@nahisaho/musubix-security 1.8.0 → 1.8.1

package/dist/analyzers/compliance/compliance-checker.d.ts

@@ -0,0 +1,201 @@
+/**
+ * @fileoverview Compliance Checker - Security compliance verification
+ * @module @nahisaho/musubix-security/analyzers/compliance/compliance-checker
+ * @trace DES-SEC3-COMPLIANCE-001, REQ-SEC3-COMPLIANCE-001
+ */
+import type { Vulnerability, Severity } from '../../types/vulnerability.js';
+/**
+ * Compliance standard types
+ */
+export type ComplianceStandard = 'owasp-asvs-l1' | 'owasp-asvs-l2' | 'owasp-asvs-l3' | 'pci-dss' | 'soc2' | 'hipaa' | 'gdpr' | 'iso27001';
+/**
+ * Compliance requirement
+ */
+export interface ComplianceRequirement {
+    id: string;
+    standard: ComplianceStandard;
+    category: string;
+    title: string;
+    description: string;
+    level: 1 | 2 | 3;
+    controls: string[];
+}
+/**
+ * Compliance check result
+ */
+export interface ComplianceCheckResult {
+    requirement: ComplianceRequirement;
+    status: 'pass' | 'fail' | 'partial' | 'not-applicable';
+    findings: ComplianceFinding[];
+    evidence: string[];
+    remediationSteps?: string[];
+}
+/**
+ * Compliance finding
+ */
+export interface ComplianceFinding {
+    id: string;
+    requirementId: string;
+    severity: Severity;
+    location?: {
+        file: string;
+        line?: number;
+    };
+    description: string;
+    evidence: string;
+    recommendation: string;
+}
+/**
+ * Compliance report
+ */
+export interface ComplianceReport {
+    standard: ComplianceStandard;
+    timestamp: Date;
+    overallStatus: 'compliant' | 'non-compliant' | 'partial';
+    score: number;
+    totalRequirements: number;
+    passedRequirements: number;
+    failedRequirements: number;
+    partialRequirements: number;
+    notApplicable: number;
+    results: ComplianceCheckResult[];
+    summary: ComplianceSummary;
+}
+/**
+ * Compliance summary by category
+ */
+export interface ComplianceSummary {
+    byCategory: Record<string, CategorySummary>;
+    criticalFindings: ComplianceFinding[];
+    topRemediations: string[];
+}
+/**
+ * Category summary
+ */
+export interface CategorySummary {
+    total: number;
+    passed: number;
+    failed: number;
+    partial: number;
+    percentage: number;
+}
+/**
+ * Compliance checker options
+ */
+export interface ComplianceCheckerOptions {
+    standards?: ComplianceStandard[];
+    level?: 1 | 2 | 3;
+    includeEvidence?: boolean;
+    skipCategories?: string[];
+}
+/**
+ * Compliance Checker
+ * @trace DES-SEC3-COMPLIANCE-001
+ */
+export declare class ComplianceChecker {
+    private options;
+    private requirements;
+    constructor(options?: ComplianceCheckerOptions);
+    /**
+     * Check compliance against a standard
+     * @trace REQ-SEC3-COMPLIANCE-001
+     */
+    check(code: string, filePath: string, standard?: ComplianceStandard): Promise<ComplianceReport>;
+    /**
+     * Check multiple files for compliance
+     */
+    checkFiles(files: Array<{
+        path: string;
+        content: string;
+    }>, standard?: ComplianceStandard): Promise<ComplianceReport>;
+    /**
+     * Alias for check() - Check compliance against a standard with empty code
+     * Used for obtaining compliance reports without actual code analysis
+     */
+    checkCompliance(standard: ComplianceStandard): Promise<{
+        standard: ComplianceStandard;
+        timestamp: Date;
+        findings: Array<{
+            requirement: ComplianceRequirement;
+            status: 'pass' | 'fail' | 'partial' | 'not-applicable';
+            evidence?: string;
+        }>;
+        summary: {
+            totalRequirements: number;
+            passed: number;
+            failed: number;
+            notApplicable: number;
+            compliancePercentage: number;
+            byCategory: Array<{
+                category: string;
+                passed: number;
+                failed: number;
+            }>;
+        };
+    }>;
+    /**
+     * Check all configured standards
+     */
+    checkAllStandards(): Promise<Array<{
+        standard: ComplianceStandard;
+        timestamp: Date;
+        findings: Array<{
+            requirement: ComplianceRequirement;
+            status: 'pass' | 'fail' | 'partial' | 'not-applicable';
+            evidence?: string;
+        }>;
+        summary: {
+            totalRequirements: number;
+            passed: number;
+            failed: number;
+            notApplicable: number;
+            compliancePercentage: number;
+            byCategory: Array<{
+                category: string;
+                passed: number;
+                failed: number;
+            }>;
+        };
+    }>>;
+    /**
+     * Get list of supported compliance standards
+     */
+    getSupportedStandards(): ComplianceStandard[];
+    /**
+     * Get requirements for a specific standard (public accessor)
+     */
+    getRequirements(standard: ComplianceStandard): ComplianceRequirement[];
+    /**
+     * Check a specific requirement
+     */
+    private checkRequirement;
+    /**
+     * Get requirements for a standard (internal)
+     */
+    private getRequirementsInternal;
+    /**
+     * Determine overall compliance status
+     */
+    private determineOverallStatus;
+    /**
+     * Generate compliance summary
+     */
+    private generateSummary;
+    /**
+     * Convert compliance findings to vulnerabilities
+     */
+    toVulnerabilities(report: ComplianceReport): Vulnerability[];
+    /**
+     * Map requirement to CWE IDs
+     */
+    private mapRequirementToCWE;
+    /**
+     * Map requirement to OWASP categories
+     */
+    private mapRequirementToOWASP;
+}
+/**
+ * Create compliance checker instance
+ */
+export declare function createComplianceChecker(options?: ComplianceCheckerOptions): ComplianceChecker;
+//# sourceMappingURL=compliance-checker.d.ts.map

package/dist/analyzers/compliance/compliance-checker.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"compliance-checker.d.ts","sourceRoot":"","sources":["../../../src/analyzers/compliance/compliance-checker.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,QAAQ,EAAiB,MAAM,8BAA8B,CAAC;AAE3F;;GAEG;AACH,MAAM,MAAM,kBAAkB,GAC1B,eAAe,GACf,eAAe,GACf,eAAe,GACf,SAAS,GACT,MAAM,GACN,OAAO,GACP,MAAM,GACN,UAAU,CAAC;AAEf;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,WAAW,EAAE,qBAAqB,CAAC;IACnC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,GAAG,gBAAgB,CAAC;IACvD,QAAQ,EAAE,iBAAiB,EAAE,CAAC;IAC9B,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,MAAM,CAAC;IACX,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,CAAC,EAAE;QACT,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,CAAC,EAAE,MAAM,CAAC;KACf,CAAC;IACF,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,SAAS,EAAE,IAAI,CAAC;IAChB,aAAa,EAAE,WAAW,GAAG,eAAe,GAAG,SAAS,CAAC;IACzD,KAAK,EAAE,MAAM,CAAC;IACd,iBAAiB,EAAE,MAAM,CAAC;IAC1B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,EAAE,qBAAqB,EAAE,CAAC;IACjC,OAAO,EAAE,iBAAiB,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;IAC5C,gBAAgB,EAAE,iBAAiB,EAAE,CAAC;IACtC,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,SAAS,CAAC,EAAE,kBAAkB,EAAE,CAAC;IACjC,KAAK,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAClB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAsZD;;;GAGG;AACH,qBAAa,iBAAiB;IAC5B,OAAO,CAAC,OAAO,CAAqC;IACpD,OAAO,CAAC,YAAY,CAAmD;gBAE3D,OAAO,GAAE,wBAA6B;IAgBlD;;;OAGG;IACG,KAAK,CACT,IAAI,EAAE,MAAM,EACZ,QAAQ,EAAE,MAAM,EAChB,QAAQ,CAAC,EAAE,kBAAkB,GAC5B,OAAO,CAAC,gBAAgB,CAAC;IA6D5B;;OAEG;IACG,UAAU,CACd,KAAK,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC,EAC/C,QAAQ,CAAC,EAAE,kBAAkB,GAC5B,OAAO,CAAC,gBAAgB,CAAC;IAK5B;;;OAGG;IACG,eAAe,CAAC,QAAQ,EAAE,kBAAkB,GAAG,OAAO,CAAC;QAC3D,QAAQ,EAAE,kBAAkB,CAAC;QAC7B,SAAS,EAAE,IAAI,CAAC;QAChB,QAAQ,EAAE,KAAK,CAAC;YACd,WAAW,EAAE,qBAAqB,CAAC;YACnC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,GAAG,gBAAgB,CAAC;YACvD,QAAQ,CAAC,EAAE,MAAM,CAAC;SACnB,CAAC,CAAC;QACH,OAAO,EAAE;YACP,iBAAiB,EAAE,MAAM,CAAC;YAC1B,MAAM,EAAE,MAAM,CAAC;YACf,MAAM,EAAE,MAAM,CAAC;YACf,aAAa,EAAE,MAAM,CAAC;YACtB,oBAAoB,EAAE,MAAM,CAAC;YAC7B,UAAU,EAAE,KAAK,CAAC;gBAAE,QAAQ,EAAE,MAAM,CAAC;gBAAC,MAAM,EAAE,MAAM,CAAC;gBAAC,MAAM,EAAE,MAAM,CAAA;aAAE,CAAC,CAAC;SACzE,CAAC;KACH,CAAC;IA0BF;;OAEG;IACG,iBAAiB,IAAI,OAAO,CAAC,KAAK,CAAC;QACvC,QAAQ,EAAE,kBAAkB,CAAC;QAC7B,SAAS,EAAE,IAAI,CAAC;QAChB,QAAQ,EAAE,KAAK,CAAC;YACd,WAAW,EAAE,qBAAqB,CAAC;YACnC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,GAAG,gBAAgB,CAAC;YACvD,QAAQ,CAAC,EAAE,MAAM,CAAC;SACnB,CAAC,CAAC;QACH,OAAO,EAAE;YACP,iBAAiB,EAAE,MAAM,CAAC;YAC1B,MAAM,EAAE,MAAM,CAAC;YACf,MAAM,EAAE,MAAM,CAAC;YACf,aAAa,EAAE,MAAM,CAAC;YACtB,oBAAoB,EAAE,MAAM,CAAC;YAC7B,UAAU,EAAE,KAAK,CAAC;gBAAE,QAAQ,EAAE,MAAM,CAAC;gBAAC,MAAM,EAAE,MAAM,CAAC;gBAAC,MAAM,EAAE,MAAM,CAAA;aAAE,CAAC,CAAC;SACzE,CAAC;KACH,CAAC,CAAC;IAQH;;OAEG;IACH,qBAAqB,IAAI,kBAAkB,EAAE;IAI7C;;OAEG;IACH,eAAe,CAAC,QAAQ,EAAE,kBAAkB,GAAG,qBAAqB,EAAE;IAItE;;OAEG;IACH,OAAO,CAAC,gBAAgB;IA6FxB;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAS/B;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAY9B;;OAEG;IACH,OAAO,CAAC,eAAe;IA2DvB;;OAEG;IACH,iBAAiB,CAAC,MAAM,EAAE,gBAAgB,GAAG,aAAa,EAAE;IA+B5D;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAsB3B;;OAEG;IACH,OAAO,CAAC,qBAAqB;CAa9B;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,OAAO,CAAC,EAAE,wBAAwB,GAAG,iBAAiB,CAE7F"}