@kevinrabun/judges 3.47.0 → 3.48.0

package/dist/commands/doc-gen.js

@@ -0,0 +1,209 @@
+/**
+ * Documentation generation — generates security documentation
+ * from Judges findings history and configuration.
+ *
+ * All output is local markdown files.
+ */
+import { existsSync, readFileSync, mkdirSync, writeFileSync } from "fs";
+import { join } from "path";
+// ─── Helpers ────────────────────────────────────────────────────────────────
+function loadJsonSafe(path, fallback) {
+    if (!existsSync(path))
+        return fallback;
+    try {
+        return JSON.parse(readFileSync(path, "utf-8"));
+    }
+    catch {
+        return fallback;
+    }
+}
+function generatePolicyDoc() {
+    const sections = [];
+    // Header
+    sections.push({
+        title: "Security Review Policy",
+        content: `# Security Review Policy\n\n_Generated by Judges on ${new Date().toISOString().split("T")[0]}_\n\n## Overview\n\nThis document outlines the security review policy enforced by the Judges automated code review system.\n`,
+    });
+    // Configuration
+    const configPath = ".judgesrc";
+    if (existsSync(configPath)) {
+        try {
+            const config = JSON.parse(readFileSync(configPath, "utf-8"));
+            let content = `## Configuration\n\n`;
+            if (config.preset)
+                content += `- **Preset:** ${config.preset}\n`;
+            if (config.minSeverity)
+                content += `- **Minimum Severity:** ${config.minSeverity}\n`;
+            if (config.disabledJudges?.length)
+                content += `- **Disabled Judges:** ${config.disabledJudges.join(", ")}\n`;
+            if (config.disabledRules?.length)
+                content += `- **Disabled Rules:** ${config.disabledRules.join(", ")}\n`;
+            content += `\n`;
+            sections.push({ title: "Configuration", content });
+        }
+        catch {
+            // skip
+        }
+    }
+    // Suppressions
+    const supps = loadJsonSafe(".judges-suppressions.json", { suppressions: [] });
+    if (supps.suppressions && supps.suppressions.length > 0) {
+        let content = `## Approved Suppressions\n\n| Rule | Reason | Approved By |\n|------|--------|-------------|\n`;
+        for (const s of supps.suppressions) {
+            content += `| ${s.ruleId || "—"} | ${s.reason || "—"} | ${s.approvedBy || "—"} |\n`;
+        }
+        content += `\n`;
+        sections.push({ title: "Suppressions", content });
+    }
+    // Quality gates
+    const gate = loadJsonSafe(join(".judges-quality-gate", "policy.json"), {});
+    if (Object.keys(gate).length > 0) {
+        let content = `## Quality Gate Policy\n\n`;
+        for (const [key, val] of Object.entries(gate)) {
+            content += `- **${key}:** ${JSON.stringify(val)}\n`;
+        }
+        content += `\n`;
+        sections.push({ title: "Quality Gate", content });
+    }
+    return sections;
+}
+function generateRemediationGuide() {
+    const sections = [];
+    sections.push({
+        title: "Remediation Guide",
+        content: `# Security Remediation Guide\n\n_Generated by Judges on ${new Date().toISOString().split("T")[0]}_\n\nThis guide covers common security findings and how to fix them.\n\n`,
+    });
+    const guides = [
+        {
+            rule: "SQL Injection",
+            fix: "Use parameterized queries or prepared statements. Never concatenate user input into SQL strings.",
+            example: "db.query('SELECT * FROM users WHERE id = ?', [userId])",
+        },
+        {
+            rule: "Cross-Site Scripting (XSS)",
+            fix: "Sanitize and encode all user-provided output. Use framework-provided escaping (e.g., React auto-escapes).",
+            example: "const safe = DOMPurify.sanitize(userInput)",
+        },
+        {
+            rule: "Command Injection",
+            fix: "Use parameterized APIs or allowlists instead of shell execution with user input.",
+            example: "execFile('git', ['log', '--oneline'], callback)",
+        },
+        {
+            rule: "Hardcoded Secrets",
+            fix: "Move secrets to environment variables or a secrets manager. Never commit credentials.",
+            example: "const apiKey = process.env.API_KEY",
+        },
+        {
+            rule: "Insecure Cryptography",
+            fix: "Use strong algorithms (AES-256-GCM, SHA-256+). Avoid MD5, SHA-1, DES, RC4.",
+            example: "crypto.createCipheriv('aes-256-gcm', key, iv)",
+        },
+        {
+            rule: "Path Traversal",
+            fix: "Validate and normalize file paths. Use allowlists for permitted directories.",
+            example: "const safePath = path.resolve(baseDir, path.basename(userInput))",
+        },
+        {
+            rule: "SSRF",
+            fix: "Validate and allowlist URLs. Block internal IP ranges. Use URL parsing.",
+            example: "const url = new URL(userInput); if (!ALLOWED_HOSTS.has(url.hostname)) throw new Error()",
+        },
+        {
+            rule: "Missing Authentication",
+            fix: "Require authentication on all sensitive endpoints. Use middleware for consistent enforcement.",
+            example: "app.use('/api', authMiddleware)",
+        },
+    ];
+    let content = "";
+    for (const g of guides) {
+        content += `## ${g.rule}\n\n**Fix:** ${g.fix}\n\n\`\`\`\n${g.example}\n\`\`\`\n\n---\n\n`;
+    }
+    sections.push({ title: "Remediation Details", content });
+    return sections;
+}
+function generateTeamPlaybook() {
+    const sections = [];
+    sections.push({
+        title: "Team Security Playbook",
+        content: `# Team Security Playbook\n\n_Generated by Judges on ${new Date().toISOString().split("T")[0]}_\n\n## Workflow\n\n1. **Pre-commit**: Run \`judges review\` locally before pushing code\n2. **CI Pipeline**: Configure \`judges ci-template\` for automated PR checks\n3. **Triage**: Use \`judges auto-triage\` to prioritize critical findings\n4. **Review**: Assign findings using \`judges assign-findings\`\n5. **Track**: Monitor progress with \`judges burndown\`\n6. **Report**: Generate digests with \`judges digest\`\n\n`,
+    });
+    sections.push({
+        title: "Escalation Procedures",
+        content: `## Escalation Procedures\n\n| Severity | SLA | Action |\n|----------|-----|--------|\n| Critical | 4 hours | Notify security lead, create incident ticket |\n| High | 24 hours | Assign to code owner, block PR merge |\n| Medium | 1 week | Assign to team backlog |\n| Low | 1 sprint | Track in burndown |\n\n`,
+    });
+    sections.push({
+        title: "Metrics",
+        content: `## Key Metrics\n\n- **Mean Time to Remediate (MTTR)**: Track via \`judges sla-track\`\n- **False Positive Rate**: Tune via \`judges noise-advisor\`\n- **Coverage**: Monitor via \`judges coverage-map\`\n- **Team Score**: View via \`judges team-leaderboard\`\n- **Security Maturity**: Assess via \`judges security-maturity\`\n\n`,
+    });
+    return sections;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+const STORE = ".judges-docs";
+export function runDocGen(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges doc-gen — Generate security documentation
+
+Usage:
+  judges doc-gen --policy
+  judges doc-gen --remediation
+  judges doc-gen --playbook
+  judges doc-gen --all
+
+Options:
+  --policy              Generate security review policy document
+  --remediation         Generate remediation guide
+  --playbook            Generate team security playbook
+  --all                 Generate all documents
+  --output <dir>        Output directory (default: .judges-docs)
+  --format json         JSON output
+  --help, -h            Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const outputDir = argv.find((_a, i) => argv[i - 1] === "--output") || STORE;
+    const genPolicy = argv.includes("--policy") || argv.includes("--all");
+    const genRemediation = argv.includes("--remediation") || argv.includes("--all");
+    const genPlaybook = argv.includes("--playbook") || argv.includes("--all");
+    if (!genPolicy && !genRemediation && !genPlaybook) {
+        console.log("  Specify --policy, --remediation, --playbook, or --all. Use --help for details.");
+        return;
+    }
+    if (!existsSync(outputDir))
+        mkdirSync(outputDir, { recursive: true });
+    const generated = [];
+    if (genPolicy) {
+        const sections = generatePolicyDoc();
+        const content = sections.map((s) => s.content).join("\n");
+        const outPath = join(outputDir, "security-policy.md");
+        writeFileSync(outPath, content);
+        generated.push(outPath);
+    }
+    if (genRemediation) {
+        const sections = generateRemediationGuide();
+        const content = sections.map((s) => s.content).join("\n");
+        const outPath = join(outputDir, "remediation-guide.md");
+        writeFileSync(outPath, content);
+        generated.push(outPath);
+    }
+    if (genPlaybook) {
+        const sections = generateTeamPlaybook();
+        const content = sections.map((s) => s.content).join("\n");
+        const outPath = join(outputDir, "team-playbook.md");
+        writeFileSync(outPath, content);
+        generated.push(outPath);
+    }
+    if (format === "json") {
+        console.log(JSON.stringify({ generated, outputDir, timestamp: new Date().toISOString() }, null, 2));
+    }
+    else {
+        console.log(`\n  Documentation Generated\n  ──────────────────────────`);
+        for (const g of generated) {
+            console.log(`    ✅ ${g}`);
+        }
+        console.log(`\n  Output directory: ${outputDir}\n`);
+    }
+}
+//# sourceMappingURL=doc-gen.js.map

package/dist/commands/doc-gen.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"doc-gen.js","sourceRoot":"","sources":["../../src/commands/doc-gen.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAS5B,+EAA+E;AAE/E,SAAS,YAAY,CAAI,IAAY,EAAE,QAAW;IAChD,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,QAAQ,CAAC;IACvC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC;IACjD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,QAAQ,CAAC;IAClB,CAAC;AACH,CAAC;AAED,SAAS,iBAAiB;IACxB,MAAM,QAAQ,GAAiB,EAAE,CAAC;IAElC,SAAS;IACT,QAAQ,CAAC,IAAI,CAAC;QACZ,KAAK,EAAE,wBAAwB;QAC/B,OAAO,EAAE,uDAAuD,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,8HAA8H;KACrO,CAAC,CAAC;IAEH,gBAAgB;IAChB,MAAM,UAAU,GAAG,WAAW,CAAC;IAC/B,IAAI,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC;YAC7D,IAAI,OAAO,GAAG,sBAAsB,CAAC;YACrC,IAAI,MAAM,CAAC,MAAM;gBAAE,OAAO,IAAI,iBAAiB,MAAM,CAAC,MAAM,IAAI,CAAC;YACjE,IAAI,MAAM,CAAC,WAAW;gBAAE,OAAO,IAAI,2BAA2B,MAAM,CAAC,WAAW,IAAI,CAAC;YACrF,IAAI,MAAM,CAAC,cAAc,EAAE,MAAM;gBAAE,OAAO,IAAI,0BAA0B,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC;YAC7G,IAAI,MAAM,CAAC,aAAa,EAAE,MAAM;gBAAE,OAAO,IAAI,yBAAyB,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC;YAC1G,OAAO,IAAI,IAAI,CAAC;YAChB,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,eAAe,EAAE,OAAO,EAAE,CAAC,CAAC;QACrD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;IACH,CAAC;IAED,eAAe;IACf,MAAM,KAAK,GAAG,YAAY,CAA+B,2BAA2B,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,CAAC,CAAC;IAC5G,IAAI,KAAK,CAAC,YAAY,IAAI,KAAK,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxD,IAAI,OAAO,GAAG,gGAAgG,CAAC;QAC/G,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,YAAgF,EAAE,CAAC;YACvG,OAAO,IAAI,KAAK,CAAC,CAAC,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,UAAU,IAAI,GAAG,MAAM,CAAC;QACtF,CAAC;QACD,OAAO,IAAI,IAAI,CAAC;QAChB,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,OAAO,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,gBAAgB;IAChB,MAAM,IAAI,GAAG,YAAY,CAA0B,IAAI,CAAC,sBAAsB,EAAE,aAAa,CAAC,EAAE,EAAE,CAAC,CAAC;IACpG,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACjC,IAAI,OAAO,GAAG,4BAA4B,CAAC;QAC3C,KAAK,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9C,OAAO,IAAI,OAAO,GAAG,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC;QACtD,CAAC;QACD,OAAO,IAAI,IAAI,CAAC;QAChB,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,OAAO,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,wBAAwB;IAC/B,MAAM,QAAQ,GAAiB,EAAE,CAAC;IAElC,QAAQ,CAAC,IAAI,CAAC;QACZ,KAAK,EAAE,mBAAmB;QAC1B,OAAO,EAAE,2DAA2D,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,0EAA0E;KACrL,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG;QACb;YACE,IAAI,EAAE,eAAe;YACrB,GAAG,EAAE,kGAAkG;YACvG,OAAO,EAAE,wDAAwD;SAClE;QACD;YACE,IAAI,EAAE,4BAA4B;YAClC,GAAG,EAAE,2GAA2G;YAChH,OAAO,EAAE,4CAA4C;SACtD;QACD;YACE,IAAI,EAAE,mBAAmB;YACzB,GAAG,EAAE,kFAAkF;YACvF,OAAO,EAAE,iDAAiD;SAC3D;QACD;YACE,IAAI,EAAE,mBAAmB;YACzB,GAAG,EAAE,uFAAuF;YAC5F,OAAO,EAAE,oCAAoC;SAC9C;QACD;YACE,IAAI,EAAE,uBAAuB;YAC7B,GAAG,EAAE,4EAA4E;YACjF,OAAO,EAAE,+CAA+C;SACzD;QACD;YACE,IAAI,EAAE,gBAAgB;YACtB,GAAG,EAAE,8EAA8E;YACnF,OAAO,EAAE,kEAAkE;SAC5E;QACD;YACE,IAAI,EAAE,MAAM;YACZ,GAAG,EAAE,yEAAyE;YAC9E,OAAO,EAAE,yFAAyF;SACnG;QACD;YACE,IAAI,EAAE,wBAAwB;YAC9B,GAAG,EAAE,+FAA+F;YACpG,OAAO,EAAE,iCAAiC;SAC3C;KACF,CAAC;IAEF,IAAI,OAAO,GAAG,EAAE,CAAC;IACjB,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;QACvB,OAAO,IAAI,MAAM,CAAC,CAAC,IAAI,gBAAgB,CAAC,CAAC,GAAG,eAAe,CAAC,CAAC,OAAO,qBAAqB,CAAC;IAC5F,CAAC;IAED,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,qBAAqB,EAAE,OAAO,EAAE,CAAC,CAAC;IACzD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,oBAAoB;IAC3B,MAAM,QAAQ,GAAiB,EAAE,CAAC;IAElC,QAAQ,CAAC,IAAI,CAAC;QACZ,KAAK,EAAE,wBAAwB;QAC/B,OAAO,EAAE,uDAAuD,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,yaAAya;KAChhB,CAAC,CAAC;IAEH,QAAQ,CAAC,IAAI,CAAC;QACZ,KAAK,EAAE,uBAAuB;QAC9B,OAAO,EAAE,mTAAmT;KAC7T,CAAC,CAAC;IAEH,QAAQ,CAAC,IAAI,CAAC;QACZ,KAAK,EAAE,SAAS;QAChB,OAAO,EAAE,wUAAwU;KAClV,CAAC,CAAC;IAEH,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,+EAA+E;AAE/E,MAAM,KAAK,GAAG,cAAc,CAAC;AAE7B,MAAM,UAAU,SAAS,CAAC,IAAc;IACtC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;CAiBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,KAAK,CAAC;IAE5F,MAAM,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACtE,MAAM,cAAc,GAAG,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IAChF,MAAM,WAAW,GAAG,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IAE1E,IAAI,CAAC,SAAS,IAAI,CAAC,cAAc,IAAI,CAAC,WAAW,EAAE,CAAC;QAClD,OAAO,CAAC,GAAG,CAAC,kFAAkF,CAAC,CAAC;QAChG,OAAO;IACT,CAAC;IAED,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;QAAE,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAEtE,MAAM,SAAS,GAAa,EAAE,CAAC;IAE/B,IAAI,SAAS,EAAE,CAAC;QACd,MAAM,QAAQ,GAAG,iBAAiB,EAAE,CAAC;QACrC,MAAM,OAAO,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC1D,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,oBAAoB,CAAC,CAAC;QACtD,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAChC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAC1B,CAAC;IAED,IAAI,cAAc,EAAE,CAAC;QACnB,MAAM,QAAQ,GAAG,wBAAwB,EAAE,CAAC;QAC5C,MAAM,OAAO,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC1D,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,sBAAsB,CAAC,CAAC;QACxD,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAChC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAC1B,CAAC;IAED,IAAI,WAAW,EAAE,CAAC;QAChB,MAAM,QAAQ,GAAG,oBAAoB,EAAE,CAAC;QACxC,MAAM,OAAO,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC1D,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,kBAAkB,CAAC,CAAC;QACpD,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAChC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAC1B,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IACtG,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,2DAA2D,CAAC,CAAC;QACzE,KAAK,MAAM,CAAC,IAAI,SAAS,EAAE,CAAC;YAC1B,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;QAC5B,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,yBAAyB,SAAS,IAAI,CAAC,CAAC;IACtD,CAAC;AACH,CAAC"}

package/dist/commands/judge-author.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Custom judge authoring toolkit — scaffolds, validates,
+ * and tests new judge definitions.
+ *
+ * All data stored locally.
+ */
+export declare function runJudgeAuthor(argv: string[]): void;
+//# sourceMappingURL=judge-author.d.ts.map

package/dist/commands/judge-author.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"judge-author.d.ts","sourceRoot":"","sources":["../../src/commands/judge-author.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AA2JH,wBAAgB,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CA6InD"}

package/dist/commands/judge-author.js

@@ -0,0 +1,261 @@
+/**
+ * Custom judge authoring toolkit — scaffolds, validates,
+ * and tests new judge definitions.
+ *
+ * All data stored locally.
+ */
+import { existsSync, readFileSync, mkdirSync, writeFileSync } from "fs";
+import { join } from "path";
+import { defaultRegistry } from "../judge-registry.js";
+// ─── Scaffold ───────────────────────────────────────────────────────────────
+function scaffoldJudge(id, opts) {
+    return {
+        id,
+        name: opts.name || id.replace(/-/g, " ").replace(/\b\w/g, (c) => c.toUpperCase()),
+        description: `Custom judge: ${id}`,
+        category: opts.category || "custom",
+        severity: opts.severity || "medium",
+        rules: [
+            {
+                id: `${id}-001`,
+                pattern: "TODO: define pattern",
+                message: "TODO: describe what this rule detects",
+                severity: opts.severity || "medium",
+            },
+        ],
+    };
+}
+function generateJudgeFile(scaffold) {
+    return `/**
+ * ${scaffold.name}
+ *
+ * ${scaffold.description}
+ * Category: ${scaffold.category}
+ */
+
+import type { Finding } from "../types.js";
+
+export const judgeId = "${scaffold.id}";
+export const judgeName = "${scaffold.name}";
+export const judgeDescription = "${scaffold.description}";
+export const judgeCategory = "${scaffold.category}";
+
+interface Rule {
+  id: string;
+  pattern: RegExp;
+  message: string;
+  severity: string;
+}
+
+const rules: Rule[] = [
+${scaffold.rules
+        .map((r) => `  {
+    id: "${r.id}",
+    pattern: /${r.pattern.replace(/\//g, "\\/")}/g,
+    message: "${r.message}",
+    severity: "${r.severity}",
+  },`)
+        .join("\n")}
+];
+
+export function evaluate(code: string, _filename: string): Finding[] {
+  const findings: Finding[] = [];
+  const lines = code.split("\\n");
+
+  for (const rule of rules) {
+    for (let i = 0; i < lines.length; i++) {
+      if (rule.pattern.test(lines[i])) {
+        findings.push({
+          ruleId: rule.id,
+          severity: rule.severity as Finding["severity"],
+          title: rule.message,
+          description: \`Detected by custom judge \${judgeId} at line \${i + 1}\`,
+          lineNumbers: [i + 1],
+          recommendation: "Review and fix the detected pattern",
+        });
+        rule.pattern.lastIndex = 0; // reset global regex
+      }
+    }
+  }
+
+  return findings;
+}
+`;
+}
+// ─── Validation ─────────────────────────────────────────────────────────────
+function validateJudge(path) {
+    const errors = [];
+    const warnings = [];
+    if (!existsSync(path)) {
+        return { valid: false, errors: [`File not found: ${path}`], warnings: [] };
+    }
+    let content;
+    try {
+        content = readFileSync(path, "utf-8");
+    }
+    catch {
+        return { valid: false, errors: [`Cannot read file: ${path}`], warnings: [] };
+    }
+    // Check for required exports
+    if (!content.includes("export const judgeId"))
+        errors.push("Missing 'export const judgeId'");
+    if (!content.includes("export const judgeName"))
+        errors.push("Missing 'export const judgeName'");
+    if (!content.includes("export function evaluate"))
+        errors.push("Missing 'export function evaluate'");
+    // Check for Finding type
+    if (!content.includes("Finding"))
+        warnings.push("No reference to Finding type — ensure findings match expected shape");
+    // Check for severity values
+    const validSeverities = ["critical", "high", "medium", "low", "info"];
+    const sevMatches = content.match(/severity:\s*["'](\w+)["']/g) || [];
+    for (const m of sevMatches) {
+        const val = m.match(/["'](\w+)["']/)?.[1];
+        if (val && !validSeverities.includes(val)) {
+            errors.push(`Invalid severity '${val}' — must be: ${validSeverities.join(", ")}`);
+        }
+    }
+    // Check for rule IDs
+    const ruleIds = content.match(/id:\s*["']([^"']+)["']/g) || [];
+    if (ruleIds.length === 0)
+        warnings.push("No rule IDs found — each rule should have a unique id");
+    return { valid: errors.length === 0, errors, warnings };
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+const STORE = ".judges-custom";
+export function runJudgeAuthor(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges judge-author — Custom judge authoring toolkit
+
+Usage:
+  judges judge-author --scaffold <id>
+  judges judge-author --validate <file>
+  judges judge-author --list
+  judges judge-author --test <file> --code <sample>
+
+Options:
+  --scaffold <id>       Generate a new judge scaffold
+  --name <name>         Judge display name
+  --category <cat>      Category (default: custom)
+  --severity <sev>      Default severity (default: medium)
+  --validate <file>     Validate judge file structure
+  --list                List existing custom judges
+  --test <file>         Test a judge against sample code
+  --code <sample>       Sample code file to test against
+  --output <dir>        Output directory (default: .judges-custom)
+  --format json         JSON output
+  --help, -h            Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    // List existing judges
+    if (argv.includes("--list")) {
+        const builtin = defaultRegistry.getJudges();
+        const customDir = STORE;
+        let customCount = 0;
+        if (existsSync(customDir)) {
+            try {
+                const { readdirSync } = require("fs");
+                customCount = readdirSync(customDir).filter((f) => f.endsWith(".ts") || f.endsWith(".json")).length;
+            }
+            catch {
+                /* skip */
+            }
+        }
+        if (format === "json") {
+            console.log(JSON.stringify({ builtin: builtin.length, custom: customCount, judges: builtin.map((j) => j.id) }, null, 2));
+        }
+        else {
+            console.log(`\n  Judges Registry\n  ──────────────────────────`);
+            console.log(`    Built-in: ${builtin.length}`);
+            console.log(`    Custom:   ${customCount}`);
+            console.log(`\n  Built-in judges:`);
+            for (const j of builtin) {
+                console.log(`    ${j.id}`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    // Scaffold
+    const scaffoldId = argv.find((_a, i) => argv[i - 1] === "--scaffold");
+    if (scaffoldId) {
+        const name = argv.find((_a, i) => argv[i - 1] === "--name");
+        const category = argv.find((_a, i) => argv[i - 1] === "--category");
+        const severity = argv.find((_a, i) => argv[i - 1] === "--severity");
+        const outputDir = argv.find((_a, i) => argv[i - 1] === "--output") || STORE;
+        const scaffold = scaffoldJudge(scaffoldId, {
+            name: name || undefined,
+            category: category || undefined,
+            severity: severity || undefined,
+        });
+        const code = generateJudgeFile(scaffold);
+        if (!existsSync(outputDir))
+            mkdirSync(outputDir, { recursive: true });
+        const outPath = join(outputDir, `${scaffoldId}.ts`);
+        writeFileSync(outPath, code);
+        // Also write the JSON definition
+        const jsonPath = join(outputDir, `${scaffoldId}.json`);
+        writeFileSync(jsonPath, JSON.stringify(scaffold, null, 2));
+        if (format === "json") {
+            console.log(JSON.stringify({ scaffold, files: [outPath, jsonPath] }, null, 2));
+        }
+        else {
+            console.log(`\n  Judge Scaffolded: ${scaffoldId}\n  ──────────────────────────`);
+            console.log(`    TypeScript: ${outPath}`);
+            console.log(`    Definition: ${jsonPath}`);
+            console.log(`\n  Next steps:`);
+            console.log(`    1. Edit ${outPath} to add detection patterns`);
+            console.log(`    2. Validate with: judges judge-author --validate ${outPath}`);
+            console.log(`    3. Test with: judges judge-author --test ${outPath} --code sample.ts\n`);
+        }
+        return;
+    }
+    // Validate
+    const validatePath = argv.find((_a, i) => argv[i - 1] === "--validate");
+    if (validatePath) {
+        const result = validateJudge(validatePath);
+        if (format === "json") {
+            console.log(JSON.stringify(result, null, 2));
+        }
+        else {
+            console.log(`\n  Validation: ${validatePath}`);
+            console.log(`  Status: ${result.valid ? "✅ Valid" : "❌ Invalid"}\n  ──────────────────────────`);
+            for (const e of result.errors)
+                console.log(`    ❌ ${e}`);
+            for (const w of result.warnings)
+                console.log(`    ⚠️  ${w}`);
+            if (result.valid && result.warnings.length === 0)
+                console.log(`    All checks passed`);
+            console.log("");
+        }
+        return;
+    }
+    // Test
+    const testPath = argv.find((_a, i) => argv[i - 1] === "--test");
+    const codePath = argv.find((_a, i) => argv[i - 1] === "--code");
+    if (testPath) {
+        if (!codePath || !existsSync(codePath)) {
+            console.error("  Provide --code <file> with a sample code file to test against.");
+            return;
+        }
+        // Validate first
+        const validation = validateJudge(testPath);
+        if (!validation.valid) {
+            console.error("  Judge file has validation errors. Fix errors before testing.");
+            for (const e of validation.errors)
+                console.error(`    ❌ ${e}`);
+            return;
+        }
+        console.log(`\n  Testing ${testPath} against ${codePath}`);
+        console.log(`  (Note: full testing requires loading the judge module at runtime)\n`);
+        console.log(`  Validation: ✅ Passed`);
+        console.log(`  Structure:  ✅ Valid`);
+        console.log(`\n  To run a full test, import and call the evaluate() function directly.\n`);
+        return;
+    }
+    console.log("  Use --scaffold, --validate, --list, or --test. Run --help for details.");
+}
+//# sourceMappingURL=judge-author.js.map

package/dist/commands/judge-author.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"judge-author.js","sourceRoot":"","sources":["../../src/commands/judge-author.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAwBvD,+EAA+E;AAE/E,SAAS,aAAa,CAAC,EAAU,EAAE,IAA6D;IAC9F,OAAO;QACL,EAAE;QACF,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,EAAE,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;QACjF,WAAW,EAAE,iBAAiB,EAAE,EAAE;QAClC,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,QAAQ;QACnC,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,QAAQ;QACnC,KAAK,EAAE;YACL;gBACE,EAAE,EAAE,GAAG,EAAE,MAAM;gBACf,OAAO,EAAE,sBAAsB;gBAC/B,OAAO,EAAE,uCAAuC;gBAChD,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,QAAQ;aACpC;SACF;KACF,CAAC;AACJ,CAAC;AAED,SAAS,iBAAiB,CAAC,QAAuB;IAChD,OAAO;KACJ,QAAQ,CAAC,IAAI;;KAEb,QAAQ,CAAC,WAAW;eACV,QAAQ,CAAC,QAAQ;;;;;0BAKN,QAAQ,CAAC,EAAE;4BACT,QAAQ,CAAC,IAAI;mCACN,QAAQ,CAAC,WAAW;gCACvB,QAAQ,CAAC,QAAQ;;;;;;;;;;EAU/C,QAAQ,CAAC,KAAK;SACb,GAAG,CACF,CAAC,CAAC,EAAE,EAAE,CAAC;WACA,CAAC,CAAC,EAAE;gBACC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC;gBAC/B,CAAC,CAAC,OAAO;iBACR,CAAC,CAAC,QAAQ;KACtB,CACF;SACA,IAAI,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;CAyBZ,CAAC;AACF,CAAC;AAED,+EAA+E;AAE/E,SAAS,aAAa,CAAC,IAAY;IACjC,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QACtB,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,mBAAmB,IAAI,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC;IAC7E,CAAC;IAED,IAAI,OAAe,CAAC;IACpB,IAAI,CAAC;QACH,OAAO,GAAG,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;IACxC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,qBAAqB,IAAI,EAAE,CAAC,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC;IAC/E,CAAC;IAED,6BAA6B;IAC7B,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,sBAAsB,CAAC;QAAE,MAAM,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC;IAC7F,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,wBAAwB,CAAC;QAAE,MAAM,CAAC,IAAI,CAAC,kCAAkC,CAAC,CAAC;IACjG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,0BAA0B,CAAC;QAAE,MAAM,CAAC,IAAI,CAAC,oCAAoC,CAAC,CAAC;IAErG,yBAAyB;IACzB,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC;QAC9B,QAAQ,CAAC,IAAI,CAAC,qEAAqE,CAAC,CAAC;IAEvF,4BAA4B;IAC5B,MAAM,eAAe,GAAG,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;IACtE,MAAM,UAAU,GAAG,OAAO,CAAC,KAAK,CAAC,4BAA4B,CAAC,IAAI,EAAE,CAAC;IACrE,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;QAC3B,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QAC1C,IAAI,GAAG,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YAC1C,MAAM,CAAC,IAAI,CAAC,qBAAqB,GAAG,gBAAgB,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACpF,CAAC;IACH,CAAC;IAED,qBAAqB;IACrB,MAAM,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,yBAAyB,CAAC,IAAI,EAAE,CAAC;IAC/D,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,QAAQ,CAAC,IAAI,CAAC,uDAAuD,CAAC,CAAC;IAEjG,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;AAC1D,CAAC;AAED,+EAA+E;AAE/E,MAAM,KAAK,GAAG,gBAAgB,CAAC;AAE/B,MAAM,UAAU,cAAc,CAAC,IAAc;IAC3C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;;;;CAqBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAE1F,uBAAuB;IACvB,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,MAAM,OAAO,GAAG,eAAe,CAAC,SAAS,EAAE,CAAC;QAC5C,MAAM,SAAS,GAAG,KAAK,CAAC;QACxB,IAAI,WAAW,GAAG,CAAC,CAAC;QAEpB,IAAI,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAC1B,IAAI,CAAC;gBACH,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;gBACtC,WAAW,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;YAC9G,CAAC;YAAC,MAAM,CAAC;gBACP,UAAU;YACZ,CAAC;QACH,CAAC;QAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAC5G,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,iBAAiB,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,iBAAiB,WAAW,EAAE,CAAC,CAAC;YAC5C,OAAO,CAAC,GAAG,CAAC,sBAAsB,CAAC,CAAC;YACpC,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;gBACxB,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC7B,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,WAAW;IACX,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IACtF,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;QAC5E,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;QACpF,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;QACpF,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,KAAK,CAAC;QAE5F,MAAM,QAAQ,GAAG,aAAa,CAAC,UAAU,EAAE;YACzC,IAAI,EAAE,IAAI,IAAI,SAAS;YACvB,QAAQ,EAAE,QAAQ,IAAI,SAAS;YAC/B,QAAQ,EAAE,QAAQ,IAAI,SAAS;SAChC,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QAEzC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;YAAE,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QACtE,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,GAAG,UAAU,KAAK,CAAC,CAAC;QACpD,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAE7B,iCAAiC;QACjC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,GAAG,UAAU,OAAO,CAAC,CAAC;QACvD,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAE3D,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACjF,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,yBAAyB,UAAU,gCAAgC,CAAC,CAAC;YACjF,OAAO,CAAC,GAAG,CAAC,mBAAmB,OAAO,EAAE,CAAC,CAAC;YAC1C,OAAO,CAAC,GAAG,CAAC,mBAAmB,QAAQ,EAAE,CAAC,CAAC;YAC3C,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,eAAe,OAAO,4BAA4B,CAAC,CAAC;YAChE,OAAO,CAAC,GAAG,CAAC,wDAAwD,OAAO,EAAE,CAAC,CAAC;YAC/E,OAAO,CAAC,GAAG,CAAC,gDAAgD,OAAO,qBAAqB,CAAC,CAAC;QAC5F,CAAC;QACD,OAAO;IACT,CAAC;IAED,WAAW;IACX,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IACxF,IAAI,YAAY,EAAE,CAAC;QACjB,MAAM,MAAM,GAAG,aAAa,CAAC,YAAY,CAAC,CAAC;QAE3C,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,mBAAmB,YAAY,EAAE,CAAC,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,aAAa,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,WAAW,gCAAgC,CAAC,CAAC;YACjG,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM;gBAAE,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YACzD,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,QAAQ;gBAAE,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;YAC7D,IAAI,MAAM,CAAC,KAAK,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC;gBAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YACvF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,OAAO;IACP,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;IAChF,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;IAChF,IAAI,QAAQ,EAAE,CAAC;QACb,IAAI,CAAC,QAAQ,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YACvC,OAAO,CAAC,KAAK,CAAC,kEAAkE,CAAC,CAAC;YAClF,OAAO;QACT,CAAC;QACD,iBAAiB;QACjB,MAAM,UAAU,GAAG,aAAa,CAAC,QAAQ,CAAC,CAAC;QAC3C,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;YACtB,OAAO,CAAC,KAAK,CAAC,gEAAgE,CAAC,CAAC;YAChF,KAAK,MAAM,CAAC,IAAI,UAAU,CAAC,MAAM;gBAAE,OAAO,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YAC/D,OAAO;QACT,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,eAAe,QAAQ,YAAY,QAAQ,EAAE,CAAC,CAAC;QAC3D,OAAO,CAAC,GAAG,CAAC,uEAAuE,CAAC,CAAC;QACrF,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;QACtC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;QACrC,OAAO,CAAC,GAAG,CAAC,6EAA6E,CAAC,CAAC;QAC3F,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,0EAA0E,CAAC,CAAC;AAC1F,CAAC"}

package/dist/commands/pattern-registry.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Pattern registry — team knowledge sharing via a local
+ * repository of security patterns and anti-patterns.
+ *
+ * All data stays in .judges-patterns/ directory.
+ */
+interface SecurityPattern {
+    id: string;
+    title: string;
+    category: string;
+    type: "pattern" | "anti-pattern";
+    language: string;
+    description: string;
+    example: string;
+    fix?: string;
+    author: string;
+    tags: string[];
+    createdAt: string;
+}
+export declare function addPattern(pattern: Omit<SecurityPattern, "id" | "createdAt">): SecurityPattern;
+export declare function runPatternRegistry(argv: string[]): void;
+export {};
+//# sourceMappingURL=pattern-registry.d.ts.map

package/dist/commands/pattern-registry.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pattern-registry.d.ts","sourceRoot":"","sources":["../../src/commands/pattern-registry.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAOH,UAAU,eAAe;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,SAAS,GAAG,cAAc,CAAC;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;CACnB;AAsFD,wBAAgB,UAAU,CAAC,OAAO,EAAE,IAAI,CAAC,eAAe,EAAE,IAAI,GAAG,WAAW,CAAC,GAAG,eAAe,CAU9F;AAID,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAoIvD"}