@nahisaho/musubix-security 2.0.1 → 2.1.0

package/dist/rules/config/config-parser.js

@@ -0,0 +1,376 @@
+/**
+ * @fileoverview Rule Configuration Parser
+ * @module @nahisaho/musubix-security/rules/config/config-parser
+ * @trace TSK-RULE-002
+ */
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { getProfile, PROFILE_STANDARD } from './profiles.js';
+/**
+ * Configuration file names to search
+ */
+const CONFIG_FILE_NAMES = [
+    'musubix-security.config.json',
+    'musubix-security.config.js',
+    '.musubixsecurity.json',
+    '.musubixsecurityrc',
+    '.musubixsecurityrc.json',
+];
+/**
+ * Default configuration
+ */
+export const DEFAULT_CONFIG = {
+    profile: 'standard',
+    rules: {},
+    include: ['**/*.ts', '**/*.tsx', '**/*.js', '**/*.jsx'],
+    exclude: [
+        '**/node_modules/**',
+        '**/dist/**',
+        '**/build/**',
+        '**/*.test.ts',
+        '**/*.spec.ts',
+        '**/*.d.ts',
+    ],
+    severityThreshold: 'info',
+    enableTaintAnalysis: false,
+    enableDFG: false,
+};
+/**
+ * Parse and normalize rule configuration
+ */
+export function parseConfig(raw) {
+    const profile = raw.profile ? getProfile(raw.profile) : PROFILE_STANDARD;
+    // Start with defaults
+    const config = {
+        profile: raw.profile ?? 'standard',
+        rules: {},
+        include: raw.include ?? DEFAULT_CONFIG.include,
+        exclude: raw.exclude ?? DEFAULT_CONFIG.exclude,
+        severityThreshold: raw.severityThreshold ?? profile?.severityThreshold ?? 'info',
+        enableTaintAnalysis: raw.enableTaintAnalysis ?? profile?.enableTaintAnalysis ?? false,
+        enableDFG: raw.enableDFG ?? profile?.enableDFG ?? false,
+    };
+    // Apply profile rules
+    if (profile) {
+        for (const rule of profile.rules) {
+            config.rules[rule.id] = {
+                enabled: rule.enabled ?? true,
+                severity: rule.severity,
+            };
+        }
+    }
+    // Apply raw rule settings
+    if (raw.rules) {
+        for (const [ruleId, settings] of Object.entries(raw.rules)) {
+            const normalized = normalizeRuleSettings(settings);
+            config.rules[ruleId] = {
+                ...config.rules[ruleId],
+                ...normalized,
+            };
+        }
+    }
+    return config;
+}
+/**
+ * Normalize rule settings from various formats
+ */
+function normalizeRuleSettings(settings) {
+    if (typeof settings === 'boolean') {
+        return { enabled: settings };
+    }
+    if (typeof settings === 'string') {
+        // It's a severity level
+        return { enabled: true, severity: settings };
+    }
+    return {
+        enabled: settings.enabled,
+        severity: settings.severity,
+        options: settings.options,
+    };
+}
+/**
+ * Load configuration from file
+ */
+export async function loadConfigFile(filePath) {
+    const errors = [];
+    const warnings = [];
+    try {
+        const content = await fs.promises.readFile(filePath, 'utf-8');
+        const ext = path.extname(filePath).toLowerCase();
+        let raw;
+        if (ext === '.json' || filePath.endsWith('rc')) {
+            raw = JSON.parse(content);
+        }
+        else if (ext === '.js' || ext === '.ts') {
+            // Dynamic import for JS/TS configs
+            const module = await import(filePath);
+            raw = module.default ?? module;
+        }
+        else {
+            errors.push(`Unsupported config file format: ${ext}`);
+            return { config: DEFAULT_CONFIG, configPath: filePath, errors, warnings };
+        }
+        // Handle extends
+        if (raw.extends) {
+            const extendsList = Array.isArray(raw.extends) ? raw.extends : [raw.extends];
+            for (const extend of extendsList) {
+                const extendedResult = await loadExtendedConfig(extend, path.dirname(filePath));
+                if (extendedResult.errors.length > 0) {
+                    errors.push(...extendedResult.errors);
+                }
+                // Merge extended config
+                raw = mergeRawConfigs(extendedResult.raw, raw);
+            }
+        }
+        const config = parseConfig(raw);
+        return { config, configPath: filePath, errors, warnings };
+    }
+    catch (error) {
+        errors.push(`Failed to load config from ${filePath}: ${error instanceof Error ? error.message : String(error)}`);
+        return { config: DEFAULT_CONFIG, configPath: filePath, errors, warnings };
+    }
+}
+/**
+ * Load extended configuration
+ */
+async function loadExtendedConfig(extend, basePath) {
+    const errors = [];
+    // Check if it's a built-in preset
+    if (extend.startsWith('musubix:')) {
+        const presetName = extend.replace('musubix:', '');
+        const profile = getProfile(presetName);
+        if (profile) {
+            return {
+                raw: profileToRawConfig(profile),
+                errors: [],
+            };
+        }
+        errors.push(`Unknown preset: ${extend}`);
+        return { raw: {}, errors };
+    }
+    // It's a file path
+    const extendPath = path.isAbsolute(extend)
+        ? extend
+        : path.resolve(basePath, extend);
+    try {
+        const content = await fs.promises.readFile(extendPath, 'utf-8');
+        const raw = JSON.parse(content);
+        return { raw, errors: [] };
+    }
+    catch (error) {
+        errors.push(`Failed to load extended config from ${extendPath}: ${error instanceof Error ? error.message : String(error)}`);
+        return { raw: {}, errors };
+    }
+}
+/**
+ * Convert profile to raw config
+ */
+function profileToRawConfig(profile) {
+    const rules = {};
+    for (const rule of profile.rules) {
+        rules[rule.id] = {
+            enabled: rule.enabled ?? true,
+            severity: rule.severity,
+        };
+    }
+    return {
+        profile: profile.name,
+        rules,
+        severityThreshold: profile.severityThreshold,
+        enableTaintAnalysis: profile.enableTaintAnalysis,
+        enableDFG: profile.enableDFG,
+    };
+}
+/**
+ * Merge two raw configurations
+ */
+function mergeRawConfigs(base, override) {
+    return {
+        profile: override.profile ?? base.profile,
+        rules: { ...base.rules, ...override.rules },
+        include: override.include ?? base.include,
+        exclude: override.exclude ?? base.exclude,
+        severityThreshold: override.severityThreshold ?? base.severityThreshold,
+        enableTaintAnalysis: override.enableTaintAnalysis ?? base.enableTaintAnalysis,
+        enableDFG: override.enableDFG ?? base.enableDFG,
+    };
+}
+/**
+ * Find configuration file in project
+ */
+export async function findConfigFile(projectRoot) {
+    // Check project root
+    for (const fileName of CONFIG_FILE_NAMES) {
+        const filePath = path.join(projectRoot, fileName);
+        try {
+            await fs.promises.access(filePath);
+            return filePath;
+        }
+        catch {
+            // File doesn't exist
+        }
+    }
+    // Check package.json for "musubix-security" field
+    const packageJsonPath = path.join(projectRoot, 'package.json');
+    try {
+        const content = await fs.promises.readFile(packageJsonPath, 'utf-8');
+        const pkg = JSON.parse(content);
+        if (pkg['musubix-security']) {
+            return packageJsonPath;
+        }
+    }
+    catch {
+        // No package.json or no config field
+    }
+    return undefined;
+}
+/**
+ * Load configuration from project directory
+ */
+export async function loadProjectConfig(projectRoot) {
+    const configPath = await findConfigFile(projectRoot);
+    if (!configPath) {
+        return {
+            config: DEFAULT_CONFIG,
+            errors: [],
+            warnings: ['No configuration file found, using defaults'],
+        };
+    }
+    // Handle package.json embedded config
+    if (configPath.endsWith('package.json')) {
+        try {
+            const content = await fs.promises.readFile(configPath, 'utf-8');
+            const pkg = JSON.parse(content);
+            const raw = pkg['musubix-security'];
+            const config = parseConfig(raw);
+            return { config, configPath, errors: [], warnings: [] };
+        }
+        catch (error) {
+            return {
+                config: DEFAULT_CONFIG,
+                configPath,
+                errors: [`Failed to parse package.json config: ${error instanceof Error ? error.message : String(error)}`],
+                warnings: [],
+            };
+        }
+    }
+    return loadConfigFile(configPath);
+}
+/**
+ * Create configuration builder
+ */
+export function createConfigBuilder() {
+    return new ConfigBuilder();
+}
+/**
+ * Configuration builder for programmatic config creation
+ */
+export class ConfigBuilder {
+    config = { ...DEFAULT_CONFIG };
+    /**
+     * Set profile
+     */
+    withProfile(profileName) {
+        const profile = getProfile(profileName);
+        if (profile) {
+            this.config.profile = profileName;
+            this.config.severityThreshold = profile.severityThreshold;
+            this.config.enableTaintAnalysis = profile.enableTaintAnalysis;
+            this.config.enableDFG = profile.enableDFG;
+            // Add profile rules
+            for (const rule of profile.rules) {
+                this.config.rules[rule.id] = {
+                    enabled: rule.enabled ?? true,
+                    severity: rule.severity,
+                };
+            }
+        }
+        return this;
+    }
+    /**
+     * Set include patterns
+     */
+    withInclude(patterns) {
+        this.config.include = patterns;
+        return this;
+    }
+    /**
+     * Set exclude patterns
+     */
+    withExclude(patterns) {
+        this.config.exclude = patterns;
+        return this;
+    }
+    /**
+     * Set severity threshold
+     */
+    withSeverityThreshold(severity) {
+        this.config.severityThreshold = severity;
+        return this;
+    }
+    /**
+     * Enable/disable a rule
+     */
+    withRule(ruleId, enabled, severity) {
+        this.config.rules[ruleId] = { enabled, severity };
+        return this;
+    }
+    /**
+     * Enable taint analysis
+     */
+    withTaintAnalysis(enabled = true) {
+        this.config.enableTaintAnalysis = enabled;
+        return this;
+    }
+    /**
+     * Enable DFG analysis
+     */
+    withDFG(enabled = true) {
+        this.config.enableDFG = enabled;
+        return this;
+    }
+    /**
+     * Build the configuration
+     */
+    build() {
+        return { ...this.config };
+    }
+}
+/**
+ * Validate configuration
+ */
+export function validateConfig(config) {
+    const errors = [];
+    // Validate profile
+    if (config.profile && !getProfile(config.profile)) {
+        errors.push(`Unknown profile: ${config.profile}`);
+    }
+    // Validate severity threshold
+    const validSeverities = ['critical', 'high', 'medium', 'low', 'info'];
+    if (config.severityThreshold && !validSeverities.includes(config.severityThreshold)) {
+        errors.push(`Invalid severity threshold: ${config.severityThreshold}`);
+    }
+    // Validate rule severities
+    for (const [ruleId, ruleConfig] of Object.entries(config.rules)) {
+        if (ruleConfig.severity && !validSeverities.includes(ruleConfig.severity)) {
+            errors.push(`Invalid severity for rule ${ruleId}: ${ruleConfig.severity}`);
+        }
+    }
+    return errors;
+}
+/**
+ * Write configuration to file
+ */
+export async function writeConfigFile(filePath, config) {
+    const content = JSON.stringify({
+        profile: config.profile,
+        rules: config.rules,
+        include: config.include,
+        exclude: config.exclude,
+        severityThreshold: config.severityThreshold,
+        enableTaintAnalysis: config.enableTaintAnalysis,
+        enableDFG: config.enableDFG,
+    }, null, 2);
+    await fs.promises.writeFile(filePath, content, 'utf-8');
+}
+//# sourceMappingURL=config-parser.js.map

package/dist/rules/config/config-parser.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-parser.js","sourceRoot":"","sources":["../../../src/rules/config/config-parser.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAElC,OAAO,EAAE,UAAU,EAAE,gBAAgB,EAAoB,MAAM,eAAe,CAAC;AAsC/E;;GAEG;AACH,MAAM,iBAAiB,GAAG;IACxB,8BAA8B;IAC9B,4BAA4B;IAC5B,uBAAuB;IACvB,oBAAoB;IACpB,yBAAyB;CAC1B,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,cAAc,GAAe;IACxC,OAAO,EAAE,UAAU;IACnB,KAAK,EAAE,EAAE;IACT,OAAO,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,UAAU,CAAC;IACvD,OAAO,EAAE;QACP,oBAAoB;QACpB,YAAY;QACZ,aAAa;QACb,cAAc;QACd,cAAc;QACd,WAAW;KACZ;IACD,iBAAiB,EAAE,MAAM;IACzB,mBAAmB,EAAE,KAAK;IAC1B,SAAS,EAAE,KAAK;CACjB,CAAC;AAYF;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,GAAkB;IAC5C,MAAM,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,gBAAgB,CAAC;IAEzE,sBAAsB;IACtB,MAAM,MAAM,GAAe;QACzB,OAAO,EAAE,GAAG,CAAC,OAAO,IAAI,UAAU;QAClC,KAAK,EAAE,EAAE;QACT,OAAO,EAAE,GAAG,CAAC,OAAO,IAAI,cAAc,CAAC,OAAO;QAC9C,OAAO,EAAE,GAAG,CAAC,OAAO,IAAI,cAAc,CAAC,OAAO;QAC9C,iBAAiB,EAAE,GAAG,CAAC,iBAAiB,IAAI,OAAO,EAAE,iBAAiB,IAAI,MAAM;QAChF,mBAAmB,EAAE,GAAG,CAAC,mBAAmB,IAAI,OAAO,EAAE,mBAAmB,IAAI,KAAK;QACrF,SAAS,EAAE,GAAG,CAAC,SAAS,IAAI,OAAO,EAAE,SAAS,IAAI,KAAK;KACxD,CAAC;IAEF,sBAAsB;IACtB,IAAI,OAAO,EAAE,CAAC;QACZ,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YACjC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,GAAG;gBACtB,OAAO,EAAE,IAAI,CAAC,OAAO,IAAI,IAAI;gBAC7B,QAAQ,EAAE,IAAI,CAAC,QAAQ;aACxB,CAAC;QACJ,CAAC;IACH,CAAC;IAED,0BAA0B;IAC1B,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;QACd,KAAK,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YAC3D,MAAM,UAAU,GAAG,qBAAqB,CAAC,QAAQ,CAAC,CAAC;YACnD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG;gBACrB,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC;gBACvB,GAAG,UAAU;aACd,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAC5B,QAAkD;IAElD,IAAI,OAAO,QAAQ,KAAK,SAAS,EAAE,CAAC;QAClC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC;IAC/B,CAAC;IACD,IAAI,OAAO,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,wBAAwB;QACxB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAwB,EAAE,CAAC;IAC/D,CAAC;IACD,OAAO;QACL,OAAO,EAAE,QAAQ,CAAC,OAAO;QACzB,QAAQ,EAAE,QAAQ,CAAC,QAAQ;QAC3B,OAAO,EAAE,QAAQ,CAAC,OAAO;KAC1B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,QAAgB;IACnD,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC9D,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;QAEjD,IAAI,GAAkB,CAAC;QAEvB,IAAI,GAAG,KAAK,OAAO,IAAI,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/C,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC5B,CAAC;aAAM,IAAI,GAAG,KAAK,KAAK,IAAI,GAAG,KAAK,KAAK,EAAE,CAAC;YAC1C,mCAAmC;YACnC,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC;YACtC,GAAG,GAAG,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC;QACjC,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,mCAAmC,GAAG,EAAE,CAAC,CAAC;YACtD,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;QAC5E,CAAC;QAED,iBAAiB;QACjB,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;YAChB,MAAM,WAAW,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC7E,KAAK,MAAM,MAAM,IAAI,WAAW,EAAE,CAAC;gBACjC,MAAM,cAAc,GAAG,MAAM,kBAAkB,CAAC,MAAM,EAAE,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;gBAChF,IAAI,cAAc,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACrC,MAAM,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;gBACxC,CAAC;gBACD,wBAAwB;gBACxB,GAAG,GAAG,eAAe,CAAC,cAAc,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;YACjD,CAAC;QACH,CAAC;QAED,MAAM,MAAM,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;QAEhC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;IAC5D,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,IAAI,CACT,8BAA8B,QAAQ,KAAK,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACpG,CAAC;QACF,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;IAC5E,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,kBAAkB,CAC/B,MAAc,EACd,QAAgB;IAEhB,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,kCAAkC;IAClC,IAAI,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAClC,MAAM,UAAU,GAAG,MAAM,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC;QAClD,MAAM,OAAO,GAAG,UAAU,CAAC,UAAU,CAAC,CAAC;QACvC,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO;gBACL,GAAG,EAAE,kBAAkB,CAAC,OAAO,CAAC;gBAChC,MAAM,EAAE,EAAE;aACX,CAAC;QACJ,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,mBAAmB,MAAM,EAAE,CAAC,CAAC;QACzC,OAAO,EAAE,GAAG,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC;IAC7B,CAAC;IAED,mBAAmB;IACnB,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;QACxC,CAAC,CAAC,MAAM;QACR,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAEnC,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QAChE,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAkB,CAAC;QACjD,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;IAC7B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,IAAI,CACT,uCAAuC,UAAU,KAAK,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAC/G,CAAC;QACF,OAAO,EAAE,GAAG,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC;IAC7B,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB,CAAC,OAAoB;IAC9C,MAAM,KAAK,GAAoC,EAAE,CAAC;IAClD,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;QACjC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,GAAG;YACf,OAAO,EAAE,IAAI,CAAC,OAAO,IAAI,IAAI;YAC7B,QAAQ,EAAE,IAAI,CAAC,QAAQ;SACxB,CAAC;IACJ,CAAC;IAED,OAAO;QACL,OAAO,EAAE,OAAO,CAAC,IAAI;QACrB,KAAK;QACL,iBAAiB,EAAE,OAAO,CAAC,iBAAiB;QAC5C,mBAAmB,EAAE,OAAO,CAAC,mBAAmB;QAChD,SAAS,EAAE,OAAO,CAAC,SAAS;KAC7B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,IAAmB,EAAE,QAAuB;IACnE,OAAO;QACL,OAAO,EAAE,QAAQ,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO;QACzC,KAAK,EAAE,EAAE,GAAG,IAAI,CAAC,KAAK,EAAE,GAAG,QAAQ,CAAC,KAAK,EAAE;QAC3C,OAAO,EAAE,QAAQ,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO;QACzC,OAAO,EAAE,QAAQ,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO;QACzC,iBAAiB,EAAE,QAAQ,CAAC,iBAAiB,IAAI,IAAI,CAAC,iBAAiB;QACvE,mBAAmB,EAAE,QAAQ,CAAC,mBAAmB,IAAI,IAAI,CAAC,mBAAmB;QAC7E,SAAS,EAAE,QAAQ,CAAC,SAAS,IAAI,IAAI,CAAC,SAAS;KAChD,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,WAAmB;IACtD,qBAAqB;IACrB,KAAK,MAAM,QAAQ,IAAI,iBAAiB,EAAE,CAAC;QACzC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;QAClD,IAAI,CAAC;YACH,MAAM,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;YACnC,OAAO,QAAQ,CAAC;QAClB,CAAC;QAAC,MAAM,CAAC;YACP,qBAAqB;QACvB,CAAC;IACH,CAAC;IAED,kDAAkD;IAClD,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IAC/D,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC;QACrE,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAChC,IAAI,GAAG,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC5B,OAAO,eAAe,CAAC;QACzB,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,qCAAqC;IACvC,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,WAAmB;IACzD,MAAM,UAAU,GAAG,MAAM,cAAc,CAAC,WAAW,CAAC,CAAC;IAErD,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO;YACL,MAAM,EAAE,cAAc;YACtB,MAAM,EAAE,EAAE;YACV,QAAQ,EAAE,CAAC,6CAA6C,CAAC;SAC1D,CAAC;IACJ,CAAC;IAED,sCAAsC;IACtC,IAAI,UAAU,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;QACxC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;YAChE,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAChC,MAAM,GAAG,GAAG,GAAG,CAAC,kBAAkB,CAAkB,CAAC;YACrD,MAAM,MAAM,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;YAChC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC;QAC1D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,MAAM,EAAE,cAAc;gBACtB,UAAU;gBACV,MAAM,EAAE,CAAC,wCAAwC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC1G,QAAQ,EAAE,EAAE;aACb,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,cAAc,CAAC,UAAU,CAAC,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB;IACjC,OAAO,IAAI,aAAa,EAAE,CAAC;AAC7B,CAAC;AAED;;GAEG;AACH,MAAM,OAAO,aAAa;IAChB,MAAM,GAAe,EAAE,GAAG,cAAc,EAAE,CAAC;IAEnD;;OAEG;IACH,WAAW,CAAC,WAAmB;QAC7B,MAAM,OAAO,GAAG,UAAU,CAAC,WAAW,CAAC,CAAC;QACxC,IAAI,OAAO,EAAE,CAAC;YACZ,IAAI,CAAC,MAAM,CAAC,OAAO,GAAG,WAAW,CAAC;YAClC,IAAI,CAAC,MAAM,CAAC,iBAAiB,GAAG,OAAO,CAAC,iBAAiB,CAAC;YAC1D,IAAI,CAAC,MAAM,CAAC,mBAAmB,GAAG,OAAO,CAAC,mBAAmB,CAAC;YAC9D,IAAI,CAAC,MAAM,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;YAE1C,oBAAoB;YACpB,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;gBACjC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,GAAG;oBAC3B,OAAO,EAAE,IAAI,CAAC,OAAO,IAAI,IAAI;oBAC7B,QAAQ,EAAE,IAAI,CAAC,QAAQ;iBACxB,CAAC;YACJ,CAAC;QACH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,WAAW,CAAC,QAAkB;QAC5B,IAAI,CAAC,MAAM,CAAC,OAAO,GAAG,QAAQ,CAAC;QAC/B,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,WAAW,CAAC,QAAkB;QAC5B,IAAI,CAAC,MAAM,CAAC,OAAO,GAAG,QAAQ,CAAC;QAC/B,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,qBAAqB,CAAC,QAAsB;QAC1C,IAAI,CAAC,MAAM,CAAC,iBAAiB,GAAG,QAAQ,CAAC;QACzC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,QAAQ,CAAC,MAAc,EAAE,OAAgB,EAAE,QAAuB;QAChE,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC;QAClD,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,UAAmB,IAAI;QACvC,IAAI,CAAC,MAAM,CAAC,mBAAmB,GAAG,OAAO,CAAC;QAC1C,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,OAAO,CAAC,UAAmB,IAAI;QAC7B,IAAI,CAAC,MAAM,CAAC,SAAS,GAAG,OAAO,CAAC;QAChC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,KAAK;QACH,OAAO,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;IAC5B,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,MAAkB;IAC/C,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,mBAAmB;IACnB,IAAI,MAAM,CAAC,OAAO,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;QAClD,MAAM,CAAC,IAAI,CAAC,oBAAoB,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,8BAA8B;IAC9B,MAAM,eAAe,GAAmB,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;IACtF,IAAI,MAAM,CAAC,iBAAiB,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,MAAM,CAAC,iBAAiB,CAAC,EAAE,CAAC;QACpF,MAAM,CAAC,IAAI,CAAC,+BAA+B,MAAM,CAAC,iBAAiB,EAAE,CAAC,CAAC;IACzE,CAAC;IAED,2BAA2B;IAC3B,KAAK,MAAM,CAAC,MAAM,EAAE,UAAU,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;QAChE,IAAI,UAAU,CAAC,QAAQ,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC1E,MAAM,CAAC,IAAI,CAAC,6BAA6B,MAAM,KAAK,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC7E,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,QAAgB,EAChB,MAAkB;IAElB,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAC5B;QACE,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,iBAAiB,EAAE,MAAM,CAAC,iBAAiB;QAC3C,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;QAC/C,SAAS,EAAE,MAAM,CAAC,SAAS;KAC5B,EACD,IAAI,EACJ,CAAC,CACF,CAAC;IAEF,MAAM,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,QAAQ,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;AAC1D,CAAC"}

package/dist/rules/config/index.d.ts

@@ -0,0 +1,8 @@
+/**
+ * @fileoverview Rule Configuration Module
+ * @module @nahisaho/musubix-security/rules/config
+ * @trace TSK-RULE-002
+ */
+export { parseConfig, loadConfigFile, findConfigFile, loadProjectConfig, createConfigBuilder, validateConfig, writeConfigFile, ConfigBuilder, DEFAULT_CONFIG, type RawRuleConfig, type RawRuleSettings, type ParseResult, type ConfigFormat, } from './config-parser.js';
+export { getProfile, getProfileNames, hasProfile, getProfileRuleIds, mergeProfileConfig, PROFILES, PROFILE_MINIMAL, PROFILE_STANDARD, PROFILE_STRICT, PROFILE_OWASP, PROFILE_CWE, type RuleProfile, type ProfileRuleConfig, } from './profiles.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/rules/config/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/rules/config/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EACL,WAAW,EACX,cAAc,EACd,cAAc,EACd,iBAAiB,EACjB,mBAAmB,EACnB,cAAc,EACd,eAAe,EACf,aAAa,EACb,cAAc,EACd,KAAK,aAAa,EAClB,KAAK,eAAe,EACpB,KAAK,WAAW,EAChB,KAAK,YAAY,GAClB,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EACL,UAAU,EACV,eAAe,EACf,UAAU,EACV,iBAAiB,EACjB,kBAAkB,EAClB,QAAQ,EACR,eAAe,EACf,gBAAgB,EAChB,cAAc,EACd,aAAa,EACb,WAAW,EACX,KAAK,WAAW,EAChB,KAAK,iBAAiB,GACvB,MAAM,eAAe,CAAC"}

package/dist/rules/config/index.js

@@ -0,0 +1,8 @@
+/**
+ * @fileoverview Rule Configuration Module
+ * @module @nahisaho/musubix-security/rules/config
+ * @trace TSK-RULE-002
+ */
+export { parseConfig, loadConfigFile, findConfigFile, loadProjectConfig, createConfigBuilder, validateConfig, writeConfigFile, ConfigBuilder, DEFAULT_CONFIG, } from './config-parser.js';
+export { getProfile, getProfileNames, hasProfile, getProfileRuleIds, mergeProfileConfig, PROFILES, PROFILE_MINIMAL, PROFILE_STANDARD, PROFILE_STRICT, PROFILE_OWASP, PROFILE_CWE, } from './profiles.js';
+//# sourceMappingURL=index.js.map

package/dist/rules/config/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/rules/config/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EACL,WAAW,EACX,cAAc,EACd,cAAc,EACd,iBAAiB,EACjB,mBAAmB,EACnB,cAAc,EACd,eAAe,EACf,aAAa,EACb,cAAc,GAKf,MAAM,oBAAoB,CAAC;AAE5B,OAAO,EACL,UAAU,EACV,eAAe,EACf,UAAU,EACV,iBAAiB,EACjB,kBAAkB,EAClB,QAAQ,EACR,eAAe,EACf,gBAAgB,EAChB,cAAc,EACd,aAAa,EACb,WAAW,GAGZ,MAAM,eAAe,CAAC"}

package/dist/rules/config/profiles.d.ts

@@ -0,0 +1,85 @@
+/**
+ * @fileoverview Rule Profiles
+ * @module @nahisaho/musubix-security/rules/config/profiles
+ * @trace TSK-RULE-002
+ */
+import type { RuleSeverity } from '../types.js';
+/**
+ * Profile definition
+ */
+export interface RuleProfile {
+    /** Profile name */
+    name: string;
+    /** Profile description */
+    description: string;
+    /** Rules included in this profile */
+    rules: ProfileRuleConfig[];
+    /** Severity threshold for this profile */
+    severityThreshold: RuleSeverity;
+    /** Whether to enable taint analysis */
+    enableTaintAnalysis: boolean;
+    /** Whether to enable DFG analysis */
+    enableDFG: boolean;
+}
+/**
+ * Rule configuration in profile
+ */
+export interface ProfileRuleConfig {
+    /** Rule ID */
+    id: string;
+    /** Whether enabled (default: true) */
+    enabled?: boolean;
+    /** Severity override */
+    severity?: RuleSeverity;
+}
+/**
+ * Minimal profile - Essential security checks only
+ * Best for: Quick scans, CI pipelines with time constraints
+ */
+export declare const PROFILE_MINIMAL: RuleProfile;
+/**
+ * Standard profile - Balanced security coverage
+ * Best for: Regular development, PR checks
+ */
+export declare const PROFILE_STANDARD: RuleProfile;
+/**
+ * Strict profile - Comprehensive security analysis
+ * Best for: Security audits, pre-release checks
+ */
+export declare const PROFILE_STRICT: RuleProfile;
+/**
+ * OWASP-only profile - OWASP Top 10 focus
+ */
+export declare const PROFILE_OWASP: RuleProfile;
+/**
+ * CWE-only profile - CWE Top 25 focus
+ */
+export declare const PROFILE_CWE: RuleProfile;
+/**
+ * All available profiles
+ */
+export declare const PROFILES: Record<string, RuleProfile>;
+/**
+ * Get profile by name
+ */
+export declare function getProfile(name: string): RuleProfile | undefined;
+/**
+ * Get all profile names
+ */
+export declare function getProfileNames(): string[];
+/**
+ * Check if profile exists
+ */
+export declare function hasProfile(name: string): boolean;
+/**
+ * Get rule IDs from profile
+ */
+export declare function getProfileRuleIds(profileName: string): string[];
+/**
+ * Merge profile with custom config
+ */
+export declare function mergeProfileConfig(profileName: string, customRules?: Record<string, {
+    enabled?: boolean;
+    severity?: RuleSeverity;
+}>): ProfileRuleConfig[];
+//# sourceMappingURL=profiles.d.ts.map

package/dist/rules/config/profiles.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"profiles.d.ts","sourceRoot":"","sources":["../../../src/rules/config/profiles.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAEhD;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,0BAA0B;IAC1B,WAAW,EAAE,MAAM,CAAC;IACpB,qCAAqC;IACrC,KAAK,EAAE,iBAAiB,EAAE,CAAC;IAC3B,0CAA0C;IAC1C,iBAAiB,EAAE,YAAY,CAAC;IAChC,uCAAuC;IACvC,mBAAmB,EAAE,OAAO,CAAC;IAC7B,qCAAqC;IACrC,SAAS,EAAE,OAAO,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,cAAc;IACd,EAAE,EAAE,MAAM,CAAC;IACX,sCAAsC;IACtC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,wBAAwB;IACxB,QAAQ,CAAC,EAAE,YAAY,CAAC;CACzB;AAED;;;GAGG;AACH,eAAO,MAAM,eAAe,EAAE,WAmB7B,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,gBAAgB,EAAE,WA6C9B,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,cAAc,EAAE,WAqB5B,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,aAAa,EAAE,WAkB3B,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,WAAW,EAAE,WAiCzB,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,WAAW,CAMhD,CAAC;AAEF;;GAEG;AACH,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW,GAAG,SAAS,CAEhE;AAED;;GAEG;AACH,wBAAgB,eAAe,IAAI,MAAM,EAAE,CAE1C;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAEhD;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM,EAAE,CAI/D;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,WAAW,EAAE,MAAM,EACnB,WAAW,GAAE,MAAM,CAAC,MAAM,EAAE;IAAE,OAAO,CAAC,EAAE,OAAO,CAAC;IAAC,QAAQ,CAAC,EAAE,YAAY,CAAA;CAAE,CAAM,GAC/E,iBAAiB,EAAE,CAsBrB"}