@oculum/scanner 1.0.0

package/dist/layer2/ai-fingerprinting.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-fingerprinting.js","sourceRoot":"","sources":["../../src/layer2/ai-fingerprinting.ts"],"names":[],"mappings":";AAAA;;;GAGG;;AAqnBH,oDA6HC;AA/uBD,8DAA8F;AAW9F,MAAM,eAAe,GAAoB;IACvC,mFAAmF;IACnF;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,mIAAmI;QAC5I,QAAQ,EAAE,KAAK,EAAG,uDAAuD;QACzE,WAAW,EAAE,sEAAsE;QACnF,YAAY,EAAE,8CAA8C;QAC5D,UAAU,EAAE,KAAK,EAAG,aAAa;KAClC;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,6GAA6G;QAC7G,OAAO,EAAE,uNAAuN;QAChO,QAAQ,EAAE,KAAK,EAAG,yBAAyB;QAC3C,WAAW,EAAE,mEAAmE;QAChF,YAAY,EAAE,gDAAgD;QAC9D,UAAU,EAAE,KAAK,EAAG,aAAa;KAClC;IAED,uEAAuE;IACvE;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EAAE,iEAAiE;QAC1E,QAAQ,EAAE,MAAM,EAAG,kDAAkD;QACrE,WAAW,EAAE,kEAAkE;QAC/E,YAAY,EAAE,kDAAkD;QAChE,UAAU,EAAE,KAAK,EAAG,aAAa;KAClC;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,uDAAuD;QAChE,QAAQ,EAAE,QAAQ,EAAG,kDAAkD;QACvE,WAAW,EAAE,8DAA8D;QAC3E,YAAY,EAAE,yDAAyD;QACvE,UAAU,EAAE,QAAQ,EAAG,aAAa;KACrC;IACD,oFAAoF;IACpF,qEAAqE;IAErE,8FAA8F;IAC9F;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EAAE,6EAA6E;QACtF,QAAQ,EAAE,MAAM,EAAG,2CAA2C;QAC9D,WAAW,EAAE,mEAAmE;QAChF,YAAY,EAAE,gEAAgE;QAC9E,UAAU,EAAE,KAAK;KAClB;IACD,kFAAkF;IAClF,kEAAkE;IAElE,mGAAmG;IACnG,4FAA4F;IAC5F,0FAA0F;IAE1F,kEAAkE;IAClE;QACE,IAAI,EAAE,6BAA6B;QACnC,OAAO,EAAE,gEAAgE;QACzE,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,wDAAwD;QACrE,YAAY,EAAE,uCAAuC;QACrD,UAAU,EAAE,MAAM;KACnB;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,iGAAiG;QAC1G,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,yDAAyD;QACtE,YAAY,EAAE,2DAA2D;QACzE,UAAU,EAAE,MAAM;KACnB;IACD,wEAAwE;IACxE,2DAA2D;IAE3D,wFAAwF;IACxF;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EAAE,gFAAgF;QACzF,QAAQ,EAAE,MAAM,EAAG,qDAAqD;QACxE,WAAW,EAAE,uDAAuD;QACpE,YAAY,EAAE,sEAAsE;QACpF,UAAU,EAAE,KAAK,EAAG,aAAa;KAClC;IACD,kFAAkF;IAClF;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,uFAAuF;QAChG,QAAQ,EAAE,KAAK,EAAG,yBAAyB;QAC3C,WAAW,EAAE,wDAAwD;QACrE,YAAY,EAAE,gDAAgD;QAC9D,UAAU,EAAE,KAAK,EAAG,aAAa;KAClC;IAED,yFAAyF;IACzF;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,2FAA2F;QACpG,QAAQ,EAAE,MAAM,EAAG,wDAAwD;QAC3E,WAAW,EAAE,4DAA4D;QACzE,YAAY,EAAE,kDAAkD;QAChE,UAAU,EAAE,KAAK,EAAG,aAAa;KAClC;IACD,wFAAwF;IAExF,oFAAoF;IACpF;QACE,IAAI,EAAE,kCAAkC;QACxC,OAAO,EAAE,wFAAwF;QACjG,QAAQ,EAAE,QAAQ,EAAG,kDAAkD;QACvE,WAAW,EAAE,iEAAiE;QAC9E,YAAY,EAAE,uDAAuD;QACrE,UAAU,EAAE,QAAQ,EAAG,aAAa;KACrC;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,gFAAgF;QACzF,QAAQ,EAAE,KAAK,EAAG,6DAA6D;QAC/E,WAAW,EAAE,uDAAuD;QACpE,YAAY,EAAE,0DAA0D;QACxE,UAAU,EAAE,KAAK,EAAG,aAAa;KAClC;CACF,CAAA;AAWD;;GAEG;AACH,SAAS,gBAAgB,CAAC,IAAY;IACpC,MAAM,YAAY,GAAG;QACnB,2BAA2B;QAC3B,kCAAkC;QAClC,iCAAiC;QACjC,+CAA+C;QAC/C,iCAAiC;QACjC,kCAAkC;QAElC,kBAAkB;QAClB,wBAAwB;QACxB,yBAAyB;QACzB,0BAA0B;QAE1B,oBAAoB;QACpB,sBAAsB;QAEtB,4DAA4D;QAC5D,4CAA4C;QAC5C,+CAA+C;QAC/C,gDAAgD;QAChD,yDAAyD;QAEzD,kCAAkC;QAClC,0BAA0B,EAAY,qBAAqB;QAC3D,oBAAoB,EAAmB,oCAAoC;QAC3E,sBAAsB,EAAiB,iBAAiB;QACxD,qBAAqB,EAAkB,uBAAuB;QAC9D,wBAAwB,EAAe,6BAA6B;KACrE,CAAA;IAED,OAAO,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;AAC7C,CAAC;AAED;;;GAGG;AACH,SAAS,wBAAwB,CAAC,IAAY,EAAE,QAAgB;IAC9D,4CAA4C;IAC5C,IAAI,yCAAyC,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7D,OAAO,KAAK,CAAA;IACd,CAAC;IAED,MAAM,kBAAkB,GAAG;QACzB,qCAAqC;QACrC,gCAAgC;QAChC,+BAA+B;QAC/B,6BAA6B;QAC7B,+BAA+B;QAC/B,oCAAoC;QACpC,kCAAkC;QAClC,qCAAqC;QACrC,mCAAmC;QACnC,oBAAoB;QACpB,oBAAoB;QACpB,0BAA0B;QAE1B,6BAA6B;QAC7B,uCAAuC;QACvC,8BAA8B;QAC9B,+BAA+B;QAC/B,gCAAgC;QAChC,gBAAgB;QAChB,gBAAgB;QAChB,cAAc;QACd,eAAe;QAEf,mBAAmB;QACnB,8BAA8B;QAC9B,+BAA+B;QAC/B,iCAAiC;QACjC,YAAY;QACZ,YAAY;QAEZ,0BAA0B;QAC1B,sCAAsC;QACtC,+BAA+B;QAC/B,2CAA2C;QAC3C,oBAAoB;QACpB,iBAAiB;QAEjB,yDAAyD;QACzD,8DAA8D;QAC9D,iDAAiD;QAEjD,sEAAsE;QACtE,6BAA6B;QAC7B,8BAA8B;QAC9B,mCAAmC;QACnC,uCAAuC;QACvC,4BAA4B;QAC5B,6BAA6B;QAC7B,kBAAkB,EAAG,gDAAgD;QAErE,+CAA+C;QAC/C,uBAAuB;QACvB,iBAAiB;QACjB,mBAAmB;KACpB,CAAA;IAED,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;AACnD,CAAC;AAED;;GAEG;AACH,SAAS,uBAAuB,CAAC,IAAY;IAC3C,MAAM,iBAAiB,GAAG;QACxB,8BAA8B;QAC9B,6CAA6C;QAC7C,uBAAuB;QACvB,2BAA2B;QAC3B,yBAAyB;QACzB,wBAAwB;QACxB,yBAAyB;QAEzB,4CAA4C;QAC5C,8BAA8B;QAC9B,2BAA2B;QAE3B,6CAA6C;QAC7C,mCAAmC,EAAG,oDAAoD;KAC3F,CAAA;IAED,OAAO,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;AAClD,CAAC;AAED;;;GAGG;AACH,SAAS,kBAAkB,CACzB,KAAe,EACf,QAAgB;IAEhB,MAAM,MAAM,GAAsB,EAAE,CAAA;IACpC,MAAM,SAAS,GAAG,uCAAuC,CAAC,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAA;IACtF,MAAM,QAAQ,GAAG,0DAA0D,CAAC,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAA;IACxG,MAAM,UAAU,GAAG,8CAA8C,CAAC,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAA;IAE9F,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;QAC1B,0CAA0C;QAC1C,IAAI,CAAC,wBAAwB,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,OAAM;QAEhD,gBAAgB;QAChB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAA;QAC3B,IACE,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC;YACxB,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC;YACxB,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,EACvB,CAAC;YACD,OAAM;QACR,CAAC;QAED,iFAAiF;QACjF,IAAI,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3B,OAAM;QACR,CAAC;QAED,sFAAsF;QACtF,2FAA2F;QAC3F,IAAI,wBAAwB,CAAC,IAAI,EAAE,QAAQ,CAAC,EAAE,CAAC;YAC7C,OAAM;QACR,CAAC;QAED,IAAI,OAAO,GAA+B,eAAe,CAAA;QACzD,IAAI,QAAQ,GAAG,CAAC,CAAA;QAEhB,sDAAsD;QACtD,IAAI,uBAAuB,CAAC,IAAI,CAAC,EAAE,CAAC;YAClC,OAAO,GAAG,cAAc,CAAA;YACxB,QAAQ,GAAG,EAAE,CAAA;QACf,CAAC;QACD,8DAA8D;aACzD,IAAI,SAAS,IAAI,6CAA6C,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/E,OAAO,GAAG,cAAc,CAAA;YACxB,QAAQ,GAAG,EAAE,CAAA;QACf,CAAC;QACD,yDAAyD;aACpD,IAAI,UAAU,IAAI,0DAA0D,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7F,OAAO,GAAG,cAAc,CAAA;YACxB,QAAQ,GAAG,CAAC,CAAA;QACd,CAAC;QACD,+EAA+E;aAC1E,IAAI,QAAQ,IAAI,6BAA6B,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9D,OAAO,GAAG,gBAAgB,CAAA;YAC1B,QAAQ,GAAG,CAAC,CAAA;QACd,CAAC;QACD,yDAAyD;aACpD,IAAI,yCAAyC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9D,OAAO,GAAG,iBAAiB,CAAA;YAC3B,QAAQ,GAAG,CAAC,CAAA;QACd,CAAC;QACD,4FAA4F;aACvF,IAAI,QAAQ,IAAI,uDAAuD,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACxF,6EAA6E;YAC7E,OAAM;QACR,CAAC;QACD,2BAA2B;aACtB,CAAC;YACJ,OAAO,GAAG,eAAe,CAAA;YACzB,QAAQ,GAAG,CAAC,CAAA;QACd,CAAC;QAED,MAAM,CAAC,IAAI,CAAC;YACV,UAAU,EAAE,GAAG,GAAG,CAAC;YACnB,WAAW,EAAE,IAAI,CAAC,IAAI,EAAE;YACxB,OAAO;YACP,QAAQ;SACT,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,mCAAmC;IACnC,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAA;AACvD,CAAC;AAED;;;GAGG;AACH,SAAS,mBAAmB,CAC1B,KAAe,EACf,QAAgB;IAEhB,MAAM,eAAe,GAAoB,EAAE,CAAA;IAE3C,6BAA6B;IAC7B,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QAClC,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,yCAAyC;IACzC,MAAM,iBAAiB,GAAG,kBAAkB,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAA;IAE7D,+DAA+D;IAC/D,MAAM,WAAW,GAAG,iBAAiB,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACnD,KAAK,CAAC,OAAO,KAAK,cAAc;QAChC,KAAK,CAAC,OAAO,KAAK,gBAAgB;QAClC,KAAK,CAAC,OAAO,KAAK,cAAc,CACjC,CAAA;IAED,gEAAgE;IAChE,MAAM,SAAS,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAA;IAEzC,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC3B,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,2DAA2D;IAC3D,IAAI,SAAS,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;QAC1B,sCAAsC;QACtC,MAAM,QAAQ,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAA;QAC5D,MAAM,mBAAmB,GAAG,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE;YAC7C,MAAM,KAAK,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,GAAG,CAAC,CAAC,MAAM,CAAA;YAC7D,MAAM,KAAK,GAA2B;gBACpC,cAAc,EAAE,+BAA+B;gBAC/C,gBAAgB,EAAE,kBAAkB;gBACpC,cAAc,EAAE,sBAAsB;aACvC,CAAA;YACD,OAAO,GAAG,KAAK,QAAQ,KAAK,CAAC,GAAG,CAAC,IAAI,GAAG,EAAE,CAAA;QAC5C,CAAC,CAAC,CAAA;QAEF,eAAe,CAAC,IAAI,CAAC;YACnB,EAAE,EAAE,sBAAsB,QAAQ,EAAE;YACpC,QAAQ;YACR,UAAU,EAAE,SAAS,CAAC,CAAC,CAAC,CAAC,UAAU;YACnC,WAAW,EAAE,yDAAyD;YACtE,QAAQ,EAAE,KAAK;YACf,QAAQ,EAAE,YAAY;YACtB,KAAK,EAAE,yDAAyD,SAAS,CAAC,MAAM,aAAa;YAC7F,WAAW,EAAE,SAAS,SAAS,CAAC,MAAM,iDAAiD,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI;gBACvH,UAAU,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI;gBACzD,8FAA8F;YAChG,YAAY,EAAE,kIAAkI;YAChJ,UAAU,EAAE,QAAQ;YACpB,KAAK,EAAE,CAAC;SACT,CAAC,CAAA;IACJ,CAAC;SAAM,CAAC;QACN,gEAAgE;QAChE,KAAK,MAAM,KAAK,IAAI,SAAS,EAAE,CAAC;YAC9B,MAAM,YAAY,GAA2B;gBAC3C,cAAc,EAAE,8BAA8B;gBAC9C,gBAAgB,EAAE,gBAAgB;gBAClC,cAAc,EAAE,sBAAsB;aACvC,CAAA;YAED,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,sBAAsB,QAAQ,IAAI,KAAK,CAAC,UAAU,EAAE;gBACxD,QAAQ;gBACR,UAAU,EAAE,KAAK,CAAC,UAAU;gBAC5B,WAAW,EAAE,KAAK,CAAC,WAAW;gBAC9B,QAAQ,EAAE,KAAK;gBACf,QAAQ,EAAE,YAAY;gBACtB,KAAK,EAAE,oCAAoC,YAAY,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC,OAAO,EAAE;gBACzF,WAAW,EAAE,iHAAiH;oBAC5H,+BAA+B,YAAY,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC,OAAO,GAAG;gBAChF,YAAY,EAAE,uGAAuG;gBACrH,UAAU,EAAE,QAAQ;gBACpB,KAAK,EAAE,CAAC;aACT,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAA;AACxB,CAAC;AAED;;;GAGG;AACH,SAAS,wBAAwB,CAC/B,OAAe,EACf,QAAgB,EAChB,KAAe;IAEf,MAAM,eAAe,GAAoB,EAAE,CAAA;IAE3C,+DAA+D;IAC/D,MAAM,iBAAiB,GAAG,mCAAmC,CAAC,IAAI,CAAC,QAAQ,CAAC;QAClD,uCAAuC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IAEhF,+EAA+E;IAC/E,MAAM,aAAa,GAAG,8DAA8D,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IAEnG,IAAI,CAAC,iBAAiB,IAAI,aAAa;QAAE,OAAO,eAAe,CAAA;IAE/D,8DAA8D;IAC9D,MAAM,kBAAkB,GAAG;QACzB,+BAA+B;QAC/B,kCAAkC;QAClC,yCAAyC;QACzC,4BAA4B;QAC5B,+BAA+B;KAChC,CAAA;IAED,MAAM,cAAc,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IACpE,IAAI,CAAC,cAAc;QAAE,OAAO,eAAe,CAAA;IAE3C,uFAAuF;IACvF,6FAA6F;IAC7F,MAAM,aAAa,GAAG,6EAA6E,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IACjH,MAAM,gBAAgB,GAAG,uEAAuE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IAE9G,6DAA6D;IAC7D,IAAI,aAAa,IAAI,CAAC,gBAAgB;QAAE,OAAO,eAAe,CAAA;IAE9D,0CAA0C;IAC1C,MAAM,iBAAiB,GAAG;QACxB,YAAY;QACZ,cAAc;QACd,UAAU;QACV,WAAW;QACX,qBAAqB;QACrB,eAAe;QACf,SAAS;QACT,gBAAgB;QAChB,kBAAkB;QAClB,sBAAsB;QACtB,wBAAwB;KACzB,CAAA;IAED,MAAM,eAAe,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAEpE,uEAAuE;IACvE,MAAM,YAAY,GAAG;QACnB,mBAAmB;QACnB,WAAW;QACX,gBAAgB;QAChB,cAAc;QACd,iBAAiB;QACjB,mBAAmB;QACnB,cAAc;QACd,cAAc;QACd,gBAAgB;QAChB,gBAAgB;QAChB,WAAW;QACX,kBAAkB;QAClB,YAAY;QACZ,kBAAkB;QAClB,QAAQ,EAAc,aAAa;QACnC,iBAAiB,EAAK,gBAAgB;QACtC,WAAW,EAAW,WAAW;QACjC,iBAAiB;QACjB,iBAAiB;QACjB,iBAAiB;QACjB,kBAAkB,EAAI,mBAAmB;QACzC,WAAW,EAAW,iCAAiC;KACxD,CAAA;IAED,MAAM,OAAO,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAEvD,qEAAqE;IACrE,MAAM,2BAA2B,GAC/B,4DAA4D,CAAC,IAAI,CAAC,QAAQ,CAAC;QAC3E,wBAAwB,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAO,uBAAuB;QACrE,oBAAoB,CAAC,IAAI,CAAC,QAAQ,CAAC;QACnC,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IAEhC,mDAAmD;IACnD,IAAI,CAAC,eAAe,EAAE,CAAC;QACrB,uCAAuC;QACvC,IAAI,OAAO,GAAG,CAAC,CAAA;QACf,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,IAAI,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;gBACnD,OAAO,GAAG,CAAC,GAAG,CAAC,CAAA;gBACf,MAAK;YACP,CAAC;QACH,CAAC;QAED,yFAAyF;QACzF,IAAI,OAAO,IAAI,2BAA2B,EAAE,CAAC;YAC3C,qFAAqF;YACrF,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,iBAAiB,QAAQ,EAAE;gBAC/B,QAAQ;gBACR,UAAU,EAAE,OAAO;gBACnB,WAAW,EAAE,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,uBAAuB;gBAClE,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,YAAY;gBACtB,KAAK,EAAE,2DAA2D;gBAClE,WAAW,EAAE,8MAA8M;gBAC3N,YAAY,EAAE,iHAAiH;gBAC/H,UAAU,EAAE,KAAK;gBACjB,KAAK,EAAE,CAAC;aACT,CAAC,CAAA;QACJ,CAAC;aAAM,CAAC;YACN,sCAAsC;YACtC,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,iBAAiB,QAAQ,EAAE;gBAC/B,QAAQ;gBACR,UAAU,EAAE,OAAO;gBACnB,WAAW,EAAE,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,uBAAuB;gBAClE,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,YAAY;gBACtB,KAAK,EAAE,6DAA6D;gBACpE,WAAW,EAAE,8IAA8I;gBAC3J,YAAY,EAAE,8GAA8G;gBAC5H,UAAU,EAAE,QAAQ;gBACpB,KAAK,EAAE,CAAC;aACT,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAA;AACxB,CAAC;AAED;;GAEG;AACH,SAAS,uBAAuB,CAAC,IAAY;IAC3C,MAAM,mBAAmB,GAAG;QAC1B,uBAAuB;QACvB,kBAAkB;QAClB,oBAAoB;QACpB,mBAAmB;QACnB,kBAAkB;QAClB,iBAAiB;QACjB,eAAe;QACf,eAAe;QACf,eAAe;QACf,eAAe;QACf,cAAc;QACd,MAAM,EAAgB,aAAa;QACnC,QAAQ,EAAc,YAAY;QAClC,OAAO;KACR,CAAA;IACD,OAAO,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;AACpD,CAAC;AAED;;GAEG;AACH,SAAS,YAAY,CAAC,QAAgB;IACpC,MAAM,SAAS,GAAG,QAAQ,CAAC,WAAW,EAAE,CAAA;IACxC,OAAO,+CAA+C,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;AACxE,CAAC;AAED,SAAgB,oBAAoB,CAClC,OAAe,EACf,QAAgB;IAEhB,MAAM,eAAe,GAAoB,EAAE,CAAA;IAC3C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IAEjC,6EAA6E;IAC7E,IAAI,IAAA,+BAAa,EAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,MAAM,UAAU,GAAG,IAAA,kCAAgB,EAAC,QAAQ,CAAC,CAAA;IAC7C,MAAM,kBAAkB,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAA;IAEjD,0EAA0E;IAC1E,MAAM,QAAQ,GAAG,mBAAmB,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAA;IACrD,eAAe,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,CAAA;IAEjC,oCAAoC;IACpC,MAAM,cAAc,GAAG,wBAAwB,CAAC,OAAO,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAA;IACzE,eAAe,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,CAAA;IAEvC,qDAAqD;IACrD,IAAI,cAAc,GAAG,CAAC,CAAA;IAEtB,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;QAC5B,KAAK,MAAM,WAAW,IAAI,eAAe,EAAE,CAAC;YAC1C,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;YAE/E,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBACrB,gFAAgF;gBAChF,IAAI,WAAW,CAAC,IAAI,KAAK,wBAAwB,EAAE,CAAC;oBAClD,IAAI,uBAAuB,CAAC,IAAI,CAAC,IAAI,IAAA,oCAAkB,EAAC,EAAE,EAAE,IAAI,CAAC,IAAI,UAAU,EAAE,CAAC;wBAChF,SAAQ,CAAC,kCAAkC;oBAC7C,CAAC;gBACH,CAAC;gBAED,cAAc,EAAE,CAAA;gBAEhB,oCAAoC;gBACpC,IAAI,QAAQ,GAAG,WAAW,CAAC,QAAQ,CAAA;gBACnC,IAAI,UAAU,GAAG,WAAW,CAAC,UAAU,CAAA;gBACvC,IAAI,UAAU,EAAE,CAAC;oBACf,IAAI,QAAQ,KAAK,UAAU;wBAAE,QAAQ,GAAG,QAAQ,CAAA;yBAC3C,IAAI,QAAQ,KAAK,MAAM;wBAAE,QAAQ,GAAG,KAAK,CAAA;;wBACzC,QAAQ,GAAG,MAAM,CAAA;oBACtB,UAAU,GAAG,KAAK,CAAA;gBACpB,CAAC;gBAED,eAAe,CAAC,IAAI,CAAC;oBACnB,EAAE,EAAE,kBAAkB,QAAQ,IAAI,KAAK,GAAG,CAAC,IAAI,WAAW,CAAC,IAAI,EAAE;oBACjE,QAAQ;oBACR,UAAU,EAAE,KAAK,GAAG,CAAC;oBACrB,WAAW,EAAE,IAAI,CAAC,IAAI,EAAE;oBACxB,QAAQ;oBACR,QAAQ,EAAE,YAAY;oBACtB,KAAK,EAAE,gBAAgB,WAAW,CAAC,IAAI,EAAE;oBACzC,WAAW,EAAE,WAAW,CAAC,WAAW,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,EAAE,CAAC;oBAC5E,YAAY,EAAE,WAAW,CAAC,YAAY;oBACtC,UAAU;oBACV,KAAK,EAAE,CAAC;iBACT,CAAC,CAAA;gBACF,MAAK,CAAC,4BAA4B;YACpC,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAA;IAEF,gDAAgD;IAChD,gFAAgF;IAChF,IAAI,CAAC,kBAAkB,IAAI,CAAC,UAAU,EAAE,CAAC;QACvC,MAAM,gBAAgB,GAAG,2FAA2F,CAAA;QACpH,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,IAAI,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBAChC,oBAAoB;gBACpB,gBAAgB,CAAC,SAAS,GAAG,CAAC,CAAA;gBAC9B,yBAAyB;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAA;gBAC3B,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACpF,OAAM;gBACR,CAAC;gBACD,+EAA+E;gBAC/E,IAAI,iCAAiC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;oBACjD,OAAM;gBACR,CAAC;gBACD,eAAe,CAAC,IAAI,CAAC;oBACnB,EAAE,EAAE,kBAAkB,QAAQ,IAAI,KAAK,GAAG,CAAC,gBAAgB;oBAC3D,QAAQ;oBACR,UAAU,EAAE,KAAK,GAAG,CAAC;oBACrB,WAAW,EAAE,IAAI,CAAC,IAAI,EAAE;oBACxB,QAAQ,EAAE,QAAQ;oBAClB,QAAQ,EAAE,YAAY;oBACtB,KAAK,EAAE,uCAAuC;oBAC9C,WAAW,EAAE,8DAA8D;oBAC3E,YAAY,EAAE,8DAA8D;oBAC5E,UAAU,EAAE,MAAM;oBAClB,KAAK,EAAE,CAAC;iBACT,CAAC,CAAA;gBACF,cAAc,EAAE,CAAA;YAClB,CAAC;QACH,CAAC,CAAC,CAAA;IACJ,CAAC;IAED,iEAAiE;IACjE,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAA;IAC9B,MAAM,SAAS,GAAG,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,CAAC,CAAA;IAEzD,6EAA6E;IAC7E,IAAI,SAAS,GAAG,IAAI,IAAI,cAAc,IAAI,CAAC,EAAE,CAAC;QAC5C,eAAe,CAAC,IAAI,CAAC;YACnB,EAAE,EAAE,kBAAkB,QAAQ,UAAU;YACxC,QAAQ;YACR,UAAU,EAAE,CAAC;YACb,WAAW,EAAE,iBAAiB,cAAc,6BAA6B;YACzE,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,YAAY;YACtB,KAAK,EAAE,6CAA6C;YACpD,WAAW,EAAE,mBAAmB,cAAc,qFAAqF;YACnI,YAAY,EAAE,kGAAkG;YAChH,UAAU,EAAE,QAAQ;YACpB,KAAK,EAAE,CAAC;SACT,CAAC,CAAA;IACJ,CAAC;IAED,OAAO,eAAe,CAAA;AACxB,CAAC"}

package/dist/layer2/ai-prompt-hygiene.d.ts

@@ -0,0 +1,19 @@
+/**
+ * Layer 2: AI Prompt Hygiene Detection
+ * Detects prompt injection vulnerabilities and secrets in LLM prompts
+ *
+ * Covers:
+ * - B1: Prompt & template hygiene (LLM01)
+ * - B3: Secrets & sensitive data in prompts (LLM06)
+ */
+import type { Vulnerability } from '../types';
+/**
+ * Check if a file is in an LLM/AI context based on path and content
+ */
+declare function isLLMContextFile(filePath: string, content: string): boolean;
+/**
+ * Main detection function for AI prompt hygiene issues
+ */
+export declare function detectAIPromptHygiene(content: string, filePath: string): Vulnerability[];
+export { isLLMContextFile };
+//# sourceMappingURL=ai-prompt-hygiene.d.ts.map

package/dist/layer2/ai-prompt-hygiene.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-prompt-hygiene.d.ts","sourceRoot":"","sources":["../../src/layer2/ai-prompt-hygiene.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAyB,MAAM,UAAU,CAAA;AAQpE;;GAEG;AACH,iBAAS,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CA0BpE;AA8MD;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,GACf,aAAa,EAAE,CAqJjB;AAGD,OAAO,EAAE,gBAAgB,EAAE,CAAA"}

package/dist/layer2/ai-prompt-hygiene.js

@@ -0,0 +1,356 @@
+"use strict";
+/**
+ * Layer 2: AI Prompt Hygiene Detection
+ * Detects prompt injection vulnerabilities and secrets in LLM prompts
+ *
+ * Covers:
+ * - B1: Prompt & template hygiene (LLM01)
+ * - B3: Secrets & sensitive data in prompts (LLM06)
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.detectAIPromptHygiene = detectAIPromptHygiene;
+exports.isLLMContextFile = isLLMContextFile;
+const context_helpers_1 = require("../utils/context-helpers");
+/**
+ * Check if a file is in an LLM/AI context based on path and content
+ */
+function isLLMContextFile(filePath, content) {
+    // File path indicators of AI/LLM code
+    const llmPathPatterns = [
+        /\/(ai|llm|chat|openai|anthropic|gpt|claude)\//i,
+        /\/(assistants?|agents?|prompts?)\//i,
+        /(chat|ai|llm|prompt|assistant|agent).*\.(ts|js|tsx|jsx|py)$/i,
+    ];
+    if (llmPathPatterns.some(p => p.test(filePath))) {
+        return true;
+    }
+    // Content patterns suggesting LLM API usage
+    const llmContentPatterns = [
+        /\.create\s*\(\s*\{[^}]*messages\s*:/i, // OpenAI/Anthropic SDK
+        /from\s+['"](@anthropic-ai|openai|langchain|llama[-_]?index)/i, // Imports
+        /\bsystem\s*:\s*['"`]/i, // System message definition
+        /role:\s*['"`](user|assistant|system)['"`]/i, // Message roles
+        /\b(systemPrompt|userPrompt|assistantPrompt)\b/i, // Prompt variables
+        /messages\s*:\s*\[/i, // Messages array
+        /\.chat\.completions?\.create/i, // OpenAI chat completion
+        /\.messages\.create/i, // Anthropic messages
+        /ChatCompletion|MessageCreate/i, // SDK types
+    ];
+    return llmContentPatterns.some(p => p.test(content));
+}
+/**
+ * Check if user input delimiter/fence patterns are present
+ */
+function hasPromptDelimiters(lineContent, contextLines) {
+    const context = [lineContent, ...contextLines].join('\n');
+    const delimiterPatterns = [
+        /```/, // Triple backticks
+        /<user>|<\/user>/i, // XML-style user tags
+        /<human>|<\/human>/i, // Human tags
+        /---+/, // Horizontal rules
+        /\[USER\]|\[\/USER\]/i, // Bracket tags
+        /\{\{user\}\}/i, // Template variable
+        /###\s*User|###\s*Input/i, // Markdown headers
+        /INPUT:|OUTPUT:/i, // Section markers
+    ];
+    return delimiterPatterns.some(p => p.test(context));
+}
+/**
+ * Check if content looks like proper parameterization rather than concatenation
+ */
+function isProperlyParameterized(lineContent) {
+    const safePatterns = [
+        /\{\{.*\}\}/, // Handlebars/mustache templates
+        /\{[a-zA-Z_]+\}/, // Python format strings (positional)
+        /\$\{.*\}.*sanitize|escape/i, // Template with sanitization
+        /placeholder|PLACEHOLDER/, // Explicit placeholders
+    ];
+    return safePatterns.some(p => p.test(lineContent));
+}
+/**
+ * B1: Unsafe prompt interpolation patterns
+ */
+const UNSAFE_INTERPOLATION_PATTERNS = [
+    // Template literals with user input in system prompts
+    {
+        name: 'User input in system prompt',
+        pattern: /system\s*[=:]\s*`[^`]*\$\{.*(?:user|input|req|request|body|query|params|data).*\}[^`]*`/gi,
+        severity: 'high',
+        description: 'User input is directly interpolated into a system prompt. This creates a prompt injection vulnerability where attackers can manipulate the AI\'s behavior.',
+        suggestedFix: 'Use clear delimiters (```, <user>, ---) between system instructions and user content. Consider using structured input rather than string interpolation.',
+        checkDelimiters: true,
+    },
+    // String concatenation in prompt building
+    {
+        name: 'Prompt string concatenation with user input',
+        pattern: /(?:system|prompt|instruction)\s*[=+]\s*.*\+\s*(?:user|input|req|request|body|query|params)(?:\.|Input|\[)/gi,
+        severity: 'high',
+        description: 'User input is concatenated into prompt strings. Attackers can inject malicious instructions.',
+        suggestedFix: 'Use delimiters to clearly separate system instructions from user content. Example: ```user input here```',
+        checkDelimiters: true,
+    },
+    // Messages array with dynamic user content in system role
+    {
+        name: 'Dynamic content in system message',
+        pattern: /role:\s*['"`]system['"`]\s*,\s*content:\s*`[^`]*\$\{/gi,
+        severity: 'medium',
+        description: 'System message content includes dynamic values. If user-controlled, this enables prompt injection.',
+        suggestedFix: 'Keep system messages static. Place user input in messages with role: "user" instead.',
+        checkDelimiters: true,
+    },
+    // f-strings in Python with user input
+    {
+        name: 'Python f-string prompt with user input',
+        pattern: /f['"][^'"]*\{.*(?:user|input|request|body).*\}[^'"]*['"]/gi,
+        severity: 'high',
+        description: 'User input in Python f-string prompt creates prompt injection risk.',
+        suggestedFix: 'Use explicit delimiters: f"System instructions...\n---\n{user_input}\n---"',
+        checkDelimiters: true,
+    },
+];
+/**
+ * B3: Secrets in prompt context patterns
+ */
+const SECRETS_IN_PROMPTS_PATTERNS = [
+    // API keys in message content
+    {
+        name: 'API key in prompt content',
+        pattern: /(?:messages|prompt|system|content)\s*[=:][^;]*(?:sk-[a-zA-Z0-9]{20,}|api[_-]?key\s*[:=]\s*['"][^'"]{16,}['"])/gi,
+        severity: 'critical',
+        description: 'API key appears to be hardcoded in prompt content. Keys in prompts may be logged, cached, or sent to model providers.',
+        suggestedFix: 'Never include API keys in prompts. Use environment variables and keep them server-side only.',
+    },
+    // AWS keys in prompts
+    {
+        name: 'AWS credentials in prompt',
+        pattern: /(?:messages|prompt|system|content)\s*[=:][^;]*(?:AKIA[A-Z0-9]{16}|aws[_-]?(?:secret|access)[_-]?key)/gi,
+        severity: 'critical',
+        description: 'AWS credentials detected in prompt content.',
+        suggestedFix: 'Remove credentials from prompts. Use IAM roles or environment variables instead.',
+    },
+    // Database URLs with credentials
+    {
+        name: 'Database credentials in prompt',
+        pattern: /(?:messages|prompt|system|content).*(?:mongodb|postgres|mysql|redis):\/\/[^:]+:[^@]+@/gi,
+        severity: 'critical',
+        description: 'Database connection string with credentials in prompt. This exposes database access.',
+        suggestedFix: 'Never include connection strings in prompts. Reference data by ID instead.',
+    },
+    // Passwords in prompt context
+    {
+        name: 'Password in prompt content',
+        pattern: /(?:messages|prompt|content)\s*[=:].*(?:password|passwd|pwd)\s*[:=]\s*['"`][^'"`]{8,}/gi,
+        severity: 'high',
+        description: 'Password appears in prompt content. This may be logged or exposed to model providers.',
+        suggestedFix: 'Remove passwords from prompts. Use authentication tokens or session references instead.',
+    },
+    // Private keys
+    {
+        name: 'Private key in prompt',
+        pattern: /(?:messages|prompt|content).*(?:-----BEGIN\s+(?:RSA\s+)?PRIVATE\s+KEY-----)/gi,
+        severity: 'critical',
+        description: 'Private key material detected in prompt context.',
+        suggestedFix: 'Never include private keys in prompts. Sign data server-side instead.',
+    },
+    // Generic token patterns
+    {
+        name: 'Access token in prompt',
+        pattern: /(?:messages|prompt|content)\s*[=:].*(?:access[_-]?token|auth[_-]?token|bearer)\s*[:=]\s*['"`][a-zA-Z0-9_.-]{20,}/gi,
+        severity: 'high',
+        description: 'Access token detected in prompt content. Tokens in prompts risk exposure.',
+        suggestedFix: 'Do not include tokens in prompts. Pass token context through secure server-side channels.',
+    },
+];
+/**
+ * Missing boundary patterns - prompts without clear user/system separation
+ */
+const MISSING_BOUNDARY_PATTERNS = [
+    // Direct concatenation without any markers
+    {
+        name: 'Missing prompt boundaries',
+        pattern: /(?:content|prompt)\s*[:=]\s*(?:systemInstructions?|instructions?)\s*\+\s*(?:userMessage|userInput|input)/gi,
+        severity: 'medium',
+        description: 'Prompt concatenates system instructions with user input without clear boundaries.',
+        suggestedFix: 'Add delimiters between instructions and user content: "Instructions...\n---\n" + userInput + "\n---"',
+    },
+    // Template literals building prompts without delimiters
+    {
+        name: 'Unbounded template prompt',
+        pattern: /`(?:You are|As an|Your task)[^`]{20,}\$\{(?!.*(?:```|<user|---|\[USER))/gi,
+        severity: 'medium',
+        description: 'Prompt template interpolates values without clear delimiter boundaries.',
+        suggestedFix: 'Wrap interpolated user content with delimiters: ```${userInput}```',
+    },
+    // M5: RAG-specific prompt injection patterns
+    {
+        name: 'Retrieved context in system prompt',
+        pattern: /role:\s*['"`]system['"`]\s*,\s*content:\s*`[^`]*\$\{.*(?:context|chunks|documents|retrieved|sources)/gi,
+        severity: 'high',
+        description: 'Retrieved documents injected into system prompt. Poisoned documents could hijack model behavior.',
+        suggestedFix: 'Place retrieved context in user messages with clear delimiters. Use structured prompts separating instructions from data.',
+        checkDelimiters: true,
+    },
+    {
+        name: 'Mixed user input and retrieved context',
+        pattern: /\$\{.*(?:userInput|query|question).*\}[^`]*\$\{.*(?:context|chunks|documents).*\}|\$\{.*(?:context|chunks|documents).*\}[^`]*\$\{.*(?:userInput|query|question).*\}/gi,
+        severity: 'medium',
+        description: 'User input and retrieved context concatenated without clear separation. Both could contain injection attempts.',
+        suggestedFix: 'Clearly separate user input from retrieved context using XML tags or delimiters: <user_query>...</user_query><context>...</context>',
+        checkDelimiters: true,
+    },
+    {
+        name: 'RAG context directly interpolated',
+        pattern: /(?:system|prompt)\s*[:=].*(?:retrievedContext|ragContext|documentContext|knowledgeBase)\s*(?:\+|,)/gi,
+        severity: 'medium',
+        description: 'RAG context directly concatenated into prompt. Could enable data poisoning attacks.',
+        suggestedFix: 'Use structured prompt format with clear boundaries between instructions, context, and user input.',
+        checkDelimiters: true,
+    },
+];
+// ============================================================================
+// Detection Functions
+// ============================================================================
+/**
+ * Get surrounding context lines for analysis
+ */
+function getSurroundingContext(content, lineIndex, windowSize = 10) {
+    const lines = content.split('\n');
+    const start = Math.max(0, lineIndex - windowSize);
+    const end = Math.min(lines.length, lineIndex + windowSize);
+    return lines.slice(start, end);
+}
+/**
+ * Main detection function for AI prompt hygiene issues
+ */
+function detectAIPromptHygiene(content, filePath) {
+    const vulnerabilities = [];
+    // Skip non-applicable files
+    if ((0, context_helpers_1.isScannerOrFixtureFile)(filePath))
+        return vulnerabilities;
+    if ((0, context_helpers_1.isDocumentationFile)(filePath))
+        return vulnerabilities;
+    // Only scan files that appear to be in LLM context
+    if (!isLLMContextFile(filePath, content)) {
+        return vulnerabilities;
+    }
+    const lines = content.split('\n');
+    const isTestFile = (0, context_helpers_1.isTestOrMockFile)(filePath);
+    // Scan for unsafe interpolation patterns (B1)
+    for (const pattern of UNSAFE_INTERPOLATION_PATTERNS) {
+        const regex = new RegExp(pattern.pattern.source, pattern.pattern.flags);
+        let match;
+        while ((match = regex.exec(content)) !== null) {
+            const lineNumber = content.substring(0, match.index).split('\n').length;
+            const lineContent = lines[lineNumber - 1]?.trim() || '';
+            // Skip comments
+            if ((0, context_helpers_1.isComment)(lineContent))
+                continue;
+            // Skip if properly parameterized
+            if (isProperlyParameterized(lineContent))
+                continue;
+            // Check for delimiters if applicable
+            let severity = pattern.severity;
+            let description = pattern.description;
+            const contextLines = getSurroundingContext(content, lineNumber - 1, 15);
+            if (pattern.checkDelimiters && hasPromptDelimiters(lineContent, contextLines)) {
+                // Delimiters present - downgrade severity
+                severity = 'info';
+                description += ' (Note: Delimiters detected in context, which mitigates this risk.)';
+            }
+            // Downgrade test files
+            if (isTestFile) {
+                severity = 'info';
+                description += ' (in test file)';
+            }
+            vulnerabilities.push({
+                id: `ai-prompt-${filePath}-${lineNumber}-${pattern.name.replace(/\s+/g, '-')}`,
+                filePath,
+                lineNumber,
+                lineContent,
+                severity,
+                category: 'ai_prompt_injection',
+                title: pattern.name,
+                description,
+                suggestedFix: pattern.suggestedFix,
+                confidence: severity === 'info' ? 'low' : 'medium',
+                layer: 2,
+                requiresAIValidation: severity !== 'info',
+            });
+        }
+    }
+    // Scan for secrets in prompts (B3)
+    for (const pattern of SECRETS_IN_PROMPTS_PATTERNS) {
+        const regex = new RegExp(pattern.pattern.source, pattern.pattern.flags);
+        let match;
+        while ((match = regex.exec(content)) !== null) {
+            const lineNumber = content.substring(0, match.index).split('\n').length;
+            const lineContent = lines[lineNumber - 1]?.trim() || '';
+            // Skip comments
+            if ((0, context_helpers_1.isComment)(lineContent))
+                continue;
+            // Check if it's an env var reference (safe pattern)
+            const isEnvRef = /process\.env|import\.meta\.env|os\.environ|getenv/i.test(lineContent);
+            if (isEnvRef)
+                continue;
+            let severity = pattern.severity;
+            let description = pattern.description;
+            // Downgrade test files but still flag
+            if (isTestFile) {
+                severity = severity === 'critical' ? 'medium' : 'low';
+                description += ' (in test file - still review for accidental commits)';
+            }
+            vulnerabilities.push({
+                id: `ai-secret-prompt-${filePath}-${lineNumber}-${pattern.name.replace(/\s+/g, '-')}`,
+                filePath,
+                lineNumber,
+                lineContent,
+                severity,
+                category: 'hardcoded_secret', // Use existing category for consistency
+                title: pattern.name + ' (in LLM context)',
+                description: description + ' Secrets in prompts are especially risky as they may be logged, shared, or sent to external AI providers.',
+                suggestedFix: pattern.suggestedFix,
+                confidence: 'high',
+                layer: 2,
+                requiresAIValidation: false, // Secrets don't need AI validation - they're definitive
+            });
+        }
+    }
+    // Scan for missing boundary patterns (B1 continued)
+    for (const pattern of MISSING_BOUNDARY_PATTERNS) {
+        const regex = new RegExp(pattern.pattern.source, pattern.pattern.flags);
+        let match;
+        while ((match = regex.exec(content)) !== null) {
+            const lineNumber = content.substring(0, match.index).split('\n').length;
+            const lineContent = lines[lineNumber - 1]?.trim() || '';
+            // Skip comments
+            if ((0, context_helpers_1.isComment)(lineContent))
+                continue;
+            const contextLines = getSurroundingContext(content, lineNumber - 1, 10);
+            // Skip if delimiters are present
+            if (hasPromptDelimiters(lineContent, contextLines))
+                continue;
+            let severity = pattern.severity;
+            let description = pattern.description;
+            if (isTestFile) {
+                severity = 'info';
+                description += ' (in test file)';
+            }
+            vulnerabilities.push({
+                id: `ai-boundary-${filePath}-${lineNumber}-${pattern.name.replace(/\s+/g, '-')}`,
+                filePath,
+                lineNumber,
+                lineContent,
+                severity,
+                category: 'ai_prompt_injection',
+                title: pattern.name,
+                description,
+                suggestedFix: pattern.suggestedFix,
+                confidence: 'medium',
+                layer: 2,
+                requiresAIValidation: true,
+            });
+        }
+    }
+    return vulnerabilities;
+}
+//# sourceMappingURL=ai-prompt-hygiene.js.map

package/dist/layer2/ai-prompt-hygiene.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-prompt-hygiene.js","sourceRoot":"","sources":["../../src/layer2/ai-prompt-hygiene.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;AAwPH,sDAwJC;AAGQ,4CAAgB;AAhZzB,8DAKiC;AAEjC;;GAEG;AACH,SAAS,gBAAgB,CAAC,QAAgB,EAAE,OAAe;IACzD,sCAAsC;IACtC,MAAM,eAAe,GAAG;QACtB,gDAAgD;QAChD,qCAAqC;QACrC,8DAA8D;KAC/D,CAAA;IAED,IAAI,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;QAChD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,4CAA4C;IAC5C,MAAM,kBAAkB,GAAG;QACzB,sCAAsC,EAAW,uBAAuB;QACxE,8DAA8D,EAAE,UAAU;QAC1E,uBAAuB,EAA0B,4BAA4B;QAC7E,4CAA4C,EAAK,gBAAgB;QACjE,gDAAgD,EAAE,mBAAmB;QACrE,oBAAoB,EAA6B,iBAAiB;QAClE,+BAA+B,EAAkB,yBAAyB;QAC1E,qBAAqB,EAA4B,qBAAqB;QACtE,+BAA+B,EAAkB,YAAY;KAC9D,CAAA;IAED,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACtD,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,WAAmB,EAAE,YAAsB;IACtE,MAAM,OAAO,GAAG,CAAC,WAAW,EAAE,GAAG,YAAY,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEzD,MAAM,iBAAiB,GAAG;QACxB,KAAK,EAA2B,mBAAmB;QACnD,kBAAkB,EAAc,sBAAsB;QACtD,oBAAoB,EAAY,aAAa;QAC7C,MAAM,EAA0B,mBAAmB;QACnD,sBAAsB,EAAU,eAAe;QAC/C,eAAe,EAAiB,oBAAoB;QACpD,yBAAyB,EAAO,mBAAmB;QACnD,iBAAiB,EAAe,kBAAkB;KACnD,CAAA;IAED,OAAO,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACrD,CAAC;AAED;;GAEG;AACH,SAAS,uBAAuB,CAAC,WAAmB;IAClD,MAAM,YAAY,GAAG;QACnB,YAAY,EAAqB,gCAAgC;QACjE,gBAAgB,EAAgB,qCAAqC;QACrE,4BAA4B,EAAI,6BAA6B;QAC7D,yBAAyB,EAAQ,wBAAwB;KAC1D,CAAA;IAED,OAAO,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;AACpD,CAAC;AAeD;;GAEG;AACH,MAAM,6BAA6B,GAA2B;IAC5D,sDAAsD;IACtD;QACE,IAAI,EAAE,6BAA6B;QACnC,OAAO,EAAE,2FAA2F;QACpG,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,4JAA4J;QACzK,YAAY,EAAE,yJAAyJ;QACvK,eAAe,EAAE,IAAI;KACtB;IACD,0CAA0C;IAC1C;QACE,IAAI,EAAE,6CAA6C;QACnD,OAAO,EAAE,6GAA6G;QACtH,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,8FAA8F;QAC3G,YAAY,EAAE,0GAA0G;QACxH,eAAe,EAAE,IAAI;KACtB;IACD,0DAA0D;IAC1D;QACE,IAAI,EAAE,mCAAmC;QACzC,OAAO,EAAE,wDAAwD;QACjE,QAAQ,EAAE,QAAQ;QAClB,WAAW,EAAE,oGAAoG;QACjH,YAAY,EAAE,sFAAsF;QACpG,eAAe,EAAE,IAAI;KACtB;IACD,sCAAsC;IACtC;QACE,IAAI,EAAE,wCAAwC;QAC9C,OAAO,EAAE,4DAA4D;QACrE,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,qEAAqE;QAClF,YAAY,EAAE,4EAA4E;QAC1F,eAAe,EAAE,IAAI;KACtB;CACF,CAAA;AAED;;GAEG;AACH,MAAM,2BAA2B,GAA2B;IAC1D,8BAA8B;IAC9B;QACE,IAAI,EAAE,2BAA2B;QACjC,OAAO,EAAE,iHAAiH;QAC1H,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,uHAAuH;QACpI,YAAY,EAAE,8FAA8F;KAC7G;IACD,sBAAsB;IACtB;QACE,IAAI,EAAE,2BAA2B;QACjC,OAAO,EAAE,wGAAwG;QACjH,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,6CAA6C;QAC1D,YAAY,EAAE,kFAAkF;KACjG;IACD,iCAAiC;IACjC;QACE,IAAI,EAAE,gCAAgC;QACtC,OAAO,EAAE,yFAAyF;QAClG,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,sFAAsF;QACnG,YAAY,EAAE,4EAA4E;KAC3F;IACD,8BAA8B;IAC9B;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EAAE,wFAAwF;QACjG,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,uFAAuF;QACpG,YAAY,EAAE,yFAAyF;KACxG;IACD,eAAe;IACf;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,+EAA+E;QACxF,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,kDAAkD;QAC/D,YAAY,EAAE,uEAAuE;KACtF;IACD,yBAAyB;IACzB;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,oHAAoH;QAC7H,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,2EAA2E;QACxF,YAAY,EAAE,2FAA2F;KAC1G;CACF,CAAA;AAED;;GAEG;AACH,MAAM,yBAAyB,GAA2B;IACxD,2CAA2C;IAC3C;QACE,IAAI,EAAE,2BAA2B;QACjC,OAAO,EAAE,4GAA4G;QACrH,QAAQ,EAAE,QAAQ;QAClB,WAAW,EAAE,mFAAmF;QAChG,YAAY,EAAE,sGAAsG;KACrH;IACD,wDAAwD;IACxD;QACE,IAAI,EAAE,2BAA2B;QACjC,OAAO,EAAE,2EAA2E;QACpF,QAAQ,EAAE,QAAQ;QAClB,WAAW,EAAE,yEAAyE;QACtF,YAAY,EAAE,oEAAoE;KACnF;IACD,6CAA6C;IAC7C;QACE,IAAI,EAAE,oCAAoC;QAC1C,OAAO,EAAE,wGAAwG;QACjH,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,kGAAkG;QAC/G,YAAY,EAAE,2HAA2H;QACzI,eAAe,EAAE,IAAI;KACtB;IACD;QACE,IAAI,EAAE,wCAAwC;QAC9C,OAAO,EAAE,uKAAuK;QAChL,QAAQ,EAAE,QAAQ;QAClB,WAAW,EAAE,gHAAgH;QAC7H,YAAY,EAAE,qIAAqI;QACnJ,eAAe,EAAE,IAAI;KACtB;IACD;QACE,IAAI,EAAE,mCAAmC;QACzC,OAAO,EAAE,sGAAsG;QAC/G,QAAQ,EAAE,QAAQ;QAClB,WAAW,EAAE,qFAAqF;QAClG,YAAY,EAAE,mGAAmG;QACjH,eAAe,EAAE,IAAI;KACtB;CACF,CAAA;AAED,+EAA+E;AAC/E,sBAAsB;AACtB,+EAA+E;AAE/E;;GAEG;AACH,SAAS,qBAAqB,CAAC,OAAe,EAAE,SAAiB,EAAE,aAAqB,EAAE;IACxF,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,GAAG,UAAU,CAAC,CAAA;IACjD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,SAAS,GAAG,UAAU,CAAC,CAAA;IAC1D,OAAO,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;AAChC,CAAC;AAED;;GAEG;AACH,SAAgB,qBAAqB,CACnC,OAAe,EACf,QAAgB;IAEhB,MAAM,eAAe,GAAoB,EAAE,CAAA;IAE3C,4BAA4B;IAC5B,IAAI,IAAA,wCAAsB,EAAC,QAAQ,CAAC;QAAE,OAAO,eAAe,CAAA;IAC5D,IAAI,IAAA,qCAAmB,EAAC,QAAQ,CAAC;QAAE,OAAO,eAAe,CAAA;IAEzD,mDAAmD;IACnD,IAAI,CAAC,gBAAgB,CAAC,QAAQ,EAAE,OAAO,CAAC,EAAE,CAAC;QACzC,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,UAAU,GAAG,IAAA,kCAAgB,EAAC,QAAQ,CAAC,CAAA;IAE7C,8CAA8C;IAC9C,KAAK,MAAM,OAAO,IAAI,6BAA6B,EAAE,CAAC;QACpD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QACvE,IAAI,KAAK,CAAA;QAET,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC9C,MAAM,UAAU,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAA;YACvE,MAAM,WAAW,GAAG,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;YAEvD,gBAAgB;YAChB,IAAI,IAAA,2BAAS,EAAC,WAAW,CAAC;gBAAE,SAAQ;YAEpC,iCAAiC;YACjC,IAAI,uBAAuB,CAAC,WAAW,CAAC;gBAAE,SAAQ;YAElD,qCAAqC;YACrC,IAAI,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAA;YAC/B,IAAI,WAAW,GAAG,OAAO,CAAC,WAAW,CAAA;YACrC,MAAM,YAAY,GAAG,qBAAqB,CAAC,OAAO,EAAE,UAAU,GAAG,CAAC,EAAE,EAAE,CAAC,CAAA;YAEvE,IAAI,OAAO,CAAC,eAAe,IAAI,mBAAmB,CAAC,WAAW,EAAE,YAAY,CAAC,EAAE,CAAC;gBAC9E,0CAA0C;gBAC1C,QAAQ,GAAG,MAAM,CAAA;gBACjB,WAAW,IAAI,qEAAqE,CAAA;YACtF,CAAC;YAED,uBAAuB;YACvB,IAAI,UAAU,EAAE,CAAC;gBACf,QAAQ,GAAG,MAAM,CAAA;gBACjB,WAAW,IAAI,iBAAiB,CAAA;YAClC,CAAC;YAED,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,aAAa,QAAQ,IAAI,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE;gBAC9E,QAAQ;gBACR,UAAU;gBACV,WAAW;gBACX,QAAQ;gBACR,QAAQ,EAAE,qBAAqB;gBAC/B,KAAK,EAAE,OAAO,CAAC,IAAI;gBACnB,WAAW;gBACX,YAAY,EAAE,OAAO,CAAC,YAAY;gBAClC,UAAU,EAAE,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ;gBAClD,KAAK,EAAE,CAAC;gBACR,oBAAoB,EAAE,QAAQ,KAAK,MAAM;aAC1C,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,mCAAmC;IACnC,KAAK,MAAM,OAAO,IAAI,2BAA2B,EAAE,CAAC;QAClD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QACvE,IAAI,KAAK,CAAA;QAET,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC9C,MAAM,UAAU,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAA;YACvE,MAAM,WAAW,GAAG,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;YAEvD,gBAAgB;YAChB,IAAI,IAAA,2BAAS,EAAC,WAAW,CAAC;gBAAE,SAAQ;YAEpC,oDAAoD;YACpD,MAAM,QAAQ,GAAG,oDAAoD,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;YACvF,IAAI,QAAQ;gBAAE,SAAQ;YAEtB,IAAI,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAA;YAC/B,IAAI,WAAW,GAAG,OAAO,CAAC,WAAW,CAAA;YAErC,sCAAsC;YACtC,IAAI,UAAU,EAAE,CAAC;gBACf,QAAQ,GAAG,QAAQ,KAAK,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAA;gBACrD,WAAW,IAAI,uDAAuD,CAAA;YACxE,CAAC;YAED,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,oBAAoB,QAAQ,IAAI,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE;gBACrF,QAAQ;gBACR,UAAU;gBACV,WAAW;gBACX,QAAQ;gBACR,QAAQ,EAAE,kBAAkB,EAAE,wCAAwC;gBACtE,KAAK,EAAE,OAAO,CAAC,IAAI,GAAG,mBAAmB;gBACzC,WAAW,EAAE,WAAW,GAAG,2GAA2G;gBACtI,YAAY,EAAE,OAAO,CAAC,YAAY;gBAClC,UAAU,EAAE,MAAM;gBAClB,KAAK,EAAE,CAAC;gBACR,oBAAoB,EAAE,KAAK,EAAE,wDAAwD;aACtF,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,oDAAoD;IACpD,KAAK,MAAM,OAAO,IAAI,yBAAyB,EAAE,CAAC;QAChD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;QACvE,IAAI,KAAK,CAAA;QAET,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC9C,MAAM,UAAU,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAA;YACvE,MAAM,WAAW,GAAG,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;YAEvD,gBAAgB;YAChB,IAAI,IAAA,2BAAS,EAAC,WAAW,CAAC;gBAAE,SAAQ;YAEpC,MAAM,YAAY,GAAG,qBAAqB,CAAC,OAAO,EAAE,UAAU,GAAG,CAAC,EAAE,EAAE,CAAC,CAAA;YAEvE,iCAAiC;YACjC,IAAI,mBAAmB,CAAC,WAAW,EAAE,YAAY,CAAC;gBAAE,SAAQ;YAE5D,IAAI,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAA;YAC/B,IAAI,WAAW,GAAG,OAAO,CAAC,WAAW,CAAA;YAErC,IAAI,UAAU,EAAE,CAAC;gBACf,QAAQ,GAAG,MAAM,CAAA;gBACjB,WAAW,IAAI,iBAAiB,CAAA;YAClC,CAAC;YAED,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,eAAe,QAAQ,IAAI,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE;gBAChF,QAAQ;gBACR,UAAU;gBACV,WAAW;gBACX,QAAQ;gBACR,QAAQ,EAAE,qBAAqB;gBAC/B,KAAK,EAAE,OAAO,CAAC,IAAI;gBACnB,WAAW;gBACX,YAAY,EAAE,OAAO,CAAC,YAAY;gBAClC,UAAU,EAAE,QAAQ;gBACpB,KAAK,EAAE,CAAC;gBACR,oBAAoB,EAAE,IAAI;aAC3B,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAA;AACxB,CAAC"}

package/dist/layer2/ai-rag-safety.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Layer 2: RAG Data Safety Detection
+ * Detects data exfiltration risks in Retrieval Augmented Generation systems
+ *
+ * Covers:
+ * - M5.1: RAG data exfiltration (cross-tenant retrieval, raw context exposure)
+ * - Unscoped vector store queries
+ * - Raw retrieved context in responses
+ * - Context logging risks
+ */
+import type { Vulnerability } from '../types';
+/**
+ * Check if a file is in a RAG/retrieval context based on path and content
+ */
+declare function isRAGContextFile(filePath: string, content: string): boolean;
+/**
+ * Main detection function for RAG data safety issues
+ */
+export declare function detectRAGSafetyIssues(content: string, filePath: string): Vulnerability[];
+export { isRAGContextFile };
+//# sourceMappingURL=ai-rag-safety.d.ts.map

package/dist/layer2/ai-rag-safety.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-rag-safety.d.ts","sourceRoot":"","sources":["../../src/layer2/ai-rag-safety.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAyB,MAAM,UAAU,CAAA;AAgGpE;;GAEG;AACH,iBAAS,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CA2CpE;AA2OD;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,GACf,aAAa,EAAE,CAiHjB;AAGD,OAAO,EAAE,gBAAgB,EAAE,CAAA"}