npm - @jishankai/solid-cli - Versions diffs - 1.0.0 - Mend

@jishankai/solid-cli 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (26) hide show

package/LICENSE +21 -0
package/README.md +276 -0
package/config/default.json +79 -0
package/package.json +60 -0
package/src/Orchestrator.js +482 -0
package/src/agents/BaseAgent.js +35 -0
package/src/agents/BlockchainAgent.js +453 -0
package/src/agents/DeFiSecurityAgent.js +257 -0
package/src/agents/NetworkAgent.js +341 -0
package/src/agents/PermissionAgent.js +192 -0
package/src/agents/PersistenceAgent.js +361 -0
package/src/agents/ProcessAgent.js +572 -0
package/src/agents/ResourceAgent.js +217 -0
package/src/agents/SystemAgent.js +173 -0
package/src/config/ConfigManager.js +446 -0
package/src/index.js +629 -0
package/src/llm/LLMAnalyzer.js +705 -0
package/src/logging/Logger.js +352 -0
package/src/report/ReportManager.js +445 -0
package/src/report/generators/MarkdownGenerator.js +173 -0
package/src/report/generators/PDFGenerator.js +616 -0
package/src/report/templates/report.hbs +465 -0
package/src/report/utils/formatter.js +426 -0
package/src/report/utils/sanitizer.js +275 -0
package/src/utils/commander.js +42 -0
package/src/utils/signature.js +121 -0

package/src/utils/commander.js ADDED Viewed

@@ -0,0 +1,42 @@
+import { execa } from 'execa';
+/**
+ * Execute a shell command and return the result
+ * @param {string} command - The command to execute
+ * @param {Array} args - Command arguments
+ * @param {Object} options - Additional options
+ * @param {boolean} options.quiet - Suppress error logging
+ * @returns {Promise<string>} - Command output
+ */
+export async function executeCommand(command, args = [], options = {}) {
+  const { quiet = false } = options;
+  try {
+    const { stdout } = await execa(command, args);
+    return stdout;
+  } catch (error) {
+    if (!quiet) {
+      console.error(`Command failed: ${command} ${args.join(' ')}`);
+    }
+    return '';
+  }
+}
+/**
+ * Execute a shell command with shell syntax
+ * @param {string} command - The full command string
+ * @param {Object} options - Additional options
+ * @param {boolean} options.quiet - Suppress error logging
+ * @returns {Promise<string>} - Command output
+ */
+export async function executeShellCommand(command, options = {}) {
+  const { quiet = false } = options;
+  try {
+    const { stdout } = await execa('sh', ['-c', command]);
+    return stdout;
+  } catch (error) {
+    if (!quiet) {
+      console.error(`Shell command failed: ${command}`);
+    }
+    return '';
+  }
+}

package/src/utils/signature.js ADDED Viewed

@@ -0,0 +1,121 @@
+import { existsSync } from 'fs';
+import { executeShellCommand } from './commander.js';
+/**
+ * Escape a string for safe inclusion as a single-quoted shell argument.
+ * @param {string} value
+ * @returns {string}
+ */
+function shellQuote(value) {
+  const safe = String(value).replace(/'/g, `'"'"'`);
+  return `'${safe}'`;
+}
+/**
+ * Get code signing / Gatekeeper assessment for a local executable.
+ *
+ * NOTE:
+ * - Uses `spctl` (Gatekeeper) and `codesign` outputs.
+ * - Returns best-effort results; does not throw.
+ * - Uses `cache` (Map) when provided to avoid repeated shell calls.
+ *
+ * @param {string} filePath
+ * @param {Map<string, object>} [cache]
+ * @returns {Promise<{
+ *   path: string,
+ *   exists: boolean,
+ *   hasAbsolutePath: boolean,
+ *   spctlAccepted: boolean,
+ *   spctlOutput: string,
+ *   codesignOutput: string,
+ *   teamIdentifier: string|null,
+ *   authorities: string[],
+ *   signedByApple: boolean,
+ *   signedByDeveloperId: boolean
+ * }>}
+ */
+export async function getSignatureAssessment(filePath, cache) {
+  const rawPath = String(filePath || '');
+  // Some collectors may return a path plus args (e.g. "/path/to/bin --flag").
+  // If the full string doesn't exist on disk, fall back to first token.
+  let path = rawPath;
+  if (path.includes(' ') && path.startsWith('/')) {
+    const firstToken = path.split(' ')[0];
+    if (existsSync(firstToken)) {
+      path = firstToken;
+    }
+  }
+  const hasAbsolutePath = path.startsWith('/');
+  const exists = hasAbsolutePath ? existsSync(path) : false;
+  if (!hasAbsolutePath || !exists) {
+    return {
+      path: rawPath,
+      exists,
+      hasAbsolutePath,
+      spctlAccepted: false,
+      spctlOutput: '',
+      codesignOutput: '',
+      teamIdentifier: null,
+      authorities: [],
+      signedByApple: false,
+      signedByDeveloperId: false
+    };
+  }
+  if (cache && cache.has(path)) {
+    return cache.get(path);
+  }
+  const quoted = shellQuote(path);
+  const spctlOutput = await executeShellCommand(
+    `spctl -a -vv --type execute ${quoted} 2>&1 || true`,
+    { quiet: true }
+  );
+  const codesignOutput = await executeShellCommand(
+    `codesign -dv --verbose=4 ${quoted} 2>&1 || true`,
+    { quiet: true }
+  );
+  const spctlAccepted = spctlOutput.toLowerCase().includes('accepted');
+  const authorities = [];
+  let teamIdentifier = null;
+  for (const line of codesignOutput.split('\n')) {
+    const trimmed = line.trim();
+    if (trimmed.startsWith('Authority=')) {
+      authorities.push(trimmed.replace('Authority=', '').trim());
+    }
+    if (trimmed.startsWith('TeamIdentifier=')) {
+      teamIdentifier = trimmed.replace('TeamIdentifier=', '').trim() || null;
+    }
+  }
+  const signedByApple = authorities.some(a => a.toLowerCase().includes('apple'));
+  const signedByDeveloperId = authorities.some(a => a.toLowerCase().includes('developer id'));
+  const assessment = {
+    path,
+    exists,
+    hasAbsolutePath,
+    spctlAccepted,
+    spctlOutput,
+    codesignOutput,
+    teamIdentifier,
+    authorities,
+    signedByApple,
+    signedByDeveloperId
+  };
+  if (cache) {
+    cache.set(path, assessment);
+  }
+  return assessment;
+}