@panguard-ai/core 0.1.0

package/dist/cli/wizard.js

@@ -0,0 +1,200 @@
+/**
+ * Wizard Engine - Step-by-step interactive flow with navigation
+ * 精靈引擎 - 逐步互動流程，支援前後導航
+ *
+ * Orchestrates a sequence of WizardSteps, rendering progress indicators,
+ * handling back-navigation, conditional steps, and auto-detection.
+ *
+ * @module @panguard-ai/core/cli/wizard
+ */
+import { c, symbols } from './index.js';
+import { promptSelect, promptText, promptConfirm } from './prompts.js';
+// ============================================================
+// Progress Rendering
+// ============================================================
+function renderProgress(current, total, lang) {
+    const barWidth = 24;
+    const ratio = total > 0 ? current / total : 0;
+    const filled = Math.round(barWidth * ratio);
+    const empty = barWidth - filled;
+    const percent = Math.round(ratio * 100);
+    const bar = c.safe('\u2588'.repeat(filled)) + c.dim('\u2591'.repeat(empty));
+    const stepLabel = lang === 'zh-TW' ? `\u6B65\u9A5F ${current}/${total}` : `Step ${current}/${total}`;
+    console.log(`  ${c.dim(stepLabel)} ${bar} ${c.dim(`${percent}%`)}`);
+    console.log('');
+}
+// ============================================================
+// Wizard Engine
+// ============================================================
+export class WizardEngine {
+    steps;
+    lang;
+    answers = {};
+    constructor(steps, lang) {
+        this.steps = steps;
+        this.lang = lang;
+    }
+    /** Get the current language (may be updated during the wizard) */
+    getLang() {
+        return this.lang;
+    }
+    /** Set language (useful after the language selection step) */
+    setLang(lang) {
+        this.lang = lang;
+    }
+    /**
+     * Run the wizard through all steps.
+     * Returns collected answers, or null if the user cancelled.
+     */
+    async run() {
+        // Filter to applicable steps
+        const applicableSteps = this.getApplicableSteps();
+        const total = applicableSteps.length;
+        let index = 0;
+        while (index < total) {
+            const step = applicableSteps[index];
+            // Re-evaluate applicable steps in case answers changed
+            const currentApplicable = this.getApplicableSteps();
+            if (!currentApplicable.find((s) => s.id === step.id)) {
+                // This step is no longer applicable, skip forward
+                index++;
+                continue;
+            }
+            // Recalculate position within current applicable steps
+            const stepNum = currentApplicable.findIndex((s) => s.id === step.id) + 1;
+            const stepTotal = currentApplicable.length;
+            renderProgress(stepNum, stepTotal, this.lang);
+            const result = await this.executeStep(step);
+            if (result === null) {
+                // User pressed back
+                if (index > 0) {
+                    index--;
+                    // Clear previous answer
+                    const prevStep = applicableSteps[index];
+                    delete this.answers[prevStep.id];
+                }
+                continue;
+            }
+            this.answers[step.id] = result;
+            // Special: if this is a language step, update the wizard language
+            if (step.id === 'language' && (result === 'en' || result === 'zh-TW')) {
+                this.lang = result;
+            }
+            index++;
+        }
+        return this.answers;
+    }
+    /**
+     * Execute a single step based on its inputType.
+     * Returns the answer string, or null for back-navigation.
+     */
+    async executeStep(step) {
+        switch (step.inputType) {
+            case 'select':
+                return this.executeSelect(step);
+            case 'text':
+                return this.executeText(step);
+            case 'confirm':
+                return this.executeConfirm(step);
+            case 'auto':
+                return this.executeAuto(step);
+            default:
+                return null;
+        }
+    }
+    async executeSelect(step) {
+        if (!step.options || step.options.length === 0)
+            return null;
+        const result = await promptSelect({
+            title: step.title,
+            description: step.description,
+            options: step.options,
+            lang: this.lang,
+            allowBack: true,
+        });
+        return result;
+    }
+    async executeText(step) {
+        const existing = this.answers[step.id];
+        const result = await promptText({
+            title: step.title,
+            description: step.description,
+            defaultValue: existing,
+            validate: step.validate,
+            sensitive: step.sensitive,
+            lang: this.lang,
+            allowBack: true,
+        });
+        return result;
+    }
+    async executeConfirm(step) {
+        const result = await promptConfirm({
+            message: step.title,
+            defaultValue: true,
+            lang: this.lang,
+        });
+        return result ? 'yes' : 'no';
+    }
+    async executeAuto(step) {
+        if (!step.autoDetect)
+            return '';
+        console.log(`  ${c.heading(step.title[this.lang])}`);
+        console.log(`  ${c.dim(step.description[this.lang])}`);
+        console.log('');
+        // Run auto-detection
+        const detecting = this.lang === 'zh-TW' ? '\u5075\u6E2C\u4E2D...' : 'Detecting...';
+        process.stdout.write(`  ${c.sage('\u2022')} ${detecting}`);
+        try {
+            const detected = await step.autoDetect();
+            process.stdout.write(`\r\x1b[K`);
+            console.log(`  ${symbols.pass} ${detected}`);
+            console.log('');
+            // Confirm the auto-detected value
+            const ok = await promptConfirm({
+                message: {
+                    en: 'Is this correct?',
+                    'zh-TW': '\u9019\u6B63\u78BA\u55CE\uFF1F',
+                },
+                defaultValue: true,
+                lang: this.lang,
+            });
+            if (ok)
+                return detected;
+            // User said no — let them type it
+            const manual = await promptText({
+                title: step.title,
+                lang: this.lang,
+                allowBack: true,
+            });
+            return manual;
+        }
+        catch {
+            process.stdout.write(`\r\x1b[K`);
+            console.log(`  ${symbols.warn} ${this.lang === 'zh-TW' ? '\u5075\u6E2C\u5931\u6557' : 'Detection failed'}`);
+            const manual = await promptText({
+                title: step.title,
+                lang: this.lang,
+                allowBack: true,
+            });
+            return manual;
+        }
+    }
+    /**
+     * Filter steps based on their dependency conditions and current answers.
+     */
+    getApplicableSteps() {
+        return this.steps.filter((step) => {
+            if (!step.dependsOn)
+                return true;
+            const depValue = this.answers[step.dependsOn.stepId];
+            if (depValue === undefined)
+                return true; // Dependency not yet answered, include step
+            if (step.dependsOn.values) {
+                return step.dependsOn.values.includes(depValue);
+            }
+            // If no specific values, just check if dependency has been answered
+            return depValue !== undefined;
+        });
+    }
+}
+//# sourceMappingURL=wizard.js.map

package/dist/cli/wizard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"wizard.js","sourceRoot":"","sources":["../../src/cli/wizard.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AACxC,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AA4BvE,+DAA+D;AAC/D,qBAAqB;AACrB,+DAA+D;AAE/D,SAAS,cAAc,CAAC,OAAe,EAAE,KAAa,EAAE,IAAU;IAChE,MAAM,QAAQ,GAAG,EAAE,CAAC;IACpB,MAAM,KAAK,GAAG,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9C,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,GAAG,KAAK,CAAC,CAAC;IAC5C,MAAM,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IAChC,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,GAAG,GAAG,CAAC,CAAC;IAExC,MAAM,GAAG,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;IAC5E,MAAM,SAAS,GACb,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,gBAAgB,OAAO,IAAI,KAAK,EAAE,CAAC,CAAC,CAAC,QAAQ,OAAO,IAAI,KAAK,EAAE,CAAC;IAErF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC,GAAG,CAAC,GAAG,OAAO,GAAG,CAAC,EAAE,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AAClB,CAAC;AAED,+DAA+D;AAC/D,gBAAgB;AAChB,+DAA+D;AAE/D,MAAM,OAAO,YAAY;IACf,KAAK,CAAe;IACpB,IAAI,CAAO;IACX,OAAO,GAAkB,EAAE,CAAC;IAEpC,YAAY,KAAmB,EAAE,IAAU;QACzC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACnB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;IAED,kEAAkE;IAClE,OAAO;QACL,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED,8DAA8D;IAC9D,OAAO,CAAC,IAAU;QAChB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,GAAG;QACP,6BAA6B;QAC7B,MAAM,eAAe,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QAClD,MAAM,KAAK,GAAG,eAAe,CAAC,MAAM,CAAC;QACrC,IAAI,KAAK,GAAG,CAAC,CAAC;QAEd,OAAO,KAAK,GAAG,KAAK,EAAE,CAAC;YACrB,MAAM,IAAI,GAAG,eAAe,CAAC,KAAK,CAAE,CAAC;YAErC,uDAAuD;YACvD,MAAM,iBAAiB,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;YACpD,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC;gBACrD,kDAAkD;gBAClD,KAAK,EAAE,CAAC;gBACR,SAAS;YACX,CAAC;YAED,uDAAuD;YACvD,MAAM,OAAO,GAAG,iBAAiB,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC;YACzE,MAAM,SAAS,GAAG,iBAAiB,CAAC,MAAM,CAAC;YAE3C,cAAc,CAAC,OAAO,EAAE,SAAS,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;YAE9C,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAE5C,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;gBACpB,oBAAoB;gBACpB,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;oBACd,KAAK,EAAE,CAAC;oBACR,wBAAwB;oBACxB,MAAM,QAAQ,GAAG,eAAe,CAAC,KAAK,CAAE,CAAC;oBACzC,OAAO,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;gBACnC,CAAC;gBACD,SAAS;YACX,CAAC;YAED,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC;YAE/B,kEAAkE;YAClE,IAAI,IAAI,CAAC,EAAE,KAAK,UAAU,IAAI,CAAC,MAAM,KAAK,IAAI,IAAI,MAAM,KAAK,OAAO,CAAC,EAAE,CAAC;gBACtE,IAAI,CAAC,IAAI,GAAG,MAAM,CAAC;YACrB,CAAC;YAED,KAAK,EAAE,CAAC;QACV,CAAC;QAED,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,WAAW,CAAC,IAAgB;QACxC,QAAQ,IAAI,CAAC,SAAS,EAAE,CAAC;YACvB,KAAK,QAAQ;gBACX,OAAO,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;YAClC,KAAK,MAAM;gBACT,OAAO,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAChC,KAAK,SAAS;gBACZ,OAAO,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;YACnC,KAAK,MAAM;gBACT,OAAO,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAChC;gBACE,OAAO,IAAI,CAAC;QAChB,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,IAAgB;QAC1C,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QAE5D,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC;YAChC,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,SAAS,EAAE,IAAI;SAChB,CAAC,CAAC;QAEH,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,IAAgB;QACxC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACvC,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC;YAC9B,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,YAAY,EAAE,QAAQ;YACtB,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,SAAS,EAAE,IAAI;SAChB,CAAC,CAAC;QAEH,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,KAAK,CAAC,cAAc,CAAC,IAAgB;QAC3C,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC;YACjC,OAAO,EAAE,IAAI,CAAC,KAAK;YACnB,YAAY,EAAE,IAAI;YAClB,IAAI,EAAE,IAAI,CAAC,IAAI;SAChB,CAAC,CAAC;QAEH,OAAO,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;IAC/B,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,IAAgB;QACxC,IAAI,CAAC,IAAI,CAAC,UAAU;YAAE,OAAO,EAAE,CAAC;QAEhC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC;QACrD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC;QACvD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEhB,qBAAqB;QACrB,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,uBAAuB,CAAC,CAAC,CAAC,cAAc,CAAC;QACnF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,SAAS,EAAE,CAAC,CAAC;QAE3D,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;YACzC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACjC,OAAO,CAAC,GAAG,CAAC,KAAK,OAAO,CAAC,IAAI,IAAI,QAAQ,EAAE,CAAC,CAAC;YAC7C,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,kCAAkC;YAClC,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC;gBAC7B,OAAO,EAAE;oBACP,EAAE,EAAE,kBAAkB;oBACtB,OAAO,EAAE,gCAAgC;iBAC1C;gBACD,YAAY,EAAE,IAAI;gBAClB,IAAI,EAAE,IAAI,CAAC,IAAI;aAChB,CAAC,CAAC;YAEH,IAAI,EAAE;gBAAE,OAAO,QAAQ,CAAC;YAExB,kCAAkC;YAClC,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC;gBAC9B,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,SAAS,EAAE,IAAI;aAChB,CAAC,CAAC;YACH,OAAO,MAAM,CAAC;QAChB,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YACjC,OAAO,CAAC,GAAG,CACT,KAAK,OAAO,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,KAAK,OAAO,CAAC,CAAC,CAAC,0BAA0B,CAAC,CAAC,CAAC,kBAAkB,EAAE,CAC/F,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC;gBAC9B,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,SAAS,EAAE,IAAI;aAChB,CAAC,CAAC;YACH,OAAO,MAAM,CAAC;QAChB,CAAC;IACH,CAAC;IAED;;OAEG;IACK,kBAAkB;QACxB,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;YAChC,IAAI,CAAC,IAAI,CAAC,SAAS;gBAAE,OAAO,IAAI,CAAC;YAEjC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YACrD,IAAI,QAAQ,KAAK,SAAS;gBAAE,OAAO,IAAI,CAAC,CAAC,4CAA4C;YAErF,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;gBAC1B,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;YAClD,CAAC;YAED,oEAAoE;YACpE,OAAO,QAAQ,KAAK,SAAS,CAAC;QAChC,CAAC,CAAC,CAAC;IACL,CAAC;CACF"}

package/dist/discovery/firewall-checker.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Firewall status checker
+ * 防火牆狀態檢查器
+ *
+ * Checks firewall status and retrieves active rules across macOS, Linux,
+ * and Windows using platform-specific firewall management commands.
+ * 使用平台特定的防火牆管理命令，跨 macOS、Linux 和 Windows 檢查防火牆狀態並擷取啟用規則。
+ *
+ * @module @panguard-ai/core/discovery/firewall-checker
+ */
+import type { FirewallStatus } from './types.js';
+/**
+ * Check firewall status on the current platform
+ * 檢查目前平台的防火牆狀態
+ *
+ * Dispatches to platform-specific firewall check methods:
+ * - macOS: socketfilterfw / defaults read
+ * - Linux: ufw / iptables / nftables
+ * - Windows: netsh advfirewall
+ * 分派到平台特定的防火牆檢查方法：
+ * - macOS：socketfilterfw / defaults read
+ * - Linux：ufw / iptables / nftables
+ * - Windows：netsh advfirewall
+ *
+ * @returns Firewall status and rules / 防火牆狀態和規則
+ */
+export declare function checkFirewall(): Promise<FirewallStatus>;
+//# sourceMappingURL=firewall-checker.d.ts.map

package/dist/discovery/firewall-checker.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"firewall-checker.d.ts","sourceRoot":"","sources":["../../src/discovery/firewall-checker.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAMH,OAAO,KAAK,EAAE,cAAc,EAAgB,MAAM,YAAY,CAAC;AA6W/D;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,aAAa,IAAI,OAAO,CAAC,cAAc,CAAC,CA+B7D"}

package/dist/discovery/firewall-checker.js

@@ -0,0 +1,379 @@
+/**
+ * Firewall status checker
+ * 防火牆狀態檢查器
+ *
+ * Checks firewall status and retrieves active rules across macOS, Linux,
+ * and Windows using platform-specific firewall management commands.
+ * 使用平台特定的防火牆管理命令，跨 macOS、Linux 和 Windows 檢查防火牆狀態並擷取啟用規則。
+ *
+ * @module @panguard-ai/core/discovery/firewall-checker
+ */
+import { execFile } from 'child_process';
+import { promisify } from 'util';
+import { platform as osPlatform } from 'os';
+import { createLogger } from '../utils/logger.js';
+const execFileAsync = promisify(execFile);
+const logger = createLogger('discovery:firewall');
+/**
+ * Safely execute a command and return stdout, or empty string on failure
+ * 安全地執行命令並回傳 stdout，失敗時回傳空字串
+ *
+ * @param cmd - Command to execute / 要執行的命令
+ * @param args - Command arguments / 命令參數
+ * @returns stdout output trimmed / 修剪後的 stdout 輸出
+ */
+async function safeExec(cmd, args) {
+    try {
+        const { stdout } = await execFileAsync(cmd, args, { timeout: 10_000 });
+        return stdout.trim();
+    }
+    catch (err) {
+        logger.debug(`Command failed: ${cmd} ${args.join(' ')}`, {
+            error: err instanceof Error ? err.message : String(err),
+        });
+        return '';
+    }
+}
+/**
+ * Check macOS Application Firewall (ALF) status
+ * 檢查 macOS 應用程式防火牆 (ALF) 狀態
+ *
+ * Uses socketfilterfw to check global state and defaults read for detailed config.
+ * 使用 socketfilterfw 檢查全域狀態，並使用 defaults read 取得詳細配置。
+ *
+ * @returns Firewall status for macOS / macOS 防火牆狀態
+ */
+async function checkMacOSFirewall() {
+    let enabled = false;
+    const rules = [];
+    // Method 1: Use socketfilterfw --getglobalstate
+    // 方法 1：使用 socketfilterfw --getglobalstate
+    const sfwOutput = await safeExec('/usr/libexec/ApplicationFirewall/socketfilterfw', [
+        '--getglobalstate',
+    ]);
+    if (sfwOutput) {
+        enabled = sfwOutput.toLowerCase().includes('enabled');
+        logger.info(`macOS firewall (socketfilterfw): ${enabled ? 'enabled' : 'disabled'}`);
+    }
+    else {
+        // Method 2: Read from defaults
+        // 方法 2：從 defaults 讀取
+        const defaultsOutput = await safeExec('defaults', [
+            'read',
+            '/Library/Preferences/com.apple.alf',
+            'globalstate',
+        ]);
+        if (defaultsOutput) {
+            // globalstate: 0 = off, 1 = on (specific services), 2 = on (essential services only)
+            // globalstate：0 = 關閉，1 = 開啟（特定服務），2 = 開啟（僅基本服務）
+            const state = parseInt(defaultsOutput, 10);
+            enabled = state > 0;
+            logger.info(`macOS firewall (defaults): globalstate=${state}, enabled=${enabled}`);
+        }
+    }
+    // Try to list allowed/blocked apps via socketfilterfw
+    // 嘗試透過 socketfilterfw 列出允許/封鎖的應用程式
+    const listOutput = await safeExec('/usr/libexec/ApplicationFirewall/socketfilterfw', [
+        '--listapps',
+    ]);
+    if (listOutput) {
+        const lines = listOutput.split('\n');
+        for (const line of lines) {
+            const trimmed = line.trim();
+            // Lines like: "Allow incoming connections" or "Block incoming connections"
+            // 行內容如："Allow incoming connections" 或 "Block incoming connections"
+            if (trimmed.includes('Allow incoming connections') ||
+                trimmed.includes('Block incoming connections')) {
+                // The previous line typically has the app path
+                // 前一行通常包含應用程式路徑
+                continue;
+            }
+            // Match app entries: index  app-path  (Allow/Block incoming connections)
+            // 比對應用程式條目：index  app-path  (Allow/Block incoming connections)
+            const appMatch = trimmed.match(/^\d+\s*:\s*(.+)$/);
+            if (appMatch?.[1]) {
+                const appPath = appMatch[1].trim();
+                // Check the next relevant context to determine if allow/block
+                // 檢查下一個相關上下文以判斷允許/封鎖
+                const appName = appPath.split('/').pop() ?? appPath;
+                const isAllow = !trimmed.toLowerCase().includes('block');
+                rules.push({
+                    name: appName,
+                    direction: 'in',
+                    action: isAllow ? 'allow' : 'block',
+                    protocol: undefined,
+                    port: undefined,
+                    enabled: true,
+                });
+            }
+        }
+    }
+    // Check stealth mode
+    // 檢查隱身模式
+    const stealthOutput = await safeExec('/usr/libexec/ApplicationFirewall/socketfilterfw', [
+        '--getstealthmode',
+    ]);
+    if (stealthOutput && stealthOutput.toLowerCase().includes('enabled')) {
+        rules.push({
+            name: 'Stealth Mode',
+            direction: 'in',
+            action: 'block',
+            protocol: 'icmp',
+            port: undefined,
+            enabled: true,
+        });
+    }
+    return {
+        enabled,
+        product: 'macOS Application Firewall (ALF)',
+        rules,
+    };
+}
+/**
+ * Check Linux firewall status (iptables / ufw)
+ * 檢查 Linux 防火牆狀態（iptables / ufw）
+ *
+ * Tries ufw first, then falls back to iptables.
+ * 優先嘗試 ufw，然後回退到 iptables。
+ *
+ * @returns Firewall status for Linux / Linux 防火牆狀態
+ */
+async function checkLinuxFirewall() {
+    let enabled = false;
+    const rules = [];
+    let product = 'iptables';
+    // Try ufw first
+    // 優先嘗試 ufw
+    const ufwOutput = await safeExec('ufw', ['status', 'verbose']);
+    if (ufwOutput) {
+        product = 'ufw';
+        enabled = ufwOutput.toLowerCase().includes('status: active');
+        logger.info(`Linux firewall (ufw): ${enabled ? 'active' : 'inactive'}`);
+        if (enabled) {
+            const lines = ufwOutput.split('\n');
+            let inRulesSection = false;
+            for (const line of lines) {
+                const trimmed = line.trim();
+                // Detect the rules section header
+                // 偵測規則區段標頭
+                if (trimmed.startsWith('--')) {
+                    inRulesSection = true;
+                    continue;
+                }
+                if (!inRulesSection || !trimmed)
+                    continue;
+                // Parse ufw rule lines like:
+                // 22/tcp    ALLOW IN    Anywhere
+                // 80/tcp    DENY IN     Anywhere
+                // 解析 ufw 規則行，格式如：
+                // 22/tcp    ALLOW IN    Anywhere
+                // 80/tcp    DENY IN     Anywhere
+                const ruleMatch = trimmed.match(/^(\S+)\s+(ALLOW|DENY|REJECT|LIMIT)\s+(IN|OUT)/i);
+                if (ruleMatch?.[1] && ruleMatch[2] && ruleMatch[3]) {
+                    const target = ruleMatch[1];
+                    const action = ruleMatch[2].toUpperCase();
+                    const direction = ruleMatch[3].toUpperCase();
+                    // Parse port/protocol from target
+                    // 從目標解析埠/協定
+                    const portProtoMatch = target.match(/^(\d+(?::\d+)?)\/(tcp|udp)$/i);
+                    const port = portProtoMatch?.[1];
+                    const protocol = portProtoMatch?.[2]?.toLowerCase();
+                    rules.push({
+                        name: `ufw-${target}`,
+                        direction: direction === 'IN' ? 'in' : 'out',
+                        action: action === 'ALLOW' || action === 'LIMIT' ? 'allow' : 'block',
+                        protocol,
+                        port,
+                        enabled: true,
+                    });
+                }
+            }
+        }
+        return { enabled, product, rules };
+    }
+    // Fallback: check iptables
+    // 備用：檢查 iptables
+    const iptablesOutput = await safeExec('iptables', ['-L', '-n', '--line-numbers']);
+    if (iptablesOutput) {
+        product = 'iptables';
+        // If iptables has any non-default rules, consider it enabled
+        // 如果 iptables 有任何非預設規則，視為已啟用
+        const lines = iptablesOutput.split('\n');
+        const ruleLines = lines.filter((l) => l.trim() && !l.startsWith('Chain') && !l.startsWith('num') && !l.startsWith('target'));
+        enabled = ruleLines.length > 0;
+        logger.info(`Linux firewall (iptables): ${enabled ? 'rules present' : 'no rules'}`);
+        // Parse iptables rules
+        // 解析 iptables 規則
+        let currentChain = '';
+        for (const line of lines) {
+            const chainMatch = line.match(/^Chain\s+(\w+)/);
+            if (chainMatch?.[1]) {
+                currentChain = chainMatch[1];
+                continue;
+            }
+            const trimmed = line.trim();
+            if (!trimmed || trimmed.startsWith('num') || trimmed.startsWith('target'))
+                continue;
+            const parts = trimmed.split(/\s+/);
+            if (parts.length < 4)
+                continue;
+            const num = parts[0] ?? '0';
+            const target = parts[1] ?? '';
+            const proto = parts[2] ?? '';
+            const dpt = trimmed.match(/dpt:(\d+)/);
+            if (target === 'ACCEPT' || target === 'DROP' || target === 'REJECT') {
+                rules.push({
+                    name: `${currentChain}-rule-${num}`,
+                    direction: currentChain === 'INPUT' ? 'in' : currentChain === 'OUTPUT' ? 'out' : 'in',
+                    action: target === 'ACCEPT' ? 'allow' : 'block',
+                    protocol: proto === 'all' ? undefined : proto,
+                    port: dpt?.[1],
+                    enabled: true,
+                });
+            }
+        }
+    }
+    else {
+        // Check nftables as another fallback
+        // 檢查 nftables 作為另一個備用方案
+        const nftOutput = await safeExec('nft', ['list', 'ruleset']);
+        if (nftOutput) {
+            product = 'nftables';
+            enabled = nftOutput.includes('chain') && nftOutput.includes('rule');
+            logger.info(`Linux firewall (nftables): ${enabled ? 'rules present' : 'no rules'}`);
+        }
+    }
+    return { enabled, product, rules };
+}
+/**
+ * Check Windows Firewall status via netsh
+ * 透過 netsh 檢查 Windows 防火牆狀態
+ *
+ * Uses 'netsh advfirewall show allprofiles' to check status.
+ * 使用 'netsh advfirewall show allprofiles' 檢查狀態。
+ *
+ * @returns Firewall status for Windows / Windows 防火牆狀態
+ */
+async function checkWindowsFirewall() {
+    let enabled = false;
+    const rules = [];
+    const output = await safeExec('netsh', ['advfirewall', 'show', 'allprofiles']);
+    if (output) {
+        // Check if any profile has the firewall ON
+        // 檢查是否有任何設定檔已開啟防火牆
+        enabled = output.toLowerCase().includes('state                                 on');
+        logger.info(`Windows Firewall: ${enabled ? 'enabled' : 'disabled'}`);
+        // Get firewall rules
+        // 取得防火牆規則
+        const rulesOutput = await safeExec('netsh', [
+            'advfirewall',
+            'firewall',
+            'show',
+            'rule',
+            'name=all',
+        ]);
+        if (rulesOutput) {
+            // Parse rule blocks separated by blank lines
+            // 解析以空行分隔的規則區塊
+            const blocks = rulesOutput.split(/\n\s*\n/);
+            for (const block of blocks) {
+                if (!block.trim())
+                    continue;
+                let name = '';
+                let direction = 'in';
+                let action = 'allow';
+                let protocol;
+                let port;
+                let ruleEnabled = true;
+                const lines = block.split('\n');
+                for (const line of lines) {
+                    const trimmed = line.trim();
+                    const nameMatch = trimmed.match(/^Rule Name:\s*(.+)/i);
+                    if (nameMatch?.[1])
+                        name = nameMatch[1].trim();
+                    const dirMatch = trimmed.match(/^Direction:\s*(.+)/i);
+                    if (dirMatch?.[1])
+                        direction = dirMatch[1].trim().toLowerCase() === 'out' ? 'out' : 'in';
+                    const actMatch = trimmed.match(/^Action:\s*(.+)/i);
+                    if (actMatch?.[1])
+                        action = actMatch[1].trim().toLowerCase() === 'block' ? 'block' : 'allow';
+                    const protoMatch = trimmed.match(/^Protocol:\s*(.+)/i);
+                    if (protoMatch?.[1]) {
+                        const p = protoMatch[1].trim().toLowerCase();
+                        protocol = p === 'any' ? undefined : p;
+                    }
+                    const portMatch = trimmed.match(/^LocalPort:\s*(.+)/i);
+                    if (portMatch?.[1]) {
+                        const p = portMatch[1].trim();
+                        port = p === 'Any' ? undefined : p;
+                    }
+                    const enabledMatch = trimmed.match(/^Enabled:\s*(.+)/i);
+                    if (enabledMatch?.[1])
+                        ruleEnabled = enabledMatch[1].trim().toLowerCase() === 'yes';
+                }
+                if (name) {
+                    rules.push({
+                        name,
+                        direction,
+                        action,
+                        protocol,
+                        port,
+                        enabled: ruleEnabled,
+                    });
+                }
+            }
+        }
+    }
+    return {
+        enabled,
+        product: 'Windows Defender Firewall',
+        rules,
+    };
+}
+/**
+ * Check firewall status on the current platform
+ * 檢查目前平台的防火牆狀態
+ *
+ * Dispatches to platform-specific firewall check methods:
+ * - macOS: socketfilterfw / defaults read
+ * - Linux: ufw / iptables / nftables
+ * - Windows: netsh advfirewall
+ * 分派到平台特定的防火牆檢查方法：
+ * - macOS：socketfilterfw / defaults read
+ * - Linux：ufw / iptables / nftables
+ * - Windows：netsh advfirewall
+ *
+ * @returns Firewall status and rules / 防火牆狀態和規則
+ */
+export async function checkFirewall() {
+    const currentPlatform = osPlatform();
+    logger.info(`Checking firewall on ${currentPlatform}`);
+    try {
+        switch (currentPlatform) {
+            case 'darwin':
+                return await checkMacOSFirewall();
+            case 'linux':
+                return await checkLinuxFirewall();
+            case 'win32':
+                return await checkWindowsFirewall();
+            default:
+                logger.warn(`Unsupported platform for firewall check: ${currentPlatform}`);
+                return {
+                    enabled: false,
+                    product: 'unknown',
+                    rules: [],
+                };
+        }
+    }
+    catch (err) {
+        logger.error('Firewall check failed', {
+            error: err instanceof Error ? err.message : String(err),
+        });
+        return {
+            enabled: false,
+            product: 'unknown',
+            rules: [],
+        };
+    }
+}
+//# sourceMappingURL=firewall-checker.js.map

package/dist/discovery/firewall-checker.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"firewall-checker.js","sourceRoot":"","sources":["../../src/discovery/firewall-checker.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,SAAS,EAAE,MAAM,MAAM,CAAC;AACjC,OAAO,EAAE,QAAQ,IAAI,UAAU,EAAE,MAAM,IAAI,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAGlD,MAAM,aAAa,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;AAC1C,MAAM,MAAM,GAAG,YAAY,CAAC,oBAAoB,CAAC,CAAC;AAElD;;;;;;;GAOG;AACH,KAAK,UAAU,QAAQ,CAAC,GAAW,EAAE,IAAc;IACjD,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;QACvE,OAAO,MAAM,CAAC,IAAI,EAAE,CAAC;IACvB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,CAAC,KAAK,CAAC,mBAAmB,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE;YACvD,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;SACxD,CAAC,CAAC;QACH,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;;;;;;;GAQG;AACH,KAAK,UAAU,kBAAkB;IAC/B,IAAI,OAAO,GAAG,KAAK,CAAC;IACpB,MAAM,KAAK,GAAmB,EAAE,CAAC;IAEjC,gDAAgD;IAChD,0CAA0C;IAC1C,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,iDAAiD,EAAE;QAClF,kBAAkB;KACnB,CAAC,CAAC;IAEH,IAAI,SAAS,EAAE,CAAC;QACd,OAAO,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;QACtD,MAAM,CAAC,IAAI,CAAC,oCAAoC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;IACtF,CAAC;SAAM,CAAC;QACN,+BAA+B;QAC/B,qBAAqB;QACrB,MAAM,cAAc,GAAG,MAAM,QAAQ,CAAC,UAAU,EAAE;YAChD,MAAM;YACN,oCAAoC;YACpC,aAAa;SACd,CAAC,CAAC;QAEH,IAAI,cAAc,EAAE,CAAC;YACnB,qFAAqF;YACrF,gDAAgD;YAChD,MAAM,KAAK,GAAG,QAAQ,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC;YAC3C,OAAO,GAAG,KAAK,GAAG,CAAC,CAAC;YACpB,MAAM,CAAC,IAAI,CAAC,0CAA0C,KAAK,aAAa,OAAO,EAAE,CAAC,CAAC;QACrF,CAAC;IACH,CAAC;IAED,sDAAsD;IACtD,mCAAmC;IACnC,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,iDAAiD,EAAE;QACnF,YAAY;KACb,CAAC,CAAC;IAEH,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACrC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;YAE5B,2EAA2E;YAC3E,mEAAmE;YACnE,IACE,OAAO,CAAC,QAAQ,CAAC,4BAA4B,CAAC;gBAC9C,OAAO,CAAC,QAAQ,CAAC,4BAA4B,CAAC,EAC9C,CAAC;gBACD,+CAA+C;gBAC/C,gBAAgB;gBAChB,SAAS;YACX,CAAC;YAED,yEAAyE;YACzE,+DAA+D;YAC/D,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;YACnD,IAAI,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBAClB,MAAM,OAAO,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;gBACnC,8DAA8D;gBAC9D,qBAAqB;gBACrB,MAAM,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,OAAO,CAAC;gBACpD,MAAM,OAAO,GAAG,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;gBAEzD,KAAK,CAAC,IAAI,CAAC;oBACT,IAAI,EAAE,OAAO;oBACb,SAAS,EAAE,IAAI;oBACf,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO;oBACnC,QAAQ,EAAE,SAAS;oBACnB,IAAI,EAAE,SAAS;oBACf,OAAO,EAAE,IAAI;iBACd,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,qBAAqB;IACrB,SAAS;IACT,MAAM,aAAa,GAAG,MAAM,QAAQ,CAAC,iDAAiD,EAAE;QACtF,kBAAkB;KACnB,CAAC,CAAC;IAEH,IAAI,aAAa,IAAI,aAAa,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;QACrE,KAAK,CAAC,IAAI,CAAC;YACT,IAAI,EAAE,cAAc;YACpB,SAAS,EAAE,IAAI;YACf,MAAM,EAAE,OAAO;YACf,QAAQ,EAAE,MAAM;YAChB,IAAI,EAAE,SAAS;YACf,OAAO,EAAE,IAAI;SACd,CAAC,CAAC;IACL,CAAC;IAED,OAAO;QACL,OAAO;QACP,OAAO,EAAE,kCAAkC;QAC3C,KAAK;KACN,CAAC;AACJ,CAAC;AAED;;;;;;;;GAQG;AACH,KAAK,UAAU,kBAAkB;IAC/B,IAAI,OAAO,GAAG,KAAK,CAAC;IACpB,MAAM,KAAK,GAAmB,EAAE,CAAC;IACjC,IAAI,OAAO,GAAG,UAAU,CAAC;IAEzB,gBAAgB;IAChB,WAAW;IACX,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,KAAK,EAAE,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC,CAAC;IAE/D,IAAI,SAAS,EAAE,CAAC;QACd,OAAO,GAAG,KAAK,CAAC;QAChB,OAAO,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;QAC7D,MAAM,CAAC,IAAI,CAAC,yBAAyB,OAAO,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;QAExE,IAAI,OAAO,EAAE,CAAC;YACZ,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACpC,IAAI,cAAc,GAAG,KAAK,CAAC;YAE3B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAE5B,kCAAkC;gBAClC,WAAW;gBACX,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;oBAC7B,cAAc,GAAG,IAAI,CAAC;oBACtB,SAAS;gBACX,CAAC;gBAED,IAAI,CAAC,cAAc,IAAI,CAAC,OAAO;oBAAE,SAAS;gBAE1C,6BAA6B;gBAC7B,iCAAiC;gBACjC,iCAAiC;gBACjC,kBAAkB;gBAClB,iCAAiC;gBACjC,iCAAiC;gBACjC,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,gDAAgD,CAAC,CAAC;gBAClF,IAAI,SAAS,EAAE,CAAC,CAAC,CAAC,IAAI,SAAS,CAAC,CAAC,CAAC,IAAI,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC;oBACnD,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;oBAC5B,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;oBAC1C,MAAM,SAAS,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;oBAE7C,kCAAkC;oBAClC,YAAY;oBACZ,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,8BAA8B,CAAC,CAAC;oBACpE,MAAM,IAAI,GAAG,cAAc,EAAE,CAAC,CAAC,CAAC,CAAC;oBACjC,MAAM,QAAQ,GAAG,cAAc,EAAE,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC;oBAEpD,KAAK,CAAC,IAAI,CAAC;wBACT,IAAI,EAAE,OAAO,MAAM,EAAE;wBACrB,SAAS,EAAE,SAAS,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK;wBAC5C,MAAM,EAAE,MAAM,KAAK,OAAO,IAAI,MAAM,KAAK,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO;wBACpE,QAAQ;wBACR,IAAI;wBACJ,OAAO,EAAE,IAAI;qBACd,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IACrC,CAAC;IAED,2BAA2B;IAC3B,iBAAiB;IACjB,MAAM,cAAc,GAAG,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC;IAElF,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,GAAG,UAAU,CAAC;QACrB,6DAA6D;QAC7D,6BAA6B;QAC7B,MAAM,KAAK,GAAG,cAAc,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACzC,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAC5B,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAC7F,CAAC;QACF,OAAO,GAAG,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC;QAE/B,MAAM,CAAC,IAAI,CAAC,8BAA8B,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;QAEpF,uBAAuB;QACvB,iBAAiB;QACjB,IAAI,YAAY,GAAG,EAAE,CAAC;QAEtB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;YAChD,IAAI,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBACpB,YAAY,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;gBAC7B,SAAS;YACX,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;YAC5B,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC;gBAAE,SAAS;YAEpF,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YACnC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;gBAAE,SAAS;YAE/B,MAAM,GAAG,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC;YAC5B,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;YAC9B,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;YAC7B,MAAM,GAAG,GAAG,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;YAEvC,IAAI,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,MAAM,IAAI,MAAM,KAAK,QAAQ,EAAE,CAAC;gBACpE,KAAK,CAAC,IAAI,CAAC;oBACT,IAAI,EAAE,GAAG,YAAY,SAAS,GAAG,EAAE;oBACnC,SAAS,EAAE,YAAY,KAAK,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI;oBACrF,MAAM,EAAE,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO;oBAC/C,QAAQ,EAAE,KAAK,KAAK,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,KAAK;oBAC7C,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC;oBACd,OAAO,EAAE,IAAI;iBACd,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;SAAM,CAAC;QACN,qCAAqC;QACrC,wBAAwB;QACxB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,KAAK,EAAE,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC,CAAC;QAC7D,IAAI,SAAS,EAAE,CAAC;YACd,OAAO,GAAG,UAAU,CAAC;YACrB,OAAO,GAAG,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YACpE,MAAM,CAAC,IAAI,CAAC,8BAA8B,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;QACtF,CAAC;IACH,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;AACrC,CAAC;AAED;;;;;;;;GAQG;AACH,KAAK,UAAU,oBAAoB;IACjC,IAAI,OAAO,GAAG,KAAK,CAAC;IACpB,MAAM,KAAK,GAAmB,EAAE,CAAC;IAEjC,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,OAAO,EAAE,CAAC,aAAa,EAAE,MAAM,EAAE,aAAa,CAAC,CAAC,CAAC;IAE/E,IAAI,MAAM,EAAE,CAAC;QACX,2CAA2C;QAC3C,mBAAmB;QACnB,OAAO,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,0CAA0C,CAAC,CAAC;QACpF,MAAM,CAAC,IAAI,CAAC,qBAAqB,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;QAErE,qBAAqB;QACrB,UAAU;QACV,MAAM,WAAW,GAAG,MAAM,QAAQ,CAAC,OAAO,EAAE;YAC1C,aAAa;YACb,UAAU;YACV,MAAM;YACN,MAAM;YACN,UAAU;SACX,CAAC,CAAC;QAEH,IAAI,WAAW,EAAE,CAAC;YAChB,6CAA6C;YAC7C,eAAe;YACf,MAAM,MAAM,GAAG,WAAW,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;YAE5C,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;gBAC3B,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE;oBAAE,SAAS;gBAE5B,IAAI,IAAI,GAAG,EAAE,CAAC;gBACd,IAAI,SAAS,GAAiB,IAAI,CAAC;gBACnC,IAAI,MAAM,GAAsB,OAAO,CAAC;gBACxC,IAAI,QAA4B,CAAC;gBACjC,IAAI,IAAwB,CAAC;gBAC7B,IAAI,WAAW,GAAG,IAAI,CAAC;gBAEvB,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBAChC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;oBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;oBAE5B,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;oBACvD,IAAI,SAAS,EAAE,CAAC,CAAC,CAAC;wBAAE,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;oBAE/C,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;oBACtD,IAAI,QAAQ,EAAE,CAAC,CAAC,CAAC;wBAAE,SAAS,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;oBAEzF,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;oBACnD,IAAI,QAAQ,EAAE,CAAC,CAAC,CAAC;wBACf,MAAM,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;oBAE5E,MAAM,UAAU,GAAG,OAAO,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC;oBACvD,IAAI,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;wBACpB,MAAM,CAAC,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;wBAC7C,QAAQ,GAAG,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;oBACzC,CAAC;oBAED,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;oBACvD,IAAI,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;wBACnB,MAAM,CAAC,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;wBAC9B,IAAI,GAAG,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;oBACrC,CAAC;oBAED,MAAM,YAAY,GAAG,OAAO,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;oBACxD,IAAI,YAAY,EAAE,CAAC,CAAC,CAAC;wBAAE,WAAW,GAAG,YAAY,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC;gBACtF,CAAC;gBAED,IAAI,IAAI,EAAE,CAAC;oBACT,KAAK,CAAC,IAAI,CAAC;wBACT,IAAI;wBACJ,SAAS;wBACT,MAAM;wBACN,QAAQ;wBACR,IAAI;wBACJ,OAAO,EAAE,WAAW;qBACrB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;QACL,OAAO;QACP,OAAO,EAAE,2BAA2B;QACpC,KAAK;KACN,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa;IACjC,MAAM,eAAe,GAAG,UAAU,EAAE,CAAC;IAErC,MAAM,CAAC,IAAI,CAAC,wBAAwB,eAAe,EAAE,CAAC,CAAC;IAEvD,IAAI,CAAC;QACH,QAAQ,eAAe,EAAE,CAAC;YACxB,KAAK,QAAQ;gBACX,OAAO,MAAM,kBAAkB,EAAE,CAAC;YACpC,KAAK,OAAO;gBACV,OAAO,MAAM,kBAAkB,EAAE,CAAC;YACpC,KAAK,OAAO;gBACV,OAAO,MAAM,oBAAoB,EAAE,CAAC;YACtC;gBACE,MAAM,CAAC,IAAI,CAAC,4CAA4C,eAAe,EAAE,CAAC,CAAC;gBAC3E,OAAO;oBACL,OAAO,EAAE,KAAK;oBACd,OAAO,EAAE,SAAS;oBAClB,KAAK,EAAE,EAAE;iBACV,CAAC;QACN,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE;YACpC,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;SACxD,CAAC,CAAC;QACH,OAAO;YACL,OAAO,EAAE,KAAK;YACd,OAAO,EAAE,SAAS;YAClB,KAAK,EAAE,EAAE;SACV,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/discovery/index.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Environment Discovery Engine
+ * 環境偵察引擎
+ *
+ * Provides system discovery capabilities including OS detection,
+ * network scanning, service enumeration, and security tool detection.
+ * 提供系統偵察功能，包括作業系統偵測、網路掃描、服務列舉和安全工具偵測。
+ *
+ * @module @panguard-ai/core/discovery
+ */
+/** Discovery engine version / 偵察引擎版本 */
+export declare const DISCOVERY_VERSION = "0.1.0";
+export type { DiscoveryConfig, OSInfo, NetworkInterface, PortInfo, ActiveConnection, NetworkInfo, ServiceInfo, SecurityToolType, SecurityTool, FirewallRule, FirewallStatus, UpdateStatus, UserInfo, RiskFactor, DiscoveryResult, } from './types.js';
+export { detectOS } from './os-detector.js';
+export { getNetworkInterfaces, scanOpenPorts, getActiveConnections, getGateway, getDnsServers, getDnsServersAsync, } from './network-scanner.js';
+export { detectServices } from './service-detector.js';
+export { detectSecurityTools } from './security-tools.js';
+export { checkFirewall } from './firewall-checker.js';
+export { auditUsers } from './user-auditor.js';
+export { calculateRiskScore, getRiskLevel } from './risk-scorer.js';
+export { OsqueryProvider, createOsqueryProvider } from './osquery-provider.js';
+export type { OsqueryProcess, OsqueryListeningPort, OsqueryLoggedInUser, } from './osquery-provider.js';
+//# sourceMappingURL=index.d.ts.map