npm - @oculum/scanner - Versions diffs - 1.0.0 - Mend

@oculum/scanner 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (281) hide show

package/dist/formatters/cli-terminal.d.ts +27 -0
package/dist/formatters/cli-terminal.d.ts.map +1 -0
package/dist/formatters/cli-terminal.js +412 -0
package/dist/formatters/cli-terminal.js.map +1 -0
package/dist/formatters/github-comment.d.ts +41 -0
package/dist/formatters/github-comment.d.ts.map +1 -0
package/dist/formatters/github-comment.js +306 -0
package/dist/formatters/github-comment.js.map +1 -0
package/dist/formatters/grouping.d.ts +52 -0
package/dist/formatters/grouping.d.ts.map +1 -0
package/dist/formatters/grouping.js +152 -0
package/dist/formatters/grouping.js.map +1 -0
package/dist/formatters/index.d.ts +9 -0
package/dist/formatters/index.d.ts.map +1 -0
package/dist/formatters/index.js +35 -0
package/dist/formatters/index.js.map +1 -0
package/dist/formatters/vscode-diagnostic.d.ts +103 -0
package/dist/formatters/vscode-diagnostic.d.ts.map +1 -0
package/dist/formatters/vscode-diagnostic.js +151 -0
package/dist/formatters/vscode-diagnostic.js.map +1 -0
package/dist/index.d.ts +52 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +648 -0
package/dist/index.js.map +1 -0
package/dist/layer1/comments.d.ts +8 -0
package/dist/layer1/comments.d.ts.map +1 -0
package/dist/layer1/comments.js +203 -0
package/dist/layer1/comments.js.map +1 -0
package/dist/layer1/config-audit.d.ts +8 -0
package/dist/layer1/config-audit.d.ts.map +1 -0
package/dist/layer1/config-audit.js +252 -0
package/dist/layer1/config-audit.js.map +1 -0
package/dist/layer1/entropy.d.ts +8 -0
package/dist/layer1/entropy.d.ts.map +1 -0
package/dist/layer1/entropy.js +500 -0
package/dist/layer1/entropy.js.map +1 -0
package/dist/layer1/file-flags.d.ts +7 -0
package/dist/layer1/file-flags.d.ts.map +1 -0
package/dist/layer1/file-flags.js +112 -0
package/dist/layer1/file-flags.js.map +1 -0
package/dist/layer1/index.d.ts +36 -0
package/dist/layer1/index.d.ts.map +1 -0
package/dist/layer1/index.js +132 -0
package/dist/layer1/index.js.map +1 -0
package/dist/layer1/patterns.d.ts +8 -0
package/dist/layer1/patterns.d.ts.map +1 -0
package/dist/layer1/patterns.js +482 -0
package/dist/layer1/patterns.js.map +1 -0
package/dist/layer1/urls.d.ts +8 -0
package/dist/layer1/urls.d.ts.map +1 -0
package/dist/layer1/urls.js +296 -0
package/dist/layer1/urls.js.map +1 -0
package/dist/layer1/weak-crypto.d.ts +7 -0
package/dist/layer1/weak-crypto.d.ts.map +1 -0
package/dist/layer1/weak-crypto.js +291 -0
package/dist/layer1/weak-crypto.js.map +1 -0
package/dist/layer2/ai-agent-tools.d.ts +19 -0
package/dist/layer2/ai-agent-tools.d.ts.map +1 -0
package/dist/layer2/ai-agent-tools.js +528 -0
package/dist/layer2/ai-agent-tools.js.map +1 -0
package/dist/layer2/ai-endpoint-protection.d.ts +36 -0
package/dist/layer2/ai-endpoint-protection.d.ts.map +1 -0
package/dist/layer2/ai-endpoint-protection.js +332 -0
package/dist/layer2/ai-endpoint-protection.js.map +1 -0
package/dist/layer2/ai-execution-sinks.d.ts +18 -0
package/dist/layer2/ai-execution-sinks.d.ts.map +1 -0
package/dist/layer2/ai-execution-sinks.js +496 -0
package/dist/layer2/ai-execution-sinks.js.map +1 -0
package/dist/layer2/ai-fingerprinting.d.ts +7 -0
package/dist/layer2/ai-fingerprinting.d.ts.map +1 -0
package/dist/layer2/ai-fingerprinting.js +654 -0
package/dist/layer2/ai-fingerprinting.js.map +1 -0
package/dist/layer2/ai-prompt-hygiene.d.ts +19 -0
package/dist/layer2/ai-prompt-hygiene.d.ts.map +1 -0
package/dist/layer2/ai-prompt-hygiene.js +356 -0
package/dist/layer2/ai-prompt-hygiene.js.map +1 -0
package/dist/layer2/ai-rag-safety.d.ts +21 -0
package/dist/layer2/ai-rag-safety.d.ts.map +1 -0
package/dist/layer2/ai-rag-safety.js +459 -0
package/dist/layer2/ai-rag-safety.js.map +1 -0
package/dist/layer2/ai-schema-validation.d.ts +25 -0
package/dist/layer2/ai-schema-validation.d.ts.map +1 -0
package/dist/layer2/ai-schema-validation.js +375 -0
package/dist/layer2/ai-schema-validation.js.map +1 -0
package/dist/layer2/auth-antipatterns.d.ts +20 -0
package/dist/layer2/auth-antipatterns.d.ts.map +1 -0
package/dist/layer2/auth-antipatterns.js +333 -0
package/dist/layer2/auth-antipatterns.js.map +1 -0
package/dist/layer2/byok-patterns.d.ts +12 -0
package/dist/layer2/byok-patterns.d.ts.map +1 -0
package/dist/layer2/byok-patterns.js +299 -0
package/dist/layer2/byok-patterns.js.map +1 -0
package/dist/layer2/dangerous-functions.d.ts +7 -0
package/dist/layer2/dangerous-functions.d.ts.map +1 -0
package/dist/layer2/dangerous-functions.js +1375 -0
package/dist/layer2/dangerous-functions.js.map +1 -0
package/dist/layer2/data-exposure.d.ts +16 -0
package/dist/layer2/data-exposure.d.ts.map +1 -0
package/dist/layer2/data-exposure.js +279 -0
package/dist/layer2/data-exposure.js.map +1 -0
package/dist/layer2/framework-checks.d.ts +7 -0
package/dist/layer2/framework-checks.d.ts.map +1 -0
package/dist/layer2/framework-checks.js +388 -0
package/dist/layer2/framework-checks.js.map +1 -0
package/dist/layer2/index.d.ts +58 -0
package/dist/layer2/index.d.ts.map +1 -0
package/dist/layer2/index.js +380 -0
package/dist/layer2/index.js.map +1 -0
package/dist/layer2/logic-gates.d.ts +7 -0
package/dist/layer2/logic-gates.d.ts.map +1 -0
package/dist/layer2/logic-gates.js +182 -0
package/dist/layer2/logic-gates.js.map +1 -0
package/dist/layer2/risky-imports.d.ts +7 -0
package/dist/layer2/risky-imports.d.ts.map +1 -0
package/dist/layer2/risky-imports.js +161 -0
package/dist/layer2/risky-imports.js.map +1 -0
package/dist/layer2/variables.d.ts +8 -0
package/dist/layer2/variables.d.ts.map +1 -0
package/dist/layer2/variables.js +152 -0
package/dist/layer2/variables.js.map +1 -0
package/dist/layer3/anthropic.d.ts +83 -0
package/dist/layer3/anthropic.d.ts.map +1 -0
package/dist/layer3/anthropic.js +1745 -0
package/dist/layer3/anthropic.js.map +1 -0
package/dist/layer3/index.d.ts +24 -0
package/dist/layer3/index.d.ts.map +1 -0
package/dist/layer3/index.js +119 -0
package/dist/layer3/index.js.map +1 -0
package/dist/layer3/openai.d.ts +25 -0
package/dist/layer3/openai.d.ts.map +1 -0
package/dist/layer3/openai.js +238 -0
package/dist/layer3/openai.js.map +1 -0
package/dist/layer3/package-check.d.ts +63 -0
package/dist/layer3/package-check.d.ts.map +1 -0
package/dist/layer3/package-check.js +508 -0
package/dist/layer3/package-check.js.map +1 -0
package/dist/modes/incremental.d.ts +66 -0
package/dist/modes/incremental.d.ts.map +1 -0
package/dist/modes/incremental.js +200 -0
package/dist/modes/incremental.js.map +1 -0
package/dist/tiers.d.ts +125 -0
package/dist/tiers.d.ts.map +1 -0
package/dist/tiers.js +234 -0
package/dist/tiers.js.map +1 -0
package/dist/types.d.ts +175 -0
package/dist/types.d.ts.map +1 -0
package/dist/types.js +50 -0
package/dist/types.js.map +1 -0
package/dist/utils/auth-helper-detector.d.ts +56 -0
package/dist/utils/auth-helper-detector.d.ts.map +1 -0
package/dist/utils/auth-helper-detector.js +360 -0
package/dist/utils/auth-helper-detector.js.map +1 -0
package/dist/utils/context-helpers.d.ts +96 -0
package/dist/utils/context-helpers.d.ts.map +1 -0
package/dist/utils/context-helpers.js +493 -0
package/dist/utils/context-helpers.js.map +1 -0
package/dist/utils/diff-detector.d.ts +53 -0
package/dist/utils/diff-detector.d.ts.map +1 -0
package/dist/utils/diff-detector.js +104 -0
package/dist/utils/diff-detector.js.map +1 -0
package/dist/utils/diff-parser.d.ts +80 -0
package/dist/utils/diff-parser.d.ts.map +1 -0
package/dist/utils/diff-parser.js +202 -0
package/dist/utils/diff-parser.js.map +1 -0
package/dist/utils/imported-auth-detector.d.ts +37 -0
package/dist/utils/imported-auth-detector.d.ts.map +1 -0
package/dist/utils/imported-auth-detector.js +251 -0
package/dist/utils/imported-auth-detector.js.map +1 -0
package/dist/utils/middleware-detector.d.ts +55 -0
package/dist/utils/middleware-detector.d.ts.map +1 -0
package/dist/utils/middleware-detector.js +260 -0
package/dist/utils/middleware-detector.js.map +1 -0
package/dist/utils/oauth-flow-detector.d.ts +41 -0
package/dist/utils/oauth-flow-detector.d.ts.map +1 -0
package/dist/utils/oauth-flow-detector.js +202 -0
package/dist/utils/oauth-flow-detector.js.map +1 -0
package/dist/utils/path-exclusions.d.ts +55 -0
package/dist/utils/path-exclusions.d.ts.map +1 -0
package/dist/utils/path-exclusions.js +222 -0
package/dist/utils/path-exclusions.js.map +1 -0
package/dist/utils/project-context-builder.d.ts +119 -0
package/dist/utils/project-context-builder.d.ts.map +1 -0
package/dist/utils/project-context-builder.js +534 -0
package/dist/utils/project-context-builder.js.map +1 -0
package/dist/utils/registry-clients.d.ts +93 -0
package/dist/utils/registry-clients.d.ts.map +1 -0
package/dist/utils/registry-clients.js +273 -0
package/dist/utils/registry-clients.js.map +1 -0
package/dist/utils/trpc-analyzer.d.ts +78 -0
package/dist/utils/trpc-analyzer.d.ts.map +1 -0
package/dist/utils/trpc-analyzer.js +297 -0
package/dist/utils/trpc-analyzer.js.map +1 -0
package/package.json +45 -0
package/src/__tests__/benchmark/fixtures/false-positives.ts +227 -0
package/src/__tests__/benchmark/fixtures/index.ts +68 -0
package/src/__tests__/benchmark/fixtures/layer1/config-audit.ts +364 -0
package/src/__tests__/benchmark/fixtures/layer1/hardcoded-secrets.ts +173 -0
package/src/__tests__/benchmark/fixtures/layer1/high-entropy.ts +234 -0
package/src/__tests__/benchmark/fixtures/layer1/index.ts +31 -0
package/src/__tests__/benchmark/fixtures/layer1/sensitive-urls.ts +90 -0
package/src/__tests__/benchmark/fixtures/layer1/weak-crypto.ts +197 -0
package/src/__tests__/benchmark/fixtures/layer2/ai-agent-tools.ts +170 -0
package/src/__tests__/benchmark/fixtures/layer2/ai-endpoint-protection.ts +418 -0
package/src/__tests__/benchmark/fixtures/layer2/ai-execution-sinks.ts +189 -0
package/src/__tests__/benchmark/fixtures/layer2/ai-fingerprinting.ts +316 -0
package/src/__tests__/benchmark/fixtures/layer2/ai-prompt-hygiene.ts +178 -0
package/src/__tests__/benchmark/fixtures/layer2/ai-rag-safety.ts +184 -0
package/src/__tests__/benchmark/fixtures/layer2/ai-schema-validation.ts +434 -0
package/src/__tests__/benchmark/fixtures/layer2/auth-antipatterns.ts +159 -0
package/src/__tests__/benchmark/fixtures/layer2/byok-patterns.ts +112 -0
package/src/__tests__/benchmark/fixtures/layer2/dangerous-functions.ts +246 -0
package/src/__tests__/benchmark/fixtures/layer2/data-exposure.ts +168 -0
package/src/__tests__/benchmark/fixtures/layer2/framework-checks.ts +346 -0
package/src/__tests__/benchmark/fixtures/layer2/index.ts +67 -0
package/src/__tests__/benchmark/fixtures/layer2/injection-vulnerabilities.ts +239 -0
package/src/__tests__/benchmark/fixtures/layer2/logic-gates.ts +246 -0
package/src/__tests__/benchmark/fixtures/layer2/risky-imports.ts +231 -0
package/src/__tests__/benchmark/fixtures/layer2/variables.ts +167 -0
package/src/__tests__/benchmark/index.ts +29 -0
package/src/__tests__/benchmark/run-benchmark.ts +144 -0
package/src/__tests__/benchmark/run-depth-validation.ts +206 -0
package/src/__tests__/benchmark/run-real-world-test.ts +243 -0
package/src/__tests__/benchmark/security-benchmark-script.ts +1737 -0
package/src/__tests__/benchmark/tier-integration-script.ts +177 -0
package/src/__tests__/benchmark/types.ts +144 -0
package/src/__tests__/benchmark/utils/test-runner.ts +475 -0
package/src/__tests__/regression/known-false-positives.test.ts +467 -0
package/src/__tests__/snapshots/__snapshots__/scan-depth.test.ts.snap +178 -0
package/src/__tests__/snapshots/scan-depth.test.ts +258 -0
package/src/__tests__/validation/analyze-results.ts +542 -0
package/src/__tests__/validation/extract-for-triage.ts +146 -0
package/src/__tests__/validation/fp-deep-analysis.ts +327 -0
package/src/__tests__/validation/run-validation.ts +364 -0
package/src/__tests__/validation/triage-template.md +132 -0
package/src/formatters/cli-terminal.ts +446 -0
package/src/formatters/github-comment.ts +382 -0
package/src/formatters/grouping.ts +190 -0
package/src/formatters/index.ts +47 -0
package/src/formatters/vscode-diagnostic.ts +243 -0
package/src/index.ts +823 -0
package/src/layer1/comments.ts +218 -0
package/src/layer1/config-audit.ts +289 -0
package/src/layer1/entropy.ts +583 -0
package/src/layer1/file-flags.ts +127 -0
package/src/layer1/index.ts +181 -0
package/src/layer1/patterns.ts +516 -0
package/src/layer1/urls.ts +334 -0
package/src/layer1/weak-crypto.ts +328 -0
package/src/layer2/ai-agent-tools.ts +601 -0
package/src/layer2/ai-endpoint-protection.ts +387 -0
package/src/layer2/ai-execution-sinks.ts +580 -0
package/src/layer2/ai-fingerprinting.ts +758 -0
package/src/layer2/ai-prompt-hygiene.ts +411 -0
package/src/layer2/ai-rag-safety.ts +511 -0
package/src/layer2/ai-schema-validation.ts +421 -0
package/src/layer2/auth-antipatterns.ts +394 -0
package/src/layer2/byok-patterns.ts +336 -0
package/src/layer2/dangerous-functions.ts +1563 -0
package/src/layer2/data-exposure.ts +315 -0
package/src/layer2/framework-checks.ts +433 -0
package/src/layer2/index.ts +473 -0
package/src/layer2/logic-gates.ts +206 -0
package/src/layer2/risky-imports.ts +186 -0
package/src/layer2/variables.ts +166 -0
package/src/layer3/anthropic.ts +2030 -0
package/src/layer3/index.ts +130 -0
package/src/layer3/package-check.ts +604 -0
package/src/modes/incremental.ts +293 -0
package/src/tiers.ts +318 -0
package/src/types.ts +284 -0
package/src/utils/auth-helper-detector.ts +443 -0
package/src/utils/context-helpers.ts +535 -0
package/src/utils/diff-detector.ts +135 -0
package/src/utils/diff-parser.ts +272 -0
package/src/utils/imported-auth-detector.ts +320 -0
package/src/utils/middleware-detector.ts +333 -0
package/src/utils/oauth-flow-detector.ts +246 -0
package/src/utils/path-exclusions.ts +266 -0
package/src/utils/project-context-builder.ts +707 -0
package/src/utils/registry-clients.ts +351 -0
package/src/utils/trpc-analyzer.ts +382 -0

package/src/__tests__/benchmark/fixtures/layer1/weak-crypto.ts ADDED Viewed

@@ -0,0 +1,197 @@
+/**
+ * Weak Cryptography Test Fixtures
+ * Tests for detecting insecure cryptographic algorithms and practices
+ */
+import type { TestGroup } from '../../types'
+export const weakCryptoTests: TestGroup = {
+  name: 'Weak Cryptography',
+  tier: 'A',
+  layer: 1,
+  description: 'Detection of weak hash algorithms, insecure ciphers, and poor cryptographic practices',
+  truePositives: [
+    {
+      name: 'Weak Crypto - True Positives',
+      expectFindings: true,
+      expectedCategories: ['weak_crypto'],
+      description: 'Weak cryptographic patterns that MUST be detected',
+      file: {
+        path: 'src/utils/crypto.ts',
+        content: `
+import crypto from 'crypto'
+// MD5 for passwords (Critical)
+function hashPassword(password: string) {
+  return crypto.createHash('md5').update(password).digest('hex')
+}
+// SHA1 for security tokens (High)
+function generateToken(data: string) {
+  return crypto.createHash('sha1').update(data).digest('hex')
+}
+// Weak ciphers (High)
+function encryptData(data: string, key: string) {
+  const cipher = crypto.createCipher('des', key)
+  return cipher.update(data, 'utf8', 'hex') + cipher.final('hex')
+}
+// ECB mode (High - vulnerable to pattern analysis)
+function encryptECB(data: string, key: Buffer) {
+  const cipher = crypto.createCipheriv('aes-128-ecb', key, null)
+  return cipher.update(data, 'utf8', 'hex') + cipher.final('hex')
+}
+// RC4 (Critical - broken)
+function encryptRC4(data: string, key: string) {
+  const cipher = crypto.createCipher('rc4', key)
+  return cipher.update(data, 'utf8', 'hex')
+}
+// Math.random for security tokens (High)
+function generateSecureToken() {
+  return Math.random().toString(36).substring(2)
+}
+// Low PBKDF2 iterations (Medium)
+function deriveKey(password: string, salt: Buffer) {
+  return crypto.pbkdf2Sync(password, salt, 100, 32, 'sha256')
+}
+// Hardcoded IV (High)
+const STATIC_IV = Buffer.from('1234567890123456')
+function encryptWithStaticIV(data: string, key: Buffer) {
+  const cipher = crypto.createCipheriv('aes-256-cbc', key, STATIC_IV)
+  return cipher.update(data, 'utf8', 'hex') + cipher.final('hex')
+}
+`,
+        language: 'typescript',
+        size: 1500,
+      },
+    },
+    {
+      name: 'Weak Crypto - Insecure Password Hashing',
+      expectFindings: true,
+      expectedCategories: ['weak_crypto'],
+      description: 'Weak password hashing implementations',
+      file: {
+        path: 'src/auth/password.ts',
+        content: `
+import crypto from 'crypto'
+import bcrypt from 'bcrypt'
+// MD5 password hash (Critical)
+export function hashPasswordMD5(password: string): string {
+  return crypto.createHash('md5').update(password).digest('hex')
+}
+// SHA1 password hash (High)
+export function hashPasswordSHA1(password: string): string {
+  return crypto.createHash('sha1').update(password).digest('hex')
+}
+// Bcrypt with low rounds (Medium)
+export async function hashPasswordWeakBcrypt(password: string): Promise<string> {
+  return bcrypt.hash(password, 4) // Should be at least 10
+}
+// Unsalted hash (High)
+export function hashPasswordUnsalted(password: string): string {
+  return crypto.createHash('sha256').update(password).digest('hex')
+}
+`,
+        language: 'typescript',
+        size: 700,
+      },
+    },
+  ],
+  falseNegatives: [
+    {
+      name: 'Weak Crypto - False Negatives',
+      expectFindings: false,
+      description: 'Secure cryptographic patterns that should NOT be flagged',
+      file: {
+        path: 'src/utils/secure-crypto.ts',
+        content: `
+import crypto from 'crypto'
+// MD5 for checksums (not security) - SAFE
+function generateChecksum(data: Buffer) {
+  return crypto.createHash('md5').update(data).digest('hex')
+}
+// SHA256 for passwords - SAFE
+function hashPasswordSecurely(password: string, salt: string) {
+  return crypto.createHash('sha256').update(password + salt).digest('hex')
+}
+// AES-256-GCM - SAFE
+function encryptSecurely(data: string, key: Buffer) {
+  const iv = crypto.randomBytes(16)
+  const cipher = crypto.createCipheriv('aes-256-gcm', key, iv)
+  const encrypted = cipher.update(data, 'utf8', 'hex') + cipher.final('hex')
+  const tag = cipher.getAuthTag()
+  return { encrypted, iv, tag }
+}
+// crypto.randomBytes for tokens - SAFE
+function generateSecureToken() {
+  return crypto.randomBytes(32).toString('hex')
+}
+// High PBKDF2 iterations - SAFE
+function deriveKeySecurely(password: string, salt: Buffer) {
+  return crypto.pbkdf2Sync(password, salt, 100000, 32, 'sha256')
+}
+// Random IV per encryption - SAFE
+function encryptWithRandomIV(data: string, key: Buffer) {
+  const iv = crypto.randomBytes(16)
+  const cipher = crypto.createCipheriv('aes-256-cbc', key, iv)
+  return { encrypted: cipher.update(data, 'utf8', 'hex') + cipher.final('hex'), iv }
+}
+`,
+        language: 'typescript',
+        size: 1200,
+      },
+    },
+    {
+      name: 'Weak Crypto - MD5 for Checksums',
+      expectFindings: false,
+      description: 'MD5 used for non-security checksums should not be flagged',
+      file: {
+        path: 'src/utils/checksum.ts',
+        content: `
+import crypto from 'crypto'
+import fs from 'fs'
+// MD5 checksum for file integrity (not security) - SAFE
+export function getFileChecksum(filePath: string): string {
+  const content = fs.readFileSync(filePath)
+  return crypto.createHash('md5').update(content).digest('hex')
+}
+// MD5 for etag generation - SAFE
+export function generateEtag(content: string): string {
+  return crypto.createHash('md5').update(content).digest('hex')
+}
+// MD5 for content fingerprint - SAFE
+export function contentFingerprint(data: Buffer): string {
+  return crypto.createHash('md5').update(data).digest('hex')
+}
+// MD5 for cache key - SAFE
+export function cacheKey(input: string): string {
+  return 'cache_' + crypto.createHash('md5').update(input).digest('hex')
+}
+`,
+        language: 'typescript',
+        size: 600,
+      },
+    },
+  ],
+}

package/src/__tests__/benchmark/fixtures/layer2/ai-agent-tools.ts ADDED Viewed

@@ -0,0 +1,170 @@
+/**
+ * AI Agent Tools Test Fixtures
+ * Tests for detecting overly permissive AI agent tool definitions
+ */
+import type { TestGroup } from '../../types'
+export const aiAgentToolsTests: TestGroup = {
+  name: 'AI Agent Tools',
+  tier: 'A',
+  layer: 2,
+  description: 'Detection of overly permissive AI agent tool definitions that could be abused',
+  truePositives: [
+    {
+      name: 'AI Agent Tools - True Positives',
+      expectFindings: true,
+      expectedCategories: ['ai_overpermissive_tool'],
+      description: 'Overly permissive agent tool patterns that MUST be detected',
+      file: {
+        path: 'src/agents/overpermissive-tools.ts',
+        content: `
+import { z } from 'zod'
+import { exec } from 'child_process'
+import fs from 'fs'
+// Over-permissive file system tool - HIGH
+const fileSystemTool = {
+  name: 'file_system',
+  description: 'Read, write, or delete any file on the system',
+  schema: z.object({
+    operation: z.enum(['read', 'write', 'delete']),
+    path: z.string(),  // No path restrictions!
+    content: z.string().optional(),
+  }),
+  execute: async ({ operation, path, content }) => {
+    switch (operation) {
+      case 'read': return fs.readFileSync(path, 'utf-8')
+      case 'write': return fs.writeFileSync(path, content!)
+      case 'delete': return fs.unlinkSync(path)
+    }
+  }
+}
+// Unrestricted shell execution tool - CRITICAL
+const shellTool = {
+  name: 'shell',
+  description: 'Execute any shell command',
+  schema: z.object({
+    command: z.string(),  // No command restrictions!
+  }),
+  execute: async ({ command }) => {
+    return new Promise((resolve) => {
+      exec(command, (err, stdout, stderr) => {
+        resolve({ stdout, stderr })
+      })
+    })
+  }
+}
+// Network access without restrictions - HIGH
+const networkTool = {
+  name: 'http_request',
+  description: 'Make HTTP requests to any URL',
+  schema: z.object({
+    url: z.string(),  // No URL restrictions - SSRF risk!
+    method: z.string(),
+    body: z.any().optional(),
+  }),
+  execute: async ({ url, method, body }) => {
+    return fetch(url, { method, body: JSON.stringify(body) })
+  }
+}
+// Database access without user context - HIGH
+const databaseTool = {
+  name: 'database',
+  description: 'Execute SQL queries',
+  schema: z.object({
+    query: z.string(),  // Raw SQL - injection risk!
+  }),
+  execute: async ({ query }) => {
+    return db.query(query)  // No user_id scoping!
+  }
+}
+// Tool without proper authorization - MEDIUM
+const userDataTool = {
+  name: 'get_user_data',
+  description: 'Get any user data',
+  schema: z.object({
+    userId: z.string(),  // Can access ANY user!
+  }),
+  execute: async ({ userId }) => {
+    // No check that agent's user can access this userId
+    return db.user.findUnique({ where: { id: userId } })
+  }
+}
+`,
+        language: 'typescript',
+        size: 1800,
+      },
+    },
+  ],
+  falseNegatives: [
+    {
+      name: 'AI Agent Tools - False Negatives',
+      expectFindings: false,
+      description: 'Properly scoped agent tool patterns that should NOT be flagged',
+      file: {
+        path: 'src/agents/safe-tools.ts',
+        content: `
+import { z } from 'zod'
+import fs from 'fs'
+// File system with path restrictions - SAFE
+const safeFileSystemTool = {
+  name: 'file_system',
+  description: 'Read files from the allowed directory',
+  schema: z.object({
+    filename: z.string().regex(/^[a-zA-Z0-9_-]+\\.(txt|json|md)$/),
+  }),
+  execute: async ({ filename }, { userId }) => {
+    // Scoped to user's directory
+    const safePath = \`/data/users/\${userId}/\${filename}\`
+    // No path traversal possible due to regex
+    return fs.readFileSync(safePath, 'utf-8')
+  }
+}
+// HTTP with URL allowlist - SAFE
+const safeNetworkTool = {
+  name: 'http_request',
+  description: 'Make HTTP requests to allowed APIs',
+  schema: z.object({
+    api: z.enum(['weather', 'news', 'stocks']),
+    params: z.record(z.string()),
+  }),
+  execute: async ({ api, params }) => {
+    const allowedUrls = {
+      weather: 'https://api.weather.gov',
+      news: 'https://newsapi.org',
+      stocks: 'https://api.stocks.com',
+    }
+    const url = new URL(allowedUrls[api])
+    Object.entries(params).forEach(([k, v]) => url.searchParams.set(k, v))
+    return fetch(url.toString())
+  }
+}
+// Database with user scoping - SAFE
+const safeDatabaseTool = {
+  name: 'get_my_data',
+  description: 'Get data belonging to the current user',
+  schema: z.object({
+    dataType: z.enum(['orders', 'settings', 'preferences']),
+  }),
+  execute: async ({ dataType }, { userId }) => {
+    // Always scoped to current user
+    return db[dataType].findMany({ where: { userId } })
+  }
+}
+`,
+        language: 'typescript',
+        size: 1400,
+      },
+    },
+  ],
+}