@pensar/apex 1.8.0 → 1.8.2-canary.fb75c486

package/build/cli-g5h24ny8.js

@@ -0,0 +1,197 @@
+import {
+  __esm
+} from "./cli-8rxa073f.js";
+
+// package.json
+var package_default;
+var init_package = __esm(() => {
+  package_default = {
+    author: "Pensar",
+    bin: {
+      pensar: "./bin/pensar.js"
+    },
+    dependencies: {
+      "@ai-sdk/amazon-bedrock": "^4.0.113",
+      "@ai-sdk/anthropic": "^3.0.81",
+      "@ai-sdk/google": "^3.0.37",
+      "@ai-sdk/openai": "3.0.46",
+      "@ai-sdk/openai-compatible": "^2.0.35",
+      "@ai-sdk/provider": "^3.0.8",
+      "@daytonaio/sdk": "^0.112.1",
+      "@googleapis/gmail": "^16.1.1",
+      "@microsoft/microsoft-graph-client": "^3.0.7",
+      "@modelcontextprotocol/sdk": "^1.0.0",
+      "@openrouter/ai-sdk-provider": "^2.2.3",
+      "@opentelemetry/api": "^1.9.0",
+      "@opentui/core": "^0.1.107",
+      "@opentui/react": "^0.1.107",
+      "@pensar/surface": "0.2.1",
+      "@playwright/mcp": "^0.0.54",
+      ai: "^6.0.105",
+      glob: "^13.0.0",
+      "highlight.js": "^11.11.1",
+      imapflow: "^1.2.10",
+      mailparser: "^3.9.3",
+      marked: "^16.4.0",
+      "mime-types": "^3.0.2",
+      nodemailer: "^8.0.7",
+      "p-limit": "^7.2.0",
+      react: "^19.2.0",
+      sharp: "^0.34.4",
+      tldts: "^7.0.28",
+      yaml: "^2.8.2",
+      zod: "^3.25.76"
+    },
+    description: "AI-powered penetration testing CLI tool with terminal UI",
+    devDependencies: {
+      "@biomejs/biome": "2.4.14",
+      "@types/bun": "^1.3.0",
+      "@types/mailparser": "^3.4.6",
+      "@types/mime-types": "^3.0.1",
+      "@types/nodemailer": "^8.0.0",
+      "@types/react": "^19.2.6",
+      dotenv: "^17.2.3",
+      knip: "^6.12.0",
+      prettier: "^3.8.1",
+      vitest: "^2.1.8"
+    },
+    engines: {
+      bun: ">=1.0.0",
+      node: ">=18.0.0"
+    },
+    files: [
+      "build",
+      "bin",
+      "assets",
+      "pensar.svg",
+      "LICENSE"
+    ],
+    keywords: [
+      "penetration-testing",
+      "security",
+      "pentesting",
+      "ai",
+      "cli",
+      "terminal",
+      "tui"
+    ],
+    license: "MIT",
+    main: "build/cli.js",
+    module: "src/tui/index.tsx",
+    name: "@pensar/apex",
+    optionalDependencies: {
+      weave: "^0.12.1"
+    },
+    packageManager: "yarn@1.22.22+sha512.a6b2f7906b721bba3d67d4aff083df04dad64c399707841b7acf00f6b133b7ac24255f2652fa22ae3534329dc6180534e98d17432037ff6fd140556e2bb3137e",
+    peerDependencies: {
+      typescript: "^5.9.3"
+    },
+    repository: {
+      type: "git",
+      url: "https://github.com/pensarai/apex.git"
+    },
+    scripts: {
+      build: "bun build src/cli.ts --outdir build --target node --format esm --splitting --external @opentui/core --external @opentui/react --external @opentui/react/* --external react --external react/jsx-runtime --external react/jsx-dev-runtime --external react-reconciler --external weave",
+      "build:binaries": "bun run generate:ascii && mkdir -p dist && bun run build:binary:macos-arm64 && bun run build:binary:macos-x64 && bun run build:binary:linux-x64 && bun run build:binary:linux-arm64",
+      "build:binary": "bun run generate:ascii && bun build src/cli.ts --compile --outfile pensar",
+      "build:binary:linux-arm64": "bun build src/cli.ts --compile --target=bun-linux-arm64 --outfile dist/pensar-linux-arm64",
+      "build:binary:linux-x64": "bun build src/cli.ts --compile --target=bun-linux-x64 --outfile dist/pensar-linux-x64",
+      "build:binary:macos-arm64": "bun build src/cli.ts --compile --target=bun-darwin-arm64 --outfile dist/pensar-darwin-arm64",
+      "build:binary:macos-x64": "bun build src/cli.ts --compile --target=bun-darwin-x64 --outfile dist/pensar-darwin-x64",
+      check: "biome check --write",
+      "check:ci": "biome check",
+      "daytona-benchmark": "bun run scripts/daytona-benchmark.ts",
+      dev: "bun run scripts/watch.ts",
+      "dev:debug": "SHOW_CONSOLE=true bun run scripts/watch.ts",
+      format: 'biome check --write && prettier --write "**/*.{md,yml,yaml}"',
+      "format:check": 'biome check && prettier --check "**/*.{md,yml,yaml}"',
+      "generate:ascii": "bun run scripts/generate-ascii-art.ts",
+      "generate:models": "bun run scripts/generate-models.ts",
+      knip: "knip",
+      lint: "biome lint src/",
+      "lint:fix": "biome lint --write src/",
+      "local-benchmark": "bun run scripts/local-benchmark.ts",
+      pensar: "node bin/pensar.js",
+      prepublishOnly: "npm run build",
+      start: "bun run src/tui/index.tsx",
+      test: "vitest run",
+      "test:watch": "vitest",
+      tsc: "tsc --noEmit"
+    },
+    type: "module",
+    version: "1.8.2-canary.fb75c486"
+  };
+});
+
+// src/core/installation/index.ts
+import { spawnSync } from "child_process";
+function getCurrentVersion() {
+  return package_default.version;
+}
+function isNewerVersion(current, latest) {
+  const parse = (v) => v.split(".").map((n) => parseInt(n, 10) || 0);
+  const c = parse(current);
+  const l = parse(latest);
+  for (let i = 0;i < Math.max(c.length, l.length); i++) {
+    const cv = c[i] ?? 0;
+    const lv = l[i] ?? 0;
+    if (lv > cv)
+      return true;
+    if (lv < cv)
+      return false;
+  }
+  return false;
+}
+async function getLatestVersion() {
+  const res = await fetch("https://registry.npmjs.org/@pensar/apex/latest");
+  if (!res.ok)
+    throw new Error(`Failed to fetch latest version: ${res.statusText}`);
+  const data = await res.json();
+  return String(data.version);
+}
+function detectInstallMethod() {
+  const execPath = process.execPath;
+  const argv1 = process.argv[1] ?? "";
+  if (execPath.includes("homebrew") || execPath.includes("Cellar") || execPath.includes("linuxbrew") || argv1.includes("homebrew") || argv1.includes("Cellar")) {
+    return "homebrew";
+  }
+  if (argv1.includes("node_modules") || argv1.includes(".npm") || argv1.includes("npx")) {
+    return "npm";
+  }
+  const execName = execPath.split("/").pop()?.replace(/\.exe$/, "") ?? "";
+  const isInterpreter = execName === "bun" || execName === "node" || execName === "bun-debug";
+  if (!isInterpreter) {
+    return "binary";
+  }
+  const npmCheck = spawnSync("npm", ["list", "-g", "@pensar/apex", "--depth=0"], {
+    encoding: "utf-8",
+    timeout: 1e4
+  });
+  if (npmCheck.status === 0 && npmCheck.stdout?.includes("@pensar/apex")) {
+    return "npm";
+  }
+  return "binary";
+}
+async function checkForUpdate() {
+  const currentVersion = getCurrentVersion();
+  let latestVersion;
+  try {
+    latestVersion = await getLatestVersion();
+  } catch {
+    return {
+      updateAvailable: false,
+      currentVersion,
+      latestVersion: currentVersion
+    };
+  }
+  return {
+    updateAvailable: isNewerVersion(currentVersion, latestVersion),
+    currentVersion,
+    latestVersion
+  };
+}
+var init_installation = __esm(() => {
+  init_package();
+});
+
+export { init_package, package_default, getCurrentVersion, detectInstallMethod, checkForUpdate, init_installation };

package/build/{cli-nr1cjfr9.js → cli-gtcd5c3f.js}

@@ -1,14 +1,15 @@
 import {
-  getCurrentVersion
-} from "./cli-dj1dgw2n.js";
+  getCurrentVersion,
+  init_installation
+} from "./cli-g5h24ny8.js";
+import {
+  __esm
+} from "./cli-8rxa073f.js";
 
 // src/core/config/config.ts
+import fs from "fs/promises";
 import os from "os";
 import path from "path";
-import fs from "fs/promises";
-var DEFAULT_CONFIG = {
-  responsibleUseAccepted: false
-};
 async function init() {
   const folder = path.join(os.homedir(), ".pensar");
   const file = path.join(folder, "config.json");
@@ -23,11 +24,21 @@ async function init() {
   const version = getCurrentVersion();
   return { ...DEFAULT_CONFIG, version };
 }
+function parseBoolEnv(value) {
+  if (value === undefined || value === "")
+    return;
+  const normalized = value.trim().toLowerCase();
+  if (["0", "false", "no", "off"].includes(normalized))
+    return false;
+  return true;
+}
 function applyEnvFallbacks(parsedConfig) {
   const version = getCurrentVersion();
   return {
     ...parsedConfig,
     responsibleUseAccepted: parsedConfig.responsibleUseAccepted ?? false,
+    defaultHeaders: parsedConfig.defaultHeaders ?? DEFAULT_CONFIG.defaultHeaders,
+    surfaceIntegrationEnabled: parsedConfig.surfaceIntegrationEnabled ?? parseBoolEnv(process.env.PENSAR_SURFACE_INTEGRATION),
     version,
     openAiAPIKey: parsedConfig.openAiAPIKey ?? process.env.OPENAI_API_KEY,
     anthropicAPIKey: parsedConfig.anthropicAPIKey ?? process.env.ANTHROPIC_API_KEY,
@@ -62,5 +73,13 @@ async function update(config) {
   const newConfig = { ...currentConfig, ...config };
   await fs.writeFile(file, JSON.stringify(newConfig));
 }
+var DEFAULT_CONFIG;
+var init_config = __esm(() => {
+  init_installation();
+  DEFAULT_CONFIG = {
+    responsibleUseAccepted: false,
+    defaultHeaders: { "User-Agent": "pensar-apex" }
+  };
+});
 
-export { init, get, update };
+export { init, get, update, init_config };

package/build/cli-k0730f59.js

@@ -0,0 +1,52 @@
+import {
+  CweEntrySchema,
+  ValidatedCweEntrySchema
+} from "./cli-wfmdch3r.js";
+import {
+  exports_external1 as exports_external,
+  init_zod
+} from "./cli-e6rgwtpb.js";
+
+// src/core/agents/offSecAgent/types.ts
+init_zod();
+
+// src/lib/evidence/types.ts
+init_zod();
+var EvidenceFileEntrySchema = exports_external.object({
+  path: exports_external.string(),
+  type: exports_external.enum(["http-response", "screenshot", "poc-output", "raw-evidence"]),
+  description: exports_external.string()
+});
+
+// src/core/agents/offSecAgent/types.ts
+var ApexFindingObject = exports_external.object({
+  title: exports_external.string(),
+  severity: exports_external.preprocess((val) => {
+    if (typeof val === "string") {
+      const upper = val.toUpperCase();
+      if (upper.includes("CRITICAL"))
+        return "CRITICAL";
+      if (upper.includes("HIGH"))
+        return "HIGH";
+      if (upper.includes("MEDIUM"))
+        return "MEDIUM";
+      if (upper.includes("LOW"))
+        return "LOW";
+    }
+    return val;
+  }, exports_external.enum(["CRITICAL", "HIGH", "MEDIUM", "LOW"])),
+  description: exports_external.string(),
+  impact: exports_external.string(),
+  evidence: exports_external.string(),
+  endpoint: exports_external.string(),
+  pocPath: exports_external.string(),
+  remediation: exports_external.string(),
+  references: exports_external.string().optional(),
+  toolCallDescription: exports_external.string().optional(),
+  cwes: exports_external.array(ValidatedCweEntrySchema.or(CweEntrySchema)).optional(),
+  rootCauseGroup: exports_external.string().optional(),
+  relatedFindings: exports_external.array(exports_external.string()).optional(),
+  evidenceFiles: exports_external.array(EvidenceFileEntrySchema).optional()
+});
+
+export { EvidenceFileEntrySchema, ApexFindingObject };

package/build/{cli-tp1tqn3k.js → cli-mswm4k81.js}

@@ -1,6 +1,6 @@
 // src/core/agents/specialized/utils.ts
-import { readFileSync as readFileSync2, existsSync as existsSync2 } from "fs";
 import { execSync } from "child_process";
+import { existsSync as existsSync2, readFileSync as readFileSync2 } from "fs";
 
 // src/core/assets/wordlists.ts
 import { existsSync, readFileSync, statSync } from "fs";