npm - @quantracode/vibecheck - Versions diffs - 0.0.1 → 0.0.2 - Mend

@quantracode/vibecheck 0.0.1 → 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (208) hide show

package/README.md +6 -6
package/dist/index.d.ts +0 -2
package/dist/index.js +7902 -8
package/package.json +13 -7
package/dist/__tests__/cli.test.d.ts +0 -2
package/dist/__tests__/cli.test.d.ts.map +0 -1
package/dist/__tests__/cli.test.js +0 -243
package/dist/__tests__/fixtures/safe-app/app/api/users/route.js +0 -36
package/dist/__tests__/fixtures/vulnerable-app/app/api/users/route.js +0 -28
package/dist/__tests__/fixtures/vulnerable-app/lib/config.d.ts +0 -4
package/dist/__tests__/fixtures/vulnerable-app/lib/config.d.ts.map +0 -1
package/dist/__tests__/fixtures/vulnerable-app/lib/config.js +0 -6
package/dist/__tests__/scanners/env-config.test.d.ts +0 -2
package/dist/__tests__/scanners/env-config.test.d.ts.map +0 -1
package/dist/__tests__/scanners/env-config.test.js +0 -142
package/dist/__tests__/scanners/nextjs-middleware.test.d.ts +0 -2
package/dist/__tests__/scanners/nextjs-middleware.test.d.ts.map +0 -1
package/dist/__tests__/scanners/nextjs-middleware.test.js +0 -193
package/dist/__tests__/scanners/scanner-packs.test.d.ts +0 -2
package/dist/__tests__/scanners/scanner-packs.test.d.ts.map +0 -1
package/dist/__tests__/scanners/scanner-packs.test.js +0 -126
package/dist/__tests__/scanners/unused-security-imports.test.d.ts +0 -2
package/dist/__tests__/scanners/unused-security-imports.test.d.ts.map +0 -1
package/dist/__tests__/scanners/unused-security-imports.test.js +0 -145
package/dist/commands/demo-artifact.d.ts +0 -7
package/dist/commands/demo-artifact.d.ts.map +0 -1
package/dist/commands/demo-artifact.js +0 -322
package/dist/commands/evaluate.d.ts +0 -30
package/dist/commands/evaluate.d.ts.map +0 -1
package/dist/commands/evaluate.js +0 -258
package/dist/commands/explain.d.ts +0 -12
package/dist/commands/explain.d.ts.map +0 -1
package/dist/commands/explain.js +0 -214
package/dist/commands/index.d.ts +0 -7
package/dist/commands/index.d.ts.map +0 -1
package/dist/commands/index.js +0 -6
package/dist/commands/intent.d.ts +0 -21
package/dist/commands/intent.d.ts.map +0 -1
package/dist/commands/intent.js +0 -192
package/dist/commands/scan.d.ts +0 -44
package/dist/commands/scan.d.ts.map +0 -1
package/dist/commands/scan.js +0 -497
package/dist/commands/waivers.d.ts +0 -30
package/dist/commands/waivers.d.ts.map +0 -1
package/dist/commands/waivers.js +0 -249
package/dist/index.d.ts.map +0 -1
package/dist/phase3/index.d.ts +0 -11
package/dist/phase3/index.d.ts.map +0 -1
package/dist/phase3/index.js +0 -12
package/dist/phase3/intent-miner.d.ts +0 -32
package/dist/phase3/intent-miner.d.ts.map +0 -1
package/dist/phase3/intent-miner.js +0 -323
package/dist/phase3/proof-trace-builder.d.ts +0 -42
package/dist/phase3/proof-trace-builder.d.ts.map +0 -1
package/dist/phase3/proof-trace-builder.js +0 -441
package/dist/phase3/scanners/auth-by-ui-server-gap.d.ts +0 -15
package/dist/phase3/scanners/auth-by-ui-server-gap.d.ts.map +0 -1
package/dist/phase3/scanners/auth-by-ui-server-gap.js +0 -237
package/dist/phase3/scanners/comment-claim-unproven.d.ts +0 -14
package/dist/phase3/scanners/comment-claim-unproven.d.ts.map +0 -1
package/dist/phase3/scanners/comment-claim-unproven.js +0 -161
package/dist/phase3/scanners/index.d.ts +0 -31
package/dist/phase3/scanners/index.d.ts.map +0 -1
package/dist/phase3/scanners/index.js +0 -40
package/dist/phase3/scanners/middleware-assumed-not-matching.d.ts +0 -14
package/dist/phase3/scanners/middleware-assumed-not-matching.d.ts.map +0 -1
package/dist/phase3/scanners/middleware-assumed-not-matching.js +0 -172
package/dist/phase3/scanners/validation-claimed-missing.d.ts +0 -15
package/dist/phase3/scanners/validation-claimed-missing.d.ts.map +0 -1
package/dist/phase3/scanners/validation-claimed-missing.js +0 -204
package/dist/scanners/abuse/compute-abuse.d.ts +0 -20
package/dist/scanners/abuse/compute-abuse.d.ts.map +0 -1
package/dist/scanners/abuse/compute-abuse.js +0 -509
package/dist/scanners/abuse/index.d.ts +0 -12
package/dist/scanners/abuse/index.d.ts.map +0 -1
package/dist/scanners/abuse/index.js +0 -15
package/dist/scanners/auth/index.d.ts +0 -5
package/dist/scanners/auth/index.d.ts.map +0 -1
package/dist/scanners/auth/index.js +0 -10
package/dist/scanners/auth/middleware-gap.d.ts +0 -22
package/dist/scanners/auth/middleware-gap.d.ts.map +0 -1
package/dist/scanners/auth/middleware-gap.js +0 -203
package/dist/scanners/auth/unprotected-api-route.d.ts +0 -12
package/dist/scanners/auth/unprotected-api-route.d.ts.map +0 -1
package/dist/scanners/auth/unprotected-api-route.js +0 -126
package/dist/scanners/config/index.d.ts +0 -5
package/dist/scanners/config/index.d.ts.map +0 -1
package/dist/scanners/config/index.js +0 -10
package/dist/scanners/config/insecure-defaults.d.ts +0 -12
package/dist/scanners/config/insecure-defaults.d.ts.map +0 -1
package/dist/scanners/config/insecure-defaults.js +0 -77
package/dist/scanners/config/undocumented-env.d.ts +0 -24
package/dist/scanners/config/undocumented-env.d.ts.map +0 -1
package/dist/scanners/config/undocumented-env.js +0 -159
package/dist/scanners/crypto/index.d.ts +0 -6
package/dist/scanners/crypto/index.d.ts.map +0 -1
package/dist/scanners/crypto/index.js +0 -11
package/dist/scanners/crypto/jwt-decode-unverified.d.ts +0 -14
package/dist/scanners/crypto/jwt-decode-unverified.d.ts.map +0 -1
package/dist/scanners/crypto/jwt-decode-unverified.js +0 -87
package/dist/scanners/crypto/math-random-tokens.d.ts +0 -13
package/dist/scanners/crypto/math-random-tokens.d.ts.map +0 -1
package/dist/scanners/crypto/math-random-tokens.js +0 -80
package/dist/scanners/crypto/weak-hashing.d.ts +0 -11
package/dist/scanners/crypto/weak-hashing.d.ts.map +0 -1
package/dist/scanners/crypto/weak-hashing.js +0 -95
package/dist/scanners/env-config.d.ts +0 -24
package/dist/scanners/env-config.d.ts.map +0 -1
package/dist/scanners/env-config.js +0 -164
package/dist/scanners/hallucinations/index.d.ts +0 -4
package/dist/scanners/hallucinations/index.d.ts.map +0 -1
package/dist/scanners/hallucinations/index.js +0 -8
package/dist/scanners/hallucinations/unused-security-imports.d.ts +0 -36
package/dist/scanners/hallucinations/unused-security-imports.d.ts.map +0 -1
package/dist/scanners/hallucinations/unused-security-imports.js +0 -309
package/dist/scanners/helpers/ast-helpers.d.ts +0 -6
package/dist/scanners/helpers/ast-helpers.d.ts.map +0 -1
package/dist/scanners/helpers/ast-helpers.js +0 -945
package/dist/scanners/helpers/context-builder.d.ts +0 -17
package/dist/scanners/helpers/context-builder.d.ts.map +0 -1
package/dist/scanners/helpers/context-builder.js +0 -148
package/dist/scanners/helpers/index.d.ts +0 -3
package/dist/scanners/helpers/index.d.ts.map +0 -1
package/dist/scanners/helpers/index.js +0 -2
package/dist/scanners/index.d.ts +0 -30
package/dist/scanners/index.d.ts.map +0 -1
package/dist/scanners/index.js +0 -102
package/dist/scanners/middleware/index.d.ts +0 -4
package/dist/scanners/middleware/index.d.ts.map +0 -1
package/dist/scanners/middleware/index.js +0 -7
package/dist/scanners/middleware/missing-rate-limit.d.ts +0 -13
package/dist/scanners/middleware/missing-rate-limit.d.ts.map +0 -1
package/dist/scanners/middleware/missing-rate-limit.js +0 -140
package/dist/scanners/network/cors-misconfiguration.d.ts +0 -14
package/dist/scanners/network/cors-misconfiguration.d.ts.map +0 -1
package/dist/scanners/network/cors-misconfiguration.js +0 -89
package/dist/scanners/network/index.d.ts +0 -7
package/dist/scanners/network/index.d.ts.map +0 -1
package/dist/scanners/network/index.js +0 -18
package/dist/scanners/network/missing-timeout.d.ts +0 -15
package/dist/scanners/network/missing-timeout.d.ts.map +0 -1
package/dist/scanners/network/missing-timeout.js +0 -93
package/dist/scanners/network/open-redirect.d.ts +0 -15
package/dist/scanners/network/open-redirect.d.ts.map +0 -1
package/dist/scanners/network/open-redirect.js +0 -88
package/dist/scanners/network/ssrf-prone-fetch.d.ts +0 -12
package/dist/scanners/network/ssrf-prone-fetch.d.ts.map +0 -1
package/dist/scanners/network/ssrf-prone-fetch.js +0 -90
package/dist/scanners/nextjs-middleware.d.ts +0 -26
package/dist/scanners/nextjs-middleware.d.ts.map +0 -1
package/dist/scanners/nextjs-middleware.js +0 -246
package/dist/scanners/privacy/debug-flags.d.ts +0 -13
package/dist/scanners/privacy/debug-flags.d.ts.map +0 -1
package/dist/scanners/privacy/debug-flags.js +0 -124
package/dist/scanners/privacy/index.d.ts +0 -6
package/dist/scanners/privacy/index.d.ts.map +0 -1
package/dist/scanners/privacy/index.js +0 -11
package/dist/scanners/privacy/over-broad-response.d.ts +0 -15
package/dist/scanners/privacy/over-broad-response.d.ts.map +0 -1
package/dist/scanners/privacy/over-broad-response.js +0 -109
package/dist/scanners/privacy/sensitive-logging.d.ts +0 -11
package/dist/scanners/privacy/sensitive-logging.d.ts.map +0 -1
package/dist/scanners/privacy/sensitive-logging.js +0 -78
package/dist/scanners/types.d.ts +0 -456
package/dist/scanners/types.d.ts.map +0 -1
package/dist/scanners/types.js +0 -16
package/dist/scanners/unused-security-imports.d.ts +0 -34
package/dist/scanners/unused-security-imports.d.ts.map +0 -1
package/dist/scanners/unused-security-imports.js +0 -206
package/dist/scanners/uploads/index.d.ts +0 -5
package/dist/scanners/uploads/index.d.ts.map +0 -1
package/dist/scanners/uploads/index.js +0 -9
package/dist/scanners/uploads/missing-constraints.d.ts +0 -15
package/dist/scanners/uploads/missing-constraints.d.ts.map +0 -1
package/dist/scanners/uploads/missing-constraints.js +0 -109
package/dist/scanners/uploads/public-path.d.ts +0 -11
package/dist/scanners/uploads/public-path.d.ts.map +0 -1
package/dist/scanners/uploads/public-path.js +0 -87
package/dist/scanners/validation/client-side-only.d.ts +0 -14
package/dist/scanners/validation/client-side-only.d.ts.map +0 -1
package/dist/scanners/validation/client-side-only.js +0 -140
package/dist/scanners/validation/ignored-validation.d.ts +0 -12
package/dist/scanners/validation/ignored-validation.d.ts.map +0 -1
package/dist/scanners/validation/ignored-validation.js +0 -119
package/dist/scanners/validation/index.d.ts +0 -5
package/dist/scanners/validation/index.d.ts.map +0 -1
package/dist/scanners/validation/index.js +0 -9
package/dist/utils/exclude-patterns.d.ts +0 -35
package/dist/utils/exclude-patterns.d.ts.map +0 -1
package/dist/utils/exclude-patterns.js +0 -78
package/dist/utils/file-utils.d.ts +0 -37
package/dist/utils/file-utils.d.ts.map +0 -1
package/dist/utils/file-utils.js +0 -77
package/dist/utils/fingerprint.d.ts +0 -25
package/dist/utils/fingerprint.d.ts.map +0 -1
package/dist/utils/fingerprint.js +0 -28
package/dist/utils/git-info.d.ts +0 -14
package/dist/utils/git-info.d.ts.map +0 -1
package/dist/utils/git-info.js +0 -55
package/dist/utils/index.d.ts +0 -4
package/dist/utils/index.d.ts.map +0 -1
package/dist/utils/index.js +0 -3
package/dist/utils/progress.d.ts +0 -42
package/dist/utils/progress.d.ts.map +0 -1
package/dist/utils/progress.js +0 -165
package/dist/utils/sarif-formatter.d.ts +0 -92
package/dist/utils/sarif-formatter.d.ts.map +0 -1
package/dist/utils/sarif-formatter.js +0 -172

package/dist/scanners/validation/ignored-validation.js DELETED Viewed

@@ -1,119 +0,0 @@
-import { resolvePath } from "../../utils/file-utils.js";
-import { generateFingerprint, generateFindingId } from "../../utils/fingerprint.js";
-const RULE_ID = "VC-VAL-001";
-/**
- * VC-VAL-001: Validation defined but output ignored
- *
- * Detects when zod/yup/joi validation is performed but:
- * - The validated result is not assigned to a variable
- * - The validated result is assigned but never referenced
- * - Raw request body is used after validation
- */
-export async function scanIgnoredValidation(context) {
-    const { repoRoot, fileIndex, helpers } = context;
-    const findings = [];
-    // Scan API route files for validation issues
-    for (const relPath of fileIndex.apiRouteFiles) {
-        const absPath = resolvePath(repoRoot, relPath);
-        const sourceFile = helpers.parseFile(absPath);
-        if (!sourceFile)
-            continue;
-        const handlers = helpers.findRouteHandlers(sourceFile);
-        for (const handler of handlers) {
-            const validationUsages = helpers.findValidationUsage(handler.functionNode);
-            for (const usage of validationUsages) {
-                // Case 1: Validation called but result not assigned
-                if (!usage.resultAssigned) {
-                    const evidence = [
-                        {
-                            file: relPath,
-                            startLine: usage.line,
-                            endLine: usage.line,
-                            snippet: helpers.getNodeText(usage.node).slice(0, 150),
-                            label: `${usage.library}.${usage.method}() called but result not assigned`,
-                        },
-                    ];
-                    const fingerprint = generateFingerprint({
-                        ruleId: RULE_ID,
-                        file: relPath,
-                        symbol: `${usage.library}.${usage.method}`,
-                        startLine: usage.line,
-                    });
-                    findings.push({
-                        id: generateFindingId({
-                            ruleId: RULE_ID,
-                            file: relPath,
-                            symbol: `${usage.library}.${usage.method}`,
-                            startLine: usage.line,
-                        }),
-                        ruleId: RULE_ID,
-                        title: `Validation result ignored: ${usage.library}.${usage.method}()`,
-                        description: `The ${usage.library} validation method ${usage.method}() is called but its result is not assigned to a variable. This means validation errors are silently ignored and unvalidated data may be used.`,
-                        severity: "high",
-                        confidence: 0.92,
-                        category: "validation",
-                        evidence,
-                        remediation: {
-                            recommendedFix: `Assign the validation result to a variable and use the validated data instead of the raw input.`,
-                            patch: usage.library === "zod"
-                                ? `// Instead of:
-schema.parse(data);
-// Do:
-const validatedData = schema.parse(data);
-// Use validatedData for all subsequent operations`
-                                : `// Assign and use the validated result
-const validatedData = await schema.validate(data);`,
-                        },
-                        links: {
-                            cwe: "https://cwe.mitre.org/data/definitions/20.html",
-                        },
-                        fingerprint,
-                    });
-                    continue;
-                }
-                // Case 2: Result assigned but raw body used after
-                if (usage.resultAssigned && usage.rawBodyUsedAfter && !usage.resultUsed) {
-                    const evidence = [
-                        {
-                            file: relPath,
-                            startLine: usage.line,
-                            endLine: usage.line,
-                            snippet: helpers.getNodeText(usage.node).slice(0, 150),
-                            label: `Validated data assigned but raw body used instead`,
-                        },
-                    ];
-                    const fingerprint = generateFingerprint({
-                        ruleId: RULE_ID,
-                        file: relPath,
-                        symbol: `${usage.library}.${usage.method}-unused`,
-                        startLine: usage.line,
-                    });
-                    findings.push({
-                        id: generateFindingId({
-                            ruleId: RULE_ID,
-                            file: relPath,
-                            symbol: `${usage.library}.${usage.method}-unused`,
-                            startLine: usage.line,
-                        }),
-                        ruleId: RULE_ID,
-                        title: `Validated data unused, raw body accessed instead`,
-                        description: `The ${usage.library} validation is performed and the result is assigned, but the code continues to use the raw request body instead of the validated data. This defeats the purpose of validation.`,
-                        severity: "high",
-                        confidence: 0.85,
-                        category: "validation",
-                        evidence,
-                        remediation: {
-                            recommendedFix: `Use the validated data variable instead of accessing the raw request body after validation.`,
-                        },
-                        links: {
-                            cwe: "https://cwe.mitre.org/data/definitions/20.html",
-                        },
-                        fingerprint,
-                    });
-                }
-            }
-        }
-    }
-    return findings;
-}

package/dist/scanners/validation/index.d.ts DELETED Viewed

@@ -1,5 +0,0 @@
-import type { ScannerPack } from "../types.js";
-export declare const validationPack: ScannerPack;
-export { scanIgnoredValidation } from "./ignored-validation.js";
-export { scanClientSideOnlyValidation } from "./client-side-only.js";
-//# sourceMappingURL=index.d.ts.map

package/dist/scanners/validation/index.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/scanners/validation/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAI/C,eAAO,MAAM,cAAc,EAAE,WAI5B,CAAC;AAEF,OAAO,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAChE,OAAO,EAAE,4BAA4B,EAAE,MAAM,uBAAuB,CAAC"}

package/dist/scanners/validation/index.js DELETED Viewed

@@ -1,9 +0,0 @@
-import { scanIgnoredValidation } from "./ignored-validation.js";
-import { scanClientSideOnlyValidation } from "./client-side-only.js";
-export const validationPack = {
-    id: "validation",
-    name: "Input Validation",
-    scanners: [scanIgnoredValidation, scanClientSideOnlyValidation],
-};
-export { scanIgnoredValidation } from "./ignored-validation.js";
-export { scanClientSideOnlyValidation } from "./client-side-only.js";

package/dist/utils/exclude-patterns.d.ts DELETED Viewed

@@ -1,35 +0,0 @@
-/**
- * Default exclude patterns for file scanning
- *
- * These patterns are applied by default to exclude common
- * non-source directories and test files.
- */
-/**
- * Core excludes that are always applied (build artifacts, dependencies, etc.)
- */
-export declare const CORE_EXCLUDES: string[];
-/**
- * Test-related excludes (can be disabled with --include-tests)
- */
-export declare const TEST_EXCLUDES: string[];
-/**
- * Get default exclude patterns based on options
- */
-export declare function getDefaultExcludes(options?: {
-    includeTests?: boolean;
-}): string[];
-/**
- * Merge custom excludes with defaults
- */
-export declare function mergeExcludes(customExcludes: string[], options?: {
-    includeTests?: boolean;
-}): string[];
-/**
- * Normalize glob pattern for cross-platform compatibility
- */
-export declare function normalizeGlobPattern(pattern: string): string;
-/**
- * Normalize a list of patterns
- */
-export declare function normalizePatterns(patterns: string[]): string[];
-//# sourceMappingURL=exclude-patterns.d.ts.map

package/dist/utils/exclude-patterns.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"exclude-patterns.d.ts","sourceRoot":"","sources":["../../src/utils/exclude-patterns.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,eAAO,MAAM,aAAa,EAAE,MAAM,EAYjC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,aAAa,EAAE,MAAM,EAqBjC,CAAC;AAEF;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,GAAE;IAAE,YAAY,CAAC,EAAE,OAAO,CAAA;CAAO,GAAG,MAAM,EAAE,CAQrF;AAED;;GAEG;AACH,wBAAgB,aAAa,CAC3B,cAAc,EAAE,MAAM,EAAE,EACxB,OAAO,GAAE;IAAE,YAAY,CAAC,EAAE,OAAO,CAAA;CAAO,GACvC,MAAM,EAAE,CAIV;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAG5D;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE,CAE9D"}

package/dist/utils/exclude-patterns.js DELETED Viewed

@@ -1,78 +0,0 @@
-/**
- * Default exclude patterns for file scanning
- *
- * These patterns are applied by default to exclude common
- * non-source directories and test files.
- */
-/**
- * Core excludes that are always applied (build artifacts, dependencies, etc.)
- */
-export const CORE_EXCLUDES = [
-    "**/node_modules/**",
-    "**/dist/**",
-    "**/.git/**",
-    "**/build/**",
-    "**/.next/**",
-    "**/coverage/**",
-    "**/.turbo/**",
-    "**/.cache/**",
-    "**/out/**",
-    "**/.vercel/**",
-    "**/.netlify/**",
-];
-/**
- * Test-related excludes (can be disabled with --include-tests)
- */
-export const TEST_EXCLUDES = [
-    "**/__tests__/**",
-    "**/*.test.ts",
-    "**/*.test.tsx",
-    "**/*.test.js",
-    "**/*.test.jsx",
-    "**/*.spec.ts",
-    "**/*.spec.tsx",
-    "**/*.spec.js",
-    "**/*.spec.jsx",
-    "**/test/**",
-    "**/tests/**",
-    "**/fixtures/**",
-    "**/__mocks__/**",
-    "**/__fixtures__/**",
-    "**/cypress/**",
-    "**/e2e/**",
-    "**/*.stories.ts",
-    "**/*.stories.tsx",
-    "**/*.stories.js",
-    "**/*.stories.jsx",
-];
-/**
- * Get default exclude patterns based on options
- */
-export function getDefaultExcludes(options = {}) {
-    const excludes = [...CORE_EXCLUDES];
-    if (!options.includeTests) {
-        excludes.push(...TEST_EXCLUDES);
-    }
-    return excludes;
-}
-/**
- * Merge custom excludes with defaults
- */
-export function mergeExcludes(customExcludes, options = {}) {
-    const defaults = getDefaultExcludes(options);
-    const merged = new Set([...defaults, ...customExcludes]);
-    return Array.from(merged);
-}
-/**
- * Normalize glob pattern for cross-platform compatibility
- */
-export function normalizeGlobPattern(pattern) {
-    // Ensure forward slashes for glob patterns
-    return pattern.replace(/\\/g, "/");
-}
-/**
- * Normalize a list of patterns
- */
-export function normalizePatterns(patterns) {
-    return patterns.map(normalizeGlobPattern);
-}

package/dist/utils/file-utils.d.ts DELETED Viewed

@@ -1,37 +0,0 @@
-/**
- * Read file contents as string, returns null if file doesn't exist
- */
-export declare function readFileSync(filePath: string): string | null;
-/**
- * Check if a file exists
- */
-export declare function fileExists(filePath: string): boolean;
-/**
- * Ensure a directory exists, creating it if necessary
- */
-export declare function ensureDir(dirPath: string): void;
-/**
- * Write content to file, creating directories as needed
- */
-export declare function writeFileSync(filePath: string, content: string): void;
-/**
- * Find files matching glob patterns
- */
-export declare function findFiles(patterns: string | string[], options: {
-    cwd: string;
-    ignore?: string[];
-    absolute?: boolean;
-}): Promise<string[]>;
-/**
- * Get relative path from base directory
- */
-export declare function relativePath(filePath: string, basePath: string): string;
-/**
- * Resolve to absolute path
- */
-export declare function resolvePath(...paths: string[]): string;
-/**
- * Read and parse JSON file
- */
-export declare function readJsonSync<T>(filePath: string): T | null;
-//# sourceMappingURL=file-utils.d.ts.map

package/dist/utils/file-utils.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"file-utils.d.ts","sourceRoot":"","sources":["../../src/utils/file-utils.ts"],"names":[],"mappings":"AAIA;;GAEG;AACH,wBAAgB,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAM5D;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAMpD;AAED;;GAEG;AACH,wBAAgB,SAAS,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAI/C;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,CAGrE;AAED;;GAEG;AACH,wBAAsB,SAAS,CAC7B,QAAQ,EAAE,MAAM,GAAG,MAAM,EAAE,EAC3B,OAAO,EAAE;IACP,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB,GACA,OAAO,CAAC,MAAM,EAAE,CAAC,CAOnB;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,CAEvE;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,GAAG,KAAK,EAAE,MAAM,EAAE,GAAG,MAAM,CAEtD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,GAAG,CAAC,GAAG,IAAI,CAQ1D"}

package/dist/utils/file-utils.js DELETED Viewed

@@ -1,77 +0,0 @@
-import fs from "node:fs";
-import path from "node:path";
-import fg from "fast-glob";
-/**
- * Read file contents as string, returns null if file doesn't exist
- */
-export function readFileSync(filePath) {
-    try {
-        return fs.readFileSync(filePath, "utf-8");
-    }
-    catch {
-        return null;
-    }
-}
-/**
- * Check if a file exists
- */
-export function fileExists(filePath) {
-    try {
-        return fs.existsSync(filePath);
-    }
-    catch {
-        return false;
-    }
-}
-/**
- * Ensure a directory exists, creating it if necessary
- */
-export function ensureDir(dirPath) {
-    if (!fs.existsSync(dirPath)) {
-        fs.mkdirSync(dirPath, { recursive: true });
-    }
-}
-/**
- * Write content to file, creating directories as needed
- */
-export function writeFileSync(filePath, content) {
-    ensureDir(path.dirname(filePath));
-    fs.writeFileSync(filePath, content, "utf-8");
-}
-/**
- * Find files matching glob patterns
- */
-export async function findFiles(patterns, options) {
-    return fg(patterns, {
-        cwd: options.cwd,
-        ignore: options.ignore ?? ["**/node_modules/**", "**/dist/**", "**/.git/**"],
-        absolute: options.absolute ?? false,
-        dot: false,
-    });
-}
-/**
- * Get relative path from base directory
- */
-export function relativePath(filePath, basePath) {
-    return path.relative(basePath, filePath).replace(/\\/g, "/");
-}
-/**
- * Resolve to absolute path
- */
-export function resolvePath(...paths) {
-    return path.resolve(...paths);
-}
-/**
- * Read and parse JSON file
- */
-export function readJsonSync(filePath) {
-    const content = readFileSync(filePath);
-    if (!content)
-        return null;
-    try {
-        return JSON.parse(content);
-    }
-    catch {
-        return null;
-    }
-}

package/dist/utils/fingerprint.d.ts DELETED Viewed

@@ -1,25 +0,0 @@
-/**
- * Generate a deterministic fingerprint for a finding based on its key attributes.
- * This allows deduplication across scans.
- */
-export declare function generateFingerprint(parts: {
-    ruleId: string;
-    file: string;
-    symbol?: string;
-    route?: string;
-    startLine?: number;
-}): string;
-/**
- * Generate a stable finding ID based on fingerprint components
- */
-export declare function generateFindingId(parts: {
-    ruleId: string;
-    file: string;
-    symbol?: string;
-    startLine?: number;
-}): string;
-/**
- * Hash a directory path for repo identification
- */
-export declare function hashPath(dirPath: string): string;
-//# sourceMappingURL=fingerprint.d.ts.map

package/dist/utils/fingerprint.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"fingerprint.d.ts","sourceRoot":"","sources":["../../src/utils/fingerprint.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE;IACzC,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,GAAG,MAAM,CAUT;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,KAAK,EAAE;IACvC,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,GAAG,MAAM,CAGT;AAED;;GAEG;AACH,wBAAgB,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAEhD"}

package/dist/utils/fingerprint.js DELETED Viewed

@@ -1,28 +0,0 @@
-import crypto from "node:crypto";
-/**
- * Generate a deterministic fingerprint for a finding based on its key attributes.
- * This allows deduplication across scans.
- */
-export function generateFingerprint(parts) {
-    const data = [
-        parts.ruleId,
-        parts.file,
-        parts.symbol ?? "",
-        parts.route ?? "",
-        parts.startLine?.toString() ?? "",
-    ].join("::");
-    return crypto.createHash("sha256").update(data).digest("hex").slice(0, 16);
-}
-/**
- * Generate a stable finding ID based on fingerprint components
- */
-export function generateFindingId(parts) {
-    const fp = generateFingerprint(parts);
-    return `${parts.ruleId.toLowerCase()}-${fp.slice(0, 8)}`;
-}
-/**
- * Hash a directory path for repo identification
- */
-export function hashPath(dirPath) {
-    return crypto.createHash("sha256").update(dirPath).digest("hex").slice(0, 16);
-}

package/dist/utils/git-info.d.ts DELETED Viewed

@@ -1,14 +0,0 @@
-import type { GitInfo } from "@vibecheck/schema";
-/**
- * Check if directory is a git repository
- */
-export declare function isGitRepo(cwd: string): boolean;
-/**
- * Get git information for a repository
- */
-export declare function getGitInfo(cwd: string): GitInfo | undefined;
-/**
- * Get repository name from git remote or directory name
- */
-export declare function getRepoName(cwd: string): string;
-//# sourceMappingURL=git-info.d.ts.map

package/dist/utils/git-info.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"git-info.d.ts","sourceRoot":"","sources":["../../src/utils/git-info.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAcjD;;GAEG;AACH,wBAAgB,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAE9C;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,GAAG,SAAS,CAgB3D;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAe/C"}

package/dist/utils/git-info.js DELETED Viewed

@@ -1,55 +0,0 @@
-import { execSync } from "node:child_process";
-import path from "node:path";
-import { fileExists } from "./file-utils.js";
-/**
- * Execute a git command and return output, or null on error
- */
-function execGit(cmd, cwd) {
-    try {
-        return execSync(cmd, { cwd, encoding: "utf-8", stdio: ["pipe", "pipe", "pipe"] }).trim();
-    }
-    catch {
-        return null;
-    }
-}
-/**
- * Check if directory is a git repository
- */
-export function isGitRepo(cwd) {
-    return fileExists(path.join(cwd, ".git"));
-}
-/**
- * Get git information for a repository
- */
-export function getGitInfo(cwd) {
-    if (!isGitRepo(cwd)) {
-        return undefined;
-    }
-    const branch = execGit("git rev-parse --abbrev-ref HEAD", cwd);
-    const commit = execGit("git rev-parse HEAD", cwd);
-    const remoteUrl = execGit("git config --get remote.origin.url", cwd);
-    const status = execGit("git status --porcelain", cwd);
-    return {
-        branch: branch ?? undefined,
-        commit: commit ?? undefined,
-        remoteUrl: remoteUrl ?? undefined,
-        isDirty: status !== null && status.length > 0,
-    };
-}
-/**
- * Get repository name from git remote or directory name
- */
-export function getRepoName(cwd) {
-    const remoteUrl = execGit("git config --get remote.origin.url", cwd);
-    if (remoteUrl) {
-        // Extract repo name from URL like:
-        // https://github.com/user/repo.git -> repo
-        // git@github.com:user/repo.git -> repo
-        const match = remoteUrl.match(/\/([^/]+?)(?:\.git)?$/);
-        if (match) {
-            return match[1];
-        }
-    }
-    // Fall back to directory name
-    return path.basename(cwd);
-}

package/dist/utils/index.d.ts DELETED Viewed

@@ -1,4 +0,0 @@
-export * from "./file-utils.js";
-export * from "./fingerprint.js";
-export * from "./git-info.js";
-//# sourceMappingURL=index.d.ts.map

package/dist/utils/index.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,cAAc,iBAAiB,CAAC;AAChC,cAAc,kBAAkB,CAAC;AACjC,cAAc,eAAe,CAAC"}

package/dist/utils/index.js DELETED Viewed

@@ -1,3 +0,0 @@
-export * from "./file-utils.js";
-export * from "./fingerprint.js";
-export * from "./git-info.js";

package/dist/utils/progress.d.ts DELETED Viewed

@@ -1,42 +0,0 @@
-/**
- * Terminal progress display - clean, minimal design
- */
-interface PackInfo {
-    id: string;
-    name: string;
-    scannerCount: number;
-}
-export declare class ScanProgress {
-    private packs;
-    private results;
-    private startTime;
-    private currentPack;
-    private totalFiles;
-    private currentFile;
-    private filesProcessed;
-    constructor(packs: PackInfo[], totalFiles?: number);
-    start(): void;
-    startPack(packIndex: number): void;
-    startScanner(packIndex: number, _scannerIndex: number): void;
-    /** Called when a file is processed */
-    onFileProgress(file: string, processed: number, _total: number): void;
-    completeScanner(packIndex: number, findingsFound: number): void;
-    private renderPackProgress;
-    completePack(packIndex: number): void;
-    stop(): void;
-}
-/**
- * Simple spinner for single operations
- */
-export declare class Spinner {
-    private message;
-    private startTime;
-    constructor(message: string);
-    start(): void;
-    update(message: string): void;
-    succeed(message?: string): void;
-    fail(message?: string): void;
-    stop(): void;
-}
-export {};
-//# sourceMappingURL=progress.d.ts.map

package/dist/utils/progress.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"progress.d.ts","sourceRoot":"","sources":["../../src/utils/progress.ts"],"names":[],"mappings":"AAAA;;GAEG;AAmBH,UAAU,QAAQ;IAChB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;CACtB;AAuBD,qBAAa,YAAY;IACvB,OAAO,CAAC,KAAK,CAAa;IAC1B,OAAO,CAAC,OAAO,CAAsC;IACrD,OAAO,CAAC,SAAS,CAAa;IAC9B,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,cAAc,CAAa;gBAEvB,KAAK,EAAE,QAAQ,EAAE,EAAE,UAAU,GAAE,MAAU;IAKrD,KAAK,IAAI,IAAI;IAcb,SAAS,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAMlC,YAAY,CAAC,SAAS,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,IAAI;IAI5D,sCAAsC;IACtC,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,IAAI;IAMrE,eAAe,CAAC,SAAS,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,IAAI;IAS/D,OAAO,CAAC,kBAAkB;IA8B1B,YAAY,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IA2BrC,IAAI,IAAI,IAAI;CA0Bb;AAED;;GAEG;AACH,qBAAa,OAAO;IAClB,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,SAAS,CAAa;gBAElB,OAAO,EAAE,MAAM;IAI3B,KAAK,IAAI,IAAI;IAKb,MAAM,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAI7B,OAAO,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI;IAM/B,IAAI,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI;IAK5B,IAAI,IAAI,IAAI;CAGb"}