    },
+    {
+        id: "externalAPIScanner",
+        displayName: "External APIs",
+        assessorClass: ExternalAPIScannerAssessor,
+        resultField: "externalAPIScanner",
+        phase: AssessmentPhase.COMPLIANCE,
+        configFlags: {
+            primary: "externalAPIScanner",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateExternalAPIScannerTests,
+    },
+    {
+        id: "authentication",
+        displayName: "Authentication",
+        assessorClass: AuthenticationAssessor,
+        resultField: "authentication",
+        phase: AssessmentPhase.COMPLIANCE,
+        configFlags: {
+            primary: "authentication",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateAuthenticationTests,
+    },
+    // ============================================================================
+    // Phase 4: CAPABILITY - Resources, Prompts, Cross-capability
+    // ============================================================================
+    {
+        id: "resources",
+        displayName: "Resources",
+        assessorClass: ResourceAssessor,
+        resultField: "resources",
+        phase: AssessmentPhase.CAPABILITY,
+        configFlags: {
+            primary: "resources",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateResourceTests,
+    },
+    {
+        id: "prompts",
+        displayName: "Prompts",
+        assessorClass: PromptAssessor,
+        resultField: "prompts",
+        phase: AssessmentPhase.CAPABILITY,
+        configFlags: {
+            primary: "prompts",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimatePromptTests,
+    },
+    {
+        id: "crossCapability",
+        displayName: "Cross-Capability",
+        assessorClass: CrossCapabilitySecurityAssessor,
+        resultField: "crossCapability",
+        phase: AssessmentPhase.CAPABILITY,
+        configFlags: {
+            primary: "crossCapability",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateCrossCapabilityTests,
+    },
+    // ============================================================================
+    // Phase 5: QUALITY - Code quality and conformance
+    // ============================================================================
+    {
+        id: "fileModularization",
+        displayName: "File Modularization",
+        assessorClass: FileModularizationAssessor,
+        resultField: "fileModularization",
+        phase: AssessmentPhase.QUALITY,
+        configFlags: {
+            primary: "fileModularization",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateFileModularizationTests,
+    },
+    {
+        id: "conformance",
+        displayName: "Conformance",
+        assessorClass: ConformanceAssessor,
+        resultField: "conformance",
+        phase: AssessmentPhase.QUALITY,
+        configFlags: {
+            primary: "conformance",
+            defaultEnabled: false,
+        },
+        requiresExtended: true,
+        supportsClaudeBridge: false,
+        estimateTests: estimateConformanceTests,
+    },
+];
+/**
+ * Map of assessor ID to definition for fast lookup.
+ */
+export const ASSESSOR_DEFINITION_MAP = new Map(ASSESSOR_DEFINITIONS.map((def) => [def.id, def]));
+/**
+ * Get assessor definitions by phase.
+ */
+export function getDefinitionsByPhase(phase) {
+    return ASSESSOR_DEFINITIONS.filter((def) => def.phase === phase);
+}
+/**
+ * Get all phases in execution order.
+ */
+export function getOrderedPhases() {
+    return [
+        AssessmentPhase.PRE,
+        AssessmentPhase.CORE,
+        AssessmentPhase.PROTOCOL,
+        AssessmentPhase.COMPLIANCE,
+        AssessmentPhase.CAPABILITY,
+        AssessmentPhase.QUALITY,
+    ];
+}

package/lib/services/assessment/registry/AssessorRegistry.d.ts ADDED Viewed

@@ -0,0 +1,124 @@
+/**
+ * Assessor Registry
+ *
+ * Central registry for managing assessor instances with metadata.
+ * Provides phase-ordered execution, Claude bridge wiring, and test count aggregation.
+ *
+ * @module assessment/registry/AssessorRegistry
+ * @see GitHub Issue #91
+ */
+import type { AssessmentConfiguration } from "../../../lib/assessment/configTypes.js";
+import type { MCPDirectoryAssessment } from "../../../lib/assessment/resultTypes.js";
+import type { BaseAssessor } from "../modules/BaseAssessor.js";
+import type { AssessmentContext } from "../AssessmentOrchestrator.js";
+import type { ClaudeCodeBridge } from "../lib/claudeCodeBridge.js";
+import { type AssessorDefinition, type RegisteredAssessor, AssessmentPhase } from "./types.js";
+/**
+ * AssessorRegistry manages assessor instances and their execution.
+ *
+ * Key responsibilities:
+ * 1. Lazy instantiation based on configuration flags
+ * 2. Phase-ordered execution with Phase 0 always first and sequential
+ * 3. Claude bridge wiring to supporting assessors
+ * 4. Test count aggregation from all assessors
+ * 5. Backward-compatible property access via getAssessor()
+ */
+export declare class AssessorRegistry {
+    private config;
+    private logger;
+    private assessors;
+    private claudeBridge?;
+    constructor(config: AssessmentConfiguration);
+    /**
+     * Register all enabled assessors based on configuration.
+     * Called during orchestrator initialization.
+     */
+    registerAll(definitions?: AssessorDefinition[]): void;
+    /**
+     * Register a single assessor.
+     */
+    private register;
+    /**
+     * Check if an assessor should be enabled based on configuration.
+     * Implements OR logic for backward-compatible deprecated flags.
+     */
+    isEnabled(definition: AssessorDefinition): boolean;
+    /**
+     * Check a single config flag value.
+     * If defaultEnabled is true, returns true unless flag is explicitly false.
+     * If defaultEnabled is false, returns true only if flag is explicitly true.
+     */
+    private checkFlag;
+    /**
+     * Get a registered assessor by ID.
+     * Returns undefined if not registered or disabled.
+     */
+    getAssessor<T extends BaseAssessor = BaseAssessor>(id: string): T | undefined;
+    /**
+     * Get all registered assessors for a specific phase.
+     */
+    getByPhase(phase: AssessmentPhase): RegisteredAssessor[];
+    /**
+     * Set Claude bridge for all supporting assessors.
+     * Called when Claude Code is enabled.
+     */
+    setClaudeBridge(bridge: ClaudeCodeBridge): void;
+    /**
+     * Wire Claude bridge to a single assessor.
+     */
+    private wireClaudeBridge;
+    /**
+     * Execute all assessors in phase order.
+     * Phase 0 (PRE) always runs first and sequentially.
+     * Other phases run based on parallelTesting config.
+     *
+     * @returns Partial MCPDirectoryAssessment with results from all assessors
+     */
+    executeAll(context: AssessmentContext): Promise<Partial<MCPDirectoryAssessment>>;
+    /**
+     * Execute all assessors in a single phase.
+     */
+    private executePhase;
+    /**
+     * Execute assessors in parallel.
+     */
+    private executeParallel;
+    /**
+     * Execute assessors sequentially.
+     */
+    private executeSequential;
+    /**
+     * Extract status string from assessment result.
+     * Most results have a 'status' property.
+     */
+    private extractStatus;
+    /**
+     * Get tool count from context (respects selectedToolsForTesting config).
+     */
+    private getToolCountForContext;
+    /**
+     * Get total test count from all registered assessors.
+     */
+    getTotalTestCount(): number;
+    /**
+     * Get test count for a specific assessor.
+     */
+    getTestCount(id: string): number;
+    /**
+     * Get all registered assessor IDs.
+     */
+    getRegisteredIds(): string[];
+    /**
+     * Check if a specific assessor is registered.
+     */
+    isRegistered(id: string): boolean;
+    /**
+     * Get the count of registered assessors.
+     */
+    get size(): number;
+    /**
+     * Update configuration (e.g., for dynamic config changes).
+     */
+    updateConfig(config: AssessmentConfiguration): void;
+}
+//# sourceMappingURL=AssessorRegistry.d.ts.map

package/lib/services/assessment/registry/AssessorRegistry.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"AssessorRegistry.d.ts","sourceRoot":"","sources":["../../../../src/services/assessment/registry/AssessorRegistry.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,uBAAuB,EAAE,MAAM,8BAA8B,CAAC;AAC5E,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AAC3E,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AACnE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAEhE,OAAO,EACL,KAAK,kBAAkB,EACvB,KAAK,kBAAkB,EAEvB,eAAe,EAEhB,MAAM,SAAS,CAAC;AAOjB;;;;;;;;;GASG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAA0B;IACxC,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,SAAS,CAA8C;IAC/D,OAAO,CAAC,YAAY,CAAC,CAAmB;gBAE5B,MAAM,EAAE,uBAAuB;IAQ3C;;;OAGG;IACH,WAAW,CAAC,WAAW,GAAE,kBAAkB,EAAyB,GAAG,IAAI;IAc3E;;OAEG;IACH,OAAO,CAAC,QAAQ;IA8BhB;;;OAGG;IACH,SAAS,CAAC,UAAU,EAAE,kBAAkB,GAAG,OAAO;IAmClD;;;;OAIG;IACH,OAAO,CAAC,SAAS;IAajB;;;OAGG;IACH,WAAW,CAAC,CAAC,SAAS,YAAY,GAAG,YAAY,EAC/C,EAAE,EAAE,MAAM,GACT,CAAC,GAAG,SAAS;IAKhB;;OAEG;IACH,UAAU,CAAC,KAAK,EAAE,eAAe,GAAG,kBAAkB,EAAE;IAMxD;;;OAGG;IACH,eAAe,CAAC,MAAM,EAAE,gBAAgB,GAAG,IAAI;IAU/C;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAMxB;;;;;;OAMG;IACG,UAAU,CACd,OAAO,EAAE,iBAAiB,GACzB,OAAO,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;IA8B3C;;OAEG;YACW,YAAY;IAoB1B;;OAEG;YACW,eAAe;IA+C7B;;OAEG;YACW,iBAAiB;IAiD/B;;;OAGG;IACH,OAAO,CAAC,aAAa;IAOrB;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAS9B;;OAEG;IACH,iBAAiB,IAAI,MAAM;IAQ3B;;OAEG;IACH,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,MAAM;IAKhC;;OAEG;IACH,gBAAgB,IAAI,MAAM,EAAE;IAI5B;;OAEG;IACH,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;IAIjC;;OAEG;IACH,IAAI,IAAI,IAAI,MAAM,CAEjB;IAED;;OAEG;IACH,YAAY,CAAC,MAAM,EAAE,uBAAuB,GAAG,IAAI;CAGpD"}