@runhalo/engine 0.4.0 → 0.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (64) hide show
  1. package/dist/ast-engine.d.ts +60 -0
  2. package/dist/ast-engine.js +653 -0
  3. package/dist/ast-engine.js.map +1 -0
  4. package/dist/context-analyzer.d.ts +209 -0
  5. package/dist/context-analyzer.js +408 -0
  6. package/dist/context-analyzer.js.map +1 -0
  7. package/dist/data-flow-tracer.d.ts +106 -0
  8. package/dist/data-flow-tracer.js +506 -0
  9. package/dist/data-flow-tracer.js.map +1 -0
  10. package/dist/fp-patterns.d.ts +36 -0
  11. package/dist/fp-patterns.js +426 -0
  12. package/dist/fp-patterns.js.map +1 -0
  13. package/dist/frameworks/angular.d.ts +11 -0
  14. package/dist/frameworks/angular.js +41 -0
  15. package/dist/frameworks/angular.js.map +1 -0
  16. package/dist/frameworks/django.d.ts +11 -0
  17. package/dist/frameworks/django.js +57 -0
  18. package/dist/frameworks/django.js.map +1 -0
  19. package/dist/frameworks/index.d.ts +59 -0
  20. package/dist/frameworks/index.js +99 -0
  21. package/dist/frameworks/index.js.map +1 -0
  22. package/dist/frameworks/nextjs.d.ts +11 -0
  23. package/dist/frameworks/nextjs.js +59 -0
  24. package/dist/frameworks/nextjs.js.map +1 -0
  25. package/dist/frameworks/rails.d.ts +11 -0
  26. package/dist/frameworks/rails.js +58 -0
  27. package/dist/frameworks/rails.js.map +1 -0
  28. package/dist/frameworks/react.d.ts +13 -0
  29. package/dist/frameworks/react.js +36 -0
  30. package/dist/frameworks/react.js.map +1 -0
  31. package/dist/frameworks/types.d.ts +29 -0
  32. package/dist/frameworks/types.js +11 -0
  33. package/dist/frameworks/types.js.map +1 -0
  34. package/dist/frameworks/vue.d.ts +9 -0
  35. package/dist/frameworks/vue.js +39 -0
  36. package/dist/frameworks/vue.js.map +1 -0
  37. package/dist/graduation/fp-verdict-logger.d.ts +81 -0
  38. package/dist/graduation/fp-verdict-logger.js +130 -0
  39. package/dist/graduation/fp-verdict-logger.js.map +1 -0
  40. package/dist/graduation/graduation-codifier.d.ts +37 -0
  41. package/dist/graduation/graduation-codifier.js +205 -0
  42. package/dist/graduation/graduation-codifier.js.map +1 -0
  43. package/dist/graduation/graduation-validator.d.ts +73 -0
  44. package/dist/graduation/graduation-validator.js +204 -0
  45. package/dist/graduation/graduation-validator.js.map +1 -0
  46. package/dist/graduation/index.d.ts +71 -0
  47. package/dist/graduation/index.js +105 -0
  48. package/dist/graduation/index.js.map +1 -0
  49. package/dist/graduation/pattern-aggregator.d.ts +77 -0
  50. package/dist/graduation/pattern-aggregator.js +154 -0
  51. package/dist/graduation/pattern-aggregator.js.map +1 -0
  52. package/dist/index.d.ts +99 -0
  53. package/dist/index.js +718 -61
  54. package/dist/index.js.map +1 -1
  55. package/dist/review-board/two-agent-review.d.ts +152 -0
  56. package/dist/review-board/two-agent-review.js +463 -0
  57. package/dist/review-board/two-agent-review.js.map +1 -0
  58. package/dist/scope-analyzer.d.ts +91 -0
  59. package/dist/scope-analyzer.js +300 -0
  60. package/dist/scope-analyzer.js.map +1 -0
  61. package/package.json +9 -2
  62. package/rules/coppa-tier-1.yaml +17 -10
  63. package/rules/rules.json +2094 -99
  64. package/rules/validation-report.json +58 -0
package/dist/ast-engine.d.ts ADDED
@@ -0,0 +1,60 @@
1
+ /**
2
+ * Halo AST Rule Engine
3
+ *
4
+ * Takes a parsed tree-sitter AST + rule ID and returns an AST-based verdict
5
+ * that supplements the regex scanner. AST analysis can suppress false positives
6
+ * (e.g., a Schema that already has TTL) or confirm true positives with higher
7
+ * confidence.
8
+ *
9
+ * Sprint 8: 10 rule analyzers for JS/TS.
10
+ * HARD SCOPE: Single-file only (via DataFlowTracer).
11
+ */
12
+ import Parser from 'tree-sitter';
13
+ export type ASTVerdict = 'confirmed' | 'suppressed' | 'regex_only';
14
+ export interface ASTResult {
15
+ /** Whether the violation is confirmed, suppressed, or not analyzable by AST */
16
+ verdict: ASTVerdict;
17
+ /** Confidence in the verdict: 0.0 to 1.0 */
18
+ confidence: number;
19
+ /** Human-readable reason for the verdict */
20
+ reason?: string;
21
+ }
22
+ /** Minimal violation info needed for AST analysis */
23
+ export interface ViolationInfo {
24
+ ruleId: string;
25
+ line: number;
26
+ column: number;
27
+ codeSnippet: string;
28
+ }
29
+ export declare class ASTRuleEngine {
30
+ private scopeAnalyzer;
31
+ constructor();
32
+ /**
33
+ * Analyze a regex-detected violation using AST context.
34
+ *
35
+ * @param ruleId - The COPPA/ethical rule ID
36
+ * @param content - Full file content
37
+ * @param violation - The violation from the regex scanner
38
+ * @param tree - Parsed tree-sitter AST
39
+ * @returns ASTResult with verdict, confidence, and reason
40
+ */
41
+ analyzeViolation(ruleId: string, content: string, violation: ViolationInfo, tree: Parser.Tree): ASTResult;
42
+ /**
43
+ * Analyze a violation with a known file path (used from scanFileWithAST integration).
44
+ * This version passes the real file path for scope analysis.
45
+ */
46
+ analyzeViolationWithPath(ruleId: string, filePath: string, content: string, violation: ViolationInfo, tree: Parser.Tree): ASTResult;
47
+ private getAnalyzer;
48
+ private analyzeTracking003;
49
+ private analyzeRetention005;
50
+ private analyzeExtLinks017;
51
+ private analyzeXSS015;
52
+ private analyzeAuth001;
53
+ private analyzeUI008;
54
+ private checkPrivacyInContent;
55
+ private analyzeUGC014;
56
+ private analyzeFlow009;
57
+ private analyzeCookies016;
58
+ private analyzeInfiniteScroll001;
59
+ }
60
+ export default ASTRuleEngine;