npm - @oalacea/daemon - Versions diffs - 0.6.4 → 0.7.0 - Mend

@oalacea/daemon 0.6.4 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (285) hide show

package/dist/services/scoring/dimensions/security.analyzer.d.ts ADDED Viewed

@@ -0,0 +1,53 @@
+/**
+ * Security Dimension Analyzer
+ *
+ * Analyzes security vulnerabilities using npm audit, Snyk, and pattern matching.
+ *
+ * @module services/scoring/dimensions/security-analyzer
+ */
+import type { DimensionScore, DimensionAnalyzerConfig } from '../../../core/types/scoring.types.js';
+import type { Framework } from '../../../core/types/project.types.js';
+import type { ScoringOptions } from '../../../core/types/scoring.types.js';
+/**
+ * Security Dimension Analyzer
+ */
+export declare class SecurityAnalyzer {
+    /** Analyzer configuration */
+    readonly config: DimensionAnalyzerConfig;
+    private readonly logger;
+    private executor;
+    constructor();
+    /**
+     * Analyze security of the project
+     */
+    analyze(projectPath: string, _framework?: Framework, _options?: ScoringOptions): Promise<DimensionScore>;
+    /**
+     * Check for dependency vulnerabilities using npm audit
+     */
+    private checkDependencyVulnerabilities;
+    /**
+     * Check for vulnerable code patterns in source files
+     */
+    private checkVulnerablePatterns;
+    /**
+     * Recursively scan directory for vulnerable patterns
+     */
+    private scanDirectory;
+    /**
+     * Scan file for vulnerable patterns
+     */
+    private scanFile;
+    /**
+     * Check for security headers in Next.js/Express apps
+     */
+    private checkSecurityHeaders;
+    /**
+     * Generate security improvement suggestions
+     */
+    private generateSecurityImprovements;
+}
+/**
+ * Default security analyzer instance
+ */
+export declare const securityAnalyzer: SecurityAnalyzer;
+//# sourceMappingURL=security.analyzer.d.ts.map

package/dist/services/scoring/dimensions/security.analyzer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"security.analyzer.d.ts","sourceRoot":"","sources":["../../../../src/services/scoring/dimensions/security.analyzer.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAiB,uBAAuB,EAAqF,MAAM,sCAAsC,CAAC;AACtM,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sCAAsC,CAAC;AACtE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sCAAsC,CAAC;AA2D3E;;GAEG;AACH,qBAAa,gBAAgB;IAC3B,6BAA6B;IAC7B,QAAQ,CAAC,MAAM,EAAE,uBAAuB,CAKtC;IAEF,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAkB;;IAOlC;;OAEG;IACG,OAAO,CAAC,WAAW,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,SAAS,EAAE,QAAQ,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC;IAmC9G;;OAEG;YACW,8BAA8B;IAqC5C;;OAEG;YACW,uBAAuB;IAmCrC;;OAEG;YACW,aAAa;IAoB3B;;OAEG;YACW,QAAQ;IAqBtB;;OAEG;YACW,oBAAoB;IAmDlC;;OAEG;IACH,OAAO,CAAC,4BAA4B;CAuDrC;AAED;;GAEG;AACH,eAAO,MAAM,gBAAgB,kBAAyB,CAAC"}

package/dist/services/scoring/dimensions/security.analyzer.js ADDED Viewed

@@ -0,0 +1,327 @@
+/**
+ * Security Dimension Analyzer
+ *
+ * Analyzes security vulnerabilities using npm audit, Snyk, and pattern matching.
+ *
+ * @module services/scoring/dimensions/security-analyzer
+ */
+import { CommandExecutor } from '../../../shared/utils/command-executor.js';
+import { createLogger } from '../../../shared/utils/logger.js';
+import { readFile } from 'node:fs/promises';
+import { join } from 'node:path';
+import { readdir } from 'node:fs/promises';
+/**
+ * Vulnerability severity weights
+ */
+const SEVERITY_WEIGHTS = {
+    critical: 50,
+    high: 25,
+    moderate: 10,
+    low: 5,
+};
+/**
+ * Known vulnerable patterns
+ */
+const VULNERABLE_PATTERNS = [
+    {
+        name: 'innerHTML usage',
+        pattern: /\.innerHTML\s*=/,
+        severity: 'high',
+        description: 'Direct innerHTML assignment can lead to XSS vulnerabilities',
+    },
+    {
+        name: 'dangerouslySetInnerHTML',
+        pattern: /dangerouslySetInnerHTML/,
+        severity: 'medium',
+        description: 'dangerouslySetInnerHTML bypasses React XSS protection',
+    },
+    {
+        name: 'eval() usage',
+        pattern: /\beval\s*\(/,
+        severity: 'critical',
+        description: 'eval() can execute arbitrary code',
+    },
+    {
+        name: 'SQL concatenation',
+        pattern: /(SELECT|INSERT|UPDATE|DELETE).*"\s*\+/,
+        severity: 'critical',
+        description: 'SQL query concatenation can lead to injection',
+    },
+    {
+        name: 'hardcoded API key',
+        pattern: /api[_-]?key\s*[:=]\s*['"`][^'"`]{20,}['"`]/,
+        severity: 'high',
+        description: 'Possible hardcoded API key detected',
+    },
+    {
+        name: 'hardcoded password',
+        pattern: /password\s*[:=]\s*['"`][^'"`]{8,}['"`]/,
+        severity: 'critical',
+        description: 'Possible hardcoded password detected',
+    },
+];
+/**
+ * Security Dimension Analyzer
+ */
+export class SecurityAnalyzer {
+    /** Analyzer configuration */
+    config = {
+        dimension: 'security',
+        defaultWeight: 0.15,
+        estimatedDuration: 25000,
+        supportedFrameworks: ['Next.js', 'React', 'Vue', 'Nuxt', 'Svelte', 'NestJS', 'Angular', 'Remix', 'SvelteKit', 'Astro', 'Gatsby', 'Express', 'Fastify', 'Hono', 'Koa'],
+    };
+    logger;
+    executor;
+    constructor() {
+        this.logger = createLogger('SecurityAnalyzer');
+        this.executor = new CommandExecutor();
+    }
+    /**
+     * Analyze security of the project
+     */
+    async analyze(projectPath, _framework, _options) {
+        this.logger.info(`Analyzing security for ${projectPath}`);
+        const issues = [];
+        const improvements = [];
+        let score = 100;
+        // 1. Check for dependency vulnerabilities
+        const depVulns = await this.checkDependencyVulnerabilities(projectPath);
+        score -= depVulns.scorePenalty;
+        issues.push(...depVulns.issues);
+        // 2. Check for vulnerable code patterns
+        const patternVulns = await this.checkVulnerablePatterns(projectPath);
+        score -= patternVulns.scorePenalty;
+        issues.push(...patternVulns.issues);
+        // 3. Check for security headers
+        const headerIssues = await this.checkSecurityHeaders(projectPath);
+        score -= headerIssues.scorePenalty;
+        issues.push(...headerIssues.issues);
+        // 4. Generate security improvements
+        improvements.push(...this.generateSecurityImprovements(issues));
+        return {
+            dimension: 'security',
+            score: Math.max(0, score),
+            weight: 0.15,
+            issues,
+            improvements,
+        };
+    }
+    /**
+     * Check for dependency vulnerabilities using npm audit
+     */
+    async checkDependencyVulnerabilities(projectPath) {
+        const issues = [];
+        let scorePenalty = 0;
+        try {
+            const result = await this.executor.execute('npm audit --json', { cwd: projectPath, timeout: 30000 });
+            if (result.success && result.data.stdout) {
+                const audit = JSON.parse(result.data.stdout);
+                const vulnerabilities = audit.vulnerabilities || {};
+                for (const [severityKey, data] of Object.entries(vulnerabilities)) {
+                    if (typeof data === 'object' && data !== null) {
+                        const vuln = data;
+                        if (Array.isArray(vuln.nodes) && vuln.nodes.length > 0) {
+                            const severity = severityKey;
+                            const weight = SEVERITY_WEIGHTS[severity] || 5;
+                            scorePenalty += weight * vuln.nodes.length;
+                            issues.push({
+                                severity: (severity === 'critical' || severity === 'high' ? 'high' : 'medium'),
+                                category: 'security',
+                                description: `${vuln.nodes.length} ${severity} vulnerabilities in dependencies`,
+                                location: 'package.json',
+                                fixable: true,
+                            });
+                        }
+                    }
+                }
+            }
+        }
+        catch (error) {
+            this.logger.warn('npm audit failed', error);
+        }
+        return { scorePenalty, issues };
+    }
+    /**
+     * Check for vulnerable code patterns in source files
+     */
+    async checkVulnerablePatterns(projectPath) {
+        const issues = [];
+        let scorePenalty = 0;
+        try {
+            const srcPath = join(projectPath, 'src');
+            const appPath = join(projectPath, 'app');
+            // Scan both src and app directories
+            const dirsToScan = [];
+            try {
+                await readdir(srcPath);
+                dirsToScan.push(srcPath);
+            }
+            catch { }
+            try {
+                await readdir(appPath);
+                dirsToScan.push(appPath);
+            }
+            catch { }
+            for (const dir of dirsToScan) {
+                await this.scanDirectory(dir, issues);
+            }
+            // Calculate score penalty based on severity
+            for (const issue of issues) {
+                const weight = SEVERITY_WEIGHTS[issue.severity] || 5;
+                scorePenalty += weight;
+            }
+        }
+        catch (error) {
+            this.logger.warn('Pattern scanning failed', error);
+        }
+        return { scorePenalty, issues };
+    }
+    /**
+     * Recursively scan directory for vulnerable patterns
+     */
+    async scanDirectory(dirPath, issues) {
+        const { readdir } = await import('node:fs/promises');
+        const { join } = await import('node:path');
+        const entries = await readdir(dirPath, { withFileTypes: true });
+        for (const entry of entries) {
+            const fullPath = join(dirPath, entry.name);
+            if (entry.isDirectory()) {
+                // Skip node_modules and common build directories
+                if (!['node_modules', '.git', 'dist', 'build', '.next', '.nuxt'].includes(entry.name)) {
+                    await this.scanDirectory(fullPath, issues);
+                }
+            }
+            else if (entry.isFile() && /\.(ts|tsx|js|jsx)$/.test(entry.name)) {
+                await this.scanFile(fullPath, issues);
+            }
+        }
+    }
+    /**
+     * Scan file for vulnerable patterns
+     */
+    async scanFile(filePath, issues) {
+        try {
+            const content = await readFile(filePath, 'utf-8');
+            const relativePath = filePath.replace(process.cwd(), '');
+            for (const pattern of VULNERABLE_PATTERNS) {
+                if (pattern.pattern.test(content)) {
+                    issues.push({
+                        severity: pattern.severity,
+                        category: 'security',
+                        description: pattern.description,
+                        location: relativePath,
+                        fixable: true,
+                    });
+                }
+            }
+        }
+        catch {
+            // Skip files that can't be read
+        }
+    }
+    /**
+     * Check for security headers in Next.js/Express apps
+     */
+    async checkSecurityHeaders(projectPath) {
+        const issues = [];
+        let scorePenalty = 0;
+        // Required security headers
+        const requiredHeaders = [
+            'Content-Security-Policy',
+            'X-Frame-Options',
+            'X-Content-Type-Options',
+            'Strict-Transport-Security',
+            'Referrer-Policy',
+        ];
+        try {
+            // Check Next.js config
+            const nextConfig = join(projectPath, 'next.config.js');
+            const nextConfigMjs = join(projectPath, 'next.config.mjs');
+            const nextConfigTs = join(projectPath, 'next.config.ts');
+            let hasSecurityHeaders = false;
+            for (const configPath of [nextConfig, nextConfigMjs, nextConfigTs]) {
+                try {
+                    const content = await readFile(configPath, 'utf-8');
+                    if (content.includes('headers') && (content.includes('Content-Security-Policy') ||
+                        content.includes('X-Frame-Options'))) {
+                        hasSecurityHeaders = true;
+                        break;
+                    }
+                }
+                catch { }
+            }
+            if (!hasSecurityHeaders) {
+                scorePenalty += 10;
+                issues.push({
+                    severity: 'medium',
+                    category: 'security',
+                    description: 'Missing security headers (CSP, X-Frame-Options, etc.)',
+                    location: 'config',
+                    fixable: true,
+                });
+            }
+        }
+        catch {
+            // Skip if config not found
+        }
+        return { scorePenalty, issues };
+    }
+    /**
+     * Generate security improvement suggestions
+     */
+    generateSecurityImprovements(issues) {
+        const improvements = [];
+        const hasXSS = issues.some(i => i.description.includes('XSS') || i.description.includes('innerHTML'));
+        const hasInjection = issues.some(i => i.description.includes('injection') || i.description.includes('SQL'));
+        const hasSecrets = issues.some(i => i.description.includes('API key') || i.description.includes('password'));
+        if (hasXSS) {
+            improvements.push({
+                type: 'security',
+                description: 'Use React/Vue built-in escaping instead of innerHTML',
+                effort: 'moderate',
+                impact: 'high',
+            });
+            improvements.push({
+                type: 'security',
+                description: 'Implement Content Security Policy (CSP) headers',
+                effort: 'moderate',
+                impact: 'high',
+            });
+        }
+        if (hasInjection) {
+            improvements.push({
+                type: 'security',
+                description: 'Use parameterized queries or ORM to prevent injection',
+                effort: 'significant',
+                impact: 'critical',
+            });
+        }
+        if (hasSecrets) {
+            improvements.push({
+                type: 'security',
+                description: 'Move secrets to environment variables',
+                effort: 'quick',
+                impact: 'critical',
+            });
+        }
+        improvements.push({
+            type: 'security',
+            description: 'Run `npm audit fix` to fix vulnerable dependencies',
+            effort: 'quick',
+            impact: 'high',
+        });
+        improvements.push({
+            type: 'security',
+            description: 'Set up automated security scanning in CI/CD',
+            effort: 'moderate',
+            impact: 'high',
+        });
+        return improvements;
+    }
+}
+/**
+ * Default security analyzer instance
+ */
+export const securityAnalyzer = new SecurityAnalyzer();
+//# sourceMappingURL=security.analyzer.js.map

package/dist/services/scoring/dimensions/security.analyzer.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"security.analyzer.js","sourceRoot":"","sources":["../../../../src/services/scoring/dimensions/security.analyzer.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAKH,OAAO,EAAE,eAAe,EAAE,MAAM,2CAA2C,CAAC;AAC5E,OAAO,EAAE,YAAY,EAAe,MAAM,iCAAiC,CAAC;AAC5E,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAE3C;;GAEG;AACH,MAAM,gBAAgB,GAAG;IACvB,QAAQ,EAAE,EAAE;IACZ,IAAI,EAAE,EAAE;IACR,QAAQ,EAAE,EAAE;IACZ,GAAG,EAAE,CAAC;CACP,CAAC;AAEF;;GAEG;AACH,MAAM,mBAAmB,GAAG;IAC1B;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,iBAAiB;QAC1B,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,6DAA6D;KAC3E;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,yBAAyB;QAClC,QAAQ,EAAE,QAAQ;QAClB,WAAW,EAAE,uDAAuD;KACrE;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,aAAa;QACtB,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,mCAAmC;KACjD;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,uCAAuC;QAChD,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,+CAA+C;KAC7D;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,4CAA4C;QACrD,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,qCAAqC;KACnD;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,wCAAwC;QACjD,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,sCAAsC;KACpD;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,OAAO,gBAAgB;IAC3B,6BAA6B;IACpB,MAAM,GAA4B;QACzC,SAAS,EAAE,UAA2B;QACtC,aAAa,EAAE,IAAI;QACnB,iBAAiB,EAAE,KAAK;QACxB,mBAAmB,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,EAAE,KAAK,CAAC;KACtK,CAAC;IAEe,MAAM,CAAS;IACxB,QAAQ,CAAkB;IAElC;QACE,IAAI,CAAC,MAAM,GAAG,YAAY,CAAC,kBAAkB,CAAC,CAAC;QAC/C,IAAI,CAAC,QAAQ,GAAG,IAAI,eAAe,EAAE,CAAC;IACxC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,WAAmB,EAAE,UAAsB,EAAE,QAAyB;QAClF,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,0BAA0B,WAAW,EAAE,CAAC,CAAC;QAE1D,MAAM,MAAM,GAAY,EAAE,CAAC;QAC3B,MAAM,YAAY,GAAkB,EAAE,CAAC;QAEvC,IAAI,KAAK,GAAG,GAAG,CAAC;QAEhB,0CAA0C;QAC1C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,8BAA8B,CAAC,WAAW,CAAC,CAAC;QACxE,KAAK,IAAI,QAAQ,CAAC,YAAY,CAAC;QAC/B,MAAM,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;QAEhC,wCAAwC;QACxC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,WAAW,CAAC,CAAC;QACrE,KAAK,IAAI,YAAY,CAAC,YAAY,CAAC;QACnC,MAAM,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;QAEpC,gCAAgC;QAChC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,WAAW,CAAC,CAAC;QAClE,KAAK,IAAI,YAAY,CAAC,YAAY,CAAC;QACnC,MAAM,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;QAEpC,oCAAoC;QACpC,YAAY,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,4BAA4B,CAAC,MAAM,CAAC,CAAC,CAAC;QAEhE,OAAO;YACL,SAAS,EAAE,UAA2B;YACtC,KAAK,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC;YACzB,MAAM,EAAE,IAAI;YACZ,MAAM;YACN,YAAY;SACb,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,8BAA8B,CAAC,WAAmB;QAC9D,MAAM,MAAM,GAAU,EAAE,CAAC;QACzB,IAAI,YAAY,GAAG,CAAC,CAAC;QAErB,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,kBAAkB,EAAE,EAAE,GAAG,EAAE,WAAW,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;YAErG,IAAI,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;gBACzC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBAC7C,MAAM,eAAe,GAAG,KAAK,CAAC,eAAe,IAAI,EAAE,CAAC;gBAEpD,KAAK,MAAM,CAAC,WAAW,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,EAAE,CAAC;oBAClE,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;wBAC9C,MAAM,IAAI,GAAG,IAAW,CAAC;wBACzB,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;4BACvD,MAAM,QAAQ,GAAG,WAA4C,CAAC;4BAC9D,MAAM,MAAM,GAAG,gBAAgB,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;4BAC/C,YAAY,IAAI,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;4BAE3C,MAAM,CAAC,IAAI,CAAC;gCACV,QAAQ,EAAE,CAAC,QAAQ,KAAK,UAAU,IAAI,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAkB;gCAC/F,QAAQ,EAAE,UAA2B;gCACrC,WAAW,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,IAAI,QAAQ,kCAAkC;gCAC/E,QAAQ,EAAE,cAAc;gCACxB,OAAO,EAAE,IAAI;6BACd,CAAC,CAAC;wBACL,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,kBAAkB,EAAE,KAAK,CAAC,CAAC;QAC9C,CAAC;QAED,OAAO,EAAE,YAAY,EAAE,MAAM,EAAE,CAAC;IAClC,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,uBAAuB,CAAC,WAAmB;QACvD,MAAM,MAAM,GAAY,EAAE,CAAC;QAC3B,IAAI,YAAY,GAAG,CAAC,CAAC;QAErB,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC;YACzC,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC;YAEzC,oCAAoC;YACpC,MAAM,UAAU,GAAa,EAAE,CAAC;YAChC,IAAI,CAAC;gBACH,MAAM,OAAO,CAAC,OAAO,CAAC,CAAC;gBACvB,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC3B,CAAC;YAAC,MAAM,CAAC,CAAA,CAAC;YACV,IAAI,CAAC;gBACH,MAAM,OAAO,CAAC,OAAO,CAAC,CAAC;gBACvB,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC3B,CAAC;YAAC,MAAM,CAAC,CAAA,CAAC;YAEV,KAAK,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;gBAC7B,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;YACxC,CAAC;YAED,4CAA4C;YAC5C,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;gBAC3B,MAAM,MAAM,GAAG,gBAAgB,CAAC,KAAK,CAAC,QAAyC,CAAC,IAAI,CAAC,CAAC;gBACtF,YAAY,IAAI,MAAM,CAAC;YACzB,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAC;QACrD,CAAC;QAED,OAAO,EAAE,YAAY,EAAE,MAAM,EAAE,CAAC;IAClC,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,aAAa,CAAC,OAAe,EAAE,MAAe;QAC1D,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,MAAM,CAAC,kBAAkB,CAAC,CAAC;QACrD,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,CAAC;QAE3C,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,OAAO,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAEhE,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YAE3C,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;gBACxB,iDAAiD;gBACjD,IAAI,CAAC,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;oBACtF,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;gBAC7C,CAAC;YACH,CAAC;iBAAM,IAAI,KAAK,CAAC,MAAM,EAAE,IAAI,oBAAoB,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;gBACnE,MAAM,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YACxC,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,QAAQ,CAAC,QAAgB,EAAE,MAAe;QACtD,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAClD,MAAM,YAAY,GAAG,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,EAAE,CAAC,CAAC;YAEzD,KAAK,MAAM,OAAO,IAAI,mBAAmB,EAAE,CAAC;gBAC1C,IAAI,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAClC,MAAM,CAAC,IAAI,CAAC;wBACV,QAAQ,EAAE,OAAO,CAAC,QAAyB;wBAC3C,QAAQ,EAAE,UAA2B;wBACrC,WAAW,EAAE,OAAO,CAAC,WAAW;wBAChC,QAAQ,EAAE,YAAY;wBACtB,OAAO,EAAE,IAAI;qBACd,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,gCAAgC;QAClC,CAAC;IACH,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,oBAAoB,CAAC,WAAmB;QACpD,MAAM,MAAM,GAAY,EAAE,CAAC;QAC3B,IAAI,YAAY,GAAG,CAAC,CAAC;QAErB,4BAA4B;QAC5B,MAAM,eAAe,GAAG;YACtB,yBAAyB;YACzB,iBAAiB;YACjB,wBAAwB;YACxB,2BAA2B;YAC3B,iBAAiB;SAClB,CAAC;QAEF,IAAI,CAAC;YACH,uBAAuB;YACvB,MAAM,UAAU,GAAG,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC,CAAC;YACvD,MAAM,aAAa,GAAG,IAAI,CAAC,WAAW,EAAE,iBAAiB,CAAC,CAAC;YAC3D,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC,CAAC;YAEzD,IAAI,kBAAkB,GAAG,KAAK,CAAC;YAE/B,KAAK,MAAM,UAAU,IAAI,CAAC,UAAU,EAAE,aAAa,EAAE,YAAY,CAAC,EAAE,CAAC;gBACnE,IAAI,CAAC;oBACH,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;oBACpD,IAAI,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,CACjC,OAAO,CAAC,QAAQ,CAAC,yBAAyB,CAAC;wBAC3C,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CACpC,EAAE,CAAC;wBACF,kBAAkB,GAAG,IAAI,CAAC;wBAC1B,MAAM;oBACR,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC,CAAA,CAAC;YACZ,CAAC;YAED,IAAI,CAAC,kBAAkB,EAAE,CAAC;gBACxB,YAAY,IAAI,EAAE,CAAC;gBACnB,MAAM,CAAC,IAAI,CAAC;oBACV,QAAQ,EAAE,QAAQ;oBAClB,QAAQ,EAAE,UAAU;oBACpB,WAAW,EAAE,uDAAuD;oBACpE,QAAQ,EAAE,QAAQ;oBAClB,OAAO,EAAE,IAAI;iBACd,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,2BAA2B;QAC7B,CAAC;QAED,OAAO,EAAE,YAAY,EAAE,MAAM,EAAE,CAAC;IAClC,CAAC;IAED;;OAEG;IACK,4BAA4B,CAAC,MAAe;QAClD,MAAM,YAAY,GAAkB,EAAE,CAAC;QACvC,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,WAAW,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;QACtG,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC;QAC5G,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,WAAW,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC;QAE7G,IAAI,MAAM,EAAE,CAAC;YACX,YAAY,CAAC,IAAI,CAAC;gBAChB,IAAI,EAAE,UAA6B;gBACnC,WAAW,EAAE,sDAAsD;gBACnE,MAAM,EAAE,UAAoB;gBAC5B,MAAM,EAAE,MAAgB;aACzB,CAAC,CAAC;YACH,YAAY,CAAC,IAAI,CAAC;gBAChB,IAAI,EAAE,UAA6B;gBACnC,WAAW,EAAE,iDAAiD;gBAC9D,MAAM,EAAE,UAAoB;gBAC5B,MAAM,EAAE,MAAgB;aACzB,CAAC,CAAC;QACL,CAAC;QAED,IAAI,YAAY,EAAE,CAAC;YACjB,YAAY,CAAC,IAAI,CAAC;gBAChB,IAAI,EAAE,UAA6B;gBACnC,WAAW,EAAE,uDAAuD;gBACpE,MAAM,EAAE,aAAuB;gBAC/B,MAAM,EAAE,UAAoB;aAC7B,CAAC,CAAC;QACL,CAAC;QAED,IAAI,UAAU,EAAE,CAAC;YACf,YAAY,CAAC,IAAI,CAAC;gBAChB,IAAI,EAAE,UAA6B;gBACnC,WAAW,EAAE,uCAAuC;gBACpD,MAAM,EAAE,OAAiB;gBACzB,MAAM,EAAE,UAAoB;aAC7B,CAAC,CAAC;QACL,CAAC;QAED,YAAY,CAAC,IAAI,CAAC;YAChB,IAAI,EAAE,UAA6B;YACnC,WAAW,EAAE,oDAAoD;YACjE,MAAM,EAAE,OAAiB;YACzB,MAAM,EAAE,MAAgB;SACzB,CAAC,CAAC;QAEH,YAAY,CAAC,IAAI,CAAC;YAChB,IAAI,EAAE,UAA6B;YACnC,WAAW,EAAE,6CAA6C;YAC1D,MAAM,EAAE,UAAoB;YAC5B,MAAM,EAAE,MAAgB;SACzB,CAAC,CAAC;QAEH,OAAO,YAAY,CAAC;IACtB,CAAC;CACF;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,IAAI,gBAAgB,EAAE,CAAC"}

package/dist/services/scoring/dimensions/seo.analyzer.d.ts ADDED Viewed

@@ -0,0 +1,77 @@
+/**
+ * SEO Dimension Analyzer
+ *
+ * Analyzes Search Engine Optimization factors for web applications.
+ * Checks meta tags, structured data, sitemap, robots.txt, and more.
+ *
+ * @module services/scoring/dimensions/seo-analyzer
+ */
+import type { DimensionScore, DimensionAnalyzerConfig } from '../../../core/types/scoring.types.js';
+import type { Framework } from '../../../core/types/project.types.js';
+import type { ScoringOptions } from '../../../core/types/scoring.types.js';
+/**
+ * SEO Dimension Analyzer
+ *
+ * Evaluates SEO quality across multiple dimensions:
+ * - Meta tags (title, description, Open Graph, Twitter Cards)
+ * - Structured data (JSON-LD, Microdata)
+ * - Sitemap.xml
+ * - Robots.txt
+ * - Heading structure
+ * - Image alt attributes
+ * - Semantic HTML
+ * - Core Web Vitals (indirect SEO factor)
+ */
+export declare class SeoAnalyzer {
+    /** Analyzer configuration */
+    readonly config: DimensionAnalyzerConfig;
+    private readonly logger;
+    constructor();
+    /**
+     * Analyze SEO for a project
+     */
+    analyze(projectPath: string, _framework?: Framework, _options?: ScoringOptions): Promise<DimensionScore>;
+    /**
+     * Run all SEO checks
+     */
+    private runAllSeoChecks;
+    /**
+     * Calculate SEO score from check results
+     */
+    private calculateScore;
+    /**
+     * Generate issues from failed checks
+     */
+    private generateIssues;
+    /**
+     * Get fix suggestion for an issue
+     */
+    private getFixSuggestion;
+    /**
+     * Generate SEO improvements
+     */
+    private generateImprovements;
+    /**
+     * Analyze SEO metadata
+     */
+    private analyzeSeoMetadata;
+    private checkHtmlFile;
+    private checkMetaTags;
+    private checkTitleTag;
+    private checkMetaDescription;
+    private checkHeadingStructure;
+    private checkSitemap;
+    private checkRobotsTxt;
+    private checkStructuredData;
+    private checkOpenGraph;
+    private checkSemanticHtml;
+    /**
+     * Get HTML content from the project
+     */
+    private getHtmlContent;
+}
+/**
+ * Default SEO analyzer instance
+ */
+export declare const seoAnalyzer: SeoAnalyzer;
+//# sourceMappingURL=seo.analyzer.d.ts.map

package/dist/services/scoring/dimensions/seo.analyzer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"seo.analyzer.d.ts","sourceRoot":"","sources":["../../../../src/services/scoring/dimensions/seo.analyzer.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAqC,uBAAuB,EAAE,MAAM,sCAAsC,CAAC;AACvI,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sCAAsC,CAAC;AACtE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,sCAAsC,CAAC;AA6C3E;;;;;;;;;;;;GAYG;AACH,qBAAa,WAAW;IACtB,6BAA6B;IAC7B,QAAQ,CAAC,MAAM,EAAE,uBAAuB,CAKtC;IAEF,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;;IAMhC;;OAEG;IACG,OAAO,CAAC,WAAW,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,SAAS,EAAE,QAAQ,CAAC,EAAE,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC;IA2C9G;;OAEG;YACW,eAAe;IAkG7B;;OAEG;IACH,OAAO,CAAC,cAAc;IAItB;;OAEG;IACH,OAAO,CAAC,cAAc;IAqDtB;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAiBxB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAsE5B;;OAEG;YACW,kBAAkB;YAqClB,aAAa;YAgBb,aAAa;YAkBb,aAAa;YAYb,oBAAoB;YAYpB,qBAAqB;YAuBrB,YAAY;YAgBZ,cAAc;YAcd,mBAAmB;YAQnB,cAAc;YAgBd,iBAAiB;IAsB/B;;OAEG;YACW,cAAc;CAe7B;AAED;;GAEG;AACH,eAAO,MAAM,WAAW,aAAoB,CAAC"}