npm - @rexymayderio/sentinel - Versions diffs - 0.1.0 - Mend

@rexymayderio/sentinel 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (191) hide show

package/README.md +295 -0
package/dist/acquire/acquirer.d.ts +38 -0
package/dist/acquire/acquirer.d.ts.map +1 -0
package/dist/acquire/acquirer.js +178 -0
package/dist/acquire/acquirer.js.map +1 -0
package/dist/adapters/cli-approval-prompt.d.ts +13 -0
package/dist/adapters/cli-approval-prompt.d.ts.map +1 -0
package/dist/adapters/cli-approval-prompt.js +44 -0
package/dist/adapters/cli-approval-prompt.js.map +1 -0
package/dist/adapters/github-repo-client.d.ts +9 -0
package/dist/adapters/github-repo-client.d.ts.map +1 -0
package/dist/adapters/github-repo-client.js +48 -0
package/dist/adapters/github-repo-client.js.map +1 -0
package/dist/adapters/index.d.ts +5 -0
package/dist/adapters/index.d.ts.map +1 -0
package/dist/adapters/index.js +5 -0
package/dist/adapters/index.js.map +1 -0
package/dist/adapters/node-process-runner.d.ts +8 -0
package/dist/adapters/node-process-runner.d.ts.map +1 -0
package/dist/adapters/node-process-runner.js +21 -0
package/dist/adapters/node-process-runner.js.map +1 -0
package/dist/adapters/npm-registry-client.d.ts +8 -0
package/dist/adapters/npm-registry-client.d.ts.map +1 -0
package/dist/adapters/npm-registry-client.js +66 -0
package/dist/adapters/npm-registry-client.js.map +1 -0
package/dist/analyzers/ai-prompt-analyzer.d.ts +7 -0
package/dist/analyzers/ai-prompt-analyzer.d.ts.map +1 -0
package/dist/analyzers/ai-prompt-analyzer.js +88 -0
package/dist/analyzers/ai-prompt-analyzer.js.map +1 -0
package/dist/analyzers/analyzer.d.ts +14 -0
package/dist/analyzers/analyzer.d.ts.map +1 -0
package/dist/analyzers/analyzer.js +11 -0
package/dist/analyzers/analyzer.js.map +1 -0
package/dist/analyzers/dependency-analyzer.d.ts +10 -0
package/dist/analyzers/dependency-analyzer.d.ts.map +1 -0
package/dist/analyzers/dependency-analyzer.js +79 -0
package/dist/analyzers/dependency-analyzer.js.map +1 -0
package/dist/analyzers/index.d.ts +13 -0
package/dist/analyzers/index.d.ts.map +1 -0
package/dist/analyzers/index.js +30 -0
package/dist/analyzers/index.js.map +1 -0
package/dist/analyzers/install-script-analyzer.d.ts +7 -0
package/dist/analyzers/install-script-analyzer.d.ts.map +1 -0
package/dist/analyzers/install-script-analyzer.js +64 -0
package/dist/analyzers/install-script-analyzer.js.map +1 -0
package/dist/analyzers/match-evidence.d.ts +6 -0
package/dist/analyzers/match-evidence.d.ts.map +1 -0
package/dist/analyzers/match-evidence.js +15 -0
package/dist/analyzers/match-evidence.js.map +1 -0
package/dist/analyzers/metadata-analyzer.d.ts +7 -0
package/dist/analyzers/metadata-analyzer.d.ts.map +1 -0
package/dist/analyzers/metadata-analyzer.js +105 -0
package/dist/analyzers/metadata-analyzer.js.map +1 -0
package/dist/analyzers/network-analyzer.d.ts +7 -0
package/dist/analyzers/network-analyzer.d.ts.map +1 -0
package/dist/analyzers/network-analyzer.js +47 -0
package/dist/analyzers/network-analyzer.js.map +1 -0
package/dist/analyzers/rules/index.d.ts +19 -0
package/dist/analyzers/rules/index.d.ts.map +1 -0
package/dist/analyzers/rules/index.js +70 -0
package/dist/analyzers/rules/index.js.map +1 -0
package/dist/analyzers/secret-analyzer.d.ts +7 -0
package/dist/analyzers/secret-analyzer.d.ts.map +1 -0
package/dist/analyzers/secret-analyzer.js +33 -0
package/dist/analyzers/secret-analyzer.js.map +1 -0
package/dist/analyzers/source-analyzer.d.ts +7 -0
package/dist/analyzers/source-analyzer.d.ts.map +1 -0
package/dist/analyzers/source-analyzer.js +73 -0
package/dist/analyzers/source-analyzer.js.map +1 -0
package/dist/analyzers/static-code-analyzer.d.ts +7 -0
package/dist/analyzers/static-code-analyzer.d.ts.map +1 -0
package/dist/analyzers/static-code-analyzer.js +67 -0
package/dist/analyzers/static-code-analyzer.js.map +1 -0
package/dist/analyzers/test-path.d.ts +2 -0
package/dist/analyzers/test-path.d.ts.map +1 -0
package/dist/analyzers/test-path.js +32 -0
package/dist/analyzers/test-path.js.map +1 -0
package/dist/cli/index.d.ts +3 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/index.js +176 -0
package/dist/cli/index.js.map +1 -0
package/dist/cli/spinner.d.ts +5 -0
package/dist/cli/spinner.d.ts.map +1 -0
package/dist/cli/spinner.js +39 -0
package/dist/cli/spinner.js.map +1 -0
package/dist/core/index.d.ts +3 -0
package/dist/core/index.d.ts.map +1 -0
package/dist/core/index.js +3 -0
package/dist/core/index.js.map +1 -0
package/dist/core/permissions.d.ts +4 -0
package/dist/core/permissions.d.ts.map +1 -0
package/dist/core/permissions.js +28 -0
package/dist/core/permissions.js.map +1 -0
package/dist/core/sentinel.d.ts +32 -0
package/dist/core/sentinel.d.ts.map +1 -0
package/dist/core/sentinel.js +164 -0
package/dist/core/sentinel.js.map +1 -0
package/dist/domain/artifact.d.ts +34 -0
package/dist/domain/artifact.d.ts.map +1 -0
package/dist/domain/artifact.js +2 -0
package/dist/domain/artifact.js.map +1 -0
package/dist/domain/finding.d.ts +22 -0
package/dist/domain/finding.d.ts.map +1 -0
package/dist/domain/finding.js +30 -0
package/dist/domain/finding.js.map +1 -0
package/dist/domain/index.d.ts +7 -0
package/dist/domain/index.d.ts.map +1 -0
package/dist/domain/index.js +7 -0
package/dist/domain/index.js.map +1 -0
package/dist/domain/permission.d.ts +8 -0
package/dist/domain/permission.d.ts.map +1 -0
package/dist/domain/permission.js +21 -0
package/dist/domain/permission.js.map +1 -0
package/dist/domain/report.d.ts +35 -0
package/dist/domain/report.d.ts.map +1 -0
package/dist/domain/report.js +2 -0
package/dist/domain/report.js.map +1 -0
package/dist/domain/risk.d.ts +14 -0
package/dist/domain/risk.d.ts.map +1 -0
package/dist/domain/risk.js +15 -0
package/dist/domain/risk.js.map +1 -0
package/dist/domain/target.d.ts +12 -0
package/dist/domain/target.d.ts.map +1 -0
package/dist/domain/target.js +43 -0
package/dist/domain/target.js.map +1 -0
package/dist/engine/data-assessment.d.ts +10 -0
package/dist/engine/data-assessment.d.ts.map +1 -0
package/dist/engine/data-assessment.js +39 -0
package/dist/engine/data-assessment.js.map +1 -0
package/dist/engine/default-policy.d.ts +16 -0
package/dist/engine/default-policy.d.ts.map +1 -0
package/dist/engine/default-policy.js +15 -0
package/dist/engine/default-policy.js.map +1 -0
package/dist/engine/index.d.ts +4 -0
package/dist/engine/index.d.ts.map +1 -0
package/dist/engine/index.js +4 -0
package/dist/engine/index.js.map +1 -0
package/dist/engine/policy-engine.d.ts +13 -0
package/dist/engine/policy-engine.d.ts.map +1 -0
package/dist/engine/policy-engine.js +78 -0
package/dist/engine/policy-engine.js.map +1 -0
package/dist/engine/risk-calculator.d.ts +15 -0
package/dist/engine/risk-calculator.d.ts.map +1 -0
package/dist/engine/risk-calculator.js +57 -0
package/dist/engine/risk-calculator.js.map +1 -0
package/dist/factory.d.ts +14 -0
package/dist/factory.d.ts.map +1 -0
package/dist/factory.js +25 -0
package/dist/factory.js.map +1 -0
package/dist/index.d.ts +4 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +4 -0
package/dist/index.js.map +1 -0
package/dist/mcp/server.d.ts +3 -0
package/dist/mcp/server.d.ts.map +1 -0
package/dist/mcp/server.js +151 -0
package/dist/mcp/server.js.map +1 -0
package/dist/ports/approval-prompt.d.ts +5 -0
package/dist/ports/approval-prompt.d.ts.map +1 -0
package/dist/ports/approval-prompt.js +2 -0
package/dist/ports/approval-prompt.js.map +1 -0
package/dist/ports/clock.d.ts +5 -0
package/dist/ports/clock.d.ts.map +1 -0
package/dist/ports/clock.js +4 -0
package/dist/ports/clock.js.map +1 -0
package/dist/ports/index.d.ts +6 -0
package/dist/ports/index.d.ts.map +1 -0
package/dist/ports/index.js +6 -0
package/dist/ports/index.js.map +1 -0
package/dist/ports/process-runner.d.ts +12 -0
package/dist/ports/process-runner.d.ts.map +1 -0
package/dist/ports/process-runner.js +2 -0
package/dist/ports/process-runner.js.map +1 -0
package/dist/ports/registry-client.d.ts +14 -0
package/dist/ports/registry-client.d.ts.map +1 -0
package/dist/ports/registry-client.js +2 -0
package/dist/ports/registry-client.js.map +1 -0
package/dist/ports/repo-client.d.ts +18 -0
package/dist/ports/repo-client.d.ts.map +1 -0
package/dist/ports/repo-client.js +2 -0
package/dist/ports/repo-client.js.map +1 -0
package/dist/report/index.d.ts +2 -0
package/dist/report/index.d.ts.map +1 -0
package/dist/report/index.js +2 -0
package/dist/report/index.js.map +1 -0
package/dist/report/report-generator.d.ts +29 -0
package/dist/report/report-generator.d.ts.map +1 -0
package/dist/report/report-generator.js +167 -0
package/dist/report/report-generator.js.map +1 -0
package/package.json +50 -0
package/skills/sentinel/SKILL.md +525 -0

package/README.md ADDED Viewed

@@ -0,0 +1,295 @@
+# Sentinel
+> Universal Security Verification Framework for AI Agent Installations
+Sentinel sits between an AI agent (or a human) and any installer. Nothing installs until the target has been **acquired (download-only, never executed)**, **analyzed**, **risk-scored**, **policy-checked**, and **explicitly approved**.
+```
+AI / User  ->  Sentinel  ->  Acquire  ->  Analyze  ->  Score  ->  Policy  ->  Approve  ->  Install
+```
+The installer never runs directly. Acquirers only download and read files; install scripts are never executed during analysis.
+---
+## Installation
+```bash
+npm install
+npm run build
+```
+Or install globally / run via npx after publishing:
+```bash
+npm install -g @rexymayderio/sentinel
+sentinel verify npm express
+# MCP server (use -p so npx runs the sentinel-mcp bin, not the CLI)
+npx -y -p @rexymayderio/sentinel sentinel-mcp
+```
+Requires Node.js >= 20.
+---
+## Usage
+### CLI
+```bash
+# Verify only (never installs) - the manual verification path
+sentinel verify npm express
+sentinel verify github owner/repo
+sentinel verify skill ./my-skill
+sentinel verify local ./some-directory
+# Verify, then install behind the approval gate
+sentinel install npm express
+sentinel install skill ./my-skill --yes      # auto-approve (still cannot override a hard BLOCK)
+# Output formats
+sentinel verify npm express --json
+sentinel verify npm express --markdown
+# Custom policy file
+sentinel verify npm express --policy ./policy.json
+# Score test/fixture findings at full weight (default: down-weighted)
+sentinel verify local ./my-project --score-tests
+# CLI help
+sentinel help
+sentinel verify --help
+```
+During local development you can run without building:
+```bash
+npm run dev -- verify skill ./my-skill
+```
+### MCP server
+```bash
+npm run mcp
+```
+Example MCP client config:
+```json
+{
+  "mcpServers": {
+    "sentinel": {
+      "command": "npx",
+      "args": ["-y", "-p", "@rexymayderio/sentinel", "sentinel-mcp"]
+    }
+  }
+}
+```
+> The `-p @rexymayderio/sentinel` (package) flag is required: it tells `npx` to run the `sentinel-mcp` binary from the package. Without `-p`, `npx @rexymayderio/sentinel sentinel-mcp` would run the CLI with `sentinel-mcp` as an (invalid) argument.
+### CLI vs MCP
+Both ship in the **same `@rexymayderio/sentinel` package** - installing it provides two binaries:
+| Binary | Purpose | Run |
+|--------|---------|-----|
+| `sentinel` | Command-line verifier/installer | `npx -y -p @rexymayderio/sentinel sentinel verify npm express` |
+| `sentinel-mcp` | MCP server over stdio for AI agents | `npx -y -p @rexymayderio/sentinel sentinel-mcp` |
+There is no separate "CLI-only" or "MCP-only" download - the two binaries are lightweight symlinks over a shared engine, so one install covers both. Use whichever entry point you need.
+MCP tools: `verify_package`, `verify_repository`, `verify_skill`, `verify_mcp`, `verify_extension`, `verify_docker`, `calculate_risk`, `generate_report`, `scan_directory`, `scan_archive`, `approve_install`, `install`.
+### Agent Skill
+Install the Sentinel agent skill so your AI assistant intercepts install requests, verifies via the MCP above, explains risks, and only installs after approval.
+Copy or symlink [skills/sentinel/SKILL.md](skills/sentinel/SKILL.md) into your agent's skills directory (e.g. `~/.cursor/skills/sentinel/SKILL.md` for Cursor).
+The skill never performs analysis itself — it routes to the Sentinel MCP tools and interprets the JSON report. Manual `/verify-*` commands and automatic install interception are documented in the skill file.
+---
+## Supported targets
+| Target | Status | Notes |
+|--------|--------|-------|
+| `npm` | Implemented | Registry metadata + tarball extraction |
+| `github` | Implemented | Repo metadata + tarball download |
+| `skill` | Implemented | Local AI skill folder / `SKILL.md` |
+| `local` | Implemented | Any local directory |
+| `pip`, `uv`, `cargo`, `go`, `docker`, `vscode`, `mcp`, `git`, `zip` | Not yet implemented | Acquisition fails -> `REQUIRE_APPROVAL` (manual review) |
+---
+## How risk is scored
+Each finding has a severity. The Risk Calculator sums severity weights, subtracts positive-signal credit, and clamps the result to `0-100`.
+| Severity | Weight |
+|----------|--------|
+| `CRITICAL` | +50 |
+| `HIGH` | +20 |
+| `MEDIUM` | +10 |
+| `LOW` | +2 |
+| `INFO` | 0 |
+Positive signals (verified publisher, long history, etc.) each subtract `5`, capped at `-30` total.
+**Test/fixture code** is detected by path (`test/`, `tests/`, `__tests__/`, `fixtures/`, `*.test.*`, `*.spec.*`, etc.). Findings in those files are still reported (tagged `[test]` in terminal output, `isTest: true` in JSON) but contribute only **10%** of their severity weight by default. They also do not drive permission detection. Use `--score-tests` or set `scoreTestCodeFully: true` in policy to score them at full weight.
+The final score maps to a **risk level**:
+| Score | Risk level |
+|-------|------------|
+| `0-19` | `LOW` |
+| `20-49` | `MEDIUM` |
+| `50-79` | `HIGH` |
+| `80-100` | `CRITICAL` |
+**Confidence** reflects how much evidence was actually gathered, not how many problems were found. A clean, fully-described package is high confidence even with zero findings. It is computed from:
+- package metadata present (`+35`)
+- at least one file scanned (`+25`), plus `+2` per file up to `+20`
+- `+2` per finding signal up to `+20`
+clamped to `0-100`. When acquisition fails entirely, confidence is `0`. Confidence (and whether any files/metadata were gathered) feeds the data-sufficiency check that can escalate a target to `REQUIRE_APPROVAL`.
+---
+## Policy decisions
+The Policy Engine (`src/engine/policy-engine.ts`) reduces the risk score, findings, permissions, and data assessment into exactly one of the five `POLICY_DECISIONS`. They are evaluated in a fixed priority order and the **first** matching rule wins.
+Evaluation order:
+1. Corporate blacklist -> `BLOCK`
+2. Corporate whitelist -> `AUTO_APPROVE`
+3. Risk score >= block threshold -> `BLOCK`
+4. Insufficient data -> `REQUIRE_APPROVAL`
+5. Verified / trusted publisher -> `AUTO_APPROVE`
+6. Install script / shell / network / warn-threshold checks -> `WARN` or `REQUIRE_APPROVAL`
+7. Nothing flagged -> `APPROVE`
+### `AUTO_APPROVE`
+- **Meaning:** Sentinel is confident the target is safe; no human interaction needed.
+- **Triggered when:** the package name matches the `corporateWhitelist`, OR `autoApproveTrusted` is on and the target has a verified-publisher signal or matches `trustedPublishers`.
+- **Risk shown:** actual level (typically `LOW`).
+- **Recommended action:** `SAFE TO INSTALL`.
+- **Install behavior:** proceeds without prompting (CLI and MCP).
+### `APPROVE`
+- **Meaning:** No policy violations detected, but not explicitly trusted either. Safe default.
+- **Triggered when:** the target passes all checks - below warn threshold, no install scripts, no shell access, no network access, sufficient data.
+- **Risk shown:** actual level.
+- **Recommended action:** `SAFE TO INSTALL`.
+- **Install behavior:** CLI prompts for confirmation unless `--yes` is passed; MCP `install` proceeds when `confirm: true`.
+### `WARN`
+- **Meaning:** Installable, but something deserves attention.
+- **Triggered when:** `warnOnInstallScript` is on and the package defines install scripts (`preinstall`/`install`/`postinstall`/`prepare`), OR `warnOnShellAccess` is on and shell access was detected (and not already escalated), OR the risk score is at/above `warnThreshold` (default 50).
+- **Risk shown:** actual level.
+- **Recommended action:** `PROCEED WITH CAUTION`.
+- **Install behavior:** CLI prompts (the `--yes` flag still auto-approves a `WARN`); MCP `install` proceeds when `confirm: true`.
+### `REQUIRE_APPROVAL`
+- **Meaning:** A human must explicitly approve - either because a sensitive capability was detected, or because Sentinel could not gather enough data to judge the target on its own.
+- **Triggered when:** any of:
+  - `warnOnShellAccess` detects shell access (escalated from the default);
+  - `requireApprovalForNetwork` is on and a network permission / non-`LOW` network finding is present;
+  - the data assessment (`src/engine/data-assessment.ts`) is insufficient - acquisition failed (network error, package not found, unsupported ecosystem), no files could be scanned, a remote target returned no usable metadata, or analysis confidence is below `minConfidence` (default 40%). In this case the report's `dataAssessment` lists the specific reasons.
+- **Risk shown:** actual level (may be `LOW` with low confidence when data is thin).
+- **Recommended action:** `REVIEW AND APPROVE BEFORE INSTALLING`.
+- **Install behavior:** CLI prompts for explicit `y/N`; the `--yes` flag (and MCP `install` with `confirm: true`) treats this as approved, asserting that a human has reviewed it.
+### `BLOCK`
+- **Meaning:** Installation is forbidden. Cannot be overridden by `--yes` or by the MCP `confirm` flag.
+- **Triggered when:** the package name matches the `corporateBlacklist`, OR the risk score is at/above `blockThreshold` (default 80, i.e. `CRITICAL`).
+- **Risk shown:** actual level (typically `CRITICAL`).
+- **Recommended action:** `DO NOT INSTALL`.
+- **Install behavior:** refused everywhere. CLI exits with code `2`.
+### Decision summary
+| Decision | Trigger | Risk shown | Recommended action | Auto-installable |
+|----------|---------|------------|--------------------|------------------|
+| `AUTO_APPROVE` | Whitelist / verified / trusted publisher | actual | SAFE TO INSTALL | Yes |
+| `APPROVE` | No violations | actual | SAFE TO INSTALL | With confirm/`--yes` |
+| `WARN` | Install script or warn-threshold | actual | PROCEED WITH CAUTION | With confirm/`--yes` |
+| `REQUIRE_APPROVAL` | Shell/network access, or insufficient data | actual | REVIEW AND APPROVE BEFORE INSTALLING | With confirm/`--yes` (asserts human approval) |
+| `BLOCK` | Blacklist or score >= block threshold | actual | DO NOT INSTALL | No |
+---
+## Policy configuration
+Pass a JSON file via `--policy <file>` to override defaults (`src/engine/default-policy.ts`).
+| Field | Type | Default | Effect |
+|-------|------|---------|--------|
+| `blockThreshold` | number | `80` | Score at/above this -> `BLOCK`. |
+| `warnThreshold` | number | `50` | Score at/above this -> at least `WARN`. |
+| `minConfidence` | number | `40` | Confidence below this -> data treated as insufficient -> `REQUIRE_APPROVAL`. |
+| `trustedPublishers` | string[] | `[]` | Name substrings auto-approved when `autoApproveTrusted` is on. |
+| `corporateWhitelist` | string[] | `[]` | Name substrings forced to `AUTO_APPROVE`. |
+| `corporateBlacklist` | string[] | `[]` | Name substrings forced to `BLOCK`. |
+| `autoApproveTrusted` | boolean | `true` | Enable verified/trusted-publisher auto-approval. |
+| `requireApprovalForNetwork` | boolean | `true` | Network access -> `REQUIRE_APPROVAL`. |
+| `warnOnInstallScript` | boolean | `true` | Install scripts -> `WARN`. |
+| `warnOnShellAccess` | boolean | `true` | Shell access -> `WARN`/`REQUIRE_APPROVAL`. |
+| `allowOverrides` | boolean | `true` | Allow human overrides of non-`BLOCK` decisions. |
+| `scoreTestCodeFully` | boolean | `false` | When `true`, findings in test/fixture paths score at full weight. |
+Example `policy.json`:
+```json
+{
+  "blockThreshold": 70,
+  "minConfidence": 50,
+  "trustedPublishers": ["@myorg/"],
+  "corporateBlacklist": ["leftpad-evil"]
+}
+```
+---
+## Analyzers
+| Analyzer | Looks for |
+|----------|-----------|
+| Metadata | name, license, repo, first publish date, recent version update, downloads, verified publisher |
+| Source | HTTPS, suspicious TLDs, npm typosquatting |
+| Static code | `eval`, `exec`, `spawn`, `child_process`, `subprocess`, dynamic imports, base64/hex blobs, entropy, minified files |
+| Install script | `postinstall`/`preinstall`/`prepare`, `curl\|bash`, `wget\|bash`, `sudo`, `rm -rf`, `npx` |
+| AI prompt | prompt injection, zero-width / invisible Unicode, jailbreaks, hidden goals, memory poisoning, tool escalation |
+| Secret | AWS / GCP / OpenAI / Anthropic / GitHub keys, JWT, private keys |
+| Dependency | dependency count, insecure sources, local file deps, OSV lookups |
+| Network | hardcoded IPs, Discord/Telegram webhooks, pastebin, ngrok, crypto miners, Tor |
+Reports include **evidence** for code-based findings: the matching source line (file, line number, and a snippet up to 120 characters). Terminal output shows this under each finding; JSON includes `file`, `line`, and `evidence` fields.
+---
+## Development
+```bash
+npm run build      # compile TypeScript to dist/
+npm test           # run behavioral tests (vitest)
+npm run test:watch # watch mode
+```
+Architecture follows ports-and-adapters: analyzers, the risk calculator, and the policy engine are pure and unit-testable, while I/O boundaries (registry, repo API, process runner, approval prompt) are mocked in tests.
+---
+## License
+MIT

package/dist/acquire/acquirer.d.ts ADDED Viewed

@@ -0,0 +1,38 @@
+import type { Artifact, FileEntry } from '../domain/artifact.js';
+import type { Ecosystem, Target } from '../domain/target.js';
+import type { RegistryClient } from '../ports/registry-client.js';
+import type { RepoClient } from '../ports/repo-client.js';
+export interface Acquirer {
+    readonly ecosystem: Ecosystem;
+    acquire(target: Target): Promise<Artifact>;
+}
+export declare function walkDirectory(rootPath: string): Promise<FileEntry[]>;
+export declare class NpmAcquirer implements Acquirer {
+    private readonly registry;
+    readonly ecosystem: "npm";
+    constructor(registry: RegistryClient);
+    acquire(target: Target): Promise<Artifact>;
+}
+export declare class GithubAcquirer implements Acquirer {
+    private readonly repoClient;
+    readonly ecosystem: "github";
+    constructor(repoClient: RepoClient);
+    acquire(target: Target): Promise<Artifact>;
+}
+export declare class LocalAcquirer implements Acquirer {
+    readonly ecosystem: Ecosystem;
+    constructor(ecosystem?: 'skill' | 'local');
+    acquire(target: Target): Promise<Artifact>;
+}
+export declare class UnsupportedAcquirer implements Acquirer {
+    readonly ecosystem: Ecosystem;
+    constructor(ecosystem: Ecosystem);
+    acquire(_target: Target): Promise<Artifact>;
+}
+export declare class AcquirerRegistry {
+    private readonly acquirers;
+    register(acquirer: Acquirer): void;
+    get(ecosystem: Ecosystem): Acquirer;
+}
+export declare function cleanupArtifact(artifact: Artifact): Promise<void>;
+//# sourceMappingURL=acquirer.d.ts.map

package/dist/acquire/acquirer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"acquirer.d.ts","sourceRoot":"","sources":["../../src/acquire/acquirer.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAmB,MAAM,uBAAuB,CAAC;AAClF,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAC;AAE7D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAClE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AAU1D,MAAM,WAAW,QAAQ;IACvB,QAAQ,CAAC,SAAS,EAAE,SAAS,CAAC;IAC9B,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;CAC5C;AAED,wBAAsB,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC,CAsB1E;AAUD,qBAAa,WAAY,YAAW,QAAQ;IAG9B,OAAO,CAAC,QAAQ,CAAC,QAAQ;IAFrC,QAAQ,CAAC,SAAS,EAAG,KAAK,CAAU;gBAEP,QAAQ,EAAE,cAAc;IAE/C,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;CA2CjD;AAED,qBAAa,cAAe,YAAW,QAAQ;IAGjC,OAAO,CAAC,QAAQ,CAAC,UAAU;IAFvC,QAAQ,CAAC,SAAS,EAAG,QAAQ,CAAU;gBAEV,UAAU,EAAE,UAAU;IAE7C,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;CAsBjD;AAED,qBAAa,aAAc,YAAW,QAAQ;IAC5C,QAAQ,CAAC,SAAS,EAAE,SAAS,CAAC;gBAElB,SAAS,GAAE,OAAO,GAAG,OAAiB;IAI5C,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;CA4BjD;AAED,qBAAa,mBAAoB,YAAW,QAAQ;IACtC,QAAQ,CAAC,SAAS,EAAE,SAAS;gBAApB,SAAS,EAAE,SAAS;IAEnC,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;CAKlD;AAED,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAkC;IAE5D,QAAQ,CAAC,QAAQ,EAAE,QAAQ,GAAG,IAAI;IAIlC,GAAG,CAAC,SAAS,EAAE,SAAS,GAAG,QAAQ;CAUpC;AAED,wBAAsB,eAAe,CAAC,QAAQ,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,CAIvE"}

package/dist/acquire/acquirer.js ADDED Viewed

@@ -0,0 +1,178 @@
+import { mkdir, mkdtemp, readFile, rm, writeFile } from 'node:fs/promises';
+import { tmpdir } from 'node:os';
+import { join, relative } from 'node:path';
+import fg from 'fast-glob';
+import * as tar from 'tar';
+import { isMvpEcosystem } from '../domain/target.js';
+const MAX_FILE_SIZE = 2 * 1024 * 1024;
+const SCANNABLE_EXTENSIONS = [
+    '.ts', '.tsx', '.js', '.jsx', '.mjs', '.cjs',
+    '.py', '.go', '.rs', '.sh', '.bash', '.zsh',
+    '.json', '.yaml', '.yml', '.md', '.txt', '.lua',
+    '.toml', '.env', '.gitignore',
+];
+export async function walkDirectory(rootPath) {
+    const patterns = SCANNABLE_EXTENSIONS.map((ext) => `**/*${ext}`);
+    const paths = await fg(patterns, {
+        cwd: rootPath,
+        absolute: true,
+        dot: true,
+        ignore: ['**/node_modules/**', '**/.git/**', '**/dist/**'],
+    });
+    const files = [];
+    for (const absPath of paths) {
+        const stat = await import('node:fs/promises').then((fs) => fs.stat(absPath));
+        if (stat.size > MAX_FILE_SIZE)
+            continue;
+        const content = await readFile(absPath, 'utf-8');
+        files.push({
+            path: relative(rootPath, absPath),
+            content,
+            size: stat.size,
+        });
+    }
+    return files;
+}
+async function extractTarball(buffer, dest) {
+    await mkdir(dest, { recursive: true });
+    const tarPath = join(dest, 'package.tgz');
+    await writeFile(tarPath, buffer);
+    await tar.extract({ file: tarPath, cwd: dest, strip: 1 });
+    return dest;
+}
+export class NpmAcquirer {
+    registry;
+    ecosystem = 'npm';
+    constructor(registry) {
+        this.registry = registry;
+    }
+    async acquire(target) {
+        const info = await this.registry.getNpmPackage(target.name, target.version);
+        const response = await fetch(info.tarballUrl);
+        if (!response.ok) {
+            throw new Error(`Failed to download npm tarball: ${response.statusText}`);
+        }
+        const buffer = Buffer.from(await response.arrayBuffer());
+        const tempDir = await mkdtemp(join(tmpdir(), 'sentinel-npm-'));
+        const rootPath = await extractTarball(buffer, tempDir);
+        const files = await walkDirectory(rootPath);
+        const metadata = {
+            name: info.name,
+            version: info.version,
+            author: info.author,
+            maintainers: info.maintainers,
+            repository: info.repository,
+            homepage: info.homepage,
+            license: info.license,
+            publishDate: info.publishDate,
+            firstPublishDate: info.firstPublishDate,
+            downloadCount: info.downloadCount,
+            keywords: info.keywords,
+            verifiedPublisher: info.verifiedPublisher,
+            scripts: info.scripts,
+            dependencies: info.dependencies,
+            devDependencies: info.devDependencies,
+            optionalDependencies: info.optionalDependencies,
+            sourceUrl: info.sourceUrl,
+            description: info.description,
+        };
+        let manifest;
+        try {
+            const pkgContent = await readFile(join(rootPath, 'package.json'), 'utf-8');
+            manifest = JSON.parse(pkgContent);
+        }
+        catch {
+            // package.json may not exist in tarball
+        }
+        return { target, rootPath, files, metadata, manifest };
+    }
+}
+export class GithubAcquirer {
+    repoClient;
+    ecosystem = 'github';
+    constructor(repoClient) {
+        this.repoClient = repoClient;
+    }
+    async acquire(target) {
+        const [owner, repo] = target.name.split('/');
+        if (!owner || !repo) {
+            throw new Error(`Invalid GitHub target: ${target.name}. Expected owner/repo`);
+        }
+        const repoInfo = await this.repoClient.getRepo(owner, repo);
+        const buffer = await this.repoClient.downloadTarball(repoInfo.tarballUrl);
+        const tempDir = await mkdtemp(join(tmpdir(), 'sentinel-github-'));
+        const rootPath = await extractTarball(buffer, tempDir);
+        const files = await walkDirectory(rootPath);
+        const metadata = {
+            name: repoInfo.fullName,
+            repository: `https://github.com/${repoInfo.fullName}`,
+            description: repoInfo.description,
+            publishDate: repoInfo.createdAt,
+            sourceUrl: `https://github.com/${repoInfo.fullName}`,
+        };
+        return { target, rootPath, files, metadata };
+    }
+}
+export class LocalAcquirer {
+    ecosystem;
+    constructor(ecosystem = 'local') {
+        this.ecosystem = ecosystem;
+    }
+    async acquire(target) {
+        const rootPath = target.raw.startsWith('/') || target.raw.startsWith('.')
+            ? target.raw
+            : join(process.cwd(), target.raw);
+        const files = await walkDirectory(rootPath);
+        let manifest;
+        let metadata = {
+            name: target.name,
+            sourceUrl: rootPath,
+        };
+        try {
+            const pkgContent = await readFile(join(rootPath, 'package.json'), 'utf-8');
+            manifest = JSON.parse(pkgContent);
+            metadata = {
+                ...metadata,
+                name: manifest.name ?? metadata.name,
+                version: manifest.version,
+                scripts: manifest.scripts,
+                dependencies: manifest.dependencies,
+            };
+        }
+        catch {
+            // no package.json
+        }
+        return { target, rootPath, files, metadata, manifest };
+    }
+}
+export class UnsupportedAcquirer {
+    ecosystem;
+    constructor(ecosystem) {
+        this.ecosystem = ecosystem;
+    }
+    async acquire(_target) {
+        throw new Error(`Ecosystem "${this.ecosystem}" is not yet implemented. MVP supports: npm, github, skill, local`);
+    }
+}
+export class AcquirerRegistry {
+    acquirers = new Map();
+    register(acquirer) {
+        this.acquirers.set(acquirer.ecosystem, acquirer);
+    }
+    get(ecosystem) {
+        const acquirer = this.acquirers.get(ecosystem);
+        if (!acquirer) {
+            if (!isMvpEcosystem(ecosystem)) {
+                return new UnsupportedAcquirer(ecosystem);
+            }
+            throw new Error(`No acquirer registered for ecosystem: ${ecosystem}`);
+        }
+        return acquirer;
+    }
+}
+export async function cleanupArtifact(artifact) {
+    if (artifact.rootPath.includes('sentinel-npm-') || artifact.rootPath.includes('sentinel-github-')) {
+        await rm(artifact.rootPath, { recursive: true, force: true }).catch(() => undefined);
+    }
+}
+//# sourceMappingURL=acquirer.js.map

package/dist/acquire/acquirer.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"acquirer.js","sourceRoot":"","sources":["../../src/acquire/acquirer.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC;AAC3E,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAC3C,OAAO,EAAE,MAAM,WAAW,CAAC;AAC3B,OAAO,KAAK,GAAG,MAAM,KAAK,CAAC;AAG3B,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAIrD,MAAM,aAAa,GAAG,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC;AACtC,MAAM,oBAAoB,GAAG;IAC3B,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM;IAC5C,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM;IAC3C,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM;IAC/C,OAAO,EAAE,MAAM,EAAE,YAAY;CAC9B,CAAC;AAOF,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,QAAgB;IAClD,MAAM,QAAQ,GAAG,oBAAoB,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,OAAO,GAAG,EAAE,CAAC,CAAC;IACjE,MAAM,KAAK,GAAG,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC/B,GAAG,EAAE,QAAQ;QACb,QAAQ,EAAE,IAAI;QACd,GAAG,EAAE,IAAI;QACT,MAAM,EAAE,CAAC,oBAAoB,EAAE,YAAY,EAAE,YAAY,CAAC;KAC3D,CAAC,CAAC;IAEH,MAAM,KAAK,GAAgB,EAAE,CAAC;IAC9B,KAAK,MAAM,OAAO,IAAI,KAAK,EAAE,CAAC;QAC5B,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,kBAAkB,CAAC,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;QAC7E,IAAI,IAAI,CAAC,IAAI,GAAG,aAAa;YAAE,SAAS;QAExC,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QACjD,KAAK,CAAC,IAAI,CAAC;YACT,IAAI,EAAE,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC;YACjC,OAAO;YACP,IAAI,EAAE,IAAI,CAAC,IAAI;SAChB,CAAC,CAAC;IACL,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,KAAK,UAAU,cAAc,CAAC,MAAc,EAAE,IAAY;IACxD,MAAM,KAAK,CAAC,IAAI,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACvC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,aAAa,CAAC,CAAC;IAC1C,MAAM,SAAS,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IACjC,MAAM,GAAG,CAAC,OAAO,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,CAAC;IAC1D,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,OAAO,WAAW;IAGO;IAFpB,SAAS,GAAG,KAAc,CAAC;IAEpC,YAA6B,QAAwB;QAAxB,aAAQ,GAAR,QAAQ,CAAgB;IAAG,CAAC;IAEzD,KAAK,CAAC,OAAO,CAAC,MAAc;QAC1B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;QAC5E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAC9C,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,mCAAmC,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;QAC5E,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;QACzD,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,eAAe,CAAC,CAAC,CAAC;QAC/D,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QACvD,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,CAAC,CAAC;QAE5C,MAAM,QAAQ,GAAoB;YAChC,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;YACvC,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,iBAAiB,EAAE,IAAI,CAAC,iBAAiB;YACzC,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,oBAAoB,EAAE,IAAI,CAAC,oBAAoB;YAC/C,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,WAAW,EAAE,IAAI,CAAC,WAAW;SAC9B,CAAC;QAEF,IAAI,QAA6C,CAAC;QAClD,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,CAAC,EAAE,OAAO,CAAC,CAAC;YAC3E,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,UAAU,CAA4B,CAAC;QAC/D,CAAC;QAAC,MAAM,CAAC;YACP,wCAAwC;QAC1C,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC;IACzD,CAAC;CACF;AAED,MAAM,OAAO,cAAc;IAGI;IAFpB,SAAS,GAAG,QAAiB,CAAC;IAEvC,YAA6B,UAAsB;QAAtB,eAAU,GAAV,UAAU,CAAY;IAAG,CAAC;IAEvD,KAAK,CAAC,OAAO,CAAC,MAAc;QAC1B,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC7C,IAAI,CAAC,KAAK,IAAI,CAAC,IAAI,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CAAC,0BAA0B,MAAM,CAAC,IAAI,uBAAuB,CAAC,CAAC;QAChF,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;QAC5D,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QAC1E,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,kBAAkB,CAAC,CAAC,CAAC;QAClE,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QACvD,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,CAAC,CAAC;QAE5C,MAAM,QAAQ,GAAoB;YAChC,IAAI,EAAE,QAAQ,CAAC,QAAQ;YACvB,UAAU,EAAE,sBAAsB,QAAQ,CAAC,QAAQ,EAAE;YACrD,WAAW,EAAE,QAAQ,CAAC,WAAW;YACjC,WAAW,EAAE,QAAQ,CAAC,SAAS;YAC/B,SAAS,EAAE,sBAAsB,QAAQ,CAAC,QAAQ,EAAE;SACrD,CAAC;QAEF,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC;IAC/C,CAAC;CACF;AAED,MAAM,OAAO,aAAa;IACf,SAAS,CAAY;IAE9B,YAAY,YAA+B,OAAO;QAChD,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC7B,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,MAAc;QAC1B,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC;YACvE,CAAC,CAAC,MAAM,CAAC,GAAG;YACZ,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC;QAEpC,MAAM,KAAK,GAAG,MAAM,aAAa,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,QAA6C,CAAC;QAClD,IAAI,QAAQ,GAAoB;YAC9B,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,SAAS,EAAE,QAAQ;SACpB,CAAC;QAEF,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,CAAC,EAAE,OAAO,CAAC,CAAC;YAC3E,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,UAAU,CAA4B,CAAC;YAC7D,QAAQ,GAAG;gBACT,GAAG,QAAQ;gBACX,IAAI,EAAG,QAAQ,CAAC,IAAe,IAAI,QAAQ,CAAC,IAAI;gBAChD,OAAO,EAAE,QAAQ,CAAC,OAAiB;gBACnC,OAAO,EAAE,QAAQ,CAAC,OAAiC;gBACnD,YAAY,EAAE,QAAQ,CAAC,YAAsC;aAC9D,CAAC;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,kBAAkB;QACpB,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC;IACzD,CAAC;CACF;AAED,MAAM,OAAO,mBAAmB;IACT;IAArB,YAAqB,SAAoB;QAApB,cAAS,GAAT,SAAS,CAAW;IAAG,CAAC;IAE7C,KAAK,CAAC,OAAO,CAAC,OAAe;QAC3B,MAAM,IAAI,KAAK,CACb,cAAc,IAAI,CAAC,SAAS,mEAAmE,CAChG,CAAC;IACJ,CAAC;CACF;AAED,MAAM,OAAO,gBAAgB;IACV,SAAS,GAAG,IAAI,GAAG,EAAuB,CAAC;IAE5D,QAAQ,CAAC,QAAkB;QACzB,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;IACnD,CAAC;IAED,GAAG,CAAC,SAAoB;QACtB,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC/C,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE,CAAC;gBAC/B,OAAO,IAAI,mBAAmB,CAAC,SAAS,CAAC,CAAC;YAC5C,CAAC;YACD,MAAM,IAAI,KAAK,CAAC,yCAAyC,SAAS,EAAE,CAAC,CAAC;QACxE,CAAC;QACD,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF;AAED,MAAM,CAAC,KAAK,UAAU,eAAe,CAAC,QAAkB;IACtD,IAAI,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,eAAe,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;QAClG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;IACvF,CAAC;AACH,CAAC"}

package/dist/adapters/cli-approval-prompt.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+import type { VerificationReport } from '../domain/report.js';
+import type { ApprovalPrompt } from '../ports/approval-prompt.js';
+export declare class CliApprovalPrompt implements ApprovalPrompt {
+    private readonly autoApprove;
+    constructor(autoApprove?: boolean);
+    requestApproval(report: VerificationReport): Promise<boolean>;
+}
+export declare class AutoApprovalPrompt implements ApprovalPrompt {
+    private readonly approved;
+    constructor(approved: boolean);
+    requestApproval(_report: VerificationReport): Promise<boolean>;
+}
+//# sourceMappingURL=cli-approval-prompt.d.ts.map

package/dist/adapters/cli-approval-prompt.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"cli-approval-prompt.d.ts","sourceRoot":"","sources":["../../src/adapters/cli-approval-prompt.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAElE,qBAAa,iBAAkB,YAAW,cAAc;IAC1C,OAAO,CAAC,QAAQ,CAAC,WAAW;gBAAX,WAAW,UAAQ;IAE1C,eAAe,CAAC,MAAM,EAAE,kBAAkB,GAAG,OAAO,CAAC,OAAO,CAAC;CA+BpE;AAED,qBAAa,kBAAmB,YAAW,cAAc;IAC3C,OAAO,CAAC,QAAQ,CAAC,QAAQ;gBAAR,QAAQ,EAAE,OAAO;IAExC,eAAe,CAAC,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,OAAO,CAAC;CAGrE"}

package/dist/adapters/cli-approval-prompt.js ADDED Viewed

@@ -0,0 +1,44 @@
+import { createInterface } from 'node:readline';
+import kleur from 'kleur';
+export class CliApprovalPrompt {
+    autoApprove;
+    constructor(autoApprove = false) {
+        this.autoApprove = autoApprove;
+    }
+    async requestApproval(report) {
+        if (this.autoApprove && report.policy.decision !== 'BLOCK') {
+            return true;
+        }
+        if (report.policy.decision === 'AUTO_APPROVE') {
+            return true;
+        }
+        if (report.policy.decision === 'BLOCK') {
+            console.error(kleur.red().bold('\nInstallation BLOCKED by policy.'));
+            return false;
+        }
+        const rl = createInterface({ input: process.stdin, output: process.stdout });
+        return new Promise((resolve) => {
+            console.log('');
+            console.log(kleur.yellow(`Risk: ${report.risk.level} (${report.risk.score}/100)`));
+            console.log(kleur.yellow(`Decision: ${report.policy.decision}`));
+            for (const reason of report.policy.reasons) {
+                console.log(kleur.dim(`  • ${reason}`));
+            }
+            console.log('');
+            rl.question(kleur.bold('Approve installation? [y/N] '), (answer) => {
+                rl.close();
+                resolve(answer.toLowerCase() === 'y' || answer.toLowerCase() === 'yes');
+            });
+        });
+    }
+}
+export class AutoApprovalPrompt {
+    approved;
+    constructor(approved) {
+        this.approved = approved;
+    }
+    async requestApproval(_report) {
+        return this.approved;
+    }
+}
+//# sourceMappingURL=cli-approval-prompt.js.map

package/dist/adapters/cli-approval-prompt.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"cli-approval-prompt.js","sourceRoot":"","sources":["../../src/adapters/cli-approval-prompt.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAChD,OAAO,KAAK,MAAM,OAAO,CAAC;AAI1B,MAAM,OAAO,iBAAiB;IACC;IAA7B,YAA6B,cAAc,KAAK;QAAnB,gBAAW,GAAX,WAAW,CAAQ;IAAG,CAAC;IAEpD,KAAK,CAAC,eAAe,CAAC,MAA0B;QAC9C,IAAI,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,MAAM,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;YAC3D,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,MAAM,CAAC,MAAM,CAAC,QAAQ,KAAK,cAAc,EAAE,CAAC;YAC9C,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,MAAM,CAAC,MAAM,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;YACvC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC,CAAC;YACrE,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;QAE7E,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,MAAM,CAAC,IAAI,CAAC,KAAK,KAAK,MAAM,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,CAAC,CAAC;YACnF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,aAAa,MAAM,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;YACjE,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;gBAC3C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,MAAM,EAAE,CAAC,CAAC,CAAC;YAC1C,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,8BAA8B,CAAC,EAAE,CAAC,MAAM,EAAE,EAAE;gBACjE,EAAE,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE,KAAK,GAAG,IAAI,MAAM,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,CAAC;YAC1E,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAED,MAAM,OAAO,kBAAkB;IACA;IAA7B,YAA6B,QAAiB;QAAjB,aAAQ,GAAR,QAAQ,CAAS;IAAG,CAAC;IAElD,KAAK,CAAC,eAAe,CAAC,OAA2B;QAC/C,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;CACF"}

package/dist/adapters/github-repo-client.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import type { RepoClient, RepoInfo } from '../ports/repo-client.js';
+export declare class GithubRepoClient implements RepoClient {
+    private readonly token?;
+    constructor(token?: string);
+    private headers;
+    getRepo(owner: string, repo: string): Promise<RepoInfo>;
+    downloadTarball(url: string): Promise<Buffer>;
+}
+//# sourceMappingURL=github-repo-client.d.ts.map

package/dist/adapters/github-repo-client.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"github-repo-client.d.ts","sourceRoot":"","sources":["../../src/adapters/github-repo-client.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,yBAAyB,CAAC;AAepE,qBAAa,gBAAiB,YAAW,UAAU;IACjD,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAS;gBAEpB,KAAK,CAAC,EAAE,MAAM;IAI1B,OAAO,CAAC,OAAO;IAWT,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC;IAuBvD,eAAe,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;CAUpD"}

package/dist/adapters/github-repo-client.js ADDED Viewed

@@ -0,0 +1,48 @@
+export class GithubRepoClient {
+    token;
+    constructor(token) {
+        this.token = token ?? process.env.GITHUB_TOKEN;
+    }
+    headers() {
+        const headers = {
+            Accept: 'application/vnd.github+json',
+            'User-Agent': 'sentinel-security',
+        };
+        if (this.token) {
+            headers.Authorization = `Bearer ${this.token}`;
+        }
+        return headers;
+    }
+    async getRepo(owner, repo) {
+        const url = `https://api.github.com/repos/${owner}/${repo}`;
+        const response = await fetch(url, { headers: this.headers() });
+        if (!response.ok) {
+            throw new Error(`GitHub repo not found: ${owner}/${repo} (${response.status})`);
+        }
+        const data = (await response.json());
+        return {
+            fullName: data.full_name,
+            description: data.description,
+            stars: data.stargazers_count,
+            forks: data.forks_count,
+            defaultBranch: data.default_branch,
+            archived: data.archived,
+            createdAt: data.created_at,
+            updatedAt: data.updated_at,
+            hasSecurityPolicy: !!data.security_policy,
+            tarballUrl: `https://api.github.com/repos/${owner}/${repo}/tarball/${data.default_branch}`,
+            topics: data.topics,
+        };
+    }
+    async downloadTarball(url) {
+        const response = await fetch(url, {
+            headers: this.headers(),
+            redirect: 'follow',
+        });
+        if (!response.ok) {
+            throw new Error(`Failed to download tarball: ${response.statusText}`);
+        }
+        return Buffer.from(await response.arrayBuffer());
+    }
+}
+//# sourceMappingURL=github-repo-client.js.map

package/dist/adapters/github-repo-client.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"github-repo-client.js","sourceRoot":"","sources":["../../src/adapters/github-repo-client.ts"],"names":[],"mappings":"AAeA,MAAM,OAAO,gBAAgB;IACV,KAAK,CAAU;IAEhC,YAAY,KAAc;QACxB,IAAI,CAAC,KAAK,GAAG,KAAK,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;IACjD,CAAC;IAEO,OAAO;QACb,MAAM,OAAO,GAA2B;YACtC,MAAM,EAAE,6BAA6B;YACrC,YAAY,EAAE,mBAAmB;SAClC,CAAC;QACF,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,aAAa,GAAG,UAAU,IAAI,CAAC,KAAK,EAAE,CAAC;QACjD,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,KAAa,EAAE,IAAY;QACvC,MAAM,GAAG,GAAG,gCAAgC,KAAK,IAAI,IAAI,EAAE,CAAC;QAC5D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QAC/D,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,0BAA0B,KAAK,IAAI,IAAI,KAAK,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC;QAClF,CAAC;QAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAuB,CAAC;QAC3D,OAAO;YACL,QAAQ,EAAE,IAAI,CAAC,SAAS;YACxB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,KAAK,EAAE,IAAI,CAAC,gBAAgB;YAC5B,KAAK,EAAE,IAAI,CAAC,WAAW;YACvB,aAAa,EAAE,IAAI,CAAC,cAAc;YAClC,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,SAAS,EAAE,IAAI,CAAC,UAAU;YAC1B,SAAS,EAAE,IAAI,CAAC,UAAU;YAC1B,iBAAiB,EAAE,CAAC,CAAC,IAAI,CAAC,eAAe;YACzC,UAAU,EAAE,gCAAgC,KAAK,IAAI,IAAI,YAAY,IAAI,CAAC,cAAc,EAAE;YAC1F,MAAM,EAAE,IAAI,CAAC,MAAM;SACpB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,GAAW;QAC/B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAChC,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE;YACvB,QAAQ,EAAE,QAAQ;SACnB,CAAC,CAAC;QACH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,+BAA+B,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;QACxE,CAAC;QACD,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;IACnD,CAAC;CACF"}