@nahisaho/musubix-security 1.8.0

package/dist/analysis/taint-analyzer.js

@@ -0,0 +1,519 @@
+/**
+ * @fileoverview Taint analysis engine
+ * @module @nahisaho/musubix-security/analysis/taint-analyzer
+ * @trace REQ-SEC-TAINT-001, REQ-SEC-TAINT-002, REQ-SEC-TAINT-003, REQ-SEC-TAINT-004
+ */
+import { SyntaxKind } from 'ts-morph';
+import { BUILTIN_SANITIZERS } from '../types/taint.js';
+import { getASTParser } from '../infrastructure/ast-parser.js';
+import { createFileScanner } from '../infrastructure/file-scanner.js';
+/**
+ * Generate taint source ID
+ */
+let sourceCounter = 0;
+function generateSourceId() {
+    return `SRC-${String(++sourceCounter).padStart(4, '0')}`;
+}
+/**
+ * Generate taint sink ID
+ */
+let sinkCounter = 0;
+function generateSinkId() {
+    return `SNK-${String(++sinkCounter).padStart(4, '0')}`;
+}
+/**
+ * Generate taint path ID
+ */
+let pathCounter = 0;
+function generatePathId() {
+    return `PATH-${String(++pathCounter).padStart(4, '0')}`;
+}
+/**
+ * Reset counters (for testing)
+ */
+export function resetTaintCounters() {
+    sourceCounter = 0;
+    sinkCounter = 0;
+    pathCounter = 0;
+}
+/**
+ * Built-in source patterns
+ */
+const SOURCE_PATTERNS = [
+    {
+        category: 'user-input',
+        patterns: [
+            { receiver: 'req', property: 'body' },
+            { receiver: 'req', property: 'query' },
+            { receiver: 'req', property: 'params' },
+            { receiver: 'req', property: 'headers' },
+            { receiver: 'req', property: 'cookies' },
+            { receiver: 'ctx', property: 'request' },
+            { receiver: 'ctx', property: 'query' },
+            { method: 'prompt' },
+            { method: 'getElementById' },
+            { method: 'querySelector' },
+        ],
+        description: 'User-controlled input',
+    },
+    {
+        category: 'database',
+        patterns: [
+            { method: 'findOne' },
+            { method: 'findMany' },
+            { method: 'find' },
+            { receiver: 'db', method: 'query' },
+        ],
+        description: 'Database query results',
+    },
+    {
+        category: 'file-system',
+        patterns: [
+            { method: 'readFile' },
+            { method: 'readFileSync' },
+            { receiver: 'fs', method: 'readFile' },
+        ],
+        description: 'File system reads',
+    },
+    {
+        category: 'network',
+        patterns: [
+            { method: 'fetch' },
+            { method: 'axios' },
+            { receiver: 'http', method: 'get' },
+            { receiver: 'https', method: 'get' },
+        ],
+        description: 'Network responses',
+    },
+    {
+        category: 'environment',
+        patterns: [
+            { receiver: 'process', property: 'env' },
+        ],
+        description: 'Environment variables',
+    },
+    {
+        category: 'cli-args',
+        patterns: [
+            { receiver: 'process', property: 'argv' },
+        ],
+        description: 'Command line arguments',
+    },
+];
+/**
+ * Built-in sink patterns
+ */
+const SINK_PATTERNS = [
+    {
+        category: 'sql-query',
+        severity: 'critical',
+        patterns: [
+            { method: 'query', argIndex: 0 },
+            { method: 'execute', argIndex: 0 },
+            { receiver: 'knex', method: 'raw', argIndex: 0 },
+        ],
+        expectedSanitizers: ['escape', 'parameterize'],
+        description: 'SQL query execution',
+    },
+    {
+        category: 'command-exec',
+        severity: 'critical',
+        patterns: [
+            { method: 'exec', argIndex: 0 },
+            { method: 'execSync', argIndex: 0 },
+            { receiver: 'child_process', method: 'spawn', argIndex: 0 },
+        ],
+        expectedSanitizers: ['quote', 'escape'],
+        description: 'OS command execution',
+    },
+    {
+        category: 'file-read',
+        severity: 'high',
+        patterns: [
+            { method: 'readFile', argIndex: 0 },
+            { method: 'readFileSync', argIndex: 0 },
+            { receiver: 'fs', method: 'access', argIndex: 0 },
+        ],
+        expectedSanitizers: ['basename', 'resolve'],
+        description: 'File system read',
+    },
+    {
+        category: 'file-write',
+        severity: 'high',
+        patterns: [
+            { method: 'writeFile', argIndex: 0 },
+            { method: 'writeFileSync', argIndex: 0 },
+        ],
+        expectedSanitizers: ['basename', 'resolve'],
+        description: 'File system write',
+    },
+    {
+        category: 'html-output',
+        severity: 'high',
+        patterns: [
+            { receiver: 'res', method: 'send', argIndex: 0 },
+            { receiver: 'res', method: 'write', argIndex: 0 },
+            { receiver: 'res', method: 'render', argIndex: 1 },
+        ],
+        expectedSanitizers: ['escapeHtml', 'encode', 'sanitizeHtml'],
+        description: 'HTML response output',
+    },
+    {
+        category: 'redirect',
+        severity: 'medium',
+        patterns: [
+            { receiver: 'res', method: 'redirect', argIndex: 0 },
+        ],
+        expectedSanitizers: ['validateUrl', 'isAllowedDomain'],
+        description: 'URL redirect',
+    },
+    {
+        category: 'eval',
+        severity: 'critical',
+        patterns: [
+            { method: 'eval', argIndex: 0 },
+            { method: 'Function', argIndex: 0 },
+        ],
+        expectedSanitizers: [],
+        description: 'Dynamic code evaluation',
+    },
+    {
+        category: 'http-request',
+        severity: 'high',
+        patterns: [
+            { method: 'fetch', argIndex: 0 },
+            { receiver: 'axios', method: 'get', argIndex: 0 },
+            { receiver: 'axios', method: 'post', argIndex: 0 },
+        ],
+        expectedSanitizers: ['validateUrl', 'isAllowedDomain'],
+        description: 'Outbound HTTP request',
+    },
+];
+/**
+ * Taint analyzer engine
+ */
+export class TaintAnalyzer {
+    parser;
+    fileScanner;
+    options;
+    sourcePatterns;
+    sinkPatterns;
+    constructor(options = {}) {
+        this.parser = getASTParser();
+        this.fileScanner = createFileScanner();
+        this.options = options;
+        this.sourcePatterns = [...SOURCE_PATTERNS];
+        this.sinkPatterns = [...SINK_PATTERNS];
+        // Add custom sources
+        if (options.customSources) {
+            for (const custom of options.customSources) {
+                this.sourcePatterns.push({
+                    category: custom.category,
+                    patterns: [{ method: custom.pattern }],
+                    description: custom.description,
+                });
+            }
+        }
+        // Add custom sinks
+        if (options.customSinks) {
+            for (const custom of options.customSinks) {
+                this.sinkPatterns.push({
+                    category: custom.category,
+                    severity: custom.severity,
+                    patterns: [{ method: custom.pattern, argIndex: 0 }],
+                    expectedSanitizers: [],
+                    description: custom.description,
+                });
+            }
+        }
+    }
+    /**
+     * Analyze a single file for taint issues
+     */
+    analyzeFile(filePath) {
+        const sourceFile = this.parser.parseFile(filePath);
+        return {
+            sources: this.findSources(sourceFile),
+            sinks: this.findSinks(sourceFile),
+        };
+    }
+    /**
+     * Find taint sources in a source file
+     */
+    findSources(sourceFile) {
+        const sources = [];
+        // Find property access expressions (req.body, process.env, etc.)
+        const propertyAccesses = sourceFile.getDescendantsOfKind(SyntaxKind.PropertyAccessExpression);
+        for (const access of propertyAccesses) {
+            const receiver = access.getExpression();
+            const property = access.getName();
+            let receiverName;
+            if (receiver.getKind() === SyntaxKind.Identifier) {
+                receiverName = receiver.getText();
+            }
+            for (const pattern of this.sourcePatterns) {
+                for (const p of pattern.patterns) {
+                    if (p.receiver && p.property) {
+                        if (receiverName === p.receiver && property === p.property) {
+                            sources.push({
+                                id: generateSourceId(),
+                                category: pattern.category,
+                                location: this.parser.getLocation(access),
+                                variableName: access.getText(),
+                                expression: access.getText(),
+                                description: pattern.description,
+                                confidence: 0.9,
+                            });
+                        }
+                    }
+                }
+            }
+        }
+        // Find call expressions (getElementById, fetch, etc.)
+        const calls = sourceFile.getDescendantsOfKind(SyntaxKind.CallExpression);
+        for (const call of calls) {
+            const funcName = this.parser.getFunctionName(call);
+            const receiverName = this.parser.getReceiverName(call);
+            for (const pattern of this.sourcePatterns) {
+                for (const p of pattern.patterns) {
+                    if (p.method && funcName === p.method) {
+                        if (!p.receiver || receiverName === p.receiver) {
+                            sources.push({
+                                id: generateSourceId(),
+                                category: pattern.category,
+                                location: this.parser.getLocation(call),
+                                variableName: call.getText(),
+                                expression: call.getText(),
+                                description: pattern.description,
+                                confidence: 0.85,
+                            });
+                        }
+                    }
+                }
+            }
+        }
+        return sources;
+    }
+    /**
+     * Find taint sinks in a source file
+     */
+    findSinks(sourceFile) {
+        const sinks = [];
+        const calls = sourceFile.getDescendantsOfKind(SyntaxKind.CallExpression);
+        for (const call of calls) {
+            const funcName = this.parser.getFunctionName(call);
+            const receiverName = this.parser.getReceiverName(call);
+            for (const pattern of this.sinkPatterns) {
+                for (const p of pattern.patterns) {
+                    if (funcName === p.method) {
+                        if (!p.receiver || receiverName === p.receiver) {
+                            sinks.push({
+                                id: generateSinkId(),
+                                category: pattern.category,
+                                location: this.parser.getLocation(call),
+                                functionName: funcName,
+                                argumentIndex: p.argIndex,
+                                expectedSanitizers: pattern.expectedSanitizers,
+                                description: pattern.description,
+                                severity: pattern.severity,
+                            });
+                        }
+                    }
+                }
+            }
+        }
+        return sinks;
+    }
+    /**
+     * Trace taint flow from sources to sinks (simplified)
+     * Note: Full interprocedural analysis would require more sophisticated data flow analysis
+     */
+    tracePaths(sources, sinks, sourceFile) {
+        const paths = [];
+        // Simple intraprocedural analysis: check if source and sink are in same function
+        // and source appears before sink
+        for (const source of sources) {
+            for (const sink of sinks) {
+                // Check if in same file
+                if (source.location.file !== sink.location.file)
+                    continue;
+                // Check if source is before sink
+                if (source.location.startLine > sink.location.startLine)
+                    continue;
+                // Check if they could be connected (simplified - same function scope)
+                const isConnected = this.checkConnection(source, sink, sourceFile);
+                if (!isConnected)
+                    continue;
+                // Check for sanitization
+                const sanitized = this.checkSanitization(source, sink, sourceFile, sink.expectedSanitizers);
+                // Only report unsanitized paths
+                if (!sanitized) {
+                    const steps = this.buildFlowSteps(source, sink, sourceFile);
+                    paths.push({
+                        id: generatePathId(),
+                        source,
+                        sink,
+                        steps,
+                        sanitized: false,
+                        confidence: Math.min(source.confidence, 0.8),
+                        length: steps.length,
+                    });
+                }
+            }
+        }
+        return paths;
+    }
+    /**
+     * Check if source and sink could be connected
+     */
+    checkConnection(source, sink, _sourceFile) {
+        // Simplified: just check if they're within reasonable line distance
+        const lineDistance = sink.location.startLine - source.location.startLine;
+        const maxDepth = this.options.maxPathDepth ?? 10;
+        return lineDistance >= 0 && lineDistance <= maxDepth * 5;
+    }
+    /**
+     * Check if there's sanitization between source and sink
+     */
+    checkSanitization(source, sink, sourceFile, expectedSanitizers) {
+        // Get code between source and sink
+        const calls = sourceFile.getDescendantsOfKind(SyntaxKind.CallExpression);
+        for (const call of calls) {
+            const loc = this.parser.getLocation(call);
+            // Check if call is between source and sink
+            if (loc.startLine > source.location.startLine &&
+                loc.startLine < sink.location.startLine) {
+                const funcName = this.parser.getFunctionName(call);
+                // Check against expected sanitizers
+                if (funcName && expectedSanitizers.includes(funcName)) {
+                    return true;
+                }
+                // Check against built-in sanitizers
+                for (const sanitizer of BUILTIN_SANITIZERS) {
+                    if (funcName === sanitizer.name && sanitizer.protects.includes(sink.category)) {
+                        return true;
+                    }
+                }
+                // Check additional sanitizers from options
+                if (this.options.additionalSanitizers) {
+                    for (const sanitizer of this.options.additionalSanitizers) {
+                        if (funcName === sanitizer.functionName &&
+                            sanitizer.sinkCategories.includes(sink.category)) {
+                            return true;
+                        }
+                    }
+                }
+            }
+        }
+        return false;
+    }
+    /**
+     * Build flow steps between source and sink
+     */
+    buildFlowSteps(source, sink, _sourceFile) {
+        // Simplified: just source and sink as steps
+        return [
+            {
+                index: 0,
+                location: source.location,
+                expression: source.expression,
+                variableName: source.variableName,
+                operation: 'assignment',
+                sanitized: false,
+            },
+            {
+                index: 1,
+                location: sink.location,
+                expression: `${sink.functionName}(...)`,
+                operation: 'call',
+                sanitized: false,
+            },
+        ];
+    }
+    /**
+     * Analyze a directory for taint issues
+     */
+    async analyze(rootPath) {
+        const startTime = Date.now();
+        const files = await this.fileScanner.scan(rootPath);
+        const allSources = [];
+        const allSinks = [];
+        const allPaths = [];
+        let analyzedFiles = 0;
+        for (const file of files) {
+            if (this.options.excludePatterns?.some((p) => file.relativePath.includes(p))) {
+                continue;
+            }
+            try {
+                const sourceFile = this.parser.parseFile(file.path);
+                const { sources, sinks } = this.analyzeFile(file.path);
+                allSources.push(...sources);
+                allSinks.push(...sinks);
+                const paths = this.tracePaths(sources, sinks, sourceFile);
+                allPaths.push(...paths);
+                analyzedFiles++;
+            }
+            catch (error) {
+                console.warn(`Warning: Failed to analyze ${file.path}: ${error}`);
+            }
+        }
+        const duration = Date.now() - startTime;
+        // Build summary
+        const bySourceCategory = {
+            'user-input': 0,
+            'database': 0,
+            'file-system': 0,
+            'network': 0,
+            'environment': 0,
+            'config': 0,
+            'cli-args': 0,
+        };
+        for (const source of allSources) {
+            bySourceCategory[source.category]++;
+        }
+        const bySinkCategory = {
+            'sql-query': 0,
+            'nosql-query': 0,
+            'command-exec': 0,
+            'file-write': 0,
+            'file-read': 0,
+            'html-output': 0,
+            'redirect': 0,
+            'eval': 0,
+            'deserialization': 0,
+            'ldap-query': 0,
+            'xpath-query': 0,
+            'http-request': 0,
+        };
+        for (const sink of allSinks) {
+            bySinkCategory[sink.category]++;
+        }
+        const bySeverity = { critical: 0, high: 0, medium: 0, low: 0, info: 0 };
+        for (const path of allPaths) {
+            bySeverity[path.sink.severity]++;
+        }
+        return {
+            sources: allSources,
+            sinks: allSinks,
+            unsafePaths: allPaths,
+            analyzedFiles,
+            duration,
+            timestamp: new Date(),
+            summary: {
+                totalSources: allSources.length,
+                totalSinks: allSinks.length,
+                unsafePathCount: allPaths.length,
+                bySeverity,
+                bySourceCategory,
+                bySinkCategory,
+            },
+        };
+    }
+}
+/**
+ * Create a taint analyzer
+ */
+export function createTaintAnalyzer(options) {
+    return new TaintAnalyzer(options);
+}
+//# sourceMappingURL=taint-analyzer.js.map

package/dist/analysis/taint-analyzer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"taint-analyzer.js","sourceRoot":"","sources":["../../src/analysis/taint-analyzer.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAYtC,OAAO,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AACvD,OAAO,EAAa,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC1E,OAAO,EAAe,iBAAiB,EAAE,MAAM,mCAAmC,CAAC;AAEnF;;GAEG;AACH,IAAI,aAAa,GAAG,CAAC,CAAC;AACtB,SAAS,gBAAgB;IACvB,OAAO,OAAO,MAAM,CAAC,EAAE,aAAa,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC;AAC3D,CAAC;AAED;;GAEG;AACH,IAAI,WAAW,GAAG,CAAC,CAAC;AACpB,SAAS,cAAc;IACrB,OAAO,OAAO,MAAM,CAAC,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC;AACzD,CAAC;AAED;;GAEG;AACH,IAAI,WAAW,GAAG,CAAC,CAAC;AACpB,SAAS,cAAc;IACrB,OAAO,QAAQ,MAAM,CAAC,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC;AAC1D,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,kBAAkB;IAChC,aAAa,GAAG,CAAC,CAAC;IAClB,WAAW,GAAG,CAAC,CAAC;IAChB,WAAW,GAAG,CAAC,CAAC;AAClB,CAAC;AA8BD;;GAEG;AACH,MAAM,eAAe,GAAoB;IACvC;QACE,QAAQ,EAAE,YAAY;QACtB,QAAQ,EAAE;YACR,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE;YACrC,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE;YACtC,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE;YACvC,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE;YACxC,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE;YACxC,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE;YACxC,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE;YACtC,EAAE,MAAM,EAAE,QAAQ,EAAE;YACpB,EAAE,MAAM,EAAE,gBAAgB,EAAE;YAC5B,EAAE,MAAM,EAAE,eAAe,EAAE;SAC5B;QACD,WAAW,EAAE,uBAAuB;KACrC;IACD;QACE,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,SAAS,EAAE;YACrB,EAAE,MAAM,EAAE,UAAU,EAAE;YACtB,EAAE,MAAM,EAAE,MAAM,EAAE;YAClB,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE;SACpC;QACD,WAAW,EAAE,wBAAwB;KACtC;IACD;QACE,QAAQ,EAAE,aAAa;QACvB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,UAAU,EAAE;YACtB,EAAE,MAAM,EAAE,cAAc,EAAE;YAC1B,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE;SACvC;QACD,WAAW,EAAE,mBAAmB;KACjC;IACD;QACE,QAAQ,EAAE,SAAS;QACnB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,OAAO,EAAE;YACnB,EAAE,MAAM,EAAE,OAAO,EAAE;YACnB,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE;YACnC,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE;SACrC;QACD,WAAW,EAAE,mBAAmB;KACjC;IACD;QACE,QAAQ,EAAE,aAAa;QACvB,QAAQ,EAAE;YACR,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE;SACzC;QACD,WAAW,EAAE,uBAAuB;KACrC;IACD;QACE,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE;YACR,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,MAAM,EAAE;SAC1C;QACD,WAAW,EAAE,wBAAwB;KACtC;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,aAAa,GAAkB;IACnC;QACE,QAAQ,EAAE,WAAW;QACrB,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE;YAChC,EAAE,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,CAAC,EAAE;YAClC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,EAAE;SACjD;QACD,kBAAkB,EAAE,CAAC,QAAQ,EAAE,cAAc,CAAC;QAC9C,WAAW,EAAE,qBAAqB;KACnC;IACD;QACE,QAAQ,EAAE,cAAc;QACxB,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,EAAE;YAC/B,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,EAAE;YACnC,EAAE,QAAQ,EAAE,eAAe,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE;SAC5D;QACD,kBAAkB,EAAE,CAAC,OAAO,EAAE,QAAQ,CAAC;QACvC,WAAW,EAAE,sBAAsB;KACpC;IACD;QACE,QAAQ,EAAE,WAAW;QACrB,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,EAAE;YACnC,EAAE,MAAM,EAAE,cAAc,EAAE,QAAQ,EAAE,CAAC,EAAE;YACvC,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,EAAE;SAClD;QACD,kBAAkB,EAAE,CAAC,UAAU,EAAE,SAAS,CAAC;QAC3C,WAAW,EAAE,kBAAkB;KAChC;IACD;QACE,QAAQ,EAAE,YAAY;QACtB,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,WAAW,EAAE,QAAQ,EAAE,CAAC,EAAE;YACpC,EAAE,MAAM,EAAE,eAAe,EAAE,QAAQ,EAAE,CAAC,EAAE;SACzC;QACD,kBAAkB,EAAE,CAAC,UAAU,EAAE,SAAS,CAAC;QAC3C,WAAW,EAAE,mBAAmB;KACjC;IACD;QACE,QAAQ,EAAE,aAAa;QACvB,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE;YACR,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,EAAE;YAChD,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE;YACjD,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,EAAE;SACnD;QACD,kBAAkB,EAAE,CAAC,YAAY,EAAE,QAAQ,EAAE,cAAc,CAAC;QAC5D,WAAW,EAAE,sBAAsB;KACpC;IACD;QACE,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;QAClB,QAAQ,EAAE;YACR,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,EAAE;SACrD;QACD,kBAAkB,EAAE,CAAC,aAAa,EAAE,iBAAiB,CAAC;QACtD,WAAW,EAAE,cAAc;KAC5B;IACD;QACE,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,EAAE;YAC/B,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,EAAE;SACpC;QACD,kBAAkB,EAAE,EAAE;QACtB,WAAW,EAAE,yBAAyB;KACvC;IACD;QACE,QAAQ,EAAE,cAAc;QACxB,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE;YACR,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE;YAChC,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,EAAE;YACjD,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,EAAE;SACnD;QACD,kBAAkB,EAAE,CAAC,aAAa,EAAE,iBAAiB,CAAC;QACtD,WAAW,EAAE,uBAAuB;KACrC;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,OAAO,aAAa;IAChB,MAAM,CAAY;IAClB,WAAW,CAAc;IACzB,OAAO,CAAuB;IAC9B,cAAc,CAAkB;IAChC,YAAY,CAAgB;IAEpC,YAAY,UAAgC,EAAE;QAC5C,IAAI,CAAC,MAAM,GAAG,YAAY,EAAE,CAAC;QAC7B,IAAI,CAAC,WAAW,GAAG,iBAAiB,EAAE,CAAC;QACvC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,cAAc,GAAG,CAAC,GAAG,eAAe,CAAC,CAAC;QAC3C,IAAI,CAAC,YAAY,GAAG,CAAC,GAAG,aAAa,CAAC,CAAC;QAEvC,qBAAqB;QACrB,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;YAC1B,KAAK,MAAM,MAAM,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;gBAC3C,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC;oBACvB,QAAQ,EAAE,MAAM,CAAC,QAAQ;oBACzB,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,OAAO,EAAE,CAAC;oBACtC,WAAW,EAAE,MAAM,CAAC,WAAW;iBAChC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,mBAAmB;QACnB,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;YACxB,KAAK,MAAM,MAAM,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;gBACzC,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC;oBACrB,QAAQ,EAAE,MAAM,CAAC,QAAQ;oBACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;oBACzB,QAAQ,EAAE,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC;oBACnD,kBAAkB,EAAE,EAAE;oBACtB,WAAW,EAAE,MAAM,CAAC,WAAW;iBAChC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACH,WAAW,CAAC,QAAgB;QAC1B,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QACnD,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC;YACrC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC;SAClC,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,WAAW,CAAC,UAAsB;QACxC,MAAM,OAAO,GAAkB,EAAE,CAAC;QAElC,iEAAiE;QACjE,MAAM,gBAAgB,GAAG,UAAU,CAAC,oBAAoB,CAAC,UAAU,CAAC,wBAAwB,CAAC,CAAC;QAC9F,KAAK,MAAM,MAAM,IAAI,gBAAgB,EAAE,CAAC;YACtC,MAAM,QAAQ,GAAG,MAAM,CAAC,aAAa,EAAE,CAAC;YACxC,MAAM,QAAQ,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC;YAElC,IAAI,YAAgC,CAAC;YACrC,IAAI,QAAQ,CAAC,OAAO,EAAE,KAAK,UAAU,CAAC,UAAU,EAAE,CAAC;gBACjD,YAAY,GAAG,QAAQ,CAAC,OAAO,EAAE,CAAC;YACpC,CAAC;YAED,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;gBAC1C,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;oBACjC,IAAI,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC;wBAC7B,IAAI,YAAY,KAAK,CAAC,CAAC,QAAQ,IAAI,QAAQ,KAAK,CAAC,CAAC,QAAQ,EAAE,CAAC;4BAC3D,OAAO,CAAC,IAAI,CAAC;gCACX,EAAE,EAAE,gBAAgB,EAAE;gCACtB,QAAQ,EAAE,OAAO,CAAC,QAAQ;gCAC1B,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC;gCACzC,YAAY,EAAE,MAAM,CAAC,OAAO,EAAE;gCAC9B,UAAU,EAAE,MAAM,CAAC,OAAO,EAAE;gCAC5B,WAAW,EAAE,OAAO,CAAC,WAAW;gCAChC,UAAU,EAAE,GAAG;6BAChB,CAAC,CAAC;wBACL,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,sDAAsD;QACtD,MAAM,KAAK,GAAG,UAAU,CAAC,oBAAoB,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;QACzE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YACnD,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEvD,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;gBAC1C,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;oBACjC,IAAI,CAAC,CAAC,MAAM,IAAI,QAAQ,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;wBACtC,IAAI,CAAC,CAAC,CAAC,QAAQ,IAAI,YAAY,KAAK,CAAC,CAAC,QAAQ,EAAE,CAAC;4BAC/C,OAAO,CAAC,IAAI,CAAC;gCACX,EAAE,EAAE,gBAAgB,EAAE;gCACtB,QAAQ,EAAE,OAAO,CAAC,QAAQ;gCAC1B,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC;gCACvC,YAAY,EAAE,IAAI,CAAC,OAAO,EAAE;gCAC5B,UAAU,EAAE,IAAI,CAAC,OAAO,EAAE;gCAC1B,WAAW,EAAE,OAAO,CAAC,WAAW;gCAChC,UAAU,EAAE,IAAI;6BACjB,CAAC,CAAC;wBACL,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;OAEG;IACK,SAAS,CAAC,UAAsB;QACtC,MAAM,KAAK,GAAgB,EAAE,CAAC;QAC9B,MAAM,KAAK,GAAG,UAAU,CAAC,oBAAoB,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;QAEzE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YACnD,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAEvD,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;gBACxC,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;oBACjC,IAAI,QAAQ,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;wBAC1B,IAAI,CAAC,CAAC,CAAC,QAAQ,IAAI,YAAY,KAAK,CAAC,CAAC,QAAQ,EAAE,CAAC;4BAC/C,KAAK,CAAC,IAAI,CAAC;gCACT,EAAE,EAAE,cAAc,EAAE;gCACpB,QAAQ,EAAE,OAAO,CAAC,QAAQ;gCAC1B,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC;gCACvC,YAAY,EAAE,QAAQ;gCACtB,aAAa,EAAE,CAAC,CAAC,QAAQ;gCACzB,kBAAkB,EAAE,OAAO,CAAC,kBAAkB;gCAC9C,WAAW,EAAE,OAAO,CAAC,WAAW;gCAChC,QAAQ,EAAE,OAAO,CAAC,QAAQ;6BAC3B,CAAC,CAAC;wBACL,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;;OAGG;IACK,UAAU,CAChB,OAAsB,EACtB,KAAkB,EAClB,UAAsB;QAEtB,MAAM,KAAK,GAAgB,EAAE,CAAC;QAE9B,iFAAiF;QACjF,iCAAiC;QACjC,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC7B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,wBAAwB;gBACxB,IAAI,MAAM,CAAC,QAAQ,CAAC,IAAI,KAAK,IAAI,CAAC,QAAQ,CAAC,IAAI;oBAAE,SAAS;gBAE1D,iCAAiC;gBACjC,IAAI,MAAM,CAAC,QAAQ,CAAC,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAC,SAAS;oBAAE,SAAS;gBAElE,sEAAsE;gBACtE,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;gBACnE,IAAI,CAAC,WAAW;oBAAE,SAAS;gBAE3B,yBAAyB;gBACzB,MAAM,SAAS,GAAG,IAAI,CAAC,iBAAiB,CACtC,MAAM,EACN,IAAI,EACJ,UAAU,EACV,IAAI,CAAC,kBAAkB,CACxB,CAAC;gBAEF,gCAAgC;gBAChC,IAAI,CAAC,SAAS,EAAE,CAAC;oBACf,MAAM,KAAK,GAAG,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;oBAC5D,KAAK,CAAC,IAAI,CAAC;wBACT,EAAE,EAAE,cAAc,EAAE;wBACpB,MAAM;wBACN,IAAI;wBACJ,KAAK;wBACL,SAAS,EAAE,KAAK;wBAChB,UAAU,EAAE,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,UAAU,EAAE,GAAG,CAAC;wBAC5C,MAAM,EAAE,KAAK,CAAC,MAAM;qBACrB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,eAAe,CACrB,MAAmB,EACnB,IAAe,EACf,WAAuB;QAEvB,oEAAoE;QACpE,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,SAAS,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC;QACzE,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,IAAI,EAAE,CAAC;QAEjD,OAAO,YAAY,IAAI,CAAC,IAAI,YAAY,IAAI,QAAQ,GAAG,CAAC,CAAC;IAC3D,CAAC;IAED;;OAEG;IACK,iBAAiB,CACvB,MAAmB,EACnB,IAAe,EACf,UAAsB,EACtB,kBAA4B;QAE5B,mCAAmC;QACnC,MAAM,KAAK,GAAG,UAAU,CAAC,oBAAoB,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC;QAEzE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAE1C,2CAA2C;YAC3C,IACE,GAAG,CAAC,SAAS,GAAG,MAAM,CAAC,QAAQ,CAAC,SAAS;gBACzC,GAAG,CAAC,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAC,SAAS,EACvC,CAAC;gBACD,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;gBAEnD,oCAAoC;gBACpC,IAAI,QAAQ,IAAI,kBAAkB,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;oBACtD,OAAO,IAAI,CAAC;gBACd,CAAC;gBAED,oCAAoC;gBACpC,KAAK,MAAM,SAAS,IAAI,kBAAkB,EAAE,CAAC;oBAC3C,IAAI,QAAQ,KAAK,SAAS,CAAC,IAAI,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;wBAC9E,OAAO,IAAI,CAAC;oBACd,CAAC;gBACH,CAAC;gBAED,2CAA2C;gBAC3C,IAAI,IAAI,CAAC,OAAO,CAAC,oBAAoB,EAAE,CAAC;oBACtC,KAAK,MAAM,SAAS,IAAI,IAAI,CAAC,OAAO,CAAC,oBAAoB,EAAE,CAAC;wBAC1D,IACE,QAAQ,KAAK,SAAS,CAAC,YAAY;4BACnC,SAAS,CAAC,cAAc,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,EAChD,CAAC;4BACD,OAAO,IAAI,CAAC;wBACd,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,cAAc,CACpB,MAAmB,EACnB,IAAe,EACf,WAAuB;QAEvB,4CAA4C;QAC5C,OAAO;YACL;gBACE,KAAK,EAAE,CAAC;gBACR,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,UAAU,EAAE,MAAM,CAAC,UAAU;gBAC7B,YAAY,EAAE,MAAM,CAAC,YAAY;gBACjC,SAAS,EAAE,YAAY;gBACvB,SAAS,EAAE,KAAK;aACjB;YACD;gBACE,KAAK,EAAE,CAAC;gBACR,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,UAAU,EAAE,GAAG,IAAI,CAAC,YAAY,OAAO;gBACvC,SAAS,EAAE,MAAM;gBACjB,SAAS,EAAE,KAAK;aACjB;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,QAAgB;QAC5B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAEpD,MAAM,UAAU,GAAkB,EAAE,CAAC;QACrC,MAAM,QAAQ,GAAgB,EAAE,CAAC;QACjC,MAAM,QAAQ,GAAgB,EAAE,CAAC;QACjC,IAAI,aAAa,GAAG,CAAC,CAAC;QAEtB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,IAAI,CAAC,OAAO,CAAC,eAAe,EAAE,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;gBAC7E,SAAS;YACX,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBACpD,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAEvD,UAAU,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,CAAC;gBAC5B,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC;gBAExB,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,KAAK,EAAE,UAAU,CAAC,CAAC;gBAC1D,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC;gBAExB,aAAa,EAAE,CAAC;YAClB,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,IAAI,CAAC,8BAA8B,IAAI,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC,CAAC;YACpE,CAAC;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAExC,gBAAgB;QAChB,MAAM,gBAAgB,GAAwC;YAC5D,YAAY,EAAE,CAAC;YACf,UAAU,EAAE,CAAC;YACb,aAAa,EAAE,CAAC;YAChB,SAAS,EAAE,CAAC;YACZ,aAAa,EAAE,CAAC;YAChB,QAAQ,EAAE,CAAC;YACX,UAAU,EAAE,CAAC;SACd,CAAC;QACF,KAAK,MAAM,MAAM,IAAI,UAAU,EAAE,CAAC;YAChC,gBAAgB,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;QACtC,CAAC;QAED,MAAM,cAAc,GAAsC;YACxD,WAAW,EAAE,CAAC;YACd,aAAa,EAAE,CAAC;YAChB,cAAc,EAAE,CAAC;YACjB,YAAY,EAAE,CAAC;YACf,WAAW,EAAE,CAAC;YACd,aAAa,EAAE,CAAC;YAChB,UAAU,EAAE,CAAC;YACb,MAAM,EAAE,CAAC;YACT,iBAAiB,EAAE,CAAC;YACpB,YAAY,EAAE,CAAC;YACf,aAAa,EAAE,CAAC;YAChB,cAAc,EAAE,CAAC;SAClB,CAAC;QACF,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;YAC5B,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QAClC,CAAC;QAED,MAAM,UAAU,GAA6B,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;QAClG,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;YAC5B,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QACnC,CAAC;QAED,OAAO;YACL,OAAO,EAAE,UAAU;YACnB,KAAK,EAAE,QAAQ;YACf,WAAW,EAAE,QAAQ;YACrB,aAAa;YACb,QAAQ;YACR,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,OAAO,EAAE;gBACP,YAAY,EAAE,UAAU,CAAC,MAAM;gBAC/B,UAAU,EAAE,QAAQ,CAAC,MAAM;gBAC3B,eAAe,EAAE,QAAQ,CAAC,MAAM;gBAChC,UAAU;gBACV,gBAAgB;gBAChB,cAAc;aACf;SACF,CAAC;IACJ,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,OAA8B;IAChE,OAAO,IAAI,aAAa,CAAC,OAAO,CAAC,CAAC;AACpC,CAAC"}

package/dist/analysis/vulnerability-scanner.d.ts

@@ -0,0 +1,58 @@
+/**
+ * @fileoverview Vulnerability scanner - static analysis for security vulnerabilities
+ * @module @nahisaho/musubix-security/analysis/vulnerability-scanner
+ * @trace REQ-SEC-SCAN-001, REQ-SEC-SCAN-002, REQ-SEC-SCAN-003
+ */
+import type { SourceFile } from 'ts-morph';
+import type { Vulnerability, ScanOptions, ScanResult } from '../types/index.js';
+import { ASTParser } from '../infrastructure/ast-parser.js';
+/**
+ * Vulnerability detector interface
+ */
+interface VulnerabilityDetector {
+    ruleId: string;
+    detect(sourceFile: SourceFile, parser: ASTParser): Vulnerability[];
+}
+/**
+ * Reset vulnerability counter (for testing)
+ */
+export declare function resetVulnCounter(): void;
+/**
+ * Vulnerability scanner
+ */
+export declare class VulnerabilityScanner {
+    private parser;
+    private fileScanner;
+    private detectors;
+    constructor(options?: {
+        tsConfigPath?: string;
+    });
+    /**
+     * Scan a single file
+     */
+    scanFile(filePath: string): Vulnerability[];
+    /**
+     * Scan a directory
+     */
+    scanDirectory(rootPath: string, options?: ScanOptions): Promise<ScanResult>;
+    /**
+     * Add a custom detector
+     */
+    addDetector(detector: VulnerabilityDetector): void;
+    /**
+     * Get list of rule IDs
+     */
+    getRuleIds(): string[];
+    /**
+     * Get number of rules
+     */
+    getRuleCount(): number;
+}
+/**
+ * Create a vulnerability scanner
+ */
+export declare function createVulnerabilityScanner(options?: {
+    tsConfigPath?: string;
+}): VulnerabilityScanner;
+export {};
+//# sourceMappingURL=vulnerability-scanner.d.ts.map

package/dist/analysis/vulnerability-scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vulnerability-scanner.d.ts","sourceRoot":"","sources":["../../src/analysis/vulnerability-scanner.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAE3C,OAAO,KAAK,EACV,aAAa,EACb,WAAW,EACX,UAAU,EACX,MAAM,mBAAmB,CAAC;AAC3B,OAAO,EAAE,SAAS,EAAgB,MAAM,iCAAiC,CAAC;AAG1E;;GAEG;AACH,UAAU,qBAAqB;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,UAAU,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,GAAG,aAAa,EAAE,CAAC;CACpE;AAYD;;GAEG;AACH,wBAAgB,gBAAgB,IAAI,IAAI,CAEvC;AA2UD;;GAEG;AACH,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,MAAM,CAAY;IAC1B,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,SAAS,CAA0B;gBAE/B,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE;IAM/C;;OAEG;IACH,QAAQ,CAAC,QAAQ,EAAE,MAAM,GAAG,aAAa,EAAE;IAY3C;;OAEG;IACG,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,UAAU,CAAC;IAyDjF;;OAEG;IACH,WAAW,CAAC,QAAQ,EAAE,qBAAqB,GAAG,IAAI;IAIlD;;OAEG;IACH,UAAU,IAAI,MAAM,EAAE;IAItB;;OAEG;IACH,YAAY,IAAI,MAAM;CAGvB;AAED;;GAEG;AACH,wBAAgB,0BAA0B,CAAC,OAAO,CAAC,EAAE;IAAE,YAAY,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,oBAAoB,CAEpG"}