@kevinrabun/judges 3.49.0 → 3.51.0

package/dist/commands/secret-scan.js

@@ -0,0 +1,245 @@
+/**
+ * Secret scan — entropy-based and regex-based secret detection
+ * in source files. Optimized for CI gates and pre-commit hooks.
+ *
+ * All analysis local — no external services.
+ */
+import { existsSync, readFileSync, readdirSync, mkdirSync, writeFileSync } from "fs";
+import { join, extname } from "path";
+// ─── Patterns ───────────────────────────────────────────────────────────────
+const SECRET_PATTERNS = [
+    { id: "aws-access-key", name: "AWS Access Key", regex: /AKIA[0-9A-Z]{16}/, severity: "critical" },
+    {
+        id: "aws-secret-key",
+        name: "AWS Secret Key",
+        regex: /(?:aws_secret_access_key|AWS_SECRET_ACCESS_KEY)\s*[=:]\s*['"]?([A-Za-z0-9/+=]{40})/,
+        severity: "critical",
+    },
+    {
+        id: "github-token",
+        name: "GitHub Token",
+        regex: /ghp_[A-Za-z0-9]{36}|github_pat_[A-Za-z0-9_]{82}/,
+        severity: "critical",
+    },
+    { id: "github-oauth", name: "GitHub OAuth", regex: /gho_[A-Za-z0-9]{36}/, severity: "critical" },
+    {
+        id: "generic-api-key",
+        name: "Generic API Key",
+        regex: /(?:api[_-]?key|apikey)\s*[=:]\s*['"]([A-Za-z0-9_-]{20,})['"]/,
+        severity: "high",
+    },
+    {
+        id: "generic-secret",
+        name: "Generic Secret",
+        regex: /(?:secret|password|passwd|pwd)\s*[=:]\s*['"]([^'"]{8,})['"]/,
+        severity: "high",
+    },
+    {
+        id: "private-key",
+        name: "Private Key",
+        regex: /-----BEGIN (?:RSA |EC |DSA )?PRIVATE KEY-----/,
+        severity: "critical",
+    },
+    {
+        id: "gcp-service-account",
+        name: "GCP Service Account",
+        regex: /"type"\s*:\s*"service_account"/,
+        severity: "critical",
+    },
+    { id: "stripe-key", name: "Stripe API Key", regex: /sk_live_[A-Za-z0-9]{24,}/, severity: "critical" },
+    { id: "stripe-test", name: "Stripe Test Key", regex: /sk_test_[A-Za-z0-9]{24,}/, severity: "medium" },
+    {
+        id: "slack-webhook",
+        name: "Slack Webhook",
+        regex: /hooks\.slack\.com\/services\/T[A-Z0-9]+\/B[A-Z0-9]+\/[A-Za-z0-9]+/,
+        severity: "high",
+    },
+    { id: "slack-token", name: "Slack Token", regex: /xox[bprs]-[A-Za-z0-9-]+/, severity: "high" },
+    { id: "npm-token", name: "NPM Token", regex: /npm_[A-Za-z0-9]{36}/, severity: "critical" },
+    {
+        id: "sendgrid-key",
+        name: "SendGrid API Key",
+        regex: /SG\.[A-Za-z0-9_-]{22}\.[A-Za-z0-9_-]{43}/,
+        severity: "critical",
+    },
+    {
+        id: "jwt-token",
+        name: "JWT Token",
+        regex: /eyJ[A-Za-z0-9_-]{10,}\.eyJ[A-Za-z0-9_-]{10,}\.[A-Za-z0-9_-]{10,}/,
+        severity: "high",
+    },
+    {
+        id: "connection-string",
+        name: "Database Connection String",
+        regex: /(?:mongodb|postgres|mysql|redis):\/\/[^:]+:[^@]+@[^\s'"]+/,
+        severity: "critical",
+    },
+];
+// ─── Scanner ────────────────────────────────────────────────────────────────
+const SKIP_EXTENSIONS = new Set([
+    ".png",
+    ".jpg",
+    ".jpeg",
+    ".gif",
+    ".ico",
+    ".svg",
+    ".woff",
+    ".woff2",
+    ".ttf",
+    ".eot",
+    ".zip",
+    ".tar",
+    ".gz",
+]);
+const SKIP_DIRS = new Set(["node_modules", ".git", "dist", "build", "coverage", ".next"]);
+function collectFiles(dir, maxFiles) {
+    const result = [];
+    function walk(d) {
+        if (result.length >= maxFiles)
+            return;
+        let entries;
+        try {
+            entries = readdirSync(d);
+        }
+        catch {
+            return;
+        }
+        for (const name of entries) {
+            if (result.length >= maxFiles)
+                return;
+            if (SKIP_DIRS.has(name))
+                continue;
+            const full = join(d, name);
+            if (SKIP_EXTENSIONS.has(extname(name)))
+                continue;
+            try {
+                const sub = readdirSync(full);
+                void sub;
+                walk(full);
+            }
+            catch {
+                result.push(full);
+            }
+        }
+    }
+    walk(dir);
+    return result;
+}
+function maskSecret(value) {
+    if (value.length <= 8)
+        return "****";
+    return value.substring(0, 4) + "****" + value.substring(value.length - 4);
+}
+function scanFile(filePath) {
+    let content;
+    try {
+        content = readFileSync(filePath, "utf-8");
+    }
+    catch {
+        return [];
+    }
+    // Skip binary-looking files
+    if (content.includes("\0"))
+        return [];
+    const lines = content.split("\n");
+    const findings = [];
+    for (let i = 0; i < lines.length; i++) {
+        const line = lines[i];
+        // Skip comments that are likely documentation
+        if (/^\s*(?:\/\/|#|\/\*|\*)\s*(?:example|sample|placeholder|todo|fixme)/i.test(line))
+            continue;
+        for (const pattern of SECRET_PATTERNS) {
+            const match = pattern.regex.exec(line);
+            if (match) {
+                findings.push({
+                    file: filePath,
+                    line: i + 1,
+                    patternId: pattern.id,
+                    patternName: pattern.name,
+                    severity: pattern.severity,
+                    snippet: line.trim().substring(0, 80),
+                    masked: maskSecret(match[0]),
+                });
+            }
+        }
+    }
+    return findings;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+const STORE = ".judges-secret-scan";
+export function runSecretScan(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges secret-scan — Detect secrets and credentials in source code
+
+Usage:
+  judges secret-scan [dir]
+  judges secret-scan src/ --severity critical
+  judges secret-scan --patterns
+  judges secret-scan --save
+
+Options:
+  --severity <level>    Filter by severity (critical, high, medium)
+  --patterns            List all secret detection patterns
+  --save                Save report to ${STORE}/
+  --format json         JSON output
+  --help, -h            Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    // List patterns
+    if (argv.includes("--patterns")) {
+        if (format === "json") {
+            console.log(JSON.stringify(SECRET_PATTERNS.map(({ regex: _r, ...rest }) => rest), null, 2));
+        }
+        else {
+            console.log(`\n  Secret Patterns (${SECRET_PATTERNS.length})\n  ──────────────────────────`);
+            for (const p of SECRET_PATTERNS) {
+                console.log(`    [${p.severity.toUpperCase().padEnd(8)}] ${p.id.padEnd(25)} ${p.name}`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    const scanDir = argv.find((a) => !a.startsWith("--") && !argv[argv.indexOf(a) - 1]?.startsWith("--")) || ".";
+    const sevFilter = argv.find((_a, i) => argv[i - 1] === "--severity");
+    const files = collectFiles(scanDir, 1000);
+    let findings = [];
+    for (const file of files)
+        findings.push(...scanFile(file));
+    if (sevFilter)
+        findings = findings.filter((f) => f.severity === sevFilter);
+    const report = { findings, scannedFiles: files.length, timestamp: new Date().toISOString() };
+    if (argv.includes("--save")) {
+        if (!existsSync(STORE))
+            mkdirSync(STORE, { recursive: true });
+        writeFileSync(join(STORE, "secret-report.json"), JSON.stringify(report, null, 2));
+        console.log(`  Report saved to ${STORE}/secret-report.json`);
+    }
+    if (format === "json") {
+        console.log(JSON.stringify(report, null, 2));
+    }
+    else {
+        console.log(`\n  Secret Scan — ${report.scannedFiles} files scanned`);
+        console.log(`  Found: ${findings.length} potential secrets\n  ──────────────────────────`);
+        if (findings.length === 0) {
+            console.log(`    ✅ No secrets detected\n`);
+            return;
+        }
+        for (const sev of ["critical", "high", "medium"]) {
+            const items = findings.filter((f) => f.severity === sev);
+            if (items.length === 0)
+                continue;
+            console.log(`\n    ${sev.toUpperCase()} (${items.length})`);
+            for (const f of items.slice(0, 10)) {
+                console.log(`      ${f.file}:${f.line} — ${f.patternName}`);
+                console.log(`        ${f.masked}`);
+            }
+            if (items.length > 10)
+                console.log(`      ... and ${items.length - 10} more`);
+        }
+        console.log("");
+    }
+}
+//# sourceMappingURL=secret-scan.js.map

package/dist/commands/secret-scan.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"secret-scan.js","sourceRoot":"","sources":["../../src/commands/secret-scan.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACrF,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AA2BrC,+EAA+E;AAE/E,MAAM,eAAe,GAAoB;IACvC,EAAE,EAAE,EAAE,gBAAgB,EAAE,IAAI,EAAE,gBAAgB,EAAE,KAAK,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAU,EAAE;IACjG;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,oFAAoF;QAC3F,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,cAAc;QACpB,KAAK,EAAE,iDAAiD;QACxD,QAAQ,EAAE,UAAU;KACrB;IACD,EAAE,EAAE,EAAE,cAAc,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAU,EAAE;IAChG;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,KAAK,EAAE,8DAA8D;QACrE,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,6DAA6D;QACpE,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,+CAA+C;QACtD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,IAAI,EAAE,qBAAqB;QAC3B,KAAK,EAAE,gCAAgC;QACvC,QAAQ,EAAE,UAAU;KACrB;IACD,EAAE,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,gBAAgB,EAAE,KAAK,EAAE,0BAA0B,EAAE,QAAQ,EAAE,UAAU,EAAE;IACrG,EAAE,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,iBAAiB,EAAE,KAAK,EAAE,0BAA0B,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACrG;QACE,EAAE,EAAE,eAAe;QACnB,IAAI,EAAE,eAAe;QACrB,KAAK,EAAE,mEAAmE;QAC1E,QAAQ,EAAE,MAAM;KACjB;IACD,EAAE,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,aAAa,EAAE,KAAK,EAAE,yBAAyB,EAAE,QAAQ,EAAE,MAAM,EAAE;IAC9F,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAU,EAAE;IAC1F;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,kBAAkB;QACxB,KAAK,EAAE,0CAA0C;QACjD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,WAAW;QACf,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,kEAAkE;QACzE,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,4BAA4B;QAClC,KAAK,EAAE,2DAA2D;QAClE,QAAQ,EAAE,UAAU;KACrB;CACF,CAAC;AAEF,+EAA+E;AAE/E,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,MAAM;IACN,MAAM;IACN,OAAO;IACP,MAAM;IACN,MAAM;IACN,MAAM;IACN,OAAO;IACP,QAAQ;IACR,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,KAAK;CACN,CAAC,CAAC;AACH,MAAM,SAAS,GAAG,IAAI,GAAG,CAAC,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC;AAE1F,SAAS,YAAY,CAAC,GAAW,EAAE,QAAgB;IACjD,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,SAAS,IAAI,CAAC,CAAS;QACrB,IAAI,MAAM,CAAC,MAAM,IAAI,QAAQ;YAAE,OAAO;QACtC,IAAI,OAAiB,CAAC;QACtB,IAAI,CAAC;YACH,OAAO,GAAG,WAAW,CAAC,CAAC,CAAwB,CAAC;QAClD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QAED,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;YAC3B,IAAI,MAAM,CAAC,MAAM,IAAI,QAAQ;gBAAE,OAAO;YACtC,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC;gBAAE,SAAS;YAClC,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;YAC3B,IAAI,eAAe,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;gBAAE,SAAS;YACjD,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC;gBAC9B,KAAK,GAAG,CAAC;gBACT,IAAI,CAAC,IAAI,CAAC,CAAC;YACb,CAAC;YAAC,MAAM,CAAC;gBACP,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpB,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,CAAC,GAAG,CAAC,CAAC;IACV,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,UAAU,CAAC,KAAa;IAC/B,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IACrC,OAAO,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,MAAM,GAAG,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AAC5E,CAAC;AAED,SAAS,QAAQ,CAAC,QAAgB;IAChC,IAAI,OAAe,CAAC;IACpB,IAAI,CAAC;QACH,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,4BAA4B;IAC5B,IAAI,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC;QAAE,OAAO,EAAE,CAAC;IAEtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,MAAM,QAAQ,GAAoB,EAAE,CAAC;IAErC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACtB,8CAA8C;QAC9C,IAAI,qEAAqE,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,SAAS;QAE/F,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;YACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACvC,IAAI,KAAK,EAAE,CAAC;gBACV,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,GAAG,CAAC;oBACX,SAAS,EAAE,OAAO,CAAC,EAAE;oBACrB,WAAW,EAAE,OAAO,CAAC,IAAI;oBACzB,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,OAAO,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC;oBACrC,MAAM,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;iBAC7B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,+EAA+E;AAE/E,MAAM,KAAK,GAAG,qBAAqB,CAAC;AAEpC,MAAM,UAAU,aAAa,CAAC,IAAc;IAC1C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;yCAYyB,KAAK;;;CAG7C,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAE1F,gBAAgB;IAChB,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAChC,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CACZ,eAAe,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,CAAC,IAAI,CAAC,EACrD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,wBAAwB,eAAe,CAAC,MAAM,iCAAiC,CAAC,CAAC;YAC7F,KAAK,MAAM,CAAC,IAAI,eAAe,EAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;YAC1F,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,GAAG,CAAC;IACrH,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IAErF,MAAM,KAAK,GAAG,YAAY,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IAC1C,IAAI,QAAQ,GAAoB,EAAE,CAAC;IACnC,KAAK,MAAM,IAAI,IAAI,KAAK;QAAE,QAAQ,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC;IAE3D,IAAI,SAAS;QAAE,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC;IAE3E,MAAM,MAAM,GAAiB,EAAE,QAAQ,EAAE,YAAY,EAAE,KAAK,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC;IAE3G,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC;YAAE,SAAS,CAAC,KAAK,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC9D,aAAa,CAAC,IAAI,CAAC,KAAK,EAAE,oBAAoB,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAClF,OAAO,CAAC,GAAG,CAAC,qBAAqB,KAAK,qBAAqB,CAAC,CAAC;IAC/D,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,qBAAqB,MAAM,CAAC,YAAY,gBAAgB,CAAC,CAAC;QACtE,OAAO,CAAC,GAAG,CAAC,YAAY,QAAQ,CAAC,MAAM,kDAAkD,CAAC,CAAC;QAE3F,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;YAC3C,OAAO;QACT,CAAC;QAED,KAAK,MAAM,GAAG,IAAI,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,CAAC;YACjD,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,GAAG,CAAC,CAAC;YACzD,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;gBAAE,SAAS;YACjC,OAAO,CAAC,GAAG,CAAC,SAAS,GAAG,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC;YAC5D,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;gBACnC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;gBAC5D,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;YACrC,CAAC;YACD,IAAI,KAAK,CAAC,MAAM,GAAG,EAAE;gBAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,KAAK,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC,CAAC;QAChF,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/commands/test-suggest.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Test suggest — analyze AI-generated code and suggest specific
+ * test scenarios (edge cases, error paths, boundary conditions)
+ * that the code likely missed.
+ *
+ * All analysis local.
+ */
+export declare function runTestSuggest(argv: string[]): void;
+//# sourceMappingURL=test-suggest.d.ts.map

package/dist/commands/test-suggest.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-suggest.d.ts","sourceRoot":"","sources":["../../src/commands/test-suggest.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AA0MH,wBAAgB,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CA8FnD"}

package/dist/commands/test-suggest.js

@@ -0,0 +1,248 @@
+/**
+ * Test suggest — analyze AI-generated code and suggest specific
+ * test scenarios (edge cases, error paths, boundary conditions)
+ * that the code likely missed.
+ *
+ * All analysis local.
+ */
+import { existsSync, readFileSync } from "fs";
+// ─── Function extraction ────────────────────────────────────────────────────
+function extractFunctions(content, lines) {
+    const functions = [];
+    const fnPatterns = [
+        /(?:export\s+)?(?:async\s+)?function\s+(\w+)\s*\(([^)]*)\)/g,
+        /(?:const|let|var)\s+(\w+)\s*=\s*(?:async\s+)?(?:\(([^)]*)\)|(\w+))\s*=>/g,
+        /(\w+)\s*\(([^)]*)\)\s*(?::\s*\w+)?\s*{/g,
+    ];
+    for (const pattern of fnPatterns) {
+        pattern.lastIndex = 0;
+        let m;
+        while ((m = pattern.exec(content)) !== null) {
+            const lineIdx = content.substring(0, m.index).split("\n").length;
+            const name = m[1];
+            const params = (m[2] || m[3] || "")
+                .split(",")
+                .map((p) => p.trim())
+                .filter(Boolean);
+            // Extract rough function body
+            let braceCount = 0;
+            let bodyStart = -1;
+            let bodyEnd = -1;
+            for (let i = lineIdx - 1; i < lines.length; i++) {
+                if (lines[i].includes("{") && bodyStart === -1)
+                    bodyStart = i;
+                braceCount += (lines[i].match(/{/g) || []).length;
+                braceCount -= (lines[i].match(/}/g) || []).length;
+                if (bodyStart !== -1 && braceCount <= 0) {
+                    bodyEnd = i;
+                    break;
+                }
+            }
+            const body = bodyStart >= 0 && bodyEnd >= 0 ? lines.slice(bodyStart, bodyEnd + 1).join("\n") : "";
+            const hasReturn = /\breturn\b/.test(body);
+            const isAsync = /\basync\b/.test(m[0]);
+            functions.push({ name, line: lineIdx, params, hasReturn, isAsync, body });
+        }
+    }
+    // Deduplicate by name and line
+    const seen = new Set();
+    return functions.filter((f) => {
+        const key = `${f.name}:${f.line}`;
+        if (seen.has(key))
+            return false;
+        seen.add(key);
+        return true;
+    });
+}
+// ─── Test suggestion generators ─────────────────────────────────────────────
+function suggestTests(fn, _content) {
+    const suggestions = [];
+    // 1. Null/undefined parameter tests
+    for (const param of fn.params) {
+        const paramName = param.split(/[:=]/)[0].trim().replace(/[?!]/g, "");
+        if (paramName) {
+            suggestions.push({
+                category: "Null Input",
+                description: `Test ${fn.name}() with ${paramName} = null/undefined`,
+                priority: "high",
+                targetLine: fn.line,
+                testCode: `it("should handle null ${paramName}", () => { expect(() => ${fn.name}(${fn.params.map((p) => (p.split(/[:=]/)[0].trim() === paramName ? "null" : "'valid'")).join(", ")})).not.toThrow(); });`,
+            });
+        }
+    }
+    // 2. Empty input tests
+    if (fn.params.length > 0) {
+        suggestions.push({
+            category: "Empty Input",
+            description: `Test ${fn.name}() with empty string/array/object inputs`,
+            priority: "high",
+            targetLine: fn.line,
+        });
+    }
+    // 3. Error path tests
+    if (/\bthrow\b/.test(fn.body)) {
+        suggestions.push({
+            category: "Error Path",
+            description: `Test error throwing conditions in ${fn.name}()`,
+            priority: "high",
+            targetLine: fn.line,
+        });
+    }
+    // 4. Async error handling
+    if (fn.isAsync) {
+        suggestions.push({
+            category: "Async Error",
+            description: `Test ${fn.name}() with rejected promises and timeout scenarios`,
+            priority: "high",
+            targetLine: fn.line,
+        });
+        if (/\bawait\b/.test(fn.body) && !/\btry\s*{/.test(fn.body)) {
+            suggestions.push({
+                category: "Unhandled Rejection",
+                description: `${fn.name}() has await without try/catch — test rejection behavior`,
+                priority: "high",
+                targetLine: fn.line,
+            });
+        }
+    }
+    // 5. Boundary conditions
+    if (/\b(?:length|size|count|index|i|j)\b/.test(fn.body)) {
+        suggestions.push({
+            category: "Boundary",
+            description: `Test ${fn.name}() with boundary values (0, -1, MAX_SAFE_INTEGER, empty collection)`,
+            priority: "medium",
+            targetLine: fn.line,
+        });
+    }
+    // 6. Type coercion
+    if (/\b(?:parseInt|parseFloat|Number\(|String\(|\.toString\()/.test(fn.body)) {
+        suggestions.push({
+            category: "Type Coercion",
+            description: `Test ${fn.name}() with unexpected types (NaN, Infinity, "not a number")`,
+            priority: "medium",
+            targetLine: fn.line,
+        });
+    }
+    // 7. Regular expression edge cases
+    if (/new\s+RegExp|\/[^/]+\/[gimsuy]*/.test(fn.body)) {
+        suggestions.push({
+            category: "Regex Edge Case",
+            description: `Test ${fn.name}() with regex edge cases (empty string, special characters, very long input)`,
+            priority: "medium",
+            targetLine: fn.line,
+        });
+    }
+    // 8. File/IO operations
+    if (/\bread(?:File|dir)|write(?:File)|open|close|exists/.test(fn.body)) {
+        suggestions.push({
+            category: "File IO",
+            description: `Test ${fn.name}() with missing files, permission errors, and empty files`,
+            priority: "high",
+            targetLine: fn.line,
+        });
+    }
+    // 9. State mutation
+    if (/\.push\(|\.splice\(|\.pop\(|\.shift\(|delete\s/.test(fn.body)) {
+        suggestions.push({
+            category: "State Mutation",
+            description: `Test ${fn.name}() for unintended side effects on input data`,
+            priority: "medium",
+            targetLine: fn.line,
+        });
+    }
+    // 10. Return value consistency
+    if (fn.hasReturn) {
+        const returnCount = (fn.body.match(/\breturn\b/g) || []).length;
+        if (returnCount > 2) {
+            suggestions.push({
+                category: "Return Consistency",
+                description: `${fn.name}() has ${returnCount} return paths — test each returns consistent type`,
+                priority: "medium",
+                targetLine: fn.line,
+            });
+        }
+    }
+    return suggestions;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runTestSuggest(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges test-suggest — Suggest test scenarios for AI-generated code
+
+Usage:
+  judges test-suggest <file>
+  judges test-suggest src/service.ts --priority high
+  judges test-suggest handler.js --format json
+
+Options:
+  --priority <level>  Filter by priority (high, medium, low)
+  --function <name>   Focus on a specific function
+  --format json       JSON output
+  --help, -h          Show this help
+
+Categories: Null Input, Empty Input, Error Path, Async Error,
+Boundary, Type Coercion, Regex Edge Case, File IO,
+State Mutation, Return Consistency
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const priorityFilter = argv.find((_a, i) => argv[i - 1] === "--priority");
+    const fnFilter = argv.find((_a, i) => argv[i - 1] === "--function");
+    const target = argv.find((a) => !a.startsWith("--") && !argv[argv.indexOf(a) - 1]?.startsWith("--"));
+    if (!target || !existsSync(target)) {
+        console.error("  Please provide a valid source file");
+        return;
+    }
+    let content;
+    try {
+        content = readFileSync(target, "utf-8");
+    }
+    catch {
+        console.error(`  Cannot read: ${target}`);
+        return;
+    }
+    const lines = content.split("\n");
+    let functions = extractFunctions(content, lines);
+    if (fnFilter) {
+        functions = functions.filter((f) => f.name === fnFilter);
+        if (functions.length === 0) {
+            console.error(`  Function not found: ${fnFilter}`);
+            return;
+        }
+    }
+    let allSuggestions = [];
+    for (const fn of functions) {
+        const suggestions = suggestTests(fn, content);
+        allSuggestions.push(...suggestions.map((s) => ({ ...s, functionName: fn.name })));
+    }
+    if (priorityFilter) {
+        allSuggestions = allSuggestions.filter((s) => s.priority === priorityFilter);
+    }
+    if (format === "json") {
+        console.log(JSON.stringify({ file: target, functions: functions.length, suggestions: allSuggestions, timestamp: new Date().toISOString() }, null, 2));
+    }
+    else {
+        console.log(`\n  Test Suggestions for ${target}`);
+        console.log(`  Functions: ${functions.length} | Suggestions: ${allSuggestions.length}\n  ──────────────────────────`);
+        if (allSuggestions.length === 0) {
+            console.log(`    No test suggestions generated.\n`);
+            return;
+        }
+        for (const priority of ["high", "medium", "low"]) {
+            const items = allSuggestions.filter((s) => s.priority === priority);
+            if (items.length === 0)
+                continue;
+            console.log(`\n    ${priority.toUpperCase()} PRIORITY (${items.length})`);
+            for (const s of items) {
+                console.log(`      [${s.category}] ${s.functionName}() — ${s.description}`);
+                if (s.testCode) {
+                    console.log(`        Code: ${s.testCode.substring(0, 100)}${s.testCode.length > 100 ? "..." : ""}`);
+                }
+            }
+        }
+        console.log("");
+    }
+}
+//# sourceMappingURL=test-suggest.js.map

package/dist/commands/test-suggest.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-suggest.js","sourceRoot":"","sources":["../../src/commands/test-suggest.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,IAAI,CAAC;AAqB9C,+EAA+E;AAE/E,SAAS,gBAAgB,CAAC,OAAe,EAAE,KAAe;IACxD,MAAM,SAAS,GAAmB,EAAE,CAAC;IACrC,MAAM,UAAU,GAAG;QACjB,4DAA4D;QAC5D,0EAA0E;QAC1E,yCAAyC;KAC1C,CAAC;IAEF,KAAK,MAAM,OAAO,IAAI,UAAU,EAAE,CAAC;QACjC,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;QACtB,IAAI,CAAyB,CAAC;QAC9B,OAAO,CAAC,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC5C,MAAM,OAAO,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;YACjE,MAAM,IAAI,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;YAClB,MAAM,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;iBAChC,KAAK,CAAC,GAAG,CAAC;iBACV,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;iBACpB,MAAM,CAAC,OAAO,CAAC,CAAC;YAEnB,8BAA8B;YAC9B,IAAI,UAAU,GAAG,CAAC,CAAC;YACnB,IAAI,SAAS,GAAG,CAAC,CAAC,CAAC;YACnB,IAAI,OAAO,GAAG,CAAC,CAAC,CAAC;YACjB,KAAK,IAAI,CAAC,GAAG,OAAO,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBAChD,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,SAAS,KAAK,CAAC,CAAC;oBAAE,SAAS,GAAG,CAAC,CAAC;gBAC9D,UAAU,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;gBAClD,UAAU,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;gBAClD,IAAI,SAAS,KAAK,CAAC,CAAC,IAAI,UAAU,IAAI,CAAC,EAAE,CAAC;oBACxC,OAAO,GAAG,CAAC,CAAC;oBACZ,MAAM;gBACR,CAAC;YACH,CAAC;YAED,MAAM,IAAI,GAAG,SAAS,IAAI,CAAC,IAAI,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAClG,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1C,MAAM,OAAO,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAEvC,SAAS,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;QAC5E,CAAC;IACH,CAAC;IAED,+BAA+B;IAC/B,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAC/B,OAAO,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;QAC5B,MAAM,GAAG,GAAG,GAAG,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC;QAClC,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QAChC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACd,OAAO,IAAI,CAAC;IACd,CAAC,CAAC,CAAC;AACL,CAAC;AAED,+EAA+E;AAE/E,SAAS,YAAY,CAAC,EAAgB,EAAE,QAAgB;IACtD,MAAM,WAAW,GAAqB,EAAE,CAAC;IAEzC,oCAAoC;IACpC,KAAK,MAAM,KAAK,IAAI,EAAE,CAAC,MAAM,EAAE,CAAC;QAC9B,MAAM,SAAS,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QACrE,IAAI,SAAS,EAAE,CAAC;YACd,WAAW,CAAC,IAAI,CAAC;gBACf,QAAQ,EAAE,YAAY;gBACtB,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,WAAW,SAAS,mBAAmB;gBACnE,QAAQ,EAAE,MAAM;gBAChB,UAAU,EAAE,EAAE,CAAC,IAAI;gBACnB,QAAQ,EAAE,0BAA0B,SAAS,2BAA2B,EAAE,CAAC,IAAI,IAAI,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,uBAAuB;aAC1M,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,uBAAuB;IACvB,IAAI,EAAE,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzB,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,aAAa;YACvB,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,0CAA0C;YACtE,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;IACL,CAAC;IAED,sBAAsB;IACtB,IAAI,WAAW,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;QAC9B,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,YAAY;YACtB,WAAW,EAAE,qCAAqC,EAAE,CAAC,IAAI,IAAI;YAC7D,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;IACL,CAAC;IAED,0BAA0B;IAC1B,IAAI,EAAE,CAAC,OAAO,EAAE,CAAC;QACf,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,aAAa;YACvB,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,iDAAiD;YAC7E,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;QAEH,IAAI,WAAW,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5D,WAAW,CAAC,IAAI,CAAC;gBACf,QAAQ,EAAE,qBAAqB;gBAC/B,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,0DAA0D;gBACjF,QAAQ,EAAE,MAAM;gBAChB,UAAU,EAAE,EAAE,CAAC,IAAI;aACpB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,yBAAyB;IACzB,IAAI,qCAAqC,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;QACxD,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,UAAU;YACpB,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,qEAAqE;YACjG,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;IACL,CAAC;IAED,mBAAmB;IACnB,IAAI,0DAA0D,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7E,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,eAAe;YACzB,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,0DAA0D;YACtF,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;IACL,CAAC;IAED,mCAAmC;IACnC,IAAI,iCAAiC,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;QACpD,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,iBAAiB;YAC3B,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,8EAA8E;YAC1G,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;IACL,CAAC;IAED,wBAAwB;IACxB,IAAI,oDAAoD,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;QACvE,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,SAAS;YACnB,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,2DAA2D;YACvF,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;IACL,CAAC;IAED,oBAAoB;IACpB,IAAI,gDAAgD,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;QACnE,WAAW,CAAC,IAAI,CAAC;YACf,QAAQ,EAAE,gBAAgB;YAC1B,WAAW,EAAE,QAAQ,EAAE,CAAC,IAAI,8CAA8C;YAC1E,QAAQ,EAAE,QAAQ;YAClB,UAAU,EAAE,EAAE,CAAC,IAAI;SACpB,CAAC,CAAC;IACL,CAAC;IAED,+BAA+B;IAC/B,IAAI,EAAE,CAAC,SAAS,EAAE,CAAC;QACjB,MAAM,WAAW,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;QAChE,IAAI,WAAW,GAAG,CAAC,EAAE,CAAC;YACpB,WAAW,CAAC,IAAI,CAAC;gBACf,QAAQ,EAAE,oBAAoB;gBAC9B,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI,UAAU,WAAW,mDAAmD;gBAC/F,QAAQ,EAAE,QAAQ;gBAClB,UAAU,EAAE,EAAE,CAAC,IAAI;aACpB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,cAAc,CAAC,IAAc;IAC3C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;CAiBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,cAAc,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IAC1F,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,YAAY,CAAC,CAAC;IACpF,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;IAE7G,IAAI,CAAC,MAAM,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACnC,OAAO,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;QACtD,OAAO;IACT,CAAC;IAED,IAAI,OAAe,CAAC;IACpB,IAAI,CAAC;QACH,OAAO,GAAG,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC1C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,kBAAkB,MAAM,EAAE,CAAC,CAAC;QAC1C,OAAO;IACT,CAAC;IAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,IAAI,SAAS,GAAG,gBAAgB,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IAEjD,IAAI,QAAQ,EAAE,CAAC;QACb,SAAS,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC;QACzD,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3B,OAAO,CAAC,KAAK,CAAC,yBAAyB,QAAQ,EAAE,CAAC,CAAC;YACnD,OAAO;QACT,CAAC;IACH,CAAC;IAED,IAAI,cAAc,GAAqD,EAAE,CAAC;IAC1E,KAAK,MAAM,EAAE,IAAI,SAAS,EAAE,CAAC;QAC3B,MAAM,WAAW,GAAG,YAAY,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QAC9C,cAAc,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,YAAY,EAAE,EAAE,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IACpF,CAAC;IAED,IAAI,cAAc,EAAE,CAAC;QACnB,cAAc,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,cAAc,CAAC,CAAC;IAC/E,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CACZ,EAAE,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,CAAC,MAAM,EAAE,WAAW,EAAE,cAAc,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,EAC/G,IAAI,EACJ,CAAC,CACF,CACF,CAAC;IACJ,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,4BAA4B,MAAM,EAAE,CAAC,CAAC;QAClD,OAAO,CAAC,GAAG,CACT,gBAAgB,SAAS,CAAC,MAAM,mBAAmB,cAAc,CAAC,MAAM,gCAAgC,CACzG,CAAC;QAEF,IAAI,cAAc,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAChC,OAAO,CAAC,GAAG,CAAC,sCAAsC,CAAC,CAAC;YACpD,OAAO;QACT,CAAC;QAED,KAAK,MAAM,QAAQ,IAAI,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,EAAE,CAAC;YACjD,MAAM,KAAK,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;YACpE,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;gBAAE,SAAS;YACjC,OAAO,CAAC,GAAG,CAAC,SAAS,QAAQ,CAAC,WAAW,EAAE,cAAc,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC;YAC1E,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;gBACtB,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,YAAY,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;gBAC5E,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC;oBACf,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACtG,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/commands/vendor-lock-detect.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Vendor lock detect — scan code for vendor-specific APIs and SDKs
+ * commonly embedded by AI models. Flag portability risks.
+ *
+ * All analysis local.
+ */
+export declare function runVendorLockDetect(argv: string[]): void;
+//# sourceMappingURL=vendor-lock-detect.d.ts.map

package/dist/commands/vendor-lock-detect.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vendor-lock-detect.d.ts","sourceRoot":"","sources":["../../src/commands/vendor-lock-detect.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AA8MH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAwHxD"}