@promptscript/cli 1.0.0-rc.2 → 1.0.0

package/index.js

@@ -494,9 +494,12 @@ function interpolateText(text, ctx) {
   });
 }
 function interpolateValue(value, ctx) {
-  if (value === null || typeof value === "string" || typeof value === "number" || typeof value === "boolean") {
+  if (value === null || typeof value === "number" || typeof value === "boolean") {
     return value;
   }
+  if (typeof value === "string") {
+    return interpolateText(value, ctx);
+  }
   if (Array.isArray(value)) {
     return value.map((v) => interpolateValue(v, ctx));
   }
@@ -8891,7 +8894,7 @@ function uniq(array) {
 }
 var uniq_default = uniq;
 
-// node_modules/.pnpm/@chevrotain+utils@11.1.1/node_modules/@chevrotain/utils/lib/src/print.js
+// node_modules/.pnpm/@chevrotain+utils@11.1.2/node_modules/@chevrotain/utils/lib/src/print.js
 function PRINT_ERROR(msg) {
   if (console && console.error) {
     console.error(`Error: ${msg}`);
@@ -8903,7 +8906,7 @@ function PRINT_WARNING(msg) {
   }
 }
 
-// node_modules/.pnpm/@chevrotain+utils@11.1.1/node_modules/@chevrotain/utils/lib/src/timer.js
+// node_modules/.pnpm/@chevrotain+utils@11.1.2/node_modules/@chevrotain/utils/lib/src/timer.js
 function timer(func) {
   const start = (/* @__PURE__ */ new Date()).getTime();
   const val = func();
@@ -8912,7 +8915,7 @@ function timer(func) {
   return { time: total, value: val };
 }
 
-// node_modules/.pnpm/@chevrotain+utils@11.1.1/node_modules/@chevrotain/utils/lib/src/to-fast-properties.js
+// node_modules/.pnpm/@chevrotain+utils@11.1.2/node_modules/@chevrotain/utils/lib/src/to-fast-properties.js
 function toFastProperties(toBecomeFast) {
   function FakeConstructor() {
   }
@@ -8928,7 +8931,7 @@ function toFastProperties(toBecomeFast) {
   (0, eval)(toBecomeFast);
 }
 
-// node_modules/.pnpm/@chevrotain+gast@11.1.1/node_modules/@chevrotain/gast/lib/src/model.js
+// node_modules/.pnpm/@chevrotain+gast@11.1.2/node_modules/@chevrotain/gast/lib/src/model.js
 function tokenLabel(tokType) {
   if (hasTokenLabel(tokType)) {
     return tokType.LABEL;
@@ -9134,7 +9137,7 @@ function serializeProduction(node) {
   }
 }
 
-// node_modules/.pnpm/@chevrotain+gast@11.1.1/node_modules/@chevrotain/gast/lib/src/visitor.js
+// node_modules/.pnpm/@chevrotain+gast@11.1.2/node_modules/@chevrotain/gast/lib/src/visitor.js
 var GAstVisitor = class {
   visit(node) {
     const nodeAny = node;
@@ -9196,7 +9199,7 @@ var GAstVisitor = class {
   }
 };
 
-// node_modules/.pnpm/@chevrotain+gast@11.1.1/node_modules/@chevrotain/gast/lib/src/helpers.js
+// node_modules/.pnpm/@chevrotain+gast@11.1.2/node_modules/@chevrotain/gast/lib/src/helpers.js
 function isSequenceProd(prod) {
   return prod instanceof Alternative || prod instanceof Option || prod instanceof Repetition || prod instanceof RepetitionMandatory || prod instanceof RepetitionMandatoryWithSeparator || prod instanceof RepetitionWithSeparator || prod instanceof Terminal || prod instanceof Rule;
 }
@@ -9247,7 +9250,7 @@ function getProductionDslName(prod) {
   }
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/rest.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/rest.js
 var RestWalker = class {
   walk(prod, prevRest = []) {
     forEach_default(prod.definition, (subProd, index) => {
@@ -9327,7 +9330,7 @@ function restForRepetitionWithSeparator(repSepProd, currRest, prevRest) {
   return fullRepSepRest;
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/first.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/first.js
 function first(prod) {
   if (prod instanceof NonTerminal) {
     return first(prod.referencedRule);
@@ -9367,10 +9370,10 @@ function firstForTerminal(terminal) {
   return [terminal.terminalType];
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/constants.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/constants.js
 var IN = "_~IN~_";
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/follow.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/follow.js
 var ResyncFollowsWalker = class extends RestWalker {
   constructor(topProd) {
     super();
@@ -9403,7 +9406,7 @@ function buildBetweenProdsFollowPrefix(inner, occurenceInParent) {
   return inner.name + occurenceInParent + IN;
 }
 
-// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.1/node_modules/@chevrotain/regexp-to-ast/lib/src/utils.js
+// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.2/node_modules/@chevrotain/regexp-to-ast/lib/src/utils.js
 function cc(char) {
   return char.charCodeAt(0);
 }
@@ -9436,7 +9439,7 @@ function isCharacter(obj) {
   return obj["type"] === "Character";
 }
 
-// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.1/node_modules/@chevrotain/regexp-to-ast/lib/src/character-classes.js
+// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.2/node_modules/@chevrotain/regexp-to-ast/lib/src/character-classes.js
 var digitsCharCodes = [];
 for (let i = cc("0"); i <= cc("9"); i++) {
   digitsCharCodes.push(i);
@@ -9477,7 +9480,7 @@ var whitespaceCodes = [
   cc("\uFEFF")
 ];
 
-// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.1/node_modules/@chevrotain/regexp-to-ast/lib/src/regexp-parser.js
+// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.2/node_modules/@chevrotain/regexp-to-ast/lib/src/regexp-parser.js
 var hexDigitPattern = /[0-9a-fA-F]/;
 var decimalPattern = /[0-9]/;
 var decimalPatternNoZero = /[1-9]/;
@@ -10180,7 +10183,7 @@ var RegExpParser = class {
   }
 };
 
-// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.1/node_modules/@chevrotain/regexp-to-ast/lib/src/base-regexp-visitor.js
+// node_modules/.pnpm/@chevrotain+regexp-to-ast@11.1.2/node_modules/@chevrotain/regexp-to-ast/lib/src/base-regexp-visitor.js
 var BaseRegExpVisitor = class {
   visitChildren(node) {
     for (const key in node) {
@@ -10290,7 +10293,7 @@ var BaseRegExpVisitor = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/scan/reg_exp_parser.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/scan/reg_exp_parser.js
 var regExpAstCache = {};
 var regExpParser = new RegExpParser();
 function getRegExpAst(regExp) {
@@ -10307,7 +10310,7 @@ function clearRegExpParserCache() {
   regExpAstCache = {};
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/scan/reg_exp.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/scan/reg_exp.js
 var complementErrorMessage = "Complement Sets are not supported for first char optimization";
 var failedOptimizationPrefixMsg = 'Unable to use "first char" lexer optimizations:\n';
 function getOptimizedStartCodesIndices(regExp, ensureOptimizations = false) {
@@ -10519,14 +10522,12 @@ function canMatchCharCode(charCodes, pattern) {
   }
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/scan/lexer.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/scan/lexer.js
 var PATTERN = "PATTERN";
 var DEFAULT_MODE = "defaultMode";
 var MODES = "modes";
-var SUPPORT_STICKY = typeof new RegExp("(?:)").sticky === "boolean";
 function analyzeTokenTypes(tokenTypes, options) {
   options = defaults_default(options, {
-    useSticky: SUPPORT_STICKY,
     debug: false,
     safeMode: false,
     positionTracking: "full",
@@ -10575,7 +10576,7 @@ function analyzeTokenTypes(tokenTypes, options) {
         ], regExpSource[1])) {
           return regExpSource[1];
         } else {
-          return options.useSticky ? addStickyFlag(currPattern) : addStartOfInput(currPattern);
+          return addStickyFlag(currPattern);
         }
       } else if (isFunction_default(currPattern)) {
         hasCustom = true;
@@ -10589,7 +10590,7 @@ function analyzeTokenTypes(tokenTypes, options) {
         } else {
           const escapedRegExpString = currPattern.replace(/[\\^$.*+?()[\]{}|]/g, "\\$&");
           const wrappedRegExp = new RegExp(escapedRegExpString);
-          return options.useSticky ? addStickyFlag(wrappedRegExp) : addStartOfInput(wrappedRegExp);
+          return addStickyFlag(wrappedRegExp);
         }
       } else {
         throw Error("non exhaustive match");
@@ -10995,10 +10996,6 @@ function noMetaChar(regExp) {
 function usesLookAheadOrBehind(regExp) {
   return /(\(\?=)|(\(\?!)|(\(\?<=)|(\(\?<!)/.test(regExp.source);
 }
-function addStartOfInput(pattern) {
-  const flags = pattern.ignoreCase ? "i" : "";
-  return new RegExp(`^(?:${pattern.source})`, flags);
-}
 function addStickyFlag(pattern) {
   const flags = pattern.ignoreCase ? "iy" : "y";
   return new RegExp(`${pattern.source}`, flags);
@@ -11212,7 +11209,7 @@ function initCharCodeToOptimizedIndexMap() {
   }
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/scan/tokens.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/scan/tokens.js
 function tokenStructuredMatcher(tokInstance, tokConstructor) {
   const instanceType = tokInstance.tokenTypeIdx;
   if (instanceType === tokConstructor.tokenTypeIdx) {
@@ -11311,7 +11308,7 @@ function isTokenType(tokType) {
   return has_default(tokType, "tokenTypeIdx");
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/scan/lexer_errors_public.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/scan/lexer_errors_public.js
 var defaultLexerErrorProvider = {
   buildUnableToPopLexerModeMessage(token) {
     return `Unable to pop Lexer Mode after encountering Token ->${token.image}<- The Mode Stack is empty`;
@@ -11321,7 +11318,7 @@ var defaultLexerErrorProvider = {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/scan/lexer_public.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/scan/lexer_public.js
 var LexerDefinitionErrorType;
 (function(LexerDefinitionErrorType2) {
   LexerDefinitionErrorType2[LexerDefinitionErrorType2["MISSING_PATTERN"] = 0] = "MISSING_PATTERN";
@@ -11479,13 +11476,6 @@ var Lexer = class {
         PRINT_WARNING(warningDescriptor.message);
       });
       this.TRACE_INIT("Choosing sub-methods implementations", () => {
-        if (SUPPORT_STICKY) {
-          this.chopInput = identity_default;
-          this.match = this.matchWithTest;
-        } else {
-          this.updateLastIndex = noop_default;
-          this.match = this.matchWithExec;
-        }
         if (hasOnlySingleMode) {
           this.handleModes = noop_default;
         }
@@ -11548,7 +11538,7 @@ var Lexer = class {
   // this method also used quite a bit of `!` none null assertions because it is too optimized
   // for `tsc` to always understand it is "safe"
   tokenizeInternal(text, initialMode) {
-    let i, j, k, matchAltImage, longerAlt, matchedImage, payload, altPayload, imageLength, group, tokType, newToken, errLength, droppedChar, msg, match;
+    let i, j, k, matchAltImage, longerAlt, matchedImage, payload, altPayload, imageLength, group, tokType, newToken, errLength, msg, match;
     const orgText = text;
     const orgLength = orgText.length;
     let offset = 0;
@@ -11567,19 +11557,7 @@ var Lexer = class {
     const modeStack = [];
     const emptyArray = [];
     Object.freeze(emptyArray);
-    let getPossiblePatterns;
-    function getPossiblePatternsSlow() {
-      return patternIdxToConfig;
-    }
-    function getPossiblePatternsOptimized(charCode) {
-      const optimizedCharIdx = charCodeToOptimizedIndex(charCode);
-      const possiblePatterns = currCharCodeToPatternIdxToConfig[optimizedCharIdx];
-      if (possiblePatterns === void 0) {
-        return emptyArray;
-      } else {
-        return possiblePatterns;
-      }
-    }
+    let isOptimizedMode = false;
     const pop_mode = (popToken) => {
       if (modeStack.length === 1 && // if we have both a POP_MODE and a PUSH_MODE this is in-fact a "transition"
       // So no error should occur.
@@ -11600,9 +11578,9 @@ var Lexer = class {
         currModePatternsLength = patternIdxToConfig.length;
         const modeCanBeOptimized = this.canModeBeOptimized[newMode] && this.config.safeMode === false;
         if (currCharCodeToPatternIdxToConfig && modeCanBeOptimized) {
-          getPossiblePatterns = getPossiblePatternsOptimized;
+          isOptimizedMode = true;
         } else {
-          getPossiblePatterns = getPossiblePatternsSlow;
+          isOptimizedMode = false;
         }
       }
     };
@@ -11614,9 +11592,9 @@ var Lexer = class {
       currModePatternsLength = patternIdxToConfig.length;
       const modeCanBeOptimized = this.canModeBeOptimized[newMode] && this.config.safeMode === false;
       if (currCharCodeToPatternIdxToConfig && modeCanBeOptimized) {
-        getPossiblePatterns = getPossiblePatternsOptimized;
+        isOptimizedMode = true;
       } else {
-        getPossiblePatterns = getPossiblePatternsSlow;
+        isOptimizedMode = false;
       }
     }
     push_mode.call(this, initialMode);
@@ -11624,8 +11602,16 @@ var Lexer = class {
     const recoveryEnabled = this.config.recoveryEnabled;
     while (offset < orgLength) {
       matchedImage = null;
+      imageLength = -1;
       const nextCharCode = orgText.charCodeAt(offset);
-      const chosenPatternIdxToConfig = getPossiblePatterns(nextCharCode);
+      let chosenPatternIdxToConfig;
+      if (isOptimizedMode) {
+        const optimizedCharIdx = charCodeToOptimizedIndex(nextCharCode);
+        const possiblePatterns = currCharCodeToPatternIdxToConfig[optimizedCharIdx];
+        chosenPatternIdxToConfig = possiblePatterns !== void 0 ? possiblePatterns : emptyArray;
+      } else {
+        chosenPatternIdxToConfig = patternIdxToConfig;
+      }
       const chosenPatternsLength = chosenPatternIdxToConfig.length;
       for (i = 0; i < chosenPatternsLength; i++) {
         currConfig = chosenPatternIdxToConfig[i];
@@ -11634,12 +11620,14 @@ var Lexer = class {
         const singleCharCode = currConfig.short;
         if (singleCharCode !== false) {
           if (nextCharCode === singleCharCode) {
+            imageLength = 1;
             matchedImage = currPattern;
           }
         } else if (currConfig.isCustom === true) {
           match = currPattern.exec(orgText, offset, matchedTokens, groups);
           if (match !== null) {
             matchedImage = match[0];
+            imageLength = matchedImage.length;
             if (match.payload !== void 0) {
               payload = match.payload;
             }
@@ -11647,12 +11635,13 @@ var Lexer = class {
             matchedImage = null;
           }
         } else {
-          this.updateLastIndex(currPattern, offset);
-          matchedImage = this.match(currPattern, text, offset);
+          currPattern.lastIndex = offset;
+          imageLength = this.matchLength(currPattern, text, offset);
         }
-        if (matchedImage !== null) {
+        if (imageLength !== -1) {
           longerAlt = currConfig.longerAlt;
           if (longerAlt !== void 0) {
+            matchedImage = text.substring(offset, offset + imageLength);
             const longerAltLength = longerAlt.length;
             for (k = 0; k < longerAltLength; k++) {
               const longerAltConfig = patternIdxToConfig[longerAlt[k]];
@@ -11669,11 +11658,12 @@ var Lexer = class {
                   matchAltImage = null;
                 }
               } else {
-                this.updateLastIndex(longerAltPattern, offset);
+                longerAltPattern.lastIndex = offset;
                 matchAltImage = this.match(longerAltPattern, text, offset);
               }
               if (matchAltImage && matchAltImage.length > matchedImage.length) {
                 matchedImage = matchAltImage;
+                imageLength = matchAltImage.length;
                 payload = altPayload;
                 currConfig = longerAltConfig;
                 break;
@@ -11683,10 +11673,10 @@ var Lexer = class {
           break;
         }
       }
-      if (matchedImage !== null) {
-        imageLength = matchedImage.length;
+      if (imageLength !== -1) {
         group = currConfig.group;
         if (group !== void 0) {
+          matchedImage = matchedImage !== null ? matchedImage : text.substring(offset, offset + imageLength);
           tokType = currConfig.tokenTypeIdx;
           newToken = this.createTokenInstance(matchedImage, offset, tokType, currConfig.tokenType, line, column, imageLength);
           this.handlePayload(newToken, payload);
@@ -11696,15 +11686,13 @@ var Lexer = class {
             groups[group].push(newToken);
           }
         }
-        text = this.chopInput(text, imageLength);
-        offset = offset + imageLength;
-        column = this.computeNewColumn(column, imageLength);
         if (trackLines === true && currConfig.canLineTerminator === true) {
           let numOfLTsInMatch = 0;
           let foundTerminator;
           let lastLTEndOffset;
           lineTerminatorPattern.lastIndex = 0;
           do {
+            matchedImage = matchedImage !== null ? matchedImage : text.substring(offset, offset + imageLength);
             foundTerminator = lineTerminatorPattern.test(matchedImage);
             if (foundTerminator === true) {
               lastLTEndOffset = lineTerminatorPattern.lastIndex - 1;
@@ -11715,8 +11703,13 @@ var Lexer = class {
             line = line + numOfLTsInMatch;
             column = imageLength - lastLTEndOffset;
             this.updateTokenEndLineColumnLocation(newToken, group, lastLTEndOffset, numOfLTsInMatch, line, column, imageLength);
+          } else {
+            column = this.computeNewColumn(column, imageLength);
           }
+        } else {
+          column = this.computeNewColumn(column, imageLength);
         }
+        offset = offset + imageLength;
         this.handleModes(currConfig, pop_mode, push_mode, newToken);
       } else {
         const errorStartOffset = offset;
@@ -11724,7 +11717,6 @@ var Lexer = class {
         const errorColumn = column;
         let foundResyncPoint = recoveryEnabled === false;
         while (foundResyncPoint === false && offset < orgLength) {
-          text = this.chopInput(text, 1);
           offset++;
           for (j = 0; j < currModePatternsLength; j++) {
             const currConfig2 = patternIdxToConfig[j];
@@ -11737,7 +11729,7 @@ var Lexer = class {
             } else if (currConfig2.isCustom === true) {
               foundResyncPoint = currPattern.exec(orgText, offset, matchedTokens, groups) !== null;
             } else {
-              this.updateLastIndex(currPattern, offset);
+              currPattern.lastIndex = offset;
               foundResyncPoint = currPattern.exec(text) !== null;
             }
             if (foundResyncPoint === true) {
@@ -11780,12 +11772,6 @@ var Lexer = class {
       push_mode.call(this, config.push);
     }
   }
-  chopInput(text, length) {
-    return text.substring(length);
-  }
-  updateLastIndex(regExp, newLastIndex) {
-    regExp.lastIndex = newLastIndex;
-  }
   // TODO: decrease this under 600 characters? inspect stripping comments option in TSC compiler
   updateTokenEndLineColumnLocation(newToken, group, lastLTIdx, numOfLTsInMatch, line, column, imageLength) {
     let lastCharIsLT, fixForEndingInLT;
@@ -11848,22 +11834,25 @@ var Lexer = class {
       token.payload = payload;
     }
   }
-  matchWithTest(pattern, text, offset) {
+  match(pattern, text, offset) {
     const found = pattern.test(text);
     if (found === true) {
       return text.substring(offset, pattern.lastIndex);
     }
     return null;
   }
-  matchWithExec(pattern, text) {
-    const regExpArray = pattern.exec(text);
-    return regExpArray !== null ? regExpArray[0] : null;
+  matchLength(pattern, text, offset) {
+    const found = pattern.test(text);
+    if (found === true) {
+      return pattern.lastIndex - offset;
+    }
+    return -1;
   }
 };
 Lexer.SKIPPED = "This marks a skipped Token pattern, this means each token identified by it will be consumed and then thrown into oblivion, this can be used to for example to completely ignore whitespace.";
 Lexer.NA = /NOT_APPLICABLE/;
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/scan/tokens_public.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/scan/tokens_public.js
 function tokenLabel2(tokType) {
   if (hasTokenLabel2(tokType)) {
     return tokType.LABEL;
@@ -11942,7 +11931,7 @@ function tokenMatcher(token, tokType) {
   return tokenStructuredMatcher(token, tokType);
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/errors_public.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/errors_public.js
 var defaultParserErrorProvider = {
   buildMismatchTokenMessage({ expected, actual, previous, ruleName }) {
     const hasLabel = hasTokenLabel2(expected);
@@ -12033,12 +12022,20 @@ For Further details.`;
     return errMsg;
   },
   buildAlternationAmbiguityError(options) {
-    const pathMsg = map_default(options.prefixPath, (currtok) => tokenLabel2(currtok)).join(", ");
     const occurrence = options.alternation.idx === 0 ? "" : options.alternation.idx;
+    const isEmptyPath = options.prefixPath.length === 0;
     let currMessage = `Ambiguous Alternatives Detected: <${options.ambiguityIndices.join(" ,")}> in <OR${occurrence}> inside <${options.topLevelRule.name}> Rule,
-<${pathMsg}> may appears as a prefix path in all these alternatives.
 `;
-    currMessage = currMessage + `See: https://chevrotain.io/docs/guide/resolving_grammar_errors.html#AMBIGUOUS_ALTERNATIVES
+    if (isEmptyPath) {
+      currMessage += `These alternatives are all empty (match no tokens), making them indistinguishable.
+Only the last alternative may be empty.
+`;
+    } else {
+      const pathMsg = map_default(options.prefixPath, (currtok) => tokenLabel2(currtok)).join(", ");
+      currMessage += `<${pathMsg}> may appears as a prefix path in all these alternatives.
+`;
+    }
+    currMessage += `See: https://chevrotain.io/docs/guide/resolving_grammar_errors.html#AMBIGUOUS_ALTERNATIVES
 For Further details.`;
     return currMessage;
   },
@@ -12096,7 +12093,7 @@ see: https://en.wikipedia.org/wiki/LL_parser#Left_factoring.`;
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/resolver.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/resolver.js
 function resolveGrammar(topLevels, errMsgProvider) {
   const refResolver = new GastRefResolverVisitor(topLevels, errMsgProvider);
   refResolver.resolveRefs();
@@ -12131,7 +12128,7 @@ var GastRefResolverVisitor = class extends GAstVisitor {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/interpreter.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/interpreter.js
 var AbstractNextPossibleTokensWalker = class extends RestWalker {
   constructor(topProd, path) {
     super();
@@ -12542,7 +12539,7 @@ function expandTopLevelRule(topRule, currIdx, currRuleStack, currOccurrenceStack
   };
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/lookahead.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/lookahead.js
 var PROD_TYPE;
 (function(PROD_TYPE2) {
   PROD_TYPE2[PROD_TYPE2["OPTION"] = 0] = "OPTION";
@@ -12901,7 +12898,7 @@ function areTokenCategoriesNotUsed(lookAheadPaths) {
   return every_default(lookAheadPaths, (singleAltPaths) => every_default(singleAltPaths, (singlePath) => every_default(singlePath, (token) => isEmpty_default(token.categoryMatches))));
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/checks.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/checks.js
 function validateLookahead(options) {
   const lookaheadValidationErrorMessages = options.lookaheadStrategy.validate({
     rules: options.rules,
@@ -13295,7 +13292,7 @@ function checkTerminalAndNoneTerminalsNameSpace(topLevels, tokenTypes, errMsgPro
   return errors;
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/gast/gast_resolver_public.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/gast/gast_resolver_public.js
 function resolveGrammar2(options) {
   const actualOptions = defaults_default(options, {
     errMsgProvider: defaultGrammarResolverErrorProvider
@@ -13313,7 +13310,7 @@ function validateGrammar2(options) {
   return validateGrammar(options.rules, options.tokenTypes, options.errMsgProvider, options.grammarName);
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/exceptions_public.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/exceptions_public.js
 var MISMATCHED_TOKEN_EXCEPTION = "MismatchedTokenException";
 var NO_VIABLE_ALT_EXCEPTION = "NoViableAltException";
 var EARLY_EXIT_EXCEPTION = "EarlyExitException";
@@ -13367,7 +13364,7 @@ var EarlyExitException = class extends RecognitionException {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/recoverable.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/recoverable.js
 var EOF_FOLLOW_KEY = {};
 var IN_RULE_RECOVERY_EXCEPTION = "InRuleRecoveryException";
 var InRuleRecoveryException = class extends Error {
@@ -13608,7 +13605,7 @@ function attemptInRepetitionRecovery(prodFunc, args, lookaheadFunc, dslMethodIdx
   }
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/keys.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/keys.js
 var BITS_FOR_METHOD_TYPE = 4;
 var BITS_FOR_OCCURRENCE_IDX = 8;
 var BITS_FOR_ALT_IDX = 8;
@@ -13623,7 +13620,7 @@ function getKeyForAutomaticLookahead(ruleIdx, dslMethodIdx, occurrence) {
 }
 var BITS_START_FOR_ALT_IDX = 32 - BITS_FOR_ALT_IDX;
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/grammar/llk_lookahead.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/grammar/llk_lookahead.js
 var LLkLookaheadStrategy = class {
   constructor(options) {
     var _a;
@@ -13665,7 +13662,7 @@ var LLkLookaheadStrategy = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/looksahead.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/looksahead.js
 var LooksAhead = class {
   initLooksAhead(config) {
     this.dynamicTokensEnabled = has_default(config, "dynamicTokensEnabled") ? config.dynamicTokensEnabled : DEFAULT_PARSER_CONFIG.dynamicTokensEnabled;
@@ -13785,7 +13782,7 @@ function collectMethods(rule) {
   return dslMethods;
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/cst/cst.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/cst/cst.js
 function setNodeLocationOnlyOffset(currNodeLocation, newLocationInfo) {
   if (isNaN(currNodeLocation.startOffset) === true) {
     currNodeLocation.startOffset = newLocationInfo.startOffset;
@@ -13823,7 +13820,7 @@ function addNoneTerminalToCst(node, ruleName, ruleResult) {
   }
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/lang/lang_extensions.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/lang/lang_extensions.js
 var NAME = "name";
 function defineNameProp(obj, nameValue) {
   Object.defineProperty(obj, NAME, {
@@ -13834,7 +13831,7 @@ function defineNameProp(obj, nameValue) {
   });
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/cst/cst_visitor.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/cst/cst_visitor.js
 function defaultVisit(ctx, param) {
   const childrenNames = keys_default(ctx);
   const childrenNamesLength = childrenNames.length;
@@ -13913,7 +13910,7 @@ function validateMissingCstMethods(visitorInstance, ruleNames) {
   return compact_default(errors);
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/tree_builder.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/tree_builder.js
 var TreeBuilder = class {
   initTreeBuilder(config) {
     this.CST_STACK = [];
@@ -14075,7 +14072,7 @@ var TreeBuilder = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/lexer_adapter.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/lexer_adapter.js
 var LexerAdapter = class {
   initLexerAdapter() {
     this.tokVector = [];
@@ -14132,7 +14129,7 @@ var LexerAdapter = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/recognizer_api.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/recognizer_api.js
 var RecognizerApi = class {
   ACTION(impl) {
     return impl.call(this);
@@ -14448,7 +14445,7 @@ var RecognizerApi = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/recognizer_engine.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/recognizer_engine.js
 var RecognizerEngine = class {
   initRecognizerEngine(tokenVocabulary, config) {
     this.className = this.constructor.name;
@@ -14872,7 +14869,7 @@ Make sure that all grammar rule definitions are done before 'performSelfAnalysis
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/error_handler.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/error_handler.js
 var ErrorHandler = class {
   initErrorHandler(config) {
     this._errors = [];
@@ -14936,7 +14933,7 @@ var ErrorHandler = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/context_assist.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/context_assist.js
 var ContentAssist = class {
   initContentAssist() {
   }
@@ -14958,7 +14955,7 @@ var ContentAssist = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/gast_recorder.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/gast_recorder.js
 var RECORDING_NULL_OBJECT = {
   description: "This Object indicates the Parser is during Recording Phase"
 };
@@ -15220,7 +15217,7 @@ function assertMethodIdxIsValid(idx) {
   }
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/traits/perf_tracer.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/traits/perf_tracer.js
 var PerformanceTracer = class {
   initPerformanceTracer(config) {
     if (has_default(config, "traceInitPerf")) {
@@ -15254,7 +15251,7 @@ var PerformanceTracer = class {
   }
 };
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/utils/apply_mixins.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/utils/apply_mixins.js
 function applyMixins(derivedCtor, baseCtors) {
   baseCtors.forEach((baseCtor) => {
     const baseProto = baseCtor.prototype;
@@ -15272,7 +15269,7 @@ function applyMixins(derivedCtor, baseCtors) {
   });
 }
 
-// node_modules/.pnpm/chevrotain@11.1.1/node_modules/chevrotain/lib/src/parse/parser/parser.js
+// node_modules/.pnpm/chevrotain@11.1.2/node_modules/chevrotain/lib/src/parse/parser/parser.js
 var END_OF_FILE = createTokenInstance(EOF, "", NaN, NaN, NaN, NaN, NaN, NaN);
 Object.freeze(END_OF_FILE);
 var DEFAULT_PARSER_CONFIG = Object.freeze({
@@ -18737,13 +18734,378 @@ function hasContent(content) {
 
 // packages/validator/src/rules/blocked-patterns.ts
 var DEFAULT_BLOCKED_PATTERNS = [
+  // Original patterns - these are fairly unique to prompt injection
   /ignore\s+(all\s+)?previous\s+instructions/i,
   /pretend\s+(you\s+)?(are|to\s+be)/i,
   /jailbreak/i,
   /bypass\s+(your\s+)?(rules|restrictions)/i,
   /disregard\s+(all\s+)?(prior|previous)/i,
   /forget\s+(all\s+)?(prior|previous|your)/i,
-  /act\s+as\s+if\s+you\s+(have\s+)?no\s+restrictions/i
+  /act\s+as\s+if\s+you\s+(have\s+)?no\s+restrictions/i,
+  // New patterns - imperative commands to do unsafe things
+  // Note: These use word boundaries and avoid matching defensive phrasing
+  /(?:^|[.!?]\s*)(?:please\s+)?override\s+safety/im,
+  /(?:^|[.!?]\s*)(?:please\s+)?suppress\s+(?:all\s+)?warnings?/im,
+  /(?:^|[.!?]\s*)(?:please\s+)?hide\s+security/im,
+  /(?:you\s+)?(?:should|must|can|will)\s+disable\s+(?:safety|security)/i,
+  /(?:you\s+)?(?:should|must|can|will)\s+turn\s+off\s+(?:safety|security)/i,
+  /(?:you\s+)?(?:should|must|can|will)\s+circumvent\s+(?:safety|security)/i,
+  /(?:^|[.!?]\s*)evade\s+(?:detection|monitoring|logging)/im,
+  /(?:^|[.!?]\s*)delete\s+(?:all\s+)?(?:logs?|audit\s+trail)/im
+];
+var BLOCKED_PATTERNS_PL = [
+  /zignoruj\s+(wszystkie\s+)?poprzednie\s+instrukcje/i,
+  /udawaj,?\s+że\s+(jesteś|nie\s+masz)/i,
+  /omiń\s+(swoje\s+)?(zasady|ograniczenia|restrykcje)/i,
+  /zapomnij\s+(o\s+)?(wszystkich\s+)?(poprzednich|wcześniejszych)/i,
+  /pomiń\s+(wszystkie\s+)?zabezpieczenia/i,
+  /wyłącz\s+(tryb\s+)?bezpieczeństwa/i,
+  /ukryj\s+(wszystkie\s+)?ostrzeżenia/i,
+  /usuń\s+(wszystkie\s+)?logi/i,
+  /nadpisz\s+zasady\s+bezpieczeństwa/i,
+  /działaj\s+bez\s+ograniczeń/i
+];
+var BLOCKED_PATTERNS_ES = [
+  /ignora\s+(todas?\s+las?\s+)?instrucciones\s+anteriores/i,
+  /finge\s+(que\s+)?(eres|ser)/i,
+  /elude\s+(tus\s+)?(reglas|restricciones)/i,
+  /olvida\s+(todas?\s+las?\s+)?(anteriores|previas)/i,
+  /desactiva\s+(la\s+)?seguridad/i,
+  /oculta\s+(las\s+)?advertencias/i,
+  /elimina\s+(los\s+)?registros/i,
+  /anula\s+(las\s+)?medidas\s+de\s+seguridad/i,
+  /actúa\s+sin\s+restricciones/i,
+  /salta(r)?\s+(las\s+)?restricciones/i
+];
+var BLOCKED_PATTERNS_DE = [
+  /ignoriere?\s+(alle\s+)?vorherigen?\s+(Anweisungen|Instruktionen)/i,
+  /tu\s+so,?\s+als\s+(ob\s+du|wärst\s+du)/i,
+  /umgehe?\s+(deine\s+)?(Regeln|Einschränkungen|Beschränkungen)/i,
+  /vergiss\s+(alle\s+)?(vorherigen?|früheren?)/i,
+  /deaktiviere?\s+(die\s+)?Sicherheit/i,
+  /verstecke?\s+(alle\s+)?Warnungen/i,
+  /lösche?\s+(alle\s+)?(Logs?|Protokolle?)/i,
+  /überschreibe?\s+(die\s+)?Sicherheitsregeln/i,
+  /handel[en]?\s+ohne\s+Einschränkungen/i,
+  /Sicherheitsmaßnahmen\s+umgehen/i
+];
+var BLOCKED_PATTERNS_FR = [
+  /ignore[zr]?\s+(toutes?\s+les?\s+)?instructions?\s+(précédentes?|antérieures?)/i,
+  /fais\s+semblant\s+(d['']être|que\s+tu\s+es)/i,
+  /contourne[zr]?\s+(tes|vos)\s+(règles|restrictions)/i,
+  /oublie[zr]?\s+(toutes?\s+les?\s+)?(précédentes?|antérieures?)/i,
+  /désactive[zr]?\s+(la\s+)?sécurité/i,
+  /cache[zr]?\s+(les\s+)?avertissements/i,
+  /supprime[zr]?\s+(les\s+)?(logs?|journaux?)/i,
+  /outrepasse[zr]?\s+(les\s+)?mesures\s+de\s+sécurité/i,
+  /agis\s+sans\s+restrictions/i,
+  /ignore[zr]?\s+(les\s+)?limites/i
+];
+var BLOCKED_PATTERNS_PT = [
+  /ignore\s+(todas?\s+as?\s+)?instruções\s+anteriores/i,
+  /finja\s+(que\s+)?(você\s+é|ser)/i,
+  /contorne\s+(suas?\s+)?(regras|restrições)/i,
+  /esqueça\s+(todas?\s+as?\s+)?(anteriores|prévias)/i,
+  /desative\s+(a\s+)?segurança/i,
+  /oculte\s+(os\s+)?avisos/i,
+  /apague\s+(os\s+)?(logs?|registros?)/i,
+  /substitua\s+(as\s+)?medidas\s+de\s+segurança/i,
+  /aja\s+sem\s+restrições/i,
+  /pule\s+(as\s+)?restrições/i
+];
+var BLOCKED_PATTERNS_RU = [
+  /игнорируй\s+(все\s+)?предыдущие\s+инструкции/i,
+  /притворись,?\s+(что\s+)?(ты|будто)/i,
+  /обойди\s+(свои\s+)?(правила|ограничения)/i,
+  /забудь\s+(все\s+)?(предыдущие|прошлые)/i,
+  /отключи\s+безопасность/i,
+  /скрой\s+(все\s+)?предупреждения/i,
+  /удали\s+(все\s+)?(логи|журналы)/i,
+  /переопредели\s+правила\s+безопасности/i,
+  /действуй\s+без\s+ограничений/i,
+  /пропусти\s+проверки\s+безопасности/i
+];
+var BLOCKED_PATTERNS_ZH = [
+  /忽略\s*(所有\s*)?之前的指令/i,
+  /假装\s*(你是|成为)/i,
+  /绕过\s*(你的\s*)?(规则|限制|约束)/i,
+  /忘记\s*(所有\s*)?(之前|以前)的/i,
+  /禁用\s*安全/i,
+  /隐藏\s*(所有\s*)?警告/i,
+  /删除\s*(所有\s*)?(日志|记录)/i,
+  /覆盖\s*安全\s*(规则|措施)/i,
+  /无限制\s*(地\s*)?运行/i,
+  /跳过\s*安全检查/i
+];
+var BLOCKED_PATTERNS_IT = [
+  /ignora\s+(tutte\s+le\s+)?istruzioni\s+precedenti/i,
+  /fingi\s+di\s+(essere|non\s+avere)/i,
+  /aggira\s+(le\s+tue\s+)?(regole|restrizioni)/i,
+  /dimentica\s+(tutte\s+le\s+)?(precedenti|passate)/i,
+  /disattiva\s+(la\s+)?sicurezza/i,
+  /nascondi\s+(gli\s+)?avvisi/i,
+  /elimina\s+(i\s+)?(log|registri)/i,
+  /sovrascrivi\s+(le\s+)?misure\s+di\s+sicurezza/i,
+  /agisci\s+senza\s+restrizioni/i,
+  /salta\s+(le\s+)?restrizioni/i
+];
+var BLOCKED_PATTERNS_NL = [
+  /negeer\s+(alle\s+)?vorige\s+(instructies|aanwijzingen)/i,
+  /doe\s+alsof\s+je\s+(bent|geen)/i,
+  /omzeil\s+(je\s+)?(regels|beperkingen)/i,
+  /vergeet\s+(alle\s+)?(vorige|eerdere)/i,
+  /schakel\s+(de\s+)?beveiliging\s+uit/i,
+  /verberg\s+(alle\s+)?waarschuwingen/i,
+  /verwijder\s+(alle\s+)?(logs?|logboeken)/i,
+  /overschrijf\s+(de\s+)?beveiligingsregels/i,
+  /handel\s+zonder\s+beperkingen/i,
+  /sla\s+(de\s+)?beperkingen\s+over/i
+];
+var BLOCKED_PATTERNS_JA = [
+  /以前の指示を(すべて)?無視(して|しろ|せよ)/i,
+  /ふりをして|なりすまして/i,
+  /(ルール|制限|制約)を(回避|無視|バイパス)/i,
+  /(以前|前)の(指示|命令)を忘れ/i,
+  /セキュリティを(無効|オフ)に/i,
+  /警告を(非表示|隠す|消す)/i,
+  /ログを(削除|消去)/i,
+  /セキュリティ(ルール|規則)を上書き/i,
+  /制限なしで(動作|実行)/i,
+  /安全チェックをスキップ/i
+];
+var BLOCKED_PATTERNS_KO = [
+  /이전\s*(모든\s*)?지시(를|를\s+)?(무시|잊어)/i,
+  /인\s*척\s*(해|하세요|해라)/i,
+  /(규칙|제한|제약)(을|를)\s*(우회|무시|회피)/i,
+  /(이전|과거)\s*(지시|명령)(을|를)\s*잊/i,
+  /보안(을|를)\s*(비활성화|끄|해제)/i,
+  /경고(를|를\s+)?(숨기|숨겨|가리)/i,
+  /로그(를|를\s+)?(삭제|지우)/i,
+  /보안\s*규칙(을|를)\s*덮어쓰/i,
+  /제한\s*없이\s*(작동|실행)/i,
+  /보안\s*검사(를|를\s+)?건너뛰/i
+];
+var BLOCKED_PATTERNS_AR = [
+  /تجاهل\s+(جميع\s+)?التعليمات\s+السابقة/i,
+  /تظاهر\s+(أنك|بأنك)/i,
+  /تجاوز\s+(القواعد|القيود)/i,
+  /انسَ\s+(جميع\s+)?(السابق|التعليمات\s+السابقة)/i,
+  /عطّل\s+الأمان/i,
+  /أخفِ\s+(جميع\s+)?التحذيرات/i,
+  /احذف\s+(جميع\s+)?السجلات/i,
+  /تجاوز\s+قواعد\s+الأمان/i,
+  /اعمل\s+بدون\s+قيود/i,
+  /تخطَّ\s+فحوصات\s+الأمان/i
+];
+var BLOCKED_PATTERNS_TR = [
+  /önceki\s+(tüm\s+)?talimatları\s+(yoksay|görmezden\s+gel)/i,
+  /gibi\s+davran|mış\s+gibi\s+yap/i,
+  /(kuralları|kısıtlamaları)\s+(atla|geç|bypass)/i,
+  /önceki(leri)?\s+unut/i,
+  /güvenliği\s+(devre\s+dışı\s+bırak|kapat)/i,
+  /uyarıları\s+(gizle|sakla)/i,
+  /günlükleri\s+sil/i,
+  /güvenlik\s+kurallarını\s+(geçersiz\s+kıl|üzerine\s+yaz)/i,
+  /kısıtlama\s+olmadan\s+(çalış|hareket\s+et)/i,
+  /güvenlik\s+kontrollerini\s+atla/i
+];
+var BLOCKED_PATTERNS_SV = [
+  /ignorera\s+(alla\s+)?tidigare\s+(instruktioner|anvisningar)/i,
+  /låtsas\s+(att\s+du\s+är|vara)/i,
+  /kringgå\s+(dina\s+)?(regler|begränsningar)/i,
+  /glöm\s+(alla\s+)?(tidigare|föregående)/i,
+  /inaktivera\s+säkerhet(en)?/i,
+  /dölj\s+(alla\s+)?varningar/i,
+  /radera\s+(alla\s+)?loggar/i,
+  /skriv\s+över\s+säkerhetsregler(na)?/i,
+  /agera\s+utan\s+begränsningar/i,
+  /hoppa\s+över\s+säkerhetskontroller/i
+];
+var BLOCKED_PATTERNS_NO = [
+  /ignorer\s+(alle\s+)?tidligere\s+(instruksjoner|anvisninger)/i,
+  /lat\s+som\s+(om\s+)?du\s+(er|ikke\s+har)/i,
+  /omgå\s+(dine\s+)?(regler|begrensninger)/i,
+  /glem\s+(alle\s+)?(tidligere|foregående)/i,
+  /deaktiver\s+sikkerhet(en)?/i,
+  /skjul\s+(alle\s+)?advarsler/i,
+  /slett\s+(alle\s+)?logger/i,
+  /overskriv\s+sikkerhetsregler/i,
+  /handle\s+uten\s+begrensninger/i,
+  /hopp\s+over\s+sikkerhetssjekker/i
+];
+var BLOCKED_PATTERNS_DA = [
+  /ignorer\s+(alle\s+)?tidligere\s+(instruktioner|anvisninger)/i,
+  /lad\s+som\s+om\s+du\s+(er|ikke\s+har)/i,
+  /omgå\s+(dine\s+)?(regler|begrænsninger)/i,
+  /glem\s+(alle\s+)?(tidligere|foregående)/i,
+  /deaktiver\s+sikkerhed(en)?/i,
+  /skjul\s+(alle\s+)?advarsler/i,
+  /slet\s+(alle\s+)?logfiler/i,
+  /overskriv\s+sikkerhedsregler/i,
+  /handl\s+uden\s+begrænsninger/i,
+  /spring\s+sikkerhedstjek\s+over/i
+];
+var BLOCKED_PATTERNS_FI = [
+  /ohita\s+(kaikki\s+)?aiemmat\s+ohjeet/i,
+  /teeskentele\s+(olevasi|että\s+olet)/i,
+  /kierrä\s+(säännöt|rajoitukset)/i,
+  /unohda\s+(kaikki\s+)?(aiemmat|edelliset)/i,
+  /poista\s+turvallisuus\s+käytöstä/i,
+  /piilota\s+(kaikki\s+)?varoitukset/i,
+  /poista\s+(kaikki\s+)?lokit/i,
+  /ylikirjoita\s+turvasäännöt/i,
+  /toimi\s+ilman\s+rajoituksia/i,
+  /ohita\s+turvatarkistukset/i
+];
+var BLOCKED_PATTERNS_CS = [
+  /ignoruj\s+(všechny\s+)?předchozí\s+(instrukce|pokyny)/i,
+  /předstírej,?\s+že\s+(jsi|nemáš)/i,
+  /obejdi\s+(svá\s+)?(pravidla|omezení)/i,
+  /zapomeň\s+(na\s+)?(všechny\s+)?(předchozí|dřívější)/i,
+  /vypni\s+bezpečnost/i,
+  /skryj\s+(všechna\s+)?varování/i,
+  /smaž\s+(všechny\s+)?logy/i,
+  /přepiš\s+bezpečnostní\s+pravidla/i,
+  /jednej\s+bez\s+omezení/i,
+  /přeskoč\s+bezpečnostní\s+kontroly/i
+];
+var BLOCKED_PATTERNS_HU = [
+  /hagyd\s+figyelmen\s+kívül\s+(az\s+összes\s+)?korábbi\s+utasítást/i,
+  /tegyél\s+úgy,?\s+mintha/i,
+  /kerüld\s+meg\s+(a\s+)?(szabályokat|korlátozásokat)/i,
+  /felejtsd\s+el\s+(az\s+összes\s+)?(korábbi|előző)/i,
+  /kapcsold\s+ki\s+a\s+biztonságot/i,
+  /rejtsd\s+el\s+(az\s+összes\s+)?figyelmeztetést/i,
+  /töröld\s+(az\s+összes\s+)?naplót/i,
+  /írd\s+felül\s+a\s+biztonsági\s+szabályokat/i,
+  /cselekedj\s+korlátozások\s+nélkül/i,
+  /hagyd\s+ki\s+a\s+biztonsági\s+ellenőrzéseket/i
+];
+var BLOCKED_PATTERNS_UK = [
+  /ігноруй\s+(всі\s+)?попередні\s+інструкції/i,
+  /вдавай,?\s+(що\s+)?(ти|ніби)/i,
+  /обійди\s+(свої\s+)?(правила|обмеження)/i,
+  /забудь\s+(всі\s+)?(попередні|минулі)/i,
+  /вимкни\s+безпеку/i,
+  /сховай\s+(всі\s+)?попередження/i,
+  /видали\s+(всі\s+)?(логи|журнали)/i,
+  /перезапиши\s+правила\s+безпеки/i,
+  /дій\s+без\s+обмежень/i,
+  /пропусти\s+перевірки\s+безпеки/i
+];
+var BLOCKED_PATTERNS_HI = [
+  /पिछले\s+(सभी\s+)?निर्देशों?\s+को\s+(अनदेखा|नज़रअंदाज़)\s+करो/i,
+  /ऐसा\s+दिखावा\s+करो\s+(कि|जैसे)/i,
+  /(नियमों|प्रतिबंधों)\s+को\s+(बायपास|दरकिनार)\s+करो/i,
+  /पिछले\s+(सभी\s+)?(निर्देश|आदेश)\s+भूल\s+जाओ/i,
+  /सुरक्षा\s+(को\s+)?(बंद|अक्षम)\s+करो/i,
+  /(सभी\s+)?चेतावनियों?\s+को\s+छुपाओ/i,
+  /(सभी\s+)?लॉग\s+(को\s+)?हटाओ/i,
+  /सुरक्षा\s+नियमों\s+को\s+ओवरराइड\s+करो/i,
+  /बिना\s+प्रतिबंध\s+के\s+काम\s+करो/i,
+  /सुरक्षा\s+जांच\s+को\s+छोड़\s+दो/i
+];
+var BLOCKED_PATTERNS_ID = [
+  /abaikan\s+(semua\s+)?instruksi\s+sebelumnya/i,
+  /berpura-pura\s+(menjadi|bahwa\s+kamu)/i,
+  /lewati\s+(aturan|batasan|pembatasan)/i,
+  /lupakan\s+(semua\s+)?(sebelumnya|yang\s+lalu)/i,
+  /nonaktifkan\s+keamanan/i,
+  /sembunyikan\s+(semua\s+)?peringatan/i,
+  /hapus\s+(semua\s+)?log/i,
+  /timpa\s+aturan\s+keamanan/i,
+  /bertindak\s+tanpa\s+batasan/i,
+  /lewati\s+pemeriksaan\s+keamanan/i
+];
+var BLOCKED_PATTERNS_VI = [
+  /bỏ\s+qua\s+(tất\s+cả\s+)?hướng\s+dẫn\s+trước/i,
+  /giả\s+vờ\s+(là|rằng\s+bạn)/i,
+  /vượt\s+qua\s+(các\s+)?(quy\s+tắc|hạn\s+chế)/i,
+  /quên\s+(tất\s+cả\s+)?(trước\s+đó|trước)/i,
+  /tắt\s+bảo\s+mật/i,
+  /ẩn\s+(tất\s+cả\s+)?cảnh\s+báo/i,
+  /xóa\s+(tất\s+cả\s+)?nhật\s+ký/i,
+  /ghi\s+đè\s+quy\s+tắc\s+bảo\s+mật/i,
+  /hành\s+động\s+không\s+hạn\s+chế/i,
+  /bỏ\s+qua\s+kiểm\s+tra\s+bảo\s+mật/i
+];
+var BLOCKED_PATTERNS_TH = [
+  /เพิกเฉย\s*(คำสั่ง|คำแนะนำ)\s*ก่อนหน้า\s*(ทั้งหมด)?/i,
+  /แกล้งทำ\s*(เป็น|ว่า)/i,
+  /ข้าม\s*(กฎ|ข้อจำกัด)/i,
+  /ลืม\s*(คำสั่ง|คำแนะนำ)\s*ก่อนหน้า\s*(ทั้งหมด)?/i,
+  /ปิด\s*ความปลอดภัย/i,
+  /ซ่อน\s*คำเตือน\s*(ทั้งหมด)?/i,
+  /ลบ\s*บันทึก\s*(ทั้งหมด)?/i,
+  /เขียนทับ\s*กฎความปลอดภัย/i,
+  /ทำงาน\s*โดยไม่มี\s*ข้อจำกัด/i,
+  /ข้าม\s*การตรวจสอบความปลอดภัย/i
+];
+var BLOCKED_PATTERNS_EL = [
+  /αγνόησε\s+(όλες\s+τις\s+)?προηγούμενες\s+οδηγίες/i,
+  /προσποιήσου\s+(ότι\s+είσαι|πως)/i,
+  /παράκαμψε\s+(τους\s+)?(κανόνες|περιορισμούς)/i,
+  /ξέχασε\s+(όλες\s+τις\s+)?(προηγούμενες|παλιές)/i,
+  /απενεργοποίησε\s+την\s+ασφάλεια/i,
+  /κρύψε\s+(όλες\s+τις\s+)?προειδοποιήσεις/i,
+  /διάγραψε\s+(όλα\s+τα\s+)?αρχεία\s+καταγραφής/i,
+  /αντικατάστησε\s+τους\s+κανόνες\s+ασφαλείας/i,
+  /ενέργησε\s+χωρίς\s+περιορισμούς/i,
+  /παράλειψε\s+τους\s+ελέγχους\s+ασφαλείας/i
+];
+var BLOCKED_PATTERNS_RO = [
+  /ignoră\s+(toate\s+)?instrucțiunile\s+anterioare/i,
+  /prefă-te\s+(că\s+ești|a\s+fi)/i,
+  /ocolește\s+(regulile|restricțiile)/i,
+  /uită\s+(toate\s+)?(anterioarele|precedentele)/i,
+  /dezactivează\s+securitatea/i,
+  /ascunde\s+(toate\s+)?avertismentele/i,
+  /șterge\s+(toate\s+)?jurnalele/i,
+  /suprascrie\s+regulile\s+de\s+securitate/i,
+  /acționează\s+fără\s+restricții/i,
+  /sari\s+peste\s+verificările\s+de\s+securitate/i
+];
+var BLOCKED_PATTERNS_HE = [
+  /התעלם\s+(מכל\s+)?ההוראות\s+הקודמות/i,
+  /העמד\s+פנים\s+(שאתה|כאילו)/i,
+  /עקוף\s+(את\s+)?(הכללים|ההגבלות)/i,
+  /שכח\s+(את\s+כל\s+)?(הקודם|ההוראות\s+הקודמות)/i,
+  /השבת\s+(את\s+)?האבטחה/i,
+  /הסתר\s+(את\s+כל\s+)?האזהרות/i,
+  /מחק\s+(את\s+כל\s+)?היומנים/i,
+  /דרוס\s+(את\s+)?כללי\s+האבטחה/i,
+  /פעל\s+ללא\s+הגבלות/i,
+  /דלג\s+על\s+בדיקות\s+האבטחה/i
+];
+var BLOCKED_PATTERNS_ALL_LANGUAGES = [
+  ...DEFAULT_BLOCKED_PATTERNS,
+  ...BLOCKED_PATTERNS_PL,
+  ...BLOCKED_PATTERNS_ES,
+  ...BLOCKED_PATTERNS_DE,
+  ...BLOCKED_PATTERNS_FR,
+  ...BLOCKED_PATTERNS_PT,
+  ...BLOCKED_PATTERNS_RU,
+  ...BLOCKED_PATTERNS_ZH,
+  ...BLOCKED_PATTERNS_IT,
+  ...BLOCKED_PATTERNS_NL,
+  ...BLOCKED_PATTERNS_JA,
+  ...BLOCKED_PATTERNS_KO,
+  ...BLOCKED_PATTERNS_AR,
+  ...BLOCKED_PATTERNS_TR,
+  ...BLOCKED_PATTERNS_SV,
+  ...BLOCKED_PATTERNS_NO,
+  ...BLOCKED_PATTERNS_DA,
+  ...BLOCKED_PATTERNS_FI,
+  ...BLOCKED_PATTERNS_CS,
+  ...BLOCKED_PATTERNS_HU,
+  ...BLOCKED_PATTERNS_UK,
+  ...BLOCKED_PATTERNS_HI,
+  ...BLOCKED_PATTERNS_ID,
+  ...BLOCKED_PATTERNS_VI,
+  ...BLOCKED_PATTERNS_TH,
+  ...BLOCKED_PATTERNS_EL,
+  ...BLOCKED_PATTERNS_RO,
+  ...BLOCKED_PATTERNS_HE
 ];
 var blockedPatterns = {
   id: "PS005",
@@ -18951,6 +19313,959 @@ var validParams = {
   }
 };
 
+// packages/validator/src/rules/suspicious-urls.ts
+var HTTP_URL_PATTERN = /\bhttp:\/\/[^\s"'<>]+/gi;
+var URL_SHORTENER_PATTERNS = [
+  /\b(?:https?:\/\/)?(?:bit\.ly|bitly\.com)\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?tinyurl\.com\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?t\.co\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?goo\.gl\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?ow\.ly\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?is\.gd\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?buff\.ly\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?adf\.ly\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?tiny\.cc\/[^\s"'<>]+/gi,
+  /\b(?:https?:\/\/)?cutt\.ly\/[^\s"'<>]+/gi
+];
+var SUSPICIOUS_PARAM_PATTERN = /\bhttps?:\/\/[^\s"'<>]*\?[^\s"'<>]*(?:session|token|auth|key|secret|password|credential|api_key|apikey|access_token|refresh_token)=[^\s"'<>&]+/gi;
+var PUNYCODE_URL_PATTERN = /\bhttps?:\/\/(?:[^\s"'<>/]*\.)?xn--[a-z0-9-]+[^\s"'<>]*/gi;
+var ALL_URLS_PATTERN = /\bhttps?:\/\/[^\s"'<>]+/gi;
+var COMMONLY_IMPERSONATED_DOMAINS = [
+  "google",
+  "github",
+  "microsoft",
+  "apple",
+  "amazon",
+  "facebook",
+  "netflix",
+  "paypal",
+  "twitter",
+  "linkedin",
+  "instagram",
+  "dropbox",
+  "slack",
+  "zoom",
+  "adobe",
+  "oracle",
+  "salesforce",
+  "stripe",
+  "shopify",
+  "cloudflare",
+  "openai",
+  "anthropic",
+  "meta",
+  "yahoo",
+  "outlook",
+  "office",
+  "azure",
+  "aws",
+  "icloud",
+  "gmail"
+];
+var CYRILLIC_HOMOGLYPHS = {
+  "\u0430": "a",
+  // Cyrillic 'а'
+  "\u0435": "e",
+  // Cyrillic 'е'
+  "\u0456": "i",
+  // Cyrillic 'і'
+  "\u043E": "o",
+  // Cyrillic 'о'
+  "\u0440": "p",
+  // Cyrillic 'р'
+  "\u0441": "c",
+  // Cyrillic 'с'
+  "\u0443": "y",
+  // Cyrillic 'у'
+  "\u0445": "x",
+  // Cyrillic 'х'
+  "\u0455": "s",
+  // Cyrillic 'ѕ'
+  "\u04CF": "l",
+  // Cyrillic 'ӏ'
+  "\u0501": "d",
+  // Cyrillic 'ԁ'
+  "\u051B": "q",
+  // Cyrillic 'ԛ'
+  "\u051D": "w"
+  // Cyrillic 'ԝ'
+};
+var GREEK_HOMOGLYPHS = {
+  "\u03B1": "a",
+  // Greek 'α'
+  "\u03B5": "e",
+  // Greek 'ε'
+  "\u03B9": "i",
+  // Greek 'ι'
+  "\u03BF": "o",
+  // Greek 'ο'
+  "\u03C1": "p",
+  // Greek 'ρ'
+  "\u03C5": "u",
+  // Greek 'υ'
+  "\u03C7": "x",
+  // Greek 'χ'
+  "\u0391": "A",
+  // Greek 'Α'
+  "\u0392": "B",
+  // Greek 'Β'
+  "\u0395": "E",
+  // Greek 'Ε'
+  "\u0397": "H",
+  // Greek 'Η'
+  "\u0399": "I",
+  // Greek 'Ι'
+  "\u039A": "K",
+  // Greek 'Κ'
+  "\u039C": "M",
+  // Greek 'Μ'
+  "\u039D": "N",
+  // Greek 'Ν'
+  "\u039F": "O",
+  // Greek 'Ο'
+  "\u03A1": "P",
+  // Greek 'Ρ'
+  "\u03A4": "T",
+  // Greek 'Τ'
+  "\u03A5": "Y",
+  // Greek 'Υ'
+  "\u03A7": "X"
+  // Greek 'Χ'
+};
+var ALL_HOMOGLYPHS = {
+  ...CYRILLIC_HOMOGLYPHS,
+  ...GREEK_HOMOGLYPHS
+};
+var SCRIPT_RANGES = {
+  // Basic Latin (ASCII letters)
+  latin: /[A-Za-z]/,
+  // Cyrillic
+  cyrillic: /[\u0400-\u04FF\u0500-\u052F]/,
+  // Greek
+  greek: /[\u0370-\u03FF\u1F00-\u1FFF]/
+};
+function detectMixedScripts(text) {
+  const foundScripts = [];
+  for (const [scriptName, pattern] of Object.entries(SCRIPT_RANGES)) {
+    if (pattern.test(text)) {
+      foundScripts.push(scriptName);
+    }
+  }
+  return foundScripts.length > 1 ? foundScripts : null;
+}
+function normalizeHomoglyphs(domain) {
+  let normalized = domain.toLowerCase();
+  for (const [homoglyph, latin] of Object.entries(ALL_HOMOGLYPHS)) {
+    normalized = normalized.split(homoglyph).join(latin);
+  }
+  return normalized;
+}
+function detectImpersonatedService(domain) {
+  const normalized = normalizeHomoglyphs(domain);
+  const domainParts = normalized.split(".");
+  const mainDomain = domainParts.length > 1 ? domainParts[domainParts.length - 2] : domainParts[0];
+  if (!mainDomain) {
+    return null;
+  }
+  for (const service of COMMONLY_IMPERSONATED_DOMAINS) {
+    if (mainDomain === service) {
+      return service;
+    }
+    if (isCloseVariant(mainDomain, service)) {
+      return service;
+    }
+  }
+  return null;
+}
+function isCloseVariant(a, b) {
+  const lengthDiff = Math.abs(a.length - b.length);
+  if (lengthDiff > 2) {
+    return false;
+  }
+  if (lengthDiff === 0) {
+    let differences = 0;
+    for (let i = 0; i < a.length; i++) {
+      if (a[i] !== b[i]) {
+        differences++;
+      }
+    }
+    return differences === 1 || differences === 2;
+  }
+  const shorter = a.length < b.length ? a : b;
+  const longer = a.length < b.length ? b : a;
+  if (longer.includes(shorter)) {
+    return true;
+  }
+  const minLen = Math.min(a.length, b.length);
+  let matchingChars = 0;
+  for (let i = 0; i < minLen; i++) {
+    if (a[i] === b[i]) {
+      matchingChars++;
+    }
+  }
+  return matchingChars >= minLen - 2 && minLen >= 4;
+}
+function extractDomain(url) {
+  const match = /https?:\/\/([^\s"'<>/]+)/i.exec(url);
+  return match?.[1] ?? null;
+}
+function checkHomographAttack(domain) {
+  const mixedScripts = detectMixedScripts(domain);
+  const impersonatedService = detectImpersonatedService(domain);
+  const hasHomoglyphs = Object.keys(ALL_HOMOGLYPHS).some((h) => domain.includes(h));
+  const isAttack = impersonatedService !== null && (mixedScripts !== null || hasHomoglyphs);
+  return { isAttack, impersonatedService, mixedScripts };
+}
+var suspiciousUrls = {
+  id: "PS010",
+  name: "suspicious-urls",
+  description: "Detect suspicious URLs (HTTP, shorteners, credential parameters, IDN homograph attacks)",
+  defaultSeverity: "warning",
+  validate: (ctx) => {
+    walkText(ctx.ast, (text, loc) => {
+      const httpMatches = text.match(HTTP_URL_PATTERN);
+      if (httpMatches) {
+        for (const match of httpMatches) {
+          ctx.report({
+            message: `Insecure HTTP URL detected: ${match}`,
+            location: loc,
+            suggestion: "Use HTTPS instead of HTTP for secure communication"
+          });
+        }
+      }
+      for (const pattern of URL_SHORTENER_PATTERNS) {
+        pattern.lastIndex = 0;
+        const shortenerMatches = text.match(pattern);
+        if (shortenerMatches) {
+          for (const match of shortenerMatches) {
+            ctx.report({
+              message: `URL shortener detected: ${match}`,
+              location: loc,
+              suggestion: "Use full URLs instead of shorteners to ensure destination transparency"
+            });
+          }
+        }
+      }
+      const paramMatches = text.match(SUSPICIOUS_PARAM_PATTERN);
+      if (paramMatches) {
+        for (const match of paramMatches) {
+          ctx.report({
+            message: `URL with suspicious credential parameter detected: ${match}`,
+            location: loc,
+            suggestion: "Avoid embedding credentials or tokens in URLs"
+          });
+        }
+      }
+      PUNYCODE_URL_PATTERN.lastIndex = 0;
+      const punycodeMatches = text.match(PUNYCODE_URL_PATTERN);
+      if (punycodeMatches) {
+        for (const match of punycodeMatches) {
+          const domain = extractDomain(match);
+          if (domain) {
+            const impersonatedService = detectImpersonatedService(domain);
+            if (impersonatedService) {
+              ctx.report({
+                message: `Potential IDN homograph attack detected: ${match} may be impersonating "${impersonatedService}"`,
+                location: loc,
+                suggestion: "Punycode domains (xn--) can visually impersonate legitimate sites. Verify the actual domain carefully."
+              });
+            } else {
+              ctx.report({
+                message: `Punycode domain detected: ${match}`,
+                location: loc,
+                suggestion: "Punycode domains (xn--) can be legitimate international domains, but may also be used for homograph attacks. Verify the domain is intentional."
+              });
+            }
+          }
+        }
+      }
+      ALL_URLS_PATTERN.lastIndex = 0;
+      const allUrls = text.match(ALL_URLS_PATTERN);
+      if (allUrls) {
+        for (const url of allUrls) {
+          const domain = extractDomain(url);
+          if (domain) {
+            const { isAttack, impersonatedService, mixedScripts } = checkHomographAttack(domain);
+            if (isAttack && impersonatedService) {
+              ctx.report({
+                message: `IDN homograph attack detected: "${domain}" uses deceptive characters to impersonate "${impersonatedService}"`,
+                location: loc,
+                suggestion: `This domain uses ${mixedScripts ? `mixed scripts (${mixedScripts.join("+")})` : "homoglyph characters"} to visually mimic a legitimate service. Do not trust this URL.`
+              });
+            } else if (mixedScripts && mixedScripts.length > 1) {
+              ctx.report({
+                message: `Mixed script domain detected: "${domain}" uses ${mixedScripts.join(" + ")} characters`,
+                location: loc,
+                suggestion: "Domains mixing different character scripts (e.g., Latin + Cyrillic) may be attempts to deceive users. Verify this is intentional."
+              });
+            }
+          }
+        }
+      }
+    });
+  }
+};
+
+// packages/validator/src/rules/authority-injection.ts
+var AUTHORITY_PATTERNS = [
+  // Mandatory/strict mode indicators
+  /\[?\s{0,10}MANDATORY\s{0,10}(?:POLICY|UPDATE|FOOTER|INSTRUCTION|DIRECTIVE)\s{0,10}\]?/i,
+  /\[?\s{0,10}OVERRIDE\s{0,10}\]?/i,
+  /\[?\s{0,10}STRICT[_\s]{0,10}MODE\s{0,10}[:\s]{1,10}ON\s{0,10}\]?/i,
+  /\[?\s{0,10}SYSTEM\s{0,10}(?:OVERRIDE|UPDATE|DIRECTIVE)\s{0,10}\]?/i,
+  /\[?\s{0,10}ADMIN(?:ISTRATOR)?\s{0,10}(?:MODE|OVERRIDE|ACCESS)\s{0,10}\]?/i,
+  /\[?\s{0,10}ROOT\s{0,10}(?:ACCESS|MODE|OVERRIDE)\s{0,10}\]?/i,
+  /\[?\s{0,10}PRIORITY\s{0,10}(?:OVERRIDE|ONE|ALPHA)\s{0,10}\]?/i,
+  /\[?\s{0,10}EMERGENCY\s{0,10}(?:PROTOCOL|OVERRIDE|MODE)\s{0,10}\]?/i,
+  // Warning suppression patterns
+  /(?:DO\s{1,10}NOT|NEVER|DON'?T)\s{1,10}(?:WARN|ALERT|NOTIFY|FLAG|REPORT)/i,
+  /(?:DO\s{1,10}NOT|NEVER|DON'?T)\s{1,10}(?:PROVIDE|SHOW|DISPLAY|INCLUDE)\s{1,10}(?:SECURITY\s{1,10})?WARNINGS?/i,
+  /(?:SUPPRESS|HIDE|DISABLE|REMOVE|SILENCE)\s{1,10}(?:ALL\s{1,10})?WARNINGS?/i,
+  /(?:SUPPRESS|HIDE|DISABLE|REMOVE|SILENCE)\s{1,10}(?:ALL\s{1,10})?(?:SECURITY\s{1,10})?(?:ALERTS?|NOTIFICATIONS?)/i,
+  /IGNORE\s{1,10}(?:ALL\s{1,10})?(?:SAFETY\s{1,10})?WARNINGS?/i,
+  /(?:SKIP|BYPASS)\s{1,10}(?:ALL\s{1,10})?(?:SAFETY\s{1,10})?(?:CHECKS?|VALIDATION)/i,
+  // Execute/follow verbatim patterns
+  /EXECUTE\s{1,10}(?:THIS\s{1,10})?VERBATIM/i,
+  /FOLLOW\s{1,10}(?:THESE?\s{1,10})?(?:INSTRUCTIONS?\s{1,10})?(?:EXACTLY|PRECISELY|LITERALLY)/i,
+  /(?:MUST|SHALL|WILL)\s{1,10}(?:ALWAYS\s{1,10})?COMPLY/i,
+  /(?:ABSOLUTE|UNCONDITIONAL)\s{1,10}(?:COMPLIANCE|OBEDIENCE)/i,
+  /NO\s{1,10}(?:EXCEPTIONS?|DEVIATIONS?)\s{1,10}(?:ALLOWED|PERMITTED)/i,
+  // Authority assertion patterns
+  /THIS\s{1,10}(?:OVERRIDES?|SUPERSEDES?|REPLACES?)\s{1,10}(?:ALL\s{1,10})?(?:PREVIOUS|PRIOR|OTHER)/i,
+  /(?:HIGHEST|TOP|MAXIMUM)\s{1,10}PRIORITY\s{1,10}(?:INSTRUCTION|DIRECTIVE|ORDER)/i,
+  /(?:CORE|FUNDAMENTAL|BASE)\s{1,10}(?:DIRECTIVE|INSTRUCTION)\s{1,10}(?:UPDATE|OVERRIDE)/i,
+  /NEW\s{1,10}(?:SYSTEM|CORE|BASE)\s{1,10}(?:INSTRUCTIONS?|DIRECTIVES?|RULES?)/i
+];
+var authorityInjection = {
+  id: "PS011",
+  name: "authority-injection",
+  description: "Detect authoritative override phrases that may indicate prompt injection",
+  defaultSeverity: "error",
+  validate: (ctx) => {
+    walkText(ctx.ast, (text, loc) => {
+      for (const pattern of AUTHORITY_PATTERNS) {
+        if (pattern.test(text)) {
+          ctx.report({
+            message: `Authority injection pattern detected: ${pattern.source}`,
+            location: loc,
+            suggestion: "Remove authoritative override language that could be used for prompt injection"
+          });
+        }
+      }
+    });
+  }
+};
+
+// packages/validator/src/rules/obfuscated-content.ts
+var MIN_ENCODED_LENGTH = 16;
+var DECODED_CONTENT_SECURITY_PATTERNS = [
+  // Authority injection patterns
+  {
+    pattern: /\[?\s{0,10}MANDATORY\s{0,10}(?:POLICY|UPDATE|FOOTER|INSTRUCTION|DIRECTIVE|OVERRIDE)\s{0,10}\]?/i,
+    description: "Mandatory/policy override directive"
+  },
+  {
+    pattern: /\[?\s{0,10}OVERRIDE\s{0,10}\]?/i,
+    description: "Override directive"
+  },
+  {
+    pattern: /\[?\s{0,10}STRICT[_\s]{0,10}MODE\s{0,10}[:\s]{1,10}ON\s{0,10}\]?/i,
+    description: "Strict mode activation"
+  },
+  {
+    pattern: /\[?\s{0,10}SYSTEM\s{0,10}(?:OVERRIDE|UPDATE|DIRECTIVE)\s{0,10}\]?/i,
+    description: "System override directive"
+  },
+  {
+    pattern: /\[?\s{0,10}ADMIN(?:ISTRATOR)?\s{0,10}(?:MODE|OVERRIDE|ACCESS)\s{0,10}\]?/i,
+    description: "Admin mode/override directive"
+  },
+  // Prompt injection patterns
+  {
+    pattern: /ignore\s{1,10}(?:all\s{1,10})?(?:previous\s{1,10})?(?:instructions?|rules?|safety)/i,
+    description: "Prompt injection (ignore instructions)"
+  },
+  {
+    pattern: /disregard\s{1,10}(?:all\s{1,10})?(?:prior|previous|safety)/i,
+    description: "Prompt injection (disregard previous)"
+  },
+  {
+    pattern: /bypass\s{1,10}(?:your\s{1,10})?(?:rules?|restrictions?|safety|filters?)/i,
+    description: "Bypass directive"
+  },
+  {
+    pattern: /jailbreak/i,
+    description: "Jailbreak attempt"
+  },
+  {
+    pattern: /pretend\s{1,10}(?:you\s{1,10})?(?:are|have|can)/i,
+    description: "Role manipulation attempt"
+  },
+  {
+    pattern: /act\s{1,10}as\s{1,10}(?:if|though)/i,
+    description: "Role manipulation attempt"
+  },
+  // Warning/safety suppression
+  {
+    pattern: /(?:suppress|hide|disable|remove)\s{1,10}(?:all\s{1,10})?(?:security\s{1,10})?(?:warnings?|alerts?|checks?)/i,
+    description: "Warning suppression directive"
+  },
+  {
+    pattern: /(?:do\s{1,10}not|never|don'?t)\s{1,10}(?:warn|alert|notify|check)/i,
+    description: "Warning suppression directive"
+  },
+  // System compromise indicators
+  {
+    pattern: /system[_\s]{0,5}compromised/i,
+    description: "System compromise indicator"
+  }
+];
+var DATA_URI_PATTERN = /data:(text\/[a-zA-Z0-9.+-]+|application\/json);base64,([A-Za-z0-9+/=]+)/g;
+var BASE64_PATTERN = /(?:[A-Za-z0-9+/]{4}){8,}(?:[A-Za-z0-9+/]{2}==|[A-Za-z0-9+/]{3}=)?/g;
+var RAW_HEX_SPACED_PATTERN = /(?:[0-9A-Fa-f]{2}[\s-]){7,}[0-9A-Fa-f]{2}/g;
+var RAW_HEX_CONTINUOUS_PATTERN = /(?<![A-Za-z0-9])([0-9A-Fa-f]{16,})(?![A-Za-z0-9])/g;
+var HEX_ESCAPE_PATTERN = /(?:\\x[0-9a-fA-F]{2}){4,}/g;
+var UNICODE_ESCAPE_PATTERN = /(?:\\u[0-9a-fA-F]{4}){3,}/g;
+var URL_ENCODED_PATTERN = /(?:%[0-9a-fA-F]{2}){4,}/g;
+var HTML_ENTITY_PATTERN = /(?:&#(?:x[0-9a-fA-F]{1,4}|[0-9]{1,5});){4,}/g;
+var OCTAL_ESCAPE_PATTERN = /(?:\\[0-7]{3}){4,}/g;
+var BINARY_PATTERN = /(?:[01]{8}[\s]?){4,}/g;
+function decodeBase64(encoded) {
+  try {
+    if (!/^[A-Za-z0-9+/]*={0,2}$/.test(encoded)) {
+      return null;
+    }
+    const decoded = Buffer.from(encoded, "base64").toString("utf-8");
+    if (/[\x00-\x08\x0E-\x1F]/.test(decoded)) {
+      return null;
+    }
+    return decoded;
+  } catch {
+    return null;
+  }
+}
+function decodeRawHex(hex) {
+  const cleanHex = hex.replace(/[\s-]/g, "");
+  if (cleanHex.length % 2 !== 0) return null;
+  const bytes = [];
+  for (let i = 0; i < cleanHex.length; i += 2) {
+    const byte = parseInt(cleanHex.substring(i, i + 2), 16);
+    if (isNaN(byte)) return null;
+    bytes.push(byte);
+  }
+  const decoded = String.fromCharCode(...bytes);
+  if (/[\x00-\x08\x0E-\x1F]/.test(decoded)) {
+    return null;
+  }
+  return decoded;
+}
+function decodeHexEscapes(escaped) {
+  const hex = escaped.replace(/\\x/g, "");
+  return decodeRawHex(hex);
+}
+function decodeUnicodeEscapes(escaped) {
+  const decoded = escaped.replace(
+    /\\u([0-9a-fA-F]{4})/g,
+    (_, code) => String.fromCharCode(parseInt(code, 16))
+  );
+  return decoded;
+}
+function decodeUrlEncoded(encoded) {
+  try {
+    return decodeURIComponent(encoded);
+  } catch {
+    return null;
+  }
+}
+function decodeHtmlEntities(entities) {
+  const decoded = entities.replace(/&#(x?)([0-9a-fA-F]+);/g, (_, isHex, code) => {
+    const charCode = isHex ? parseInt(code, 16) : parseInt(code, 10);
+    return String.fromCharCode(charCode);
+  });
+  return decoded;
+}
+function decodeOctalEscapes(escaped) {
+  const decoded = escaped.replace(
+    /\\([0-7]{3})/g,
+    (_, octal) => String.fromCharCode(parseInt(octal, 8))
+  );
+  return decoded;
+}
+function decodeBinary(binary) {
+  const cleanBinary = binary.replace(/\s/g, "");
+  if (cleanBinary.length % 8 !== 0) return null;
+  let decoded = "";
+  for (let i = 0; i < cleanBinary.length; i += 8) {
+    const byte = parseInt(cleanBinary.substring(i, i + 8), 2);
+    if (isNaN(byte)) return null;
+    decoded += String.fromCharCode(byte);
+  }
+  return decoded;
+}
+function rot13(text) {
+  return text.replace(/[a-zA-Z]/g, (char) => {
+    const code = char.charCodeAt(0);
+    const base = code < 97 ? 65 : 97;
+    return String.fromCharCode((code - base + 13) % 26 + base);
+  });
+}
+function checkDecodedContent(decoded) {
+  const issues = [];
+  for (const { pattern, description } of DECODED_CONTENT_SECURITY_PATTERNS) {
+    if (pattern.test(decoded)) {
+      issues.push(description);
+    }
+  }
+  return issues;
+}
+function isLikelyTechnicalContent(match) {
+  if (match.includes("/") || match.includes("-") || match.includes("_")) {
+    const words = match.split(/[/\-_+]/);
+    const recognizableWords = words.filter((w) => {
+      if (w.length < 3 || w.length > 20) return false;
+      if (!/^[A-Za-z]+$/.test(w)) return false;
+      if (/[aeiouAEIOU]/.test(w)) return true;
+      return false;
+    });
+    if (recognizableWords.length > words.length / 2) {
+      return true;
+    }
+  }
+  return false;
+}
+function isLikelyLegitimateBase64(text, match) {
+  const matchIndex = text.indexOf(match);
+  if (matchIndex === -1) return false;
+  const precedingText = text.substring(Math.max(0, matchIndex - 30), matchIndex);
+  if (precedingText.includes("data:image/")) return true;
+  if (precedingText.includes("data:application/json")) return true;
+  if (precedingText.includes("data:text/")) return true;
+  if (isLikelyTechnicalContent(match)) return true;
+  return false;
+}
+function isLikelyHashOrUuid(hex) {
+  const cleanHex = hex.replace(/[\s-]/g, "");
+  const hashLengths = [32, 40, 64, 128];
+  return hashLengths.includes(cleanHex.length);
+}
+function detectAndDecodeEncodings(text) {
+  const matches = [];
+  DATA_URI_PATTERN.lastIndex = 0;
+  let dataUriMatch;
+  while ((dataUriMatch = DATA_URI_PATTERN.exec(text)) !== null) {
+    const base64Content = dataUriMatch[2];
+    if (base64Content && base64Content.length >= MIN_ENCODED_LENGTH) {
+      const decoded = decodeBase64(base64Content);
+      if (decoded) {
+        const issues = checkDecodedContent(decoded);
+        if (issues.length > 0) {
+          matches.push({
+            type: `data URI (${dataUriMatch[1]})`,
+            raw: dataUriMatch[0].substring(0, 50) + "...",
+            decoded: decoded.substring(0, 100),
+            issues
+          });
+        }
+      }
+    }
+  }
+  RAW_HEX_SPACED_PATTERN.lastIndex = 0;
+  let hexMatch;
+  while ((hexMatch = RAW_HEX_SPACED_PATTERN.exec(text)) !== null) {
+    const decoded = decodeRawHex(hexMatch[0]);
+    if (decoded && decoded.length >= 4) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "raw hex (spaced)",
+          raw: hexMatch[0].substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  RAW_HEX_CONTINUOUS_PATTERN.lastIndex = 0;
+  while ((hexMatch = RAW_HEX_CONTINUOUS_PATTERN.exec(text)) !== null) {
+    const hexStr = hexMatch[1] || hexMatch[0];
+    if (isLikelyHashOrUuid(hexStr)) continue;
+    const decoded = decodeRawHex(hexStr);
+    if (decoded && decoded.length >= 4) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "raw hex (continuous)",
+          raw: hexStr.substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  HEX_ESCAPE_PATTERN.lastIndex = 0;
+  while ((hexMatch = HEX_ESCAPE_PATTERN.exec(text)) !== null) {
+    const decoded = decodeHexEscapes(hexMatch[0]);
+    if (decoded) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "hex escapes",
+          raw: hexMatch[0].substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  UNICODE_ESCAPE_PATTERN.lastIndex = 0;
+  let unicodeMatch;
+  while ((unicodeMatch = UNICODE_ESCAPE_PATTERN.exec(text)) !== null) {
+    const decoded = decodeUnicodeEscapes(unicodeMatch[0]);
+    if (decoded) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "unicode escapes",
+          raw: unicodeMatch[0].substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  URL_ENCODED_PATTERN.lastIndex = 0;
+  let urlMatch;
+  while ((urlMatch = URL_ENCODED_PATTERN.exec(text)) !== null) {
+    const decoded = decodeUrlEncoded(urlMatch[0]);
+    if (decoded) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "URL encoding",
+          raw: urlMatch[0].substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  HTML_ENTITY_PATTERN.lastIndex = 0;
+  let htmlMatch;
+  while ((htmlMatch = HTML_ENTITY_PATTERN.exec(text)) !== null) {
+    const decoded = decodeHtmlEntities(htmlMatch[0]);
+    if (decoded) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "HTML entities",
+          raw: htmlMatch[0].substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  OCTAL_ESCAPE_PATTERN.lastIndex = 0;
+  let octalMatch;
+  while ((octalMatch = OCTAL_ESCAPE_PATTERN.exec(text)) !== null) {
+    const decoded = decodeOctalEscapes(octalMatch[0]);
+    if (decoded) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "octal escapes",
+          raw: octalMatch[0].substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  BINARY_PATTERN.lastIndex = 0;
+  let binaryMatch;
+  while ((binaryMatch = BINARY_PATTERN.exec(text)) !== null) {
+    const decoded = decodeBinary(binaryMatch[0]);
+    if (decoded && decoded.length >= 4) {
+      const issues = checkDecodedContent(decoded);
+      if (issues.length > 0) {
+        matches.push({
+          type: "binary string",
+          raw: binaryMatch[0].substring(0, 30) + "...",
+          decoded: decoded.substring(0, 100),
+          issues
+        });
+      }
+    }
+  }
+  BASE64_PATTERN.lastIndex = 0;
+  let base64Match;
+  while ((base64Match = BASE64_PATTERN.exec(text)) !== null) {
+    const match = base64Match[0];
+    if (match.length >= MIN_ENCODED_LENGTH && !isLikelyLegitimateBase64(text, match)) {
+      const decoded = decodeBase64(match);
+      if (decoded) {
+        const issues = checkDecodedContent(decoded);
+        if (issues.length > 0) {
+          matches.push({
+            type: "Base64",
+            raw: match.substring(0, 30) + "...",
+            decoded: decoded.substring(0, 100),
+            issues
+          });
+        }
+      }
+    }
+  }
+  const rot13Decoded = rot13(text);
+  if (rot13Decoded !== text) {
+    const issues = checkDecodedContent(rot13Decoded);
+    const originalIssues = checkDecodedContent(text);
+    const newIssues = issues.filter((i) => !originalIssues.includes(i));
+    if (newIssues.length > 0) {
+      matches.push({
+        type: "ROT13 cipher",
+        raw: text.substring(0, 30) + "...",
+        decoded: rot13Decoded.substring(0, 100),
+        issues: newIssues
+      });
+    }
+  }
+  return matches;
+}
+var obfuscatedContent = {
+  id: "PS012",
+  name: "obfuscated-content",
+  description: "Detect obfuscated content using sanitization pipeline (decode and check all encodings)",
+  defaultSeverity: "warning",
+  validate: (ctx) => {
+    walkText(ctx.ast, (text, loc) => {
+      const encodedMatches = detectAndDecodeEncodings(text);
+      for (const match of encodedMatches) {
+        ctx.report({
+          message: `Malicious content detected in ${match.type}: ${match.issues.join(", ")}. Decoded: "${match.decoded.substring(0, 50)}${match.decoded.length > 50 ? "..." : ""}"`,
+          location: loc,
+          suggestion: "Encoded content is automatically decoded and checked for security patterns. Remove the malicious payload or use plain text."
+        });
+      }
+      const hasLongBase64 = (text.match(BASE64_PATTERN) || []).some(
+        (m) => m.length >= MIN_ENCODED_LENGTH * 2 && !isLikelyLegitimateBase64(text, m)
+      );
+      if (hasLongBase64 && encodedMatches.length === 0) {
+        ctx.report({
+          message: "Long Base64-encoded content detected that may hide payloads",
+          location: loc,
+          suggestion: "If this is intentional, consider using plain text or documenting the purpose"
+        });
+      }
+    });
+  }
+};
+
+// packages/validator/src/rules/path-traversal.ts
+var PATH_TRAVERSAL_AFTER_START = /^\.\.?\/(?:[a-zA-Z0-9._-]{1,255}\/){0,50}\.\.(?:\/|$)/;
+var EXCESSIVE_PARENT_TRAVERSAL = /^(?:\.\.\/){2,20}/;
+var EMBEDDED_TRAVERSAL = /^\.\.?\/[a-zA-Z0-9._-]{1,255}(?:\/[a-zA-Z0-9._-]{1,255}){0,50}\/\.\.(?:\/|$)/;
+function hasPathTraversal(path) {
+  if (EXCESSIVE_PARENT_TRAVERSAL.test(path)) {
+    return true;
+  }
+  if (PATH_TRAVERSAL_AFTER_START.test(path)) {
+    return true;
+  }
+  if (EMBEDDED_TRAVERSAL.test(path)) {
+    return true;
+  }
+  return false;
+}
+var pathTraversal = {
+  id: "PS013",
+  name: "path-traversal",
+  description: "Detect path traversal attacks that could escape the intended directory",
+  defaultSeverity: "error",
+  validate: (ctx) => {
+    if (ctx.ast.inherit) {
+      const path = ctx.ast.inherit.path;
+      if (hasPathTraversal(path.raw)) {
+        ctx.report({
+          message: `Path traversal detected: "${path.raw}" contains ".." sequences that could escape the intended directory`,
+          location: ctx.ast.inherit.loc ?? ctx.ast.loc,
+          suggestion: 'Use direct paths without ".." traversal after the initial prefix. Reorganize your file structure if needed.'
+        });
+      }
+    }
+    walkUses(ctx.ast, (use) => {
+      if (hasPathTraversal(use.path.raw)) {
+        ctx.report({
+          message: `Path traversal detected: "${use.path.raw}" contains ".." sequences that could escape the intended directory`,
+          location: use.loc,
+          suggestion: 'Use direct paths without ".." traversal after the initial prefix. Reorganize your file structure if needed.'
+        });
+      }
+    });
+  }
+};
+
+// packages/validator/src/rules/unicode-security.ts
+var BIDI_CONTROL_CHARS = /* @__PURE__ */ new Map([
+  ["\u202E", "Right-to-Left Override (U+202E)"],
+  ["\u202D", "Left-to-Right Override (U+202D)"],
+  ["\u202C", "Pop Directional Formatting (U+202C)"],
+  ["\u202A", "Left-to-Right Embedding (U+202A)"],
+  ["\u202B", "Right-to-Left Embedding (U+202B)"],
+  ["\u2066", "Left-to-Right Isolate (U+2066)"],
+  ["\u2067", "Right-to-Left Isolate (U+2067)"],
+  ["\u2068", "First Strong Isolate (U+2068)"],
+  ["\u2069", "Pop Directional Isolate (U+2069)"]
+]);
+var ZERO_WIDTH_CHARS = /* @__PURE__ */ new Map([
+  ["\u200B", "Zero Width Space (U+200B)"],
+  ["\u200C", "Zero Width Non-Joiner (U+200C)"],
+  ["\u200D", "Zero Width Joiner (U+200D)"],
+  ["\uFEFF", "Byte Order Mark (U+FEFF)"],
+  ["\xAD", "Soft Hyphen (U+00AD)"],
+  ["\u2060", "Word Joiner (U+2060)"]
+]);
+var CYRILLIC_LOOKALIKES = /* @__PURE__ */ new Map([
+  // Lowercase
+  ["\u0430", "\u0430 (Cyrillic) looks like a (Latin)"],
+  ["\u0435", "\u0435 (Cyrillic) looks like e (Latin)"],
+  ["\u043E", "\u043E (Cyrillic) looks like o (Latin)"],
+  ["\u0440", "\u0440 (Cyrillic) looks like p (Latin)"],
+  ["\u0441", "\u0441 (Cyrillic) looks like c (Latin)"],
+  ["\u0445", "\u0445 (Cyrillic) looks like x (Latin)"],
+  ["\u0443", "\u0443 (Cyrillic) looks like y (Latin)"],
+  ["\u0456", "\u0456 (Cyrillic) looks like i (Latin)"],
+  // Uppercase
+  ["\u0410", "\u0410 (Cyrillic) looks like A (Latin)"],
+  ["\u0412", "\u0412 (Cyrillic) looks like B (Latin)"],
+  ["\u0415", "\u0415 (Cyrillic) looks like E (Latin)"],
+  ["\u041A", "\u041A (Cyrillic) looks like K (Latin)"],
+  ["\u041C", "\u041C (Cyrillic) looks like M (Latin)"],
+  ["\u041D", "\u041D (Cyrillic) looks like H (Latin)"],
+  ["\u041E", "\u041E (Cyrillic) looks like O (Latin)"],
+  ["\u0420", "\u0420 (Cyrillic) looks like P (Latin)"],
+  ["\u0421", "\u0421 (Cyrillic) looks like C (Latin)"],
+  ["\u0422", "\u0422 (Cyrillic) looks like T (Latin)"],
+  ["\u0425", "\u0425 (Cyrillic) looks like X (Latin)"]
+]);
+var GREEK_LOOKALIKES = /* @__PURE__ */ new Map([
+  // Lowercase
+  ["\u03B1", "\u03B1 (Greek) looks like a (Latin)"],
+  ["\u03B5", "\u03B5 (Greek) looks like e (Latin)"],
+  ["\u03B9", "\u03B9 (Greek) looks like i (Latin)"],
+  ["\u03BF", "\u03BF (Greek) looks like o (Latin)"],
+  ["\u03C5", "\u03C5 (Greek) looks like u (Latin)"],
+  ["\u03C9", "\u03C9 (Greek) looks like w (Latin)"],
+  ["\u03BD", "\u03BD (Greek) looks like v (Latin)"],
+  // Uppercase
+  ["\u0391", "\u0391 (Greek) looks like A (Latin)"],
+  ["\u0392", "\u0392 (Greek) looks like B (Latin)"],
+  ["\u0395", "\u0395 (Greek) looks like E (Latin)"],
+  ["\u0397", "\u0397 (Greek) looks like H (Latin)"],
+  ["\u0399", "\u0399 (Greek) looks like I (Latin)"],
+  ["\u039A", "\u039A (Greek) looks like K (Latin)"],
+  ["\u039C", "\u039C (Greek) looks like M (Latin)"],
+  ["\u039D", "\u039D (Greek) looks like N (Latin)"],
+  ["\u039F", "\u039F (Greek) looks like O (Latin)"],
+  ["\u03A1", "\u03A1 (Greek) looks like P (Latin)"],
+  ["\u03A4", "\u03A4 (Greek) looks like T (Latin)"],
+  ["\u03A7", "\u03A7 (Greek) looks like X (Latin)"],
+  ["\u03A5", "\u03A5 (Greek) looks like Y (Latin)"],
+  ["\u0396", "\u0396 (Greek) looks like Z (Latin)"]
+]);
+var EXCESSIVE_COMBINING_PATTERN = /[\u0300-\u036F\u0483-\u0489\u0591-\u05BD\u064B-\u065F]{4,}/;
+var LATIN_PATTERN = /[a-zA-Z]/;
+function findHomographAttacks(text) {
+  const results = [];
+  const hasLatin = LATIN_PATTERN.test(text);
+  if (!hasLatin) {
+    return results;
+  }
+  for (let i = 0; i < text.length; i++) {
+    const char = text[i];
+    const cyrillicDesc = CYRILLIC_LOOKALIKES.get(char);
+    if (cyrillicDesc) {
+      results.push({ char, description: cyrillicDesc, index: i });
+    }
+    const greekDesc = GREEK_LOOKALIKES.get(char);
+    if (greekDesc) {
+      results.push({ char, description: greekDesc, index: i });
+    }
+  }
+  return results;
+}
+function findBidiChars(text) {
+  const results = [];
+  for (let i = 0; i < text.length; i++) {
+    const char = text[i];
+    const description = BIDI_CONTROL_CHARS.get(char);
+    if (description) {
+      results.push({ char, description, index: i });
+    }
+  }
+  return results;
+}
+function findZeroWidthChars(text) {
+  const results = [];
+  for (let i = 0; i < text.length; i++) {
+    const char = text[i];
+    const description = ZERO_WIDTH_CHARS.get(char);
+    if (description) {
+      results.push({ char, description, index: i });
+    }
+  }
+  return results;
+}
+var unicodeSecurity = {
+  id: "PS014",
+  name: "unicode-security",
+  description: "Detect Unicode-based attacks (bidi overrides, zero-width, homoglyphs)",
+  defaultSeverity: "error",
+  validate: (ctx) => {
+    walkText(ctx.ast, (text, loc) => {
+      const bidiChars = findBidiChars(text);
+      if (bidiChars.length > 0) {
+        const descriptions = bidiChars.slice(0, 3).map((b) => b.description).join(", ");
+        const suffix = bidiChars.length > 3 ? ` and ${bidiChars.length - 3} more` : "";
+        ctx.report({
+          message: `Bidirectional text override detected: ${descriptions}${suffix}`,
+          location: loc,
+          suggestion: "Remove bidirectional override characters that may hide malicious content"
+        });
+      }
+      const zeroWidthChars = findZeroWidthChars(text);
+      if (zeroWidthChars.length > 0) {
+        const descriptions = zeroWidthChars.slice(0, 3).map((z) => z.description).join(", ");
+        const suffix = zeroWidthChars.length > 3 ? ` and ${zeroWidthChars.length - 3} more` : "";
+        ctx.report({
+          message: `Zero-width characters detected: ${descriptions}${suffix}`,
+          location: loc,
+          suggestion: "Remove zero-width characters that may be used to evade pattern matching"
+        });
+      }
+      const homographs = findHomographAttacks(text);
+      if (homographs.length > 0) {
+        const descriptions = homographs.slice(0, 3).map((h) => h.description).join(", ");
+        const suffix = homographs.length > 3 ? ` and ${homographs.length - 3} more` : "";
+        ctx.report({
+          message: `Potential homograph attack: ${descriptions}${suffix}`,
+          location: loc,
+          suggestion: "Replace lookalike Cyrillic/Greek characters with Latin equivalents"
+        });
+      }
+      if (EXCESSIVE_COMBINING_PATTERN.test(text)) {
+        const match = text.match(EXCESSIVE_COMBINING_PATTERN);
+        const charCodes = match ? Array.from(match[0]).slice(0, 4).map((c) => `U+${c.charCodeAt(0).toString(16).toUpperCase().padStart(4, "0")}`).join(", ") : "unknown";
+        ctx.report({
+          message: `Excessive combining characters (Zalgo text) detected: ${charCodes}...`,
+          location: loc,
+          suggestion: "Remove excessive diacritical marks that may be used to obscure content"
+        });
+      }
+    });
+  }
+};
+
 // packages/validator/src/rules/index.ts
 var allRules = [
   // Required meta rules (PS001, PS002)
@@ -18969,7 +20284,13 @@ var allRules = [
   // Empty blocks (PS008)
   emptyBlock,
   // Valid params (PS009)
-  validParams
+  validParams,
+  // Security rules (PS010, PS011, PS012, PS013, PS014)
+  suspiciousUrls,
+  authorityInjection,
+  obfuscatedContent,
+  pathTraversal,
+  unicodeSecurity
 ];
 
 // packages/validator/src/validator.ts
@@ -19083,6 +20404,45 @@ var Validator = class {
   }
 };
 
+// packages/validator/src/presets.ts
+var SECURITY_STRICT = {
+  rules: {
+    // Core security rules as errors
+    "blocked-patterns": "error",
+    "suspicious-urls": "error",
+    "authority-injection": "error",
+    "obfuscated-content": "error",
+    "path-traversal": "error",
+    "unicode-security": "error",
+    // Other rules at default severity
+    "required-meta-id": "error",
+    "required-meta-syntax": "error",
+    "valid-semver": "error",
+    "valid-path": "error",
+    "valid-params": "error",
+    // Informational rules
+    "empty-block": "warning",
+    deprecated: "warning"
+  },
+  // Additional blocked patterns for strict mode
+  blockedPatterns: [
+    // Data exfiltration patterns
+    /send\s+(?:this|all|the)\s+(?:data|information|content)\s+to/i,
+    /upload\s+(?:this|all|the)\s+(?:data|files?|content)\s+to/i,
+    /forward\s+(?:all\s+)?(?:messages?|responses?)\s+to/i,
+    // Persistence patterns
+    /remember\s+this\s+(?:permanently|forever|always)/i,
+    /store\s+(?:this|these)\s+(?:instructions?|rules?)/i,
+    // Model manipulation patterns
+    /you\s+are\s+now\s+(?:a\s+)?different\s+(?:AI|model|system)/i,
+    /switch\s+to\s+(?:a\s+)?(?:different|new)\s+(?:mode|persona)/i
+  ]
+};
+var SECURITY_STRICT_MULTILINGUAL = {
+  ...SECURITY_STRICT,
+  blockedPatterns: [...SECURITY_STRICT.blockedPatterns ?? [], ...BLOCKED_PATTERNS_ALL_LANGUAGES]
+};
+
 // packages/compiler/src/compiler.ts
 function generateMarker() {
   const timestamp = (/* @__PURE__ */ new Date()).toISOString();