@skillsmith/core 0.4.9 → 0.4.10

package/dist/tests/integration/QuarantineService.test.d.ts

@@ -0,0 +1,11 @@
+/**
+ * SMI-2269: QuarantineService Integration Tests
+ *
+ * Tests for authenticated quarantine review operations including:
+ * - Session validation
+ * - Permission checks (security_reviewer role)
+ * - Multi-approval workflow for MALICIOUS severity
+ * - Audit logging with verified identities
+ */
+export {};
+//# sourceMappingURL=QuarantineService.test.d.ts.map

package/dist/tests/integration/QuarantineService.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"QuarantineService.test.d.ts","sourceRoot":"","sources":["../../../tests/integration/QuarantineService.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG"}

package/dist/tests/integration/QuarantineService.test.js

@@ -0,0 +1,378 @@
+/**
+ * SMI-2269: QuarantineService Integration Tests
+ *
+ * Tests for authenticated quarantine review operations including:
+ * - Session validation
+ * - Permission checks (security_reviewer role)
+ * - Multi-approval workflow for MALICIOUS severity
+ * - Audit logging with verified identities
+ */
+import { describe, it, expect, beforeEach, afterEach, vi } from 'vitest';
+import { QuarantineService } from '../../src/services/quarantine/QuarantineService.js';
+import { QuarantineServiceError } from '../../src/services/quarantine/types.js';
+import { QuarantineRepository } from '../../src/repositories/quarantine/index.js';
+import { AuditLogger } from '../../src/security/AuditLogger.js';
+import { createDatabaseSync } from '../../src/db/createDatabase.js';
+// ============================================================================
+// Test Helpers
+// ============================================================================
+/**
+ * Create a mock authenticated session for testing
+ */
+function createMockSession(overrides = {}) {
+    return {
+        userId: 'user-123',
+        email: 'reviewer@example.com',
+        displayName: 'Test Reviewer',
+        permissions: ['quarantine:read', 'quarantine:review'],
+        sessionId: 'session-456',
+        expiresAt: new Date(Date.now() + 3600000), // 1 hour from now
+        ...overrides,
+    };
+}
+/**
+ * Create a session with specific permissions
+ */
+function createSessionWithPermissions(permissions) {
+    return createMockSession({ permissions });
+}
+/**
+ * Create an expired session
+ */
+function createExpiredSession() {
+    return createMockSession({
+        expiresAt: new Date(Date.now() - 1000), // Expired 1 second ago
+    });
+}
+// ============================================================================
+// Test Suite
+// ============================================================================
+describe('SMI-2269: QuarantineService Authentication', () => {
+    let db;
+    let repository;
+    let auditLogger;
+    let service;
+    beforeEach(() => {
+        // Create in-memory database for testing
+        db = createDatabaseSync(':memory:');
+        auditLogger = new AuditLogger(db);
+        repository = new QuarantineRepository(db, auditLogger);
+        service = new QuarantineService(repository, auditLogger);
+    });
+    afterEach(() => {
+        db.close();
+    });
+    // ==========================================================================
+    // Session Validation Tests
+    // ==========================================================================
+    describe('Session Validation', () => {
+        it('should reject expired sessions', () => {
+            const session = createExpiredSession();
+            expect(() => service.findById(session, 'some-id')).toThrow(QuarantineServiceError);
+            expect(() => service.findById(session, 'some-id')).toThrow('Session has expired');
+        });
+        it('should accept valid sessions', () => {
+            const session = createMockSession();
+            // Should not throw
+            expect(() => service.findById(session, 'nonexistent-id')).not.toThrow();
+        });
+        it('should include session expiry in error details', () => {
+            const session = createExpiredSession();
+            try {
+                service.findById(session, 'some-id');
+                expect.fail('Should have thrown');
+            }
+            catch (error) {
+                expect(error).toBeInstanceOf(QuarantineServiceError);
+                expect(error.code).toBe('SESSION_EXPIRED');
+                expect(error.details?.expiresAt).toBeDefined();
+            }
+        });
+    });
+    // ==========================================================================
+    // Permission Tests
+    // ==========================================================================
+    describe('Permission Enforcement', () => {
+        it('should reject users without quarantine:read permission', () => {
+            const session = createSessionWithPermissions([]);
+            expect(() => service.findById(session, 'some-id')).toThrow(QuarantineServiceError);
+            expect(() => service.findById(session, 'some-id')).toThrow('Permission denied');
+        });
+        it('should allow read with quarantine:read permission', () => {
+            const session = createSessionWithPermissions(['quarantine:read']);
+            // Should not throw
+            expect(() => service.findById(session, 'nonexistent-id')).not.toThrow();
+        });
+        it('should reject review without quarantine:review permission', () => {
+            const session = createSessionWithPermissions(['quarantine:read']);
+            // Create a quarantine entry first
+            const entry = repository.create({
+                skillId: 'test/skill',
+                source: 'test',
+                quarantineReason: 'Test reason',
+                severity: 'SUSPICIOUS',
+            });
+            expect(() => service.review(session, entry.id, {
+                reviewStatus: 'approved',
+            })).toThrow('Permission denied');
+        });
+        it('should allow admin users to bypass permission checks', () => {
+            const session = createSessionWithPermissions(['quarantine:admin']);
+            // Admin should be able to read without explicit read permission
+            expect(() => service.findById(session, 'nonexistent-id')).not.toThrow();
+        });
+        it('should include required permission in error details', () => {
+            const session = createSessionWithPermissions([]);
+            try {
+                service.findById(session, 'some-id');
+                expect.fail('Should have thrown');
+            }
+            catch (error) {
+                expect(error).toBeInstanceOf(QuarantineServiceError);
+                expect(error.code).toBe('INSUFFICIENT_PERMISSIONS');
+                expect(error.details?.required).toBe('quarantine:read');
+            }
+        });
+    });
+    // ==========================================================================
+    // Review Tests
+    // ==========================================================================
+    describe('Authenticated Review', () => {
+        it('should include verified reviewer identity in result', () => {
+            const session = createMockSession({
+                userId: 'verified-user-123',
+                email: 'verified@example.com',
+                displayName: 'Verified Reviewer',
+            });
+            const entry = repository.create({
+                skillId: 'test/skill',
+                source: 'test',
+                quarantineReason: 'Test reason',
+                severity: 'SUSPICIOUS',
+            });
+            const result = service.review(session, entry.id, {
+                reviewStatus: 'approved',
+                reviewNotes: 'Verified safe',
+            });
+            expect(result.reviewedBy.userId).toBe('verified-user-123');
+            expect(result.reviewedBy.email).toBe('verified@example.com');
+            expect(result.reviewedBy.displayName).toBe('Verified Reviewer');
+        });
+        it('should reject review of non-existent entry', () => {
+            const session = createMockSession();
+            expect(() => service.review(session, 'nonexistent-id', {
+                reviewStatus: 'approved',
+            })).toThrow('Quarantine entry not found');
+        });
+        it('should reject review of already-reviewed entry', () => {
+            const session = createMockSession();
+            const entry = repository.create({
+                skillId: 'test/skill',
+                source: 'test',
+                quarantineReason: 'Test reason',
+                severity: 'SUSPICIOUS',
+            });
+            // First review should succeed
+            service.review(session, entry.id, {
+                reviewStatus: 'approved',
+            });
+            // Second review should fail
+            expect(() => service.review(session, entry.id, {
+                reviewStatus: 'rejected',
+            })).toThrow('already reviewed');
+        });
+        it('should log audit event with session details', () => {
+            const session = createMockSession({
+                sessionId: 'audit-test-session',
+            });
+            const entry = repository.create({
+                skillId: 'test/audit-skill',
+                source: 'test',
+                quarantineReason: 'Test reason',
+                severity: 'SUSPICIOUS',
+            });
+            // Spy on audit logger
+            const logSpy = vi.spyOn(auditLogger, 'log');
+            service.review(session, entry.id, {
+                reviewStatus: 'approved',
+            });
+            // Check audit was logged
+            expect(logSpy).toHaveBeenCalledWith(expect.objectContaining({
+                event_type: 'quarantine_authenticated_review',
+                actor: 'reviewer',
+                resource: 'test/audit-skill',
+                action: 'review',
+                result: 'success',
+                metadata: expect.objectContaining({
+                    sessionId: 'audit-test-session',
+                    reviewer: expect.objectContaining({
+                        userId: session.userId,
+                        email: session.email,
+                    }),
+                }),
+            }));
+        });
+    });
+    // ==========================================================================
+    // MALICIOUS Severity Multi-Approval Tests
+    // ==========================================================================
+    describe('Multi-Approval Workflow (MALICIOUS Severity)', () => {
+        it('should require quarantine:review_malicious permission for MALICIOUS reviews', () => {
+            const session = createSessionWithPermissions(['quarantine:read', 'quarantine:review']);
+            const entry = repository.create({
+                skillId: 'test/malicious-skill',
+                source: 'test',
+                quarantineReason: 'Malicious code detected',
+                severity: 'MALICIOUS',
+            });
+            expect(() => service.review(session, entry.id, {
+                reviewStatus: 'approved',
+            })).toThrow('quarantine:review_malicious required');
+        });
+        it('should start multi-approval workflow for MALICIOUS approval', () => {
+            const session = createSessionWithPermissions([
+                'quarantine:read',
+                'quarantine:review',
+                'quarantine:review_malicious',
+            ]);
+            const entry = repository.create({
+                skillId: 'test/malicious-skill',
+                source: 'test',
+                quarantineReason: 'Malicious code detected',
+                severity: 'MALICIOUS',
+            });
+            const result = service.review(session, entry.id, {
+                reviewStatus: 'approved',
+                reviewNotes: 'First approval',
+            });
+            expect(result.approved).toBe(false); // Not yet approved (needs 2 approvals)
+            expect(result.multiApprovalStatus).toBeDefined();
+            expect(result.multiApprovalStatus?.currentApprovals.length).toBe(1);
+            expect(result.multiApprovalStatus?.requiredApprovals).toBe(2);
+        });
+        it('should complete approval when enough reviewers approve', () => {
+            const session1 = createSessionWithPermissions([
+                'quarantine:read',
+                'quarantine:review',
+                'quarantine:review_malicious',
+            ]);
+            const session2 = createMockSession({
+                userId: 'user-456',
+                email: 'reviewer2@example.com',
+                permissions: ['quarantine:read', 'quarantine:review', 'quarantine:review_malicious'],
+            });
+            const entry = repository.create({
+                skillId: 'test/malicious-skill',
+                source: 'test',
+                quarantineReason: 'Malicious code detected',
+                severity: 'MALICIOUS',
+            });
+            // First approval
+            const result1 = service.review(session1, entry.id, {
+                reviewStatus: 'approved',
+                reviewNotes: 'First approval',
+            });
+            expect(result1.approved).toBe(false);
+            // Second approval
+            const result2 = service.review(session2, entry.id, {
+                reviewStatus: 'approved',
+                reviewNotes: 'Second approval',
+            });
+            expect(result2.approved).toBe(true);
+            expect(result2.multiApprovalStatus?.isComplete).toBe(true);
+        });
+        it('should prevent same user from approving twice', () => {
+            const session = createSessionWithPermissions([
+                'quarantine:read',
+                'quarantine:review',
+                'quarantine:review_malicious',
+            ]);
+            const entry = repository.create({
+                skillId: 'test/malicious-skill',
+                source: 'test',
+                quarantineReason: 'Malicious code detected',
+                severity: 'MALICIOUS',
+            });
+            // First approval should work
+            service.review(session, entry.id, {
+                reviewStatus: 'approved',
+            });
+            // Same user trying to approve again should fail
+            expect(() => service.review(session, entry.id, {
+                reviewStatus: 'approved',
+            })).toThrow('already approved');
+        });
+        it('should allow MALICIOUS rejection without multi-approval', () => {
+            const session = createSessionWithPermissions([
+                'quarantine:read',
+                'quarantine:review',
+                'quarantine:review_malicious',
+            ]);
+            const entry = repository.create({
+                skillId: 'test/malicious-skill',
+                source: 'test',
+                quarantineReason: 'Malicious code detected',
+                severity: 'MALICIOUS',
+            });
+            // Rejection should work immediately (no multi-approval needed)
+            const result = service.review(session, entry.id, {
+                reviewStatus: 'rejected',
+                reviewNotes: 'Confirmed malicious',
+            });
+            expect(result.approved).toBe(false);
+            expect(result.multiApprovalStatus).toBeUndefined();
+        });
+        it('should track multi-approval status', () => {
+            const session = createSessionWithPermissions([
+                'quarantine:read',
+                'quarantine:review',
+                'quarantine:review_malicious',
+            ]);
+            const entry = repository.create({
+                skillId: 'test/malicious-skill',
+                source: 'test',
+                quarantineReason: 'Malicious code detected',
+                severity: 'MALICIOUS',
+            });
+            // First approval
+            service.review(session, entry.id, {
+                reviewStatus: 'approved',
+            });
+            // Check status
+            const status = service.getMultiApprovalStatus(session, entry.id);
+            expect(status).not.toBeNull();
+            expect(status?.currentApprovals.length).toBe(1);
+            expect(status?.isComplete).toBe(false);
+        });
+    });
+    // ==========================================================================
+    // Error Handling Tests
+    // ==========================================================================
+    describe('Error Handling', () => {
+        it('should return typed error codes', () => {
+            const session = createExpiredSession();
+            try {
+                service.findById(session, 'some-id');
+                expect.fail('Should have thrown');
+            }
+            catch (error) {
+                expect(error).toBeInstanceOf(QuarantineServiceError);
+                expect(error.code).toBe('SESSION_EXPIRED');
+                expect(error.name).toBe('QuarantineServiceError');
+            }
+        });
+        it('should include error details for debugging', () => {
+            const session = createSessionWithPermissions([]);
+            try {
+                service.findById(session, 'some-id');
+                expect.fail('Should have thrown');
+            }
+            catch (error) {
+                expect(error).toBeInstanceOf(QuarantineServiceError);
+                expect(error.details).toBeDefined();
+                expect(error.details?.available).toEqual([]);
+            }
+        });
+    });
+});
+//# sourceMappingURL=QuarantineService.test.js.map

package/dist/tests/integration/QuarantineService.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"QuarantineService.test.js","sourceRoot":"","sources":["../../../tests/integration/QuarantineService.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAA;AACxE,OAAO,EAAE,iBAAiB,EAAE,MAAM,oDAAoD,CAAA;AACtF,OAAO,EAAE,sBAAsB,EAAE,MAAM,wCAAwC,CAAA;AAK/E,OAAO,EAAE,oBAAoB,EAAE,MAAM,4CAA4C,CAAA;AACjF,OAAO,EAAE,WAAW,EAAE,MAAM,mCAAmC,CAAA;AAC/D,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAA;AAGnE,+EAA+E;AAC/E,eAAe;AACf,+EAA+E;AAE/E;;GAEG;AACH,SAAS,iBAAiB,CAAC,YAA2C,EAAE;IACtE,OAAO;QACL,MAAM,EAAE,UAAU;QAClB,KAAK,EAAE,sBAAsB;QAC7B,WAAW,EAAE,eAAe;QAC5B,WAAW,EAAE,CAAC,iBAAiB,EAAE,mBAAmB,CAAC;QACrD,SAAS,EAAE,aAAa;QACxB,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,OAAO,CAAC,EAAE,kBAAkB;QAC7D,GAAG,SAAS;KACb,CAAA;AACH,CAAC;AAED;;GAEG;AACH,SAAS,4BAA4B,CAAC,WAAmC;IACvE,OAAO,iBAAiB,CAAC,EAAE,WAAW,EAAE,CAAC,CAAA;AAC3C,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB;IAC3B,OAAO,iBAAiB,CAAC;QACvB,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,EAAE,uBAAuB;KAChE,CAAC,CAAA;AACJ,CAAC;AAED,+EAA+E;AAC/E,aAAa;AACb,+EAA+E;AAE/E,QAAQ,CAAC,4CAA4C,EAAE,GAAG,EAAE;IAC1D,IAAI,EAAY,CAAA;IAChB,IAAI,UAAgC,CAAA;IACpC,IAAI,WAAwB,CAAA;IAC5B,IAAI,OAA0B,CAAA;IAE9B,UAAU,CAAC,GAAG,EAAE;QACd,wCAAwC;QACxC,EAAE,GAAG,kBAAkB,CAAC,UAAU,CAAC,CAAA;QACnC,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAA;QACjC,UAAU,GAAG,IAAI,oBAAoB,CAAC,EAAE,EAAE,WAAW,CAAC,CAAA;QACtD,OAAO,GAAG,IAAI,iBAAiB,CAAC,UAAU,EAAE,WAAW,CAAC,CAAA;IAC1D,CAAC,CAAC,CAAA;IAEF,SAAS,CAAC,GAAG,EAAE;QACb,EAAE,CAAC,KAAK,EAAE,CAAA;IACZ,CAAC,CAAC,CAAA;IAEF,6EAA6E;IAC7E,2BAA2B;IAC3B,6EAA6E;IAE7E,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;QAClC,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,MAAM,OAAO,GAAG,oBAAoB,EAAE,CAAA;YAEtC,MAAM,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAA;YAClF,MAAM,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,qBAAqB,CAAC,CAAA;QACnF,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;YACtC,MAAM,OAAO,GAAG,iBAAiB,EAAE,CAAA;YAEnC,mBAAmB;YACnB,MAAM,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAA;QACzE,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,gDAAgD,EAAE,GAAG,EAAE;YACxD,MAAM,OAAO,GAAG,oBAAoB,EAAE,CAAA;YAEtC,IAAI,CAAC;gBACH,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAA;gBACpC,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAA;YACnC,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,KAAK,CAAC,CAAC,cAAc,CAAC,sBAAsB,CAAC,CAAA;gBACpD,MAAM,CAAE,KAAgC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAA;gBACtE,MAAM,CAAE,KAAgC,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,WAAW,EAAE,CAAA;YAC5E,CAAC;QACH,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,6EAA6E;IAC7E,mBAAmB;IACnB,6EAA6E;IAE7E,QAAQ,CAAC,wBAAwB,EAAE,GAAG,EAAE;QACtC,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;YAChE,MAAM,OAAO,GAAG,4BAA4B,CAAC,EAAE,CAAC,CAAA;YAEhD,MAAM,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAA;YAClF,MAAM,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;QACjF,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,mDAAmD,EAAE,GAAG,EAAE;YAC3D,MAAM,OAAO,GAAG,4BAA4B,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAA;YAEjE,mBAAmB;YACnB,MAAM,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAA;QACzE,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,2DAA2D,EAAE,GAAG,EAAE;YACnE,MAAM,OAAO,GAAG,4BAA4B,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAA;YAEjE,kCAAkC;YAClC,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,YAAY;gBACrB,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,aAAa;gBAC/B,QAAQ,EAAE,YAAY;aACvB,CAAC,CAAA;YAEF,MAAM,CAAC,GAAG,EAAE,CACV,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CACH,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAA;QAChC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;YAC9D,MAAM,OAAO,GAAG,4BAA4B,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAA;YAElE,gEAAgE;YAChE,MAAM,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAA;QACzE,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC7D,MAAM,OAAO,GAAG,4BAA4B,CAAC,EAAE,CAAC,CAAA;YAEhD,IAAI,CAAC;gBACH,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAA;gBACpC,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAA;YACnC,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,KAAK,CAAC,CAAC,cAAc,CAAC,sBAAsB,CAAC,CAAA;gBACpD,MAAM,CAAE,KAAgC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAA;gBAC/E,MAAM,CAAE,KAAgC,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAA;YACrF,CAAC;QACH,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,6EAA6E;IAC7E,eAAe;IACf,6EAA6E;IAE7E,QAAQ,CAAC,sBAAsB,EAAE,GAAG,EAAE;QACpC,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC7D,MAAM,OAAO,GAAG,iBAAiB,CAAC;gBAChC,MAAM,EAAE,mBAAmB;gBAC3B,KAAK,EAAE,sBAAsB;gBAC7B,WAAW,EAAE,mBAAmB;aACjC,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,YAAY;gBACrB,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,aAAa;gBAC/B,QAAQ,EAAE,YAAY;aACvB,CAAC,CAAA;YAEF,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAC/C,YAAY,EAAE,UAAU;gBACxB,WAAW,EAAE,eAAe;aAC7B,CAAC,CAAA;YAEF,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAA;YAC1D,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAA;YAC5D,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAA;QACjE,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,OAAO,GAAG,iBAAiB,EAAE,CAAA;YAEnC,MAAM,CAAC,GAAG,EAAE,CACV,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,gBAAgB,EAAE;gBACxC,YAAY,EAAE,UAAU;aACzB,CAAC,CACH,CAAC,OAAO,CAAC,4BAA4B,CAAC,CAAA;QACzC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,gDAAgD,EAAE,GAAG,EAAE;YACxD,MAAM,OAAO,GAAG,iBAAiB,EAAE,CAAA;YAEnC,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,YAAY;gBACrB,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,aAAa;gBAC/B,QAAQ,EAAE,YAAY;aACvB,CAAC,CAAA;YAEF,8BAA8B;YAC9B,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CAAA;YAEF,4BAA4B;YAC5B,MAAM,CAAC,GAAG,EAAE,CACV,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CACH,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAA;QAC/B,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,OAAO,GAAG,iBAAiB,CAAC;gBAChC,SAAS,EAAE,oBAAoB;aAChC,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,kBAAkB;gBAC3B,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,aAAa;gBAC/B,QAAQ,EAAE,YAAY;aACvB,CAAC,CAAA;YAEF,sBAAsB;YACtB,MAAM,MAAM,GAAG,EAAE,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,CAAC,CAAA;YAE3C,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CAAA;YAEF,yBAAyB;YACzB,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,CACjC,MAAM,CAAC,gBAAgB,CAAC;gBACtB,UAAU,EAAE,iCAAiC;gBAC7C,KAAK,EAAE,UAAU;gBACjB,QAAQ,EAAE,kBAAkB;gBAC5B,MAAM,EAAE,QAAQ;gBAChB,MAAM,EAAE,SAAS;gBACjB,QAAQ,EAAE,MAAM,CAAC,gBAAgB,CAAC;oBAChC,SAAS,EAAE,oBAAoB;oBAC/B,QAAQ,EAAE,MAAM,CAAC,gBAAgB,CAAC;wBAChC,MAAM,EAAE,OAAO,CAAC,MAAM;wBACtB,KAAK,EAAE,OAAO,CAAC,KAAK;qBACrB,CAAC;iBACH,CAAC;aACH,CAAC,CACH,CAAA;QACH,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,6EAA6E;IAC7E,0CAA0C;IAC1C,6EAA6E;IAE7E,QAAQ,CAAC,8CAA8C,EAAE,GAAG,EAAE;QAC5D,EAAE,CAAC,6EAA6E,EAAE,GAAG,EAAE;YACrF,MAAM,OAAO,GAAG,4BAA4B,CAAC,CAAC,iBAAiB,EAAE,mBAAmB,CAAC,CAAC,CAAA;YAEtF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,sBAAsB;gBAC/B,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,yBAAyB;gBAC3C,QAAQ,EAAE,WAAW;aACtB,CAAC,CAAA;YAEF,MAAM,CAAC,GAAG,EAAE,CACV,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CACH,CAAC,OAAO,CAAC,sCAAsC,CAAC,CAAA;QACnD,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,6DAA6D,EAAE,GAAG,EAAE;YACrE,MAAM,OAAO,GAAG,4BAA4B,CAAC;gBAC3C,iBAAiB;gBACjB,mBAAmB;gBACnB,6BAA6B;aAC9B,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,sBAAsB;gBAC/B,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,yBAAyB;gBAC3C,QAAQ,EAAE,WAAW;aACtB,CAAC,CAAA;YAEF,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAC/C,YAAY,EAAE,UAAU;gBACxB,WAAW,EAAE,gBAAgB;aAC9B,CAAC,CAAA;YAEF,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA,CAAC,uCAAuC;YAC3E,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC,WAAW,EAAE,CAAA;YAChD,MAAM,CAAC,MAAM,CAAC,mBAAmB,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;YACnE,MAAM,CAAC,MAAM,CAAC,mBAAmB,EAAE,iBAAiB,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QAC/D,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;YAChE,MAAM,QAAQ,GAAG,4BAA4B,CAAC;gBAC5C,iBAAiB;gBACjB,mBAAmB;gBACnB,6BAA6B;aAC9B,CAAC,CAAA;YACF,MAAM,QAAQ,GAAG,iBAAiB,CAAC;gBACjC,MAAM,EAAE,UAAU;gBAClB,KAAK,EAAE,uBAAuB;gBAC9B,WAAW,EAAE,CAAC,iBAAiB,EAAE,mBAAmB,EAAE,6BAA6B,CAAC;aACrF,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,sBAAsB;gBAC/B,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,yBAAyB;gBAC3C,QAAQ,EAAE,WAAW;aACtB,CAAC,CAAA;YAEF,iBAAiB;YACjB,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,KAAK,CAAC,EAAE,EAAE;gBACjD,YAAY,EAAE,UAAU;gBACxB,WAAW,EAAE,gBAAgB;aAC9B,CAAC,CAAA;YACF,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;YAEpC,kBAAkB;YAClB,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,KAAK,CAAC,EAAE,EAAE;gBACjD,YAAY,EAAE,UAAU;gBACxB,WAAW,EAAE,iBAAiB;aAC/B,CAAC,CAAA;YACF,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YACnC,MAAM,CAAC,OAAO,CAAC,mBAAmB,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAC5D,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACvD,MAAM,OAAO,GAAG,4BAA4B,CAAC;gBAC3C,iBAAiB;gBACjB,mBAAmB;gBACnB,6BAA6B;aAC9B,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,sBAAsB;gBAC/B,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,yBAAyB;gBAC3C,QAAQ,EAAE,WAAW;aACtB,CAAC,CAAA;YAEF,6BAA6B;YAC7B,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CAAA;YAEF,gDAAgD;YAChD,MAAM,CAAC,GAAG,EAAE,CACV,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CACH,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAA;QAC/B,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,yDAAyD,EAAE,GAAG,EAAE;YACjE,MAAM,OAAO,GAAG,4BAA4B,CAAC;gBAC3C,iBAAiB;gBACjB,mBAAmB;gBACnB,6BAA6B;aAC9B,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,sBAAsB;gBAC/B,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,yBAAyB;gBAC3C,QAAQ,EAAE,WAAW;aACtB,CAAC,CAAA;YAEF,+DAA+D;YAC/D,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAC/C,YAAY,EAAE,UAAU;gBACxB,WAAW,EAAE,qBAAqB;aACnC,CAAC,CAAA;YAEF,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;YACnC,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC,aAAa,EAAE,CAAA;QACpD,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,oCAAoC,EAAE,GAAG,EAAE;YAC5C,MAAM,OAAO,GAAG,4BAA4B,CAAC;gBAC3C,iBAAiB;gBACjB,mBAAmB;gBACnB,6BAA6B;aAC9B,CAAC,CAAA;YAEF,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC;gBAC9B,OAAO,EAAE,sBAAsB;gBAC/B,MAAM,EAAE,MAAM;gBACd,gBAAgB,EAAE,yBAAyB;gBAC3C,QAAQ,EAAE,WAAW;aACtB,CAAC,CAAA;YAEF,iBAAiB;YACjB,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,EAAE;gBAChC,YAAY,EAAE,UAAU;aACzB,CAAC,CAAA;YAEF,eAAe;YACf,MAAM,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,CAAC,CAAA;YAChE,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAA;YAC7B,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;YAC/C,MAAM,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACxC,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,6EAA6E;IAC7E,uBAAuB;IACvB,6EAA6E;IAE7E,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,iCAAiC,EAAE,GAAG,EAAE;YACzC,MAAM,OAAO,GAAG,oBAAoB,EAAE,CAAA;YAEtC,IAAI,CAAC;gBACH,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAA;gBACpC,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAA;YACnC,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,KAAK,CAAC,CAAC,cAAc,CAAC,sBAAsB,CAAC,CAAA;gBACpD,MAAM,CAAE,KAAgC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAA;gBACtE,MAAM,CAAE,KAAgC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAA;YAC/E,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,OAAO,GAAG,4BAA4B,CAAC,EAAE,CAAC,CAAA;YAEhD,IAAI,CAAC;gBACH,OAAO,CAAC,QAAQ,CAAC,OAAO,EAAE,SAAS,CAAC,CAAA;gBACpC,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAA;YACnC,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,KAAK,CAAC,CAAC,cAAc,CAAC,sBAAsB,CAAC,CAAA;gBACpD,MAAM,CAAE,KAAgC,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,CAAA;gBAC/D,MAAM,CAAE,KAAgC,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;YAC1E,CAAC;QACH,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/dist/tests/unit/check-references.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=check-references.test.d.ts.map

package/dist/tests/unit/check-references.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-references.test.d.ts","sourceRoot":"","sources":["../../../tests/unit/check-references.test.ts"],"names":[],"mappings":""}

package/dist/tests/unit/check-references.test.js

@@ -0,0 +1,118 @@
+import { describe, it, expect } from 'vitest';
+import { SkillParser } from '../../src/indexer/SkillParser.js';
+describe('SkillParser.checkReferences', () => {
+    describe('default patterns', () => {
+        it('detects Docker container names (e.g., myproject-dev-1)', () => {
+            const content = 'Run: docker exec myproject-dev-1 npm test';
+            const result = SkillParser.checkReferences(content);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0]).toMatchObject({
+                line: 1,
+                text: 'myproject-dev-1',
+                pattern: 'Docker container name',
+            });
+        });
+        it('detects npm package scopes (e.g., @my-org/)', () => {
+            const content = 'import { foo } from "@my-org/utils"';
+            const result = SkillParser.checkReferences(content);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0]).toMatchObject({
+                text: '@my-org/',
+                pattern: 'npm package scope',
+            });
+        });
+        it('detects project URLs (e.g., https://myapp.app/)', () => {
+            const content = 'Visit https://myapp.app/ for more info';
+            const result = SkillParser.checkReferences(content);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0]).toMatchObject({
+                text: 'https://myapp.app/',
+                pattern: 'Project URL',
+            });
+        });
+        it('detects GitHub repo references (e.g., github.com/org/repo)', () => {
+            const content = 'Source: github.com/smith-horn/skillsmith';
+            const result = SkillParser.checkReferences(content);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0]).toMatchObject({
+                text: 'github.com/smith-horn/skillsmith',
+                pattern: 'GitHub repo reference',
+            });
+        });
+        it('detects specific line counts (e.g., 1212 lines)', () => {
+            const content = 'This file has 1212 lines of code';
+            const result = SkillParser.checkReferences(content);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0]).toMatchObject({
+                text: '1212 lines',
+                pattern: 'Specific line count',
+            });
+        });
+    });
+    describe('custom patterns', () => {
+        it('merges custom patterns with defaults', () => {
+            const content = 'Use ACME_SECRET_KEY for auth\ndocker exec acme-dev-1 test';
+            const custom = [/ACME_[A-Z_]+/g];
+            const result = SkillParser.checkReferences(content, custom);
+            const patterns = result.matches.map((m) => m.pattern);
+            expect(patterns).toContain('Custom pattern');
+            expect(patterns).toContain('Docker container name');
+        });
+        it('labels custom pattern matches as "Custom pattern"', () => {
+            const content = 'token: xoxb-abc-123';
+            const custom = [/xoxb-[a-z]+-\d+/g];
+            const result = SkillParser.checkReferences(content, custom);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0].pattern).toBe('Custom pattern');
+        });
+    });
+    describe('edge cases', () => {
+        it('returns empty results for content with no matches', () => {
+            const content = 'A simple skill that formats code.';
+            const result = SkillParser.checkReferences(content);
+            expect(result.warnings).toHaveLength(0);
+            expect(result.matches).toHaveLength(0);
+        });
+        it('handles empty string content', () => {
+            const result = SkillParser.checkReferences('');
+            expect(result.warnings).toHaveLength(0);
+            expect(result.matches).toHaveLength(0);
+        });
+        it('truncates matched text to 80 characters', () => {
+            // GitHub repo pattern matches [a-zA-Z-]+ for org and repo segments
+            const longRepo = 'github.com/' + 'a-'.repeat(50) + 'a/' + 'b-'.repeat(50) + 'b';
+            const result = SkillParser.checkReferences(longRepo);
+            const ghMatch = result.matches.find((m) => m.pattern === 'GitHub repo reference');
+            expect(ghMatch).toBeDefined();
+            expect(ghMatch.text).toHaveLength(83); // 80 + '...'
+            expect(ghMatch.text).toMatch(/\.\.\.$/u);
+        });
+        it('reports correct line numbers (1-based)', () => {
+            const content = 'line one\nline two\ngithub.com/org/repo on line three';
+            const result = SkillParser.checkReferences(content);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0].line).toBe(3);
+        });
+        it('handles multiple matches on the same line', () => {
+            const content = 'See github.com/org/repo and github.com/other/lib';
+            const result = SkillParser.checkReferences(content);
+            const ghMatches = result.matches.filter((m) => m.pattern === 'GitHub repo reference');
+            expect(ghMatches).toHaveLength(2);
+            expect(ghMatches[0].line).toBe(1);
+            expect(ghMatches[1].line).toBe(1);
+        });
+    });
+    describe('false positive awareness', () => {
+        it('matches legitimate npm scopes (documents false positive risk)', () => {
+            // The pattern /@[a-z]+-[a-z]+\// matches any hyphenated scope,
+            // including legitimate ones like @babel-core/ or @my-lib/.
+            // This is by design: the method flags for review, not rejection.
+            const content = 'import { x } from "@some-lib/core"';
+            const result = SkillParser.checkReferences(content);
+            expect(result.matches).toHaveLength(1);
+            expect(result.matches[0].pattern).toBe('npm package scope');
+            expect(result.warnings[0]).toContain('project-specific reference');
+        });
+    });
+});
+//# sourceMappingURL=check-references.test.js.map

package/dist/tests/unit/check-references.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-references.test.js","sourceRoot":"","sources":["../../../tests/unit/check-references.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAA;AAC7C,OAAO,EAAE,WAAW,EAAE,MAAM,kCAAkC,CAAA;AAE9D,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;IAC3C,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;YAChE,MAAM,OAAO,GAAG,2CAA2C,CAAA;YAC3D,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC;gBACtC,IAAI,EAAE,CAAC;gBACP,IAAI,EAAE,iBAAiB;gBACvB,OAAO,EAAE,uBAAuB;aACjC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,OAAO,GAAG,qCAAqC,CAAA;YACrD,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC;gBACtC,IAAI,EAAE,UAAU;gBAChB,OAAO,EAAE,mBAAmB;aAC7B,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,iDAAiD,EAAE,GAAG,EAAE;YACzD,MAAM,OAAO,GAAG,wCAAwC,CAAA;YACxD,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC;gBACtC,IAAI,EAAE,oBAAoB;gBAC1B,OAAO,EAAE,aAAa;aACvB,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,4DAA4D,EAAE,GAAG,EAAE;YACpE,MAAM,OAAO,GAAG,0CAA0C,CAAA;YAC1D,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC;gBACtC,IAAI,EAAE,kCAAkC;gBACxC,OAAO,EAAE,uBAAuB;aACjC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,iDAAiD,EAAE,GAAG,EAAE;YACzD,MAAM,OAAO,GAAG,kCAAkC,CAAA;YAClD,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC;gBACtC,IAAI,EAAE,YAAY;gBAClB,OAAO,EAAE,qBAAqB;aAC/B,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;QAC/B,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,OAAO,GAAG,2DAA2D,CAAA;YAC3E,MAAM,MAAM,GAAG,CAAC,eAAe,CAAC,CAAA;YAChC,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,EAAE,MAAM,CAAC,CAAA;YAE3D,MAAM,QAAQ,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAA;YACrD,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,gBAAgB,CAAC,CAAA;YAC5C,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,uBAAuB,CAAC,CAAA;QACrD,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,mDAAmD,EAAE,GAAG,EAAE;YAC3D,MAAM,OAAO,GAAG,qBAAqB,CAAA;YACrC,MAAM,MAAM,GAAG,CAAC,kBAAkB,CAAC,CAAA;YACnC,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,EAAE,MAAM,CAAC,CAAA;YAE3D,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAE,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;QAC3D,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,YAAY,EAAE,GAAG,EAAE;QAC1B,EAAE,CAAC,mDAAmD,EAAE,GAAG,EAAE;YAC3D,MAAM,OAAO,GAAG,mCAAmC,CAAA;YACnD,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACvC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;QACxC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;YACtC,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,EAAE,CAAC,CAAA;YAE9C,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACvC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;QACxC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;YACjD,mEAAmE;YACnE,MAAM,QAAQ,GAAG,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,GAAG,GAAG,CAAA;YAC/E,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAA;YAEpD,MAAM,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,uBAAuB,CAAC,CAAA;YACjF,MAAM,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,CAAA;YAC7B,MAAM,CAAC,OAAQ,CAAC,IAAI,CAAC,CAAC,YAAY,CAAC,EAAE,CAAC,CAAA,CAAC,aAAa;YACpD,MAAM,CAAC,OAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,CAAA;QAC3C,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,OAAO,GAAG,uDAAuD,CAAA;YACvE,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAE,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACzC,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,OAAO,GAAG,kDAAkD,CAAA;YAClE,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,uBAAuB,CAAC,CAAA;YACrF,MAAM,CAAC,SAAS,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACjC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAE,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;YAClC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAE,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACpC,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;QACxC,EAAE,CAAC,+DAA+D,EAAE,GAAG,EAAE;YACvE,+DAA+D;YAC/D,2DAA2D;YAC3D,iEAAiE;YACjE,MAAM,OAAO,GAAG,oCAAoC,CAAA;YACpD,MAAM,MAAM,GAAG,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,CAAA;YAEnD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;YACtC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAE,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAA;YAC5D,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAA;QACpE,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/dist/tests/utils/safe-fs.test.d.ts

@@ -0,0 +1,12 @@
+/**
+ * SMI-2274: Safe filesystem operations tests
+ *
+ * Tests for symlink-safe file write operations.
+ * Covers:
+ * - Normal file writes
+ * - Symlink detection and rejection
+ * - Non-existent file creation
+ * - Explicit file permissions
+ */
+export {};
+//# sourceMappingURL=safe-fs.test.d.ts.map

package/dist/tests/utils/safe-fs.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"safe-fs.test.d.ts","sourceRoot":"","sources":["../../../tests/utils/safe-fs.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG"}