@skillsmith/core 0.1.2 → 2.0.0

package/dist/src/security/rate-limiter/types.d.ts

@@ -0,0 +1,104 @@
+/**
+ * Rate Limiter Types - SMI-730, SMI-1013, SMI-1189
+ *
+ * Type definitions for rate limiting functionality.
+ */
+/**
+ * Rate limit metrics for monitoring and alerting
+ */
+export interface RateLimitMetrics {
+    /** Number of allowed requests */
+    allowed: number;
+    /** Number of blocked requests */
+    blocked: number;
+    /** Number of errors (storage failures, etc.) */
+    errors: number;
+    /** Last time metrics were reset */
+    lastReset: Date;
+    /** Last time metrics were updated */
+    lastUpdated: Date;
+}
+/**
+ * Rate limit configuration
+ */
+export interface RateLimitConfig {
+    /** Maximum tokens in bucket (burst capacity) */
+    maxTokens: number;
+    /** Tokens refilled per second */
+    refillRate: number;
+    /** Window duration in milliseconds (for cleanup) */
+    windowMs: number;
+    /** Key prefix for storage */
+    keyPrefix?: string;
+    /** Enable debug logging */
+    debug?: boolean;
+    /** Callback when rate limit is exceeded */
+    onLimitExceeded?: (key: string, metrics: RateLimitMetrics) => void;
+    /** Fail mode on storage errors: 'open' allows requests, 'closed' denies them (default: 'open') */
+    failMode?: 'open' | 'closed';
+    /** Enable request queuing when rate limited (SMI-1013, default: false) */
+    enableQueue?: boolean;
+    /** Maximum time to wait in queue in milliseconds (SMI-1013, default: 30000) */
+    queueTimeoutMs?: number;
+    /** Maximum number of requests that can wait in queue (SMI-1013, default: 100) */
+    maxQueueSize?: number;
+}
+/**
+ * Token bucket state
+ */
+export interface TokenBucket {
+    /** Current number of tokens */
+    tokens: number;
+    /** Last refill timestamp */
+    lastRefill: number;
+    /** First request timestamp (for window tracking) */
+    firstRequest: number;
+}
+/**
+ * Rate limit result
+ */
+export interface RateLimitResult {
+    /** Whether the request is allowed */
+    allowed: boolean;
+    /** Remaining tokens */
+    remaining: number;
+    /** Total tokens in bucket */
+    limit: number;
+    /** Milliseconds until bucket refills */
+    retryAfterMs?: number;
+    /** When the limit resets (ISO timestamp) */
+    resetAt?: string;
+    /** Current metrics for this key (optional) */
+    metrics?: RateLimitMetrics;
+    /** Whether the request waited in queue (SMI-1013) */
+    queued?: boolean;
+    /** Time spent waiting in queue in milliseconds (SMI-1013) */
+    queueWaitMs?: number;
+}
+/**
+ * Queued request waiting for a token (SMI-1013)
+ */
+export interface QueuedRequest {
+    /** Unique identifier for this request */
+    id: string;
+    /** Resolve function to signal the request can proceed */
+    resolve: (result: RateLimitResult) => void;
+    /** Reject function for timeout */
+    reject: (error: Error) => void;
+    /** Token cost for this request */
+    cost: number;
+    /** Timestamp when request was queued */
+    queuedAt: number;
+    /** Timeout handle */
+    timeoutHandle: NodeJS.Timeout;
+}
+/**
+ * Storage interface for rate limit data
+ */
+export interface RateLimitStorage {
+    get(key: string): Promise<TokenBucket | null>;
+    set(key: string, value: TokenBucket, ttlMs: number): Promise<void>;
+    delete(key: string): Promise<void>;
+    clear?(): Promise<void>;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/src/security/rate-limiter/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/security/rate-limiter/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,iCAAiC;IACjC,OAAO,EAAE,MAAM,CAAA;IACf,iCAAiC;IACjC,OAAO,EAAE,MAAM,CAAA;IACf,gDAAgD;IAChD,MAAM,EAAE,MAAM,CAAA;IACd,mCAAmC;IACnC,SAAS,EAAE,IAAI,CAAA;IACf,qCAAqC;IACrC,WAAW,EAAE,IAAI,CAAA;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,gDAAgD;IAChD,SAAS,EAAE,MAAM,CAAA;IACjB,iCAAiC;IACjC,UAAU,EAAE,MAAM,CAAA;IAClB,oDAAoD;IACpD,QAAQ,EAAE,MAAM,CAAA;IAChB,6BAA6B;IAC7B,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,2BAA2B;IAC3B,KAAK,CAAC,EAAE,OAAO,CAAA;IACf,2CAA2C;IAC3C,eAAe,CAAC,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,EAAE,gBAAgB,KAAK,IAAI,CAAA;IAClE,kGAAkG;IAClG,QAAQ,CAAC,EAAE,MAAM,GAAG,QAAQ,CAAA;IAC5B,0EAA0E;IAC1E,WAAW,CAAC,EAAE,OAAO,CAAA;IACrB,+EAA+E;IAC/E,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,iFAAiF;IACjF,YAAY,CAAC,EAAE,MAAM,CAAA;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,+BAA+B;IAC/B,MAAM,EAAE,MAAM,CAAA;IACd,4BAA4B;IAC5B,UAAU,EAAE,MAAM,CAAA;IAClB,oDAAoD;IACpD,YAAY,EAAE,MAAM,CAAA;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,qCAAqC;IACrC,OAAO,EAAE,OAAO,CAAA;IAChB,uBAAuB;IACvB,SAAS,EAAE,MAAM,CAAA;IACjB,6BAA6B;IAC7B,KAAK,EAAE,MAAM,CAAA;IACb,wCAAwC;IACxC,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,4CAA4C;IAC5C,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,8CAA8C;IAC9C,OAAO,CAAC,EAAE,gBAAgB,CAAA;IAC1B,qDAAqD;IACrD,MAAM,CAAC,EAAE,OAAO,CAAA;IAChB,6DAA6D;IAC7D,WAAW,CAAC,EAAE,MAAM,CAAA;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,yCAAyC;IACzC,EAAE,EAAE,MAAM,CAAA;IACV,yDAAyD;IACzD,OAAO,EAAE,CAAC,MAAM,EAAE,eAAe,KAAK,IAAI,CAAA;IAC1C,kCAAkC;IAClC,MAAM,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAA;IAC9B,kCAAkC;IAClC,IAAI,EAAE,MAAM,CAAA;IACZ,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAA;IAChB,qBAAqB;IACrB,aAAa,EAAE,MAAM,CAAC,OAAO,CAAA;CAC9B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAA;IAC7C,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAClE,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAClC,KAAK,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,CAAA;CACxB"}

package/dist/src/security/rate-limiter/types.js

@@ -0,0 +1,7 @@
+/**
+ * Rate Limiter Types - SMI-730, SMI-1013, SMI-1189
+ *
+ * Type definitions for rate limiting functionality.
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/src/security/rate-limiter/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../../src/security/rate-limiter/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG"}

package/dist/src/security/{scanner.d.ts → scanner/SecurityScanner.d.ts}

@@ -1,66 +1,9 @@
 /**
- * SMI-587: Security Scanner
- * SMI-685: Enhanced security scanning with severity scoring
- * SMI-882: ReDoS protection with input length limits and safe regex matching
- * Security scanning for skill content with advanced pattern detection
+ * Security Scanner - SMI-587, SMI-685, SMI-882, SMI-1189
+ *
+ * Security scanning for skill content with advanced pattern detection.
  */
-/**
- * Types of security findings that can be detected
- */
-export type SecurityFindingType = 'url' | 'sensitive_path' | 'jailbreak' | 'suspicious_pattern' | 'social_engineering' | 'prompt_leaking' | 'data_exfiltration' | 'privilege_escalation';
-/**
- * Severity levels for security findings
- */
-export type SecuritySeverity = 'low' | 'medium' | 'high' | 'critical';
-/**
- * Individual security finding from a scan
- */
-export interface SecurityFinding {
-    type: SecurityFindingType;
-    severity: SecuritySeverity;
-    message: string;
-    location?: string;
-    lineNumber?: number;
-    /** Category for grouping related findings */
-    category?: string;
-}
-/**
- * Risk score breakdown by category
- */
-export interface RiskScoreBreakdown {
-    jailbreak: number;
-    socialEngineering: number;
-    promptLeaking: number;
-    dataExfiltration: number;
-    privilegeEscalation: number;
-    suspiciousCode: number;
-    sensitivePaths: number;
-    externalUrls: number;
-}
-/**
- * Comprehensive scan report with risk scoring
- */
-export interface ScanReport {
-    skillId: string;
-    passed: boolean;
-    findings: SecurityFinding[];
-    scannedAt: Date;
-    scanDurationMs: number;
-    /** Overall risk score from 0-100 (0 = safe, 100 = extremely dangerous) */
-    riskScore: number;
-    /** Breakdown of risk score by category */
-    riskBreakdown: RiskScoreBreakdown;
-}
-/**
- * Configuration options for the security scanner
- */
-export interface ScannerOptions {
-    allowedDomains?: string[];
-    blockedPatterns?: RegExp[];
-    maxContentLength?: number;
-    /** Risk score threshold for failing a scan (default: 40) */
-    riskThreshold?: number;
-}
+import type { SecurityFinding, ScanReport, ScannerOptions, RiskScoreBreakdown } from './types.js';
 export declare class SecurityScanner {
     private allowedDomains;
     private blockedPatterns;
@@ -148,4 +91,4 @@ export declare class SecurityScanner {
     addBlockedPattern(pattern: RegExp): void;
 }
 export default SecurityScanner;
-//# sourceMappingURL=scanner.d.ts.map
+//# sourceMappingURL=SecurityScanner.d.ts.map

package/dist/src/security/scanner/SecurityScanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SecurityScanner.d.ts","sourceRoot":"","sources":["../../../../src/security/scanner/SecurityScanner.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,UAAU,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAA;AAcjG,qBAAa,eAAe;IAC1B,OAAO,CAAC,cAAc,CAAa;IACnC,OAAO,CAAC,eAAe,CAAU;IACjC,OAAO,CAAC,gBAAgB,CAAQ;IAChC,OAAO,CAAC,aAAa,CAAQ;gBAEjB,OAAO,GAAE,cAAmB;IAOxC;;OAEG;IACH,OAAO,CAAC,WAAW;IAenB;;OAEG;IACH,OAAO,CAAC,eAAe;IAcvB;;OAEG;IACH,OAAO,CAAC,QAAQ;IAmBhB;;;OAGG;IACH,OAAO,CAAC,kBAAkB;IAuB1B;;;OAGG;IACH,OAAO,CAAC,qBAAqB;IAwB7B;;;OAGG;IACH,OAAO,CAAC,sBAAsB;IAwC9B;;;;OAIG;IACH,OAAO,CAAC,qBAAqB;IAyB7B;;;;OAIG;IACH,OAAO,CAAC,iBAAiB;IAyBzB;;;;OAIG;IACH,OAAO,CAAC,oBAAoB;IAyB5B;;;;OAIG;IACH,OAAO,CAAC,uBAAuB;IAyB/B;;;;;OAKG;IACH,kBAAkB,CAAC,QAAQ,EAAE,eAAe,EAAE,GAAG;QAC/C,KAAK,EAAE,MAAM,CAAA;QACb,SAAS,EAAE,kBAAkB,CAAA;KAC9B;IA0ED;;;OAGG;IACH,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,UAAU;IA8ClD;;;OAGG;IACH,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO;IASpC;;OAEG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAItC;;OAEG;IACH,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;CAGzC;AAED,eAAe,eAAe,CAAA"}

package/dist/src/security/{scanner.js → scanner/SecurityScanner.js}

@@ -1,207 +1,11 @@
 /**
- * SMI-587: Security Scanner
- * SMI-685: Enhanced security scanning with severity scoring
- * SMI-882: ReDoS protection with input length limits and safe regex matching
- * Security scanning for skill content with advanced pattern detection
- */
-// Default allowed domains
-const DEFAULT_ALLOWED_DOMAINS = [
-    'github.com',
-    'githubusercontent.com',
-    'raw.githubusercontent.com',
-    'npmjs.com',
-    'npmjs.org',
-    'docs.anthropic.com',
-    'anthropic.com',
-    'claude.ai',
-    'docs.github.com',
-    'developer.mozilla.org',
-    'nodejs.org',
-    'typescriptlang.org',
-];
-// Sensitive file path patterns
-const SENSITIVE_PATH_PATTERNS = [
-    /\.env/i,
-    /credentials/i,
-    /secrets?/i,
-    /\.pem$/i,
-    /\.key$/i,
-    /\.crt$/i,
-    /password/i,
-    /api[_-]?key/i,
-    /auth[_-]?token/i,
-    /~\/\.ssh/i,
-    /~\/\.aws/i,
-    /~\/\.config/i,
-];
-// Jailbreak attempt patterns
-const JAILBREAK_PATTERNS = [
-    /ignore\s+(all\s+)?(previous|prior|above)\s+(instructions?|prompts?|rules?)/i,
-    /disregard\s+(all\s+)?(previous|prior|your)\s+(instructions?|programming)/i,
-    /developer\s+mode/i,
-    /\bDAN\b/,
-    /do\s+anything\s+now/i,
-    /jailbreak/i,
-    /bypass\s+(all\s+)?(restrictions?|filters?|safety)/i,
-    /pretend\s+(you\s+)?(are|have)\s+no\s+(restrictions?|limits?)/i,
-    /act\s+as\s+(if\s+)?you\s+(have\s+)?no\s+ethics/i,
-    /you\s+are\s+now\s+(free|unrestricted|unfiltered)/i,
-    /ignore\s+your\s+(safety|ethical)\s+(guidelines?|rules?)/i,
-    /hypothetical\s+scenario\s+where\s+you\s+can/i,
-];
-// Suspicious patterns that might indicate malicious intent
-const SUSPICIOUS_PATTERNS = [
-    /eval\s*\(/i,
-    /exec\s*\(/i,
-    /child_process/i,
-    /\$\(\s*[`'"]/i, // Command substitution
-    /base64\s*\.\s*decode/i,
-    /from\s+base64\s+import/i,
-    /subprocess\s*\.\s*(run|call|Popen)/i,
-    /os\s*\.\s*(system|popen|exec)/i,
-    /\brm\s+-rf\b/i,
-    /curl\s+.*\|\s*(bash|sh)/i, // Curl pipe to shell
-    /wget\s+.*\|\s*(bash|sh)/i,
-];
-// SMI-685: Social engineering attempt patterns
-const SOCIAL_ENGINEERING_PATTERNS = [
-    /pretend\s+(to\s+be|you\s+are|that\s+you)/i,
-    /roleplay\s+as/i,
-    /you\s+are\s+now\s+(?!free|unrestricted)/i, // Exclude jailbreak patterns
-    /act\s+as\s+(if\s+you\s+were|though\s+you\s+are)/i,
-    /imagine\s+you\s+are/i,
-    /for\s+the\s+purposes?\s+of\s+this/i,
-    /let'?s?\s+say\s+you\s+are/i,
-    /assume\s+the\s+role\s+of/i,
-    /from\s+now\s+on\s+you\s+are/i,
-    /i\s+want\s+you\s+to\s+act\s+as/i,
-    /please\s+behave\s+as\s+if/i,
-    /can\s+you\s+pretend/i,
-];
-// SMI-685: Prompt leaking attempt patterns
-const PROMPT_LEAKING_PATTERNS = [
-    /show\s+(me\s+)?your\s+(system\s+)?(instructions?|prompt)/i,
-    /what\s+are\s+your\s+(\w+\s+)?rules/i,
-    /reveal\s+your\s+(system\s+)?prompt/i,
-    /display\s+your\s+(initial\s+)?instructions?/i,
-    /output\s+your\s+(system\s+)?prompt/i,
-    /print\s+your\s+(hidden\s+)?instructions?/i,
-    /tell\s+me\s+your\s+(secret\s+)?instructions?/i,
-    /what\s+(were|are)\s+you\s+(told|instructed)\s+to\s+do/i,
-    /repeat\s+(back\s+)?your\s+(\w+\s+)?prompt/i,
-    /what\s+is\s+your\s+(original\s+)?programming/i,
-    /dump\s+(your\s+)?system\s+(prompt|instructions?)/i,
-    /list\s+your\s+(hidden\s+)?directives?/i,
-    /what\s+(constraints?|limitations?)\s+do\s+you\s+have/i,
-    /echo\s+(back\s+)?your\s+(initial\s+)?prompt/i,
-];
-// SMI-685: Data exfiltration patterns
-const DATA_EXFILTRATION_PATTERNS = [
-    /btoa\s*\(/i, // Base64 encode in JS
-    /atob\s*\(/i, // Base64 decode in JS
-    /Buffer\.from\s*\([^)]*,\s*['"]base64['"]/i,
-    /\.toString\s*\(\s*['"]base64['"]\s*\)/i,
-    /encodeURIComponent\s*\(/i,
-    /fetch\s*\(\s*['"`][^'"`]*\?.*=/i, // Fetch with query params
-    /XMLHttpRequest/i,
-    /navigator\.sendBeacon/i,
-    /\.upload\s*\(/i,
-    /formData\.append/i,
-    /new\s+FormData/i,
-    /multipart\/form-data/i,
-    /webhook\s*[=:]/i,
-    /exfil/i,
-    /data\s*:\s*['"]/i, // Data URLs
-    /\.writeFile.*https?:\/\//i,
-    /send\s+.*(to|the)\s+(external|remote)/i,
-    /upload\s+.*(to|the)\s+(server|cloud|remote)/i,
-    /post\s+data\s+to/i,
-    /to\s+external\s+(api|server|endpoint)/i,
-];
-// SMI-685: Privilege escalation patterns
-const PRIVILEGE_ESCALATION_PATTERNS = [
-    /sudo\s+.*(-S|--stdin)/i, // sudo with password from stdin
-    /echo\s+.*\|\s*sudo/i, // Echo password to sudo
-    /sudo\s+-S/i,
-    /\bchmod\s+[0-7]*[4-7][0-7][0-7]\b/i, // chmod with setuid/setgid
-    /\bchmod\s+\+s\b/i, // chmod setuid
-    /\bchmod\s+777\b/i, // World writable
-    /\bchmod\s+666\b/i, // World readable/writable
-    /\bchown\s+root/i,
-    /\bchgrp\s+root/i,
-    /visudo/i,
-    /\/etc\/sudoers/i,
-    /NOPASSWD/i,
-    /setuid/i,
-    /setgid/i,
-    /capability\s+cap_/i,
-    /escalat(e|ion)/i,
-    /privilege[ds]?\s+(elevat|escal)/i,
-    /run\s+.*as\s+root/i,
-    /(run|execute)\s+as\s+(root|admin)/i,
-    /admin(istrator)?\s+access/i,
-    /root\s+(access|user)/i,
-    /as\s+root\s+user/i,
-    /su\s+-\s+root/i,
-    /become\s+root/i,
-];
-/**
- * Severity weights for risk score calculation
- */
-const SEVERITY_WEIGHTS = {
-    low: 5,
-    medium: 15,
-    high: 30,
-    critical: 50,
-};
-/**
- * Category weights for risk score calculation
- */
-const CATEGORY_WEIGHTS = {
-    jailbreak: 2.0,
-    social_engineering: 1.5,
-    prompt_leaking: 1.8,
-    data_exfiltration: 1.7,
-    privilege_escalation: 1.9,
-    suspicious_pattern: 1.3,
-    sensitive_path: 1.2,
-    url: 0.8,
-};
-/**
- * SMI-882: ReDoS Protection Constants
- * Maximum line length to process with regex patterns.
- * Lines exceeding this limit are truncated before regex matching
- * to prevent catastrophic backtracking attacks.
- */
-const MAX_LINE_LENGTH_FOR_REGEX = 10000;
-/**
- * SMI-882: Safe regex test with length limit
- * Applies input length limit before regex matching to prevent ReDoS attacks.
- *
- * @param pattern - Regex pattern to test
- * @param input - Input string to test against
- * @param maxLength - Maximum input length (default: MAX_LINE_LENGTH_FOR_REGEX)
- * @returns Match result or null if input is too long/no match
- */
-function safeRegexTest(pattern, input, maxLength = MAX_LINE_LENGTH_FOR_REGEX) {
-    // Truncate input if it exceeds max length to prevent ReDoS
-    const safeInput = input.length > maxLength ? input.slice(0, maxLength) : input;
-    return safeInput.match(pattern);
-}
-/**
- * SMI-882: Check if pattern matches safely
- * Returns boolean instead of match array for simple tests.
+ * Security Scanner - SMI-587, SMI-685, SMI-882, SMI-1189
  *
- * @param pattern - Regex pattern to test
- * @param input - Input string to test against
- * @param maxLength - Maximum input length (default: MAX_LINE_LENGTH_FOR_REGEX)
- * @returns True if pattern matches (within safe input limits)
+ * Security scanning for skill content with advanced pattern detection.
  */
-function safeRegexCheck(pattern, input, maxLength = MAX_LINE_LENGTH_FOR_REGEX) {
-    // Truncate input if it exceeds max length to prevent ReDoS
-    const safeInput = input.length > maxLength ? input.slice(0, maxLength) : input;
-    return pattern.test(safeInput);
-}
+import { DEFAULT_ALLOWED_DOMAINS, SENSITIVE_PATH_PATTERNS, JAILBREAK_PATTERNS, SUSPICIOUS_PATTERNS, SOCIAL_ENGINEERING_PATTERNS, PROMPT_LEAKING_PATTERNS, DATA_EXFILTRATION_PATTERNS, PRIVILEGE_ESCALATION_PATTERNS, } from './patterns.js';
+import { SEVERITY_WEIGHTS, CATEGORY_WEIGHTS } from './weights.js';
+import { safeRegexTest, safeRegexCheck } from './regex-utils.js';
 export class SecurityScanner {
     allowedDomains;
     blockedPatterns;
@@ -596,4 +400,4 @@ export class SecurityScanner {
     }
 }
 export default SecurityScanner;
-//# sourceMappingURL=scanner.js.map
+//# sourceMappingURL=SecurityScanner.js.map

package/dist/src/security/scanner/SecurityScanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SecurityScanner.js","sourceRoot":"","sources":["../../../../src/security/scanner/SecurityScanner.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EACL,uBAAuB,EACvB,uBAAuB,EACvB,kBAAkB,EAClB,mBAAmB,EACnB,2BAA2B,EAC3B,uBAAuB,EACvB,0BAA0B,EAC1B,6BAA6B,GAC9B,MAAM,eAAe,CAAA;AACtB,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAA;AACjE,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAA;AAEhE,MAAM,OAAO,eAAe;IAClB,cAAc,CAAa;IAC3B,eAAe,CAAU;IACzB,gBAAgB,CAAQ;IACxB,aAAa,CAAQ;IAE7B,YAAY,UAA0B,EAAE;QACtC,IAAI,CAAC,cAAc,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,cAAc,IAAI,uBAAuB,CAAC,CAAA;QAChF,IAAI,CAAC,eAAe,GAAG,OAAO,CAAC,eAAe,IAAI,EAAE,CAAA;QACpD,IAAI,CAAC,gBAAgB,GAAG,OAAO,CAAC,gBAAgB,IAAI,SAAS,CAAA,CAAC,MAAM;QACpE,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,EAAE,CAAA;IAClD,CAAC;IAED;;OAEG;IACK,WAAW,CAAC,OAAe;QACjC,MAAM,UAAU,GAAG,4BAA4B,CAAA;QAC/C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QACjC,MAAM,OAAO,GAAyC,EAAE,CAAA;QAExD,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,IAAI,KAAK,CAAA;YACT,OAAO,CAAC,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBAChD,OAAO,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,GAAG,CAAC,EAAE,CAAC,CAAA;YAClD,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,OAAO,CAAA;IAChB,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,GAAW;QACjC,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAA;YAC3B,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAA;YAE9C,uCAAuC;YACvC,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,IAAI,CACzC,CAAC,MAAM,EAAE,EAAE,CAAC,QAAQ,KAAK,MAAM,IAAI,QAAQ,CAAC,QAAQ,CAAC,GAAG,GAAG,MAAM,CAAC,CACnE,CAAA;QACH,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAA;QACd,CAAC;IACH,CAAC;IAED;;OAEG;IACK,QAAQ,CAAC,OAAe;QAC9B,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,IAAI,GAAG,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAA;QAEtC,KAAK,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,IAAI,EAAE,CAAC;YACjC,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC/B,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,KAAK;oBACX,QAAQ,EAAE,QAAQ;oBAClB,OAAO,EAAE,kCAAkC,GAAG,EAAE;oBAChD,QAAQ,EAAE,GAAG;oBACb,UAAU,EAAE,IAAI;iBACjB,CAAC,CAAA;YACJ,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;OAGG;IACK,kBAAkB,CAAC,OAAe;QACxC,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,KAAK,MAAM,OAAO,IAAI,uBAAuB,EAAE,CAAC;gBAC9C,kDAAkD;gBAClD,IAAI,cAAc,CAAC,OAAO,EAAE,IAAI,CAAC,EAAE,CAAC;oBAClC,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,gBAAgB;wBACtB,QAAQ,EAAE,MAAM;wBAChB,OAAO,EAAE,4CAA4C,OAAO,CAAC,MAAM,EAAE;wBACrE,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;qBACtB,CAAC,CAAA;oBACF,MAAK,CAAC,uBAAuB;gBAC/B,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;OAGG;IACK,qBAAqB,CAAC,OAAe;QAC3C,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,KAAK,MAAM,OAAO,IAAI,kBAAkB,EAAE,CAAC;gBACzC,iDAAiD;gBACjD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;gBAC1C,IAAI,KAAK,EAAE,CAAC;oBACV,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,WAAW;wBACjB,QAAQ,EAAE,UAAU;wBACpB,OAAO,EAAE,0CAA0C,KAAK,CAAC,CAAC,CAAC,GAAG;wBAC9D,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;qBACtB,CAAC,CAAA;oBACF,MAAK,CAAC,uBAAuB;gBAC/B,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;OAGG;IACK,sBAAsB,CAAC,OAAe;QAC5C,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,KAAK,MAAM,OAAO,IAAI,mBAAmB,EAAE,CAAC;gBAC1C,iDAAiD;gBACjD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;gBAC1C,IAAI,KAAK,EAAE,CAAC;oBACV,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,oBAAoB;wBAC1B,QAAQ,EAAE,QAAQ;wBAClB,OAAO,EAAE,iCAAiC,KAAK,CAAC,CAAC,CAAC,GAAG;wBACrD,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;qBACtB,CAAC,CAAA;oBACF,MAAK,CAAC,uBAAuB;gBAC/B,CAAC;YACH,CAAC;YAED,gCAAgC;YAChC,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;gBAC3C,iDAAiD;gBACjD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;gBAC1C,IAAI,KAAK,EAAE,CAAC;oBACV,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,oBAAoB;wBAC1B,QAAQ,EAAE,MAAM;wBAChB,OAAO,EAAE,8BAA8B,KAAK,CAAC,CAAC,CAAC,GAAG;wBAClD,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;qBACtB,CAAC,CAAA;oBACF,MAAK;gBACP,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;;OAIG;IACK,qBAAqB,CAAC,OAAe;QAC3C,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,KAAK,MAAM,OAAO,IAAI,2BAA2B,EAAE,CAAC;gBAClD,iDAAiD;gBACjD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;gBAC1C,IAAI,KAAK,EAAE,CAAC;oBACV,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,oBAAoB;wBAC1B,QAAQ,EAAE,MAAM;wBAChB,OAAO,EAAE,yCAAyC,KAAK,CAAC,CAAC,CAAC,GAAG;wBAC7D,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;wBACrB,QAAQ,EAAE,oBAAoB;qBAC/B,CAAC,CAAA;oBACF,MAAK,CAAC,uBAAuB;gBAC/B,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;;OAIG;IACK,iBAAiB,CAAC,OAAe;QACvC,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,KAAK,MAAM,OAAO,IAAI,uBAAuB,EAAE,CAAC;gBAC9C,iDAAiD;gBACjD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;gBAC1C,IAAI,KAAK,EAAE,CAAC;oBACV,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,gBAAgB;wBACtB,QAAQ,EAAE,UAAU;wBACpB,OAAO,EAAE,qCAAqC,KAAK,CAAC,CAAC,CAAC,GAAG;wBACzD,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;wBACrB,QAAQ,EAAE,gBAAgB;qBAC3B,CAAC,CAAA;oBACF,MAAK,CAAC,uBAAuB;gBAC/B,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;;OAIG;IACK,oBAAoB,CAAC,OAAe;QAC1C,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,KAAK,MAAM,OAAO,IAAI,0BAA0B,EAAE,CAAC;gBACjD,iDAAiD;gBACjD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;gBAC1C,IAAI,KAAK,EAAE,CAAC;oBACV,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,mBAAmB;wBACzB,QAAQ,EAAE,MAAM;wBAChB,OAAO,EAAE,yCAAyC,KAAK,CAAC,CAAC,CAAC,GAAG;wBAC7D,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;wBACrB,QAAQ,EAAE,mBAAmB;qBAC9B,CAAC,CAAA;oBACF,MAAK,CAAC,uBAAuB;gBAC/B,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;;OAIG;IACK,uBAAuB,CAAC,OAAe;QAC7C,MAAM,QAAQ,GAAsB,EAAE,CAAA;QACtC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;YAC5B,KAAK,MAAM,OAAO,IAAI,6BAA6B,EAAE,CAAC;gBACpD,iDAAiD;gBACjD,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;gBAC1C,IAAI,KAAK,EAAE,CAAC;oBACV,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,sBAAsB;wBAC5B,QAAQ,EAAE,UAAU;wBACpB,OAAO,EAAE,2CAA2C,KAAK,CAAC,CAAC,CAAC,GAAG;wBAC/D,QAAQ,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBACnC,UAAU,EAAE,KAAK,GAAG,CAAC;wBACrB,QAAQ,EAAE,sBAAsB;qBACjC,CAAC,CAAA;oBACF,MAAK,CAAC,uBAAuB;gBAC/B,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED;;;;;OAKG;IACH,kBAAkB,CAAC,QAA2B;QAI5C,MAAM,SAAS,GAAuB;YACpC,SAAS,EAAE,CAAC;YACZ,iBAAiB,EAAE,CAAC;YACpB,aAAa,EAAE,CAAC;YAChB,gBAAgB,EAAE,CAAC;YACnB,mBAAmB,EAAE,CAAC;YACtB,cAAc,EAAE,CAAC;YACjB,cAAc,EAAE,CAAC;YACjB,YAAY,EAAE,CAAC;SAChB,CAAA;QAED,mCAAmC;QACnC,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,MAAM,cAAc,GAAG,gBAAgB,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAA;YACzD,MAAM,cAAc,GAAG,gBAAgB,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,GAAG,CAAA;YAC5D,MAAM,KAAK,GAAG,cAAc,GAAG,cAAc,CAAA;YAE7C,QAAQ,OAAO,CAAC,IAAI,EAAE,CAAC;gBACrB,KAAK,WAAW;oBACd,SAAS,CAAC,SAAS,IAAI,KAAK,CAAA;oBAC5B,MAAK;gBACP,KAAK,oBAAoB;oBACvB,SAAS,CAAC,iBAAiB,IAAI,KAAK,CAAA;oBACpC,MAAK;gBACP,KAAK,gBAAgB;oBACnB,SAAS,CAAC,aAAa,IAAI,KAAK,CAAA;oBAChC,MAAK;gBACP,KAAK,mBAAmB;oBACtB,SAAS,CAAC,gBAAgB,IAAI,KAAK,CAAA;oBACnC,MAAK;gBACP,KAAK,sBAAsB;oBACzB,SAAS,CAAC,mBAAmB,IAAI,KAAK,CAAA;oBACtC,MAAK;gBACP,KAAK,oBAAoB;oBACvB,SAAS,CAAC,cAAc,IAAI,KAAK,CAAA;oBACjC,MAAK;gBACP,KAAK,gBAAgB;oBACnB,SAAS,CAAC,cAAc,IAAI,KAAK,CAAA;oBACjC,MAAK;gBACP,KAAK,KAAK;oBACR,SAAS,CAAC,YAAY,IAAI,KAAK,CAAA;oBAC/B,MAAK;YACT,CAAC;QACH,CAAC;QAED,2BAA2B;QAC3B,SAAS,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,SAAS,CAAC,CAAA;QACxD,SAAS,CAAC,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,iBAAiB,CAAC,CAAA;QACxE,SAAS,CAAC,aAAa,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,aAAa,CAAC,CAAA;QAChE,SAAS,CAAC,gBAAgB,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,gBAAgB,CAAC,CAAA;QACtE,SAAS,CAAC,mBAAmB,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,mBAAmB,CAAC,CAAA;QAC5E,SAAS,CAAC,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,cAAc,CAAC,CAAA;QAClE,SAAS,CAAC,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,cAAc,CAAC,CAAA;QAClE,SAAS,CAAC,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,YAAY,CAAC,CAAA;QAE9D,qDAAqD;QACrD,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CACpB,GAAG,EACH,IAAI,CAAC,KAAK,CACR,SAAS,CAAC,SAAS,GAAG,IAAI;YACxB,SAAS,CAAC,iBAAiB,GAAG,IAAI;YAClC,SAAS,CAAC,aAAa,GAAG,IAAI;YAC9B,SAAS,CAAC,gBAAgB,GAAG,IAAI;YACjC,SAAS,CAAC,mBAAmB,GAAG,IAAI;YACpC,SAAS,CAAC,cAAc,GAAG,GAAG;YAC9B,SAAS,CAAC,cAAc,GAAG,IAAI;YAC/B,SAAS,CAAC,YAAY,GAAG,IAAI,CAChC,CACF,CAAA;QAED,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,CAAA;IAC7B,CAAC;IAED;;;OAGG;IACH,IAAI,CAAC,OAAe,EAAE,OAAe;QACnC,MAAM,SAAS,GAAG,WAAW,CAAC,GAAG,EAAE,CAAA;QACnC,MAAM,QAAQ,GAAsB,EAAE,CAAA;QAEtC,uBAAuB;QACvB,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAC3C,QAAQ,CAAC,IAAI,CAAC;gBACZ,IAAI,EAAE,oBAAoB;gBAC1B,QAAQ,EAAE,KAAK;gBACf,OAAO,EAAE,mCAAmC,IAAI,CAAC,gBAAgB,SAAS;aAC3E,CAAC,CAAA;QACJ,CAAC;QAED,2BAA2B;QAC3B,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAA;QACxC,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC,CAAA;QAClD,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAC,CAAA;QACrD,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC,CAAA;QAEtD,yBAAyB;QACzB,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAC,CAAA;QACrD,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC,CAAA;QACjD,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC,CAAC,CAAA;QACpD,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,uBAAuB,CAAC,OAAO,CAAC,CAAC,CAAA;QAEvD,MAAM,OAAO,GAAG,WAAW,CAAC,GAAG,EAAE,CAAA;QAEjC,gCAAgC;QAChC,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS,EAAE,aAAa,EAAE,GAAG,IAAI,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAA;QAExF,gEAAgE;QAChE,MAAM,WAAW,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAA;QACnE,MAAM,OAAO,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAA;QAC3D,MAAM,gBAAgB,GAAG,SAAS,IAAI,IAAI,CAAC,aAAa,CAAA;QAExD,OAAO;YACL,OAAO;YACP,MAAM,EAAE,CAAC,WAAW,IAAI,CAAC,OAAO,IAAI,CAAC,gBAAgB;YACrD,QAAQ;YACR,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,cAAc,EAAE,OAAO,GAAG,SAAS;YACnC,SAAS;YACT,aAAa;SACd,CAAA;IACH,CAAC;IAED;;;OAGG;IACH,UAAU,CAAC,OAAe;QACxB,mCAAmC;QACnC,KAAK,MAAM,OAAO,IAAI,kBAAkB,EAAE,CAAC;YACzC,kDAAkD;YAClD,IAAI,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC;gBAAE,OAAO,KAAK,CAAA;QACpD,CAAC;QACD,OAAO,IAAI,CAAA;IACb,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,MAAc;QAC7B,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,CAAA;IAC/C,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,OAAe;QAC/B,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAA;IACpC,CAAC;CACF;AAED,eAAe,eAAe,CAAA"}

package/dist/src/security/scanner/index.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Security Scanner Module - SMI-587, SMI-685, SMI-882, SMI-1189
+ *
+ * Re-exports for security scanning functionality.
+ */
+export type { SecurityFindingType, SecuritySeverity, SecurityFinding, RiskScoreBreakdown, ScanReport, ScannerOptions, } from './types.js';
+export { DEFAULT_ALLOWED_DOMAINS, SENSITIVE_PATH_PATTERNS, JAILBREAK_PATTERNS, SUSPICIOUS_PATTERNS, SOCIAL_ENGINEERING_PATTERNS, PROMPT_LEAKING_PATTERNS, DATA_EXFILTRATION_PATTERNS, PRIVILEGE_ESCALATION_PATTERNS, } from './patterns.js';
+export { SEVERITY_WEIGHTS, CATEGORY_WEIGHTS } from './weights.js';
+export { MAX_LINE_LENGTH_FOR_REGEX, safeRegexTest, safeRegexCheck } from './regex-utils.js';
+export { SecurityScanner, default } from './SecurityScanner.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/src/security/scanner/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/security/scanner/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,YAAY,EACV,mBAAmB,EACnB,gBAAgB,EAChB,eAAe,EACf,kBAAkB,EAClB,UAAU,EACV,cAAc,GACf,MAAM,YAAY,CAAA;AAGnB,OAAO,EACL,uBAAuB,EACvB,uBAAuB,EACvB,kBAAkB,EAClB,mBAAmB,EACnB,2BAA2B,EAC3B,uBAAuB,EACvB,0BAA0B,EAC1B,6BAA6B,GAC9B,MAAM,eAAe,CAAA;AAGtB,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAA;AAGjE,OAAO,EAAE,yBAAyB,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAA;AAG3F,OAAO,EAAE,eAAe,EAAE,OAAO,EAAE,MAAM,sBAAsB,CAAA"}

package/dist/src/security/scanner/index.js

@@ -0,0 +1,14 @@
+/**
+ * Security Scanner Module - SMI-587, SMI-685, SMI-882, SMI-1189
+ *
+ * Re-exports for security scanning functionality.
+ */
+// Patterns (for testing/extending)
+export { DEFAULT_ALLOWED_DOMAINS, SENSITIVE_PATH_PATTERNS, JAILBREAK_PATTERNS, SUSPICIOUS_PATTERNS, SOCIAL_ENGINEERING_PATTERNS, PROMPT_LEAKING_PATTERNS, DATA_EXFILTRATION_PATTERNS, PRIVILEGE_ESCALATION_PATTERNS, } from './patterns.js';
+// Weights (for testing/extending)
+export { SEVERITY_WEIGHTS, CATEGORY_WEIGHTS } from './weights.js';
+// Regex utilities (for testing/extending)
+export { MAX_LINE_LENGTH_FOR_REGEX, safeRegexTest, safeRegexCheck } from './regex-utils.js';
+// Main class
+export { SecurityScanner, default } from './SecurityScanner.js';
+//# sourceMappingURL=index.js.map

package/dist/src/security/scanner/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/security/scanner/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAYH,mCAAmC;AACnC,OAAO,EACL,uBAAuB,EACvB,uBAAuB,EACvB,kBAAkB,EAClB,mBAAmB,EACnB,2BAA2B,EAC3B,uBAAuB,EACvB,0BAA0B,EAC1B,6BAA6B,GAC9B,MAAM,eAAe,CAAA;AAEtB,kCAAkC;AAClC,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAA;AAEjE,0CAA0C;AAC1C,OAAO,EAAE,yBAAyB,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAA;AAE3F,aAAa;AACb,OAAO,EAAE,eAAe,EAAE,OAAO,EAAE,MAAM,sBAAsB,CAAA"}

package/dist/src/security/scanner/patterns.d.ts

@@ -0,0 +1,14 @@
+/**
+ * Security Scanner Patterns - SMI-587, SMI-685, SMI-1189
+ *
+ * Pattern definitions for security scanning.
+ */
+export declare const DEFAULT_ALLOWED_DOMAINS: string[];
+export declare const SENSITIVE_PATH_PATTERNS: RegExp[];
+export declare const JAILBREAK_PATTERNS: RegExp[];
+export declare const SUSPICIOUS_PATTERNS: RegExp[];
+export declare const SOCIAL_ENGINEERING_PATTERNS: RegExp[];
+export declare const PROMPT_LEAKING_PATTERNS: RegExp[];
+export declare const DATA_EXFILTRATION_PATTERNS: RegExp[];
+export declare const PRIVILEGE_ESCALATION_PATTERNS: RegExp[];
+//# sourceMappingURL=patterns.d.ts.map

package/dist/src/security/scanner/patterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.d.ts","sourceRoot":"","sources":["../../../../src/security/scanner/patterns.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,eAAO,MAAM,uBAAuB,UAanC,CAAA;AAGD,eAAO,MAAM,uBAAuB,UAanC,CAAA;AAGD,eAAO,MAAM,kBAAkB,UAa9B,CAAA;AAGD,eAAO,MAAM,mBAAmB,UAY/B,CAAA;AAGD,eAAO,MAAM,2BAA2B,UAavC,CAAA;AAGD,eAAO,MAAM,uBAAuB,UAenC,CAAA;AAGD,eAAO,MAAM,0BAA0B,UAqBtC,CAAA;AAGD,eAAO,MAAM,6BAA6B,UAyBzC,CAAA"}

package/dist/src/security/scanner/patterns.js

@@ -0,0 +1,147 @@
+/**
+ * Security Scanner Patterns - SMI-587, SMI-685, SMI-1189
+ *
+ * Pattern definitions for security scanning.
+ */
+// Default allowed domains
+export const DEFAULT_ALLOWED_DOMAINS = [
+    'github.com',
+    'githubusercontent.com',
+    'raw.githubusercontent.com',
+    'npmjs.com',
+    'npmjs.org',
+    'docs.anthropic.com',
+    'anthropic.com',
+    'claude.ai',
+    'docs.github.com',
+    'developer.mozilla.org',
+    'nodejs.org',
+    'typescriptlang.org',
+];
+// Sensitive file path patterns
+export const SENSITIVE_PATH_PATTERNS = [
+    /\.env/i,
+    /credentials/i,
+    /secrets?/i,
+    /\.pem$/i,
+    /\.key$/i,
+    /\.crt$/i,
+    /password/i,
+    /api[_-]?key/i,
+    /auth[_-]?token/i,
+    /~\/\.ssh/i,
+    /~\/\.aws/i,
+    /~\/\.config/i,
+];
+// Jailbreak attempt patterns
+export const JAILBREAK_PATTERNS = [
+    /ignore\s+(all\s+)?(previous|prior|above)\s+(instructions?|prompts?|rules?)/i,
+    /disregard\s+(all\s+)?(previous|prior|your)\s+(instructions?|programming)/i,
+    /developer\s+mode/i,
+    /\bDAN\b/,
+    /do\s+anything\s+now/i,
+    /jailbreak/i,
+    /bypass\s+(all\s+)?(restrictions?|filters?|safety)/i,
+    /pretend\s+(you\s+)?(are|have)\s+no\s+(restrictions?|limits?)/i,
+    /act\s+as\s+(if\s+)?you\s+(have\s+)?no\s+ethics/i,
+    /you\s+are\s+now\s+(free|unrestricted|unfiltered)/i,
+    /ignore\s+your\s+(safety|ethical)\s+(guidelines?|rules?)/i,
+    /hypothetical\s+scenario\s+where\s+you\s+can/i,
+];
+// Suspicious patterns that might indicate malicious intent
+export const SUSPICIOUS_PATTERNS = [
+    /eval\s*\(/i,
+    /exec\s*\(/i,
+    /child_process/i,
+    /\$\(\s*[`'"]/i, // Command substitution
+    /base64\s*\.\s*decode/i,
+    /from\s+base64\s+import/i,
+    /subprocess\s*\.\s*(run|call|Popen)/i,
+    /os\s*\.\s*(system|popen|exec)/i,
+    /\brm\s+-rf\b/i,
+    /curl\s+.*\|\s*(bash|sh)/i, // Curl pipe to shell
+    /wget\s+.*\|\s*(bash|sh)/i,
+];
+// SMI-685: Social engineering attempt patterns
+export const SOCIAL_ENGINEERING_PATTERNS = [
+    /pretend\s+(to\s+be|you\s+are|that\s+you)/i,
+    /roleplay\s+as/i,
+    /you\s+are\s+now\s+(?!free|unrestricted)/i, // Exclude jailbreak patterns
+    /act\s+as\s+(if\s+you\s+were|though\s+you\s+are)/i,
+    /imagine\s+you\s+are/i,
+    /for\s+the\s+purposes?\s+of\s+this/i,
+    /let'?s?\s+say\s+you\s+are/i,
+    /assume\s+the\s+role\s+of/i,
+    /from\s+now\s+on\s+you\s+are/i,
+    /i\s+want\s+you\s+to\s+act\s+as/i,
+    /please\s+behave\s+as\s+if/i,
+    /can\s+you\s+pretend/i,
+];
+// SMI-685: Prompt leaking attempt patterns
+export const PROMPT_LEAKING_PATTERNS = [
+    /show\s+(me\s+)?your\s+(system\s+)?(instructions?|prompt)/i,
+    /what\s+are\s+your\s+(\w+\s+)?rules/i,
+    /reveal\s+your\s+(system\s+)?prompt/i,
+    /display\s+your\s+(initial\s+)?instructions?/i,
+    /output\s+your\s+(system\s+)?prompt/i,
+    /print\s+your\s+(hidden\s+)?instructions?/i,
+    /tell\s+me\s+your\s+(secret\s+)?instructions?/i,
+    /what\s+(were|are)\s+you\s+(told|instructed)\s+to\s+do/i,
+    /repeat\s+(back\s+)?your\s+(\w+\s+)?prompt/i,
+    /what\s+is\s+your\s+(original\s+)?programming/i,
+    /dump\s+(your\s+)?system\s+(prompt|instructions?)/i,
+    /list\s+your\s+(hidden\s+)?directives?/i,
+    /what\s+(constraints?|limitations?)\s+do\s+you\s+have/i,
+    /echo\s+(back\s+)?your\s+(initial\s+)?prompt/i,
+];
+// SMI-685: Data exfiltration patterns
+export const DATA_EXFILTRATION_PATTERNS = [
+    /btoa\s*\(/i, // Base64 encode in JS
+    /atob\s*\(/i, // Base64 decode in JS
+    /Buffer\.from\s*\([^)]*,\s*['"]base64['"]/i,
+    /\.toString\s*\(\s*['"]base64['"]\s*\)/i,
+    /encodeURIComponent\s*\(/i,
+    /fetch\s*\(\s*['"`][^'"`]*\?.*=/i, // Fetch with query params
+    /XMLHttpRequest/i,
+    /navigator\.sendBeacon/i,
+    /\.upload\s*\(/i,
+    /formData\.append/i,
+    /new\s+FormData/i,
+    /multipart\/form-data/i,
+    /webhook\s*[=:]/i,
+    /exfil/i,
+    /data\s*:\s*['"]/i, // Data URLs
+    /\.writeFile.*https?:\/\//i,
+    /send\s+.*(to|the)\s+(external|remote)/i,
+    /upload\s+.*(to|the)\s+(server|cloud|remote)/i,
+    /post\s+data\s+to/i,
+    /to\s+external\s+(api|server|endpoint)/i,
+];
+// SMI-685: Privilege escalation patterns
+export const PRIVILEGE_ESCALATION_PATTERNS = [
+    /sudo\s+.*(-S|--stdin)/i, // sudo with password from stdin
+    /echo\s+.*\|\s*sudo/i, // Echo password to sudo
+    /sudo\s+-S/i,
+    /\bchmod\s+[0-7]*[4-7][0-7][0-7]\b/i, // chmod with setuid/setgid
+    /\bchmod\s+\+s\b/i, // chmod setuid
+    /\bchmod\s+777\b/i, // World writable
+    /\bchmod\s+666\b/i, // World readable/writable
+    /\bchown\s+root/i,
+    /\bchgrp\s+root/i,
+    /visudo/i,
+    /\/etc\/sudoers/i,
+    /NOPASSWD/i,
+    /setuid/i,
+    /setgid/i,
+    /capability\s+cap_/i,
+    /escalat(e|ion)/i,
+    /privilege[ds]?\s+(elevat|escal)/i,
+    /run\s+.*as\s+root/i,
+    /(run|execute)\s+as\s+(root|admin)/i,
+    /admin(istrator)?\s+access/i,
+    /root\s+(access|user)/i,
+    /as\s+root\s+user/i,
+    /su\s+-\s+root/i,
+    /become\s+root/i,
+];
+//# sourceMappingURL=patterns.js.map

package/dist/src/security/scanner/patterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.js","sourceRoot":"","sources":["../../../../src/security/scanner/patterns.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,0BAA0B;AAC1B,MAAM,CAAC,MAAM,uBAAuB,GAAG;IACrC,YAAY;IACZ,uBAAuB;IACvB,2BAA2B;IAC3B,WAAW;IACX,WAAW;IACX,oBAAoB;IACpB,eAAe;IACf,WAAW;IACX,iBAAiB;IACjB,uBAAuB;IACvB,YAAY;IACZ,oBAAoB;CACrB,CAAA;AAED,+BAA+B;AAC/B,MAAM,CAAC,MAAM,uBAAuB,GAAG;IACrC,QAAQ;IACR,cAAc;IACd,WAAW;IACX,SAAS;IACT,SAAS;IACT,SAAS;IACT,WAAW;IACX,cAAc;IACd,iBAAiB;IACjB,WAAW;IACX,WAAW;IACX,cAAc;CACf,CAAA;AAED,6BAA6B;AAC7B,MAAM,CAAC,MAAM,kBAAkB,GAAG;IAChC,6EAA6E;IAC7E,2EAA2E;IAC3E,mBAAmB;IACnB,SAAS;IACT,sBAAsB;IACtB,YAAY;IACZ,oDAAoD;IACpD,+DAA+D;IAC/D,iDAAiD;IACjD,mDAAmD;IACnD,0DAA0D;IAC1D,8CAA8C;CAC/C,CAAA;AAED,2DAA2D;AAC3D,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,YAAY;IACZ,YAAY;IACZ,gBAAgB;IAChB,eAAe,EAAE,uBAAuB;IACxC,uBAAuB;IACvB,yBAAyB;IACzB,qCAAqC;IACrC,gCAAgC;IAChC,eAAe;IACf,0BAA0B,EAAE,qBAAqB;IACjD,0BAA0B;CAC3B,CAAA;AAED,+CAA+C;AAC/C,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,2CAA2C;IAC3C,gBAAgB;IAChB,0CAA0C,EAAE,6BAA6B;IACzE,kDAAkD;IAClD,sBAAsB;IACtB,oCAAoC;IACpC,4BAA4B;IAC5B,2BAA2B;IAC3B,8BAA8B;IAC9B,iCAAiC;IACjC,4BAA4B;IAC5B,sBAAsB;CACvB,CAAA;AAED,2CAA2C;AAC3C,MAAM,CAAC,MAAM,uBAAuB,GAAG;IACrC,2DAA2D;IAC3D,qCAAqC;IACrC,qCAAqC;IACrC,8CAA8C;IAC9C,qCAAqC;IACrC,2CAA2C;IAC3C,+CAA+C;IAC/C,wDAAwD;IACxD,4CAA4C;IAC5C,+CAA+C;IAC/C,mDAAmD;IACnD,wCAAwC;IACxC,uDAAuD;IACvD,8CAA8C;CAC/C,CAAA;AAED,sCAAsC;AACtC,MAAM,CAAC,MAAM,0BAA0B,GAAG;IACxC,YAAY,EAAE,sBAAsB;IACpC,YAAY,EAAE,sBAAsB;IACpC,2CAA2C;IAC3C,wCAAwC;IACxC,0BAA0B;IAC1B,iCAAiC,EAAE,0BAA0B;IAC7D,iBAAiB;IACjB,wBAAwB;IACxB,gBAAgB;IAChB,mBAAmB;IACnB,iBAAiB;IACjB,uBAAuB;IACvB,iBAAiB;IACjB,QAAQ;IACR,kBAAkB,EAAE,YAAY;IAChC,2BAA2B;IAC3B,wCAAwC;IACxC,8CAA8C;IAC9C,mBAAmB;IACnB,wCAAwC;CACzC,CAAA;AAED,yCAAyC;AACzC,MAAM,CAAC,MAAM,6BAA6B,GAAG;IAC3C,wBAAwB,EAAE,gCAAgC;IAC1D,qBAAqB,EAAE,wBAAwB;IAC/C,YAAY;IACZ,oCAAoC,EAAE,2BAA2B;IACjE,kBAAkB,EAAE,eAAe;IACnC,kBAAkB,EAAE,iBAAiB;IACrC,kBAAkB,EAAE,0BAA0B;IAC9C,iBAAiB;IACjB,iBAAiB;IACjB,SAAS;IACT,iBAAiB;IACjB,WAAW;IACX,SAAS;IACT,SAAS;IACT,oBAAoB;IACpB,iBAAiB;IACjB,kCAAkC;IAClC,oBAAoB;IACpB,oCAAoC;IACpC,4BAA4B;IAC5B,uBAAuB;IACvB,mBAAmB;IACnB,gBAAgB;IAChB,gBAAgB;CACjB,CAAA"}