npm - @freshguard/freshguard-core - Versions diffs - 0.11.2 - Mend

@freshguard/freshguard-core 0.11.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (180) hide show

package/LICENSE +21 -0
package/README.md +644 -0
package/dist/cli/index.d.ts +3 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/index.js +350 -0
package/dist/cli/index.js.map +1 -0
package/dist/connectors/base-connector.d.ts +62 -0
package/dist/connectors/base-connector.d.ts.map +1 -0
package/dist/connectors/base-connector.js +549 -0
package/dist/connectors/base-connector.js.map +1 -0
package/dist/connectors/bigquery.d.ts +38 -0
package/dist/connectors/bigquery.d.ts.map +1 -0
package/dist/connectors/bigquery.js +406 -0
package/dist/connectors/bigquery.js.map +1 -0
package/dist/connectors/duckdb.d.ts +36 -0
package/dist/connectors/duckdb.d.ts.map +1 -0
package/dist/connectors/duckdb.js +364 -0
package/dist/connectors/duckdb.js.map +1 -0
package/dist/connectors/index.d.ts +7 -0
package/dist/connectors/index.d.ts.map +1 -0
package/dist/connectors/index.js +7 -0
package/dist/connectors/index.js.map +1 -0
package/dist/connectors/mysql.d.ts +32 -0
package/dist/connectors/mysql.d.ts.map +1 -0
package/dist/connectors/mysql.js +348 -0
package/dist/connectors/mysql.js.map +1 -0
package/dist/connectors/postgres.d.ts +31 -0
package/dist/connectors/postgres.d.ts.map +1 -0
package/dist/connectors/postgres.js +326 -0
package/dist/connectors/postgres.js.map +1 -0
package/dist/connectors/redshift.d.ts +32 -0
package/dist/connectors/redshift.d.ts.map +1 -0
package/dist/connectors/redshift.js +366 -0
package/dist/connectors/redshift.js.map +1 -0
package/dist/connectors/snowflake.d.ts +43 -0
package/dist/connectors/snowflake.d.ts.map +1 -0
package/dist/connectors/snowflake.js +442 -0
package/dist/connectors/snowflake.js.map +1 -0
package/dist/db/index.d.ts +9 -0
package/dist/db/index.d.ts.map +1 -0
package/dist/db/index.js +10 -0
package/dist/db/index.js.map +1 -0
package/dist/db/migrate.d.ts +12 -0
package/dist/db/migrate.d.ts.map +1 -0
package/dist/db/migrate.js +114 -0
package/dist/db/migrate.js.map +1 -0
package/dist/db/schema.d.ts +2053 -0
package/dist/db/schema.d.ts.map +1 -0
package/dist/db/schema.js +164 -0
package/dist/db/schema.js.map +1 -0
package/dist/errors/debug-factory.d.ts +23 -0
package/dist/errors/debug-factory.d.ts.map +1 -0
package/dist/errors/debug-factory.js +149 -0
package/dist/errors/debug-factory.js.map +1 -0
package/dist/errors/index.d.ts +119 -0
package/dist/errors/index.d.ts.map +1 -0
package/dist/errors/index.js +341 -0
package/dist/errors/index.js.map +1 -0
package/dist/index.d.ts +9 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +6 -0
package/dist/index.js.map +1 -0
package/dist/metadata/duckdb-storage.d.ts +31 -0
package/dist/metadata/duckdb-storage.d.ts.map +1 -0
package/dist/metadata/duckdb-storage.js +230 -0
package/dist/metadata/duckdb-storage.js.map +1 -0
package/dist/metadata/factory.d.ts +4 -0
package/dist/metadata/factory.d.ts.map +1 -0
package/dist/metadata/factory.js +23 -0
package/dist/metadata/factory.js.map +1 -0
package/dist/metadata/index.d.ts +6 -0
package/dist/metadata/index.d.ts.map +1 -0
package/dist/metadata/index.js +4 -0
package/dist/metadata/index.js.map +1 -0
package/dist/metadata/interface.d.ts +26 -0
package/dist/metadata/interface.d.ts.map +1 -0
package/dist/metadata/interface.js +2 -0
package/dist/metadata/interface.js.map +1 -0
package/dist/metadata/postgresql-storage.d.ts +32 -0
package/dist/metadata/postgresql-storage.d.ts.map +1 -0
package/dist/metadata/postgresql-storage.js +242 -0
package/dist/metadata/postgresql-storage.js.map +1 -0
package/dist/metadata/schema-config.d.ts +30 -0
package/dist/metadata/schema-config.d.ts.map +1 -0
package/dist/metadata/schema-config.js +94 -0
package/dist/metadata/schema-config.js.map +1 -0
package/dist/metadata/types.d.ts +35 -0
package/dist/metadata/types.d.ts.map +1 -0
package/dist/metadata/types.js +2 -0
package/dist/metadata/types.js.map +1 -0
package/dist/monitor/baseline-calculator.d.ts +30 -0
package/dist/monitor/baseline-calculator.d.ts.map +1 -0
package/dist/monitor/baseline-calculator.js +192 -0
package/dist/monitor/baseline-calculator.js.map +1 -0
package/dist/monitor/baseline-config.d.ts +37 -0
package/dist/monitor/baseline-config.d.ts.map +1 -0
package/dist/monitor/baseline-config.js +156 -0
package/dist/monitor/baseline-config.js.map +1 -0
package/dist/monitor/freshness.d.ts +5 -0
package/dist/monitor/freshness.d.ts.map +1 -0
package/dist/monitor/freshness.js +239 -0
package/dist/monitor/freshness.js.map +1 -0
package/dist/monitor/index.d.ts +5 -0
package/dist/monitor/index.d.ts.map +1 -0
package/dist/monitor/index.js +5 -0
package/dist/monitor/index.js.map +1 -0
package/dist/monitor/schema-baseline.d.ts +22 -0
package/dist/monitor/schema-baseline.d.ts.map +1 -0
package/dist/monitor/schema-baseline.js +211 -0
package/dist/monitor/schema-baseline.js.map +1 -0
package/dist/monitor/schema-changes.d.ts +5 -0
package/dist/monitor/schema-changes.d.ts.map +1 -0
package/dist/monitor/schema-changes.js +289 -0
package/dist/monitor/schema-changes.js.map +1 -0
package/dist/monitor/volume.d.ts +5 -0
package/dist/monitor/volume.d.ts.map +1 -0
package/dist/monitor/volume.js +262 -0
package/dist/monitor/volume.js.map +1 -0
package/dist/observability/logger.d.ts +63 -0
package/dist/observability/logger.d.ts.map +1 -0
package/dist/observability/logger.js +282 -0
package/dist/observability/logger.js.map +1 -0
package/dist/observability/metrics.d.ts +106 -0
package/dist/observability/metrics.d.ts.map +1 -0
package/dist/observability/metrics.js +441 -0
package/dist/observability/metrics.js.map +1 -0
package/dist/query-analyzer.js +526 -0
package/dist/resilience/circuit-breaker.d.ts +94 -0
package/dist/resilience/circuit-breaker.d.ts.map +1 -0
package/dist/resilience/circuit-breaker.js +379 -0
package/dist/resilience/circuit-breaker.js.map +1 -0
package/dist/resilience/index.d.ts +7 -0
package/dist/resilience/index.d.ts.map +1 -0
package/dist/resilience/index.js +7 -0
package/dist/resilience/index.js.map +1 -0
package/dist/resilience/retry-policy.d.ts +87 -0
package/dist/resilience/retry-policy.d.ts.map +1 -0
package/dist/resilience/retry-policy.js +423 -0
package/dist/resilience/retry-policy.js.map +1 -0
package/dist/resilience/timeout-manager.d.ts +97 -0
package/dist/resilience/timeout-manager.d.ts.map +1 -0
package/dist/resilience/timeout-manager.js +339 -0
package/dist/resilience/timeout-manager.js.map +1 -0
package/dist/security/query-analyzer.d.ts +82 -0
package/dist/security/query-analyzer.d.ts.map +1 -0
package/dist/security/query-analyzer.js +381 -0
package/dist/security/query-analyzer.js.map +1 -0
package/dist/security/schema-cache.d.ts +95 -0
package/dist/security/schema-cache.d.ts.map +1 -0
package/dist/security/schema-cache.js +344 -0
package/dist/security/schema-cache.js.map +1 -0
package/dist/types/connector.d.ts +68 -0
package/dist/types/connector.d.ts.map +1 -0
package/dist/types/connector.js +26 -0
package/dist/types/connector.js.map +1 -0
package/dist/types.d.ts +244 -0
package/dist/types.d.ts.map +1 -0
package/dist/types.js +2 -0
package/dist/types.js.map +1 -0
package/dist/validation/index.d.ts +7 -0
package/dist/validation/index.d.ts.map +1 -0
package/dist/validation/index.js +5 -0
package/dist/validation/index.js.map +1 -0
package/dist/validation/runtime-validator.d.ts +70 -0
package/dist/validation/runtime-validator.d.ts.map +1 -0
package/dist/validation/runtime-validator.js +206 -0
package/dist/validation/runtime-validator.js.map +1 -0
package/dist/validation/sanitizers.d.ts +56 -0
package/dist/validation/sanitizers.d.ts.map +1 -0
package/dist/validation/sanitizers.js +264 -0
package/dist/validation/sanitizers.js.map +1 -0
package/dist/validation/schemas.d.ts +224 -0
package/dist/validation/schemas.d.ts.map +1 -0
package/dist/validation/schemas.js +263 -0
package/dist/validation/schemas.js.map +1 -0
package/dist/validators/index.d.ts +18 -0
package/dist/validators/index.d.ts.map +1 -0
package/dist/validators/index.js +209 -0
package/dist/validators/index.js.map +1 -0
package/package.json +91 -0

package/LICENSE ADDED Viewed

@@ -0,0 +1,21 @@
+MIT License
+Copyright (c) 2025 FreshGuard
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md ADDED Viewed

@@ -0,0 +1,644 @@
+# FreshGuard Core
+**Open source data pipeline freshness monitoring engine for self-hosting.**
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+[![pnpm version](https://img.shields.io/npm/v/@freshguard/freshguard-core.svg)](https://www.npmjs.com/package/@freshguard/freshguard-core)
+## What is FreshGuard Core?
+Monitor when your data pipelines go stale. Get alerts when:
+- **Data hasn't updated in X minutes** (freshness checks)
+- **Row counts deviate unexpectedly** (volume anomaly detection)
+- **Database schemas change unexpectedly** (schema change monitoring)
+Supports PostgreSQL, DuckDB, BigQuery, and Snowflake. Self-hosted. Free forever.
+## 🔒 Security Features
+FreshGuard Core includes basic security protections for self-hosted deployments:
+**🛡️ Query Security**
+- ✅ **SQL Injection Protection** - Input validation and pattern analysis
+- ✅ **Query Validation** - Basic checks for dangerous operations
+- ✅ **Input Sanitization** - Identifier validation and parameter checking
+**🔄 Resilience Features**
+- ✅ **Circuit Breaker Protection** - Automatic failure detection and recovery
+- ✅ **Retry Logic** - Exponential backoff with jitter
+- ✅ **Timeout Protection** - Query and connection timeouts
+- ✅ **Connection Management** - Basic connection pooling
+**📊 Observability**
+- ✅ **Structured Logging** - JSON logging with Pino
+- ✅ **Error Handling** - Sanitized error messages
+- ✅ **Performance Tracking** - Basic query performance metrics
+**🔐 Security Basics**
+- ✅ **SSL/TLS Support** - Secure database connections
+- ✅ **Environment Variables** - Secure credential management
+- ✅ **Error Sanitization** - Safe error messages
+**📋 [Complete Security Guide →](docs/SECURITY_FOR_SELF_HOSTERS.md)** | **🚀 [Integration Guide →](docs/INTEGRATION_GUIDE.md)**
+## Quick Start
+### 1. Install
+```bash
+pnpm install @freshguard/freshguard-core
+```
+### 2. Check Freshness
+```typescript
+import { checkFreshness, PostgresConnector } from '@freshguard/freshguard-core';
+import type { MonitoringRule } from '@freshguard/freshguard-core';
+// Connect to your database
+const connector = new PostgresConnector({
+  host: process.env.DB_HOST || 'localhost',
+  port: Number(process.env.DB_PORT) || 5432,
+  database: process.env.DB_NAME || 'mydb',
+  username: process.env.DB_USER!,
+  password: process.env.DB_PASSWORD!,
+  ssl: true, // Enable SSL for secure connections
+});
+const rule: MonitoringRule = {
+  id: 'orders-freshness',
+  sourceId: 'prod_db',
+  name: 'Orders Freshness',
+  tableName: 'orders',
+  ruleType: 'freshness',
+  toleranceMinutes: 60,
+  timestampColumn: 'updated_at',
+  checkIntervalMinutes: 5,
+  isActive: true,
+  createdAt: new Date(),
+  updatedAt: new Date(),
+};
+const result = await checkFreshness(connector, rule);
+if (result.status === 'alert') {
+  console.log(`⚠️ Data is ${result.lagMinutes}m stale!`);
+} else {
+  console.log(`✅ Data is fresh (lag: ${result.lagMinutes}m)`);
+}
+```
+### 3. Check Volume Anomalies
+```typescript
+import { checkVolumeAnomaly, PostgresConnector } from '@freshguard/freshguard-core';
+const connector = new PostgresConnector({
+  host: process.env.DB_HOST!,
+  database: process.env.DB_NAME!,
+  username: process.env.DB_USER!,
+  password: process.env.DB_PASSWORD!,
+  ssl: true,
+});
+const result = await checkVolumeAnomaly(connector, rule);
+if (result.status === 'alert') {
+  console.log(`⚠️ Volume anomaly detected: ${result.deviation}% deviation from baseline`);
+}
+```
+### 4. Monitor Schema Changes
+```typescript
+import { checkSchemaChanges, PostgresConnector } from '@freshguard/freshguard-core';
+const schemaRule: MonitoringRule = {
+  id: 'users-schema',
+  sourceId: 'prod_db',
+  name: 'Users Table Schema Monitor',
+  tableName: 'users',
+  ruleType: 'schema_change',
+  checkIntervalMinutes: 60,
+  isActive: true,
+  trackColumnChanges: true,
+  trackTableChanges: true,
+  schemaChangeConfig: {
+    adaptationMode: 'manual',        // 'auto' | 'manual' | 'alert_only'
+    monitoringMode: 'full',          // 'full' | 'partial'
+    trackedColumns: {
+      alertLevel: 'medium',          // 'low' | 'medium' | 'high'
+      trackTypes: true,              // Monitor data type changes
+      trackNullability: false        // Don't track nullability changes
+    },
+    baselineRefreshDays: 30          // Auto-refresh baseline monthly
+  },
+  createdAt: new Date(),
+  updatedAt: new Date(),
+};
+const result = await checkSchemaChanges(connector, schemaRule, metadataStorage);
+if (result.status === 'alert') {
+  console.log(`⚠️ Schema changes detected: ${result.schemaChanges?.summary}`);
+  // Check specific changes
+  if (result.schemaChanges?.addedColumns?.length > 0) {
+    console.log('New columns:', result.schemaChanges.addedColumns.map(c => c.columnName));
+  }
+  if (result.schemaChanges?.removedColumns?.length > 0) {
+    console.log('Removed columns:', result.schemaChanges.removedColumns.map(c => c.columnName));
+  }
+  if (result.schemaChanges?.modifiedColumns?.length > 0) {
+    console.log('Modified columns:', result.schemaChanges.modifiedColumns.map(c =>
+      `${c.columnName} (${c.changeType}): ${c.oldValue} → ${c.newValue}`
+    ));
+  }
+} else {
+  console.log(`✅ Schema is stable (${result.schemaChanges?.changeCount || 0} changes)`);
+}
+```
+**Schema Change Adaptation Modes:**
+- **`auto`** - Automatically adapt to safe changes (column additions, safe type changes)
+- **`manual`** - Require manual approval for all changes (default)
+- **`alert_only`** - Always alert, never update baseline automatically
+**Monitoring Modes:**
+- **`full`** - Monitor all columns in the table (default)
+- **`partial`** - Monitor only specified columns in `trackedColumns.columns` array
+## 📊 Metadata Storage
+FreshGuard tracks execution history for volume anomaly detection and monitoring analytics. Choose between **DuckDB** (embedded, zero-setup) or **PostgreSQL** (production-ready) storage.
+### Quick Setup (Zero Configuration)
+```typescript
+import { createMetadataStorage, checkVolumeAnomaly, PostgresConnector } from '@freshguard/freshguard-core';
+// Create database connector
+const connector = new PostgresConnector({
+  host: process.env.DB_HOST!,
+  database: process.env.DB_NAME!,
+  username: process.env.DB_USER!,
+  password: process.env.DB_PASSWORD!,
+});
+// Automatic setup - creates ./freshguard-metadata.db
+const metadataStorage = await createMetadataStorage();
+// Use with monitoring functions
+const result = await checkVolumeAnomaly(connector, rule, metadataStorage);
+// Clean up
+await metadataStorage.close();
+```
+### Storage Options
+**DuckDB (Recommended for Self-Hosting)**
+- ✅ Zero database server setup
+- ✅ Single file storage (`./freshguard-metadata.db`)
+- ✅ Perfect for Docker containers
+```typescript
+// Custom path
+const storage = await createMetadataStorage({
+  type: 'duckdb',
+  path: './my-freshguard-data.db'
+});
+```
+**PostgreSQL (Recommended for Production)**
+- ✅ Full ACID compliance
+- ✅ Concurrent access support
+- ✅ Backup/restore capabilities
+```typescript
+// Production setup
+const storage = await createMetadataStorage({
+  type: 'postgresql',
+  url: 'postgresql://user:pass@host:5432/freshguard_metadata'
+});
+```
+**📋 [Complete Metadata Storage Guide →](docs/METADATA_STORAGE.md)**
+### 🚨 Error Handling
+FreshGuard Core exports comprehensive error classes for proper error handling:
+```typescript
+import {
+  checkFreshness,
+  PostgresConnector,
+  SecurityError,
+  ConnectionError,
+  TimeoutError,
+  QueryError,
+  ConfigurationError,
+  MonitoringError
+} from '@freshguard/freshguard-core';
+try {
+  const result = await checkFreshness(connector, rule);
+  console.log(`✅ Check completed: ${result.status}`);
+} catch (error) {
+  // Handle specific error types
+  if (error instanceof SecurityError) {
+    console.error('🔒 Security violation:', error.message);
+    // Log security incident, block request source
+  } else if (error instanceof ConnectionError) {
+    console.error('🔌 Database connection failed:', error.message);
+    // Retry with backoff, check network connectivity
+  } else if (error instanceof TimeoutError) {
+    console.error('⏱️ Query timeout:', error.message);
+    // Check query complexity, database performance
+  } else if (error instanceof QueryError) {
+    console.error('📊 Query execution failed:', error.message);
+    // Check table exists, column names, permissions
+  } else if (error instanceof ConfigurationError) {
+    console.error('⚙️ Configuration error:', error.message);
+    // Check environment variables, config file
+  } else if (error instanceof MonitoringError) {
+    console.error('📈 Monitoring check failed:', error.message);
+    // Check rule configuration, data availability
+  } else {
+    console.error('❌ Unknown error:', error.message);
+  }
+}
+```
+**Error Properties:**
+- `error.code` - Machine-readable error code (e.g., "SECURITY_VIOLATION")
+- `error.timestamp` - When the error occurred
+- `error.sanitized` - Whether error message is safe for user display
+## Features
+### 📊 Monitoring
+✅ **Freshness Monitoring** - Detect stale data based on last update time
+✅ **Volume Anomaly Detection** - Identify unexpected row count changes
+✅ **Schema Change Monitoring** - Track database schema evolution with configurable adaptation modes
+### 🗄️ Database Support
+✅ **PostgreSQL** - Production-ready with SSL/TLS support
+✅ **DuckDB** - Analytics and local development
+✅ **BigQuery** - Google Cloud data warehouses
+✅ **Snowflake** - Enterprise data platforms
+### 🔒 Security
+✅ **Security Basics** - Input validation and secure connections
+✅ **Error Sanitization** - Safe error handling and logging
+✅ **Open Source** - Transparent and auditable code
+### 🛠️ Developer Experience
+✅ **Type-Safe** - Written in TypeScript with full type definitions
+✅ **CLI Tool** - Secure command-line interface for self-hosters
+✅ **Self-Hosted** - Run on your own infrastructure
+✅ **MIT Licensed** - Free to use, modify, and distribute
+## 🖥️ CLI Usage
+FreshGuard Core includes a CLI tool for self-hosters:
+```bash
+# Set up environment variables
+export FRESHGUARD_DATABASE_URL="postgresql://user:password@localhost:5432/db?sslmode=require"
+# Initialize monitoring configuration
+pnpm exec freshguard init
+# Test connection
+pnpm exec freshguard test
+# Run monitoring scheduler
+pnpm exec freshguard run
+```
+**Features:**
+- 🔐 **Environment variables** - Secure credential management
+- 📝 **Configuration validation** - Proper setup verification
+- 🔒 **SSL support** - Secure database connections
+- 📊 **Monitoring commands** - Run checks and view results
+**📋 [Security Guide →](docs/SECURITY_FOR_SELF_HOSTERS.md)**
+## 🚀 Self-Hosting
+### Production Deployment
+**📋 [Security Guide →](docs/SECURITY_FOR_SELF_HOSTERS.md)**
+Important considerations for production deployments:
+- **🔒 Security checklist and best practices**
+- **🗄️ Database security configuration** (PostgreSQL, BigQuery, Snowflake)
+- **🌐 Network configuration**
+- **🔑 Credential management**
+- **📊 Monitoring and logging**
+### Deployment Guides
+See the [Self-Hosting Guide](docs/SELF_HOSTING.md) for:
+- Docker deployment with security hardening
+- Kubernetes setup with secrets management
+- Environment configuration examples
+- Custom alerting integration
+## What's Not Included
+This is the **open source core**. It does not include:
+- Managed hosting (you manage uptime)
+- Multi-user dashboard and config UI (use config files instead)
+Want these features? Check out **[FreshGuard Cloud](https://freshguard.dev)** - our managed SaaS.
+## Architecture
+FreshGuard uses an **Open Core** model:
+- **`@freshguard/freshguard-core`** (this package) - MIT licensed, open source monitoring engine
+- **`freshguard`** - Proprietary multi-tenant SaaS (optional)
+You can self-host the core or use our managed cloud service.
+## Contributing
+We welcome contributions! See [CONTRIBUTING.md](docs/CONTRIBUTING.md).
+## Examples
+### 📊 Database Connections
+```typescript
+import { PostgresConnector, BigQueryConnector } from '@freshguard/freshguard-core';
+// PostgreSQL connection
+const pgConfig = {
+  host: 'localhost',
+  port: 5432,
+  database: 'myapp',
+  username: process.env.DB_USER!,
+  password: process.env.DB_PASSWORD!,
+  ssl: true, // Enable SSL for secure connections
+};
+const postgres = new PostgresConnector(pgConfig);
+// BigQuery connection
+const bqConfig = {
+  host: 'bigquery.googleapis.com',
+  database: 'my-project',
+  password: process.env.BIGQUERY_SERVICE_ACCOUNT_JSON!,
+  ssl: true,
+};
+const bigquery = new BigQueryConnector(bqConfig);
+```
+### 🔔 Custom Alerting
+```typescript
+import { checkFreshness } from '@freshguard/freshguard-core';
+import { PostgresConnector } from '@freshguard/freshguard-core';
+import { sendSlackAlert } from './alerts.js';
+// Database connection
+const connector = new PostgresConnector({
+  host: process.env.DB_HOST!,
+  database: process.env.DB_NAME!,
+  username: process.env.DB_USER!,
+  password: process.env.DB_PASSWORD!,
+  ssl: true,
+});
+const result = await checkFreshness(connector, rule);
+if (result.status === 'alert') {
+  await sendSlackAlert({
+    channel: '#data-alerts',
+    message: `⚠️ ${rule.name} is stale (${result.lagMinutes}m lag)`,
+  });
+}
+```
+### 📅 Scheduled Monitoring
+```typescript
+import { checkFreshness, checkVolumeAnomaly, checkSchemaChanges } from '@freshguard/freshguard-core';
+import { PostgresConnector } from '@freshguard/freshguard-core';
+import cron from 'node-cron';
+const connector = new PostgresConnector({
+  host: process.env.DB_HOST!,
+  database: process.env.DB_NAME!,
+  username: process.env.DB_USER!,
+  password: process.env.DB_PASSWORD!,
+  ssl: true,
+});
+// Run every 5 minutes with comprehensive error handling
+cron.schedule('*/5 * * * *', async () => {
+  try {
+    const result = await checkFreshness(connector, rule);
+    console.log(`✅ Check result: ${result.status}`);
+  } catch (error) {
+    // Import error classes for specific handling
+    const { SecurityError, ConnectionError, TimeoutError } = require('@freshguard/freshguard-core');
+    if (error instanceof ConnectionError) {
+      console.error(`🔌 Database connection failed: ${error.message}`);
+      // Implement reconnection logic
+    } else if (error instanceof TimeoutError) {
+      console.error(`⏱️ Query timeout: ${error.message}`);
+      // Alert ops team about performance issues
+    } else if (error instanceof SecurityError) {
+      console.error(`🔒 Security violation: ${error.message}`);
+      // Log security incident for investigation
+    } else {
+      console.error(`❌ Monitoring failed: ${error.message}`);
+    }
+  }
+});
+// Monitor schema changes hourly
+cron.schedule('0 * * * *', async () => {
+  try {
+    const schemaRule = {
+      id: 'user-schema-monitor',
+      sourceId: 'prod_db',
+      name: 'User Table Schema Monitor',
+      tableName: 'users',
+      ruleType: 'schema_change',
+      checkIntervalMinutes: 60,
+      isActive: true,
+      schemaChangeConfig: {
+        adaptationMode: 'manual',      // Require manual approval
+        monitoringMode: 'full',        // Monitor all columns
+        trackedColumns: {
+          alertLevel: 'high',          // High-priority alerts
+          trackTypes: true,
+          trackNullability: false
+        }
+      },
+      createdAt: new Date(),
+      updatedAt: new Date(),
+    };
+    const result = await checkSchemaChanges(connector, schemaRule, metadataStorage);
+    if (result.status === 'alert') {
+      console.log(`🚨 Schema changes detected in users table: ${result.schemaChanges?.summary}`);
+      // Send critical alert to operations team
+    } else {
+      console.log(`✅ Schema check passed: ${result.schemaChanges?.changeCount || 0} changes`);
+    }
+  } catch (error) {
+    console.error(`❌ Schema monitoring failed: ${error.message}`);
+  }
+});
+```
+## 📚 API Documentation
+### Database Connectors
+```typescript
+// Import connectors, monitoring functions, and error classes
+import {
+  PostgresConnector,
+  DuckDBConnector,
+  BigQueryConnector,
+  SnowflakeConnector,
+  checkFreshness,
+  checkVolumeAnomaly,
+  checkSchemaChanges,
+  SecurityError,
+  ConnectionError,
+  TimeoutError,
+  QueryError,
+  ConfigurationError,
+  MonitoringError
+} from '@freshguard/freshguard-core';
+```
+### Error Classes
+FreshGuard Core provides comprehensive error handling with specific error types:
+- **`SecurityError`** - SQL injection attempts, invalid identifiers, blocked queries
+- **`ConnectionError`** - Database connection failures, authentication issues
+- **`TimeoutError`** - Query timeouts, connection timeouts
+- **`QueryError`** - Syntax errors, table/column not found, execution failures
+- **`ConfigurationError`** - Missing required fields, invalid configuration values
+- **`MonitoringError`** - Freshness check failures, volume anomaly detection errors
+All errors include:
+- `error.code` - Machine-readable error code
+- `error.timestamp` - Error occurrence timestamp
+- `error.sanitized` - Whether the message is safe for user display
+### `checkFreshness(connector, rule)`
+Check data freshness for a given monitoring rule.
+**Parameters:**
+- `connector` - Database connector (PostgresConnector, BigQueryConnector, etc.)
+- `rule` - Monitoring rule configuration
+**Returns:** `Promise<CheckResult>` with status and lag information
+### `checkVolumeAnomaly(connector, rule)`
+Check for volume anomalies in row counts.
+**Parameters:**
+- `connector` - Database connector
+- `rule` - Monitoring rule configuration
+**Returns:** `Promise<CheckResult>` with anomaly detection results
+### `checkSchemaChanges(connector, rule)`
+Monitor database schema changes with configurable adaptation modes.
+**Parameters:**
+- `connector` - Secure database connector
+- `rule` - Monitoring rule with `ruleType: 'schema_change'` and optional `schemaChangeConfig`
+- `metadataStorage` (optional) - Metadata storage for baseline persistence
+**Returns:** `Promise<CheckResult>` with `schemaChanges` field containing:
+- `hasChanges` - Boolean indicating if changes were detected
+- `addedColumns` - Array of newly added columns
+- `removedColumns` - Array of removed columns (breaking changes)
+- `modifiedColumns` - Array of type/constraint changes
+- `summary` - Human-readable change summary
+- `changeCount` - Total number of changes
+- `severity` - Change impact level ('low', 'medium', 'high')
+### Database Connectors
+**PostgresConnector** - PostgreSQL databases with SSL support
+```typescript
+const connector = new PostgresConnector({
+  host: 'localhost',
+  port: 5432,
+  database: 'myapp',
+  username: process.env.DB_USER!,
+  password: process.env.DB_PASSWORD!,
+  ssl: true, // Enable SSL for secure connections
+});
+```
+**BigQueryConnector** - Google Cloud BigQuery data warehouses
+**SnowflakeConnector** - Snowflake data platform integration
+**DuckDBConnector** - DuckDB for analytics and development
+### 🔧 Environment Setup
+Copy `.env.example` to `.env` for secure configuration:
+```bash
+cp .env.example .env
+# Edit .env with your secure credentials
+```
+The `.env.example` file includes comprehensive security guidelines and examples for all supported databases.
+## License
+MIT - See [LICENSE](./LICENSE)
+## 📞 Support
+### 📋 Documentation
+**🚀 Getting Started**
+- **🔧 [Integration Guide](docs/INTEGRATION_GUIDE.md)** - Complete integration examples for developers
+- **🏠 [Self-Hosting Guide](docs/SELF_HOSTING.md)** - Production deployment with security features
+- **🤝 [Contributing Guide](docs/CONTRIBUTING.md)** - Development setup and guidelines
+**🔒 Security & Production**
+- **🛡️ [Security Guide](docs/SECURITY_FOR_SELF_HOSTERS.md)**
+**🏗️ Advanced Topics**
+- **⚙️ Configuration Examples** - Environment-specific setups (dev/staging/prod)
+- **📈 Monitoring & Observability** - Structured logging, metrics, and alerting
+- **🔄 Multi-Database Setup** - PostgreSQL, BigQuery, Snowflake, DuckDB integration
+- **🚨 Circuit Breakers & Resilience** - Automatic failure recovery and protection
+### 💬 Community
+- **🐛 [Issues](https://github.com/freshguard/freshguard/issues)** - Bug reports and feature requests
+- **💭 [Discussions](https://github.com/freshguard/freshguard/discussions)** - Questions and community support
+## Need Managed Hosting?
+Self-hosting requires ops. Want a managed experience?
+**[Try FreshGuard Cloud (COMING SOON)](https://freshguard.dev)**
+---
+Built with ❤️ by the FreshGuard community

package/dist/cli/index.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/cli/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/cli/index.ts"],"names":[],"mappings":""}