@nahisaho/musubix-security 1.8.0 → 1.8.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (186) hide show
  1. package/README.md +27 -0
  2. package/dist/analyzers/ai/index.d.ts +6 -0
  3. package/dist/analyzers/ai/index.d.ts.map +1 -0
  4. package/dist/analyzers/ai/index.js +6 -0
  5. package/dist/analyzers/ai/index.js.map +1 -0
  6. package/dist/analyzers/ai/prompt-injection-detector.d.ts +152 -0
  7. package/dist/analyzers/ai/prompt-injection-detector.d.ts.map +1 -0
  8. package/dist/analyzers/ai/prompt-injection-detector.js +468 -0
  9. package/dist/analyzers/ai/prompt-injection-detector.js.map +1 -0
  10. package/dist/analyzers/api/api-security-analyzer.d.ts +263 -0
  11. package/dist/analyzers/api/api-security-analyzer.d.ts.map +1 -0
  12. package/dist/analyzers/api/api-security-analyzer.js +581 -0
  13. package/dist/analyzers/api/api-security-analyzer.js.map +1 -0
  14. package/dist/analyzers/compliance/compliance-checker.d.ts +201 -0
  15. package/dist/analyzers/compliance/compliance-checker.d.ts.map +1 -0
  16. package/dist/analyzers/compliance/compliance-checker.js +772 -0
  17. package/dist/analyzers/compliance/compliance-checker.js.map +1 -0
  18. package/dist/analyzers/container/image-scanner.d.ts +163 -0
  19. package/dist/analyzers/container/image-scanner.d.ts.map +1 -0
  20. package/dist/analyzers/container/image-scanner.js +459 -0
  21. package/dist/analyzers/container/image-scanner.js.map +1 -0
  22. package/dist/analyzers/container/index.d.ts +6 -0
  23. package/dist/analyzers/container/index.d.ts.map +1 -0
  24. package/dist/analyzers/container/index.js +6 -0
  25. package/dist/analyzers/container/index.js.map +1 -0
  26. package/dist/analyzers/dashboard/security-dashboard.d.ts +286 -0
  27. package/dist/analyzers/dashboard/security-dashboard.d.ts.map +1 -0
  28. package/dist/analyzers/dashboard/security-dashboard.js +796 -0
  29. package/dist/analyzers/dashboard/security-dashboard.js.map +1 -0
  30. package/dist/analyzers/iac/iac-checker.d.ts +124 -0
  31. package/dist/analyzers/iac/iac-checker.d.ts.map +1 -0
  32. package/dist/analyzers/iac/iac-checker.js +755 -0
  33. package/dist/analyzers/iac/iac-checker.js.map +1 -0
  34. package/dist/analyzers/iac/index.d.ts +6 -0
  35. package/dist/analyzers/iac/index.d.ts.map +1 -0
  36. package/dist/analyzers/iac/index.js +6 -0
  37. package/dist/analyzers/iac/index.js.map +1 -0
  38. package/dist/analyzers/index.d.ts +9 -0
  39. package/dist/analyzers/index.d.ts.map +1 -0
  40. package/dist/analyzers/index.js +13 -0
  41. package/dist/analyzers/index.js.map +1 -0
  42. package/dist/analyzers/monitor/realtime-monitor.d.ts +216 -0
  43. package/dist/analyzers/monitor/realtime-monitor.d.ts.map +1 -0
  44. package/dist/analyzers/monitor/realtime-monitor.js +601 -0
  45. package/dist/analyzers/monitor/realtime-monitor.js.map +1 -0
  46. package/dist/analyzers/sast/index.d.ts +7 -0
  47. package/dist/analyzers/sast/index.d.ts.map +1 -0
  48. package/dist/analyzers/sast/index.js +7 -0
  49. package/dist/analyzers/sast/index.js.map +1 -0
  50. package/dist/analyzers/sast/interprocedural-analyzer.d.ts +276 -0
  51. package/dist/analyzers/sast/interprocedural-analyzer.d.ts.map +1 -0
  52. package/dist/analyzers/sast/interprocedural-analyzer.js +635 -0
  53. package/dist/analyzers/sast/interprocedural-analyzer.js.map +1 -0
  54. package/dist/analyzers/sast/zero-day-detector.d.ts +183 -0
  55. package/dist/analyzers/sast/zero-day-detector.d.ts.map +1 -0
  56. package/dist/analyzers/sast/zero-day-detector.js +593 -0
  57. package/dist/analyzers/sast/zero-day-detector.js.map +1 -0
  58. package/dist/analyzers/sca/dependency-scanner.d.ts +275 -0
  59. package/dist/analyzers/sca/dependency-scanner.d.ts.map +1 -0
  60. package/dist/analyzers/sca/dependency-scanner.js +642 -0
  61. package/dist/analyzers/sca/dependency-scanner.js.map +1 -0
  62. package/dist/core/index.d.ts +8 -0
  63. package/dist/core/index.d.ts.map +1 -0
  64. package/dist/core/index.js +10 -0
  65. package/dist/core/index.js.map +1 -0
  66. package/dist/core/pipeline-manager.d.ts +105 -0
  67. package/dist/core/pipeline-manager.d.ts.map +1 -0
  68. package/dist/core/pipeline-manager.js +449 -0
  69. package/dist/core/pipeline-manager.js.map +1 -0
  70. package/dist/core/result-aggregator.d.ts +96 -0
  71. package/dist/core/result-aggregator.d.ts.map +1 -0
  72. package/dist/core/result-aggregator.js +462 -0
  73. package/dist/core/result-aggregator.js.map +1 -0
  74. package/dist/index.d.ts +15 -0
  75. package/dist/index.d.ts.map +1 -1
  76. package/dist/index.js +68 -0
  77. package/dist/index.js.map +1 -1
  78. package/dist/integrations/ci-integration.d.ts +227 -0
  79. package/dist/integrations/ci-integration.d.ts.map +1 -0
  80. package/dist/integrations/ci-integration.js +472 -0
  81. package/dist/integrations/ci-integration.js.map +1 -0
  82. package/dist/integrations/git-hooks.d.ts +155 -0
  83. package/dist/integrations/git-hooks.d.ts.map +1 -0
  84. package/dist/integrations/git-hooks.js +425 -0
  85. package/dist/integrations/git-hooks.js.map +1 -0
  86. package/dist/integrations/index.d.ts +9 -0
  87. package/dist/integrations/index.d.ts.map +1 -0
  88. package/dist/integrations/index.js +9 -0
  89. package/dist/integrations/index.js.map +1 -0
  90. package/dist/integrations/report-aggregator.d.ts +250 -0
  91. package/dist/integrations/report-aggregator.d.ts.map +1 -0
  92. package/dist/integrations/report-aggregator.js +488 -0
  93. package/dist/integrations/report-aggregator.js.map +1 -0
  94. package/dist/integrations/vscode-integration.d.ts +245 -0
  95. package/dist/integrations/vscode-integration.d.ts.map +1 -0
  96. package/dist/integrations/vscode-integration.js +449 -0
  97. package/dist/integrations/vscode-integration.js.map +1 -0
  98. package/dist/intelligence/attack-pattern-matcher.d.ts +217 -0
  99. package/dist/intelligence/attack-pattern-matcher.d.ts.map +1 -0
  100. package/dist/intelligence/attack-pattern-matcher.js +887 -0
  101. package/dist/intelligence/attack-pattern-matcher.js.map +1 -0
  102. package/dist/intelligence/index.d.ts +12 -0
  103. package/dist/intelligence/index.d.ts.map +1 -0
  104. package/dist/intelligence/index.js +18 -0
  105. package/dist/intelligence/index.js.map +1 -0
  106. package/dist/intelligence/neuro-symbolic-core.d.ts +88 -0
  107. package/dist/intelligence/neuro-symbolic-core.d.ts.map +1 -0
  108. package/dist/intelligence/neuro-symbolic-core.js +403 -0
  109. package/dist/intelligence/neuro-symbolic-core.js.map +1 -0
  110. package/dist/intelligence/predictive-analyzer.d.ts +317 -0
  111. package/dist/intelligence/predictive-analyzer.d.ts.map +1 -0
  112. package/dist/intelligence/predictive-analyzer.js +714 -0
  113. package/dist/intelligence/predictive-analyzer.js.map +1 -0
  114. package/dist/intelligence/risk-scorer.d.ts +333 -0
  115. package/dist/intelligence/risk-scorer.d.ts.map +1 -0
  116. package/dist/intelligence/risk-scorer.js +824 -0
  117. package/dist/intelligence/risk-scorer.js.map +1 -0
  118. package/dist/intelligence/security-analytics.d.ts +349 -0
  119. package/dist/intelligence/security-analytics.d.ts.map +1 -0
  120. package/dist/intelligence/security-analytics.js +813 -0
  121. package/dist/intelligence/security-analytics.js.map +1 -0
  122. package/dist/intelligence/threat-intelligence.d.ts +288 -0
  123. package/dist/intelligence/threat-intelligence.d.ts.map +1 -0
  124. package/dist/intelligence/threat-intelligence.js +639 -0
  125. package/dist/intelligence/threat-intelligence.js.map +1 -0
  126. package/dist/policy/index.d.ts +6 -0
  127. package/dist/policy/index.d.ts.map +1 -0
  128. package/dist/policy/index.js +6 -0
  129. package/dist/policy/index.js.map +1 -0
  130. package/dist/policy/policy-engine.d.ts +254 -0
  131. package/dist/policy/policy-engine.d.ts.map +1 -0
  132. package/dist/policy/policy-engine.js +651 -0
  133. package/dist/policy/policy-engine.js.map +1 -0
  134. package/dist/remediation/auto-fixer.d.ts +179 -0
  135. package/dist/remediation/auto-fixer.d.ts.map +1 -0
  136. package/dist/remediation/auto-fixer.js +540 -0
  137. package/dist/remediation/auto-fixer.js.map +1 -0
  138. package/dist/remediation/fix-validator.d.ts +195 -0
  139. package/dist/remediation/fix-validator.d.ts.map +1 -0
  140. package/dist/remediation/fix-validator.js +462 -0
  141. package/dist/remediation/fix-validator.js.map +1 -0
  142. package/dist/remediation/index.d.ts +10 -0
  143. package/dist/remediation/index.d.ts.map +1 -0
  144. package/dist/remediation/index.js +15 -0
  145. package/dist/remediation/index.js.map +1 -0
  146. package/dist/remediation/patch-generator.d.ts +203 -0
  147. package/dist/remediation/patch-generator.d.ts.map +1 -0
  148. package/dist/remediation/patch-generator.js +533 -0
  149. package/dist/remediation/patch-generator.js.map +1 -0
  150. package/dist/remediation/remediation-planner.d.ts +262 -0
  151. package/dist/remediation/remediation-planner.d.ts.map +1 -0
  152. package/dist/remediation/remediation-planner.js +531 -0
  153. package/dist/remediation/remediation-planner.js.map +1 -0
  154. package/dist/remediation/secure-code-transformer.d.ts +222 -0
  155. package/dist/remediation/secure-code-transformer.d.ts.map +1 -0
  156. package/dist/remediation/secure-code-transformer.js +625 -0
  157. package/dist/remediation/secure-code-transformer.js.map +1 -0
  158. package/dist/types/fix.d.ts +3 -1
  159. package/dist/types/fix.d.ts.map +1 -1
  160. package/dist/types/index.d.ts +6 -0
  161. package/dist/types/index.d.ts.map +1 -1
  162. package/dist/types/index.js +1 -0
  163. package/dist/types/index.js.map +1 -1
  164. package/dist/types/interprocedural.d.ts +203 -0
  165. package/dist/types/interprocedural.d.ts.map +1 -0
  166. package/dist/types/interprocedural.js +7 -0
  167. package/dist/types/interprocedural.js.map +1 -0
  168. package/dist/types/neuro-symbolic.d.ts +179 -0
  169. package/dist/types/neuro-symbolic.d.ts.map +1 -0
  170. package/dist/types/neuro-symbolic.js +7 -0
  171. package/dist/types/neuro-symbolic.js.map +1 -0
  172. package/dist/types/pipeline.d.ts +173 -0
  173. package/dist/types/pipeline.d.ts.map +1 -0
  174. package/dist/types/pipeline.js +7 -0
  175. package/dist/types/pipeline.js.map +1 -0
  176. package/dist/types/result.d.ts +134 -0
  177. package/dist/types/result.d.ts.map +1 -0
  178. package/dist/types/result.js +25 -0
  179. package/dist/types/result.js.map +1 -0
  180. package/dist/types/vulnerability.d.ts +2 -2
  181. package/dist/types/vulnerability.d.ts.map +1 -1
  182. package/dist/types/zero-day.d.ts +146 -0
  183. package/dist/types/zero-day.d.ts.map +1 -0
  184. package/dist/types/zero-day.js +7 -0
  185. package/dist/types/zero-day.js.map +1 -0
  186. package/package.json +2 -2
package/dist/types/pipeline.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"pipeline.js","sourceRoot":"","sources":["../../src/types/pipeline.ts"],"names":[],"mappings":"AAAA;;;;GAIG"}
package/dist/types/result.d.ts ADDED
@@ -0,0 +1,134 @@
1
+ /**
2
+ * @fileoverview Result aggregation type definitions
3
+ * @module @nahisaho/musubix-security/types/result
4
+ * @trace DES-SEC2-ORCH-003, REQ-SEC2-REPORT-001
5
+ */
6
+ import type { Vulnerability, Severity } from './vulnerability.js';
7
+ import type { TaintPath } from './taint.js';
8
+ import type { Secret } from './secret.js';
9
+ import type { AuditResult } from './dependency.js';
10
+ /**
11
+ * Detection source type
12
+ */
13
+ export type DetectionSource = 'sast' | 'taint' | 'secret' | 'dependency' | 'container' | 'iac' | 'ai' | 'neuro-symbolic';
14
+ /**
15
+ * Aggregated vulnerability with source tracking
16
+ */
17
+ export interface AggregatedVulnerability extends Vulnerability {
18
+ /** Detection sources (may be multiple) */
19
+ sources: DetectionSource[];
20
+ /** Original vulnerability IDs before aggregation */
21
+ originalIds: string[];
22
+ /** Whether this is a duplicate detection */
23
+ isDuplicate: boolean;
24
+ /** Priority score (calculated from severity, confidence, etc.) */
25
+ priorityScore: number;
26
+ /** Risk score (0-100) */
27
+ riskScore: number;
28
+ /** Related findings (similar vulnerabilities) */
29
+ relatedFindings?: string[];
30
+ }
31
+ /**
32
+ * Analysis result from any analyzer
33
+ */
34
+ export interface AnalysisResult {
35
+ /** Result type identifier */
36
+ type: DetectionSource;
37
+ /** Vulnerabilities found */
38
+ vulnerabilities: Vulnerability[];
39
+ /** Taint paths (if taint analysis) */
40
+ taintPaths?: TaintPath[];
41
+ /** Secrets (if secret detection) */
42
+ secrets?: Secret[];
43
+ /** Audit result (if dependency audit) */
44
+ auditResult?: AuditResult;
45
+ /** Analysis duration in milliseconds */
46
+ duration: number;
47
+ /** Timestamp */
48
+ timestamp: Date;
49
+ }
50
+ /**
51
+ * Aggregated result combining all analyzers
52
+ * @trace DES-SEC2-ORCH-003
53
+ */
54
+ export interface AggregatedResult {
55
+ /** Aggregated vulnerabilities (deduplicated and prioritized) */
56
+ vulnerabilities: AggregatedVulnerability[];
57
+ /** Total risk score (0-100) */
58
+ riskScore: number;
59
+ /** Summary by severity */
60
+ bySeverity: Record<Severity, number>;
61
+ /** Summary by source */
62
+ bySource: Record<DetectionSource, number>;
63
+ /** Duplicates removed */
64
+ duplicatesRemoved: number;
65
+ /** Analysis sources included */
66
+ sources: DetectionSource[];
67
+ /** Aggregation timestamp */
68
+ aggregatedAt: Date;
69
+ /** Aggregation duration */
70
+ aggregationDuration: number;
71
+ }
72
+ /**
73
+ * Deduplication rule
74
+ */
75
+ export interface DeduplicationRule {
76
+ /** Rule ID */
77
+ id: string;
78
+ /** Fields to compare */
79
+ compareFields: (keyof Vulnerability)[];
80
+ /** Similarity threshold (0.0-1.0) */
81
+ similarityThreshold: number;
82
+ /** Merge strategy when duplicates found */
83
+ mergeStrategy: 'keep-first' | 'keep-highest-confidence' | 'merge';
84
+ }
85
+ /**
86
+ * Prioritization criteria
87
+ */
88
+ export interface PrioritizationCriteria {
89
+ /** Severity weight */
90
+ severityWeight: number;
91
+ /** Confidence weight */
92
+ confidenceWeight: number;
93
+ /** Exploitability weight */
94
+ exploitabilityWeight: number;
95
+ /** Impact weight */
96
+ impactWeight: number;
97
+ /** Custom scoring function */
98
+ customScorer?: (vuln: Vulnerability) => number;
99
+ }
100
+ /**
101
+ * Default prioritization criteria
102
+ */
103
+ export declare const DEFAULT_PRIORITIZATION: PrioritizationCriteria;
104
+ /**
105
+ * Severity weights for scoring
106
+ */
107
+ export declare const SEVERITY_SCORES: Record<Severity, number>;
108
+ /**
109
+ * Result aggregator interface
110
+ * @trace DES-SEC2-ORCH-003
111
+ */
112
+ export interface IResultAggregator {
113
+ /**
114
+ * Aggregate results from multiple analyzers
115
+ */
116
+ aggregate(results: AnalysisResult[]): AggregatedResult;
117
+ /**
118
+ * Deduplicate vulnerabilities
119
+ */
120
+ deduplicate(vulnerabilities: Vulnerability[], rules?: DeduplicationRule[]): Vulnerability[];
121
+ /**
122
+ * Prioritize vulnerabilities
123
+ */
124
+ prioritize(vulnerabilities: Vulnerability[], criteria?: PrioritizationCriteria): Vulnerability[];
125
+ /**
126
+ * Calculate overall risk score
127
+ */
128
+ calculateRiskScore(vulnerabilities: Vulnerability[]): number;
129
+ /**
130
+ * Merge similar vulnerabilities
131
+ */
132
+ mergeSimilar(vuln1: Vulnerability, vuln2: Vulnerability): Vulnerability;
133
+ }
134
+ //# sourceMappingURL=result.d.ts.map
package/dist/types/result.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"result.d.ts","sourceRoot":"","sources":["../../src/types/result.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAClE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAC5C,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAC1C,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAEnD;;GAEG;AACH,MAAM,MAAM,eAAe,GACvB,MAAM,GACN,OAAO,GACP,QAAQ,GACR,YAAY,GACZ,WAAW,GACX,KAAK,GACL,IAAI,GACJ,gBAAgB,CAAC;AAErB;;GAEG;AACH,MAAM,WAAW,uBAAwB,SAAQ,aAAa;IAC5D,0CAA0C;IAC1C,OAAO,EAAE,eAAe,EAAE,CAAC;IAE3B,oDAAoD;IACpD,WAAW,EAAE,MAAM,EAAE,CAAC;IAEtB,4CAA4C;IAC5C,WAAW,EAAE,OAAO,CAAC;IAErB,kEAAkE;IAClE,aAAa,EAAE,MAAM,CAAC;IAEtB,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAElB,iDAAiD;IACjD,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,6BAA6B;IAC7B,IAAI,EAAE,eAAe,CAAC;IAEtB,4BAA4B;IAC5B,eAAe,EAAE,aAAa,EAAE,CAAC;IAEjC,sCAAsC;IACtC,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;IAEzB,oCAAoC;IACpC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IAEnB,yCAAyC;IACzC,WAAW,CAAC,EAAE,WAAW,CAAC;IAE1B,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IAEjB,gBAAgB;IAChB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,gEAAgE;IAChE,eAAe,EAAE,uBAAuB,EAAE,CAAC;IAE3C,+BAA+B;IAC/B,SAAS,EAAE,MAAM,CAAC;IAElB,0BAA0B;IAC1B,UAAU,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAErC,wBAAwB;IACxB,QAAQ,EAAE,MAAM,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IAE1C,yBAAyB;IACzB,iBAAiB,EAAE,MAAM,CAAC;IAE1B,gCAAgC;IAChC,OAAO,EAAE,eAAe,EAAE,CAAC;IAE3B,4BAA4B;IAC5B,YAAY,EAAE,IAAI,CAAC;IAEnB,2BAA2B;IAC3B,mBAAmB,EAAE,MAAM,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,cAAc;IACd,EAAE,EAAE,MAAM,CAAC;IAEX,wBAAwB;IACxB,aAAa,EAAE,CAAC,MAAM,aAAa,CAAC,EAAE,CAAC;IAEvC,qCAAqC;IACrC,mBAAmB,EAAE,MAAM,CAAC;IAE5B,2CAA2C;IAC3C,aAAa,EAAE,YAAY,GAAG,yBAAyB,GAAG,OAAO,CAAC;CACnE;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,sBAAsB;IACtB,cAAc,EAAE,MAAM,CAAC;IAEvB,wBAAwB;IACxB,gBAAgB,EAAE,MAAM,CAAC;IAEzB,4BAA4B;IAC5B,oBAAoB,EAAE,MAAM,CAAC;IAE7B,oBAAoB;IACpB,YAAY,EAAE,MAAM,CAAC;IAErB,8BAA8B;IAC9B,YAAY,CAAC,EAAE,CAAC,IAAI,EAAE,aAAa,KAAK,MAAM,CAAC;CAChD;AAED;;GAEG;AACH,eAAO,MAAM,sBAAsB,EAAE,sBAKpC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,eAAe,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAMpD,CAAC;AAEF;;;GAGG;AACH,MAAM,WAAW,iBAAiB;IAChC;;OAEG;IACH,SAAS,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,gBAAgB,CAAC;IAEvD;;OAEG;IACH,WAAW,CACT,eAAe,EAAE,aAAa,EAAE,EAChC,KAAK,CAAC,EAAE,iBAAiB,EAAE,GAC1B,aAAa,EAAE,CAAC;IAEnB;;OAEG;IACH,UAAU,CACR,eAAe,EAAE,aAAa,EAAE,EAChC,QAAQ,CAAC,EAAE,sBAAsB,GAChC,aAAa,EAAE,CAAC;IAEnB;;OAEG;IACH,kBAAkB,CAAC,eAAe,EAAE,aAAa,EAAE,GAAG,MAAM,CAAC;IAE7D;;OAEG;IACH,YAAY,CACV,KAAK,EAAE,aAAa,EACpB,KAAK,EAAE,aAAa,GACnB,aAAa,CAAC;CAClB"}
package/dist/types/result.js ADDED
@@ -0,0 +1,25 @@
1
+ /**
2
+ * @fileoverview Result aggregation type definitions
3
+ * @module @nahisaho/musubix-security/types/result
4
+ * @trace DES-SEC2-ORCH-003, REQ-SEC2-REPORT-001
5
+ */
6
+ /**
7
+ * Default prioritization criteria
8
+ */
9
+ export const DEFAULT_PRIORITIZATION = {
10
+ severityWeight: 0.4,
11
+ confidenceWeight: 0.3,
12
+ exploitabilityWeight: 0.2,
13
+ impactWeight: 0.1,
14
+ };
15
+ /**
16
+ * Severity weights for scoring
17
+ */
18
+ export const SEVERITY_SCORES = {
19
+ critical: 100,
20
+ high: 80,
21
+ medium: 50,
22
+ low: 20,
23
+ info: 5,
24
+ };
25
+ //# sourceMappingURL=result.js.map
package/dist/types/result.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"result.js","sourceRoot":"","sources":["../../src/types/result.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAwIH;;GAEG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAA2B;IAC5D,cAAc,EAAE,GAAG;IACnB,gBAAgB,EAAE,GAAG;IACrB,oBAAoB,EAAE,GAAG;IACzB,YAAY,EAAE,GAAG;CAClB,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,eAAe,GAA6B;IACvD,QAAQ,EAAE,GAAG;IACb,IAAI,EAAE,EAAE;IACR,MAAM,EAAE,EAAE;IACV,GAAG,EAAE,EAAE;IACP,IAAI,EAAE,CAAC;CACR,CAAC"}
package/dist/types/vulnerability.d.ts CHANGED
@@ -6,11 +6,11 @@
6
6
  /**
7
7
  * OWASP Top 10 (2021) vulnerability categories
8
8
  */
9
- export type OWASPCategory = 'A01:2021' | 'A02:2021' | 'A03:2021' | 'A04:2021' | 'A05:2021' | 'A06:2021' | 'A07:2021' | 'A08:2021' | 'A09:2021' | 'A10:2021';
9
+ export type OWASPCategory = 'A01:2021' | 'A02:2021' | 'A03:2021' | 'A04:2021' | 'A05:2021' | 'A06:2021' | 'A07:2021' | 'A08:2021' | 'A09:2021' | 'A10:2021' | 'A00:Unknown';
10
10
  /**
11
11
  * Vulnerability type classification
12
12
  */
13
- export type VulnerabilityType = 'injection' | 'xss' | 'broken-access' | 'broken-auth' | 'sensitive-exposure' | 'xxe' | 'misconfig' | 'insecure-deser' | 'vuln-components' | 'insufficient-logging' | 'ssrf' | 'path-traversal' | 'command-injection' | 'code-injection' | 'open-redirect' | 'prototype-pollution';
13
+ export type VulnerabilityType = 'injection' | 'xss' | 'broken-access' | 'broken-auth' | 'sensitive-exposure' | 'xxe' | 'misconfig' | 'insecure-deser' | 'vuln-components' | 'insufficient-logging' | 'ssrf' | 'path-traversal' | 'command-injection' | 'code-injection' | 'open-redirect' | 'prototype-pollution' | 'prompt-injection' | 'dependency' | 'configuration' | 'zero-day' | 'data-flow';
14
14
  /**
15
15
  * Severity levels for vulnerabilities
16
16
  */
package/dist/types/vulnerability.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"vulnerability.d.ts","sourceRoot":"","sources":["../../src/types/vulnerability.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;GAEG;AACH,MAAM,MAAM,aAAa,GACrB,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,CAAC;AAEf;;GAEG;AACH,MAAM,MAAM,iBAAiB,GACzB,WAAW,GACX,KAAK,GACL,eAAe,GACf,aAAa,GACb,oBAAoB,GACpB,KAAK,GACL,WAAW,GACX,gBAAgB,GAChB,iBAAiB,GACjB,sBAAsB,GACtB,MAAM,GACN,gBAAgB,GAChB,mBAAmB,GACnB,gBAAgB,GAChB,eAAe,GACf,qBAAqB,CAAC;AAE1B;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;AAEvE;;;GAGG;AACH,MAAM,WAAW,cAAc;IAC7B,yBAAyB;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,kCAAkC;IAClC,SAAS,EAAE,MAAM,CAAC;IAClB,gCAAgC;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,oCAAoC;IACpC,WAAW,EAAE,MAAM,CAAC;IACpB,kCAAkC;IAClC,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,sDAAsD;IACtD,EAAE,EAAE,MAAM,CAAC;IACX,wCAAwC;IACxC,IAAI,EAAE,iBAAiB,CAAC;IACxB,qBAAqB;IACrB,QAAQ,EAAE,QAAQ,CAAC;IACnB,8BAA8B;IAC9B,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,+BAA+B;IAC/B,KAAK,CAAC,EAAE,aAAa,EAAE,CAAC;IACxB,2BAA2B;IAC3B,QAAQ,EAAE,cAAc,CAAC;IACzB,iCAAiC;IACjC,WAAW,EAAE,MAAM,CAAC;IACpB,sBAAsB;IACtB,cAAc,EAAE,MAAM,CAAC;IACvB,uCAAuC;IACvC,UAAU,EAAE,MAAM,CAAC;IACnB,+CAA+C;IAC/C,MAAM,EAAE,MAAM,CAAC;IACf,uCAAuC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,0BAA0B;IAC1B,UAAU,EAAE,IAAI,CAAC;CAClB;AAED;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B,gCAAgC;IAChC,cAAc,CAAC,EAAE,QAAQ,EAAE,CAAC;IAC5B,sBAAsB;IACtB,QAAQ,CAAC,EAAE,CAAC,cAAc,GAAG,YAAY,GAAG,QAAQ,CAAC,EAAE,CAAC;IACxD,+BAA+B;IAC/B,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,iCAAiC;IACjC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,kCAAkC;IAClC,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,6BAA6B;IAC7B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;;GAGG;AACH,MAAM,WAAW,UAAU;IACzB,+BAA+B;IAC/B,eAAe,EAAE,aAAa,EAAE,CAAC;IACjC,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,oCAAoC;IACpC,QAAQ,EAAE,MAAM,CAAC;IACjB,qBAAqB;IACrB,SAAS,EAAE,IAAI,CAAC;IAChB,wBAAwB;IACxB,OAAO,EAAE,WAAW,CAAC;IACrB,0BAA0B;IAC1B,OAAO,EAAE;QACP,QAAQ,EAAE,MAAM,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,CAAC;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,qBAAqB;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,IAAI,EAAE,iBAAiB,CAAC;IACxB,uBAAuB;IACvB,QAAQ,EAAE,QAAQ,CAAC;IACnB,mBAAmB;IACnB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,+BAA+B;IAC/B,KAAK,CAAC,EAAE,aAAa,EAAE,CAAC;IACxB,wCAAwC;IACxC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,8BAA8B;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yCAAyC;IACzC,OAAO,EAAE,OAAO,CAAC;IACjB,oBAAoB;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC"}
1
+ {"version":3,"file":"vulnerability.d.ts","sourceRoot":"","sources":["../../src/types/vulnerability.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;GAEG;AACH,MAAM,MAAM,aAAa,GACrB,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,aAAa,CAAC;AAElB;;GAEG;AACH,MAAM,MAAM,iBAAiB,GACzB,WAAW,GACX,KAAK,GACL,eAAe,GACf,aAAa,GACb,oBAAoB,GACpB,KAAK,GACL,WAAW,GACX,gBAAgB,GAChB,iBAAiB,GACjB,sBAAsB,GACtB,MAAM,GACN,gBAAgB,GAChB,mBAAmB,GACnB,gBAAgB,GAChB,eAAe,GACf,qBAAqB,GAErB,kBAAkB,GAClB,YAAY,GACZ,eAAe,GACf,UAAU,GACV,WAAW,CAAC;AAEhB;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;AAEvE;;;GAGG;AACH,MAAM,WAAW,cAAc;IAC7B,yBAAyB;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,kCAAkC;IAClC,SAAS,EAAE,MAAM,CAAC;IAClB,gCAAgC;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,oCAAoC;IACpC,WAAW,EAAE,MAAM,CAAC;IACpB,kCAAkC;IAClC,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,sDAAsD;IACtD,EAAE,EAAE,MAAM,CAAC;IACX,wCAAwC;IACxC,IAAI,EAAE,iBAAiB,CAAC;IACxB,qBAAqB;IACrB,QAAQ,EAAE,QAAQ,CAAC;IACnB,8BAA8B;IAC9B,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,+BAA+B;IAC/B,KAAK,CAAC,EAAE,aAAa,EAAE,CAAC;IACxB,2BAA2B;IAC3B,QAAQ,EAAE,cAAc,CAAC;IACzB,iCAAiC;IACjC,WAAW,EAAE,MAAM,CAAC;IACpB,sBAAsB;IACtB,cAAc,EAAE,MAAM,CAAC;IACvB,uCAAuC;IACvC,UAAU,EAAE,MAAM,CAAC;IACnB,+CAA+C;IAC/C,MAAM,EAAE,MAAM,CAAC;IACf,uCAAuC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,0BAA0B;IAC1B,UAAU,EAAE,IAAI,CAAC;CAClB;AAED;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B,gCAAgC;IAChC,cAAc,CAAC,EAAE,QAAQ,EAAE,CAAC;IAC5B,sBAAsB;IACtB,QAAQ,CAAC,EAAE,CAAC,cAAc,GAAG,YAAY,GAAG,QAAQ,CAAC,EAAE,CAAC;IACxD,+BAA+B;IAC/B,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,iCAAiC;IACjC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,kCAAkC;IAClC,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,6BAA6B;IAC7B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;;GAGG;AACH,MAAM,WAAW,UAAU;IACzB,+BAA+B;IAC/B,eAAe,EAAE,aAAa,EAAE,CAAC;IACjC,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,oCAAoC;IACpC,QAAQ,EAAE,MAAM,CAAC;IACjB,qBAAqB;IACrB,SAAS,EAAE,IAAI,CAAC;IAChB,wBAAwB;IACxB,OAAO,EAAE,WAAW,CAAC;IACrB,0BAA0B;IAC1B,OAAO,EAAE;QACP,QAAQ,EAAE,MAAM,CAAC;QACjB,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,CAAC;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,qBAAqB;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,IAAI,EAAE,iBAAiB,CAAC;IACxB,uBAAuB;IACvB,QAAQ,EAAE,QAAQ,CAAC;IACnB,mBAAmB;IACnB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,+BAA+B;IAC/B,KAAK,CAAC,EAAE,aAAa,EAAE,CAAC;IACxB,wCAAwC;IACxC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,8BAA8B;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yCAAyC;IACzC,OAAO,EAAE,OAAO,CAAC;IACjB,oBAAoB;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC"}
package/dist/types/zero-day.d.ts ADDED
@@ -0,0 +1,146 @@
1
+ /**
2
+ * @fileoverview Zero-day detection type definitions
3
+ * @module @nahisaho/musubix-security/types/zero-day
4
+ * @trace DES-SEC2-SAST-003, REQ-SEC2-SAST-003
5
+ */
6
+ import type { SourceLocation } from './vulnerability.js';
7
+ /**
8
+ * Deviation type for zero-day candidates
9
+ */
10
+ export type DeviationType = 'pattern-mismatch' | 'anomaly' | 'unsafe-practice';
11
+ /**
12
+ * LLM analysis recommendation
13
+ */
14
+ export type LLMRecommendation = 'review' | 'investigate' | 'safe';
15
+ /**
16
+ * LLM analysis result for zero-day detection
17
+ * @trace REQ-SEC2-SAST-003
18
+ */
19
+ export interface LLMAnalysisResult {
20
+ /** Vulnerability likelihood (0.0-1.0) */
21
+ vulnerabilityLikelihood: number;
22
+ /** Reasoning for the assessment */
23
+ reasoning: string;
24
+ /** Recommended action */
25
+ recommendedAction: LLMRecommendation;
26
+ /** Potential CWEs (educated guess) */
27
+ potentialCWEs: string[];
28
+ /** Similar known vulnerabilities */
29
+ similarVulnerabilities?: string[];
30
+ }
31
+ /**
32
+ * Risk factor contributing to zero-day score
33
+ */
34
+ export interface RiskFactor {
35
+ /** Factor name */
36
+ name: string;
37
+ /** Weight in scoring (0.0-1.0) */
38
+ weight: number;
39
+ /** Description of the factor */
40
+ description: string;
41
+ /** Score for this factor (0-100) */
42
+ score: number;
43
+ }
44
+ /**
45
+ * Risk assessment for zero-day candidate
46
+ */
47
+ export interface RiskAssessment {
48
+ /** Overall risk score (0-100) */
49
+ score: number;
50
+ /** Individual risk factors */
51
+ factors: RiskFactor[];
52
+ /** Recommendation based on score */
53
+ recommendation: LLMRecommendation;
54
+ /** Confidence in assessment (0.0-1.0) */
55
+ confidence: number;
56
+ }
57
+ /**
58
+ * Zero-day vulnerability candidate
59
+ * @trace REQ-SEC2-SAST-003
60
+ */
61
+ export interface ZeroDayCandidate {
62
+ /** Unique identifier */
63
+ id: string;
64
+ /** Source code location */
65
+ location: SourceLocation;
66
+ /** Code snippet containing potential vulnerability */
67
+ codeSnippet: string;
68
+ /** Type of deviation detected */
69
+ deviationType: DeviationType;
70
+ /** Detection confidence (0.0-1.0) */
71
+ confidence: number;
72
+ /** LLM assessment (if performed) */
73
+ llmAssessment?: LLMAnalysisResult;
74
+ /** Severity is always 'potential' for zero-days */
75
+ severity: 'potential';
76
+ /** Explanation of why this was flagged */
77
+ explanation: string;
78
+ /** AST pattern that triggered detection */
79
+ triggerPattern?: string;
80
+ /** Risk assessment */
81
+ riskAssessment?: RiskAssessment;
82
+ /** Detection timestamp */
83
+ detectedAt: Date;
84
+ /** Related known patterns (for comparison) */
85
+ relatedPatterns?: string[];
86
+ }
87
+ /**
88
+ * Zero-day detection options
89
+ */
90
+ export interface ZeroDayDetectionOptions {
91
+ /** Enable LLM analysis for candidates */
92
+ enableLLMAnalysis?: boolean;
93
+ /** Minimum confidence threshold (0.0-1.0) */
94
+ minConfidence?: number;
95
+ /** Maximum candidates to report */
96
+ maxCandidates?: number;
97
+ /** Risk score threshold (0-100) */
98
+ riskThreshold?: number;
99
+ /** Include pattern comparison */
100
+ includePatternComparison?: boolean;
101
+ }
102
+ /**
103
+ * Zero-day detection result
104
+ */
105
+ export interface ZeroDayResult {
106
+ /** Detected candidates */
107
+ candidates: ZeroDayCandidate[];
108
+ /** Files analyzed */
109
+ filesAnalyzed: number;
110
+ /** Patterns compared */
111
+ patternsCompared: number;
112
+ /** LLM analyses performed */
113
+ llmAnalysesPerformed: number;
114
+ /** Analysis duration in milliseconds */
115
+ duration: number;
116
+ /** Summary statistics */
117
+ summary: {
118
+ totalCandidates: number;
119
+ highRisk: number;
120
+ mediumRisk: number;
121
+ lowRisk: number;
122
+ };
123
+ }
124
+ /**
125
+ * Zero-day detector interface
126
+ * @trace DES-SEC2-SAST-003
127
+ */
128
+ export interface IZeroDayDetector {
129
+ /**
130
+ * Detect potential zero-day vulnerabilities
131
+ */
132
+ detect(files: string[], options?: ZeroDayDetectionOptions): Promise<ZeroDayResult>;
133
+ /**
134
+ * Analyze a specific code snippet for zero-day patterns
135
+ */
136
+ analyzeSnippet(code: string, context?: string): Promise<ZeroDayCandidate | null>;
137
+ /**
138
+ * Assess risk of a candidate
139
+ */
140
+ assessRisk(candidate: ZeroDayCandidate): Promise<RiskAssessment>;
141
+ /**
142
+ * Get LLM analysis for a candidate
143
+ */
144
+ getLLMAnalysis(candidate: ZeroDayCandidate): Promise<LLMAnalysisResult>;
145
+ }
146
+ //# sourceMappingURL=zero-day.d.ts.map
package/dist/types/zero-day.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"zero-day.d.ts","sourceRoot":"","sources":["../../src/types/zero-day.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEzD;;GAEG;AACH,MAAM,MAAM,aAAa,GACrB,kBAAkB,GAClB,SAAS,GACT,iBAAiB,CAAC;AAEtB;;GAEG;AACH,MAAM,MAAM,iBAAiB,GACzB,QAAQ,GACR,aAAa,GACb,MAAM,CAAC;AAEX;;;GAGG;AACH,MAAM,WAAW,iBAAiB;IAChC,yCAAyC;IACzC,uBAAuB,EAAE,MAAM,CAAC;IAEhC,mCAAmC;IACnC,SAAS,EAAE,MAAM,CAAC;IAElB,yBAAyB;IACzB,iBAAiB,EAAE,iBAAiB,CAAC;IAErC,sCAAsC;IACtC,aAAa,EAAE,MAAM,EAAE,CAAC;IAExB,oCAAoC;IACpC,sBAAsB,CAAC,EAAE,MAAM,EAAE,CAAC;CACnC;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,kBAAkB;IAClB,IAAI,EAAE,MAAM,CAAC;IAEb,kCAAkC;IAClC,MAAM,EAAE,MAAM,CAAC;IAEf,gCAAgC;IAChC,WAAW,EAAE,MAAM,CAAC;IAEpB,oCAAoC;IACpC,KAAK,EAAE,MAAM,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,iCAAiC;IACjC,KAAK,EAAE,MAAM,CAAC;IAEd,8BAA8B;IAC9B,OAAO,EAAE,UAAU,EAAE,CAAC;IAEtB,oCAAoC;IACpC,cAAc,EAAE,iBAAiB,CAAC;IAElC,yCAAyC;IACzC,UAAU,EAAE,MAAM,CAAC;CACpB;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IAEX,2BAA2B;IAC3B,QAAQ,EAAE,cAAc,CAAC;IAEzB,sDAAsD;IACtD,WAAW,EAAE,MAAM,CAAC;IAEpB,iCAAiC;IACjC,aAAa,EAAE,aAAa,CAAC;IAE7B,qCAAqC;IACrC,UAAU,EAAE,MAAM,CAAC;IAEnB,oCAAoC;IACpC,aAAa,CAAC,EAAE,iBAAiB,CAAC;IAElC,mDAAmD;IACnD,QAAQ,EAAE,WAAW,CAAC;IAEtB,0CAA0C;IAC1C,WAAW,EAAE,MAAM,CAAC;IAEpB,2CAA2C;IAC3C,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,sBAAsB;IACtB,cAAc,CAAC,EAAE,cAAc,CAAC;IAEhC,0BAA0B;IAC1B,UAAU,EAAE,IAAI,CAAC;IAEjB,8CAA8C;IAC9C,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,yCAAyC;IACzC,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAE5B,6CAA6C;IAC7C,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,mCAAmC;IACnC,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,mCAAmC;IACnC,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,iCAAiC;IACjC,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,0BAA0B;IAC1B,UAAU,EAAE,gBAAgB,EAAE,CAAC;IAE/B,qBAAqB;IACrB,aAAa,EAAE,MAAM,CAAC;IAEtB,wBAAwB;IACxB,gBAAgB,EAAE,MAAM,CAAC;IAEzB,6BAA6B;IAC7B,oBAAoB,EAAE,MAAM,CAAC;IAE7B,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IAEjB,yBAAyB;IACzB,OAAO,EAAE;QACP,eAAe,EAAE,MAAM,CAAC;QACxB,QAAQ,EAAE,MAAM,CAAC;QACjB,UAAU,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH;AAED;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;OAEG;IACH,MAAM,CACJ,KAAK,EAAE,MAAM,EAAE,EACf,OAAO,CAAC,EAAE,uBAAuB,GAChC,OAAO,CAAC,aAAa,CAAC,CAAC;IAE1B;;OAEG;IACH,cAAc,CACZ,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,MAAM,GACf,OAAO,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAAC;IAEpC;;OAEG;IACH,UAAU,CAAC,SAAS,EAAE,gBAAgB,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;IAEjE;;OAEG;IACH,cAAc,CAAC,SAAS,EAAE,gBAAgB,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC;CACzE"}
package/dist/types/zero-day.js ADDED
@@ -0,0 +1,7 @@
1
+ /**
2
+ * @fileoverview Zero-day detection type definitions
3
+ * @module @nahisaho/musubix-security/types/zero-day
4
+ * @trace DES-SEC2-SAST-003, REQ-SEC2-SAST-003
5
+ */
6
+ export {};
7
+ //# sourceMappingURL=zero-day.js.map
package/dist/types/zero-day.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"zero-day.js","sourceRoot":"","sources":["../../src/types/zero-day.ts"],"names":[],"mappings":"AAAA;;;;GAIG"}
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@nahisaho/musubix-security",
3
- "version": "1.8.0",
3
+ "version": "1.8.5",
4
4
  "description": "Security analysis and vulnerability detection for MUSUBIX - Neuro-Symbolic AI Integration",
5
5
  "type": "module",
6
6
  "main": "./dist/index.js",
@@ -82,6 +82,6 @@
82
82
  "devDependencies": {
83
83
  "@types/node": "^20.0.0",
84
84
  "typescript": "^5.4.0",
85
- "vitest": "^2.0.0"
85
+ "vitest": "^4.0.16"
86
86
  }
87
87
  }