npm - @nahisaho/katashiro-security - Versions diffs - 2.0.2 → 2.0.3 - Mend

@nahisaho/katashiro-security 2.0.2 → 2.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/package.json +11 -11
package/LICENSE +0 -21
package/dist/action-logger.d.ts +0 -114
package/dist/action-logger.d.ts.map +0 -1
package/dist/action-logger.js +0 -358
package/dist/index.d.ts +0 -10
package/dist/index.d.ts.map +0 -1
package/dist/index.js +0 -24
package/dist/security-analyzer.d.ts +0 -71
package/dist/security-analyzer.d.ts.map +0 -1
package/dist/security-analyzer.js +0 -256
package/dist/types.d.ts +0 -208
package/dist/types.d.ts.map +0 -1
package/dist/types.js +0 -130

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@nahisaho/katashiro-security",
-  "version": "2.0.2",
+  "version": "2.0.3",
   "description": "KATASHIRO Security - Security analysis and action auditing",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
@@ -11,9 +11,16 @@
       "default": "./dist/index.js"
     }
   },
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "typecheck": "tsc --noEmit",
+    "clean": "rm -rf dist"
+  },
   "dependencies": {
-    "micromatch": "^4.0.8",
-    "@nahisaho/katashiro-core": "2.0.2"
+    "@nahisaho/katashiro-core": "workspace:*",
+    "micromatch": "^4.0.8"
   },
   "devDependencies": {
     "@types/micromatch": "^4.0.9",
@@ -34,12 +41,5 @@
     "type": "git",
     "url": "https://github.com/nahisaho/KATASHIRO.git",
     "directory": "katashiro/packages/security"
-  },
-  "scripts": {
-    "build": "tsc -p tsconfig.json",
-    "test": "vitest run",
-    "test:watch": "vitest",
-    "typecheck": "tsc --noEmit",
-    "clean": "rm -rf dist"
   }
-}
+}

package/LICENSE DELETED Viewed

@@ -1,21 +0,0 @@
-MIT License
-Copyright (c) 2026 nahisaho
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.

package/dist/action-logger.d.ts DELETED Viewed

@@ -1,114 +0,0 @@
-/**
- * ActionLogger - 監査ログ記録クラス
- *
- * @requirement REQ-012-05
- * @design すべてのアクションをタイムスタンプ付きで記録
- */
-import { Action, SecurityAnalysis, Observation, AuditLogEntry, AuditLogFilter, UserConfirmation, RiskLevel } from './types';
-/**
- * ログストレージインターフェース
- */
-export interface LogStorage {
-    /** ログエントリを追加 */
-    append(entry: AuditLogEntry): Promise<void>;
-    /** ログを検索 */
-    query(filter: AuditLogFilter): Promise<AuditLogEntry[]>;
-    /** ログをクリア */
-    clear(): Promise<void>;
-    /** ログ件数を取得 */
-    count(): Promise<number>;
-}
-/**
- * インメモリログストレージ
- */
-export declare class InMemoryLogStorage implements LogStorage {
-    private logs;
-    private maxEntries;
-    constructor(maxEntries?: number);
-    append(entry: AuditLogEntry): Promise<void>;
-    query(filter: AuditLogFilter): Promise<AuditLogEntry[]>;
-    clear(): Promise<void>;
-    count(): Promise<number>;
-    /**
-     * 全ログを取得（テスト用）
-     */
-    getAllLogs(): AuditLogEntry[];
-}
-/**
- * ActionLoggerオプション
- */
-export interface ActionLoggerOptions {
-    /** ログストレージ */
-    storage?: LogStorage;
-    /** 最小記録リスクレベル */
-    minLogLevel?: RiskLevel;
-    /** ID生成関数 */
-    generateId?: () => string;
-}
-/**
- * アクションロガー
- */
-export declare class ActionLogger {
-    private readonly storage;
-    private readonly minLogLevel;
-    private readonly generateId;
-    constructor(options?: ActionLoggerOptions);
-    /**
-     * アクションと分析結果を記録（REQ-012-05）
-     */
-    logAction(action: Action, analysis: SecurityAnalysis, observation?: Observation, userConfirmation?: UserConfirmation): Promise<string>;
-    /**
-     * アクション開始を記録
-     */
-    logActionStart(action: Action, analysis: SecurityAnalysis): Promise<string>;
-    /**
-     * アクション完了を記録（既存エントリを更新）
-     */
-    logActionComplete(logId: string, observation: Observation, userConfirmation?: UserConfirmation): Promise<void>;
-    /**
-     * ログを検索
-     */
-    queryLogs(filter: AuditLogFilter): Promise<AuditLogEntry[]>;
-    /**
-     * 最近のログを取得
-     */
-    getRecentLogs(count?: number): Promise<AuditLogEntry[]>;
-    /**
-     * 高リスクログを取得
-     */
-    getHighRiskLogs(count?: number): Promise<AuditLogEntry[]>;
-    /**
-     * ユーザーのログを取得
-     */
-    getUserLogs(userId: string, count?: number): Promise<AuditLogEntry[]>;
-    /**
-     * ログをクリア
-     */
-    clearLogs(): Promise<void>;
-    /**
-     * ログ件数を取得
-     */
-    getLogCount(): Promise<number>;
-    /**
-     * サマリーを生成
-     */
-    generateSummary(filter?: AuditLogFilter): Promise<AuditLogSummary>;
-}
-/**
- * 監査ログサマリー
- */
-export interface AuditLogSummary {
-    /** 総アクション数 */
-    totalActions: number;
-    /** リスクレベル別件数 */
-    byRiskLevel: Record<RiskLevel, number>;
-    /** アクションタイプ別件数 */
-    byActionType: Record<string, number>;
-    /** 成功率 */
-    successRate: number;
-    /** ブロック数 */
-    blockedCount: number;
-    /** 確認数 */
-    confirmedCount: number;
-}
-//# sourceMappingURL=action-logger.d.ts.map

package/dist/action-logger.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"action-logger.d.ts","sourceRoot":"","sources":["../src/action-logger.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EACL,MAAM,EACN,gBAAgB,EAChB,WAAW,EACX,aAAa,EACb,cAAc,EACd,gBAAgB,EAChB,SAAS,EAEV,MAAM,SAAS,CAAC;AAEjB;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,gBAAgB;IAChB,MAAM,CAAC,KAAK,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5C,YAAY;IACZ,KAAK,CAAC,MAAM,EAAE,cAAc,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC,CAAC;IACxD,aAAa;IACb,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IACvB,cAAc;IACd,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC;CAC1B;AAED;;GAEG;AACH,qBAAa,kBAAmB,YAAW,UAAU;IACnD,OAAO,CAAC,IAAI,CAAuB;IACnC,OAAO,CAAC,UAAU,CAAS;gBAEf,UAAU,GAAE,MAAc;IAIhC,MAAM,CAAC,KAAK,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAS3C,KAAK,CAAC,MAAM,EAAE,cAAc,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC;IAgEvD,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAItB,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IAI9B;;OAEG;IACH,UAAU,IAAI,aAAa,EAAE;CAG9B;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,cAAc;IACd,OAAO,CAAC,EAAE,UAAU,CAAC;IACrB,iBAAiB;IACjB,WAAW,CAAC,EAAE,SAAS,CAAC;IACxB,aAAa;IACb,UAAU,CAAC,EAAE,MAAM,MAAM,CAAC;CAC3B;AAED;;GAEG;AACH,qBAAa,YAAY;IACvB,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAa;IACrC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAY;IACxC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAe;gBAE9B,OAAO,GAAE,mBAAwB;IAQ7C;;OAEG;IACG,SAAS,CACb,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,gBAAgB,EAC1B,WAAW,CAAC,EAAE,WAAW,EACzB,gBAAgB,CAAC,EAAE,gBAAgB,GAClC,OAAO,CAAC,MAAM,CAAC;IAqBlB;;OAEG;IACG,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,gBAAgB,GAAG,OAAO,CAAC,MAAM,CAAC;IAIjF;;OAEG;IACG,iBAAiB,CACrB,KAAK,EAAE,MAAM,EACb,WAAW,EAAE,WAAW,EACxB,gBAAgB,CAAC,EAAE,gBAAgB,GAClC,OAAO,CAAC,IAAI,CAAC;IAahB;;OAEG;IACG,SAAS,CAAC,MAAM,EAAE,cAAc,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC;IAIjE;;OAEG;IACG,aAAa,CAAC,KAAK,GAAE,MAAW,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC;IAIjE;;OAEG;IACG,eAAe,CAAC,KAAK,GAAE,MAAW,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC;IAInE;;OAEG;IACG,WAAW,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,GAAE,MAAW,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC;IAI/E;;OAEG;IACG,SAAS,IAAI,OAAO,CAAC,IAAI,CAAC;IAIhC;;OAEG;IACG,WAAW,IAAI,OAAO,CAAC,MAAM,CAAC;IAIpC;;OAEG;IACG,eAAe,CAAC,MAAM,GAAE,cAAmB,GAAG,OAAO,CAAC,eAAe,CAAC;CA+C7E;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,cAAc;IACd,YAAY,EAAE,MAAM,CAAC;IACrB,gBAAgB;IAChB,WAAW,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IACvC,kBAAkB;IAClB,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACrC,UAAU;IACV,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY;IACZ,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU;IACV,cAAc,EAAE,MAAM,CAAC;CACxB"}

package/dist/action-logger.js DELETED Viewed

@@ -1,358 +0,0 @@
-"use strict";
-/**
- * ActionLogger - 監査ログ記録クラス
- *
- * @requirement REQ-012-05
- * @design すべてのアクションをタイムスタンプ付きで記録
- */
-var __assign = (this && this.__assign) || function () {
-    __assign = Object.assign || function(t) {
-        for (var s, i = 1, n = arguments.length; i < n; i++) {
-            s = arguments[i];
-            for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p))
-                t[p] = s[p];
-        }
-        return t;
-    };
-    return __assign.apply(this, arguments);
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __generator = (this && this.__generator) || function (thisArg, body) {
-    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g = Object.create((typeof Iterator === "function" ? Iterator : Object).prototype);
-    return g.next = verb(0), g["throw"] = verb(1), g["return"] = verb(2), typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
-    function verb(n) { return function (v) { return step([n, v]); }; }
-    function step(op) {
-        if (f) throw new TypeError("Generator is already executing.");
-        while (g && (g = 0, op[0] && (_ = 0)), _) try {
-            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
-            if (y = 0, t) op = [op[0] & 2, t.value];
-            switch (op[0]) {
-                case 0: case 1: t = op; break;
-                case 4: _.label++; return { value: op[1], done: false };
-                case 5: _.label++; y = op[1]; op = [0]; continue;
-                case 7: op = _.ops.pop(); _.trys.pop(); continue;
-                default:
-                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
-                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
-                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
-                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
-                    if (t[2]) _.ops.pop();
-                    _.trys.pop(); continue;
-            }
-            op = body.call(thisArg, _);
-        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
-        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
-    }
-};
-var __spreadArray = (this && this.__spreadArray) || function (to, from, pack) {
-    if (pack || arguments.length === 2) for (var i = 0, l = from.length, ar; i < l; i++) {
-        if (ar || !(i in from)) {
-            if (!ar) ar = Array.prototype.slice.call(from, 0, i);
-            ar[i] = from[i];
-        }
-    }
-    return to.concat(ar || Array.prototype.slice.call(from));
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ActionLogger = exports.InMemoryLogStorage = void 0;
-var types_1 = require("./types");
-/**
- * インメモリログストレージ
- */
-var InMemoryLogStorage = /** @class */ (function () {
-    function InMemoryLogStorage(maxEntries) {
-        if (maxEntries === void 0) { maxEntries = 10000; }
-        this.logs = [];
-        this.maxEntries = maxEntries;
-    }
-    InMemoryLogStorage.prototype.append = function (entry) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                this.logs.push(entry);
-                // 最大件数を超えたら古いログを削除
-                if (this.logs.length > this.maxEntries) {
-                    this.logs = this.logs.slice(-this.maxEntries);
-                }
-                return [2 /*return*/];
-            });
-        });
-    };
-    InMemoryLogStorage.prototype.query = function (filter) {
-        return __awaiter(this, void 0, void 0, function () {
-            var results, minOrder_1, keyword_1, offset, limit;
-            var _a, _b;
-            return __generator(this, function (_c) {
-                results = __spreadArray([], this.logs, true);
-                // 時間範囲フィルター
-                if (filter.startTime) {
-                    results = results.filter(function (e) { return e.timestamp >= filter.startTime; });
-                }
-                if (filter.endTime) {
-                    results = results.filter(function (e) { return e.timestamp <= filter.endTime; });
-                }
-                // アクションタイプフィルター
-                if (filter.actionTypes && filter.actionTypes.length > 0) {
-                    results = results.filter(function (e) { return filter.actionTypes.includes(e.action.type); });
-                }
-                // リスクレベルフィルター
-                if (filter.minRiskLevel) {
-                    minOrder_1 = types_1.RISK_LEVEL_ORDER[filter.minRiskLevel];
-                    results = results.filter(function (e) { return types_1.RISK_LEVEL_ORDER[e.analysis.riskLevel] >= minOrder_1; });
-                }
-                // 成功/失敗フィルター
-                if (filter.success !== undefined) {
-                    results = results.filter(function (e) { var _a; return ((_a = e.observation) === null || _a === void 0 ? void 0 : _a.success) === filter.success; });
-                }
-                // ユーザーIDフィルター
-                if (filter.userId) {
-                    results = results.filter(function (e) { var _a; return ((_a = e.action.context) === null || _a === void 0 ? void 0 : _a.userId) === filter.userId; });
-                }
-                // キーワード検索
-                if (filter.keyword) {
-                    keyword_1 = filter.keyword.toLowerCase();
-                    results = results.filter(function (e) {
-                        var _a;
-                        var searchText = __spreadArray(__spreadArray([
-                            e.action.name,
-                            e.action.target
-                        ], e.analysis.reasons, true), [
-                            (_a = e.observation) === null || _a === void 0 ? void 0 : _a.error,
-                        ], false).filter(Boolean)
-                            .join(' ')
-                            .toLowerCase();
-                        return searchText.includes(keyword_1);
-                    });
-                }
-                // ソート（新しい順）
-                results.sort(function (a, b) { return b.timestamp.localeCompare(a.timestamp); });
-                offset = (_a = filter.offset) !== null && _a !== void 0 ? _a : 0;
-                limit = (_b = filter.limit) !== null && _b !== void 0 ? _b : 100;
-                return [2 /*return*/, results.slice(offset, offset + limit)];
-            });
-        });
-    };
-    InMemoryLogStorage.prototype.clear = function () {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                this.logs = [];
-                return [2 /*return*/];
-            });
-        });
-    };
-    InMemoryLogStorage.prototype.count = function () {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.logs.length];
-            });
-        });
-    };
-    /**
-     * 全ログを取得（テスト用）
-     */
-    InMemoryLogStorage.prototype.getAllLogs = function () {
-        return __spreadArray([], this.logs, true);
-    };
-    return InMemoryLogStorage;
-}());
-exports.InMemoryLogStorage = InMemoryLogStorage;
-/**
- * アクションロガー
- */
-var ActionLogger = /** @class */ (function () {
-    function ActionLogger(options) {
-        if (options === void 0) { options = {}; }
-        var _a, _b, _c;
-        this.storage = (_a = options.storage) !== null && _a !== void 0 ? _a : new InMemoryLogStorage();
-        this.minLogLevel = (_b = options.minLogLevel) !== null && _b !== void 0 ? _b : 'low';
-        this.generateId =
-            (_c = options.generateId) !== null && _c !== void 0 ? _c : (function () { return "log-".concat(Date.now(), "-").concat(Math.random().toString(36).slice(2, 8)); });
-    }
-    /**
-     * アクションと分析結果を記録（REQ-012-05）
-     */
-    ActionLogger.prototype.logAction = function (action, analysis, observation, userConfirmation) {
-        return __awaiter(this, void 0, void 0, function () {
-            var entry;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        // 最小リスクレベル未満はスキップ
-                        if (types_1.RISK_LEVEL_ORDER[analysis.riskLevel] < types_1.RISK_LEVEL_ORDER[this.minLogLevel]) {
-                            return [2 /*return*/, ''];
-                        }
-                        entry = {
-                            id: this.generateId(),
-                            timestamp: new Date().toISOString(),
-                            action: action,
-                            analysis: analysis,
-                            observation: observation,
-                            userConfirmation: userConfirmation,
-                        };
-                        return [4 /*yield*/, this.storage.append(entry)];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, entry.id];
-                }
-            });
-        });
-    };
-    /**
-     * アクション開始を記録
-     */
-    ActionLogger.prototype.logActionStart = function (action, analysis) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.logAction(action, analysis)];
-            });
-        });
-    };
-    /**
-     * アクション完了を記録（既存エントリを更新）
-     */
-    ActionLogger.prototype.logActionComplete = function (logId, observation, userConfirmation) {
-        return __awaiter(this, void 0, void 0, function () {
-            var logs, entry;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.storage.query({ limit: 1000 })];
-                    case 1:
-                        logs = _a.sent();
-                        entry = logs.find(function (e) { return e.id === logId; });
-                        if (entry) {
-                            entry.observation = observation;
-                            if (userConfirmation) {
-                                entry.userConfirmation = userConfirmation;
-                            }
-                        }
-                        return [2 /*return*/];
-                }
-            });
-        });
-    };
-    /**
-     * ログを検索
-     */
-    ActionLogger.prototype.queryLogs = function (filter) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.storage.query(filter)];
-            });
-        });
-    };
-    /**
-     * 最近のログを取得
-     */
-    ActionLogger.prototype.getRecentLogs = function () {
-        return __awaiter(this, arguments, void 0, function (count) {
-            if (count === void 0) { count = 10; }
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.storage.query({ limit: count })];
-            });
-        });
-    };
-    /**
-     * 高リスクログを取得
-     */
-    ActionLogger.prototype.getHighRiskLogs = function () {
-        return __awaiter(this, arguments, void 0, function (count) {
-            if (count === void 0) { count = 10; }
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.storage.query({ minRiskLevel: 'high', limit: count })];
-            });
-        });
-    };
-    /**
-     * ユーザーのログを取得
-     */
-    ActionLogger.prototype.getUserLogs = function (userId_1) {
-        return __awaiter(this, arguments, void 0, function (userId, count) {
-            if (count === void 0) { count = 10; }
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.storage.query({ userId: userId, limit: count })];
-            });
-        });
-    };
-    /**
-     * ログをクリア
-     */
-    ActionLogger.prototype.clearLogs = function () {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.storage.clear()];
-            });
-        });
-    };
-    /**
-     * ログ件数を取得
-     */
-    ActionLogger.prototype.getLogCount = function () {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                return [2 /*return*/, this.storage.count()];
-            });
-        });
-    };
-    /**
-     * サマリーを生成
-     */
-    ActionLogger.prototype.generateSummary = function () {
-        return __awaiter(this, arguments, void 0, function (filter) {
-            var logs, summary, successCount, totalWithObservation, _i, logs_1, log;
-            var _a, _b;
-            if (filter === void 0) { filter = {}; }
-            return __generator(this, function (_c) {
-                switch (_c.label) {
-                    case 0: return [4 /*yield*/, this.storage.query(__assign(__assign({}, filter), { limit: 10000 }))];
-                    case 1:
-                        logs = _c.sent();
-                        summary = {
-                            totalActions: logs.length,
-                            byRiskLevel: { low: 0, medium: 0, high: 0, critical: 0 },
-                            byActionType: {},
-                            successRate: 0,
-                            blockedCount: 0,
-                            confirmedCount: 0,
-                        };
-                        successCount = 0;
-                        totalWithObservation = 0;
-                        for (_i = 0, logs_1 = logs; _i < logs_1.length; _i++) {
-                            log = logs_1[_i];
-                            // リスクレベル別
-                            summary.byRiskLevel[log.analysis.riskLevel]++;
-                            // アクションタイプ別
-                            summary.byActionType[log.action.type] =
-                                ((_a = summary.byActionType[log.action.type]) !== null && _a !== void 0 ? _a : 0) + 1;
-                            // 成功率計算
-                            if (log.observation) {
-                                totalWithObservation++;
-                                if (log.observation.success) {
-                                    successCount++;
-                                }
-                            }
-                            // ブロック数
-                            if (!log.analysis.allowed) {
-                                summary.blockedCount++;
-                            }
-                            // 確認数
-                            if ((_b = log.userConfirmation) === null || _b === void 0 ? void 0 : _b.confirmed) {
-                                summary.confirmedCount++;
-                            }
-                        }
-                        summary.successRate =
-                            totalWithObservation > 0 ? successCount / totalWithObservation : 0;
-                        return [2 /*return*/, summary];
-                }
-            });
-        });
-    };
-    return ActionLogger;
-}());
-exports.ActionLogger = ActionLogger;

package/dist/index.d.ts DELETED Viewed

@@ -1,10 +0,0 @@
-/**
- * @nahisaho/katashiro-security
- *
- * Security analysis and audit logging for KATASHIRO
- * @requirement REQ-012
- */
-export { RiskLevel, RISK_LEVEL_ORDER, compareRiskLevels, isRiskLevelAtLeast, ActionType, Action, ActionContext, Observation, PatternRule, SecurityPolicy, RiskRule, RiskRuleMatch, SecurityAnalysis, AuditLogEntry, UserConfirmation, AuditLogFilter, DEFAULT_SECURITY_POLICY, BUILTIN_RISK_RULES, SecurityErrorCode, SecurityError, } from './types';
-export { SecurityAnalyzer, SecurityAnalyzerOptions } from './security-analyzer';
-export { LogStorage, InMemoryLogStorage, ActionLogger, ActionLoggerOptions, AuditLogSummary, } from './action-logger';
-//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EACL,SAAS,EACT,gBAAgB,EAChB,iBAAiB,EACjB,kBAAkB,EAClB,UAAU,EACV,MAAM,EACN,aAAa,EACb,WAAW,EACX,WAAW,EACX,cAAc,EACd,QAAQ,EACR,aAAa,EACb,gBAAgB,EAChB,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,uBAAuB,EACvB,kBAAkB,EAClB,iBAAiB,EACjB,aAAa,GACd,MAAM,SAAS,CAAC;AAGjB,OAAO,EAAE,gBAAgB,EAAE,uBAAuB,EAAE,MAAM,qBAAqB,CAAC;AAGhF,OAAO,EACL,UAAU,EACV,kBAAkB,EAClB,YAAY,EACZ,mBAAmB,EACnB,eAAe,GAChB,MAAM,iBAAiB,CAAC"}

package/dist/index.js DELETED Viewed

@@ -1,24 +0,0 @@
-"use strict";
-/**
- * @nahisaho/katashiro-security
- *
- * Security analysis and audit logging for KATASHIRO
- * @requirement REQ-012
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ActionLogger = exports.InMemoryLogStorage = exports.SecurityAnalyzer = exports.SecurityError = exports.BUILTIN_RISK_RULES = exports.DEFAULT_SECURITY_POLICY = exports.isRiskLevelAtLeast = exports.compareRiskLevels = exports.RISK_LEVEL_ORDER = void 0;
-// Types
-var types_1 = require("./types");
-Object.defineProperty(exports, "RISK_LEVEL_ORDER", { enumerable: true, get: function () { return types_1.RISK_LEVEL_ORDER; } });
-Object.defineProperty(exports, "compareRiskLevels", { enumerable: true, get: function () { return types_1.compareRiskLevels; } });
-Object.defineProperty(exports, "isRiskLevelAtLeast", { enumerable: true, get: function () { return types_1.isRiskLevelAtLeast; } });
-Object.defineProperty(exports, "DEFAULT_SECURITY_POLICY", { enumerable: true, get: function () { return types_1.DEFAULT_SECURITY_POLICY; } });
-Object.defineProperty(exports, "BUILTIN_RISK_RULES", { enumerable: true, get: function () { return types_1.BUILTIN_RISK_RULES; } });
-Object.defineProperty(exports, "SecurityError", { enumerable: true, get: function () { return types_1.SecurityError; } });
-// SecurityAnalyzer
-var security_analyzer_1 = require("./security-analyzer");
-Object.defineProperty(exports, "SecurityAnalyzer", { enumerable: true, get: function () { return security_analyzer_1.SecurityAnalyzer; } });
-// ActionLogger
-var action_logger_1 = require("./action-logger");
-Object.defineProperty(exports, "InMemoryLogStorage", { enumerable: true, get: function () { return action_logger_1.InMemoryLogStorage; } });
-Object.defineProperty(exports, "ActionLogger", { enumerable: true, get: function () { return action_logger_1.ActionLogger; } });

package/dist/security-analyzer.d.ts DELETED Viewed

@@ -1,71 +0,0 @@
-/**
- * SecurityAnalyzer - セキュリティ分析クラス
- *
- * @requirement REQ-012
- * @design REQ-012-01 リスクレベル評価
- * @design REQ-012-02 確認プロンプト判定
- * @design REQ-012-03 拒否パターンブロック
- * @design REQ-012-04 許可パターン判定
- * @design REQ-012-06 ファイル削除=高リスク
- */
-import { Action, SecurityPolicy, SecurityAnalysis, RiskRule } from './types';
-/**
- * SecurityAnalyzerオプション
- */
-export interface SecurityAnalyzerOptions {
-    /** カスタムポリシー */
-    policy?: Partial<SecurityPolicy>;
-    /** ビルトインルールを使用するか */
-    useBuiltinRules?: boolean;
-    /** 追加のリスクルール */
-    additionalRules?: RiskRule[];
-}
-/**
- * セキュリティ分析器
- */
-export declare class SecurityAnalyzer {
-    private readonly policy;
-    private readonly riskRules;
-    constructor(options?: SecurityAnalyzerOptions);
-    /**
-     * アクションを分析（REQ-012-01）
-     */
-    analyze(action: Action): SecurityAnalysis;
-    /**
-     * アクションの実行を検証（確認が不要な場合のみ許可）
-     */
-    validateAction(action: Action): void;
-    /**
-     * 確認付きでアクションを検証
-     */
-    validateActionWithConfirmation(action: Action, confirmed: boolean): void;
-    /**
-     * 拒否パターンをチェック（REQ-012-03）
-     */
-    private checkDenyPatterns;
-    /**
-     * 許可パターンをチェック（REQ-012-04）
-     */
-    private checkAllowPatterns;
-    /**
-     * リスクレベルを評価
-     */
-    private evaluateRiskLevel;
-    /**
-     * ルールがアクションにマッチするかチェック
-     */
-    private matchesRule;
-    /**
-     * 現在のポリシーを取得
-     */
-    getPolicy(): SecurityPolicy;
-    /**
-     * リスクルールを取得
-     */
-    getRiskRules(): RiskRule[];
-    /**
-     * ポリシーを更新
-     */
-    updatePolicy(update: Partial<SecurityPolicy>): void;
-}
-//# sourceMappingURL=security-analyzer.d.ts.map

package/dist/security-analyzer.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"security-analyzer.d.ts","sourceRoot":"","sources":["../src/security-analyzer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,EACL,MAAM,EACN,cAAc,EACd,gBAAgB,EAEhB,QAAQ,EAOT,MAAM,SAAS,CAAC;AAEjB;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,eAAe;IACf,MAAM,CAAC,EAAE,OAAO,CAAC,cAAc,CAAC,CAAC;IACjC,qBAAqB;IACrB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,gBAAgB;IAChB,eAAe,CAAC,EAAE,QAAQ,EAAE,CAAC;CAC9B;AAED;;GAEG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAiB;IACxC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAa;gBAE3B,OAAO,GAAE,uBAA4B;IA4BjD;;OAEG;IACH,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB;IA8DzC;;OAEG;IACH,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAgBpC;;OAEG;IACH,8BAA8B,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,OAAO,GAAG,IAAI;IAgBxE;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAkBzB;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAkB1B;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAsBzB;;OAEG;IACH,OAAO,CAAC,WAAW;IA8BnB;;OAEG;IACH,SAAS,IAAI,cAAc;IAI3B;;OAEG;IACH,YAAY,IAAI,QAAQ,EAAE;IAI1B;;OAEG;IACH,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,cAAc,CAAC,GAAG,IAAI;CAiBpD"}

package/dist/security-analyzer.js DELETED Viewed

@@ -1,256 +0,0 @@
-"use strict";
-/**
- * SecurityAnalyzer - セキュリティ分析クラス
- *
- * @requirement REQ-012
- * @design REQ-012-01 リスクレベル評価
- * @design REQ-012-02 確認プロンプト判定
- * @design REQ-012-03 拒否パターンブロック
- * @design REQ-012-04 許可パターン判定
- * @design REQ-012-06 ファイル削除=高リスク
- */
-var __assign = (this && this.__assign) || function () {
-    __assign = Object.assign || function(t) {
-        for (var s, i = 1, n = arguments.length; i < n; i++) {
-            s = arguments[i];
-            for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p))
-                t[p] = s[p];
-        }
-        return t;
-    };
-    return __assign.apply(this, arguments);
-};
-var __spreadArray = (this && this.__spreadArray) || function (to, from, pack) {
-    if (pack || arguments.length === 2) for (var i = 0, l = from.length, ar; i < l; i++) {
-        if (ar || !(i in from)) {
-            if (!ar) ar = Array.prototype.slice.call(from, 0, i);
-            ar[i] = from[i];
-        }
-    }
-    return to.concat(ar || Array.prototype.slice.call(from));
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.SecurityAnalyzer = void 0;
-var micromatch_1 = __importDefault(require("micromatch"));
-var types_1 = require("./types");
-/**
- * セキュリティ分析器
- */
-var SecurityAnalyzer = /** @class */ (function () {
-    function SecurityAnalyzer(options) {
-        if (options === void 0) { options = {}; }
-        var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k, _l;
-        // ポリシーをマージ
-        this.policy = __assign(__assign(__assign({}, types_1.DEFAULT_SECURITY_POLICY), options.policy), { allowPatterns: __spreadArray([], ((_b = (_a = options.policy) === null || _a === void 0 ? void 0 : _a.allowPatterns) !== null && _b !== void 0 ? _b : types_1.DEFAULT_SECURITY_POLICY.allowPatterns), true), denyPatterns: __spreadArray([], ((_d = (_c = options.policy) === null || _c === void 0 ? void 0 : _c.denyPatterns) !== null && _d !== void 0 ? _d : types_1.DEFAULT_SECURITY_POLICY.denyPatterns), true), requireConfirmation: (_f = (_e = options.policy) === null || _e === void 0 ? void 0 : _e.requireConfirmation) !== null && _f !== void 0 ? _f : types_1.DEFAULT_SECURITY_POLICY.requireConfirmation, customRiskRules: __spreadArray(__spreadArray([], ((_g = types_1.DEFAULT_SECURITY_POLICY.customRiskRules) !== null && _g !== void 0 ? _g : []), true), ((_j = (_h = options.policy) === null || _h === void 0 ? void 0 : _h.customRiskRules) !== null && _j !== void 0 ? _j : []), true) });
-        // リスクルールを構築
-        var builtinRules = options.useBuiltinRules !== false ? types_1.BUILTIN_RISK_RULES : [];
-        this.riskRules = __spreadArray(__spreadArray(__spreadArray([], builtinRules, true), ((_k = this.policy.customRiskRules) !== null && _k !== void 0 ? _k : []), true), ((_l = options.additionalRules) !== null && _l !== void 0 ? _l : []), true);
-    }
-    /**
-     * アクションを分析（REQ-012-01）
-     */
-    SecurityAnalyzer.prototype.analyze = function (action) {
-        var _a;
-        var matchedRules = [];
-        var reasons = [];
-        // 1. 拒否パターンチェック（REQ-012-03）
-        var denyMatch = this.checkDenyPatterns(action);
-        if (denyMatch) {
-            return {
-                riskLevel: 'critical',
-                reasons: ["Action blocked by deny pattern: ".concat(denyMatch.pattern)],
-                requiresConfirmation: false,
-                allowed: false,
-                blockReason: (_a = denyMatch.description) !== null && _a !== void 0 ? _a : "Matches deny pattern: ".concat(denyMatch.pattern),
-                matchedRules: ['deny_pattern'],
-            };
-        }
-        // 2. リスクレベル評価
-        var riskLevel = this.evaluateRiskLevel(action, matchedRules, reasons);
-        // 3. 許可パターンチェック（REQ-012-04）
-        // 注意: 高リスクアクション（削除など）は許可パターンでリスクを下げない
-        var allowMatch = this.checkAllowPatterns(action);
-        var highRiskActionTypes = ['file_delete', 'directory_delete', 'command_execute'];
-        if (allowMatch && !highRiskActionTypes.includes(action.type)) {
-            // 許可パターンにマッチした場合、リスクレベルを下げる
-            if (riskLevel !== 'critical') {
-                riskLevel = 'low';
-                reasons.push("Matched allow pattern: ".concat(allowMatch.pattern));
-                matchedRules.push('allow_pattern');
-            }
-        }
-        // 4. 最大リスクレベルチェック
-        if ((0, types_1.isRiskLevelAtLeast)(riskLevel, this.policy.maxRiskLevel)) {
-            if (types_1.RISK_LEVEL_ORDER[riskLevel] > types_1.RISK_LEVEL_ORDER[this.policy.maxRiskLevel]) {
-                return {
-                    riskLevel: riskLevel,
-                    reasons: reasons,
-                    requiresConfirmation: false,
-                    allowed: false,
-                    blockReason: "Risk level ".concat(riskLevel, " exceeds maximum allowed ").concat(this.policy.maxRiskLevel),
-                    matchedRules: matchedRules,
-                };
-            }
-        }
-        // 5. 確認が必要か判定（REQ-012-02）
-        var requiresConfirmation = this.policy.requireConfirmation.includes(riskLevel);
-        if (requiresConfirmation) {
-            reasons.push("Risk level ".concat(riskLevel, " requires confirmation"));
-        }
-        return {
-            riskLevel: riskLevel,
-            reasons: reasons,
-            requiresConfirmation: requiresConfirmation,
-            allowed: true,
-            matchedRules: matchedRules,
-        };
-    };
-    /**
-     * アクションの実行を検証（確認が不要な場合のみ許可）
-     */
-    SecurityAnalyzer.prototype.validateAction = function (action) {
-        var _a;
-        var analysis = this.analyze(action);
-        if (!analysis.allowed) {
-            throw new types_1.SecurityError('ACTION_BLOCKED', (_a = analysis.blockReason) !== null && _a !== void 0 ? _a : 'Action blocked', analysis);
-        }
-        if (analysis.requiresConfirmation) {
-            throw new types_1.SecurityError('CONFIRMATION_REQUIRED', "Action requires confirmation: ".concat(analysis.reasons.join(', ')), analysis);
-        }
-    };
-    /**
-     * 確認付きでアクションを検証
-     */
-    SecurityAnalyzer.prototype.validateActionWithConfirmation = function (action, confirmed) {
-        var _a;
-        var analysis = this.analyze(action);
-        if (!analysis.allowed) {
-            throw new types_1.SecurityError('ACTION_BLOCKED', (_a = analysis.blockReason) !== null && _a !== void 0 ? _a : 'Action blocked', analysis);
-        }
-        if (analysis.requiresConfirmation && !confirmed) {
-            throw new types_1.SecurityError('CONFIRMATION_DENIED', 'User did not confirm the action', analysis);
-        }
-    };
-    /**
-     * 拒否パターンをチェック（REQ-012-03）
-     */
-    SecurityAnalyzer.prototype.checkDenyPatterns = function (action) {
-        if (!action.target)
-            return null;
-        for (var _i = 0, _a = this.policy.denyPatterns; _i < _a.length; _i++) {
-            var rule = _a[_i];
-            // アクションタイプフィルター
-            if (rule.actionTypes && !rule.actionTypes.includes(action.type)) {
-                continue;
-            }
-            // パターンマッチ
-            if (micromatch_1.default.isMatch(action.target, rule.pattern)) {
-                return rule;
-            }
-        }
-        return null;
-    };
-    /**
-     * 許可パターンをチェック（REQ-012-04）
-     */
-    SecurityAnalyzer.prototype.checkAllowPatterns = function (action) {
-        if (!action.target)
-            return null;
-        for (var _i = 0, _a = this.policy.allowPatterns; _i < _a.length; _i++) {
-            var rule = _a[_i];
-            // アクションタイプフィルター
-            if (rule.actionTypes && !rule.actionTypes.includes(action.type)) {
-                continue;
-            }
-            // パターンマッチ
-            if (micromatch_1.default.isMatch(action.target, rule.pattern)) {
-                return rule;
-            }
-        }
-        return null;
-    };
-    /**
-     * リスクレベルを評価
-     */
-    SecurityAnalyzer.prototype.evaluateRiskLevel = function (action, matchedRules, reasons) {
-        var maxRiskLevel = 'low';
-        for (var _i = 0, _a = this.riskRules; _i < _a.length; _i++) {
-            var rule = _a[_i];
-            if (this.matchesRule(action, rule)) {
-                matchedRules.push(rule.name);
-                reasons.push(rule.description);
-                // より高いリスクレベルを採用
-                if (types_1.RISK_LEVEL_ORDER[rule.riskLevel] > types_1.RISK_LEVEL_ORDER[maxRiskLevel]) {
-                    maxRiskLevel = rule.riskLevel;
-                }
-            }
-        }
-        return maxRiskLevel;
-    };
-    /**
-     * ルールがアクションにマッチするかチェック
-     */
-    SecurityAnalyzer.prototype.matchesRule = function (action, rule) {
-        var match = rule.match;
-        // アクションタイプチェック
-        if (match.actionTypes && !match.actionTypes.includes(action.type)) {
-            return false;
-        }
-        // ターゲットパターンチェック
-        if (match.targetPatterns && action.target) {
-            var matchesTarget = match.targetPatterns.some(function (pattern) {
-                return micromatch_1.default.isMatch(action.target, pattern);
-            });
-            if (!matchesTarget) {
-                return false;
-            }
-        }
-        // パラメータ条件チェック
-        if (match.paramConditions && action.params) {
-            for (var _i = 0, _a = Object.entries(match.paramConditions); _i < _a.length; _i++) {
-                var _b = _a[_i], key = _b[0], value = _b[1];
-                if (action.params[key] !== value) {
-                    return false;
-                }
-            }
-        }
-        return true;
-    };
-    /**
-     * 現在のポリシーを取得
-     */
-    SecurityAnalyzer.prototype.getPolicy = function () {
-        return __assign({}, this.policy);
-    };
-    /**
-     * リスクルールを取得
-     */
-    SecurityAnalyzer.prototype.getRiskRules = function () {
-        return __spreadArray([], this.riskRules, true);
-    };
-    /**
-     * ポリシーを更新
-     */
-    SecurityAnalyzer.prototype.updatePolicy = function (update) {
-        if (update.allowPatterns) {
-            this.policy.allowPatterns = update.allowPatterns;
-        }
-        if (update.denyPatterns) {
-            this.policy.denyPatterns = update.denyPatterns;
-        }
-        if (update.requireConfirmation) {
-            this.policy.requireConfirmation = update.requireConfirmation;
-        }
-        if (update.maxRiskLevel) {
-            this.policy.maxRiskLevel = update.maxRiskLevel;
-        }
-        if (update.customRiskRules) {
-            this.policy.customRiskRules = update.customRiskRules;
-        }
-    };
-    return SecurityAnalyzer;
-}());
-exports.SecurityAnalyzer = SecurityAnalyzer;

package/dist/types.d.ts DELETED Viewed

@@ -1,208 +0,0 @@
-/**
- * Security 型定義
- *
- * @requirement REQ-012
- * @design REQ-012-01〜REQ-012-06
- */
-/**
- * リスクレベル
- */
-export type RiskLevel = 'low' | 'medium' | 'high' | 'critical';
-/**
- * リスクレベルの数値マッピング
- */
-export declare const RISK_LEVEL_ORDER: Record<RiskLevel, number>;
-/**
- * リスクレベル比較
- */
-export declare function compareRiskLevels(a: RiskLevel, b: RiskLevel): number;
-/**
- * リスクレベルが閾値以上かチェック
- */
-export declare function isRiskLevelAtLeast(level: RiskLevel, threshold: RiskLevel): boolean;
-/**
- * アクションタイプ
- */
-export type ActionType = 'file_read' | 'file_write' | 'file_delete' | 'file_move' | 'file_copy' | 'directory_create' | 'directory_delete' | 'command_execute' | 'network_request' | 'browser_navigate' | 'browser_click' | 'browser_type' | 'code_execute' | 'search' | 'analyze' | 'custom';
-/**
- * アクション
- */
-export interface Action {
-    /** アクションタイプ */
-    type: ActionType;
-    /** アクション名 */
-    name: string;
-    /** ターゲット（ファイルパス、URL等） */
-    target?: string;
-    /** パラメータ */
-    params?: Record<string, unknown>;
-    /** コンテキスト情報 */
-    context?: ActionContext;
-}
-/**
- * アクションコンテキスト
- */
-export interface ActionContext {
-    /** ユーザーID */
-    userId?: string;
-    /** セッションID */
-    sessionId?: string;
-    /** ソースツール名 */
-    sourceTool?: string;
-    /** 親タスクID */
-    parentTaskId?: string;
-}
-/**
- * オブザベーション（アクション実行結果）
- */
-export interface Observation {
-    /** 成功フラグ */
-    success: boolean;
-    /** 結果データ */
-    data?: unknown;
-    /** エラーメッセージ */
-    error?: string;
-    /** 実行時間（ミリ秒） */
-    duration: number;
-}
-/**
- * パターンルール
- */
-export interface PatternRule {
-    /** パターン（glob形式） */
-    pattern: string;
-    /** 説明 */
-    description?: string;
-    /** 適用するアクションタイプ */
-    actionTypes?: ActionType[];
-}
-/**
- * セキュリティポリシー（REQ-012）
- */
-export interface SecurityPolicy {
-    /** 許可パターン（REQ-012-04） */
-    allowPatterns: PatternRule[];
-    /** 拒否パターン（REQ-012-03） */
-    denyPatterns: PatternRule[];
-    /** 確認が必要なリスクレベル（REQ-012-02） */
-    requireConfirmation: RiskLevel[];
-    /** 最大許容リスクレベル */
-    maxRiskLevel: RiskLevel;
-    /** カスタムリスクルール */
-    customRiskRules?: RiskRule[];
-}
-/**
- * リスクルール
- */
-export interface RiskRule {
-    /** ルール名 */
-    name: string;
-    /** 説明 */
-    description: string;
-    /** マッチ条件 */
-    match: RiskRuleMatch;
-    /** 適用するリスクレベル */
-    riskLevel: RiskLevel;
-}
-/**
- * リスクルールのマッチ条件
- */
-export interface RiskRuleMatch {
-    /** アクションタイプ */
-    actionTypes?: ActionType[];
-    /** ターゲットパターン（glob） */
-    targetPatterns?: string[];
-    /** パラメータ条件 */
-    paramConditions?: Record<string, unknown>;
-}
-/**
- * セキュリティ分析結果（REQ-012-01）
- */
-export interface SecurityAnalysis {
-    /** リスクレベル */
-    riskLevel: RiskLevel;
-    /** リスク理由 */
-    reasons: string[];
-    /** 確認が必要か（REQ-012-02） */
-    requiresConfirmation: boolean;
-    /** 許可されるか */
-    allowed: boolean;
-    /** ブロック理由（許可されない場合） */
-    blockReason?: string;
-    /** マッチしたルール */
-    matchedRules: string[];
-}
-/**
- * 監査ログエントリ（REQ-012-05）
- */
-export interface AuditLogEntry {
-    /** エントリID */
-    id: string;
-    /** タイムスタンプ */
-    timestamp: string;
-    /** アクション */
-    action: Action;
-    /** セキュリティ分析結果 */
-    analysis: SecurityAnalysis;
-    /** 実行結果（実行された場合） */
-    observation?: Observation;
-    /** ユーザー確認の結果（確認が必要だった場合） */
-    userConfirmation?: UserConfirmation;
-}
-/**
- * ユーザー確認
- */
-export interface UserConfirmation {
-    /** 確認されたか */
-    confirmed: boolean;
-    /** 確認時刻 */
-    confirmedAt?: string;
-    /** 確認者 */
-    confirmedBy?: string;
-    /** コメント */
-    comment?: string;
-}
-/**
- * 監査ログフィルター
- */
-export interface AuditLogFilter {
-    /** 開始日時 */
-    startTime?: string;
-    /** 終了日時 */
-    endTime?: string;
-    /** アクションタイプ */
-    actionTypes?: ActionType[];
-    /** リスクレベル（以上） */
-    minRiskLevel?: RiskLevel;
-    /** 成功/失敗 */
-    success?: boolean;
-    /** ユーザーID */
-    userId?: string;
-    /** 検索キーワード */
-    keyword?: string;
-    /** 最大件数 */
-    limit?: number;
-    /** オフセット */
-    offset?: number;
-}
-/**
- * デフォルトセキュリティポリシー
- */
-export declare const DEFAULT_SECURITY_POLICY: SecurityPolicy;
-/**
- * ビルトインリスクルール
- */
-export declare const BUILTIN_RISK_RULES: RiskRule[];
-/**
- * セキュリティエラーコード
- */
-export type SecurityErrorCode = 'ACTION_BLOCKED' | 'RISK_TOO_HIGH' | 'CONFIRMATION_REQUIRED' | 'CONFIRMATION_DENIED' | 'POLICY_VIOLATION';
-/**
- * セキュリティエラー
- */
-export declare class SecurityError extends Error {
-    readonly code: SecurityErrorCode;
-    readonly analysis?: SecurityAnalysis;
-    constructor(code: SecurityErrorCode, message: string, analysis?: SecurityAnalysis);
-}
-//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAMH;;GAEG;AACH,MAAM,MAAM,SAAS,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;AAE/D;;GAEG;AACH,eAAO,MAAM,gBAAgB,EAAE,MAAM,CAAC,SAAS,EAAE,MAAM,CAKtD,CAAC;AAEF;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,SAAS,GAAG,MAAM,CAEpE;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS,GAAG,OAAO,CAElF;AAMD;;GAEG;AACH,MAAM,MAAM,UAAU,GAClB,WAAW,GACX,YAAY,GACZ,aAAa,GACb,WAAW,GACX,WAAW,GACX,kBAAkB,GAClB,kBAAkB,GAClB,iBAAiB,GACjB,iBAAiB,GACjB,kBAAkB,GAClB,eAAe,GACf,cAAc,GACd,cAAc,GACd,QAAQ,GACR,SAAS,GACT,QAAQ,CAAC;AAEb;;GAEG;AACH,MAAM,WAAW,MAAM;IACrB,eAAe;IACf,IAAI,EAAE,UAAU,CAAC;IACjB,aAAa;IACb,IAAI,EAAE,MAAM,CAAC;IACb,yBAAyB;IACzB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,YAAY;IACZ,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,eAAe;IACf,OAAO,CAAC,EAAE,aAAa,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,aAAa;IACb,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,cAAc;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,cAAc;IACd,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa;IACb,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAMD;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,YAAY;IACZ,OAAO,EAAE,OAAO,CAAC;IACjB,YAAY;IACZ,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,eAAe;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,gBAAgB;IAChB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAMD;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,mBAAmB;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS;IACT,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,mBAAmB;IACnB,WAAW,CAAC,EAAE,UAAU,EAAE,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,yBAAyB;IACzB,aAAa,EAAE,WAAW,EAAE,CAAC;IAC7B,yBAAyB;IACzB,YAAY,EAAE,WAAW,EAAE,CAAC;IAC5B,+BAA+B;IAC/B,mBAAmB,EAAE,SAAS,EAAE,CAAC;IACjC,iBAAiB;IACjB,YAAY,EAAE,SAAS,CAAC;IACxB,iBAAiB;IACjB,eAAe,CAAC,EAAE,QAAQ,EAAE,CAAC;CAC9B;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,WAAW;IACX,IAAI,EAAE,MAAM,CAAC;IACb,SAAS;IACT,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY;IACZ,KAAK,EAAE,aAAa,CAAC;IACrB,iBAAiB;IACjB,SAAS,EAAE,SAAS,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,eAAe;IACf,WAAW,CAAC,EAAE,UAAU,EAAE,CAAC;IAC3B,sBAAsB;IACtB,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,cAAc;IACd,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAC3C;AAMD;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,aAAa;IACb,SAAS,EAAE,SAAS,CAAC;IACrB,YAAY;IACZ,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,yBAAyB;IACzB,oBAAoB,EAAE,OAAO,CAAC;IAC9B,aAAa;IACb,OAAO,EAAE,OAAO,CAAC;IACjB,uBAAuB;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe;IACf,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAMD;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,aAAa;IACb,EAAE,EAAE,MAAM,CAAC;IACX,cAAc;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,iBAAiB;IACjB,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,oBAAoB;IACpB,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,4BAA4B;IAC5B,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;CACrC;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,aAAa;IACb,SAAS,EAAE,OAAO,CAAC;IACnB,WAAW;IACX,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU;IACV,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW;IACX,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,WAAW;IACX,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW;IACX,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,eAAe;IACf,WAAW,CAAC,EAAE,UAAU,EAAE,CAAC;IAC3B,iBAAiB;IACjB,YAAY,CAAC,EAAE,SAAS,CAAC;IACzB,YAAY;IACZ,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,aAAa;IACb,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,cAAc;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW;IACX,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,YAAY;IACZ,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAMD;;GAEG;AACH,eAAO,MAAM,uBAAuB,EAAE,cAoBrC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,kBAAkB,EAAE,QAAQ,EAqCxC,CAAC;AAMF;;GAEG;AACH,MAAM,MAAM,iBAAiB,GACzB,gBAAgB,GAChB,eAAe,GACf,uBAAuB,GACvB,qBAAqB,GACrB,kBAAkB,CAAC;AAEvB;;GAEG;AACH,qBAAa,aAAc,SAAQ,KAAK;aAEpB,IAAI,EAAE,iBAAiB;aAEvB,QAAQ,CAAC,EAAE,gBAAgB;gBAF3B,IAAI,EAAE,iBAAiB,EACvC,OAAO,EAAE,MAAM,EACC,QAAQ,CAAC,EAAE,gBAAgB;CAK9C"}

package/dist/types.js DELETED Viewed

@@ -1,130 +0,0 @@
-"use strict";
-/**
- * Security 型定義
- *
- * @requirement REQ-012
- * @design REQ-012-01〜REQ-012-06
- */
-var __extends = (this && this.__extends) || (function () {
-    var extendStatics = function (d, b) {
-        extendStatics = Object.setPrototypeOf ||
-            ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
-            function (d, b) { for (var p in b) if (Object.prototype.hasOwnProperty.call(b, p)) d[p] = b[p]; };
-        return extendStatics(d, b);
-    };
-    return function (d, b) {
-        if (typeof b !== "function" && b !== null)
-            throw new TypeError("Class extends value " + String(b) + " is not a constructor or null");
-        extendStatics(d, b);
-        function __() { this.constructor = d; }
-        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
-    };
-})();
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.SecurityError = exports.BUILTIN_RISK_RULES = exports.DEFAULT_SECURITY_POLICY = exports.RISK_LEVEL_ORDER = void 0;
-exports.compareRiskLevels = compareRiskLevels;
-exports.isRiskLevelAtLeast = isRiskLevelAtLeast;
-/**
- * リスクレベルの数値マッピング
- */
-exports.RISK_LEVEL_ORDER = {
-    low: 1,
-    medium: 2,
-    high: 3,
-    critical: 4,
-};
-/**
- * リスクレベル比較
- */
-function compareRiskLevels(a, b) {
-    return exports.RISK_LEVEL_ORDER[a] - exports.RISK_LEVEL_ORDER[b];
-}
-/**
- * リスクレベルが閾値以上かチェック
- */
-function isRiskLevelAtLeast(level, threshold) {
-    return exports.RISK_LEVEL_ORDER[level] >= exports.RISK_LEVEL_ORDER[threshold];
-}
-// ============================================================================
-// デフォルト設定
-// ============================================================================
-/**
- * デフォルトセキュリティポリシー
- */
-exports.DEFAULT_SECURITY_POLICY = {
-    allowPatterns: [
-        { pattern: '**/*.md', description: 'Markdown files are safe' },
-        { pattern: '**/*.txt', description: 'Text files are safe' },
-        { pattern: '**/*.json', description: 'JSON files are generally safe' },
-    ],
-    denyPatterns: [
-        { pattern: '/etc/**', description: 'System configuration files' },
-        { pattern: '/usr/**', description: 'System binaries' },
-        { pattern: '**/node_modules/**', description: 'Dependencies should not be modified' },
-        { pattern: '**/.git/**', description: 'Git internal files' },
-        { pattern: '**/.env*', description: 'Environment files with secrets' },
-        { pattern: '**/*password*', description: 'Files with password in name' },
-        { pattern: '**/*secret*', description: 'Files with secret in name' },
-        { pattern: '**/*.key', description: 'Key files' },
-        { pattern: '**/*.pem', description: 'Certificate files' },
-    ],
-    requireConfirmation: ['high', 'critical'],
-    maxRiskLevel: 'critical',
-    customRiskRules: [],
-};
-/**
- * ビルトインリスクルール
- */
-exports.BUILTIN_RISK_RULES = [
-    {
-        name: 'file_delete_high_risk',
-        description: 'File deletion is high risk (REQ-012-06)',
-        match: { actionTypes: ['file_delete', 'directory_delete'] },
-        riskLevel: 'high',
-    },
-    {
-        name: 'command_execute_high_risk',
-        description: 'Command execution is high risk',
-        match: { actionTypes: ['command_execute'] },
-        riskLevel: 'high',
-    },
-    {
-        name: 'code_execute_medium_risk',
-        description: 'Code execution is medium risk',
-        match: { actionTypes: ['code_execute'] },
-        riskLevel: 'medium',
-    },
-    {
-        name: 'network_request_medium_risk',
-        description: 'Network requests are medium risk',
-        match: { actionTypes: ['network_request'] },
-        riskLevel: 'medium',
-    },
-    {
-        name: 'file_write_low_risk',
-        description: 'File write is low risk by default',
-        match: { actionTypes: ['file_write'] },
-        riskLevel: 'low',
-    },
-    {
-        name: 'file_read_low_risk',
-        description: 'File read is low risk',
-        match: { actionTypes: ['file_read', 'search', 'analyze'] },
-        riskLevel: 'low',
-    },
-];
-/**
- * セキュリティエラー
- */
-var SecurityError = /** @class */ (function (_super) {
-    __extends(SecurityError, _super);
-    function SecurityError(code, message, analysis) {
-        var _this = _super.call(this, message) || this;
-        _this.code = code;
-        _this.analysis = analysis;
-        _this.name = 'SecurityError';
-        return _this;
-    }
-    return SecurityError;
-}(Error));
-exports.SecurityError = SecurityError;