@trust-assurance-protocol/owaspscan 1.0.0

package/dist/scanner/language-detect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"language-detect.js","sourceRoot":"","sources":["../../src/scanner/language-detect.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,iEAAiE;AACjE,+DAA+D;AAE/D,OAAO,IAAI,MAAM,MAAM,CAAC;AAGxB,MAAM,aAAa,GAAsC;IACvD,0BAA0B;IAC1B,KAAK,EAAE,YAAY;IACnB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IACpB,KAAK,EAAE,YAAY;IACnB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IAEpB,SAAS;IACT,KAAK,EAAE,QAAQ;IACf,MAAM,EAAE,QAAQ;IAChB,MAAM,EAAE,QAAQ;IAEhB,OAAO;IACP,OAAO,EAAE,MAAM;IAEf,KAAK;IACL,KAAK,EAAE,IAAI;IAEX,MAAM;IACN,MAAM,EAAE,KAAK;IACb,OAAO,EAAE,KAAK;IACd,OAAO,EAAE,KAAK;IACd,OAAO,EAAE,KAAK;IACd,QAAQ,EAAE,KAAK;IAEf,OAAO;IACP,KAAK,EAAE,MAAM;IACb,OAAO,EAAE,MAAM;IACf,UAAU,EAAE,MAAM;IAElB,KAAK;IACL,KAAK,EAAE,QAAQ;IAEf,UAAU;IACV,IAAI,EAAE,KAAK;IACX,KAAK,EAAE,KAAK;IACZ,MAAM,EAAE,KAAK;IACb,MAAM,EAAE,KAAK;IACb,IAAI,EAAE,KAAK;IACX,MAAM,EAAE,KAAK;IAEb,OAAO;IACP,KAAK,EAAE,MAAM;CACd,CAAC;AAEF,MAAM,WAAW,GAAsC;IACrD,MAAM,EAAE,YAAY;IACpB,QAAQ,EAAE,YAAY;IACtB,SAAS,EAAE,YAAY;IACvB,KAAK,EAAE,YAAY;IACnB,QAAQ,EAAE,QAAQ;IAClB,SAAS,EAAE,QAAQ;IACnB,SAAS,EAAE,QAAQ;IACnB,MAAM,EAAE,MAAM;IACd,KAAK,EAAE,KAAK;CACb,CAAC;AAEF,MAAM,UAAU,cAAc,CAC5B,QAAgB,EAChB,SAAkB;IAElB,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;IAEjD,wCAAwC;IACxC,IAAI,GAAG,IAAI,aAAa,EAAE,CAAC;QACzB,OAAO,aAAa,CAAC,GAAG,CAAE,CAAC;IAC7B,CAAC;IAED,kDAAkD;IAClD,IAAI,SAAS,EAAE,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAChC,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QACrC,MAAM,WAAW,GAAG,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC;QAC/D,IAAI,WAAW,IAAI,WAAW,EAAE,CAAC;YAC/B,OAAO,WAAW,CAAC,WAAW,CAAE,CAAC;QACnC,CAAC;QACD,4CAA4C;QAC5C,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,WAAW,EAAE,CAAC;YACvD,OAAO,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAE,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,QAAgB,EAAE,SAAkB;IAClE,OAAO,cAAc,CAAC,QAAQ,EAAE,SAAS,CAAC,KAAK,IAAI,CAAC;AACtD,CAAC;AAED,6DAA6D;AAC7D,MAAM,UAAU,eAAe,CAC7B,SAA8B,EAC9B,QAA2B;IAE3B,IAAI,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAC3C,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC;QAAE,OAAO,IAAI,CAAC;IAC9C,sEAAsE;IACtE,IAAI,QAAQ,KAAK,YAAY,IAAI,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC;QAAE,OAAO,IAAI,CAAC;IAC/E,iDAAiD;IACjD,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/scanner/sca-scanner.d.ts

@@ -0,0 +1,38 @@
+import type { Finding } from '../types/index.js';
+export interface PackageEntry {
+    name: string;
+    version: string;
+    ecosystem: 'npm' | 'PyPI';
+}
+interface OsvVuln {
+    id: string;
+    aliases?: string[];
+    summary?: string;
+    severity?: Array<{
+        type: string;
+        score: string;
+    }>;
+    affected?: Array<{
+        package?: {
+            name: string;
+            ecosystem: string;
+        };
+        ranges?: Array<{
+            type: string;
+            events: Array<{
+                introduced?: string;
+                fixed?: string;
+            }>;
+        }>;
+        versions?: string[];
+    }>;
+}
+export declare function parsePackageLock(content: string): PackageEntry[];
+export declare function parseRequirementsTxt(content: string): PackageEntry[];
+export declare function queryCVEs(packages: PackageEntry[]): Promise<Array<{
+    pkg: PackageEntry;
+    vulns: OsvVuln[];
+}>>;
+export declare function runSCA(projectRoot: string, manifestPath?: string): Promise<Finding[]>;
+export {};
+//# sourceMappingURL=sca-scanner.d.ts.map

package/dist/scanner/sca-scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sca-scanner.d.ts","sourceRoot":"","sources":["../../src/scanner/sca-scanner.ts"],"names":[],"mappings":"AAUA,OAAO,KAAK,EAAE,OAAO,EAAY,MAAM,mBAAmB,CAAC;AAE3D,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,KAAK,GAAG,MAAM,CAAC;CAC3B;AAED,UAAU,OAAO;IACf,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAClD,QAAQ,CAAC,EAAE,KAAK,CAAC;QACf,OAAO,CAAC,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,SAAS,EAAE,MAAM,CAAA;SAAE,CAAC;QAC9C,MAAM,CAAC,EAAE,KAAK,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,MAAM,EAAE,KAAK,CAAC;gBAAE,UAAU,CAAC,EAAE,MAAM,CAAC;gBAAC,KAAK,CAAC,EAAE,MAAM,CAAA;aAAE,CAAC,CAAA;SAAE,CAAC,CAAC;QACzF,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;KACrB,CAAC,CAAC;CACJ;AAYD,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,MAAM,GAAG,YAAY,EAAE,CAoChE;AAED,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,MAAM,GAAG,YAAY,EAAE,CAepE;AAyED,wBAAsB,SAAS,CAC7B,QAAQ,EAAE,YAAY,EAAE,GACvB,OAAO,CAAC,KAAK,CAAC;IAAE,GAAG,EAAE,YAAY,CAAC;IAAC,KAAK,EAAE,OAAO,EAAE,CAAA;CAAE,CAAC,CAAC,CAiCzD;AAID,wBAAsB,MAAM,CAAC,WAAW,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC,CAgE3F"}

package/dist/scanner/sca-scanner.js

@@ -0,0 +1,223 @@
+// ============================================================
+// SCA Scanner — Software Composition Analysis
+// Parses package-lock.json / requirements.txt and queries the
+// OSV (Open Source Vulnerabilities) API for known CVEs.
+// OSV API: https://osv.dev/docs/ — free, no API key required
+// ============================================================
+import fs from 'fs';
+import path from 'path';
+import https from 'https';
+// ---- Manifest parsers ----
+export function parsePackageLock(content) {
+    try {
+        const lockfile = JSON.parse(content);
+        const entries = [];
+        // v2/v3 format: "packages" key
+        if (lockfile.packages) {
+            for (const [key, value] of Object.entries(lockfile.packages)) {
+                if (!key || key === '' || !key.startsWith('node_modules/'))
+                    continue;
+                const name = key.replace(/^node_modules\//, '').replace(/\/node_modules\//, '/');
+                const version = value.version;
+                if (name && version) {
+                    entries.push({ name, version, ecosystem: 'npm' });
+                }
+            }
+        }
+        // v1 format: "dependencies" key
+        if (!entries.length && lockfile.dependencies) {
+            for (const [name, value] of Object.entries(lockfile.dependencies)) {
+                const version = value.version;
+                if (name && version) {
+                    entries.push({ name, version, ecosystem: 'npm' });
+                }
+            }
+        }
+        return entries;
+    }
+    catch {
+        return [];
+    }
+}
+export function parseRequirementsTxt(content) {
+    const entries = [];
+    for (const rawLine of content.split('\n')) {
+        const line = rawLine.split('#')[0].trim(); // strip comments
+        if (!line || line.startsWith('-') || line.startsWith('http'))
+            continue;
+        // Match name==version (exact pins only — others can't be CVE-checked precisely)
+        const match = /^([A-Za-z0-9_\-.]+)\s*==\s*([^\s;,]+)/.exec(line);
+        if (match) {
+            const name = match[1].toLowerCase().replace(/_/g, '-');
+            const version = match[2];
+            entries.push({ name, version, ecosystem: 'PyPI' });
+        }
+    }
+    return entries;
+}
+// ---- OSV API ----
+function httpsPost(url, body) {
+    return new Promise((resolve, reject) => {
+        const urlObj = new URL(url);
+        const options = {
+            hostname: urlObj.hostname,
+            path: urlObj.pathname,
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                'Content-Length': Buffer.byteLength(body),
+                'User-Agent': 'OWASPScan/1.0',
+            },
+        };
+        const req = https.request(options, (res) => {
+            const chunks = [];
+            res.on('data', (chunk) => chunks.push(chunk));
+            res.on('end', () => resolve(Buffer.concat(chunks).toString('utf8')));
+        });
+        req.on('error', reject);
+        req.setTimeout(15000, () => {
+            req.destroy(new Error('OSV API timeout'));
+        });
+        req.write(body);
+        req.end();
+    });
+}
+function cvssToSeverity(score) {
+    if (score >= 9.0)
+        return 'CRITICAL';
+    if (score >= 7.0)
+        return 'HIGH';
+    if (score >= 4.0)
+        return 'MEDIUM';
+    return 'LOW';
+}
+function extractSeverity(vuln) {
+    for (const sev of vuln.severity ?? []) {
+        if (sev.type === 'CVSS_V3' || sev.type === 'CVSS_V2') {
+            const score = parseFloat(sev.score);
+            if (!isNaN(score))
+                return cvssToSeverity(score);
+        }
+    }
+    // Fallback: infer from OSV ID prefix
+    const id = vuln.id ?? '';
+    if (id.startsWith('CVE') || id.startsWith('GHSA'))
+        return 'HIGH';
+    return 'MEDIUM';
+}
+function extractCVEs(vuln) {
+    const cves = [];
+    for (const alias of vuln.aliases ?? []) {
+        if (alias.startsWith('CVE-'))
+            cves.push(alias);
+    }
+    if (!cves.length && vuln.id)
+        cves.push(vuln.id);
+    return cves;
+}
+function extractFixedVersion(vuln) {
+    for (const affected of vuln.affected ?? []) {
+        for (const range of affected.ranges ?? []) {
+            for (const event of range.events ?? []) {
+                if (event.fixed)
+                    return event.fixed;
+            }
+        }
+    }
+    return null;
+}
+export async function queryCVEs(packages) {
+    if (packages.length === 0)
+        return [];
+    const batchPayload = {
+        queries: packages.map((pkg) => ({
+            version: pkg.version,
+            package: { name: pkg.name, ecosystem: pkg.ecosystem },
+        })),
+    };
+    let responseText;
+    try {
+        responseText = await httpsPost('https://api.osv.dev/v1/querybatch', JSON.stringify(batchPayload));
+    }
+    catch {
+        // Network failure — return empty rather than crashing
+        return [];
+    }
+    let response;
+    try {
+        response = JSON.parse(responseText);
+    }
+    catch {
+        return [];
+    }
+    const results = [];
+    for (let i = 0; i < packages.length; i++) {
+        const vulns = response.results[i]?.vulns ?? [];
+        if (vulns.length > 0) {
+            results.push({ pkg: packages[i], vulns });
+        }
+    }
+    return results;
+}
+// ---- Main entry point ----
+export async function runSCA(projectRoot, manifestPath) {
+    const findings = [];
+    // Collect packages from all manifest files found
+    let allPackages = [];
+    const manifestFiles = manifestPath
+        ? [manifestPath]
+        : [
+            path.join(projectRoot, 'package-lock.json'),
+            path.join(projectRoot, 'requirements.txt'),
+            path.join(projectRoot, 'requirements-dev.txt'),
+        ];
+    for (const mf of manifestFiles) {
+        if (!fs.existsSync(mf))
+            continue;
+        const content = fs.readFileSync(mf, 'utf8');
+        if (mf.endsWith('package-lock.json')) {
+            allPackages = allPackages.concat(parsePackageLock(content));
+        }
+        else if (mf.includes('requirements')) {
+            allPackages = allPackages.concat(parseRequirementsTxt(content));
+        }
+    }
+    if (allPackages.length === 0)
+        return findings;
+    // Query OSV in batches of 1000 (API limit)
+    const BATCH_SIZE = 1000;
+    for (let offset = 0; offset < allPackages.length; offset += BATCH_SIZE) {
+        const batch = allPackages.slice(offset, offset + BATCH_SIZE);
+        const vulnerable = await queryCVEs(batch);
+        for (const { pkg, vulns } of vulnerable) {
+            for (const vuln of vulns) {
+                const cves = extractCVEs(vuln);
+                const severity = extractSeverity(vuln);
+                const fixedVersion = extractFixedVersion(vuln);
+                const cveList = cves.join(', ');
+                const fixMsg = fixedVersion ? `Upgrade to ${pkg.name}@${fixedVersion}` : 'Update to the latest patched version';
+                findings.push({
+                    ruleId: 'OWASP-A06-002',
+                    ruleName: 'Vulnerable Dependency (SCA)',
+                    owasp: 'A06:2021',
+                    cwe: 'CWE-1104',
+                    severity,
+                    filePath: path.join(projectRoot, pkg.ecosystem === 'npm' ? 'package-lock.json' : 'requirements.txt'),
+                    line: 1,
+                    column: 1,
+                    snippet: `${pkg.name}@${pkg.version}`,
+                    message: `${pkg.name}@${pkg.version} — ${cveList}: ${vuln.summary?.slice(0, 150) ?? 'Known vulnerability'}`,
+                    fix: `${fixMsg}\n\n${vuln.summary ?? ''}\n\nReferences: ${['https://osv.dev/vulnerability/' + vuln.id, ...cves.map((c) => `https://nvd.nist.gov/vuln/detail/${c}`)].join(', ')}`,
+                    references: [
+                        `https://osv.dev/vulnerability/${vuln.id}`,
+                        ...cves.map((c) => `https://nvd.nist.gov/vuln/detail/${c}`),
+                    ],
+                    confidence: 'HIGH',
+                    analysisMethod: 'regex',
+                });
+            }
+        }
+    }
+    return findings;
+}
+//# sourceMappingURL=sca-scanner.js.map

package/dist/scanner/sca-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sca-scanner.js","sourceRoot":"","sources":["../../src/scanner/sca-scanner.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,8CAA8C;AAC9C,8DAA8D;AAC9D,wDAAwD;AACxD,6DAA6D;AAC7D,+DAA+D;AAE/D,OAAO,EAAE,MAAM,IAAI,CAAC;AACpB,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,KAAK,MAAM,OAAO,CAAC;AA6B1B,6BAA6B;AAE7B,MAAM,UAAU,gBAAgB,CAAC,OAAe;IAC9C,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAIlC,CAAC;QAEF,MAAM,OAAO,GAAmB,EAAE,CAAC;QAEnC,+BAA+B;QAC/B,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;YACtB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC7D,IAAI,CAAC,GAAG,IAAI,GAAG,KAAK,EAAE,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,eAAe,CAAC;oBAAE,SAAS;gBACrE,MAAM,IAAI,GAAG,GAAG,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,kBAAkB,EAAE,GAAG,CAAC,CAAC;gBACjF,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC;gBAC9B,IAAI,IAAI,IAAI,OAAO,EAAE,CAAC;oBACpB,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,CAAC;gBACpD,CAAC;YACH,CAAC;QACH,CAAC;QAED,gCAAgC;QAChC,IAAI,CAAC,OAAO,CAAC,MAAM,IAAI,QAAQ,CAAC,YAAY,EAAE,CAAC;YAC7C,KAAK,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;gBAClE,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC;gBAC9B,IAAI,IAAI,IAAI,OAAO,EAAE,CAAC;oBACpB,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,CAAC;gBACpD,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,OAAe;IAClD,MAAM,OAAO,GAAmB,EAAE,CAAC;IACnC,KAAK,MAAM,OAAO,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1C,MAAM,IAAI,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAE,CAAC,IAAI,EAAE,CAAC,CAAC,iBAAiB;QAC7D,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;YAAE,SAAS;QAEvE,gFAAgF;QAChF,MAAM,KAAK,GAAG,uCAAuC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACjE,IAAI,KAAK,EAAE,CAAC;YACV,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;YACxD,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;YAC1B,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,oBAAoB;AAEpB,SAAS,SAAS,CAAC,GAAW,EAAE,IAAY;IAC1C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5B,MAAM,OAAO,GAAG;YACd,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,IAAI,EAAE,MAAM,CAAC,QAAQ;YACrB,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,gBAAgB,EAAE,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC;gBACzC,YAAY,EAAE,eAAe;aAC9B;SACF,CAAC;QAEF,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACzC,MAAM,MAAM,GAAa,EAAE,CAAC;YAC5B,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;YACtD,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACvE,CAAC,CAAC,CAAC;QAEH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QACxB,GAAG,CAAC,UAAU,CAAC,KAAK,EAAE,GAAG,EAAE;YACzB,GAAG,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC;QAC5C,CAAC,CAAC,CAAC;QACH,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChB,GAAG,CAAC,GAAG,EAAE,CAAC;IACZ,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,cAAc,CAAC,KAAa;IACnC,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,UAAU,CAAC;IACpC,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,MAAM,CAAC;IAChC,IAAI,KAAK,IAAI,GAAG;QAAE,OAAO,QAAQ,CAAC;IAClC,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,eAAe,CAAC,IAAa;IACpC,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,QAAQ,IAAI,EAAE,EAAE,CAAC;QACtC,IAAI,GAAG,CAAC,IAAI,KAAK,SAAS,IAAI,GAAG,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;YACrD,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;YACpC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC;gBAAE,OAAO,cAAc,CAAC,KAAK,CAAC,CAAC;QAClD,CAAC;IACH,CAAC;IACD,qCAAqC;IACrC,MAAM,EAAE,GAAG,IAAI,CAAC,EAAE,IAAI,EAAE,CAAC;IACzB,IAAI,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC;QAAE,OAAO,MAAM,CAAC;IACjE,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,WAAW,CAAC,IAAa;IAChC,MAAM,IAAI,GAAa,EAAE,CAAC;IAC1B,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,OAAO,IAAI,EAAE,EAAE,CAAC;QACvC,IAAI,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC;YAAE,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACjD,CAAC;IACD,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,EAAE;QAAE,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAChD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAa;IACxC,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,QAAQ,IAAI,EAAE,EAAE,CAAC;QAC3C,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,MAAM,IAAI,EAAE,EAAE,CAAC;YAC1C,KAAK,MAAM,KAAK,IAAI,KAAK,CAAC,MAAM,IAAI,EAAE,EAAE,CAAC;gBACvC,IAAI,KAAK,CAAC,KAAK;oBAAE,OAAO,KAAK,CAAC,KAAK,CAAC;YACtC,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,QAAwB;IAExB,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAErC,MAAM,YAAY,GAAG;QACnB,OAAO,EAAE,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;YAC9B,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,OAAO,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,GAAG,CAAC,SAAS,EAAE;SACtD,CAAC,CAAC;KACJ,CAAC;IAEF,IAAI,YAAoB,CAAC;IACzB,IAAI,CAAC;QACH,YAAY,GAAG,MAAM,SAAS,CAAC,mCAAmC,EAAE,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC,CAAC;IACpG,CAAC;IAAC,MAAM,CAAC;QACP,sDAAsD;QACtD,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,IAAI,QAA0B,CAAC;IAC/B,IAAI,CAAC;QACH,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAqB,CAAC;IAC1D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,MAAM,OAAO,GAAmD,EAAE,CAAC;IACnE,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACzC,MAAM,KAAK,GAAG,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,EAAE,CAAC;QAC/C,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,OAAO,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,QAAQ,CAAC,CAAC,CAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,6BAA6B;AAE7B,MAAM,CAAC,KAAK,UAAU,MAAM,CAAC,WAAmB,EAAE,YAAqB;IACrE,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,iDAAiD;IACjD,IAAI,WAAW,GAAmB,EAAE,CAAC;IAErC,MAAM,aAAa,GAAG,YAAY;QAChC,CAAC,CAAC,CAAC,YAAY,CAAC;QAChB,CAAC,CAAC;YACE,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,mBAAmB,CAAC;YAC3C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,kBAAkB,CAAC;YAC1C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,sBAAsB,CAAC;SAC/C,CAAC;IAEN,KAAK,MAAM,EAAE,IAAI,aAAa,EAAE,CAAC;QAC/B,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,EAAE,CAAC;YAAE,SAAS;QACjC,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QAC5C,IAAI,EAAE,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;YACrC,WAAW,GAAG,WAAW,CAAC,MAAM,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC,CAAC;QAC9D,CAAC;aAAM,IAAI,EAAE,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YACvC,WAAW,GAAG,WAAW,CAAC,MAAM,CAAC,oBAAoB,CAAC,OAAO,CAAC,CAAC,CAAC;QAClE,CAAC;IACH,CAAC;IAED,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IAE9C,2CAA2C;IAC3C,MAAM,UAAU,GAAG,IAAI,CAAC;IACxB,KAAK,IAAI,MAAM,GAAG,CAAC,EAAE,MAAM,GAAG,WAAW,CAAC,MAAM,EAAE,MAAM,IAAI,UAAU,EAAE,CAAC;QACvE,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAAC,CAAC;QAC7D,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,KAAK,CAAC,CAAC;QAE1C,KAAK,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,IAAI,UAAU,EAAE,CAAC;YACxC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC;gBAC/B,MAAM,QAAQ,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC;gBACvC,MAAM,YAAY,GAAG,mBAAmB,CAAC,IAAI,CAAC,CAAC;gBAC/C,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAChC,MAAM,MAAM,GAAG,YAAY,CAAC,CAAC,CAAC,cAAc,GAAG,CAAC,IAAI,IAAI,YAAY,EAAE,CAAC,CAAC,CAAC,sCAAsC,CAAC;gBAEhH,QAAQ,CAAC,IAAI,CAAC;oBACZ,MAAM,EAAE,eAAe;oBACvB,QAAQ,EAAE,6BAA6B;oBACvC,KAAK,EAAE,UAAU;oBACjB,GAAG,EAAE,UAAU;oBACf,QAAQ;oBACR,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,GAAG,CAAC,SAAS,KAAK,KAAK,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,kBAAkB,CAAC;oBACpG,IAAI,EAAE,CAAC;oBACP,MAAM,EAAE,CAAC;oBACT,OAAO,EAAE,GAAG,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;oBACrC,OAAO,EAAE,GAAG,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,MAAM,OAAO,KAAK,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,IAAI,qBAAqB,EAAE;oBAC3G,GAAG,EAAE,GAAG,MAAM,OAAO,IAAI,CAAC,OAAO,IAAI,EAAE,mBAAmB,CAAC,gCAAgC,GAAG,IAAI,CAAC,EAAE,EAAE,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,oCAAoC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;oBAChL,UAAU,EAAE;wBACV,iCAAiC,IAAI,CAAC,EAAE,EAAE;wBAC1C,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,oCAAoC,CAAC,EAAE,CAAC;qBAC5D;oBACD,UAAU,EAAE,MAAM;oBAClB,cAAc,EAAE,OAAO;iBACxB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/dist/types/index.d.ts

@@ -0,0 +1,114 @@
+export type Severity = 'CRITICAL' | 'HIGH' | 'MEDIUM' | 'LOW' | 'INFO';
+export type OWASPCategory = 'A01:2021' | 'A02:2021' | 'A03:2021' | 'A04:2021' | 'A05:2021' | 'A06:2021' | 'A07:2021' | 'A08:2021' | 'A09:2021' | 'A10:2021' | 'LLM01:2025' | 'LLM02:2025' | 'LLM03:2025' | 'LLM04:2025' | 'LLM05:2025' | 'LLM06:2025' | 'LLM07:2025' | 'LLM08:2025' | 'LLM09:2025' | 'LLM10:2025' | 'EXTRA';
+export type SupportedLanguage = 'javascript' | 'typescript' | 'python' | 'java' | 'go' | 'php' | 'ruby' | 'csharp' | 'cpp' | 'rust' | 'all';
+export type OutputFormat = 'console' | 'json' | 'sarif' | 'llm';
+export type FailOnLevel = 'critical' | 'high' | 'medium' | 'low' | 'never';
+export type AnalysisMethod = 'regex' | 'ast' | 'taint' | 'llm';
+export type Confidence = 'HIGH' | 'MEDIUM' | 'LOW';
+export interface Finding {
+    ruleId: string;
+    ruleName: string;
+    owasp: OWASPCategory;
+    cwe: string;
+    severity: Severity;
+    filePath: string;
+    line: number;
+    column: number;
+    snippet: string;
+    message: string;
+    fix: string;
+    references: string[];
+    confidence: Confidence;
+    analysisMethod: AnalysisMethod;
+    taintPath?: string[];
+    verifiedBy?: 'llm';
+    llmReason?: string;
+}
+export interface DetectionPattern {
+    pattern: RegExp;
+    requiresContext?: RegExp;
+    suppressIf?: RegExp;
+    snippetLines?: number;
+    captureGroup?: string;
+}
+export interface Rule {
+    id: string;
+    name: string;
+    owasp: OWASPCategory;
+    cwe: string;
+    severity: Severity;
+    languages: SupportedLanguage[];
+    description: string;
+    patterns: DetectionPattern[];
+    fix: string;
+    references: string[];
+    tags: string[];
+}
+export interface FileResult {
+    filePath: string;
+    language: SupportedLanguage;
+    findings: Finding[];
+    linesScanned: number;
+    rulesApplied: number;
+    scanDurationMs: number;
+}
+export interface ScanResult {
+    scanId: string;
+    timestamp: string;
+    targetPath: string;
+    totalFiles: number;
+    totalFindings: number;
+    findingsBySeverity: Record<Severity, number>;
+    findingsByCategory: Partial<Record<OWASPCategory, number>>;
+    files: FileResult[];
+    scanDurationMs: number;
+    securityScore: number;
+    passed: boolean;
+}
+export interface ScanOptions {
+    target: string;
+    rules?: string[];
+    format: OutputFormat;
+    failOn: FailOnLevel;
+    exclude?: string[];
+    recursive: boolean;
+    verbose: boolean;
+    noColor: boolean;
+    maxFindings?: number;
+}
+export interface MCPScanFileInput {
+    path: string;
+    rules?: string[];
+}
+export interface MCPScanDirectoryInput {
+    path: string;
+    recursive?: boolean;
+    rules?: string[];
+    exclude?: string[];
+}
+export interface MCPScanCodeInput {
+    code: string;
+    language: SupportedLanguage;
+    filename?: string;
+    rules?: string[];
+}
+export interface MCPExplainFindingInput {
+    ruleId: string;
+}
+export interface MCPExplainFindingOutput {
+    rule: Rule;
+    owaspDescription: string;
+    cweDescription: string;
+    exampleVulnerableCode: string;
+    exampleSecureCode: string;
+}
+export interface RuleMatch {
+    line: number;
+    column: number;
+    snippet: string;
+    matchedText: string;
+}
+export declare const SEVERITY_SCORE: Record<Severity, number>;
+export declare const SEVERITY_ORDER: Record<Severity, number>;
+export declare const FAIL_ON_SEVERITY: Record<FailOnLevel, number>;
+//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAIA,MAAM,MAAM,QAAQ,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;AAEvE,MAAM,MAAM,aAAa,GACrB,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,UAAU,GACV,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,YAAY,GACZ,OAAO,CAAC;AAEZ,MAAM,MAAM,iBAAiB,GACzB,YAAY,GACZ,YAAY,GACZ,QAAQ,GACR,MAAM,GACN,IAAI,GACJ,KAAK,GACL,MAAM,GACN,QAAQ,GACR,KAAK,GACL,MAAM,GACN,KAAK,CAAC;AAEV,MAAM,MAAM,YAAY,GAAG,SAAS,GAAG,MAAM,GAAG,OAAO,GAAG,KAAK,CAAC;AAEhE,MAAM,MAAM,WAAW,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,OAAO,CAAC;AAE3E,MAAM,MAAM,cAAc,GAAG,OAAO,GAAG,KAAK,GAAG,OAAO,GAAG,KAAK,CAAC;AAC/D,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;AAGnD,MAAM,WAAW,OAAO;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,aAAa,CAAC;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,EAAE,CAAC;IAErB,UAAU,EAAE,UAAU,CAAC;IACvB,cAAc,EAAE,cAAc,CAAC;IAC/B,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;IACrB,UAAU,CAAC,EAAE,KAAK,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAGD,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAGhB,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAGD,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,aAAa,CAAC;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,QAAQ,CAAC;IACnB,SAAS,EAAE,iBAAiB,EAAE,CAAC;IAC/B,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,gBAAgB,EAAE,CAAC;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,EAAE,CAAC;IAErB,IAAI,EAAE,MAAM,EAAE,CAAC;CAChB;AAGD,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,iBAAiB,CAAC;IAC5B,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;CACxB;AAGD,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,CAAC;IACtB,kBAAkB,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAC7C,kBAAkB,EAAE,OAAO,CAAC,MAAM,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC,CAAC;IAC3D,KAAK,EAAE,UAAU,EAAE,CAAC;IACpB,cAAc,EAAE,MAAM,CAAC;IAEvB,aAAa,EAAE,MAAM,CAAC;IACtB,MAAM,EAAE,OAAO,CAAC;CACjB;AAGD,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,MAAM,EAAE,YAAY,CAAC;IACrB,MAAM,EAAE,WAAW,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,OAAO,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAGD,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;CAClB;AAED,MAAM,WAAW,qBAAqB;IACpC,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,iBAAiB,CAAC;IAC5B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;CAClB;AAED,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,IAAI,CAAC;IACX,gBAAgB,EAAE,MAAM,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,qBAAqB,EAAE,MAAM,CAAC;IAC9B,iBAAiB,EAAE,MAAM,CAAC;CAC3B;AAGD,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,eAAO,MAAM,cAAc,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAMnD,CAAC;AAEF,eAAO,MAAM,cAAc,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAMnD,CAAC;AAEF,eAAO,MAAM,gBAAgB,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAMxD,CAAC"}

package/dist/types/index.js

@@ -0,0 +1,25 @@
+// ============================================================
+// OWASPScan — Core Type Definitions
+// ============================================================
+export const SEVERITY_SCORE = {
+    CRITICAL: 40,
+    HIGH: 20,
+    MEDIUM: 10,
+    LOW: 5,
+    INFO: 1,
+};
+export const SEVERITY_ORDER = {
+    CRITICAL: 5,
+    HIGH: 4,
+    MEDIUM: 3,
+    LOW: 2,
+    INFO: 1,
+};
+export const FAIL_ON_SEVERITY = {
+    critical: 5,
+    high: 4,
+    medium: 3,
+    low: 2,
+    never: 0,
+};
+//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,oCAAoC;AACpC,+DAA+D;AAkL/D,MAAM,CAAC,MAAM,cAAc,GAA6B;IACtD,QAAQ,EAAE,EAAE;IACZ,IAAI,EAAE,EAAE;IACR,MAAM,EAAE,EAAE;IACV,GAAG,EAAE,CAAC;IACN,IAAI,EAAE,CAAC;CACR,CAAC;AAEF,MAAM,CAAC,MAAM,cAAc,GAA6B;IACtD,QAAQ,EAAE,CAAC;IACX,IAAI,EAAE,CAAC;IACP,MAAM,EAAE,CAAC;IACT,GAAG,EAAE,CAAC;IACN,IAAI,EAAE,CAAC;CACR,CAAC;AAEF,MAAM,CAAC,MAAM,gBAAgB,GAAgC;IAC3D,QAAQ,EAAE,CAAC;IACX,IAAI,EAAE,CAAC;IACP,MAAM,EAAE,CAAC;IACT,GAAG,EAAE,CAAC;IACN,KAAK,EAAE,CAAC;CACT,CAAC"}

package/dist/utils/pattern-matcher.d.ts

@@ -0,0 +1,4 @@
+import type { DetectionPattern, RuleMatch } from '../types/index.js';
+export declare function applyPatterns(code: string, patterns: DetectionPattern[]): RuleMatch[];
+export declare function getCapture(match: RegExpExecArray, name: string): string | undefined;
+//# sourceMappingURL=pattern-matcher.d.ts.map

package/dist/utils/pattern-matcher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pattern-matcher.d.ts","sourceRoot":"","sources":["../../src/utils/pattern-matcher.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,gBAAgB,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAErE,wBAAgB,aAAa,CAC3B,IAAI,EAAE,MAAM,EACZ,QAAQ,EAAE,gBAAgB,EAAE,GAC3B,SAAS,EAAE,CAwEb;AAGD,wBAAgB,UAAU,CAAC,KAAK,EAAE,eAAe,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAEnF"}

package/dist/utils/pattern-matcher.js

@@ -0,0 +1,72 @@
+// ============================================================
+// Pattern Matcher — applies DetectionPattern[] to source code
+// and returns RuleMatch[] with accurate line/column info
+// ============================================================
+export function applyPatterns(code, patterns) {
+    const lines = code.split('\n');
+    const matches = [];
+    const seen = new Set(); // deduplicate by file+line+col
+    for (const detection of patterns) {
+        // Reset lastIndex for global regexes
+        const regex = new RegExp(detection.pattern.source, detection.pattern.flags.includes('g')
+            ? detection.pattern.flags
+            : detection.pattern.flags + 'g');
+        let match;
+        while ((match = regex.exec(code)) !== null) {
+            const matchIndex = match.index;
+            const matchedText = match[0];
+            // Determine which line this match starts on
+            const beforeMatch = code.slice(0, matchIndex);
+            const lineNum = beforeMatch.split('\n').length; // 1-based
+            const lastNewline = beforeMatch.lastIndexOf('\n');
+            const column = matchIndex - lastNewline; // 1-based
+            const snippetLineIndex = lineNum - 1;
+            const snippetRadius = Math.floor((detection.snippetLines ?? 1) / 2);
+            const snippetStart = Math.max(0, snippetLineIndex - snippetRadius);
+            const snippetEnd = Math.min(lines.length - 1, snippetLineIndex + snippetRadius + 1);
+            const snippet = lines
+                .slice(snippetStart, snippetEnd)
+                .join('\n');
+            // Skip if this exact position already reported
+            const key = `${lineNum}:${column}`;
+            if (seen.has(key))
+                continue;
+            // Context check: require a nearby pattern to match
+            if (detection.requiresContext) {
+                const contextStart = Math.max(0, snippetLineIndex - 5);
+                const contextEnd = Math.min(lines.length - 1, snippetLineIndex + 5);
+                const contextBlock = lines.slice(contextStart, contextEnd + 1).join('\n');
+                if (!detection.requiresContext.test(contextBlock))
+                    continue;
+            }
+            // Suppress check: if a whitelist pattern matches, skip
+            if (detection.suppressIf) {
+                const contextStart = Math.max(0, snippetLineIndex - 3);
+                const contextEnd = Math.min(lines.length - 1, snippetLineIndex + 3);
+                const contextBlock = lines.slice(contextStart, contextEnd + 1).join('\n');
+                if (detection.suppressIf.test(contextBlock))
+                    continue;
+            }
+            // Skip commented lines (basic heuristic)
+            const currentLine = lines[snippetLineIndex]?.trimStart() ?? '';
+            if (currentLine.startsWith('//') ||
+                currentLine.startsWith('#') ||
+                currentLine.startsWith('*') ||
+                currentLine.startsWith('/*')) {
+                continue;
+            }
+            seen.add(key);
+            matches.push({ line: lineNum, column, snippet, matchedText });
+            // Prevent infinite loop on zero-length matches
+            if (matchedText.length === 0) {
+                regex.lastIndex++;
+            }
+        }
+    }
+    return matches;
+}
+// Extract a named capture group value (if present)
+export function getCapture(match, name) {
+    return match.groups?.[name];
+}
+//# sourceMappingURL=pattern-matcher.js.map

package/dist/utils/pattern-matcher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"pattern-matcher.js","sourceRoot":"","sources":["../../src/utils/pattern-matcher.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,8DAA8D;AAC9D,yDAAyD;AACzD,+DAA+D;AAI/D,MAAM,UAAU,aAAa,CAC3B,IAAY,EACZ,QAA4B;IAE5B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC/B,MAAM,OAAO,GAAgB,EAAE,CAAC;IAChC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC,CAAC,+BAA+B;IAE/D,KAAK,MAAM,SAAS,IAAI,QAAQ,EAAE,CAAC;QACjC,qCAAqC;QACrC,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,EAAE,SAAS,CAAC,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC;YACtF,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK;YACzB,CAAC,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,GAAG,GAAG,CAAC,CAAC;QAEnC,IAAI,KAA6B,CAAC;QAClC,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC3C,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC;YAC/B,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YAE7B,4CAA4C;YAC5C,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YAC9C,MAAM,OAAO,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,UAAU;YAC1D,MAAM,WAAW,GAAG,WAAW,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAClD,MAAM,MAAM,GAAG,UAAU,GAAG,WAAW,CAAC,CAAC,UAAU;YAEnD,MAAM,gBAAgB,GAAG,OAAO,GAAG,CAAC,CAAC;YACrC,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;YACpE,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,gBAAgB,GAAG,aAAa,CAAC,CAAC;YACnE,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,gBAAgB,GAAG,aAAa,GAAG,CAAC,CAAC,CAAC;YACpF,MAAM,OAAO,GAAG,KAAK;iBAClB,KAAK,CAAC,YAAY,EAAE,UAAU,CAAC;iBAC/B,IAAI,CAAC,IAAI,CAAC,CAAC;YAEd,+CAA+C;YAC/C,MAAM,GAAG,GAAG,GAAG,OAAO,IAAI,MAAM,EAAE,CAAC;YACnC,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,SAAS;YAE5B,mDAAmD;YACnD,IAAI,SAAS,CAAC,eAAe,EAAE,CAAC;gBAC9B,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,gBAAgB,GAAG,CAAC,CAAC,CAAC;gBACvD,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,gBAAgB,GAAG,CAAC,CAAC,CAAC;gBACpE,MAAM,YAAY,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAC1E,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,IAAI,CAAC,YAAY,CAAC;oBAAE,SAAS;YAC9D,CAAC;YAED,uDAAuD;YACvD,IAAI,SAAS,CAAC,UAAU,EAAE,CAAC;gBACzB,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,gBAAgB,GAAG,CAAC,CAAC,CAAC;gBACvD,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,gBAAgB,GAAG,CAAC,CAAC,CAAC;gBACpE,MAAM,YAAY,GAAG,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,UAAU,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAC1E,IAAI,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,YAAY,CAAC;oBAAE,SAAS;YACxD,CAAC;YAED,yCAAyC;YACzC,MAAM,WAAW,GAAG,KAAK,CAAC,gBAAgB,CAAC,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;YAC/D,IACE,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC;gBAC5B,WAAW,CAAC,UAAU,CAAC,GAAG,CAAC;gBAC3B,WAAW,CAAC,UAAU,CAAC,GAAG,CAAC;gBAC3B,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,EAC5B,CAAC;gBACD,SAAS;YACX,CAAC;YAED,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACd,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC,CAAC;YAE9D,+CAA+C;YAC/C,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC7B,KAAK,CAAC,SAAS,EAAE,CAAC;YACpB,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,mDAAmD;AACnD,MAAM,UAAU,UAAU,CAAC,KAAsB,EAAE,IAAY;IAC7D,OAAQ,KAAK,CAAC,MAA6C,EAAE,CAAC,IAAI,CAAC,CAAC;AACtE,CAAC"}

package/dist/utils/scoring.d.ts

@@ -0,0 +1,8 @@
+import type { Finding, ScanResult, Severity, FailOnLevel, Confidence } from '../types/index.js';
+export declare function computeScore(findings: Finding[]): number;
+export declare function countBySeverity(findings: Finding[]): Record<Severity, number>;
+export declare function hasFindingAboveThreshold(findings: Finding[], failOn: FailOnLevel): boolean;
+export declare function buildScanResult(targetPath: string, fileResults: ScanResult['files'], scanDurationMs: number, failOn: FailOnLevel): ScanResult;
+export declare function filterScanResultByConfidence(result: ScanResult, minConfidence: Confidence, failOn: FailOnLevel): ScanResult;
+export declare function sortFindings(findings: Finding[]): Finding[];
+//# sourceMappingURL=scoring.d.ts.map

package/dist/utils/scoring.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scoring.d.ts","sourceRoot":"","sources":["../../src/utils/scoring.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAIhG,wBAAgB,YAAY,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,MAAM,CAUxD;AAED,wBAAgB,eAAe,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAY7E;AAED,wBAAgB,wBAAwB,CACtC,QAAQ,EAAE,OAAO,EAAE,EACnB,MAAM,EAAE,WAAW,GAClB,OAAO,CAIT;AAED,wBAAgB,eAAe,CAC7B,UAAU,EAAE,MAAM,EAClB,WAAW,EAAE,UAAU,CAAC,OAAO,CAAC,EAChC,cAAc,EAAE,MAAM,EACtB,MAAM,EAAE,WAAW,GAClB,UAAU,CAyBZ;AAID,wBAAgB,4BAA4B,CAC1C,MAAM,EAAE,UAAU,EAClB,aAAa,EAAE,UAAU,EACzB,MAAM,EAAE,WAAW,GAClB,UAAU,CAOZ;AAED,wBAAgB,YAAY,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,OAAO,EAAE,CAM3D"}

package/dist/utils/scoring.js

@@ -0,0 +1,76 @@
+// ============================================================
+// Security Scoring — computes a 0-100 score from findings
+// Based on OWASP Risk Rating methodology (Likelihood × Impact)
+// ============================================================
+import { SEVERITY_SCORE, SEVERITY_ORDER, FAIL_ON_SEVERITY } from '../types/index.js';
+import crypto from 'crypto';
+export function computeScore(findings) {
+    if (findings.length === 0)
+        return 100;
+    const totalPenalty = findings.reduce((acc, finding) => {
+        return acc + SEVERITY_SCORE[finding.severity];
+    }, 0);
+    // Score decays logarithmically — many low findings hurt less than a few critical ones
+    const score = Math.max(0, Math.round(100 - Math.log1p(totalPenalty) * 15));
+    return score;
+}
+export function countBySeverity(findings) {
+    const counts = {
+        CRITICAL: 0,
+        HIGH: 0,
+        MEDIUM: 0,
+        LOW: 0,
+        INFO: 0,
+    };
+    for (const f of findings) {
+        counts[f.severity]++;
+    }
+    return counts;
+}
+export function hasFindingAboveThreshold(findings, failOn) {
+    if (failOn === 'never')
+        return false;
+    const threshold = FAIL_ON_SEVERITY[failOn];
+    return findings.some((f) => SEVERITY_ORDER[f.severity] >= threshold);
+}
+export function buildScanResult(targetPath, fileResults, scanDurationMs, failOn) {
+    const allFindings = fileResults.flatMap((f) => f.findings);
+    const findingsByCategory = {};
+    for (const finding of allFindings) {
+        findingsByCategory[finding.owasp] = (findingsByCategory[finding.owasp] ?? 0) + 1;
+    }
+    const findingsBySeverity = countBySeverity(allFindings);
+    const securityScore = computeScore(allFindings);
+    const passed = !hasFindingAboveThreshold(allFindings, failOn);
+    return {
+        scanId: crypto.randomUUID(),
+        timestamp: new Date().toISOString(),
+        targetPath,
+        totalFiles: fileResults.length,
+        totalFindings: allFindings.length,
+        findingsBySeverity,
+        findingsByCategory,
+        files: fileResults,
+        scanDurationMs,
+        securityScore,
+        passed,
+    };
+}
+const CONFIDENCE_RANK = { HIGH: 3, MEDIUM: 2, LOW: 1 };
+export function filterScanResultByConfidence(result, minConfidence, failOn) {
+    const minRank = CONFIDENCE_RANK[minConfidence];
+    const filteredFiles = result.files.map((file) => ({
+        ...file,
+        findings: file.findings.filter((f) => (CONFIDENCE_RANK[f.confidence] ?? 1) >= minRank),
+    }));
+    return buildScanResult(result.targetPath, filteredFiles, result.scanDurationMs, failOn);
+}
+export function sortFindings(findings) {
+    return [...findings].sort((a, b) => {
+        const severityDiff = SEVERITY_ORDER[b.severity] - SEVERITY_ORDER[a.severity];
+        if (severityDiff !== 0)
+            return severityDiff;
+        return a.filePath.localeCompare(b.filePath) || a.line - b.line;
+    });
+}
+//# sourceMappingURL=scoring.js.map

package/dist/utils/scoring.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scoring.js","sourceRoot":"","sources":["../../src/utils/scoring.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,0DAA0D;AAC1D,+DAA+D;AAC/D,+DAA+D;AAG/D,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AACrF,OAAO,MAAM,MAAM,QAAQ,CAAC;AAE5B,MAAM,UAAU,YAAY,CAAC,QAAmB;IAC9C,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,GAAG,CAAC;IAEtC,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,OAAO,EAAE,EAAE;QACpD,OAAO,GAAG,GAAG,cAAc,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IAChD,CAAC,EAAE,CAAC,CAAC,CAAC;IAEN,sFAAsF;IACtF,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;IAC3E,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,QAAmB;IACjD,MAAM,MAAM,GAA6B;QACvC,QAAQ,EAAE,CAAC;QACX,IAAI,EAAE,CAAC;QACP,MAAM,EAAE,CAAC;QACT,GAAG,EAAE,CAAC;QACN,IAAI,EAAE,CAAC;KACR,CAAC;IACF,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC;IACvB,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,wBAAwB,CACtC,QAAmB,EACnB,MAAmB;IAEnB,IAAI,MAAM,KAAK,OAAO;QAAE,OAAO,KAAK,CAAC;IACrC,MAAM,SAAS,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC3C,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,SAAS,CAAC,CAAC;AACvE,CAAC;AAED,MAAM,UAAU,eAAe,CAC7B,UAAkB,EAClB,WAAgC,EAChC,cAAsB,EACtB,MAAmB;IAEnB,MAAM,WAAW,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IAE3D,MAAM,kBAAkB,GAAqC,EAAE,CAAC;IAChE,KAAK,MAAM,OAAO,IAAI,WAAW,EAAE,CAAC;QAClC,kBAAkB,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,kBAAkB,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IACnF,CAAC;IAED,MAAM,kBAAkB,GAAG,eAAe,CAAC,WAAW,CAAC,CAAC;IACxD,MAAM,aAAa,GAAG,YAAY,CAAC,WAAW,CAAC,CAAC;IAChD,MAAM,MAAM,GAAG,CAAC,wBAAwB,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IAE9D,OAAO;QACL,MAAM,EAAE,MAAM,CAAC,UAAU,EAAE;QAC3B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,UAAU;QACV,UAAU,EAAE,WAAW,CAAC,MAAM;QAC9B,aAAa,EAAE,WAAW,CAAC,MAAM;QACjC,kBAAkB;QAClB,kBAAkB;QAClB,KAAK,EAAE,WAAW;QAClB,cAAc;QACd,aAAa;QACb,MAAM;KACP,CAAC;AACJ,CAAC;AAED,MAAM,eAAe,GAA+B,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;AAEnF,MAAM,UAAU,4BAA4B,CAC1C,MAAkB,EAClB,aAAyB,EACzB,MAAmB;IAEnB,MAAM,OAAO,GAAG,eAAe,CAAC,aAAa,CAAC,CAAC;IAC/C,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;QAChD,GAAG,IAAI;QACP,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,IAAI,OAAO,CAAC;KACvF,CAAC,CAAC,CAAC;IACJ,OAAO,eAAe,CAAC,MAAM,CAAC,UAAU,EAAE,aAAa,EAAE,MAAM,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;AAC1F,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,QAAmB;IAC9C,OAAO,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACjC,MAAM,YAAY,GAAG,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;QAC7E,IAAI,YAAY,KAAK,CAAC;YAAE,OAAO,YAAY,CAAC;QAC5C,OAAO,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,IAAI,CAAC;IACjE,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/utils/suppression.d.ts

@@ -0,0 +1,3 @@
+export declare function isSuppressed(lines: string[], lineIndex: number, // 0-based
+ruleId: string): boolean;
+//# sourceMappingURL=suppression.d.ts.map

package/dist/utils/suppression.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"suppression.d.ts","sourceRoot":"","sources":["../../src/utils/suppression.ts"],"names":[],"mappings":"AAUA,wBAAgB,YAAY,CAC1B,KAAK,EAAE,MAAM,EAAE,EACf,SAAS,EAAE,MAAM,EAAE,UAAU;AAC7B,MAAM,EAAE,MAAM,GACb,OAAO,CAqBT"}