@oculum/scanner 1.0.0

package/dist/layer1/file-flags.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"file-flags.js","sourceRoot":"","sources":["../../src/layer1/file-flags.ts"],"names":[],"mappings":";AAAA;;;GAGG;;AAuDH,oDAoEC;AAvHD,mEAAmE;AACnE,MAAM,uBAAuB,GAAG;IAC9B,eAAe;IACf,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,iBAAiB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAC9E,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAC/E,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAClF,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,iBAAiB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAC9E,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,oBAAoB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAEhF,WAAW;IACX,EAAE,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IACnF,EAAE,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IACnF,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,uBAAuB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IACvF,EAAE,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,yBAAyB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAE3F,2CAA2C;IAC3C,EAAE,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAChF,EAAE,OAAO,EAAE,iBAAiB,EAAE,IAAI,EAAE,wBAAwB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAC7F,EAAE,OAAO,EAAE,sBAAsB,EAAE,IAAI,EAAE,6BAA6B,EAAE,QAAQ,EAAE,UAAmB,EAAE;IACvG,EAAE,OAAO,EAAE,uBAAuB,EAAE,IAAI,EAAE,8BAA8B,EAAE,QAAQ,EAAE,MAAe,EAAE;IACrG,EAAE,OAAO,EAAE,mBAAmB,EAAE,IAAI,EAAE,0BAA0B,EAAE,QAAQ,EAAE,MAAe,EAAE;IAE7F,mBAAmB;IACnB,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,0BAA0B,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAC1F,EAAE,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,wCAAwC,EAAE,QAAQ,EAAE,MAAe,EAAE;IACnG,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,yCAAyC,EAAE,QAAQ,EAAE,MAAe,EAAE;IACrG,EAAE,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,mCAAmC,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAClG,EAAE,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,sBAAsB,EAAE,QAAQ,EAAE,UAAmB,EAAE;IAExF,iBAAiB;IACjB,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,iBAAiB,EAAE,QAAQ,EAAE,QAAiB,EAAE;IAC/E,EAAE,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,iBAAiB,EAAE,QAAQ,EAAE,QAAiB,EAAE;IAChF,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,eAAe,EAAE,QAAQ,EAAE,QAAiB,EAAE;IAEzE,wCAAwC;IACxC,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,aAAa,EAAE,QAAQ,EAAE,KAAc,EAAE;IACrE,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,aAAa,EAAE,QAAQ,EAAE,KAAc,EAAE;IACxE,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,iBAAiB,EAAE,QAAQ,EAAE,KAAc,EAAE;IAEzE,iBAAiB;IACjB,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,eAAe,EAAE,QAAQ,EAAE,MAAe,EAAE;IACxE,EAAE,OAAO,EAAE,cAAc,EAAE,IAAI,EAAE,eAAe,EAAE,QAAQ,EAAE,MAAe,EAAE;CAC9E,CAAA;AAED,iEAAiE;AACjE,MAAM,0BAA0B,GAAG;IACjC,EAAE,OAAO,EAAE,kBAAkB,EAAE,IAAI,EAAE,0BAA0B,EAAE,YAAY,EAAE,IAAI,EAAE;IACrF,EAAE,OAAO,EAAE,iBAAiB,EAAE,IAAI,EAAE,yBAAyB,EAAE,YAAY,EAAE,IAAI,EAAE;IACnF,EAAE,OAAO,EAAE,mBAAmB,EAAE,IAAI,EAAE,2BAA2B,EAAE,YAAY,EAAE,IAAI,EAAE;CACxF,CAAA;AAED,SAAgB,oBAAoB,CAClC,OAAe,EACf,QAAgB;IAEhB,MAAM,eAAe,GAAoB,EAAE,CAAA;IAC3C,MAAM,QAAQ,GAAG,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,CAAA;IAEhD,oCAAoC;IACpC,KAAK,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,uBAAuB,EAAE,CAAC;QAClE,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACrD,eAAe,CAAC,IAAI,CAAC;gBACnB,EAAE,EAAE,aAAa,QAAQ,EAAE;gBAC3B,QAAQ;gBACR,UAAU,EAAE,CAAC;gBACb,WAAW,EAAE,SAAS,QAAQ,EAAE;gBAChC,QAAQ;gBACR,QAAQ,EAAE,gBAAgB;gBAC1B,KAAK,EAAE,4BAA4B,IAAI,EAAE;gBACzC,WAAW,EAAE,mBAAmB,IAAI,uFAAuF;gBAC3H,YAAY,EAAE,iHAAiH;gBAC/H,UAAU,EAAE,MAAM;gBAClB,KAAK,EAAE,CAAC;aACT,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,mDAAmD;IACnD,KAAK,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,0BAA0B,EAAE,CAAC;QACzE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,IAAI,YAAY,EAAE,CAAC;YACvE,wEAAwE;YACxE,MAAM,kBAAkB,GAAG;gBACzB,mCAAmC,EAAG,WAAW;gBACjD,oCAAoC,EAAE,gBAAgB;gBACtD,mCAAmC,EAAG,aAAa;gBACnD,4BAA4B,EAAW,2BAA2B;aACnE,CAAA;YAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;YACjC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAA;gBACrB,kDAAkD;gBAClD,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;oBAClF,SAAQ;gBACV,CAAC;gBAED,KAAK,MAAM,UAAU,IAAI,kBAAkB,EAAE,CAAC;oBAC5C,IAAI,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;wBAC1B,eAAe,CAAC,IAAI,CAAC;4BACnB,EAAE,EAAE,qBAAqB,QAAQ,IAAI,CAAC,GAAG,CAAC,EAAE;4BAC5C,QAAQ;4BACR,UAAU,EAAE,CAAC,GAAG,CAAC;4BACjB,WAAW,EAAE,IAAI,CAAC,IAAI,EAAE;4BACxB,QAAQ,EAAE,MAAM;4BAChB,QAAQ,EAAE,gBAAgB;4BAC1B,KAAK,EAAE,GAAG,IAAI,2BAA2B;4BACzC,WAAW,EAAE,yFAAyF;4BACtG,YAAY,EAAE,sGAAsG;4BACpH,UAAU,EAAE,QAAQ;4BACpB,KAAK,EAAE,CAAC;yBACT,CAAC,CAAA;wBACF,MAAK;oBACP,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAA;AACxB,CAAC"}

package/dist/layer1/index.d.ts

@@ -0,0 +1,36 @@
+/**
+ * Layer 1: Surface Scan
+ * Fast, deterministic scanning using entropy, patterns, config auditing,
+ * file flags, comment analysis, URL detection, and weak crypto detection
+ */
+import type { Vulnerability, ScanFile } from '../types';
+import { type TierStats } from '../tiers';
+/**
+ * Layer 1 detector stats for raw finding counts before deduplication
+ */
+export interface Layer1Stats {
+    /** Raw finding counts per detector (before dedupe) */
+    raw: Record<string, number>;
+    /** Deduped finding counts per category */
+    deduped: Record<string, number>;
+    /** Tier breakdown of deduped findings */
+    tiers: TierStats;
+    /** Number of findings suppressed by path exclusions */
+    suppressedByPath: number;
+}
+export interface Layer1Result {
+    vulnerabilities: Vulnerability[];
+    filesScanned: number;
+    duration: number;
+    /** Heuristic breakdown stats for noise analysis */
+    stats: Layer1Stats;
+}
+export declare function runLayer1Scan(files: ScanFile[]): Promise<Layer1Result>;
+export { detectHighEntropyStrings } from './entropy';
+export { detectKnownPatterns } from './patterns';
+export { auditConfiguration } from './config-audit';
+export { detectDangerousFiles } from './file-flags';
+export { detectAICommentPatterns } from './comments';
+export { detectSensitiveURLs } from './urls';
+export { detectWeakCrypto } from './weak-crypto';
+//# sourceMappingURL=index.d.ts.map

package/dist/layer1/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/layer1/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,UAAU,CAAA;AAQvD,OAAO,EACL,KAAK,SAAS,EAKf,MAAM,UAAU,CAAA;AAMjB;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,sDAAsD;IACtD,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IAC3B,0CAA0C;IAC1C,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IAC/B,yCAAyC;IACzC,KAAK,EAAE,SAAS,CAAA;IAChB,uDAAuD;IACvD,gBAAgB,EAAE,MAAM,CAAA;CACzB;AAED,MAAM,WAAW,YAAY;IAC3B,eAAe,EAAE,aAAa,EAAE,CAAA;IAChC,YAAY,EAAE,MAAM,CAAA;IACpB,QAAQ,EAAE,MAAM,CAAA;IAChB,mDAAmD;IACnD,KAAK,EAAE,WAAW,CAAA;CACnB;AAED,wBAAsB,aAAa,CAAC,KAAK,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC,YAAY,CAAC,CAgG5E;AA8BD,OAAO,EAAE,wBAAwB,EAAE,MAAM,WAAW,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAA;AAChD,OAAO,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAA;AACnD,OAAO,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAA;AACnD,OAAO,EAAE,uBAAuB,EAAE,MAAM,YAAY,CAAA;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,QAAQ,CAAA;AAC5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAA"}

package/dist/layer1/index.js

@@ -0,0 +1,132 @@
+"use strict";
+/**
+ * Layer 1: Surface Scan
+ * Fast, deterministic scanning using entropy, patterns, config auditing,
+ * file flags, comment analysis, URL detection, and weak crypto detection
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.detectWeakCrypto = exports.detectSensitiveURLs = exports.detectAICommentPatterns = exports.detectDangerousFiles = exports.auditConfiguration = exports.detectKnownPatterns = exports.detectHighEntropyStrings = void 0;
+exports.runLayer1Scan = runLayer1Scan;
+const entropy_1 = require("./entropy");
+const patterns_1 = require("./patterns");
+const config_audit_1 = require("./config-audit");
+const file_flags_1 = require("./file-flags");
+const comments_1 = require("./comments");
+const urls_1 = require("./urls");
+const weak_crypto_1 = require("./weak-crypto");
+const tiers_1 = require("../tiers");
+const path_exclusions_1 = require("../utils/path-exclusions");
+async function runLayer1Scan(files) {
+    const startTime = Date.now();
+    const vulnerabilities = [];
+    // Track raw counts per detector (before dedupe)
+    const rawStats = {
+        known_secrets: 0,
+        weak_crypto: 0,
+        sensitive_urls: 0,
+        entropy: 0,
+        config_audit: 0,
+        file_flags: 0,
+        ai_comments: 0,
+    };
+    for (const file of files) {
+        // Run all Layer 1 detectors and track raw counts
+        const entropyFindings = (0, entropy_1.detectHighEntropyStrings)(file.content, file.path);
+        const patternFindings = (0, patterns_1.detectKnownPatterns)(file.content, file.path);
+        const configFindings = (0, config_audit_1.auditConfiguration)(file.content, file.path);
+        const fileFlags = (0, file_flags_1.detectDangerousFiles)(file.content, file.path);
+        const commentFindings = (0, comments_1.detectAICommentPatterns)(file.content, file.path);
+        const urlFindings = (0, urls_1.detectSensitiveURLs)(file.content, file.path);
+        const cryptoFindings = (0, weak_crypto_1.detectWeakCrypto)(file.content, file.path);
+        rawStats.entropy += entropyFindings.length;
+        rawStats.known_secrets += patternFindings.length;
+        rawStats.config_audit += configFindings.length;
+        rawStats.file_flags += fileFlags.length;
+        rawStats.ai_comments += commentFindings.length;
+        rawStats.sensitive_urls += urlFindings.length;
+        rawStats.weak_crypto += cryptoFindings.length;
+        vulnerabilities.push(...entropyFindings, ...patternFindings, ...configFindings, ...fileFlags, ...commentFindings, ...urlFindings, ...cryptoFindings);
+    }
+    // Deduplicate findings (same line might be caught by multiple detectors)
+    const dedupedVulnerabilities = deduplicateFindings(vulnerabilities);
+    // Apply path exclusions to filter out findings in test/seed/example files
+    const { kept: uniqueVulnerabilities, suppressed } = (0, path_exclusions_1.filterFindingsByPath)(dedupedVulnerabilities);
+    // Log suppressed findings
+    if (suppressed.length > 0) {
+        const byReason = {};
+        for (const s of suppressed) {
+            const reason = s.reason || 'unknown';
+            byReason[reason] = (byReason[reason] || 0) + 1;
+        }
+        console.log(`[Layer 1] Suppressed ${suppressed.length} findings in test/seed/example files:`);
+        for (const [reason, count] of Object.entries(byReason)) {
+            console.log(`  - ${reason}: ${count}`);
+        }
+    }
+    // Compute deduped counts per category
+    const dedupedStats = {};
+    for (const vuln of uniqueVulnerabilities) {
+        const cat = vuln.category;
+        dedupedStats[cat] = (dedupedStats[cat] || 0) + 1;
+    }
+    // Compute tier breakdown (all Layer 1 findings have layer: 1)
+    const tierStats = (0, tiers_1.computeTierStats)(uniqueVulnerabilities.map(v => ({ category: v.category, layer: 1 })));
+    // Log heuristic breakdown with tier info
+    console.log('[Layer 1] Heuristic breakdown (raw findings before dedupe):');
+    for (const [name, count] of Object.entries(rawStats)) {
+        if (count > 0) {
+            const tier = (0, tiers_1.getLayer1DetectorTier)(name);
+            console.log(`  - ${name}: ${count} (${tier})`);
+        }
+    }
+    console.log(`[Layer 1] Tier breakdown (after dedupe): ${(0, tiers_1.formatTierStats)(tierStats)}`);
+    return {
+        vulnerabilities: uniqueVulnerabilities,
+        filesScanned: files.length,
+        duration: Date.now() - startTime,
+        stats: {
+            raw: rawStats,
+            deduped: dedupedStats,
+            tiers: tierStats,
+            suppressedByPath: suppressed.length,
+        },
+    };
+}
+// Remove duplicate findings on the same line
+function deduplicateFindings(vulnerabilities) {
+    const seen = new Map();
+    for (const vuln of vulnerabilities) {
+        const key = `${vuln.filePath}:${vuln.lineNumber}:${vuln.category}`;
+        const existing = seen.get(key);
+        // Keep the higher severity finding
+        if (!existing || severityRank(vuln.severity) > severityRank(existing.severity)) {
+            seen.set(key, vuln);
+        }
+    }
+    return Array.from(seen.values());
+}
+function severityRank(severity) {
+    const ranks = {
+        critical: 5,
+        high: 4,
+        medium: 3,
+        low: 2,
+        info: 1,
+    };
+    return ranks[severity] || 0;
+}
+var entropy_2 = require("./entropy");
+Object.defineProperty(exports, "detectHighEntropyStrings", { enumerable: true, get: function () { return entropy_2.detectHighEntropyStrings; } });
+var patterns_2 = require("./patterns");
+Object.defineProperty(exports, "detectKnownPatterns", { enumerable: true, get: function () { return patterns_2.detectKnownPatterns; } });
+var config_audit_2 = require("./config-audit");
+Object.defineProperty(exports, "auditConfiguration", { enumerable: true, get: function () { return config_audit_2.auditConfiguration; } });
+var file_flags_2 = require("./file-flags");
+Object.defineProperty(exports, "detectDangerousFiles", { enumerable: true, get: function () { return file_flags_2.detectDangerousFiles; } });
+var comments_2 = require("./comments");
+Object.defineProperty(exports, "detectAICommentPatterns", { enumerable: true, get: function () { return comments_2.detectAICommentPatterns; } });
+var urls_2 = require("./urls");
+Object.defineProperty(exports, "detectSensitiveURLs", { enumerable: true, get: function () { return urls_2.detectSensitiveURLs; } });
+var weak_crypto_2 = require("./weak-crypto");
+Object.defineProperty(exports, "detectWeakCrypto", { enumerable: true, get: function () { return weak_crypto_2.detectWeakCrypto; } });
+//# sourceMappingURL=index.js.map

package/dist/layer1/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/layer1/index.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;;AA4CH,sCAgGC;AAzID,uCAAoD;AACpD,yCAAgD;AAChD,iDAAmD;AACnD,6CAAmD;AACnD,yCAAoD;AACpD,iCAA4C;AAC5C,+CAAgD;AAChD,oCAMiB;AACjB,8DAGiC;AAwB1B,KAAK,UAAU,aAAa,CAAC,KAAiB;IACnD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;IAC5B,MAAM,eAAe,GAAoB,EAAE,CAAA;IAE3C,gDAAgD;IAChD,MAAM,QAAQ,GAAuC;QACnD,aAAa,EAAE,CAAC;QAChB,WAAW,EAAE,CAAC;QACd,cAAc,EAAE,CAAC;QACjB,OAAO,EAAE,CAAC;QACV,YAAY,EAAE,CAAC;QACf,UAAU,EAAE,CAAC;QACb,WAAW,EAAE,CAAC;KACf,CAAA;IAED,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,iDAAiD;QACjD,MAAM,eAAe,GAAG,IAAA,kCAAwB,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;QACzE,MAAM,eAAe,GAAG,IAAA,8BAAmB,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;QACpE,MAAM,cAAc,GAAG,IAAA,iCAAkB,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;QAClE,MAAM,SAAS,GAAG,IAAA,iCAAoB,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;QAC/D,MAAM,eAAe,GAAG,IAAA,kCAAuB,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;QACxE,MAAM,WAAW,GAAG,IAAA,0BAAmB,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;QAChE,MAAM,cAAc,GAAG,IAAA,8BAAgB,EAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;QAEhE,QAAQ,CAAC,OAAO,IAAI,eAAe,CAAC,MAAM,CAAA;QAC1C,QAAQ,CAAC,aAAa,IAAI,eAAe,CAAC,MAAM,CAAA;QAChD,QAAQ,CAAC,YAAY,IAAI,cAAc,CAAC,MAAM,CAAA;QAC9C,QAAQ,CAAC,UAAU,IAAI,SAAS,CAAC,MAAM,CAAA;QACvC,QAAQ,CAAC,WAAW,IAAI,eAAe,CAAC,MAAM,CAAA;QAC9C,QAAQ,CAAC,cAAc,IAAI,WAAW,CAAC,MAAM,CAAA;QAC7C,QAAQ,CAAC,WAAW,IAAI,cAAc,CAAC,MAAM,CAAA;QAE7C,eAAe,CAAC,IAAI,CAClB,GAAG,eAAe,EAClB,GAAG,eAAe,EAClB,GAAG,cAAc,EACjB,GAAG,SAAS,EACZ,GAAG,eAAe,EAClB,GAAG,WAAW,EACd,GAAG,cAAc,CAClB,CAAA;IACH,CAAC;IAED,yEAAyE;IACzE,MAAM,sBAAsB,GAAG,mBAAmB,CAAC,eAAe,CAAC,CAAA;IAEnE,0EAA0E;IAC1E,MAAM,EAAE,IAAI,EAAE,qBAAqB,EAAE,UAAU,EAAE,GAAG,IAAA,sCAAoB,EAAC,sBAAsB,CAAC,CAAA;IAEhG,0BAA0B;IAC1B,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1B,MAAM,QAAQ,GAA2B,EAAE,CAAA;QAC3C,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;YAC3B,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,IAAI,SAAS,CAAA;YACpC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAA;QAChD,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,wBAAwB,UAAU,CAAC,MAAM,uCAAuC,CAAC,CAAA;QAC7F,KAAK,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;YACvD,OAAO,CAAC,GAAG,CAAC,OAAO,MAAM,KAAK,KAAK,EAAE,CAAC,CAAA;QACxC,CAAC;IACH,CAAC;IAED,sCAAsC;IACtC,MAAM,YAAY,GAA2B,EAAE,CAAA;IAC/C,KAAK,MAAM,IAAI,IAAI,qBAAqB,EAAE,CAAC;QACzC,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAA;QACzB,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAA;IAClD,CAAC;IAED,8DAA8D;IAC9D,MAAM,SAAS,GAAG,IAAA,wBAAgB,EAChC,qBAAqB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,QAAQ,EAAE,KAAK,EAAE,CAAU,EAAE,CAAC,CAAC,CAC9E,CAAA;IAED,yCAAyC;IACzC,OAAO,CAAC,GAAG,CAAC,6DAA6D,CAAC,CAAA;IAC1E,KAAK,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QACrD,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;YACd,MAAM,IAAI,GAAG,IAAA,6BAAqB,EAAC,IAA0B,CAAC,CAAA;YAC9D,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,KAAK,KAAK,KAAK,IAAI,GAAG,CAAC,CAAA;QAChD,CAAC;IACH,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,4CAA4C,IAAA,uBAAe,EAAC,SAAS,CAAC,EAAE,CAAC,CAAA;IAErF,OAAO;QACL,eAAe,EAAE,qBAAqB;QACtC,YAAY,EAAE,KAAK,CAAC,MAAM;QAC1B,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;QAChC,KAAK,EAAE;YACL,GAAG,EAAE,QAAQ;YACb,OAAO,EAAE,YAAY;YACrB,KAAK,EAAE,SAAS;YAChB,gBAAgB,EAAE,UAAU,CAAC,MAAM;SACpC;KACF,CAAA;AACH,CAAC;AAED,6CAA6C;AAC7C,SAAS,mBAAmB,CAAC,eAAgC;IAC3D,MAAM,IAAI,GAAG,IAAI,GAAG,EAAyB,CAAA;IAE7C,KAAK,MAAM,IAAI,IAAI,eAAe,EAAE,CAAC;QACnC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAA;QAClE,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;QAE9B,mCAAmC;QACnC,IAAI,CAAC,QAAQ,IAAI,YAAY,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC/E,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,CAAA;QACrB,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAA;AAClC,CAAC;AAED,SAAS,YAAY,CAAC,QAAgB;IACpC,MAAM,KAAK,GAA2B;QACpC,QAAQ,EAAE,CAAC;QACX,IAAI,EAAE,CAAC;QACP,MAAM,EAAE,CAAC;QACT,GAAG,EAAE,CAAC;QACN,IAAI,EAAE,CAAC;KACR,CAAA;IACD,OAAO,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;AAC7B,CAAC;AAED,qCAAoD;AAA3C,mHAAA,wBAAwB,OAAA;AACjC,uCAAgD;AAAvC,+GAAA,mBAAmB,OAAA;AAC5B,+CAAmD;AAA1C,kHAAA,kBAAkB,OAAA;AAC3B,2CAAmD;AAA1C,kHAAA,oBAAoB,OAAA;AAC7B,uCAAoD;AAA3C,mHAAA,uBAAuB,OAAA;AAChC,+BAA4C;AAAnC,2GAAA,mBAAmB,OAAA;AAC5B,6CAAgD;AAAvC,+GAAA,gBAAgB,OAAA"}

package/dist/layer1/patterns.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Layer 1: Known Pattern Matching
+ * Curated library of high-fidelity regex patterns for detecting secrets
+ */
+import type { SecretPattern, Vulnerability } from '../types';
+export declare const SECRET_PATTERNS: SecretPattern[];
+export declare function detectKnownPatterns(content: string, filePath: string): Vulnerability[];
+//# sourceMappingURL=patterns.d.ts.map

package/dist/layer1/patterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.d.ts","sourceRoot":"","sources":["../../src/layer1/patterns.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AA4G5D,eAAO,MAAM,eAAe,EAAE,aAAa,EA+O1C,CAAA;AAED,wBAAgB,mBAAmB,CACjC,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,GACf,aAAa,EAAE,CA8JjB"}