npm - @skill-mine/complyment-connectors-sdk - Versions diffs - 0.1.0 - Mend

@skill-mine/complyment-connectors-sdk 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/README.md ADDED Viewed

@@ -0,0 +1,396 @@
+# @skill-mine/complyment-connectors-sdk
+> Enterprise Security Tool Connectors SDK — built at Skill-Mine Technology
+A TypeScript SDK that abstracts 6+ enterprise security tool integrations with built-in AI agent compatibility, circuit breakers, rate limiting, and human-in-the-loop controls.
+[![npm version](https://img.shields.io/badge/npm-0.1.0-blue)](https://www.npmjs.com/package/@skill-mine/complyment-connectors-sdk)
+[![TypeScript](https://img.shields.io/badge/TypeScript-5.x-blue)](https://www.typescriptlang.org/)
+[![Build](https://img.shields.io/badge/build-passing-brightgreen)](#)
+[![License](https://img.shields.io/badge/license-MIT-green)](#)
+---
+## Features
+- **6 Connectors** — Qualys, SentinelOne, Checkpoint, ManageEngine, Jira, Zoho
+- **AI Agent Ready** — MCP, LangChain, Vercel AI SDK, OpenAI Agents SDK
+- **Resilience** — Circuit breaker, retry with backoff, rate limiting, caching
+- **Observability** — OpenTelemetry tracing, structured logging, audit logs
+- **Security** — Human-in-the-loop approvals for critical actions
+- **Normalization** — Unified vulnerability, asset, threat schemas across connectors
+- **Semantic Search** — TF-IDF based natural language queries on security data
+- **Dual Build** — ESM + CJS, full TypeScript declarations
+---
+## Installation
+```bash
+npm install @skill-mine/complyment-connectors-sdk
+```
+---
+## Quick Start
+```typescript
+import {
+  QualysConnector,
+  SentinelOneConnector,
+  JiraConnector,
+  registry,
+} from '@skill-mine/complyment-connectors-sdk'
+// Initialize connectors
+const qualys = new QualysConnector({
+  name: 'qualys',
+  baseUrl: 'https://qualysapi.qualys.com',
+  auth: {
+    type: 'basic',
+    credentials: {
+      username: process.env.QUALYS_USERNAME!,
+      password: process.env.QUALYS_PASSWORD!,
+    },
+  },
+})
+// Register globally
+registry.register('qualys', qualys)
+// Fetch critical vulnerabilities
+const vulns = await qualys.getCriticalVulnerabilities()
+console.log(vulns.data)
+```
+---
+## Connectors
+### Qualys
+```typescript
+const qualys = new QualysConnector({ ...config })
+await qualys.getAssets({ hostname: 'web-server-01' })
+await qualys.getCriticalVulnerabilities()
+await qualys.launchScan({ scannerName: 'External Scanner', title: 'Weekly Scan' })
+await qualys.getNormalizedVulnerabilities()
+```
+### SentinelOne
+```typescript
+const s1 = new SentinelOneConnector({ ...config })
+await s1.getThreats({ severity: 'critical', status: 'active' })
+await s1.quarantineThreat('threat-id-123')
+await s1.killThreat('threat-id-123')
+await s1.getInfectedAgents()
+```
+### Checkpoint
+```typescript
+const checkpoint = new CheckpointConnector({ ...config })
+await checkpoint.getPolicies()
+await checkpoint.addRule({ layer: 'Network', position: 'top', action: 'Drop' })
+await checkpoint.blockThreat('threat-id')
+await checkpoint.installPolicy({ policyPackage: 'Standard', targets: ['gateway-1'] })
+```
+### ManageEngine
+```typescript
+const me = new ManageEngineConnector({ ...config })
+await me.getMissingPatches()
+await me.getCriticalPatches()
+await me.createDeployment({ patchIds: ['patch-1'], computerIds: ['pc-1'] })
+```
+### Jira
+```typescript
+const jira = new JiraConnector({ ...config })
+await jira.getIssues({ projectKey: 'SEC', status: 'Open' })
+await jira.createSecurityTicket('SEC', 'Critical CVE Found', 'Details...', 'critical', 'qualys')
+await jira.transitionIssue('SEC-123', 'transition-id')
+```
+### Zoho CRM
+```typescript
+const zoho = new ZohoConnector({ ...config })
+await zoho.getContacts()
+await zoho.createLead({ lastName: 'Doe', company: 'Acme', email: 'doe@acme.com' })
+await zoho.getDeals({ stage: 'Qualification' })
+```
+---
+## AI Agent Integration
+### MCP (Model Context Protocol)
+```typescript
+import { MCPServer, createQualysMCPTools } from '@skill-mine/complyment-connectors-sdk'
+const mcp = new MCPServer({ name: 'security-mcp' })
+mcp.registerConnectorTools('qualys', createQualysMCPTools(qualys))
+// Expose to AI agents
+const manifest = mcp.generateManifest()
+const result = await mcp.executeTool('qualys_get_critical_vulnerabilities', {})
+```
+### LangChain
+```typescript
+import { LangChainAdapter } from '@skill-mine/complyment-connectors-sdk'
+const tools = LangChainAdapter.createAllTools({ qualys, sentinelone, jira })
+// Use with LangChain agent
+const agent = createReactAgent({ llm, tools })
+```
+### Vercel AI SDK
+```typescript
+import { VercelAIAdapter } from '@skill-mine/complyment-connectors-sdk'
+const tools = VercelAIAdapter.createFullToolSet({ qualys, sentinelone, jira })
+const result = await generateText({
+  model: openai('gpt-4o'),
+  tools,
+  prompt: 'What critical vulnerabilities need immediate attention?',
+})
+```
+### OpenAI Agents SDK
+```typescript
+import { OpenAIAgentsAdapter } from '@skill-mine/complyment-connectors-sdk'
+const agent = OpenAIAgentsAdapter.createSecurityAnalystAgent({
+  qualys, sentinelone, jira,
+})
+// agent.tools ready for OpenAI Agents SDK
+```
+---
+## Human-in-the-Loop (HITL)
+```typescript
+import { HITLManager } from '@skill-mine/complyment-connectors-sdk'
+const hitl = new HITLManager({
+  autoApproveRiskLevels: ['low'],
+  onApprovalRequired: (req) => {
+    // Send Slack/email notification to security team
+    notifyTeam(req)
+  },
+})
+hitl.registerHandler('threat.quarantine', async ({ threatId }) => {
+  return s1.quarantineThreat(threatId as string)
+})
+// AI agent requests approval
+const request = await hitl.requestApproval({
+  actionType: 'threat.quarantine',
+  connector: 'sentinelone',
+  description: 'Quarantine ransomware on DESKTOP-XYZ',
+  riskLevel: 'high',
+  params: { threatId: 'threat-123' },
+  requestedBy: 'SecurityAgent',
+})
+// Human approves via dashboard
+await hitl.approve(request.id, 'john.doe@skill-mine.com')
+```
+---
+## Resilience Features
+### Circuit Breaker
+```typescript
+// Built into BaseConnector - automatic
+// Opens after 5 failures, recovers after 60s
+const qualys = new QualysConnector({
+  ...config,
+  circuitBreaker: {
+    failureThreshold: 5,
+    recoveryTimeMs: 60000,
+  },
+})
+```
+### Rate Limiting
+```typescript
+const qualys = new QualysConnector({
+  ...config,
+  rateLimit: {
+    maxRequests: 100,
+    windowMs: 60000, // 100 req/min
+  },
+})
+```
+### Retry with Backoff
+```typescript
+const qualys = new QualysConnector({
+  ...config,
+  retry: {
+    maxRetries: 3,
+    initialDelayMs: 1000,
+    backoffMultiplier: 2,
+  },
+})
+```
+### Caching
+```typescript
+const qualys = new QualysConnector({
+  ...config,
+  cache: {
+    enabled: true,
+    ttlMs: 300000, // 5 minutes
+    maxSize: 1000,
+  },
+})
+```
+---
+## Normalization
+```typescript
+import { normalizationEngine } from '@skill-mine/complyment-connectors-sdk'
+// Normalize across multiple connectors
+const result = normalizationEngine.normalizeVulnerabilities([
+  { connector: 'qualys', data: qualysVulns, mapper: qualysMapper },
+  { connector: 'sentinelone', data: s1Threats, mapper: s1Mapper },
+])
+// Deduplicated by CVE, highest severity wins
+console.log(result.data)    // NormalizedVulnerability[]
+console.log(result.sources) // ['qualys', 'sentinelone']
+// Severity stats
+const stats = normalizationEngine.getSeverityStats(result.data)
+// { critical: 3, high: 7, medium: 12, low: 5, info: 2 }
+```
+---
+## Semantic Search
+```typescript
+import { semanticSearch } from '@skill-mine/complyment-connectors-sdk'
+// Index connector data
+semanticSearch.indexVulnerabilities(qualysVulns)
+semanticSearch.indexThreats(s1Threats)
+semanticSearch.indexAssets(qualysAssets)
+// Natural language queries
+const results = await semanticSearch.search('critical ransomware on windows server')
+const threats = await semanticSearch.findCriticalThreats()
+const vulns = await semanticSearch.findVulnerableAssets('web-server-01')
+```
+---
+## Audit Logging
+```typescript
+import { auditLogger } from '@skill-mine/complyment-connectors-sdk'
+auditLogger.logSuccess('data.fetch', 'qualys', { count: 42 }, 320)
+auditLogger.logFailure('auth.login', 'sentinelone', 'Invalid token')
+const stats = auditLogger.getStats('qualys')
+// { total: 100, success: 95, failure: 5, successRate: '95.00%' }
+// Export for compliance
+const csv = auditLogger.exportAsCsv()
+const json = auditLogger.exportAsJson()
+```
+---
+## Environment Variables
+```bash
+# Qualys
+COMPLYMENT_QUALYS_BASE_URL=https://qualysapi.qualys.com
+COMPLYMENT_QUALYS_USERNAME=your_username
+COMPLYMENT_QUALYS_PASSWORD=your_password
+# SentinelOne
+COMPLYMENT_SENTINELONE_BASE_URL=https://your-instance.sentinelone.net
+COMPLYMENT_SENTINELONE_API_TOKEN=your_api_token
+# Jira
+COMPLYMENT_JIRA_BASE_URL=https://your-org.atlassian.net
+COMPLYMENT_JIRA_EMAIL=your@email.com
+COMPLYMENT_JIRA_API_TOKEN=your_api_token
+# ManageEngine
+COMPLYMENT_MANAGEENGINE_BASE_URL=https://your-manageengine
+COMPLYMENT_MANAGEENGINE_CLIENT_ID=your_client_id
+COMPLYMENT_MANAGEENGINE_CLIENT_SECRET=your_client_secret
+COMPLYMENT_MANAGEENGINE_REFRESH_TOKEN=your_refresh_token
+```
+---
+## Built Output
+```
+dist/
+├── index.js      163 KB  (CJS - Node.js)
+├── index.mjs     159 KB  (ESM - Bundlers)
+├── index.d.ts     74 KB  (TypeScript)
+└── index.d.mts    74 KB  (TypeScript ESM)
+```
+---
+## Architecture
+```
+@skill-mine/complyment-connectors-sdk
+├── Connectors        (Qualys, SentinelOne, Checkpoint, ManageEngine, Jira, Zoho)
+├── Core              (BaseConnector, Registry, Types, Errors)
+├── Middleware        (CircuitBreaker, RateLimiter, RetryHandler, CacheLayer)
+├── Telemetry         (Logger, OpenTelemetry Tracer)
+├── Normalization     (Cross-connector unified schemas)
+├── Audit             (Compliance audit logging)
+├── Streaming         (Paginated streaming, real-time polling)
+├── Secrets           (Vault + Env based credential management)
+├── Webhook           (Inbound webhook processing with HMAC verification)
+└── AI
+    ├── MCP           (Model Context Protocol server)
+    ├── LangChain     (LangChain tool adapters)
+    ├── Vercel AI     (Vercel AI SDK tool adapters)
+    ├── OpenAI Agents (OpenAI Agents SDK adapters)
+    ├── HITL          (Human-in-the-loop approval system)
+    ├── Orchestration (Multi-agent workflow orchestration)
+    ├── Semantic      (TF-IDF semantic search on security data)
+    └── Workflows     (Pre-built security automation workflows)
+```
+---
+## Tech Stack
+- **TypeScript 5.x** strict mode
+- **tsup** — ESM + CJS dual build
+- **axios** — HTTP client
+- **zod** — Runtime schema validation
+---
+## Author
+**Immanuvel** — Backend Developer, Skill-Mine Technology Consulting
+Built as internal tooling for the Complyment compliance platform serving 50+ enterprise clients.
+---
+## License
+MIT