@quantracode/vibecheck 0.0.1 → 0.0.2

package/dist/scanners/types.d.ts

@@ -1,456 +0,0 @@
-import type { Finding } from "@vibecheck/schema";
-import type { SourceFile, Node, FunctionDeclaration, ArrowFunction, FunctionExpression } from "ts-morph";
-/**
- * Repository metadata extracted from package.json and environment
- */
-export interface RepoMeta {
-    /** Dependencies from package.json */
-    dependencies: Record<string, string>;
-    /** Dev dependencies from package.json */
-    devDependencies: Record<string, string>;
-    /** Detected framework (next, express, etc.) */
-    framework: "next" | "express" | "fastify" | "koa" | "unknown";
-    /** Whether the project uses TypeScript */
-    hasTypeScript: boolean;
-    /** Whether next-auth is present */
-    hasNextAuth: boolean;
-    /** Whether prisma is present */
-    hasPrisma: boolean;
-}
-/**
- * File index for quick lookups
- */
-export interface FileIndex {
-    /** All .ts, .tsx, .js, .jsx files */
-    allSourceFiles: string[];
-    /** TypeScript/TSX files only */
-    tsTsxFiles: string[];
-    /** Config files (.env*, *.config.*, etc.) */
-    configFiles: string[];
-    /** Next.js App Router route files (route.ts/js) */
-    routeFiles: string[];
-    /** Next.js middleware file path if exists */
-    middlewareFile?: string;
-    /** API route files specifically */
-    apiRouteFiles: string[];
-}
-/**
- * Function node types that can be handlers
- */
-export type FunctionNode = FunctionDeclaration | ArrowFunction | FunctionExpression;
-/**
- * AST helpers for scanner use
- */
-export interface AstHelpers {
-    /** Parse a source file with ts-morph */
-    parseFile(filePath: string): SourceFile | null;
-    /** Find exported route handlers (GET, POST, etc.) in Next.js route file */
-    findRouteHandlers(sourceFile: SourceFile): RouteHandler[];
-    /** Check if a function contains auth checks */
-    containsAuthCheck(node: FunctionNode): boolean;
-    /** Find database sink calls (prisma, sql, etc.) */
-    findDbSinks(node: FunctionNode): DbSink[];
-    /** Find validation usage (zod, yup, joi) */
-    findValidationUsage(node: FunctionNode): ValidationUsage[];
-    /** Find console/logger calls with sensitive data */
-    findSensitiveLogCalls(node: FunctionNode): SensitiveLogCall[];
-    /** Find insecure default fallbacks for env vars */
-    findInsecureDefaults(sourceFile: SourceFile): InsecureDefault[];
-    /** Find SSRF-prone fetch calls */
-    findSsrfProneFetch(node: FunctionNode): SsrfProneFetch[];
-    /** Get the text/content of a node */
-    getNodeText(node: Node): string;
-    /** Get line number of a node */
-    getNodeLine(node: Node): number;
-    /** Find redirect calls with user-controlled input */
-    findRedirectCalls(node: FunctionNode): RedirectCall[];
-    /** Find CORS configuration in file */
-    findCorsConfig(sourceFile: SourceFile): CorsConfig[];
-    /** Find outbound HTTP calls (fetch/axios) */
-    findOutboundCalls(node: FunctionNode): OutboundCall[];
-    /** Find Prisma queries that may expose too much data */
-    findPrismaQueries(node: FunctionNode): PrismaQuery[];
-    /** Find Math.random usage in sensitive contexts */
-    findMathRandomUsage(sourceFile: SourceFile): MathRandomUsage[];
-    /** Find JWT decode without verify */
-    findJwtDecodeWithoutVerify(sourceFile: SourceFile): JwtDecodeCall[];
-    /** Find weak hash usage */
-    findWeakHashUsage(sourceFile: SourceFile): WeakHashUsage[];
-    /** Find file upload handlers */
-    findFileUploadHandlers(node: FunctionNode): FileUploadHandler[];
-    /** Find file writes to public directories */
-    findPublicFileWrites(sourceFile: SourceFile): PublicFileWrite[];
-    /** Check if file contains rate limiting signals */
-    hasRateLimitSignals(sourceFile: SourceFile): boolean;
-    /** Check if file contains validation schemas */
-    hasValidationSchemas(sourceFile: SourceFile): boolean;
-}
-/**
- * Route handler information
- */
-export interface RouteHandler {
-    method: "GET" | "POST" | "PUT" | "PATCH" | "DELETE" | "HEAD" | "OPTIONS";
-    functionNode: FunctionNode;
-    exportName: string;
-    startLine: number;
-    endLine: number;
-}
-/**
- * Database sink call information
- */
-export interface DbSink {
-    kind: "prisma" | "sql" | "knex" | "drizzle" | "export";
-    operation: string;
-    node: Node;
-    line: number;
-    snippet: string;
-    isCritical: boolean;
-}
-/**
- * Validation usage information
- */
-export interface ValidationUsage {
-    library: "zod" | "yup" | "joi";
-    method: string;
-    resultAssigned: boolean;
-    resultUsed: boolean;
-    rawBodyUsedAfter: boolean;
-    node: Node;
-    line: number;
-}
-/**
- * Sensitive log call information
- */
-export interface SensitiveLogCall {
-    logMethod: string;
-    sensitiveVars: string[];
-    severity: "high" | "medium";
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * Insecure default fallback information
- */
-export interface InsecureDefault {
-    envVar: string;
-    fallbackValue: string;
-    isCritical: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * SSRF-prone fetch call information
- */
-export interface SsrfProneFetch {
-    fetchMethod: string;
-    userInputSource: string;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * Redirect call information for open redirect detection
- */
-export interface RedirectCall {
-    method: string;
-    targetExpression: string;
-    isUserControlled: boolean;
-    userControlledSource?: string;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * CORS configuration information
- */
-export interface CorsConfig {
-    hasWildcardOrigin: boolean;
-    hasCredentials: boolean;
-    originValue?: string;
-    credentialsValue?: string;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * Outbound HTTP call information
- */
-export interface OutboundCall {
-    method: string;
-    urlExpression: string;
-    hasTimeout: boolean;
-    isExternalUrl: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * Prisma query information for over-broad response detection
- */
-export interface PrismaQuery {
-    model: string;
-    operation: string;
-    hasSelect: boolean;
-    hasInclude: boolean;
-    isDirectlyReturned: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * Math.random token usage
- */
-export interface MathRandomUsage {
-    variableName: string;
-    isSensitiveContext: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * JWT decode call without verify
- */
-export interface JwtDecodeCall {
-    hasVerifyInFile: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * Weak hash usage
- */
-export interface WeakHashUsage {
-    algorithm: string;
-    isPasswordContext: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * File upload handler information
- */
-export interface FileUploadHandler {
-    uploadMethod: string;
-    hasSizeCheck: boolean;
-    hasTypeCheck: boolean;
-    hasLimits: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * File write to public path
- */
-export interface PublicFileWrite {
-    writePath: string;
-    isPublicDir: boolean;
-    usesUserFilename: boolean;
-    node: Node;
-    line: number;
-    snippet: string;
-}
-/**
- * Parsed Prisma model information
- */
-export interface PrismaModelInfo {
-    name: string;
-    fields: string[];
-    hasSensitiveFields: boolean;
-}
-/**
- * Prisma schema parsed info
- */
-export interface PrismaSchemaInfo {
-    models: Map<string, PrismaModelInfo>;
-}
-/**
- * Framework detection hints
- */
-export interface FrameworkHints {
-    isNext: boolean;
-    isExpress: boolean;
-    hasPrisma: boolean;
-    hasNextAuth: boolean;
-    hasMulter: boolean;
-    hasFormidable: boolean;
-}
-/**
- * Progress callback for file processing
- */
-export type FileProgressCallback = (file: string, index: number, total: number) => void;
-/**
- * Context passed to each scanner
- */
-export interface ScanContext {
-    /** Absolute path to the target directory being scanned */
-    repoRoot: string;
-    /** Indexed files for quick lookup */
-    fileIndex: FileIndex;
-    /** Repository metadata */
-    repoMeta: RepoMeta;
-    /** AST helpers */
-    helpers: AstHelpers;
-    /** Framework detection hints */
-    frameworkHints: FrameworkHints;
-    /** Prisma schema information if available */
-    prismaSchemaInfo?: PrismaSchemaInfo;
-    /** Optional callback for file progress reporting */
-    onFileProgress?: FileProgressCallback;
-}
-/**
- * Scanner function signature
- */
-export type Scanner = (context: ScanContext) => Promise<Finding[]>;
-/**
- * Scanner pack exports
- */
-export interface ScannerPack {
-    /** Unique pack identifier */
-    id: string;
-    /** Human-readable name */
-    name: string;
-    /** Scanner functions in this pack */
-    scanners: Scanner[];
-}
-/**
- * Severity levels for comparison
- */
-export declare const SEVERITY_ORDER: {
-    readonly critical: 4;
-    readonly high: 3;
-    readonly medium: 2;
-    readonly low: 1;
-    readonly info: 0;
-};
-/**
- * Check if severity meets or exceeds threshold
- */
-export declare function severityMeetsThreshold(severity: keyof typeof SEVERITY_ORDER, threshold: keyof typeof SEVERITY_ORDER): boolean;
-/**
- * Route information for route map
- */
-export interface RouteInfo {
-    /** Stable unique identifier for the route */
-    routeId: string;
-    /** HTTP method */
-    method: "GET" | "POST" | "PUT" | "PATCH" | "DELETE" | "HEAD" | "OPTIONS";
-    /** URL path pattern */
-    path: string;
-    /** Source file path (relative) */
-    file: string;
-    /** Handler start line */
-    startLine: number;
-    /** Handler end line */
-    endLine: number;
-}
-/**
- * Middleware matcher information
- */
-export interface MiddlewareInfo {
-    /** Source file path (relative) */
-    file: string;
-    /** Matcher patterns */
-    matchers: string[];
-    /** Whether it protects API routes */
-    protectsApi: boolean;
-    /** Start line of config */
-    startLine: number;
-}
-/**
- * Claim types for intent mining (must match schema)
- */
-export type IntentClaimType = "AUTH_ENFORCED" | "INPUT_VALIDATED" | "CSRF_ENABLED" | "RATE_LIMITED" | "ENCRYPTED_AT_REST" | "MIDDLEWARE_PROTECTED" | "OTHER";
-/**
- * Claim sources (must match schema)
- */
-export type IntentClaimSource = "comment" | "identifier" | "import" | "doc" | "ui" | "config";
-/**
- * Claim scope (must match schema)
- */
-export type IntentClaimScope = "route" | "module" | "global";
-/**
- * Claim strength (must match schema)
- */
-export type IntentClaimStrength = "weak" | "medium" | "strong";
-/**
- * Intent claim mined from source code
- */
-export interface IntentClaim {
-    /** Stable unique identifier */
-    intentId: string;
-    /** Type of security claim */
-    type: IntentClaimType;
-    /** Scope of the claim */
-    scope: IntentClaimScope;
-    /** Target route ID if applicable */
-    targetRouteId?: string;
-    /** Source of the claim */
-    source: IntentClaimSource;
-    /** Location in source */
-    location: {
-        file: string;
-        startLine: number;
-        endLine: number;
-    };
-    /** Strength of the claim */
-    strength: IntentClaimStrength;
-    /** Text evidence of the claim */
-    textEvidence: string;
-}
-/**
- * Proof trace step
- */
-export interface ProofTraceStep {
-    /** File containing this step */
-    file: string;
-    /** Line number */
-    line: number;
-    /** Code snippet */
-    snippet: string;
-    /** Step label/description */
-    label: string;
-}
-/**
- * Proof trace result
- */
-export interface ProofTrace {
-    /** Route ID being traced */
-    routeId: string;
-    /** Whether auth was proven */
-    authProven: boolean;
-    /** Whether validation was proven */
-    validationProven: boolean;
-    /** Middleware coverage status */
-    middlewareCovered: boolean;
-    /** Trace steps showing the proof chain */
-    steps: ProofTraceStep[];
-}
-/**
- * Coverage metrics for the scanned codebase
- */
-export interface CoverageMetrics {
-    /** Auth coverage: routes with auth / total state-changing routes */
-    authCoverage: number;
-    /** Validation coverage: routes with validation / total routes with body */
-    validationCoverage: number;
-    /** Middleware coverage: routes covered by middleware / total routes */
-    middlewareCoverage: number;
-}
-/**
- * Phase 3 extended scan context
- */
-export interface Phase3Context extends ScanContext {
-    /** Route map */
-    routeMap: RouteInfo[];
-    /** Middleware map */
-    middlewareMap: MiddlewareInfo[];
-    /** Intent claims mined from source */
-    intentMap: IntentClaim[];
-    /** Proof traces for routes */
-    proofTraces: Map<string, ProofTrace>;
-    /** Coverage metrics */
-    coverage: CoverageMetrics;
-}
-//# sourceMappingURL=types.d.ts.map

package/dist/scanners/types.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/scanners/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,KAAK,EAAE,UAAU,EAAE,IAAI,EAAE,mBAAmB,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAEzG;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,qCAAqC;IACrC,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACrC,yCAAyC;IACzC,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACxC,+CAA+C;IAC/C,SAAS,EAAE,MAAM,GAAG,SAAS,GAAG,SAAS,GAAG,KAAK,GAAG,SAAS,CAAC;IAC9D,0CAA0C;IAC1C,aAAa,EAAE,OAAO,CAAC;IACvB,mCAAmC;IACnC,WAAW,EAAE,OAAO,CAAC;IACrB,gCAAgC;IAChC,SAAS,EAAE,OAAO,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,qCAAqC;IACrC,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,gCAAgC;IAChC,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,6CAA6C;IAC7C,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,mDAAmD;IACnD,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,6CAA6C;IAC7C,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mCAAmC;IACnC,aAAa,EAAE,MAAM,EAAE,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,MAAM,YAAY,GAAG,mBAAmB,GAAG,aAAa,GAAG,kBAAkB,CAAC;AAEpF;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,wCAAwC;IACxC,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,UAAU,GAAG,IAAI,CAAC;IAE/C,2EAA2E;IAC3E,iBAAiB,CAAC,UAAU,EAAE,UAAU,GAAG,YAAY,EAAE,CAAC;IAE1D,+CAA+C;IAC/C,iBAAiB,CAAC,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC;IAE/C,mDAAmD;IACnD,WAAW,CAAC,IAAI,EAAE,YAAY,GAAG,MAAM,EAAE,CAAC;IAE1C,4CAA4C;IAC5C,mBAAmB,CAAC,IAAI,EAAE,YAAY,GAAG,eAAe,EAAE,CAAC;IAE3D,oDAAoD;IACpD,qBAAqB,CAAC,IAAI,EAAE,YAAY,GAAG,gBAAgB,EAAE,CAAC;IAE9D,mDAAmD;IACnD,oBAAoB,CAAC,UAAU,EAAE,UAAU,GAAG,eAAe,EAAE,CAAC;IAEhE,kCAAkC;IAClC,kBAAkB,CAAC,IAAI,EAAE,YAAY,GAAG,cAAc,EAAE,CAAC;IAEzD,qCAAqC;IACrC,WAAW,CAAC,IAAI,EAAE,IAAI,GAAG,MAAM,CAAC;IAEhC,gCAAgC;IAChC,WAAW,CAAC,IAAI,EAAE,IAAI,GAAG,MAAM,CAAC;IAIhC,qDAAqD;IACrD,iBAAiB,CAAC,IAAI,EAAE,YAAY,GAAG,YAAY,EAAE,CAAC;IAEtD,sCAAsC;IACtC,cAAc,CAAC,UAAU,EAAE,UAAU,GAAG,UAAU,EAAE,CAAC;IAErD,6CAA6C;IAC7C,iBAAiB,CAAC,IAAI,EAAE,YAAY,GAAG,YAAY,EAAE,CAAC;IAEtD,wDAAwD;IACxD,iBAAiB,CAAC,IAAI,EAAE,YAAY,GAAG,WAAW,EAAE,CAAC;IAErD,mDAAmD;IACnD,mBAAmB,CAAC,UAAU,EAAE,UAAU,GAAG,eAAe,EAAE,CAAC;IAE/D,qCAAqC;IACrC,0BAA0B,CAAC,UAAU,EAAE,UAAU,GAAG,aAAa,EAAE,CAAC;IAEpE,2BAA2B;IAC3B,iBAAiB,CAAC,UAAU,EAAE,UAAU,GAAG,aAAa,EAAE,CAAC;IAE3D,gCAAgC;IAChC,sBAAsB,CAAC,IAAI,EAAE,YAAY,GAAG,iBAAiB,EAAE,CAAC;IAEhE,6CAA6C;IAC7C,oBAAoB,CAAC,UAAU,EAAE,UAAU,GAAG,eAAe,EAAE,CAAC;IAEhE,mDAAmD;IACnD,mBAAmB,CAAC,UAAU,EAAE,UAAU,GAAG,OAAO,CAAC;IAErD,gDAAgD;IAChD,oBAAoB,CAAC,UAAU,EAAE,UAAU,GAAG,OAAO,CAAC;CACvD;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,CAAC;IACzE,YAAY,EAAE,YAAY,CAAC;IAC3B,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,GAAG,SAAS,GAAG,QAAQ,CAAC;IACvD,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,OAAO,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,KAAK,GAAG,KAAK,GAAG,KAAK,CAAC;IAC/B,MAAM,EAAE,MAAM,CAAC;IACf,cAAc,EAAE,OAAO,CAAC;IACxB,UAAU,EAAE,OAAO,CAAC;IACpB,gBAAgB,EAAE,OAAO,CAAC;IAC1B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;CACd;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,QAAQ,EAAE,MAAM,GAAG,QAAQ,CAAC;IAC5B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,OAAO,CAAC;IACpB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,MAAM,EAAE,MAAM,CAAC;IACf,gBAAgB,EAAE,MAAM,CAAC;IACzB,gBAAgB,EAAE,OAAO,CAAC;IAC1B,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,iBAAiB,EAAE,OAAO,CAAC;IAC3B,cAAc,EAAE,OAAO,CAAC;IACxB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,OAAO,CAAC;IACpB,aAAa,EAAE,OAAO,CAAC;IACvB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,OAAO,CAAC;IACnB,UAAU,EAAE,OAAO,CAAC;IACpB,kBAAkB,EAAE,OAAO,CAAC;IAC5B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,kBAAkB,EAAE,OAAO,CAAC;IAC5B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,eAAe,EAAE,OAAO,CAAC;IACzB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,SAAS,EAAE,MAAM,CAAC;IAClB,iBAAiB,EAAE,OAAO,CAAC;IAC3B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,OAAO,CAAC;IACtB,YAAY,EAAE,OAAO,CAAC;IACtB,SAAS,EAAE,OAAO,CAAC;IACnB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,OAAO,CAAC;IACrB,gBAAgB,EAAE,OAAO,CAAC;IAC1B,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,kBAAkB,EAAE,OAAO,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;CACtC;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,OAAO,CAAC;IAChB,SAAS,EAAE,OAAO,CAAC;IACnB,SAAS,EAAE,OAAO,CAAC;IACnB,WAAW,EAAE,OAAO,CAAC;IACrB,SAAS,EAAE,OAAO,CAAC;IACnB,aAAa,EAAE,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;AAExF;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,0DAA0D;IAC1D,QAAQ,EAAE,MAAM,CAAC;IACjB,qCAAqC;IACrC,SAAS,EAAE,SAAS,CAAC;IACrB,0BAA0B;IAC1B,QAAQ,EAAE,QAAQ,CAAC;IACnB,kBAAkB;IAClB,OAAO,EAAE,UAAU,CAAC;IACpB,gCAAgC;IAChC,cAAc,EAAE,cAAc,CAAC;IAC/B,6CAA6C;IAC7C,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,oDAAoD;IACpD,cAAc,CAAC,EAAE,oBAAoB,CAAC;CACvC;AAED;;GAEG;AACH,MAAM,MAAM,OAAO,GAAG,CAAC,OAAO,EAAE,WAAW,KAAK,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;AAEnE;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,6BAA6B;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,0BAA0B;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,qCAAqC;IACrC,QAAQ,EAAE,OAAO,EAAE,CAAC;CACrB;AAED;;GAEG;AACH,eAAO,MAAM,cAAc;;;;;;CAMjB,CAAC;AAEX;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,QAAQ,EAAE,MAAM,OAAO,cAAc,EACrC,SAAS,EAAE,MAAM,OAAO,cAAc,GACrC,OAAO,CAET;AAMD;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,6CAA6C;IAC7C,OAAO,EAAE,MAAM,CAAC;IAChB,kBAAkB;IAClB,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,CAAC;IACzE,uBAAuB;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,kCAAkC;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,uBAAuB;IACvB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,kCAAkC;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,qCAAqC;IACrC,WAAW,EAAE,OAAO,CAAC;IACrB,2BAA2B;IAC3B,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,MAAM,eAAe,GACvB,eAAe,GACf,iBAAiB,GACjB,cAAc,GACd,cAAc,GACd,mBAAmB,GACnB,sBAAsB,GACtB,OAAO,CAAC;AAEZ;;GAEG;AACH,MAAM,MAAM,iBAAiB,GACzB,SAAS,GACT,YAAY,GACZ,QAAQ,GACR,KAAK,GACL,IAAI,GACJ,QAAQ,CAAC;AAEb;;GAEG;AACH,MAAM,MAAM,gBAAgB,GAAG,OAAO,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAE7D;;GAEG;AACH,MAAM,MAAM,mBAAmB,GAAG,MAAM,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAE/D;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,+BAA+B;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,6BAA6B;IAC7B,IAAI,EAAE,eAAe,CAAC;IACtB,yBAAyB;IACzB,KAAK,EAAE,gBAAgB,CAAC;IACxB,oCAAoC;IACpC,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,0BAA0B;IAC1B,MAAM,EAAE,iBAAiB,CAAC;IAC1B,yBAAyB;IACzB,QAAQ,EAAE;QACR,IAAI,EAAE,MAAM,CAAC;QACb,SAAS,EAAE,MAAM,CAAC;QAClB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,4BAA4B;IAC5B,QAAQ,EAAE,mBAAmB,CAAC;IAC9B,iCAAiC;IACjC,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,gCAAgC;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,kBAAkB;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,mBAAmB;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,6BAA6B;IAC7B,KAAK,EAAE,MAAM,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,4BAA4B;IAC5B,OAAO,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,UAAU,EAAE,OAAO,CAAC;IACpB,oCAAoC;IACpC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,iCAAiC;IACjC,iBAAiB,EAAE,OAAO,CAAC;IAC3B,0CAA0C;IAC1C,KAAK,EAAE,cAAc,EAAE,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,oEAAoE;IACpE,YAAY,EAAE,MAAM,CAAC;IACrB,2EAA2E;IAC3E,kBAAkB,EAAE,MAAM,CAAC;IAC3B,uEAAuE;IACvE,kBAAkB,EAAE,MAAM,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,aAAc,SAAQ,WAAW;IAChD,gBAAgB;IAChB,QAAQ,EAAE,SAAS,EAAE,CAAC;IACtB,qBAAqB;IACrB,aAAa,EAAE,cAAc,EAAE,CAAC;IAChC,sCAAsC;IACtC,SAAS,EAAE,WAAW,EAAE,CAAC;IACzB,8BAA8B;IAC9B,WAAW,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACrC,uBAAuB;IACvB,QAAQ,EAAE,eAAe,CAAC;CAC3B"}

package/dist/scanners/types.js

@@ -1,16 +0,0 @@
-/**
- * Severity levels for comparison
- */
-export const SEVERITY_ORDER = {
-    critical: 4,
-    high: 3,
-    medium: 2,
-    low: 1,
-    info: 0,
-};
-/**
- * Check if severity meets or exceeds threshold
- */
-export function severityMeetsThreshold(severity, threshold) {
-    return SEVERITY_ORDER[severity] >= SEVERITY_ORDER[threshold];
-}

package/dist/scanners/unused-security-imports.d.ts

@@ -1,34 +0,0 @@
-import type { Finding } from "@vibecheck/schema";
-import type { ScanContext } from "./types.js";
-interface ImportMatch {
-    library: string;
-    importedNames: string[];
-    line: number;
-    snippet: string;
-    isDefaultImport: boolean;
-    isNamespaceImport: boolean;
-}
-/**
- * Find imports of security libraries in a file
- *
- * Limitations:
- * - Uses regex, may match imports in comments
- * - Does not handle dynamic imports: import('zod')
- * - Does not track re-exports
- */
-export declare function findSecurityImports(content: string, libraries: string[]): ImportMatch[];
-/**
- * Check if any imported identifiers are used after the import line
- */
-export declare function checkIdentifierUsage(content: string, importLine: number, identifiers: string[], isNamespaceImport: boolean): {
-    identifier: string;
-    used: boolean;
-}[];
-/**
- * Unused Security Imports Scanner
- *
- * Detects when security libraries are imported but not used
- */
-export declare function scanUnusedSecurityImports(context: ScanContext): Promise<Finding[]>;
-export {};
-//# sourceMappingURL=unused-security-imports.d.ts.map

package/dist/scanners/unused-security-imports.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"unused-security-imports.d.ts","sourceRoot":"","sources":["../../src/scanners/unused-security-imports.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAoC,MAAM,mBAAmB,CAAC;AAGnF,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAqD9C,UAAU,WAAW;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,eAAe,EAAE,OAAO,CAAC;IACzB,iBAAiB,EAAE,OAAO,CAAC;CAC5B;AAED;;;;;;;GAOG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,WAAW,EAAE,CAsEvF;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAClC,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,EAClB,WAAW,EAAE,MAAM,EAAE,EACrB,iBAAiB,EAAE,OAAO,GACzB;IAAE,UAAU,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,OAAO,CAAA;CAAE,EAAE,CAmBzC;AAED;;;;GAIG;AACH,wBAAsB,yBAAyB,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC,CAgFxF"}