@nahisaho/musubix-security 1.8.0 → 1.8.5

package/dist/integrations/report-aggregator.d.ts

@@ -0,0 +1,250 @@
+/**
+ * @fileoverview Report Aggregator for Multiple Scan Results
+ * @module @nahisaho/musubix-security/integrations/report-aggregator
+ *
+ * Aggregates multiple security scan results into unified reports
+ * with trend analysis and comparison capabilities.
+ */
+import type { ScanResult, Severity, Vulnerability } from '../types/index.js';
+/**
+ * Aggregated scan entry
+ */
+export interface AggregatedScanEntry {
+    /** Scan identifier */
+    id: string;
+    /** Scan timestamp */
+    timestamp: Date;
+    /** Scan target/source */
+    source: string;
+    /** Scan type */
+    type: ScanType;
+    /** Original scan result */
+    result: ScanResult;
+    /** Metadata */
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Scan type classification
+ */
+export type ScanType = 'vulnerability' | 'secret' | 'dependency' | 'compliance' | 'container' | 'iac' | 'api' | 'full';
+/**
+ * Report aggregator options
+ */
+export interface ReportAggregatorOptions {
+    /** Deduplicate similar findings */
+    deduplicate?: boolean;
+    /** Similarity threshold for deduplication (0-1) */
+    similarityThreshold?: number;
+    /** Group by file/rule/severity */
+    groupBy?: 'file' | 'rule' | 'severity' | 'category';
+    /** Include historical comparison */
+    includeHistory?: boolean;
+    /** Maximum history entries to keep */
+    maxHistoryEntries?: number;
+}
+/**
+ * Aggregated report
+ */
+export interface AggregatedReport {
+    /** Report generation timestamp */
+    generatedAt: Date;
+    /** Report ID */
+    reportId: string;
+    /** Summary statistics */
+    summary: AggregatedSummary;
+    /** All findings (deduplicated if enabled) */
+    findings: AggregatedFinding[];
+    /** Grouped findings */
+    groupedFindings: GroupedFindings;
+    /** Scan sources */
+    sources: ScanSource[];
+    /** Trend data */
+    trends: TrendData;
+    /** Comparison with previous */
+    comparison?: ReportComparison;
+}
+/**
+ * Aggregated summary
+ */
+export interface AggregatedSummary {
+    /** Total scans aggregated */
+    totalScans: number;
+    /** Total unique findings */
+    totalFindings: number;
+    /** Findings by severity */
+    bySeverity: Record<Severity, number>;
+    /** Findings by type */
+    byType: Record<ScanType, number>;
+    /** Files affected */
+    filesAffected: number;
+    /** Rules triggered */
+    rulesTriggered: number;
+    /** Overall security score */
+    securityScore: number;
+    /** Risk level */
+    riskLevel: 'critical' | 'high' | 'medium' | 'low' | 'minimal';
+}
+/**
+ * Aggregated finding
+ */
+export interface AggregatedFinding {
+    /** Finding ID */
+    id: string;
+    /** Original vulnerability */
+    vulnerability: Vulnerability;
+    /** Sources where this finding was detected */
+    sources: string[];
+    /** Occurrence count */
+    occurrences: number;
+    /** First seen timestamp */
+    firstSeen: Date;
+    /** Last seen timestamp */
+    lastSeen: Date;
+    /** Is new (not in previous report) */
+    isNew: boolean;
+    /** Is fixed (was in previous, not in current) */
+    isFixed: boolean;
+    /** Fingerprint for deduplication */
+    fingerprint: string;
+}
+/**
+ * Grouped findings by category
+ */
+export interface GroupedFindings {
+    /** Findings grouped by file */
+    byFile: Map<string, AggregatedFinding[]>;
+    /** Findings grouped by rule */
+    byRule: Map<string, AggregatedFinding[]>;
+    /** Findings grouped by severity */
+    bySeverity: Map<Severity, AggregatedFinding[]>;
+    /** Findings grouped by OWASP category */
+    byCategory: Map<string, AggregatedFinding[]>;
+}
+/**
+ * Scan source metadata
+ */
+export interface ScanSource {
+    /** Source identifier */
+    id: string;
+    /** Scan type */
+    type: ScanType;
+    /** Timestamp */
+    timestamp: Date;
+    /** Target scanned */
+    target: string;
+    /** Finding count from this source */
+    findingCount: number;
+}
+/**
+ * Trend data over time
+ */
+export interface TrendData {
+    /** Data points */
+    dataPoints: TrendDataPoint[];
+    /** Trend direction */
+    direction: 'improving' | 'stable' | 'degrading';
+    /** Change percentage */
+    changePercent: number;
+    /** Projected risk (if trend continues) */
+    projectedRisk: string;
+}
+/**
+ * Single trend data point
+ */
+export interface TrendDataPoint {
+    /** Timestamp */
+    timestamp: Date;
+    /** Total findings */
+    totalFindings: number;
+    /** Critical findings */
+    criticalFindings: number;
+    /** Security score */
+    securityScore: number;
+}
+/**
+ * Comparison with previous report
+ */
+export interface ReportComparison {
+    /** New findings */
+    newFindings: AggregatedFinding[];
+    /** Fixed findings */
+    fixedFindings: AggregatedFinding[];
+    /** Unchanged findings */
+    unchangedFindings: AggregatedFinding[];
+    /** Finding count change */
+    findingDelta: number;
+    /** Security score change */
+    scoreDelta: number;
+    /** Summary text */
+    summaryText: string;
+}
+/**
+ * Aggregates multiple security scan results
+ *
+ * @example
+ * ```typescript
+ * const aggregator = createReportAggregator({
+ *   deduplicate: true,
+ *   groupBy: 'severity',
+ * });
+ *
+ * aggregator.addScan('vuln-scan', scanResult1, 'vulnerability');
+ * aggregator.addScan('secret-scan', scanResult2, 'secret');
+ *
+ * const report = aggregator.generateReport();
+ * ```
+ */
+export declare class ReportAggregator {
+    private options;
+    private scans;
+    private history;
+    private scanCounter;
+    constructor(options?: ReportAggregatorOptions);
+    /**
+     * Add a scan result to the aggregator
+     */
+    addScan(source: string, result: ScanResult, type?: ScanType, metadata?: Record<string, unknown>): string;
+    /**
+     * Remove a scan by ID
+     */
+    removeScan(id: string): boolean;
+    /**
+     * Clear all scans
+     */
+    clear(): void;
+    /**
+     * Generate aggregated report
+     */
+    generateReport(): AggregatedReport;
+    /**
+     * Get scan count
+     */
+    getScanCount(): number;
+    /**
+     * Get history
+     */
+    getHistory(): AggregatedReport[];
+    /**
+     * Export report as JSON
+     */
+    exportJSON(report: AggregatedReport): string;
+    /**
+     * Export report as Markdown
+     */
+    exportMarkdown(report: AggregatedReport): string;
+    private aggregateFindings;
+    private deduplicateFindings;
+    private groupFindings;
+    private generateSummary;
+    private generateSources;
+    private generateTrends;
+    private compareWithPrevious;
+    private generateFingerprint;
+    private calculateSimilarity;
+    private calculateSecurityScore;
+}
+/**
+ * Create a report aggregator
+ */
+export declare function createReportAggregator(options?: ReportAggregatorOptions): ReportAggregator;
+//# sourceMappingURL=report-aggregator.d.ts.map

package/dist/integrations/report-aggregator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"report-aggregator.d.ts","sourceRoot":"","sources":["../../src/integrations/report-aggregator.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAM7E;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,sBAAsB;IACtB,EAAE,EAAE,MAAM,CAAC;IACX,qBAAqB;IACrB,SAAS,EAAE,IAAI,CAAC;IAChB,yBAAyB;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,gBAAgB;IAChB,IAAI,EAAE,QAAQ,CAAC;IACf,2BAA2B;IAC3B,MAAM,EAAE,UAAU,CAAC;IACnB,eAAe;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,MAAM,QAAQ,GAChB,eAAe,GACf,QAAQ,GACR,YAAY,GACZ,YAAY,GACZ,WAAW,GACX,KAAK,GACL,KAAK,GACL,MAAM,CAAC;AAEX;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,mCAAmC;IACnC,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,mDAAmD;IACnD,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,kCAAkC;IAClC,OAAO,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,UAAU,GAAG,UAAU,CAAC;IACpD,oCAAoC;IACpC,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,sCAAsC;IACtC,iBAAiB,CAAC,EAAE,MAAM,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,kCAAkC;IAClC,WAAW,EAAE,IAAI,CAAC;IAClB,gBAAgB;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,yBAAyB;IACzB,OAAO,EAAE,iBAAiB,CAAC;IAC3B,6CAA6C;IAC7C,QAAQ,EAAE,iBAAiB,EAAE,CAAC;IAC9B,uBAAuB;IACvB,eAAe,EAAE,eAAe,CAAC;IACjC,mBAAmB;IACnB,OAAO,EAAE,UAAU,EAAE,CAAC;IACtB,iBAAiB;IACjB,MAAM,EAAE,SAAS,CAAC;IAClB,+BAA+B;IAC/B,UAAU,CAAC,EAAE,gBAAgB,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,6BAA6B;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,4BAA4B;IAC5B,aAAa,EAAE,MAAM,CAAC;IACtB,2BAA2B;IAC3B,UAAU,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IACrC,uBAAuB;IACvB,MAAM,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IACjC,qBAAqB;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,sBAAsB;IACtB,cAAc,EAAE,MAAM,CAAC;IACvB,6BAA6B;IAC7B,aAAa,EAAE,MAAM,CAAC;IACtB,iBAAiB;IACjB,SAAS,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,SAAS,CAAC;CAC/D;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,iBAAiB;IACjB,EAAE,EAAE,MAAM,CAAC;IACX,6BAA6B;IAC7B,aAAa,EAAE,aAAa,CAAC;IAC7B,8CAA8C;IAC9C,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,uBAAuB;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,2BAA2B;IAC3B,SAAS,EAAE,IAAI,CAAC;IAChB,0BAA0B;IAC1B,QAAQ,EAAE,IAAI,CAAC;IACf,sCAAsC;IACtC,KAAK,EAAE,OAAO,CAAC;IACf,iDAAiD;IACjD,OAAO,EAAE,OAAO,CAAC;IACjB,oCAAoC;IACpC,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,+BAA+B;IAC/B,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,iBAAiB,EAAE,CAAC,CAAC;IACzC,+BAA+B;IAC/B,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,iBAAiB,EAAE,CAAC,CAAC;IACzC,mCAAmC;IACnC,UAAU,EAAE,GAAG,CAAC,QAAQ,EAAE,iBAAiB,EAAE,CAAC,CAAC;IAC/C,yCAAyC;IACzC,UAAU,EAAE,GAAG,CAAC,MAAM,EAAE,iBAAiB,EAAE,CAAC,CAAC;CAC9C;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,gBAAgB;IAChB,IAAI,EAAE,QAAQ,CAAC;IACf,gBAAgB;IAChB,SAAS,EAAE,IAAI,CAAC;IAChB,qBAAqB;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,qCAAqC;IACrC,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,kBAAkB;IAClB,UAAU,EAAE,cAAc,EAAE,CAAC;IAC7B,sBAAsB;IACtB,SAAS,EAAE,WAAW,GAAG,QAAQ,GAAG,WAAW,CAAC;IAChD,wBAAwB;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,0CAA0C;IAC1C,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,gBAAgB;IAChB,SAAS,EAAE,IAAI,CAAC;IAChB,qBAAqB;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,wBAAwB;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,qBAAqB;IACrB,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,mBAAmB;IACnB,WAAW,EAAE,iBAAiB,EAAE,CAAC;IACjC,qBAAqB;IACrB,aAAa,EAAE,iBAAiB,EAAE,CAAC;IACnC,yBAAyB;IACzB,iBAAiB,EAAE,iBAAiB,EAAE,CAAC;IACvC,2BAA2B;IAC3B,YAAY,EAAE,MAAM,CAAC;IACrB,4BAA4B;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,mBAAmB;IACnB,WAAW,EAAE,MAAM,CAAC;CACrB;AAMD;;;;;;;;;;;;;;;GAeG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,OAAO,CAAoC;IACnD,OAAO,CAAC,KAAK,CAA6B;IAC1C,OAAO,CAAC,OAAO,CAA0B;IACzC,OAAO,CAAC,WAAW,CAAK;gBAEZ,OAAO,GAAE,uBAA4B;IAUjD;;OAEG;IACH,OAAO,CACL,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,UAAU,EAClB,IAAI,GAAE,QAAiB,EACvB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GACjC,MAAM;IAeT;;OAEG;IACH,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;IAS/B;;OAEG;IACH,KAAK,IAAI,IAAI;IAIb;;OAEG;IACH,cAAc,IAAI,gBAAgB;IAmDlC;;OAEG;IACH,YAAY,IAAI,MAAM;IAItB;;OAEG;IACH,UAAU,IAAI,gBAAgB,EAAE;IAIhC;;OAEG;IACH,UAAU,CAAC,MAAM,EAAE,gBAAgB,GAAG,MAAM;IAY5C;;OAEG;IACH,cAAc,CAAC,MAAM,EAAE,gBAAgB,GAAG,MAAM;IA8DhD,OAAO,CAAC,iBAAiB;IA+BzB,OAAO,CAAC,mBAAmB;IAyB3B,OAAO,CAAC,aAAa;IA+BrB,OAAO,CAAC,eAAe;IA8DvB,OAAO,CAAC,eAAe;IAUvB,OAAO,CAAC,cAAc;IA+CtB,OAAO,CAAC,mBAAmB;IAoD3B,OAAO,CAAC,mBAAmB;IAU3B,OAAO,CAAC,mBAAmB;IAgB3B,OAAO,CAAC,sBAAsB;CAa/B;AAMD;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,CAAC,EAAE,uBAAuB,GAAG,gBAAgB,CAE1F"}