@kevinrabun/judges 3.92.0 → 3.93.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +13 -0
- package/dist/cli.d.ts.map +1 -1
- package/dist/cli.js +63 -0
- package/dist/cli.js.map +1 -1
- package/dist/commands/finding-fix-suggest.d.ts +5 -0
- package/dist/commands/finding-fix-suggest.d.ts.map +1 -0
- package/dist/commands/finding-fix-suggest.js +89 -0
- package/dist/commands/finding-fix-suggest.js.map +1 -0
- package/dist/commands/finding-link-graph.d.ts +5 -0
- package/dist/commands/finding-link-graph.d.ts.map +1 -0
- package/dist/commands/finding-link-graph.js +145 -0
- package/dist/commands/finding-link-graph.js.map +1 -0
- package/dist/commands/finding-ownership-map.d.ts +5 -0
- package/dist/commands/finding-ownership-map.d.ts.map +1 -0
- package/dist/commands/finding-ownership-map.js +118 -0
- package/dist/commands/finding-ownership-map.js.map +1 -0
- package/dist/commands/review-audit-trail.d.ts +5 -0
- package/dist/commands/review-audit-trail.d.ts.map +1 -0
- package/dist/commands/review-audit-trail.js +97 -0
- package/dist/commands/review-audit-trail.js.map +1 -0
- package/dist/commands/review-compliance-report.d.ts +5 -0
- package/dist/commands/review-compliance-report.d.ts.map +1 -0
- package/dist/commands/review-compliance-report.js +128 -0
- package/dist/commands/review-compliance-report.js.map +1 -0
- package/dist/commands/review-config-template.d.ts +5 -0
- package/dist/commands/review-config-template.d.ts.map +1 -0
- package/dist/commands/review-config-template.js +113 -0
- package/dist/commands/review-config-template.js.map +1 -0
- package/dist/commands/review-progress-track.d.ts +5 -0
- package/dist/commands/review-progress-track.d.ts.map +1 -0
- package/dist/commands/review-progress-track.js +95 -0
- package/dist/commands/review-progress-track.js.map +1 -0
- package/dist/commands/review-report-schedule.d.ts +5 -0
- package/dist/commands/review-report-schedule.d.ts.map +1 -0
- package/dist/commands/review-report-schedule.js +97 -0
- package/dist/commands/review-report-schedule.js.map +1 -0
- package/dist/commands/review-slack-format.d.ts +5 -0
- package/dist/commands/review-slack-format.d.ts.map +1 -0
- package/dist/commands/review-slack-format.js +114 -0
- package/dist/commands/review-slack-format.js.map +1 -0
- package/package.json +1 -1
- package/server.json +2 -2
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"finding-fix-suggest.d.ts","sourceRoot":"","sources":["../../src/commands/finding-fix-suggest.ts"],"names":[],"mappings":"AAAA;;GAEG;AAyCH,wBAAgB,oBAAoB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAoEzD"}
|
|
@@ -0,0 +1,89 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Finding-fix-suggest — Suggest fixes based on finding patterns.
|
|
3
|
+
*/
|
|
4
|
+
import { readFileSync, existsSync } from "fs";
|
|
5
|
+
// ─── Analysis ───────────────────────────────────────────────────────────────
|
|
6
|
+
function suggestFixes(verdict) {
|
|
7
|
+
return verdict.findings.map((f) => {
|
|
8
|
+
let suggestion = f.recommendation;
|
|
9
|
+
if (f.patch !== undefined && f.patch !== null) {
|
|
10
|
+
suggestion = `Apply patch: ${String(f.patch).slice(0, 100)}${String(f.patch).length > 100 ? "…" : ""}`;
|
|
11
|
+
}
|
|
12
|
+
else if (f.suggestedFix) {
|
|
13
|
+
suggestion = f.suggestedFix;
|
|
14
|
+
}
|
|
15
|
+
return {
|
|
16
|
+
ruleId: f.ruleId,
|
|
17
|
+
title: f.title,
|
|
18
|
+
severity: (f.severity || "medium").toLowerCase(),
|
|
19
|
+
hasPatch: f.patch !== undefined && f.patch !== null,
|
|
20
|
+
suggestion,
|
|
21
|
+
lineNumbers: f.lineNumbers || [],
|
|
22
|
+
};
|
|
23
|
+
});
|
|
24
|
+
}
|
|
25
|
+
// ─── CLI ────────────────────────────────────────────────────────────────────
|
|
26
|
+
export function runFindingFixSuggest(argv) {
|
|
27
|
+
const fileIdx = argv.indexOf("--file");
|
|
28
|
+
const formatIdx = argv.indexOf("--format");
|
|
29
|
+
const sevIdx = argv.indexOf("--severity");
|
|
30
|
+
const filePath = fileIdx >= 0 ? argv[fileIdx + 1] : undefined;
|
|
31
|
+
const format = formatIdx >= 0 ? argv[formatIdx + 1] : "table";
|
|
32
|
+
const sevFilter = sevIdx >= 0 ? argv[sevIdx + 1] : undefined;
|
|
33
|
+
if (argv.includes("--help") || argv.includes("-h")) {
|
|
34
|
+
console.log(`
|
|
35
|
+
judges finding-fix-suggest — Suggest fixes for findings
|
|
36
|
+
|
|
37
|
+
Usage:
|
|
38
|
+
judges finding-fix-suggest --file <verdict.json> [--severity <level>]
|
|
39
|
+
[--format table|json]
|
|
40
|
+
|
|
41
|
+
Options:
|
|
42
|
+
--file <path> Path to verdict JSON file (required)
|
|
43
|
+
--severity <level> Filter by severity level
|
|
44
|
+
--format <fmt> Output format: table (default), json
|
|
45
|
+
--help, -h Show this help
|
|
46
|
+
`);
|
|
47
|
+
return;
|
|
48
|
+
}
|
|
49
|
+
if (!filePath) {
|
|
50
|
+
console.error("Error: --file required");
|
|
51
|
+
process.exitCode = 1;
|
|
52
|
+
return;
|
|
53
|
+
}
|
|
54
|
+
if (!existsSync(filePath)) {
|
|
55
|
+
console.error(`Error: not found: ${filePath}`);
|
|
56
|
+
process.exitCode = 1;
|
|
57
|
+
return;
|
|
58
|
+
}
|
|
59
|
+
let verdict;
|
|
60
|
+
try {
|
|
61
|
+
verdict = JSON.parse(readFileSync(filePath, "utf-8"));
|
|
62
|
+
}
|
|
63
|
+
catch {
|
|
64
|
+
console.error("Error: invalid JSON");
|
|
65
|
+
process.exitCode = 1;
|
|
66
|
+
return;
|
|
67
|
+
}
|
|
68
|
+
let suggestions = suggestFixes(verdict);
|
|
69
|
+
if (sevFilter) {
|
|
70
|
+
suggestions = suggestions.filter((s) => s.severity === sevFilter.toLowerCase());
|
|
71
|
+
}
|
|
72
|
+
if (format === "json") {
|
|
73
|
+
console.log(JSON.stringify(suggestions, null, 2));
|
|
74
|
+
return;
|
|
75
|
+
}
|
|
76
|
+
console.log(`\nFix Suggestions (${suggestions.length})`);
|
|
77
|
+
console.log("═".repeat(75));
|
|
78
|
+
for (const s of suggestions) {
|
|
79
|
+
const lines = s.lineNumbers.length > 0 ? `L${s.lineNumbers[0]}` : "—";
|
|
80
|
+
const patch = s.hasPatch ? " [has patch]" : "";
|
|
81
|
+
console.log(` [${s.severity.toUpperCase()}] ${s.ruleId} at ${lines}${patch}`);
|
|
82
|
+
console.log(` ${s.title}`);
|
|
83
|
+
const suggDisplay = s.suggestion.length > 70 ? s.suggestion.slice(0, 70) + "…" : s.suggestion;
|
|
84
|
+
console.log(` → ${suggDisplay}`);
|
|
85
|
+
console.log("");
|
|
86
|
+
}
|
|
87
|
+
console.log("═".repeat(75));
|
|
88
|
+
}
|
|
89
|
+
//# sourceMappingURL=finding-fix-suggest.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"finding-fix-suggest.js","sourceRoot":"","sources":["../../src/commands/finding-fix-suggest.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAc9C,+EAA+E;AAE/E,SAAS,YAAY,CAAC,OAAwB;IAC5C,OAAO,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QAChC,IAAI,UAAU,GAAG,CAAC,CAAC,cAAc,CAAC;QAElC,IAAI,CAAC,CAAC,KAAK,KAAK,SAAS,IAAI,CAAC,CAAC,KAAK,KAAK,IAAI,EAAE,CAAC;YAC9C,UAAU,GAAG,gBAAgB,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;QACzG,CAAC;aAAM,IAAI,CAAC,CAAC,YAAY,EAAE,CAAC;YAC1B,UAAU,GAAG,CAAC,CAAC,YAAY,CAAC;QAC9B,CAAC;QAED,OAAO;YACL,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,KAAK,EAAE,CAAC,CAAC,KAAK;YACd,QAAQ,EAAE,CAAC,CAAC,CAAC,QAAQ,IAAI,QAAQ,CAAC,CAAC,WAAW,EAAE;YAChD,QAAQ,EAAE,CAAC,CAAC,KAAK,KAAK,SAAS,IAAI,CAAC,CAAC,KAAK,KAAK,IAAI;YACnD,UAAU;YACV,WAAW,EAAE,CAAC,CAAC,WAAW,IAAI,EAAE;SACjC,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,oBAAoB,CAAC,IAAc;IACjD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAC3C,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;IAC1C,MAAM,QAAQ,GAAG,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC9D,MAAM,MAAM,GAAG,SAAS,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;IAC9D,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAE7D,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;CAYf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC;QACxC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IACD,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,KAAK,CAAC,qBAAqB,QAAQ,EAAE,CAAC,CAAC;QAC/C,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,OAAwB,CAAC;IAC7B,IAAI,CAAC;QACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACrC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,WAAW,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;IACxC,IAAI,SAAS,EAAE,CAAC;QACd,WAAW,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,WAAW,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAClD,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,sBAAsB,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC;IACzD,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5B,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;QAC5B,MAAM,KAAK,GAAG,CAAC,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC;QACtE,MAAM,KAAK,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,EAAE,CAAC;QAC/C,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,MAAM,OAAO,KAAK,GAAG,KAAK,EAAE,CAAC,CAAC;QAC/E,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;QAC9B,MAAM,WAAW,GAAG,CAAC,CAAC,UAAU,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;QAC9F,OAAO,CAAC,GAAG,CAAC,SAAS,WAAW,EAAE,CAAC,CAAC;QACpC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;AAC9B,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"finding-link-graph.d.ts","sourceRoot":"","sources":["../../src/commands/finding-link-graph.ts"],"names":[],"mappings":"AAAA;;GAEG;AAgHH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAmExD"}
|
|
@@ -0,0 +1,145 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Finding-link-graph — Build a graph of related findings by rule co-occurrence.
|
|
3
|
+
*/
|
|
4
|
+
import { readFileSync, existsSync } from "fs";
|
|
5
|
+
// ─── Analysis ───────────────────────────────────────────────────────────────
|
|
6
|
+
function buildGraph(verdict) {
|
|
7
|
+
const nodes = new Map();
|
|
8
|
+
const edges = [];
|
|
9
|
+
// Build nodes
|
|
10
|
+
for (const f of verdict.findings) {
|
|
11
|
+
if (!nodes.has(f.ruleId)) {
|
|
12
|
+
nodes.set(f.ruleId, {
|
|
13
|
+
ruleId: f.ruleId,
|
|
14
|
+
title: f.title,
|
|
15
|
+
severity: (f.severity || "medium").toLowerCase(),
|
|
16
|
+
connections: 0,
|
|
17
|
+
});
|
|
18
|
+
}
|
|
19
|
+
}
|
|
20
|
+
// Build edges based on proximity
|
|
21
|
+
const findings = verdict.findings;
|
|
22
|
+
for (let i = 0; i < findings.length; i++) {
|
|
23
|
+
for (let j = i + 1; j < findings.length; j++) {
|
|
24
|
+
const a = findings[i];
|
|
25
|
+
const b = findings[j];
|
|
26
|
+
if (a.ruleId === b.ruleId)
|
|
27
|
+
continue;
|
|
28
|
+
const aLines = a.lineNumbers || [];
|
|
29
|
+
const bLines = b.lineNumbers || [];
|
|
30
|
+
if (aLines.length > 0 && bLines.length > 0) {
|
|
31
|
+
const minDist = Math.min(...aLines.flatMap((al) => bLines.map((bl) => Math.abs(al - bl))));
|
|
32
|
+
if (minDist <= 10) {
|
|
33
|
+
const existingEdge = edges.find((e) => (e.from === a.ruleId && e.to === b.ruleId) || (e.from === b.ruleId && e.to === a.ruleId));
|
|
34
|
+
if (existingEdge) {
|
|
35
|
+
existingEdge.weight++;
|
|
36
|
+
}
|
|
37
|
+
else {
|
|
38
|
+
edges.push({
|
|
39
|
+
from: a.ruleId,
|
|
40
|
+
to: b.ruleId,
|
|
41
|
+
weight: 1,
|
|
42
|
+
relationship: minDist <= 3 ? "adjacent" : "nearby",
|
|
43
|
+
});
|
|
44
|
+
}
|
|
45
|
+
}
|
|
46
|
+
}
|
|
47
|
+
}
|
|
48
|
+
}
|
|
49
|
+
// Update connection counts
|
|
50
|
+
for (const e of edges) {
|
|
51
|
+
const fromNode = nodes.get(e.from);
|
|
52
|
+
const toNode = nodes.get(e.to);
|
|
53
|
+
if (fromNode)
|
|
54
|
+
fromNode.connections++;
|
|
55
|
+
if (toNode)
|
|
56
|
+
toNode.connections++;
|
|
57
|
+
}
|
|
58
|
+
// Simple clustering by connected components
|
|
59
|
+
const clusters = [];
|
|
60
|
+
const visited = new Set();
|
|
61
|
+
for (const nodeId of nodes.keys()) {
|
|
62
|
+
if (visited.has(nodeId))
|
|
63
|
+
continue;
|
|
64
|
+
const cluster = [];
|
|
65
|
+
const stack = [nodeId];
|
|
66
|
+
while (stack.length > 0) {
|
|
67
|
+
const current = stack.pop();
|
|
68
|
+
if (visited.has(current))
|
|
69
|
+
continue;
|
|
70
|
+
visited.add(current);
|
|
71
|
+
cluster.push(current);
|
|
72
|
+
for (const e of edges) {
|
|
73
|
+
if (e.from === current && !visited.has(e.to))
|
|
74
|
+
stack.push(e.to);
|
|
75
|
+
if (e.to === current && !visited.has(e.from))
|
|
76
|
+
stack.push(e.from);
|
|
77
|
+
}
|
|
78
|
+
}
|
|
79
|
+
clusters.push(cluster);
|
|
80
|
+
}
|
|
81
|
+
return { nodes: [...nodes.values()], edges, clusters };
|
|
82
|
+
}
|
|
83
|
+
// ─── CLI ────────────────────────────────────────────────────────────────────
|
|
84
|
+
export function runFindingLinkGraph(argv) {
|
|
85
|
+
const fileIdx = argv.indexOf("--file");
|
|
86
|
+
const formatIdx = argv.indexOf("--format");
|
|
87
|
+
const filePath = fileIdx >= 0 ? argv[fileIdx + 1] : undefined;
|
|
88
|
+
const format = formatIdx >= 0 ? argv[formatIdx + 1] : "table";
|
|
89
|
+
if (argv.includes("--help") || argv.includes("-h")) {
|
|
90
|
+
console.log(`
|
|
91
|
+
judges finding-link-graph — Build finding relationship graph
|
|
92
|
+
|
|
93
|
+
Usage:
|
|
94
|
+
judges finding-link-graph --file <verdict.json> [--format table|json]
|
|
95
|
+
|
|
96
|
+
Options:
|
|
97
|
+
--file <path> Path to verdict JSON file (required)
|
|
98
|
+
--format <fmt> Output format: table (default), json
|
|
99
|
+
--help, -h Show this help
|
|
100
|
+
`);
|
|
101
|
+
return;
|
|
102
|
+
}
|
|
103
|
+
if (!filePath) {
|
|
104
|
+
console.error("Error: --file required");
|
|
105
|
+
process.exitCode = 1;
|
|
106
|
+
return;
|
|
107
|
+
}
|
|
108
|
+
if (!existsSync(filePath)) {
|
|
109
|
+
console.error(`Error: not found: ${filePath}`);
|
|
110
|
+
process.exitCode = 1;
|
|
111
|
+
return;
|
|
112
|
+
}
|
|
113
|
+
let verdict;
|
|
114
|
+
try {
|
|
115
|
+
verdict = JSON.parse(readFileSync(filePath, "utf-8"));
|
|
116
|
+
}
|
|
117
|
+
catch {
|
|
118
|
+
console.error("Error: invalid JSON");
|
|
119
|
+
process.exitCode = 1;
|
|
120
|
+
return;
|
|
121
|
+
}
|
|
122
|
+
const graph = buildGraph(verdict);
|
|
123
|
+
if (format === "json") {
|
|
124
|
+
console.log(JSON.stringify(graph, null, 2));
|
|
125
|
+
return;
|
|
126
|
+
}
|
|
127
|
+
console.log(`\nFinding Link Graph`);
|
|
128
|
+
console.log("═".repeat(65));
|
|
129
|
+
console.log(` Nodes: ${graph.nodes.length} | Edges: ${graph.edges.length} | Clusters: ${graph.clusters.length}`);
|
|
130
|
+
console.log("─".repeat(65));
|
|
131
|
+
if (graph.edges.length > 0) {
|
|
132
|
+
console.log(`\n Connections:`);
|
|
133
|
+
for (const e of graph.edges.slice(0, 15)) {
|
|
134
|
+
console.log(` ${e.from} ─[${e.relationship}]─ ${e.to} (weight: ${e.weight})`);
|
|
135
|
+
}
|
|
136
|
+
}
|
|
137
|
+
if (graph.clusters.length > 0) {
|
|
138
|
+
console.log(`\n Clusters:`);
|
|
139
|
+
for (let i = 0; i < Math.min(graph.clusters.length, 10); i++) {
|
|
140
|
+
console.log(` ${i + 1}. ${graph.clusters[i].join(", ")}`);
|
|
141
|
+
}
|
|
142
|
+
}
|
|
143
|
+
console.log("═".repeat(65));
|
|
144
|
+
}
|
|
145
|
+
//# sourceMappingURL=finding-link-graph.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"finding-link-graph.js","sourceRoot":"","sources":["../../src/commands/finding-link-graph.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAyB9C,+EAA+E;AAE/E,SAAS,UAAU,CAAC,OAAwB;IAC1C,MAAM,KAAK,GAAG,IAAI,GAAG,EAAqB,CAAC;IAC3C,MAAM,KAAK,GAAgB,EAAE,CAAC;IAE9B,cAAc;IACd,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACjC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC;YACzB,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,EAAE;gBAClB,MAAM,EAAE,CAAC,CAAC,MAAM;gBAChB,KAAK,EAAE,CAAC,CAAC,KAAK;gBACd,QAAQ,EAAE,CAAC,CAAC,CAAC,QAAQ,IAAI,QAAQ,CAAC,CAAC,WAAW,EAAE;gBAChD,WAAW,EAAE,CAAC;aACf,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,iCAAiC;IACjC,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;IAClC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,KAAK,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC7C,MAAM,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;YACtB,MAAM,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;YACtB,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;gBAAE,SAAS;YAEpC,MAAM,MAAM,GAAG,CAAC,CAAC,WAAW,IAAI,EAAE,CAAC;YACnC,MAAM,MAAM,GAAG,CAAC,CAAC,WAAW,IAAI,EAAE,CAAC;YAEnC,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC3C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;gBAE3F,IAAI,OAAO,IAAI,EAAE,EAAE,CAAC;oBAClB,MAAM,YAAY,GAAG,KAAK,CAAC,IAAI,CAC7B,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,MAAM,CAAC,CAChG,CAAC;oBACF,IAAI,YAAY,EAAE,CAAC;wBACjB,YAAY,CAAC,MAAM,EAAE,CAAC;oBACxB,CAAC;yBAAM,CAAC;wBACN,KAAK,CAAC,IAAI,CAAC;4BACT,IAAI,EAAE,CAAC,CAAC,MAAM;4BACd,EAAE,EAAE,CAAC,CAAC,MAAM;4BACZ,MAAM,EAAE,CAAC;4BACT,YAAY,EAAE,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,QAAQ;yBACnD,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,2BAA2B;IAC3B,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,MAAM,QAAQ,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;QACnC,MAAM,MAAM,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QAC/B,IAAI,QAAQ;YAAE,QAAQ,CAAC,WAAW,EAAE,CAAC;QACrC,IAAI,MAAM;YAAE,MAAM,CAAC,WAAW,EAAE,CAAC;IACnC,CAAC;IAED,4CAA4C;IAC5C,MAAM,QAAQ,GAAe,EAAE,CAAC;IAChC,MAAM,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;IAElC,KAAK,MAAM,MAAM,IAAI,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;QAClC,IAAI,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC;YAAE,SAAS;QAClC,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,MAAM,KAAK,GAAG,CAAC,MAAM,CAAC,CAAC;QACvB,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,OAAO,GAAG,KAAK,CAAC,GAAG,EAAG,CAAC;YAC7B,IAAI,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC;gBAAE,SAAS;YACnC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YACrB,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACtB,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;gBACtB,IAAI,CAAC,CAAC,IAAI,KAAK,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;oBAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBAC/D,IAAI,CAAC,CAAC,EAAE,KAAK,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC;oBAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;YACnE,CAAC;QACH,CAAC;QACD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;AACzD,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,mBAAmB,CAAC,IAAc;IAChD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAC3C,MAAM,QAAQ,GAAG,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC9D,MAAM,MAAM,GAAG,SAAS,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;IAE9D,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;CAUf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC;QACxC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IACD,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,KAAK,CAAC,qBAAqB,QAAQ,EAAE,CAAC,CAAC;QAC/C,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,OAAwB,CAAC;IAC7B,IAAI,CAAC;QACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACrC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,MAAM,KAAK,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC;IAElC,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC5C,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,sBAAsB,CAAC,CAAC;IACpC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5B,OAAO,CAAC,GAAG,CAAC,YAAY,KAAK,CAAC,KAAK,CAAC,MAAM,eAAe,KAAK,CAAC,KAAK,CAAC,MAAM,kBAAkB,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IACtH,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5B,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3B,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;QAChC,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;YACzC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,YAAY,MAAM,CAAC,CAAC,EAAE,aAAa,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;QACnF,CAAC;IACH,CAAC;IAED,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;QAC7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAC7D,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC/D,CAAC;IACH,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;AAC9B,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"finding-ownership-map.d.ts","sourceRoot":"","sources":["../../src/commands/finding-ownership-map.ts"],"names":[],"mappings":"AAAA;;GAEG;AA8EH,wBAAgB,sBAAsB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAkE3D"}
|
|
@@ -0,0 +1,118 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Finding-ownership-map — Map findings to code owners.
|
|
3
|
+
*/
|
|
4
|
+
import { readFileSync, existsSync } from "fs";
|
|
5
|
+
// ─── Analysis ───────────────────────────────────────────────────────────────
|
|
6
|
+
function parseCodeowners(path) {
|
|
7
|
+
if (!existsSync(path))
|
|
8
|
+
return [];
|
|
9
|
+
const content = readFileSync(path, "utf-8");
|
|
10
|
+
const mappings = [];
|
|
11
|
+
for (const line of content.split("\n")) {
|
|
12
|
+
const trimmed = line.trim();
|
|
13
|
+
if (trimmed.startsWith("#") || trimmed.length === 0)
|
|
14
|
+
continue;
|
|
15
|
+
const parts = trimmed.split(/\s+/);
|
|
16
|
+
if (parts.length >= 2) {
|
|
17
|
+
mappings.push({ pattern: parts[0], owner: parts[1] });
|
|
18
|
+
}
|
|
19
|
+
}
|
|
20
|
+
return mappings;
|
|
21
|
+
}
|
|
22
|
+
function mapOwnership(verdict, owners) {
|
|
23
|
+
const ownerMap = new Map();
|
|
24
|
+
const defaultOwner = "unassigned";
|
|
25
|
+
for (const f of verdict.findings) {
|
|
26
|
+
// Use ruleId prefix as a rough domain-to-owner mapping
|
|
27
|
+
let assignedOwner = defaultOwner;
|
|
28
|
+
const rulePrefix = f.ruleId.split("-")[0];
|
|
29
|
+
for (const o of owners) {
|
|
30
|
+
if (o.pattern.includes(rulePrefix) || f.ruleId.includes(o.pattern.replace("*", ""))) {
|
|
31
|
+
assignedOwner = o.owner;
|
|
32
|
+
break;
|
|
33
|
+
}
|
|
34
|
+
}
|
|
35
|
+
const existing = ownerMap.get(assignedOwner);
|
|
36
|
+
const sev = (f.severity || "medium").toLowerCase();
|
|
37
|
+
if (existing) {
|
|
38
|
+
existing.findingCount++;
|
|
39
|
+
if (sev === "critical")
|
|
40
|
+
existing.criticalCount++;
|
|
41
|
+
if (sev === "high")
|
|
42
|
+
existing.highCount++;
|
|
43
|
+
if (!existing.ruleIds.includes(f.ruleId))
|
|
44
|
+
existing.ruleIds.push(f.ruleId);
|
|
45
|
+
}
|
|
46
|
+
else {
|
|
47
|
+
ownerMap.set(assignedOwner, {
|
|
48
|
+
owner: assignedOwner,
|
|
49
|
+
findingCount: 1,
|
|
50
|
+
criticalCount: sev === "critical" ? 1 : 0,
|
|
51
|
+
highCount: sev === "high" ? 1 : 0,
|
|
52
|
+
ruleIds: [f.ruleId],
|
|
53
|
+
});
|
|
54
|
+
}
|
|
55
|
+
}
|
|
56
|
+
return [...ownerMap.values()].sort((a, b) => b.findingCount - a.findingCount);
|
|
57
|
+
}
|
|
58
|
+
// ─── CLI ────────────────────────────────────────────────────────────────────
|
|
59
|
+
export function runFindingOwnershipMap(argv) {
|
|
60
|
+
const fileIdx = argv.indexOf("--file");
|
|
61
|
+
const ownersIdx = argv.indexOf("--codeowners");
|
|
62
|
+
const formatIdx = argv.indexOf("--format");
|
|
63
|
+
const filePath = fileIdx >= 0 ? argv[fileIdx + 1] : undefined;
|
|
64
|
+
const ownersPath = ownersIdx >= 0 ? argv[ownersIdx + 1] : "CODEOWNERS";
|
|
65
|
+
const format = formatIdx >= 0 ? argv[formatIdx + 1] : "table";
|
|
66
|
+
if (argv.includes("--help") || argv.includes("-h")) {
|
|
67
|
+
console.log(`
|
|
68
|
+
judges finding-ownership-map — Map findings to code owners
|
|
69
|
+
|
|
70
|
+
Usage:
|
|
71
|
+
judges finding-ownership-map --file <verdict.json> [--codeowners <path>]
|
|
72
|
+
[--format table|json]
|
|
73
|
+
|
|
74
|
+
Options:
|
|
75
|
+
--file <path> Path to verdict JSON file (required)
|
|
76
|
+
--codeowners <path> Path to CODEOWNERS file (default: CODEOWNERS)
|
|
77
|
+
--format <fmt> Output format: table (default), json
|
|
78
|
+
--help, -h Show this help
|
|
79
|
+
`);
|
|
80
|
+
return;
|
|
81
|
+
}
|
|
82
|
+
if (!filePath) {
|
|
83
|
+
console.error("Error: --file required");
|
|
84
|
+
process.exitCode = 1;
|
|
85
|
+
return;
|
|
86
|
+
}
|
|
87
|
+
if (!existsSync(filePath)) {
|
|
88
|
+
console.error(`Error: not found: ${filePath}`);
|
|
89
|
+
process.exitCode = 1;
|
|
90
|
+
return;
|
|
91
|
+
}
|
|
92
|
+
let verdict;
|
|
93
|
+
try {
|
|
94
|
+
verdict = JSON.parse(readFileSync(filePath, "utf-8"));
|
|
95
|
+
}
|
|
96
|
+
catch {
|
|
97
|
+
console.error("Error: invalid JSON");
|
|
98
|
+
process.exitCode = 1;
|
|
99
|
+
return;
|
|
100
|
+
}
|
|
101
|
+
const owners = parseCodeowners(ownersPath);
|
|
102
|
+
const entries = mapOwnership(verdict, owners);
|
|
103
|
+
if (format === "json") {
|
|
104
|
+
console.log(JSON.stringify(entries, null, 2));
|
|
105
|
+
return;
|
|
106
|
+
}
|
|
107
|
+
console.log(`\nOwnership Map (${entries.length} owners)`);
|
|
108
|
+
console.log("═".repeat(65));
|
|
109
|
+
console.log(`${"Owner".padEnd(22)} ${"Findings".padEnd(10)} ${"Critical".padEnd(10)} ${"High".padEnd(8)} Rules`);
|
|
110
|
+
console.log("─".repeat(65));
|
|
111
|
+
for (const e of entries) {
|
|
112
|
+
const owner = e.owner.length > 20 ? e.owner.slice(0, 20) + "…" : e.owner;
|
|
113
|
+
const ruleStr = e.ruleIds.slice(0, 3).join(", ");
|
|
114
|
+
console.log(`${owner.padEnd(22)} ${String(e.findingCount).padEnd(10)} ${String(e.criticalCount).padEnd(10)} ${String(e.highCount).padEnd(8)} ${ruleStr}`);
|
|
115
|
+
}
|
|
116
|
+
console.log("═".repeat(65));
|
|
117
|
+
}
|
|
118
|
+
//# sourceMappingURL=finding-ownership-map.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"finding-ownership-map.js","sourceRoot":"","sources":["../../src/commands/finding-ownership-map.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAkB9C,+EAA+E;AAE/E,SAAS,eAAe,CAAC,IAAY;IACnC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,EAAE,CAAC;IACjC,MAAM,OAAO,GAAG,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;IAC5C,MAAM,QAAQ,GAAmB,EAAE,CAAC;IAEpC,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QACvC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAC5B,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;YAAE,SAAS;QAC9D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QACnC,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;YACtB,QAAQ,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,YAAY,CAAC,OAAwB,EAAE,MAAsB;IACpE,MAAM,QAAQ,GAAG,IAAI,GAAG,EAA0B,CAAC;IACnD,MAAM,YAAY,GAAG,YAAY,CAAC;IAElC,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACjC,uDAAuD;QACvD,IAAI,aAAa,GAAG,YAAY,CAAC;QACjC,MAAM,UAAU,GAAG,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAE1C,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;YACvB,IAAI,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC;gBACpF,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC;gBACxB,MAAM;YACR,CAAC;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC;QAC7C,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,QAAQ,IAAI,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;QACnD,IAAI,QAAQ,EAAE,CAAC;YACb,QAAQ,CAAC,YAAY,EAAE,CAAC;YACxB,IAAI,GAAG,KAAK,UAAU;gBAAE,QAAQ,CAAC,aAAa,EAAE,CAAC;YACjD,IAAI,GAAG,KAAK,MAAM;gBAAE,QAAQ,CAAC,SAAS,EAAE,CAAC;YACzC,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC;gBAAE,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;QAC5E,CAAC;aAAM,CAAC;YACN,QAAQ,CAAC,GAAG,CAAC,aAAa,EAAE;gBAC1B,KAAK,EAAE,aAAa;gBACpB,YAAY,EAAE,CAAC;gBACf,aAAa,EAAE,GAAG,KAAK,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBACzC,SAAS,EAAE,GAAG,KAAK,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBACjC,OAAO,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC;aACpB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,GAAG,CAAC,CAAC,YAAY,CAAC,CAAC;AAChF,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,sBAAsB,CAAC,IAAc;IACnD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;IAC/C,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAC3C,MAAM,QAAQ,GAAG,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC9D,MAAM,UAAU,GAAG,SAAS,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC;IACvE,MAAM,MAAM,GAAG,SAAS,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;IAE9D,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;CAYf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC;QACxC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IACD,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,KAAK,CAAC,qBAAqB,QAAQ,EAAE,CAAC,CAAC;QAC/C,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,OAAwB,CAAC;IAC7B,IAAI,CAAC;QACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QACrC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,eAAe,CAAC,UAAU,CAAC,CAAC;IAC3C,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAE9C,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC9C,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,oBAAoB,OAAO,CAAC,MAAM,UAAU,CAAC,CAAC;IAC1D,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5B,OAAO,CAAC,GAAG,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IACjH,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5B,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;QACzE,MAAM,OAAO,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACjD,OAAO,CAAC,GAAG,CACT,GAAG,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,OAAO,EAAE,CAC7I,CAAC;IACJ,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;AAC9B,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"review-audit-trail.d.ts","sourceRoot":"","sources":["../../src/commands/review-audit-trail.ts"],"names":[],"mappings":"AAAA;;GAEG;AAyCH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAwFxD"}
|
|
@@ -0,0 +1,97 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Review-audit-trail — Maintain an audit trail of all reviews performed.
|
|
3
|
+
*/
|
|
4
|
+
import { readFileSync, writeFileSync, existsSync } from "fs";
|
|
5
|
+
// ─── Logic ──────────────────────────────────────────────────────────────────
|
|
6
|
+
function loadAuditLog(path) {
|
|
7
|
+
if (!existsSync(path)) {
|
|
8
|
+
return { version: 1, entries: [] };
|
|
9
|
+
}
|
|
10
|
+
try {
|
|
11
|
+
return JSON.parse(readFileSync(path, "utf-8"));
|
|
12
|
+
}
|
|
13
|
+
catch {
|
|
14
|
+
return { version: 1, entries: [] };
|
|
15
|
+
}
|
|
16
|
+
}
|
|
17
|
+
function generateId() {
|
|
18
|
+
return `audit-${Date.now()}-${Math.random().toString(36).slice(2, 8)}`;
|
|
19
|
+
}
|
|
20
|
+
// ─── CLI ────────────────────────────────────────────────────────────────────
|
|
21
|
+
export function runReviewAuditTrail(argv) {
|
|
22
|
+
const fileIdx = argv.indexOf("--file");
|
|
23
|
+
const logIdx = argv.indexOf("--log");
|
|
24
|
+
const lastIdx = argv.indexOf("--last");
|
|
25
|
+
const formatIdx = argv.indexOf("--format");
|
|
26
|
+
const filePath = fileIdx >= 0 ? argv[fileIdx + 1] : undefined;
|
|
27
|
+
const logPath = logIdx >= 0 ? argv[logIdx + 1] : ".judges-audit.json";
|
|
28
|
+
const lastN = lastIdx >= 0 ? parseInt(argv[lastIdx + 1], 10) : undefined;
|
|
29
|
+
const format = formatIdx >= 0 ? argv[formatIdx + 1] : "table";
|
|
30
|
+
if (argv.includes("--help") || argv.includes("-h")) {
|
|
31
|
+
console.log(`
|
|
32
|
+
judges review-audit-trail — Maintain review audit trail
|
|
33
|
+
|
|
34
|
+
Usage:
|
|
35
|
+
judges review-audit-trail [--file <verdict.json>] [--log <path>]
|
|
36
|
+
[--last <n>] [--format table|json]
|
|
37
|
+
|
|
38
|
+
Options:
|
|
39
|
+
--file <path> Add verdict to audit trail
|
|
40
|
+
--log <path> Audit log file (default: .judges-audit.json)
|
|
41
|
+
--last <n> Show last N entries
|
|
42
|
+
--format <fmt> Output format: table (default), json
|
|
43
|
+
--help, -h Show this help
|
|
44
|
+
`);
|
|
45
|
+
return;
|
|
46
|
+
}
|
|
47
|
+
const log = loadAuditLog(logPath);
|
|
48
|
+
// Add mode
|
|
49
|
+
if (filePath) {
|
|
50
|
+
if (!existsSync(filePath)) {
|
|
51
|
+
console.error(`Error: not found: ${filePath}`);
|
|
52
|
+
process.exitCode = 1;
|
|
53
|
+
return;
|
|
54
|
+
}
|
|
55
|
+
let verdict;
|
|
56
|
+
try {
|
|
57
|
+
verdict = JSON.parse(readFileSync(filePath, "utf-8"));
|
|
58
|
+
}
|
|
59
|
+
catch {
|
|
60
|
+
console.error("Error: invalid JSON");
|
|
61
|
+
process.exitCode = 1;
|
|
62
|
+
return;
|
|
63
|
+
}
|
|
64
|
+
log.entries.push({
|
|
65
|
+
id: generateId(),
|
|
66
|
+
timestamp: new Date().toISOString(),
|
|
67
|
+
verdict: verdict.overallVerdict,
|
|
68
|
+
score: verdict.overallScore,
|
|
69
|
+
findingCount: verdict.findings.length,
|
|
70
|
+
criticalCount: verdict.criticalCount,
|
|
71
|
+
summary: verdict.summary.slice(0, 200),
|
|
72
|
+
});
|
|
73
|
+
writeFileSync(logPath, JSON.stringify(log, null, 2));
|
|
74
|
+
console.log(`Added audit entry (${log.entries.length} total)`);
|
|
75
|
+
return;
|
|
76
|
+
}
|
|
77
|
+
// View mode
|
|
78
|
+
let entries = log.entries;
|
|
79
|
+
if (lastN !== undefined) {
|
|
80
|
+
entries = entries.slice(-lastN);
|
|
81
|
+
}
|
|
82
|
+
if (format === "json") {
|
|
83
|
+
console.log(JSON.stringify(entries, null, 2));
|
|
84
|
+
return;
|
|
85
|
+
}
|
|
86
|
+
console.log(`\nAudit Trail (${entries.length} entries)`);
|
|
87
|
+
console.log("═".repeat(75));
|
|
88
|
+
console.log(`${"Timestamp".padEnd(22)} ${"Verdict".padEnd(10)} ${"Score".padEnd(8)} ${"Findings".padEnd(10)} Summary`);
|
|
89
|
+
console.log("─".repeat(75));
|
|
90
|
+
for (const e of entries) {
|
|
91
|
+
const ts = e.timestamp.slice(0, 19).replace("T", " ");
|
|
92
|
+
const summary = e.summary.length > 20 ? e.summary.slice(0, 20) + "…" : e.summary;
|
|
93
|
+
console.log(`${ts.padEnd(22)} ${e.verdict.padEnd(10)} ${String(e.score).padEnd(8)} ${String(e.findingCount).padEnd(10)} ${summary}`);
|
|
94
|
+
}
|
|
95
|
+
console.log("═".repeat(75));
|
|
96
|
+
}
|
|
97
|
+
//# sourceMappingURL=review-audit-trail.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"review-audit-trail.js","sourceRoot":"","sources":["../../src/commands/review-audit-trail.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAoB7D,+EAA+E;AAE/E,SAAS,YAAY,CAAC,IAAY;IAChC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QACtB,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;IACrC,CAAC;IACD,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC;IACjD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;IACrC,CAAC;AACH,CAAC;AAED,SAAS,UAAU;IACjB,OAAO,SAAS,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;AACzE,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,mBAAmB,CAAC,IAAc;IAChD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IACrC,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAC3C,MAAM,QAAQ,GAAG,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC9D,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,oBAAoB,CAAC;IACtE,MAAM,KAAK,GAAG,OAAO,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACzE,MAAM,MAAM,GAAG,SAAS,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;IAE9D,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;CAaf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,GAAG,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;IAElC,WAAW;IACX,IAAI,QAAQ,EAAE,CAAC;QACb,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,KAAK,CAAC,qBAAqB,QAAQ,EAAE,CAAC,CAAC;YAC/C,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;YACrB,OAAO;QACT,CAAC;QAED,IAAI,OAAwB,CAAC;QAC7B,IAAI,CAAC;YACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;QACxD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;YACrC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;YACrB,OAAO;QACT,CAAC;QAED,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC;YACf,EAAE,EAAE,UAAU,EAAE;YAChB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,OAAO,EAAE,OAAO,CAAC,cAAc;YAC/B,KAAK,EAAE,OAAO,CAAC,YAAY;YAC3B,YAAY,EAAE,OAAO,CAAC,QAAQ,CAAC,MAAM;YACrC,aAAa,EAAE,OAAO,CAAC,aAAa;YACpC,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;SACvC,CAAC,CAAC;QAEH,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACrD,OAAO,CAAC,GAAG,CAAC,sBAAsB,GAAG,CAAC,OAAO,CAAC,MAAM,SAAS,CAAC,CAAC;QAC/D,OAAO;IACT,CAAC;IAED,YAAY;IACZ,IAAI,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC;IAC1B,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACxB,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC;IAClC,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC9C,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,kBAAkB,OAAO,CAAC,MAAM,WAAW,CAAC,CAAC;IACzD,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5B,OAAO,CAAC,GAAG,CACT,GAAG,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC,UAAU,CAC1G,CAAC;IACF,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5B,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,MAAM,EAAE,GAAG,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACtD,MAAM,OAAO,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;QACjF,OAAO,CAAC,GAAG,CACT,GAAG,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,OAAO,EAAE,CACxH,CAAC;IACJ,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;AAC9B,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"review-compliance-report.d.ts","sourceRoot":"","sources":["../../src/commands/review-compliance-report.ts"],"names":[],"mappings":"AAAA;;GAEG;AA4FH,wBAAgB,yBAAyB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CA0E9D"}
|