@sulthonzh/mcp-audit 1.1.0

package/dist/scanners/server-scanner.js

@@ -0,0 +1,346 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.checkServer = checkServer;
+const rest_1 = require("@octokit/rest");
+const simple_git_1 = __importDefault(require("simple-git"));
+const fs_extra_1 = __importDefault(require("fs-extra"));
+const path_1 = __importDefault(require("path"));
+const logger_1 = require("../utils/logger");
+async function checkServer(repository, options, verbose = false) {
+    logger_1.logger.info(`Analyzing MCP server: ${repository}`);
+    const repoInfo = await parseRepositoryUrl(repository);
+    if (!repoInfo) {
+        throw new Error(`Invalid repository URL: ${repository}`);
+    }
+    const result = {
+        scanType: 'server',
+        timestamp: new Date().toISOString(),
+        target: repository,
+        issues: [],
+        score: 0,
+        summary: {
+            configFilesFound: 0,
+            highRiskIssues: 0,
+            mediumRiskIssues: 0,
+            lowRiskIssues: 0
+        }
+    };
+    try {
+        // Clone repository
+        const clonePath = await cloneRepository(repoInfo);
+        // Analyze repository
+        const analysis = await analyzeRepository(clonePath, options);
+        // Calculate trust score
+        result.score = calculateTrustScore(analysis, options.trustWeight);
+        // Analyze code for vulnerabilities
+        const vulnerabilities = await analyzeCodeForVulnerabilities(clonePath, options.scanDepth);
+        result.issues.push(...vulnerabilities);
+        // Update summary
+        result.summary.highRiskIssues = result.issues.filter(i => i.type === 'high').length;
+        result.summary.mediumRiskIssues = result.issues.filter(i => i.type === 'medium').length;
+        result.summary.lowRiskIssues = result.issues.filter(i => i.type === 'low').length;
+        // Cleanup
+        await fs_extra_1.default.remove(clonePath);
+        if (verbose) {
+            logger_1.logger.debug('Repository analysis completed:', analysis);
+        }
+    }
+    catch (error) {
+        logger_1.logger.error(`Error analyzing repository ${repository}:`, error);
+        result.issues.push({
+            type: 'high',
+            category: 'config',
+            title: 'Repository Analysis Failed',
+            description: `Could not analyze repository: ${repository}`,
+            recommendation: 'Check repository accessibility and ensure it contains valid MCP server code',
+            evidence: error instanceof Error ? error.message : String(error)
+        });
+        result.score = 0;
+    }
+    return result;
+}
+async function parseRepositoryUrl(url) {
+    let owner, repo;
+    if (url.startsWith('https://github.com/')) {
+        const parts = url.replace('https://github.com/', '').split('/');
+        if (parts.length >= 2) {
+            owner = parts[0];
+            repo = parts[1].replace('.git', '');
+            return {
+                url,
+                owner,
+                repo,
+                clonePath: path_1.default.join(process.cwd(), 'temp-clones', `${owner}-${repo}`),
+                stars: 0,
+                hasTests: false,
+                hasCI: false,
+                ageInDays: 0
+            };
+        }
+    }
+    else if (url.startsWith('github.com/')) {
+        const parts = url.replace('github.com/', '').split('/');
+        if (parts.length >= 2) {
+            owner = parts[0];
+            repo = parts[1].replace('.git', '');
+            return {
+                url: `https://github.com/${owner}/${repo}`,
+                owner,
+                repo,
+                clonePath: path_1.default.join(process.cwd(), 'temp-clones', `${owner}-${repo}`),
+                stars: 0,
+                hasTests: false,
+                hasCI: false,
+                ageInDays: 0
+            };
+        }
+    }
+    else if (path_1.default.isAbsolute(url)) {
+        // Local path
+        const stats = await fs_extra_1.default.stat(url);
+        if (stats.isDirectory()) {
+            return {
+                url: `local:${url}`,
+                owner: 'local',
+                repo: path_1.default.basename(url),
+                clonePath: url,
+                stars: 0,
+                hasTests: false,
+                hasCI: false,
+                ageInDays: 0
+            };
+        }
+    }
+    return null;
+}
+async function cloneRepository(repoInfo) {
+    if (repoInfo.url.startsWith('local:')) {
+        return repoInfo.clonePath;
+    }
+    try {
+        await fs_extra_1.default.ensureDir(path_1.default.dirname(repoInfo.clonePath));
+        // Get repository info from GitHub API
+        const octokit = new rest_1.Octokit();
+        const { data } = await octokit.rest.repos.get({
+            owner: repoInfo.owner,
+            repo: repoInfo.repo
+        });
+        repoInfo.stars = data.stargazers_count || 0;
+        repoInfo.hasTests = data.topics?.includes('tests') || false;
+        repoInfo.hasCI = data.has_issues || false;
+        repoInfo.ageInDays = Math.floor((Date.now() - new Date(data.created_at).getTime()) / (1000 * 60 * 60 * 24));
+        repoInfo.description = data.description || undefined;
+        // Clone the repository
+        const git = (0, simple_git_1.default)();
+        await git.clone(repoInfo.url, repoInfo.clonePath);
+        return repoInfo.clonePath;
+    }
+    catch (error) {
+        throw new Error(`Failed to clone repository: ${error instanceof Error ? error.message : String(error)}`);
+    }
+}
+async function analyzeRepository(clonePath, options) {
+    const analysis = {
+        hasPackageJson: false,
+        hasMCPConfig: false,
+        hasTests: false,
+        hasCI: false,
+        language: 'unknown',
+        dependencies: 0,
+        files: 0,
+        size: 0
+    };
+    try {
+        // Check for package.json
+        analysis.hasPackageJson = await fs_extra_1.default.pathExists(path_1.default.join(clonePath, 'package.json'));
+        // Check for MCP config files
+        const mcpFiles = ['mcp.json', 'claude_desktop_config.json', 'config.json'];
+        for (const file of mcpFiles) {
+            if (await fs_extra_1.default.pathExists(path_1.default.join(clonePath, file))) {
+                analysis.hasMCPConfig = true;
+                break;
+            }
+        }
+        // Check for tests
+        const testDirs = ['test', 'tests', '__tests__', 'spec', 'specs'];
+        for (const dir of testDirs) {
+            if (await fs_extra_1.default.pathExists(path_1.default.join(clonePath, dir))) {
+                analysis.hasTests = true;
+                break;
+            }
+        }
+        // Check for CI files
+        const ciFiles = ['.github/workflows', '.gitlab-ci.yml', 'circle.yml', 'travis.yml'];
+        for (const file of ciFiles) {
+            const filePath = path_1.default.join(clonePath, file);
+            if (file.includes('workflows') && await fs_extra_1.default.pathExists(filePath)) {
+                const files = await fs_extra_1.default.readdir(filePath);
+                analysis.hasCI = files.length > 0;
+            }
+            else if (await fs_extra_1.default.pathExists(filePath)) {
+                analysis.hasCI = true;
+            }
+        }
+        // Get repository stats
+        const files = await getAllFiles(clonePath);
+        analysis.files = files.length;
+        analysis.size = await getDirectorySize(clonePath);
+        // Detect language based on files
+        analysis.language = detectLanguage(files);
+        // Get dependencies count
+        if (analysis.hasPackageJson) {
+            const packageJson = await fs_extra_1.default.readJson(path_1.default.join(clonePath, 'package.json'));
+            analysis.dependencies = Object.keys(packageJson.dependencies || {}).length +
+                Object.keys(packageJson.devDependencies || {}).length;
+        }
+    }
+    catch (error) {
+        logger_1.logger.warn('Error during repository analysis:', error);
+    }
+    return analysis;
+}
+async function analyzeCodeForVulnerabilities(clonePath, depth) {
+    const vulnerabilities = [];
+    const files = await getAllFiles(clonePath);
+    for (const file of files) {
+        if (depth > 0 && file.split('/').length > depth) {
+            continue; // Skip files beyond scan depth
+        }
+        const content = await fs_extra_1.default.readFile(file, 'utf8');
+        const relativePath = path_1.default.relative(clonePath, file);
+        // Check for hardcoded secrets
+        const secrets = checkForSecrets(content);
+        secrets.forEach(secret => {
+            vulnerabilities.push({
+                type: 'high',
+                category: 'config',
+                title: 'Hardcoded Secret Detected',
+                description: `Hardcoded secret found in ${relativePath}`,
+                recommendation: 'Use environment variables or secure secrets management',
+                evidence: `Secret type: ${secret.type}, Line: ${secret.line}`
+            });
+        });
+        // Check for dangerous functions
+        const dangerousFunctions = checkForDangerousFunctions(content);
+        dangerousFunctions.forEach(func => {
+            vulnerabilities.push({
+                type: 'medium',
+                category: 'permissions',
+                title: 'Dangerous Function Usage',
+                description: `Use of potentially dangerous function: ${func}`,
+                recommendation: 'Review usage context and ensure proper input validation',
+                evidence: `Function: ${func}, File: ${relativePath}`
+            });
+        });
+        // Check for eval usage
+        if (content.includes('eval(')) {
+            vulnerabilities.push({
+                type: 'high',
+                category: 'permissions',
+                title: 'eval() Usage',
+                description: 'Use of eval() function detected',
+                recommendation: 'Avoid eval() for security reasons',
+                evidence: `File: ${relativePath}`
+            });
+        }
+    }
+    return vulnerabilities;
+}
+function checkForSecrets(content) {
+    const vulnerabilities = [];
+    const lines = content.split('\n');
+    const secretPatterns = [
+        /(?:password|passwd|pwd|secret|token|key|api[_-]?key|access[_-]?token)\s*[:=]\s*['"`](.+?)['"`]/gi,
+        /bearer\s+(.+?)\s*$/gi,
+        /secret['"`]\s*[:=]\s*['"`](.+?)['"`]/gi
+    ];
+    lines.forEach((line, index) => {
+        secretPatterns.forEach(pattern => {
+            const match = line.match(pattern);
+            if (match) {
+                vulnerabilities.push({
+                    type: match[1] ? 'api_key' : 'password',
+                    line: index + 1
+                });
+            }
+        });
+    });
+    return vulnerabilities;
+}
+function checkForDangerousFunctions(content) {
+    const dangerousFunctions = [
+        'exec', 'spawn', 'child_process', 'fork', 'require',
+        'eval', 'Function', 'setTimeout', 'setInterval'
+    ];
+    const found = [];
+    const lines = content.split('\n');
+    lines.forEach(line => {
+        dangerousFunctions.forEach(func => {
+            if (line.includes(func + '(')) {
+                found.push(func);
+            }
+        });
+    });
+    return [...new Set(found)];
+}
+async function getAllFiles(dir) {
+    const entries = await fs_extra_1.default.readdir(dir, { withFileTypes: true });
+    const files = [];
+    for (const entry of entries) {
+        const fullPath = path_1.default.join(dir, entry.name);
+        if (entry.isDirectory()) {
+            files.push(...await getAllFiles(fullPath));
+        }
+        else {
+            files.push(fullPath);
+        }
+    }
+    return files;
+}
+async function getDirectorySize(dir) {
+    const files = await getAllFiles(dir);
+    let size = 0;
+    for (const file of files) {
+        const stats = await fs_extra_1.default.stat(file);
+        size += stats.size;
+    }
+    return size;
+}
+function detectLanguage(files) {
+    const extensions = files.map(f => path_1.default.extname(f)).filter(ext => ext);
+    const languageCount = {};
+    extensions.forEach(ext => {
+        languageCount[ext] = (languageCount[ext] || 0) + 1;
+    });
+    const mostCommon = Object.entries(languageCount).sort(([, a], [, b]) => b - a)[0];
+    return mostCommon ? mostCommon[0] : 'unknown';
+}
+function calculateTrustScore(analysis, weights) {
+    let score = 0;
+    // Stars weight (normalized, max 1000 stars = full points)
+    score += Math.min(analysis.stars / 1000 * weights.stars, weights.stars);
+    // Tests weight
+    if (analysis.hasTests) {
+        score += weights.tests;
+    }
+    // CI weight
+    if (analysis.hasCI) {
+        score += weights.ci;
+    }
+    // Age weight (older repositories get more weight)
+    const ageScore = Math.min(analysis.ageInDays / 365 * weights.age, weights.age);
+    score += ageScore;
+    // Add bonus for proper structure
+    if (analysis.hasPackageJson && analysis.hasMCPConfig) {
+        score += 0.1;
+    }
+    // Bonus for language-specific patterns
+    if (analysis.language === '.ts' || analysis.language === '.js') {
+        score += 0.05;
+    }
+    return Math.round(score);
+}
+//# sourceMappingURL=server-scanner.js.map

package/dist/scanners/server-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server-scanner.js","sourceRoot":"","sources":["../../src/scanners/server-scanner.ts"],"names":[],"mappings":";;;;;AAgCA,kCA8DC;AA9FD,wCAAwC;AACxC,4DAAmC;AACnC,wDAA0B;AAC1B,gDAAwB;AAGxB,4CAAyC;AA0BlC,KAAK,UAAU,WAAW,CAAC,UAAkB,EAAE,OAAoB,EAAE,OAAO,GAAG,KAAK;IACzF,eAAM,CAAC,IAAI,CAAC,yBAAyB,UAAU,EAAE,CAAC,CAAC;IAEnD,MAAM,QAAQ,GAAG,MAAM,kBAAkB,CAAC,UAAU,CAAC,CAAC;IACtD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,2BAA2B,UAAU,EAAE,CAAC,CAAC;IAC3D,CAAC;IAED,MAAM,MAAM,GAAmB;QAC7B,QAAQ,EAAE,QAAQ;QAClB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,MAAM,EAAE,UAAU;QAClB,MAAM,EAAE,EAAE;QACV,KAAK,EAAE,CAAC;QACR,OAAO,EAAE;YACP,gBAAgB,EAAE,CAAC;YACnB,cAAc,EAAE,CAAC;YACjB,gBAAgB,EAAE,CAAC;YACnB,aAAa,EAAE,CAAC;SACjB;KACF,CAAC;IAEF,IAAI,CAAC;QACH,mBAAmB;QACnB,MAAM,SAAS,GAAG,MAAM,eAAe,CAAC,QAAQ,CAAC,CAAC;QAElD,qBAAqB;QACrB,MAAM,QAAQ,GAAG,MAAM,iBAAiB,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QAE7D,wBAAwB;QACxB,MAAM,CAAC,KAAK,GAAG,mBAAmB,CAAC,QAAQ,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;QAElE,mCAAmC;QACnC,MAAM,eAAe,GAAG,MAAM,6BAA6B,CAAC,SAAS,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;QAC1F,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,eAAe,CAAC,CAAC;QAEvC,iBAAiB;QACjB,MAAM,CAAC,OAAO,CAAC,cAAc,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QACpF,MAAM,CAAC,OAAO,CAAC,gBAAgB,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACxF,MAAM,CAAC,OAAO,CAAC,aAAa,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,KAAK,CAAC,CAAC,MAAM,CAAC;QAElF,UAAU;QACV,MAAM,kBAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAE3B,IAAI,OAAO,EAAE,CAAC;YACZ,eAAM,CAAC,KAAK,CAAC,gCAAgC,EAAE,QAAQ,CAAC,CAAC;QAC3D,CAAC;IAEH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,eAAM,CAAC,KAAK,CAAC,8BAA8B,UAAU,GAAG,EAAE,KAAK,CAAC,CAAC;QACjE,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;YACjB,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,QAAQ;YAClB,KAAK,EAAE,4BAA4B;YACnC,WAAW,EAAE,iCAAiC,UAAU,EAAE;YAC1D,cAAc,EAAE,6EAA6E;YAC7F,QAAQ,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;SACjE,CAAC,CAAC;QACH,MAAM,CAAC,KAAK,GAAG,CAAC,CAAC;IACnB,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,kBAAkB,CAAC,GAAW;IAC3C,IAAI,KAAa,EAAE,IAAY,CAAC;IAEhC,IAAI,GAAG,CAAC,UAAU,CAAC,qBAAqB,CAAC,EAAE,CAAC;QAC1C,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAChE,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;YACtB,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACjB,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YACpC,OAAO;gBACL,GAAG;gBACH,KAAK;gBACL,IAAI;gBACJ,SAAS,EAAE,cAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,GAAG,KAAK,IAAI,IAAI,EAAE,CAAC;gBACtE,KAAK,EAAE,CAAC;gBACR,QAAQ,EAAE,KAAK;gBACf,KAAK,EAAE,KAAK;gBACZ,SAAS,EAAE,CAAC;aACb,CAAC;QACJ,CAAC;IACH,CAAC;SAAM,IAAI,GAAG,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;QACzC,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACxD,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;YACtB,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACjB,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YACpC,OAAO;gBACL,GAAG,EAAE,sBAAsB,KAAK,IAAI,IAAI,EAAE;gBAC1C,KAAK;gBACL,IAAI;gBACJ,SAAS,EAAE,cAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,GAAG,KAAK,IAAI,IAAI,EAAE,CAAC;gBACtE,KAAK,EAAE,CAAC;gBACR,QAAQ,EAAE,KAAK;gBACf,KAAK,EAAE,KAAK;gBACZ,SAAS,EAAE,CAAC;aACb,CAAC;QACJ,CAAC;IACH,CAAC;SAAM,IAAI,cAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAChC,aAAa;QACb,MAAM,KAAK,GAAG,MAAM,kBAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACjC,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;YACxB,OAAO;gBACL,GAAG,EAAE,SAAS,GAAG,EAAE;gBACnB,KAAK,EAAE,OAAO;gBACd,IAAI,EAAE,cAAI,CAAC,QAAQ,CAAC,GAAG,CAAC;gBACxB,SAAS,EAAE,GAAG;gBACd,KAAK,EAAE,CAAC;gBACR,QAAQ,EAAE,KAAK;gBACf,KAAK,EAAE,KAAK;gBACZ,SAAS,EAAE,CAAC;aACb,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,KAAK,UAAU,eAAe,CAAC,QAAwB;IACrD,IAAI,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QACtC,OAAO,QAAQ,CAAC,SAAS,CAAC;IAC5B,CAAC;IAED,IAAI,CAAC;QACH,MAAM,kBAAE,CAAC,SAAS,CAAC,cAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,CAAC;QAErD,sCAAsC;QACtC,MAAM,OAAO,GAAG,IAAI,cAAO,EAAE,CAAC;QAC9B,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC;YAC5C,KAAK,EAAE,QAAQ,CAAC,KAAK;YACrB,IAAI,EAAE,QAAQ,CAAC,IAAI;SACpB,CAAC,CAAC;QAEH,QAAQ,CAAC,KAAK,GAAG,IAAI,CAAC,gBAAgB,IAAI,CAAC,CAAC;QAC5C,QAAQ,CAAC,QAAQ,GAAG,IAAI,CAAC,MAAM,EAAE,QAAQ,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC;QAC5D,QAAQ,CAAC,KAAK,GAAG,IAAI,CAAC,UAAU,IAAI,KAAK,CAAC;QAC1C,QAAQ,CAAC,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,CAAC,GAAG,CAAC,IAAI,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC;QAC5G,QAAQ,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,SAAS,CAAC;QAErD,uBAAuB;QACvB,MAAM,GAAG,GAAG,IAAA,oBAAS,GAAE,CAAC;QACxB,MAAM,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,QAAQ,CAAC,SAAS,CAAC,CAAC;QAElD,OAAO,QAAQ,CAAC,SAAS,CAAC;IAC5B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,+BAA+B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAC3G,CAAC;AACH,CAAC;AAED,KAAK,UAAU,iBAAiB,CAAC,SAAiB,EAAE,OAAoB;IACtE,MAAM,QAAQ,GAAG;QACf,cAAc,EAAE,KAAK;QACrB,YAAY,EAAE,KAAK;QACnB,QAAQ,EAAE,KAAK;QACf,KAAK,EAAE,KAAK;QACZ,QAAQ,EAAE,SAAS;QACnB,YAAY,EAAE,CAAC;QACf,KAAK,EAAE,CAAC;QACR,IAAI,EAAE,CAAC;KACR,CAAC;IAEF,IAAI,CAAC;QACH,yBAAyB;QACzB,QAAQ,CAAC,cAAc,GAAG,MAAM,kBAAE,CAAC,UAAU,CAAC,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC,CAAC;QAEpF,6BAA6B;QAC7B,MAAM,QAAQ,GAAG,CAAC,UAAU,EAAE,4BAA4B,EAAE,aAAa,CAAC,CAAC;QAC3E,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;YAC5B,IAAI,MAAM,kBAAE,CAAC,UAAU,CAAC,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC,EAAE,CAAC;gBACpD,QAAQ,CAAC,YAAY,GAAG,IAAI,CAAC;gBAC7B,MAAM;YACR,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,MAAM,QAAQ,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QACjE,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,IAAI,MAAM,kBAAE,CAAC,UAAU,CAAC,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,EAAE,CAAC;gBACnD,QAAQ,CAAC,QAAQ,GAAG,IAAI,CAAC;gBACzB,MAAM;YACR,CAAC;QACH,CAAC;QAED,qBAAqB;QACrB,MAAM,OAAO,GAAG,CAAC,mBAAmB,EAAE,gBAAgB,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC;QACpF,KAAK,MAAM,IAAI,IAAI,OAAO,EAAE,CAAC;YAC3B,MAAM,QAAQ,GAAG,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;YAC5C,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,MAAM,kBAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAChE,MAAM,KAAK,GAAG,MAAM,kBAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;gBACzC,QAAQ,CAAC,KAAK,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC;YACpC,CAAC;iBAAM,IAAI,MAAM,kBAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACzC,QAAQ,CAAC,KAAK,GAAG,IAAI,CAAC;YACxB,CAAC;QACH,CAAC;QAED,uBAAuB;QACvB,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,SAAS,CAAC,CAAC;QAC3C,QAAQ,CAAC,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC;QAC9B,QAAQ,CAAC,IAAI,GAAG,MAAM,gBAAgB,CAAC,SAAS,CAAC,CAAC;QAElD,iCAAiC;QACjC,QAAQ,CAAC,QAAQ,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;QAE1C,yBAAyB;QACzB,IAAI,QAAQ,CAAC,cAAc,EAAE,CAAC;YAC5B,MAAM,WAAW,GAAG,MAAM,kBAAE,CAAC,QAAQ,CAAC,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC,CAAC;YAC5E,QAAQ,CAAC,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,YAAY,IAAI,EAAE,CAAC,CAAC,MAAM;gBACnD,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,eAAe,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;QAC/E,CAAC;IAEH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,eAAM,CAAC,IAAI,CAAC,mCAAmC,EAAE,KAAK,CAAC,CAAC;IAC1D,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,KAAK,UAAU,6BAA6B,CAAC,SAAiB,EAAE,KAAa;IAC3E,MAAM,eAAe,GAAoB,EAAE,CAAC;IAC5C,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,SAAS,CAAC,CAAC;IAE3C,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,KAAK,GAAG,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,GAAG,KAAK,EAAE,CAAC;YAChD,SAAS,CAAC,+BAA+B;QAC3C,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,kBAAE,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAChD,MAAM,YAAY,GAAG,cAAI,CAAC,QAAQ,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;QAEpD,8BAA8B;QAC9B,MAAM,OAAO,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;QACzC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YACvB,eAAe,CAAC,IAAI,CAAC;gBACnB,IAAI,EAAE,MAAM;gBACZ,QAAQ,EAAE,QAAQ;gBAClB,KAAK,EAAE,2BAA2B;gBAClC,WAAW,EAAE,6BAA6B,YAAY,EAAE;gBACxD,cAAc,EAAE,wDAAwD;gBACxE,QAAQ,EAAE,gBAAgB,MAAM,CAAC,IAAI,WAAW,MAAM,CAAC,IAAI,EAAE;aAC9D,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,gCAAgC;QAChC,MAAM,kBAAkB,GAAG,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAC/D,kBAAkB,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAChC,eAAe,CAAC,IAAI,CAAC;gBACnB,IAAI,EAAE,QAAQ;gBACd,QAAQ,EAAE,aAAa;gBACvB,KAAK,EAAE,0BAA0B;gBACjC,WAAW,EAAE,0CAA0C,IAAI,EAAE;gBAC7D,cAAc,EAAE,yDAAyD;gBACzE,QAAQ,EAAE,aAAa,IAAI,WAAW,YAAY,EAAE;aACrD,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,uBAAuB;QACvB,IAAI,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC9B,eAAe,CAAC,IAAI,CAAC;gBACnB,IAAI,EAAE,MAAM;gBACZ,QAAQ,EAAE,aAAa;gBACvB,KAAK,EAAE,cAAc;gBACrB,WAAW,EAAE,iCAAiC;gBAC9C,cAAc,EAAE,mCAAmC;gBACnD,QAAQ,EAAE,SAAS,YAAY,EAAE;aAClC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAC;AACzB,CAAC;AAED,SAAS,eAAe,CAAC,OAAe;IACtC,MAAM,eAAe,GAA0C,EAAE,CAAC;IAClE,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,MAAM,cAAc,GAAG;QACrB,kGAAkG;QAClG,sBAAsB;QACtB,wCAAwC;KACzC,CAAC;IAEF,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE;QAC5B,cAAc,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE;YAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAClC,IAAI,KAAK,EAAE,CAAC;gBACV,eAAe,CAAC,IAAI,CAAC;oBACnB,IAAI,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU;oBACvC,IAAI,EAAE,KAAK,GAAG,CAAC;iBAChB,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,OAAO,eAAe,CAAC;AACzB,CAAC;AAED,SAAS,0BAA0B,CAAC,OAAe;IACjD,MAAM,kBAAkB,GAAG;QACzB,MAAM,EAAE,OAAO,EAAE,eAAe,EAAE,MAAM,EAAE,SAAS;QACnD,MAAM,EAAE,UAAU,EAAE,YAAY,EAAE,aAAa;KAChD,CAAC;IAEF,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;QACnB,kBAAkB,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YAChC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,GAAG,GAAG,CAAC,EAAE,CAAC;gBAC9B,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACnB,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC;AAC7B,CAAC;AAED,KAAK,UAAU,WAAW,CAAC,GAAW;IACpC,MAAM,OAAO,GAAG,MAAM,kBAAE,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;IAC/D,MAAM,KAAK,GAAG,EAAE,CAAC;IAEjB,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,MAAM,QAAQ,GAAG,cAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QAC5C,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;YACxB,KAAK,CAAC,IAAI,CAAC,GAAG,MAAM,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC7C,CAAC;aAAM,CAAC;YACN,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACvB,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,KAAK,UAAU,gBAAgB,CAAC,GAAW;IACzC,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,GAAG,CAAC,CAAC;IACrC,IAAI,IAAI,GAAG,CAAC,CAAC;IAEb,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,KAAK,GAAG,MAAM,kBAAE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClC,IAAI,IAAI,KAAK,CAAC,IAAI,CAAC;IACrB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,cAAc,CAAC,KAAe;IACrC,MAAM,UAAU,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,cAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC;IACtE,MAAM,aAAa,GAA2B,EAAE,CAAC;IAEjD,UAAU,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE;QACvB,aAAa,CAAC,GAAG,CAAC,GAAG,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAC,CAAC,CAAC,EAAE,CAAC,EAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAChF,OAAO,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;AAChD,CAAC;AAED,SAAS,mBAAmB,CAAC,QAAa,EAAE,OAAY;IACtD,IAAI,KAAK,GAAG,CAAC,CAAC;IAEd,0DAA0D;IAC1D,KAAK,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,GAAG,IAAI,GAAG,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC;IAExE,eAAe;IACf,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;QACtB,KAAK,IAAI,OAAO,CAAC,KAAK,CAAC;IACzB,CAAC;IAED,YAAY;IACZ,IAAI,QAAQ,CAAC,KAAK,EAAE,CAAC;QACnB,KAAK,IAAI,OAAO,CAAC,EAAE,CAAC;IACtB,CAAC;IAED,kDAAkD;IAClD,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,GAAG,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC;IAC/E,KAAK,IAAI,QAAQ,CAAC;IAElB,iCAAiC;IACjC,IAAI,QAAQ,CAAC,cAAc,IAAI,QAAQ,CAAC,YAAY,EAAE,CAAC;QACrD,KAAK,IAAI,GAAG,CAAC;IACf,CAAC;IAED,uCAAuC;IACvC,IAAI,QAAQ,CAAC,QAAQ,KAAK,KAAK,IAAI,QAAQ,CAAC,QAAQ,KAAK,KAAK,EAAE,CAAC;QAC/D,KAAK,IAAI,IAAI,CAAC;IAChB,CAAC;IAED,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;AAC3B,CAAC"}

package/dist/types/security-result.d.ts

@@ -0,0 +1,35 @@
+export interface SecurityIssue {
+    type: 'high' | 'medium' | 'low';
+    category: 'permissions' | 'config' | 'filesystem' | 'network' | 'injection' | 'supply-chain' | 'transport';
+    title: string;
+    description: string;
+    recommendation: string;
+    evidence?: string;
+}
+export interface ScanSummary {
+    configFilesFound: number;
+    highRiskIssues: number;
+    mediumRiskIssues: number;
+    lowRiskIssues: number;
+}
+export interface SecurityResult {
+    scanType: 'config' | 'server';
+    timestamp: string;
+    target: string;
+    issues: SecurityIssue[];
+    score: number;
+    summary: ScanSummary;
+    metadata?: Record<string, any>;
+}
+export interface VulnerabilityDatabaseEntry {
+    id: string;
+    title: string;
+    description: string;
+    severity: 'high' | 'medium' | 'low';
+    affectedPackages: string[];
+    patchedVersions: string[];
+    published: string;
+    updated: string;
+    references?: string[];
+}
+//# sourceMappingURL=security-result.d.ts.map

package/dist/types/security-result.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-result.d.ts","sourceRoot":"","sources":["../../src/types/security-result.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IAChC,QAAQ,EAAE,aAAa,GAAG,QAAQ,GAAG,YAAY,GAAG,SAAS,GAAG,WAAW,GAAG,cAAc,GAAG,WAAW,CAAC;IAC3G,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,gBAAgB,EAAE,MAAM,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,gBAAgB,EAAE,MAAM,CAAC;IACzB,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,EAAE,QAAQ,GAAG,QAAQ,CAAC;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,aAAa,EAAE,CAAC;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,WAAW,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,0BAA0B;IACzC,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACpC,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;CACvB"}

package/dist/types/security-result.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=security-result.js.map

package/dist/types/security-result.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-result.js","sourceRoot":"","sources":["../../src/types/security-result.ts"],"names":[],"mappings":""}

package/dist/utils/logger.d.ts

@@ -0,0 +1,19 @@
+export type LogLevel = 'info' | 'warn' | 'error' | 'debug';
+export interface LoggerOptions {
+    verbose?: boolean;
+    silent?: boolean;
+}
+export declare class Logger {
+    private options;
+    constructor(options?: LoggerOptions);
+    private log;
+    info(message: string, data?: any): void;
+    warn(message: string, data?: any): void;
+    error(message: string, data?: any): void;
+    debug(message: string, data?: any): void;
+    success(message: string): void;
+    start(message: string): void;
+    separator(): void;
+}
+export declare const logger: Logger;
+//# sourceMappingURL=logger.d.ts.map

package/dist/utils/logger.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.d.ts","sourceRoot":"","sources":["../../src/utils/logger.ts"],"names":[],"mappings":"AAEA,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,OAAO,CAAC;AAE3D,MAAM,WAAW,aAAa;IAC5B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,MAAM,CAAC,EAAE,OAAO,CAAC;CAClB;AAED,qBAAa,MAAM;IACjB,OAAO,CAAC,OAAO,CAAgB;gBAEnB,OAAO,GAAE,aAAkB;IAIvC,OAAO,CAAC,GAAG;IAwCX,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,GAAG,GAAG,IAAI;IAIvC,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,GAAG,GAAG,IAAI;IAIvC,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,GAAG,GAAG,IAAI;IAIxC,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,GAAG,GAAG,IAAI;IAIxC,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAI9B,KAAK,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAI5B,SAAS,IAAI,IAAI;CAGlB;AAED,eAAO,MAAM,MAAM,QAAe,CAAC"}

package/dist/utils/logger.js

@@ -0,0 +1,71 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.logger = exports.Logger = void 0;
+const chalk_1 = __importDefault(require("chalk"));
+class Logger {
+    constructor(options = {}) {
+        this.options = options;
+    }
+    log(level, message, data) {
+        if (this.options.silent)
+            return;
+        const timestamp = new Date().toISOString();
+        const prefix = `[${timestamp}]`;
+        const levelIcon = {
+            info: 'ℹ️',
+            warn: '⚠️',
+            error: '❌',
+            debug: '🔍'
+        }[level];
+        let formattedMessage = `${chalk_1.default.gray(prefix)} ${levelIcon} ${message}`;
+        if (this.options.verbose) {
+            formattedMessage = `${chalk_1.default.gray(prefix)} ${chalk_1.default.cyan(levelIcon)} ${message}`;
+        }
+        switch (level) {
+            case 'info':
+                console.log(formattedMessage);
+                break;
+            case 'warn':
+                console.warn(chalk_1.default.yellow(formattedMessage));
+                break;
+            case 'error':
+                console.error(chalk_1.default.red(formattedMessage));
+                break;
+            case 'debug':
+                if (this.options.verbose) {
+                    console.debug(chalk_1.default.gray(formattedMessage));
+                }
+                break;
+        }
+        if (data && this.options.verbose) {
+            console.log(chalk_1.default.gray(JSON.stringify(data, null, 2)));
+        }
+    }
+    info(message, data) {
+        this.log('info', message, data);
+    }
+    warn(message, data) {
+        this.log('warn', message, data);
+    }
+    error(message, data) {
+        this.log('error', message, data);
+    }
+    debug(message, data) {
+        this.log('debug', message, data);
+    }
+    success(message) {
+        console.log(chalk_1.default.green(`✅ ${message}`));
+    }
+    start(message) {
+        console.log(chalk_1.default.blue(`🚀 ${message}`));
+    }
+    separator() {
+        console.log(chalk_1.default.gray('─'.repeat(50)));
+    }
+}
+exports.Logger = Logger;
+exports.logger = new Logger();
+//# sourceMappingURL=logger.js.map

package/dist/utils/logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.js","sourceRoot":"","sources":["../../src/utils/logger.ts"],"names":[],"mappings":";;;;;;AAAA,kDAA0B;AAS1B,MAAa,MAAM;IAGjB,YAAY,UAAyB,EAAE;QACrC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IACzB,CAAC;IAEO,GAAG,CAAC,KAAe,EAAE,OAAe,EAAE,IAAU;QACtD,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM;YAAE,OAAO;QAEhC,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC3C,MAAM,MAAM,GAAG,IAAI,SAAS,GAAG,CAAC;QAChC,MAAM,SAAS,GAAG;YAChB,IAAI,EAAE,IAAI;YACV,IAAI,EAAE,IAAI;YACV,KAAK,EAAE,GAAG;YACV,KAAK,EAAE,IAAI;SACZ,CAAC,KAAK,CAAC,CAAC;QAET,IAAI,gBAAgB,GAAG,GAAG,eAAK,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,SAAS,IAAI,OAAO,EAAE,CAAC;QAEvE,IAAI,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;YACzB,gBAAgB,GAAG,GAAG,eAAK,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,eAAK,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,OAAO,EAAE,CAAC;QACjF,CAAC;QAED,QAAQ,KAAK,EAAE,CAAC;YACd,KAAK,MAAM;gBACT,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;gBAC9B,MAAM;YACR,KAAK,MAAM;gBACT,OAAO,CAAC,IAAI,CAAC,eAAK,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC;gBAC7C,MAAM;YACR,KAAK,OAAO;gBACV,OAAO,CAAC,KAAK,CAAC,eAAK,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC,CAAC;gBAC3C,MAAM;YACR,KAAK,OAAO;gBACV,IAAI,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;oBACzB,OAAO,CAAC,KAAK,CAAC,eAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC;gBAC9C,CAAC;gBACD,MAAM;QACV,CAAC;QAED,IAAI,IAAI,IAAI,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;YACjC,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;QACzD,CAAC;IACH,CAAC;IAED,IAAI,CAAC,OAAe,EAAE,IAAU;QAC9B,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,IAAI,CAAC,OAAe,EAAE,IAAU;QAC9B,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,KAAK,CAAC,OAAe,EAAE,IAAU;QAC/B,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,OAAe,EAAE,IAAU;QAC/B,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC;IACnC,CAAC;IAED,OAAO,CAAC,OAAe;QACrB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,KAAK,OAAO,EAAE,CAAC,CAAC,CAAC;IAC3C,CAAC;IAED,KAAK,CAAC,OAAe;QACnB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,MAAM,OAAO,EAAE,CAAC,CAAC,CAAC;IAC3C,CAAC;IAED,SAAS;QACP,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC1C,CAAC;CACF;AA1ED,wBA0EC;AAEY,QAAA,MAAM,GAAG,IAAI,MAAM,EAAE,CAAC"}

package/package.json

@@ -0,0 +1,77 @@
+{
+  "name": "@sulthonzh/mcp-audit",
+  "version": "1.1.0",
+  "description": "Security scanner for MCP (Model Context Protocol) servers",
+  "main": "dist/index.js",
+  "bin": {
+    "mcp-audit": "dist/cli.js"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "ts-node src/cli.ts",
+    "start": "node dist/cli.js",
+    "test": "node --import tsx --test test/*.test.ts",
+    "test:jest": "jest",
+    "test:watch": "jest --watch",
+    "lint": "eslint src/**/*.ts",
+    "lint:fix": "eslint src/**/*.ts --fix",
+    "prepare": "npm run build"
+  },
+  "keywords": [
+    "mcp",
+    "security",
+    "audit",
+    "ai",
+    "agent",
+    "scanner",
+    "vulnerability",
+    "cli"
+  ],
+  "author": "Sulthonzh",
+  "license": "MIT",
+  "dependencies": {
+    "@octokit/rest": "^19.0.0",
+    "axios": "^1.6.0",
+    "chalk": "^4.1.2",
+    "commander": "^11.0.0",
+    "crypto-js": "^4.2.0",
+    "fs-extra": "^11.1.0",
+    "glob": "^10.3.0",
+    "inquirer": "^9.2.0",
+    "js-yaml": "^4.1.0",
+    "ora": "^7.0.1",
+    "simple-git": "^3.20.0"
+  },
+  "devDependencies": {
+    "@types/crypto-js": "^4.2.1",
+    "@types/fs-extra": "^11.0.4",
+    "@types/inquirer": "^9.0.3",
+    "@types/jest": "^29.5.0",
+    "@types/js-yaml": "^4.0.6",
+    "@types/node": "^20.0.0",
+    "@typescript-eslint/eslint-plugin": "^6.0.0",
+    "@typescript-eslint/parser": "^6.0.0",
+    "eslint": "^8.0.0",
+    "jest": "^29.7.0",
+    "ts-jest": "^29.1.0",
+    "ts-node": "^10.9.0",
+    "tsx": "^4.22.4",
+    "typescript": "^5.2.0"
+  },
+  "files": [
+    "dist/**/*",
+    "README.md",
+    "LICENSE"
+  ],
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/sulthonzh/mcp-audit.git"
+  },
+  "bugs": {
+    "url": "https://github.com/sulthonzh/mcp-audit/issues"
+  },
+  "homepage": "https://github.com/sulthonzh/mcp-audit#readme"
+}