@kevinrabun/judges 3.48.0 → 3.50.0

package/dist/commands/pii-scan.js

@@ -0,0 +1,300 @@
+/**
+ * PII scan — detect personally-identifiable information patterns
+ * in source code: string literals, logs, config files.
+ *
+ * All analysis local.
+ */
+import { existsSync, readFileSync, readdirSync, mkdirSync, writeFileSync } from "fs";
+import { join, extname } from "path";
+// ─── Patterns ───────────────────────────────────────────────────────────────
+const PII_PATTERNS = [
+    {
+        id: "ssn",
+        label: "Social Security Number",
+        regex: /\b\d{3}-\d{2}-\d{4}\b/g,
+        confidence: "high",
+        validate: (m) => {
+            const parts = m.split("-");
+            return parseInt(parts[0]) > 0 && parseInt(parts[0]) < 900;
+        },
+    },
+    {
+        id: "credit-card",
+        label: "Credit Card Number",
+        regex: /\b(?:4\d{3}|5[1-5]\d{2}|3[47]\d{2}|6(?:011|5\d{2}))[- ]?\d{4}[- ]?\d{4}[- ]?\d{1,4}\b/g,
+        confidence: "high",
+        validate: (m) => {
+            const digits = m.replace(/[- ]/g, "");
+            if (digits.length < 13 || digits.length > 19)
+                return false;
+            // Luhn check
+            let sum = 0;
+            let alt = false;
+            for (let i = digits.length - 1; i >= 0; i--) {
+                let n = parseInt(digits[i]);
+                if (alt) {
+                    n *= 2;
+                    if (n > 9)
+                        n -= 9;
+                }
+                sum += n;
+                alt = !alt;
+            }
+            return sum % 10 === 0;
+        },
+    },
+    {
+        id: "email",
+        label: "Email Address",
+        regex: /\b[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}\b/g,
+        confidence: "medium",
+        validate: (m) => {
+            // Exclude common non-PII patterns
+            if (m.endsWith("@example.com") || m.endsWith("@test.com"))
+                return false;
+            if (m.startsWith("noreply@") || m.startsWith("info@"))
+                return false;
+            return true;
+        },
+    },
+    {
+        id: "phone-us",
+        label: "US Phone Number",
+        regex: /\b(?:\+?1[-.\s]?)?\(?\d{3}\)?[-.\s]?\d{3}[-.\s]?\d{4}\b/g,
+        confidence: "medium",
+        validate: (m) => {
+            const digits = m.replace(/\D/g, "");
+            return digits.length >= 10 && digits.length <= 11;
+        },
+    },
+    {
+        id: "ip-address",
+        label: "IP Address",
+        regex: /\b(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\.(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\.(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\.(?:25[0-5]|2[0-4]\d|[01]?\d\d?)\b/g,
+        confidence: "low",
+        validate: (m) => {
+            // Skip loopback and private ranges that are typically non-PII
+            if (m.startsWith("127.") || m.startsWith("0.") || m === "255.255.255.255")
+                return false;
+            return true;
+        },
+    },
+    {
+        id: "date-of-birth",
+        label: "Date of Birth Pattern",
+        regex: /\b(?:dob|date_?of_?birth|birth_?date|birthday)\s*[:=]\s*["']?\d{1,4}[-/]\d{1,2}[-/]\d{1,4}["']?/gi,
+        confidence: "high",
+    },
+    {
+        id: "passport",
+        label: "Passport Number Pattern",
+        regex: /\b(?:passport(?:_?(?:no|num|number))?)\s*[:=]\s*["']?[A-Z0-9]{6,9}["']?/gi,
+        confidence: "high",
+    },
+    {
+        id: "drivers-license",
+        label: "Drivers License Pattern",
+        regex: /\b(?:drivers?_?(?:license|licence)(?:_?(?:no|num|number))?)\s*[:=]\s*["']?[A-Z0-9-]{5,15}["']?/gi,
+        confidence: "high",
+    },
+    {
+        id: "logging-pii",
+        label: "PII in Logging Statement",
+        regex: /(?:console\.(?:log|warn|error|info)|logger?\.\w+|print|println)\s*\(.*(?:email|phone|ssn|social|password|name|address|dob|birth)/gi,
+        confidence: "medium",
+    },
+];
+// ─── Scanner ────────────────────────────────────────────────────────────────
+const SKIP_DIRS = new Set(["node_modules", ".git", "dist", "build", "coverage", "__pycache__"]);
+const CODE_EXTENSIONS = new Set([
+    ".ts",
+    ".js",
+    ".py",
+    ".java",
+    ".cs",
+    ".go",
+    ".rb",
+    ".php",
+    ".rs",
+    ".swift",
+    ".kt",
+    ".scala",
+    ".json",
+    ".yaml",
+    ".yml",
+    ".xml",
+    ".env",
+    ".cfg",
+    ".ini",
+    ".conf",
+]);
+function collectSourceFiles(dir) {
+    const result = [];
+    function walk(d) {
+        let entries;
+        try {
+            entries = readdirSync(d);
+        }
+        catch {
+            return;
+        }
+        for (const name of entries) {
+            if (SKIP_DIRS.has(name) || name.startsWith("."))
+                continue;
+            const full = join(d, name);
+            try {
+                const sub = readdirSync(full);
+                void sub;
+                walk(full);
+            }
+            catch {
+                if (CODE_EXTENSIONS.has(extname(name).toLowerCase()))
+                    result.push(full);
+            }
+        }
+    }
+    walk(dir);
+    return result;
+}
+function maskPii(text) {
+    if (text.length <= 4)
+        return "****";
+    return text.slice(0, 2) + "*".repeat(text.length - 4) + text.slice(-2);
+}
+function scanFile(filePath) {
+    let content;
+    try {
+        content = readFileSync(filePath, "utf-8");
+    }
+    catch {
+        return [];
+    }
+    const lines = content.split("\n");
+    const matches = [];
+    for (let lineIdx = 0; lineIdx < lines.length; lineIdx++) {
+        const line = lines[lineIdx];
+        // Skip comments that look like documentation/patterns
+        if (/^\s*(?:\/\/|#|\/?\*)\s*(?:example|test|sample|pattern|regex|format)/i.test(line))
+            continue;
+        for (const pattern of PII_PATTERNS) {
+            pattern.regex.lastIndex = 0;
+            let m;
+            while ((m = pattern.regex.exec(line)) !== null) {
+                if (pattern.validate && !pattern.validate(m[0]))
+                    continue;
+                matches.push({
+                    file: filePath,
+                    line: lineIdx + 1,
+                    column: m.index + 1,
+                    type: pattern.id,
+                    snippet: maskPii(m[0]),
+                    confidence: pattern.confidence,
+                });
+            }
+        }
+    }
+    return matches;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runPiiScan(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges pii-scan — Detect personally-identifiable information in source code
+
+Usage:
+  judges pii-scan [dir]
+  judges pii-scan src/ --confidence high
+  judges pii-scan . --format json --output pii-report.json
+
+Options:
+  --confidence <level>  Filter by confidence (high, medium, low)
+  --type <types>        Filter by PII type (comma-separated: ssn,credit-card,email,...)
+  --patterns            List all PII detection patterns
+  --format json         JSON output
+  --output <file>       Write report to file
+  --help, -h            Show this help
+
+PII Types: ${PII_PATTERNS.map((p) => p.id).join(", ")}
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const outputFile = argv.find((_a, i) => argv[i - 1] === "--output");
+    if (argv.includes("--patterns")) {
+        if (format === "json") {
+            console.log(JSON.stringify(PII_PATTERNS.map(({ regex: _r, validate: _v, ...rest }) => rest), null, 2));
+        }
+        else {
+            console.log(`\n  PII Detection Patterns (${PII_PATTERNS.length})\n  ──────────────────────────`);
+            for (const p of PII_PATTERNS) {
+                console.log(`    [${p.confidence.toUpperCase().padEnd(6)}] ${p.id.padEnd(20)} — ${p.label}`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    const target = argv.find((a) => !a.startsWith("--") && !argv[argv.indexOf(a) - 1]?.startsWith("--")) || ".";
+    const confFilter = argv.find((_a, i) => argv[i - 1] === "--confidence");
+    const typeFilter = argv.find((_a, i) => argv[i - 1] === "--type");
+    if (!existsSync(target)) {
+        console.error(`  Path not found: ${target}`);
+        return;
+    }
+    const files = collectSourceFiles(target);
+    let allMatches = [];
+    for (const f of files) {
+        allMatches.push(...scanFile(f));
+    }
+    if (confFilter) {
+        allMatches = allMatches.filter((m) => m.confidence === confFilter);
+    }
+    if (typeFilter) {
+        const allowed = typeFilter.split(",");
+        allMatches = allMatches.filter((m) => allowed.includes(m.type));
+    }
+    const report = {
+        matches: allMatches,
+        scannedFiles: files.length,
+        summary: {
+            total: allMatches.length,
+            byType: Object.fromEntries(PII_PATTERNS.map((p) => [p.id, allMatches.filter((m) => m.type === p.id).length]).filter(([, count]) => count > 0)),
+            byConfidence: {
+                high: allMatches.filter((m) => m.confidence === "high").length,
+                medium: allMatches.filter((m) => m.confidence === "medium").length,
+                low: allMatches.filter((m) => m.confidence === "low").length,
+            },
+        },
+        timestamp: new Date().toISOString(),
+    };
+    if (outputFile) {
+        const dir = join(".", ".judges-pii-scan");
+        if (!existsSync(dir))
+            mkdirSync(dir, { recursive: true });
+        writeFileSync(join(dir, outputFile), JSON.stringify(report, null, 2));
+        console.log(`  Report saved to .judges-pii-scan/${outputFile}`);
+    }
+    if (format === "json") {
+        console.log(JSON.stringify(report, null, 2));
+    }
+    else {
+        console.log(`\n  PII Scan — ${files.length} files scanned`);
+        console.log(`  Found: ${allMatches.length} potential PII occurrences\n  ──────────────────────────`);
+        if (allMatches.length === 0) {
+            console.log(`    ✅ No PII detected\n`);
+            return;
+        }
+        for (const conf of ["high", "medium", "low"]) {
+            const items = allMatches.filter((m) => m.confidence === conf);
+            if (items.length === 0)
+                continue;
+            console.log(`\n    ${conf.toUpperCase()} CONFIDENCE (${items.length})`);
+            for (const m of items) {
+                const piiDef = PII_PATTERNS.find((p) => p.id === m.type);
+                console.log(`      ${m.file}:${m.line}:${m.column} — ${piiDef?.label || m.type}`);
+                console.log(`        Masked: ${m.snippet}`);
+            }
+        }
+        console.log("");
+    }
+}
+//# sourceMappingURL=pii-scan.js.map

package/dist/commands/pii-scan.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"pii-scan.js","sourceRoot":"","sources":["../../src/commands/pii-scan.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACrF,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAqBrC,+EAA+E;AAE/E,MAAM,YAAY,GAAiB;IACjC;QACE,EAAE,EAAE,KAAK;QACT,KAAK,EAAE,wBAAwB;QAC/B,KAAK,EAAE,wBAAwB;QAC/B,UAAU,EAAE,MAAM;QAClB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC3B,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC;QAC5D,CAAC;KACF;IACD;QACE,EAAE,EAAE,aAAa;QACjB,KAAK,EAAE,oBAAoB;QAC3B,KAAK,EAAE,wFAAwF;QAC/F,UAAU,EAAE,MAAM;QAClB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,MAAM,MAAM,GAAG,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;YACtC,IAAI,MAAM,CAAC,MAAM,GAAG,EAAE,IAAI,MAAM,CAAC,MAAM,GAAG,EAAE;gBAAE,OAAO,KAAK,CAAC;YAC3D,aAAa;YACb,IAAI,GAAG,GAAG,CAAC,CAAC;YACZ,IAAI,GAAG,GAAG,KAAK,CAAC;YAChB,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC5C,IAAI,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC5B,IAAI,GAAG,EAAE,CAAC;oBACR,CAAC,IAAI,CAAC,CAAC;oBACP,IAAI,CAAC,GAAG,CAAC;wBAAE,CAAC,IAAI,CAAC,CAAC;gBACpB,CAAC;gBACD,GAAG,IAAI,CAAC,CAAC;gBACT,GAAG,GAAG,CAAC,GAAG,CAAC;YACb,CAAC;YACD,OAAO,GAAG,GAAG,EAAE,KAAK,CAAC,CAAC;QACxB,CAAC;KACF;IACD;QACE,EAAE,EAAE,OAAO;QACX,KAAK,EAAE,eAAe;QACtB,KAAK,EAAE,qDAAqD;QAC5D,UAAU,EAAE,QAAQ;QACpB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,kCAAkC;YAClC,IAAI,CAAC,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC;gBAAE,OAAO,KAAK,CAAC;YACxE,IAAI,CAAC,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC;gBAAE,OAAO,KAAK,CAAC;YACpE,OAAO,IAAI,CAAC;QACd,CAAC;KACF;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,iBAAiB;QACxB,KAAK,EAAE,0DAA0D;QACjE,UAAU,EAAE,QAAQ;QACpB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,MAAM,MAAM,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACpC,OAAO,MAAM,CAAC,MAAM,IAAI,EAAE,IAAI,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC;QACpD,CAAC;KACF;IACD;QACE,EAAE,EAAE,YAAY;QAChB,KAAK,EAAE,YAAY;QACnB,KAAK,EACH,yIAAyI;QAC3I,UAAU,EAAE,KAAK;QACjB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;YACd,8DAA8D;YAC9D,IAAI,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,iBAAiB;gBAAE,OAAO,KAAK,CAAC;YACxF,OAAO,IAAI,CAAC;QACd,CAAC;KACF;IACD;QACE,EAAE,EAAE,eAAe;QACnB,KAAK,EAAE,uBAAuB;QAC9B,KAAK,EAAE,mGAAmG;QAC1G,UAAU,EAAE,MAAM;KACnB;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,yBAAyB;QAChC,KAAK,EAAE,2EAA2E;QAClF,UAAU,EAAE,MAAM;KACnB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,KAAK,EAAE,yBAAyB;QAChC,KAAK,EAAE,kGAAkG;QACzG,UAAU,EAAE,MAAM;KACnB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,KAAK,EAAE,0BAA0B;QACjC,KAAK,EACH,oIAAoI;QACtI,UAAU,EAAE,QAAQ;KACrB;CACF,CAAC;AAEF,+EAA+E;AAE/E,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,aAAa,CAAC,CAAC,CAAC;AAChG,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,KAAK;IACL,KAAK;IACL,KAAK;IACL,OAAO;IACP,KAAK;IACL,KAAK;IACL,KAAK;IACL,MAAM;IACN,KAAK;IACL,QAAQ;IACR,KAAK;IACL,QAAQ;IACR,OAAO;IACP,OAAO;IACP,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,OAAO;CACR,CAAC,CAAC;AAEH,SAAS,kBAAkB,CAAC,GAAW;IACrC,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,SAAS,IAAI,CAAC,CAAS;QACrB,IAAI,OAAiB,CAAC;QACtB,IAAI,CAAC;YACH,OAAO,GAAG,WAAW,CAAC,CAAC,CAAwB,CAAC;QAClD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QACD,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;YAC3B,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YAC1D,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;YAC3B,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC;gBAC9B,KAAK,GAAG,CAAC;gBACT,IAAI,CAAC,IAAI,CAAC,CAAC;YACb,CAAC;YAAC,MAAM,CAAC;gBACP,IAAI,eAAe,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;oBAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1E,CAAC;QACH,CAAC;IACH,CAAC;IACD,IAAI,CAAC,GAAG,CAAC,CAAC;IACV,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,OAAO,CAAC,IAAY;IAC3B,IAAI,IAAI,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IACpC,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;AACzE,CAAC;AAED,SAAS,QAAQ,CAAC,QAAgB;IAChC,IAAI,OAAe,CAAC;IACpB,IAAI,CAAC;QACH,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,MAAM,OAAO,GAAe,EAAE,CAAC;IAE/B,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,KAAK,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,CAAC;QACxD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC;QAC5B,sDAAsD;QACtD,IAAI,sEAAsE,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,SAAS;QAEhG,KAAK,MAAM,OAAO,IAAI,YAAY,EAAE,CAAC;YACnC,OAAO,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC;YAC5B,IAAI,CAAyB,CAAC;YAC9B,OAAO,CAAC,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBAC/C,IAAI,OAAO,CAAC,QAAQ,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;oBAAE,SAAS;gBAC1D,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,OAAO,GAAG,CAAC;oBACjB,MAAM,EAAE,CAAC,CAAC,KAAK,GAAG,CAAC;oBACnB,IAAI,EAAE,OAAO,CAAC,EAAE;oBAChB,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;oBACtB,UAAU,EAAE,OAAO,CAAC,UAAU;iBAC/B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,UAAU,CAAC,IAAc;IACvC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;aAgBH,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;CACpD,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,CAAC;IAEpF,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAChC,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CACZ,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,CAAC,IAAI,CAAC,EAChE,IAAI,EACJ,CAAC,CACF,CACF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,+BAA+B,YAAY,CAAC,MAAM,iCAAiC,CAAC,CAAC;YACjG,KAAK,MAAM,CAAC,IAAI,YAAY,EAAE,CAAC;gBAC7B,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;YAC/F,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,GAAG,CAAC;IACpH,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,cAAc,CAAC,CAAC;IACxF,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;IAElF,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACxB,OAAO,CAAC,KAAK,CAAC,qBAAqB,MAAM,EAAE,CAAC,CAAC;QAC7C,OAAO;IACT,CAAC;IAED,MAAM,KAAK,GAAG,kBAAkB,CAAC,MAAM,CAAC,CAAC;IACzC,IAAI,UAAU,GAAe,EAAE,CAAC;IAEhC,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,UAAU,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IAClC,CAAC;IAED,IAAI,UAAU,EAAE,CAAC;QACf,UAAU,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,UAAU,CAAC,CAAC;IACrE,CAAC;IACD,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACtC,UAAU,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,MAAM,GAAG;QACb,OAAO,EAAE,UAAU;QACnB,YAAY,EAAE,KAAK,CAAC,MAAM;QAC1B,OAAO,EAAE;YACP,KAAK,EAAE,UAAU,CAAC,MAAM;YACxB,MAAM,EAAE,MAAM,CAAC,WAAW,CACxB,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CACtF,CAAC,CAAC,EAAE,KAAK,CAAC,EAAE,EAAE,CAAE,KAAgB,GAAG,CAAC,CACrC,CACF;YACD,YAAY,EAAE;gBACZ,IAAI,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,MAAM,CAAC,CAAC,MAAM;gBAC9D,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,MAAM;gBAClE,GAAG,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,KAAK,CAAC,CAAC,MAAM;aAC7D;SACF;QACD,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC;IAEF,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,kBAAkB,CAAC,CAAC;QAC1C,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC1D,aAAa,CAAC,IAAI,CAAC,GAAG,EAAE,UAAU,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACtE,OAAO,CAAC,GAAG,CAAC,sCAAsC,UAAU,EAAE,CAAC,CAAC;IAClE,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,MAAM,gBAAgB,CAAC,CAAC;QAC5D,OAAO,CAAC,GAAG,CAAC,YAAY,UAAU,CAAC,MAAM,0DAA0D,CAAC,CAAC;QAErG,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC5B,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;YACvC,OAAO;QACT,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAU,EAAE,CAAC;YACtD,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,IAAI,CAAC,CAAC;YAC9D,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;gBAAE,SAAS;YACjC,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,WAAW,EAAE,gBAAgB,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC;YACxE,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;gBACtB,MAAM,MAAM,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC;gBACzD,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,MAAM,MAAM,MAAM,EAAE,KAAK,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;gBAClF,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;YAC9C,CAAC;QACH,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/commands/predict.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Predict — applies trend analysis to finding snapshots to
+ * forecast remediation timelines and regression-prone files.
+ *
+ * All data from local snapshot history.
+ */
+export declare function runPredict(argv: string[]): void;
+//# sourceMappingURL=predict.d.ts.map

package/dist/commands/predict.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"predict.d.ts","sourceRoot":"","sources":["../../src/commands/predict.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAuJH,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAyG/C"}

package/dist/commands/predict.js

@@ -0,0 +1,219 @@
+/**
+ * Predict — applies trend analysis to finding snapshots to
+ * forecast remediation timelines and regression-prone files.
+ *
+ * All data from local snapshot history.
+ */
+import { existsSync, readFileSync, mkdirSync, writeFileSync } from "fs";
+import { join } from "path";
+// ─── Analysis ───────────────────────────────────────────────────────────────
+function loadSnapshots() {
+    const paths = [
+        join(".judges-snapshots", "history.json"),
+        ".judges-snapshots.json",
+        join(".judges-burndown", "snapshots.json"),
+    ];
+    for (const p of paths) {
+        if (!existsSync(p))
+            continue;
+        try {
+            const data = JSON.parse(readFileSync(p, "utf-8"));
+            if (Array.isArray(data))
+                return data;
+            if (data.snapshots)
+                return data.snapshots;
+        }
+        catch {
+            /* skip */
+        }
+    }
+    return [];
+}
+function linearRegression(points) {
+    const n = points.length;
+    if (n < 2)
+        return { slope: 0, intercept: points[0]?.y || 0, r2: 0 };
+    const sumX = points.reduce((s, p) => s + p.x, 0);
+    const sumY = points.reduce((s, p) => s + p.y, 0);
+    const sumXY = points.reduce((s, p) => s + p.x * p.y, 0);
+    const sumX2 = points.reduce((s, p) => s + p.x * p.x, 0);
+    const sumY2 = points.reduce((s, p) => s + p.y * p.y, 0);
+    const denom = n * sumX2 - sumX * sumX;
+    if (denom === 0)
+        return { slope: 0, intercept: sumY / n, r2: 0 };
+    const slope = (n * sumXY - sumX * sumY) / denom;
+    const intercept = (sumY - slope * sumX) / n;
+    // R²
+    const yMean = sumY / n;
+    const ssTot = sumY2 - n * yMean * yMean;
+    const ssRes = points.reduce((s, p) => s + Math.pow(p.y - (slope * p.x + intercept), 2), 0);
+    const r2 = ssTot === 0 ? 0 : Math.max(0, 1 - ssRes / ssTot);
+    return { slope, intercept, r2 };
+}
+function predictMetric(snapshots, field) {
+    if (snapshots.length < 2) {
+        return {
+            metric: field,
+            currentValue: snapshots[0]?.[field] || 0,
+            trend: "stable",
+            ratePerDay: 0,
+            estimatedZeroDate: null,
+            confidence: 0,
+        };
+    }
+    const t0 = new Date(snapshots[0].timestamp).getTime();
+    const points = snapshots.map((s) => ({
+        x: (new Date(s.timestamp).getTime() - t0) / (1000 * 60 * 60 * 24), // days
+        y: s[field],
+    }));
+    const { slope, r2 } = linearRegression(points);
+    const current = points[points.length - 1].y;
+    let trend = "stable";
+    if (slope < -0.1)
+        trend = "decreasing";
+    else if (slope > 0.1)
+        trend = "increasing";
+    let estimatedZeroDate = null;
+    if (slope < 0 && current > 0) {
+        const daysToZero = -current / slope;
+        const zeroDate = new Date(Date.now() + daysToZero * 24 * 60 * 60 * 1000);
+        estimatedZeroDate = zeroDate.toISOString().split("T")[0];
+    }
+    return {
+        metric: field,
+        currentValue: current,
+        trend,
+        ratePerDay: Math.round(slope * 100) / 100,
+        estimatedZeroDate,
+        confidence: Math.round(r2 * 100),
+    };
+}
+function loadRegressionData() {
+    const paths = [".judges-regressions.json", join(".judges-regression-alert", "history.json")];
+    for (const p of paths) {
+        if (!existsSync(p))
+            continue;
+        try {
+            const data = JSON.parse(readFileSync(p, "utf-8"));
+            const files = Array.isArray(data) ? data : data.regressions || [];
+            const counts = new Map();
+            for (const r of files) {
+                const file = r.file || r.path || "unknown";
+                counts.set(file, (counts.get(file) || 0) + 1);
+            }
+            return [...counts.entries()]
+                .map(([file, count]) => ({
+                file,
+                regressionCount: count,
+                risk: count > 3 ? "high" : count > 1 ? "medium" : "low",
+            }))
+                .sort((a, b) => b.regressionCount - a.regressionCount);
+        }
+        catch {
+            /* skip */
+        }
+    }
+    return [];
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+const STORE = ".judges-predictions";
+export function runPredict(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges predict — Forecast remediation timelines and regression risk
+
+Usage:
+  judges predict
+  judges predict --metric critical
+  judges predict --regressions
+  judges predict --save
+
+Options:
+  --metric <name>       Predict specific metric (findings, critical, high, medium, low)
+  --regressions         Show regression-prone files prediction
+  --save                Save predictions to ${STORE}/
+  --format json         JSON output
+  --help, -h            Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const snapshots = loadSnapshots();
+    if (snapshots.length < 2 && !argv.includes("--regressions")) {
+        console.log("  Need at least 2 snapshots for predictions.");
+        console.log("  Run scans over time and they'll be recorded automatically.");
+        return;
+    }
+    // Single metric
+    const metricName = argv.find((_a, i) => argv[i - 1] === "--metric");
+    if (metricName) {
+        const pred = predictMetric(snapshots, metricName);
+        if (format === "json") {
+            console.log(JSON.stringify(pred, null, 2));
+        }
+        else {
+            console.log(`\n  Prediction: ${pred.metric}\n  ──────────────────────────`);
+            console.log(`    Current: ${pred.currentValue}`);
+            console.log(`    Trend: ${pred.trend} (${pred.ratePerDay >= 0 ? "+" : ""}${pred.ratePerDay}/day)`);
+            console.log(`    Confidence: ${pred.confidence}%`);
+            if (pred.estimatedZeroDate)
+                console.log(`    Estimated zero: ${pred.estimatedZeroDate}`);
+            console.log("");
+        }
+        return;
+    }
+    // Regressions
+    if (argv.includes("--regressions")) {
+        const regressions = loadRegressionData();
+        if (format === "json") {
+            console.log(JSON.stringify(regressions, null, 2));
+        }
+        else {
+            console.log(`\n  Regression-Prone Files\n  ──────────────────────────`);
+            if (regressions.length === 0) {
+                console.log(`    No regression data found.\n`);
+                return;
+            }
+            for (const r of regressions.slice(0, 15)) {
+                console.log(`    [${r.risk.toUpperCase().padEnd(6)}] ${r.file} (${r.regressionCount} regressions)`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    // Full prediction
+    const metrics = ["findings", "critical", "high", "medium", "low"];
+    const predictions = metrics.map((m) => predictMetric(snapshots, m));
+    const regressions = loadRegressionData();
+    const report = {
+        predictions,
+        regressionRisk: regressions.slice(0, 10),
+        timestamp: new Date().toISOString(),
+    };
+    if (argv.includes("--save")) {
+        if (!existsSync(STORE))
+            mkdirSync(STORE, { recursive: true });
+        writeFileSync(join(STORE, "prediction-report.json"), JSON.stringify(report, null, 2));
+        console.log(`  Saved to ${STORE}/prediction-report.json`);
+    }
+    if (format === "json") {
+        console.log(JSON.stringify(report, null, 2));
+    }
+    else {
+        console.log(`\n  Prediction Report (${snapshots.length} snapshots)`);
+        console.log(`  ──────────────────────────`);
+        for (const p of predictions) {
+            const arrow = p.trend === "decreasing" ? "↓" : p.trend === "increasing" ? "↑" : "→";
+            const zero = p.estimatedZeroDate ? ` → zero by ${p.estimatedZeroDate}` : "";
+            console.log(`    ${p.metric.padEnd(12)} ${String(p.currentValue).padEnd(6)} ${arrow} ${p.ratePerDay >= 0 ? "+" : ""}${p.ratePerDay}/day  (${p.confidence}% conf)${zero}`);
+        }
+        if (regressions.length > 0) {
+            console.log(`\n  Regression-Prone Files:`);
+            for (const r of regressions.slice(0, 5)) {
+                console.log(`    [${r.risk.toUpperCase().padEnd(6)}] ${r.file}`);
+            }
+        }
+        console.log("");
+    }
+}
+//# sourceMappingURL=predict.js.map

package/dist/commands/predict.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"predict.js","sourceRoot":"","sources":["../../src/commands/predict.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AA4B5B,+EAA+E;AAE/E,SAAS,aAAa;IACpB,MAAM,KAAK,GAAG;QACZ,IAAI,CAAC,mBAAmB,EAAE,cAAc,CAAC;QACzC,wBAAwB;QACxB,IAAI,CAAC,kBAAkB,EAAE,gBAAgB,CAAC;KAC3C,CAAC;IAEF,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC;YAAE,SAAS;QAC7B,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;YAClD,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC;gBAAE,OAAO,IAAI,CAAC;YACrC,IAAI,IAAI,CAAC,SAAS;gBAAE,OAAO,IAAI,CAAC,SAAS,CAAC;QAC5C,CAAC;QAAC,MAAM,CAAC;YACP,UAAU;QACZ,CAAC;IACH,CAAC;IAED,OAAO,EAAE,CAAC;AACZ,CAAC;AAED,SAAS,gBAAgB,CAAC,MAAuC;IAC/D,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,CAAC;IACxB,IAAI,CAAC,GAAG,CAAC;QAAE,OAAO,EAAE,KAAK,EAAE,CAAC,EAAE,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC;IAEpE,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACjD,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACjD,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACxD,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACxD,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAExD,MAAM,KAAK,GAAG,CAAC,GAAG,KAAK,GAAG,IAAI,GAAG,IAAI,CAAC;IACtC,IAAI,KAAK,KAAK,CAAC;QAAE,OAAO,EAAE,KAAK,EAAE,CAAC,EAAE,SAAS,EAAE,IAAI,GAAG,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC;IAEjE,MAAM,KAAK,GAAG,CAAC,CAAC,GAAG,KAAK,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,KAAK,CAAC;IAChD,MAAM,SAAS,GAAG,CAAC,IAAI,GAAG,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC;IAE5C,KAAK;IACL,MAAM,KAAK,GAAG,IAAI,GAAG,CAAC,CAAC;IACvB,MAAM,KAAK,GAAG,KAAK,GAAG,CAAC,GAAG,KAAK,GAAG,KAAK,CAAC;IACxC,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAC3F,MAAM,EAAE,GAAG,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,GAAG,KAAK,GAAG,KAAK,CAAC,CAAC;IAE5D,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;AAClC,CAAC;AAED,SAAS,aAAa,CAAC,SAAqB,EAAE,KAAwC;IACpF,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzB,OAAO;YACL,MAAM,EAAE,KAAK;YACb,YAAY,EAAG,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,KAAK,CAAY,IAAI,CAAC;YACpD,KAAK,EAAE,QAAQ;YACf,UAAU,EAAE,CAAC;YACb,iBAAiB,EAAE,IAAI;YACvB,UAAU,EAAE,CAAC;SACd,CAAC;IACJ,CAAC;IAED,MAAM,EAAE,GAAG,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC;IACtD,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACnC,CAAC,EAAE,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,GAAG,CAAC,IAAI,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,EAAE,OAAO;QAC1E,CAAC,EAAE,CAAC,CAAC,KAAK,CAAW;KACtB,CAAC,CAAC,CAAC;IAEJ,MAAM,EAAE,KAAK,EAAE,EAAE,EAAE,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC/C,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IAE5C,IAAI,KAAK,GAAwB,QAAQ,CAAC;IAC1C,IAAI,KAAK,GAAG,CAAC,GAAG;QAAE,KAAK,GAAG,YAAY,CAAC;SAClC,IAAI,KAAK,GAAG,GAAG;QAAE,KAAK,GAAG,YAAY,CAAC;IAE3C,IAAI,iBAAiB,GAAkB,IAAI,CAAC;IAC5C,IAAI,KAAK,GAAG,CAAC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;QAC7B,MAAM,UAAU,GAAG,CAAC,OAAO,GAAG,KAAK,CAAC;QACpC,MAAM,QAAQ,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QACzE,iBAAiB,GAAG,QAAQ,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IAC3D,CAAC;IAED,OAAO;QACL,MAAM,EAAE,KAAK;QACb,YAAY,EAAE,OAAO;QACrB,KAAK;QACL,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,GAAG,GAAG,CAAC,GAAG,GAAG;QACzC,iBAAiB;QACjB,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,GAAG,CAAC;KACjC,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB;IACzB,MAAM,KAAK,GAAG,CAAC,0BAA0B,EAAE,IAAI,CAAC,0BAA0B,EAAE,cAAc,CAAC,CAAC,CAAC;IAC7F,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC;YAAE,SAAS;QAC7B,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;YAClD,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC;YAClE,MAAM,MAAM,GAAG,IAAI,GAAG,EAAkB,CAAC;YACzC,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;gBACtB,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,IAAI,SAAS,CAAC;gBAC3C,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;YAChD,CAAC;YACD,OAAO,CAAC,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC;iBACzB,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC;gBACvB,IAAI;gBACJ,eAAe,EAAE,KAAK;gBACtB,IAAI,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK;aACxD,CAAC,CAAC;iBACF,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,eAAe,GAAG,CAAC,CAAC,eAAe,CAAC,CAAC;QAC3D,CAAC;QAAC,MAAM,CAAC;YACP,UAAU;QACZ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,CAAC;AACZ,CAAC;AAED,+EAA+E;AAE/E,MAAM,KAAK,GAAG,qBAAqB,CAAC;AAEpC,MAAM,UAAU,UAAU,CAAC,IAAc;IACvC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;8CAY8B,KAAK;;;CAGlD,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,SAAS,GAAG,aAAa,EAAE,CAAC;IAElC,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QAC5D,OAAO,CAAC,GAAG,CAAC,8CAA8C,CAAC,CAAC;QAC5D,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO;IACT,CAAC;IAED,gBAAgB;IAChB,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAErE,CAAC;IACd,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,IAAI,GAAG,aAAa,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QAClD,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC7C,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,CAAC,MAAM,gCAAgC,CAAC,CAAC;YAC5E,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,CAAC,YAAY,EAAE,CAAC,CAAC;YACjD,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,CAAC,KAAK,KAAK,IAAI,CAAC,UAAU,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,IAAI,CAAC,UAAU,OAAO,CAAC,CAAC;YACnG,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,CAAC,UAAU,GAAG,CAAC,CAAC;YACnD,IAAI,IAAI,CAAC,iBAAiB;gBAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC;YACzF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,cAAc;IACd,IAAI,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QACnC,MAAM,WAAW,GAAG,kBAAkB,EAAE,CAAC;QACzC,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACpD,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,0DAA0D,CAAC,CAAC;YACxE,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC7B,OAAO,CAAC,GAAG,CAAC,iCAAiC,CAAC,CAAC;gBAC/C,OAAO;YACT,CAAC;YACD,KAAK,MAAM,CAAC,IAAI,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;gBACzC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,eAAe,eAAe,CAAC,CAAC;YACtG,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,kBAAkB;IAClB,MAAM,OAAO,GAA6C,CAAC,UAAU,EAAE,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;IAC5G,MAAM,WAAW,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,CAAC;IACpE,MAAM,WAAW,GAAG,kBAAkB,EAAE,CAAC;IAEzC,MAAM,MAAM,GAAqB;QAC/B,WAAW;QACX,cAAc,EAAE,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;QACxC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC;IAEF,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC;YAAE,SAAS,CAAC,KAAK,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC9D,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,wBAAwB,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACtF,OAAO,CAAC,GAAG,CAAC,cAAc,KAAK,yBAAyB,CAAC,CAAC;IAC5D,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,0BAA0B,SAAS,CAAC,MAAM,aAAa,CAAC,CAAC;QACrE,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;QAC5C,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;YAC5B,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,KAAK,YAAY,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,KAAK,YAAY,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;YACpF,MAAM,IAAI,GAAG,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5E,OAAO,CAAC,GAAG,CACT,OAAO,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC,UAAU,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,UAAU,UAAU,CAAC,CAAC,UAAU,UAAU,IAAI,EAAE,CAC7J,CAAC;QACJ,CAAC;QACD,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;YAC3C,KAAK,MAAM,CAAC,IAAI,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;gBACxC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;YACnE,CAAC;QACH,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/commands/risk-heatmap.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Risk heatmap — generates a file/directory risk heatmap
+ * combining finding density, severity, and test coverage.
+ *
+ * All data from local files.
+ */
+export declare function runRiskHeatmap(argv: string[]): void;
+//# sourceMappingURL=risk-heatmap.d.ts.map

package/dist/commands/risk-heatmap.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"risk-heatmap.d.ts","sourceRoot":"","sources":["../../src/commands/risk-heatmap.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAwJH,wBAAgB,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CA+FnD"}