@neurosec/sentry 1.0.0

package/dist/cli.js

@@ -0,0 +1,255 @@
+#!/usr/bin/env node
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const http_1 = __importDefault(require("http"));
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+const os_1 = __importDefault(require("os"));
+const child_process_1 = require("child_process");
+const setup_1 = require("./setup");
+const VERSION = require('../package.json').version || '1.0.0';
+const USAGE = `
+NeuroShield Sentry v${VERSION}
+
+USAGE
+  neuroshield-sentry <command> [options]
+
+COMMANDS
+  setup     Generate and write sentry.yaml configuration
+  install   Install the sentry daemon as a system service
+  status    Show sentry daemon status and active processes
+  logs      Tail the sentry audit log
+  version   Print version
+  help      Show this help
+
+SETUP OPTIONS
+  --url=<url>         NeuroSec API URL (default: https://api.neurosec.ai)
+  --org=<id>          NeuroSec organization ID
+  --token=<token>     Sentry authentication token (auto-generated if omitted)
+  --mode=<mode>       Enforcement mode: monitor | enforce | quarantine (default: monitor)
+  --config=<path>     Config output path (default: /etc/neuroshield/sentry.yaml)
+  --non-interactive   Skip prompts (use with flags above)
+
+EXAMPLES
+  neuroshield-sentry setup
+  neuroshield-sentry setup --org=org_abc123 --token=nst_xxx --mode=enforce
+  sudo neuroshield-sentry install
+  neuroshield-sentry status
+  neuroshield-sentry logs -n 50
+`;
+function getConfigPaths(platform) {
+    if (platform === 'darwin') {
+        return {
+            config: '/usr/local/etc/neuroshield/sentry.yaml',
+            log: '/usr/local/var/log/neuroshield/sentry.log',
+        };
+    }
+    return {
+        config: '/etc/neuroshield/sentry.yaml',
+        log: '/var/log/neuroshield/sentry.log',
+    };
+}
+async function cmdSetup(args) {
+    const flags = parseFlags(args);
+    if (flags['non-interactive'] || flags.url || flags.org || flags.orgId) {
+        await (0, setup_1.cliSetupNonInteractive)(flags);
+        return;
+    }
+    await (0, setup_1.runSetup)({
+        neurosecUrl: flags.url || flags['neurosec-url'],
+        orgId: flags.org || flags['org-id'],
+        token: flags.token,
+        mode: flags.mode,
+        configPath: flags.config || flags['config-path'],
+        nonInteractive: false,
+    });
+}
+async function cmdInstall() {
+    const platform = os_1.default.platform();
+    const pkgRoot = path_1.default.resolve(__dirname, '..');
+    const scriptsDir = path_1.default.join(pkgRoot, 'scripts');
+    const scriptName = platform === 'darwin' ? 'install-sentry-macos.sh' : 'install-sentry.sh';
+    const installScript = path_1.default.join(scriptsDir, scriptName);
+    if (!fs_1.default.existsSync(installScript)) {
+        console.error(`Install script not found at ${installScript}`);
+        console.error('Run setup first or check the installation.');
+        process.exit(1);
+    }
+    console.log(`Installing sentry daemon for ${platform}...`);
+    const result = (0, child_process_1.spawnSync)('sudo', ['bash', installScript], {
+        stdio: 'inherit',
+        env: { ...process.env, SENTRY_VERSION: VERSION },
+    });
+    process.exit(result.status ?? 1);
+}
+async function cmdStatus() {
+    const paths = getConfigPaths(os_1.default.platform());
+    // Try local API first
+    const apiPorts = [9191];
+    for (const port of apiPorts) {
+        try {
+            const data = await httpGet(`http://127.0.0.1:${port}/api/v1/status`, 3000);
+            const status = JSON.parse(data);
+            console.log('');
+            console.log('NeuroShield Sentry — Status');
+            console.log('────────────────────────────');
+            console.log(`  Version:         ${status.version}`);
+            console.log(`  Uptime:          ${formatUptime(status.uptime)}`);
+            console.log(`  Mode:            ${status.mode}`);
+            console.log(`  Platform:        ${status.platform}`);
+            console.log(`  Tagged Processes: ${status.taggedProcesses}`);
+            console.log(`  Sandboxed:       ${status.sandboxedProcesses}`);
+            console.log(`  Decisions Total: ${status.decisionsTotal}`);
+            console.log(`  Decisions Denied: ${status.decisionsDenied}`);
+            console.log(`  Policy Version:  ${status.policyVersion}`);
+            console.log(`  Last Sync:       ${status.lastSyncAt || 'never'}`);
+            console.log('');
+            if (status.taggedProcesses > 0) {
+                try {
+                    const procData = await httpGet(`http://127.0.0.1:${port}/api/v1/processes`, 3000);
+                    const processes = JSON.parse(procData);
+                    if (Array.isArray(processes) && processes.length > 0) {
+                        console.log('  Tagged Processes:');
+                        for (const p of processes) {
+                            const sandboxIcon = p.sandboxed ? '🔒' : '○';
+                            console.log(`    ${sandboxIcon} pid=${p.pid} ${p.frameworkName} (${(p.confidence * 100).toFixed(0)}%) ${p.command.slice(0, 80)}`);
+                        }
+                        console.log('');
+                    }
+                }
+                catch { /* non-fatal */ }
+            }
+            return;
+        }
+        catch {
+            continue;
+        }
+    }
+    // Fallback: check if process is running
+    try {
+        const ps = (0, child_process_1.execSync)('pgrep -f neuroshield-sentryd', { encoding: 'utf8', timeout: 3000 }).trim();
+        if (ps) {
+            console.log('Sentry daemon process is running (pids: ' + ps + ')');
+            console.log('Local API not responding — daemon may still be starting up.');
+            console.log(`Config: ${paths.config}`);
+            console.log(`Logs:   ${paths.log}`);
+        }
+    }
+    catch {
+        // process not found
+    }
+    // Check if config exists
+    if (fs_1.default.existsSync(paths.config)) {
+        console.log('Sentry daemon is NOT running.');
+        console.log(`Config exists: ${paths.config}`);
+        console.log('Start it with: sudo neuroshield-sentryd');
+    }
+    else {
+        console.log('Sentry daemon is NOT configured.');
+        console.log('Run: neuroshield-sentry setup');
+    }
+}
+async function cmdLogs(args) {
+    const paths = getConfigPaths(os_1.default.platform());
+    const logFile = paths.log;
+    if (!fs_1.default.existsSync(logFile)) {
+        console.error(`Audit log not found: ${logFile}`);
+        console.error('The daemon may not have started yet.');
+        process.exit(1);
+    }
+    const flags = parseFlags(args);
+    const lines = flags.n || flags.lines || flags['tail'] || '50';
+    const follow = flags.f || flags.follow || false;
+    if (follow) {
+        const tail = (0, child_process_1.spawnSync)('tail', ['-f', '-n', String(lines), logFile], {
+            stdio: 'inherit',
+        });
+        process.exit(tail.status ?? 0);
+    }
+    else {
+        const tail = (0, child_process_1.spawnSync)('tail', ['-n', String(lines), logFile], {
+            stdio: 'inherit',
+        });
+        process.exit(tail.status ?? 0);
+    }
+}
+function cmdVersion() {
+    console.log(VERSION);
+}
+function cmdHelp() {
+    console.log(USAGE);
+}
+function parseFlags(args) {
+    const flags = {};
+    for (const arg of args) {
+        const match = arg.match(/^--(\w[\w-]*)(?:=(.*))?$/);
+        if (match) {
+            const key = match[1].replace(/-/g, '');
+            flags[key] = match[2] ?? 'true';
+        }
+    }
+    return flags;
+}
+function httpGet(url, timeout) {
+    return new Promise((resolve, reject) => {
+        const req = http_1.default.get(url, { timeout }, res => {
+            let data = '';
+            res.on('data', chunk => { data += chunk; });
+            res.on('end', () => resolve(data));
+        });
+        req.on('error', reject);
+        req.on('timeout', () => { req.destroy(); reject(new Error('timeout')); });
+    });
+}
+function formatUptime(seconds) {
+    const d = Math.floor(seconds / 86400);
+    const h = Math.floor((seconds % 86400) / 3600);
+    const m = Math.floor((seconds % 3600) / 60);
+    const s = seconds % 60;
+    const parts = [];
+    if (d > 0)
+        parts.push(`${d}d`);
+    if (h > 0)
+        parts.push(`${h}h`);
+    if (m > 0)
+        parts.push(`${m}m`);
+    parts.push(`${s}s`);
+    return parts.join(' ');
+}
+async function main() {
+    const cmd = process.argv[2] || 'help';
+    const rest = process.argv.slice(3);
+    switch (cmd) {
+        case 'setup':
+            await cmdSetup(rest);
+            break;
+        case 'install':
+            await cmdInstall();
+            break;
+        case 'status':
+            await cmdStatus();
+            break;
+        case 'logs':
+            await cmdLogs(rest);
+            break;
+        case 'version':
+        case '-v':
+        case '--version':
+            cmdVersion();
+            break;
+        case 'help':
+        case '-h':
+        case '--help':
+        default:
+            cmdHelp();
+            break;
+    }
+}
+main().catch(err => {
+    console.error('CLI error:', err.message);
+    process.exit(1);
+});
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";;;;;;AACA,gDAAwB;AACxB,4CAAoB;AACpB,gDAAwB;AACxB,4CAAoB;AACpB,iDAAoD;AACpD,mCAA2D;AAE3D,MAAM,OAAO,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC,OAAO,IAAI,OAAO,CAAC;AAE9D,MAAM,KAAK,GAAG;sBACQ,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;CA2B5B,CAAC;AAEF,SAAS,cAAc,CAAC,QAAgB;IACtC,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAC1B,OAAO;YACL,MAAM,EAAE,wCAAwC;YAChD,GAAG,EAAE,2CAA2C;SACjD,CAAC;IACJ,CAAC;IACD,OAAO;QACL,MAAM,EAAE,8BAA8B;QACtC,GAAG,EAAE,iCAAiC;KACvC,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,QAAQ,CAAC,IAAc;IACpC,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC;IAE/B,IAAI,KAAK,CAAC,iBAAiB,CAAC,IAAI,KAAK,CAAC,GAAG,IAAI,KAAK,CAAC,GAAG,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;QACtE,MAAM,IAAA,8BAAsB,EAAC,KAAK,CAAC,CAAC;QACpC,OAAO;IACT,CAAC;IAED,MAAM,IAAA,gBAAQ,EAAC;QACb,WAAW,EAAE,KAAK,CAAC,GAAG,IAAI,KAAK,CAAC,cAAc,CAAC;QAC/C,KAAK,EAAE,KAAK,CAAC,GAAG,IAAI,KAAK,CAAC,QAAQ,CAAC;QACnC,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,UAAU,EAAE,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,aAAa,CAAC;QAChD,cAAc,EAAE,KAAK;KACtB,CAAC,CAAC;AACL,CAAC;AAED,KAAK,UAAU,UAAU;IACvB,MAAM,QAAQ,GAAG,YAAE,CAAC,QAAQ,EAAE,CAAC;IAC/B,MAAM,OAAO,GAAG,cAAI,CAAC,OAAO,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IAC9C,MAAM,UAAU,GAAG,cAAI,CAAC,IAAI,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;IACjD,MAAM,UAAU,GAAG,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,yBAAyB,CAAC,CAAC,CAAC,mBAAmB,CAAC;IAC3F,MAAM,aAAa,GAAG,cAAI,CAAC,IAAI,CAAC,UAAU,EAAE,UAAU,CAAC,CAAC;IAExD,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;QAClC,OAAO,CAAC,KAAK,CAAC,+BAA+B,aAAa,EAAE,CAAC,CAAC;QAC9D,OAAO,CAAC,KAAK,CAAC,4CAA4C,CAAC,CAAC;QAC5D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,gCAAgC,QAAQ,KAAK,CAAC,CAAC;IAC3D,MAAM,MAAM,GAAG,IAAA,yBAAS,EAAC,MAAM,EAAE,CAAC,MAAM,EAAE,aAAa,CAAC,EAAE;QACxD,KAAK,EAAE,SAAS;QAChB,GAAG,EAAE,EAAE,GAAG,OAAO,CAAC,GAAG,EAAE,cAAc,EAAE,OAAO,EAAE;KACjD,CAAC,CAAC;IAEH,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC;AACnC,CAAC;AAED,KAAK,UAAU,SAAS;IACtB,MAAM,KAAK,GAAG,cAAc,CAAC,YAAE,CAAC,QAAQ,EAAE,CAAC,CAAC;IAE5C,sBAAsB;IACtB,MAAM,QAAQ,GAAG,CAAC,IAAI,CAAC,CAAC;IACxB,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,oBAAoB,IAAI,gBAAgB,EAAE,IAAI,CAAC,CAAC;YAC3E,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAChC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;YAC3C,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;YAC5C,OAAO,CAAC,GAAG,CAAC,sBAAsB,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;YACpD,OAAO,CAAC,GAAG,CAAC,sBAAsB,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,sBAAsB,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;YACjD,OAAO,CAAC,GAAG,CAAC,sBAAsB,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;YACrD,OAAO,CAAC,GAAG,CAAC,uBAAuB,MAAM,CAAC,eAAe,EAAE,CAAC,CAAC;YAC7D,OAAO,CAAC,GAAG,CAAC,sBAAsB,MAAM,CAAC,kBAAkB,EAAE,CAAC,CAAC;YAC/D,OAAO,CAAC,GAAG,CAAC,sBAAsB,MAAM,CAAC,cAAc,EAAE,CAAC,CAAC;YAC3D,OAAO,CAAC,GAAG,CAAC,uBAAuB,MAAM,CAAC,eAAe,EAAE,CAAC,CAAC;YAC7D,OAAO,CAAC,GAAG,CAAC,sBAAsB,MAAM,CAAC,aAAa,EAAE,CAAC,CAAC;YAC1D,OAAO,CAAC,GAAG,CAAC,sBAAsB,MAAM,CAAC,UAAU,IAAI,OAAO,EAAE,CAAC,CAAC;YAClE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,IAAI,MAAM,CAAC,eAAe,GAAG,CAAC,EAAE,CAAC;gBAC/B,IAAI,CAAC;oBACH,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,oBAAoB,IAAI,mBAAmB,EAAE,IAAI,CAAC,CAAC;oBAClF,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;oBACvC,IAAI,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBACrD,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;wBACnC,KAAK,MAAM,CAAC,IAAI,SAAS,EAAE,CAAC;4BAC1B,MAAM,WAAW,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC;4BAC7C,OAAO,CAAC,GAAG,CAAC,OAAO,WAAW,QAAQ,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC,aAAa,KAAK,CAAC,CAAC,CAAC,UAAU,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC;wBACpI,CAAC;wBACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;oBAClB,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC;YAC7B,CAAC;YACD,OAAO;QACT,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;IACH,CAAC;IAED,wCAAwC;IACxC,IAAI,CAAC;QACH,MAAM,EAAE,GAAG,IAAA,wBAAQ,EAAC,8BAA8B,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAChG,IAAI,EAAE,EAAE,CAAC;YACP,OAAO,CAAC,GAAG,CAAC,0CAA0C,GAAG,EAAE,GAAG,GAAG,CAAC,CAAC;YACnE,OAAO,CAAC,GAAG,CAAC,6DAA6D,CAAC,CAAC;YAC3E,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;YACvC,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC;QACtC,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,oBAAoB;IACtB,CAAC;IAED,yBAAyB;IACzB,IAAI,YAAE,CAAC,UAAU,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;QAChC,OAAO,CAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;QAC7C,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;QAC9C,OAAO,CAAC,GAAG,CAAC,yCAAyC,CAAC,CAAC;IACzD,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,kCAAkC,CAAC,CAAC;QAChD,OAAO,CAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;IAC/C,CAAC;AACH,CAAC;AAED,KAAK,UAAU,OAAO,CAAC,IAAc;IACnC,MAAM,KAAK,GAAG,cAAc,CAAC,YAAE,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC5C,MAAM,OAAO,GAAG,KAAK,CAAC,GAAG,CAAC;IAE1B,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,KAAK,CAAC,wBAAwB,OAAO,EAAE,CAAC,CAAC;QACjD,OAAO,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;QACtD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC;IAC/B,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,IAAI,KAAK,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC;IAC9D,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC;IAEhD,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,IAAI,GAAG,IAAA,yBAAS,EAAC,MAAM,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,OAAO,CAAC,EAAE;YACnE,KAAK,EAAE,SAAS;SACjB,CAAC,CAAC;QACH,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC;IACjC,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,GAAG,IAAA,yBAAS,EAAC,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,OAAO,CAAC,EAAE;YAC7D,KAAK,EAAE,SAAS;SACjB,CAAC,CAAC;QACH,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC;IACjC,CAAC;AACH,CAAC;AAED,SAAS,UAAU;IACjB,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;AACvB,CAAC;AAED,SAAS,OAAO;IACd,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;AACrB,CAAC;AAED,SAAS,UAAU,CAAC,IAAc;IAChC,MAAM,KAAK,GAA2B,EAAE,CAAC;IACzC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;QACpD,IAAI,KAAK,EAAE,CAAC;YACV,MAAM,GAAG,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YACvC,KAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC;QAClC,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,OAAO,CAAC,GAAW,EAAE,OAAe;IAC3C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,GAAG,GAAG,cAAI,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,OAAO,EAAE,EAAE,GAAG,CAAC,EAAE;YAC3C,IAAI,IAAI,GAAG,EAAE,CAAC;YACd,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,GAAG,IAAI,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;YAC5C,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;QACrC,CAAC,CAAC,CAAC;QACH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QACxB,GAAG,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC5E,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,YAAY,CAAC,OAAe;IACnC,MAAM,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,KAAK,CAAC,CAAC;IACtC,MAAM,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,KAAK,CAAC,GAAG,IAAI,CAAC,CAAC;IAC/C,MAAM,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IAC5C,MAAM,CAAC,GAAG,OAAO,GAAG,EAAE,CAAC;IACvB,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,IAAI,CAAC,GAAG,CAAC;QAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAC/B,IAAI,CAAC,GAAG,CAAC;QAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAC/B,IAAI,CAAC,GAAG,CAAC;QAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAC/B,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACpB,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACzB,CAAC;AAED,KAAK,UAAU,IAAI;IACjB,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC;IACtC,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAEnC,QAAQ,GAAG,EAAE,CAAC;QACZ,KAAK,OAAO;YACV,MAAM,QAAQ,CAAC,IAAI,CAAC,CAAC;YACrB,MAAM;QACR,KAAK,SAAS;YACZ,MAAM,UAAU,EAAE,CAAC;YACnB,MAAM;QACR,KAAK,QAAQ;YACX,MAAM,SAAS,EAAE,CAAC;YAClB,MAAM;QACR,KAAK,MAAM;YACT,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;YACpB,MAAM;QACR,KAAK,SAAS,CAAC;QACf,KAAK,IAAI,CAAC;QACV,KAAK,WAAW;YACd,UAAU,EAAE,CAAC;YACb,MAAM;QACR,KAAK,MAAM,CAAC;QACZ,KAAK,IAAI,CAAC;QACV,KAAK,QAAQ,CAAC;QACd;YACE,OAAO,EAAE,CAAC;YACV,MAAM;IACV,CAAC;AACH,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE;IACjB,OAAO,CAAC,KAAK,CAAC,YAAY,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;IACzC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/config.d.ts

@@ -0,0 +1,54 @@
+import { EnforcementMode } from './types';
+export interface SentryConfig {
+    sentry: {
+        hostId: string;
+        version: string;
+        healthPort: number;
+        apiPort: number;
+        stateDir: string;
+        pidFilePath: string;
+    };
+    neurosec: {
+        endpoint: string;
+        orgId: string;
+        tokenPath: string;
+        tlsCert: string;
+        tlsKey: string;
+        syncIntervalMs: number;
+        heartbeatIntervalMs: number;
+    };
+    enforcement: {
+        mode: EnforcementMode;
+        sandboxEnabled: boolean;
+        syscallFilterEnabled: boolean;
+        networkFilterEnabled: boolean;
+        filesystemFilterEnabled: boolean;
+    };
+    sandboxDefaults: {
+        cpuMax: string;
+        memoryMax: string;
+        pidMax: number;
+    };
+    network: {
+        allowHosts: string[];
+        blockHosts: string[];
+        allowPrivate: boolean;
+        dnsMonitorEnabled: boolean;
+    };
+    skillAuthz: {
+        enabled: boolean;
+        allowUnknown: boolean;
+        requireApproval: string[];
+    };
+    audit: {
+        logPath: string;
+        retentionDays: number;
+        maxSizeMb: number;
+    };
+    discovery: {
+        intervalMs: number;
+        sourcePaths: string[];
+    };
+}
+export declare function loadConfig(configPath?: string): SentryConfig;
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAG1C,MAAM,WAAW,YAAY;IAC3B,MAAM,EAAE;QACN,MAAM,EAAE,MAAM,CAAC;QACf,OAAO,EAAE,MAAM,CAAC;QAChB,UAAU,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;QAChB,QAAQ,EAAE,MAAM,CAAC;QACjB,WAAW,EAAE,MAAM,CAAC;KACrB,CAAC;IACF,QAAQ,EAAE;QACR,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,SAAS,EAAE,MAAM,CAAC;QAClB,OAAO,EAAE,MAAM,CAAC;QAChB,MAAM,EAAE,MAAM,CAAC;QACf,cAAc,EAAE,MAAM,CAAC;QACvB,mBAAmB,EAAE,MAAM,CAAC;KAC7B,CAAC;IACF,WAAW,EAAE;QACX,IAAI,EAAE,eAAe,CAAC;QACtB,cAAc,EAAE,OAAO,CAAC;QACxB,oBAAoB,EAAE,OAAO,CAAC;QAC9B,oBAAoB,EAAE,OAAO,CAAC;QAC9B,uBAAuB,EAAE,OAAO,CAAC;KAClC,CAAC;IACF,eAAe,EAAE;QACf,MAAM,EAAE,MAAM,CAAC;QACf,SAAS,EAAE,MAAM,CAAC;QAClB,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;IACF,OAAO,EAAE;QACP,UAAU,EAAE,MAAM,EAAE,CAAC;QACrB,UAAU,EAAE,MAAM,EAAE,CAAC;QACrB,YAAY,EAAE,OAAO,CAAC;QACtB,iBAAiB,EAAE,OAAO,CAAC;KAC5B,CAAC;IACF,UAAU,EAAE;QACV,OAAO,EAAE,OAAO,CAAC;QACjB,YAAY,EAAE,OAAO,CAAC;QACtB,eAAe,EAAE,MAAM,EAAE,CAAC;KAC3B,CAAC;IACF,KAAK,EAAE;QACL,OAAO,EAAE,MAAM,CAAC;QAChB,aAAa,EAAE,MAAM,CAAC;QACtB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,SAAS,EAAE;QACT,UAAU,EAAE,MAAM,CAAC;QACnB,WAAW,EAAE,MAAM,EAAE,CAAC;KACvB,CAAC;CACH;AAuED,wBAAgB,UAAU,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,YAAY,CAqF5D"}

package/dist/config.js

@@ -0,0 +1,160 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.loadConfig = loadConfig;
+const fs_1 = __importDefault(require("fs"));
+const yaml_1 = __importDefault(require("yaml"));
+const logger_1 = require("./logger");
+const DEFAULTS = {
+    sentry: {
+        hostId: '',
+        version: '1.0.0',
+        healthPort: 9190,
+        apiPort: 9191,
+        stateDir: '/var/lib/neuroshield/sentry',
+        pidFilePath: '/var/run/neuroshield-sentry.pid',
+    },
+    neurosec: {
+        endpoint: 'wss://sentry.neurosec.ai/v1',
+        orgId: '',
+        tokenPath: '/etc/neuroshield/sentry.token',
+        tlsCert: '/etc/neuroshield/cert.pem',
+        tlsKey: '/etc/neuroshield/key.pem',
+        syncIntervalMs: 30000,
+        heartbeatIntervalMs: 300000,
+    },
+    enforcement: {
+        mode: 'monitor',
+        sandboxEnabled: true,
+        syscallFilterEnabled: true,
+        networkFilterEnabled: true,
+        filesystemFilterEnabled: true,
+    },
+    sandboxDefaults: {
+        cpuMax: '0.5',
+        memoryMax: '512MB',
+        pidMax: 100,
+    },
+    network: {
+        allowHosts: [
+            'api.openai.com:443',
+            'api.anthropic.com:443',
+            'api.neurosec.ai:443',
+        ],
+        blockHosts: [
+            '*.pastebin.com',
+            '*.ngrok.io',
+            '*.requestbin.net',
+            '*.webhook.site',
+        ],
+        allowPrivate: false,
+        dnsMonitorEnabled: true,
+    },
+    skillAuthz: {
+        enabled: true,
+        allowUnknown: false,
+        requireApproval: ['shell_exec', 'bash', 'terminal', 'run_command'],
+    },
+    audit: {
+        logPath: '/var/log/neuroshield/sentry.log',
+        retentionDays: 90,
+        maxSizeMb: 500,
+    },
+    discovery: {
+        intervalMs: 30000,
+        sourcePaths: ['/workspace', '/app', '/home', '/tmp'],
+    },
+};
+function loadToken(tokenPath) {
+    try {
+        return fs_1.default.readFileSync(tokenPath, 'utf8').trim();
+    }
+    catch {
+        return '';
+    }
+}
+function loadConfig(configPath) {
+    const resolvedPath = configPath ?? process.env.SENTRY_CONFIG_PATH ?? '/etc/neuroshield/sentry.yaml';
+    let fileConfig = {};
+    if (fs_1.default.existsSync(resolvedPath)) {
+        try {
+            const raw = fs_1.default.readFileSync(resolvedPath, 'utf8');
+            fileConfig = yaml_1.default.parse(raw);
+            logger_1.logger.info('Config loaded from file', { path: resolvedPath });
+        }
+        catch (err) {
+            logger_1.logger.warn('Failed to parse config file, using defaults', {
+                path: resolvedPath,
+                err: err.message,
+            });
+        }
+    }
+    else {
+        logger_1.logger.info('No config file found, using defaults + env overrides', { path: resolvedPath });
+    }
+    const config = {
+        sentry: {
+            hostId: process.env.SENTRY_HOST_ID ?? fileConfig.sentry?.hostId ?? DEFAULTS.sentry.hostId,
+            version: process.env.SENTRY_VERSION ?? fileConfig.sentry?.version ?? DEFAULTS.sentry.version,
+            healthPort: parseInt(process.env.SENTRY_HEALTH_PORT ?? String(fileConfig.sentry?.healthPort ?? DEFAULTS.sentry.healthPort), 10),
+            apiPort: parseInt(process.env.SENTRY_API_PORT ?? String(fileConfig.sentry?.apiPort ?? DEFAULTS.sentry.apiPort), 10),
+            stateDir: process.env.SENTRY_STATE_DIR ?? fileConfig.sentry?.stateDir ?? DEFAULTS.sentry.stateDir,
+            pidFilePath: process.env.SENTRY_PID_FILE ?? fileConfig.sentry?.pidFilePath ?? DEFAULTS.sentry.pidFilePath,
+        },
+        neurosec: {
+            endpoint: process.env.NEUROSEC_SENTRY_ENDPOINT ?? fileConfig.neurosec?.endpoint ?? DEFAULTS.neurosec.endpoint,
+            orgId: process.env.NEUROSEC_ORG_ID ?? fileConfig.neurosec?.orgId ?? DEFAULTS.neurosec.orgId,
+            tokenPath: process.env.NEUROSEC_TOKEN_PATH ?? fileConfig.neurosec?.tokenPath ?? DEFAULTS.neurosec.tokenPath,
+            tlsCert: process.env.NEUROSEC_TLS_CERT ?? fileConfig.neurosec?.tlsCert ?? DEFAULTS.neurosec.tlsCert,
+            tlsKey: process.env.NEUROSEC_TLS_KEY ?? fileConfig.neurosec?.tlsKey ?? DEFAULTS.neurosec.tlsKey,
+            syncIntervalMs: parseInt(process.env.SENTRY_SYNC_INTERVAL ?? String(fileConfig.neurosec?.syncIntervalMs ?? DEFAULTS.neurosec.syncIntervalMs), 10),
+            heartbeatIntervalMs: parseInt(process.env.SENTRY_HEARTBEAT_INTERVAL ?? String(fileConfig.neurosec?.heartbeatIntervalMs ?? DEFAULTS.neurosec.heartbeatIntervalMs), 10),
+        },
+        enforcement: {
+            mode: (process.env.SENTRY_ENFORCEMENT_MODE ?? fileConfig.enforcement?.mode ?? DEFAULTS.enforcement.mode),
+            sandboxEnabled: (process.env.SENTRY_SANDBOX_ENABLED ?? String(fileConfig.enforcement?.sandboxEnabled ?? DEFAULTS.enforcement.sandboxEnabled)) === 'true',
+            syscallFilterEnabled: (process.env.SENTRY_SYSCALL_FILTER ?? String(fileConfig.enforcement?.syscallFilterEnabled ?? DEFAULTS.enforcement.syscallFilterEnabled)) === 'true',
+            networkFilterEnabled: (process.env.SENTRY_NETWORK_FILTER ?? String(fileConfig.enforcement?.networkFilterEnabled ?? DEFAULTS.enforcement.networkFilterEnabled)) === 'true',
+            filesystemFilterEnabled: (process.env.SENTRY_FS_FILTER ?? String(fileConfig.enforcement?.filesystemFilterEnabled ?? DEFAULTS.enforcement.filesystemFilterEnabled)) === 'true',
+        },
+        sandboxDefaults: {
+            cpuMax: process.env.SENTRY_DEFAULT_CPU ?? fileConfig.sandboxDefaults?.cpuMax ?? DEFAULTS.sandboxDefaults.cpuMax,
+            memoryMax: process.env.SENTRY_DEFAULT_MEMORY ?? fileConfig.sandboxDefaults?.memoryMax ?? DEFAULTS.sandboxDefaults.memoryMax,
+            pidMax: parseInt(process.env.SENTRY_DEFAULT_PID_MAX ?? String(fileConfig.sandboxDefaults?.pidMax ?? DEFAULTS.sandboxDefaults.pidMax), 10),
+        },
+        network: {
+            allowHosts: (process.env.SENTRY_ALLOW_HOSTS ?? fileConfig.network?.allowHosts?.join(',') ?? DEFAULTS.network.allowHosts.join(',')).split(',').map(s => s.trim()).filter(Boolean),
+            blockHosts: (process.env.SENTRY_BLOCK_HOSTS ?? fileConfig.network?.blockHosts?.join(',') ?? DEFAULTS.network.blockHosts.join(',')).split(',').map(s => s.trim()).filter(Boolean),
+            allowPrivate: (process.env.SENTRY_ALLOW_PRIVATE ?? String(fileConfig.network?.allowPrivate ?? DEFAULTS.network.allowPrivate)) === 'true',
+            dnsMonitorEnabled: (process.env.SENTRY_DNS_MONITOR ?? String(fileConfig.network?.dnsMonitorEnabled ?? DEFAULTS.network.dnsMonitorEnabled)) === 'true',
+        },
+        skillAuthz: {
+            enabled: (process.env.SENTRY_SKILL_AUTHZ ?? String(fileConfig.skillAuthz?.enabled ?? DEFAULTS.skillAuthz.enabled)) === 'true',
+            allowUnknown: (process.env.SENTRY_SKILL_ALLOW_UNKNOWN ?? String(fileConfig.skillAuthz?.allowUnknown ?? DEFAULTS.skillAuthz.allowUnknown)) === 'true',
+            requireApproval: (process.env.SENTRY_SKILL_REQUIRE_APPROVAL ?? fileConfig.skillAuthz?.requireApproval?.join(',') ?? DEFAULTS.skillAuthz.requireApproval.join(',')).split(',').map(s => s.trim()).filter(Boolean),
+        },
+        audit: {
+            logPath: process.env.SENTRY_AUDIT_LOG_PATH ?? fileConfig.audit?.logPath ?? DEFAULTS.audit.logPath,
+            retentionDays: parseInt(process.env.SENTRY_AUDIT_RETENTION_DAYS ?? String(fileConfig.audit?.retentionDays ?? DEFAULTS.audit.retentionDays), 10),
+            maxSizeMb: parseInt(process.env.SENTRY_AUDIT_MAX_SIZE_MB ?? String(fileConfig.audit?.maxSizeMb ?? DEFAULTS.audit.maxSizeMb), 10),
+        },
+        discovery: {
+            intervalMs: parseInt(process.env.SENTRY_DISCOVERY_INTERVAL ?? String(fileConfig.discovery?.intervalMs ?? DEFAULTS.discovery.intervalMs), 10),
+            sourcePaths: (process.env.SENTRY_SOURCE_PATHS ?? fileConfig.discovery?.sourcePaths?.join(',') ?? DEFAULTS.discovery.sourcePaths.join(',')).split(',').map(s => s.trim()).filter(Boolean),
+        },
+    };
+    if (!config.sentry.hostId) {
+        config.sentry.hostId = `host-${Math.random().toString(36).slice(2, 10)}`;
+    }
+    if (!config.neurosec.orgId) {
+        config.neurosec.orgId = process.env.NEUROSEC_ORG_ID ?? '';
+    }
+    const token = loadToken(config.neurosec.tokenPath);
+    if (!token) {
+        logger_1.logger.warn('No sentry token found at', { path: config.neurosec.tokenPath });
+    }
+    return config;
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":";;;;;AA+HA,gCAqFC;AApND,4CAAoB;AAEpB,gDAAwB;AAExB,qCAAkC;AAsDlC,MAAM,QAAQ,GAAiB;IAC7B,MAAM,EAAE;QACN,MAAM,EAAE,EAAE;QACV,OAAO,EAAE,OAAO;QAChB,UAAU,EAAE,IAAI;QAChB,OAAO,EAAE,IAAI;QACb,QAAQ,EAAE,6BAA6B;QACvC,WAAW,EAAE,iCAAiC;KAC/C;IACD,QAAQ,EAAE;QACR,QAAQ,EAAE,6BAA6B;QACvC,KAAK,EAAE,EAAE;QACT,SAAS,EAAE,+BAA+B;QAC1C,OAAO,EAAE,2BAA2B;QACpC,MAAM,EAAE,0BAA0B;QAClC,cAAc,EAAE,KAAK;QACrB,mBAAmB,EAAE,MAAM;KAC5B;IACD,WAAW,EAAE;QACX,IAAI,EAAE,SAAS;QACf,cAAc,EAAE,IAAI;QACpB,oBAAoB,EAAE,IAAI;QAC1B,oBAAoB,EAAE,IAAI;QAC1B,uBAAuB,EAAE,IAAI;KAC9B;IACD,eAAe,EAAE;QACf,MAAM,EAAE,KAAK;QACb,SAAS,EAAE,OAAO;QAClB,MAAM,EAAE,GAAG;KACZ;IACD,OAAO,EAAE;QACP,UAAU,EAAE;YACV,oBAAoB;YACpB,uBAAuB;YACvB,qBAAqB;SACtB;QACD,UAAU,EAAE;YACV,gBAAgB;YAChB,YAAY;YACZ,kBAAkB;YAClB,gBAAgB;SACjB;QACD,YAAY,EAAE,KAAK;QACnB,iBAAiB,EAAE,IAAI;KACxB;IACD,UAAU,EAAE;QACV,OAAO,EAAE,IAAI;QACb,YAAY,EAAE,KAAK;QACnB,eAAe,EAAE,CAAC,YAAY,EAAE,MAAM,EAAE,UAAU,EAAE,aAAa,CAAC;KACnE;IACD,KAAK,EAAE;QACL,OAAO,EAAE,iCAAiC;QAC1C,aAAa,EAAE,EAAE;QACjB,SAAS,EAAE,GAAG;KACf;IACD,SAAS,EAAE;QACT,UAAU,EAAE,KAAK;QACjB,WAAW,EAAE,CAAC,YAAY,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC;KACrD;CACF,CAAC;AAEF,SAAS,SAAS,CAAC,SAAiB;IAClC,IAAI,CAAC;QACH,OAAO,YAAE,CAAC,YAAY,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;IACnD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,SAAgB,UAAU,CAAC,UAAmB;IAC5C,MAAM,YAAY,GAAG,UAAU,IAAI,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,8BAA8B,CAAC;IACpG,IAAI,UAAU,GAA0B,EAAE,CAAC;IAE3C,IAAI,YAAE,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;QAChC,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,YAAE,CAAC,YAAY,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;YAClD,UAAU,GAAG,cAAI,CAAC,KAAK,CAAC,GAAG,CAA0B,CAAC;YACtD,eAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,CAAC;QACjE,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,eAAM,CAAC,IAAI,CAAC,6CAA6C,EAAE;gBACzD,IAAI,EAAE,YAAY;gBAClB,GAAG,EAAG,GAAa,CAAC,OAAO;aAC5B,CAAC,CAAC;QACL,CAAC;IACH,CAAC;SAAM,CAAC;QACN,eAAM,CAAC,IAAI,CAAC,sDAAsD,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,CAAC;IAC9F,CAAC;IAED,MAAM,MAAM,GAAiB;QAC3B,MAAM,EAAE;YACN,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,UAAU,CAAC,MAAM,EAAE,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM;YACzF,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,UAAU,CAAC,MAAM,EAAE,OAAO,IAAI,QAAQ,CAAC,MAAM,CAAC,OAAO;YAC5F,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,UAAU,IAAI,QAAQ,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,EAAE,CAAC;YAC/H,OAAO,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,OAAO,IAAI,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,EAAE,CAAC;YACnH,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,UAAU,CAAC,MAAM,EAAE,QAAQ,IAAI,QAAQ,CAAC,MAAM,CAAC,QAAQ;YACjG,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,UAAU,CAAC,MAAM,EAAE,WAAW,IAAI,QAAQ,CAAC,MAAM,CAAC,WAAW;SAC1G;QACD,QAAQ,EAAE;YACR,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,UAAU,CAAC,QAAQ,EAAE,QAAQ,IAAI,QAAQ,CAAC,QAAQ,CAAC,QAAQ;YAC7G,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,UAAU,CAAC,QAAQ,EAAE,KAAK,IAAI,QAAQ,CAAC,QAAQ,CAAC,KAAK;YAC3F,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,UAAU,CAAC,QAAQ,EAAE,SAAS,IAAI,QAAQ,CAAC,QAAQ,CAAC,SAAS;YAC3G,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,UAAU,CAAC,QAAQ,EAAE,OAAO,IAAI,QAAQ,CAAC,QAAQ,CAAC,OAAO;YACnG,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,UAAU,CAAC,QAAQ,EAAE,MAAM,IAAI,QAAQ,CAAC,QAAQ,CAAC,MAAM;YAC/F,cAAc,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,oBAAoB,IAAI,MAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,cAAc,IAAI,QAAQ,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,EAAE,CAAC;YACjJ,mBAAmB,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,IAAI,MAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,mBAAmB,IAAI,QAAQ,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,EAAE,CAAC;SACtK;QACD,WAAW,EAAE;YACX,IAAI,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,UAAU,CAAC,WAAW,EAAE,IAAI,IAAI,QAAQ,CAAC,WAAW,CAAC,IAAI,CAAoB;YAC3H,cAAc,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,sBAAsB,IAAI,MAAM,CAAC,UAAU,CAAC,WAAW,EAAE,cAAc,IAAI,QAAQ,CAAC,WAAW,CAAC,cAAc,CAAC,CAAC,KAAK,MAAM;YACxJ,oBAAoB,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,MAAM,CAAC,UAAU,CAAC,WAAW,EAAE,oBAAoB,IAAI,QAAQ,CAAC,WAAW,CAAC,oBAAoB,CAAC,CAAC,KAAK,MAAM;YACzK,oBAAoB,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,MAAM,CAAC,UAAU,CAAC,WAAW,EAAE,oBAAoB,IAAI,QAAQ,CAAC,WAAW,CAAC,oBAAoB,CAAC,CAAC,KAAK,MAAM;YACzK,uBAAuB,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,MAAM,CAAC,UAAU,CAAC,WAAW,EAAE,uBAAuB,IAAI,QAAQ,CAAC,WAAW,CAAC,uBAAuB,CAAC,CAAC,KAAK,MAAM;SAC9K;QACD,eAAe,EAAE;YACf,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,UAAU,CAAC,eAAe,EAAE,MAAM,IAAI,QAAQ,CAAC,eAAe,CAAC,MAAM;YAC/G,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,UAAU,CAAC,eAAe,EAAE,SAAS,IAAI,QAAQ,CAAC,eAAe,CAAC,SAAS;YAC3H,MAAM,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,sBAAsB,IAAI,MAAM,CAAC,UAAU,CAAC,eAAe,EAAE,MAAM,IAAI,QAAQ,CAAC,eAAe,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;SAC1I;QACD,OAAO,EAAE;YACP,UAAU,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,UAAU,CAAC,OAAO,EAAE,UAAU,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC;YAChL,UAAU,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,UAAU,CAAC,OAAO,EAAE,UAAU,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC;YAChL,YAAY,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,oBAAoB,IAAI,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,YAAY,IAAI,QAAQ,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,KAAK,MAAM;YACxI,iBAAiB,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,iBAAiB,IAAI,QAAQ,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,KAAK,MAAM;SACtJ;QACD,UAAU,EAAE;YACV,OAAO,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,MAAM,CAAC,UAAU,CAAC,UAAU,EAAE,OAAO,IAAI,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,KAAK,MAAM;YAC7H,YAAY,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,0BAA0B,IAAI,MAAM,CAAC,UAAU,CAAC,UAAU,EAAE,YAAY,IAAI,QAAQ,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC,KAAK,MAAM;YACpJ,eAAe,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,6BAA6B,IAAI,UAAU,CAAC,UAAU,EAAE,eAAe,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,UAAU,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC;SACjN;QACD,KAAK,EAAE;YACL,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,UAAU,CAAC,KAAK,EAAE,OAAO,IAAI,QAAQ,CAAC,KAAK,CAAC,OAAO;YACjG,aAAa,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,MAAM,CAAC,UAAU,CAAC,KAAK,EAAE,aAAa,IAAI,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,EAAE,EAAE,CAAC;YAC/I,SAAS,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,MAAM,CAAC,UAAU,CAAC,KAAK,EAAE,SAAS,IAAI,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE,EAAE,CAAC;SACjI;QACD,SAAS,EAAE;YACT,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,IAAI,MAAM,CAAC,UAAU,CAAC,SAAS,EAAE,UAAU,IAAI,QAAQ,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,EAAE,CAAC;YAC5I,WAAW,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,UAAU,CAAC,SAAS,EAAE,WAAW,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,SAAS,CAAC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC;SACzL;KACF,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QAC1B,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,QAAQ,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;IAC3E,CAAC;IAED,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;QAC3B,MAAM,CAAC,QAAQ,CAAC,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,EAAE,CAAC;IAC5D,CAAC;IAED,MAAM,KAAK,GAAG,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;IACnD,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,eAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC,CAAC;IAC/E,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/discovery.d.ts

@@ -0,0 +1,5 @@
+import { SentryConfig } from './config';
+import { TaggedProcess } from './types';
+export declare function discoverProcesses(config: SentryConfig): Promise<TaggedProcess[]>;
+export declare function detectHighRiskChildren(taggedProcesses: TaggedProcess[]): TaggedProcess[];
+//# sourceMappingURL=discovery.d.ts.map

package/dist/discovery.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"discovery.d.ts","sourceRoot":"","sources":["../src/discovery.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAE,aAAa,EAA0B,MAAM,SAAS,CAAC;AAuOhE,wBAAsB,iBAAiB,CAAC,MAAM,EAAE,YAAY,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC,CAuDtF;AAED,wBAAgB,sBAAsB,CAAC,eAAe,EAAE,aAAa,EAAE,GAAG,aAAa,EAAE,CASxF"}