@oculum/scanner 1.0.12 → 1.0.13

package/src/{layer2/ai-agent-tools.ts → detect/ai-code/agent-tools.ts}

@@ -12,15 +12,17 @@
  * - Database tools without proper scoping
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
   isScannerOrFixtureFile,
   isExampleDirectory,
   isLibraryCode,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.50
 
 // ============================================================================
 // Agent/Tool Context Detection
@@ -1102,7 +1104,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: true, // Always validate - context dependent
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1148,7 +1152,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: 'low', // Lower confidence - needs context
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: true,
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1242,7 +1248,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1297,7 +1305,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'critical' ? 'high' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1375,7 +1385,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1433,7 +1445,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1517,7 +1531,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1575,7 +1591,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'critical' ? 'high' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1633,7 +1651,9 @@ export function detectAIAgentTools(
         suggestedFix: pattern.suggestedFix,
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }

package/src/{layer2 → detect/ai-code}/byok-patterns.ts

@@ -4,11 +4,14 @@
  * BYOK is often a feature, not a vulnerability - severity depends on context
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
-import type { MiddlewareAuthConfig } from '../utils/middleware-detector'
-import { isComment, isTestOrMockFile, isExampleFile, isPlaceholderValue, isScannerOrFixtureFile } from '../utils/context-helpers'
-import { isRouteProtectedByMiddleware, getRoutePathFromFile, detectUserScopingPatterns } from '../utils/middleware-detector'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
+import type { MiddlewareAuthConfig } from '../../model/middleware-detector'
+import { isComment, isTestOrMockFile, isExampleFile, isPlaceholderValue, isScannerOrFixtureFile } from '../../parse/file-classifier'
+import { isRouteProtectedByMiddleware, getRoutePathFromFile, detectUserScopingPatterns } from '../../model/middleware-detector'
+
+const BASE_CONFIDENCE_STORAGE = 0.50
+const BASE_CONFIDENCE_TRANSIENT = 0.25
 
 /**
  * Check if line contains example/placeholder API key patterns
@@ -272,6 +275,7 @@ export function detectBYOKPatterns(
         let severity: VulnerabilitySeverity
         let description: string
         let suggestedFix: string
+        let baseConfidence: number
 
         if (isAuthenticated && isTransient) {
           // Authenticated and transient - this is the IDEAL BYOK pattern
@@ -281,6 +285,7 @@ export function detectBYOKPatterns(
             severity = 'low'
             description = `BYOK feature detected: ${pattern.description}. Keys are used transiently (good!) but appear to be logged (avoid logging API keys, even in debug).`
             suggestedFix = 'Remove logging of API keys. Best practices: (1) Validate API key format, (2) Add per-user rate limiting.'
+            baseConfidence = BASE_CONFIDENCE_STORAGE
           } else {
             // IDEAL PATTERN: Authenticated + transient + no logging = no issue
             // Skip emitting a finding entirely for the ideal case
@@ -291,26 +296,31 @@ export function detectBYOKPatterns(
           severity = 'low'
           description = `BYOK feature detected: ${pattern.description}. Keys are used transiently (not stored). Consider adding authentication or rate limiting.`
           suggestedFix = 'Consider adding authentication. If intentionally public: add rate limiting, key format validation, and usage tracking.'
+          baseConfidence = BASE_CONFIDENCE_TRANSIENT
         } else if (!isAuthenticated && isStoredCentrally) {
           // Unauthenticated AND storing keys - this is the real risk
           severity = 'medium'
           description = `${pattern.description}. This endpoint appears to lack authentication AND stores keys. This could allow unauthorized key storage.`
           suggestedFix = 'Add authentication. Ensure stored keys are scoped by user_id with proper access controls.'
+          baseConfidence = BASE_CONFIDENCE_STORAGE
         } else if (isStoredCentrally && !isUserScoped) {
           // Authenticated but keys stored without user scoping - medium risk
           severity = 'medium'
           description = `${pattern.description}. Keys appear to be stored centrally without user-scoping, which could lead to cross-tenant key access.`
           suggestedFix = 'Ensure stored keys are scoped by user_id. Add proper access controls to prevent users from accessing other users\' keys.'
+          baseConfidence = BASE_CONFIDENCE_STORAGE
         } else if (isAuthenticated && isUserScoped) {
           // Authenticated and user-scoped with storage - generally okay
           severity = 'info'
           description = `${pattern.description}. Route is authenticated and operations appear user-scoped. If keys are stored, consider encryption at rest.`
           suggestedFix = 'If storing keys: consider encryption at rest. Add rate limiting to prevent cost abuse.'
+          baseConfidence = BASE_CONFIDENCE_STORAGE
         } else {
           // Authenticated but unclear scoping - needs review, but low priority
           severity = 'info'
           description = `${pattern.description}. Route is authenticated. This appears to be a BYOK feature.`
           suggestedFix = 'Verify user-scoping for stored keys. Add rate limiting for cost control.'
+          baseConfidence = BASE_CONFIDENCE_TRANSIENT
         }
 
         // Downgrade test files
@@ -331,6 +341,8 @@ export function detectBYOKPatterns(
           suggestedFix,
           confidence: isTestFile ? 'low' : 'medium',
           layer: 2,
+        source: 'ai_code' as const,
+          baseConfidence,
         })
 
         break // One finding per line

package/src/{layer2/ai-endpoint-protection.ts → detect/ai-code/endpoint-protection.ts}

@@ -8,16 +8,18 @@
  * - Missing rate limiting on AI routes
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
-import type { MiddlewareAuthConfig } from '../utils/middleware-detector'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
+import type { MiddlewareAuthConfig } from '../../model/middleware-detector'
 import {
   isComment,
   isTestOrMockFile,
   isDocumentationFile,
   isScannerOrFixtureFile,
   isExampleDirectory,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.50
 
 // ============================================================================
 // Context Detection
@@ -384,7 +386,9 @@ export function detectAIEndpointProtection(
         suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info',
+        baseConfidence: BASE_CONFIDENCE,
       })
 
       // Only report one finding per file (file-level issue)

package/src/{layer2/ai-execution-sinks.ts → detect/ai-code/execution-sinks.ts}

@@ -11,16 +11,18 @@
  * - Template rendering: innerHTML, dangerouslySetInnerHTML
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
   isScannerOrFixtureFile,
   isExampleDirectory,
   isLibraryCode,
-} from '../utils/context-helpers'
-import { isLLMContextFile } from './ai-prompt-hygiene'
+} from '../../parse/file-classifier'
+import { isLLMContextFile } from './prompt-hygiene'
+
+const BASE_CONFIDENCE = 0.55
 
 // ============================================================================
 // LLM Output Variable Detection
@@ -1297,7 +1299,9 @@ export function detectAIExecutionSinks(
         suggestedFix: pattern.suggestedFix,
         confidence: hasLLMContext ? 'high' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }

package/src/{layer2/ai-fingerprinting.ts → detect/ai-code/fingerprinting.ts}

@@ -3,10 +3,12 @@
  * Detects patterns commonly found in AI-generated code that may indicate security risks
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
-import { isExampleFile, isTestOrMockFile, isPlaceholderValue, isScannerOrFixtureFile } from '../utils/context-helpers'
-import { getEnvironmentContext, isInPlaceholderAttribute, isDefaultParameterValue } from '../utils/environment-context'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
+import { isExampleFile, isTestOrMockFile, isPlaceholderValue, isScannerOrFixtureFile } from '../../parse/file-classifier'
+import { getEnvironmentContext, isInPlaceholderAttribute, isDefaultParameterValue } from '../../shared/environment-context'
+
+const BASE_CONFIDENCE = 0.30
 
 interface AIFingerprint {
   name: string
@@ -413,6 +415,8 @@ function detectSmartAnyUsage(
       suggestedFix: 'Replace "any" with explicit types. For request handlers use typed schemas (Zod, Yup). For database queries use typed ORM models.',
       confidence: 'medium',
       layer: 2,
+        source: 'ai_code' as const,
+        baseConfidence: BASE_CONFIDENCE,
     })
   } else {
     // Report individual findings for 1-2 high-priority 'any' usages
@@ -436,6 +440,8 @@ function detectSmartAnyUsage(
         suggestedFix: 'Replace "any" with an explicit type. Use typed request schemas, ORM models, or interface definitions.',
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -561,6 +567,8 @@ function detectManagedAICostAbuse(
         suggestedFix: 'Consider adding per-user rate limiting (e.g., @upstash/ratelimit) to prevent cost abuse by authenticated users.',
         confidence: 'low',
         layer: 2,
+        source: 'ai_code' as const,
+        baseConfidence: BASE_CONFIDENCE,
       })
     } else {
       // Unauthenticated route - higher risk
@@ -576,6 +584,8 @@ function detectManagedAICostAbuse(
         suggestedFix: 'Add authentication or rate limiting (e.g., @upstash/ratelimit, rate-limiter-flexible) to prevent cost abuse.',
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -681,6 +691,8 @@ export function detectAIFingerprints(
           suggestedFix: fingerprint.suggestedFix,
           confidence,
           layer: 2,
+        source: 'ai_code' as const,
+          baseConfidence: BASE_CONFIDENCE,
         })
         break // Only report once per line
       }
@@ -727,6 +739,8 @@ export function detectAIFingerprints(
           suggestedFix: 'Replace with actual production URL from environment variable',
           confidence: 'high',
           layer: 2,
+        source: 'ai_code' as const,
+          baseConfidence: BASE_CONFIDENCE,
         })
         aiPatternCount++
       }
@@ -751,6 +765,8 @@ export function detectAIFingerprints(
       suggestedFix: 'Review this file carefully for security issues, incomplete implementations, and placeholder code',
       confidence: 'medium',
       layer: 2,
+        source: 'ai_code' as const,
+        baseConfidence: BASE_CONFIDENCE,
     })
   }
 

package/src/detect/ai-code/index.ts

@@ -0,0 +1,11 @@
+export { detectAIAgentTools } from './agent-tools'
+export { detectBYOKPatterns } from './byok-patterns'
+export { detectAIEndpointProtection } from './endpoint-protection'
+export { detectAIExecutionSinks } from './execution-sinks'
+export { detectAIFingerprints } from './fingerprinting'
+export { detectMCPSecurity } from './mcp-security'
+export { detectModelSupplyChain } from './model-supply-chain'
+export { detectAIPackageHallucination } from './package-hallucination'
+export { detectAIPromptHygiene } from './prompt-hygiene'
+export { detectRAGSafetyIssues } from './rag-safety'
+export { detectAISchemaValidation } from './schema-validation'

package/src/{layer2/ai-mcp-security.ts → detect/ai-code/mcp-security.ts}

@@ -10,8 +10,8 @@
  * Reference: https://modelcontextprotocol.io, 13,000+ MCP servers deployed
  */
 
-import type { Vulnerability, VulnerabilitySeverity, VulnerabilityCategory } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity, VulnerabilityCategory } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
@@ -19,7 +19,9 @@ import {
   isScannerOrFixtureFile,
   isExampleDirectory,
   isLibraryCode,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.50
 
 // ============================================================================
 // Context Detection
@@ -924,7 +926,9 @@ export function detectMCPSecurity(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }

package/src/{layer2 → detect/ai-code}/model-supply-chain.ts

@@ -13,15 +13,17 @@
  * - CWE-502: Deserialization of Untrusted Data
  */
 
-import type { Vulnerability, VulnerabilitySeverity, VulnerabilityCategory } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity, VulnerabilityCategory } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
   isScannerOrFixtureFile,
   isExampleDirectory,
   isLibraryCode,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.50
 
 // ============================================================================
 // Context Detection
@@ -522,7 +524,9 @@ export function detectModelSupplyChain(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'high',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }

package/src/{layer2/ai-package-hallucination.ts → detect/ai-code/package-hallucination.ts}

@@ -12,15 +12,17 @@
  * 3. Generic unscoped names that are too vague to be real
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
   isDocumentationFile,
   isScannerOrFixtureFile,
   isExampleDirectory,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.55
 
 // ============================================================================
 // Known Hallucinated Package Database
@@ -659,6 +661,15 @@ function extractPackageName(importPath: string): string | null {
     return null
   }
 
+  // Skip bare path aliases — unscoped generic names with sub-paths
+  // e.g., 'models/challenge', 'data/types', 'lib/auth' are tsconfig path aliases
+  if (!importPath.startsWith('@') && importPath.includes('/')) {
+    const baseName = importPath.split('/')[0]
+    if (GENERIC_UNSCOPED_NAMES.has(baseName)) {
+      return null  // Local path alias, not an npm package
+    }
+  }
+
   // Handle scoped packages (@org/package)
   if (importPath.startsWith('@')) {
     const parts = importPath.split('/')
@@ -882,7 +893,9 @@ export function detectAIPackageHallucination(
         suggestedFix,
         confidence: 'high',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: false, // Typosquats don't need AI validation - pattern is clear
+        baseConfidence: BASE_CONFIDENCE,
       })
       continue // Don't also flag as hallucination
     }
@@ -931,7 +944,9 @@ export function detectAIPackageHallucination(
         suggestedFix,
         confidence: KNOWN_HALLUCINATED_PACKAGES.has(imp.packageName) ? 'high' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && !KNOWN_HALLUCINATED_PACKAGES.has(imp.packageName),
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }

package/src/{layer2/ai-prompt-hygiene.ts → detect/ai-code/prompt-hygiene.ts}

@@ -7,14 +7,16 @@
  * - B3: Secrets & sensitive data in prompts (LLM06)
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
   isDocumentationFile,
   isScannerOrFixtureFile,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.40
 
 /**
  * Check if a file is in an LLM/AI context based on path and content
@@ -397,7 +399,9 @@ function detectSecretVariableFlow(
           suggestedFix: `Remove the secret from the prompt. If the AI needs to use an API, make the call server-side instead of passing credentials to the model.`,
           confidence: 'medium',
           layer: 2,
+        source: 'ai_code' as const,
           requiresAIValidation: true,
+          baseConfidence: BASE_CONFIDENCE,
         })
       }
     }
@@ -426,7 +430,9 @@ function detectSecretVariableFlow(
           suggestedFix: `Remove the secret from the prompt. If the AI needs to use an API, make the call server-side.`,
           confidence: 'medium',
           layer: 2,
+        source: 'ai_code' as const,
           requiresAIValidation: true,
+          baseConfidence: BASE_CONFIDENCE,
         })
       }
     }
@@ -920,7 +926,9 @@ export function detectAIPromptHygiene(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -969,7 +977,9 @@ export function detectAIPromptHygiene(
         suggestedFix: pattern.suggestedFix,
         confidence: 'high',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: false, // Secrets don't need AI validation - they're definitive
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1034,7 +1044,9 @@ export function detectAIPromptHygiene(
         suggestedFix: 'Remove the hardcoded secret. Use environment variables server-side. Never expose secrets to LLM prompts.',
         confidence: 'high',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: false,
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1081,7 +1093,9 @@ export function detectAIPromptHygiene(
         suggestedFix: pattern.suggestedFix,
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: true,
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1137,7 +1151,9 @@ export function detectAIPromptHygiene(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1187,7 +1203,9 @@ export function detectAIPromptHygiene(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1237,7 +1255,9 @@ export function detectAIPromptHygiene(
         suggestedFix: pattern.suggestedFix,
         confidence: 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }
@@ -1280,7 +1300,9 @@ export function detectAIPromptHygiene(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && severity !== 'low',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }

package/src/{layer2/ai-rag-safety.ts → detect/ai-code/rag-safety.ts}

@@ -9,8 +9,8 @@
  * - Context logging risks
  */
 
-import type { Vulnerability, VulnerabilitySeverity, VulnerabilityCategory } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity, VulnerabilityCategory } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
@@ -18,7 +18,9 @@ import {
   isScannerOrFixtureFile,
   isExampleDirectory,
   isLibraryCode,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.45
 
 // ============================================================================
 // Context Detection
@@ -961,7 +963,9 @@ export function detectRAGSafetyIssues(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: severity !== 'info' && pattern.riskType !== 'context_logging',
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }

package/src/{layer2/ai-schema-validation.ts → detect/ai-code/schema-validation.ts}

@@ -9,14 +9,16 @@
  * - Tool invocation parameters not validated
  */
 
-import type { Vulnerability, VulnerabilitySeverity } from '../types'
-import type { ParsedFile } from '../utils/parsed-file'
+import type { Vulnerability, VulnerabilitySeverity } from '../../shared/types'
+import type { ParsedFile } from '../../shared/parsed-file'
 import {
   isComment,
   isTestOrMockFile,
   isDocumentationFile,
   isScannerOrFixtureFile,
-} from '../utils/context-helpers'
+} from '../../parse/file-classifier'
+
+const BASE_CONFIDENCE = 0.40
 
 // ============================================================================
 // Context Detection
@@ -411,7 +413,9 @@ export function detectAISchemaValidation(
         suggestedFix: pattern.suggestedFix,
         confidence: severity === 'info' ? 'low' : 'medium',
         layer: 2,
+        source: 'ai_code' as const,
         requiresAIValidation: true, // Tier B - always validate with AI
+        baseConfidence: BASE_CONFIDENCE,
       })
     }
   }