@codebakers/mcp 5.2.0

package/dist/tools/scan-security.js

@@ -0,0 +1,358 @@
+/**
+ * codebakers_scan_security
+ *
+ * Security Vulnerability Scanner
+ *
+ * Scans for:
+ * - Dependency vulnerabilities (npm audit)
+ * - XSS vulnerabilities
+ * - SQL injection risks
+ * - Exposed secrets
+ * - Insecure authentication patterns
+ * - Missing security headers
+ */
+import * as fs from 'fs/promises';
+import * as path from 'path';
+import { execSync } from 'child_process';
+export async function scanSecurity(args = {}) {
+    const cwd = process.cwd();
+    const { block_on_critical = true } = args;
+    console.error('🍞 CodeBakers: Scanning Security');
+    try {
+        const issues = [];
+        // Scan 1: Dependency vulnerabilities
+        const depIssues = await scanDependencies(cwd);
+        issues.push(...depIssues);
+        // Scan 2: Code vulnerabilities
+        const codeIssues = await scanCodeSecurity(cwd);
+        issues.push(...codeIssues);
+        // Scan 3: Environment variables
+        const envIssues = await scanEnvSecurity(cwd);
+        issues.push(...envIssues);
+        // Scan 4: API routes security
+        const apiIssues = await scanApiSecurity(cwd);
+        issues.push(...apiIssues);
+        // Calculate risk score
+        const criticalCount = issues.filter(i => i.severity === 'critical').length;
+        const highCount = issues.filter(i => i.severity === 'high').length;
+        // Generate report
+        const report = generateSecurityReport(issues, block_on_critical);
+        // Save detailed report
+        const reportPath = path.join(cwd, '.codebakers', 'SECURITY-REPORT.md');
+        await fs.mkdir(path.dirname(reportPath), { recursive: true });
+        await fs.writeFile(reportPath, generateDetailedSecurityReport(issues), 'utf-8');
+        return report;
+    }
+    catch (error) {
+        return `🍞 CodeBakers: Security Scan Failed\n\nError: ${error instanceof Error ? error.message : String(error)}`;
+    }
+}
+async function scanDependencies(cwd) {
+    const issues = [];
+    try {
+        // Run npm audit
+        const output = execSync('npm audit --json', {
+            cwd,
+            encoding: 'utf-8',
+            stdio: ['pipe', 'pipe', 'ignore']
+        });
+        const audit = JSON.parse(output);
+        if (audit.vulnerabilities) {
+            for (const [pkg, vulnData] of Object.entries(audit.vulnerabilities)) {
+                const data = vulnData;
+                const severity = data.severity;
+                issues.push({
+                    severity,
+                    category: 'Dependencies',
+                    title: `Vulnerable dependency: ${pkg}`,
+                    description: data.via?.[0]?.title || `${pkg} has known vulnerabilities`,
+                    fix: `Run: npm audit fix${severity === 'critical' || severity === 'high' ? ' --force' : ''}`
+                });
+            }
+        }
+    }
+    catch (error) {
+        // npm audit failed or no vulnerabilities
+    }
+    return issues;
+}
+async function scanCodeSecurity(cwd) {
+    const issues = [];
+    const srcDir = path.join(cwd, 'src');
+    try {
+        await scanDirectorySecurity(srcDir, issues);
+    }
+    catch {
+        // src/ doesn't exist
+    }
+    return issues;
+}
+async function scanDirectorySecurity(dir, issues) {
+    try {
+        const entries = await fs.readdir(dir, { withFileTypes: true });
+        for (const entry of entries) {
+            const fullPath = path.join(dir, entry.name);
+            if (entry.isDirectory()) {
+                await scanDirectorySecurity(fullPath, issues);
+            }
+            else if (entry.name.match(/\.(ts|tsx|js|jsx)$/)) {
+                await scanFileSecurity(fullPath, issues);
+            }
+        }
+    }
+    catch {
+        // Directory doesn't exist
+    }
+}
+async function scanFileSecurity(file, issues) {
+    const content = await fs.readFile(file, 'utf-8');
+    const lines = content.split('\n');
+    for (let i = 0; i < lines.length; i++) {
+        const line = lines[i];
+        const lineNumber = i + 1;
+        // Check 1: Dangerous innerHTML usage
+        if (line.includes('dangerouslySetInnerHTML') && !line.includes('DOMPurify')) {
+            issues.push({
+                severity: 'high',
+                category: 'XSS',
+                title: 'Potential XSS vulnerability',
+                description: 'dangerouslySetInnerHTML without sanitization',
+                file,
+                line: lineNumber,
+                fix: 'Use DOMPurify to sanitize HTML before rendering'
+            });
+        }
+        // Check 2: eval() usage
+        if (line.includes('eval(')) {
+            issues.push({
+                severity: 'critical',
+                category: 'Code Injection',
+                title: 'eval() usage detected',
+                description: 'eval() can execute arbitrary code',
+                file,
+                line: lineNumber,
+                fix: 'Avoid eval() - use safe alternatives'
+            });
+        }
+        // Check 3: Weak password regex
+        if (line.match(/password.*length.*[<>]\s*[1-5]/) || line.match(/password.*minLength.*[1-5]/)) {
+            issues.push({
+                severity: 'medium',
+                category: 'Authentication',
+                title: 'Weak password requirements',
+                description: 'Password minimum length is too short',
+                file,
+                line: lineNumber,
+                fix: 'Require passwords to be at least 8 characters'
+            });
+        }
+        // Check 4: Hardcoded secrets
+        const secretPatterns = [
+            /api[_-]?key\s*=\s*['"][a-zA-Z0-9]{20,}['"]/i,
+            /secret\s*=\s*['"][a-zA-Z0-9]{20,}['"]/i,
+            /password\s*=\s*['"][^'"]{5,}['"]/i,
+            /token\s*=\s*['"][a-zA-Z0-9]{20,}['"]/i
+        ];
+        for (const pattern of secretPatterns) {
+            if (pattern.test(line) && !line.includes('process.env')) {
+                issues.push({
+                    severity: 'critical',
+                    category: 'Secrets',
+                    title: 'Hardcoded secret detected',
+                    description: 'Secret value found in code',
+                    file,
+                    line: lineNumber,
+                    fix: 'Move secrets to environment variables'
+                });
+            }
+        }
+        // Check 5: SQL injection risk (if using raw SQL)
+        if (line.includes('queryRawUnsafe') || line.includes('executeRawUnsafe')) {
+            issues.push({
+                severity: 'critical',
+                category: 'SQL Injection',
+                title: 'SQL injection risk',
+                description: 'Using raw SQL queries without parameterization',
+                file,
+                line: lineNumber,
+                fix: 'Use parameterized queries or query builder'
+            });
+        }
+        // Check 6: Missing authentication check
+        if ((line.includes('async function POST') || line.includes('async function DELETE')) && !content.includes('auth') && !content.includes('session')) {
+            issues.push({
+                severity: 'high',
+                category: 'Authentication',
+                title: 'Missing authentication check',
+                description: 'API route might be missing auth verification',
+                file,
+                line: lineNumber,
+                fix: 'Add authentication check before processing request'
+            });
+        }
+    }
+}
+async function scanEnvSecurity(cwd) {
+    const issues = [];
+    // Check if .env is in .gitignore
+    const gitignorePath = path.join(cwd, '.gitignore');
+    try {
+        const gitignore = await fs.readFile(gitignorePath, 'utf-8');
+        if (!gitignore.includes('.env')) {
+            issues.push({
+                severity: 'high',
+                category: 'Secrets',
+                title: '.env not in .gitignore',
+                description: 'Environment variables might be committed to git',
+                file: '.gitignore',
+                fix: 'Add .env to .gitignore'
+            });
+        }
+    }
+    catch {
+        // .gitignore doesn't exist
+    }
+    // Check for .env.example
+    const envExamplePath = path.join(cwd, '.env.example');
+    try {
+        await fs.access(envExamplePath);
+    }
+    catch {
+        issues.push({
+            severity: 'low',
+            category: 'Configuration',
+            title: 'Missing .env.example',
+            description: 'No example environment file for developers',
+            fix: 'Create .env.example with placeholder values'
+        });
+    }
+    return issues;
+}
+async function scanApiSecurity(cwd) {
+    const issues = [];
+    const apiDir = path.join(cwd, 'src', 'app', 'api');
+    try {
+        await scanApiRoutes(apiDir, issues);
+    }
+    catch {
+        // API directory doesn't exist
+    }
+    return issues;
+}
+async function scanApiRoutes(dir, issues) {
+    try {
+        const entries = await fs.readdir(dir, { withFileTypes: true });
+        for (const entry of entries) {
+            const fullPath = path.join(dir, entry.name);
+            if (entry.isDirectory()) {
+                await scanApiRoutes(fullPath, issues);
+            }
+            else if (entry.name === 'route.ts' || entry.name === 'route.js') {
+                const content = await fs.readFile(fullPath, 'utf-8');
+                // Check for CORS misconfiguration
+                if (content.includes("'Access-Control-Allow-Origin', '*'")) {
+                    issues.push({
+                        severity: 'medium',
+                        category: 'CORS',
+                        title: 'Permissive CORS policy',
+                        description: 'Allow-Origin set to * (allows all domains)',
+                        file: fullPath,
+                        fix: 'Restrict CORS to specific domains'
+                    });
+                }
+                // Check for rate limiting
+                if (!content.includes('ratelimit') && !content.includes('rate-limit')) {
+                    issues.push({
+                        severity: 'medium',
+                        category: 'Rate Limiting',
+                        title: 'Missing rate limiting',
+                        description: 'API route might be vulnerable to abuse',
+                        file: fullPath,
+                        fix: 'Add rate limiting middleware'
+                    });
+                }
+            }
+        }
+    }
+    catch {
+        // Directory doesn't exist
+    }
+}
+function generateSecurityReport(issues, blockOnCritical) {
+    const critical = issues.filter(i => i.severity === 'critical').length;
+    const high = issues.filter(i => i.severity === 'high').length;
+    const medium = issues.filter(i => i.severity === 'medium').length;
+    const low = issues.filter(i => i.severity === 'low').length;
+    const blocked = blockOnCritical && critical > 0;
+    let report = `🍞 CodeBakers: Security Scan\n\n`;
+    report += `**Status:** ${blocked ? '❌ BLOCKED' : critical === 0 && high === 0 ? '✅ PASS' : '⚠️ WARNINGS'}\n\n`;
+    report += `## Vulnerabilities\n\n`;
+    report += `- Critical: ${critical} ${critical === 0 ? '✅' : '❌'}\n`;
+    report += `- High: ${high} ${high === 0 ? '✅' : '⚠️'}\n`;
+    report += `- Medium: ${medium}\n`;
+    report += `- Low: ${low}\n\n`;
+    if (critical > 0) {
+        report += `## 🚨 Critical Issues (Must Fix)\n\n`;
+        for (const issue of issues.filter(i => i.severity === 'critical').slice(0, 5)) {
+            report += `**${issue.title}**\n`;
+            report += `- Category: ${issue.category}\n`;
+            report += `- ${issue.description}\n`;
+            if (issue.file) {
+                report += `- File: ${path.basename(issue.file)}${issue.line ? `:${issue.line}` : ''}\n`;
+            }
+            report += `- Fix: ${issue.fix}\n\n`;
+        }
+        if (critical > 5) {
+            report += `... and ${critical - 5} more critical issues\n\n`;
+        }
+    }
+    if (high > 0 && critical === 0) {
+        report += `## ⚠️ High Severity Issues\n\n`;
+        for (const issue of issues.filter(i => i.severity === 'high').slice(0, 3)) {
+            report += `- ${issue.title}: ${issue.description}\n`;
+        }
+        report += `\n`;
+    }
+    if (blocked) {
+        report += `## ❌ Deployment Blocked\n\n`;
+        report += `Critical security issues must be fixed before deployment.\n\n`;
+        report += `**Next steps:**\n`;
+        report += `1. Fix critical issues above\n`;
+        report += `2. Re-run: codebakers_scan_security\n`;
+        report += `3. Proceed to deployment\n\n`;
+    }
+    else if (critical === 0 && high === 0) {
+        report += `## ✅ Security Check Passed\n\n`;
+        report += `No critical or high severity issues found.\n\n`;
+    }
+    report += `**Full report:** .codebakers/SECURITY-REPORT.md\n`;
+    return report;
+}
+function generateDetailedSecurityReport(issues) {
+    let report = `# Security Scan Report\n\n`;
+    report += `**Generated:** ${new Date().toISOString()}\n\n`;
+    report += `## Summary\n\n`;
+    report += `| Severity | Count |\n`;
+    report += `|----------|-------|\n`;
+    report += `| Critical | ${issues.filter(i => i.severity === 'critical').length} |\n`;
+    report += `| High     | ${issues.filter(i => i.severity === 'high').length} |\n`;
+    report += `| Medium   | ${issues.filter(i => i.severity === 'medium').length} |\n`;
+    report += `| Low      | ${issues.filter(i => i.severity === 'low').length} |\n\n`;
+    for (const severity of ['critical', 'high', 'medium', 'low']) {
+        const filtered = issues.filter(i => i.severity === severity);
+        if (filtered.length === 0)
+            continue;
+        report += `## ${severity.charAt(0).toUpperCase() + severity.slice(1)} Issues\n\n`;
+        for (const issue of filtered) {
+            report += `### ${issue.title}\n\n`;
+            report += `- **Category:** ${issue.category}\n`;
+            report += `- **Description:** ${issue.description}\n`;
+            if (issue.file) {
+                report += `- **File:** ${issue.file}${issue.line ? `:${issue.line}` : ''}\n`;
+            }
+            report += `- **Fix:** ${issue.fix}\n\n`;
+        }
+    }
+    return report;
+}
+//# sourceMappingURL=scan-security.js.map

package/dist/tools/scan-security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scan-security.js","sourceRoot":"","sources":["../../src/tools/scan-security.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,KAAK,EAAE,MAAM,aAAa,CAAC;AAClC,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAgBzC,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,OAAqB,EAAE;IACxD,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAC1B,MAAM,EAAE,iBAAiB,GAAG,IAAI,EAAE,GAAG,IAAI,CAAC;IAE1C,OAAO,CAAC,KAAK,CAAC,kCAAkC,CAAC,CAAC;IAElD,IAAI,CAAC;QACH,MAAM,MAAM,GAAoB,EAAE,CAAC;QAEnC,qCAAqC;QACrC,MAAM,SAAS,GAAG,MAAM,gBAAgB,CAAC,GAAG,CAAC,CAAC;QAC9C,MAAM,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC,CAAC;QAE1B,+BAA+B;QAC/B,MAAM,UAAU,GAAG,MAAM,gBAAgB,CAAC,GAAG,CAAC,CAAC;QAC/C,MAAM,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,CAAC;QAE3B,gCAAgC;QAChC,MAAM,SAAS,GAAG,MAAM,eAAe,CAAC,GAAG,CAAC,CAAC;QAC7C,MAAM,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC,CAAC;QAE1B,8BAA8B;QAC9B,MAAM,SAAS,GAAG,MAAM,eAAe,CAAC,GAAG,CAAC,CAAC;QAC7C,MAAM,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC,CAAC;QAE1B,uBAAuB;QACvB,MAAM,aAAa,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAC3E,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QAEnE,kBAAkB;QAClB,MAAM,MAAM,GAAG,sBAAsB,CAAC,MAAM,EAAE,iBAAiB,CAAC,CAAC;QAEjE,uBAAuB;QACvB,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,aAAa,EAAE,oBAAoB,CAAC,CAAC;QACvE,MAAM,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC9D,MAAM,EAAE,CAAC,SAAS,CAAC,UAAU,EAAE,8BAA8B,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC,CAAC;QAEhF,OAAO,MAAM,CAAC;IAChB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,iDAAiD,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;IACnH,CAAC;AACH,CAAC;AAED,KAAK,UAAU,gBAAgB,CAAC,GAAW;IACzC,MAAM,MAAM,GAAoB,EAAE,CAAC;IAEnC,IAAI,CAAC;QACH,gBAAgB;QAChB,MAAM,MAAM,GAAG,QAAQ,CAAC,kBAAkB,EAAE;YAC1C,GAAG;YACH,QAAQ,EAAE,OAAO;YACjB,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC;SAClC,CAAC,CAAC;QAEH,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAEjC,IAAI,KAAK,CAAC,eAAe,EAAE,CAAC;YAC1B,KAAK,MAAM,CAAC,GAAG,EAAE,QAAQ,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,eAAsB,CAAC,EAAE,CAAC;gBAC3E,MAAM,IAAI,GAAG,QAAe,CAAC;gBAC7B,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAkD,CAAC;gBAEzE,MAAM,CAAC,IAAI,CAAC;oBACV,QAAQ;oBACR,QAAQ,EAAE,cAAc;oBACxB,KAAK,EAAE,0BAA0B,GAAG,EAAE;oBACtC,WAAW,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,GAAG,GAAG,4BAA4B;oBACvE,GAAG,EAAE,qBAAqB,QAAQ,KAAK,UAAU,IAAI,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,EAAE;iBAC7F,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,yCAAyC;IAC3C,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,gBAAgB,CAAC,GAAW;IACzC,MAAM,MAAM,GAAoB,EAAE,CAAC;IACnC,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAErC,IAAI,CAAC;QACH,MAAM,qBAAqB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9C,CAAC;IAAC,MAAM,CAAC;QACP,qBAAqB;IACvB,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,qBAAqB,CAAC,GAAW,EAAE,MAAuB;IACvE,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAE/D,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YAE5C,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;gBACxB,MAAM,qBAAqB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YAChD,CAAC;iBAAM,IAAI,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,oBAAoB,CAAC,EAAE,CAAC;gBAClD,MAAM,gBAAgB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YAC3C,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,0BAA0B;IAC5B,CAAC;AACH,CAAC;AAED,KAAK,UAAU,gBAAgB,CAAC,IAAY,EAAE,MAAuB;IACnE,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;IACjD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACtB,MAAM,UAAU,GAAG,CAAC,GAAG,CAAC,CAAC;QAEzB,qCAAqC;QACrC,IAAI,IAAI,CAAC,QAAQ,CAAC,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YAC5E,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,KAAK;gBACf,KAAK,EAAE,6BAA6B;gBACpC,WAAW,EAAE,8CAA8C;gBAC3D,IAAI;gBACJ,IAAI,EAAE,UAAU;gBAChB,GAAG,EAAE,iDAAiD;aACvD,CAAC,CAAC;QACL,CAAC;QAED,wBAAwB;QACxB,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC3B,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,UAAU;gBACpB,QAAQ,EAAE,gBAAgB;gBAC1B,KAAK,EAAE,uBAAuB;gBAC9B,WAAW,EAAE,mCAAmC;gBAChD,IAAI;gBACJ,IAAI,EAAE,UAAU;gBAChB,GAAG,EAAE,sCAAsC;aAC5C,CAAC,CAAC;QACL,CAAC;QAED,+BAA+B;QAC/B,IAAI,IAAI,CAAC,KAAK,CAAC,gCAAgC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,4BAA4B,CAAC,EAAE,CAAC;YAC7F,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,gBAAgB;gBAC1B,KAAK,EAAE,4BAA4B;gBACnC,WAAW,EAAE,sCAAsC;gBACnD,IAAI;gBACJ,IAAI,EAAE,UAAU;gBAChB,GAAG,EAAE,+CAA+C;aACrD,CAAC,CAAC;QACL,CAAC;QAED,6BAA6B;QAC7B,MAAM,cAAc,GAAG;YACrB,6CAA6C;YAC7C,wCAAwC;YACxC,mCAAmC;YACnC,uCAAuC;SACxC,CAAC;QAEF,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;YACrC,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;gBACxD,MAAM,CAAC,IAAI,CAAC;oBACV,QAAQ,EAAE,UAAU;oBACpB,QAAQ,EAAE,SAAS;oBACnB,KAAK,EAAE,2BAA2B;oBAClC,WAAW,EAAE,4BAA4B;oBACzC,IAAI;oBACJ,IAAI,EAAE,UAAU;oBAChB,GAAG,EAAE,uCAAuC;iBAC7C,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,iDAAiD;QACjD,IAAI,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;YACzE,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,UAAU;gBACpB,QAAQ,EAAE,eAAe;gBACzB,KAAK,EAAE,oBAAoB;gBAC3B,WAAW,EAAE,gDAAgD;gBAC7D,IAAI;gBACJ,IAAI,EAAE,UAAU;gBAChB,GAAG,EAAE,4CAA4C;aAClD,CAAC,CAAC;QACL,CAAC;QAED,wCAAwC;QACxC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,qBAAqB,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,uBAAuB,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAClJ,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,gBAAgB;gBAC1B,KAAK,EAAE,8BAA8B;gBACrC,WAAW,EAAE,8CAA8C;gBAC3D,IAAI;gBACJ,IAAI,EAAE,UAAU;gBAChB,GAAG,EAAE,oDAAoD;aAC1D,CAAC,CAAC;QACL,CAAC;IACH,CAAC;AACH,CAAC;AAED,KAAK,UAAU,eAAe,CAAC,GAAW;IACxC,MAAM,MAAM,GAAoB,EAAE,CAAC;IAEnC,iCAAiC;IACjC,MAAM,aAAa,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;IAEnD,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,aAAa,EAAE,OAAO,CAAC,CAAC;QAE5D,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAChC,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,SAAS;gBACnB,KAAK,EAAE,wBAAwB;gBAC/B,WAAW,EAAE,iDAAiD;gBAC9D,IAAI,EAAE,YAAY;gBAClB,GAAG,EAAE,wBAAwB;aAC9B,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,2BAA2B;IAC7B,CAAC;IAED,yBAAyB;IACzB,MAAM,cAAc,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;IAEtD,IAAI,CAAC;QACH,MAAM,EAAE,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;IAClC,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,CAAC,IAAI,CAAC;YACV,QAAQ,EAAE,KAAK;YACf,QAAQ,EAAE,eAAe;YACzB,KAAK,EAAE,sBAAsB;YAC7B,WAAW,EAAE,4CAA4C;YACzD,GAAG,EAAE,6CAA6C;SACnD,CAAC,CAAC;IACL,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,eAAe,CAAC,GAAW;IACxC,MAAM,MAAM,GAAoB,EAAE,CAAC;IACnC,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;IAEnD,IAAI,CAAC;QACH,MAAM,aAAa,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACtC,CAAC;IAAC,MAAM,CAAC;QACP,8BAA8B;IAChC,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,aAAa,CAAC,GAAW,EAAE,MAAuB;IAC/D,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAE/D,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YAE5C,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;gBACxB,MAAM,aAAa,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YACxC,CAAC;iBAAM,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;gBAClE,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;gBAErD,kCAAkC;gBAClC,IAAI,OAAO,CAAC,QAAQ,CAAC,oCAAoC,CAAC,EAAE,CAAC;oBAC3D,MAAM,CAAC,IAAI,CAAC;wBACV,QAAQ,EAAE,QAAQ;wBAClB,QAAQ,EAAE,MAAM;wBAChB,KAAK,EAAE,wBAAwB;wBAC/B,WAAW,EAAE,4CAA4C;wBACzD,IAAI,EAAE,QAAQ;wBACd,GAAG,EAAE,mCAAmC;qBACzC,CAAC,CAAC;gBACL,CAAC;gBAED,0BAA0B;gBAC1B,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;oBACtE,MAAM,CAAC,IAAI,CAAC;wBACV,QAAQ,EAAE,QAAQ;wBAClB,QAAQ,EAAE,eAAe;wBACzB,KAAK,EAAE,uBAAuB;wBAC9B,WAAW,EAAE,wCAAwC;wBACrD,IAAI,EAAE,QAAQ;wBACd,GAAG,EAAE,8BAA8B;qBACpC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,0BAA0B;IAC5B,CAAC;AACH,CAAC;AAED,SAAS,sBAAsB,CAAC,MAAuB,EAAE,eAAwB;IAC/E,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;IACtE,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;IAC9D,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;IAClE,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,CAAC;IAE5D,MAAM,OAAO,GAAG,eAAe,IAAI,QAAQ,GAAG,CAAC,CAAC;IAEhD,IAAI,MAAM,GAAG,kCAAkC,CAAC;IAChD,MAAM,IAAI,eAAe,OAAO,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,KAAK,CAAC,IAAI,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,aAAa,MAAM,CAAC;IAE/G,MAAM,IAAI,wBAAwB,CAAC;IACnC,MAAM,IAAI,eAAe,QAAQ,IAAI,QAAQ,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IACpE,MAAM,IAAI,WAAW,IAAI,IAAI,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;IACzD,MAAM,IAAI,aAAa,MAAM,IAAI,CAAC;IAClC,MAAM,IAAI,UAAU,GAAG,MAAM,CAAC;IAE9B,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;QACjB,MAAM,IAAI,sCAAsC,CAAC;QACjD,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YAC9E,MAAM,IAAI,KAAK,KAAK,CAAC,KAAK,MAAM,CAAC;YACjC,MAAM,IAAI,eAAe,KAAK,CAAC,QAAQ,IAAI,CAAC;YAC5C,MAAM,IAAI,KAAK,KAAK,CAAC,WAAW,IAAI,CAAC;YACrC,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;gBACf,MAAM,IAAI,WAAW,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC;YAC1F,CAAC;YACD,MAAM,IAAI,UAAU,KAAK,CAAC,GAAG,MAAM,CAAC;QACtC,CAAC;QAED,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;YACjB,MAAM,IAAI,WAAW,QAAQ,GAAG,CAAC,2BAA2B,CAAC;QAC/D,CAAC;IACH,CAAC;IAED,IAAI,IAAI,GAAG,CAAC,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,gCAAgC,CAAC;QAC3C,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YAC1E,MAAM,IAAI,KAAK,KAAK,CAAC,KAAK,KAAK,KAAK,CAAC,WAAW,IAAI,CAAC;QACvD,CAAC;QACD,MAAM,IAAI,IAAI,CAAC;IACjB,CAAC;IAED,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,IAAI,6BAA6B,CAAC;QACxC,MAAM,IAAI,+DAA+D,CAAC;QAC1E,MAAM,IAAI,mBAAmB,CAAC;QAC9B,MAAM,IAAI,gCAAgC,CAAC;QAC3C,MAAM,IAAI,uCAAuC,CAAC;QAClD,MAAM,IAAI,8BAA8B,CAAC;IAC3C,CAAC;SAAM,IAAI,QAAQ,KAAK,CAAC,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;QACxC,MAAM,IAAI,gCAAgC,CAAC;QAC3C,MAAM,IAAI,gDAAgD,CAAC;IAC7D,CAAC;IAED,MAAM,IAAI,mDAAmD,CAAC;IAE9D,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,8BAA8B,CAAC,MAAuB;IAC7D,IAAI,MAAM,GAAG,4BAA4B,CAAC;IAC1C,MAAM,IAAI,kBAAkB,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,MAAM,CAAC;IAE3D,MAAM,IAAI,gBAAgB,CAAC;IAC3B,MAAM,IAAI,wBAAwB,CAAC;IACnC,MAAM,IAAI,wBAAwB,CAAC;IACnC,MAAM,IAAI,gBAAgB,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,MAAM,CAAC;IACrF,MAAM,IAAI,gBAAgB,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,MAAM,CAAC;IACjF,MAAM,IAAI,gBAAgB,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,MAAM,CAAC;IACnF,MAAM,IAAI,gBAAgB,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,QAAQ,CAAC;IAElF,KAAK,MAAM,QAAQ,IAAI,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAU,EAAE,CAAC;QACtE,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;QAC7D,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;YAAE,SAAS;QAEpC,MAAM,IAAI,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,aAAa,CAAC;QAElF,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;YAC7B,MAAM,IAAI,OAAO,KAAK,CAAC,KAAK,MAAM,CAAC;YACnC,MAAM,IAAI,mBAAmB,KAAK,CAAC,QAAQ,IAAI,CAAC;YAChD,MAAM,IAAI,sBAAsB,KAAK,CAAC,WAAW,IAAI,CAAC;YACtD,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;gBACf,MAAM,IAAI,eAAe,KAAK,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC;YAC/E,CAAC;YACD,MAAM,IAAI,cAAc,KAAK,CAAC,GAAG,MAAM,CAAC;QAC1C,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/tools/validate-accessibility.d.ts

@@ -0,0 +1,18 @@
+/**
+ * codebakers_validate_accessibility
+ *
+ * Accessibility Validation - WCAG Compliance
+ *
+ * Scans components for accessibility violations:
+ * - Missing ARIA labels
+ * - Low contrast ratios
+ * - Missing alt text
+ * - Keyboard navigation issues
+ * - Screen reader compatibility
+ */
+interface A11yArgs {
+    threshold?: number;
+}
+export declare function validateAccessibility(args?: A11yArgs): Promise<string>;
+export {};
+//# sourceMappingURL=validate-accessibility.d.ts.map

package/dist/tools/validate-accessibility.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate-accessibility.d.ts","sourceRoot":"","sources":["../../src/tools/validate-accessibility.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAKH,UAAU,QAAQ;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAWD,wBAAsB,qBAAqB,CAAC,IAAI,GAAE,QAAa,GAAG,OAAO,CAAC,MAAM,CAAC,CAmChF"}

package/dist/tools/validate-accessibility.js

@@ -0,0 +1,251 @@
+/**
+ * codebakers_validate_accessibility
+ *
+ * Accessibility Validation - WCAG Compliance
+ *
+ * Scans components for accessibility violations:
+ * - Missing ARIA labels
+ * - Low contrast ratios
+ * - Missing alt text
+ * - Keyboard navigation issues
+ * - Screen reader compatibility
+ */
+import * as fs from 'fs/promises';
+import * as path from 'path';
+export async function validateAccessibility(args = {}) {
+    const cwd = process.cwd();
+    const { threshold = 90 } = args;
+    console.error('🍞 CodeBakers: Validating Accessibility');
+    try {
+        const issues = [];
+        // Scan all component files
+        const components = await findComponents(cwd);
+        for (const file of components) {
+            const content = await fs.readFile(file, 'utf-8');
+            const fileIssues = await scanFile(file, content);
+            issues.push(...fileIssues);
+        }
+        // Calculate score
+        const criticalCount = issues.filter(i => i.severity === 'critical').length;
+        const warningCount = issues.filter(i => i.severity === 'warning').length;
+        const score = calculateA11yScore(components.length, criticalCount, warningCount);
+        // Generate report
+        const report = generateA11yReport(score, threshold, issues);
+        // Save detailed report
+        const reportPath = path.join(cwd, '.codebakers', 'ACCESSIBILITY-REPORT.md');
+        await fs.mkdir(path.dirname(reportPath), { recursive: true });
+        await fs.writeFile(reportPath, generateDetailedReport(score, issues), 'utf-8');
+        return report;
+    }
+    catch (error) {
+        return `🍞 CodeBakers: Accessibility Validation Failed\n\nError: ${error instanceof Error ? error.message : String(error)}`;
+    }
+}
+async function findComponents(cwd) {
+    const components = [];
+    const srcDir = path.join(cwd, 'src');
+    try {
+        await scanDirectory(srcDir, components);
+    }
+    catch {
+        // src/ might not exist yet
+    }
+    return components;
+}
+async function scanDirectory(dir, results) {
+    try {
+        const entries = await fs.readdir(dir, { withFileTypes: true });
+        for (const entry of entries) {
+            const fullPath = path.join(dir, entry.name);
+            if (entry.isDirectory()) {
+                await scanDirectory(fullPath, results);
+            }
+            else if (entry.name.match(/\.(tsx|jsx)$/)) {
+                results.push(fullPath);
+            }
+        }
+    }
+    catch {
+        // Directory doesn't exist or permission denied
+    }
+}
+async function scanFile(file, content) {
+    const issues = [];
+    const lines = content.split('\n');
+    for (let i = 0; i < lines.length; i++) {
+        const line = lines[i];
+        const lineNumber = i + 1;
+        // Check 1: Images without alt text
+        if (line.includes('<img') && !line.includes('alt=')) {
+            issues.push({
+                file,
+                line: lineNumber,
+                severity: 'critical',
+                rule: 'WCAG 1.1.1',
+                message: 'Image missing alt attribute',
+                fix: 'Add alt="descriptive text" to <img> tag'
+            });
+        }
+        // Check 2: Buttons without accessible labels
+        if (line.match(/<button[^>]*>[\s]*<[^>]*\/>/)) {
+            if (!line.includes('aria-label') && !line.includes('title')) {
+                issues.push({
+                    file,
+                    line: lineNumber,
+                    severity: 'critical',
+                    rule: 'WCAG 4.1.2',
+                    message: 'Button with icon only - missing accessible label',
+                    fix: 'Add aria-label="action description" to button'
+                });
+            }
+        }
+        // Check 3: Input fields without labels
+        if (line.includes('<input') && !line.includes('aria-label') && !line.includes('placeholder')) {
+            const hasLabel = lines.slice(Math.max(0, i - 3), i).some(l => l.includes('<label'));
+            if (!hasLabel) {
+                issues.push({
+                    file,
+                    line: lineNumber,
+                    severity: 'critical',
+                    rule: 'WCAG 3.3.2',
+                    message: 'Input field missing label',
+                    fix: 'Add <label> or aria-label attribute'
+                });
+            }
+        }
+        // Check 4: Low contrast color combinations
+        const lowContrastPatterns = [
+            /text-gray-400.*bg-gray-300/,
+            /text-gray-300.*bg-white/,
+            /text-yellow-200.*bg-yellow-100/
+        ];
+        for (const pattern of lowContrastPatterns) {
+            if (pattern.test(line)) {
+                issues.push({
+                    file,
+                    line: lineNumber,
+                    severity: 'warning',
+                    rule: 'WCAG 1.4.3',
+                    message: 'Potentially low contrast color combination',
+                    fix: 'Ensure contrast ratio is at least 4.5:1 for normal text'
+                });
+            }
+        }
+        // Check 5: Missing heading hierarchy
+        if (line.match(/<h[1-6]/)) {
+            const headingLevel = parseInt(line.match(/<h([1-6])/)?.[1] || '1');
+            const previousHeadings = lines.slice(0, i).filter(l => l.match(/<h[1-6]/));
+            if (previousHeadings.length > 0) {
+                const lastHeading = previousHeadings[previousHeadings.length - 1];
+                const lastLevel = parseInt(lastHeading.match(/<h([1-6])/)?.[1] || '1');
+                if (headingLevel > lastLevel + 1) {
+                    issues.push({
+                        file,
+                        line: lineNumber,
+                        severity: 'warning',
+                        rule: 'WCAG 1.3.1',
+                        message: `Heading hierarchy skipped (h${lastLevel} to h${headingLevel})`,
+                        fix: `Use sequential heading levels (h${lastLevel} to h${lastLevel + 1})`
+                    });
+                }
+            }
+        }
+        // Check 6: Click handlers on non-interactive elements
+        if (line.match(/onClick.*<div|onClick.*<span/) && !line.includes('role=') && !line.includes('tabIndex')) {
+            issues.push({
+                file,
+                line: lineNumber,
+                severity: 'warning',
+                rule: 'WCAG 2.1.1',
+                message: 'Click handler on non-interactive element',
+                fix: 'Add role="button" and tabIndex={0} or use <button> instead'
+            });
+        }
+        // Check 7: Form submission without accessible feedback
+        if (line.includes('onSubmit') || line.includes('type="submit"')) {
+            const hasAriaLive = content.includes('aria-live') || content.includes('role="status"');
+            if (!hasAriaLive) {
+                issues.push({
+                    file,
+                    line: lineNumber,
+                    severity: 'info',
+                    rule: 'WCAG 4.1.3',
+                    message: 'Form submission - consider adding status feedback',
+                    fix: 'Add aria-live="polite" region for submission status'
+                });
+            }
+        }
+    }
+    return issues;
+}
+function calculateA11yScore(totalComponents, critical, warnings) {
+    if (totalComponents === 0)
+        return 100;
+    const criticalPenalty = critical * 10;
+    const warningPenalty = warnings * 2;
+    const totalPenalty = criticalPenalty + warningPenalty;
+    const score = Math.max(0, 100 - totalPenalty);
+    return Math.round(score);
+}
+function generateA11yReport(score, threshold, issues) {
+    const critical = issues.filter(i => i.severity === 'critical').length;
+    const warnings = issues.filter(i => i.severity === 'warning').length;
+    const passed = score >= threshold;
+    let report = `🍞 CodeBakers: Accessibility Validation\n\n`;
+    report += `**Score:** ${score}/100 ${passed ? '✅' : '❌'}\n`;
+    report += `**Threshold:** ${threshold}/100\n`;
+    report += `**Status:** ${passed ? 'PASS' : 'FAIL'}\n\n`;
+    report += `## Issues Found\n\n`;
+    report += `- Critical: ${critical} ${critical === 0 ? '✅' : '❌'}\n`;
+    report += `- Warnings: ${warnings}\n`;
+    report += `- Info: ${issues.filter(i => i.severity === 'info').length}\n\n`;
+    if (critical > 0) {
+        report += `## Critical Issues (Must Fix)\n\n`;
+        for (const issue of issues.filter(i => i.severity === 'critical').slice(0, 5)) {
+            report += `**${path.basename(issue.file)}:${issue.line}**\n`;
+            report += `- Rule: ${issue.rule}\n`;
+            report += `- Issue: ${issue.message}\n`;
+            report += `- Fix: ${issue.fix}\n\n`;
+        }
+        if (critical > 5) {
+            report += `... and ${critical - 5} more critical issues\n\n`;
+        }
+    }
+    if (!passed) {
+        report += `## Next Steps\n\n`;
+        report += `1. Fix critical issues above\n`;
+        report += `2. Run: codebakers_fix_accessibility (auto-fix)\n`;
+        report += `3. Re-validate: codebakers_validate_accessibility\n\n`;
+    }
+    else {
+        report += `## ✅ Accessibility Compliant\n\n`;
+        report += `Your app meets WCAG ${threshold >= 95 ? 'AAA' : 'AA'} standards.\n\n`;
+    }
+    report += `**Full report:** .codebakers/ACCESSIBILITY-REPORT.md\n`;
+    return report;
+}
+function generateDetailedReport(score, issues) {
+    let report = `# Accessibility Report\n\n`;
+    report += `**Generated:** ${new Date().toISOString()}\n`;
+    report += `**Score:** ${score}/100\n\n`;
+    report += `## Summary\n\n`;
+    report += `| Severity | Count |\n`;
+    report += `|----------|-------|\n`;
+    report += `| Critical | ${issues.filter(i => i.severity === 'critical').length} |\n`;
+    report += `| Warning  | ${issues.filter(i => i.severity === 'warning').length} |\n`;
+    report += `| Info     | ${issues.filter(i => i.severity === 'info').length} |\n\n`;
+    for (const severity of ['critical', 'warning', 'info']) {
+        const filtered = issues.filter(i => i.severity === severity);
+        if (filtered.length === 0)
+            continue;
+        report += `## ${severity.charAt(0).toUpperCase() + severity.slice(1)} Issues\n\n`;
+        for (const issue of filtered) {
+            report += `### ${path.basename(issue.file)}:${issue.line}\n\n`;
+            report += `- **Rule:** ${issue.rule}\n`;
+            report += `- **Issue:** ${issue.message}\n`;
+            report += `- **Fix:** ${issue.fix}\n\n`;
+        }
+    }
+    return report;
+}
+//# sourceMappingURL=validate-accessibility.js.map