@elliotllliu/agentshield 0.1.0

package/dist/rules/supply-chain.js

@@ -0,0 +1,105 @@
+import { execSync } from "child_process";
+import { existsSync } from "fs";
+import { join } from "path";
+/**
+ * Rule: supply-chain
+ * Runs npm audit to detect known CVEs in dependencies.
+ */
+export const supplyChainRule = {
+    id: "supply-chain",
+    name: "Supply Chain Audit",
+    description: "Checks for known CVEs in npm/pip dependencies",
+    run(files) {
+        const findings = [];
+        // Determine the target directory from the first file
+        if (files.length === 0)
+            return findings;
+        const targetDir = files[0].path.replace(files[0].relativePath, "").replace(/\/$/, "");
+        // Check for package.json
+        const pkgJsonPath = join(targetDir, "package.json");
+        const hasNodeModules = existsSync(join(targetDir, "node_modules"));
+        const hasPkgJson = existsSync(pkgJsonPath);
+        const hasLockFile = existsSync(join(targetDir, "package-lock.json")) ||
+            existsSync(join(targetDir, "yarn.lock")) ||
+            existsSync(join(targetDir, "pnpm-lock.yaml"));
+        if (hasPkgJson && (hasNodeModules || hasLockFile)) {
+            try {
+                // npm audit returns exit code > 0 when vulnerabilities are found
+                const result = execSync("npm audit --json 2>/dev/null", {
+                    cwd: targetDir,
+                    encoding: "utf-8",
+                    timeout: 30000,
+                    stdio: ["pipe", "pipe", "pipe"],
+                });
+                parseNpmAudit(result, findings);
+            }
+            catch (err) {
+                // npm audit exits non-zero when vulns are found
+                if (err && typeof err === "object" && "stdout" in err) {
+                    parseNpmAudit(err.stdout, findings);
+                }
+            }
+        }
+        else if (hasPkgJson) {
+            // Has package.json but no lock file — check deps manually
+            try {
+                const pkgContent = files.find((f) => f.relativePath === "package.json");
+                if (pkgContent) {
+                    const pkg = JSON.parse(pkgContent.content);
+                    const deps = { ...pkg.dependencies, ...pkg.devDependencies };
+                    const depCount = Object.keys(deps).length;
+                    if (depCount > 0) {
+                        findings.push({
+                            rule: "supply-chain",
+                            severity: "info",
+                            file: "package.json",
+                            message: `${depCount} dependencies declared — run 'npm install && npm audit' for full CVE check`,
+                        });
+                    }
+                }
+            }
+            catch {
+                // ignore parse errors
+            }
+        }
+        // Check for requirements.txt (Python)
+        const reqTxt = files.find((f) => f.relativePath === "requirements.txt" || f.relativePath.endsWith("/requirements.txt"));
+        if (reqTxt) {
+            findings.push({
+                rule: "supply-chain",
+                severity: "info",
+                file: reqTxt.relativePath,
+                message: "Python requirements.txt found — run 'pip-audit' for CVE check",
+            });
+        }
+        return findings;
+    },
+};
+function parseNpmAudit(output, findings) {
+    try {
+        const audit = JSON.parse(output);
+        if (audit.vulnerabilities) {
+            for (const [name, vuln] of Object.entries(audit.vulnerabilities)) {
+                const severity = vuln.severity || "moderate";
+                const via = Array.isArray(vuln.via) ? vuln.via : [];
+                const cves = via
+                    .filter((v) => typeof v === "object" && v !== null && "url" in v)
+                    .map((v) => String(v.url))
+                    .join(", ");
+                const mappedSeverity = severity === "critical" || severity === "high" ? "critical" :
+                    severity === "moderate" ? "warning" : "info";
+                findings.push({
+                    rule: "supply-chain",
+                    severity: mappedSeverity,
+                    file: "package.json",
+                    message: `${name} — ${severity} severity${cves ? ` (${cves})` : ""}`,
+                    evidence: typeof vuln.range === "string" ? `affected: ${vuln.range}` : undefined,
+                });
+            }
+        }
+    }
+    catch {
+        // unparseable output
+    }
+}
+//# sourceMappingURL=supply-chain.js.map

package/dist/rules/supply-chain.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"supply-chain.js","sourceRoot":"","sources":["../../src/rules/supply-chain.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAChC,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAG5B;;;GAGG;AAEH,MAAM,CAAC,MAAM,eAAe,GAAS;IACnC,EAAE,EAAE,cAAc;IAClB,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EAAE,+CAA+C;IAE5D,GAAG,CAAC,KAAoB;QACtB,MAAM,QAAQ,GAAc,EAAE,CAAC;QAE/B,qDAAqD;QACrD,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,QAAQ,CAAC;QAExC,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAExF,yBAAyB;QACzB,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC;QACpD,MAAM,cAAc,GAAG,UAAU,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC,CAAC;QACnE,MAAM,UAAU,GAAG,UAAU,CAAC,WAAW,CAAC,CAAC;QAC3C,MAAM,WAAW,GACf,UAAU,CAAC,IAAI,CAAC,SAAS,EAAE,mBAAmB,CAAC,CAAC;YAChD,UAAU,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC;YACxC,UAAU,CAAC,IAAI,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC,CAAC;QAEhD,IAAI,UAAU,IAAI,CAAC,cAAc,IAAI,WAAW,CAAC,EAAE,CAAC;YAClD,IAAI,CAAC;gBACH,iEAAiE;gBACjE,MAAM,MAAM,GAAG,QAAQ,CAAC,8BAA8B,EAAE;oBACtD,GAAG,EAAE,SAAS;oBACd,QAAQ,EAAE,OAAO;oBACjB,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;iBAChC,CAAC,CAAC;gBACH,aAAa,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;YAClC,CAAC;YAAC,OAAO,GAAY,EAAE,CAAC;gBACtB,gDAAgD;gBAChD,IAAI,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,QAAQ,IAAI,GAAG,EAAE,CAAC;oBACtD,aAAa,CAAE,GAA0B,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;gBAC9D,CAAC;YACH,CAAC;QACH,CAAC;aAAM,IAAI,UAAU,EAAE,CAAC;YACtB,0DAA0D;YAC1D,IAAI,CAAC;gBACH,MAAM,UAAU,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,cAAc,CAAC,CAAC;gBACxE,IAAI,UAAU,EAAE,CAAC;oBACf,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;oBAC3C,MAAM,IAAI,GAAG,EAAE,GAAG,GAAG,CAAC,YAAY,EAAE,GAAG,GAAG,CAAC,eAAe,EAAE,CAAC;oBAC7D,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;oBAC1C,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;wBACjB,QAAQ,CAAC,IAAI,CAAC;4BACZ,IAAI,EAAE,cAAc;4BACpB,QAAQ,EAAE,MAAM;4BAChB,IAAI,EAAE,cAAc;4BACpB,OAAO,EAAE,GAAG,QAAQ,4EAA4E;yBACjG,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,sBAAsB;YACxB,CAAC;QACH,CAAC;QAED,sCAAsC;QACtC,MAAM,MAAM,GAAG,KAAK,CAAC,IAAI,CACvB,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,kBAAkB,IAAI,CAAC,CAAC,YAAY,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAC7F,CAAC;QACF,IAAI,MAAM,EAAE,CAAC;YACX,QAAQ,CAAC,IAAI,CAAC;gBACZ,IAAI,EAAE,cAAc;gBACpB,QAAQ,EAAE,MAAM;gBAChB,IAAI,EAAE,MAAM,CAAC,YAAY;gBACzB,OAAO,EAAE,+DAA+D;aACzE,CAAC,CAAC;QACL,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF,CAAC;AAEF,SAAS,aAAa,CAAC,MAAc,EAAE,QAAmB;IACxD,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAEjC,IAAI,KAAK,CAAC,eAAe,EAAE,CAAC;YAC1B,KAAK,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,OAAO,CAA0B,KAAK,CAAC,eAAe,CAAC,EAAE,CAAC;gBAC1F,MAAM,QAAQ,GAAI,IAAI,CAAC,QAAmB,IAAI,UAAU,CAAC;gBACzD,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;gBACpD,MAAM,IAAI,GAAG,GAAG;qBACb,MAAM,CAAC,CAAC,CAAU,EAAgC,EAAE,CAAC,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,IAAI,IAAI,KAAK,IAAI,CAAC,CAAC;qBACvG,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;qBACzB,IAAI,CAAC,IAAI,CAAC,CAAC;gBAEd,MAAM,cAAc,GAClB,QAAQ,KAAK,UAAU,IAAI,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC;oBAC7D,QAAQ,KAAK,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC;gBAE/C,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,cAAc;oBACpB,QAAQ,EAAE,cAAc;oBACxB,IAAI,EAAE,cAAc;oBACpB,OAAO,EAAE,GAAG,IAAI,MAAM,QAAQ,YAAY,IAAI,CAAC,CAAC,CAAC,KAAK,IAAI,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;oBACpE,QAAQ,EAAE,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,aAAa,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS;iBACjF,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,qBAAqB;IACvB,CAAC;AACH,CAAC"}

package/dist/rules/typosquatting.d.ts

@@ -0,0 +1,2 @@
+import type { Rule } from "../types.js";
+export declare const typosquattingRule: Rule;

package/dist/rules/typosquatting.js

@@ -0,0 +1,56 @@
+/**
+ * Rule: typosquatting
+ * Detects potentially typosquatted npm package names.
+ */
+// Known popular packages and their common typos
+const TYPOSQUAT_MAP = {
+    lodash: ["1odash", "lodsh", "lodashs", "lodahs"],
+    express: ["expresss", "expres", "exress", "exppress"],
+    axios: ["axois", "axio", "axioss", "axiso"],
+    react: ["raect", "reacct", "reactt"],
+    chalk: ["chalks", "chalkk", "chak"],
+    commander: ["comander", "commanderr", "commmander"],
+    "node-fetch": ["node-ftch", "nodefetch", "node-fetchh"],
+    request: ["reqeust", "requets", "reuqest"],
+    mongoose: ["mongose", "mongosse", "mongooose"],
+    webpack: ["webpck", "webpackk", "weback"],
+    eslint: ["eslintt", "eslnt", "elint"],
+    typescript: ["typscript", "typescipt", "typesript"],
+};
+export const typosquattingRule = {
+    id: "typosquatting",
+    name: "Dependency Typosquatting",
+    description: "Detects potentially typosquatted package names in dependencies",
+    run(files) {
+        const findings = [];
+        const pkgJson = files.find((f) => f.relativePath === "package.json" || f.relativePath.endsWith("/package.json"));
+        if (!pkgJson)
+            return findings;
+        try {
+            const pkg = JSON.parse(pkgJson.content);
+            const allDeps = {
+                ...pkg.dependencies,
+                ...pkg.devDependencies,
+                ...pkg.peerDependencies,
+                ...pkg.optionalDependencies,
+            };
+            for (const depName of Object.keys(allDeps)) {
+                for (const [legitimate, typos] of Object.entries(TYPOSQUAT_MAP)) {
+                    if (typos.includes(depName.toLowerCase())) {
+                        findings.push({
+                            rule: "typosquatting",
+                            severity: "critical",
+                            file: pkgJson.relativePath,
+                            message: `Suspicious package "${depName}" — possible typosquat of "${legitimate}"`,
+                        });
+                    }
+                }
+            }
+        }
+        catch {
+            // ignore parse errors
+        }
+        return findings;
+    },
+};
+//# sourceMappingURL=typosquatting.js.map

package/dist/rules/typosquatting.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"typosquatting.js","sourceRoot":"","sources":["../../src/rules/typosquatting.ts"],"names":[],"mappings":"AAEA;;;GAGG;AAEH,gDAAgD;AAChD,MAAM,aAAa,GAA6B;IAC9C,MAAM,EAAE,CAAC,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC;IAChD,OAAO,EAAE,CAAC,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,CAAC;IACrD,KAAK,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,CAAC;IAC3C,KAAK,EAAE,CAAC,OAAO,EAAE,QAAQ,EAAE,QAAQ,CAAC;IACpC,KAAK,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,MAAM,CAAC;IACnC,SAAS,EAAE,CAAC,UAAU,EAAE,YAAY,EAAE,YAAY,CAAC;IACnD,YAAY,EAAE,CAAC,WAAW,EAAE,WAAW,EAAE,aAAa,CAAC;IACvD,OAAO,EAAE,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC;IAC1C,QAAQ,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,WAAW,CAAC;IAC9C,OAAO,EAAE,CAAC,QAAQ,EAAE,UAAU,EAAE,QAAQ,CAAC;IACzC,MAAM,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC;IACrC,UAAU,EAAE,CAAC,WAAW,EAAE,WAAW,EAAE,WAAW,CAAC;CACpD,CAAC;AAEF,MAAM,CAAC,MAAM,iBAAiB,GAAS;IACrC,EAAE,EAAE,eAAe;IACnB,IAAI,EAAE,0BAA0B;IAChC,WAAW,EAAE,gEAAgE;IAE7E,GAAG,CAAC,KAAoB;QACtB,MAAM,QAAQ,GAAc,EAAE,CAAC;QAE/B,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,CACxB,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,cAAc,IAAI,CAAC,CAAC,YAAY,CAAC,QAAQ,CAAC,eAAe,CAAC,CACrF,CAAC;QACF,IAAI,CAAC,OAAO;YAAE,OAAO,QAAQ,CAAC;QAE9B,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;YACxC,MAAM,OAAO,GAAG;gBACd,GAAG,GAAG,CAAC,YAAY;gBACnB,GAAG,GAAG,CAAC,eAAe;gBACtB,GAAG,GAAG,CAAC,gBAAgB;gBACvB,GAAG,GAAG,CAAC,oBAAoB;aAC5B,CAAC;YAEF,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC3C,KAAK,MAAM,CAAC,UAAU,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;oBAChE,IAAI,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;wBAC1C,QAAQ,CAAC,IAAI,CAAC;4BACZ,IAAI,EAAE,eAAe;4BACrB,QAAQ,EAAE,UAAU;4BACpB,IAAI,EAAE,OAAO,CAAC,YAAY;4BAC1B,OAAO,EAAE,uBAAuB,OAAO,8BAA8B,UAAU,GAAG;yBACnF,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;QACxB,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF,CAAC"}

package/dist/scanner/files.d.ts

@@ -0,0 +1,5 @@
+import type { ScannedFile } from "../types.js";
+/** Recursively collect scannable files from a directory */
+export declare function collectFiles(dir: string, base?: string): ScannedFile[];
+/** Count total lines across files */
+export declare function totalLines(files: ScannedFile[]): number;

package/dist/scanner/files.js

@@ -0,0 +1,67 @@
+import { readFileSync, statSync, readdirSync } from "fs";
+import { join, relative, extname } from "path";
+const SKIP_DIRS = new Set([
+    "node_modules", ".git", "dist", "build", "__pycache__", ".venv", "venv",
+]);
+const CODE_EXTS = new Set([
+    ".ts", ".js", ".mjs", ".cjs", ".tsx", ".jsx",
+    ".py", ".sh", ".bash", ".zsh",
+    ".json", ".yaml", ".yml", ".toml",
+    ".md",
+]);
+const MAX_FILE_SIZE = 512 * 1024; // 512 KB
+/** Recursively collect scannable files from a directory */
+export function collectFiles(dir, base) {
+    const root = base ?? dir;
+    const files = [];
+    let entries;
+    try {
+        entries = readdirSync(dir);
+    }
+    catch {
+        return files;
+    }
+    for (const name of entries) {
+        if (name.startsWith(".") && name !== ".env")
+            continue;
+        if (SKIP_DIRS.has(name))
+            continue;
+        const fullPath = join(dir, name);
+        let stat;
+        try {
+            stat = statSync(fullPath);
+        }
+        catch {
+            continue;
+        }
+        if (stat.isDirectory()) {
+            files.push(...collectFiles(fullPath, root));
+        }
+        else if (stat.isFile()) {
+            const ext = extname(name).toLowerCase();
+            if (!CODE_EXTS.has(ext) && name !== "SKILL.md")
+                continue;
+            if (stat.size > MAX_FILE_SIZE)
+                continue;
+            try {
+                const content = readFileSync(fullPath, "utf-8");
+                files.push({
+                    path: fullPath,
+                    relativePath: relative(root, fullPath),
+                    content,
+                    lines: content.split("\n"),
+                    ext,
+                });
+            }
+            catch {
+                // skip unreadable files
+            }
+        }
+    }
+    return files;
+}
+/** Count total lines across files */
+export function totalLines(files) {
+    return files.reduce((sum, f) => sum + f.lines.length, 0);
+}
+//# sourceMappingURL=files.js.map

package/dist/scanner/files.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"files.js","sourceRoot":"","sources":["../../src/scanner/files.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,IAAI,CAAC;AACzD,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAG/C,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC;IACxB,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,aAAa,EAAE,OAAO,EAAE,MAAM;CACxE,CAAC,CAAC;AAEH,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC;IACxB,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM;IAC5C,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM;IAC7B,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO;IACjC,KAAK;CACN,CAAC,CAAC;AAEH,MAAM,aAAa,GAAG,GAAG,GAAG,IAAI,CAAC,CAAC,SAAS;AAE3C,2DAA2D;AAC3D,MAAM,UAAU,YAAY,CAAC,GAAW,EAAE,IAAa;IACrD,MAAM,IAAI,GAAG,IAAI,IAAI,GAAG,CAAC;IACzB,MAAM,KAAK,GAAkB,EAAE,CAAC;IAEhC,IAAI,OAAiB,CAAC;IACtB,IAAI,CAAC;QACH,OAAO,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;IAC7B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;QAC3B,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,IAAI,KAAK,MAAM;YAAE,SAAS;QACtD,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC;YAAE,SAAS;QAElC,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QACjC,IAAI,IAAI,CAAC;QACT,IAAI,CAAC;YACH,IAAI,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAC5B,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QAED,IAAI,IAAI,CAAC,WAAW,EAAE,EAAE,CAAC;YACvB,KAAK,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,CAAC;QAC9C,CAAC;aAAM,IAAI,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC;YACzB,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;YACxC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,KAAK,UAAU;gBAAE,SAAS;YACzD,IAAI,IAAI,CAAC,IAAI,GAAG,aAAa;gBAAE,SAAS;YAExC,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;gBAChD,KAAK,CAAC,IAAI,CAAC;oBACT,IAAI,EAAE,QAAQ;oBACd,YAAY,EAAE,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC;oBACtC,OAAO;oBACP,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC;oBAC1B,GAAG;iBACJ,CAAC,CAAC;YACL,CAAC;YAAC,MAAM,CAAC;gBACP,wBAAwB;YAC1B,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,qCAAqC;AACrC,MAAM,UAAU,UAAU,CAAC,KAAoB;IAC7C,OAAO,KAAK,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;AAC3D,CAAC"}

package/dist/scanner/index.d.ts

@@ -0,0 +1,3 @@
+import type { ScanResult } from "../types.js";
+/** Run all rules against a target directory */
+export declare function scan(targetDir: string): ScanResult;

package/dist/scanner/index.js

@@ -0,0 +1,24 @@
+import { collectFiles, totalLines } from "./files.js";
+import { rules } from "../rules/index.js";
+import { computeScore } from "../score.js";
+/** Run all rules against a target directory */
+export function scan(targetDir) {
+    const start = Date.now();
+    const files = collectFiles(targetDir);
+    const findings = [];
+    for (const rule of rules) {
+        findings.push(...rule.run(files));
+    }
+    // Sort: critical first, then warning, then info
+    const severityOrder = { critical: 0, warning: 1, info: 2 };
+    findings.sort((a, b) => severityOrder[a.severity] - severityOrder[b.severity]);
+    return {
+        target: targetDir,
+        filesScanned: files.length,
+        linesScanned: totalLines(files),
+        findings,
+        score: computeScore(findings),
+        duration: Date.now() - start,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/scanner/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AACtD,OAAO,EAAE,KAAK,EAAE,MAAM,mBAAmB,CAAC;AAC1C,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAG3C,+CAA+C;AAC/C,MAAM,UAAU,IAAI,CAAC,SAAiB;IACpC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACzB,MAAM,KAAK,GAAG,YAAY,CAAC,SAAS,CAAC,CAAC;IACtC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,gDAAgD;IAChD,MAAM,aAAa,GAAG,EAAE,QAAQ,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;IAC3D,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;IAE/E,OAAO;QACL,MAAM,EAAE,SAAS;QACjB,YAAY,EAAE,KAAK,CAAC,MAAM;QAC1B,YAAY,EAAE,UAAU,CAAC,KAAK,CAAC;QAC/B,QAAQ;QACR,KAAK,EAAE,YAAY,CAAC,QAAQ,CAAC;QAC7B,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK;KAC7B,CAAC;AACJ,CAAC"}

package/dist/score.d.ts

@@ -0,0 +1,14 @@
+import type { Finding } from "./types.js";
+/**
+ * Compute a security score from 0-100.
+ *
+ * Starts at 100, deducts points per finding:
+ *   critical: -25
+ *   warning:  -10
+ *   info:      -0
+ *
+ * Minimum score is 0.
+ */
+export declare function computeScore(findings: Finding[]): number;
+/** Human-readable risk label */
+export declare function riskLabel(score: number): string;

package/dist/score.js

@@ -0,0 +1,35 @@
+/**
+ * Compute a security score from 0-100.
+ *
+ * Starts at 100, deducts points per finding:
+ *   critical: -25
+ *   warning:  -10
+ *   info:      -0
+ *
+ * Minimum score is 0.
+ */
+export function computeScore(findings) {
+    let score = 100;
+    for (const f of findings) {
+        switch (f.severity) {
+            case "critical":
+                score -= 25;
+                break;
+            case "warning":
+                score -= 10;
+                break;
+        }
+    }
+    return Math.max(0, score);
+}
+/** Human-readable risk label */
+export function riskLabel(score) {
+    if (score >= 90)
+        return "Low Risk";
+    if (score >= 70)
+        return "Moderate Risk";
+    if (score >= 40)
+        return "High Risk";
+    return "Critical Risk";
+}
+//# sourceMappingURL=score.js.map

package/dist/score.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"score.js","sourceRoot":"","sources":["../src/score.ts"],"names":[],"mappings":"AAEA;;;;;;;;;GASG;AACH,MAAM,UAAU,YAAY,CAAC,QAAmB;IAC9C,IAAI,KAAK,GAAG,GAAG,CAAC;IAChB,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,QAAQ,CAAC,CAAC,QAAQ,EAAE,CAAC;YACnB,KAAK,UAAU;gBACb,KAAK,IAAI,EAAE,CAAC;gBACZ,MAAM;YACR,KAAK,SAAS;gBACZ,KAAK,IAAI,EAAE,CAAC;gBACZ,MAAM;QACV,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;AAC5B,CAAC;AAED,gCAAgC;AAChC,MAAM,UAAU,SAAS,CAAC,KAAa;IACrC,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,UAAU,CAAC;IACnC,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,eAAe,CAAC;IACxC,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,WAAW,CAAC;IACpC,OAAO,eAAe,CAAC;AACzB,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,42 @@
+/** Severity levels for findings */
+export type Severity = "critical" | "warning" | "info";
+/** A single security finding */
+export interface Finding {
+    rule: string;
+    severity: Severity;
+    file: string;
+    line?: number;
+    message: string;
+    evidence?: string;
+}
+/** Scan result for a directory */
+export interface ScanResult {
+    target: string;
+    filesScanned: number;
+    linesScanned: number;
+    findings: Finding[];
+    score: number;
+    duration: number;
+}
+/** A scanner rule */
+export interface Rule {
+    id: string;
+    name: string;
+    description: string;
+    run(files: ScannedFile[]): Finding[];
+}
+/** A file loaded for scanning */
+export interface ScannedFile {
+    path: string;
+    relativePath: string;
+    content: string;
+    lines: string[];
+    ext: string;
+}
+/** Parsed SKILL.md metadata */
+export interface SkillMetadata {
+    name?: string;
+    description?: string;
+    permissions?: string[];
+    [key: string]: unknown;
+}

package/dist/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}

package/package.json

@@ -0,0 +1,33 @@
+{
+  "name": "@elliotllliu/agentshield",
+  "version": "0.1.0",
+  "description": "Security scanner for AI agent skills, MCP servers, and plugins",
+  "type": "module",
+  "bin": {
+    "agentshield": "./dist/cli.js"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsx src/cli.ts",
+    "test": "node --import tsx --test tests/**/*.test.ts",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": ["security", "ai-agent", "skill", "mcp", "scanner", "audit", "openclaw"],
+  "author": "Elliot Liu",
+  "license": "MIT",
+  "dependencies": {
+    "chalk": "^5.4.1",
+    "commander": "^13.1.0",
+    "glob": "^11.0.1",
+    "gray-matter": "^4.0.3"
+  },
+  "devDependencies": {
+    "@types/node": "^22.10.0",
+    "tsx": "^4.19.0",
+    "typescript": "^5.7.0"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "files": ["dist", "README.md", "LICENSE"]
+}