@kevinrabun/judges 3.44.0 → 3.46.0

package/dist/commands/explain-finding.js

@@ -0,0 +1,279 @@
+/**
+ * Detailed finding explanation — provide rich context, references,
+ * and remediation guidance for individual findings.
+ */
+import { readFileSync, existsSync } from "fs";
+// ─── Knowledge base ─────────────────────────────────────────────────────────
+const EXPLANATIONS = {
+    SEC: {
+        category: "Security",
+        whyItMatters: "Security vulnerabilities can lead to data breaches, unauthorized access, and compliance violations.",
+        commonCauses: [
+            "Insufficient input validation",
+            "Missing authentication checks",
+            "Hardcoded credentials",
+            "Insecure deserialization",
+        ],
+        remediationSteps: [
+            "Validate all user input",
+            "Use parameterized queries",
+            "Implement proper authentication",
+            "Follow principle of least privilege",
+        ],
+        references: ["OWASP Top 10: https://owasp.org/www-project-top-ten/", "CWE: https://cwe.mitre.org/"],
+    },
+    AUTH: {
+        category: "Authentication",
+        whyItMatters: "Authentication flaws allow attackers to impersonate legitimate users or bypass access controls.",
+        commonCauses: ["Weak password policies", "Missing MFA", "Session fixation", "Token leakage"],
+        remediationSteps: [
+            "Implement multi-factor authentication",
+            "Use secure session management",
+            "Hash passwords with bcrypt/argon2",
+            "Set proper token expiry",
+        ],
+        references: [
+            "OWASP Authentication: https://cheatsheetseries.owasp.org/cheatsheets/Authentication_Cheat_Sheet.html",
+        ],
+    },
+    CRYPTO: {
+        category: "Cryptography",
+        whyItMatters: "Weak cryptography exposes sensitive data and undermines data protection guarantees.",
+        commonCauses: [
+            "Using deprecated algorithms (MD5, SHA1)",
+            "Hardcoded keys",
+            "Insufficient key length",
+            "Missing encryption at rest",
+        ],
+        remediationSteps: [
+            "Use AES-256 for symmetric encryption",
+            "Use RSA-2048+ or ECDSA for asymmetric",
+            "Rotate keys regularly",
+            "Use proper random number generators",
+        ],
+        references: ["NIST Crypto Guidelines: https://csrc.nist.gov/"],
+    },
+    INJECT: {
+        category: "Injection",
+        whyItMatters: "Injection attacks can execute arbitrary code, access/modify data, or take control of systems.",
+        commonCauses: [
+            "String concatenation in queries",
+            "Unsanitized template rendering",
+            "eval() usage",
+            "Command injection via user input",
+        ],
+        remediationSteps: [
+            "Use parameterized queries/prepared statements",
+            "Sanitize HTML output",
+            "Avoid eval/exec",
+            "Use allowlists for command arguments",
+        ],
+        references: ["CWE-89 SQL Injection: https://cwe.mitre.org/data/definitions/89.html"],
+    },
+    PERF: {
+        category: "Performance",
+        whyItMatters: "Performance issues degrade user experience, increase costs, and can lead to denial-of-service.",
+        commonCauses: ["N+1 queries", "Missing indexes", "Unbounded loops", "Memory leaks", "Synchronous blocking"],
+        remediationSteps: [
+            "Profile and benchmark",
+            "Add database indexes",
+            "Use pagination",
+            "Implement caching",
+            "Use async patterns",
+        ],
+        references: [],
+    },
+    ERR: {
+        category: "Error Handling",
+        whyItMatters: "Poor error handling causes crashes, data loss, and can leak sensitive information.",
+        commonCauses: [
+            "Empty catch blocks",
+            "Missing error boundaries",
+            "Information leakage in error messages",
+            "Unchecked return values",
+        ],
+        remediationSteps: [
+            "Log errors with context",
+            "Return safe error messages to users",
+            "Implement error boundaries",
+            "Handle all error cases",
+        ],
+        references: [],
+    },
+};
+// ─── Core ───────────────────────────────────────────────────────────────────
+function getRulePrefix(ruleId) {
+    const match = ruleId.match(/^([A-Z]+)/);
+    return match ? match[1] : "";
+}
+export function explainFinding(finding) {
+    const prefix = getRulePrefix(finding.ruleId);
+    const info = EXPLANATIONS[prefix];
+    const lines = [];
+    lines.push(`# Finding: ${finding.ruleId}`);
+    lines.push(`**${finding.title}**\n`);
+    lines.push(`## Description`);
+    lines.push(finding.description);
+    lines.push("");
+    lines.push(`## Severity: ${finding.severity.toUpperCase()}`);
+    if (finding.confidence !== undefined) {
+        lines.push(`## Confidence: ${(finding.confidence * 100).toFixed(0)}%`);
+    }
+    lines.push("");
+    lines.push(`## Recommendation`);
+    lines.push(finding.recommendation);
+    lines.push("");
+    if (finding.patch) {
+        lines.push(`## Suggested Patch`);
+        lines.push("```");
+        lines.push(String(finding.patch));
+        lines.push("```");
+        lines.push("");
+    }
+    if (finding.reference) {
+        lines.push(`## Reference`);
+        lines.push(finding.reference);
+        lines.push("");
+    }
+    if (info) {
+        lines.push(`## Category: ${info.category}`);
+        lines.push("");
+        lines.push(`### Why It Matters`);
+        lines.push(info.whyItMatters);
+        lines.push("");
+        lines.push(`### Common Causes`);
+        for (const cause of info.commonCauses) {
+            lines.push(`- ${cause}`);
+        }
+        lines.push("");
+        lines.push(`### Remediation Steps`);
+        for (const step of info.remediationSteps) {
+            lines.push(`1. ${step}`);
+        }
+        lines.push("");
+        if (info.references.length > 0) {
+            lines.push(`### Further Reading`);
+            for (const ref of info.references) {
+                lines.push(`- ${ref}`);
+            }
+            lines.push("");
+        }
+    }
+    if (finding.lineNumbers && finding.lineNumbers.length > 0) {
+        lines.push(`## Location`);
+        lines.push(`Lines: ${finding.lineNumbers.join(", ")}`);
+        lines.push("");
+    }
+    return lines.join("\n");
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runExplainFinding(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges explain-finding — Detailed finding explanation with context
+
+Usage:
+  judges explain-finding --rule SEC001 --title "SQL Injection" --severity critical
+  judges explain-finding --from-results --index 0
+  judges explain-finding --category SEC
+
+Options:
+  --rule <id>            Rule ID
+  --title <text>         Finding title
+  --severity <level>     Finding severity
+  --description <text>   Finding description
+  --from-results         Load finding from .judges-results.json
+  --index <n>            Finding index (0-based)
+  --category <prefix>    Explain a category (SEC, AUTH, CRYPTO, etc.)
+  --output <file>        Write explanation to file
+  --format json          JSON output
+  --help, -h             Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    // Explain category
+    const category = argv.find((_a, i) => argv[i - 1] === "--category");
+    if (category) {
+        const info = EXPLANATIONS[category.toUpperCase()];
+        if (!info) {
+            console.error(`  ❌ Unknown category: ${category}. Known: ${Object.keys(EXPLANATIONS).join(", ")}`);
+            return;
+        }
+        if (format === "json") {
+            console.log(JSON.stringify(info, null, 2));
+        }
+        else {
+            console.log(`\n  Category: ${info.category}`);
+            console.log(`  ──────────────────────`);
+            console.log(`  ${info.whyItMatters}\n`);
+            console.log(`  Common causes:`);
+            for (const c of info.commonCauses)
+                console.log(`    • ${c}`);
+            console.log(`\n  Remediation:`);
+            for (const s of info.remediationSteps)
+                console.log(`    1. ${s}`);
+            if (info.references.length > 0) {
+                console.log(`\n  References:`);
+                for (const r of info.references)
+                    console.log(`    ${r}`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    // From results file
+    if (argv.includes("--from-results")) {
+        const resultsFile = ".judges-results.json";
+        if (!existsSync(resultsFile)) {
+            console.error("  ❌ No .judges-results.json found.");
+            return;
+        }
+        const data = JSON.parse(readFileSync(resultsFile, "utf-8"));
+        const findings = Array.isArray(data) ? data : data.findings || [];
+        const idxStr = argv.find((_a, i) => argv[i - 1] === "--index");
+        const idx = idxStr ? parseInt(idxStr, 10) : 0;
+        if (idx < 0 || idx >= findings.length) {
+            console.error(`  ❌ Index ${idx} out of range (0–${findings.length - 1})`);
+            return;
+        }
+        const explanation = explainFinding(findings[idx]);
+        const outputFile = argv.find((_a, i) => argv[i - 1] === "--output");
+        if (outputFile) {
+            const { writeFileSync: wfs } = require("fs");
+            wfs(outputFile, explanation);
+            console.log(`  ✅ Explanation written to ${outputFile}`);
+        }
+        else {
+            console.log(explanation);
+        }
+        return;
+    }
+    // Manual finding
+    const ruleId = argv.find((_a, i) => argv[i - 1] === "--rule");
+    const title = argv.find((_a, i) => argv[i - 1] === "--title");
+    const severity = argv.find((_a, i) => argv[i - 1] === "--severity") || "medium";
+    const description = argv.find((_a, i) => argv[i - 1] === "--description") || "";
+    if (!ruleId) {
+        console.error("  ❌ Provide --rule or --from-results. Use --help for usage.");
+        return;
+    }
+    const finding = {
+        ruleId,
+        title: title || ruleId,
+        severity: severity,
+        description: description || `Finding for rule ${ruleId}`,
+        recommendation: `Review and remediate ${ruleId} findings`,
+    };
+    const explanation = explainFinding(finding);
+    const outputFile = argv.find((_a, i) => argv[i - 1] === "--output");
+    if (outputFile) {
+        const { writeFileSync: wfs } = require("fs");
+        wfs(outputFile, explanation);
+        console.log(`  ✅ Explanation written to ${outputFile}`);
+    }
+    else {
+        console.log(explanation);
+    }
+}
+//# sourceMappingURL=explain-finding.js.map

package/dist/commands/explain-finding.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"explain-finding.js","sourceRoot":"","sources":["../../src/commands/explain-finding.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAG9C,+EAA+E;AAE/E,MAAM,YAAY,GAGd;IACF,GAAG,EAAE;QACH,QAAQ,EAAE,UAAU;QACpB,YAAY,EAAE,qGAAqG;QACnH,YAAY,EAAE;YACZ,+BAA+B;YAC/B,+BAA+B;YAC/B,uBAAuB;YACvB,0BAA0B;SAC3B;QACD,gBAAgB,EAAE;YAChB,yBAAyB;YACzB,2BAA2B;YAC3B,iCAAiC;YACjC,qCAAqC;SACtC;QACD,UAAU,EAAE,CAAC,sDAAsD,EAAE,6BAA6B,CAAC;KACpG;IACD,IAAI,EAAE;QACJ,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,iGAAiG;QAC/G,YAAY,EAAE,CAAC,wBAAwB,EAAE,aAAa,EAAE,kBAAkB,EAAE,eAAe,CAAC;QAC5F,gBAAgB,EAAE;YAChB,uCAAuC;YACvC,+BAA+B;YAC/B,mCAAmC;YACnC,yBAAyB;SAC1B;QACD,UAAU,EAAE;YACV,sGAAsG;SACvG;KACF;IACD,MAAM,EAAE;QACN,QAAQ,EAAE,cAAc;QACxB,YAAY,EAAE,qFAAqF;QACnG,YAAY,EAAE;YACZ,yCAAyC;YACzC,gBAAgB;YAChB,yBAAyB;YACzB,4BAA4B;SAC7B;QACD,gBAAgB,EAAE;YAChB,sCAAsC;YACtC,uCAAuC;YACvC,uBAAuB;YACvB,qCAAqC;SACtC;QACD,UAAU,EAAE,CAAC,gDAAgD,CAAC;KAC/D;IACD,MAAM,EAAE;QACN,QAAQ,EAAE,WAAW;QACrB,YAAY,EAAE,+FAA+F;QAC7G,YAAY,EAAE;YACZ,iCAAiC;YACjC,gCAAgC;YAChC,cAAc;YACd,kCAAkC;SACnC;QACD,gBAAgB,EAAE;YAChB,+CAA+C;YAC/C,sBAAsB;YACtB,iBAAiB;YACjB,sCAAsC;SACvC;QACD,UAAU,EAAE,CAAC,sEAAsE,CAAC;KACrF;IACD,IAAI,EAAE;QACJ,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,gGAAgG;QAC9G,YAAY,EAAE,CAAC,aAAa,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,cAAc,EAAE,sBAAsB,CAAC;QAC3G,gBAAgB,EAAE;YAChB,uBAAuB;YACvB,sBAAsB;YACtB,gBAAgB;YAChB,mBAAmB;YACnB,oBAAoB;SACrB;QACD,UAAU,EAAE,EAAE;KACf;IACD,GAAG,EAAE;QACH,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,oFAAoF;QAClG,YAAY,EAAE;YACZ,oBAAoB;YACpB,0BAA0B;YAC1B,uCAAuC;YACvC,yBAAyB;SAC1B;QACD,gBAAgB,EAAE;YAChB,yBAAyB;YACzB,qCAAqC;YACrC,4BAA4B;YAC5B,wBAAwB;SACzB;QACD,UAAU,EAAE,EAAE;KACf;CACF,CAAC;AAEF,+EAA+E;AAE/E,SAAS,aAAa,CAAC,MAAc;IACnC,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;IACxC,OAAO,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;AAC/B,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,OAAgB;IAC7C,MAAM,MAAM,GAAG,aAAa,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAC7C,MAAM,IAAI,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IAElC,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,CAAC,IAAI,CAAC,cAAc,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAC3C,KAAK,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,KAAK,MAAM,CAAC,CAAC;IACrC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;IAC7B,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IAChC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,gBAAgB,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;IAC7D,IAAI,OAAO,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;QACrC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAC,UAAU,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IACzE,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,KAAK,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IAChC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;IACnC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;QAClB,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QACjC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAClB,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;QAClC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAClB,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;QACtB,KAAK,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC3B,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAC9B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,IAAI,IAAI,EAAE,CAAC;QACT,KAAK,CAAC,IAAI,CAAC,gBAAgB,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC5C,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QACjC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAC9B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;QAChC,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtC,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,EAAE,CAAC,CAAC;QAC3B,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QACpC,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACzC,KAAK,CAAC,IAAI,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC;QAC3B,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/B,KAAK,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;YAClC,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;gBAClC,KAAK,CAAC,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC,CAAC;YACzB,CAAC;YACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjB,CAAC;IACH,CAAC;IAED,IAAI,OAAO,CAAC,WAAW,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1D,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAC1B,KAAK,CAAC,IAAI,CAAC,UAAU,OAAO,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACvD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,iBAAiB,CAAC,IAAc;IAC9C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;;CAmBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAE1F,mBAAmB;IACnB,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IACpF,IAAI,QAAQ,EAAE,CAAC;QACb,MAAM,IAAI,GAAG,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;QAClD,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,CAAC,KAAK,CAAC,yBAAyB,QAAQ,YAAY,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACnG,OAAO;QACT,CAAC;QACD,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC7C,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC9C,OAAO,CAAC,GAAG,CAAC,0BAA0B,CAAC,CAAC;YACxC,OAAO,CAAC,GAAG,CAAC,KAAK,IAAI,CAAC,YAAY,IAAI,CAAC,CAAC;YACxC,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;YAChC,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,YAAY;gBAAE,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YAC7D,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;YAChC,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,gBAAgB;gBAAE,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;YAClE,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC/B,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;gBAC/B,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,UAAU;oBAAE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YAC3D,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,oBAAoB;IACpB,IAAI,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;QACpC,MAAM,WAAW,GAAG,sBAAsB,CAAC;QAC3C,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YAC7B,OAAO,CAAC,KAAK,CAAC,oCAAoC,CAAC,CAAC;YACpD,OAAO;QACT,CAAC;QACD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC,CAAC;QAC5D,MAAM,QAAQ,GAAc,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,IAAI,EAAE,CAAC;QAE7E,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC;QAC/E,MAAM,GAAG,GAAG,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAE9C,IAAI,GAAG,GAAG,CAAC,IAAI,GAAG,IAAI,QAAQ,CAAC,MAAM,EAAE,CAAC;YACtC,OAAO,CAAC,KAAK,CAAC,aAAa,GAAG,oBAAoB,QAAQ,CAAC,MAAM,GAAG,CAAC,GAAG,CAAC,CAAC;YAC1E,OAAO;QACT,CAAC;QAED,MAAM,WAAW,GAAG,cAAc,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;QAClD,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,CAAC;QACpF,IAAI,UAAU,EAAE,CAAC;YACf,MAAM,EAAE,aAAa,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;YAC7C,GAAG,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;YAC7B,OAAO,CAAC,GAAG,CAAC,8BAA8B,UAAU,EAAE,CAAC,CAAC;QAC1D,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;QAC3B,CAAC;QACD,OAAO;IACT,CAAC;IAED,iBAAiB;IACjB,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;IAC9E,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC;IAC9E,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,IAAI,QAAQ,CAAC;IAChG,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,eAAe,CAAC,IAAI,EAAE,CAAC;IAEhG,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,CAAC,KAAK,CAAC,6DAA6D,CAAC,CAAC;QAC7E,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAY;QACvB,MAAM;QACN,KAAK,EAAE,KAAK,IAAI,MAAM;QACtB,QAAQ,EAAE,QAA+B;QACzC,WAAW,EAAE,WAAW,IAAI,oBAAoB,MAAM,EAAE;QACxD,cAAc,EAAE,wBAAwB,MAAM,WAAW;KAC1D,CAAC;IAEF,MAAM,WAAW,GAAG,cAAc,CAAC,OAAO,CAAC,CAAC;IAC5C,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,CAAC;IACpF,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,EAAE,aAAa,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;QAC7C,GAAG,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;QAC7B,OAAO,CAAC,GAAG,CAAC,8BAA8B,UAAU,EAAE,CAAC,CAAC;IAC1D,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IAC3B,CAAC;AACH,CAAC"}

package/dist/commands/generate.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Secure code template generator — pre-hardened templates
+ * for common patterns with Judges findings pre-mitigated.
+ *
+ * All output is generated locally — no data transmitted.
+ */
+export declare function runGenerate(argv: string[]): void;
+//# sourceMappingURL=generate.d.ts.map

package/dist/commands/generate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"generate.d.ts","sourceRoot":"","sources":["../../src/commands/generate.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAwUH,wBAAgB,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAgGhD"}