@kevinrabun/judges 3.70.0 → 3.72.0

package/dist/commands/finding-auto-fix.js

@@ -0,0 +1,189 @@
+/**
+ * Finding-auto-fix — Auto-generate fix suggestions for common finding patterns.
+ */
+import { readFileSync, writeFileSync, existsSync, mkdirSync } from "fs";
+import { join, dirname } from "path";
+// ─── Fix Patterns ───────────────────────────────────────────────────────────
+const FIX_PATTERNS = [
+    {
+        match: /sql.?inject/i,
+        description: "Use parameterized queries instead of string concatenation",
+        snippet: "// Before: db.query(`SELECT * FROM users WHERE id = ${id}`)\n// After:  db.query('SELECT * FROM users WHERE id = ?', [id])",
+        confidence: "high",
+    },
+    {
+        match: /xss|cross.?site/i,
+        description: "Sanitize user input before rendering in HTML",
+        snippet: "// Use a sanitization library or framework escaping\n// e.g., DOMPurify.sanitize(userInput) or template auto-escaping",
+        confidence: "high",
+    },
+    {
+        match: /hardcoded.?(secret|password|key|token|credential)/i,
+        description: "Move secrets to environment variables or a secret manager",
+        snippet: "// Before: const apiKey = 'sk-abc123'\n// After:  const apiKey = process.env.API_KEY",
+        confidence: "high",
+    },
+    {
+        match: /eval|code.?inject/i,
+        description: "Avoid eval() and dynamic code execution",
+        snippet: "// Before: eval(userInput)\n// After:  Use a safe parser or mapped function calls",
+        confidence: "high",
+    },
+    {
+        match: /path.?traversal/i,
+        description: "Validate and sanitize file paths",
+        snippet: "// Use path.resolve() and check against allowed base directory\n// const safePath = path.resolve(baseDir, userPath)\n// if (!safePath.startsWith(baseDir)) throw new Error('Invalid path')",
+        confidence: "high",
+    },
+    {
+        match: /insecure.?random/i,
+        description: "Use cryptographically secure random number generation",
+        snippet: "// Before: Math.random()\n// After:  crypto.randomBytes(32) or crypto.getRandomValues()",
+        confidence: "high",
+    },
+    {
+        match: /missing.?(auth|authorization)/i,
+        description: "Add authentication/authorization checks",
+        snippet: "// Add middleware or guard to verify user identity and permissions\n// e.g., if (!req.user || !req.user.hasPermission('resource')) return res.status(403)",
+        confidence: "medium",
+    },
+    {
+        match: /error.?handling|unhandled/i,
+        description: "Add proper error handling with try/catch",
+        snippet: "// Wrap in try/catch and handle errors appropriately\n// try { await riskyOperation() } catch (err) { logger.error(err); throw new AppError('...') }",
+        confidence: "medium",
+    },
+    {
+        match: /memory.?leak/i,
+        description: "Clean up resources and remove event listeners",
+        snippet: "// Ensure cleanup in finally blocks or useEffect return\n// listener references should be stored and removed on cleanup",
+        confidence: "medium",
+    },
+    {
+        match: /n[+]1|n\+1/i,
+        description: "Batch database queries or use eager loading",
+        snippet: "// Before: for (const id of ids) { await db.find(id) }\n// After:  await db.findMany({ where: { id: { in: ids } } })",
+        confidence: "medium",
+    },
+];
+function generateFix(finding) {
+    const ruleId = finding.ruleId || "unknown";
+    const title = finding.title || "";
+    const combined = `${ruleId} ${title} ${finding.description || ""}`;
+    for (const pattern of FIX_PATTERNS) {
+        if (pattern.match.test(combined)) {
+            return {
+                ruleId,
+                title,
+                severity: finding.severity || "medium",
+                fixAvailable: true,
+                fixDescription: pattern.description,
+                fixSnippet: pattern.snippet,
+                confidence: pattern.confidence,
+            };
+        }
+    }
+    // Use the finding's own recommendation if available
+    if (finding.recommendation) {
+        return {
+            ruleId,
+            title,
+            severity: finding.severity || "medium",
+            fixAvailable: true,
+            fixDescription: finding.recommendation,
+            fixSnippet: finding.suggestedFix || "",
+            confidence: "low",
+        };
+    }
+    return {
+        ruleId,
+        title,
+        severity: finding.severity || "medium",
+        fixAvailable: false,
+        fixDescription: "No auto-fix available. Manual review recommended.",
+        fixSnippet: "",
+        confidence: "low",
+    };
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runFindingAutoFix(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges finding-auto-fix — Auto-generate fix suggestions
+
+Usage:
+  judges finding-auto-fix --file report.json
+  judges finding-auto-fix --file report.json --format json
+
+Options:
+  --file <path>         Path to a tribunal verdict JSON file
+  --min-confidence <l>  Minimum confidence (high|medium|low, default: low)
+  --format json         JSON output
+  --help, -h            Show this help
+
+Analyzes findings and generates fix suggestions for common patterns
+including SQL injection, XSS, hardcoded secrets, and more.
+
+Report saved to .judges/auto-fixes.json.
+`);
+        return;
+    }
+    const filePath = argv.find((_a, i) => argv[i - 1] === "--file");
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const minConf = argv.find((_a, i) => argv[i - 1] === "--min-confidence") || "low";
+    if (!filePath || !existsSync(filePath)) {
+        console.error("Error: --file is required and must exist.");
+        process.exitCode = 1;
+        return;
+    }
+    let verdict;
+    try {
+        verdict = JSON.parse(readFileSync(filePath, "utf-8"));
+    }
+    catch {
+        console.error("Error: Could not parse verdict file.");
+        process.exitCode = 1;
+        return;
+    }
+    const findings = verdict.findings || [];
+    if (findings.length === 0) {
+        console.log("No findings to fix.");
+        return;
+    }
+    const confLevels = ["low", "medium", "high"];
+    const minIdx = confLevels.indexOf(minConf);
+    const fixes = findings.map(generateFix).filter((f) => confLevels.indexOf(f.confidence) >= minIdx);
+    const fixableCount = fixes.filter((f) => f.fixAvailable).length;
+    const report = {
+        timestamp: new Date().toISOString(),
+        totalFindings: fixes.length,
+        fixableCount,
+        fixes,
+    };
+    const outPath = join(".judges", "auto-fixes.json");
+    mkdirSync(dirname(outPath), { recursive: true });
+    writeFileSync(outPath, JSON.stringify(report, null, 2), "utf-8");
+    if (format === "json") {
+        console.log(JSON.stringify(report, null, 2));
+        return;
+    }
+    console.log("\nAuto-Fix Suggestions:");
+    console.log("═".repeat(70));
+    console.log(`  Total findings: ${fixes.length}  Fixable: ${fixableCount}  (${fixes.length > 0 ? ((fixableCount / fixes.length) * 100).toFixed(0) : 0}%)`);
+    console.log("═".repeat(70));
+    for (const f of fixes) {
+        const icon = f.fixAvailable ? "✓" : "✗";
+        console.log(`\n  ${icon} [${f.severity.toUpperCase()}] ${f.ruleId}`);
+        console.log(`    ${f.title}`);
+        console.log(`    Fix: ${f.fixDescription}`);
+        if (f.fixSnippet) {
+            console.log(`    Confidence: ${f.confidence}`);
+            for (const line of f.fixSnippet.split("\n")) {
+                console.log(`      ${line}`);
+            }
+        }
+    }
+    console.log("\n" + "═".repeat(70));
+    console.log(`  Report saved to ${outPath}`);
+}
+//# sourceMappingURL=finding-auto-fix.js.map

package/dist/commands/finding-auto-fix.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-auto-fix.js","sourceRoot":"","sources":["../../src/commands/finding-auto-fix.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAsBrC,+EAA+E;AAE/E,MAAM,YAAY,GAAqG;IACrH;QACE,KAAK,EAAE,cAAc;QACrB,WAAW,EAAE,2DAA2D;QACxE,OAAO,EACL,4HAA4H;QAC9H,UAAU,EAAE,MAAM;KACnB;IACD;QACE,KAAK,EAAE,kBAAkB;QACzB,WAAW,EAAE,8CAA8C;QAC3D,OAAO,EACL,uHAAuH;QACzH,UAAU,EAAE,MAAM;KACnB;IACD;QACE,KAAK,EAAE,oDAAoD;QAC3D,WAAW,EAAE,2DAA2D;QACxE,OAAO,EAAE,sFAAsF;QAC/F,UAAU,EAAE,MAAM;KACnB;IACD;QACE,KAAK,EAAE,oBAAoB;QAC3B,WAAW,EAAE,yCAAyC;QACtD,OAAO,EAAE,mFAAmF;QAC5F,UAAU,EAAE,MAAM;KACnB;IACD;QACE,KAAK,EAAE,kBAAkB;QACzB,WAAW,EAAE,kCAAkC;QAC/C,OAAO,EACL,4LAA4L;QAC9L,UAAU,EAAE,MAAM;KACnB;IACD;QACE,KAAK,EAAE,mBAAmB;QAC1B,WAAW,EAAE,uDAAuD;QACpE,OAAO,EAAE,yFAAyF;QAClG,UAAU,EAAE,MAAM;KACnB;IACD;QACE,KAAK,EAAE,gCAAgC;QACvC,WAAW,EAAE,yCAAyC;QACtD,OAAO,EACL,2JAA2J;QAC7J,UAAU,EAAE,QAAQ;KACrB;IACD;QACE,KAAK,EAAE,4BAA4B;QACnC,WAAW,EAAE,0CAA0C;QACvD,OAAO,EACL,sJAAsJ;QACxJ,UAAU,EAAE,QAAQ;KACrB;IACD;QACE,KAAK,EAAE,eAAe;QACtB,WAAW,EAAE,+CAA+C;QAC5D,OAAO,EACL,yHAAyH;QAC3H,UAAU,EAAE,QAAQ;KACrB;IACD;QACE,KAAK,EAAE,aAAa;QACpB,WAAW,EAAE,6CAA6C;QAC1D,OAAO,EACL,sHAAsH;QACxH,UAAU,EAAE,QAAQ;KACrB;CACF,CAAC;AAEF,SAAS,WAAW,CAAC,OAAgB;IACnC,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,SAAS,CAAC;IAC3C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;IAClC,MAAM,QAAQ,GAAG,GAAG,MAAM,IAAI,KAAK,IAAI,OAAO,CAAC,WAAW,IAAI,EAAE,EAAE,CAAC;IAEnE,KAAK,MAAM,OAAO,IAAI,YAAY,EAAE,CAAC;QACnC,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACjC,OAAO;gBACL,MAAM;gBACN,KAAK;gBACL,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,QAAQ;gBACtC,YAAY,EAAE,IAAI;gBAClB,cAAc,EAAE,OAAO,CAAC,WAAW;gBACnC,UAAU,EAAE,OAAO,CAAC,OAAO;gBAC3B,UAAU,EAAE,OAAO,CAAC,UAAU;aAC/B,CAAC;QACJ,CAAC;IACH,CAAC;IAED,oDAAoD;IACpD,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;QAC3B,OAAO;YACL,MAAM;YACN,KAAK;YACL,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,QAAQ;YACtC,YAAY,EAAE,IAAI;YAClB,cAAc,EAAE,OAAO,CAAC,cAAc;YACtC,UAAU,EAAE,OAAO,CAAC,YAAY,IAAI,EAAE;YACtC,UAAU,EAAE,KAAK;SAClB,CAAC;IACJ,CAAC;IAED,OAAO;QACL,MAAM;QACN,KAAK;QACL,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,QAAQ;QACtC,YAAY,EAAE,KAAK;QACnB,cAAc,EAAE,mDAAmD;QACnE,UAAU,EAAE,EAAE;QACd,UAAU,EAAE,KAAK;KAClB,CAAC;AACJ,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,iBAAiB,CAAC,IAAc;IAC9C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;CAiBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;IAChF,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,kBAAkB,CAAC,IAAI,KAAK,CAAC;IAElG,IAAI,CAAC,QAAQ,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QACvC,OAAO,CAAC,KAAK,CAAC,2CAA2C,CAAC,CAAC;QAC3D,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,OAAwB,CAAC;IAC7B,IAAI,CAAC;QACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAoB,CAAC;IAC3E,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;QACtD,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;IACxC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;QACnC,OAAO;IACT,CAAC;IAED,MAAM,UAAU,GAAG,CAAC,KAAK,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;IAC7C,MAAM,MAAM,GAAG,UAAU,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IAC3C,MAAM,KAAK,GAAG,QAAQ,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,MAAM,CAAC,CAAC;IAElG,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC;IAChE,MAAM,MAAM,GAAkB;QAC5B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,aAAa,EAAE,KAAK,CAAC,MAAM;QAC3B,YAAY;QACZ,KAAK;KACN,CAAC;IAEF,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,iBAAiB,CAAC,CAAC;IACnD,SAAS,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACjD,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IAEjE,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC7C,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5B,OAAO,CAAC,GAAG,CACT,qBAAqB,KAAK,CAAC,MAAM,cAAc,YAAY,MAAM,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY,GAAG,KAAK,CAAC,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAC7I,CAAC;IACF,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5B,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,MAAM,IAAI,GAAG,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;QACxC,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,KAAK,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;QACrE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;QAC9B,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,cAAc,EAAE,CAAC,CAAC;QAC5C,IAAI,CAAC,CAAC,UAAU,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;YAC/C,KAAK,MAAM,IAAI,IAAI,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC5C,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC;YAC/B,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IACnC,OAAO,CAAC,GAAG,CAAC,qBAAqB,OAAO,EAAE,CAAC,CAAC;AAC9C,CAAC"}

package/dist/commands/finding-context.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Finding-context — Enrich findings with surrounding code context.
+ */
+export declare function runFindingContext(argv: string[]): void;
+//# sourceMappingURL=finding-context.d.ts.map

package/dist/commands/finding-context.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-context.d.ts","sourceRoot":"","sources":["../../src/commands/finding-context.ts"],"names":[],"mappings":"AAAA;;GAEG;AAuEH,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAoHtD"}

package/dist/commands/finding-context.js

@@ -0,0 +1,141 @@
+/**
+ * Finding-context — Enrich findings with surrounding code context.
+ */
+import { readFileSync, writeFileSync, existsSync, mkdirSync } from "fs";
+import { join, dirname } from "path";
+// ─── Context Extraction ─────────────────────────────────────────────────────
+function extractContext(fileContent, lineNumbers, contextSize) {
+    const lines = fileContent.split("\n");
+    if (lineNumbers.length === 0) {
+        return { before: [], after: [], atLine: [] };
+    }
+    const minLine = Math.min(...lineNumbers);
+    const maxLine = Math.max(...lineNumbers);
+    const beforeStart = Math.max(0, minLine - 1 - contextSize);
+    const beforeEnd = Math.max(0, minLine - 1);
+    const afterStart = Math.min(lines.length, maxLine);
+    const afterEnd = Math.min(lines.length, maxLine + contextSize);
+    return {
+        before: lines.slice(beforeStart, beforeEnd),
+        after: lines.slice(afterStart, afterEnd),
+        atLine: lineNumbers.map((n) => lines[n - 1] || "").filter(Boolean),
+    };
+}
+function enrichFinding(finding, fileContent, contextSize) {
+    const lineNumbers = finding.lineNumbers || [];
+    const ctx = extractContext(fileContent, lineNumbers, contextSize);
+    return {
+        ruleId: finding.ruleId || "unknown",
+        title: finding.title || "",
+        severity: finding.severity || "medium",
+        lineNumbers,
+        contextBefore: ctx.before,
+        contextAfter: ctx.after,
+        codeAtLine: ctx.atLine,
+        recommendation: finding.recommendation || "",
+    };
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runFindingContext(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges finding-context — Enrich findings with surrounding code context
+
+Usage:
+  judges finding-context --verdict report.json --source src/api.ts
+  judges finding-context --verdict report.json --source src/api.ts --context 10
+
+Options:
+  --verdict <path>      Path to a tribunal verdict JSON file
+  --source <path>       Source file to extract context from
+  --context <n>         Number of context lines (default: 5)
+  --format json         JSON output
+  --help, -h            Show this help
+
+Shows each finding alongside the surrounding source code, making it
+easier to understand the issue without switching to an editor.
+
+Report saved to .judges/finding-context.json.
+`);
+        return;
+    }
+    const verdictPath = argv.find((_a, i) => argv[i - 1] === "--verdict");
+    const sourcePath = argv.find((_a, i) => argv[i - 1] === "--source");
+    const contextSize = parseInt(argv.find((_a, i) => argv[i - 1] === "--context") || "5", 10);
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    if (!verdictPath || !existsSync(verdictPath)) {
+        console.error("Error: --verdict is required and must exist.");
+        process.exitCode = 1;
+        return;
+    }
+    if (!sourcePath || !existsSync(sourcePath)) {
+        console.error("Error: --source is required and must exist.");
+        process.exitCode = 1;
+        return;
+    }
+    let verdict;
+    try {
+        verdict = JSON.parse(readFileSync(verdictPath, "utf-8"));
+    }
+    catch {
+        console.error("Error: Could not parse verdict file.");
+        process.exitCode = 1;
+        return;
+    }
+    const fileContent = readFileSync(sourcePath, "utf-8");
+    const findings = verdict.findings || [];
+    if (findings.length === 0) {
+        console.log("No findings to enrich.");
+        return;
+    }
+    const enriched = findings.map((f) => enrichFinding(f, fileContent, contextSize));
+    const report = {
+        timestamp: new Date().toISOString(),
+        sourceFile: sourcePath,
+        totalFindings: enriched.length,
+        enriched,
+    };
+    const outPath = join(".judges", "finding-context.json");
+    mkdirSync(dirname(outPath), { recursive: true });
+    writeFileSync(outPath, JSON.stringify(report, null, 2), "utf-8");
+    if (format === "json") {
+        console.log(JSON.stringify(report, null, 2));
+        return;
+    }
+    console.log(`\nFinding Context (±${contextSize} lines):`);
+    console.log("═".repeat(70));
+    console.log(`  Source: ${sourcePath}  Findings: ${enriched.length}`);
+    console.log("═".repeat(70));
+    for (const ef of enriched) {
+        console.log(`\n  [${ef.severity.toUpperCase()}] ${ef.ruleId}`);
+        console.log(`  ${ef.title}`);
+        if (ef.lineNumbers.length > 0) {
+            console.log(`  Lines: ${ef.lineNumbers.join(", ")}`);
+        }
+        if (ef.contextBefore.length > 0) {
+            console.log("  ┌─ context before ─");
+            for (const l of ef.contextBefore) {
+                console.log(`  │ ${l}`);
+            }
+        }
+        if (ef.codeAtLine.length > 0) {
+            console.log("  ├─ finding ─");
+            for (const l of ef.codeAtLine) {
+                console.log(`  │ ➤ ${l}`);
+            }
+        }
+        if (ef.contextAfter.length > 0) {
+            console.log("  ├─ context after ─");
+            for (const l of ef.contextAfter) {
+                console.log(`  │ ${l}`);
+            }
+            console.log("  └─");
+        }
+        if (ef.recommendation) {
+            console.log(`  Fix: ${ef.recommendation}`);
+        }
+    }
+    console.log("\n" + "═".repeat(70));
+    console.log(`  Report saved to ${outPath}`);
+}
+//# sourceMappingURL=finding-context.js.map

package/dist/commands/finding-context.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-context.js","sourceRoot":"","sources":["../../src/commands/finding-context.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAuBrC,+EAA+E;AAE/E,SAAS,cAAc,CACrB,WAAmB,EACnB,WAAqB,EACrB,WAAmB;IAEnB,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC7B,OAAO,EAAE,MAAM,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC/C,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,WAAW,CAAC,CAAC;IACzC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,WAAW,CAAC,CAAC;IAEzC,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,GAAG,CAAC,GAAG,WAAW,CAAC,CAAC;IAC3D,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC;IAC3C,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnD,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,OAAO,GAAG,WAAW,CAAC,CAAC;IAE/D,OAAO;QACL,MAAM,EAAE,KAAK,CAAC,KAAK,CAAC,WAAW,EAAE,SAAS,CAAC;QAC3C,KAAK,EAAE,KAAK,CAAC,KAAK,CAAC,UAAU,EAAE,QAAQ,CAAC;QACxC,MAAM,EAAE,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC;KACnE,CAAC;AACJ,CAAC;AAED,SAAS,aAAa,CAAC,OAAgB,EAAE,WAAmB,EAAE,WAAmB;IAC/E,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,EAAE,CAAC;IAC9C,MAAM,GAAG,GAAG,cAAc,CAAC,WAAW,EAAE,WAAW,EAAE,WAAW,CAAC,CAAC;IAElE,OAAO;QACL,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,SAAS;QACnC,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,EAAE;QAC1B,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,QAAQ;QACtC,WAAW;QACX,aAAa,EAAE,GAAG,CAAC,MAAM;QACzB,YAAY,EAAE,GAAG,CAAC,KAAK;QACvB,UAAU,EAAE,GAAG,CAAC,MAAM;QACtB,cAAc,EAAE,OAAO,CAAC,cAAc,IAAI,EAAE;KAC7C,CAAC;AACJ,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,iBAAiB,CAAC,IAAc;IAC9C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;CAkBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,WAAW,CAAC,CAAC;IACtF,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,CAAC;IACpF,MAAM,WAAW,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,WAAW,CAAC,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC;IAC3G,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAE1F,IAAI,CAAC,WAAW,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAC7C,OAAO,CAAC,KAAK,CAAC,8CAA8C,CAAC,CAAC;QAC9D,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC3C,OAAO,CAAC,KAAK,CAAC,6CAA6C,CAAC,CAAC;QAC7D,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,OAAwB,CAAC;IAC7B,IAAI,CAAC;QACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAoB,CAAC;IAC9E,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;QACtD,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,MAAM,WAAW,GAAG,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;IACtD,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;IAExC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;QACtC,OAAO;IACT,CAAC;IAED,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,CAAC,EAAE,WAAW,EAAE,WAAW,CAAC,CAAC,CAAC;IAEjF,MAAM,MAAM,GAAkB;QAC5B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,UAAU,EAAE,UAAU;QACtB,aAAa,EAAE,QAAQ,CAAC,MAAM;QAC9B,QAAQ;KACT,CAAC;IAEF,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,sBAAsB,CAAC,CAAC;IACxD,SAAS,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACjD,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IAEjE,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC7C,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,uBAAuB,WAAW,UAAU,CAAC,CAAC;IAC1D,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5B,OAAO,CAAC,GAAG,CAAC,aAAa,UAAU,eAAe,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IACrE,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5B,KAAK,MAAM,EAAE,IAAI,QAAQ,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC;QAC/D,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,KAAK,EAAE,CAAC,CAAC;QAC7B,IAAI,EAAE,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACvD,CAAC;QAED,IAAI,EAAE,CAAC,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAChC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YACrC,KAAK,MAAM,CAAC,IAAI,EAAE,CAAC,aAAa,EAAE,CAAC;gBACjC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,IAAI,EAAE,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7B,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;YAC9B,KAAK,MAAM,CAAC,IAAI,EAAE,CAAC,UAAU,EAAE,CAAC;gBAC9B,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YAC5B,CAAC;QACH,CAAC;QAED,IAAI,EAAE,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,sBAAsB,CAAC,CAAC;YACpC,KAAK,MAAM,CAAC,IAAI,EAAE,CAAC,YAAY,EAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YAC1B,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACtB,CAAC;QAED,IAAI,EAAE,CAAC,cAAc,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC,cAAc,EAAE,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IACnC,OAAO,CAAC,GAAG,CAAC,qBAAqB,OAAO,EAAE,CAAC,CAAC;AAC9C,CAAC"}

package/dist/commands/finding-deduplicate.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Finding-deduplicate — Detect and deduplicate similar findings.
+ */
+export declare function runFindingDeduplicate(argv: string[]): void;
+//# sourceMappingURL=finding-deduplicate.d.ts.map

package/dist/commands/finding-deduplicate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-deduplicate.d.ts","sourceRoot":"","sources":["../../src/commands/finding-deduplicate.ts"],"names":[],"mappings":"AAAA;;GAEG;AAkFH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAwF1D"}

package/dist/commands/finding-deduplicate.js

@@ -0,0 +1,142 @@
+/**
+ * Finding-deduplicate — Detect and deduplicate similar findings.
+ */
+import { readFileSync, writeFileSync, existsSync, mkdirSync } from "fs";
+import { join, dirname } from "path";
+// ─── Dedup Logic ────────────────────────────────────────────────────────────
+function normalizeText(text) {
+    return text
+        .toLowerCase()
+        .replace(/[^a-z0-9]/g, " ")
+        .replace(/\s+/g, " ")
+        .trim();
+}
+function areSimilar(a, b) {
+    // Same rule ID is a strong signal
+    if (a.ruleId && b.ruleId && a.ruleId === b.ruleId) {
+        // Check if titles are similar
+        const titleA = normalizeText(a.title || "");
+        const titleB = normalizeText(b.title || "");
+        if (titleA === titleB)
+            return true;
+        // Check Jaccard similarity on words
+        const wordsA = new Set(titleA.split(" "));
+        const wordsB = new Set(titleB.split(" "));
+        const intersection = new Set([...wordsA].filter((w) => wordsB.has(w)));
+        const union = new Set([...wordsA, ...wordsB]);
+        if (union.size > 0 && intersection.size / union.size > 0.5)
+            return true;
+    }
+    return false;
+}
+function groupFindings(findings) {
+    const groups = [];
+    const assigned = new Set();
+    for (let i = 0; i < findings.length; i++) {
+        if (assigned.has(i))
+            continue;
+        const group = {
+            canonical: {
+                ruleId: findings[i].ruleId || "unknown",
+                title: findings[i].title || "",
+                severity: findings[i].severity || "medium",
+            },
+            count: 1,
+            indices: [i],
+        };
+        assigned.add(i);
+        for (let j = i + 1; j < findings.length; j++) {
+            if (assigned.has(j))
+                continue;
+            if (areSimilar(findings[i], findings[j])) {
+                group.count++;
+                group.indices.push(j);
+                assigned.add(j);
+            }
+        }
+        groups.push(group);
+    }
+    return groups;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runFindingDeduplicate(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges finding-deduplicate — Detect and deduplicate similar findings
+
+Usage:
+  judges finding-deduplicate --file report.json
+  judges finding-deduplicate --file report.json --format json
+
+Options:
+  --file <path>         Path to a tribunal verdict JSON file
+  --format json         JSON output
+  --help, -h            Show this help
+
+Groups similar findings together and reports duplicates.
+Uses rule ID matching and title similarity (Jaccard) to detect dupes.
+
+Report saved to .judges/dedup-report.json.
+`);
+        return;
+    }
+    const filePath = argv.find((_a, i) => argv[i - 1] === "--file");
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    if (!filePath || !existsSync(filePath)) {
+        console.error("Error: --file is required and must exist.");
+        process.exitCode = 1;
+        return;
+    }
+    let verdict;
+    try {
+        verdict = JSON.parse(readFileSync(filePath, "utf-8"));
+    }
+    catch {
+        console.error("Error: Could not parse verdict file.");
+        process.exitCode = 1;
+        return;
+    }
+    const findings = verdict.findings || [];
+    if (findings.length === 0) {
+        console.log("No findings to deduplicate.");
+        return;
+    }
+    const groups = groupFindings(findings);
+    const duplicateCount = findings.length - groups.length;
+    const report = {
+        timestamp: new Date().toISOString(),
+        originalCount: findings.length,
+        uniqueCount: groups.length,
+        duplicateCount,
+        groups,
+    };
+    const outPath = join(".judges", "dedup-report.json");
+    mkdirSync(dirname(outPath), { recursive: true });
+    writeFileSync(outPath, JSON.stringify(report, null, 2), "utf-8");
+    if (format === "json") {
+        console.log(JSON.stringify(report, null, 2));
+        return;
+    }
+    console.log("\nFinding Deduplication Report:");
+    console.log("═".repeat(60));
+    console.log(`  Original: ${findings.length}  Unique: ${groups.length}  Duplicates: ${duplicateCount}`);
+    if (findings.length > 0) {
+        console.log(`  Dedup ratio: ${((duplicateCount / findings.length) * 100).toFixed(1)}%`);
+    }
+    console.log("═".repeat(60));
+    const dupeGroups = groups.filter((g) => g.count > 1);
+    if (dupeGroups.length > 0) {
+        console.log("\n  Duplicate Groups:");
+        for (const g of dupeGroups) {
+            console.log(`\n    [${g.canonical.severity.toUpperCase()}] ${g.canonical.ruleId} (${g.count}x)`);
+            console.log(`      ${g.canonical.title}`);
+            console.log(`      Indices: ${g.indices.join(", ")}`);
+        }
+    }
+    else {
+        console.log("\n  No duplicates found — all findings are unique.");
+    }
+    console.log("\n" + "═".repeat(60));
+    console.log(`  Report saved to ${outPath}`);
+}
+//# sourceMappingURL=finding-deduplicate.js.map

package/dist/commands/finding-deduplicate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-deduplicate.js","sourceRoot":"","sources":["../../src/commands/finding-deduplicate.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAmBrC,+EAA+E;AAE/E,SAAS,aAAa,CAAC,IAAY;IACjC,OAAO,IAAI;SACR,WAAW,EAAE;SACb,OAAO,CAAC,YAAY,EAAE,GAAG,CAAC;SAC1B,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;SACpB,IAAI,EAAE,CAAC;AACZ,CAAC;AAED,SAAS,UAAU,CAAC,CAAU,EAAE,CAAU;IACxC,kCAAkC;IAClC,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;QAClD,8BAA8B;QAC9B,MAAM,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC;QAC5C,MAAM,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC;QAC5C,IAAI,MAAM,KAAK,MAAM;YAAE,OAAO,IAAI,CAAC;QACnC,oCAAoC;QACpC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;QAC1C,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;QAC1C,MAAM,YAAY,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,MAAM,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACvE,MAAM,KAAK,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,MAAM,EAAE,GAAG,MAAM,CAAC,CAAC,CAAC;QAC9C,IAAI,KAAK,CAAC,IAAI,GAAG,CAAC,IAAI,YAAY,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,GAAG,GAAG;YAAE,OAAO,IAAI,CAAC;IAC1E,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,aAAa,CAAC,QAAmB;IACxC,MAAM,MAAM,GAAiB,EAAE,CAAC;IAChC,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;IAEnC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,IAAI,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAAE,SAAS;QAC9B,MAAM,KAAK,GAAe;YACxB,SAAS,EAAE;gBACT,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,SAAS;gBACvC,KAAK,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE;gBAC9B,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,IAAI,QAAQ;aAC3C;YACD,KAAK,EAAE,CAAC;YACR,OAAO,EAAE,CAAC,CAAC,CAAC;SACb,CAAC;QACF,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QAEhB,KAAK,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC7C,IAAI,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;gBAAE,SAAS;YAC9B,IAAI,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;gBACzC,KAAK,CAAC,KAAK,EAAE,CAAC;gBACd,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;gBACtB,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACrB,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,qBAAqB,CAAC,IAAc;IAClD,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;CAgBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC;IAChF,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAE1F,IAAI,CAAC,QAAQ,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QACvC,OAAO,CAAC,KAAK,CAAC,2CAA2C,CAAC,CAAC;QAC3D,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,OAAwB,CAAC;IAC7B,IAAI,CAAC;QACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAoB,CAAC;IAC3E,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;QACtD,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;IACxC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;QAC3C,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,aAAa,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,cAAc,GAAG,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;IAEvD,MAAM,MAAM,GAAgB;QAC1B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,aAAa,EAAE,QAAQ,CAAC,MAAM;QAC9B,WAAW,EAAE,MAAM,CAAC,MAAM;QAC1B,cAAc;QACd,MAAM;KACP,CAAC;IAEF,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,EAAE,mBAAmB,CAAC,CAAC;IACrD,SAAS,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACjD,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IAEjE,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC7C,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,iCAAiC,CAAC,CAAC;IAC/C,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5B,OAAO,CAAC,GAAG,CAAC,eAAe,QAAQ,CAAC,MAAM,aAAa,MAAM,CAAC,MAAM,iBAAiB,cAAc,EAAE,CAAC,CAAC;IACvG,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxB,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC,cAAc,GAAG,QAAQ,CAAC,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IAC1F,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5B,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;IACrD,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;QACrC,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;YAC3B,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,SAAS,CAAC,MAAM,KAAK,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;YACjG,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC,CAAC;YAC1C,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,oDAAoD,CAAC,CAAC;IACpE,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IACnC,OAAO,CAAC,GAAG,CAAC,qBAAqB,OAAO,EAAE,CAAC,CAAC;AAC9C,CAAC"}

package/dist/commands/finding-severity-override.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Finding-severity-override — Override finding severity per project.
+ */
+export declare function runFindingSeverityOverride(argv: string[]): void;
+//# sourceMappingURL=finding-severity-override.d.ts.map

package/dist/commands/finding-severity-override.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-severity-override.d.ts","sourceRoot":"","sources":["../../src/commands/finding-severity-override.ts"],"names":[],"mappings":"AAAA;;GAEG;AA0CH,wBAAgB,0BAA0B,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAoH/D"}