@nahisaho/musubix-security 2.0.1 → 2.1.0

package/dist/analysis/interprocedural/taint-propagator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"taint-propagator.js","sourceRoot":"","sources":["../../../src/analysis/interprocedural/taint-propagator.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAgMH;;;GAGG;AACH,MAAM,OAAO,eAAe;IAClB,OAAO,CAAmC;IAC1C,iBAAiB,GAA8B,IAAI,GAAG,EAAE,CAAC;IACzD,OAAO,CAAqB;IAC5B,KAAK,CAAmB;IACxB,UAAU,CAAwB;IAE1C,YACE,OAA2B,EAC3B,KAAuB,EACvB,UAAiC,EACjC,UAAkC,EAAE;QAEpC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,OAAO,GAAG;YACb,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,EAAE;YAChC,kBAAkB,EAAE,OAAO,CAAC,kBAAkB,IAAI,KAAK;YACvD,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,GAAG;YAC3C,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,EAAE;YAC1C,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,EAAE;YACtC,gBAAgB,EAAE,OAAO,CAAC,gBAAgB,IAAI,EAAE;SACjD,CAAC;QAEF,2BAA2B;QAC3B,IAAI,CAAC,OAAO,GAAG,CAAC,GAAG,IAAI,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QAChE,IAAI,CAAC,KAAK,GAAG,CAAC,GAAG,IAAI,CAAC,KAAK,EAAE,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;QAC1D,IAAI,CAAC,UAAU,GAAG,CAAC,GAAG,IAAI,CAAC,UAAU,EAAE,GAAG,IAAI,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;IAC3E,CAAC;IAED;;OAEG;IACH,OAAO,CACL,SAAoB,EACpB,eAAgC,EAChC,gBAAoD;QAEpD,MAAM,QAAQ,GAAmB,EAAE,CAAC;QAEpC,2BAA2B;QAC3B,IAAI,CAAC,sBAAsB,CAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC;QAEzD,uDAAuD;QACvD,KAAK,MAAM,cAAc,IAAI,eAAe,EAAE,CAAC;YAC7C,MAAM,UAAU,GAAG,IAAI,CAAC,cAAc,CACpC,SAAS,EACT,cAAc,EACd,IAAI,GAAG,EAAU,EACjB,EAAE,EACF,GAAG,EACH,CAAC,CACF,CAAC;YAEF,2CAA2C;YAC3C,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;gBAC9B,MAAM,OAAO,GAAG,IAAI,CAAC,qBAAqB,CAAC,IAAI,EAAE,cAAc,CAAC,CAAC;gBACjE,IAAI,OAAO,IAAI,OAAO,CAAC,UAAU,IAAI,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;oBAChE,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBACzB,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC;IAC5C,CAAC;IAED;;OAEG;IACK,sBAAsB,CAC5B,SAAoB,EACpB,gBAAoD;QAEpD,KAAK,MAAM,CAAC,MAAM,EAAE,IAAI,CAAC,IAAI,SAAS,CAAC,KAAK,EAAE,CAAC;YAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,oBAAoB,CAAC,IAAI,EAAE,SAAS,EAAE,gBAAgB,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC;YAC1F,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC9C,CAAC;IACH,CAAC;IAED;;OAEG;IACK,oBAAoB,CAC1B,IAAmB,EACnB,UAAqB,EACrB,OAA8B;QAE9B,MAAM,OAAO,GAAiB;YAC5B,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,sBAAsB,EAAE,EAAE;YAC1B,WAAW,EAAE,KAAK;YAClB,mBAAmB,EAAE,EAAE;YACvB,MAAM,EAAE,KAAK;YACb,QAAQ,EAAE,KAAK;SAChB,CAAC;QAEF,sCAAsC;QACtC,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAC5C,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAC5C,CAAC;QACF,IAAI,aAAa,EAAE,CAAC;YAClB,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;YACxB,OAAO,CAAC,UAAU,GAAG,aAAa,CAAC,EAAE,CAAC;QACxC,CAAC;QAED,oCAAoC;QACpC,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YAC9B,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACpC,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM;oBAC5B,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC;oBACnE,CAAC,CAAC,EAAE,CAAC;gBACP,MAAM,UAAU,GAAG,OAAO,CAAC,QAAQ;oBACjC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC;oBACzE,CAAC,CAAC,EAAE,CAAC;gBAEP,MAAM,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;gBAClF,MAAM,eAAe,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;gBAEvF,IAAI,aAAa,IAAI,eAAe,EAAE,CAAC;oBACrC,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;oBACtB,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC;oBACrC,MAAM;gBACR,CAAC;YACH,CAAC;QACH,CAAC;QAED,yCAAyC;QACzC,MAAM,gBAAgB,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAClD,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,WAAW,CAAC,CACtE,CAAC;QACF,IAAI,gBAAgB,EAAE,CAAC;YACrB,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;YAC3B,OAAO,CAAC,mBAAmB,GAAG,gBAAgB,CAAC,QAAQ,CAAC;QAC1D,CAAC;QAED,oDAAoD;QACpD,IAAI,OAAO,EAAE,CAAC;YACZ,KAAK,MAAM,CAAC,QAAQ,EAAE,UAAU,CAAC,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC;gBAC7D,IAAI,OAAO,CAAC,WAAW,EAAE,SAAS,IAAI,UAAU,CAAC,SAAS,EAAE,CAAC;oBAC3D,OAAO,CAAC,sBAAsB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBAChD,CAAC;YACH,CAAC;QACH,CAAC;aAAM,CAAC;YACN,iEAAiE;YACjE,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC;QACpE,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;OAEG;IACK,cAAc,CACpB,SAAoB,EACpB,eAA8B,EAC9B,OAAoB,EACpB,IAAqB,EACrB,UAAkB,EAClB,KAAa;QAEb,IAAI,KAAK,IAAI,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;YACnC,OAAO,CAAC,IAAI,CAAC,CAAC;QAChB,CAAC;QAED,MAAM,QAAQ,GAAG,GAAG,eAAe,CAAC,MAAM,IAAI,eAAe,CAAC,UAAU,EAAE,CAAC;QAC3E,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,IAAI,CAAC,CAAC;QAChB,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAEtB,MAAM,OAAO,GAAsB,EAAE,CAAC;QACtC,MAAM,OAAO,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QAEnE,iDAAiD;QACjD,IAAI,OAAO,EAAE,MAAM,EAAE,CAAC;YACpB,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACrB,CAAC;QAED,0CAA0C;QAC1C,MAAM,aAAa,GAAG,SAAS,CAAC,aAAa,CAAC,GAAG,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QAEhF,KAAK,MAAM,IAAI,IAAI,aAAa,EAAE,CAAC;YACjC,+CAA+C;YAC/C,MAAM,QAAQ,GAAG,IAAI,CAAC,mBAAmB,CAAC,IAAI,EAAE,eAAe,CAAC,CAAC;YACjE,IAAI,QAAQ,KAAK,CAAC,CAAC;gBAAE,SAAS;YAE9B,MAAM,UAAU,GAAG,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACtD,MAAM,aAAa,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAChE,IAAI,CAAC,UAAU,IAAI,CAAC,aAAa;gBAAE,SAAS;YAE5C,yCAAyC;YACzC,MAAM,aAAa,GAAkB;gBACnC,EAAE,EAAE,QAAQ,IAAI,CAAC,MAAM,EAAE;gBACzB,IAAI,EAAE,eAAe;gBACrB,EAAE,EAAE;oBACF,MAAM,EAAE,IAAI,CAAC,QAAQ;oBACrB,UAAU,EAAE,SAAS,QAAQ,EAAE;oBAC/B,IAAI,EAAE,IAAI,CAAC,IAAI;oBACf,MAAM,EAAE,IAAI,CAAC,MAAM;oBACnB,QAAQ,EAAE,IAAI,CAAC,QAAQ;iBACxB;gBACD,QAAQ,EAAE,WAAW;gBACrB,QAAQ,EAAE,IAAI;gBACd,iBAAiB,EAAE,EAAE;gBACrB,UAAU,EAAE,UAAU,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;aAC1D,CAAC;YAEF,yBAAyB;YACzB,IAAI,aAAa,CAAC,WAAW,EAAE,CAAC;gBAC9B,aAAa,CAAC,iBAAiB,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YACxD,CAAC;YAED,MAAM,OAAO,GAAG,CAAC,GAAG,IAAI,EAAE,aAAa,CAAC,CAAC;YAEzC,sCAAsC;YACtC,IAAI,aAAa,CAAC,MAAM,EAAE,CAAC;gBACzB,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACxB,CAAC;YAED,yDAAyD;YACzD,IAAI,aAAa,CAAC,sBAAsB,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5D,MAAM,cAAc,GAAkB;oBACpC,MAAM,EAAE,IAAI,CAAC,QAAQ;oBACrB,UAAU,EAAE,QAAQ;oBACpB,IAAI,EAAE,IAAI,CAAC,IAAI;oBACf,MAAM,EAAE,IAAI,CAAC,MAAM;oBACnB,QAAQ,EAAE,IAAI,CAAC,QAAQ;iBACxB,CAAC;gBAEF,MAAM,cAAc,GAAkB;oBACpC,EAAE,EAAE,QAAQ,OAAO,CAAC,MAAM,EAAE;oBAC5B,IAAI,EAAE,aAAa,CAAC,EAAE;oBACtB,EAAE,EAAE,cAAc;oBAClB,QAAQ,EAAE,QAAQ;oBAClB,iBAAiB,EAAE,aAAa,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE;oBACrE,UAAU,EAAE,aAAa,CAAC,UAAU;iBACrC,CAAC;gBAEF,MAAM,cAAc,GAAG,IAAI,CAAC,cAAc,CACxC,SAAS,EACT,cAAc,EACd,IAAI,GAAG,CAAC,OAAO,CAAC,EAChB,CAAC,GAAG,OAAO,EAAE,cAAc,CAAC,EAC5B,cAAc,CAAC,UAAU,EACzB,KAAK,GAAG,CAAC,CACV,CAAC;gBAEF,OAAO,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,CAAC;YAClC,CAAC;QACH,CAAC;QAED,oDAAoD;QACpD,IAAI,eAAe,CAAC,UAAU,KAAK,QAAQ,EAAE,CAAC;YAC5C,MAAM,aAAa,GAAG,SAAS,CAAC,aAAa,CAAC,GAAG,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YAEhF,KAAK,MAAM,IAAI,IAAI,aAAa,EAAE,CAAC;gBACjC,MAAM,cAAc,GAAkB;oBACpC,MAAM,EAAE,IAAI,CAAC,QAAQ;oBACrB,UAAU,EAAE,eAAe,IAAI,CAAC,IAAI,EAAE;oBACtC,IAAI,EAAE,IAAI,CAAC,IAAI;oBACf,MAAM,EAAE,IAAI,CAAC,MAAM;oBACnB,QAAQ,EAAE,IAAI,CAAC,QAAQ;iBACxB,CAAC;gBAEF,MAAM,cAAc,GAAkB;oBACpC,EAAE,EAAE,QAAQ,IAAI,CAAC,MAAM,EAAE;oBACzB,IAAI,EAAE,eAAe;oBACrB,EAAE,EAAE,cAAc;oBAClB,QAAQ,EAAE,aAAa;oBACvB,QAAQ,EAAE,IAAI;oBACd,iBAAiB,EAAE,EAAE;oBACrB,UAAU,EAAE,UAAU,GAAG,GAAG;iBAC7B,CAAC;gBAEF,MAAM,cAAc,GAAG,IAAI,CAAC,cAAc,CACxC,SAAS,EACT,cAAc,EACd,IAAI,GAAG,CAAC,OAAO,CAAC,EAChB,CAAC,GAAG,IAAI,EAAE,cAAc,CAAC,EACzB,cAAc,CAAC,UAAU,EACzB,KAAK,GAAG,CAAC,CACV,CAAC;gBAEF,OAAO,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,CAAC;YAClC,CAAC;QACH,CAAC;QAED,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACrB,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;OAEG;IACK,mBAAmB,CACzB,IAAmB,EACnB,eAA8B;QAE9B,yEAAyE;QACzE,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC/C,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,eAAe,CAAC,UAAU,CAAC,EAAE,CAAC;gBAC3D,OAAO,CAAC,CAAC;YACX,CAAC;QACH,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;IACZ,CAAC;IAED;;OAEG;IACK,qBAAqB,CAC3B,QAAyB,EACzB,cAA6B;QAE7B,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QAEvC,MAAM,QAAQ,GAAG,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAC/C,MAAM,OAAO,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC;QAE/D,IAAI,CAAC,OAAO,EAAE,MAAM;YAAE,OAAO,IAAI,CAAC;QAElC,iCAAiC;QACjC,MAAM,gBAAgB,GAAa,EAAE,CAAC;QACtC,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;YAC5B,gBAAgB,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,iBAAiB,CAAC,CAAC;QACnD,CAAC;QAED,2DAA2D;QAC3D,MAAM,YAAY,GAAG,OAAO,CAAC,YAAa,CAAC;QAC3C,MAAM,oBAAoB,GAAG,IAAI,CAAC,yBAAyB,CAAC,gBAAgB,EAAE,YAAY,CAAC,CAAC;QAE5F,+BAA+B;QAC/B,MAAM,UAAU,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,GAAG,IAAI,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;QAEhF,qCAAqC;QACrC,IAAI,oBAAoB,IAAI,UAAU,GAAG,GAAG;YAAE,OAAO,IAAI,CAAC;QAE1D,MAAM,IAAI,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC;QAC5D,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,YAAY,CAAC,CAAC;QAEjE,OAAO;YACL,EAAE,EAAE,WAAW,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE;YACtE,QAAQ,EAAE,IAAI,CAAC,iBAAiB,CAAC,YAAY,EAAE,oBAAoB,EAAE,UAAU,CAAC;YAChF,KAAK,EAAE,aAAa,YAAY,gBAAgB;YAChD,WAAW,EAAE,IAAI,CAAC,mBAAmB,CAAC,YAAY,EAAE,QAAQ,EAAE,gBAAgB,CAAC;YAC/E,GAAG,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;YAC1B,MAAM,EAAE;gBACN,EAAE,EAAE,OAAO,cAAc,CAAC,MAAM,EAAE;gBAClC,IAAI,EAAE,cAAc,CAAC,UAAU;gBAC/B,QAAQ,EAAE;oBACR,IAAI,EAAE,cAAc,CAAC,QAAQ;oBAC7B,IAAI,EAAE,cAAc,CAAC,IAAI;oBACzB,MAAM,EAAE,cAAc,CAAC,MAAM;iBAC9B;gBACD,IAAI,EAAE,YAAY;gBAClB,UAAU,EAAE,GAAG;aAChB;YACD,IAAI,EAAE;gBACJ,EAAE,EAAE,QAAQ,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE;gBAChC,IAAI,EAAE,IAAI,EAAE,MAAM,IAAI,SAAS;gBAC/B,QAAQ,EAAE;oBACR,IAAI,EAAE,QAAQ,CAAC,EAAE,CAAC,QAAQ;oBAC1B,IAAI,EAAE,QAAQ,CAAC,EAAE,CAAC,IAAI;oBACtB,MAAM,EAAE,QAAQ,CAAC,EAAE,CAAC,MAAM;iBAC3B;gBACD,QAAQ,EAAE,YAAY;gBACtB,UAAU;aACX;YACD,QAAQ;YACR,gBAAgB;YAChB,oBAAoB;YACpB,UAAU;YACV,WAAW,EAAE,IAAI,CAAC,mBAAmB,CAAC,YAAY,CAAC;SACpD,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,yBAAyB,CAC/B,iBAA2B,EAC3B,YAA+B;QAE/B,KAAK,MAAM,aAAa,IAAI,iBAAiB,EAAE,CAAC;YAC9C,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CACpC,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,IAAI,KAAK,aAAa;gBACxB,CAAC,CAAC,OAAO,EAAE,QAAQ,CAAC,aAAa,CAAC,CACrC,CAAC;YACF,IAAI,SAAS,EAAE,QAAQ,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,SAAS,CAAC,YAAY,KAAK,UAAU,EAAE,CAAC;gBACxF,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,iBAAiB,CACvB,QAA2B,EAC3B,SAAkB,EAClB,UAAkB;QAElB,MAAM,YAAY,GAAsC;YACtD,WAAW,EAAE,CAAC;YACd,aAAa,EAAE,CAAC;YAChB,cAAc,EAAE,CAAC;YACjB,YAAY,EAAE,CAAC;YACf,WAAW,EAAE,CAAC;YACd,aAAa,EAAE,CAAC;YAChB,UAAU,EAAE,CAAC;YACb,MAAM,EAAE,CAAC;YACT,iBAAiB,EAAE,CAAC;YACpB,YAAY,EAAE,CAAC;YACf,aAAa,EAAE,CAAC;YAChB,cAAc,EAAE,CAAC;SAClB,CAAC;QAEF,IAAI,KAAK,GAAG,YAAY,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACxC,IAAI,SAAS;YAAE,KAAK,IAAI,CAAC,CAAC;QAC1B,KAAK,GAAG,KAAK,GAAG,UAAU,CAAC;QAE3B,IAAI,KAAK,IAAI,GAAG;YAAE,OAAO,UAAU,CAAC;QACpC,IAAI,KAAK,IAAI,GAAG;YAAE,OAAO,MAAM,CAAC;QAChC,IAAI,KAAK,IAAI,GAAG;YAAE,OAAO,QAAQ,CAAC;QAClC,IAAI,KAAK,IAAI,GAAG;YAAE,OAAO,KAAK,CAAC;QAC/B,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACK,mBAAmB,CACzB,QAA2B,EAC3B,QAAyB,EACzB,UAAoB;QAEpB,MAAM,YAAY,GAAsC;YACtD,WAAW,EAAE,qEAAqE;YAClF,aAAa,EAAE,uEAAuE;YACtF,cAAc,EAAE,oDAAoD;YACpE,YAAY,EAAE,mEAAmE;YACjF,WAAW,EAAE,qEAAqE;YAClF,aAAa,EAAE,sDAAsD;YACrE,UAAU,EAAE,2DAA2D;YACvE,MAAM,EAAE,gEAAgE;YACxE,iBAAiB,EAAE,wDAAwD;YAC3E,YAAY,EAAE,2DAA2D;YACzE,aAAa,EAAE,6DAA6D;YAC5E,cAAc,EAAE,0DAA0D;SAC3E,CAAC;QAEF,IAAI,WAAW,GAAG,YAAY,CAAC,QAAQ,CAAC,IAAI,2CAA2C,CAAC;QAExF,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC1B,WAAW,IAAI,mCAAmC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAC5E,CAAC;QAED,WAAW,IAAI,uBAAuB,QAAQ,CAAC,MAAM,SAAS,CAAC;QAE/D,OAAO,WAAW,CAAC;IACrB,CAAC;IAED;;OAEG;IACK,mBAAmB,CAAC,QAA2B;QACrD,MAAM,YAAY,GAAsC;YACtD,WAAW,EAAE,kFAAkF;YAC/F,aAAa,EAAE,oDAAoD;YACnE,cAAc,EAAE,wFAAwF;YACxG,YAAY,EAAE,+FAA+F;YAC7G,WAAW,EAAE,iFAAiF;YAC9F,aAAa,EAAE,0FAA0F;YACzG,UAAU,EAAE,6DAA6D;YACzE,MAAM,EAAE,+EAA+E;YACvF,iBAAiB,EAAE,6EAA6E;YAChG,YAAY,EAAE,8DAA8D;YAC5E,aAAa,EAAE,8DAA8D;YAC7E,cAAc,EAAE,0EAA0E;SAC3F,CAAC;QAEF,OAAO,YAAY,CAAC,QAAQ,CAAC,IAAI,2CAA2C,CAAC;IAC/E,CAAC;IAED;;OAEG;IACK,mBAAmB,CAAC,QAAwB;QAClD,MAAM,IAAI,GAAG,IAAI,GAAG,EAAwB,CAAC;QAE7C,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;YAC1I,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YAE/B,IAAI,CAAC,QAAQ,IAAI,OAAO,CAAC,UAAU,GAAG,QAAQ,CAAC,UAAU,EAAE,CAAC;gBAC1D,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;IACnC,CAAC;IAED;;OAEG;IACK,mBAAmB,CACzB,MAAc,EACd,QAAgB,EAChB,OAAkB,EAClB,OAAgB;QAEhB,IAAI,MAAM,KAAK,QAAQ;YAAE,OAAO,IAAI,CAAC;QACrC,IAAI,OAAO,EAAE,QAAQ,CAAC,MAAM,CAAC;YAAE,OAAO,IAAI,CAAC;QAC3C,IAAI,OAAO,IAAI,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC;YAAE,OAAO,IAAI,CAAC;QAC7D,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACH,kBAAkB,CAAC,MAAc;QAC/B,OAAO,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC5C,CAAC;IAED;;OAEG;IACH,kBAAkB;QAChB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,iBAAiB,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC/E,CAAC;IAED;;OAEG;IACH,gBAAgB;QACd,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,iBAAiB,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IAC7E,CAAC;IAED;;OAEG;IACH,qBAAqB;QACnB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,iBAAiB,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC;IAClF,CAAC;CACF"}

package/dist/analysis/sanitizers/command-sanitizers.d.ts

@@ -0,0 +1,12 @@
+/**
+ * @fileoverview Command execution sanitizer definitions
+ * @module @nahisaho/musubix-security/analysis/sanitizers/command-sanitizers
+ * @trace REQ-SEC-001
+ */
+import type { SanitizerDefinition } from './types.js';
+/**
+ * Command injection sanitizers
+ * @trace REQ-SEC-001
+ */
+export declare const COMMAND_SANITIZERS: readonly SanitizerDefinition[];
+//# sourceMappingURL=command-sanitizers.d.ts.map

package/dist/analysis/sanitizers/command-sanitizers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"command-sanitizers.d.ts","sourceRoot":"","sources":["../../../src/analysis/sanitizers/command-sanitizers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAEtD;;;GAGG;AACH,eAAO,MAAM,kBAAkB,EAAE,SAAS,mBAAmB,EAuHnD,CAAC"}

package/dist/analysis/sanitizers/command-sanitizers.js

@@ -0,0 +1,123 @@
+/**
+ * @fileoverview Command execution sanitizer definitions
+ * @module @nahisaho/musubix-security/analysis/sanitizers/command-sanitizers
+ * @trace REQ-SEC-001
+ */
+/**
+ * Command injection sanitizers
+ * @trace REQ-SEC-001
+ */
+export const COMMAND_SANITIZERS = [
+    // shell-quote package
+    {
+        id: 'SAN-CMD-001',
+        name: 'quote',
+        package: 'shell-quote',
+        protects: ['command-exec'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'shell-quote quote function - escapes shell arguments',
+        enabled: true,
+        tags: ['command', 'shell', 'quote'],
+    },
+    {
+        id: 'SAN-CMD-002',
+        name: 'escape',
+        package: 'shell-quote',
+        protects: ['command-exec'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'shell-quote escape function',
+        enabled: true,
+        tags: ['command', 'shell', 'escape'],
+    },
+    // shell-escape package
+    {
+        id: 'SAN-CMD-010',
+        name: 'shellEscape',
+        aliases: ['shell-escape'],
+        package: 'shell-escape',
+        protects: ['command-exec'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'shell-escape package',
+        enabled: true,
+        tags: ['command', 'shell', 'escape'],
+    },
+    // any-shell-escape
+    {
+        id: 'SAN-CMD-020',
+        name: 'shellescape',
+        package: 'any-shell-escape',
+        protects: ['command-exec'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'any-shell-escape package',
+        enabled: true,
+        tags: ['command', 'shell', 'escape'],
+    },
+    // Generic escape patterns
+    {
+        id: 'SAN-CMD-030',
+        name: 'escapeShell',
+        aliases: ['escapeShellArg', 'escapeShellCmd'],
+        protects: ['command-exec'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'Generic shell escape function',
+        enabled: true,
+        tags: ['command', 'shell', 'escape'],
+    },
+    // Argument array (spawn-style - safer)
+    {
+        id: 'SAN-CMD-040',
+        name: 'spawn',
+        aliases: ['spawnSync'],
+        protects: ['command-exec'],
+        completeness: 'conditional',
+        returnsClean: false,
+        description: 'Using spawn with argument array instead of exec',
+        caveats: 'Only safe if shell option is false and args are separate',
+        enabled: true,
+        tags: ['command', 'spawn', 'array'],
+    },
+    // execFile (safer than exec)
+    {
+        id: 'SAN-CMD-050',
+        name: 'execFile',
+        aliases: ['execFileSync'],
+        protects: ['command-exec'],
+        completeness: 'conditional',
+        returnsClean: false,
+        description: 'Using execFile with argument array',
+        caveats: 'Only safe if file path is controlled and args are separate',
+        enabled: true,
+        tags: ['command', 'execFile', 'array'],
+    },
+    // Command whitelist pattern
+    {
+        id: 'SAN-CMD-060',
+        name: 'validateCommand',
+        aliases: ['allowedCommands', 'commandWhitelist'],
+        protects: ['command-exec'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'Command whitelist validation',
+        enabled: true,
+        tags: ['command', 'whitelist', 'validate'],
+    },
+    // Execa options
+    {
+        id: 'SAN-CMD-070',
+        name: 'execa',
+        package: 'execa',
+        protects: ['command-exec'],
+        completeness: 'conditional',
+        returnsClean: false,
+        description: 'Execa with array arguments',
+        caveats: 'Only safe when using array form, not string command',
+        enabled: true,
+        tags: ['command', 'execa', 'array'],
+    },
+];
+//# sourceMappingURL=command-sanitizers.js.map

package/dist/analysis/sanitizers/command-sanitizers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"command-sanitizers.js","sourceRoot":"","sources":["../../../src/analysis/sanitizers/command-sanitizers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH;;;GAGG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAmC;IAChE,sBAAsB;IACtB;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,OAAO;QACb,OAAO,EAAE,aAAa;QACtB,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,sDAAsD;QACnE,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC;KACpC;IACD;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,aAAa;QACtB,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,6BAA6B;QAC1C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,CAAC;KACrC;IAED,uBAAuB;IACvB;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,CAAC,cAAc,CAAC;QACzB,OAAO,EAAE,cAAc;QACvB,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,sBAAsB;QACnC,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,CAAC;KACrC;IAED,mBAAmB;IACnB;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,kBAAkB;QAC3B,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,0BAA0B;QACvC,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,CAAC;KACrC;IAED,0BAA0B;IAC1B;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,CAAC,gBAAgB,EAAE,gBAAgB,CAAC;QAC7C,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,+BAA+B;QAC5C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,CAAC;KACrC;IAED,uCAAuC;IACvC;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,OAAO;QACb,OAAO,EAAE,CAAC,WAAW,CAAC;QACtB,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,aAAa;QAC3B,YAAY,EAAE,KAAK;QACnB,WAAW,EAAE,iDAAiD;QAC9D,OAAO,EAAE,0DAA0D;QACnE,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC;KACpC;IAED,6BAA6B;IAC7B;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,UAAU;QAChB,OAAO,EAAE,CAAC,cAAc,CAAC;QACzB,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,aAAa;QAC3B,YAAY,EAAE,KAAK;QACnB,WAAW,EAAE,oCAAoC;QACjD,OAAO,EAAE,4DAA4D;QACrE,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,OAAO,CAAC;KACvC;IAED,4BAA4B;IAC5B;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,CAAC,iBAAiB,EAAE,kBAAkB,CAAC;QAChD,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,8BAA8B;QAC3C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,WAAW,EAAE,UAAU,CAAC;KAC3C;IAED,gBAAgB;IAChB;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,OAAO;QACb,OAAO,EAAE,OAAO;QAChB,QAAQ,EAAE,CAAC,cAAc,CAAC;QAC1B,YAAY,EAAE,aAAa;QAC3B,YAAY,EAAE,KAAK;QACnB,WAAW,EAAE,4BAA4B;QACzC,OAAO,EAAE,qDAAqD;QAC9D,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC;KACpC;CACO,CAAC"}

package/dist/analysis/sanitizers/html-sanitizers.d.ts

@@ -0,0 +1,12 @@
+/**
+ * @fileoverview HTML/XSS sanitizer definitions
+ * @module @nahisaho/musubix-security/analysis/sanitizers/html-sanitizers
+ * @trace REQ-SEC-001
+ */
+import type { SanitizerDefinition } from './types.js';
+/**
+ * HTML/XSS sanitizers
+ * @trace REQ-SEC-001
+ */
+export declare const HTML_SANITIZERS: readonly SanitizerDefinition[];
+//# sourceMappingURL=html-sanitizers.d.ts.map

package/dist/analysis/sanitizers/html-sanitizers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"html-sanitizers.d.ts","sourceRoot":"","sources":["../../../src/analysis/sanitizers/html-sanitizers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAEtD;;;GAGG;AACH,eAAO,MAAM,eAAe,EAAE,SAAS,mBAAmB,EAqNhD,CAAC"}

package/dist/analysis/sanitizers/html-sanitizers.js

@@ -0,0 +1,213 @@
+/**
+ * @fileoverview HTML/XSS sanitizer definitions
+ * @module @nahisaho/musubix-security/analysis/sanitizers/html-sanitizers
+ * @trace REQ-SEC-001
+ */
+/**
+ * HTML/XSS sanitizers
+ * @trace REQ-SEC-001
+ */
+export const HTML_SANITIZERS = [
+    // Generic HTML escape
+    {
+        id: 'SAN-HTML-001',
+        name: 'escapeHtml',
+        aliases: ['escapeHTML', 'htmlEscape', 'escape'],
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'Generic HTML escape function',
+        enabled: true,
+        tags: ['html-output', 'html', 'escape'],
+    },
+    {
+        id: 'SAN-HTML-002',
+        name: 'encode',
+        aliases: ['htmlEncode', 'encodeHTML'],
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'HTML entity encoding',
+        enabled: true,
+        tags: ['html-output', 'html', 'encode'],
+    },
+    // html-entities package
+    {
+        id: 'SAN-HTML-010',
+        name: 'encode',
+        package: 'html-entities',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'html-entities encode function',
+        enabled: true,
+        tags: ['html-output', 'html-entities', 'encode'],
+    },
+    {
+        id: 'SAN-HTML-011',
+        name: 'encodeHTML',
+        package: 'html-entities',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'html-entities encodeHTML function',
+        enabled: true,
+        tags: ['html-output', 'html-entities', 'encode'],
+    },
+    // sanitize-html package
+    {
+        id: 'SAN-HTML-020',
+        name: 'sanitizeHtml',
+        aliases: ['sanitize'],
+        package: 'sanitize-html',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'sanitize-html - removes dangerous HTML',
+        enabled: true,
+        tags: ['html-output', 'sanitize-html', 'sanitize'],
+    },
+    // DOMPurify
+    {
+        id: 'SAN-HTML-030',
+        name: 'sanitize',
+        package: 'dompurify',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'DOMPurify.sanitize - DOM-based sanitization',
+        enabled: true,
+        tags: ['html-output', 'dompurify', 'sanitize'],
+    },
+    {
+        id: 'SAN-HTML-031',
+        name: 'sanitize',
+        package: 'isomorphic-dompurify',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'isomorphic-dompurify - works on server and client',
+        enabled: true,
+        tags: ['html-output', 'dompurify', 'isomorphic'],
+    },
+    // xss package
+    {
+        id: 'SAN-HTML-040',
+        name: 'filterXSS',
+        aliases: ['html-output'],
+        package: 'html-output',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'xss package - filters XSS attacks',
+        enabled: true,
+        tags: ['html-output', 'filter', 'xss-package'],
+    },
+    // he package
+    {
+        id: 'SAN-HTML-050',
+        name: 'encode',
+        package: 'he',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'he.encode - HTML entity encoder',
+        enabled: true,
+        tags: ['html-output', 'he', 'encode'],
+    },
+    {
+        id: 'SAN-HTML-051',
+        name: 'escape',
+        package: 'he',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'he.escape - HTML escape',
+        enabled: true,
+        tags: ['html-output', 'he', 'escape'],
+    },
+    // lodash escape
+    {
+        id: 'SAN-HTML-060',
+        name: 'escape',
+        aliases: ['_.escape'],
+        package: 'lodash',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'Lodash escape function',
+        enabled: true,
+        tags: ['html-output', 'lodash', 'escape'],
+    },
+    // validator.js
+    {
+        id: 'SAN-HTML-070',
+        name: 'escape',
+        package: 'validator',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'validator.js escape function',
+        enabled: true,
+        tags: ['html-output', 'validator', 'escape'],
+    },
+    // Text content (DOM safe alternative)
+    {
+        id: 'SAN-HTML-080',
+        name: 'textContent',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'Using textContent instead of innerHTML',
+        enabled: true,
+        tags: ['html-output', 'dom', 'textContent'],
+    },
+    {
+        id: 'SAN-HTML-081',
+        name: 'innerText',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'Using innerText instead of innerHTML',
+        enabled: true,
+        tags: ['html-output', 'dom', 'innerText'],
+    },
+    // jQuery text()
+    {
+        id: 'SAN-HTML-090',
+        name: 'text',
+        package: 'jquery',
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'jQuery text() instead of html()',
+        enabled: true,
+        tags: ['html-output', 'jquery', 'text'],
+    },
+    // Template engine auto-escape
+    {
+        id: 'SAN-HTML-100',
+        name: 'autoEscape',
+        namePattern: 'autoEscape|auto_escape',
+        protects: ['html-output'],
+        completeness: 'conditional',
+        returnsClean: true,
+        description: 'Template engine auto-escape feature',
+        caveats: 'Depends on template engine configuration',
+        enabled: true,
+        tags: ['html-output', 'template', 'auto-escape'],
+    },
+    // HTTP Header sanitization
+    {
+        id: 'SAN-HTML-110',
+        name: 'sanitizeHeader',
+        aliases: ['removeNewlines', 'stripNewlines'],
+        protects: ['html-output'],
+        completeness: 'complete',
+        returnsClean: true,
+        description: 'HTTP header sanitization - removes CRLF',
+        enabled: true,
+        tags: ['header', 'crlf', 'sanitize'],
+    },
+];
+//# sourceMappingURL=html-sanitizers.js.map

package/dist/analysis/sanitizers/html-sanitizers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"html-sanitizers.js","sourceRoot":"","sources":["../../../src/analysis/sanitizers/html-sanitizers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH;;;GAGG;AACH,MAAM,CAAC,MAAM,eAAe,GAAmC;IAC7D,sBAAsB;IACtB;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC;QAC/C,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,8BAA8B;QAC3C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,MAAM,EAAE,QAAQ,CAAC;KACxC;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;QACrC,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,sBAAsB;QACnC,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,MAAM,EAAE,QAAQ,CAAC;KACxC;IAED,wBAAwB;IACxB;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,eAAe;QACxB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,+BAA+B;QAC5C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,eAAe,EAAE,QAAQ,CAAC;KACjD;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,eAAe;QACxB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,mCAAmC;QAChD,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,eAAe,EAAE,QAAQ,CAAC;KACjD;IAED,wBAAwB;IACxB;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,CAAC,UAAU,CAAC;QACrB,OAAO,EAAE,eAAe;QACxB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,wCAAwC;QACrD,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,eAAe,EAAE,UAAU,CAAC;KACnD;IAED,YAAY;IACZ;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,UAAU;QAChB,OAAO,EAAE,WAAW;QACpB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,6CAA6C;QAC1D,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,WAAW,EAAE,UAAU,CAAC;KAC/C;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,UAAU;QAChB,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,mDAAmD;QAChE,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,WAAW,EAAE,YAAY,CAAC;KACjD;IAED,cAAc;IACd;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,CAAC,aAAa,CAAC;QACxB,OAAO,EAAE,aAAa;QACtB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,mCAAmC;QAChD,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,QAAQ,EAAE,aAAa,CAAC;KAC/C;IAED,aAAa;IACb;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,IAAI;QACb,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,iCAAiC;QAC9C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,IAAI,EAAE,QAAQ,CAAC;KACtC;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,IAAI;QACb,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,yBAAyB;QACtC,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,IAAI,EAAE,QAAQ,CAAC;KACtC;IAED,gBAAgB;IAChB;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,CAAC,UAAU,CAAC;QACrB,OAAO,EAAE,QAAQ;QACjB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,wBAAwB;QACrC,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,QAAQ,EAAE,QAAQ,CAAC;KAC1C;IAED,eAAe;IACf;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,WAAW;QACpB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,8BAA8B;QAC3C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,WAAW,EAAE,QAAQ,CAAC;KAC7C;IAED,sCAAsC;IACtC;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,aAAa;QACnB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,wCAAwC;QACrD,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,KAAK,EAAE,aAAa,CAAC;KAC5C;IACD;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,WAAW;QACjB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,sCAAsC;QACnD,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,KAAK,EAAE,WAAW,CAAC;KAC1C;IAED,gBAAgB;IAChB;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,QAAQ;QACjB,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,iCAAiC;QAC9C,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,QAAQ,EAAE,MAAM,CAAC;KACxC;IAED,8BAA8B;IAC9B;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,YAAY;QAClB,WAAW,EAAE,wBAAwB;QACrC,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,aAAa;QAC3B,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,qCAAqC;QAClD,OAAO,EAAE,0CAA0C;QACnD,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,aAAa,EAAE,UAAU,EAAE,aAAa,CAAC;KACjD;IAED,2BAA2B;IAC3B;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,CAAC,gBAAgB,EAAE,eAAe,CAAC;QAC5C,QAAQ,EAAE,CAAC,aAAa,CAAC;QACzB,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,yCAAyC;QACtD,OAAO,EAAE,IAAI;QACb,IAAI,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,UAAU,CAAC;KACrC;CACO,CAAC"}

package/dist/analysis/sanitizers/index.d.ts

@@ -0,0 +1,35 @@
+/**
+ * @fileoverview Sanitizer definitions - Builtin sanitizers for taint analysis
+ * @module @nahisaho/musubix-security/analysis/sanitizers
+ * @trace REQ-SEC-001 (EARS: テイント分析の高度化)
+ */
+export * from './types.js';
+export * from './sql-sanitizers.js';
+export * from './html-sanitizers.js';
+export * from './command-sanitizers.js';
+export * from './path-sanitizers.js';
+export * from './validation-sanitizers.js';
+import type { SanitizerDefinition } from './types.js';
+import type { TaintSinkCategory } from '../../types/taint.js';
+/**
+ * All built-in sanitizers aggregated
+ * @trace REQ-SEC-001
+ */
+export declare const ALL_BUILTIN_SANITIZERS: readonly SanitizerDefinition[];
+/**
+ * Get sanitizers that protect against a specific sink category
+ */
+export declare function getSanitizersForSink(sinkCategory: TaintSinkCategory): readonly SanitizerDefinition[];
+/**
+ * Get sanitizers by package name
+ */
+export declare function getSanitizersByPackage(packageName: string): readonly SanitizerDefinition[];
+/**
+ * Check if a function name matches any known sanitizer
+ */
+export declare function isSanitizer(functionName: string, sinkCategory?: TaintSinkCategory): SanitizerDefinition | undefined;
+/**
+ * Get all sink categories that a sanitizer protects against
+ */
+export declare function getProtectedCategories(sanitizerName: string): TaintSinkCategory[];
+//# sourceMappingURL=index.d.ts.map

package/dist/analysis/sanitizers/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/analysis/sanitizers/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,YAAY,CAAC;AAC3B,cAAc,qBAAqB,CAAC;AACpC,cAAc,sBAAsB,CAAC;AACrC,cAAc,yBAAyB,CAAC;AACxC,cAAc,sBAAsB,CAAC;AACrC,cAAc,4BAA4B,CAAC;AAO3C,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AACtD,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAE9D;;;GAGG;AACH,eAAO,MAAM,sBAAsB,EAAE,SAAS,mBAAmB,EAMvD,CAAC;AAEX;;GAEG;AACH,wBAAgB,oBAAoB,CAClC,YAAY,EAAE,iBAAiB,GAC9B,SAAS,mBAAmB,EAAE,CAIhC;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,WAAW,EAAE,MAAM,GAClB,SAAS,mBAAmB,EAAE,CAEhC;AAED;;GAEG;AACH,wBAAgB,WAAW,CACzB,YAAY,EAAE,MAAM,EACpB,YAAY,CAAC,EAAE,iBAAiB,GAC/B,mBAAmB,GAAG,SAAS,CAWjC;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,aAAa,EAAE,MAAM,GACpB,iBAAiB,EAAE,CAOrB"}

package/dist/analysis/sanitizers/index.js

@@ -0,0 +1,59 @@
+/**
+ * @fileoverview Sanitizer definitions - Builtin sanitizers for taint analysis
+ * @module @nahisaho/musubix-security/analysis/sanitizers
+ * @trace REQ-SEC-001 (EARS: テイント分析の高度化)
+ */
+export * from './types.js';
+export * from './sql-sanitizers.js';
+export * from './html-sanitizers.js';
+export * from './command-sanitizers.js';
+export * from './path-sanitizers.js';
+export * from './validation-sanitizers.js';
+import { SQL_SANITIZERS } from './sql-sanitizers.js';
+import { HTML_SANITIZERS } from './html-sanitizers.js';
+import { COMMAND_SANITIZERS } from './command-sanitizers.js';
+import { PATH_SANITIZERS } from './path-sanitizers.js';
+import { VALIDATION_SANITIZERS } from './validation-sanitizers.js';
+/**
+ * All built-in sanitizers aggregated
+ * @trace REQ-SEC-001
+ */
+export const ALL_BUILTIN_SANITIZERS = [
+    ...SQL_SANITIZERS,
+    ...HTML_SANITIZERS,
+    ...COMMAND_SANITIZERS,
+    ...PATH_SANITIZERS,
+    ...VALIDATION_SANITIZERS,
+];
+/**
+ * Get sanitizers that protect against a specific sink category
+ */
+export function getSanitizersForSink(sinkCategory) {
+    return ALL_BUILTIN_SANITIZERS.filter((s) => s.protects.includes(sinkCategory));
+}
+/**
+ * Get sanitizers by package name
+ */
+export function getSanitizersByPackage(packageName) {
+    return ALL_BUILTIN_SANITIZERS.filter((s) => s.package === packageName);
+}
+/**
+ * Check if a function name matches any known sanitizer
+ */
+export function isSanitizer(functionName, sinkCategory) {
+    const sanitizers = sinkCategory
+        ? getSanitizersForSink(sinkCategory)
+        : ALL_BUILTIN_SANITIZERS;
+    return sanitizers.find((s) => s.name === functionName ||
+        s.aliases?.includes(functionName) ||
+        (s.namePattern && new RegExp(s.namePattern).test(functionName)));
+}
+/**
+ * Get all sink categories that a sanitizer protects against
+ */
+export function getProtectedCategories(sanitizerName) {
+    const sanitizer = ALL_BUILTIN_SANITIZERS.find((s) => s.name === sanitizerName ||
+        s.aliases?.includes(sanitizerName));
+    return sanitizer?.protects ?? [];
+}
+//# sourceMappingURL=index.js.map

package/dist/analysis/sanitizers/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/analysis/sanitizers/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,YAAY,CAAC;AAC3B,cAAc,qBAAqB,CAAC;AACpC,cAAc,sBAAsB,CAAC;AACrC,cAAc,yBAAyB,CAAC;AACxC,cAAc,sBAAsB,CAAC;AACrC,cAAc,4BAA4B,CAAC;AAE3C,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AACrD,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAE,qBAAqB,EAAE,MAAM,4BAA4B,CAAC;AAInE;;;GAGG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAAmC;IACpE,GAAG,cAAc;IACjB,GAAG,eAAe;IAClB,GAAG,kBAAkB;IACrB,GAAG,eAAe;IAClB,GAAG,qBAAqB;CAChB,CAAC;AAEX;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAClC,YAA+B;IAE/B,OAAO,sBAAsB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CACzC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,YAAY,CAAC,CAClC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CACpC,WAAmB;IAEnB,OAAO,sBAAsB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,WAAW,CAAC,CAAC;AACzE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CACzB,YAAoB,EACpB,YAAgC;IAEhC,MAAM,UAAU,GAAG,YAAY;QAC7B,CAAC,CAAC,oBAAoB,CAAC,YAAY,CAAC;QACpC,CAAC,CAAC,sBAAsB,CAAC;IAE3B,OAAO,UAAU,CAAC,IAAI,CACpB,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,IAAI,KAAK,YAAY;QACvB,CAAC,CAAC,OAAO,EAAE,QAAQ,CAAC,YAAY,CAAC;QACjC,CAAC,CAAC,CAAC,WAAW,IAAI,IAAI,MAAM,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAClE,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CACpC,aAAqB;IAErB,MAAM,SAAS,GAAG,sBAAsB,CAAC,IAAI,CAC3C,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,IAAI,KAAK,aAAa;QACxB,CAAC,CAAC,OAAO,EAAE,QAAQ,CAAC,aAAa,CAAC,CACrC,CAAC;IACF,OAAO,SAAS,EAAE,QAAQ,IAAI,EAAE,CAAC;AACnC,CAAC"}

package/dist/analysis/sanitizers/path-sanitizers.d.ts

@@ -0,0 +1,12 @@
+/**
+ * @fileoverview Path traversal sanitizer definitions
+ * @module @nahisaho/musubix-security/analysis/sanitizers/path-sanitizers
+ * @trace REQ-SEC-001
+ */
+import type { SanitizerDefinition } from './types.js';
+/**
+ * Path traversal sanitizers
+ * @trace REQ-SEC-001
+ */
+export declare const PATH_SANITIZERS: readonly SanitizerDefinition[];
+//# sourceMappingURL=path-sanitizers.d.ts.map

package/dist/analysis/sanitizers/path-sanitizers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"path-sanitizers.d.ts","sourceRoot":"","sources":["../../../src/analysis/sanitizers/path-sanitizers.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAEtD;;;GAGG;AACH,eAAO,MAAM,eAAe,EAAE,SAAS,mBAAmB,EAmKhD,CAAC"}