npm - @mandujs/core - Versions diffs - 0.12.1 → 0.13.0 - Mend

@mandujs/core 0.12.1 → 0.13.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (177) hide show

package/README.ko.md +304 -304
package/README.md +653 -653
package/package.json +8 -8
package/src/brain/architecture/analyzer.ts +28 -26
package/src/brain/doctor/analyzer.ts +1 -1
package/src/bundler/build.ts +91 -91
package/src/bundler/css.ts +302 -302
package/src/bundler/dev.ts +0 -1
package/src/change/history.ts +3 -3
package/src/change/snapshot.ts +10 -9
package/src/change/transaction.ts +2 -2
package/src/client/Link.tsx +227 -227
package/src/client/globals.ts +44 -44
package/src/client/hooks.ts +267 -267
package/src/client/index.ts +5 -5
package/src/client/island.ts +8 -8
package/src/client/router.ts +435 -435
package/src/client/runtime.ts +23 -23
package/src/client/serialize.ts +404 -404
package/src/client/window-state.ts +101 -101
package/src/config/mandu.ts +94 -96
package/src/config/validate.ts +213 -215
package/src/config/watcher.ts +311 -311
package/src/constants.ts +40 -40
package/src/content/content-layer.ts +314 -314
package/src/content/content.test.ts +433 -433
package/src/content/data-store.ts +245 -245
package/src/content/digest.ts +133 -133
package/src/content/index.ts +164 -164
package/src/content/loader-context.ts +172 -172
package/src/content/loaders/api.ts +216 -216
package/src/content/loaders/file.ts +169 -169
package/src/content/loaders/glob.ts +252 -252
package/src/content/loaders/index.ts +34 -34
package/src/content/loaders/types.ts +137 -137
package/src/content/meta-store.ts +209 -209
package/src/content/types.ts +282 -282
package/src/content/watcher.ts +135 -135
package/src/contract/client-safe.test.ts +42 -42
package/src/contract/client-safe.ts +114 -114
package/src/contract/client.ts +16 -16
package/src/contract/define.ts +459 -459
package/src/contract/handler.ts +10 -10
package/src/contract/normalize.test.ts +276 -276
package/src/contract/normalize.ts +404 -404
package/src/contract/registry.test.ts +206 -206
package/src/contract/registry.ts +568 -568
package/src/contract/schema.ts +48 -48
package/src/contract/types.ts +58 -58
package/src/contract/validator.ts +32 -32
package/src/devtools/ai/context-builder.ts +375 -375
package/src/devtools/ai/index.ts +25 -25
package/src/devtools/ai/mcp-connector.ts +465 -465
package/src/devtools/client/catchers/error-catcher.ts +327 -327
package/src/devtools/client/catchers/index.ts +18 -18
package/src/devtools/client/catchers/network-proxy.ts +363 -363
package/src/devtools/client/components/index.ts +39 -39
package/src/devtools/client/components/kitchen-root.tsx +362 -362
package/src/devtools/client/components/mandu-character.tsx +241 -241
package/src/devtools/client/components/overlay.tsx +368 -368
package/src/devtools/client/components/panel/errors-panel.tsx +259 -259
package/src/devtools/client/components/panel/guard-panel.tsx +244 -244
package/src/devtools/client/components/panel/index.ts +32 -32
package/src/devtools/client/components/panel/islands-panel.tsx +304 -304
package/src/devtools/client/components/panel/network-panel.tsx +292 -292
package/src/devtools/client/components/panel/panel-container.tsx +259 -259
package/src/devtools/client/filters/context-filters.ts +282 -282
package/src/devtools/client/filters/index.ts +16 -16
package/src/devtools/client/index.ts +63 -63
package/src/devtools/client/persistence.ts +335 -335
package/src/devtools/client/state-manager.ts +478 -478
package/src/devtools/design-tokens.ts +263 -263
package/src/devtools/hook/create-hook.ts +207 -207
package/src/devtools/hook/index.ts +13 -13
package/src/devtools/index.ts +439 -439
package/src/devtools/init.ts +266 -266
package/src/devtools/protocol.ts +237 -237
package/src/devtools/server/index.ts +17 -17
package/src/devtools/server/source-context.ts +444 -444
package/src/devtools/types.ts +319 -319
package/src/devtools/worker/index.ts +25 -25
package/src/devtools/worker/redaction-worker.ts +222 -222
package/src/devtools/worker/worker-manager.ts +409 -409
package/src/error/classifier.ts +2 -2
package/src/error/domains.ts +265 -265
package/src/error/formatter.ts +32 -32
package/src/error/result.ts +46 -46
package/src/error/stack-analyzer.ts +5 -0
package/src/error/types.ts +6 -6
package/src/errors/extractor.ts +409 -409
package/src/errors/index.ts +19 -19
package/src/filling/auth.ts +308 -308
package/src/filling/context.ts +569 -569
package/src/filling/deps.ts +238 -238
package/src/generator/contract-glue.ts +2 -1
package/src/generator/generate.ts +12 -10
package/src/generator/index.ts +3 -3
package/src/generator/templates.ts +80 -79
package/src/guard/analyzer.ts +360 -360
package/src/guard/ast-analyzer.ts +806 -806
package/src/guard/auto-correct.ts +1 -1
package/src/guard/check.ts +128 -128
package/src/guard/contract-guard.ts +9 -9
package/src/guard/file-type.test.ts +24 -24
package/src/guard/healing.ts +2 -0
package/src/guard/index.ts +2 -0
package/src/guard/negotiation.ts +430 -4
package/src/guard/presets/atomic.ts +70 -70
package/src/guard/presets/clean.ts +77 -77
package/src/guard/presets/cqrs.test.ts +175 -0
package/src/guard/presets/cqrs.ts +107 -0
package/src/guard/presets/fsd.ts +79 -79
package/src/guard/presets/hexagonal.ts +68 -68
package/src/guard/presets/index.ts +291 -288
package/src/guard/reporter.ts +445 -445
package/src/guard/rules.ts +12 -12
package/src/guard/statistics.ts +578 -578
package/src/guard/suggestions.ts +358 -352
package/src/guard/types.ts +348 -347
package/src/guard/validator.ts +834 -834
package/src/guard/watcher.ts +404 -404
package/src/index.ts +1 -0
package/src/intent/index.ts +310 -310
package/src/island/index.ts +304 -304
package/src/logging/index.ts +22 -22
package/src/logging/transports.ts +365 -365
package/src/paths.test.ts +47 -0
package/src/paths.ts +47 -0
package/src/plugins/index.ts +38 -38
package/src/plugins/registry.ts +377 -377
package/src/plugins/types.ts +363 -363
package/src/report/build.ts +1 -1
package/src/report/index.ts +1 -1
package/src/router/fs-patterns.ts +387 -387
package/src/router/fs-routes.ts +344 -401
package/src/router/fs-scanner.ts +497 -497
package/src/router/fs-types.ts +270 -278
package/src/router/index.ts +81 -81
package/src/runtime/boundary.tsx +232 -232
package/src/runtime/compose.ts +222 -222
package/src/runtime/lifecycle.ts +381 -381
package/src/runtime/logger.test.ts +345 -345
package/src/runtime/logger.ts +677 -677
package/src/runtime/router.test.ts +476 -476
package/src/runtime/router.ts +105 -105
package/src/runtime/security.ts +155 -155
package/src/runtime/server.ts +24 -24
package/src/runtime/session-key.ts +328 -328
package/src/runtime/ssr.ts +367 -367
package/src/runtime/streaming-ssr.ts +1245 -1245
package/src/runtime/trace.ts +144 -144
package/src/seo/index.ts +214 -214
package/src/seo/integration/ssr.ts +307 -307
package/src/seo/render/basic.ts +427 -427
package/src/seo/render/index.ts +143 -143
package/src/seo/render/jsonld.ts +539 -539
package/src/seo/render/opengraph.ts +191 -191
package/src/seo/render/robots.ts +116 -116
package/src/seo/render/sitemap.ts +137 -137
package/src/seo/render/twitter.ts +126 -126
package/src/seo/resolve/index.ts +353 -353
package/src/seo/resolve/opengraph.ts +143 -143
package/src/seo/resolve/robots.ts +73 -73
package/src/seo/resolve/title.ts +94 -94
package/src/seo/resolve/twitter.ts +73 -73
package/src/seo/resolve/url.ts +97 -97
package/src/seo/routes/index.ts +290 -290
package/src/seo/types.ts +575 -575
package/src/slot/validator.ts +39 -39
package/src/spec/index.ts +3 -3
package/src/spec/load.ts +76 -76
package/src/spec/lock.ts +56 -56
package/src/utils/bun.ts +8 -8
package/src/utils/lru-cache.ts +75 -75
package/src/utils/safe-io.ts +188 -188
package/src/utils/string-safe.ts +298 -298
package/src/watcher/rules.ts +5 -5

package/src/devtools/client/filters/context-filters.ts CHANGED Viewed

@@ -1,282 +1,282 @@
-/**
- * Mandu Kitchen DevTools - Context Filters
- * @version 1.0.3
- *
- * 마스킹 파이프라인 - PII/시크릿 정보 필터링
- */
-import type { RedactPattern } from '../../types';
-// ============================================================================
-// Built-in Patterns
-// ============================================================================
-/**
- * 기본 제공 시크릿 패턴
- */
-const BUILT_IN_SECRET_PATTERNS: RegExp[] = [
-  // JWT tokens
-  /eyJ[A-Za-z0-9-_]+\.eyJ[A-Za-z0-9-_]+\.[A-Za-z0-9-_.+/]*/g,
-  // AWS keys
-  /AKIA[0-9A-Z]{16}/g,
-  /[A-Za-z0-9/+=]{40}/g, // AWS secret (when near access key)
-  // API keys (generic patterns)
-  /api[_-]?key["\s:=]+["']?[A-Za-z0-9-_]{20,}["']?/gi,
-  /secret[_-]?key["\s:=]+["']?[A-Za-z0-9-_]{20,}["']?/gi,
-  // Private keys
-  /-----BEGIN [A-Z ]+ PRIVATE KEY-----[\s\S]*?-----END [A-Z ]+ PRIVATE KEY-----/g,
-  // Bearer tokens
-  /Bearer\s+[A-Za-z0-9-_.]+/gi,
-  // Basic auth
-  /Basic\s+[A-Za-z0-9+/=]+/gi,
-];
-/**
- * PII 패턴 (이메일, 전화번호, IP 등)
- */
-const PII_PATTERNS: RegExp[] = [
-  // Email
-  /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g,
-  // Phone numbers (다양한 형식)
-  /\b\d{3}[-.]?\d{3,4}[-.]?\d{4}\b/g,
-  /\+\d{1,3}[-.\s]?\(?\d{1,4}\)?[-.\s]?\d{1,4}[-.\s]?\d{1,9}/g,
-  // IPv4
-  /\b\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}\b/g,
-  // IPv6
-  /([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}/g,
-  // Credit card (기본 형식만)
-  /\b\d{4}[-\s]?\d{4}[-\s]?\d{4}[-\s]?\d{4}\b/g,
-  // SSN (US)
-  /\b\d{3}-\d{2}-\d{4}\b/g,
-];
-// ============================================================================
-// Filter Functions
-// ============================================================================
-/**
- * Phase 1: 주석 제거
- */
-export function removeComments(code: string): string {
-  // Single-line comments
-  let result = code.replace(/\/\/.*$/gm, '');
-  // Multi-line comments
-  result = result.replace(/\/\*[\s\S]*?\*\//g, '');
-  // HTML comments
-  result = result.replace(/<!--[\s\S]*?-->/g, '');
-  return result;
-}
-/**
- * Phase 1b: 문자열 처리
- *
- * @param mode
- * - 'smart': PII/시크릿 패턴만 마스킹 (권장)
- * - 'strip': 모든 문자열 제거
- */
-export function handleStrings(code: string, mode: 'smart' | 'strip'): string {
-  if (mode === 'strip') {
-    // 모든 문자열 리터럴 제거
-    return code
-      .replace(/"(?:[^"\\]|\\.)*"/g, '"[STRING]"')
-      .replace(/'(?:[^'\\]|\\.)*'/g, "'[STRING]'")
-      .replace(/`(?:[^`\\]|\\.)*`/g, '`[STRING]`');
-  }
-  // Smart mode: PII/시크릿만 마스킹
-  let result = code;
-  // 시크릿 패턴 마스킹
-  for (const pattern of BUILT_IN_SECRET_PATTERNS) {
-    result = result.replace(pattern, '[SECRET]');
-  }
-  // PII 패턴 마스킹
-  for (const pattern of PII_PATTERNS) {
-    result = result.replace(pattern, '[PII]');
-  }
-  return result;
-}
-/**
- * Phase 2: 기본 보안 마스킹 (항상 적용, 비활성화 불가)
- */
-export function redactBuiltInSecrets(text: string): string {
-  let result = text;
-  for (const pattern of BUILT_IN_SECRET_PATTERNS) {
-    // Reset regex state for global patterns
-    pattern.lastIndex = 0;
-    result = result.replace(pattern, '[REDACTED]');
-  }
-  return result;
-}
-/**
- * Phase 3: 사용자 정의 패턴 적용 (옵트인)
- */
-export function redactCustomPatterns(
-  text: string,
-  patterns: RedactPattern[]
-): string {
-  let result = text;
-  for (const patternDef of patterns) {
-    try {
-      const regex = new RegExp(patternDef.source, patternDef.flags ?? 'gi');
-      const replacement = patternDef.replacement ?? '[REDACTED]';
-      result = result.replace(regex, replacement);
-    } catch (e) {
-      // 잘못된 정규식은 무시
-      console.warn(
-        `[Mandu Kitchen] Invalid redact pattern: ${patternDef.source}`,
-        e
-      );
-    }
-  }
-  return result;
-}
-/**
- * Phase 4: 용량 제한 (항상 마지막)
- */
-export function truncate(text: string, maxBytes: number): string {
-  if (maxBytes <= 0) return text;
-  // UTF-8 바이트 길이 계산
-  const encoder = new TextEncoder();
-  const encoded = encoder.encode(text);
-  if (encoded.length <= maxBytes) {
-    return text;
-  }
-  // 바이트 단위로 자르고 디코딩
-  const truncated = encoded.slice(0, maxBytes);
-  const decoder = new TextDecoder('utf-8', { fatal: false });
-  let result = decoder.decode(truncated);
-  // 잘린 멀티바이트 문자 처리 (마지막 불완전한 문자 제거)
-  if (result.endsWith('\ufffd')) {
-    result = result.slice(0, -1);
-  }
-  return result + '... [TRUNCATED]';
-}
-// ============================================================================
-// Context Filters Pipeline
-// ============================================================================
-export interface FilterOptions {
-  /** 문자열 처리 모드 */
-  stringMode?: 'smart' | 'strip';
-  /** 사용자 정의 패턴 */
-  customPatterns?: RedactPattern[];
-  /** 최대 바이트 */
-  maxBytes?: number;
-  /** 주석 제거 여부 (기본: true) */
-  removeComments?: boolean;
-}
-/**
- * 전체 필터 파이프라인 실행
- */
-export function applyContextFilters(
-  text: string,
-  options: FilterOptions = {}
-): string {
-  const {
-    stringMode = 'smart',
-    customPatterns = [],
-    maxBytes = 50_000, // 50KB default
-    removeComments: shouldRemoveComments = true,
-  } = options;
-  let result = text;
-  // Phase 1: 주석 제거
-  if (shouldRemoveComments) {
-    result = removeComments(result);
-  }
-  // Phase 1b: 문자열 처리
-  result = handleStrings(result, stringMode);
-  // Phase 2: 기본 보안 마스킹 (항상 적용)
-  result = redactBuiltInSecrets(result);
-  // Phase 3: 사용자 정의 패턴
-  if (customPatterns.length > 0) {
-    result = redactCustomPatterns(result, customPatterns);
-  }
-  // Phase 4: 용량 제한 (항상 마지막)
-  result = truncate(result, maxBytes);
-  return result;
-}
-// ============================================================================
-// Stack Trace Sanitizer
-// ============================================================================
-/**
- * 스택 트레이스에서 민감 정보 제거
- */
-export function sanitizeStackTrace(stack: string | undefined): string | undefined {
-  if (!stack) return undefined;
-  let result = stack;
-  // 파일 경로에서 사용자명 제거
-  result = result.replace(/\/Users\/[^/]+\//g, '/Users/[USER]/');
-  result = result.replace(/\\Users\\[^\\]+\\/g, '\\Users\\[USER]\\');
-  result = result.replace(/\/home\/[^/]+\//g, '/home/[USER]/');
-  // 쿼리스트링 파라미터 마스킹
-  result = result.replace(/\?[^\s)]+/g, '?[PARAMS]');
-  // 기본 시크릿 마스킹
-  result = redactBuiltInSecrets(result);
-  return result;
-}
-// ============================================================================
-// Error Message Sanitizer
-// ============================================================================
-/**
- * 에러 메시지에서 민감 정보 제거
- */
-export function sanitizeErrorMessage(message: string): string {
-  let result = message;
-  // PII 마스킹
-  for (const pattern of PII_PATTERNS) {
-    pattern.lastIndex = 0;
-    result = result.replace(pattern, '[PII]');
-  }
-  // 시크릿 마스킹
-  result = redactBuiltInSecrets(result);
-  return result;
-}
+/**
+ * Mandu Kitchen DevTools - Context Filters
+ * @version 1.0.3
+ *
+ * 마스킹 파이프라인 - PII/시크릿 정보 필터링
+ */
+import type { RedactPattern } from '../../types';
+// ============================================================================
+// Built-in Patterns
+// ============================================================================
+/**
+ * 기본 제공 시크릿 패턴
+ */
+const BUILT_IN_SECRET_PATTERNS: RegExp[] = [
+  // JWT tokens
+  /eyJ[A-Za-z0-9-_]+\.eyJ[A-Za-z0-9-_]+\.[A-Za-z0-9-_.+/]*/g,
+  // AWS keys
+  /AKIA[0-9A-Z]{16}/g,
+  /[A-Za-z0-9/+=]{40}/g, // AWS secret (when near access key)
+  // API keys (generic patterns)
+  /api[_-]?key["\s:=]+["']?[A-Za-z0-9-_]{20,}["']?/gi,
+  /secret[_-]?key["\s:=]+["']?[A-Za-z0-9-_]{20,}["']?/gi,
+  // Private keys
+  /-----BEGIN [A-Z ]+ PRIVATE KEY-----[\s\S]*?-----END [A-Z ]+ PRIVATE KEY-----/g,
+  // Bearer tokens
+  /Bearer\s+[A-Za-z0-9-_.]+/gi,
+  // Basic auth
+  /Basic\s+[A-Za-z0-9+/=]+/gi,
+];
+/**
+ * PII 패턴 (이메일, 전화번호, IP 등)
+ */
+const PII_PATTERNS: RegExp[] = [
+  // Email
+  /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g,
+  // Phone numbers (다양한 형식)
+  /\b\d{3}[-.]?\d{3,4}[-.]?\d{4}\b/g,
+  /\+\d{1,3}[-.\s]?\(?\d{1,4}\)?[-.\s]?\d{1,4}[-.\s]?\d{1,9}/g,
+  // IPv4
+  /\b\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}\b/g,
+  // IPv6
+  /([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}/g,
+  // Credit card (기본 형식만)
+  /\b\d{4}[-\s]?\d{4}[-\s]?\d{4}[-\s]?\d{4}\b/g,
+  // SSN (US)
+  /\b\d{3}-\d{2}-\d{4}\b/g,
+];
+// ============================================================================
+// Filter Functions
+// ============================================================================
+/**
+ * Phase 1: 주석 제거
+ */
+export function removeComments(code: string): string {
+  // Single-line comments
+  let result = code.replace(/\/\/.*$/gm, '');
+  // Multi-line comments
+  result = result.replace(/\/\*[\s\S]*?\*\//g, '');
+  // HTML comments
+  result = result.replace(/<!--[\s\S]*?-->/g, '');
+  return result;
+}
+/**
+ * Phase 1b: 문자열 처리
+ *
+ * @param mode
+ * - 'smart': PII/시크릿 패턴만 마스킹 (권장)
+ * - 'strip': 모든 문자열 제거
+ */
+export function handleStrings(code: string, mode: 'smart' | 'strip'): string {
+  if (mode === 'strip') {
+    // 모든 문자열 리터럴 제거
+    return code
+      .replace(/"(?:[^"\\]|\\.)*"/g, '"[STRING]"')
+      .replace(/'(?:[^'\\]|\\.)*'/g, "'[STRING]'")
+      .replace(/`(?:[^`\\]|\\.)*`/g, '`[STRING]`');
+  }
+  // Smart mode: PII/시크릿만 마스킹
+  let result = code;
+  // 시크릿 패턴 마스킹
+  for (const pattern of BUILT_IN_SECRET_PATTERNS) {
+    result = result.replace(pattern, '[SECRET]');
+  }
+  // PII 패턴 마스킹
+  for (const pattern of PII_PATTERNS) {
+    result = result.replace(pattern, '[PII]');
+  }
+  return result;
+}
+/**
+ * Phase 2: 기본 보안 마스킹 (항상 적용, 비활성화 불가)
+ */
+export function redactBuiltInSecrets(text: string): string {
+  let result = text;
+  for (const pattern of BUILT_IN_SECRET_PATTERNS) {
+    // Reset regex state for global patterns
+    pattern.lastIndex = 0;
+    result = result.replace(pattern, '[REDACTED]');
+  }
+  return result;
+}
+/**
+ * Phase 3: 사용자 정의 패턴 적용 (옵트인)
+ */
+export function redactCustomPatterns(
+  text: string,
+  patterns: RedactPattern[]
+): string {
+  let result = text;
+  for (const patternDef of patterns) {
+    try {
+      const regex = new RegExp(patternDef.source, patternDef.flags ?? 'gi');
+      const replacement = patternDef.replacement ?? '[REDACTED]';
+      result = result.replace(regex, replacement);
+    } catch (e) {
+      // 잘못된 정규식은 무시
+      console.warn(
+        `[Mandu Kitchen] Invalid redact pattern: ${patternDef.source}`,
+        e
+      );
+    }
+  }
+  return result;
+}
+/**
+ * Phase 4: 용량 제한 (항상 마지막)
+ */
+export function truncate(text: string, maxBytes: number): string {
+  if (maxBytes <= 0) return text;
+  // UTF-8 바이트 길이 계산
+  const encoder = new TextEncoder();
+  const encoded = encoder.encode(text);
+  if (encoded.length <= maxBytes) {
+    return text;
+  }
+  // 바이트 단위로 자르고 디코딩
+  const truncated = encoded.slice(0, maxBytes);
+  const decoder = new TextDecoder('utf-8', { fatal: false });
+  let result = decoder.decode(truncated);
+  // 잘린 멀티바이트 문자 처리 (마지막 불완전한 문자 제거)
+  if (result.endsWith('\ufffd')) {
+    result = result.slice(0, -1);
+  }
+  return result + '... [TRUNCATED]';
+}
+// ============================================================================
+// Context Filters Pipeline
+// ============================================================================
+export interface FilterOptions {
+  /** 문자열 처리 모드 */
+  stringMode?: 'smart' | 'strip';
+  /** 사용자 정의 패턴 */
+  customPatterns?: RedactPattern[];
+  /** 최대 바이트 */
+  maxBytes?: number;
+  /** 주석 제거 여부 (기본: true) */
+  removeComments?: boolean;
+}
+/**
+ * 전체 필터 파이프라인 실행
+ */
+export function applyContextFilters(
+  text: string,
+  options: FilterOptions = {}
+): string {
+  const {
+    stringMode = 'smart',
+    customPatterns = [],
+    maxBytes = 50_000, // 50KB default
+    removeComments: shouldRemoveComments = true,
+  } = options;
+  let result = text;
+  // Phase 1: 주석 제거
+  if (shouldRemoveComments) {
+    result = removeComments(result);
+  }
+  // Phase 1b: 문자열 처리
+  result = handleStrings(result, stringMode);
+  // Phase 2: 기본 보안 마스킹 (항상 적용)
+  result = redactBuiltInSecrets(result);
+  // Phase 3: 사용자 정의 패턴
+  if (customPatterns.length > 0) {
+    result = redactCustomPatterns(result, customPatterns);
+  }
+  // Phase 4: 용량 제한 (항상 마지막)
+  result = truncate(result, maxBytes);
+  return result;
+}
+// ============================================================================
+// Stack Trace Sanitizer
+// ============================================================================
+/**
+ * 스택 트레이스에서 민감 정보 제거
+ */
+export function sanitizeStackTrace(stack: string | undefined): string | undefined {
+  if (!stack) return undefined;
+  let result = stack;
+  // 파일 경로에서 사용자명 제거
+  result = result.replace(/\/Users\/[^/]+\//g, '/Users/[USER]/');
+  result = result.replace(/\\Users\\[^\\]+\\/g, '\\Users\\[USER]\\');
+  result = result.replace(/\/home\/[^/]+\//g, '/home/[USER]/');
+  // 쿼리스트링 파라미터 마스킹
+  result = result.replace(/\?[^\s)]+/g, '?[PARAMS]');
+  // 기본 시크릿 마스킹
+  result = redactBuiltInSecrets(result);
+  return result;
+}
+// ============================================================================
+// Error Message Sanitizer
+// ============================================================================
+/**
+ * 에러 메시지에서 민감 정보 제거
+ */
+export function sanitizeErrorMessage(message: string): string {
+  let result = message;
+  // PII 마스킹
+  for (const pattern of PII_PATTERNS) {
+    pattern.lastIndex = 0;
+    result = result.replace(pattern, '[PII]');
+  }
+  // 시크릿 마스킹
+  result = redactBuiltInSecrets(result);
+  return result;
+}

package/src/devtools/client/filters/index.ts CHANGED Viewed

@@ -1,16 +1,16 @@
-/**
- * Mandu Kitchen DevTools - Filters Module
- * @version 1.0.3
- */
-export {
-  removeComments,
-  handleStrings,
-  redactBuiltInSecrets,
-  redactCustomPatterns,
-  truncate,
-  applyContextFilters,
-  sanitizeStackTrace,
-  sanitizeErrorMessage,
-  type FilterOptions,
-} from './context-filters';
+/**
+ * Mandu Kitchen DevTools - Filters Module
+ * @version 1.0.3
+ */
+export {
+  removeComments,
+  handleStrings,
+  redactBuiltInSecrets,
+  redactCustomPatterns,
+  truncate,
+  applyContextFilters,
+  sanitizeStackTrace,
+  sanitizeErrorMessage,
+  type FilterOptions,
+} from './context-filters';