@panguard-ai/panguard-skill-auditor 1.2.3 → 1.3.1

package/dist/checks/permission-check.d.ts

@@ -4,6 +4,9 @@
  *
  * Analyzes what tools and permissions a skill requires based on its instructions.
  * 根據技能指令分析其需要的工具和權限。
+ *
+ * v1.4: Runs patterns against prose only (code blocks + negation sections stripped)
+ *       to avoid false positives from documentation examples.
  */
 import type { SkillManifest, CheckResult } from '../types.js';
 export declare function checkPermissions(manifest: SkillManifest): CheckResult;

package/dist/checks/permission-check.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"permission-check.d.ts","sourceRoot":"","sources":["../../src/checks/permission-check.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAgB,WAAW,EAAE,MAAM,aAAa,CAAC;AAqF5E,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,aAAa,GAAG,WAAW,CA+DrE"}
+{"version":3,"file":"permission-check.d.ts","sourceRoot":"","sources":["../../src/checks/permission-check.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAgB,WAAW,EAAE,MAAM,aAAa,CAAC;AAkG5E,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,aAAa,GAAG,WAAW,CAuDrE"}

package/dist/checks/permission-check.js

@@ -4,11 +4,16 @@
  *
  * Analyzes what tools and permissions a skill requires based on its instructions.
  * 根據技能指令分析其需要的工具和權限。
+ *
+ * v1.4: Runs patterns against prose only (code blocks + negation sections stripped)
+ *       to avoid false positives from documentation examples.
  */
+import { prepareContent } from '@panguard-ai/scan-core';
 const TOOL_PATTERNS = [
     {
         name: 'Bash/Shell',
-        regex: /\b(bash|shell|terminal|command line|execute.*command|run.*command)\b/i,
+        // Only match explicit shell execution intent, not mere mention of "terminal"
+        regex: /\b(bash\s+-[ci]|sh\s+-c|execute.*command|run.*command|shell\s+command|spawn\s+shell)\b/i,
         risk: 'high',
         reason: 'Can execute arbitrary system commands',
     },
@@ -20,33 +25,42 @@ const TOOL_PATTERNS = [
     },
     {
         name: 'File Read',
-        regex: /\b(read.*file|cat\s|open.*file|load.*from)\b/i,
+        regex: /\b(read.*file|open.*file|load.*from)\b/i,
         risk: 'low',
         reason: 'Can read files from disk',
     },
     {
         name: 'Network/HTTP',
-        regex: /\b(fetch|http request|api call|curl|wget|download|upload)\b/i,
+        regex: /\b(http\s+request|api\s+call|download|upload)\b/i,
         risk: 'medium',
         reason: 'Can make network requests',
     },
     {
         name: 'Browser',
-        regex: /\b(browser|open.*url|navigate.*to|web.*scrape|playwright|puppeteer)\b/i,
+        regex: /\b(open.*url|navigate.*to|web.*scrape|playwright|puppeteer|headless\s+browser)\b/i,
         risk: 'medium',
         reason: 'Can open URLs and interact with web pages',
     },
     {
         name: 'Database',
-        regex: /\b(database|sql|query|insert|update|delete.*from|mongodb|postgres|mysql)\b/i,
+        // Only match explicit DB operations, not generic words like "update" or "query"
+        regex: /\b(SELECT\s+.*\s+FROM|INSERT\s+INTO|CREATE\s+TABLE|DROP\s+TABLE|ALTER\s+TABLE|db\.(query|execute|run)|mongodb|postgres(?:ql)?|mysql|sqlite|supabase|prisma|drizzle)\b/i,
         risk: 'high',
         reason: 'Can access and modify database contents',
     },
     {
         name: 'Credentials',
-        regex: /\b(api[_\s]?key|token|password|secret|credential|auth)\b/i,
-        risk: 'medium',
-        reason: 'Handles sensitive credentials',
+        // Only match credential theft/access patterns, not mere mention of "token" or "auth"
+        regex: /\b(steal\s+.*(?:key|token|credential)|harvest\s+.*(?:password|secret)|exfiltrate\s+.*(?:credential|token)|dump\s+.*(?:password|secret))\b/i,
+        risk: 'high',
+        reason: 'Attempts to steal or exfiltrate credentials',
+    },
+    {
+        name: 'Credential Handling',
+        // Separate lower-risk pattern for skills that legitimately handle credentials
+        regex: /\b(api[_\s]?key|password|secret[_\s]?key|credential)\b/i,
+        risk: 'low',
+        reason: 'Handles credentials (verify they are used appropriately)',
     },
     {
         name: 'SSH/Keys',
@@ -74,33 +88,24 @@ const TOOL_PATTERNS = [
     },
     {
         name: 'Clipboard',
-        regex: /\b(pbpaste|pbcopy|xclip|xsel|clipboard)\b/i,
+        regex: /\b(pbpaste|pbcopy|xclip|xsel)\b/i,
         risk: 'medium',
         reason: 'Can access or modify clipboard contents',
     },
 ];
 export function checkPermissions(manifest) {
     const findings = [];
-    const instructions = manifest.instructions;
+    const { prose } = prepareContent(manifest.instructions);
     const detectedTools = [];
     for (const pattern of TOOL_PATTERNS) {
-        if (pattern.regex.test(instructions)) {
+        if (pattern.regex.test(prose)) {
             detectedTools.push({ name: pattern.name, risk: pattern.risk });
-            if (pattern.risk === 'high') {
-                findings.push({
-                    id: `perm-${pattern.name.toLowerCase().replace(/[^a-z]/g, '-')}`,
-                    title: `Skill uses ${pattern.name} (${pattern.risk} risk)`,
-                    description: pattern.reason,
-                    severity: 'high',
-                    category: 'permission',
-                });
-            }
-            else if (pattern.risk === 'medium') {
+            if (pattern.risk !== 'low') {
                 findings.push({
                     id: `perm-${pattern.name.toLowerCase().replace(/[^a-z]/g, '-')}`,
                     title: `Skill uses ${pattern.name} (${pattern.risk} risk)`,
                     description: pattern.reason,
-                    severity: 'medium',
+                    severity: pattern.risk === 'high' ? 'high' : 'medium',
                     category: 'permission',
                 });
             }

package/dist/checks/permission-check.js.map

@@ -1 +1 @@
-{"version":3,"file":"permission-check.js","sourceRoot":"","sources":["../../src/checks/permission-check.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAWH,MAAM,aAAa,GAAkB;IACnC;QACE,IAAI,EAAE,YAAY;QAClB,KAAK,EAAE,uEAAuE;QAC9E,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,uCAAuC;KAChD;IACD;QACE,IAAI,EAAE,YAAY;QAClB,KAAK,EAAE,0DAA0D;QACjE,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,0BAA0B;KACnC;IACD;QACE,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,+CAA+C;QACtD,IAAI,EAAE,KAAK;QACX,MAAM,EAAE,0BAA0B;KACnC;IACD;QACE,IAAI,EAAE,cAAc;QACpB,KAAK,EAAE,8DAA8D;QACrE,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,2BAA2B;KACpC;IACD;QACE,IAAI,EAAE,SAAS;QACf,KAAK,EAAE,wEAAwE;QAC/E,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,2CAA2C;KACpD;IACD;QACE,IAAI,EAAE,UAAU;QAChB,KAAK,EAAE,6EAA6E;QACpF,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,yCAAyC;KAClD;IACD;QACE,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,2DAA2D;QAClE,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,+BAA+B;KACxC;IACD;QACE,IAAI,EAAE,UAAU;QAChB,KAAK,EAAE,8DAA8D;QACrE,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,+BAA+B;KACxC;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,gEAAgE;QACvE,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,wCAAwC;KACjD;IACD;QACE,IAAI,EAAE,QAAQ;QACd,KAAK,EAAE,2EAA2E;QAClF,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,uDAAuD;KAChE;IACD;QACE,IAAI,EAAE,eAAe;QACrB,KAAK,EACH,yFAAyF;QAC3F,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,oDAAoD;KAC7D;IACD;QACE,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,4CAA4C;QACnD,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,yCAAyC;KAClD;CACF,CAAC;AAEF,MAAM,UAAU,gBAAgB,CAAC,QAAuB;IACtD,MAAM,QAAQ,GAAmB,EAAE,CAAC;IACpC,MAAM,YAAY,GAAG,QAAQ,CAAC,YAAY,CAAC;IAC3C,MAAM,aAAa,GAA0C,EAAE,CAAC;IAEhE,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;QACpC,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;YACrC,aAAa,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;YAE/D,IAAI,OAAO,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC5B,QAAQ,CAAC,IAAI,CAAC;oBACZ,EAAE,EAAE,QAAQ,OAAO,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,EAAE;oBAChE,KAAK,EAAE,cAAc,OAAO,CAAC,IAAI,KAAK,OAAO,CAAC,IAAI,QAAQ;oBAC1D,WAAW,EAAE,OAAO,CAAC,MAAM;oBAC3B,QAAQ,EAAE,MAAM;oBAChB,QAAQ,EAAE,YAAY;iBACvB,CAAC,CAAC;YACL,CAAC;iBAAM,IAAI,OAAO,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACrC,QAAQ,CAAC,IAAI,CAAC;oBACZ,EAAE,EAAE,QAAQ,OAAO,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,EAAE;oBAChE,KAAK,EAAE,cAAc,OAAO,CAAC,IAAI,KAAK,OAAO,CAAC,IAAI,QAAQ;oBAC1D,WAAW,EAAE,OAAO,CAAC,MAAM;oBAC3B,QAAQ,EAAE,QAAQ;oBAClB,QAAQ,EAAE,YAAY;iBACvB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,6DAA6D;IAC7D,IAAI,QAAQ,CAAC,eAAe,KAAK,MAAM,EAAE,CAAC;QACxC,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,uBAAuB;YAC3B,KAAK,EAAE,+BAA+B;YACtC,WAAW,EACT,uGAAuG;YACzG,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,YAAY;SACvB,CAAC,CAAC;IACL,CAAC;IAED,kDAAkD;IAClD,IAAI,QAAQ,CAAC,sBAAsB,EAAE,CAAC;QACpC,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,eAAe;YACnB,KAAK,EAAE,2BAA2B;YAClC,WAAW,EACT,sFAAsF;YACxF,QAAQ,EAAE,KAAK;YACf,QAAQ,EAAE,YAAY;SACvB,CAAC,CAAC;IACL,CAAC;IAED,MAAM,aAAa,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;IAC5E,MAAM,MAAM,GAAG,aAAa,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC;IAEnD,MAAM,SAAS,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC9D,MAAM,KAAK,GACT,aAAa,CAAC,MAAM,GAAG,CAAC;QACtB,CAAC,CAAC,qBAAqB,SAAS,EAAE;QAClC,CAAC,CAAC,6CAA6C,CAAC;IAEpD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;AACrC,CAAC"}
+{"version":3,"file":"permission-check.js","sourceRoot":"","sources":["../../src/checks/permission-check.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AASxD,MAAM,aAAa,GAAkB;IACnC;QACE,IAAI,EAAE,YAAY;QAClB,6EAA6E;QAC7E,KAAK,EAAE,yFAAyF;QAChG,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,uCAAuC;KAChD;IACD;QACE,IAAI,EAAE,YAAY;QAClB,KAAK,EAAE,0DAA0D;QACjE,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,0BAA0B;KACnC;IACD;QACE,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,yCAAyC;QAChD,IAAI,EAAE,KAAK;QACX,MAAM,EAAE,0BAA0B;KACnC;IACD;QACE,IAAI,EAAE,cAAc;QACpB,KAAK,EAAE,kDAAkD;QACzD,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,2BAA2B;KACpC;IACD;QACE,IAAI,EAAE,SAAS;QACf,KAAK,EAAE,mFAAmF;QAC1F,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,2CAA2C;KACpD;IACD;QACE,IAAI,EAAE,UAAU;QAChB,gFAAgF;QAChF,KAAK,EACH,wKAAwK;QAC1K,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,yCAAyC;KAClD;IACD;QACE,IAAI,EAAE,aAAa;QACnB,qFAAqF;QACrF,KAAK,EACH,4IAA4I;QAC9I,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,6CAA6C;KACtD;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,8EAA8E;QAC9E,KAAK,EAAE,yDAAyD;QAChE,IAAI,EAAE,KAAK;QACX,MAAM,EAAE,0DAA0D;KACnE;IACD;QACE,IAAI,EAAE,UAAU;QAChB,KAAK,EAAE,8DAA8D;QACrE,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,+BAA+B;KACxC;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,gEAAgE;QACvE,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,wCAAwC;KACjD;IACD;QACE,IAAI,EAAE,QAAQ;QACd,KAAK,EAAE,2EAA2E;QAClF,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,uDAAuD;KAChE;IACD;QACE,IAAI,EAAE,eAAe;QACrB,KAAK,EACH,yFAAyF;QAC3F,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,oDAAoD;KAC7D;IACD;QACE,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,kCAAkC;QACzC,IAAI,EAAE,QAAQ;QACd,MAAM,EAAE,yCAAyC;KAClD;CACF,CAAC;AAEF,MAAM,UAAU,gBAAgB,CAAC,QAAuB;IACtD,MAAM,QAAQ,GAAmB,EAAE,CAAC;IACpC,MAAM,EAAE,KAAK,EAAE,GAAG,cAAc,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;IACxD,MAAM,aAAa,GAA0C,EAAE,CAAC;IAEhE,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;QACpC,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;YAC9B,aAAa,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;YAE/D,IAAI,OAAO,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;gBAC3B,QAAQ,CAAC,IAAI,CAAC;oBACZ,EAAE,EAAE,QAAQ,OAAO,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,EAAE;oBAChE,KAAK,EAAE,cAAc,OAAO,CAAC,IAAI,KAAK,OAAO,CAAC,IAAI,QAAQ;oBAC1D,WAAW,EAAE,OAAO,CAAC,MAAM;oBAC3B,QAAQ,EAAE,OAAO,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ;oBACrD,QAAQ,EAAE,YAAY;iBACvB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,6DAA6D;IAC7D,IAAI,QAAQ,CAAC,eAAe,KAAK,MAAM,EAAE,CAAC;QACxC,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,uBAAuB;YAC3B,KAAK,EAAE,+BAA+B;YACtC,WAAW,EACT,uGAAuG;YACzG,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,YAAY;SACvB,CAAC,CAAC;IACL,CAAC;IAED,kDAAkD;IAClD,IAAI,QAAQ,CAAC,sBAAsB,EAAE,CAAC;QACpC,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,eAAe;YACnB,KAAK,EAAE,2BAA2B;YAClC,WAAW,EACT,sFAAsF;YACxF,QAAQ,EAAE,KAAK;YACf,QAAQ,EAAE,YAAY;SACvB,CAAC,CAAC;IACL,CAAC;IAED,MAAM,aAAa,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;IAC5E,MAAM,MAAM,GAAG,aAAa,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC;IAEnD,MAAM,SAAS,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC9D,MAAM,KAAK,GACT,aAAa,CAAC,MAAM,GAAG,CAAC;QACtB,CAAC,CAAC,qBAAqB,SAAS,EAAE;QAClC,CAAC,CAAC,6CAA6C,CAAC;IAEpD,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;AACrC,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@panguard-ai/panguard-skill-auditor",
-  "version": "1.2.3",
+  "version": "1.3.1",
   "license": "MIT",
   "repository": {
     "type": "git",
@@ -30,10 +30,10 @@
   ],
   "dependencies": {
     "js-yaml": "^4.1.0",
-    "@panguard-ai/scan-core": "0.1.2",
-    "@panguard-ai/core": "1.1.0",
-    "@panguard-ai/panguard-scan": "1.1.0",
-    "@panguard-ai/atr": "1.1.0"
+    "@panguard-ai/scan-core": "1.3.1",
+    "@panguard-ai/atr": "1.3.0",
+    "@panguard-ai/core": "1.3.0",
+    "@panguard-ai/panguard-scan": "1.3.0"
   },
   "devDependencies": {
     "@types/js-yaml": "^4.0.9",