@kevinrabun/judges 3.49.0 → 3.51.0

package/dist/commands/hallucination-score.js

@@ -0,0 +1,317 @@
+/**
+ * Hallucination score — assign a hallucination risk score (0–100)
+ * to AI-generated code based on detected patterns: generic naming,
+ * suspicious imports, implausible logic, unverified API usage.
+ *
+ * All analysis local.
+ */
+import { existsSync, readFileSync, readdirSync } from "fs";
+import { join, extname } from "path";
+// ─── Detectors ──────────────────────────────────────────────────────────────
+function detectHallucinationSignals(content, lines) {
+    const signals = [];
+    // 1. Non-existent or suspicious imports
+    const importLines = lines
+        .map((l, i) => ({ line: i + 1, text: l }))
+        .filter((l) => /\bimport\s|require\s*\(/.test(l.text));
+    for (const imp of importLines) {
+        // Suspicious package names (very generic or implausible)
+        if (/["'](?:utils|helpers|common|shared|lib|core|base)["']/.test(imp.text) && !/from\s*["']\./.test(imp.text)) {
+            signals.push({
+                id: "suspicious-import",
+                description: "Generic import name — may reference non-existent package",
+                weight: 15,
+                line: imp.line,
+                evidence: imp.text.trim(),
+            });
+        }
+        // Version-specific imports (hallucinated API paths)
+        if (/["'][^"']+\/v\d+\/[^"']+["']/.test(imp.text)) {
+            signals.push({
+                id: "versioned-import-path",
+                description: "Version-specific import path — verify API exists",
+                weight: 10,
+                line: imp.line,
+                evidence: imp.text.trim(),
+            });
+        }
+    }
+    // 2. Generic/placeholder variable names
+    let genericNames = 0;
+    for (let i = 0; i < lines.length; i++) {
+        if (/\b(?:const|let|var)\s+(?:data|result|value|item|thing|stuff|temp|tmp|foo|bar|baz|x|y|z)\s*[=:]/.test(lines[i])) {
+            genericNames++;
+        }
+    }
+    if (genericNames > 3) {
+        signals.push({
+            id: "generic-naming",
+            description: `${genericNames} generic variable names — AI may have generated placeholder code`,
+            weight: 10,
+        });
+    }
+    // 3. TODO/FIXME comments left by AI
+    let todoCount = 0;
+    for (let i = 0; i < lines.length; i++) {
+        if (/\/\/\s*(?:TODO|FIXME|HACK|XXX|PLACEHOLDER)/i.test(lines[i])) {
+            todoCount++;
+        }
+    }
+    if (todoCount > 2) {
+        signals.push({
+            id: "excessive-todos",
+            description: `${todoCount} TODO/FIXME comments — AI left implementation gaps`,
+            weight: 20,
+        });
+    }
+    // 4. Unreachable or dead code patterns
+    for (let i = 0; i < lines.length; i++) {
+        if (/\breturn\b/.test(lines[i]) &&
+            i + 1 < lines.length &&
+            /^\s*\S/.test(lines[i + 1]) &&
+            !/^\s*[}\])]/.test(lines[i + 1]) &&
+            !/^\s*(?:case|default|\/\/|\/?\*)/.test(lines[i + 1])) {
+            signals.push({
+                id: "dead-code",
+                description: "Code after return statement — likely hallucinated",
+                weight: 15,
+                line: i + 2,
+                evidence: lines[i + 1].trim().substring(0, 60),
+            });
+        }
+    }
+    // 5. Contradictory logic
+    for (let i = 0; i < lines.length; i++) {
+        if (/if\s*\(\s*true\s*\)|if\s*\(\s*false\s*\)/.test(lines[i])) {
+            signals.push({
+                id: "tautology",
+                description: "Tautological condition (always true/false)",
+                weight: 20,
+                line: i + 1,
+            });
+        }
+        if (/=\s*null.*\.\w+|=\s*undefined.*\.\w+/.test(lines[i])) {
+            signals.push({
+                id: "null-access",
+                description: "Property access on value just assigned null/undefined",
+                weight: 25,
+                line: i + 1,
+            });
+        }
+    }
+    // 6. Copy-paste artifacts
+    const lineSet = new Map();
+    for (let i = 0; i < lines.length; i++) {
+        const trimmed = lines[i].trim();
+        if (trimmed.length > 20) {
+            if (!lineSet.has(trimmed))
+                lineSet.set(trimmed, []);
+            lineSet.get(trimmed).push(i + 1);
+        }
+    }
+    let duplicateBlocks = 0;
+    for (const [, lineNums] of lineSet) {
+        if (lineNums.length >= 3)
+            duplicateBlocks++;
+    }
+    if (duplicateBlocks > 2) {
+        signals.push({
+            id: "copy-paste-artifact",
+            description: `${duplicateBlocks} repeated code blocks — AI may have duplicated patterns`,
+            weight: 15,
+        });
+    }
+    // 7. Magic numbers/strings
+    let magicCount = 0;
+    for (let i = 0; i < lines.length; i++) {
+        if (/\b(?:0x[0-9a-f]{4,}|\d{5,})\b/i.test(lines[i]) && !/\bconst\b/.test(lines[i]) && !/\/\//.test(lines[i])) {
+            magicCount++;
+        }
+    }
+    if (magicCount > 3) {
+        signals.push({
+            id: "magic-numbers",
+            description: `${magicCount} unexplained magic numbers — AI may have hallucinated constants`,
+            weight: 10,
+        });
+    }
+    // 8. Inconsistent error handling
+    const tryCatchCount = (content.match(/\btry\s*{/g) || []).length;
+    const catchCount = (content.match(/\bcatch\s*\(/g) || []).length;
+    const emptyHandlers = (content.match(/catch\s*\([^)]*\)\s*{\s*}/g) || []).length;
+    if (emptyHandlers > 0) {
+        signals.push({
+            id: "empty-catch",
+            description: `${emptyHandlers} empty catch block(s) — errors silently swallowed`,
+            weight: 15,
+        });
+    }
+    if (tryCatchCount > 0 && catchCount < tryCatchCount) {
+        signals.push({
+            id: "unmatched-try",
+            description: "More try blocks than catch blocks — incomplete error handling",
+            weight: 10,
+        });
+    }
+    // 9. Commented-out code (AI artifact)
+    let commentedCode = 0;
+    for (let i = 0; i < lines.length; i++) {
+        if (/^\s*\/\/\s*(?:const|let|var|function|class|import|return|if|for|while)\b/.test(lines[i])) {
+            commentedCode++;
+        }
+    }
+    if (commentedCode > 3) {
+        signals.push({
+            id: "commented-code",
+            description: `${commentedCode} lines of commented-out code — AI left alternative implementations`,
+            weight: 10,
+        });
+    }
+    // 10. Functions with no implementation
+    for (let i = 0; i < lines.length; i++) {
+        if (/\bfunction\s+\w+\s*\([^)]*\)\s*{\s*}/.test(lines[i]) || /=>\s*{\s*}/.test(lines[i])) {
+            signals.push({
+                id: "empty-function",
+                description: "Empty function body — stub not implemented",
+                weight: 20,
+                line: i + 1,
+            });
+        }
+    }
+    return signals;
+}
+// ─── Scanner ────────────────────────────────────────────────────────────────
+const SKIP = new Set(["node_modules", ".git", "dist", "build", "coverage"]);
+const EXTS = new Set([".ts", ".js", ".py", ".java", ".cs", ".go", ".rb", ".php", ".rs", ".swift", ".kt"]);
+function collectFiles(dir) {
+    const result = [];
+    function walk(d) {
+        let entries;
+        try {
+            entries = readdirSync(d);
+        }
+        catch {
+            return;
+        }
+        for (const name of entries) {
+            if (SKIP.has(name) || name.startsWith("."))
+                continue;
+            const full = join(d, name);
+            try {
+                const sub = readdirSync(full);
+                void sub;
+                walk(full);
+            }
+            catch {
+                if (EXTS.has(extname(name).toLowerCase()))
+                    result.push(full);
+            }
+        }
+    }
+    walk(dir);
+    return result;
+}
+function computeScore(signals) {
+    const raw = signals.reduce((sum, s) => sum + s.weight, 0);
+    return Math.min(100, raw);
+}
+function riskLevel(score) {
+    if (score >= 70)
+        return "critical";
+    if (score >= 45)
+        return "high";
+    if (score >= 20)
+        return "medium";
+    return "low";
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runHallucinationScore(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges hallucination-score — Assess hallucination risk in AI-generated code
+
+Usage:
+  judges hallucination-score <file-or-dir>
+  judges hallucination-score src/ --min-risk medium
+
+Options:
+  --min-risk <level>  Only show files at or above this risk (low, medium, high, critical)
+  --format json       JSON output
+  --help, -h          Show this help
+
+Signals detected:
+  • Suspicious/non-existent imports
+  • Generic placeholder naming
+  • Excessive TODO/FIXME comments
+  • Dead code after return statements
+  • Tautological conditions
+  • Copy-paste artifacts
+  • Magic numbers
+  • Empty catch blocks
+  • Commented-out code
+  • Empty function stubs
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const minRisk = argv.find((_a, i) => argv[i - 1] === "--min-risk");
+    const target = argv.find((a) => !a.startsWith("--") && !argv[argv.indexOf(a) - 1]?.startsWith("--")) || ".";
+    if (!existsSync(target)) {
+        console.error(`  Path not found: ${target}`);
+        return;
+    }
+    let files;
+    try {
+        readdirSync(target);
+        files = collectFiles(target);
+    }
+    catch {
+        files = [target];
+    }
+    const scored = [];
+    for (const f of files) {
+        let content;
+        try {
+            content = readFileSync(f, "utf-8");
+        }
+        catch {
+            continue;
+        }
+        const lines = content.split("\n");
+        const signals = detectHallucinationSignals(content, lines);
+        const score = computeScore(signals);
+        scored.push({ file: f, score, riskLevel: riskLevel(score), signals });
+    }
+    let filtered = scored;
+    if (minRisk) {
+        const order = ["low", "medium", "high", "critical"];
+        const minIdx = order.indexOf(minRisk);
+        if (minIdx >= 0)
+            filtered = scored.filter((s) => order.indexOf(s.riskLevel) >= minIdx);
+    }
+    filtered.sort((a, b) => b.score - a.score);
+    if (format === "json") {
+        console.log(JSON.stringify({ files: filtered, scannedFiles: files.length, timestamp: new Date().toISOString() }, null, 2));
+    }
+    else {
+        console.log(`\n  Hallucination Risk Assessment — ${files.length} files`);
+        console.log(`  ──────────────────────────`);
+        if (filtered.length === 0) {
+            console.log(`    ✅ No hallucination risks above threshold\n`);
+            return;
+        }
+        for (const f of filtered.slice(0, 20)) {
+            const icon = f.riskLevel === "critical" ? "🔴" : f.riskLevel === "high" ? "🟠" : f.riskLevel === "medium" ? "🟡" : "🟢";
+            console.log(`\n    ${icon} ${f.file} — Score: ${f.score}/100 (${f.riskLevel})`);
+            for (const s of f.signals) {
+                console.log(`        • ${s.description}${s.line ? ` (line ${s.line})` : ""}`);
+            }
+        }
+        if (filtered.length > 20)
+            console.log(`    ... and ${filtered.length - 20} more files`);
+        const avgScore = Math.round(filtered.reduce((sum, f) => sum + f.score, 0) / filtered.length);
+        console.log(`\n    Average risk score: ${avgScore}/100`);
+        console.log(`    Critical: ${filtered.filter((f) => f.riskLevel === "critical").length} | High: ${filtered.filter((f) => f.riskLevel === "high").length} | Medium: ${filtered.filter((f) => f.riskLevel === "medium").length} | Low: ${filtered.filter((f) => f.riskLevel === "low").length}\n`);
+    }
+}
+//# sourceMappingURL=hallucination-score.js.map

package/dist/commands/hallucination-score.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hallucination-score.js","sourceRoot":"","sources":["../../src/commands/hallucination-score.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,IAAI,CAAC;AAC3D,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAmBrC,+EAA+E;AAE/E,SAAS,0BAA0B,CAAC,OAAe,EAAE,KAAe;IAClE,MAAM,OAAO,GAA0B,EAAE,CAAC;IAE1C,wCAAwC;IACxC,MAAM,WAAW,GAAG,KAAK;SACtB,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;SACzC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IACzD,KAAK,MAAM,GAAG,IAAI,WAAW,EAAE,CAAC;QAC9B,yDAAyD;QACzD,IAAI,uDAAuD,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9G,OAAO,CAAC,IAAI,CAAC;gBACX,EAAE,EAAE,mBAAmB;gBACvB,WAAW,EAAE,0DAA0D;gBACvE,MAAM,EAAE,EAAE;gBACV,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,QAAQ,EAAE,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE;aAC1B,CAAC,CAAC;QACL,CAAC;QACD,oDAAoD;QACpD,IAAI,8BAA8B,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YAClD,OAAO,CAAC,IAAI,CAAC;gBACX,EAAE,EAAE,uBAAuB;gBAC3B,WAAW,EAAE,kDAAkD;gBAC/D,MAAM,EAAE,EAAE;gBACV,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,QAAQ,EAAE,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE;aAC1B,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,wCAAwC;IACxC,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IACE,gGAAgG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAC/G,CAAC;YACD,YAAY,EAAE,CAAC;QACjB,CAAC;IACH,CAAC;IACD,IAAI,YAAY,GAAG,CAAC,EAAE,CAAC;QACrB,OAAO,CAAC,IAAI,CAAC;YACX,EAAE,EAAE,gBAAgB;YACpB,WAAW,EAAE,GAAG,YAAY,kEAAkE;YAC9F,MAAM,EAAE,EAAE;SACX,CAAC,CAAC;IACL,CAAC;IAED,oCAAoC;IACpC,IAAI,SAAS,GAAG,CAAC,CAAC;IAClB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,6CAA6C,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YACjE,SAAS,EAAE,CAAC;QACd,CAAC;IACH,CAAC;IACD,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;QAClB,OAAO,CAAC,IAAI,CAAC;YACX,EAAE,EAAE,iBAAiB;YACrB,WAAW,EAAE,GAAG,SAAS,oDAAoD;YAC7E,MAAM,EAAE,EAAE;SACX,CAAC,CAAC;IACL,CAAC;IAED,uCAAuC;IACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IACE,YAAY,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAC3B,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM;YACpB,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;YAC3B,CAAC,YAAY,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;YAChC,CAAC,iCAAiC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EACrD,CAAC;YACD,OAAO,CAAC,IAAI,CAAC;gBACX,EAAE,EAAE,WAAW;gBACf,WAAW,EAAE,mDAAmD;gBAChE,MAAM,EAAE,EAAE;gBACV,IAAI,EAAE,CAAC,GAAG,CAAC;gBACX,QAAQ,EAAE,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC;aAC/C,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,yBAAyB;IACzB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,0CAA0C,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9D,OAAO,CAAC,IAAI,CAAC;gBACX,EAAE,EAAE,WAAW;gBACf,WAAW,EAAE,4CAA4C;gBACzD,MAAM,EAAE,EAAE;gBACV,IAAI,EAAE,CAAC,GAAG,CAAC;aACZ,CAAC,CAAC;QACL,CAAC;QACD,IAAI,sCAAsC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC1D,OAAO,CAAC,IAAI,CAAC;gBACX,EAAE,EAAE,aAAa;gBACjB,WAAW,EAAE,uDAAuD;gBACpE,MAAM,EAAE,EAAE;gBACV,IAAI,EAAE,CAAC,GAAG,CAAC;aACZ,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,0BAA0B;IAC1B,MAAM,OAAO,GAAG,IAAI,GAAG,EAAoB,CAAC;IAC5C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAChC,IAAI,OAAO,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YACxB,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC;gBAAE,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;YACpD,OAAO,CAAC,GAAG,CAAC,OAAO,CAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;IACD,IAAI,eAAe,GAAG,CAAC,CAAC;IACxB,KAAK,MAAM,CAAC,EAAE,QAAQ,CAAC,IAAI,OAAO,EAAE,CAAC;QACnC,IAAI,QAAQ,CAAC,MAAM,IAAI,CAAC;YAAE,eAAe,EAAE,CAAC;IAC9C,CAAC;IACD,IAAI,eAAe,GAAG,CAAC,EAAE,CAAC;QACxB,OAAO,CAAC,IAAI,CAAC;YACX,EAAE,EAAE,qBAAqB;YACzB,WAAW,EAAE,GAAG,eAAe,yDAAyD;YACxF,MAAM,EAAE,EAAE;SACX,CAAC,CAAC;IACL,CAAC;IAED,2BAA2B;IAC3B,IAAI,UAAU,GAAG,CAAC,CAAC;IACnB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,gCAAgC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC7G,UAAU,EAAE,CAAC;QACf,CAAC;IACH,CAAC;IACD,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;QACnB,OAAO,CAAC,IAAI,CAAC;YACX,EAAE,EAAE,eAAe;YACnB,WAAW,EAAE,GAAG,UAAU,iEAAiE;YAC3F,MAAM,EAAE,EAAE;SACX,CAAC,CAAC;IACL,CAAC;IAED,iCAAiC;IACjC,MAAM,aAAa,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IACjE,MAAM,UAAU,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IACjE,MAAM,aAAa,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,4BAA4B,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IACjF,IAAI,aAAa,GAAG,CAAC,EAAE,CAAC;QACtB,OAAO,CAAC,IAAI,CAAC;YACX,EAAE,EAAE,aAAa;YACjB,WAAW,EAAE,GAAG,aAAa,mDAAmD;YAChF,MAAM,EAAE,EAAE;SACX,CAAC,CAAC;IACL,CAAC;IACD,IAAI,aAAa,GAAG,CAAC,IAAI,UAAU,GAAG,aAAa,EAAE,CAAC;QACpD,OAAO,CAAC,IAAI,CAAC;YACX,EAAE,EAAE,eAAe;YACnB,WAAW,EAAE,+DAA+D;YAC5E,MAAM,EAAE,EAAE;SACX,CAAC,CAAC;IACL,CAAC;IAED,sCAAsC;IACtC,IAAI,aAAa,GAAG,CAAC,CAAC;IACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,0EAA0E,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9F,aAAa,EAAE,CAAC;QAClB,CAAC;IACH,CAAC;IACD,IAAI,aAAa,GAAG,CAAC,EAAE,CAAC;QACtB,OAAO,CAAC,IAAI,CAAC;YACX,EAAE,EAAE,gBAAgB;YACpB,WAAW,EAAE,GAAG,aAAa,oEAAoE;YACjG,MAAM,EAAE,EAAE;SACX,CAAC,CAAC;IACL,CAAC;IAED,uCAAuC;IACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,IAAI,sCAAsC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,YAAY,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YACzF,OAAO,CAAC,IAAI,CAAC;gBACX,EAAE,EAAE,gBAAgB;gBACpB,WAAW,EAAE,4CAA4C;gBACzD,MAAM,EAAE,EAAE;gBACV,IAAI,EAAE,CAAC,GAAG,CAAC;aACZ,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,+EAA+E;AAE/E,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,CAAC,CAAC,CAAC;AAC5E,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC;AAE1G,SAAS,YAAY,CAAC,GAAW;IAC/B,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,SAAS,IAAI,CAAC,CAAS;QACrB,IAAI,OAAiB,CAAC;QACtB,IAAI,CAAC;YACH,OAAO,GAAG,WAAW,CAAC,CAAC,CAAwB,CAAC;QAClD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QACD,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;YAC3B,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YACrD,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;YAC3B,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC;gBAC9B,KAAK,GAAG,CAAC;gBACT,IAAI,CAAC,IAAI,CAAC,CAAC;YACb,CAAC;YAAC,MAAM,CAAC;gBACP,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;oBAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC/D,CAAC;QACH,CAAC;IACH,CAAC;IACD,IAAI,CAAC,GAAG,CAAC,CAAC;IACV,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,YAAY,CAAC,OAA8B;IAClD,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;IAC1D,OAAO,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;AAC5B,CAAC;AAED,SAAS,SAAS,CAAC,KAAa;IAC9B,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,UAAU,CAAC;IACnC,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,MAAM,CAAC;IAC/B,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,QAAQ,CAAC;IACjC,OAAO,KAAK,CAAC;AACf,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,qBAAqB,CAAC,IAAc;IAClD,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;;;;;;CAuBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IACnF,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,GAAG,CAAC;IAEpH,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACxB,OAAO,CAAC,KAAK,CAAC,qBAAqB,MAAM,EAAE,CAAC,CAAC;QAC7C,OAAO;IACT,CAAC;IAED,IAAI,KAAe,CAAC;IACpB,IAAI,CAAC;QACH,WAAW,CAAC,MAAM,CAAC,CAAC;QACpB,KAAK,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACP,KAAK,GAAG,CAAC,MAAM,CAAC,CAAC;IACnB,CAAC;IAED,MAAM,MAAM,GAAgB,EAAE,CAAC;IAC/B,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,IAAI,OAAe,CAAC;QACpB,IAAI,CAAC;YACH,OAAO,GAAG,YAAY,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QACrC,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QACD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,MAAM,OAAO,GAAG,0BAA0B,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QAC3D,MAAM,KAAK,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;QACpC,MAAM,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS,CAAC,KAAK,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC;IACxE,CAAC;IAED,IAAI,QAAQ,GAAG,MAAM,CAAC;IACtB,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,KAAK,GAAG,CAAC,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC;QACpD,MAAM,MAAM,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACtC,IAAI,MAAM,IAAI,CAAC;YAAE,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,MAAM,CAAC,CAAC;IACzF,CAAC;IAED,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;IAE3C,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,YAAY,EAAE,KAAK,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAC9G,CAAC;IACJ,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,uCAAuC,KAAK,CAAC,MAAM,QAAQ,CAAC,CAAC;QACzE,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;QAE5C,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,GAAG,CAAC,gDAAgD,CAAC,CAAC;YAC9D,OAAO;QACT,CAAC;QAED,KAAK,MAAM,CAAC,IAAI,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;YACtC,MAAM,IAAI,GACR,CAAC,CAAC,SAAS,KAAK,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,KAAK,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;YAC7G,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,IAAI,CAAC,CAAC,IAAI,aAAa,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC,SAAS,GAAG,CAAC,CAAC;YAChF,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,CAAC;gBAC1B,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,WAAW,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAChF,CAAC;QACH,CAAC;QAED,IAAI,QAAQ,CAAC,MAAM,GAAG,EAAE;YAAE,OAAO,CAAC,GAAG,CAAC,eAAe,QAAQ,CAAC,MAAM,GAAG,EAAE,aAAa,CAAC,CAAC;QAExF,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;QAC7F,OAAO,CAAC,GAAG,CAAC,6BAA6B,QAAQ,MAAM,CAAC,CAAC;QACzD,OAAO,CAAC,GAAG,CACT,iBAAiB,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,UAAU,CAAC,CAAC,MAAM,YAAY,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,MAAM,CAAC,CAAC,MAAM,cAAc,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,MAAM,WAAW,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,KAAK,CAAC,CAAC,MAAM,IAAI,CACpR,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/commands/iac-lint.d.ts

@@ -0,0 +1,8 @@
+/**
+ * IaC lint — dedicated linting for Dockerfiles, Kubernetes
+ * manifests, and Helm charts for security misconfigurations.
+ *
+ * All analysis local.
+ */
+export declare function runIacLint(argv: string[]): void;
+//# sourceMappingURL=iac-lint.d.ts.map

package/dist/commands/iac-lint.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"iac-lint.d.ts","sourceRoot":"","sources":["../../src/commands/iac-lint.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAmOH,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAqH/C"}

package/dist/commands/iac-lint.js

@@ -0,0 +1,313 @@
+/**
+ * IaC lint — dedicated linting for Dockerfiles, Kubernetes
+ * manifests, and Helm charts for security misconfigurations.
+ *
+ * All analysis local.
+ */
+import { existsSync, readFileSync, readdirSync } from "fs";
+import { join, basename } from "path";
+// ─── Rules ──────────────────────────────────────────────────────────────────
+const IAC_RULES = [
+    // Dockerfile rules
+    {
+        id: "dockerfile-run-as-root",
+        type: "dockerfile",
+        severity: "high",
+        check: (_content, lines) => {
+            const hasUser = lines.some((l) => /^USER\s+(?!root)/i.test(l.trim()));
+            if (!hasUser)
+                return [{ line: 1, message: "No USER directive — container runs as root" }];
+            return [];
+        },
+        recommendation: "Add USER directive with a non-root user",
+    },
+    {
+        id: "dockerfile-latest-tag",
+        type: "dockerfile",
+        severity: "medium",
+        check: (_content, lines) => {
+            const results = [];
+            for (let i = 0; i < lines.length; i++) {
+                if (/^FROM\s+\S+:latest/i.test(lines[i].trim()) ||
+                    (/^FROM\s+\S+$/i.test(lines[i].trim()) && !lines[i].includes(":"))) {
+                    results.push({ line: i + 1, message: "Using 'latest' or untagged base image" });
+                }
+            }
+            return results;
+        },
+        recommendation: "Pin base image to a specific version tag",
+    },
+    {
+        id: "dockerfile-copy-chown",
+        type: "dockerfile",
+        severity: "low",
+        check: (_content, lines) => {
+            const results = [];
+            for (let i = 0; i < lines.length; i++) {
+                if (/^COPY\s/i.test(lines[i].trim()) && !lines[i].includes("--chown")) {
+                    results.push({ line: i + 1, message: "COPY without --chown — files owned by root" });
+                }
+            }
+            return results;
+        },
+        recommendation: "Use COPY --chown=user:group to set proper ownership",
+    },
+    {
+        id: "dockerfile-add-url",
+        type: "dockerfile",
+        severity: "high",
+        check: (_content, lines) => {
+            const results = [];
+            for (let i = 0; i < lines.length; i++) {
+                if (/^ADD\s+https?:\/\//i.test(lines[i].trim())) {
+                    results.push({ line: i + 1, message: "ADD with URL — use COPY + RUN curl instead" });
+                }
+            }
+            return results;
+        },
+        recommendation: "Replace ADD with RUN curl/wget + COPY for better security",
+    },
+    {
+        id: "dockerfile-env-secret",
+        type: "dockerfile",
+        severity: "critical",
+        check: (_content, lines) => {
+            const results = [];
+            for (let i = 0; i < lines.length; i++) {
+                if (/^ENV\s+.*(?:PASSWORD|SECRET|API_KEY|TOKEN)\s*=/i.test(lines[i].trim())) {
+                    results.push({ line: i + 1, message: "Secret exposed in ENV directive" });
+                }
+            }
+            return results;
+        },
+        recommendation: "Use Docker secrets or runtime environment variables instead",
+    },
+    // Kubernetes rules
+    {
+        id: "k8s-privileged",
+        type: "kubernetes",
+        severity: "critical",
+        check: (content) => {
+            const results = [];
+            const lines = content.split("\n");
+            for (let i = 0; i < lines.length; i++) {
+                if (/privileged:\s*true/i.test(lines[i])) {
+                    results.push({ line: i + 1, message: "Container running in privileged mode" });
+                }
+            }
+            return results;
+        },
+        recommendation: "Set privileged: false and use specific capabilities instead",
+    },
+    {
+        id: "k8s-host-network",
+        type: "kubernetes",
+        severity: "high",
+        check: (content) => {
+            const results = [];
+            const lines = content.split("\n");
+            for (let i = 0; i < lines.length; i++) {
+                if (/hostNetwork:\s*true/i.test(lines[i])) {
+                    results.push({ line: i + 1, message: "Pod using host network namespace" });
+                }
+            }
+            return results;
+        },
+        recommendation: "Disable hostNetwork unless absolutely required",
+    },
+    {
+        id: "k8s-no-resource-limits",
+        type: "kubernetes",
+        severity: "medium",
+        check: (content) => {
+            if (/kind:\s*(?:Deployment|Pod|StatefulSet|DaemonSet)/i.test(content) &&
+                !/resources:\s*\n\s+limits:/i.test(content)) {
+                return [{ line: 1, message: "No resource limits defined" }];
+            }
+            return [];
+        },
+        recommendation: "Add resources.limits for CPU and memory",
+    },
+    {
+        id: "k8s-run-as-root",
+        type: "kubernetes",
+        severity: "high",
+        check: (content) => {
+            const results = [];
+            const lines = content.split("\n");
+            for (let i = 0; i < lines.length; i++) {
+                if (/runAsUser:\s*0/i.test(lines[i])) {
+                    results.push({ line: i + 1, message: "Container running as root (UID 0)" });
+                }
+            }
+            return results;
+        },
+        recommendation: "Set runAsUser to a non-zero UID and runAsNonRoot: true",
+    },
+    {
+        id: "k8s-no-readiness-probe",
+        type: "kubernetes",
+        severity: "low",
+        check: (content) => {
+            if (/kind:\s*Deployment/i.test(content) && !/readinessProbe:/i.test(content)) {
+                return [{ line: 1, message: "No readiness probe configured" }];
+            }
+            return [];
+        },
+        recommendation: "Add readinessProbe for proper traffic management",
+    },
+];
+// ─── Scanner ────────────────────────────────────────────────────────────────
+function detectFileType(filePath, content) {
+    const name = basename(filePath).toLowerCase();
+    if (name === "dockerfile" || name.startsWith("dockerfile."))
+        return "dockerfile";
+    if (name.endsWith(".dockerfile"))
+        return "dockerfile";
+    if (/kind:\s*(?:Deployment|Service|Pod|StatefulSet|DaemonSet|ConfigMap|Secret|Ingress)/i.test(content))
+        return "kubernetes";
+    if (/apiVersion:\s*v\d|apiVersion:\s*apps\//i.test(content))
+        return "kubernetes";
+    if (name === "chart.yaml" || name === "values.yaml")
+        return "helm";
+    return null;
+}
+function collectIacFiles(dir) {
+    const result = [];
+    const skipDirs = new Set(["node_modules", ".git", "dist", "build"]);
+    function walk(d) {
+        let entries;
+        try {
+            entries = readdirSync(d);
+        }
+        catch {
+            return;
+        }
+        for (const name of entries) {
+            if (skipDirs.has(name))
+                continue;
+            const full = join(d, name);
+            try {
+                const sub = readdirSync(full);
+                void sub;
+                walk(full);
+            }
+            catch {
+                const lower = name.toLowerCase();
+                if (lower.includes("dockerfile") || lower.endsWith(".yaml") || lower.endsWith(".yml")) {
+                    result.push(full);
+                }
+            }
+        }
+    }
+    walk(dir);
+    return result;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runIacLint(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges iac-lint — Lint Dockerfiles, Kubernetes manifests, and Helm charts
+
+Usage:
+  judges iac-lint [dir]
+  judges iac-lint Dockerfile
+  judges iac-lint k8s/ --severity critical,high
+
+Options:
+  --severity <levels>   Filter by severity (comma-separated)
+  --rules               List all IaC lint rules
+  --format json         JSON output
+  --help, -h            Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    // List rules
+    if (argv.includes("--rules")) {
+        if (format === "json") {
+            console.log(JSON.stringify(IAC_RULES.map(({ check: _c, ...rest }) => rest), null, 2));
+        }
+        else {
+            console.log(`\n  IaC Lint Rules (${IAC_RULES.length})\n  ──────────────────────────`);
+            for (const r of IAC_RULES) {
+                console.log(`    [${r.severity.toUpperCase().padEnd(8)}] ${r.id.padEnd(30)} (${r.type})`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    const target = argv.find((a) => !a.startsWith("--") && !argv[argv.indexOf(a) - 1]?.startsWith("--")) || ".";
+    const sevFilter = argv.find((_a, i) => argv[i - 1] === "--severity");
+    // Collect files
+    let files;
+    if (existsSync(target)) {
+        try {
+            readdirSync(target);
+            files = collectIacFiles(target);
+        }
+        catch {
+            files = [target];
+        }
+    }
+    else {
+        console.error(`  Path not found: ${target}`);
+        return;
+    }
+    let findings = [];
+    for (const file of files) {
+        let content;
+        try {
+            content = readFileSync(file, "utf-8");
+        }
+        catch {
+            continue;
+        }
+        const fileType = detectFileType(file, content);
+        if (!fileType)
+            continue;
+        const applicableRules = IAC_RULES.filter((r) => r.type === fileType);
+        const lines = content.split("\n");
+        for (const rule of applicableRules) {
+            const matches = rule.check(content, lines);
+            for (const m of matches) {
+                findings.push({
+                    file,
+                    line: m.line,
+                    ruleId: rule.id,
+                    severity: rule.severity,
+                    message: m.message,
+                    recommendation: rule.recommendation,
+                });
+            }
+        }
+    }
+    if (sevFilter) {
+        const allowed = sevFilter.split(",");
+        findings = findings.filter((f) => allowed.includes(f.severity));
+    }
+    if (format === "json") {
+        console.log(JSON.stringify({ findings, scannedFiles: files.length, timestamp: new Date().toISOString() }, null, 2));
+    }
+    else {
+        console.log(`\n  IaC Lint — ${files.length} files scanned`);
+        console.log(`  Found: ${findings.length} issues\n  ──────────────────────────`);
+        if (findings.length === 0) {
+            console.log(`    ✅ No IaC issues detected\n`);
+            return;
+        }
+        for (const sev of ["critical", "high", "medium", "low"]) {
+            const items = findings.filter((f) => f.severity === sev);
+            if (items.length === 0)
+                continue;
+            console.log(`\n    ${sev.toUpperCase()} (${items.length})`);
+            for (const f of items) {
+                console.log(`      ${f.file}:${f.line} — ${f.ruleId}`);
+                console.log(`        ${f.message}`);
+                console.log(`        → ${f.recommendation}`);
+            }
+        }
+        console.log("");
+    }
+}
+//# sourceMappingURL=iac-lint.js.map