@praxis.guard/auditor-cli 0.0.33 → 0.0.34

package/dist/shell/evaluate.d.ts

@@ -1,24 +1,19 @@
-import { classifyArgv, type PoliciesV1, type Tier } from "../policy/index.js";
+import { type PoliciesV1 } from "../policy/index.js";
+import { type ShellAnalysis } from "./analyze-command.js";
+import { type GuardEvaluation } from "./guard-eval.js";
+import { parseCommandToArgv } from "./parse.js";
 export type { PoliciesV1, Tier } from "../policy/index.js";
+export type { GuardEvaluation, GuardReason } from "./guard-eval.js";
+export { evaluateArgv } from "./guard-eval.js";
 export { parseCommandToArgv } from "./parse.js";
-export { DEFAULT_GOVERNED_SHELL_TOOLS } from "./governed-tools.js";
-export type GuardReason = {
-    code: string;
-    message: string;
-    details?: Record<string, unknown>;
-};
-export type GuardEvaluation = {
-    argv: string[];
-    tier: Tier;
-    reasons: GuardReason[];
-    classification: ReturnType<typeof classifyArgv>["classification"];
-    flags: ReturnType<typeof classifyArgv>["flags"];
-};
+export { analyzeShellCommand, listShellGovernedTools, type ShellAnalysis, type ShellApprovalFingerprintPayload, type ShellInvocation, } from "./analyze-command.js";
+export { commandMayContainGovernedTool, DEFAULT_GOVERNED_SHELL_TOOLS, } from "./governed-tools.js";
 export type ShellGateDecision = {
     permission: "allow" | "deny" | "ask";
     user_message?: string;
     agent_message?: string;
     evaluation: GuardEvaluation;
+    analysis?: ShellAnalysis;
 };
 /**
  * MCP proposals (`beforeMCPExecution` hook, MCP `guard` with `kind: "mcp"`): if argv does not match any
@@ -29,16 +24,18 @@ export declare function evaluateMcpProposal(policy: PoliciesV1, argv: string[]):
     evaluation: GuardEvaluation;
 };
 /**
- * Shell proposals only: outside governed CLIs → pass-through (same scope as the Cursor hook).
+ * Shell proposals: analyze full command string for all governed invocations.
  */
-export declare function evaluateShellProposal(policy: PoliciesV1, argv: string[], governedTools?: string[]): {
+export declare function evaluateShellProposal(policy: PoliciesV1, commandOrArgv: string | string[]): {
     skipped: boolean;
     evaluation: GuardEvaluation;
+    analysis: ShellAnalysis;
 };
-export declare function evaluateArgv(policy: PoliciesV1, argv: string[]): GuardEvaluation;
 export declare function gateShellCommand(opts: {
     policy: PoliciesV1;
     command: string;
-    governedTools?: string[];
 }): ShellGateDecision;
+/** @deprecated Prefer `analyzeShellCommand` — kept for callers that only have flat argv. */
+export declare function evaluateShellProposalFromArgv(policy: PoliciesV1, argv: string[]): ReturnType<typeof evaluateShellProposal>;
+export { parseCommandToArgv as parseCommandToArgvLegacy };
 //# sourceMappingURL=evaluate.d.ts.map

package/dist/shell/evaluate.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"evaluate.d.ts","sourceRoot":"","sources":["../../src/shell/evaluate.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,KAAK,UAAU,EAAE,KAAK,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAK9E,YAAY,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAChD,OAAO,EAAE,4BAA4B,EAAE,MAAM,qBAAqB,CAAC;AAEnE,MAAM,MAAM,WAAW,GAAG;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;CAAE,CAAC;AAE/F,MAAM,MAAM,eAAe,GAAG;IAC5B,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,IAAI,EAAE,IAAI,CAAC;IACX,OAAO,EAAE,WAAW,EAAE,CAAC;IACvB,cAAc,EAAE,UAAU,CAAC,OAAO,YAAY,CAAC,CAAC,gBAAgB,CAAC,CAAC;IAClE,KAAK,EAAE,UAAU,CAAC,OAAO,YAAY,CAAC,CAAC,OAAO,CAAC,CAAC;CACjD,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG;IAC9B,UAAU,EAAE,OAAO,GAAG,MAAM,GAAG,KAAK,CAAC;IACrC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,eAAe,CAAC;CAC7B,CAAC;AAEF;;;GAGG;AACH,wBAAgB,mBAAmB,CACjC,MAAM,EAAE,UAAU,EAClB,IAAI,EAAE,MAAM,EAAE,GACb;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,UAAU,EAAE,eAAe,CAAA;CAAE,CAoBnD;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,MAAM,EAAE,UAAU,EAClB,IAAI,EAAE,MAAM,EAAE,EACd,aAAa,GAAE,MAAM,EAAsC,GAC1D;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,UAAU,EAAE,eAAe,CAAA;CAAE,CAoBnD;AAED,wBAAgB,YAAY,CAAC,MAAM,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,eAAe,CAkChF;AAED,wBAAgB,gBAAgB,CAAC,IAAI,EAAE;IACrC,MAAM,EAAE,UAAU,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;CAC1B,GAAG,iBAAiB,CAmBpB"}
+{"version":3,"file":"evaluate.d.ts","sourceRoot":"","sources":["../../src/shell/evaluate.ts"],"names":[],"mappings":"AAAA,OAAO,EAAgB,KAAK,UAAU,EAAa,MAAM,oBAAoB,CAAC;AAE9E,OAAO,EAAuB,KAAK,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAC/E,OAAO,EAAgB,KAAK,eAAe,EAAoB,MAAM,iBAAiB,CAAC;AACvF,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAEhD,YAAY,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAC3D,YAAY,EAAE,eAAe,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AACpE,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAChD,OAAO,EACL,mBAAmB,EACnB,sBAAsB,EACtB,KAAK,aAAa,EAClB,KAAK,+BAA+B,EACpC,KAAK,eAAe,GACrB,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EACL,6BAA6B,EAC7B,4BAA4B,GAC7B,MAAM,qBAAqB,CAAC;AAE7B,MAAM,MAAM,iBAAiB,GAAG;IAC9B,UAAU,EAAE,OAAO,GAAG,MAAM,GAAG,KAAK,CAAC;IACrC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,eAAe,CAAC;IAC5B,QAAQ,CAAC,EAAE,aAAa,CAAC;CAC1B,CAAC;AAEF;;;GAGG;AACH,wBAAgB,mBAAmB,CACjC,MAAM,EAAE,UAAU,EAClB,IAAI,EAAE,MAAM,EAAE,GACb;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,UAAU,EAAE,eAAe,CAAA;CAAE,CAoBnD;AA+BD;;GAEG;AACH,wBAAgB,qBAAqB,CACnC,MAAM,EAAE,UAAU,EAClB,aAAa,EAAE,MAAM,GAAG,MAAM,EAAE,GAC/B;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,UAAU,EAAE,eAAe,CAAC;IAAC,QAAQ,EAAE,aAAa,CAAA;CAAE,CAkC5E;AAED,wBAAgB,gBAAgB,CAAC,IAAI,EAAE;IACrC,MAAM,EAAE,UAAU,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB,GAAG,iBAAiB,CAkBpB;AAED,4FAA4F;AAC5F,wBAAgB,6BAA6B,CAC3C,MAAM,EAAE,UAAU,EAClB,IAAI,EAAE,MAAM,EAAE,GACb,UAAU,CAAC,OAAO,qBAAqB,CAAC,CAE1C;AAED,OAAO,EAAE,kBAAkB,IAAI,wBAAwB,EAAE,CAAC"}

package/dist/shell/evaluate.js

@@ -1,8 +1,11 @@
 import { classifyArgv } from "../policy/index.js";
+import { analyzeShellCommand } from "./analyze-command.js";
+import { evaluateArgv } from "./guard-eval.js";
 import { parseCommandToArgv } from "./parse.js";
-import { DEFAULT_GOVERNED_SHELL_TOOLS } from "./governed-tools.js";
+export { evaluateArgv } from "./guard-eval.js";
 export { parseCommandToArgv } from "./parse.js";
-export { DEFAULT_GOVERNED_SHELL_TOOLS } from "./governed-tools.js";
+export { analyzeShellCommand, listShellGovernedTools, } from "./analyze-command.js";
+export { commandMayContainGovernedTool, DEFAULT_GOVERNED_SHELL_TOOLS, } from "./governed-tools.js";
 /**
  * MCP proposals (`beforeMCPExecution` hook, MCP `guard` with `kind: "mcp"`): if argv does not match any
  * row under `policies.mcp`, pass-through (same idea as ungoverned shell tools).
@@ -28,69 +31,70 @@ export function evaluateMcpProposal(policy, argv) {
     }
     return { skipped: false, evaluation: evaluateArgv(policy, argv) };
 }
+function analysisToEvaluation(analysis) {
+    const { primary, tier, raw_metacharacters, invocations } = analysis;
+    const evaluation = { ...primary.evaluation, tier };
+    if (raw_metacharacters && !evaluation.reasons.some((r) => r.code === "metacharacters")) {
+        evaluation.reasons = [
+            ...evaluation.reasons,
+            { code: "metacharacters", message: "Composition operators in raw command; treat as high-risk." },
+        ];
+    }
+    if (analysis.fail_closed) {
+        return evaluation;
+    }
+    if (invocations.length > 1) {
+        evaluation.reasons = [
+            ...evaluation.reasons,
+            {
+                code: "multiple_invocations",
+                message: `Found ${invocations.length} governed invocations; tier is max across all.`,
+                details: { invocation_count: invocations.length },
+            },
+        ];
+    }
+    return evaluation;
+}
 /**
- * Shell proposals only: outside governed CLIs → pass-through (same scope as the Cursor hook).
+ * Shell proposals: analyze full command string for all governed invocations.
  */
-export function evaluateShellProposal(policy, argv, governedTools = [...DEFAULT_GOVERNED_SHELL_TOOLS]) {
-    const tool = argv[0];
-    if (!tool || !governedTools.includes(tool)) {
+export function evaluateShellProposal(policy, commandOrArgv) {
+    const command = Array.isArray(commandOrArgv) ? commandOrArgv.join(" ") : commandOrArgv;
+    const analysis = analyzeShellCommand(command, policy);
+    if (analysis.skipped) {
         return {
             skipped: true,
+            analysis,
             evaluation: {
-                argv,
+                argv: analysis.segments[0]?.argv ?? [],
                 tier: "READ",
                 reasons: [
                     {
                         code: "skipped",
-                        message: "Not governed (tool not in policies.v1.json governed set); pass-through.",
+                        message: "No governed invocation found in command; pass-through.",
                     },
                 ],
-                classification: { tool: tool ?? null, command_path: null, verb: null, tier: "READ", matched: false },
+                classification: {
+                    tool: null,
+                    command_path: null,
+                    verb: null,
+                    tier: "READ",
+                    matched: false,
+                },
                 flags: { metacharacters: false, dangerous_flags: false },
             },
         };
     }
-    return { skipped: false, evaluation: evaluateArgv(policy, argv) };
-}
-export function evaluateArgv(policy, argv) {
-    const { classification, flags } = classifyArgv(policy, argv);
-    let tier = classification.tier;
-    const reasons = [];
-    if (!classification.matched) {
-        reasons.push({
-            code: "unknown_command",
-            message: "Command did not match any policy entry; default-deny applies.",
-            details: { tool: classification.tool, command_path: classification.command_path, verb: classification.verb },
-        });
-    }
-    else {
-        reasons.push({
-            code: "policy_match",
-            message: "Matched policy entry.",
-            details: { tool: classification.tool, command_path: classification.command_path, verb: classification.verb, tier },
-        });
-    }
-    if (flags.metacharacters) {
-        if (tier === "READ")
-            tier = "MUTATE";
-        reasons.push({ code: "metacharacters", message: "Metacharacters detected; treat as high-risk." });
-    }
-    if (flags.dangerous_flags && (tier === "MUTATE" || tier === "DESTRUCTIVE")) {
-        reasons.push({
-            code: "dangerous_flags",
-            message: "Dangerous flags detected for mutating/destructive action; rejected.",
-            details: { dangerous_flags: policy.dangerous_flags },
-        });
-        tier = "DESTRUCTIVE";
-    }
-    return { argv, tier, reasons, classification, flags };
+    return {
+        skipped: false,
+        analysis,
+        evaluation: analysisToEvaluation(analysis),
+    };
 }
 export function gateShellCommand(opts) {
-    const governedTools = opts.governedTools ?? [...DEFAULT_GOVERNED_SHELL_TOOLS];
-    const argv = parseCommandToArgv(opts.command);
-    const { skipped, evaluation } = evaluateShellProposal(opts.policy, argv, governedTools);
+    const { skipped, evaluation, analysis } = evaluateShellProposal(opts.policy, opts.command);
     if (skipped) {
-        return { permission: "allow", evaluation };
+        return { permission: "allow", evaluation, analysis };
     }
     const permission = evaluation.tier === "READ" ? "allow" : "deny";
     return {
@@ -100,6 +104,12 @@ export function gateShellCommand(opts) {
             ? `Blocked by guard. tier=${evaluation.tier}. argv=${JSON.stringify(evaluation.argv)}`
             : undefined,
         evaluation,
+        analysis,
     };
 }
+/** @deprecated Prefer `analyzeShellCommand` — kept for callers that only have flat argv. */
+export function evaluateShellProposalFromArgv(policy, argv) {
+    return evaluateShellProposal(policy, argv);
+}
+export { parseCommandToArgv as parseCommandToArgvLegacy };
 //# sourceMappingURL=evaluate.js.map

package/dist/shell/evaluate.js.map

@@ -1 +1 @@
-{"version":3,"file":"evaluate.js","sourceRoot":"","sources":["../../src/shell/evaluate.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAA8B,MAAM,oBAAoB,CAAC;AAE9E,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAChD,OAAO,EAAE,4BAA4B,EAAE,MAAM,qBAAqB,CAAC;AAGnE,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAChD,OAAO,EAAE,4BAA4B,EAAE,MAAM,qBAAqB,CAAC;AAmBnE;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CACjC,MAAkB,EAClB,IAAc;IAEd,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,GAAG,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;IAC7D,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;QAC5B,OAAO;YACL,OAAO,EAAE,IAAI;YACb,UAAU,EAAE;gBACV,IAAI,EAAE,CAAC,GAAG,IAAI,CAAC;gBACf,IAAI,EAAE,MAAM;gBACZ,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,SAAS;wBACf,OAAO,EAAE,sDAAsD;qBAChE;iBACF;gBACD,cAAc,EAAE,EAAE,GAAG,cAAc,EAAE,IAAI,EAAE,MAAc,EAAE;gBAC3D,KAAK;aACN;SACF,CAAC;IACJ,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,CAAC;AACpE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CACnC,MAAkB,EAClB,IAAc,EACd,gBAA0B,CAAC,GAAG,4BAA4B,CAAC;IAE3D,MAAM,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;IACrB,IAAI,CAAC,IAAI,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QAC3C,OAAO;YACL,OAAO,EAAE,IAAI;YACb,UAAU,EAAE;gBACV,IAAI;gBACJ,IAAI,EAAE,MAAM;gBACZ,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,SAAS;wBACf,OAAO,EAAE,yEAAyE;qBACnF;iBACF;gBACD,cAAc,EAAE,EAAE,IAAI,EAAE,IAAI,IAAI,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE;gBACpG,KAAK,EAAE,EAAE,cAAc,EAAE,KAAK,EAAE,eAAe,EAAE,KAAK,EAAE;aACzD;SACF,CAAC;IACJ,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,CAAC;AACpE,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,MAAkB,EAAE,IAAc;IAC7D,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,GAAG,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;IAC7D,IAAI,IAAI,GAAS,cAAc,CAAC,IAAI,CAAC;IAErC,MAAM,OAAO,GAAkB,EAAE,CAAC;IAClC,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;QAC5B,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,iBAAiB;YACvB,OAAO,EAAE,+DAA+D;YACxE,OAAO,EAAE,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE,YAAY,EAAE,cAAc,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE;SAC7G,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,cAAc;YACpB,OAAO,EAAE,uBAAuB;YAChC,OAAO,EAAE,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE,YAAY,EAAE,cAAc,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE,IAAI,EAAE;SACnH,CAAC,CAAC;IACL,CAAC;IAED,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;QACzB,IAAI,IAAI,KAAK,MAAM;YAAE,IAAI,GAAG,QAAQ,CAAC;QACrC,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,8CAA8C,EAAE,CAAC,CAAC;IACpG,CAAC;IAED,IAAI,KAAK,CAAC,eAAe,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,aAAa,CAAC,EAAE,CAAC;QAC3E,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,iBAAiB;YACvB,OAAO,EAAE,qEAAqE;YAC9E,OAAO,EAAE,EAAE,eAAe,EAAE,MAAM,CAAC,eAAe,EAAE;SACrD,CAAC,CAAC;QACH,IAAI,GAAG,aAAa,CAAC;IACvB,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC;AACxD,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,IAIhC;IACC,MAAM,aAAa,GAAG,IAAI,CAAC,aAAa,IAAI,CAAC,GAAG,4BAA4B,CAAC,CAAC;IAC9E,MAAM,IAAI,GAAG,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAC9C,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,GAAG,qBAAqB,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC;IACxF,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,EAAE,UAAU,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC;IAC7C,CAAC;IAED,MAAM,UAAU,GAAG,UAAU,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;IAEjE,OAAO;QACL,UAAU;QACV,YAAY,EAAE,UAAU,KAAK,MAAM,CAAC,CAAC,CAAC,wCAAwC,UAAU,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS;QAC7G,aAAa,EACX,UAAU,KAAK,MAAM;YACnB,CAAC,CAAC,0BAA0B,UAAU,CAAC,IAAI,UAAU,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE;YACtF,CAAC,CAAC,SAAS;QACf,UAAU;KACX,CAAC;AACJ,CAAC"}
+{"version":3,"file":"evaluate.js","sourceRoot":"","sources":["../../src/shell/evaluate.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAA8B,MAAM,oBAAoB,CAAC;AAE9E,OAAO,EAAE,mBAAmB,EAAsB,MAAM,sBAAsB,CAAC;AAC/E,OAAO,EAAE,YAAY,EAA0C,MAAM,iBAAiB,CAAC;AACvF,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAIhD,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAChD,OAAO,EACL,mBAAmB,EACnB,sBAAsB,GAIvB,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EACL,6BAA6B,EAC7B,4BAA4B,GAC7B,MAAM,qBAAqB,CAAC;AAU7B;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CACjC,MAAkB,EAClB,IAAc;IAEd,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,GAAG,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;IAC7D,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;QAC5B,OAAO;YACL,OAAO,EAAE,IAAI;YACb,UAAU,EAAE;gBACV,IAAI,EAAE,CAAC,GAAG,IAAI,CAAC;gBACf,IAAI,EAAE,MAAM;gBACZ,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,SAAS;wBACf,OAAO,EAAE,sDAAsD;qBAChE;iBACF;gBACD,cAAc,EAAE,EAAE,GAAG,cAAc,EAAE,IAAI,EAAE,MAAc,EAAE;gBAC3D,KAAK;aACN;SACF,CAAC;IACJ,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,CAAC;AACpE,CAAC;AAED,SAAS,oBAAoB,CAAC,QAAuB;IACnD,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,kBAAkB,EAAE,WAAW,EAAE,GAAG,QAAQ,CAAC;IACpE,MAAM,UAAU,GAAG,EAAE,GAAG,OAAO,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC;IAEnD,IAAI,kBAAkB,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,gBAAgB,CAAC,EAAE,CAAC;QACvF,UAAU,CAAC,OAAO,GAAG;YACnB,GAAG,UAAU,CAAC,OAAO;YACrB,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,2DAA2D,EAAE;SACjG,CAAC;IACJ,CAAC;IAED,IAAI,QAAQ,CAAC,WAAW,EAAE,CAAC;QACzB,OAAO,UAAU,CAAC;IACpB,CAAC;IAED,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3B,UAAU,CAAC,OAAO,GAAG;YACnB,GAAG,UAAU,CAAC,OAAO;YACrB;gBACE,IAAI,EAAE,sBAAsB;gBAC5B,OAAO,EAAE,SAAS,WAAW,CAAC,MAAM,gDAAgD;gBACpF,OAAO,EAAE,EAAE,gBAAgB,EAAE,WAAW,CAAC,MAAM,EAAE;aAClD;SACF,CAAC;IACJ,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CACnC,MAAkB,EAClB,aAAgC;IAEhC,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC;IACvF,MAAM,QAAQ,GAAG,mBAAmB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAEtD,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;QACrB,OAAO;YACL,OAAO,EAAE,IAAI;YACb,QAAQ;YACR,UAAU,EAAE;gBACV,IAAI,EAAE,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,IAAI,IAAI,EAAE;gBACtC,IAAI,EAAE,MAAM;gBACZ,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,SAAS;wBACf,OAAO,EAAE,wDAAwD;qBAClE;iBACF;gBACD,cAAc,EAAE;oBACd,IAAI,EAAE,IAAI;oBACV,YAAY,EAAE,IAAI;oBAClB,IAAI,EAAE,IAAI;oBACV,IAAI,EAAE,MAAM;oBACZ,OAAO,EAAE,KAAK;iBACf;gBACD,KAAK,EAAE,EAAE,cAAc,EAAE,KAAK,EAAE,eAAe,EAAE,KAAK,EAAE;aACzD;SACF,CAAC;IACJ,CAAC;IAED,OAAO;QACL,OAAO,EAAE,KAAK;QACd,QAAQ;QACR,UAAU,EAAE,oBAAoB,CAAC,QAAQ,CAAC;KAC3C,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,IAGhC;IACC,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,qBAAqB,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;IAC3F,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,EAAE,UAAU,EAAE,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC;IACvD,CAAC;IAED,MAAM,UAAU,GAAG,UAAU,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;IAEjE,OAAO;QACL,UAAU;QACV,YAAY,EAAE,UAAU,KAAK,MAAM,CAAC,CAAC,CAAC,wCAAwC,UAAU,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS;QAC7G,aAAa,EACX,UAAU,KAAK,MAAM;YACnB,CAAC,CAAC,0BAA0B,UAAU,CAAC,IAAI,UAAU,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE;YACtF,CAAC,CAAC,SAAS;QACf,UAAU;QACV,QAAQ;KACT,CAAC;AACJ,CAAC;AAED,4FAA4F;AAC5F,MAAM,UAAU,6BAA6B,CAC3C,MAAkB,EAClB,IAAc;IAEd,OAAO,qBAAqB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;AAC7C,CAAC;AAED,OAAO,EAAE,kBAAkB,IAAI,wBAAwB,EAAE,CAAC"}

package/dist/shell/governed-tools.d.ts

@@ -1,3 +1,20 @@
-/** Tools whose argv is classified against `policies.v1.json` (same scope as the Cursor hook). */
+import type { PoliciesV1 } from "../policy/index.js";
+/** @deprecated Use `listShellGovernedTools(policy)` — policy keys are the source of truth. */
 export declare const DEFAULT_GOVERNED_SHELL_TOOLS: string[];
+declare const DEFAULT_PRELUDE_VERBS: readonly ["cd", "pushd", "popd"];
+declare const DEFAULT_PRIVILEGE_VERBS: readonly ["sudo", "doas"];
+export type ShellPolicyConfig = {
+    prelude_verbs: readonly string[];
+    privilege_verbs: readonly string[];
+};
+export declare function policyExcludeSet(): Set<string>;
+export declare function listShellGovernedTools(policy: PoliciesV1): readonly string[];
+export declare function resolveShellPolicyConfig(policy: PoliciesV1): ShellPolicyConfig;
+export declare function normalizeExecutableToken(token: string, governedTools: readonly string[]): string | null;
+/**
+ * Fast path: scan parsed tokens without loading policy. Used before `loadPoliciesV1()`.
+ * When `governedToolNames` is omitted, checks against bundled default tool names.
+ */
+export declare function commandMayContainGovernedTool(command: string, governedToolNames?: readonly string[]): boolean;
+export { DEFAULT_PRELUDE_VERBS, DEFAULT_PRIVILEGE_VERBS };
 //# sourceMappingURL=governed-tools.d.ts.map

package/dist/shell/governed-tools.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"governed-tools.d.ts","sourceRoot":"","sources":["../../src/shell/governed-tools.ts"],"names":[],"mappings":"AAAA,iGAAiG;AACjG,eAAO,MAAM,4BAA4B,EAAE,MAAM,EAAwC,CAAC"}
+{"version":3,"file":"governed-tools.d.ts","sourceRoot":"","sources":["../../src/shell/governed-tools.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAIrD,8FAA8F;AAC9F,eAAO,MAAM,4BAA4B,EAAE,MAAM,EAAwC,CAAC;AAI1F,QAAA,MAAM,qBAAqB,kCAAmC,CAAC;AAC/D,QAAA,MAAM,uBAAuB,2BAA4B,CAAC;AAE1D,MAAM,MAAM,iBAAiB,GAAG;IAC9B,aAAa,EAAE,SAAS,MAAM,EAAE,CAAC;IACjC,eAAe,EAAE,SAAS,MAAM,EAAE,CAAC;CACpC,CAAC;AAEF,wBAAgB,gBAAgB,IAAI,GAAG,CAAC,MAAM,CAAC,CAI9C;AAED,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,UAAU,GAAG,SAAS,MAAM,EAAE,CAG5E;AAED,wBAAgB,wBAAwB,CAAC,MAAM,EAAE,UAAU,GAAG,iBAAiB,CAM9E;AAED,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,MAAM,EAAE,aAAa,EAAE,SAAS,MAAM,EAAE,GAAG,MAAM,GAAG,IAAI,CAOvG;AAWD;;;GAGG;AACH,wBAAgB,6BAA6B,CAC3C,OAAO,EAAE,MAAM,EACf,iBAAiB,CAAC,EAAE,SAAS,MAAM,EAAE,GACpC,OAAO,CAUT;AAED,OAAO,EAAE,qBAAqB,EAAE,uBAAuB,EAAE,CAAC"}

package/dist/shell/governed-tools.js

@@ -1,3 +1,62 @@
-/** Tools whose argv is classified against `policies.v1.json` (same scope as the Cursor hook). */
+import { parseShellTokens } from "./parse-segments.js";
+/** @deprecated Use `listShellGovernedTools(policy)` — policy keys are the source of truth. */
 export const DEFAULT_GOVERNED_SHELL_TOOLS = ["gcloud", "firebase", "gh", "git"];
+const DEFAULT_POLICY_EXCLUDE = new Set(["mcp"]);
+const DEFAULT_PRELUDE_VERBS = ["cd", "pushd", "popd"];
+const DEFAULT_PRIVILEGE_VERBS = ["sudo", "doas"];
+export function policyExcludeSet() {
+    const fromEnv = process.env.PRAXIS_SHELL_POLICY_EXCLUDE?.trim();
+    if (!fromEnv)
+        return DEFAULT_POLICY_EXCLUDE;
+    return new Set(fromEnv.split(",").map((s) => s.trim()).filter(Boolean));
+}
+export function listShellGovernedTools(policy) {
+    const excluded = policyExcludeSet();
+    return Object.keys(policy.policies).filter((k) => !excluded.has(k));
+}
+export function resolveShellPolicyConfig(policy) {
+    const shell = policy.shell;
+    return {
+        prelude_verbs: shell?.prelude_verbs?.length ? shell.prelude_verbs : DEFAULT_PRELUDE_VERBS,
+        privilege_verbs: shell?.privilege_verbs?.length ? shell.privilege_verbs : DEFAULT_PRIVILEGE_VERBS,
+    };
+}
+export function normalizeExecutableToken(token, governedTools) {
+    if (governedTools.includes(token))
+        return token;
+    const isPathLike = token.includes("/") || token.startsWith(".");
+    if (!isPathLike)
+        return null;
+    const base = token.split("/").pop();
+    if (!base)
+        return null;
+    return governedTools.includes(base) ? base : null;
+}
+function tokenMightBeGoverned(token, governedSet) {
+    if (governedSet.has(token))
+        return true;
+    if (token.includes("/") || token.startsWith(".")) {
+        const base = token.split("/").pop();
+        if (base && governedSet.has(base))
+            return true;
+    }
+    return false;
+}
+/**
+ * Fast path: scan parsed tokens without loading policy. Used before `loadPoliciesV1()`.
+ * When `governedToolNames` is omitted, checks against bundled default tool names.
+ */
+export function commandMayContainGovernedTool(command, governedToolNames) {
+    const governedSet = new Set(governedToolNames ?? DEFAULT_GOVERNED_SHELL_TOOLS);
+    const tokens = parseShellTokens(command);
+    if (tokens[0] === "<unparseable>")
+        return true;
+    for (const token of tokens) {
+        if (typeof token === "string" && tokenMightBeGoverned(token, governedSet)) {
+            return true;
+        }
+    }
+    return false;
+}
+export { DEFAULT_PRELUDE_VERBS, DEFAULT_PRIVILEGE_VERBS };
 //# sourceMappingURL=governed-tools.js.map

package/dist/shell/governed-tools.js.map

@@ -1 +1 @@
-{"version":3,"file":"governed-tools.js","sourceRoot":"","sources":["../../src/shell/governed-tools.ts"],"names":[],"mappings":"AAAA,iGAAiG;AACjG,MAAM,CAAC,MAAM,4BAA4B,GAAa,CAAC,QAAQ,EAAE,UAAU,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC"}
+{"version":3,"file":"governed-tools.js","sourceRoot":"","sources":["../../src/shell/governed-tools.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAEvD,8FAA8F;AAC9F,MAAM,CAAC,MAAM,4BAA4B,GAAa,CAAC,QAAQ,EAAE,UAAU,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;AAE1F,MAAM,sBAAsB,GAAG,IAAI,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;AAEhD,MAAM,qBAAqB,GAAG,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,CAAU,CAAC;AAC/D,MAAM,uBAAuB,GAAG,CAAC,MAAM,EAAE,MAAM,CAAU,CAAC;AAO1D,MAAM,UAAU,gBAAgB;IAC9B,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,2BAA2B,EAAE,IAAI,EAAE,CAAC;IAChE,IAAI,CAAC,OAAO;QAAE,OAAO,sBAAsB,CAAC;IAC5C,OAAO,IAAI,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;AAC1E,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,MAAkB;IACvD,MAAM,QAAQ,GAAG,gBAAgB,EAAE,CAAC;IACpC,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;AACtE,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,MAAkB;IACzD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;IAC3B,OAAO;QACL,aAAa,EAAE,KAAK,EAAE,aAAa,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,qBAAqB;QACzF,eAAe,EAAE,KAAK,EAAE,eAAe,EAAE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,uBAAuB;KAClG,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,KAAa,EAAE,aAAgC;IACtF,IAAI,aAAa,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC;IAChD,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;IAChE,IAAI,CAAC,UAAU;QAAE,OAAO,IAAI,CAAC;IAC7B,MAAM,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC;IACpC,IAAI,CAAC,IAAI;QAAE,OAAO,IAAI,CAAC;IACvB,OAAO,aAAa,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;AACpD,CAAC;AAED,SAAS,oBAAoB,CAAC,KAAa,EAAE,WAAgC;IAC3E,IAAI,WAAW,CAAC,GAAG,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACxC,IAAI,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QACjD,MAAM,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC;QACpC,IAAI,IAAI,IAAI,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;IACjD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,6BAA6B,CAC3C,OAAe,EACf,iBAAqC;IAErC,MAAM,WAAW,GAAG,IAAI,GAAG,CAAC,iBAAiB,IAAI,4BAA4B,CAAC,CAAC;IAC/E,MAAM,MAAM,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAAC;IACzC,IAAI,MAAM,CAAC,CAAC,CAAC,KAAK,eAAe;QAAE,OAAO,IAAI,CAAC;IAC/C,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,oBAAoB,CAAC,KAAK,EAAE,WAAW,CAAC,EAAE,CAAC;YAC1E,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,OAAO,EAAE,qBAAqB,EAAE,uBAAuB,EAAE,CAAC"}

package/dist/shell/guard-eval.d.ts

@@ -0,0 +1,15 @@
+import { classifyArgv, type PoliciesV1, type Tier } from "../policy/index.js";
+export type GuardReason = {
+    code: string;
+    message: string;
+    details?: Record<string, unknown>;
+};
+export type GuardEvaluation = {
+    argv: string[];
+    tier: Tier;
+    reasons: GuardReason[];
+    classification: ReturnType<typeof classifyArgv>["classification"];
+    flags: ReturnType<typeof classifyArgv>["flags"];
+};
+export declare function evaluateArgv(policy: PoliciesV1, argv: string[]): GuardEvaluation;
+//# sourceMappingURL=guard-eval.d.ts.map

package/dist/shell/guard-eval.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"guard-eval.d.ts","sourceRoot":"","sources":["../../src/shell/guard-eval.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,KAAK,UAAU,EAAE,KAAK,IAAI,EAAE,MAAM,oBAAoB,CAAC;AAE9E,MAAM,MAAM,WAAW,GAAG;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;CAAE,CAAC;AAE/F,MAAM,MAAM,eAAe,GAAG;IAC5B,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,IAAI,EAAE,IAAI,CAAC;IACX,OAAO,EAAE,WAAW,EAAE,CAAC;IACvB,cAAc,EAAE,UAAU,CAAC,OAAO,YAAY,CAAC,CAAC,gBAAgB,CAAC,CAAC;IAClE,KAAK,EAAE,UAAU,CAAC,OAAO,YAAY,CAAC,CAAC,OAAO,CAAC,CAAC;CACjD,CAAC;AAEF,wBAAgB,YAAY,CAAC,MAAM,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,eAAe,CAkChF"}

package/dist/shell/guard-eval.js

@@ -0,0 +1,35 @@
+import { classifyArgv } from "../policy/index.js";
+export function evaluateArgv(policy, argv) {
+    const { classification, flags } = classifyArgv(policy, argv);
+    let tier = classification.tier;
+    const reasons = [];
+    if (!classification.matched) {
+        reasons.push({
+            code: "unknown_command",
+            message: "Command did not match any policy entry; default-deny applies.",
+            details: { tool: classification.tool, command_path: classification.command_path, verb: classification.verb },
+        });
+    }
+    else {
+        reasons.push({
+            code: "policy_match",
+            message: "Matched policy entry.",
+            details: { tool: classification.tool, command_path: classification.command_path, verb: classification.verb, tier },
+        });
+    }
+    if (flags.metacharacters) {
+        if (tier === "READ")
+            tier = "MUTATE";
+        reasons.push({ code: "metacharacters", message: "Metacharacters detected; treat as high-risk." });
+    }
+    if (flags.dangerous_flags && (tier === "MUTATE" || tier === "DESTRUCTIVE")) {
+        reasons.push({
+            code: "dangerous_flags",
+            message: "Dangerous flags detected for mutating/destructive action; rejected.",
+            details: { dangerous_flags: policy.dangerous_flags },
+        });
+        tier = "DESTRUCTIVE";
+    }
+    return { argv, tier, reasons, classification, flags };
+}
+//# sourceMappingURL=guard-eval.js.map

package/dist/shell/guard-eval.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"guard-eval.js","sourceRoot":"","sources":["../../src/shell/guard-eval.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAA8B,MAAM,oBAAoB,CAAC;AAY9E,MAAM,UAAU,YAAY,CAAC,MAAkB,EAAE,IAAc;IAC7D,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,GAAG,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;IAC7D,IAAI,IAAI,GAAS,cAAc,CAAC,IAAI,CAAC;IAErC,MAAM,OAAO,GAAkB,EAAE,CAAC;IAClC,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;QAC5B,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,iBAAiB;YACvB,OAAO,EAAE,+DAA+D;YACxE,OAAO,EAAE,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE,YAAY,EAAE,cAAc,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE;SAC7G,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,cAAc;YACpB,OAAO,EAAE,uBAAuB;YAChC,OAAO,EAAE,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE,YAAY,EAAE,cAAc,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,CAAC,IAAI,EAAE,IAAI,EAAE;SACnH,CAAC,CAAC;IACL,CAAC;IAED,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;QACzB,IAAI,IAAI,KAAK,MAAM;YAAE,IAAI,GAAG,QAAQ,CAAC;QACrC,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,8CAA8C,EAAE,CAAC,CAAC;IACpG,CAAC;IAED,IAAI,KAAK,CAAC,eAAe,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,aAAa,CAAC,EAAE,CAAC;QAC3E,OAAO,CAAC,IAAI,CAAC;YACX,IAAI,EAAE,iBAAiB;YACvB,OAAO,EAAE,qEAAqE;YAC9E,OAAO,EAAE,EAAE,eAAe,EAAE,MAAM,CAAC,eAAe,EAAE;SACrD,CAAC,CAAC;QACH,IAAI,GAAG,aAAa,CAAC;IACvB,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC;AACxD,CAAC"}

package/dist/shell/parse-segments.d.ts

@@ -0,0 +1,14 @@
+export type ShellOperator = "&&" | "||" | ";" | "|";
+export type ShellParseToken = string | {
+    op: string;
+};
+export declare function parseShellTokens(command: string): ShellParseToken[];
+export declare function isUnparseableTokens(tokens: ShellParseToken[]): boolean;
+export declare function parseShellSegments(command: string): {
+    tokens: ShellParseToken[];
+    segments: {
+        argv: string[];
+    }[];
+    operators: ShellOperator[];
+};
+//# sourceMappingURL=parse-segments.d.ts.map

package/dist/shell/parse-segments.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"parse-segments.d.ts","sourceRoot":"","sources":["../../src/shell/parse-segments.ts"],"names":[],"mappings":"AAEA,MAAM,MAAM,aAAa,GAAG,IAAI,GAAG,IAAI,GAAG,GAAG,GAAG,GAAG,CAAC;AAIpD,MAAM,MAAM,eAAe,GAAG,MAAM,GAAG;IAAE,EAAE,EAAE,MAAM,CAAA;CAAE,CAAC;AAEtD,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,MAAM,GAAG,eAAe,EAAE,CAInE;AAED,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,eAAe,EAAE,GAAG,OAAO,CAEtE;AAED,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,MAAM,GAAG;IACnD,MAAM,EAAE,eAAe,EAAE,CAAC;IAC1B,QAAQ,EAAE;QAAE,IAAI,EAAE,MAAM,EAAE,CAAA;KAAE,EAAE,CAAC;IAC/B,SAAS,EAAE,aAAa,EAAE,CAAC;CAC5B,CA+BA"}

package/dist/shell/parse-segments.js

@@ -0,0 +1,41 @@
+import { parse as shellParse } from "shell-quote";
+const SEGMENT_OPERATORS = new Set(["&&", "||", ";", "|"]);
+export function parseShellTokens(command) {
+    const parsed = shellParse(command);
+    if (parsed.length === 0)
+        return ["<unparseable>", command];
+    return parsed;
+}
+export function isUnparseableTokens(tokens) {
+    return tokens.length >= 1 && tokens[0] === "<unparseable>";
+}
+export function parseShellSegments(command) {
+    const tokens = parseShellTokens(command);
+    if (isUnparseableTokens(tokens)) {
+        return {
+            tokens,
+            segments: [{ argv: tokens }],
+            operators: [],
+        };
+    }
+    const segments = [];
+    const operators = [];
+    let current = [];
+    for (const token of tokens) {
+        if (typeof token === "object" && token !== null && "op" in token) {
+            const op = token.op;
+            if (SEGMENT_OPERATORS.has(op)) {
+                segments.push({ argv: current });
+                current = [];
+                operators.push(op);
+                continue;
+            }
+            current.push(op);
+            continue;
+        }
+        current.push(token);
+    }
+    segments.push({ argv: current });
+    return { tokens, segments, operators };
+}
+//# sourceMappingURL=parse-segments.js.map

package/dist/shell/parse-segments.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"parse-segments.js","sourceRoot":"","sources":["../../src/shell/parse-segments.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,IAAI,UAAU,EAAE,MAAM,aAAa,CAAC;AAIlD,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAS,CAAC,IAAI,EAAE,IAAI,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;AAIlE,MAAM,UAAU,gBAAgB,CAAC,OAAe;IAC9C,MAAM,MAAM,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC;IACnC,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC;IAC3D,OAAO,MAA2B,CAAC;AACrC,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,MAAyB;IAC3D,OAAO,MAAM,CAAC,MAAM,IAAI,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,KAAK,eAAe,CAAC;AAC7D,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,OAAe;IAKhD,MAAM,MAAM,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAAC;IACzC,IAAI,mBAAmB,CAAC,MAAM,CAAC,EAAE,CAAC;QAChC,OAAO;YACL,MAAM;YACN,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,MAAkB,EAAE,CAAC;YACxC,SAAS,EAAE,EAAE;SACd,CAAC;IACJ,CAAC;IAED,MAAM,QAAQ,GAAyB,EAAE,CAAC;IAC1C,MAAM,SAAS,GAAoB,EAAE,CAAC;IACtC,IAAI,OAAO,GAAa,EAAE,CAAC;IAE3B,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,IAAI,IAAI,KAAK,EAAE,CAAC;YACjE,MAAM,EAAE,GAAG,KAAK,CAAC,EAAE,CAAC;YACpB,IAAI,iBAAiB,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;gBAC9B,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;gBACjC,OAAO,GAAG,EAAE,CAAC;gBACb,SAAS,CAAC,IAAI,CAAC,EAAmB,CAAC,CAAC;gBACpC,SAAS;YACX,CAAC;YACD,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACjB,SAAS;QACX,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACtB,CAAC;IACD,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;IAEjC,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;AACzC,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@praxis.guard/auditor-cli",
-  "version": "0.0.33",
+  "version": "0.0.34",
   "private": false,
   "type": "module",
   "files": [