npm - @opentabs-dev/mcp-server - Versions diffs - 0.0.19 - Mend

@opentabs-dev/mcp-server 0.0.19

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/dist/audit-disk.d.ts +23 -0
package/dist/audit-disk.d.ts.map +1 -0
package/dist/audit-disk.js +74 -0
package/dist/audit-disk.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-apis.d.ts +36 -0
package/dist/browser-tools/analyze-site/detect-apis.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-apis.js +383 -0
package/dist/browser-tools/analyze-site/detect-apis.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-auth.d.ts +72 -0
package/dist/browser-tools/analyze-site/detect-auth.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-auth.js +384 -0
package/dist/browser-tools/analyze-site/detect-auth.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-dom.d.ts +65 -0
package/dist/browser-tools/analyze-site/detect-dom.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-dom.js +45 -0
package/dist/browser-tools/analyze-site/detect-dom.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-framework.d.ts +48 -0
package/dist/browser-tools/analyze-site/detect-framework.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-framework.js +31 -0
package/dist/browser-tools/analyze-site/detect-framework.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-globals.d.ts +41 -0
package/dist/browser-tools/analyze-site/detect-globals.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-globals.js +42 -0
package/dist/browser-tools/analyze-site/detect-globals.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-storage.d.ts +39 -0
package/dist/browser-tools/analyze-site/detect-storage.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-storage.js +34 -0
package/dist/browser-tools/analyze-site/detect-storage.js.map +1 -0
package/dist/browser-tools/analyze-site/index.d.ts +52 -0
package/dist/browser-tools/analyze-site/index.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/index.js +827 -0
package/dist/browser-tools/analyze-site/index.js.map +1 -0
package/dist/browser-tools/analyze-site.d.ts +17 -0
package/dist/browser-tools/analyze-site.d.ts.map +1 -0
package/dist/browser-tools/analyze-site.js +41 -0
package/dist/browser-tools/analyze-site.js.map +1 -0
package/dist/browser-tools/clear-console-logs.d.ts +9 -0
package/dist/browser-tools/clear-console-logs.d.ts.map +1 -0
package/dist/browser-tools/clear-console-logs.js +16 -0
package/dist/browser-tools/clear-console-logs.js.map +1 -0
package/dist/browser-tools/click-element.d.ts +10 -0
package/dist/browser-tools/click-element.d.ts.map +1 -0
package/dist/browser-tools/click-element.js +22 -0
package/dist/browser-tools/click-element.js.map +1 -0
package/dist/browser-tools/close-tab.d.ts +9 -0
package/dist/browser-tools/close-tab.d.ts.map +1 -0
package/dist/browser-tools/close-tab.js +16 -0
package/dist/browser-tools/close-tab.js.map +1 -0
package/dist/browser-tools/definition.d.ts +26 -0
package/dist/browser-tools/definition.d.ts.map +1 -0
package/dist/browser-tools/definition.js +16 -0
package/dist/browser-tools/definition.js.map +1 -0
package/dist/browser-tools/delete-cookies.d.ts +10 -0
package/dist/browser-tools/delete-cookies.d.ts.map +1 -0
package/dist/browser-tools/delete-cookies.js +19 -0
package/dist/browser-tools/delete-cookies.js.map +1 -0
package/dist/browser-tools/disable-network-capture.d.ts +9 -0
package/dist/browser-tools/disable-network-capture.d.ts.map +1 -0
package/dist/browser-tools/disable-network-capture.js +16 -0
package/dist/browser-tools/disable-network-capture.js.map +1 -0
package/dist/browser-tools/enable-network-capture.d.ts +12 -0
package/dist/browser-tools/enable-network-capture.d.ts.map +1 -0
package/dist/browser-tools/enable-network-capture.js +42 -0
package/dist/browser-tools/enable-network-capture.js.map +1 -0
package/dist/browser-tools/execute-script.d.ts +19 -0
package/dist/browser-tools/execute-script.d.ts.map +1 -0
package/dist/browser-tools/execute-script.js +51 -0
package/dist/browser-tools/execute-script.js.map +1 -0
package/dist/browser-tools/extension-check-adapter.d.ts +11 -0
package/dist/browser-tools/extension-check-adapter.d.ts.map +1 -0
package/dist/browser-tools/extension-check-adapter.js +22 -0
package/dist/browser-tools/extension-check-adapter.js.map +1 -0
package/dist/browser-tools/extension-force-reconnect.d.ts +9 -0
package/dist/browser-tools/extension-force-reconnect.d.ts.map +1 -0
package/dist/browser-tools/extension-force-reconnect.js +19 -0
package/dist/browser-tools/extension-force-reconnect.js.map +1 -0
package/dist/browser-tools/extension-get-logs.d.ts +24 -0
package/dist/browser-tools/extension-get-logs.d.ts.map +1 -0
package/dist/browser-tools/extension-get-logs.js +34 -0
package/dist/browser-tools/extension-get-logs.js.map +1 -0
package/dist/browser-tools/extension-get-side-panel.d.ts +8 -0
package/dist/browser-tools/extension-get-side-panel.d.ts.map +1 -0
package/dist/browser-tools/extension-get-side-panel.js +17 -0
package/dist/browser-tools/extension-get-side-panel.js.map +1 -0
package/dist/browser-tools/extension-get-state.d.ts +9 -0
package/dist/browser-tools/extension-get-state.d.ts.map +1 -0
package/dist/browser-tools/extension-get-state.js +19 -0
package/dist/browser-tools/extension-get-state.js.map +1 -0
package/dist/browser-tools/focus-tab.d.ts +9 -0
package/dist/browser-tools/focus-tab.d.ts.map +1 -0
package/dist/browser-tools/focus-tab.js +17 -0
package/dist/browser-tools/focus-tab.js.map +1 -0
package/dist/browser-tools/get-console-logs.d.ts +18 -0
package/dist/browser-tools/get-console-logs.d.ts.map +1 -0
package/dist/browser-tools/get-console-logs.js +30 -0
package/dist/browser-tools/get-console-logs.js.map +1 -0
package/dist/browser-tools/get-cookies.d.ts +10 -0
package/dist/browser-tools/get-cookies.d.ts.map +1 -0
package/dist/browser-tools/get-cookies.js +23 -0
package/dist/browser-tools/get-cookies.js.map +1 -0
package/dist/browser-tools/get-network-requests.d.ts +10 -0
package/dist/browser-tools/get-network-requests.d.ts.map +1 -0
package/dist/browser-tools/get-network-requests.js +27 -0
package/dist/browser-tools/get-network-requests.js.map +1 -0
package/dist/browser-tools/get-page-html.d.ts +11 -0
package/dist/browser-tools/get-page-html.d.ts.map +1 -0
package/dist/browser-tools/get-page-html.js +32 -0
package/dist/browser-tools/get-page-html.js.map +1 -0
package/dist/browser-tools/get-resource-content.d.ts +11 -0
package/dist/browser-tools/get-resource-content.d.ts.map +1 -0
package/dist/browser-tools/get-resource-content.js +31 -0
package/dist/browser-tools/get-resource-content.js.map +1 -0
package/dist/browser-tools/get-storage.d.ts +14 -0
package/dist/browser-tools/get-storage.d.ts.map +1 -0
package/dist/browser-tools/get-storage.js +28 -0
package/dist/browser-tools/get-storage.js.map +1 -0
package/dist/browser-tools/get-tab-content.d.ts +11 -0
package/dist/browser-tools/get-tab-content.d.ts.map +1 -0
package/dist/browser-tools/get-tab-content.js +29 -0
package/dist/browser-tools/get-tab-content.js.map +1 -0
package/dist/browser-tools/get-tab-info.d.ts +9 -0
package/dist/browser-tools/get-tab-info.d.ts.map +1 -0
package/dist/browser-tools/get-tab-info.js +17 -0
package/dist/browser-tools/get-tab-info.js.map +1 -0
package/dist/browser-tools/handle-dialog.d.ts +14 -0
package/dist/browser-tools/handle-dialog.d.ts.map +1 -0
package/dist/browser-tools/handle-dialog.js +30 -0
package/dist/browser-tools/handle-dialog.js.map +1 -0
package/dist/browser-tools/hover-element.d.ts +11 -0
package/dist/browser-tools/hover-element.d.ts.map +1 -0
package/dist/browser-tools/hover-element.js +24 -0
package/dist/browser-tools/hover-element.js.map +1 -0
package/dist/browser-tools/index.d.ts +7 -0
package/dist/browser-tools/index.d.ts.map +1 -0
package/dist/browser-tools/index.js +81 -0
package/dist/browser-tools/index.js.map +1 -0
package/dist/browser-tools/list-resources.d.ts +10 -0
package/dist/browser-tools/list-resources.d.ts.map +1 -0
package/dist/browser-tools/list-resources.js +29 -0
package/dist/browser-tools/list-resources.js.map +1 -0
package/dist/browser-tools/list-tabs.d.ts +7 -0
package/dist/browser-tools/list-tabs.d.ts.map +1 -0
package/dist/browser-tools/list-tabs.js +16 -0
package/dist/browser-tools/list-tabs.js.map +1 -0
package/dist/browser-tools/navigate-tab.d.ts +10 -0
package/dist/browser-tools/navigate-tab.d.ts.map +1 -0
package/dist/browser-tools/navigate-tab.js +18 -0
package/dist/browser-tools/navigate-tab.js.map +1 -0
package/dist/browser-tools/open-tab.d.ts +9 -0
package/dist/browser-tools/open-tab.d.ts.map +1 -0
package/dist/browser-tools/open-tab.js +18 -0
package/dist/browser-tools/open-tab.js.map +1 -0
package/dist/browser-tools/press-key.d.ts +17 -0
package/dist/browser-tools/press-key.d.ts.map +1 -0
package/dist/browser-tools/press-key.js +43 -0
package/dist/browser-tools/press-key.js.map +1 -0
package/dist/browser-tools/query-elements.d.ts +12 -0
package/dist/browser-tools/query-elements.d.ts.map +1 -0
package/dist/browser-tools/query-elements.js +30 -0
package/dist/browser-tools/query-elements.js.map +1 -0
package/dist/browser-tools/reload-extension.d.ts +13 -0
package/dist/browser-tools/reload-extension.d.ts.map +1 -0
package/dist/browser-tools/reload-extension.js +35 -0
package/dist/browser-tools/reload-extension.js.map +1 -0
package/dist/browser-tools/screenshot-tab.d.ts +9 -0
package/dist/browser-tools/screenshot-tab.d.ts.map +1 -0
package/dist/browser-tools/screenshot-tab.js +22 -0
package/dist/browser-tools/screenshot-tab.js.map +1 -0
package/dist/browser-tools/scroll.d.ts +23 -0
package/dist/browser-tools/scroll.d.ts.map +1 -0
package/dist/browser-tools/scroll.js +56 -0
package/dist/browser-tools/scroll.js.map +1 -0
package/dist/browser-tools/select-option.d.ts +12 -0
package/dist/browser-tools/select-option.d.ts.map +1 -0
package/dist/browser-tools/select-option.js +25 -0
package/dist/browser-tools/select-option.js.map +1 -0
package/dist/browser-tools/set-cookie.d.ts +16 -0
package/dist/browser-tools/set-cookie.d.ts.map +1 -0
package/dist/browser-tools/set-cookie.js +42 -0
package/dist/browser-tools/set-cookie.js.map +1 -0
package/dist/browser-tools/type-text.d.ts +12 -0
package/dist/browser-tools/type-text.d.ts.map +1 -0
package/dist/browser-tools/type-text.js +25 -0
package/dist/browser-tools/type-text.js.map +1 -0
package/dist/browser-tools/url-validation.d.ts +13 -0
package/dist/browser-tools/url-validation.d.ts.map +1 -0
package/dist/browser-tools/url-validation.js +23 -0
package/dist/browser-tools/url-validation.js.map +1 -0
package/dist/browser-tools/wait-for-element.d.ts +12 -0
package/dist/browser-tools/wait-for-element.d.ts.map +1 -0
package/dist/browser-tools/wait-for-element.js +29 -0
package/dist/browser-tools/wait-for-element.js.map +1 -0
package/dist/config.d.ts +99 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +344 -0
package/dist/config.js.map +1 -0
package/dist/dev-mode.d.ts +14 -0
package/dist/dev-mode.d.ts.map +1 -0
package/dist/dev-mode.js +15 -0
package/dist/dev-mode.js.map +1 -0
package/dist/discovery-legacy.d.ts +32 -0
package/dist/discovery-legacy.d.ts.map +1 -0
package/dist/discovery-legacy.js +415 -0
package/dist/discovery-legacy.js.map +1 -0
package/dist/discovery.d.ts +28 -0
package/dist/discovery.d.ts.map +1 -0
package/dist/discovery.js +97 -0
package/dist/discovery.js.map +1 -0
package/dist/extension-install.d.ts +27 -0
package/dist/extension-install.d.ts.map +1 -0
package/dist/extension-install.js +75 -0
package/dist/extension-install.js.map +1 -0
package/dist/extension-protocol.d.ts +130 -0
package/dist/extension-protocol.d.ts.map +1 -0
package/dist/extension-protocol.js +869 -0
package/dist/extension-protocol.js.map +1 -0
package/dist/file-watcher.d.ts +75 -0
package/dist/file-watcher.d.ts.map +1 -0
package/dist/file-watcher.js +616 -0
package/dist/file-watcher.js.map +1 -0
package/dist/http-routes.d.ts +88 -0
package/dist/http-routes.d.ts.map +1 -0
package/dist/http-routes.js +545 -0
package/dist/http-routes.js.map +1 -0
package/dist/index.d.ts +45 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +187 -0
package/dist/index.js.map +1 -0
package/dist/loader.d.ts +100 -0
package/dist/loader.d.ts.map +1 -0
package/dist/loader.js +402 -0
package/dist/loader.js.map +1 -0
package/dist/log-buffer.d.ts +33 -0
package/dist/log-buffer.d.ts.map +1 -0
package/dist/log-buffer.js +64 -0
package/dist/log-buffer.js.map +1 -0
package/dist/logger.d.ts +34 -0
package/dist/logger.d.ts.map +1 -0
package/dist/logger.js +81 -0
package/dist/logger.js.map +1 -0
package/dist/manifest-schema.d.ts +14 -0
package/dist/manifest-schema.d.ts.map +1 -0
package/dist/manifest-schema.js +51 -0
package/dist/manifest-schema.js.map +1 -0
package/dist/mcp-setup.d.ts +131 -0
package/dist/mcp-setup.d.ts.map +1 -0
package/dist/mcp-setup.js +673 -0
package/dist/mcp-setup.js.map +1 -0
package/dist/permissions.d.ts +59 -0
package/dist/permissions.d.ts.map +1 -0
package/dist/permissions.js +141 -0
package/dist/permissions.js.map +1 -0
package/dist/registry.d.ts +78 -0
package/dist/registry.d.ts.map +1 -0
package/dist/registry.js +187 -0
package/dist/registry.js.map +1 -0
package/dist/reload.d.ts +52 -0
package/dist/reload.d.ts.map +1 -0
package/dist/reload.js +326 -0
package/dist/reload.js.map +1 -0
package/dist/resolver.d.ts +53 -0
package/dist/resolver.d.ts.map +1 -0
package/dist/resolver.js +272 -0
package/dist/resolver.js.map +1 -0
package/dist/sanitize-error.d.ts +8 -0
package/dist/sanitize-error.d.ts.map +1 -0
package/dist/sanitize-error.js +25 -0
package/dist/sanitize-error.js.map +1 -0
package/dist/sanitize-tool-output.d.ts +20 -0
package/dist/sanitize-tool-output.d.ts.map +1 -0
package/dist/sanitize-tool-output.js +52 -0
package/dist/sanitize-tool-output.js.map +1 -0
package/dist/sdk-version.d.ts +11 -0
package/dist/sdk-version.d.ts.map +1 -0
package/dist/sdk-version.js +23 -0
package/dist/sdk-version.js.map +1 -0
package/dist/shutdown.d.ts +28 -0
package/dist/shutdown.d.ts.map +1 -0
package/dist/shutdown.js +68 -0
package/dist/shutdown.js.map +1 -0
package/dist/skip-confirmation.d.ts +15 -0
package/dist/skip-confirmation.d.ts.map +1 -0
package/dist/skip-confirmation.js +16 -0
package/dist/skip-confirmation.js.map +1 -0
package/dist/skip-sanitization.d.ts +17 -0
package/dist/skip-sanitization.d.ts.map +1 -0
package/dist/skip-sanitization.js +18 -0
package/dist/skip-sanitization.js.map +1 -0
package/dist/skip-verification.d.ts +11 -0
package/dist/skip-verification.d.ts.map +1 -0
package/dist/skip-verification.js +12 -0
package/dist/skip-verification.js.map +1 -0
package/dist/state.d.ts +290 -0
package/dist/state.d.ts.map +1 -0
package/dist/state.js +111 -0
package/dist/state.js.map +1 -0
package/dist/verify-plugin.d.ts +53 -0
package/dist/verify-plugin.d.ts.map +1 -0
package/dist/verify-plugin.js +123 -0
package/dist/verify-plugin.js.map +1 -0
package/dist/version-check.d.ts +35 -0
package/dist/version-check.d.ts.map +1 -0
package/dist/version-check.js +111 -0
package/dist/version-check.js.map +1 -0
package/dist/version.d.ts +10 -0
package/dist/version.d.ts.map +1 -0
package/dist/version.js +22 -0
package/dist/version.js.map +1 -0
package/package.json +28 -0

package/dist/browser-tools/analyze-site/detect-auth.js ADDED Viewed

@@ -0,0 +1,384 @@
+/**
+ * Authentication detection module for the site analyzer.
+ *
+ * Pure analysis function: takes captured network requests and page execution
+ * results, returns structured auth analysis. Does not call browser tools
+ * directly — the orchestrator (analyze-site/index.ts) collects data and
+ * passes it here.
+ */
+// ---------------------------------------------------------------------------
+// Known session cookie patterns
+// ---------------------------------------------------------------------------
+const SESSION_COOKIE_PATTERNS = [
+    /^d$/,
+    /^_session_id$/i,
+    /^connect\.sid$/i,
+    /^JSESSIONID$/,
+    /^__Secure-/,
+    /^__Host-/,
+    /^sid$/i,
+    /^session$/i,
+    /^token$/i,
+    /^s$/,
+    /^sess$/i,
+    /^sessionid$/i,
+    /^session[_-]?token$/i,
+    /^auth[_-]?token$/i,
+    /^_csrf$/i,
+];
+// ---------------------------------------------------------------------------
+// JWT detection
+// ---------------------------------------------------------------------------
+const BASE64URL_SEGMENT = /^[A-Za-z0-9_-]+=*$/;
+/** Returns true if the string looks like a JWT (three dot-separated base64url segments). */
+const looksLikeJwt = (value) => {
+    const parts = value.split('.');
+    if (parts.length !== 3)
+        return false;
+    return parts.every(p => p.length > 0 && BASE64URL_SEGMENT.test(p));
+};
+// ---------------------------------------------------------------------------
+// Auth-related key pattern (used for globals and storage)
+// ---------------------------------------------------------------------------
+const AUTH_KEY_PATTERN = /user|session|token|auth|account|profile|login|credential/i;
+// ---------------------------------------------------------------------------
+// API key header names (case-insensitive matching)
+// ---------------------------------------------------------------------------
+const API_KEY_HEADERS = new Set(['x-api-key', 'api-key', 'apikey']);
+// ---------------------------------------------------------------------------
+// Detection functions
+// ---------------------------------------------------------------------------
+const detectCookieSessions = (cookies) => {
+    const methods = [];
+    for (const cookie of cookies) {
+        if (SESSION_COOKIE_PATTERNS.some(p => p.test(cookie.name))) {
+            methods.push({
+                type: 'cookie-session',
+                details: `Session cookie "${cookie.name}" found`,
+                extractionHint: `document.cookie.match(/${cookie.name}=([^;]+)/)?.[1]`,
+            });
+        }
+    }
+    return methods;
+};
+const detectJwtInStorage = (entries, storageType) => {
+    const methods = [];
+    const type = storageType === 'local' ? 'jwt-localstorage' : 'jwt-sessionstorage';
+    const apiName = storageType === 'local' ? 'localStorage' : 'sessionStorage';
+    for (const entry of entries) {
+        if (looksLikeJwt(entry.value)) {
+            methods.push({
+                type,
+                details: `JWT found in ${apiName} key "${entry.key}"`,
+                extractionHint: `${apiName}.getItem('${entry.key}')`,
+            });
+        }
+    }
+    return methods;
+};
+/**
+ * Detects Authorization: Bearer headers in captured network requests.
+ *
+ * The network capture preserves the auth scheme prefix while redacting
+ * the credential (e.g., "Bearer [REDACTED]"), enabling reliable scheme
+ * detection. Falls back to cross-referencing with JWT in storage if
+ * the header is fully redacted (legacy "[REDACTED]" format).
+ */
+const detectBearerHeaders = (requests, hasJwtInStorage) => {
+    const requestsWithAuth = requests.filter(r => r.requestHeaders && hasHeader(r.requestHeaders, 'authorization'));
+    if (requestsWithAuth.length === 0)
+        return [];
+    // Check if any Authorization header starts with "Bearer"
+    const hasBearerPrefix = requestsWithAuth.some(r => {
+        if (!r.requestHeaders)
+            return false;
+        const val = getHeaderValue(r.requestHeaders, 'authorization');
+        return val !== undefined && val.startsWith('Bearer ');
+    });
+    // Check if any Authorization header starts with "Basic"
+    const hasBasicPrefix = requestsWithAuth.some(r => {
+        if (!r.requestHeaders)
+            return false;
+        const val = getHeaderValue(r.requestHeaders, 'authorization');
+        return val !== undefined && val.startsWith('Basic ');
+    });
+    // If all auth headers are Basic (no Bearer), skip bearer detection
+    if (hasBasicPrefix && !hasBearerPrefix && !hasJwtInStorage)
+        return [];
+    // Classify as bearer-header if: explicit Bearer prefix, JWT in storage,
+    // or fully-redacted header with no Basic prefix (default assumption)
+    const firstWithAuth = requestsWithAuth[0];
+    const hasFullyRedacted = requestsWithAuth.some(r => {
+        const val = r.requestHeaders ? getHeaderValue(r.requestHeaders, 'authorization') : undefined;
+        return val === '[REDACTED]';
+    });
+    if (firstWithAuth && (hasBearerPrefix || hasJwtInStorage || (hasFullyRedacted && !hasBasicPrefix))) {
+        const sampleUrl = firstWithAuth.url;
+        return [
+            {
+                type: 'bearer-header',
+                details: `Authorization header detected on ${requestsWithAuth.length} request(s), e.g., ${truncateUrl(sampleUrl)}`,
+                extractionHint: hasJwtInStorage
+                    ? '// Token likely from storage — see jwt-localstorage or jwt-sessionstorage entries above'
+                    : '// Intercept fetch to capture the token:\n// const origFetch = window.fetch;\n// window.fetch = (...args) => { console.log(args); return origFetch(...args); }',
+            },
+        ];
+    }
+    return [];
+};
+/** Detects API key headers (X-API-Key, Api-Key, apikey) in network requests. */
+const detectApiKeyHeaders = (requests) => {
+    const methods = [];
+    const seen = new Set();
+    for (const req of requests) {
+        if (!req.requestHeaders)
+            continue;
+        for (const [key] of Object.entries(req.requestHeaders)) {
+            const lower = key.toLowerCase();
+            if (API_KEY_HEADERS.has(lower) && !seen.has(lower)) {
+                seen.add(lower);
+                methods.push({
+                    type: 'api-key-header',
+                    details: `API key header "${key}" found in requests to ${truncateUrl(req.url)}`,
+                    extractionHint: `// Intercept fetch to capture the ${key} header value:\n// const origFetch = window.fetch;\n// window.fetch = (...args) => { console.log(args); return origFetch(...args); }`,
+                });
+            }
+        }
+    }
+    return methods;
+};
+/** Detects CSRF tokens from DOM elements and network headers. */
+const detectCsrfTokens = (csrfDomTokens, requests) => {
+    const methods = [];
+    // DOM-based CSRF tokens (meta tags and hidden inputs)
+    for (const token of csrfDomTokens) {
+        const source = token.source === 'meta' ? `meta tag name="${token.name}"` : `hidden input name="${token.name}"`;
+        const extractionHint = token.source === 'meta'
+            ? `document.querySelector('meta[name="${token.name}"]')?.getAttribute('content')`
+            : `document.querySelector('input[name="${token.name}"]')?.value`;
+        methods.push({
+            type: 'csrf-token',
+            details: `CSRF token found in ${source}`,
+            extractionHint,
+        });
+    }
+    // CSRF headers in network requests (X-CSRF-Token, X-XSRF-Token)
+    const csrfHeaderNames = new Set();
+    for (const req of requests) {
+        if (!req.requestHeaders)
+            continue;
+        for (const key of Object.keys(req.requestHeaders)) {
+            const lower = key.toLowerCase();
+            if ((lower === 'x-csrf-token' || lower === 'x-xsrf-token') && !csrfHeaderNames.has(lower)) {
+                csrfHeaderNames.add(lower);
+                methods.push({
+                    type: 'csrf-token',
+                    details: `CSRF header "${key}" found in network requests`,
+                    extractionHint: `// The ${key} header value is typically sourced from a meta tag or cookie`,
+                });
+            }
+        }
+    }
+    return methods;
+};
+/**
+ * Detects Basic Auth (Authorization: Basic) headers in network requests.
+ * The header value is scrubbed to "Basic [REDACTED]", preserving the scheme prefix.
+ */
+const detectBasicAuth = (requests) => {
+    const requestsWithAuth = requests.filter(r => r.requestHeaders && hasHeader(r.requestHeaders, 'authorization'));
+    const hasBasicPrefix = requestsWithAuth.some(r => {
+        if (!r.requestHeaders)
+            return false;
+        const val = getHeaderValue(r.requestHeaders, 'authorization');
+        return val !== undefined && val.startsWith('Basic ');
+    });
+    if (!hasBasicPrefix)
+        return [];
+    const firstReq = requestsWithAuth[0];
+    if (!firstReq)
+        return [];
+    const sampleUrl = firstReq.url;
+    return [
+        {
+            type: 'basic-auth',
+            details: `Basic Auth header detected on request(s) to ${truncateUrl(sampleUrl)}`,
+            extractionHint: "// Basic Auth uses btoa('username:password')\n// Check if credentials are stored in a page global or prompted via browser dialog",
+        },
+    ];
+};
+/**
+ * Detects non-standard headers that appear on most requests and contain
+ * token-like values (long alphanumeric strings).
+ */
+const detectCustomAuthHeaders = (requests) => {
+    if (requests.length < 2)
+        return [];
+    // Count header occurrences across requests
+    const headerCounts = new Map();
+    const headerSampleValues = new Map();
+    const standardHeaders = new Set([
+        'accept',
+        'accept-encoding',
+        'accept-language',
+        'cache-control',
+        'connection',
+        'content-length',
+        'content-type',
+        'host',
+        'origin',
+        'pragma',
+        'referer',
+        'sec-ch-ua',
+        'sec-ch-ua-mobile',
+        'sec-ch-ua-platform',
+        'sec-fetch-dest',
+        'sec-fetch-mode',
+        'sec-fetch-site',
+        'user-agent',
+        'authorization',
+        'cookie',
+        'x-csrf-token',
+        'x-xsrf-token',
+        'x-api-key',
+        'api-key',
+        'apikey',
+    ]);
+    for (const req of requests) {
+        if (!req.requestHeaders)
+            continue;
+        for (const [key, value] of Object.entries(req.requestHeaders)) {
+            const lower = key.toLowerCase();
+            if (standardHeaders.has(lower))
+                continue;
+            if (value === '[REDACTED]')
+                continue;
+            headerCounts.set(lower, (headerCounts.get(lower) ?? 0) + 1);
+            if (!headerSampleValues.has(lower)) {
+                headerSampleValues.set(lower, value);
+            }
+        }
+    }
+    const methods = [];
+    const threshold = Math.max(2, Math.floor(requests.length * 0.5));
+    for (const [headerName, count] of headerCounts) {
+        if (count < threshold)
+            continue;
+        const sampleValue = headerSampleValues.get(headerName) ?? '';
+        // Token-like: at least 16 chars, mostly alphanumeric/base64
+        if (sampleValue.length >= 16 && /^[A-Za-z0-9+/=_-]+$/.test(sampleValue)) {
+            methods.push({
+                type: 'custom-auth-header',
+                details: `Custom header "${headerName}" appears on ${count}/${requests.length} requests with token-like values`,
+                extractionHint: `// Intercept fetch to capture the ${headerName} header:\n// const origFetch = window.fetch;\n// window.fetch = (...args) => { console.log(args); return origFetch(...args); }`,
+            });
+        }
+    }
+    return methods;
+};
+/** Detects auth data in well-known window globals (__NEXT_DATA__, __NUXT__, etc.). */
+const detectAuthInGlobals = (globals) => {
+    const methods = [];
+    const authGlobalPaths = ['__NEXT_DATA__', '__NUXT__', '__INITIAL_STATE__', '__APP_STATE__'];
+    for (const global of globals) {
+        const basePath = global.path.split('.')[0] ?? '';
+        if (!authGlobalPaths.includes(basePath))
+            continue;
+        if (typeof global.value !== 'object' || global.value === null)
+            continue;
+        const authKeys = findAuthKeys(global.value, global.path, 0);
+        if (authKeys.length > 0) {
+            methods.push({
+                type: 'auth-global',
+                details: `Auth-related data found in window.${global.path}: keys [${authKeys.join(', ')}]`,
+                extractionHint: authKeys.map(k => `window.${k}`).join('\n'),
+            });
+        }
+    }
+    return methods;
+};
+// ---------------------------------------------------------------------------
+// Helpers
+// ---------------------------------------------------------------------------
+/** Case-insensitive check for header presence. */
+const hasHeader = (headers, name) => {
+    const lower = name.toLowerCase();
+    return Object.keys(headers).some(k => k.toLowerCase() === lower);
+};
+/** Case-insensitive header value lookup. */
+const getHeaderValue = (headers, name) => {
+    const lower = name.toLowerCase();
+    for (const [k, v] of Object.entries(headers)) {
+        if (k.toLowerCase() === lower)
+            return v;
+    }
+    return undefined;
+};
+/** Truncate a URL for display in details strings. */
+const truncateUrl = (url) => {
+    try {
+        const parsed = new URL(url);
+        const path = parsed.pathname.length > 40 ? parsed.pathname.slice(0, 40) + '...' : parsed.pathname;
+        return `${parsed.origin}${path}`;
+    }
+    catch {
+        return url.length > 80 ? url.slice(0, 80) + '...' : url;
+    }
+};
+/**
+ * Recursively find keys that match auth-related patterns within an object.
+ * Limited to 2 levels of depth.
+ */
+const findAuthKeys = (obj, prefix, depth) => {
+    if (depth > 2)
+        return [];
+    const keys = [];
+    for (const [key, value] of Object.entries(obj)) {
+        const fullPath = `${prefix}.${key}`;
+        if (AUTH_KEY_PATTERN.test(key)) {
+            keys.push(fullPath);
+        }
+        if (depth < 2 && typeof value === 'object' && value !== null && !Array.isArray(value)) {
+            keys.push(...findAuthKeys(value, fullPath, depth + 1));
+        }
+    }
+    return keys;
+};
+// ---------------------------------------------------------------------------
+// Main export
+// ---------------------------------------------------------------------------
+/**
+ * Analyze collected page data and detect authentication methods.
+ *
+ * This is a pure function: takes data in, returns structured results.
+ * The orchestrator (US-005) collects the data via browser tools and
+ * passes it here.
+ */
+const detectAuth = (input) => {
+    const methods = [];
+    // 1. Cookie-based sessions
+    methods.push(...detectCookieSessions(input.cookies));
+    // 2. JWT in localStorage
+    methods.push(...detectJwtInStorage(input.localStorageEntries, 'local'));
+    // 3. JWT in sessionStorage
+    methods.push(...detectJwtInStorage(input.sessionStorageEntries, 'session'));
+    const hasJwtInStorage = methods.some(m => m.type === 'jwt-localstorage') || methods.some(m => m.type === 'jwt-sessionstorage');
+    // 4. Bearer headers (cross-referenced with JWT in storage)
+    methods.push(...detectBearerHeaders(input.networkRequests, hasJwtInStorage));
+    // 5. API key headers
+    methods.push(...detectApiKeyHeaders(input.networkRequests));
+    // 6. CSRF tokens (DOM + network headers)
+    methods.push(...detectCsrfTokens(input.csrfDomTokens, input.networkRequests));
+    // 7. Basic Auth
+    methods.push(...detectBasicAuth(input.networkRequests));
+    // 8. Custom auth headers
+    methods.push(...detectCustomAuthHeaders(input.networkRequests));
+    // 9. Auth data in window globals
+    methods.push(...detectAuthInGlobals(input.windowGlobals));
+    return {
+        authenticated: methods.length > 0,
+        methods,
+    };
+};
+export { detectAuth };
+//# sourceMappingURL=detect-auth.js.map

package/dist/browser-tools/analyze-site/detect-auth.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"detect-auth.js","sourceRoot":"","sources":["../../../src/browser-tools/analyze-site/detect-auth.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAiFH,8EAA8E;AAC9E,gCAAgC;AAChC,8EAA8E;AAE9E,MAAM,uBAAuB,GAAG;IAC9B,KAAK;IACL,gBAAgB;IAChB,iBAAiB;IACjB,cAAc;IACd,YAAY;IACZ,UAAU;IACV,QAAQ;IACR,YAAY;IACZ,UAAU;IACV,KAAK;IACL,SAAS;IACT,cAAc;IACd,sBAAsB;IACtB,mBAAmB;IACnB,UAAU;CACX,CAAC;AAEF,8EAA8E;AAC9E,gBAAgB;AAChB,8EAA8E;AAE9E,MAAM,iBAAiB,GAAG,oBAAoB,CAAC;AAE/C,4FAA4F;AAC5F,MAAM,YAAY,GAAG,CAAC,KAAa,EAAW,EAAE;IAC9C,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC/B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC;IACrC,OAAO,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,IAAI,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;AACrE,CAAC,CAAC;AAEF,8EAA8E;AAC9E,0DAA0D;AAC1D,8EAA8E;AAE9E,MAAM,gBAAgB,GAAG,2DAA2D,CAAC;AAErF,8EAA8E;AAC9E,mDAAmD;AACnD,8EAA8E;AAE9E,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAC;AAEpE,8EAA8E;AAC9E,sBAAsB;AACtB,8EAA8E;AAE9E,MAAM,oBAAoB,GAAG,CAAC,OAAsB,EAAgB,EAAE;IACpE,MAAM,OAAO,GAAiB,EAAE,CAAC;IACjC,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,IAAI,uBAAuB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC;YAC3D,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,mBAAmB,MAAM,CAAC,IAAI,SAAS;gBAChD,cAAc,EAAE,0BAA0B,MAAM,CAAC,IAAI,iBAAiB;aACvE,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC,CAAC;AAEF,MAAM,kBAAkB,GAAG,CAAC,OAAuB,EAAE,WAAgC,EAAgB,EAAE;IACrG,MAAM,OAAO,GAAiB,EAAE,CAAC;IACjC,MAAM,IAAI,GAAmB,WAAW,KAAK,OAAO,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,oBAAoB,CAAC;IACjG,MAAM,OAAO,GAAG,WAAW,KAAK,OAAO,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,gBAAgB,CAAC;IAE5E,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,IAAI,YAAY,CAAC,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI;gBACJ,OAAO,EAAE,gBAAgB,OAAO,SAAS,KAAK,CAAC,GAAG,GAAG;gBACrD,cAAc,EAAE,GAAG,OAAO,aAAa,KAAK,CAAC,GAAG,IAAI;aACrD,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,mBAAmB,GAAG,CAAC,QAA0B,EAAE,eAAwB,EAAgB,EAAE;IACjG,MAAM,gBAAgB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,cAAc,IAAI,SAAS,CAAC,CAAC,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC,CAAC;IAChH,IAAI,gBAAgB,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAE7C,yDAAyD;IACzD,MAAM,eAAe,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE;QAChD,IAAI,CAAC,CAAC,CAAC,cAAc;YAAE,OAAO,KAAK,CAAC;QACpC,MAAM,GAAG,GAAG,cAAc,CAAC,CAAC,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC;QAC9D,OAAO,GAAG,KAAK,SAAS,IAAI,GAAG,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IACxD,CAAC,CAAC,CAAC;IAEH,wDAAwD;IACxD,MAAM,cAAc,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE;QAC/C,IAAI,CAAC,CAAC,CAAC,cAAc;YAAE,OAAO,KAAK,CAAC;QACpC,MAAM,GAAG,GAAG,cAAc,CAAC,CAAC,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC;QAC9D,OAAO,GAAG,KAAK,SAAS,IAAI,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IACvD,CAAC,CAAC,CAAC;IAEH,mEAAmE;IACnE,IAAI,cAAc,IAAI,CAAC,eAAe,IAAI,CAAC,eAAe;QAAE,OAAO,EAAE,CAAC;IAEtE,wEAAwE;IACxE,qEAAqE;IACrE,MAAM,aAAa,GAAG,gBAAgB,CAAC,CAAC,CAAC,CAAC;IAC1C,MAAM,gBAAgB,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE;QACjD,MAAM,GAAG,GAAG,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAC7F,OAAO,GAAG,KAAK,YAAY,CAAC;IAC9B,CAAC,CAAC,CAAC;IAEH,IAAI,aAAa,IAAI,CAAC,eAAe,IAAI,eAAe,IAAI,CAAC,gBAAgB,IAAI,CAAC,cAAc,CAAC,CAAC,EAAE,CAAC;QACnG,MAAM,SAAS,GAAG,aAAa,CAAC,GAAG,CAAC;QACpC,OAAO;YACL;gBACE,IAAI,EAAE,eAAe;gBACrB,OAAO,EAAE,oCAAoC,gBAAgB,CAAC,MAAM,sBAAsB,WAAW,CAAC,SAAS,CAAC,EAAE;gBAClH,cAAc,EAAE,eAAe;oBAC7B,CAAC,CAAC,yFAAyF;oBAC3F,CAAC,CAAC,gKAAgK;aACrK;SACF,CAAC;IACJ,CAAC;IAED,OAAO,EAAE,CAAC;AACZ,CAAC,CAAC;AAEF,gFAAgF;AAChF,MAAM,mBAAmB,GAAG,CAAC,QAA0B,EAAgB,EAAE;IACvE,MAAM,OAAO,GAAiB,EAAE,CAAC;IACjC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAE/B,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;QAC3B,IAAI,CAAC,GAAG,CAAC,cAAc;YAAE,SAAS;QAClC,KAAK,MAAM,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,CAAC;YACvD,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;YAChC,IAAI,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;gBACnD,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;gBAChB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,gBAAgB;oBACtB,OAAO,EAAE,mBAAmB,GAAG,0BAA0B,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE;oBAC/E,cAAc,EAAE,qCAAqC,GAAG,sIAAsI;iBAC/L,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC,CAAC;AAEF,iEAAiE;AACjE,MAAM,gBAAgB,GAAG,CAAC,aAA6B,EAAE,QAA0B,EAAgB,EAAE;IACnG,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,sDAAsD;IACtD,KAAK,MAAM,KAAK,IAAI,aAAa,EAAE,CAAC;QAClC,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,CAAC,kBAAkB,KAAK,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,sBAAsB,KAAK,CAAC,IAAI,GAAG,CAAC;QAC/G,MAAM,cAAc,GAClB,KAAK,CAAC,MAAM,KAAK,MAAM;YACrB,CAAC,CAAC,sCAAsC,KAAK,CAAC,IAAI,+BAA+B;YACjF,CAAC,CAAC,uCAAuC,KAAK,CAAC,IAAI,aAAa,CAAC;QAErE,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,YAAY;YAClB,OAAO,EAAE,uBAAuB,MAAM,EAAE;YACxC,cAAc;SACf,CAAC,CAAC;IACL,CAAC;IAED,gEAAgE;IAChE,MAAM,eAAe,GAAG,IAAI,GAAG,EAAU,CAAC;IAC1C,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;QAC3B,IAAI,CAAC,GAAG,CAAC,cAAc;YAAE,SAAS;QAClC,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,CAAC;YAClD,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;YAChC,IAAI,CAAC,KAAK,KAAK,cAAc,IAAI,KAAK,KAAK,cAAc,CAAC,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC1F,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;gBAC3B,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,YAAY;oBAClB,OAAO,EAAE,gBAAgB,GAAG,6BAA6B;oBACzD,cAAc,EAAE,UAAU,GAAG,8DAA8D;iBAC5F,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC,CAAC;AAEF;;;GAGG;AACH,MAAM,eAAe,GAAG,CAAC,QAA0B,EAAgB,EAAE;IACnE,MAAM,gBAAgB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,cAAc,IAAI,SAAS,CAAC,CAAC,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC,CAAC;IAEhH,MAAM,cAAc,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE;QAC/C,IAAI,CAAC,CAAC,CAAC,cAAc;YAAE,OAAO,KAAK,CAAC;QACpC,MAAM,GAAG,GAAG,cAAc,CAAC,CAAC,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC;QAC9D,OAAO,GAAG,KAAK,SAAS,IAAI,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IACvD,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,cAAc;QAAE,OAAO,EAAE,CAAC;IAE/B,MAAM,QAAQ,GAAG,gBAAgB,CAAC,CAAC,CAAC,CAAC;IACrC,IAAI,CAAC,QAAQ;QAAE,OAAO,EAAE,CAAC;IACzB,MAAM,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC;IAC/B,OAAO;QACL;YACE,IAAI,EAAE,YAAY;YAClB,OAAO,EAAE,+CAA+C,WAAW,CAAC,SAAS,CAAC,EAAE;YAChF,cAAc,EACZ,kIAAkI;SACrI;KACF,CAAC;AACJ,CAAC,CAAC;AAEF;;;GAGG;AACH,MAAM,uBAAuB,GAAG,CAAC,QAA0B,EAAgB,EAAE;IAC3E,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,EAAE,CAAC;IAEnC,2CAA2C;IAC3C,MAAM,YAAY,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC/C,MAAM,kBAAkB,GAAG,IAAI,GAAG,EAAkB,CAAC;IACrD,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;QAC9B,QAAQ;QACR,iBAAiB;QACjB,iBAAiB;QACjB,eAAe;QACf,YAAY;QACZ,gBAAgB;QAChB,cAAc;QACd,MAAM;QACN,QAAQ;QACR,QAAQ;QACR,SAAS;QACT,WAAW;QACX,kBAAkB;QAClB,oBAAoB;QACpB,gBAAgB;QAChB,gBAAgB;QAChB,gBAAgB;QAChB,YAAY;QACZ,eAAe;QACf,QAAQ;QACR,cAAc;QACd,cAAc;QACd,WAAW;QACX,SAAS;QACT,QAAQ;KACT,CAAC,CAAC;IAEH,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;QAC3B,IAAI,CAAC,GAAG,CAAC,cAAc;YAAE,SAAS;QAClC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,CAAC;YAC9D,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;YAChC,IAAI,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC;gBAAE,SAAS;YACzC,IAAI,KAAK,KAAK,YAAY;gBAAE,SAAS;YAErC,YAAY,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;YAC5D,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;gBACnC,kBAAkB,CAAC,GAAG,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;YACvC,CAAC;QACH,CAAC;IACH,CAAC;IAED,MAAM,OAAO,GAAiB,EAAE,CAAC;IACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC;IAEjE,KAAK,MAAM,CAAC,UAAU,EAAE,KAAK,CAAC,IAAI,YAAY,EAAE,CAAC;QAC/C,IAAI,KAAK,GAAG,SAAS;YAAE,SAAS;QAChC,MAAM,WAAW,GAAG,kBAAkB,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;QAC7D,4DAA4D;QAC5D,IAAI,WAAW,CAAC,MAAM,IAAI,EAAE,IAAI,qBAAqB,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;YACxE,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,oBAAoB;gBAC1B,OAAO,EAAE,kBAAkB,UAAU,gBAAgB,KAAK,IAAI,QAAQ,CAAC,MAAM,kCAAkC;gBAC/G,cAAc,EAAE,qCAAqC,UAAU,gIAAgI;aAChM,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC,CAAC;AAEF,sFAAsF;AACtF,MAAM,mBAAmB,GAAG,CAAC,OAAsB,EAAgB,EAAE;IACnE,MAAM,OAAO,GAAiB,EAAE,CAAC;IACjC,MAAM,eAAe,GAAG,CAAC,eAAe,EAAE,UAAU,EAAE,mBAAmB,EAAE,eAAe,CAAC,CAAC;IAE5F,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACjD,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,QAAQ,CAAC;YAAE,SAAS;QAClD,IAAI,OAAO,MAAM,CAAC,KAAK,KAAK,QAAQ,IAAI,MAAM,CAAC,KAAK,KAAK,IAAI;YAAE,SAAS;QAExE,MAAM,QAAQ,GAAG,YAAY,CAAC,MAAM,CAAC,KAAgC,EAAE,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;QACvF,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,aAAa;gBACnB,OAAO,EAAE,qCAAqC,MAAM,CAAC,IAAI,WAAW,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG;gBAC1F,cAAc,EAAE,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;aAC5D,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC,CAAC;AAEF,8EAA8E;AAC9E,UAAU;AACV,8EAA8E;AAE9E,kDAAkD;AAClD,MAAM,SAAS,GAAG,CAAC,OAA+B,EAAE,IAAY,EAAW,EAAE;IAC3E,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IACjC,OAAO,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,CAAC;AACnE,CAAC,CAAC;AAEF,4CAA4C;AAC5C,MAAM,cAAc,GAAG,CAAC,OAA+B,EAAE,IAAY,EAAsB,EAAE;IAC3F,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IACjC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QAC7C,IAAI,CAAC,CAAC,WAAW,EAAE,KAAK,KAAK;YAAE,OAAO,CAAC,CAAC;IAC1C,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAEF,qDAAqD;AACrD,MAAM,WAAW,GAAG,CAAC,GAAW,EAAU,EAAE;IAC1C,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5B,MAAM,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC;QAClG,OAAO,GAAG,MAAM,CAAC,MAAM,GAAG,IAAI,EAAE,CAAC;IACnC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,GAAG,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC;IAC1D,CAAC;AACH,CAAC,CAAC;AAEF;;;GAGG;AACH,MAAM,YAAY,GAAG,CAAC,GAA4B,EAAE,MAAc,EAAE,KAAa,EAAY,EAAE;IAC7F,IAAI,KAAK,GAAG,CAAC;QAAE,OAAO,EAAE,CAAC;IACzB,MAAM,IAAI,GAAa,EAAE,CAAC;IAE1B,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAC/C,MAAM,QAAQ,GAAG,GAAG,MAAM,IAAI,GAAG,EAAE,CAAC;QACpC,IAAI,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAC/B,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACtB,CAAC;QACD,IAAI,KAAK,GAAG,CAAC,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACtF,IAAI,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,KAAgC,EAAE,QAAQ,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;QACpF,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;AAEF,8EAA8E;AAC9E,cAAc;AACd,8EAA8E;AAE9E;;;;;;GAMG;AACH,MAAM,UAAU,GAAG,CAAC,KAAyB,EAAgB,EAAE;IAC7D,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,2BAA2B;IAC3B,OAAO,CAAC,IAAI,CAAC,GAAG,oBAAoB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC;IAErD,yBAAyB;IACzB,OAAO,CAAC,IAAI,CAAC,GAAG,kBAAkB,CAAC,KAAK,CAAC,mBAAmB,EAAE,OAAO,CAAC,CAAC,CAAC;IAExE,2BAA2B;IAC3B,OAAO,CAAC,IAAI,CAAC,GAAG,kBAAkB,CAAC,KAAK,CAAC,qBAAqB,EAAE,SAAS,CAAC,CAAC,CAAC;IAE5E,MAAM,eAAe,GACnB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,kBAAkB,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,oBAAoB,CAAC,CAAC;IAEzG,2DAA2D;IAC3D,OAAO,CAAC,IAAI,CAAC,GAAG,mBAAmB,CAAC,KAAK,CAAC,eAAe,EAAE,eAAe,CAAC,CAAC,CAAC;IAE7E,qBAAqB;IACrB,OAAO,CAAC,IAAI,CAAC,GAAG,mBAAmB,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC;IAE5D,yCAAyC;IACzC,OAAO,CAAC,IAAI,CAAC,GAAG,gBAAgB,CAAC,KAAK,CAAC,aAAa,EAAE,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC;IAE9E,gBAAgB;IAChB,OAAO,CAAC,IAAI,CAAC,GAAG,eAAe,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC;IAExD,yBAAyB;IACzB,OAAO,CAAC,IAAI,CAAC,GAAG,uBAAuB,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC;IAEhE,iCAAiC;IACjC,OAAO,CAAC,IAAI,CAAC,GAAG,mBAAmB,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC;IAE1D,OAAO;QACL,aAAa,EAAE,OAAO,CAAC,MAAM,GAAG,CAAC;QACjC,OAAO;KACR,CAAC;AACJ,CAAC,CAAC;AAEF,OAAO,EAAE,UAAU,EAAE,CAAC"}

package/dist/browser-tools/analyze-site/detect-dom.d.ts ADDED Viewed

@@ -0,0 +1,65 @@
+/**
+ * DOM analysis module for the site analyzer.
+ *
+ * Pure analysis function: takes pre-collected DOM data from page scripts
+ * and returns structured information about forms, interactive elements,
+ * and data attributes. Does not call browser tools directly — the
+ * orchestrator collects data and passes it here.
+ */
+/** A form field collected from a <form> element. */
+interface FormField {
+    name: string;
+    type: string;
+}
+/** A form collected from the page via querySelectorAll('form'). */
+interface FormInput {
+    action: string;
+    method: string;
+    fields: FormField[];
+}
+/** An interactive element collected from the page. */
+interface InteractiveElementInput {
+    tag: string;
+    type: string | undefined;
+    name: string | undefined;
+    id: string | undefined;
+    text: string | undefined;
+}
+/** Data collected by the orchestrator and passed to detectDom. */
+interface DomDetectionInput {
+    forms: FormInput[];
+    interactiveElements: InteractiveElementInput[];
+    dataAttributes: string[];
+}
+/** An analyzed form element with its action URL, HTTP method, and fields. */
+interface FormAnalysis {
+    action: string;
+    method: string;
+    fields: FormField[];
+}
+/** An interactive DOM element (button, input, link, etc.) with identifying attributes. */
+interface InteractiveElement {
+    tag: string;
+    type: string | undefined;
+    name: string | undefined;
+    id: string | undefined;
+    text: string | undefined;
+}
+/** Result of DOM analysis: forms, interactive elements, and data-attribute patterns found on the page. */
+interface DomAnalysis {
+    forms: FormAnalysis[];
+    interactiveElements: InteractiveElement[];
+    dataAttributes: string[];
+}
+/**
+ * Analyze collected DOM data and return structured results.
+ *
+ * This is a pure function: takes data in, returns structured results.
+ * The heavy lifting (querying the DOM for forms, interactive elements,
+ * and data attributes) happens in page scripts run by the orchestrator.
+ * This module shapes and limits the results.
+ */
+declare const detectDom: (input: DomDetectionInput) => DomAnalysis;
+export { detectDom };
+export type { DomDetectionInput, DomAnalysis, FormInput, FormField, FormAnalysis, InteractiveElementInput, InteractiveElement, };
+//# sourceMappingURL=detect-dom.d.ts.map

package/dist/browser-tools/analyze-site/detect-dom.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"detect-dom.d.ts","sourceRoot":"","sources":["../../../src/browser-tools/analyze-site/detect-dom.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAMH,oDAAoD;AACpD,UAAU,SAAS;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;CACd;AAED,mEAAmE;AACnE,UAAU,SAAS;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,SAAS,EAAE,CAAC;CACrB;AAED,sDAAsD;AACtD,UAAU,uBAAuB;IAC/B,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;IACzB,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;IACzB,EAAE,EAAE,MAAM,GAAG,SAAS,CAAC;IACvB,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;CAC1B;AAED,kEAAkE;AAClE,UAAU,iBAAiB;IACzB,KAAK,EAAE,SAAS,EAAE,CAAC;IACnB,mBAAmB,EAAE,uBAAuB,EAAE,CAAC;IAC/C,cAAc,EAAE,MAAM,EAAE,CAAC;CAC1B;AAMD,6EAA6E;AAC7E,UAAU,YAAY;IACpB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,SAAS,EAAE,CAAC;CACrB;AAED,0FAA0F;AAC1F,UAAU,kBAAkB;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;IACzB,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;IACzB,EAAE,EAAE,MAAM,GAAG,SAAS,CAAC;IACvB,IAAI,EAAE,MAAM,GAAG,SAAS,CAAC;CAC1B;AAED,0GAA0G;AAC1G,UAAU,WAAW;IACnB,KAAK,EAAE,YAAY,EAAE,CAAC;IACtB,mBAAmB,EAAE,kBAAkB,EAAE,CAAC;IAC1C,cAAc,EAAE,MAAM,EAAE,CAAC;CAC1B;AAaD;;;;;;;GAOG;AACH,QAAA,MAAM,SAAS,GAAI,OAAO,iBAAiB,KAAG,WAqB7C,CAAC;AAEF,OAAO,EAAE,SAAS,EAAE,CAAC;AACrB,YAAY,EACV,iBAAiB,EACjB,WAAW,EACX,SAAS,EACT,SAAS,EACT,YAAY,EACZ,uBAAuB,EACvB,kBAAkB,GACnB,CAAC"}

package/dist/browser-tools/analyze-site/detect-dom.js ADDED Viewed

@@ -0,0 +1,45 @@
+/**
+ * DOM analysis module for the site analyzer.
+ *
+ * Pure analysis function: takes pre-collected DOM data from page scripts
+ * and returns structured information about forms, interactive elements,
+ * and data attributes. Does not call browser tools directly — the
+ * orchestrator collects data and passes it here.
+ */
+// ---------------------------------------------------------------------------
+// Constants
+// ---------------------------------------------------------------------------
+/** Maximum number of interactive elements to include in the output. */
+const MAX_INTERACTIVE_ELEMENTS = 50;
+// ---------------------------------------------------------------------------
+// Detection logic
+// ---------------------------------------------------------------------------
+/**
+ * Analyze collected DOM data and return structured results.
+ *
+ * This is a pure function: takes data in, returns structured results.
+ * The heavy lifting (querying the DOM for forms, interactive elements,
+ * and data attributes) happens in page scripts run by the orchestrator.
+ * This module shapes and limits the results.
+ */
+const detectDom = (input) => {
+    const forms = input.forms.map(form => ({
+        action: form.action,
+        method: form.method,
+        fields: form.fields,
+    }));
+    const interactiveElements = input.interactiveElements
+        .slice(0, MAX_INTERACTIVE_ELEMENTS)
+        .map(el => ({
+        tag: el.tag,
+        type: el.type,
+        name: el.name,
+        id: el.id,
+        text: el.text,
+    }));
+    // Deduplicate and sort data attribute names
+    const dataAttributes = [...new Set(input.dataAttributes)].sort();
+    return { forms, interactiveElements, dataAttributes };
+};
+export { detectDom };
+//# sourceMappingURL=detect-dom.js.map

package/dist/browser-tools/analyze-site/detect-dom.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"detect-dom.js","sourceRoot":"","sources":["../../../src/browser-tools/analyze-site/detect-dom.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AA8DH,8EAA8E;AAC9E,YAAY;AACZ,8EAA8E;AAE9E,uEAAuE;AACvE,MAAM,wBAAwB,GAAG,EAAE,CAAC;AAEpC,8EAA8E;AAC9E,kBAAkB;AAClB,8EAA8E;AAE9E;;;;;;;GAOG;AACH,MAAM,SAAS,GAAG,CAAC,KAAwB,EAAe,EAAE;IAC1D,MAAM,KAAK,GAAmB,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACrD,MAAM,EAAE,IAAI,CAAC,MAAM;QACnB,MAAM,EAAE,IAAI,CAAC,MAAM;QACnB,MAAM,EAAE,IAAI,CAAC,MAAM;KACpB,CAAC,CAAC,CAAC;IAEJ,MAAM,mBAAmB,GAAyB,KAAK,CAAC,mBAAmB;SACxE,KAAK,CAAC,CAAC,EAAE,wBAAwB,CAAC;SAClC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QACV,GAAG,EAAE,EAAE,CAAC,GAAG;QACX,IAAI,EAAE,EAAE,CAAC,IAAI;QACb,IAAI,EAAE,EAAE,CAAC,IAAI;QACb,EAAE,EAAE,EAAE,CAAC,EAAE;QACT,IAAI,EAAE,EAAE,CAAC,IAAI;KACd,CAAC,CAAC,CAAC;IAEN,4CAA4C;IAC5C,MAAM,cAAc,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAEjE,OAAO,EAAE,KAAK,EAAE,mBAAmB,EAAE,cAAc,EAAE,CAAC;AACxD,CAAC,CAAC;AAEF,OAAO,EAAE,SAAS,EAAE,CAAC"}

package/dist/browser-tools/analyze-site/detect-framework.d.ts ADDED Viewed

@@ -0,0 +1,48 @@
+/**
+ * Framework and rendering detection module for the site analyzer.
+ *
+ * Pure analysis function: takes the result of executing detection scripts
+ * in the page context and returns structured framework information.
+ * Does not call browser tools directly — the orchestrator collects data
+ * and passes it here.
+ */
+/** A detected framework from page-context probing. */
+interface FrameworkProbe {
+    name: string;
+    version: string | undefined;
+}
+/** Data collected by the orchestrator and passed to detectFramework. */
+interface FrameworkDetectionInput {
+    /** Frameworks found by probing globals and DOM markers. */
+    frameworkProbes: FrameworkProbe[];
+    /** Whether the page has a single root element (e.g., div#root, div#app, div#__next). */
+    hasSingleRootElement: boolean;
+    /** Whether the page has evidence of pushState/replaceState routing. */
+    usesPushState: boolean;
+    /** Whether window.__NEXT_DATA__ exists. */
+    hasNextData: boolean;
+    /** Whether window.__NUXT__ exists. */
+    hasNuxtData: boolean;
+    /** Whether the page contains hydration markers (e.g., data-reactroot, data-server-rendered). */
+    hasHydrationMarkers: boolean;
+}
+/** A detected frontend framework with its name and optional version. */
+interface FrameworkInfo {
+    name: string;
+    version: string | undefined;
+}
+/** Result of framework detection: identified frameworks plus SPA and SSR classification. */
+interface FrameworkAnalysis {
+    frameworks: FrameworkInfo[];
+    isSPA: boolean;
+    isSSR: boolean;
+}
+/**
+ * Analyze collected framework probe data and determine SPA/SSR status.
+ *
+ * This is a pure function: takes data in, returns structured results.
+ */
+declare const detectFramework: (input: FrameworkDetectionInput) => FrameworkAnalysis;
+export { detectFramework };
+export type { FrameworkDetectionInput, FrameworkProbe, FrameworkAnalysis, FrameworkInfo };
+//# sourceMappingURL=detect-framework.d.ts.map

package/dist/browser-tools/analyze-site/detect-framework.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"detect-framework.d.ts","sourceRoot":"","sources":["../../../src/browser-tools/analyze-site/detect-framework.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAMH,sDAAsD;AACtD,UAAU,cAAc;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,GAAG,SAAS,CAAC;CAC7B;AAED,wEAAwE;AACxE,UAAU,uBAAuB;IAC/B,2DAA2D;IAC3D,eAAe,EAAE,cAAc,EAAE,CAAC;IAClC,wFAAwF;IACxF,oBAAoB,EAAE,OAAO,CAAC;IAC9B,uEAAuE;IACvE,aAAa,EAAE,OAAO,CAAC;IACvB,2CAA2C;IAC3C,WAAW,EAAE,OAAO,CAAC;IACrB,sCAAsC;IACtC,WAAW,EAAE,OAAO,CAAC;IACrB,gGAAgG;IAChG,mBAAmB,EAAE,OAAO,CAAC;CAC9B;AAMD,wEAAwE;AACxE,UAAU,aAAa;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,GAAG,SAAS,CAAC;CAC7B;AAED,4FAA4F;AAC5F,UAAU,iBAAiB;IACzB,UAAU,EAAE,aAAa,EAAE,CAAC;IAC5B,KAAK,EAAE,OAAO,CAAC;IACf,KAAK,EAAE,OAAO,CAAC;CAChB;AAMD;;;;GAIG;AACH,QAAA,MAAM,eAAe,GAAI,OAAO,uBAAuB,KAAG,iBAezD,CAAC;AAEF,OAAO,EAAE,eAAe,EAAE,CAAC;AAC3B,YAAY,EAAE,uBAAuB,EAAE,cAAc,EAAE,iBAAiB,EAAE,aAAa,EAAE,CAAC"}

package/dist/browser-tools/analyze-site/detect-framework.js ADDED Viewed

@@ -0,0 +1,31 @@
+/**
+ * Framework and rendering detection module for the site analyzer.
+ *
+ * Pure analysis function: takes the result of executing detection scripts
+ * in the page context and returns structured framework information.
+ * Does not call browser tools directly — the orchestrator collects data
+ * and passes it here.
+ */
+// ---------------------------------------------------------------------------
+// Detection logic
+// ---------------------------------------------------------------------------
+/**
+ * Analyze collected framework probe data and determine SPA/SSR status.
+ *
+ * This is a pure function: takes data in, returns structured results.
+ */
+const detectFramework = (input) => {
+    const frameworks = input.frameworkProbes.map(probe => ({
+        name: probe.name,
+        version: probe.version,
+    }));
+    // SPA detection: single root element + pushState routing, or known SPA frameworks
+    const knownSpaFrameworks = new Set(['react', 'vue', 'angular', 'svelte', 'nextjs', 'nuxt', 'ember']);
+    const hasKnownSpa = frameworks.some(f => knownSpaFrameworks.has(f.name));
+    const isSPA = (input.hasSingleRootElement && input.usesPushState) || hasKnownSpa;
+    // SSR detection: __NEXT_DATA__, __NUXT__, or hydration markers
+    const isSSR = input.hasNextData || input.hasNuxtData || input.hasHydrationMarkers;
+    return { frameworks, isSPA, isSSR };
+};
+export { detectFramework };
+//# sourceMappingURL=detect-framework.js.map

package/dist/browser-tools/analyze-site/detect-framework.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"detect-framework.js","sourceRoot":"","sources":["../../../src/browser-tools/analyze-site/detect-framework.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AA6CH,8EAA8E;AAC9E,kBAAkB;AAClB,8EAA8E;AAE9E;;;;GAIG;AACH,MAAM,eAAe,GAAG,CAAC,KAA8B,EAAqB,EAAE;IAC5E,MAAM,UAAU,GAAoB,KAAK,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QACtE,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,OAAO,EAAE,KAAK,CAAC,OAAO;KACvB,CAAC,CAAC,CAAC;IAEJ,kFAAkF;IAClF,MAAM,kBAAkB,GAAG,IAAI,GAAG,CAAC,CAAC,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IACrG,MAAM,WAAW,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IACzE,MAAM,KAAK,GAAG,CAAC,KAAK,CAAC,oBAAoB,IAAI,KAAK,CAAC,aAAa,CAAC,IAAI,WAAW,CAAC;IAEjF,+DAA+D;IAC/D,MAAM,KAAK,GAAG,KAAK,CAAC,WAAW,IAAI,KAAK,CAAC,WAAW,IAAI,KAAK,CAAC,mBAAmB,CAAC;IAElF,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC;AACtC,CAAC,CAAC;AAEF,OAAO,EAAE,eAAe,EAAE,CAAC"}

package/dist/browser-tools/analyze-site/detect-globals.d.ts ADDED Viewed

@@ -0,0 +1,41 @@
+/**
+ * Window globals detection module for the site analyzer.
+ *
+ * Pure analysis function: takes the result of scanning window.* in the
+ * page context and returns structured information about non-standard
+ * globals. Does not call browser tools directly — the orchestrator
+ * collects data and passes it here.
+ */
+/** A non-standard window global collected from the page context. */
+interface GlobalProperty {
+    path: string;
+    type: string;
+    topLevelKeys: string[] | undefined;
+}
+/** Data collected by the orchestrator and passed to detectGlobals. */
+interface GlobalsDetectionInput {
+    globals: GlobalProperty[];
+}
+/** A classified window global with an auth-data flag indicating whether its keys match auth patterns. */
+interface GlobalInfo {
+    path: string;
+    type: string;
+    hasAuthData: boolean;
+    topLevelKeys: string[] | undefined;
+}
+/** Result of window globals detection: classified globals with auth-relevance flags. */
+interface GlobalsAnalysis {
+    globals: GlobalInfo[];
+}
+/**
+ * Analyze collected window globals and flag auth-related data.
+ *
+ * This is a pure function: takes data in, returns structured results.
+ * The heavy lifting (enumerating window properties, filtering browser
+ * builtins, extracting top-level keys) happens in a page script run by
+ * the orchestrator. This module classifies the results.
+ */
+declare const detectGlobals: (input: GlobalsDetectionInput) => GlobalsAnalysis;
+export { detectGlobals };
+export type { GlobalsDetectionInput, GlobalProperty, GlobalsAnalysis, GlobalInfo };
+//# sourceMappingURL=detect-globals.d.ts.map

package/dist/browser-tools/analyze-site/detect-globals.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"detect-globals.d.ts","sourceRoot":"","sources":["../../../src/browser-tools/analyze-site/detect-globals.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAMH,oEAAoE;AACpE,UAAU,cAAc;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,EAAE,GAAG,SAAS,CAAC;CACpC;AAED,sEAAsE;AACtE,UAAU,qBAAqB;IAC7B,OAAO,EAAE,cAAc,EAAE,CAAC;CAC3B;AAMD,yGAAyG;AACzG,UAAU,UAAU;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,OAAO,CAAC;IACrB,YAAY,EAAE,MAAM,EAAE,GAAG,SAAS,CAAC;CACpC;AAED,wFAAwF;AACxF,UAAU,eAAe;IACvB,OAAO,EAAE,UAAU,EAAE,CAAC;CACvB;AAoBD;;;;;;;GAOG;AACH,QAAA,MAAM,aAAa,GAAI,OAAO,qBAAqB,KAAG,eASrD,CAAC;AAEF,OAAO,EAAE,aAAa,EAAE,CAAC;AACzB,YAAY,EAAE,qBAAqB,EAAE,cAAc,EAAE,eAAe,EAAE,UAAU,EAAE,CAAC"}