@oculum/scanner 1.0.0

package/dist/layer2/ai-execution-sinks.js

@@ -0,0 +1,496 @@
+"use strict";
+/**
+ * Layer 2: AI Execution Sink Detection
+ * Detects patterns where LLM output is fed into dangerous execution sinks
+ *
+ * Covers B2: Unsafe execution of model output (LLM02)
+ *
+ * Sinks include:
+ * - Code execution: eval(), Function(), vm.runInContext()
+ * - Shell execution: exec(), spawn(), child_process
+ * - SQL builders: .query(), .execute(), .raw()
+ * - Template rendering: innerHTML, dangerouslySetInnerHTML
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.detectAIExecutionSinks = detectAIExecutionSinks;
+const context_helpers_1 = require("../utils/context-helpers");
+const ai_prompt_hygiene_1 = require("./ai-prompt-hygiene");
+// ============================================================================
+// LLM Output Variable Detection
+// ============================================================================
+/**
+ * Check if line contains LLM API response context
+ */
+function hasLLMResponseContext(lineContent, surroundingContext) {
+    const llmResponsePatterns = [
+        /\.choices\[0\]\.message\.content/i, // OpenAI response
+        /\.content\[0\]\.text/i, // Anthropic response
+        /completion\.text/i, // Generic completion
+        /\.data\.choices/i, // API response
+        /await\s+\w+\.(?:chat|messages|completions)\.create/i, // API call
+        /response\.text\s*\(/i, // Response text method
+    ];
+    const fullContext = lineContent + '\n' + surroundingContext;
+    return llmResponsePatterns.some(p => p.test(fullContext));
+}
+// ============================================================================
+// UI Suggestion / Template Pattern Detection (False Positive Filters)
+// ============================================================================
+/**
+ * Check if this is a UI suggestion/template pattern rather than execution sink
+ * These patterns create display strings for command palettes, autocomplete, etc.
+ */
+function isUITemplateSuggestion(lineContent, surroundingContext) {
+    const fullContext = lineContent + '\n' + surroundingContext;
+    // UI suggestion object patterns (command palette, autocomplete suggestions)
+    const uiSuggestionPatterns = [
+        // Object property patterns for suggestion items
+        /(?:id|key|label|title|name|description|completion|display|text|value|placeholder):\s*`[^`]*\$\{/i,
+        // Common suggestion UI patterns
+        /suggestions?\s*[=:]/i,
+        /completions?\s*[=:]/i,
+        /autocomplete/i,
+        /command\s*palette/i,
+        /fuzzy\s*search/i,
+        /search\s*result/i,
+        // UI component context patterns
+        /\.map\s*\(\s*\(?(?:item|result|suggestion|node|entry)/i,
+        /\.filter\s*\(/i,
+        // React/UI state patterns
+        /useState|setItems|setResults|setSuggestions/i,
+        // Template ID generation for UI
+        /id:\s*`[a-z]+-\$\{/i, // id: `delete-${...}`, id: `edit-${...}`
+    ];
+    // These patterns should NOT be considered UI suggestions
+    const notUISuggestionPatterns = [
+        /\.query\s*\(/i,
+        /\.execute\s*\(/i,
+        /\.raw\s*\(/i,
+        /await\s+db\./i,
+        /prisma\./i,
+        /supabase\./i,
+        /knex\./i,
+        /sequelize\./i,
+        /child_process/i,
+        /exec\s*\(/i,
+        /spawn\s*\(/i,
+        /eval\s*\(/i,
+    ];
+    // Check if context matches UI pattern but NOT execution pattern
+    const matchesUIPattern = uiSuggestionPatterns.some(p => p.test(fullContext));
+    const matchesExecutionPattern = notUISuggestionPatterns.some(p => p.test(lineContent));
+    return matchesUIPattern && !matchesExecutionPattern;
+}
+/**
+ * Check if this is a static template string (no actual LLM output interpolation)
+ * e.g., `delete ${node.title}` where node is app data, not LLM output
+ */
+function isAppDataInterpolation(lineContent, surroundingContext) {
+    const fullContext = lineContent + '\n' + surroundingContext;
+    // Patterns indicating the interpolated variable is app data, not LLM output
+    const appDataPatterns = [
+        // Database result/record properties
+        /\$\{(?:result|item|record|row|entry|node)\.(?:id|title|name|slug|key|label)\}/i,
+        // UI state properties
+        /\$\{(?:selected|current|active|item|node)\.(?:id|title|name|value)\}/i,
+        // Form/input data
+        /\$\{(?:data|values|form|input)\.(?:id|name|value)\}/i,
+        // Array iteration context
+        /\.map\s*\(\s*\(?(?:item|node|row|entry|result)/i,
+        /\.forEach\s*\(\s*\(?(?:item|node|row|entry|result)/i,
+    ];
+    // Patterns that suggest LLM output (should not skip)
+    const llmOutputPatterns = [
+        /\$\{(?:response|completion|generated|output|answer|reply|message)\.?/i,
+        /\$\{(?:ai|llm|gpt|claude|chat)(?:Response|Output|Result)/i,
+        /\.choices\[0\]/i,
+        /\.content\[0\]\.text/i,
+    ];
+    const isAppData = appDataPatterns.some(p => p.test(fullContext));
+    const isLLMOutput = llmOutputPatterns.some(p => p.test(fullContext));
+    return isAppData && !isLLMOutput;
+}
+// ============================================================================
+// Sandbox and Validation Detection
+// ============================================================================
+/**
+ * Check if execution is sandboxed
+ */
+function isSandboxedExecution(content, lineNumber) {
+    const lines = content.split('\n');
+    const contextStart = Math.max(0, lineNumber - 25);
+    const contextEnd = Math.min(lines.length, lineNumber + 10);
+    const context = lines.slice(contextStart, contextEnd).join('\n');
+    const sandboxPatterns = [
+        /vm2/i,
+        /isolated-vm/i,
+        /safeeval/i,
+        /safe-eval/i,
+        /sandbox/i,
+        /runInNewContext.*\{.*timeout/i,
+        /runInContext.*\{.*timeout/i,
+        /allowedGlobals/i,
+        /allowedModules/i,
+        /quickjs/i,
+        /webworker/i,
+        /iframe.*sandbox/i,
+    ];
+    return sandboxPatterns.some(p => p.test(context));
+}
+/**
+ * Check if output has validation before execution
+ */
+function hasOutputValidation(content, lineNumber) {
+    const lines = content.split('\n');
+    const contextStart = Math.max(0, lineNumber - 15);
+    const contextEnd = Math.min(lines.length, lineNumber + 5);
+    const context = lines.slice(contextStart, contextEnd).join('\n');
+    const validationPatterns = [
+        /validate/i,
+        /sanitize/i,
+        /escape/i,
+        /filter/i,
+        /parse.*catch/i,
+        /schema\./i,
+        /\.parse\s*\(/i,
+        /allowlist/i,
+        /whitelist/i,
+        /blocklist/i,
+        /blacklist/i,
+        /JSON\.parse.*catch/i,
+        /DOMPurify/i,
+        /xss/i,
+    ];
+    return validationPatterns.some(p => p.test(context));
+}
+/**
+ * Check if this appears to be display-only usage (not execution)
+ */
+function isDisplayOnly(lineContent, surroundingContext) {
+    const displayPatterns = [
+        /console\.(log|info|debug|warn)/i,
+        /textContent\s*=/i,
+        /innerText\s*=/i,
+        /\.text\s*=/i,
+        /setState.*display/i,
+        /render.*\{/i,
+        /<p>|<div>|<span>/i,
+        /\.send\s*\(/i,
+        /\.json\s*\(/i,
+        /return\s+.*response/i,
+    ];
+    const fullContext = lineContent + '\n' + surroundingContext;
+    return displayPatterns.some(p => p.test(fullContext));
+}
+const EXECUTION_SINK_PATTERNS = [
+    // ========== Code Execution Sinks ==========
+    {
+        name: 'LLM output to eval()',
+        pattern: /eval\s*\(\s*(?:response|result|output|completion|message|content|answer|generated|text)(?:\.|\.data\.|\.text|\.content)?/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'critical',
+        description: 'LLM output is passed directly to eval(). This allows arbitrary code execution if the model is manipulated via prompt injection.',
+        suggestedFix: 'Never eval() LLM output. Use structured output (JSON schema) and validate before processing. Consider using a sandboxed environment like vm2 if code execution is required.',
+    },
+    {
+        name: 'LLM output to Function constructor',
+        pattern: /new\s+Function\s*\([^)]*(?:response|result|output|completion|message|content|answer|generated)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'critical',
+        description: 'LLM output is passed to Function constructor, which is equivalent to eval().',
+        suggestedFix: 'Use JSON schemas to define expected output structure. Validate output before any processing.',
+    },
+    {
+        name: 'LLM output to vm.runInContext',
+        pattern: /vm\.run(?:InContext|InNewContext|InThisContext)\s*\(\s*(?:response|result|output|completion|content)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'high',
+        description: 'LLM output executed in Node.js VM context. While isolated, VM can still be escaped in some versions.',
+        suggestedFix: 'Use vm2 or isolated-vm for proper sandboxing. Add timeout and memory limits. Validate output structure before execution.',
+    },
+    // Generic pattern for code from LLM
+    {
+        name: 'Dynamic code execution from AI',
+        pattern: /(?:eval|exec|execute)\s*\(\s*(?:ai|llm|gpt|claude|chat)(?:Response|Output|Result|Code)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'critical',
+        description: 'AI-generated code is being executed dynamically.',
+        suggestedFix: 'Use a sandboxed code execution environment. Validate and restrict the allowed operations.',
+    },
+    // ========== Shell Command Sinks ==========
+    {
+        name: 'LLM output to exec()',
+        pattern: /(?:exec|execSync)\s*\(\s*(?:response|result|output|completion|command|content)(?:\.|\.data\.|\.text)?/gi,
+        sinkType: 'shell_command',
+        baseSeverity: 'critical',
+        description: 'LLM output is passed to shell exec(). Attackers can execute arbitrary system commands via prompt injection.',
+        suggestedFix: 'Never pass LLM output directly to shell. Use allowlists for permitted commands. Parse structured output and use execFile() with fixed command and arguments.',
+    },
+    {
+        name: 'LLM output to spawn()',
+        pattern: /spawn\s*\(\s*(?:response|result|output|completion|command|content)(?:\.|\.data\.|\.text)?/gi,
+        sinkType: 'shell_command',
+        baseSeverity: 'critical',
+        description: 'LLM output is passed to spawn(), allowing command execution.',
+        suggestedFix: 'Use a predefined list of allowed commands. Parse LLM output to extract only arguments, not command names.',
+    },
+    {
+        name: 'LLM output in shell template',
+        pattern: /`[^`]*\$\{(?:response|result|output|completion|command|content)[^}]*\}[^`]*`\s*(?:,|\))\s*(?:exec|spawn|child_process)/gi,
+        sinkType: 'shell_command',
+        baseSeverity: 'critical',
+        description: 'LLM output is interpolated into a shell command template.',
+        suggestedFix: 'Use execFile() with separate command and arguments array. Never interpolate AI output into shell strings.',
+    },
+    {
+        name: 'child_process with AI output',
+        pattern: /child_process\.\w+\s*\([^)]*(?:ai|llm|gpt|claude|chat)(?:Response|Output|Result)/gi,
+        sinkType: 'shell_command',
+        baseSeverity: 'critical',
+        description: 'AI-generated content passed to child_process module.',
+        suggestedFix: 'Implement strict allowlisting of commands. Parse structured output from LLM.',
+    },
+    // ========== SQL Builder Sinks ==========
+    {
+        name: 'LLM output in raw SQL',
+        pattern: /\.(?:query|execute|raw)\s*\(\s*(?:response|result|output|generated|sql|completion)(?:\.|\.data\.|\.text)?/gi,
+        sinkType: 'sql_builder',
+        baseSeverity: 'critical',
+        description: 'LLM-generated SQL is executed directly. This enables SQL injection via prompt manipulation.',
+        suggestedFix: 'Use parameterized queries. Have LLM generate query parameters, not raw SQL. Validate generated SQL against an allowlist of patterns.',
+    },
+    {
+        name: 'LLM output in SQL template',
+        pattern: /`(?:SELECT|INSERT|UPDATE|DELETE)[^`]*\$\{(?:response|result|output|generated|completion)/gi,
+        sinkType: 'sql_builder',
+        baseSeverity: 'critical',
+        description: 'LLM output interpolated into SQL query template.',
+        suggestedFix: 'Use parameterized queries. Have LLM output structured data (table names, conditions) that you validate against allowlists.',
+    },
+    {
+        name: 'Dynamic SQL from AI',
+        pattern: /(?:query|execute|sql)\s*\(\s*(?:ai|llm|gpt|claude)(?:Query|Sql|Response)/gi,
+        sinkType: 'sql_builder',
+        baseSeverity: 'critical',
+        description: 'AI-generated SQL query being executed.',
+        suggestedFix: 'Validate SQL structure. Use read-only database connections. Implement query allowlisting.',
+    },
+    // ========== Template/DOM Sinks ==========
+    {
+        name: 'LLM output to innerHTML',
+        pattern: /\.innerHTML\s*=\s*(?:response|result|output|completion|message|content)(?:\.|\.data\.|\.text|\.content)?/gi,
+        sinkType: 'template_render',
+        baseSeverity: 'high',
+        description: 'LLM output assigned to innerHTML. If the model outputs malicious HTML/JS, it will execute (XSS).',
+        suggestedFix: 'Use textContent for plain text. Sanitize HTML with DOMPurify before rendering. Use React/Vue which auto-escape by default.',
+    },
+    {
+        name: 'LLM output to dangerouslySetInnerHTML',
+        pattern: /dangerouslySetInnerHTML\s*=\s*\{\s*\{\s*__html:\s*(?:response|result|output|completion|message|content)/gi,
+        sinkType: 'template_render',
+        baseSeverity: 'high',
+        description: 'LLM output used in React dangerouslySetInnerHTML without sanitization.',
+        suggestedFix: 'Sanitize with DOMPurify: dangerouslySetInnerHTML={{ __html: DOMPurify.sanitize(content) }}',
+    },
+    {
+        name: 'LLM output to document.write',
+        pattern: /document\.write\s*\(\s*(?:response|result|output|completion|message|content)/gi,
+        sinkType: 'template_render',
+        baseSeverity: 'high',
+        description: 'LLM output passed to document.write, allowing script injection.',
+        suggestedFix: 'Use DOM manipulation methods with proper escaping. Never use document.write with dynamic content.',
+    },
+    // ========== M5: File System Sinks ==========
+    {
+        name: 'LLM output in file path',
+        pattern: /(?:readFile|writeFile|readFileSync|writeFileSync|unlink|unlinkSync|mkdir|mkdirSync|rmdir|rmSync)\s*\(\s*(?:response|result|output|completion|message|content|path)(?:\.|\.data\.|\.path)?/gi,
+        sinkType: 'code_execution', // Path traversal is code-level risk
+        baseSeverity: 'critical',
+        description: 'LLM-generated value used as file path. Path traversal attack possible - model could access or modify arbitrary files.',
+        suggestedFix: 'Validate AI output against allowed paths: if (!allowedPaths.some(p => path.resolve(output).startsWith(p))) throw. Use path.resolve() and check the result is within allowed directory.',
+    },
+    {
+        name: 'LLM output in fs operation',
+        pattern: /fs\.(?:read|write|append|unlink|mkdir|rm|stat|access)\w*\s*\(\s*(?:response|result|output|completion|aiPath|generatedPath)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'critical',
+        description: 'AI-generated path passed to filesystem operation. Model could traverse to sensitive directories.',
+        suggestedFix: 'Create allowlist of permitted paths/directories. Use path.resolve() and validate result is within allowed boundaries.',
+    },
+    {
+        name: 'LLM output in path.join',
+        pattern: /path\.(?:join|resolve)\s*\([^)]*(?:response|result|output|completion|content|aiPath)[^)]*\).*(?:fs\.|readFile|writeFile)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'high',
+        description: 'AI output used in path construction before file operation. Validate the final path.',
+        suggestedFix: 'After path.join/resolve, check result is within allowed directory: const resolved = path.resolve(base, aiPath); if (!resolved.startsWith(allowedRoot)) throw',
+    },
+    // ========== M5: Dynamic Import Sinks ==========
+    {
+        name: 'LLM output in dynamic import',
+        pattern: /import\s*\(\s*(?:response|result|output|completion|message|content|moduleName|aiModule)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'critical',
+        description: 'AI-generated value used in dynamic import(). Arbitrary module loading enables code execution.',
+        suggestedFix: 'Use allowlist for permitted modules: const allowed = ["lodash", "moment"]; if (!allowed.includes(moduleName)) throw. Never dynamically import AI-generated module paths.',
+    },
+    {
+        name: 'LLM output in require()',
+        pattern: /require\s*\(\s*(?:response|result|output|completion|message|content|moduleName|aiModule)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'critical',
+        description: 'AI-generated value used in require(). Can load arbitrary modules including native code.',
+        suggestedFix: 'Use allowlist for permitted modules. Consider using import maps or module aliases instead of dynamic require.',
+    },
+    {
+        name: 'LLM output in module resolution',
+        pattern: /(?:require\.resolve|import\.meta\.resolve)\s*\(\s*(?:response|result|output|completion|moduleName)/gi,
+        sinkType: 'code_execution',
+        baseSeverity: 'high',
+        description: 'AI output used in module path resolution. Could leak information about file system or enable module confusion attacks.',
+        suggestedFix: 'Validate module name against allowlist before resolution.',
+    },
+];
+// ============================================================================
+// Main Detection Function
+// ============================================================================
+/**
+ * Get surrounding context for analysis
+ */
+function getSurroundingContext(content, lineIndex, windowSize = 15) {
+    const lines = content.split('\n');
+    const start = Math.max(0, lineIndex - windowSize);
+    const end = Math.min(lines.length, lineIndex + windowSize);
+    return lines.slice(start, end).join('\n');
+}
+/**
+ * Calculate severity based on sandbox and validation status
+ */
+function calculateSeverity(baseSeverity, sinkType, isSandboxed, hasValidation, isTestFile, isExample = false, isLibrary = false) {
+    let severity = baseSeverity;
+    // Test files get significant downgrade
+    if (isTestFile) {
+        return 'info';
+    }
+    // Example/demo code - not production, for tutorials
+    if (isExample) {
+        return 'info';
+    }
+    // Library code - base utilities, consumers add restrictions
+    if (isLibrary) {
+        return 'info';
+    }
+    // Sandboxing provides major protection for code execution
+    if (isSandboxed) {
+        if (sinkType === 'code_execution') {
+            severity = hasValidation ? 'low' : 'medium';
+        }
+        else {
+            // Sandboxing less relevant for SQL/shell
+            severity = hasValidation ? 'medium' : 'high';
+        }
+    }
+    else if (hasValidation) {
+        // Validation alone helps but doesn't eliminate risk
+        if (baseSeverity === 'critical') {
+            severity = 'high';
+        }
+        else if (baseSeverity === 'high') {
+            severity = 'medium';
+        }
+    }
+    return severity;
+}
+/**
+ * Main detection function for LLM output execution sinks
+ */
+function detectAIExecutionSinks(content, filePath) {
+    const vulnerabilities = [];
+    // Skip non-applicable files
+    if ((0, context_helpers_1.isScannerOrFixtureFile)(filePath))
+        return vulnerabilities;
+    // Only deeply scan files that appear to be in LLM context
+    // But still do basic scanning on all files for obvious patterns
+    const isLLMFile = (0, ai_prompt_hygiene_1.isLLMContextFile)(filePath, content);
+    const lines = content.split('\n');
+    const isTestFile = (0, context_helpers_1.isTestOrMockFile)(filePath);
+    const isExample = (0, context_helpers_1.isExampleDirectory)(filePath);
+    const isLibrary = (0, context_helpers_1.isLibraryCode)(filePath);
+    for (const pattern of EXECUTION_SINK_PATTERNS) {
+        const regex = new RegExp(pattern.pattern.source, pattern.pattern.flags);
+        let match;
+        while ((match = regex.exec(content)) !== null) {
+            const lineNumber = content.substring(0, match.index).split('\n').length;
+            const lineContent = lines[lineNumber - 1]?.trim() || '';
+            // Skip comments
+            if ((0, context_helpers_1.isComment)(lineContent))
+                continue;
+            const surroundingContext = getSurroundingContext(content, lineNumber - 1);
+            // Check if this is actually in an LLM context
+            const hasLLMContext = isLLMFile || hasLLMResponseContext(lineContent, surroundingContext);
+            // ===== FALSE POSITIVE FILTERS =====
+            // Skip UI suggestion/template patterns (command palettes, autocomplete, etc.)
+            // These are display strings, not execution sinks
+            if (isUITemplateSuggestion(lineContent, surroundingContext)) {
+                continue;
+            }
+            // Skip app data interpolation (e.g., ${node.title}, ${item.id})
+            // where the interpolated data is from the app, not LLM output
+            if (isAppDataInterpolation(lineContent, surroundingContext)) {
+                continue;
+            }
+            // For non-LLM files, require stronger signal
+            if (!hasLLMContext) {
+                // Check if the matched variable looks like LLM output
+                const matchText = match[0];
+                const variableMatch = matchText.match(/(?:response|result|output|completion|message|content|answer|generated|text)/i);
+                if (!variableMatch)
+                    continue;
+                // Skip if this looks like display-only usage
+                if (isDisplayOnly(lineContent, surroundingContext))
+                    continue;
+            }
+            // Check for sandboxing and validation
+            const isSandboxed = isSandboxedExecution(content, lineNumber);
+            const hasValidation = hasOutputValidation(content, lineNumber);
+            // Calculate final severity
+            const severity = calculateSeverity(pattern.baseSeverity, pattern.sinkType, isSandboxed, hasValidation, isTestFile, isExample, isLibrary);
+            // Build description with context
+            let description = pattern.description;
+            if (isSandboxed) {
+                description += ' (Sandbox detected - risk somewhat mitigated.)';
+            }
+            if (hasValidation) {
+                description += ' (Some validation detected nearby.)';
+            }
+            if (isTestFile) {
+                description += ' (In test file.)';
+            }
+            else if (isExample) {
+                description += ' (In example/demo directory - tutorial code.)';
+            }
+            else if (isLibrary) {
+                description += ' (Library code - consumers add restrictions.)';
+            }
+            // Skip info-level in non-LLM files to reduce noise
+            if (severity === 'info' && !isLLMFile)
+                continue;
+            vulnerabilities.push({
+                id: `ai-exec-${filePath}-${lineNumber}-${pattern.sinkType}`,
+                filePath,
+                lineNumber,
+                lineContent,
+                severity,
+                category: 'ai_unsafe_execution',
+                title: pattern.name,
+                description,
+                suggestedFix: pattern.suggestedFix,
+                confidence: hasLLMContext ? 'high' : 'medium',
+                layer: 2,
+                requiresAIValidation: severity !== 'info' && severity !== 'low',
+            });
+        }
+    }
+    return vulnerabilities;
+}
+//# sourceMappingURL=ai-execution-sinks.js.map

package/dist/layer2/ai-execution-sinks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-execution-sinks.js","sourceRoot":"","sources":["../../src/layer2/ai-execution-sinks.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;GAWG;;AA0cH,wDA8GC;AArjBD,8DAMiC;AACjC,2DAAsD;AAEtD,+EAA+E;AAC/E,gCAAgC;AAChC,+EAA+E;AAE/E;;GAEG;AACH,SAAS,qBAAqB,CAAC,WAAmB,EAAE,kBAA0B;IAC5E,MAAM,mBAAmB,GAAG;QAC1B,mCAAmC,EAAM,kBAAkB;QAC3D,uBAAuB,EAAmB,qBAAqB;QAC/D,mBAAmB,EAAwB,qBAAqB;QAChE,kBAAkB,EAAyB,eAAe;QAC1D,qDAAqD,EAAE,WAAW;QAClE,sBAAsB,EAAqB,uBAAuB;KACnE,CAAA;IAED,MAAM,WAAW,GAAG,WAAW,GAAG,IAAI,GAAG,kBAAkB,CAAA;IAC3D,OAAO,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;AAC3D,CAAC;AAED,+EAA+E;AAC/E,sEAAsE;AACtE,+EAA+E;AAE/E;;;GAGG;AACH,SAAS,sBAAsB,CAAC,WAAmB,EAAE,kBAA0B;IAC7E,MAAM,WAAW,GAAG,WAAW,GAAG,IAAI,GAAG,kBAAkB,CAAA;IAE3D,4EAA4E;IAC5E,MAAM,oBAAoB,GAAG;QAC3B,gDAAgD;QAChD,kGAAkG;QAClG,gCAAgC;QAChC,sBAAsB;QACtB,sBAAsB;QACtB,eAAe;QACf,oBAAoB;QACpB,iBAAiB;QACjB,kBAAkB;QAClB,gCAAgC;QAChC,wDAAwD;QACxD,gBAAgB;QAChB,0BAA0B;QAC1B,8CAA8C;QAC9C,gCAAgC;QAChC,qBAAqB,EAAG,yCAAyC;KAClE,CAAA;IAED,yDAAyD;IACzD,MAAM,uBAAuB,GAAG;QAC9B,eAAe;QACf,iBAAiB;QACjB,aAAa;QACb,eAAe;QACf,WAAW;QACX,aAAa;QACb,SAAS;QACT,cAAc;QACd,gBAAgB;QAChB,YAAY;QACZ,aAAa;QACb,YAAY;KACb,CAAA;IAED,gEAAgE;IAChE,MAAM,gBAAgB,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;IAC5E,MAAM,uBAAuB,GAAG,uBAAuB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;IAEtF,OAAO,gBAAgB,IAAI,CAAC,uBAAuB,CAAA;AACrD,CAAC;AAED;;;GAGG;AACH,SAAS,sBAAsB,CAAC,WAAmB,EAAE,kBAA0B;IAC7E,MAAM,WAAW,GAAG,WAAW,GAAG,IAAI,GAAG,kBAAkB,CAAA;IAE3D,4EAA4E;IAC5E,MAAM,eAAe,GAAG;QACtB,oCAAoC;QACpC,gFAAgF;QAChF,sBAAsB;QACtB,uEAAuE;QACvE,kBAAkB;QAClB,sDAAsD;QACtD,0BAA0B;QAC1B,iDAAiD;QACjD,qDAAqD;KACtD,CAAA;IAED,qDAAqD;IACrD,MAAM,iBAAiB,GAAG;QACxB,uEAAuE;QACvE,2DAA2D;QAC3D,iBAAiB;QACjB,uBAAuB;KACxB,CAAA;IAED,MAAM,SAAS,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;IAChE,MAAM,WAAW,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;IAEpE,OAAO,SAAS,IAAI,CAAC,WAAW,CAAA;AAClC,CAAC;AAED,+EAA+E;AAC/E,mCAAmC;AACnC,+EAA+E;AAE/E;;GAEG;AACH,SAAS,oBAAoB,CAAC,OAAe,EAAE,UAAkB;IAC/D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACjD,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IAC1D,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEhE,MAAM,eAAe,GAAG;QACtB,MAAM;QACN,cAAc;QACd,WAAW;QACX,YAAY;QACZ,UAAU;QACV,+BAA+B;QAC/B,4BAA4B;QAC5B,iBAAiB;QACjB,iBAAiB;QACjB,UAAU;QACV,YAAY;QACZ,kBAAkB;KACnB,CAAA;IAED,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACnD,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,OAAe,EAAE,UAAkB;IAC9D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACjD,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IACzD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEhE,MAAM,kBAAkB,GAAG;QACzB,WAAW;QACX,WAAW;QACX,SAAS;QACT,SAAS;QACT,eAAe;QACf,WAAW;QACX,eAAe;QACf,YAAY;QACZ,YAAY;QACZ,YAAY;QACZ,YAAY;QACZ,qBAAqB;QACrB,YAAY;QACZ,MAAM;KACP,CAAA;IAED,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACtD,CAAC;AAED;;GAEG;AACH,SAAS,aAAa,CAAC,WAAmB,EAAE,kBAA0B;IACpE,MAAM,eAAe,GAAG;QACtB,iCAAiC;QACjC,kBAAkB;QAClB,gBAAgB;QAChB,aAAa;QACb,oBAAoB;QACpB,aAAa;QACb,mBAAmB;QACnB,cAAc;QACd,cAAc;QACd,sBAAsB;KACvB,CAAA;IAED,MAAM,WAAW,GAAG,WAAW,GAAG,IAAI,GAAG,kBAAkB,CAAA;IAC3D,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;AACvD,CAAC;AAiBD,MAAM,uBAAuB,GAA2B;IACtD,6CAA6C;IAC7C;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,4HAA4H;QACrI,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,iIAAiI;QAC9I,YAAY,EAAE,6KAA6K;KAC5L;IACD;QACE,IAAI,EAAE,oCAAoC;QAC1C,OAAO,EAAE,kGAAkG;QAC3G,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,8EAA8E;QAC3F,YAAY,EAAE,8FAA8F;KAC7G;IACD;QACE,IAAI,EAAE,+BAA+B;QACrC,OAAO,EAAE,wGAAwG;QACjH,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,MAAM;QACpB,WAAW,EAAE,sGAAsG;QACnH,YAAY,EAAE,0HAA0H;KACzI;IACD,oCAAoC;IACpC;QACE,IAAI,EAAE,gCAAgC;QACtC,OAAO,EAAE,0FAA0F;QACnG,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,kDAAkD;QAC/D,YAAY,EAAE,2FAA2F;KAC1G;IAED,4CAA4C;IAC5C;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,yGAAyG;QAClH,QAAQ,EAAE,eAAe;QACzB,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,6GAA6G;QAC1H,YAAY,EAAE,8JAA8J;KAC7K;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,6FAA6F;QACtG,QAAQ,EAAE,eAAe;QACzB,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,8DAA8D;QAC3E,YAAY,EAAE,2GAA2G;KAC1H;IACD;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,0HAA0H;QACnI,QAAQ,EAAE,eAAe;QACzB,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,2DAA2D;QACxE,YAAY,EAAE,2GAA2G;KAC1H;IACD;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,oFAAoF;QAC7F,QAAQ,EAAE,eAAe;QACzB,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,sDAAsD;QACnE,YAAY,EAAE,8EAA8E;KAC7F;IAED,0CAA0C;IAC1C;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,6GAA6G;QACtH,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,6FAA6F;QAC1G,YAAY,EAAE,sIAAsI;KACrJ;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EAAE,4FAA4F;QACrG,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,kDAAkD;QAC/D,YAAY,EAAE,4HAA4H;KAC3I;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,4EAA4E;QACrF,QAAQ,EAAE,aAAa;QACvB,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,wCAAwC;QACrD,YAAY,EAAE,2FAA2F;KAC1G;IAED,2CAA2C;IAC3C;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,4GAA4G;QACrH,QAAQ,EAAE,iBAAiB;QAC3B,YAAY,EAAE,MAAM;QACpB,WAAW,EAAE,kGAAkG;QAC/G,YAAY,EAAE,4HAA4H;KAC3I;IACD;QACE,IAAI,EAAE,uCAAuC;QAC7C,OAAO,EAAE,2GAA2G;QACpH,QAAQ,EAAE,iBAAiB;QAC3B,YAAY,EAAE,MAAM;QACpB,WAAW,EAAE,wEAAwE;QACrF,YAAY,EAAE,4FAA4F;KAC3G;IACD;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,gFAAgF;QACzF,QAAQ,EAAE,iBAAiB;QAC3B,YAAY,EAAE,MAAM;QACpB,WAAW,EAAE,iEAAiE;QAC9E,YAAY,EAAE,mGAAmG;KAClH;IAED,8CAA8C;IAC9C;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,6LAA6L;QACtM,QAAQ,EAAE,gBAAgB,EAAE,oCAAoC;QAChE,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,uHAAuH;QACpI,YAAY,EAAE,wLAAwL;KACvM;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EAAE,8HAA8H;QACvI,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,kGAAkG;QAC/G,YAAY,EAAE,uHAAuH;KACtI;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,4HAA4H;QACrI,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,MAAM;QACpB,WAAW,EAAE,qFAAqF;QAClG,YAAY,EAAE,8JAA8J;KAC7K;IAED,iDAAiD;IACjD;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,2FAA2F;QACpG,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,+FAA+F;QAC5G,YAAY,EAAE,0KAA0K;KACzL;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,4FAA4F;QACrG,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,yFAAyF;QACtG,YAAY,EAAE,+GAA+G;KAC9H;IACD;QACE,IAAI,EAAE,iCAAiC;QACvC,OAAO,EAAE,sGAAsG;QAC/G,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,MAAM;QACpB,WAAW,EAAE,wHAAwH;QACrI,YAAY,EAAE,2DAA2D;KAC1E;CACF,CAAA;AAED,+EAA+E;AAC/E,0BAA0B;AAC1B,+EAA+E;AAE/E;;GAEG;AACH,SAAS,qBAAqB,CAAC,OAAe,EAAE,SAAiB,EAAE,aAAqB,EAAE;IACxF,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,GAAG,UAAU,CAAC,CAAA;IACjD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,SAAS,GAAG,UAAU,CAAC,CAAA;IAC1D,OAAO,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AAC3C,CAAC;AAED;;GAEG;AACH,SAAS,iBAAiB,CACxB,YAAmC,EACnC,QAAkB,EAClB,WAAoB,EACpB,aAAsB,EACtB,UAAmB,EACnB,YAAqB,KAAK,EAC1B,YAAqB,KAAK;IAE1B,IAAI,QAAQ,GAAG,YAAY,CAAA;IAE3B,uCAAuC;IACvC,IAAI,UAAU,EAAE,CAAC;QACf,OAAO,MAAM,CAAA;IACf,CAAC;IAED,oDAAoD;IACpD,IAAI,SAAS,EAAE,CAAC;QACd,OAAO,MAAM,CAAA;IACf,CAAC;IAED,4DAA4D;IAC5D,IAAI,SAAS,EAAE,CAAC;QACd,OAAO,MAAM,CAAA;IACf,CAAC;IAED,0DAA0D;IAC1D,IAAI,WAAW,EAAE,CAAC;QAChB,IAAI,QAAQ,KAAK,gBAAgB,EAAE,CAAC;YAClC,QAAQ,GAAG,aAAa,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAA;QAC7C,CAAC;aAAM,CAAC;YACN,yCAAyC;YACzC,QAAQ,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAA;QAC9C,CAAC;IACH,CAAC;SAAM,IAAI,aAAa,EAAE,CAAC;QACzB,oDAAoD;QACpD,IAAI,YAAY,KAAK,UAAU,EAAE,CAAC;YAChC,QAAQ,GAAG,MAAM,CAAA;QACnB,CAAC;aAAM,IAAI,YAAY,KAAK,MAAM,EAAE,CAAC;YACnC,QAAQ,GAAG,QAAQ,CAAA;QACrB,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAA;AACjB,CAAC;AAED;;GAEG;AACH,SAAgB,sBAAsB,CACpC,OAAe,EACf,QAAgB;IAEhB,MAAM,eAAe,GAAoB,EAAE,CAAA;IAE3C,4BAA4B;IAC5B,IAAI,IAAA,wCAAsB,EAAC,QAAQ,CAAC;QAAE,OAAO,eAAe,CAAA;IAE5D,0DAA0D;IAC1D,gEAAgE;IAChE,MAAM,SAAS,GAAG,IAAA,oCAAgB,EAAC,QAAQ,EAAE,OAAO,CAAC,CAAA;IACrD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,UAAU,GAAG,IAAA,kCAAgB,EAAC,QAAQ,CAAC,CAAA;IAC7C,MAAM,SAAS,GAAG,IAAA,oCAAkB,EAAC,QAAQ,CAAC,CAAA;IAC9C,MAAM,SAAS,GAAG,IAAA,+BAAa,EAAC,QAAQ,CAAC,CAAA;IAEzC,KAAK,MAAM,OAAO,IAAI,uBAAuB,EAAE,CAAC;QAC9C,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QACvE,IAAI,KAAK,CAAA;QAET,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC9C,MAAM,UAAU,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAA;YACvE,MAAM,WAAW,GAAG,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;YAEvD,gBAAgB;YAChB,IAAI,IAAA,2BAAS,EAAC,WAAW,CAAC;gBAAE,SAAQ;YAEpC,MAAM,kBAAkB,GAAG,qBAAqB,CAAC,OAAO,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;YAEzE,8CAA8C;YAC9C,MAAM,aAAa,GAAG,SAAS,IAAI,qBAAqB,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAA;YAEzF,qCAAqC;YAErC,8EAA8E;YAC9E,iDAAiD;YACjD,IAAI,sBAAsB,CAAC,WAAW,EAAE,kBAAkB,CAAC,EAAE,CAAC;gBAC5D,SAAQ;YACV,CAAC;YAED,gEAAgE;YAChE,8DAA8D;YAC9D,IAAI,sBAAsB,CAAC,WAAW,EAAE,kBAAkB,CAAC,EAAE,CAAC;gBAC5D,SAAQ;YACV,CAAC;YAED,6CAA6C;YAC7C,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,sDAAsD;gBACtD,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,CAAA;gBAC1B,MAAM,aAAa,GAAG,SAAS,CAAC,KAAK,CAAC,8EAA8E,CAAC,CAAA;gBACrH,IAAI,CAAC,aAAa;oBAAE,SAAQ;gBAE5B,6CAA6C;gBAC7C,IAAI,aAAa,CAAC,WAAW,EAAE,kBAAkB,CAAC;oBAAE,SAAQ;YAC9D,CAAC;YAED,sCAAsC;YACtC,MAAM,WAAW,GAAG,oBAAoB,CAAC,OAAO,EAAE,UAAU,CAAC,CAAA;YAC7D,MAAM,aAAa,GAAG,mBAAmB,CAAC,OAAO,EAAE,UAAU,CAAC,CAAA;YAE9D,2BAA2B;YAC3B,MAAM,QAAQ,GAAG,iBAAiB,CAChC,OAAO,CAAC,YAAY,EACpB,OAAO,CAAC,QAAQ,EAChB,WAAW,EACX,aAAa,EACb,UAAU,EACV,SAAS,EACT,SAAS,CACV,CAAA;YAED,iCAAiC;YACjC,IAAI,WAAW,GAAG,OAAO,CAAC,WAAW,CAAA;YACrC,IAAI,WAAW,EAAE,CAAC;gBAChB,WAAW,IAAI,gDAAgD,CAAA;YACjE,CAAC;YACD,IAAI,aAAa,EAAE,CAAC;gBAClB,WAAW,IAAI,qCAAqC,CAAA;YACtD,CAAC;YACD,IAAI,UAAU,EAAE,CAAC;gBACf,WAAW,IAAI,kBAAkB,CAAA;YACnC,CAAC;iBAAM,IAAI,SAAS,EAAE,CAAC;gBACrB,WAAW,IAAI,+CAA+C,CAAA;YAChE,CAAC;iBAAM,IAAI,SAAS,EAAE,CAAC;gBACrB,WAAW,IAAI,+CAA+C,CAAA;YAChE,CAAC;YAED,mDAAmD;YACnD,IAAI,QAAQ,KAAK,MAAM,IAAI,CAAC,SAAS;gBAAE,SAAQ;YAE/C,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,WAAW,QAAQ,IAAI,UAAU,IAAI,OAAO,CAAC,QAAQ,EAAE;gBAC3D,QAAQ;gBACR,UAAU;gBACV,WAAW;gBACX,QAAQ;gBACR,QAAQ,EAAE,qBAAqB;gBAC/B,KAAK,EAAE,OAAO,CAAC,IAAI;gBACnB,WAAW;gBACX,YAAY,EAAE,OAAO,CAAC,YAAY;gBAClC,UAAU,EAAE,aAAa,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ;gBAC7C,KAAK,EAAE,CAAC;gBACR,oBAAoB,EAAE,QAAQ,KAAK,MAAM,IAAI,QAAQ,KAAK,KAAK;aAChE,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAA;AACxB,CAAC"}

package/dist/layer2/ai-fingerprinting.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Layer 2: AI Code Fingerprinting
+ * Detects patterns commonly found in AI-generated code that may indicate security risks
+ */
+import type { Vulnerability } from '../types';
+export declare function detectAIFingerprints(content: string, filePath: string): Vulnerability[];
+//# sourceMappingURL=ai-fingerprinting.d.ts.map

package/dist/layer2/ai-fingerprinting.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-fingerprinting.d.ts","sourceRoot":"","sources":["../../src/layer2/ai-fingerprinting.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAyB,MAAM,UAAU,CAAA;AAmnBpE,wBAAgB,oBAAoB,CAClC,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,GACf,aAAa,EAAE,CA0HjB"}