@nahisaho/musubix-security 1.8.0 → 1.8.5

package/dist/integrations/vscode-integration.d.ts

@@ -0,0 +1,245 @@
+/**
+ * @fileoverview VS Code Integration for Security Scanning
+ * @module @nahisaho/musubix-security/integrations/vscode-integration
+ *
+ * Provides API for VS Code extension integration with diagnostic
+ * and code action capabilities.
+ */
+import type { ScanResult, Vulnerability, Severity, Fix } from '../types/index.js';
+/**
+ * VS Code diagnostic severity (mirrors vscode.DiagnosticSeverity)
+ */
+export declare enum DiagnosticSeverity {
+    Error = 0,
+    Warning = 1,
+    Information = 2,
+    Hint = 3
+}
+/**
+ * VS Code position
+ */
+export interface Position {
+    line: number;
+    character: number;
+}
+/**
+ * VS Code range
+ */
+export interface Range {
+    start: Position;
+    end: Position;
+}
+/**
+ * VS Code diagnostic
+ */
+export interface Diagnostic {
+    /** Range where the diagnostic applies */
+    range: Range;
+    /** Human-readable message */
+    message: string;
+    /** Severity level */
+    severity: DiagnosticSeverity;
+    /** Diagnostic code */
+    code?: string | number;
+    /** Source of the diagnostic */
+    source: string;
+    /** Related information */
+    relatedInformation?: DiagnosticRelatedInformation[];
+    /** Tags for special handling */
+    tags?: DiagnosticTag[];
+}
+/**
+ * Diagnostic related information
+ */
+export interface DiagnosticRelatedInformation {
+    location: {
+        uri: string;
+        range: Range;
+    };
+    message: string;
+}
+/**
+ * Diagnostic tag
+ */
+export declare enum DiagnosticTag {
+    Unnecessary = 1,
+    Deprecated = 2
+}
+/**
+ * Code action
+ */
+export interface CodeAction {
+    /** Title shown in UI */
+    title: string;
+    /** Kind of code action */
+    kind: CodeActionKind;
+    /** Diagnostics this action resolves */
+    diagnostics?: Diagnostic[];
+    /** Workspace edit to apply */
+    edit?: WorkspaceEdit;
+    /** Command to execute */
+    command?: Command;
+    /** Whether this is preferred action */
+    isPreferred?: boolean;
+}
+/**
+ * Code action kind
+ */
+export type CodeActionKind = 'quickfix' | 'quickfix.security' | 'refactor' | 'refactor.security' | 'source' | 'source.fixAll.security';
+/**
+ * Workspace edit
+ */
+export interface WorkspaceEdit {
+    /** Map of URI to text edits */
+    changes: Map<string, TextEdit[]>;
+}
+/**
+ * Text edit
+ */
+export interface TextEdit {
+    range: Range;
+    newText: string;
+}
+/**
+ * Command
+ */
+export interface Command {
+    title: string;
+    command: string;
+    arguments?: unknown[];
+}
+/**
+ * Status bar item
+ */
+export interface StatusBarItem {
+    text: string;
+    tooltip: string;
+    color?: string;
+    backgroundColor?: string;
+    command?: string;
+}
+/**
+ * Tree item for explorer view
+ */
+export interface TreeItem {
+    label: string;
+    description?: string;
+    tooltip?: string;
+    iconPath?: string;
+    collapsibleState: 'none' | 'collapsed' | 'expanded';
+    children?: TreeItem[];
+    command?: Command;
+    contextValue?: string;
+}
+/**
+ * Hover content
+ */
+export interface HoverContent {
+    contents: string[];
+    range?: Range;
+}
+/**
+ * Decoration
+ */
+export interface Decoration {
+    range: Range;
+    renderOptions: {
+        after?: {
+            contentText: string;
+            color?: string;
+            backgroundColor?: string;
+        };
+        before?: {
+            contentText: string;
+            color?: string;
+            backgroundColor?: string;
+        };
+    };
+}
+/**
+ * VS Code integration options
+ */
+export interface VSCodeIntegrationOptions {
+    /** Source name for diagnostics */
+    diagnosticSource?: string;
+    /** Collection name for diagnostics */
+    diagnosticCollection?: string;
+    /** Enable inline decorations */
+    enableDecorations?: boolean;
+    /** Enable code lens */
+    enableCodeLens?: boolean;
+    /** Severity mapping override */
+    severityMapping?: Partial<Record<Severity, DiagnosticSeverity>>;
+}
+/**
+ * VS Code integration adapter for security scanning
+ *
+ * @example
+ * ```typescript
+ * const integration = createVSCodeIntegration();
+ *
+ * // Convert scan result to diagnostics
+ * const diagnostics = integration.toDiagnostics(scanResult);
+ *
+ * // Generate code actions for fixes
+ * const actions = integration.toCodeActions(vulnerability, fixes);
+ * ```
+ */
+export declare class VSCodeIntegration {
+    private options;
+    private severityMap;
+    constructor(options?: VSCodeIntegrationOptions);
+    /**
+     * Convert vulnerability to VS Code diagnostic
+     */
+    toDiagnostic(vulnerability: Vulnerability): Diagnostic;
+    /**
+     * Convert scan result to VS Code diagnostics grouped by file
+     */
+    toDiagnostics(scanResult: ScanResult): Map<string, Diagnostic[]>;
+    /**
+     * Convert fix to VS Code code action
+     */
+    toCodeAction(vulnerability: Vulnerability, fix: Fix): CodeAction;
+    /**
+     * Convert multiple fixes to code actions
+     */
+    toCodeActions(vulnerability: Vulnerability, fixes: Fix[]): CodeAction[];
+    /**
+     * Generate "Fix All" code action
+     */
+    toFixAllAction(scanResult: ScanResult, fixes: Map<string, Fix[]>): CodeAction;
+    /**
+     * Generate status bar item
+     */
+    toStatusBarItem(scanResult: ScanResult): StatusBarItem;
+    /**
+     * Generate tree items for explorer view
+     */
+    toTreeItems(scanResult: ScanResult): TreeItem[];
+    /**
+     * Generate hover content for a vulnerability
+     */
+    toHoverContent(vulnerability: Vulnerability): HoverContent;
+    /**
+     * Generate inline decorations for vulnerabilities
+     */
+    toDecorations(vulnerabilities: Vulnerability[]): Decoration[];
+    /**
+     * Generate webview HTML content
+     */
+    toWebviewHTML(scanResult: ScanResult): string;
+    private locationToRange;
+    private formatDiagnosticMessage;
+    private getRelatedInformation;
+    private formatStatusTooltip;
+    private getSeverityIcon;
+    private getSeverityColor;
+    private getSeverityBadge;
+    private vulnerabilityToTreeItem;
+}
+/**
+ * Create VS Code integration instance
+ */
+export declare function createVSCodeIntegration(options?: VSCodeIntegrationOptions): VSCodeIntegration;
+//# sourceMappingURL=vscode-integration.d.ts.map

package/dist/integrations/vscode-integration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vscode-integration.d.ts","sourceRoot":"","sources":["../../src/integrations/vscode-integration.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,aAAa,EAAE,QAAQ,EAAE,GAAG,EAAE,MAAM,mBAAmB,CAAC;AAMlF;;GAEG;AACH,oBAAY,kBAAkB;IAC5B,KAAK,IAAI;IACT,OAAO,IAAI;IACX,WAAW,IAAI;IACf,IAAI,IAAI;CACT;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,KAAK;IACpB,KAAK,EAAE,QAAQ,CAAC;IAChB,GAAG,EAAE,QAAQ,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,yCAAyC;IACzC,KAAK,EAAE,KAAK,CAAC;IACb,6BAA6B;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,qBAAqB;IACrB,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,sBAAsB;IACtB,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,+BAA+B;IAC/B,MAAM,EAAE,MAAM,CAAC;IACf,0BAA0B;IAC1B,kBAAkB,CAAC,EAAE,4BAA4B,EAAE,CAAC;IACpD,gCAAgC;IAChC,IAAI,CAAC,EAAE,aAAa,EAAE,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,QAAQ,EAAE;QACR,GAAG,EAAE,MAAM,CAAC;QACZ,KAAK,EAAE,KAAK,CAAC;KACd,CAAC;IACF,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,oBAAY,aAAa;IACvB,WAAW,IAAI;IACf,UAAU,IAAI;CACf;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,wBAAwB;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,0BAA0B;IAC1B,IAAI,EAAE,cAAc,CAAC;IACrB,uCAAuC;IACvC,WAAW,CAAC,EAAE,UAAU,EAAE,CAAC;IAC3B,8BAA8B;IAC9B,IAAI,CAAC,EAAE,aAAa,CAAC;IACrB,yBAAyB;IACzB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,uCAAuC;IACvC,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,MAAM,cAAc,GACtB,UAAU,GACV,mBAAmB,GACnB,UAAU,GACV,mBAAmB,GACnB,QAAQ,GACR,wBAAwB,CAAC;AAE7B;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,+BAA+B;IAC/B,OAAO,EAAE,GAAG,CAAC,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;CAClC;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,KAAK,EAAE,KAAK,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,OAAO;IACtB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,OAAO,EAAE,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,gBAAgB,EAAE,MAAM,GAAG,WAAW,GAAG,UAAU,CAAC;IACpD,QAAQ,CAAC,EAAE,QAAQ,EAAE,CAAC;IACtB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,CAAC,EAAE,KAAK,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,KAAK,CAAC;IACb,aAAa,EAAE;QACb,KAAK,CAAC,EAAE;YACN,WAAW,EAAE,MAAM,CAAC;YACpB,KAAK,CAAC,EAAE,MAAM,CAAC;YACf,eAAe,CAAC,EAAE,MAAM,CAAC;SAC1B,CAAC;QACF,MAAM,CAAC,EAAE;YACP,WAAW,EAAE,MAAM,CAAC;YACpB,KAAK,CAAC,EAAE,MAAM,CAAC;YACf,eAAe,CAAC,EAAE,MAAM,CAAC;SAC1B,CAAC;KACH,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,kCAAkC;IAClC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,sCAAsC;IACtC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,gCAAgC;IAChC,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,uBAAuB;IACvB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,gCAAgC;IAChC,eAAe,CAAC,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,kBAAkB,CAAC,CAAC,CAAC;CACjE;AAMD;;;;;;;;;;;;;GAaG;AACH,qBAAa,iBAAiB;IAC5B,OAAO,CAAC,OAAO,CAAqC;IACpD,OAAO,CAAC,WAAW,CAAuC;gBAE9C,OAAO,GAAE,wBAA6B;IAkBlD;;OAEG;IACH,YAAY,CAAC,aAAa,EAAE,aAAa,GAAG,UAAU;IAetD;;OAEG;IACH,aAAa,CAAC,UAAU,EAAE,UAAU,GAAG,GAAG,CAAC,MAAM,EAAE,UAAU,EAAE,CAAC;IAgBhE;;OAEG;IACH,YAAY,CAAC,aAAa,EAAE,aAAa,EAAE,GAAG,EAAE,GAAG,GAAG,UAAU;IAmChE;;OAEG;IACH,aAAa,CAAC,aAAa,EAAE,aAAa,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,UAAU,EAAE;IAIvE;;OAEG;IACH,cAAc,CAAC,UAAU,EAAE,UAAU,EAAE,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC,GAAG,UAAU;IAkC7E;;OAEG;IACH,eAAe,CAAC,UAAU,EAAE,UAAU,GAAG,aAAa;IAiCtD;;OAEG;IACH,WAAW,CAAC,UAAU,EAAE,UAAU,GAAG,QAAQ,EAAE;IA8B/C;;OAEG;IACH,cAAc,CAAC,aAAa,EAAE,aAAa,GAAG,YAAY;IAwC1D;;OAEG;IACH,aAAa,CAAC,eAAe,EAAE,aAAa,EAAE,GAAG,UAAU,EAAE;IAc7D;;OAEG;IACH,aAAa,CAAC,UAAU,EAAE,UAAU,GAAG,MAAM;IAkE7C,OAAO,CAAC,eAAe;IAavB,OAAO,CAAC,uBAAuB;IAa/B,OAAO,CAAC,qBAAqB;IAgB7B,OAAO,CAAC,mBAAmB;IAgB3B,OAAO,CAAC,eAAe;IAWvB,OAAO,CAAC,gBAAgB;IAWxB,OAAO,CAAC,gBAAgB;IAWxB,OAAO,CAAC,uBAAuB;CAehC;AAMD;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,OAAO,CAAC,EAAE,wBAAwB,GAAG,iBAAiB,CAE7F"}

package/dist/integrations/vscode-integration.js

@@ -0,0 +1,449 @@
+/**
+ * @fileoverview VS Code Integration for Security Scanning
+ * @module @nahisaho/musubix-security/integrations/vscode-integration
+ *
+ * Provides API for VS Code extension integration with diagnostic
+ * and code action capabilities.
+ */
+// ============================================================================
+// Types
+// ============================================================================
+/**
+ * VS Code diagnostic severity (mirrors vscode.DiagnosticSeverity)
+ */
+export var DiagnosticSeverity;
+(function (DiagnosticSeverity) {
+    DiagnosticSeverity[DiagnosticSeverity["Error"] = 0] = "Error";
+    DiagnosticSeverity[DiagnosticSeverity["Warning"] = 1] = "Warning";
+    DiagnosticSeverity[DiagnosticSeverity["Information"] = 2] = "Information";
+    DiagnosticSeverity[DiagnosticSeverity["Hint"] = 3] = "Hint";
+})(DiagnosticSeverity || (DiagnosticSeverity = {}));
+/**
+ * Diagnostic tag
+ */
+export var DiagnosticTag;
+(function (DiagnosticTag) {
+    DiagnosticTag[DiagnosticTag["Unnecessary"] = 1] = "Unnecessary";
+    DiagnosticTag[DiagnosticTag["Deprecated"] = 2] = "Deprecated";
+})(DiagnosticTag || (DiagnosticTag = {}));
+// ============================================================================
+// VS Code Integration Class
+// ============================================================================
+/**
+ * VS Code integration adapter for security scanning
+ *
+ * @example
+ * ```typescript
+ * const integration = createVSCodeIntegration();
+ *
+ * // Convert scan result to diagnostics
+ * const diagnostics = integration.toDiagnostics(scanResult);
+ *
+ * // Generate code actions for fixes
+ * const actions = integration.toCodeActions(vulnerability, fixes);
+ * ```
+ */
+export class VSCodeIntegration {
+    options;
+    severityMap;
+    constructor(options = {}) {
+        this.options = {
+            diagnosticSource: options.diagnosticSource ?? 'MUSUBIX Security',
+            diagnosticCollection: options.diagnosticCollection ?? 'musubix-security',
+            enableDecorations: options.enableDecorations ?? true,
+            enableCodeLens: options.enableCodeLens ?? true,
+            severityMapping: options.severityMapping ?? {},
+        };
+        this.severityMap = {
+            critical: options.severityMapping?.critical ?? DiagnosticSeverity.Error,
+            high: options.severityMapping?.high ?? DiagnosticSeverity.Error,
+            medium: options.severityMapping?.medium ?? DiagnosticSeverity.Warning,
+            low: options.severityMapping?.low ?? DiagnosticSeverity.Information,
+            info: options.severityMapping?.info ?? DiagnosticSeverity.Hint,
+        };
+    }
+    /**
+     * Convert vulnerability to VS Code diagnostic
+     */
+    toDiagnostic(vulnerability) {
+        const range = this.locationToRange(vulnerability.location);
+        const diagnostic = {
+            range,
+            message: this.formatDiagnosticMessage(vulnerability),
+            severity: this.severityMap[vulnerability.severity],
+            code: vulnerability.ruleId,
+            source: this.options.diagnosticSource,
+            relatedInformation: this.getRelatedInformation(vulnerability),
+        };
+        return diagnostic;
+    }
+    /**
+     * Convert scan result to VS Code diagnostics grouped by file
+     */
+    toDiagnostics(scanResult) {
+        const diagnosticsMap = new Map();
+        for (const vuln of scanResult.vulnerabilities) {
+            const uri = vuln.location.file;
+            if (!diagnosticsMap.has(uri)) {
+                diagnosticsMap.set(uri, []);
+            }
+            diagnosticsMap.get(uri).push(this.toDiagnostic(vuln));
+        }
+        return diagnosticsMap;
+    }
+    /**
+     * Convert fix to VS Code code action
+     */
+    toCodeAction(vulnerability, fix) {
+        const diagnostic = this.toDiagnostic(vulnerability);
+        const action = {
+            title: fix.description,
+            kind: 'quickfix.security',
+            diagnostics: [diagnostic],
+            isPreferred: fix.confidence >= 0.8,
+        };
+        // Convert fix edits to workspace edit
+        if (fix.edits.length > 0) {
+            const changes = new Map();
+            for (const edit of fix.edits) {
+                const uri = vulnerability.location.file;
+                if (!changes.has(uri)) {
+                    changes.set(uri, []);
+                }
+                changes.get(uri).push({
+                    range: {
+                        start: { line: edit.location.startLine - 1, character: edit.location.startColumn ?? 0 },
+                        end: { line: edit.location.endLine - 1, character: edit.location.endColumn ?? 0 },
+                    },
+                    newText: edit.newCode ?? '',
+                });
+            }
+            action.edit = { changes };
+        }
+        return action;
+    }
+    /**
+     * Convert multiple fixes to code actions
+     */
+    toCodeActions(vulnerability, fixes) {
+        return fixes.map(fix => this.toCodeAction(vulnerability, fix));
+    }
+    /**
+     * Generate "Fix All" code action
+     */
+    toFixAllAction(scanResult, fixes) {
+        const allEdits = new Map();
+        let fixCount = 0;
+        for (const vuln of scanResult.vulnerabilities) {
+            const vulnFixes = fixes.get(vuln.id);
+            if (vulnFixes && vulnFixes.length > 0) {
+                const bestFix = vulnFixes[0];
+                for (const edit of bestFix.edits) {
+                    const uri = vuln.location.file;
+                    if (!allEdits.has(uri)) {
+                        allEdits.set(uri, []);
+                    }
+                    allEdits.get(uri).push({
+                        range: {
+                            start: { line: edit.location.startLine - 1, character: edit.location.startColumn ?? 0 },
+                            end: { line: edit.location.endLine - 1, character: edit.location.endColumn ?? 0 },
+                        },
+                        newText: edit.newCode ?? '',
+                    });
+                    fixCount++;
+                }
+            }
+        }
+        return {
+            title: `Fix all ${fixCount} security issues`,
+            kind: 'source.fixAll.security',
+            edit: { changes: allEdits },
+        };
+    }
+    /**
+     * Generate status bar item
+     */
+    toStatusBarItem(scanResult) {
+        const { critical, high, medium, low } = scanResult.summary;
+        const total = critical + high + medium + low;
+        let text;
+        let color;
+        let backgroundColor;
+        if (critical > 0) {
+            text = `$(shield) ${total} Security Issues (${critical} Critical)`;
+            color = '#ffffff';
+            backgroundColor = '#cc0000';
+        }
+        else if (high > 0) {
+            text = `$(shield) ${total} Security Issues (${high} High)`;
+            color = '#ffffff';
+            backgroundColor = '#ff8c00';
+        }
+        else if (total > 0) {
+            text = `$(shield) ${total} Security Issues`;
+            color = '#ffcc00';
+        }
+        else {
+            text = '$(shield) No Security Issues';
+            color = '#00cc00';
+        }
+        return {
+            text,
+            tooltip: this.formatStatusTooltip(scanResult),
+            color,
+            backgroundColor,
+            command: 'musubix-security.showReport',
+        };
+    }
+    /**
+     * Generate tree items for explorer view
+     */
+    toTreeItems(scanResult) {
+        const items = [];
+        // Group by severity
+        const bySeverity = new Map();
+        for (const vuln of scanResult.vulnerabilities) {
+            if (!bySeverity.has(vuln.severity)) {
+                bySeverity.set(vuln.severity, []);
+            }
+            bySeverity.get(vuln.severity).push(vuln);
+        }
+        // Create tree structure
+        for (const severity of ['critical', 'high', 'medium', 'low', 'info']) {
+            const vulns = bySeverity.get(severity) ?? [];
+            if (vulns.length === 0)
+                continue;
+            const severityItem = {
+                label: `${severity.toUpperCase()} (${vulns.length})`,
+                iconPath: this.getSeverityIcon(severity),
+                collapsibleState: severity === 'critical' || severity === 'high' ? 'expanded' : 'collapsed',
+                children: vulns.map(vuln => this.vulnerabilityToTreeItem(vuln)),
+            };
+            items.push(severityItem);
+        }
+        return items;
+    }
+    /**
+     * Generate hover content for a vulnerability
+     */
+    toHoverContent(vulnerability) {
+        const contents = [];
+        // Header
+        contents.push(`### 🔒 ${vulnerability.ruleId}`);
+        contents.push('');
+        // Severity badge
+        const badge = this.getSeverityBadge(vulnerability.severity);
+        contents.push(`**Severity:** ${badge}`);
+        contents.push('');
+        // Message
+        contents.push(`**Issue:** ${vulnerability.description}`);
+        contents.push('');
+        // OWASP/CWE
+        if (vulnerability.owasp || vulnerability.cwes) {
+            contents.push('**References:**');
+            if (vulnerability.owasp) {
+                contents.push(`- OWASP: ${vulnerability.owasp.join(', ')}`);
+            }
+            if (vulnerability.cwes && vulnerability.cwes.length > 0) {
+                contents.push(`- CWE: ${vulnerability.cwes.join(', ')}`);
+            }
+            contents.push('');
+        }
+        // Remediation (recommendation in the type)
+        if (vulnerability.recommendation) {
+            contents.push('**Remediation:**');
+            contents.push(vulnerability.recommendation);
+        }
+        return {
+            contents,
+            range: this.locationToRange(vulnerability.location),
+        };
+    }
+    /**
+     * Generate inline decorations for vulnerabilities
+     */
+    toDecorations(vulnerabilities) {
+        if (!this.options.enableDecorations)
+            return [];
+        return vulnerabilities.map(vuln => ({
+            range: this.locationToRange(vuln.location),
+            renderOptions: {
+                after: {
+                    contentText: ` ⚠️ ${vuln.severity.toUpperCase()}: ${vuln.ruleId}`,
+                    color: this.getSeverityColor(vuln.severity),
+                },
+            },
+        }));
+    }
+    /**
+     * Generate webview HTML content
+     */
+    toWebviewHTML(scanResult) {
+        const { critical, high, medium, low, info } = scanResult.summary;
+        return `
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>MUSUBIX Security Report</title>
+  <style>
+    body { font-family: var(--vscode-font-family); padding: 20px; }
+    .summary { display: flex; gap: 20px; margin-bottom: 20px; }
+    .stat { padding: 10px 20px; border-radius: 4px; text-align: center; }
+    .critical { background: #cc0000; color: white; }
+    .high { background: #ff8c00; color: white; }
+    .medium { background: #ffcc00; color: black; }
+    .low { background: #0066cc; color: white; }
+    .info { background: #666666; color: white; }
+    table { width: 100%; border-collapse: collapse; }
+    th, td { padding: 8px; text-align: left; border-bottom: 1px solid var(--vscode-panel-border); }
+    .severity-badge { padding: 2px 8px; border-radius: 4px; font-size: 12px; }
+  </style>
+</head>
+<body>
+  <h1>🔒 Security Scan Results</h1>
+  
+  <div class="summary">
+    <div class="stat critical">Critical: ${critical}</div>
+    <div class="stat high">High: ${high}</div>
+    <div class="stat medium">Medium: ${medium}</div>
+    <div class="stat low">Low: ${low}</div>
+    <div class="stat info">Info: ${info}</div>
+  </div>
+  
+  <table>
+    <thead>
+      <tr>
+        <th>Severity</th>
+        <th>Rule</th>
+        <th>File</th>
+        <th>Line</th>
+        <th>Message</th>
+      </tr>
+    </thead>
+    <tbody>
+      ${scanResult.vulnerabilities.map(v => `
+        <tr>
+          <td><span class="severity-badge ${v.severity}">${v.severity.toUpperCase()}</span></td>
+          <td>${v.ruleId}</td>
+          <td>${v.location.file}</td>
+          <td>${v.location.startLine}</td>
+          <td>${v.description}</td>
+        </tr>
+      `).join('')}
+    </tbody>
+  </table>
+</body>
+</html>
+`;
+    }
+    // ============================================================================
+    // Private Methods
+    // ============================================================================
+    locationToRange(location) {
+        return {
+            start: {
+                line: location.startLine - 1,
+                character: location.startColumn ?? 0,
+            },
+            end: {
+                line: (location.endLine ?? location.startLine) - 1,
+                character: location.endColumn ?? 100,
+            },
+        };
+    }
+    formatDiagnosticMessage(vuln) {
+        let message = vuln.description;
+        if (vuln.owasp) {
+            message += ` [OWASP: ${vuln.owasp.join(', ')}]`;
+        }
+        if (vuln.cwes && vuln.cwes.length > 0) {
+            message += ` [CWE: ${vuln.cwes.join(', ')}]`;
+        }
+        return message;
+    }
+    getRelatedInformation(vuln) {
+        const info = [];
+        if (vuln.recommendation) {
+            info.push({
+                location: {
+                    uri: vuln.location.file,
+                    range: this.locationToRange(vuln.location),
+                },
+                message: `Remediation: ${vuln.recommendation}`,
+            });
+        }
+        return info;
+    }
+    formatStatusTooltip(scanResult) {
+        const { critical, high, medium, low, info } = scanResult.summary;
+        const lines = [
+            'MUSUBIX Security Scan',
+            '─────────────────────',
+            `Critical: ${critical}`,
+            `High: ${high}`,
+            `Medium: ${medium}`,
+            `Low: ${low}`,
+            `Info: ${info}`,
+            '',
+            'Click to view full report',
+        ];
+        return lines.join('\n');
+    }
+    getSeverityIcon(severity) {
+        const icons = {
+            critical: '$(error)',
+            high: '$(warning)',
+            medium: '$(info)',
+            low: '$(lightbulb)',
+            info: '$(note)',
+        };
+        return icons[severity];
+    }
+    getSeverityColor(severity) {
+        const colors = {
+            critical: '#cc0000',
+            high: '#ff8c00',
+            medium: '#ffcc00',
+            low: '#0066cc',
+            info: '#666666',
+        };
+        return colors[severity];
+    }
+    getSeverityBadge(severity) {
+        const emojis = {
+            critical: '🔴 CRITICAL',
+            high: '🟠 HIGH',
+            medium: '🟡 MEDIUM',
+            low: '🔵 LOW',
+            info: '⚪ INFO',
+        };
+        return emojis[severity];
+    }
+    vulnerabilityToTreeItem(vuln) {
+        return {
+            label: vuln.ruleId,
+            description: `${vuln.location.file}:${vuln.location.startLine}`,
+            tooltip: vuln.description,
+            iconPath: this.getSeverityIcon(vuln.severity),
+            collapsibleState: 'none',
+            command: {
+                title: 'Go to vulnerability',
+                command: 'musubix-security.goToVulnerability',
+                arguments: [vuln],
+            },
+            contextValue: 'vulnerability',
+        };
+    }
+}
+// ============================================================================
+// Factory Functions
+// ============================================================================
+/**
+ * Create VS Code integration instance
+ */
+export function createVSCodeIntegration(options) {
+    return new VSCodeIntegration(options);
+}
+//# sourceMappingURL=vscode-integration.js.map