@panguard-ai/threat-cloud 0.2.0 → 0.2.2

package/dist/admin-dashboard.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Threat Cloud Admin Dashboard
+ * 威脅雲管理後台 - 需要 Admin API Key 認證
+ *
+ * Single-page admin UI served at /admin
+ * All data fetched client-side via existing API endpoints.
+ *
+ * @module @panguard-ai/threat-cloud/admin-dashboard
+ */
+export declare function getAdminHTML(): string;
+//# sourceMappingURL=admin-dashboard.d.ts.map

package/dist/admin-dashboard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin-dashboard.d.ts","sourceRoot":"","sources":["../src/admin-dashboard.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,wBAAgB,YAAY,IAAI,MAAM,CAudrC"}

package/dist/admin-dashboard.js

@@ -0,0 +1,482 @@
+/**
+ * Threat Cloud Admin Dashboard
+ * 威脅雲管理後台 - 需要 Admin API Key 認證
+ *
+ * Single-page admin UI served at /admin
+ * All data fetched client-side via existing API endpoints.
+ *
+ * @module @panguard-ai/threat-cloud/admin-dashboard
+ */
+export function getAdminHTML() {
+    return `<!DOCTYPE html>
+<html lang="en">
+<head>
+<meta charset="utf-8"/>
+<meta name="viewport" content="width=device-width,initial-scale=1"/>
+<meta name="robots" content="noindex,nofollow"/>
+<title>Threat Cloud Admin</title>
+<style>
+*{margin:0;padding:0;box-sizing:border-box}
+:root{--bg:#0a0e14;--surface:#111820;--surface2:#1a2230;--border:#243040;--text:#e0e6ed;--dim:#6b7d8f;--accent:#4fd1c5;--accent2:#38b2ac;--red:#f56565;--orange:#ed8936;--yellow:#ecc94b;--green:#48bb78;--blue:#4299e1}
+body{background:var(--bg);color:var(--text);font-family:-apple-system,BlinkMacSystemFont,'Segoe UI',sans-serif;font-size:14px;line-height:1.5}
+a{color:var(--accent);text-decoration:none}
+/* Login */
+#login{display:flex;align-items:center;justify-content:center;height:100vh}
+#login form{background:var(--surface);border:1px solid var(--border);border-radius:12px;padding:40px;width:380px;text-align:center}
+#login h1{font-size:20px;margin-bottom:8px}
+#login p{color:var(--dim);font-size:13px;margin-bottom:24px}
+#login input{width:100%;padding:10px 14px;background:var(--bg);border:1px solid var(--border);border-radius:8px;color:var(--text);font-size:14px;margin-bottom:16px}
+#login input:focus{outline:none;border-color:var(--accent)}
+#login button{width:100%;padding:10px;background:var(--accent);color:var(--bg);border:none;border-radius:8px;font-size:14px;font-weight:600;cursor:pointer}
+#login button:hover{background:var(--accent2)}
+#login .error{color:var(--red);font-size:13px;margin-top:8px;display:none}
+/* Layout */
+#app{display:none}
+header{background:var(--surface);border-bottom:1px solid var(--border);padding:12px 24px;display:flex;align-items:center;justify-content:space-between;position:sticky;top:0;z-index:10}
+header h1{font-size:16px;font-weight:600}
+header h1 span{color:var(--accent)}
+header .meta{display:flex;align-items:center;gap:16px;font-size:13px;color:var(--dim)}
+header .logout{color:var(--red);cursor:pointer;font-size:12px}
+nav{background:var(--surface);border-bottom:1px solid var(--border);padding:0 24px;display:flex;gap:0;overflow-x:auto}
+nav button{background:none;border:none;border-bottom:2px solid transparent;color:var(--dim);padding:10px 16px;font-size:13px;cursor:pointer;white-space:nowrap}
+nav button:hover{color:var(--text)}
+nav button.active{color:var(--accent);border-bottom-color:var(--accent)}
+main{padding:24px;max-width:1400px;margin:0 auto}
+/* Cards */
+.cards{display:grid;grid-template-columns:repeat(auto-fill,minmax(200px,1fr));gap:16px;margin-bottom:24px}
+.card{background:var(--surface);border:1px solid var(--border);border-radius:10px;padding:16px}
+.card .label{font-size:12px;color:var(--dim);text-transform:uppercase;letter-spacing:0.5px;margin-bottom:4px}
+.card .value{font-size:28px;font-weight:700}
+.card .value.green{color:var(--green)}
+.card .value.blue{color:var(--blue)}
+.card .value.orange{color:var(--orange)}
+.card .value.red{color:var(--red)}
+/* Table */
+.table-wrap{background:var(--surface);border:1px solid var(--border);border-radius:10px;overflow:hidden;margin-bottom:24px}
+.table-header{padding:16px;border-bottom:1px solid var(--border);display:flex;align-items:center;justify-content:space-between;flex-wrap:wrap;gap:8px}
+.table-header h2{font-size:15px;font-weight:600}
+.table-header .controls{display:flex;gap:8px;flex-wrap:wrap}
+.table-header input,.table-header select{padding:6px 10px;background:var(--bg);border:1px solid var(--border);border-radius:6px;color:var(--text);font-size:13px}
+.table-header input:focus,.table-header select:focus{outline:none;border-color:var(--accent)}
+table{width:100%;border-collapse:collapse}
+th{background:var(--surface2);text-align:left;padding:10px 14px;font-size:12px;color:var(--dim);text-transform:uppercase;letter-spacing:0.5px;font-weight:600}
+td{padding:10px 14px;border-top:1px solid var(--border);font-size:13px;max-width:300px;overflow:hidden;text-overflow:ellipsis;white-space:nowrap}
+tr:hover td{background:var(--surface2)}
+/* Badges */
+.badge{display:inline-block;padding:2px 8px;border-radius:4px;font-size:11px;font-weight:600;text-transform:uppercase}
+.badge.critical{background:rgba(245,101,101,.15);color:var(--red)}
+.badge.high{background:rgba(237,137,54,.15);color:var(--orange)}
+.badge.medium{background:rgba(236,201,75,.15);color:var(--yellow)}
+.badge.low{background:rgba(72,187,120,.15);color:var(--green)}
+.badge.informational{background:rgba(66,153,225,.15);color:var(--blue)}
+.badge.sigma{background:rgba(66,153,225,.15);color:var(--blue)}
+.badge.yara{background:rgba(237,137,54,.15);color:var(--orange)}
+.badge.atr{background:rgba(79,209,197,.15);color:var(--accent)}
+/* Charts */
+.chart-row{display:grid;grid-template-columns:1fr 1fr;gap:16px;margin-bottom:24px}
+.chart-box{background:var(--surface);border:1px solid var(--border);border-radius:10px;padding:16px}
+.chart-box h3{font-size:14px;margin-bottom:12px}
+.bar-chart .bar-item{display:flex;align-items:center;gap:8px;margin-bottom:6px}
+.bar-chart .bar-label{width:140px;font-size:12px;color:var(--dim);text-align:right;flex-shrink:0;overflow:hidden;text-overflow:ellipsis;white-space:nowrap}
+.bar-chart .bar-track{flex:1;height:20px;background:var(--bg);border-radius:4px;overflow:hidden}
+.bar-chart .bar-fill{height:100%;border-radius:4px;min-width:2px;display:flex;align-items:center;padding-left:6px;font-size:11px;font-weight:600;color:var(--bg)}
+.bar-chart .bar-count{width:50px;font-size:12px;color:var(--dim);text-align:right}
+/* Pagination */
+.pagination{display:flex;justify-content:center;gap:8px;padding:16px}
+.pagination button{padding:6px 12px;background:var(--surface2);border:1px solid var(--border);border-radius:6px;color:var(--text);font-size:13px;cursor:pointer}
+.pagination button:hover{border-color:var(--accent)}
+.pagination button:disabled{opacity:.4;cursor:default}
+.pagination span{padding:6px 8px;font-size:13px;color:var(--dim)}
+/* Loading */
+.loading{text-align:center;padding:40px;color:var(--dim)}
+/* Empty */
+.empty{text-align:center;padding:40px;color:var(--dim);font-size:13px}
+/* Responsive */
+@media(max-width:768px){.chart-row{grid-template-columns:1fr}.cards{grid-template-columns:repeat(2,1fr)}}
+</style>
+</head>
+<body>
+
+<div id="login">
+<form onsubmit="return doLogin(event)">
+  <h1>Threat Cloud <span>Admin</span></h1>
+  <p>Enter your admin API key to continue.</p>
+  <input type="password" id="keyInput" placeholder="TC_ADMIN_API_KEY" autofocus/>
+  <button type="submit">Login</button>
+  <div class="error" id="loginError">Invalid API key</div>
+</form>
+</div>
+
+<div id="app">
+<header>
+  <h1>Threat Cloud <span>Admin</span></h1>
+  <div class="meta">
+    <span id="uptimeText"></span>
+    <span class="logout" onclick="doLogout()">Logout</span>
+  </div>
+</header>
+<nav id="tabs">
+  <button class="active" data-tab="overview">Overview</button>
+  <button data-tab="rules">Rules</button>
+  <button data-tab="threats">Threats</button>
+  <button data-tab="proposals">ATR Proposals</button>
+  <button data-tab="skills">Skill Threats</button>
+  <button data-tab="blacklist">Blacklist</button>
+  <button data-tab="feeds">Feeds</button>
+</nav>
+<main id="content">
+  <div class="loading">Loading...</div>
+</main>
+</div>
+
+<script>
+let API_KEY='';
+let stats=null;
+let currentTab='overview';
+
+// Auth
+function doLogin(e){
+  e.preventDefault();
+  const key=document.getElementById('keyInput').value.trim();
+  if(!key)return false;
+  API_KEY=key;
+  fetch('/api/stats',{headers:{Authorization:'Bearer '+key}})
+    .then(r=>{if(!r.ok)throw new Error();return r.json()})
+    .then(d=>{
+      if(!d.ok)throw new Error();
+      stats=d.data;
+      sessionStorage.setItem('tc_key',key);
+      document.getElementById('login').style.display='none';
+      document.getElementById('app').style.display='block';
+      renderOverview();
+      fetchUptime();
+    })
+    .catch(()=>{
+      document.getElementById('loginError').style.display='block';
+    });
+  return false;
+}
+function doLogout(){
+  sessionStorage.removeItem('tc_key');
+  API_KEY='';
+  document.getElementById('app').style.display='none';
+  document.getElementById('login').style.display='flex';
+  document.getElementById('keyInput').value='';
+  document.getElementById('loginError').style.display='none';
+}
+// Auto-login from session
+(function(){
+  const k=sessionStorage.getItem('tc_key');
+  if(k){document.getElementById('keyInput').value=k;doLogin(new Event('submit'));}
+})();
+
+// Tabs
+document.getElementById('tabs').addEventListener('click',e=>{
+  if(e.target.tagName!=='BUTTON')return;
+  document.querySelectorAll('#tabs button').forEach(b=>b.classList.remove('active'));
+  e.target.classList.add('active');
+  currentTab=e.target.dataset.tab;
+  renderTab(currentTab);
+});
+
+function renderTab(tab){
+  switch(tab){
+    case 'overview':renderOverview();break;
+    case 'rules':renderRules();break;
+    case 'threats':renderThreats();break;
+    case 'proposals':renderProposals();break;
+    case 'skills':renderSkills();break;
+    case 'blacklist':renderBlacklist();break;
+    case 'feeds':renderFeeds();break;
+  }
+}
+
+function api(path){
+  return fetch(path,{headers:{Authorization:'Bearer '+API_KEY}}).then(r=>r.json());
+}
+function apiText(path){
+  return fetch(path,{headers:{Authorization:'Bearer '+API_KEY}}).then(r=>r.text());
+}
+function $(s){return document.getElementById(s)||document.querySelector(s)}
+function h(s){return String(s).replace(/&/g,'&amp;').replace(/</g,'&lt;').replace(/>/g,'&gt;').replace(/"/g,'&quot;')}
+function num(n){return Number(n).toLocaleString()}
+function badge(text,cls){return '<span class="badge '+cls+'">'+h(text)+'</span>'}
+function severityBadge(s){return badge(s,(s||'').toLowerCase())}
+function sourceBadge(s){return badge(s,(s||'').toLowerCase())}
+function timeAgo(iso){
+  if(!iso)return'-';
+  const d=new Date(iso),now=Date.now(),diff=now-d.getTime();
+  if(diff<60000)return 'just now';
+  if(diff<3600000)return Math.floor(diff/60000)+'m ago';
+  if(diff<86400000)return Math.floor(diff/3600000)+'h ago';
+  return Math.floor(diff/86400000)+'d ago';
+}
+
+function fetchUptime(){
+  api('/health').then(d=>{
+    if(d.ok){
+      const s=Math.round(d.data.uptime);
+      const h=Math.floor(s/3600),m=Math.floor((s%3600)/60);
+      $('uptimeText').textContent='Uptime: '+h+'h '+m+'m';
+    }
+  });
+}
+
+// Overview
+function renderOverview(){
+  if(!stats){api('/api/stats').then(d=>{stats=d.data;renderOverview();});return;}
+  const s=stats;
+  const maxCat=Math.max(...s.rulesByCategory.map(c=>c.count));
+  const maxSev=Math.max(...s.rulesBySeverity.map(c=>c.count));
+  const catColors=['var(--accent)','var(--blue)','var(--orange)','var(--yellow)','var(--green)','var(--red)'];
+
+  let html='<div class="cards">';
+  html+='<div class="card"><div class="label">Total Rules</div><div class="value green">'+num(s.totalRules)+'</div></div>';
+  html+='<div class="card"><div class="label">Total Threats</div><div class="value blue">'+num(s.totalThreats)+'</div></div>';
+  html+='<div class="card"><div class="label">Last 24h Threats</div><div class="value orange">'+num(s.last24hThreats)+'</div></div>';
+  html+='<div class="card"><div class="label">ATR Proposals</div><div class="value">'+num(s.proposalStats.total)+'</div></div>';
+  html+='<div class="card"><div class="label">Skill Threats</div><div class="value">'+num(s.skillThreatsTotal)+'</div></div>';
+  html+='<div class="card"><div class="label">Blacklisted Skills</div><div class="value red">'+num(s.skillBlacklistTotal)+'</div></div>';
+  html+='</div>';
+
+  // Source breakdown
+  html+='<div class="cards" style="margin-bottom:24px">';
+  (s.rulesBySource||[]).forEach(r=>{
+    html+='<div class="card"><div class="label">'+h(r.source).toUpperCase()+' Rules</div><div class="value">'+num(r.count)+'</div></div>';
+  });
+  html+='</div>';
+
+  // Charts
+  html+='<div class="chart-row">';
+  // Category chart
+  html+='<div class="chart-box"><h3>Rules by Category</h3><div class="bar-chart">';
+  (s.rulesByCategory||[]).slice(0,12).forEach((c,i)=>{
+    const pct=Math.round(c.count/maxCat*100);
+    const color=catColors[i%catColors.length];
+    html+='<div class="bar-item"><span class="bar-label">'+h(c.category)+'</span><div class="bar-track"><div class="bar-fill" style="width:'+pct+'%;background:'+color+'">'+num(c.count)+'</div></div></div>';
+  });
+  html+='</div></div>';
+
+  // Severity chart
+  html+='<div class="chart-box"><h3>Rules by Severity</h3><div class="bar-chart">';
+  const sevColors={'critical':'var(--red)','high':'var(--orange)','medium':'var(--yellow)','low':'var(--green)','informational':'var(--blue)'};
+  (s.rulesBySeverity||[]).forEach(c=>{
+    const pct=Math.round(c.count/maxSev*100);
+    const color=sevColors[c.severity]||'var(--dim)';
+    html+='<div class="bar-item"><span class="bar-label">'+h(c.severity)+'</span><div class="bar-track"><div class="bar-fill" style="width:'+pct+'%;background:'+color+'">'+num(c.count)+'</div></div></div>';
+  });
+  html+='</div></div>';
+  html+='</div>';
+
+  // MITRE + Attack Types
+  html+='<div class="chart-row">';
+  html+='<div class="chart-box"><h3>Top Attack Types</h3>';
+  if(s.topAttackTypes.length===0)html+='<div class="empty">No threat data yet</div>';
+  else{html+='<table><tr><th>Type</th><th>Count</th></tr>';s.topAttackTypes.forEach(t=>{html+='<tr><td>'+h(t.type)+'</td><td>'+num(t.count)+'</td></tr>';});html+='</table>';}
+  html+='</div>';
+  html+='<div class="chart-box"><h3>Top MITRE Techniques</h3>';
+  if(s.topMitreTechniques.length===0)html+='<div class="empty">No threat data yet</div>';
+  else{html+='<table><tr><th>Technique</th><th>Count</th></tr>';s.topMitreTechniques.forEach(t=>{html+='<tr><td>'+h(t.technique)+'</td><td>'+num(t.count)+'</td></tr>';});html+='</table>';}
+  html+='</div>';
+  html+='</div>';
+
+  $('content').innerHTML=html;
+}
+
+// Rules
+let rulesPage=0;const RULES_PER_PAGE=50;let rulesFilter={search:'',source:'',category:'',severity:''};
+function renderRules(){
+  $('content').innerHTML='<div class="loading">Loading rules...</div>';
+  let url='/api/rules?limit=5000';
+  api(url).then(d=>{
+    const allRules=d.data||[];
+    const filtered=allRules.filter(r=>{
+      if(rulesFilter.source&&r.source!==rulesFilter.source)return false;
+      if(rulesFilter.category&&r.category!==rulesFilter.category)return false;
+      if(rulesFilter.severity&&r.severity!==rulesFilter.severity)return false;
+      if(rulesFilter.search){
+        const q=rulesFilter.search.toLowerCase();
+        return (r.ruleId||'').toLowerCase().includes(q)||(r.ruleContent||'').toLowerCase().includes(q);
+      }
+      return true;
+    });
+    const total=filtered.length;
+    const pages=Math.ceil(total/RULES_PER_PAGE);
+    if(rulesPage>=pages)rulesPage=Math.max(0,pages-1);
+    const slice=filtered.slice(rulesPage*RULES_PER_PAGE,(rulesPage+1)*RULES_PER_PAGE);
+
+    let html='<div class="table-wrap"><div class="table-header"><h2>Rules ('+num(total)+' of '+num(allRules.length)+')</h2>';
+    html+='<div class="controls">';
+    html+='<input type="text" placeholder="Search..." value="'+h(rulesFilter.search)+'" onchange="rulesFilter.search=this.value;rulesPage=0;renderRules()"/>';
+    html+='<select onchange="rulesFilter.source=this.value;rulesPage=0;renderRules()"><option value="">All Sources</option><option value="sigma"'+(rulesFilter.source==='sigma'?' selected':'')+'>Sigma</option><option value="yara"'+(rulesFilter.source==='yara'?' selected':'')+'>YARA</option><option value="atr"'+(rulesFilter.source==='atr'?' selected':'')+'>ATR</option></select>';
+    html+='<select onchange="rulesFilter.severity=this.value;rulesPage=0;renderRules()"><option value="">All Severity</option><option value="critical"'+(rulesFilter.severity==='critical'?' selected':'')+'>Critical</option><option value="high"'+(rulesFilter.severity==='high'?' selected':'')+'>High</option><option value="medium"'+(rulesFilter.severity==='medium'?' selected':'')+'>Medium</option><option value="low"'+(rulesFilter.severity==='low'?' selected':'')+'>Low</option></select>';
+    html+='</div></div>';
+    html+='<table><tr><th>Rule ID</th><th>Source</th><th>Category</th><th>Severity</th><th>Published</th></tr>';
+    slice.forEach(r=>{
+      html+='<tr><td title="'+h(r.ruleId)+'">'+h((r.ruleId||'').slice(0,60))+'</td>';
+      html+='<td>'+sourceBadge(r.source||'unknown')+'</td>';
+      html+='<td>'+h(r.category||'unknown')+'</td>';
+      html+='<td>'+severityBadge(r.severity||'unknown')+'</td>';
+      html+='<td>'+timeAgo(r.publishedAt)+'</td></tr>';
+    });
+    html+='</table>';
+    html+='<div class="pagination">';
+    html+='<button onclick="rulesPage=0;renderRules()" '+(rulesPage===0?'disabled':'')+'>First</button>';
+    html+='<button onclick="rulesPage--;renderRules()" '+(rulesPage===0?'disabled':'')+'>Prev</button>';
+    html+='<span>Page '+(rulesPage+1)+' of '+Math.max(1,pages)+'</span>';
+    html+='<button onclick="rulesPage++;renderRules()" '+(rulesPage>=pages-1?'disabled':'')+'>Next</button>';
+    html+='<button onclick="rulesPage='+(pages-1)+';renderRules()" '+(rulesPage>=pages-1?'disabled':'')+'>Last</button>';
+    html+='</div></div>';
+    $('content').innerHTML=html;
+  });
+}
+
+// Threats (via stats - no direct GET /api/threats endpoint for list)
+function renderThreats(){
+  api('/api/stats').then(d=>{
+    const s=d.data;
+    let html='<div class="cards">';
+    html+='<div class="card"><div class="label">Total Threats</div><div class="value blue">'+num(s.totalThreats)+'</div></div>';
+    html+='<div class="card"><div class="label">Last 24h</div><div class="value orange">'+num(s.last24hThreats)+'</div></div>';
+    html+='</div>';
+    html+='<div class="chart-row">';
+    html+='<div class="chart-box"><h3>Attack Types</h3>';
+    if(!s.topAttackTypes.length)html+='<div class="empty">No threat data collected yet. Threats are submitted by Guard instances.</div>';
+    else{html+='<table><tr><th>Type</th><th>Count</th></tr>';s.topAttackTypes.forEach(t=>{html+='<tr><td>'+h(t.type)+'</td><td>'+num(t.count)+'</td></tr>';});html+='</table>';}
+    html+='</div>';
+    html+='<div class="chart-box"><h3>MITRE Techniques</h3>';
+    if(!s.topMitreTechniques.length)html+='<div class="empty">No MITRE technique data yet.</div>';
+    else{html+='<table><tr><th>Technique</th><th>Count</th></tr>';s.topMitreTechniques.forEach(t=>{html+='<tr><td><a href="https://attack.mitre.org/techniques/'+h(t.technique).replace('.','/')+'" target="_blank">'+h(t.technique)+'</a></td><td>'+num(t.count)+'</td></tr>';});html+='</table>';}
+    html+='</div></div>';
+    $('content').innerHTML=html;
+  });
+}
+
+// ATR Proposals
+function renderProposals(){
+  $('content').innerHTML='<div class="loading">Loading proposals...</div>';
+  api('/api/atr-proposals').then(d=>{
+    const proposals=d.data||[];
+    let html='<div class="table-wrap"><div class="table-header"><h2>ATR Proposals ('+proposals.length+')</h2></div>';
+    if(!proposals.length){html+='<div class="empty">No ATR proposals submitted yet. Proposals are auto-generated when Guard detects new threat patterns.</div>';}
+    else{
+      html+='<table><tr><th>Pattern Hash</th><th>Status</th><th>Confirmations</th><th>LLM Verdict</th><th>Submitted</th></tr>';
+      proposals.forEach(p=>{
+        const status=p.status||p.llm_verdict||'pending';
+        const cls=status==='approved'?'low':status==='rejected'?'critical':'medium';
+        html+='<tr><td title="'+h(p.pattern_hash)+'">'+h((p.pattern_hash||'').slice(0,16))+'...</td>';
+        html+='<td>'+badge(status,cls)+'</td>';
+        html+='<td>'+num(p.confirmation_count||0)+'</td>';
+        html+='<td>'+(p.llm_verdict?badge(p.llm_verdict,p.llm_verdict==='approve'?'low':'critical'):'<span style="color:var(--dim)">pending</span>')+'</td>';
+        html+='<td>'+timeAgo(p.created_at)+'</td></tr>';
+      });
+      html+='</table>';
+    }
+    html+='</div>';
+    $('content').innerHTML=html;
+  }).catch(()=>{
+    $('content').innerHTML='<div class="empty">Cannot load proposals. Admin auth may be required for this endpoint.</div>';
+  });
+}
+
+// Skill Threats
+function renderSkills(){
+  $('content').innerHTML='<div class="loading">Loading skill threats...</div>';
+  api('/api/skill-threats?limit=200').then(d=>{
+    const threats=d.data||[];
+    let html='<div class="table-wrap"><div class="table-header"><h2>Skill Threats ('+threats.length+')</h2></div>';
+    if(!threats.length){html+='<div class="empty">No skill threats reported yet. Skill threats are submitted when Guard audits a new MCP skill installation.</div>';}
+    else{
+      html+='<table><tr><th>Skill Name</th><th>Risk Score</th><th>Risk Level</th><th>Skill Hash</th><th>Reported</th></tr>';
+      threats.forEach(t=>{
+        const cls=(t.risk_level||'').toLowerCase();
+        html+='<tr><td>'+h(t.skill_name)+'</td>';
+        html+='<td>'+num(t.risk_score)+'</td>';
+        html+='<td>'+severityBadge(t.risk_level)+'</td>';
+        html+='<td title="'+h(t.skill_hash)+'">'+h((t.skill_hash||'').slice(0,12))+'...</td>';
+        html+='<td>'+timeAgo(t.created_at)+'</td></tr>';
+      });
+      html+='</table>';
+    }
+    html+='</div>';
+    $('content').innerHTML=html;
+  }).catch(()=>{
+    $('content').innerHTML='<div class="empty">Cannot load skill threats. Admin auth required.</div>';
+  });
+}
+
+// Blacklist
+function renderBlacklist(){
+  $('content').innerHTML='<div class="loading">Loading blacklist...</div>';
+  api('/api/skill-blacklist').then(d=>{
+    const list=d.data||[];
+    let html='<div class="table-wrap"><div class="table-header"><h2>Community Blacklist ('+list.length+')</h2></div>';
+    if(!list.length){html+='<div class="empty">No blacklisted skills yet. Skills are blacklisted when 3+ distinct clients report avg risk >= 70.</div>';}
+    else{
+      html+='<table><tr><th>Skill Name</th><th>Avg Risk</th><th>Max Level</th><th>Reports</th><th>First Seen</th><th>Last Seen</th></tr>';
+      list.forEach(s=>{
+        html+='<tr><td>'+h(s.skillName)+'</td>';
+        html+='<td>'+num(s.avgRiskScore)+'</td>';
+        html+='<td>'+severityBadge(s.maxRiskLevel)+'</td>';
+        html+='<td>'+num(s.reportCount)+'</td>';
+        html+='<td>'+timeAgo(s.firstReported)+'</td>';
+        html+='<td>'+timeAgo(s.lastReported)+'</td></tr>';
+      });
+      html+='</table>';
+    }
+    html+='</div>';
+    $('content').innerHTML=html;
+  });
+}
+
+// Feeds
+function renderFeeds(){
+  Promise.all([
+    apiText('/api/feeds/ip-blocklist'),
+    apiText('/api/feeds/domain-blocklist'),
+    api('/api/skill-whitelist')
+  ]).then(([ips,domains,wl])=>{
+    const ipList=(ips||'').trim().split('\\n').filter(Boolean);
+    const domList=(domains||'').trim().split('\\n').filter(Boolean);
+    const whiteList=(wl.data||[]);
+
+    let html='<div class="cards">';
+    html+='<div class="card"><div class="label">IP Blocklist</div><div class="value red">'+num(ipList.length)+'</div></div>';
+    html+='<div class="card"><div class="label">Domain Blocklist</div><div class="value orange">'+num(domList.length)+'</div></div>';
+    html+='<div class="card"><div class="label">Skill Whitelist</div><div class="value green">'+num(whiteList.length)+'</div></div>';
+    html+='</div>';
+
+    html+='<div class="chart-row">';
+    // IP Blocklist
+    html+='<div class="chart-box"><h3>IP Blocklist</h3>';
+    if(!ipList.length)html+='<div class="empty">No blocked IPs yet.</div>';
+    else{html+='<table><tr><th>IP Address</th></tr>';ipList.slice(0,50).forEach(ip=>{html+='<tr><td>'+h(ip)+'</td></tr>';});if(ipList.length>50)html+='<tr><td style="color:var(--dim)">...and '+(ipList.length-50)+' more</td></tr>';html+='</table>';}
+    html+='</div>';
+    // Domain Blocklist
+    html+='<div class="chart-box"><h3>Domain Blocklist</h3>';
+    if(!domList.length)html+='<div class="empty">No blocked domains yet.</div>';
+    else{html+='<table><tr><th>Domain</th></tr>';domList.slice(0,50).forEach(d=>{html+='<tr><td>'+h(d)+'</td></tr>';});if(domList.length>50)html+='<tr><td style="color:var(--dim)">...and '+(domList.length-50)+' more</td></tr>';html+='</table>';}
+    html+='</div></div>';
+
+    // Skill Whitelist
+    html+='<div class="table-wrap"><div class="table-header"><h2>Community Skill Whitelist ('+whiteList.length+')</h2></div>';
+    if(!whiteList.length){html+='<div class="empty">No whitelisted skills yet.</div>';}
+    else{
+      html+='<table><tr><th>Skill Name</th><th>Reports</th><th>Fingerprint</th></tr>';
+      whiteList.forEach(s=>{
+        html+='<tr><td>'+h(s.skill_name||s.skillName)+'</td>';
+        html+='<td>'+num(s.report_count||s.reportCount||0)+'</td>';
+        html+='<td title="'+h(s.fingerprint_hash||'')+'">'+h((s.fingerprint_hash||'-').slice(0,16))+'</td></tr>';
+      });
+      html+='</table>';
+    }
+    html+='</div>';
+
+    $('content').innerHTML=html;
+  });
+}
+</script>
+</body>
+</html>`;
+}
+//# sourceMappingURL=admin-dashboard.js.map

package/dist/admin-dashboard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin-dashboard.js","sourceRoot":"","sources":["../src/admin-dashboard.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,MAAM,UAAU,YAAY;IAC1B,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;QAqdD,CAAC;AACT,CAAC"}

package/dist/backup.d.ts

@@ -0,0 +1,40 @@
+/**
+ * BackupManager - SQLite database backup with rotation
+ *
+ * Uses WAL checkpoint + file copy for a consistent backup.
+ * Keeps the last N backups (default 7) and rotates old ones automatically.
+ */
+export interface BackupResult {
+    readonly path: string;
+    readonly sizeBytes: number;
+    readonly timestamp: string;
+}
+export declare class BackupManager {
+    private readonly dbPath;
+    private readonly backupDir;
+    private readonly maxBackups;
+    private readonly dbName;
+    constructor(dbPath: string, backupDir: string, maxBackups?: number);
+    /**
+     * Create a consistent backup of the SQLite database.
+     *
+     * 1. Opens the DB in readonly mode
+     * 2. Runs a WAL checkpoint (TRUNCATE) to flush pending writes
+     * 3. Copies the database file to the backup directory
+     * 4. Rotates old backups beyond maxBackups
+     */
+    backup(): BackupResult;
+    /**
+     * Remove old backups beyond maxBackups, keeping the newest ones.
+     */
+    rotate(): void;
+    /**
+     * List existing backups for this database, sorted newest-first.
+     */
+    listBackups(): string[];
+    /**
+     * Format a byte count as a human-readable string.
+     */
+    static formatSize(bytes: number): string;
+}
+//# sourceMappingURL=backup.d.ts.map

package/dist/backup.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"backup.d.ts","sourceRoot":"","sources":["../src/backup.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAMH,MAAM,WAAW,YAAY;IAC3B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;CAC5B;AAED,qBAAa,aAAa;IACxB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IACpC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;gBAEpB,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,UAAU,SAAI;IAkB7D;;;;;;;OAOG;IACH,MAAM,IAAI,YAAY;IA0CtB;;OAEG;IACH,MAAM,IAAI,IAAI;IAsBd;;OAEG;IACH,WAAW,IAAI,MAAM,EAAE;IAevB;;OAEG;IACH,MAAM,CAAC,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM;CAKzC"}