@nahisaho/musubix-security 2.0.1 → 2.1.1

package/dist/analysis/enhanced-taint-analyzer.d.ts

@@ -0,0 +1,120 @@
+/**
+ * @fileoverview Enhanced Taint Analyzer with interprocedural analysis
+ * @module @nahisaho/musubix-security/analysis/enhanced-taint-analyzer
+ * @trace REQ-SEC-001 (EARS: THE system SHALL provide interprocedural taint analysis)
+ * @trace TSK-SEC-008
+ */
+import type { TaintResult, TaintAnalysisOptions } from '../types/index.js';
+import type { DataFlowGraph } from '@nahisaho/musubix-dfg';
+import { type CallGraph, type CallGraphStatistics } from './interprocedural/call-graph-builder.js';
+import { type TaintFinding } from './interprocedural/taint-propagator.js';
+import { type DFGTaintResult, type DFGTaintStatistics } from './interprocedural/dfg-adapter.js';
+import type { SourceDefinition } from './sources/types.js';
+import type { SinkDefinition } from './sinks/types.js';
+/**
+ * Options for enhanced taint analysis
+ */
+export interface EnhancedTaintOptions extends TaintAnalysisOptions {
+    /** Enable interprocedural analysis */
+    interprocedural?: boolean;
+    /** Enable DFG-based analysis */
+    useDFG?: boolean;
+    /** Include call graph building */
+    buildCallGraph?: boolean;
+    /** Maximum call depth for interprocedural analysis */
+    maxCallDepth?: number;
+    /** Track implicit flows (control dependencies) */
+    trackImplicitFlows?: boolean;
+    /** Custom source definitions */
+    customSourceDefinitions?: SourceDefinition[];
+    /** Custom sink definitions */
+    customSinkDefinitions?: SinkDefinition[];
+}
+/**
+ * Result from enhanced taint analysis
+ */
+export interface EnhancedTaintResult extends TaintResult {
+    /** Call graph (if built) */
+    callGraph?: CallGraph;
+    /** Call graph statistics */
+    callGraphStats?: CallGraphStatistics;
+    /** Interprocedural findings */
+    interproceduralFindings?: TaintFinding[];
+    /** DFG-based results (if enabled) */
+    dfgResults?: DFGTaintResult[];
+    /** DFG statistics */
+    dfgStats?: DFGTaintStatistics;
+    /** Analysis mode used */
+    analysisMode: 'intraprocedural' | 'interprocedural' | 'dfg' | 'combined';
+}
+/**
+ * Enhanced Taint Analyzer with interprocedural capabilities
+ * @trace REQ-SEC-001, TSK-SEC-008
+ */
+export declare class EnhancedTaintAnalyzer {
+    private baseAnalyzer;
+    private callGraphBuilder;
+    private taintPropagator;
+    private dfgAdapter;
+    private options;
+    private sourceDefinitions;
+    private sinkDefinitions;
+    constructor(options?: EnhancedTaintOptions);
+    /**
+     * Reset analysis state (for testing)
+     */
+    static resetState(): void;
+    /**
+     * Analyze a directory with enhanced taint analysis
+     */
+    analyze(rootPath: string): Promise<EnhancedTaintResult>;
+    /**
+     * Analyze with DFG
+     */
+    analyzeWithDFG(rootPath: string, dfgs: DataFlowGraph[]): Promise<EnhancedTaintResult>;
+    /**
+     * Extract source locations from base analysis
+     */
+    private extractSourceLocations;
+    /**
+     * Merge intraprocedural and interprocedural findings
+     */
+    private mergeFindings;
+    /**
+     * Convert TaintFinding to TaintPath
+     */
+    private convertFindingToPath;
+    /**
+     * Map TaintFlowType to TaintFlowStep operation
+     */
+    private mapFlowTypeToOperation;
+    /**
+     * Convert DFG results to TaintPath format
+     */
+    private convertDFGPaths;
+    /**
+     * Build summary from results
+     */
+    private buildSummary;
+    /**
+     * Get source definitions
+     */
+    getSourceDefinitions(): SourceDefinition[];
+    /**
+     * Get sink definitions
+     */
+    getSinkDefinitions(): SinkDefinition[];
+    /**
+     * Add custom source definition
+     */
+    addSourceDefinition(source: SourceDefinition): void;
+    /**
+     * Add custom sink definition
+     */
+    addSinkDefinition(sink: SinkDefinition): void;
+}
+/**
+ * Create enhanced taint analyzer
+ */
+export declare function createEnhancedTaintAnalyzer(options?: EnhancedTaintOptions): EnhancedTaintAnalyzer;
+//# sourceMappingURL=enhanced-taint-analyzer.d.ts.map

package/dist/analysis/enhanced-taint-analyzer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"enhanced-taint-analyzer.d.ts","sourceRoot":"","sources":["../../src/analysis/enhanced-taint-analyzer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAEV,WAAW,EACX,oBAAoB,EAIrB,MAAM,mBAAmB,CAAC;AAC3B,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAG3D,OAAO,EAAoB,KAAK,SAAS,EAAE,KAAK,mBAAmB,EAAE,MAAM,yCAAyC,CAAC;AACrH,OAAO,EAAmB,KAAK,YAAY,EAAsB,MAAM,uCAAuC,CAAC;AAC/G,OAAO,EAAmB,KAAK,cAAc,EAAE,KAAK,kBAAkB,EAAE,MAAM,kCAAkC,CAAC;AACjH,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAC3D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAOvD;;GAEG;AACH,MAAM,WAAW,oBAAqB,SAAQ,oBAAoB;IAChE,sCAAsC;IACtC,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,gCAAgC;IAChC,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,kCAAkC;IAClC,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,sDAAsD;IACtD,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,kDAAkD;IAClD,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,gCAAgC;IAChC,uBAAuB,CAAC,EAAE,gBAAgB,EAAE,CAAC;IAC7C,8BAA8B;IAC9B,qBAAqB,CAAC,EAAE,cAAc,EAAE,CAAC;CAC1C;AAED;;GAEG;AACH,MAAM,WAAW,mBAAoB,SAAQ,WAAW;IACtD,4BAA4B;IAC5B,SAAS,CAAC,EAAE,SAAS,CAAC;IACtB,4BAA4B;IAC5B,cAAc,CAAC,EAAE,mBAAmB,CAAC;IACrC,+BAA+B;IAC/B,uBAAuB,CAAC,EAAE,YAAY,EAAE,CAAC;IACzC,qCAAqC;IACrC,UAAU,CAAC,EAAE,cAAc,EAAE,CAAC;IAC9B,qBAAqB;IACrB,QAAQ,CAAC,EAAE,kBAAkB,CAAC;IAC9B,yBAAyB;IACzB,YAAY,EAAE,iBAAiB,GAAG,iBAAiB,GAAG,KAAK,GAAG,UAAU,CAAC;CAC1E;AAED;;;GAGG;AACH,qBAAa,qBAAqB;IAChC,OAAO,CAAC,YAAY,CAAgB;IACpC,OAAO,CAAC,gBAAgB,CAAiC;IACzD,OAAO,CAAC,eAAe,CAAgC;IACvD,OAAO,CAAC,UAAU,CAAgC;IAClD,OAAO,CAAC,OAAO,CAAuB;IAEtC,OAAO,CAAC,iBAAiB,CAAqB;IAC9C,OAAO,CAAC,eAAe,CAAmB;gBAE9B,OAAO,GAAE,oBAAyB;IAoE9C;;OAEG;IACH,MAAM,CAAC,UAAU,IAAI,IAAI;IAIzB;;OAEG;IACG,OAAO,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,mBAAmB,CAAC;IA+D7D;;OAEG;IACG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,aAAa,EAAE,GAAG,OAAO,CAAC,mBAAmB,CAAC;IA2D3F;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAU9B;;OAEG;IACH,OAAO,CAAC,aAAa;IAsBrB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAwD5B;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAa9B;;OAEG;IACH,OAAO,CAAC,eAAe;IAiEvB;;OAEG;IACH,OAAO,CAAC,YAAY;IAkDpB;;OAEG;IACH,oBAAoB,IAAI,gBAAgB,EAAE;IAI1C;;OAEG;IACH,kBAAkB,IAAI,cAAc,EAAE;IAItC;;OAEG;IACH,mBAAmB,CAAC,MAAM,EAAE,gBAAgB,GAAG,IAAI;IAiBnD;;OAEG;IACH,iBAAiB,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI;CAgB9C;AAED;;GAEG;AACH,wBAAgB,2BAA2B,CACzC,OAAO,CAAC,EAAE,oBAAoB,GAC7B,qBAAqB,CAEvB"}

package/dist/analysis/enhanced-taint-analyzer.js

@@ -0,0 +1,450 @@
+/**
+ * @fileoverview Enhanced Taint Analyzer with interprocedural analysis
+ * @module @nahisaho/musubix-security/analysis/enhanced-taint-analyzer
+ * @trace REQ-SEC-001 (EARS: THE system SHALL provide interprocedural taint analysis)
+ * @trace TSK-SEC-008
+ */
+import { TaintAnalyzer, resetTaintCounters } from './taint-analyzer.js';
+import { CallGraphBuilder } from './interprocedural/call-graph-builder.js';
+import { TaintPropagator } from './interprocedural/taint-propagator.js';
+import { DFGTaintAdapter } from './interprocedural/dfg-adapter.js';
+// Import aggregated built-ins
+import { ALL_BUILTIN_SOURCES } from './sources/index.js';
+import { ALL_BUILTIN_SINKS } from './sinks/index.js';
+import { ALL_BUILTIN_SANITIZERS } from './sanitizers/index.js';
+/**
+ * Enhanced Taint Analyzer with interprocedural capabilities
+ * @trace REQ-SEC-001, TSK-SEC-008
+ */
+export class EnhancedTaintAnalyzer {
+    baseAnalyzer;
+    callGraphBuilder = null;
+    taintPropagator = null;
+    dfgAdapter = null;
+    options;
+    sourceDefinitions;
+    sinkDefinitions;
+    constructor(options = {}) {
+        this.baseAnalyzer = new TaintAnalyzer(options);
+        this.options = {
+            // Base options
+            customSources: options.customSources ?? [],
+            customSinks: options.customSinks ?? [],
+            additionalSanitizers: options.additionalSanitizers ?? [],
+            excludePatterns: options.excludePatterns ?? ['node_modules', 'dist', '.git'],
+            maxPathDepth: options.maxPathDepth ?? 10,
+            trackAsync: options.trackAsync ?? true,
+            // Enhanced options
+            interprocedural: options.interprocedural ?? true,
+            useDFG: options.useDFG ?? false,
+            buildCallGraph: options.buildCallGraph ?? true,
+            maxCallDepth: options.maxCallDepth ?? 5,
+            trackImplicitFlows: options.trackImplicitFlows ?? false,
+            customSourceDefinitions: options.customSourceDefinitions ?? [],
+            customSinkDefinitions: options.customSinkDefinitions ?? [],
+        };
+        // Collect all source definitions
+        this.sourceDefinitions = [
+            ...ALL_BUILTIN_SOURCES,
+            ...(this.options.customSourceDefinitions ?? []),
+        ];
+        // Collect all sink definitions
+        this.sinkDefinitions = [
+            ...ALL_BUILTIN_SINKS,
+            ...(this.options.customSinkDefinitions ?? []),
+        ];
+        // Initialize interprocedural components if enabled
+        if (this.options.interprocedural || this.options.buildCallGraph) {
+            this.callGraphBuilder = new CallGraphBuilder({
+                maxDepth: this.options.maxCallDepth,
+                trackCallbacks: true,
+                includeAnonymous: true,
+            });
+            this.taintPropagator = new TaintPropagator(this.sourceDefinitions, this.sinkDefinitions, [...ALL_BUILTIN_SANITIZERS], {
+                maxDepth: this.options.maxCallDepth,
+                trackImplicitFlows: this.options.trackImplicitFlows,
+                minConfidence: 0.5,
+            });
+        }
+        // Initialize DFG adapter if enabled
+        if (this.options.useDFG) {
+            this.dfgAdapter = new DFGTaintAdapter(this.sourceDefinitions, this.sinkDefinitions, {
+                trackAliasing: true,
+                trackControlDependencies: this.options.trackImplicitFlows,
+                maxDepth: (this.options.maxCallDepth ?? 5) * 4,
+                minConfidence: 0.5,
+            });
+        }
+    }
+    /**
+     * Reset analysis state (for testing)
+     */
+    static resetState() {
+        resetTaintCounters();
+    }
+    /**
+     * Analyze a directory with enhanced taint analysis
+     */
+    async analyze(rootPath) {
+        const startTime = Date.now();
+        // Step 1: Run base intraprocedural analysis
+        const baseResult = await this.baseAnalyzer.analyze(rootPath);
+        // Determine analysis mode
+        let analysisMode = 'intraprocedural';
+        if (this.options.useDFG && this.options.interprocedural) {
+            analysisMode = 'combined';
+        }
+        else if (this.options.useDFG) {
+            analysisMode = 'dfg';
+        }
+        else if (this.options.interprocedural) {
+            analysisMode = 'interprocedural';
+        }
+        // Initialize enhanced result
+        const result = {
+            ...baseResult,
+            analysisMode,
+        };
+        // Step 2: Build call graph if enabled
+        if (this.options.buildCallGraph && this.callGraphBuilder) {
+            try {
+                const callGraph = await this.callGraphBuilder.buildFromDirectory(rootPath);
+                result.callGraph = callGraph;
+                result.callGraphStats = this.callGraphBuilder.getStatistics(result.callGraph);
+            }
+            catch (error) {
+                console.warn(`Warning: Failed to build call graph: ${error}`);
+            }
+        }
+        // Step 3: Run interprocedural analysis if enabled
+        if (this.options.interprocedural && this.taintPropagator && result.callGraph) {
+            try {
+                const sourceLocations = this.extractSourceLocations(baseResult);
+                const findings = this.taintPropagator.analyze(result.callGraph, sourceLocations);
+                result.interproceduralFindings = findings;
+                // Merge interprocedural findings into unsafe paths
+                const mergedPaths = this.mergeFindings(result.unsafePaths, findings);
+                result.unsafePaths = mergedPaths;
+            }
+            catch (error) {
+                console.warn(`Warning: Interprocedural analysis failed: ${error}`);
+            }
+        }
+        // Update duration
+        result.duration = Date.now() - startTime;
+        // Update summary
+        result.summary = this.buildSummary(result);
+        return result;
+    }
+    /**
+     * Analyze with DFG
+     */
+    async analyzeWithDFG(rootPath, dfgs) {
+        const startTime = Date.now();
+        // Run base analysis
+        const baseResult = await this.baseAnalyzer.analyze(rootPath);
+        const result = {
+            ...baseResult,
+            analysisMode: 'dfg',
+            dfgResults: [],
+        };
+        // Analyze each DFG
+        if (this.dfgAdapter && dfgs.length > 0) {
+            let totalStats = {
+                totalNodes: 0,
+                taintedNodes: 0,
+                sources: 0,
+                sinks: 0,
+                vulnerablePaths: 0,
+                sanitizedPaths: 0,
+                avgConfidence: 0,
+            };
+            for (const dfg of dfgs) {
+                const dfgResult = this.dfgAdapter.analyzeTaint(dfg);
+                result.dfgResults.push(dfgResult);
+                // Accumulate statistics
+                const stats = this.dfgAdapter.getStatistics(dfgResult);
+                totalStats.totalNodes += stats.totalNodes;
+                totalStats.taintedNodes += stats.taintedNodes;
+                totalStats.sources += stats.sources;
+                totalStats.sinks += stats.sinks;
+                totalStats.vulnerablePaths += stats.vulnerablePaths;
+                totalStats.sanitizedPaths += stats.sanitizedPaths;
+            }
+            // Calculate average confidence
+            if (totalStats.vulnerablePaths > 0) {
+                const totalConfidence = result.dfgResults.reduce((sum, r) => {
+                    return sum + r.vulnerablePaths.reduce((s, p) => s + p.confidence, 0);
+                }, 0);
+                totalStats.avgConfidence = totalConfidence / totalStats.vulnerablePaths;
+            }
+            result.dfgStats = totalStats;
+            // Convert DFG paths to TaintPath format
+            const dfgPaths = this.convertDFGPaths(result.dfgResults);
+            result.unsafePaths = [...result.unsafePaths, ...dfgPaths];
+        }
+        result.duration = Date.now() - startTime;
+        result.summary = this.buildSummary(result);
+        return result;
+    }
+    /**
+     * Extract source locations from base analysis
+     */
+    extractSourceLocations(baseResult) {
+        return baseResult.sources.map((source) => ({
+            nodeId: source.id,
+            identifier: source.variableName,
+            line: source.location.startLine,
+            column: source.location.startColumn,
+            filePath: source.location.file,
+        }));
+    }
+    /**
+     * Merge intraprocedural and interprocedural findings
+     */
+    mergeFindings(intraPaths, interFindings) {
+        const merged = [...intraPaths];
+        const existingKeys = new Set(intraPaths.map(p => `${p.source.location.file}:${p.source.location.startLine}:${p.sink.location.file}:${p.sink.location.startLine}`));
+        // Convert interprocedural findings to TaintPath format
+        for (const finding of interFindings) {
+            const key = `${finding.source.location.file}:${finding.source.location.line}:${finding.sink.location.file}:${finding.sink.location.line}`;
+            // Skip if already covered by intraprocedural analysis
+            if (existingKeys.has(key))
+                continue;
+            merged.push(this.convertFindingToPath(finding));
+        }
+        return merged;
+    }
+    /**
+     * Convert TaintFinding to TaintPath
+     */
+    convertFindingToPath(finding) {
+        const sourceCategory = (finding.source.type || 'user-input');
+        const sinkCategory = finding.sink.category;
+        return {
+            id: finding.id,
+            source: {
+                id: finding.source.id,
+                category: sourceCategory,
+                location: {
+                    file: finding.source.location.file,
+                    startLine: finding.source.location.line,
+                    startColumn: finding.source.location.column,
+                    endLine: finding.source.location.line,
+                    endColumn: finding.source.location.column + (finding.source.name?.length ?? 0),
+                },
+                variableName: finding.source.name ?? 'unknown',
+                expression: finding.source.name ?? 'unknown',
+                description: `Taint source: ${finding.source.name}`,
+                confidence: finding.source.confidence,
+            },
+            sink: {
+                id: finding.sink.id,
+                category: sinkCategory,
+                location: {
+                    file: finding.sink.location.file,
+                    startLine: finding.sink.location.line,
+                    startColumn: finding.sink.location.column,
+                    endLine: finding.sink.location.line,
+                    endColumn: finding.sink.location.column + (finding.sink.name?.length ?? 0),
+                },
+                functionName: finding.sink.name ?? 'unknown',
+                argumentIndex: 0,
+                expectedSanitizers: [],
+                description: `Taint sink: ${finding.sink.name}`,
+                severity: finding.severity,
+            },
+            steps: finding.flowPath.map((edge, idx) => ({
+                index: idx,
+                location: {
+                    file: edge.from.filePath,
+                    startLine: edge.from.line,
+                    startColumn: edge.from.column,
+                    endLine: edge.from.line,
+                    endColumn: edge.from.column,
+                },
+                expression: edge.from.identifier ?? '',
+                operation: this.mapFlowTypeToOperation(edge.flowType),
+                sanitized: edge.sanitizersApplied.length > 0,
+            })),
+            sanitized: finding.sanitizationComplete,
+            confidence: finding.confidence,
+            length: finding.flowPath.length,
+        };
+    }
+    /**
+     * Map TaintFlowType to TaintFlowStep operation
+     */
+    mapFlowTypeToOperation(flowType) {
+        const mapping = {
+            'assignment': 'assignment',
+            'parameter': 'parameter',
+            'return': 'return',
+            'property-access': 'property-access',
+            'method-call': 'call',
+            'callback': 'call',
+            'implicit': 'assignment',
+        };
+        return mapping[flowType] ?? 'assignment';
+    }
+    /**
+     * Convert DFG results to TaintPath format
+     */
+    convertDFGPaths(dfgResults) {
+        const paths = [];
+        let pathCounter = 0;
+        for (const dfgResult of dfgResults) {
+            for (const vulnPath of dfgResult.vulnerablePaths) {
+                if (vulnPath.isSanitized)
+                    continue; // Skip sanitized paths
+                pathCounter++;
+                paths.push({
+                    id: `DFG-PATH-${String(pathCounter).padStart(4, '0')}`,
+                    source: {
+                        id: `DFG-SRC-${pathCounter}`,
+                        category: 'user-input',
+                        location: {
+                            file: vulnPath.source.filePath,
+                            startLine: vulnPath.source.line,
+                            startColumn: vulnPath.source.column,
+                            endLine: vulnPath.source.line,
+                            endColumn: vulnPath.source.column,
+                        },
+                        variableName: vulnPath.source.identifier ?? '',
+                        expression: vulnPath.source.identifier ?? '',
+                        description: 'DFG-detected taint source',
+                        confidence: vulnPath.confidence,
+                    },
+                    sink: {
+                        id: `DFG-SNK-${pathCounter}`,
+                        category: 'sql-query',
+                        location: {
+                            file: vulnPath.sink.filePath,
+                            startLine: vulnPath.sink.line,
+                            startColumn: vulnPath.sink.column,
+                            endLine: vulnPath.sink.line,
+                            endColumn: vulnPath.sink.column,
+                        },
+                        functionName: vulnPath.sink.identifier ?? '',
+                        argumentIndex: 0,
+                        expectedSanitizers: [],
+                        description: 'DFG-detected taint sink',
+                        severity: 'high',
+                    },
+                    steps: vulnPath.path.map((nodeId, index) => ({
+                        index,
+                        location: {
+                            file: vulnPath.source.filePath,
+                            startLine: 0,
+                            startColumn: 0,
+                            endLine: 0,
+                            endColumn: 0,
+                        },
+                        expression: nodeId,
+                        operation: 'assignment',
+                        sanitized: false,
+                    })),
+                    sanitized: vulnPath.isSanitized,
+                    confidence: vulnPath.confidence,
+                    length: vulnPath.path.length,
+                });
+            }
+        }
+        return paths;
+    }
+    /**
+     * Build summary from results
+     */
+    buildSummary(result) {
+        const bySeverity = {
+            critical: 0,
+            high: 0,
+            medium: 0,
+            low: 0,
+            info: 0,
+        };
+        const bySourceCategory = {
+            'user-input': 0,
+            'database': 0,
+            'file-system': 0,
+            'network': 0,
+            'environment': 0,
+            'config': 0,
+            'cli-args': 0,
+        };
+        const bySinkCategory = {
+            'sql-query': 0,
+            'nosql-query': 0,
+            'command-exec': 0,
+            'file-write': 0,
+            'file-read': 0,
+            'html-output': 0,
+            'redirect': 0,
+            'eval': 0,
+            'deserialization': 0,
+            'ldap-query': 0,
+            'xpath-query': 0,
+            'http-request': 0,
+        };
+        for (const path of result.unsafePaths) {
+            bySeverity[path.sink.severity]++;
+            bySourceCategory[path.source.category]++;
+            bySinkCategory[path.sink.category]++;
+        }
+        return {
+            totalSources: result.sources.length,
+            totalSinks: result.sinks.length,
+            unsafePathCount: result.unsafePaths.length,
+            bySeverity,
+            bySourceCategory,
+            bySinkCategory,
+        };
+    }
+    /**
+     * Get source definitions
+     */
+    getSourceDefinitions() {
+        return [...this.sourceDefinitions];
+    }
+    /**
+     * Get sink definitions
+     */
+    getSinkDefinitions() {
+        return [...this.sinkDefinitions];
+    }
+    /**
+     * Add custom source definition
+     */
+    addSourceDefinition(source) {
+        this.sourceDefinitions.push(source);
+        // Reinitialize propagator with new definitions
+        if (this.taintPropagator) {
+            this.taintPropagator = new TaintPropagator(this.sourceDefinitions, this.sinkDefinitions, [...ALL_BUILTIN_SANITIZERS], {
+                maxDepth: this.options.maxCallDepth,
+                trackImplicitFlows: this.options.trackImplicitFlows,
+                minConfidence: 0.5,
+            });
+        }
+    }
+    /**
+     * Add custom sink definition
+     */
+    addSinkDefinition(sink) {
+        this.sinkDefinitions.push(sink);
+        // Reinitialize propagator with new definitions
+        if (this.taintPropagator) {
+            this.taintPropagator = new TaintPropagator(this.sourceDefinitions, this.sinkDefinitions, [...ALL_BUILTIN_SANITIZERS], {
+                maxDepth: this.options.maxCallDepth,
+                trackImplicitFlows: this.options.trackImplicitFlows,
+                minConfidence: 0.5,
+            });
+        }
+    }
+}
+/**
+ * Create enhanced taint analyzer
+ */
+export function createEnhancedTaintAnalyzer(options) {
+    return new EnhancedTaintAnalyzer(options);
+}
+//# sourceMappingURL=enhanced-taint-analyzer.js.map

package/dist/analysis/enhanced-taint-analyzer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"enhanced-taint-analyzer.js","sourceRoot":"","sources":["../../src/analysis/enhanced-taint-analyzer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAYH,OAAO,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AACxE,OAAO,EAAE,gBAAgB,EAA4C,MAAM,yCAAyC,CAAC;AACrH,OAAO,EAAE,eAAe,EAAyC,MAAM,uCAAuC,CAAC;AAC/G,OAAO,EAAE,eAAe,EAAgD,MAAM,kCAAkC,CAAC;AAIjH,8BAA8B;AAC9B,OAAO,EAAE,mBAAmB,EAAE,MAAM,oBAAoB,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,MAAM,kBAAkB,CAAC;AACrD,OAAO,EAAE,sBAAsB,EAAE,MAAM,uBAAuB,CAAC;AAwC/D;;;GAGG;AACH,MAAM,OAAO,qBAAqB;IACxB,YAAY,CAAgB;IAC5B,gBAAgB,GAA4B,IAAI,CAAC;IACjD,eAAe,GAA2B,IAAI,CAAC;IAC/C,UAAU,GAA2B,IAAI,CAAC;IAC1C,OAAO,CAAuB;IAE9B,iBAAiB,CAAqB;IACtC,eAAe,CAAmB;IAE1C,YAAY,UAAgC,EAAE;QAC5C,IAAI,CAAC,YAAY,GAAG,IAAI,aAAa,CAAC,OAAO,CAAC,CAAC;QAC/C,IAAI,CAAC,OAAO,GAAG;YACb,eAAe;YACf,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,EAAE;YAC1C,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,EAAE;YACtC,oBAAoB,EAAE,OAAO,CAAC,oBAAoB,IAAI,EAAE;YACxD,eAAe,EAAE,OAAO,CAAC,eAAe,IAAI,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,CAAC;YAC5E,YAAY,EAAE,OAAO,CAAC,YAAY,IAAI,EAAE;YACxC,UAAU,EAAE,OAAO,CAAC,UAAU,IAAI,IAAI;YAEtC,mBAAmB;YACnB,eAAe,EAAE,OAAO,CAAC,eAAe,IAAI,IAAI;YAChD,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,KAAK;YAC/B,cAAc,EAAE,OAAO,CAAC,cAAc,IAAI,IAAI;YAC9C,YAAY,EAAE,OAAO,CAAC,YAAY,IAAI,CAAC;YACvC,kBAAkB,EAAE,OAAO,CAAC,kBAAkB,IAAI,KAAK;YACvD,uBAAuB,EAAE,OAAO,CAAC,uBAAuB,IAAI,EAAE;YAC9D,qBAAqB,EAAE,OAAO,CAAC,qBAAqB,IAAI,EAAE;SAC3D,CAAC;QAEF,iCAAiC;QACjC,IAAI,CAAC,iBAAiB,GAAG;YACvB,GAAG,mBAAmB;YACtB,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,uBAAuB,IAAI,EAAE,CAAC;SAChD,CAAC;QAEF,+BAA+B;QAC/B,IAAI,CAAC,eAAe,GAAG;YACrB,GAAG,iBAAiB;YACpB,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,qBAAqB,IAAI,EAAE,CAAC;SAC9C,CAAC;QAEF,mDAAmD;QACnD,IAAI,IAAI,CAAC,OAAO,CAAC,eAAe,IAAI,IAAI,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YAChE,IAAI,CAAC,gBAAgB,GAAG,IAAI,gBAAgB,CAAC;gBAC3C,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,YAAY;gBACnC,cAAc,EAAE,IAAI;gBACpB,gBAAgB,EAAE,IAAI;aACvB,CAAC,CAAC;YAEH,IAAI,CAAC,eAAe,GAAG,IAAI,eAAe,CACxC,IAAI,CAAC,iBAAiB,EACtB,IAAI,CAAC,eAAe,EACpB,CAAC,GAAG,sBAAsB,CAAC,EAC3B;gBACE,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,YAAY;gBACnC,kBAAkB,EAAE,IAAI,CAAC,OAAO,CAAC,kBAAkB;gBACnD,aAAa,EAAE,GAAG;aACnB,CACF,CAAC;QACJ,CAAC;QAED,oCAAoC;QACpC,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACxB,IAAI,CAAC,UAAU,GAAG,IAAI,eAAe,CACnC,IAAI,CAAC,iBAAiB,EACtB,IAAI,CAAC,eAAe,EACpB;gBACE,aAAa,EAAE,IAAI;gBACnB,wBAAwB,EAAE,IAAI,CAAC,OAAO,CAAC,kBAAkB;gBACzD,QAAQ,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC;gBAC9C,aAAa,EAAE,GAAG;aACnB,CACF,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,UAAU;QACf,kBAAkB,EAAE,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,QAAgB;QAC5B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,4CAA4C;QAC5C,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAE7D,0BAA0B;QAC1B,IAAI,YAAY,GAAwC,iBAAiB,CAAC;QAC1E,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC,eAAe,EAAE,CAAC;YACxD,YAAY,GAAG,UAAU,CAAC;QAC5B,CAAC;aAAM,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YAC/B,YAAY,GAAG,KAAK,CAAC;QACvB,CAAC;aAAM,IAAI,IAAI,CAAC,OAAO,CAAC,eAAe,EAAE,CAAC;YACxC,YAAY,GAAG,iBAAiB,CAAC;QACnC,CAAC;QAED,6BAA6B;QAC7B,MAAM,MAAM,GAAwB;YAClC,GAAG,UAAU;YACb,YAAY;SACb,CAAC;QAEF,sCAAsC;QACtC,IAAI,IAAI,CAAC,OAAO,CAAC,cAAc,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACzD,IAAI,CAAC;gBACH,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAC;gBAC3E,MAAM,CAAC,SAAS,GAAG,SAAS,CAAC;gBAC7B,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC,gBAAgB,CAAC,aAAa,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YAChF,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,IAAI,CAAC,wCAAwC,KAAK,EAAE,CAAC,CAAC;YAChE,CAAC;QACH,CAAC;QAED,kDAAkD;QAClD,IAAI,IAAI,CAAC,OAAO,CAAC,eAAe,IAAI,IAAI,CAAC,eAAe,IAAI,MAAM,CAAC,SAAS,EAAE,CAAC;YAC7E,IAAI,CAAC;gBACH,MAAM,eAAe,GAAG,IAAI,CAAC,sBAAsB,CAAC,UAAU,CAAC,CAAC;gBAChE,MAAM,QAAQ,GAAG,IAAI,CAAC,eAAe,CAAC,OAAO,CAC3C,MAAM,CAAC,SAAS,EAChB,eAAe,CAChB,CAAC;gBACF,MAAM,CAAC,uBAAuB,GAAG,QAAQ,CAAC;gBAE1C,mDAAmD;gBACnD,MAAM,WAAW,GAAG,IAAI,CAAC,aAAa,CACpC,MAAM,CAAC,WAAW,EAClB,QAAQ,CACT,CAAC;gBACF,MAAM,CAAC,WAAW,GAAG,WAAW,CAAC;YACnC,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,IAAI,CAAC,6CAA6C,KAAK,EAAE,CAAC,CAAC;YACrE,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,MAAM,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAEzC,iBAAiB;QACjB,MAAM,CAAC,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAE3C,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,QAAgB,EAAE,IAAqB;QAC1D,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,oBAAoB;QACpB,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAE7D,MAAM,MAAM,GAAwB;YAClC,GAAG,UAAU;YACb,YAAY,EAAE,KAAK;YACnB,UAAU,EAAE,EAAE;SACf,CAAC;QAEF,mBAAmB;QACnB,IAAI,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvC,IAAI,UAAU,GAAuB;gBACnC,UAAU,EAAE,CAAC;gBACb,YAAY,EAAE,CAAC;gBACf,OAAO,EAAE,CAAC;gBACV,KAAK,EAAE,CAAC;gBACR,eAAe,EAAE,CAAC;gBAClB,cAAc,EAAE,CAAC;gBACjB,aAAa,EAAE,CAAC;aACjB,CAAC;YAEF,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;gBACvB,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC;gBACpD,MAAM,CAAC,UAAW,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;gBAEnC,wBAAwB;gBACxB,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;gBACvD,UAAU,CAAC,UAAU,IAAI,KAAK,CAAC,UAAU,CAAC;gBAC1C,UAAU,CAAC,YAAY,IAAI,KAAK,CAAC,YAAY,CAAC;gBAC9C,UAAU,CAAC,OAAO,IAAI,KAAK,CAAC,OAAO,CAAC;gBACpC,UAAU,CAAC,KAAK,IAAI,KAAK,CAAC,KAAK,CAAC;gBAChC,UAAU,CAAC,eAAe,IAAI,KAAK,CAAC,eAAe,CAAC;gBACpD,UAAU,CAAC,cAAc,IAAI,KAAK,CAAC,cAAc,CAAC;YACpD,CAAC;YAED,+BAA+B;YAC/B,IAAI,UAAU,CAAC,eAAe,GAAG,CAAC,EAAE,CAAC;gBACnC,MAAM,eAAe,GAAG,MAAM,CAAC,UAAW,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;oBAC3D,OAAO,GAAG,GAAG,CAAC,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;gBACvE,CAAC,EAAE,CAAC,CAAC,CAAC;gBACN,UAAU,CAAC,aAAa,GAAG,eAAe,GAAG,UAAU,CAAC,eAAe,CAAC;YAC1E,CAAC;YAED,MAAM,CAAC,QAAQ,GAAG,UAAU,CAAC;YAE7B,wCAAwC;YACxC,MAAM,QAAQ,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,UAAW,CAAC,CAAC;YAC1D,MAAM,CAAC,WAAW,GAAG,CAAC,GAAG,MAAM,CAAC,WAAW,EAAE,GAAG,QAAQ,CAAC,CAAC;QAC5D,CAAC;QAED,MAAM,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QACzC,MAAM,CAAC,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAE3C,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACK,sBAAsB,CAAC,UAAuB;QACpD,OAAO,UAAU,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YACzC,MAAM,EAAE,MAAM,CAAC,EAAE;YACjB,UAAU,EAAE,MAAM,CAAC,YAAY;YAC/B,IAAI,EAAE,MAAM,CAAC,QAAQ,CAAC,SAAS;YAC/B,MAAM,EAAE,MAAM,CAAC,QAAQ,CAAC,WAAW;YACnC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,IAAI;SAC/B,CAAC,CAAC,CAAC;IACN,CAAC;IAED;;OAEG;IACK,aAAa,CACnB,UAAuB,EACvB,aAA6B;QAE7B,MAAM,MAAM,GAAG,CAAC,GAAG,UAAU,CAAC,CAAC;QAC/B,MAAM,YAAY,GAAG,IAAI,GAAG,CAC1B,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC,CACrI,CAAC;QAEF,uDAAuD;QACvD,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;YACpC,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;YAE1I,sDAAsD;YACtD,IAAI,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,SAAS;YAEpC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC,CAAC,CAAC;QAClD,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACK,oBAAoB,CAAC,OAAqB;QAChD,MAAM,cAAc,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,IAAI,YAAY,CAAwB,CAAC;QACpF,MAAM,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC;QAE3C,OAAO;YACL,EAAE,EAAE,OAAO,CAAC,EAAE;YACd,MAAM,EAAE;gBACN,EAAE,EAAE,OAAO,CAAC,MAAM,CAAC,EAAE;gBACrB,QAAQ,EAAE,cAAc;gBACxB,QAAQ,EAAE;oBACR,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI;oBAClC,SAAS,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI;oBACvC,WAAW,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM;oBAC3C,OAAO,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI;oBACrC,SAAS,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE,MAAM,IAAI,CAAC,CAAC;iBAC/E;gBACD,YAAY,EAAE,OAAO,CAAC,MAAM,CAAC,IAAI,IAAI,SAAS;gBAC9C,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,IAAI,IAAI,SAAS;gBAC5C,WAAW,EAAE,iBAAiB,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE;gBACnD,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,UAAU;aACtC;YACD,IAAI,EAAE;gBACJ,EAAE,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;gBACnB,QAAQ,EAAE,YAAY;gBACtB,QAAQ,EAAE;oBACR,IAAI,EAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI;oBAChC,SAAS,EAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI;oBACrC,WAAW,EAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM;oBACzC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI;oBACnC,SAAS,EAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,IAAI,CAAC,CAAC;iBAC3E;gBACD,YAAY,EAAE,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,SAAS;gBAC5C,aAAa,EAAE,CAAC;gBAChB,kBAAkB,EAAE,EAAE;gBACtB,WAAW,EAAE,eAAe,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE;gBAC/C,QAAQ,EAAE,OAAO,CAAC,QAAQ;aAC3B;YACD,KAAK,EAAE,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC;gBAC1C,KAAK,EAAE,GAAG;gBACV,QAAQ,EAAE;oBACR,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ;oBACxB,SAAS,EAAE,IAAI,CAAC,IAAI,CAAC,IAAI;oBACzB,WAAW,EAAE,IAAI,CAAC,IAAI,CAAC,MAAM;oBAC7B,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,IAAI;oBACvB,SAAS,EAAE,IAAI,CAAC,IAAI,CAAC,MAAM;iBAC5B;gBACD,UAAU,EAAE,IAAI,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE;gBACtC,SAAS,EAAE,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,QAAQ,CAAC;gBACrD,SAAS,EAAE,IAAI,CAAC,iBAAiB,CAAC,MAAM,GAAG,CAAC;aAC7C,CAAC,CAAC;YACH,SAAS,EAAE,OAAO,CAAC,oBAAoB;YACvC,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,MAAM,EAAE,OAAO,CAAC,QAAQ,CAAC,MAAM;SAChC,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,sBAAsB,CAAC,QAAgB;QAC7C,MAAM,OAAO,GAAwG;YACnH,YAAY,EAAE,YAAY;YAC1B,WAAW,EAAE,WAAW;YACxB,QAAQ,EAAE,QAAQ;YAClB,iBAAiB,EAAE,iBAAiB;YACpC,aAAa,EAAE,MAAM;YACrB,UAAU,EAAE,MAAM;YAClB,UAAU,EAAE,YAAY;SACzB,CAAC;QACF,OAAO,OAAO,CAAC,QAAQ,CAAC,IAAI,YAAY,CAAC;IAC3C,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,UAA4B;QAClD,MAAM,KAAK,GAAgB,EAAE,CAAC;QAC9B,IAAI,WAAW,GAAG,CAAC,CAAC;QAEpB,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;YACnC,KAAK,MAAM,QAAQ,IAAI,SAAS,CAAC,eAAe,EAAE,CAAC;gBACjD,IAAI,QAAQ,CAAC,WAAW;oBAAE,SAAS,CAAC,uBAAuB;gBAE3D,WAAW,EAAE,CAAC;gBACd,KAAK,CAAC,IAAI,CAAC;oBACT,EAAE,EAAE,YAAY,MAAM,CAAC,WAAW,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE;oBACtD,MAAM,EAAE;wBACN,EAAE,EAAE,WAAW,WAAW,EAAE;wBAC5B,QAAQ,EAAE,YAAmC;wBAC7C,QAAQ,EAAE;4BACR,IAAI,EAAE,QAAQ,CAAC,MAAM,CAAC,QAAQ;4BAC9B,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,IAAI;4BAC/B,WAAW,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM;4BACnC,OAAO,EAAE,QAAQ,CAAC,MAAM,CAAC,IAAI;4BAC7B,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM;yBAClC;wBACD,YAAY,EAAE,QAAQ,CAAC,MAAM,CAAC,UAAU,IAAI,EAAE;wBAC9C,UAAU,EAAE,QAAQ,CAAC,MAAM,CAAC,UAAU,IAAI,EAAE;wBAC5C,WAAW,EAAE,2BAA2B;wBACxC,UAAU,EAAE,QAAQ,CAAC,UAAU;qBAChC;oBACD,IAAI,EAAE;wBACJ,EAAE,EAAE,WAAW,WAAW,EAAE;wBAC5B,QAAQ,EAAE,WAAgC;wBAC1C,QAAQ,EAAE;4BACR,IAAI,EAAE,QAAQ,CAAC,IAAI,CAAC,QAAQ;4BAC5B,SAAS,EAAE,QAAQ,CAAC,IAAI,CAAC,IAAI;4BAC7B,WAAW,EAAE,QAAQ,CAAC,IAAI,CAAC,MAAM;4BACjC,OAAO,EAAE,QAAQ,CAAC,IAAI,CAAC,IAAI;4BAC3B,SAAS,EAAE,QAAQ,CAAC,IAAI,CAAC,MAAM;yBAChC;wBACD,YAAY,EAAE,QAAQ,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE;wBAC5C,aAAa,EAAE,CAAC;wBAChB,kBAAkB,EAAE,EAAE;wBACtB,WAAW,EAAE,yBAAyB;wBACtC,QAAQ,EAAE,MAAM;qBACjB;oBACD,KAAK,EAAE,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,CAAC,CAAC;wBAC3C,KAAK;wBACL,QAAQ,EAAE;4BACR,IAAI,EAAE,QAAQ,CAAC,MAAM,CAAC,QAAQ;4BAC9B,SAAS,EAAE,CAAC;4BACZ,WAAW,EAAE,CAAC;4BACd,OAAO,EAAE,CAAC;4BACV,SAAS,EAAE,CAAC;yBACb;wBACD,UAAU,EAAE,MAAM;wBAClB,SAAS,EAAE,YAAY;wBACvB,SAAS,EAAE,KAAK;qBACjB,CAAC,CAAC;oBACH,SAAS,EAAE,QAAQ,CAAC,WAAW;oBAC/B,UAAU,EAAE,QAAQ,CAAC,UAAU;oBAC/B,MAAM,EAAE,QAAQ,CAAC,IAAI,CAAC,MAAM;iBAC7B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,MAA2B;QAC9C,MAAM,UAAU,GAA6B;YAC3C,QAAQ,EAAE,CAAC;YACX,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,GAAG,EAAE,CAAC;YACN,IAAI,EAAE,CAAC;SACR,CAAC;QAEF,MAAM,gBAAgB,GAAwC;YAC5D,YAAY,EAAE,CAAC;YACf,UAAU,EAAE,CAAC;YACb,aAAa,EAAE,CAAC;YAChB,SAAS,EAAE,CAAC;YACZ,aAAa,EAAE,CAAC;YAChB,QAAQ,EAAE,CAAC;YACX,UAAU,EAAE,CAAC;SACd,CAAC;QAEF,MAAM,cAAc,GAAsC;YACxD,WAAW,EAAE,CAAC;YACd,aAAa,EAAE,CAAC;YAChB,cAAc,EAAE,CAAC;YACjB,YAAY,EAAE,CAAC;YACf,WAAW,EAAE,CAAC;YACd,aAAa,EAAE,CAAC;YAChB,UAAU,EAAE,CAAC;YACb,MAAM,EAAE,CAAC;YACT,iBAAiB,EAAE,CAAC;YACpB,YAAY,EAAE,CAAC;YACf,aAAa,EAAE,CAAC;YAChB,cAAc,EAAE,CAAC;SAClB,CAAC;QAEF,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YACtC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACjC,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;YACzC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QACvC,CAAC;QAED,OAAO;YACL,YAAY,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM;YACnC,UAAU,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM;YAC/B,eAAe,EAAE,MAAM,CAAC,WAAW,CAAC,MAAM;YAC1C,UAAU;YACV,gBAAgB;YAChB,cAAc;SACf,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,oBAAoB;QAClB,OAAO,CAAC,GAAG,IAAI,CAAC,iBAAiB,CAAC,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,kBAAkB;QAChB,OAAO,CAAC,GAAG,IAAI,CAAC,eAAe,CAAC,CAAC;IACnC,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,MAAwB;QAC1C,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACpC,+CAA+C;QAC/C,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACzB,IAAI,CAAC,eAAe,GAAG,IAAI,eAAe,CACxC,IAAI,CAAC,iBAAiB,EACtB,IAAI,CAAC,eAAe,EACpB,CAAC,GAAG,sBAAsB,CAAC,EAC3B;gBACE,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,YAAY;gBACnC,kBAAkB,EAAE,IAAI,CAAC,OAAO,CAAC,kBAAkB;gBACnD,aAAa,EAAE,GAAG;aACnB,CACF,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,IAAoB;QACpC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAChC,+CAA+C;QAC/C,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACzB,IAAI,CAAC,eAAe,GAAG,IAAI,eAAe,CACxC,IAAI,CAAC,iBAAiB,EACtB,IAAI,CAAC,eAAe,EACpB,CAAC,GAAG,sBAAsB,CAAC,EAC3B;gBACE,QAAQ,EAAE,IAAI,CAAC,OAAO,CAAC,YAAY;gBACnC,kBAAkB,EAAE,IAAI,CAAC,OAAO,CAAC,kBAAkB;gBACnD,aAAa,EAAE,GAAG;aACnB,CACF,CAAC;QACJ,CAAC;IACH,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,2BAA2B,CACzC,OAA8B;IAE9B,OAAO,IAAI,qBAAqB,CAAC,OAAO,CAAC,CAAC;AAC5C,CAAC"}

package/dist/analysis/index.d.ts

@@ -4,6 +4,7 @@
  */
 export { VulnerabilityScanner, createVulnerabilityScanner, resetVulnCounter, } from './vulnerability-scanner.js';
 export { TaintAnalyzer, createTaintAnalyzer, resetTaintCounters, } from './taint-analyzer.js';
+export { EnhancedTaintAnalyzer, createEnhancedTaintAnalyzer, type EnhancedTaintOptions, type EnhancedTaintResult, } from './enhanced-taint-analyzer.js';
 export { SecretDetector, createSecretDetector, resetSecretCounter, } from './secret-detector.js';
 export { DependencyAuditor, createDependencyAuditor, } from './dependency-auditor.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/analysis/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/analysis/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,oBAAoB,EACpB,0BAA0B,EAC1B,gBAAgB,GACjB,MAAM,4BAA4B,CAAC;AAEpC,OAAO,EACL,aAAa,EACb,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EACL,cAAc,EACd,oBAAoB,EACpB,kBAAkB,GACnB,MAAM,sBAAsB,CAAC;AAE9B,OAAO,EACL,iBAAiB,EACjB,uBAAuB,GACxB,MAAM,yBAAyB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/analysis/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,oBAAoB,EACpB,0BAA0B,EAC1B,gBAAgB,GACjB,MAAM,4BAA4B,CAAC;AAEpC,OAAO,EACL,aAAa,EACb,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EACL,qBAAqB,EACrB,2BAA2B,EAC3B,KAAK,oBAAoB,EACzB,KAAK,mBAAmB,GACzB,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EACL,cAAc,EACd,oBAAoB,EACpB,kBAAkB,GACnB,MAAM,sBAAsB,CAAC;AAE9B,OAAO,EACL,iBAAiB,EACjB,uBAAuB,GACxB,MAAM,yBAAyB,CAAC"}

package/dist/analysis/index.js

@@ -4,6 +4,7 @@
  */
 export { VulnerabilityScanner, createVulnerabilityScanner, resetVulnCounter, } from './vulnerability-scanner.js';
 export { TaintAnalyzer, createTaintAnalyzer, resetTaintCounters, } from './taint-analyzer.js';
+export { EnhancedTaintAnalyzer, createEnhancedTaintAnalyzer, } from './enhanced-taint-analyzer.js';
 export { SecretDetector, createSecretDetector, resetSecretCounter, } from './secret-detector.js';
 export { DependencyAuditor, createDependencyAuditor, } from './dependency-auditor.js';
 //# sourceMappingURL=index.js.map

package/dist/analysis/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/analysis/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,oBAAoB,EACpB,0BAA0B,EAC1B,gBAAgB,GACjB,MAAM,4BAA4B,CAAC;AAEpC,OAAO,EACL,aAAa,EACb,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EACL,cAAc,EACd,oBAAoB,EACpB,kBAAkB,GACnB,MAAM,sBAAsB,CAAC;AAE9B,OAAO,EACL,iBAAiB,EACjB,uBAAuB,GACxB,MAAM,yBAAyB,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/analysis/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,oBAAoB,EACpB,0BAA0B,EAC1B,gBAAgB,GACjB,MAAM,4BAA4B,CAAC;AAEpC,OAAO,EACL,aAAa,EACb,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EACL,qBAAqB,EACrB,2BAA2B,GAG5B,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EACL,cAAc,EACd,oBAAoB,EACpB,kBAAkB,GACnB,MAAM,sBAAsB,CAAC;AAE9B,OAAO,EACL,iBAAiB,EACjB,uBAAuB,GACxB,MAAM,yBAAyB,CAAC"}