@nahisaho/musubix-security 2.0.0 → 2.1.0

package/dist/analysis/interprocedural/dfg-adapter.d.ts

@@ -0,0 +1,166 @@
+/**
+ * @fileoverview DFG Adapter - Integrate musubix-dfg with taint analysis
+ * @module @nahisaho/musubix-security/analysis/interprocedural/dfg-adapter
+ * @trace REQ-SEC-001 (EARS: THE system SHALL integrate with DFG for enhanced taint tracking)
+ */
+import type { DataFlowGraph, DFGNode } from '@nahisaho/musubix-dfg';
+import type { TaintLocation, TaintFlowEdge } from './taint-propagator.js';
+import type { TaintSinkCategory } from '../../types/taint.js';
+import type { SourceDefinition } from '../sources/types.js';
+import type { SinkDefinition } from '../sinks/types.js';
+/**
+ * Options for DFG-based taint analysis
+ */
+export interface DFGTaintOptions {
+    /** Include aliasing analysis */
+    trackAliasing?: boolean;
+    /** Include control flow dependencies */
+    trackControlDependencies?: boolean;
+    /** Maximum propagation depth */
+    maxDepth?: number;
+    /** Minimum confidence threshold */
+    minConfidence?: number;
+}
+/**
+ * DFG node with taint information
+ */
+export interface TaintedDFGNode extends DFGNode {
+    /** Whether node is tainted */
+    isTainted: boolean;
+    /** Taint confidence */
+    taintConfidence: number;
+    /** Source of taint */
+    taintSource?: TaintLocation;
+    /** Sanitizers applied */
+    sanitizers: string[];
+    /** Remaining vulnerable categories */
+    vulnerableCategories: TaintSinkCategory[];
+}
+/**
+ * Result of DFG taint analysis
+ */
+export interface DFGTaintResult {
+    /** Original DFG */
+    dfg: DataFlowGraph;
+    /** Tainted nodes */
+    taintedNodes: Map<string, TaintedDFGNode>;
+    /** Taint flow edges */
+    taintFlowEdges: TaintFlowEdge[];
+    /** Detected sources */
+    sources: TaintLocation[];
+    /** Detected sinks */
+    sinks: TaintLocation[];
+    /** Source to sink paths */
+    vulnerablePaths: TaintPath[];
+}
+/**
+ * Path from taint source to sink
+ */
+export interface TaintPath {
+    /** Source location */
+    source: TaintLocation;
+    /** Sink location */
+    sink: TaintLocation;
+    /** Intermediate nodes */
+    path: string[];
+    /** Flow edges */
+    edges: TaintFlowEdge[];
+    /** Sanitizers in path */
+    sanitizers: string[];
+    /** Whether path is fully sanitized */
+    isSanitized: boolean;
+    /** Confidence */
+    confidence: number;
+}
+/**
+ * DFG Adapter for taint analysis
+ * Converts DFG data flow information to taint tracking
+ * @trace REQ-SEC-001
+ */
+export declare class DFGTaintAdapter {
+    private sources;
+    private sinks;
+    private options;
+    constructor(sources: SourceDefinition[], sinks: SinkDefinition[], options?: DFGTaintOptions);
+    /**
+     * Analyze DFG for taint flows
+     */
+    analyzeTaint(dfg: DataFlowGraph): DFGTaintResult;
+    /**
+     * Propagate taint through DFG
+     */
+    private propagateTaint;
+    /**
+     * Check if DFG node is a taint source
+     */
+    private isSource;
+    /**
+     * Check if DFG node is a taint sink
+     */
+    private isSink;
+    /**
+     * Check if DFG node is a sanitizer
+     */
+    private checkSanitizer;
+    /**
+     * Check if edge type propagates taint
+     */
+    private propagatesTaint;
+    /**
+     * Get all sink categories
+     */
+    private getAllSinkCategories;
+    /**
+     * Update vulnerable categories after sanitization
+     */
+    private updateVulnerableCategories;
+    /**
+     * Calculate taint confidence after propagation
+     */
+    private calculateConfidence;
+    /**
+     * Convert DFG location to taint location
+     */
+    private dfgLocationToTaintLocation;
+    /**
+     * Create taint flow edge from DFG edge
+     */
+    private createFlowEdge;
+    /**
+     * Build complete taint path from source to sink
+     */
+    private buildTaintPath;
+    /**
+     * Get sink category for a node
+     */
+    getSinkCategory(node: DFGNode): TaintSinkCategory | null;
+    /**
+     * Get statistics about taint analysis
+     */
+    getStatistics(result: DFGTaintResult): DFGTaintStatistics;
+    /**
+     * Get all edges with a specific source node
+     */
+    private getEdgesWithSource;
+    /**
+     * Get all edges with a specific target node
+     */
+    private getEdgesWithTarget;
+    /**
+     * Get all edges with a specific source and type
+     */
+    private getEdgesWithSourceAndType;
+}
+/**
+ * Statistics from DFG taint analysis
+ */
+export interface DFGTaintStatistics {
+    totalNodes: number;
+    taintedNodes: number;
+    sources: number;
+    sinks: number;
+    vulnerablePaths: number;
+    sanitizedPaths: number;
+    avgConfidence: number;
+}
+//# sourceMappingURL=dfg-adapter.d.ts.map

package/dist/analysis/interprocedural/dfg-adapter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dfg-adapter.d.ts","sourceRoot":"","sources":["../../../src/analysis/interprocedural/dfg-adapter.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EACV,aAAa,EACb,OAAO,EAER,MAAM,uBAAuB,CAAC;AAC/B,OAAO,KAAK,EAAE,aAAa,EAAE,aAAa,EAAiB,MAAM,uBAAuB,CAAC;AACzF,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAC9D,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAC5D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAExD;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,gCAAgC;IAChC,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,wCAAwC;IACxC,wBAAwB,CAAC,EAAE,OAAO,CAAC;IACnC,gCAAgC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,mCAAmC;IACnC,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,cAAe,SAAQ,OAAO;IAC7C,8BAA8B;IAC9B,SAAS,EAAE,OAAO,CAAC;IACnB,uBAAuB;IACvB,eAAe,EAAE,MAAM,CAAC;IACxB,sBAAsB;IACtB,WAAW,CAAC,EAAE,aAAa,CAAC;IAC5B,yBAAyB;IACzB,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,sCAAsC;IACtC,oBAAoB,EAAE,iBAAiB,EAAE,CAAC;CAC3C;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,mBAAmB;IACnB,GAAG,EAAE,aAAa,CAAC;IACnB,oBAAoB;IACpB,YAAY,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;IAC1C,uBAAuB;IACvB,cAAc,EAAE,aAAa,EAAE,CAAC;IAChC,uBAAuB;IACvB,OAAO,EAAE,aAAa,EAAE,CAAC;IACzB,qBAAqB;IACrB,KAAK,EAAE,aAAa,EAAE,CAAC;IACvB,2BAA2B;IAC3B,eAAe,EAAE,SAAS,EAAE,CAAC;CAC9B;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,sBAAsB;IACtB,MAAM,EAAE,aAAa,CAAC;IACtB,oBAAoB;IACpB,IAAI,EAAE,aAAa,CAAC;IACpB,yBAAyB;IACzB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,iBAAiB;IACjB,KAAK,EAAE,aAAa,EAAE,CAAC;IACvB,yBAAyB;IACzB,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,sCAAsC;IACtC,WAAW,EAAE,OAAO,CAAC;IACrB,iBAAiB;IACjB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED;;;;GAIG;AACH,qBAAa,eAAe;IAC1B,OAAO,CAAC,OAAO,CAAqB;IACpC,OAAO,CAAC,KAAK,CAAmB;IAChC,OAAO,CAAC,OAAO,CAA4B;gBAGzC,OAAO,EAAE,gBAAgB,EAAE,EAC3B,KAAK,EAAE,cAAc,EAAE,EACvB,OAAO,GAAE,eAAoB;IAY/B;;OAEG;IACH,YAAY,CAAC,GAAG,EAAE,aAAa,GAAG,cAAc;IAgEhD;;OAEG;IACH,OAAO,CAAC,cAAc;IAiGtB;;OAEG;IACH,OAAO,CAAC,QAAQ;IAsBhB;;OAEG;IACH,OAAO,CAAC,MAAM;IAsBd;;OAEG;IACH,OAAO,CAAC,cAAc;IAoBtB;;OAEG;IACH,OAAO,CAAC,eAAe;IAiBvB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAiB5B;;OAEG;IACH,OAAO,CAAC,0BAA0B;IAyBlC;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAgB3B;;OAEG;IACH,OAAO,CAAC,0BAA0B;IAUlC;;OAEG;IACH,OAAO,CAAC,cAAc;IA2BtB;;OAEG;IACH,OAAO,CAAC,cAAc;IAgEtB;;OAEG;IACH,eAAe,CAAC,IAAI,EAAE,OAAO,GAAG,iBAAiB,GAAG,IAAI;IAcxD;;OAEG;IACH,aAAa,CAAC,MAAM,EAAE,cAAc,GAAG,kBAAkB;IAoBzD;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAU1B;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAU1B;;OAEG;IACH,OAAO,CAAC,yBAAyB;CASlC;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,eAAe,EAAE,MAAM,CAAC;IACxB,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,CAAC;CACvB"}

package/dist/analysis/interprocedural/dfg-adapter.js

@@ -0,0 +1,455 @@
+/**
+ * @fileoverview DFG Adapter - Integrate musubix-dfg with taint analysis
+ * @module @nahisaho/musubix-security/analysis/interprocedural/dfg-adapter
+ * @trace REQ-SEC-001 (EARS: THE system SHALL integrate with DFG for enhanced taint tracking)
+ */
+/**
+ * DFG Adapter for taint analysis
+ * Converts DFG data flow information to taint tracking
+ * @trace REQ-SEC-001
+ */
+export class DFGTaintAdapter {
+    sources;
+    sinks;
+    options;
+    constructor(sources, sinks, options = {}) {
+        this.sources = sources;
+        this.sinks = sinks;
+        this.options = {
+            trackAliasing: options.trackAliasing ?? true,
+            trackControlDependencies: options.trackControlDependencies ?? false,
+            maxDepth: options.maxDepth ?? 20,
+            minConfidence: options.minConfidence ?? 0.5,
+        };
+    }
+    /**
+     * Analyze DFG for taint flows
+     */
+    analyzeTaint(dfg) {
+        const taintedNodes = new Map();
+        const taintFlowEdges = [];
+        const sources = [];
+        const sinks = [];
+        const vulnerablePaths = [];
+        // Step 1: Identify taint sources in DFG
+        for (const [nodeId, node] of dfg.nodes) {
+            if (this.isSource(node)) {
+                const location = this.dfgLocationToTaintLocation(node);
+                sources.push(location);
+                // Mark node as tainted
+                taintedNodes.set(nodeId, {
+                    ...node,
+                    isTainted: true,
+                    taintConfidence: 1.0,
+                    taintSource: location,
+                    sanitizers: [],
+                    vulnerableCategories: this.getAllSinkCategories(),
+                });
+            }
+        }
+        // Step 2: Propagate taint through DFG edges
+        this.propagateTaint(dfg, taintedNodes, taintFlowEdges);
+        // Step 3: Identify sinks that receive tainted data
+        for (const [nodeId, node] of dfg.nodes) {
+            if (this.isSink(node)) {
+                const location = this.dfgLocationToTaintLocation(node);
+                sinks.push(location);
+                // Check if sink receives tainted data
+                const incomingEdges = this.getEdgesWithTarget(dfg, nodeId);
+                for (const edge of incomingEdges) {
+                    const sourceNode = taintedNodes.get(edge.source);
+                    if (sourceNode?.isTainted) {
+                        // Found vulnerable path
+                        const path = this.buildTaintPath(dfg, taintedNodes, sourceNode.taintSource, location);
+                        if (path && path.confidence >= this.options.minConfidence) {
+                            vulnerablePaths.push(path);
+                        }
+                    }
+                }
+            }
+        }
+        return {
+            dfg,
+            taintedNodes,
+            taintFlowEdges,
+            sources,
+            sinks,
+            vulnerablePaths,
+        };
+    }
+    /**
+     * Propagate taint through DFG
+     */
+    propagateTaint(dfg, taintedNodes, taintFlowEdges) {
+        const worklist = Array.from(taintedNodes.keys());
+        const visited = new Set();
+        const maxIterations = this.options.maxDepth * dfg.nodes.size;
+        let iteration = 0;
+        while (worklist.length > 0 && iteration < maxIterations) {
+            const nodeId = worklist.shift();
+            if (visited.has(nodeId))
+                continue;
+            visited.add(nodeId);
+            iteration++;
+            const taintedNode = taintedNodes.get(nodeId);
+            if (!taintedNode)
+                continue;
+            // Find outgoing edges
+            const outgoing = this.getEdgesWithSource(dfg, nodeId);
+            for (const edge of outgoing) {
+                // Check if this edge type propagates taint
+                if (!this.propagatesTaint(edge))
+                    continue;
+                const targetNode = dfg.nodes.get(edge.target);
+                if (!targetNode)
+                    continue;
+                // Check for sanitizer
+                const sanitizer = this.checkSanitizer(targetNode);
+                const newSanitizers = sanitizer
+                    ? [...taintedNode.sanitizers, sanitizer]
+                    : [...taintedNode.sanitizers];
+                // Update vulnerable categories after sanitization
+                const newVulnerableCategories = this.updateVulnerableCategories(taintedNode.vulnerableCategories, sanitizer);
+                // Calculate new confidence
+                const newConfidence = this.calculateConfidence(taintedNode.taintConfidence, edge.type);
+                // Create or update target node
+                const existingTarget = taintedNodes.get(edge.target);
+                if (!existingTarget || existingTarget.taintConfidence < newConfidence) {
+                    taintedNodes.set(edge.target, {
+                        ...targetNode,
+                        isTainted: true,
+                        taintConfidence: newConfidence,
+                        taintSource: taintedNode.taintSource,
+                        sanitizers: newSanitizers,
+                        vulnerableCategories: newVulnerableCategories,
+                    });
+                    // Add to worklist for further propagation
+                    if (!visited.has(edge.target)) {
+                        worklist.push(edge.target);
+                    }
+                }
+                // Record flow edge
+                const flowEdge = this.createFlowEdge(taintedNode, targetNode, edge, newConfidence, newSanitizers);
+                taintFlowEdges.push(flowEdge);
+            }
+            // Handle aliasing
+            if (this.options.trackAliasing) {
+                const aliasEdges = this.getEdgesWithSourceAndType(dfg, nodeId, 'alias');
+                for (const aliasEdge of aliasEdges) {
+                    const aliasTarget = dfg.nodes.get(aliasEdge.target);
+                    if (aliasTarget && !taintedNodes.has(aliasEdge.target)) {
+                        taintedNodes.set(aliasEdge.target, {
+                            ...aliasTarget,
+                            isTainted: true,
+                            taintConfidence: taintedNode.taintConfidence * 0.95,
+                            taintSource: taintedNode.taintSource,
+                            sanitizers: [...taintedNode.sanitizers],
+                            vulnerableCategories: [...taintedNode.vulnerableCategories],
+                        });
+                        worklist.push(aliasEdge.target);
+                    }
+                }
+            }
+        }
+    }
+    /**
+     * Check if DFG node is a taint source
+     */
+    isSource(node) {
+        for (const source of this.sources) {
+            for (const pattern of source.patterns) {
+                // Check method match
+                if (pattern.method) {
+                    const methods = Array.isArray(pattern.method) ? pattern.method : [pattern.method];
+                    if (methods.some((m) => node.name?.includes(m))) {
+                        return true;
+                    }
+                }
+                // Check property match
+                if (pattern.property) {
+                    const props = Array.isArray(pattern.property) ? pattern.property : [pattern.property];
+                    if (props.some((p) => node.name?.includes(p))) {
+                        return true;
+                    }
+                }
+            }
+        }
+        return false;
+    }
+    /**
+     * Check if DFG node is a taint sink
+     */
+    isSink(node) {
+        for (const sink of this.sinks) {
+            for (const pattern of sink.patterns) {
+                // Check method match
+                if (pattern.method) {
+                    const methods = Array.isArray(pattern.method) ? pattern.method : [pattern.method];
+                    if (methods.some((m) => node.name?.includes(m))) {
+                        return true;
+                    }
+                }
+                // Check property match
+                if (pattern.property) {
+                    const props = Array.isArray(pattern.property) ? pattern.property : [pattern.property];
+                    if (props.some((p) => node.name?.includes(p))) {
+                        return true;
+                    }
+                }
+            }
+        }
+        return false;
+    }
+    /**
+     * Check if DFG node is a sanitizer
+     */
+    checkSanitizer(node) {
+        const sanitizerPatterns = [
+            'escape',
+            'sanitize',
+            'encode',
+            'parameterize',
+            'validate',
+            'filter',
+            'parseInt',
+            'parseFloat',
+        ];
+        for (const pattern of sanitizerPatterns) {
+            if (node.name?.toLowerCase().includes(pattern)) {
+                return node.name;
+            }
+        }
+        return null;
+    }
+    /**
+     * Check if edge type propagates taint
+     */
+    propagatesTaint(edge) {
+        const propagatingTypes = [
+            'def-use',
+            'data-dep',
+            'call-arg',
+            'call-return',
+            'property',
+            'alias',
+        ];
+        if (this.options.trackControlDependencies) {
+            propagatingTypes.push('control-dep');
+        }
+        return propagatingTypes.includes(edge.type);
+    }
+    /**
+     * Get all sink categories
+     */
+    getAllSinkCategories() {
+        return [
+            'sql-query',
+            'nosql-query',
+            'command-exec',
+            'file-write',
+            'file-read',
+            'html-output',
+            'redirect',
+            'eval',
+            'deserialization',
+            'ldap-query',
+            'xpath-query',
+            'http-request',
+        ];
+    }
+    /**
+     * Update vulnerable categories after sanitization
+     */
+    updateVulnerableCategories(current, sanitizer) {
+        if (!sanitizer)
+            return current;
+        const sanitizerMappings = {
+            escape: ['sql-query', 'html-output'],
+            escapeHtml: ['html-output'],
+            encodeURIComponent: ['redirect', 'http-request'],
+            parameterize: ['sql-query'],
+            parseInt: ['sql-query', 'command-exec'],
+            sanitize: ['html-output', 'sql-query'],
+        };
+        const protectedCategories = [];
+        for (const [pattern, categories] of Object.entries(sanitizerMappings)) {
+            if (sanitizer.toLowerCase().includes(pattern.toLowerCase())) {
+                protectedCategories.push(...categories);
+            }
+        }
+        return current.filter((c) => !protectedCategories.includes(c));
+    }
+    /**
+     * Calculate taint confidence after propagation
+     */
+    calculateConfidence(baseConfidence, edgeType) {
+        const confidenceFactors = {
+            'def-use': 1.0,
+            'data-dep': 0.95,
+            'call-arg': 0.9,
+            'call-return': 0.85,
+            'property': 0.9,
+            'alias': 0.95,
+            'control-dep': 0.6,
+            'phi': 0.8,
+        };
+        const factor = confidenceFactors[edgeType] ?? 0.7;
+        return baseConfidence * factor;
+    }
+    /**
+     * Convert DFG location to taint location
+     */
+    dfgLocationToTaintLocation(node) {
+        return {
+            nodeId: node.id,
+            identifier: node.name ?? node.id,
+            line: node.location?.startLine ?? 0,
+            column: node.location?.startColumn ?? 0,
+            filePath: node.location?.filePath ?? 'unknown',
+        };
+    }
+    /**
+     * Create taint flow edge from DFG edge
+     */
+    createFlowEdge(sourceNode, targetNode, edge, confidence, sanitizers) {
+        const flowTypeMapping = {
+            'def-use': 'assignment',
+            'data-dep': 'assignment',
+            'call-arg': 'parameter',
+            'call-return': 'return',
+            'property': 'property-access',
+            'alias': 'assignment',
+            'control-dep': 'implicit',
+        };
+        return {
+            id: `flow_${edge.id}`,
+            from: this.dfgLocationToTaintLocation(sourceNode),
+            to: this.dfgLocationToTaintLocation(targetNode),
+            flowType: flowTypeMapping[edge.type] ?? 'assignment',
+            sanitizersApplied: sanitizers,
+            confidence,
+        };
+    }
+    /**
+     * Build complete taint path from source to sink
+     */
+    buildTaintPath(dfg, taintedNodes, source, sink) {
+        // BFS to find shortest path
+        const visited = new Set();
+        const queue = [];
+        // Find source node
+        const sourceNodeId = Array.from(taintedNodes.entries())
+            .find(([, node]) => node.taintSource?.nodeId === source.nodeId)?.[0];
+        if (!sourceNodeId)
+            return null;
+        queue.push({ nodeId: sourceNodeId, path: [sourceNodeId], edges: [] });
+        visited.add(sourceNodeId);
+        while (queue.length > 0) {
+            const { nodeId, path, edges } = queue.shift();
+            // Check if we reached sink
+            if (nodeId === sink.nodeId) {
+                const taintedNode = taintedNodes.get(nodeId);
+                return {
+                    source,
+                    sink,
+                    path,
+                    edges,
+                    sanitizers: taintedNode?.sanitizers ?? [],
+                    isSanitized: (taintedNode?.vulnerableCategories.length ?? 0) === 0,
+                    confidence: taintedNode?.taintConfidence ?? 0,
+                };
+            }
+            // Explore neighbors
+            const outgoing = this.getEdgesWithSource(dfg, nodeId);
+            for (const edge of outgoing) {
+                if (!visited.has(edge.target) && taintedNodes.has(edge.target)) {
+                    visited.add(edge.target);
+                    const targetNode = dfg.nodes.get(edge.target);
+                    if (targetNode) {
+                        const sourceNode = taintedNodes.get(nodeId);
+                        const flowEdge = this.createFlowEdge(sourceNode, targetNode, edge, sourceNode.taintConfidence, sourceNode.sanitizers);
+                        queue.push({
+                            nodeId: edge.target,
+                            path: [...path, edge.target],
+                            edges: [...edges, flowEdge],
+                        });
+                    }
+                }
+            }
+        }
+        return null;
+    }
+    /**
+     * Get sink category for a node
+     */
+    getSinkCategory(node) {
+        for (const sink of this.sinks) {
+            for (const pattern of sink.patterns) {
+                if (pattern.method) {
+                    const methods = Array.isArray(pattern.method) ? pattern.method : [pattern.method];
+                    if (methods.some((m) => node.name?.includes(m))) {
+                        return sink.category;
+                    }
+                }
+            }
+        }
+        return null;
+    }
+    /**
+     * Get statistics about taint analysis
+     */
+    getStatistics(result) {
+        return {
+            totalNodes: result.dfg.nodes.size,
+            taintedNodes: result.taintedNodes.size,
+            sources: result.sources.length,
+            sinks: result.sinks.length,
+            vulnerablePaths: result.vulnerablePaths.length,
+            sanitizedPaths: result.vulnerablePaths.filter((p) => p.isSanitized).length,
+            avgConfidence: result.vulnerablePaths.length > 0
+                ? result.vulnerablePaths.reduce((sum, p) => sum + p.confidence, 0) /
+                    result.vulnerablePaths.length
+                : 0,
+        };
+    }
+    // ========================================================================
+    // Helper methods for Map-based DFG traversal
+    // ========================================================================
+    /**
+     * Get all edges with a specific source node
+     */
+    getEdgesWithSource(dfg, sourceId) {
+        const result = [];
+        for (const edge of dfg.edges.values()) {
+            if (edge.source === sourceId) {
+                result.push(edge);
+            }
+        }
+        return result;
+    }
+    /**
+     * Get all edges with a specific target node
+     */
+    getEdgesWithTarget(dfg, targetId) {
+        const result = [];
+        for (const edge of dfg.edges.values()) {
+            if (edge.target === targetId) {
+                result.push(edge);
+            }
+        }
+        return result;
+    }
+    /**
+     * Get all edges with a specific source and type
+     */
+    getEdgesWithSourceAndType(dfg, sourceId, edgeType) {
+        const result = [];
+        for (const edge of dfg.edges.values()) {
+            if (edge.source === sourceId && edge.type === edgeType) {
+                result.push(edge);
+            }
+        }
+        return result;
+    }
+}
+//# sourceMappingURL=dfg-adapter.js.map

package/dist/analysis/interprocedural/dfg-adapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dfg-adapter.js","sourceRoot":"","sources":["../../../src/analysis/interprocedural/dfg-adapter.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAgFH;;;;GAIG;AACH,MAAM,OAAO,eAAe;IAClB,OAAO,CAAqB;IAC5B,KAAK,CAAmB;IACxB,OAAO,CAA4B;IAE3C,YACE,OAA2B,EAC3B,KAAuB,EACvB,UAA2B,EAAE;QAE7B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,OAAO,GAAG;YACb,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,IAAI;YAC5C,wBAAwB,EAAE,OAAO,CAAC,wBAAwB,IAAI,KAAK;YACnE,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,EAAE;YAChC,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,GAAG;SAC5C,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,GAAkB;QAC7B,MAAM,YAAY,GAAG,IAAI,GAAG,EAA0B,CAAC;QACvD,MAAM,cAAc,GAAoB,EAAE,CAAC;QAC3C,MAAM,OAAO,GAAoB,EAAE,CAAC;QACpC,MAAM,KAAK,GAAoB,EAAE,CAAC;QAClC,MAAM,eAAe,GAAgB,EAAE,CAAC;QAExC,wCAAwC;QACxC,KAAK,MAAM,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;YACvC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;gBACxB,MAAM,QAAQ,GAAG,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC;gBACvD,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBAEvB,uBAAuB;gBACvB,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE;oBACvB,GAAG,IAAI;oBACP,SAAS,EAAE,IAAI;oBACf,eAAe,EAAE,GAAG;oBACpB,WAAW,EAAE,QAAQ;oBACrB,UAAU,EAAE,EAAE;oBACd,oBAAoB,EAAE,IAAI,CAAC,oBAAoB,EAAE;iBAClD,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,4CAA4C;QAC5C,IAAI,CAAC,cAAc,CAAC,GAAG,EAAE,YAAY,EAAE,cAAc,CAAC,CAAC;QAEvD,mDAAmD;QACnD,KAAK,MAAM,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;YACvC,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;gBACtB,MAAM,QAAQ,GAAG,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC;gBACvD,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBAErB,sCAAsC;gBACtC,MAAM,aAAa,GAAG,IAAI,CAAC,kBAAkB,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;gBAC3D,KAAK,MAAM,IAAI,IAAI,aAAa,EAAE,CAAC;oBACjC,MAAM,UAAU,GAAG,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBACjD,IAAI,UAAU,EAAE,SAAS,EAAE,CAAC;wBAC1B,wBAAwB;wBACxB,MAAM,IAAI,GAAG,IAAI,CAAC,cAAc,CAC9B,GAAG,EACH,YAAY,EACZ,UAAU,CAAC,WAAY,EACvB,QAAQ,CACT,CAAC;wBACF,IAAI,IAAI,IAAI,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;4BAC1D,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;wBAC7B,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO;YACL,GAAG;YACH,YAAY;YACZ,cAAc;YACd,OAAO;YACP,KAAK;YACL,eAAe;SAChB,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,cAAc,CACpB,GAAkB,EAClB,YAAyC,EACzC,cAA+B;QAE/B,MAAM,QAAQ,GAAa,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC,CAAC;QAC3D,MAAM,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;QAClC,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC;QAC7D,IAAI,SAAS,GAAG,CAAC,CAAC;QAElB,OAAO,QAAQ,CAAC,MAAM,GAAG,CAAC,IAAI,SAAS,GAAG,aAAa,EAAE,CAAC;YACxD,MAAM,MAAM,GAAG,QAAQ,CAAC,KAAK,EAAG,CAAC;YACjC,IAAI,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC;gBAAE,SAAS;YAClC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YACpB,SAAS,EAAE,CAAC;YAEZ,MAAM,WAAW,GAAG,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAC7C,IAAI,CAAC,WAAW;gBAAE,SAAS;YAE3B,sBAAsB;YACtB,MAAM,QAAQ,GAAG,IAAI,CAAC,kBAAkB,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;YAEtD,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;gBAC5B,2CAA2C;gBAC3C,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC;oBAAE,SAAS;gBAE1C,MAAM,UAAU,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBAC9C,IAAI,CAAC,UAAU;oBAAE,SAAS;gBAE1B,sBAAsB;gBACtB,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;gBAClD,MAAM,aAAa,GAAG,SAAS;oBAC7B,CAAC,CAAC,CAAC,GAAG,WAAW,CAAC,UAAU,EAAE,SAAS,CAAC;oBACxC,CAAC,CAAC,CAAC,GAAG,WAAW,CAAC,UAAU,CAAC,CAAC;gBAEhC,kDAAkD;gBAClD,MAAM,uBAAuB,GAAG,IAAI,CAAC,0BAA0B,CAC7D,WAAW,CAAC,oBAAoB,EAChC,SAAS,CACV,CAAC;gBAEF,2BAA2B;gBAC3B,MAAM,aAAa,GAAG,IAAI,CAAC,mBAAmB,CAC5C,WAAW,CAAC,eAAe,EAC3B,IAAI,CAAC,IAAc,CACpB,CAAC;gBAEF,+BAA+B;gBAC/B,MAAM,cAAc,GAAG,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBACrD,IAAI,CAAC,cAAc,IAAI,cAAc,CAAC,eAAe,GAAG,aAAa,EAAE,CAAC;oBACtE,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE;wBAC5B,GAAG,UAAU;wBACb,SAAS,EAAE,IAAI;wBACf,eAAe,EAAE,aAAa;wBAC9B,WAAW,EAAE,WAAW,CAAC,WAAW;wBACpC,UAAU,EAAE,aAAa;wBACzB,oBAAoB,EAAE,uBAAuB;qBAC9C,CAAC,CAAC;oBAEH,0CAA0C;oBAC1C,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;wBAC9B,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBAC7B,CAAC;gBACH,CAAC;gBAED,mBAAmB;gBACnB,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAClC,WAAW,EACX,UAAU,EACV,IAAI,EACJ,aAAa,EACb,aAAa,CACd,CAAC;gBACF,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAChC,CAAC;YAED,kBAAkB;YAClB,IAAI,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;gBAC/B,MAAM,UAAU,GAAG,IAAI,CAAC,yBAAyB,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;gBACxE,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;oBACnC,MAAM,WAAW,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;oBACpD,IAAI,WAAW,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;wBACvD,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,EAAE;4BACjC,GAAG,WAAW;4BACd,SAAS,EAAE,IAAI;4BACf,eAAe,EAAE,WAAW,CAAC,eAAe,GAAG,IAAI;4BACnD,WAAW,EAAE,WAAW,CAAC,WAAW;4BACpC,UAAU,EAAE,CAAC,GAAG,WAAW,CAAC,UAAU,CAAC;4BACvC,oBAAoB,EAAE,CAAC,GAAG,WAAW,CAAC,oBAAoB,CAAC;yBAC5D,CAAC,CAAC;wBACH,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;oBAClC,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACK,QAAQ,CAAC,IAAa;QAC5B,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;gBACtC,qBAAqB;gBACrB,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;oBACnB,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;oBAClF,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;wBAChD,OAAO,IAAI,CAAC;oBACd,CAAC;gBACH,CAAC;gBACD,uBAAuB;gBACvB,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;oBACrB,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;oBACtF,IAAI,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;wBAC9C,OAAO,IAAI,CAAC;oBACd,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,MAAM,CAAC,IAAa;QAC1B,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YAC9B,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACpC,qBAAqB;gBACrB,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;oBACnB,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;oBAClF,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;wBAChD,OAAO,IAAI,CAAC;oBACd,CAAC;gBACH,CAAC;gBACD,uBAAuB;gBACvB,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;oBACrB,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;oBACtF,IAAI,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;wBAC9C,OAAO,IAAI,CAAC;oBACd,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,cAAc,CAAC,IAAa;QAClC,MAAM,iBAAiB,GAAG;YACxB,QAAQ;YACR,UAAU;YACV,QAAQ;YACR,cAAc;YACd,UAAU;YACV,QAAQ;YACR,UAAU;YACV,YAAY;SACb,CAAC;QAEF,KAAK,MAAM,OAAO,IAAI,iBAAiB,EAAE,CAAC;YACxC,IAAI,IAAI,CAAC,IAAI,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC/C,OAAO,IAAI,CAAC,IAAI,CAAC;YACnB,CAAC;QACH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,IAAa;QACnC,MAAM,gBAAgB,GAAG;YACvB,SAAS;YACT,UAAU;YACV,UAAU;YACV,aAAa;YACb,UAAU;YACV,OAAO;SACR,CAAC;QAEF,IAAI,IAAI,CAAC,OAAO,CAAC,wBAAwB,EAAE,CAAC;YAC1C,gBAAgB,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACvC,CAAC;QAED,OAAO,gBAAgB,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAc,CAAC,CAAC;IACxD,CAAC;IAED;;OAEG;IACK,oBAAoB;QAC1B,OAAO;YACL,WAAW;YACX,aAAa;YACb,cAAc;YACd,YAAY;YACZ,WAAW;YACX,aAAa;YACb,UAAU;YACV,MAAM;YACN,iBAAiB;YACjB,YAAY;YACZ,aAAa;YACb,cAAc;SACf,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,0BAA0B,CAChC,OAA4B,EAC5B,SAAwB;QAExB,IAAI,CAAC,SAAS;YAAE,OAAO,OAAO,CAAC;QAE/B,MAAM,iBAAiB,GAAwC;YAC7D,MAAM,EAAE,CAAC,WAAW,EAAE,aAAa,CAAC;YACpC,UAAU,EAAE,CAAC,aAAa,CAAC;YAC3B,kBAAkB,EAAE,CAAC,UAAU,EAAE,cAAc,CAAC;YAChD,YAAY,EAAE,CAAC,WAAW,CAAC;YAC3B,QAAQ,EAAE,CAAC,WAAW,EAAE,cAAc,CAAC;YACvC,QAAQ,EAAE,CAAC,aAAa,EAAE,WAAW,CAAC;SACvC,CAAC;QAEF,MAAM,mBAAmB,GAAwB,EAAE,CAAC;QACpD,KAAK,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,iBAAiB,CAAC,EAAE,CAAC;YACtE,IAAI,SAAS,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;gBAC5D,mBAAmB,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,CAAC;YAC1C,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IACjE,CAAC;IAED;;OAEG;IACK,mBAAmB,CAAC,cAAsB,EAAE,QAAgB;QAClE,MAAM,iBAAiB,GAA2B;YAChD,SAAS,EAAE,GAAG;YACd,UAAU,EAAE,IAAI;YAChB,UAAU,EAAE,GAAG;YACf,aAAa,EAAE,IAAI;YACnB,UAAU,EAAE,GAAG;YACf,OAAO,EAAE,IAAI;YACb,aAAa,EAAE,GAAG;YAClB,KAAK,EAAE,GAAG;SACX,CAAC;QAEF,MAAM,MAAM,GAAG,iBAAiB,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC;QAClD,OAAO,cAAc,GAAG,MAAM,CAAC;IACjC,CAAC;IAED;;OAEG;IACK,0BAA0B,CAAC,IAAa;QAC9C,OAAO;YACL,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,UAAU,EAAE,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,EAAE;YAChC,IAAI,EAAE,IAAI,CAAC,QAAQ,EAAE,SAAS,IAAI,CAAC;YACnC,MAAM,EAAE,IAAI,CAAC,QAAQ,EAAE,WAAW,IAAI,CAAC;YACvC,QAAQ,EAAE,IAAI,CAAC,QAAQ,EAAE,QAAQ,IAAI,SAAS;SAC/C,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,cAAc,CACpB,UAA0B,EAC1B,UAAmB,EACnB,IAAa,EACb,UAAkB,EAClB,UAAoB;QAEpB,MAAM,eAAe,GAAkC;YACrD,SAAS,EAAE,YAAY;YACvB,UAAU,EAAE,YAAY;YACxB,UAAU,EAAE,WAAW;YACvB,aAAa,EAAE,QAAQ;YACvB,UAAU,EAAE,iBAAiB;YAC7B,OAAO,EAAE,YAAY;YACrB,aAAa,EAAE,UAAU;SAC1B,CAAC;QAEF,OAAO;YACL,EAAE,EAAE,QAAQ,IAAI,CAAC,EAAE,EAAE;YACrB,IAAI,EAAE,IAAI,CAAC,0BAA0B,CAAC,UAAU,CAAC;YACjD,EAAE,EAAE,IAAI,CAAC,0BAA0B,CAAC,UAAU,CAAC;YAC/C,QAAQ,EAAE,eAAe,CAAC,IAAI,CAAC,IAAc,CAAC,IAAI,YAAY;YAC9D,iBAAiB,EAAE,UAAU;YAC7B,UAAU;SACX,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,cAAc,CACpB,GAAkB,EAClB,YAAyC,EACzC,MAAqB,EACrB,IAAmB;QAEnB,4BAA4B;QAC5B,MAAM,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;QAClC,MAAM,KAAK,GAAsE,EAAE,CAAC;QAEpF,mBAAmB;QACnB,MAAM,YAAY,GAAG,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;aACpD,IAAI,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,KAAK,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QAEvE,IAAI,CAAC,YAAY;YAAE,OAAO,IAAI,CAAC;QAE/B,KAAK,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,YAAY,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC;QACtE,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAE1B,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,KAAK,CAAC,KAAK,EAAG,CAAC;YAE/C,2BAA2B;YAC3B,IAAI,MAAM,KAAK,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC3B,MAAM,WAAW,GAAG,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBAC7C,OAAO;oBACL,MAAM;oBACN,IAAI;oBACJ,IAAI;oBACJ,KAAK;oBACL,UAAU,EAAE,WAAW,EAAE,UAAU,IAAI,EAAE;oBACzC,WAAW,EAAE,CAAC,WAAW,EAAE,oBAAoB,CAAC,MAAM,IAAI,CAAC,CAAC,KAAK,CAAC;oBAClE,UAAU,EAAE,WAAW,EAAE,eAAe,IAAI,CAAC;iBAC9C,CAAC;YACJ,CAAC;YAED,oBAAoB;YACpB,MAAM,QAAQ,GAAG,IAAI,CAAC,kBAAkB,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;YACtD,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;gBAC5B,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC/D,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBACzB,MAAM,UAAU,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBAC9C,IAAI,UAAU,EAAE,CAAC;wBACf,MAAM,UAAU,GAAG,YAAY,CAAC,GAAG,CAAC,MAAM,CAAE,CAAC;wBAC7C,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAClC,UAAU,EACV,UAAU,EACV,IAAI,EACJ,UAAU,CAAC,eAAe,EAC1B,UAAU,CAAC,UAAU,CACtB,CAAC;wBACF,KAAK,CAAC,IAAI,CAAC;4BACT,MAAM,EAAE,IAAI,CAAC,MAAM;4BACnB,IAAI,EAAE,CAAC,GAAG,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC;4BAC5B,KAAK,EAAE,CAAC,GAAG,KAAK,EAAE,QAAQ,CAAC;yBAC5B,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,IAAa;QAC3B,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YAC9B,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACpC,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;oBACnB,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;oBAClF,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;wBAChD,OAAO,IAAI,CAAC,QAAQ,CAAC;oBACvB,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,MAAsB;QAClC,OAAO;YACL,UAAU,EAAE,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI;YACjC,YAAY,EAAE,MAAM,CAAC,YAAY,CAAC,IAAI;YACtC,OAAO,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM;YAC9B,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM;YAC1B,eAAe,EAAE,MAAM,CAAC,eAAe,CAAC,MAAM;YAC9C,cAAc,EAAE,MAAM,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,MAAM;YAC1E,aAAa,EACX,MAAM,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC;gBAC/B,CAAC,CAAC,MAAM,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;oBAChE,MAAM,CAAC,eAAe,CAAC,MAAM;gBAC/B,CAAC,CAAC,CAAC;SACR,CAAC;IACJ,CAAC;IAED,2EAA2E;IAC3E,6CAA6C;IAC7C,2EAA2E;IAE3E;;OAEG;IACK,kBAAkB,CAAC,GAAkB,EAAE,QAAgB;QAC7D,MAAM,MAAM,GAAc,EAAE,CAAC;QAC7B,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;YACtC,IAAI,IAAI,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;gBAC7B,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpB,CAAC;QACH,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,GAAkB,EAAE,QAAgB;QAC7D,MAAM,MAAM,GAAc,EAAE,CAAC;QAC7B,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;YACtC,IAAI,IAAI,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;gBAC7B,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpB,CAAC;QACH,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACK,yBAAyB,CAAC,GAAkB,EAAE,QAAgB,EAAE,QAAgB;QACtF,MAAM,MAAM,GAAc,EAAE,CAAC;QAC7B,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;YACtC,IAAI,IAAI,CAAC,MAAM,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACvD,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpB,CAAC;QACH,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;CACF"}

package/dist/analysis/interprocedural/index.d.ts

@@ -0,0 +1,9 @@
+/**
+ * @fileoverview Interprocedural analysis module exports
+ * @module @nahisaho/musubix-security/analysis/interprocedural
+ * @trace REQ-SEC-001
+ */
+export * from './call-graph-builder.js';
+export * from './taint-propagator.js';
+export * from './dfg-adapter.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/analysis/interprocedural/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/analysis/interprocedural/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,yBAAyB,CAAC;AACxC,cAAc,uBAAuB,CAAC;AACtC,cAAc,kBAAkB,CAAC"}

package/dist/analysis/interprocedural/index.js

@@ -0,0 +1,9 @@
+/**
+ * @fileoverview Interprocedural analysis module exports
+ * @module @nahisaho/musubix-security/analysis/interprocedural
+ * @trace REQ-SEC-001
+ */
+export * from './call-graph-builder.js';
+export * from './taint-propagator.js';
+export * from './dfg-adapter.js';
+//# sourceMappingURL=index.js.map

package/dist/analysis/interprocedural/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/analysis/interprocedural/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,yBAAyB,CAAC;AACxC,cAAc,uBAAuB,CAAC;AACtC,cAAc,kBAAkB,CAAC"}