@oculum/scanner 1.0.9 → 1.0.11

package/dist/layer2/byok-patterns.js.map

@@ -1 +1 @@
-{"version":3,"file":"byok-patterns.js","sourceRoot":"","sources":["../../src/layer2/byok-patterns.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;AAwNH,gDAmHC;AAvUD,8DAAyG;AACzG,sEAA4H;AAE5H;;GAEG;AACH,SAAS,mBAAmB,CAAC,IAAY;IACvC,MAAM,eAAe,GAAG;QACtB,uBAAuB;QACvB,0BAA0B;QAC1B,iBAAiB;QACjB,mBAAmB;QACnB,cAAc;QACd,kBAAkB;QAClB,qBAAqB;QACrB,iBAAiB,EAAQ,iBAAiB;QAC1C,mBAAmB,EAAM,YAAY;QACrC,OAAO;QACP,eAAe;QACf,eAAe;QACf,eAAe;QACf,eAAe;KAChB,CAAA;IACD,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;AAChD,CAAC;AASD,MAAM,aAAa,GAAkB;IACnC,0BAA0B;IAC1B;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,8GAA8G;QACvH,OAAO,EAAE,QAAQ;QACjB,WAAW,EAAE,uCAAuC;KACrD;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,qEAAqE;QAC9E,OAAO,EAAE,QAAQ;QACjB,WAAW,EAAE,kDAAkD;KAChE;IAED,6BAA6B;IAC7B;QACE,IAAI,EAAE,iCAAiC;QACvC,OAAO,EAAE,0HAA0H;QACnI,OAAO,EAAE,WAAW;QACpB,WAAW,EAAE,0CAA0C;KACxD;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EAAE,wEAAwE;QACjF,OAAO,EAAE,WAAW;QACpB,WAAW,EAAE,qDAAqD;KACnE;IAED,0BAA0B;IAC1B;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EAAE,sEAAsE;QAC/E,OAAO,EAAE,YAAY;QACrB,WAAW,EAAE,mCAAmC;KACjD;IAED,uCAAuC;IACvC;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,+CAA+C;QACxD,OAAO,EAAE,SAAS;QAClB,WAAW,EAAE,kCAAkC;KAChD;CACF,CAAA;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,OAAe;IAC3C,MAAM,YAAY,GAAG;QACnB,8BAA8B;QAC9B,2BAA2B;QAC3B,kBAAkB;QAClB,wBAAwB;QACxB,iBAAiB;QACjB,mBAAmB;QACnB,mBAAmB;QACnB,kBAAkB;QAClB,iBAAiB;QACjB,gBAAgB;QAChB,sBAAsB;QACtB,0BAA0B;QAC1B,gBAAgB;QAChB,gBAAgB;QAChB,0BAA0B;QAC1B,6BAA6B;QAC7B,WAAW;QACX,wBAAwB;QACxB,kBAAkB;QAClB,QAAQ;QACR,mBAAmB;QACnB,oBAAoB;KACrB,CAAA;IACD,OAAO,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AAChD,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAAC,OAAe,EAAE,UAAkB;IAChE,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE1D,kDAAkD;IAClD,8EAA8E;IAC9E,kEAAkE;IAClE,MAAM,eAAe,GAAG;QACtB,gBAAgB;QAChB,gBAAgB;QAChB,gBAAgB;QAChB,cAAc;QACd,gBAAgB;QAChB,iBAAiB;QACjB,wDAAwD;QACxD,2BAA2B;QAC3B,iDAAiD;QACjD,uBAAuB;QACvB,qBAAqB;QACrB,mDAAmD,EAAG,UAAU;QAChE,6BAA6B;QAC7B,oDAAoD;QACpD,wBAAwB;QACxB,0BAA0B;KAC3B,CAAA;IAED,wEAAwE;IACxE,MAAM,aAAa,GAAG;QACpB,qBAAqB;QACrB,wBAAwB;QACxB,8BAA8B;QAC9B,qBAAqB;QACrB,wBAAwB;QACxB,uBAAuB;KACxB,CAAA;IAED,MAAM,iBAAiB,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IACpE,MAAM,eAAe,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAEhE,+EAA+E;IAC/E,+EAA+E;IAC/E,IAAI,iBAAiB,IAAI,eAAe,EAAE,CAAC;QACzC,6EAA6E;QAC7E,2EAA2E;QAC3E,OAAO,mEAAmE,CAAC,IAAI,CAAC,OAAO,CAAC;YACjF,mEAAmE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IAC1F,CAAC;IAED,OAAO,iBAAiB,CAAA;AAC1B,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,OAAe,EAAE,UAAkB;IAC9D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE1D,iEAAiE;IACjE,MAAM,iBAAiB,GAAG;QACxB,kCAAkC,EAAO,4BAA4B;QACrE,kCAAkC,EAAQ,qBAAqB;QAC/D,wBAAwB;QACxB,qBAAqB;QACrB,wCAAwC;KACzC,CAAA;IAED,qDAAqD;IACrD,MAAM,WAAW,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAChE,MAAM,UAAU,GAAG,qBAAqB,CAAC,OAAO,EAAE,UAAU,CAAC,CAAA;IAE7D,OAAO,WAAW,IAAI,CAAC,UAAU,CAAA;AACnC,CAAC;AAED;;GAEG;AACH,SAAS,WAAW,CAAC,OAAe,EAAE,UAAkB;IACtD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE1D,MAAM,eAAe,GAAG;QACtB,uEAAuE;QACvE,sEAAsE;QACtE,6DAA6D;KAC9D,CAAA;IAED,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACnD,CAAC;AAED;;GAEG;AACH,SAAgB,kBAAkB,CAChC,OAAe,EACf,QAAgB,EAChB,gBAAuC;IAEvC,MAAM,eAAe,GAAoB,EAAE,CAAA;IAC3C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,UAAU,GAAG,IAAA,kCAAgB,EAAC,QAAQ,CAAC,CAAA;IAE7C,oFAAoF;IACpF,IAAI,IAAA,+BAAa,EAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,yBAAyB;IACzB,MAAM,SAAS,GAAG,IAAA,0CAAoB,EAAC,QAAQ,CAAC,CAAA;IAChD,MAAM,oBAAoB,GAAG,SAAS,IAAI,gBAAgB;QACxD,CAAC,CAAC,IAAA,kDAA4B,EAAC,SAAS,EAAE,gBAAgB,CAAC;QAC3D,CAAC,CAAC,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,EAAE,EAAE,EAAE,CAAA;IAEtC,8CAA8C;IAC9C,MAAM,WAAW,GAAG,IAAA,+CAAyB,EAAC,OAAO,CAAC,CAAA;IAEtD,oFAAoF;IACpF,MAAM,eAAe,GAAG,oBAAoB,CAAC,OAAO,CAAC,CAAA;IAErD,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;QAC5B,IAAI,IAAA,2BAAS,EAAC,IAAI,CAAC;YAAE,OAAM;QAE3B,kDAAkD;QAClD,IAAI,mBAAmB,CAAC,IAAI,CAAC,IAAI,IAAA,oCAAkB,EAAC,EAAE,EAAE,IAAI,CAAC,EAAE,CAAC;YAC9D,OAAM;QACR,CAAC;QAED,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;YACpC,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;YAEvE,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBACrB,oBAAoB;gBACpB,MAAM,eAAe,GAAG,oBAAoB,CAAC,WAAW,IAAI,eAAe,CAAA;gBAC3E,MAAM,YAAY,GAAG,WAAW,CAAC,cAAc,CAAA;gBAC/C,MAAM,iBAAiB,GAAG,qBAAqB,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;gBAC/D,MAAM,WAAW,GAAG,mBAAmB,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;gBAEvD,sCAAsC;gBACtC,IAAI,QAA+B,CAAA;gBACnC,IAAI,WAAmB,CAAA;gBACvB,IAAI,YAAoB,CAAA;gBAExB,IAAI,eAAe,IAAI,WAAW,EAAE,CAAC;oBACnC,+DAA+D;oBAC/D,8CAA8C;oBAC9C,MAAM,SAAS,GAAG,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;oBAC7C,IAAI,SAAS,EAAE,CAAC;wBACd,QAAQ,GAAG,KAAK,CAAA;wBAChB,WAAW,GAAG,0BAA0B,OAAO,CAAC,WAAW,sGAAsG,CAAA;wBACjK,YAAY,GAAG,0GAA0G,CAAA;oBAC3H,CAAC;yBAAM,CAAC;wBACN,mEAAmE;wBACnE,sDAAsD;wBACtD,SAAQ;oBACV,CAAC;gBACH,CAAC;qBAAM,IAAI,CAAC,eAAe,IAAI,WAAW,EAAE,CAAC;oBAC3C,gEAAgE;oBAChE,QAAQ,GAAG,KAAK,CAAA;oBAChB,WAAW,GAAG,0BAA0B,OAAO,CAAC,WAAW,4FAA4F,CAAA;oBACvJ,YAAY,GAAG,wHAAwH,CAAA;gBACzI,CAAC;qBAAM,IAAI,CAAC,eAAe,IAAI,iBAAiB,EAAE,CAAC;oBACjD,2DAA2D;oBAC3D,QAAQ,GAAG,QAAQ,CAAA;oBACnB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,4GAA4G,CAAA;oBAChJ,YAAY,GAAG,2FAA2F,CAAA;gBAC5G,CAAC;qBAAM,IAAI,iBAAiB,IAAI,CAAC,YAAY,EAAE,CAAC;oBAC9C,mEAAmE;oBACnE,QAAQ,GAAG,QAAQ,CAAA;oBACnB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,yGAAyG,CAAA;oBAC7I,YAAY,GAAG,0HAA0H,CAAA;gBAC3I,CAAC;qBAAM,IAAI,eAAe,IAAI,YAAY,EAAE,CAAC;oBAC3C,8DAA8D;oBAC9D,QAAQ,GAAG,MAAM,CAAA;oBACjB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,8GAA8G,CAAA;oBAClJ,YAAY,GAAG,wFAAwF,CAAA;gBACzG,CAAC;qBAAM,CAAC;oBACN,qEAAqE;oBACrE,QAAQ,GAAG,MAAM,CAAA;oBACjB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,8DAA8D,CAAA;oBAClG,YAAY,GAAG,0EAA0E,CAAA;gBAC3F,CAAC;gBAED,uBAAuB;gBACvB,IAAI,UAAU,EAAE,CAAC;oBACf,QAAQ,GAAG,MAAM,CAAA;oBACjB,WAAW,GAAG,GAAG,WAAW,iBAAiB,CAAA;gBAC/C,CAAC;gBAED,eAAe,CAAC,IAAI,CAAC;oBACnB,EAAE,EAAE,QAAQ,QAAQ,IAAI,KAAK,GAAG,CAAC,IAAI,OAAO,CAAC,IAAI,EAAE;oBACnD,QAAQ;oBACR,UAAU,EAAE,KAAK,GAAG,CAAC;oBACrB,WAAW,EAAE,IAAI,CAAC,IAAI,EAAE;oBACxB,QAAQ;oBACR,QAAQ,EAAE,YAAY;oBACtB,KAAK,EAAE,SAAS,OAAO,CAAC,IAAI,EAAE;oBAC9B,WAAW;oBACX,YAAY;oBACZ,UAAU,EAAE,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ;oBACzC,KAAK,EAAE,CAAC;iBACT,CAAC,CAAA;gBAEF,MAAK,CAAC,uBAAuB;YAC/B,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAA;IAEF,OAAO,eAAe,CAAA;AACxB,CAAC"}
+{"version":3,"file":"byok-patterns.js","sourceRoot":"","sources":["../../src/layer2/byok-patterns.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;AAwNH,gDAuHC;AA3UD,8DAAiI;AACjI,sEAA4H;AAE5H;;GAEG;AACH,SAAS,mBAAmB,CAAC,IAAY;IACvC,MAAM,eAAe,GAAG;QACtB,uBAAuB;QACvB,0BAA0B;QAC1B,iBAAiB;QACjB,mBAAmB;QACnB,cAAc;QACd,kBAAkB;QAClB,qBAAqB;QACrB,iBAAiB,EAAQ,iBAAiB;QAC1C,mBAAmB,EAAM,YAAY;QACrC,OAAO;QACP,eAAe;QACf,eAAe;QACf,eAAe;QACf,eAAe;KAChB,CAAA;IACD,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAA;AAChD,CAAC;AASD,MAAM,aAAa,GAAkB;IACnC,0BAA0B;IAC1B;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EAAE,8GAA8G;QACvH,OAAO,EAAE,QAAQ;QACjB,WAAW,EAAE,uCAAuC;KACrD;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,qEAAqE;QAC9E,OAAO,EAAE,QAAQ;QACjB,WAAW,EAAE,kDAAkD;KAChE;IAED,6BAA6B;IAC7B;QACE,IAAI,EAAE,iCAAiC;QACvC,OAAO,EAAE,0HAA0H;QACnI,OAAO,EAAE,WAAW;QACpB,WAAW,EAAE,0CAA0C;KACxD;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EAAE,wEAAwE;QACjF,OAAO,EAAE,WAAW;QACpB,WAAW,EAAE,qDAAqD;KACnE;IAED,0BAA0B;IAC1B;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EAAE,sEAAsE;QAC/E,OAAO,EAAE,YAAY;QACrB,WAAW,EAAE,mCAAmC;KACjD;IAED,uCAAuC;IACvC;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,+CAA+C;QACxD,OAAO,EAAE,SAAS;QAClB,WAAW,EAAE,kCAAkC;KAChD;CACF,CAAA;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,OAAe;IAC3C,MAAM,YAAY,GAAG;QACnB,8BAA8B;QAC9B,2BAA2B;QAC3B,kBAAkB;QAClB,wBAAwB;QACxB,iBAAiB;QACjB,mBAAmB;QACnB,mBAAmB;QACnB,kBAAkB;QAClB,iBAAiB;QACjB,gBAAgB;QAChB,sBAAsB;QACtB,0BAA0B;QAC1B,gBAAgB;QAChB,gBAAgB;QAChB,0BAA0B;QAC1B,6BAA6B;QAC7B,WAAW;QACX,wBAAwB;QACxB,kBAAkB;QAClB,QAAQ;QACR,mBAAmB;QACnB,oBAAoB;KACrB,CAAA;IACD,OAAO,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AAChD,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAAC,OAAe,EAAE,UAAkB;IAChE,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE1D,kDAAkD;IAClD,8EAA8E;IAC9E,kEAAkE;IAClE,MAAM,eAAe,GAAG;QACtB,gBAAgB;QAChB,gBAAgB;QAChB,gBAAgB;QAChB,cAAc;QACd,gBAAgB;QAChB,iBAAiB;QACjB,wDAAwD;QACxD,2BAA2B;QAC3B,iDAAiD;QACjD,uBAAuB;QACvB,qBAAqB;QACrB,mDAAmD,EAAG,UAAU;QAChE,6BAA6B;QAC7B,oDAAoD;QACpD,wBAAwB;QACxB,0BAA0B;KAC3B,CAAA;IAED,wEAAwE;IACxE,MAAM,aAAa,GAAG;QACpB,qBAAqB;QACrB,wBAAwB;QACxB,8BAA8B;QAC9B,qBAAqB;QACrB,wBAAwB;QACxB,uBAAuB;KACxB,CAAA;IAED,MAAM,iBAAiB,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IACpE,MAAM,eAAe,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAEhE,+EAA+E;IAC/E,+EAA+E;IAC/E,IAAI,iBAAiB,IAAI,eAAe,EAAE,CAAC;QACzC,6EAA6E;QAC7E,2EAA2E;QAC3E,OAAO,mEAAmE,CAAC,IAAI,CAAC,OAAO,CAAC;YACjF,mEAAmE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IAC1F,CAAC;IAED,OAAO,iBAAiB,CAAA;AAC1B,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,OAAe,EAAE,UAAkB;IAC9D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE1D,iEAAiE;IACjE,MAAM,iBAAiB,GAAG;QACxB,kCAAkC,EAAO,4BAA4B;QACrE,kCAAkC,EAAQ,qBAAqB;QAC/D,wBAAwB;QACxB,qBAAqB;QACrB,wCAAwC;KACzC,CAAA;IAED,qDAAqD;IACrD,MAAM,WAAW,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAChE,MAAM,UAAU,GAAG,qBAAqB,CAAC,OAAO,EAAE,UAAU,CAAC,CAAA;IAE7D,OAAO,WAAW,IAAI,CAAC,UAAU,CAAA;AACnC,CAAC;AAED;;GAEG;AACH,SAAS,WAAW,CAAC,OAAe,EAAE,UAAkB;IACtD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACvD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE1D,MAAM,eAAe,GAAG;QACtB,uEAAuE;QACvE,sEAAsE;QACtE,6DAA6D;KAC9D,CAAA;IAED,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACnD,CAAC;AAED;;GAEG;AACH,SAAgB,kBAAkB,CAChC,OAAe,EACf,QAAgB,EAChB,gBAAuC;IAEvC,MAAM,eAAe,GAAoB,EAAE,CAAA;IAE3C,qDAAqD;IACrD,IAAI,IAAA,wCAAsB,EAAC,QAAQ,CAAC;QAAE,OAAO,eAAe,CAAA;IAE5D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,UAAU,GAAG,IAAA,kCAAgB,EAAC,QAAQ,CAAC,CAAA;IAE7C,oFAAoF;IACpF,IAAI,IAAA,+BAAa,EAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,yBAAyB;IACzB,MAAM,SAAS,GAAG,IAAA,0CAAoB,EAAC,QAAQ,CAAC,CAAA;IAChD,MAAM,oBAAoB,GAAG,SAAS,IAAI,gBAAgB;QACxD,CAAC,CAAC,IAAA,kDAA4B,EAAC,SAAS,EAAE,gBAAgB,CAAC;QAC3D,CAAC,CAAC,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,EAAE,EAAE,EAAE,CAAA;IAEtC,8CAA8C;IAC9C,MAAM,WAAW,GAAG,IAAA,+CAAyB,EAAC,OAAO,CAAC,CAAA;IAEtD,oFAAoF;IACpF,MAAM,eAAe,GAAG,oBAAoB,CAAC,OAAO,CAAC,CAAA;IAErD,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;QAC5B,IAAI,IAAA,2BAAS,EAAC,IAAI,CAAC;YAAE,OAAM;QAE3B,kDAAkD;QAClD,IAAI,mBAAmB,CAAC,IAAI,CAAC,IAAI,IAAA,oCAAkB,EAAC,EAAE,EAAE,IAAI,CAAC,EAAE,CAAC;YAC9D,OAAM;QACR,CAAC;QAED,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;YACpC,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAA;YAEvE,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBACrB,oBAAoB;gBACpB,MAAM,eAAe,GAAG,oBAAoB,CAAC,WAAW,IAAI,eAAe,CAAA;gBAC3E,MAAM,YAAY,GAAG,WAAW,CAAC,cAAc,CAAA;gBAC/C,MAAM,iBAAiB,GAAG,qBAAqB,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;gBAC/D,MAAM,WAAW,GAAG,mBAAmB,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;gBAEvD,sCAAsC;gBACtC,IAAI,QAA+B,CAAA;gBACnC,IAAI,WAAmB,CAAA;gBACvB,IAAI,YAAoB,CAAA;gBAExB,IAAI,eAAe,IAAI,WAAW,EAAE,CAAC;oBACnC,+DAA+D;oBAC/D,8CAA8C;oBAC9C,MAAM,SAAS,GAAG,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;oBAC7C,IAAI,SAAS,EAAE,CAAC;wBACd,QAAQ,GAAG,KAAK,CAAA;wBAChB,WAAW,GAAG,0BAA0B,OAAO,CAAC,WAAW,sGAAsG,CAAA;wBACjK,YAAY,GAAG,0GAA0G,CAAA;oBAC3H,CAAC;yBAAM,CAAC;wBACN,mEAAmE;wBACnE,sDAAsD;wBACtD,SAAQ;oBACV,CAAC;gBACH,CAAC;qBAAM,IAAI,CAAC,eAAe,IAAI,WAAW,EAAE,CAAC;oBAC3C,gEAAgE;oBAChE,QAAQ,GAAG,KAAK,CAAA;oBAChB,WAAW,GAAG,0BAA0B,OAAO,CAAC,WAAW,4FAA4F,CAAA;oBACvJ,YAAY,GAAG,wHAAwH,CAAA;gBACzI,CAAC;qBAAM,IAAI,CAAC,eAAe,IAAI,iBAAiB,EAAE,CAAC;oBACjD,2DAA2D;oBAC3D,QAAQ,GAAG,QAAQ,CAAA;oBACnB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,4GAA4G,CAAA;oBAChJ,YAAY,GAAG,2FAA2F,CAAA;gBAC5G,CAAC;qBAAM,IAAI,iBAAiB,IAAI,CAAC,YAAY,EAAE,CAAC;oBAC9C,mEAAmE;oBACnE,QAAQ,GAAG,QAAQ,CAAA;oBACnB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,yGAAyG,CAAA;oBAC7I,YAAY,GAAG,0HAA0H,CAAA;gBAC3I,CAAC;qBAAM,IAAI,eAAe,IAAI,YAAY,EAAE,CAAC;oBAC3C,8DAA8D;oBAC9D,QAAQ,GAAG,MAAM,CAAA;oBACjB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,8GAA8G,CAAA;oBAClJ,YAAY,GAAG,wFAAwF,CAAA;gBACzG,CAAC;qBAAM,CAAC;oBACN,qEAAqE;oBACrE,QAAQ,GAAG,MAAM,CAAA;oBACjB,WAAW,GAAG,GAAG,OAAO,CAAC,WAAW,8DAA8D,CAAA;oBAClG,YAAY,GAAG,0EAA0E,CAAA;gBAC3F,CAAC;gBAED,uBAAuB;gBACvB,IAAI,UAAU,EAAE,CAAC;oBACf,QAAQ,GAAG,MAAM,CAAA;oBACjB,WAAW,GAAG,GAAG,WAAW,iBAAiB,CAAA;gBAC/C,CAAC;gBAED,eAAe,CAAC,IAAI,CAAC;oBACnB,EAAE,EAAE,QAAQ,QAAQ,IAAI,KAAK,GAAG,CAAC,IAAI,OAAO,CAAC,IAAI,EAAE;oBACnD,QAAQ;oBACR,UAAU,EAAE,KAAK,GAAG,CAAC;oBACrB,WAAW,EAAE,IAAI,CAAC,IAAI,EAAE;oBACxB,QAAQ;oBACR,QAAQ,EAAE,YAAY;oBACtB,KAAK,EAAE,SAAS,OAAO,CAAC,IAAI,EAAE;oBAC9B,WAAW;oBACX,YAAY;oBACZ,UAAU,EAAE,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ;oBACzC,KAAK,EAAE,CAAC;iBACT,CAAC,CAAA;gBAEF,MAAK,CAAC,uBAAuB;YAC/B,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAA;IAEF,OAAO,eAAe,CAAA;AACxB,CAAC"}

package/dist/layer2/dangerous-functions/child-process.d.ts

@@ -0,0 +1,16 @@
+/**
+ * Child Process Detection
+ *
+ * Detection logic for child_process functions (exec, spawn, execFile, etc.)
+ * that can lead to command injection vulnerabilities.
+ */
+/**
+ * Check if exec() call is from child_process (dangerous) vs RegExp.exec (safe)
+ * Returns true if this is a child_process exec call that should be flagged
+ */
+export declare function isChildProcessExec(content: string, lineContent: string): boolean;
+/**
+ * Check if spawn/execFile/execSync is from child_process
+ */
+export declare function isChildProcessSpawn(content: string, lineContent: string): boolean;
+//# sourceMappingURL=child-process.d.ts.map

package/dist/layer2/dangerous-functions/child-process.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"child-process.d.ts","sourceRoot":"","sources":["../../../src/layer2/dangerous-functions/child-process.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAiEhF;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAgBjF"}

package/dist/layer2/dangerous-functions/child-process.js

@@ -0,0 +1,74 @@
+"use strict";
+/**
+ * Child Process Detection
+ *
+ * Detection logic for child_process functions (exec, spawn, execFile, etc.)
+ * that can lead to command injection vulnerabilities.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isChildProcessExec = isChildProcessExec;
+exports.isChildProcessSpawn = isChildProcessSpawn;
+/**
+ * Check if exec() call is from child_process (dangerous) vs RegExp.exec (safe)
+ * Returns true if this is a child_process exec call that should be flagged
+ */
+function isChildProcessExec(content, lineContent) {
+    // Check for child_process import
+    const hasChildProcessImport = /require\s*\(\s*['"]child_process['"]\s*\)/.test(content) ||
+        /from\s+['"]child_process['"]/.test(content) ||
+        /import\s+.*child_process/.test(content) ||
+        /require\s*\(\s*['"]node:child_process['"]\s*\)/.test(content) ||
+        /from\s+['"]node:child_process['"]/.test(content);
+    // If no child_process import, this is likely RegExp.exec or similar
+    if (!hasChildProcessImport) {
+        return false;
+    }
+    // Check if this specific line is RegExp.exec pattern
+    // RegExp.exec is called as: regex.exec(string) or /pattern/.exec(string)
+    const isRegExpExec = /\.\s*exec\s*\(/.test(lineContent) && // Method call on an object
+        !/\bexec\s*\(/.test(lineContent.replace(/\.\s*exec\s*\(/, '')); // Not a standalone exec()
+    // Also check for common RegExp patterns
+    const isRegExpPattern = /\/[^/]+\/[gimsuy]*\.exec\s*\(/.test(lineContent) || // /pattern/.exec()
+        /new\s+RegExp\s*\([^)]+\)\.exec\s*\(/.test(lineContent) || // new RegExp().exec()
+        /regex\.exec\s*\(/i.test(lineContent) || // regex.exec()
+        /pattern\.exec\s*\(/i.test(lineContent) || // pattern.exec()
+        /match\.exec\s*\(/i.test(lineContent) || // match.exec()
+        /re\.exec\s*\(/i.test(lineContent); // re.exec()
+    if (isRegExpExec || isRegExpPattern) {
+        return false;
+    }
+    // Check if exec is imported/destructured from child_process
+    const execImported = /\{\s*[^}]*\bexec\b[^}]*\}\s*=\s*require\s*\(\s*['"]child_process['"]/.test(content) ||
+        /\{\s*[^}]*\bexec\b[^}]*\}\s*=\s*require\s*\(\s*['"]node:child_process['"]/.test(content) ||
+        /import\s+\{\s*[^}]*\bexec\b[^}]*\}\s+from\s+['"]child_process['"]/.test(content) ||
+        /import\s+\{\s*[^}]*\bexec\b[^}]*\}\s+from\s+['"]node:child_process['"]/.test(content);
+    // If exec is directly imported from child_process, standalone exec() is dangerous
+    if (execImported && /\bexec\s*\(/.test(lineContent)) {
+        return true;
+    }
+    // Check for child_process.exec() pattern
+    if (/child_process\.exec\s*\(/.test(lineContent) ||
+        /cp\.exec\s*\(/.test(lineContent) ||
+        /childProcess\.exec\s*\(/.test(lineContent)) {
+        return true;
+    }
+    // If we have child_process import but can't determine usage, be conservative
+    // Only flag if it looks like a standalone exec() call
+    return /\bexec\s*\(/.test(lineContent) && !/\.\s*exec\s*\(/.test(lineContent);
+}
+/**
+ * Check if spawn/execFile/execSync is from child_process
+ */
+function isChildProcessSpawn(content, lineContent) {
+    // Check for child_process import
+    const hasChildProcessImport = /require\s*\(\s*['"]child_process['"]\s*\)/.test(content) ||
+        /from\s+['"]child_process['"]/.test(content) ||
+        /require\s*\(\s*['"]node:child_process['"]\s*\)/.test(content) ||
+        /from\s+['"]node:child_process['"]/.test(content);
+    if (!hasChildProcessImport) {
+        return false;
+    }
+    // These functions are always from child_process when that module is imported
+    return /\b(spawn|spawnSync|execSync|execFile|execFileSync)\s*\(/.test(lineContent);
+}
+//# sourceMappingURL=child-process.js.map

package/dist/layer2/dangerous-functions/child-process.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"child-process.js","sourceRoot":"","sources":["../../../src/layer2/dangerous-functions/child-process.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AAMH,gDAiEC;AAKD,kDAgBC;AA1FD;;;GAGG;AACH,SAAgB,kBAAkB,CAAC,OAAe,EAAE,WAAmB;IACrE,iCAAiC;IACjC,MAAM,qBAAqB,GACzB,2CAA2C,CAAC,IAAI,CAAC,OAAO,CAAC;QACzD,8BAA8B,CAAC,IAAI,CAAC,OAAO,CAAC;QAC5C,0BAA0B,CAAC,IAAI,CAAC,OAAO,CAAC;QACxC,gDAAgD,CAAC,IAAI,CAAC,OAAO,CAAC;QAC9D,mCAAmC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IAEnD,oEAAoE;IACpE,IAAI,CAAC,qBAAqB,EAAE,CAAC;QAC3B,OAAO,KAAK,CAAA;IACd,CAAC;IAED,qDAAqD;IACrD,yEAAyE;IACzE,MAAM,YAAY,GAChB,gBAAgB,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,2BAA2B;QACjE,CAAC,aAAa,CAAC,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC,CAAA,CAAC,0BAA0B;IAE3F,wCAAwC;IACxC,MAAM,eAAe,GACnB,+BAA+B,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,mBAAmB;QACxE,qCAAqC,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,sBAAsB;QACjF,mBAAmB,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,eAAe;QACxD,qBAAqB,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,iBAAiB;QAC5D,mBAAmB,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,eAAe;QACxD,gBAAgB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA,CAAC,YAAY;IAEjD,IAAI,YAAY,IAAI,eAAe,EAAE,CAAC;QACpC,OAAO,KAAK,CAAA;IACd,CAAC;IAED,4DAA4D;IAC5D,MAAM,YAAY,GAChB,sEAAsE,CAAC,IAAI,CACzE,OAAO,CACR;QACD,2EAA2E,CAAC,IAAI,CAC9E,OAAO,CACR;QACD,mEAAmE,CAAC,IAAI,CACtE,OAAO,CACR;QACD,wEAAwE,CAAC,IAAI,CAC3E,OAAO,CACR,CAAA;IAEH,kFAAkF;IAClF,IAAI,YAAY,IAAI,aAAa,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;QACpD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,yCAAyC;IACzC,IACE,0BAA0B,CAAC,IAAI,CAAC,WAAW,CAAC;QAC5C,eAAe,CAAC,IAAI,CAAC,WAAW,CAAC;QACjC,yBAAyB,CAAC,IAAI,CAAC,WAAW,CAAC,EAC3C,CAAC;QACD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,6EAA6E;IAC7E,sDAAsD;IACtD,OAAO,aAAa,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;AAC/E,CAAC;AAED;;GAEG;AACH,SAAgB,mBAAmB,CAAC,OAAe,EAAE,WAAmB;IACtE,iCAAiC;IACjC,MAAM,qBAAqB,GACzB,2CAA2C,CAAC,IAAI,CAAC,OAAO,CAAC;QACzD,8BAA8B,CAAC,IAAI,CAAC,OAAO,CAAC;QAC5C,gDAAgD,CAAC,IAAI,CAAC,OAAO,CAAC;QAC9D,mCAAmC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IAEnD,IAAI,CAAC,qBAAqB,EAAE,CAAC;QAC3B,OAAO,KAAK,CAAA;IACd,CAAC;IAED,6EAA6E;IAC7E,OAAO,yDAAyD,CAAC,IAAI,CACnE,WAAW,CACZ,CAAA;AACH,CAAC"}

package/dist/layer2/dangerous-functions/dom-xss.d.ts

@@ -0,0 +1,29 @@
+/**
+ * DOM/XSS Detection
+ *
+ * Detection logic for XSS-related patterns like innerHTML, dangerouslySetInnerHTML,
+ * and document.write.
+ */
+/**
+ * Check if innerHTML is being used on a style element (CSS injection is not XSS)
+ */
+export declare function isStyleElementInnerHTML(lineContent: string, content: string, lineNumber: number): boolean;
+/**
+ * Check if innerHTML/dangerouslySetInnerHTML uses static content only
+ */
+export declare function isStaticHTMLContent(lineContent: string, content: string, lineNumber: number): boolean;
+/**
+ * Check if dangerouslySetInnerHTML is used with DOMPurify sanitization
+ */
+export declare function hasDOMPurifySanitization(lineContent: string, content: string, lineNumber: number): boolean;
+/**
+ * Check if data flows to an LLM prompt rather than a DOM sink
+ * LLM prompts are NOT XSS - they're prompt injection (different risk profile)
+ */
+export declare function isLLMPromptContext(lineContent: string, content: string, filePath: string): boolean;
+/**
+ * Check if this is a static bootstrap script (e.g., localStorage theme reader)
+ * These are very low risk even with dangerouslySetInnerHTML
+ */
+export declare function isStaticBootstrapScript(_lineContent: string, content: string, lineNumber: number): boolean;
+//# sourceMappingURL=dom-xss.d.ts.map

package/dist/layer2/dangerous-functions/dom-xss.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dom-xss.d.ts","sourceRoot":"","sources":["../../../src/layer2/dangerous-functions/dom-xss.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,wBAAgB,uBAAuB,CACrC,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,GACjB,OAAO,CAgCT;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CACjC,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,GACjB,OAAO,CAoDT;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CACtC,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,GACjB,OAAO,CAoBT;AAED;;;GAGG;AACH,wBAAgB,kBAAkB,CAChC,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,GACf,OAAO,CAiCT;AAED;;;GAGG;AACH,wBAAgB,uBAAuB,CACrC,YAAY,EAAE,MAAM,EACpB,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,GACjB,OAAO,CA8BT"}

package/dist/layer2/dangerous-functions/dom-xss.js

@@ -0,0 +1,179 @@
+"use strict";
+/**
+ * DOM/XSS Detection
+ *
+ * Detection logic for XSS-related patterns like innerHTML, dangerouslySetInnerHTML,
+ * and document.write.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isStyleElementInnerHTML = isStyleElementInnerHTML;
+exports.isStaticHTMLContent = isStaticHTMLContent;
+exports.hasDOMPurifySanitization = hasDOMPurifySanitization;
+exports.isLLMPromptContext = isLLMPromptContext;
+exports.isStaticBootstrapScript = isStaticBootstrapScript;
+/**
+ * Check if innerHTML is being used on a style element (CSS injection is not XSS)
+ */
+function isStyleElementInnerHTML(lineContent, content, lineNumber) {
+    const lines = content.split('\n');
+    // Direct style element patterns on the line
+    const stylePatterns = [
+        /stylesheet\.innerHTML/i, // stylesheet.innerHTML = ...
+        /styleElement\.innerHTML/i, // styleElement.innerHTML = ...
+        /styleEl\.innerHTML/i, // styleEl.innerHTML = ...
+        /style\.innerHTML/i, // style.innerHTML = ...
+        /\.style\b.*\.innerHTML/i, // element.style.innerHTML
+        /createElement\s*\(\s*['"`]style['"`]\s*\)/i, // createElement('style')
+    ];
+    if (stylePatterns.some(p => p.test(lineContent))) {
+        return true;
+    }
+    // Check surrounding context for style element creation
+    const contextStart = Math.max(0, lineNumber - 10);
+    const contextEnd = lineNumber;
+    const contextBefore = lines.slice(contextStart, contextEnd).join('\n');
+    // Look for style element creation that flows into innerHTML
+    const styleCreationPatterns = [
+        /document\.createElement\s*\(\s*['"`]style['"`]\s*\)/i,
+        /\.appendChild\s*\([^)]*style/i,
+        /const\s+\w*(style|stylesheet)\w*\s*=/i,
+        /let\s+\w*(style|stylesheet)\w*\s*=/i,
+        /var\s+\w*(style|stylesheet)\w*\s*=/i,
+    ];
+    return styleCreationPatterns.some(p => p.test(contextBefore));
+}
+/**
+ * Check if innerHTML/dangerouslySetInnerHTML uses static content only
+ */
+function isStaticHTMLContent(lineContent, content, lineNumber) {
+    const lines = content.split('\n');
+    // Get surrounding context (5 lines before and after)
+    const contextStart = Math.max(0, lineNumber - 6);
+    const contextEnd = Math.min(lines.length, lineNumber + 5);
+    const context = lines.slice(contextStart, contextEnd).join('\n');
+    // Static HTML indicators - string literals only
+    const staticIndicators = [
+        /innerHTML\s*=\s*['"][^'"]*['"]/, // innerHTML = "static string" (single line)
+        /innerHTML\s*=\s*`[^`]*`/, // innerHTML = `static template` (single line, no ${})
+        /dangerouslySetInnerHTML\s*=\s*\{\s*\{\s*__html:\s*['"`]/, // React static string
+    ];
+    // Check for multi-line template literals assigned to innerHTML
+    // Look for: innerHTML = ` at the start
+    const multilineTemplateStart = /innerHTML\s*=\s*`/;
+    if (multilineTemplateStart.test(lineContent)) {
+        // Find the closing backtick in subsequent lines
+        let templateContent = '';
+        let foundClosing = false;
+        for (let i = lineNumber - 1; i < lines.length && i < lineNumber + 50; i++) {
+            templateContent += lines[i] + '\n';
+            if (lines[i].includes('`') && i > lineNumber - 1) {
+                foundClosing = true;
+                break;
+            }
+        }
+        // If template has no ${...} interpolations, it's static
+        if (foundClosing && !/\$\{[^}]*\}/.test(templateContent)) {
+            return true;
+        }
+    }
+    // Dynamic content indicators (red flags)
+    const dynamicIndicators = [
+        /\$\{[^}]*\}/, // Template interpolation ${...}
+        /innerHTML\s*=.*\+/, // String concatenation with +
+        /innerHTML\s*\+=\s*/, // Append operation
+        /\breq\.|\.params|\.query|\.body/, // User input (req.params, req.query, req.body)
+        /\bprops\./, // Component props
+        /\bstate\./, // Component state
+        /\.value\b/, // Input value
+        /dangerouslySetInnerHTML\s*=\s*\{\s*\{\s*__html:\s*[^'"`]/, // React dynamic
+    ];
+    const isStatic = staticIndicators.some(p => p.test(lineContent));
+    const isDynamic = dynamicIndicators.some(p => p.test(context));
+    return isStatic && !isDynamic;
+}
+/**
+ * Check if dangerouslySetInnerHTML is used with DOMPurify sanitization
+ */
+function hasDOMPurifySanitization(lineContent, content, lineNumber) {
+    const lines = content.split('\n');
+    const contextStart = Math.max(0, lineNumber - 10);
+    const contextEnd = Math.min(lines.length, lineNumber + 5);
+    const context = lines.slice(contextStart, contextEnd).join('\n');
+    // DOMPurify sanitization patterns
+    const sanitizationPatterns = [
+        /DOMPurify\.sanitize/i,
+        /sanitize\s*\(/i,
+        /purify\s*\(/i,
+        /xss\s*\(/i,
+        /clean\s*\(/i,
+        /sanitizeHtml/i,
+        /escapeHtml/i,
+        /sanitized/i,
+        /purified/i,
+    ];
+    return sanitizationPatterns.some(p => p.test(context));
+}
+/**
+ * Check if data flows to an LLM prompt rather than a DOM sink
+ * LLM prompts are NOT XSS - they're prompt injection (different risk profile)
+ */
+function isLLMPromptContext(lineContent, content, filePath) {
+    // File path indicators of AI/LLM code
+    const aiFilePatterns = [
+        /\/(ai|llm|chat|openai|anthropic|gpt|claude)\//i,
+        /\/(assistants?|agents?|prompts?)\//i,
+        /(chat|ai|llm|prompt|assistant).*\.(ts|js|tsx|jsx)$/i,
+    ];
+    if (aiFilePatterns.some(p => p.test(filePath))) {
+        return true;
+    }
+    // Content patterns suggesting LLM API usage
+    const llmApiPatterns = [
+        /\.create\s*\(\s*\{[^}]*messages\s*:/i, // OpenAI/Anthropic SDK
+        /openai|anthropic|claude|gpt-4|gpt-3/i, // AI service mentions
+        /\bprompt\s*[=:+]/i, // prompt assignment
+        /\bsystemPrompt|userPrompt|assistantPrompt/i, // Prompt variables
+        /completion|chat\.create|messages\.create/i, // API calls
+        /\bmessages\s*:\s*\[/i, // Messages array
+        /role:\s*['"`](user|assistant|system)['"`]/i, // Message roles
+    ];
+    // Check the line and surrounding context
+    const lines = content.split('\n');
+    const lineIndex = lines.findIndex(l => l === lineContent || l.includes(lineContent.trim()));
+    const startLine = Math.max(0, lineIndex - 10);
+    const endLine = Math.min(lines.length, lineIndex + 10);
+    const context = lines.slice(startLine, endLine).join('\n');
+    return llmApiPatterns.some(p => p.test(lineContent) || p.test(context));
+}
+/**
+ * Check if this is a static bootstrap script (e.g., localStorage theme reader)
+ * These are very low risk even with dangerouslySetInnerHTML
+ */
+function isStaticBootstrapScript(_lineContent, content, lineNumber) {
+    const lines = content.split('\n');
+    const contextStart = Math.max(0, lineNumber - 10);
+    const contextEnd = Math.min(lines.length, lineNumber + 5);
+    const context = lines.slice(contextStart, contextEnd).join('\n');
+    // Bootstrap script indicators (reading from localStorage, setting attributes)
+    const bootstrapPatterns = [
+        /localStorage\.getItem/i,
+        /document\.documentElement\.setAttribute/i,
+        /data-(theme|font|mode)/i,
+        /classList\.(add|remove|toggle)/i,
+        /\.dataset\./i,
+    ];
+    // Dangerous patterns that disqualify as safe bootstrap
+    const dangerousPatterns = [
+        /\$\{.*\}/, // Template interpolation
+        /\+\s*[a-zA-Z]/, // String concatenation with variable
+        /innerHTML\s*=\s*[a-zA-Z]/, // innerHTML set to variable directly
+        /fetch\s*\(/, // Network requests
+        /\.(query|params|body)/, // User input
+        /location\.(search|hash)/, // URL parameters
+        /document\.cookie/, // Cookie access
+    ];
+    const hasBootstrapPatterns = bootstrapPatterns.some(p => p.test(context));
+    const hasDangerousPatterns = dangerousPatterns.some(p => p.test(context));
+    return hasBootstrapPatterns && !hasDangerousPatterns;
+}
+//# sourceMappingURL=dom-xss.js.map

package/dist/layer2/dangerous-functions/dom-xss.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dom-xss.js","sourceRoot":"","sources":["../../../src/layer2/dangerous-functions/dom-xss.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AAKH,0DAoCC;AAKD,kDAwDC;AAKD,4DAwBC;AAMD,gDAqCC;AAMD,0DAkCC;AApND;;GAEG;AACH,SAAgB,uBAAuB,CACrC,WAAmB,EACnB,OAAe,EACf,UAAkB;IAElB,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IAEjC,4CAA4C;IAC5C,MAAM,aAAa,GAAG;QACpB,wBAAwB,EAAE,6BAA6B;QACvD,0BAA0B,EAAE,+BAA+B;QAC3D,qBAAqB,EAAE,0BAA0B;QACjD,mBAAmB,EAAE,wBAAwB;QAC7C,yBAAyB,EAAE,0BAA0B;QACrD,4CAA4C,EAAE,yBAAyB;KACxE,CAAA;IAED,IAAI,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC;QACjD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,uDAAuD;IACvD,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACjD,MAAM,UAAU,GAAG,UAAU,CAAA;IAC7B,MAAM,aAAa,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEtE,4DAA4D;IAC5D,MAAM,qBAAqB,GAAG;QAC5B,sDAAsD;QACtD,+BAA+B;QAC/B,uCAAuC;QACvC,qCAAqC;QACrC,qCAAqC;KACtC,CAAA;IAED,OAAO,qBAAqB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAA;AAC/D,CAAC;AAED;;GAEG;AACH,SAAgB,mBAAmB,CACjC,WAAmB,EACnB,OAAe,EACf,UAAkB;IAElB,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IAEjC,qDAAqD;IACrD,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IAChD,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IACzD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEhE,gDAAgD;IAChD,MAAM,gBAAgB,GAAG;QACvB,gCAAgC,EAAE,4CAA4C;QAC9E,yBAAyB,EAAE,sDAAsD;QACjF,yDAAyD,EAAE,sBAAsB;KAClF,CAAA;IAED,+DAA+D;IAC/D,uCAAuC;IACvC,MAAM,sBAAsB,GAAG,mBAAmB,CAAA;IAClD,IAAI,sBAAsB,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;QAC7C,gDAAgD;QAChD,IAAI,eAAe,GAAG,EAAE,CAAA;QACxB,IAAI,YAAY,GAAG,KAAK,CAAA;QACxB,KAAK,IAAI,CAAC,GAAG,UAAU,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,IAAI,CAAC,GAAG,UAAU,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC;YAC1E,eAAe,IAAI,KAAK,CAAC,CAAC,CAAC,GAAG,IAAI,CAAA;YAClC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,UAAU,GAAG,CAAC,EAAE,CAAC;gBACjD,YAAY,GAAG,IAAI,CAAA;gBACnB,MAAK;YACP,CAAC;QACH,CAAC;QAED,wDAAwD;QACxD,IAAI,YAAY,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC;YACzD,OAAO,IAAI,CAAA;QACb,CAAC;IACH,CAAC;IAED,yCAAyC;IACzC,MAAM,iBAAiB,GAAG;QACxB,aAAa,EAAE,gCAAgC;QAC/C,mBAAmB,EAAE,8BAA8B;QACnD,oBAAoB,EAAE,mBAAmB;QACzC,iCAAiC,EAAE,+CAA+C;QAClF,WAAW,EAAE,kBAAkB;QAC/B,WAAW,EAAE,kBAAkB;QAC/B,WAAW,EAAE,cAAc;QAC3B,0DAA0D,EAAE,gBAAgB;KAC7E,CAAA;IAED,MAAM,QAAQ,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAA;IAChE,MAAM,SAAS,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAE9D,OAAO,QAAQ,IAAI,CAAC,SAAS,CAAA;AAC/B,CAAC;AAED;;GAEG;AACH,SAAgB,wBAAwB,CACtC,WAAmB,EACnB,OAAe,EACf,UAAkB;IAElB,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACjD,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IACzD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEhE,kCAAkC;IAClC,MAAM,oBAAoB,GAAG;QAC3B,sBAAsB;QACtB,gBAAgB;QAChB,cAAc;QACd,WAAW;QACX,aAAa;QACb,eAAe;QACf,aAAa;QACb,YAAY;QACZ,WAAW;KACZ,CAAA;IAED,OAAO,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACxD,CAAC;AAED;;;GAGG;AACH,SAAgB,kBAAkB,CAChC,WAAmB,EACnB,OAAe,EACf,QAAgB;IAEhB,sCAAsC;IACtC,MAAM,cAAc,GAAG;QACrB,gDAAgD;QAChD,qCAAqC;QACrC,qDAAqD;KACtD,CAAA;IAED,IAAI,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;QAC/C,OAAO,IAAI,CAAA;IACb,CAAC;IAED,4CAA4C;IAC5C,MAAM,cAAc,GAAG;QACrB,sCAAsC,EAAE,uBAAuB;QAC/D,sCAAsC,EAAE,sBAAsB;QAC9D,mBAAmB,EAAE,oBAAoB;QACzC,4CAA4C,EAAE,mBAAmB;QACjE,2CAA2C,EAAE,YAAY;QACzD,sBAAsB,EAAE,iBAAiB;QACzC,4CAA4C,EAAE,gBAAgB;KAC/D,CAAA;IAED,yCAAyC;IACzC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,SAAS,GAAG,KAAK,CAAC,SAAS,CAC/B,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,WAAW,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CACzD,CAAA;IACD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,GAAG,EAAE,CAAC,CAAA;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,SAAS,GAAG,EAAE,CAAC,CAAA;IACtD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAE1D,OAAO,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;AACzE,CAAC;AAED;;;GAGG;AACH,SAAgB,uBAAuB,CACrC,YAAoB,EACpB,OAAe,EACf,UAAkB;IAElB,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,EAAE,CAAC,CAAA;IACjD,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,CAAC,CAAC,CAAA;IACzD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEhE,8EAA8E;IAC9E,MAAM,iBAAiB,GAAG;QACxB,wBAAwB;QACxB,0CAA0C;QAC1C,yBAAyB;QACzB,iCAAiC;QACjC,cAAc;KACf,CAAA;IAED,uDAAuD;IACvD,MAAM,iBAAiB,GAAG;QACxB,UAAU,EAAE,yBAAyB;QACrC,eAAe,EAAE,qCAAqC;QACtD,0BAA0B,EAAE,qCAAqC;QACjE,YAAY,EAAE,mBAAmB;QACjC,uBAAuB,EAAE,aAAa;QACtC,yBAAyB,EAAE,iBAAiB;QAC5C,kBAAkB,EAAE,gBAAgB;KACrC,CAAA;IAED,MAAM,oBAAoB,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IACzE,MAAM,oBAAoB,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAA;IAEzE,OAAO,oBAAoB,IAAI,CAAC,oBAAoB,CAAA;AACtD,CAAC"}

package/dist/layer2/dangerous-functions/index.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Layer 2: Dangerous Function Call Analysis
+ *
+ * Detects usage of dangerous functions that can lead to security vulnerabilities.
+ * This module orchestrates detection across multiple specialized modules.
+ */
+import type { Vulnerability } from '../../types';
+export { DANGEROUS_FUNCTIONS, type DangerousFunctionPattern } from './patterns';
+/**
+ * Main detection function for dangerous function calls
+ */
+export declare function detectDangerousFunctions(content: string, filePath: string): Vulnerability[];
+//# sourceMappingURL=index.d.ts.map

package/dist/layer2/dangerous-functions/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/layer2/dangerous-functions/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAyB,MAAM,aAAa,CAAA;AAkDvE,OAAO,EAAE,mBAAmB,EAAE,KAAK,wBAAwB,EAAE,MAAM,YAAY,CAAA;AAE/E;;GAEG;AACH,wBAAgB,wBAAwB,CACtC,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,GACf,aAAa,EAAE,CA2JjB"}