@vee_stack/cli 6.3.17 → 6.3.19
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/bin/veestack.mjs +10 -1
- package/dist/index.js +193 -174
- package/dist/version.json +2 -2
- package/package.json +8 -3
package/bin/veestack.mjs
CHANGED
|
@@ -9,18 +9,27 @@ const envPath = join(__dirname, '../.env');
|
|
|
9
9
|
|
|
10
10
|
if (existsSync(envPath)) {
|
|
11
11
|
const envContent = readFileSync(envPath, 'utf8');
|
|
12
|
+
const usedFallbackKeys = [];
|
|
12
13
|
envContent.split('\n').forEach(line => {
|
|
13
14
|
const [key, ...valueParts] = line.split('=');
|
|
14
15
|
if (key && valueParts.length > 0) {
|
|
15
16
|
const value = valueParts.join('=').trim();
|
|
16
17
|
const finalValue = value.replace(/^["']|["']$/g, '');
|
|
17
|
-
|
|
18
|
+
const trimmedKey = key.trim();
|
|
19
|
+
if (process.env[trimmedKey] === undefined) {
|
|
20
|
+
process.env[trimmedKey] = finalValue;
|
|
21
|
+
usedFallbackKeys.push(trimmedKey);
|
|
22
|
+
}
|
|
18
23
|
}
|
|
19
24
|
});
|
|
20
25
|
|
|
21
26
|
if (process.argv.includes('--debug')) {
|
|
22
27
|
console.log('[veestack:debug] Environment loaded from:', envPath);
|
|
23
28
|
console.log('[veestack:debug] VEESTACK_API_URL:', process.env.VEESTACK_API_URL);
|
|
29
|
+
const warnKeys = usedFallbackKeys.filter(k => k === 'VEESTACK_API_URL' || k === 'VEESTACK_WEB_URL' || k === 'NODE_ENV');
|
|
30
|
+
if (warnKeys.length > 0) {
|
|
31
|
+
console.warn(`[veestack:debug] ⚠️ Using .env fallback for: ${warnKeys.join(', ')}`);
|
|
32
|
+
}
|
|
24
33
|
}
|
|
25
34
|
}
|
|
26
35
|
|
package/dist/index.js
CHANGED
|
@@ -1,205 +1,224 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
|
-
import {createRequire}from'module';import
|
|
3
|
-
var
|
|
4
|
-
\u274C Security Error: Token detected in command line arguments`)),console.error(
|
|
5
|
-
Passing tokens via CLI arguments is not allowed.`)),console.error(
|
|
6
|
-
Instead, use:`)),console.error(
|
|
7
|
-
Or set via environment variable:`)),console.error(
|
|
2
|
+
import {createRequire}from'module';import {config}from'dotenv';import*as ie from'path';import {dirname,join,resolve,basename}from'path';import {fileURLToPath}from'url';import*as U from'fs';import {existsSync,readFileSync,statSync,writeFileSync}from'fs';import g from'chalk';import {Command}from'commander';import {execSync}from'child_process';import*as z from'crypto';import z__default from'crypto';import en from'ora';import {glob}from'glob';import on from'cli-progress';import*as le from'os';import {homedir}from'os';import {VERSION,TOKEN_SALT}from'@vee_stack/utils';import*as b from'fs/promises';import {configEnv,validateEnvironment}from'@vee_stack/config';import Lt from'prompts';import Sn from'readline';import {gzipSync}from'zlib';import xn from'open';import Pr from'omelette';globalThis.require = createRequire(import.meta.url); globalThis.CLI_VERSION = "6.3.19"; globalThis.SNAPSHOT_VERSION = "6.0.0"; globalThis.ENGINE_TARGET = "6.0.0"; globalThis.AUDIT_VERSION = "6.0"; globalThis.SESSION_PAYLOAD_VERSION = "6.0.0"; globalThis.RULES_VERSION = "6.0.0"; globalThis.ANALYSIS_VERSION = "6.0.0"; globalThis.API_VERSION = "v6"; globalThis.MIN_NODE = 20;
|
|
3
|
+
var lo=(e=>typeof require<"u"?require:typeof Proxy<"u"?new Proxy(e,{get:(t,o)=>(typeof require<"u"?require:t)[o]}):e)(function(e){if(typeof require<"u")return require.apply(this,arguments);throw Error('Dynamic require of "'+e+'" is not supported')});var uo=[/^--token[=\s]/i,/^-t[=\s]/i,/^--api-key[=\s]/i,/^--apikey[=\s]/i,/^--key[=\s]/i,/^--auth[=\s]/i,/^--bearer[=\s]/i,/token[=:]\s*[a-zA-Z0-9_-]{10,}/i,/api[_-]?key[=:]\s*[a-zA-Z0-9_-]{10,}/i],ae=/vs_[a-zA-Z0-9_-]{20,}/i;function pt(){let e=process.argv.slice(2);for(let t of e){for(let o of uo)o.test(t)&&(console.error(g.red(`
|
|
4
|
+
\u274C Security Error: Token detected in command line arguments`)),console.error(g.yellow(`
|
|
5
|
+
Passing tokens via CLI arguments is not allowed.`)),console.error(g.yellow("This prevents tokens from being saved in shell history (~/.bash_history, ~/.zsh_history)")),console.error(g.gray(`
|
|
6
|
+
Instead, use:`)),console.error(g.cyan(" veestack login")),console.error(g.gray(`
|
|
7
|
+
Or set via environment variable:`)),console.error(g.cyan(" export VEESTACK_API_KEY=your_key")),console.error(g.gray(`
|
|
8
8
|
Your token has been detected and blocked for your security.
|
|
9
|
-
`)),process.exit(1));
|
|
10
|
-
\u274C Security Error: VeeStack token detected in command line`)),console.error(
|
|
11
|
-
Tokens should never be passed as command arguments.`)),console.error(
|
|
12
|
-
Use login instead:`)),console.error(
|
|
13
|
-
\u274C Fatal Error occurred`);let e
|
|
14
|
-
`).map(
|
|
9
|
+
`)),process.exit(1));ae.test(t)&&(console.error(g.red(`
|
|
10
|
+
\u274C Security Error: VeeStack token detected in command line`)),console.error(g.yellow(`
|
|
11
|
+
Tokens should never be passed as command arguments.`)),console.error(g.gray(`
|
|
12
|
+
Use login instead:`)),console.error(g.cyan(" veestack login")),process.exit(1));}}function ft(){for(let e=0;e<process.argv.length;e++){let t=process.argv[e];ae.test(t)&&(process.argv[e]="[REDACTED_TOKEN]"),/authorization[:\s]/i.test(t)&&(process.argv[e]="[REDACTED_AUTH_HEADER]");}}function mt(){let e=console.error,t=console.log,o=console.warn,n=r=>r.map(s=>typeof s=="string"?s.replace(ae,"[REDACTED]").replace(/Bearer\s+[a-zA-Z0-9_-]+/gi,"Bearer [REDACTED]"):s);console.log=(...r)=>t(...n(r)),console.error=(...r)=>e(...n(r)),console.warn=(...r)=>o(...n(r));}function ht(){process.on("uncaughtException",e=>{console.error(`
|
|
13
|
+
\u274C Fatal Error occurred`);let t=e.message||"Unknown error";if(t=t.replace(ae,"[REDACTED]").replace(/Bearer\s+[a-zA-Z0-9_-]+/gi,"Bearer [REDACTED]").replace(/Authorization[:\s][^\s]*/gi,"Authorization: [REDACTED]"),console.error(`Error: ${t}`),e.stack){let o=e.stack.split(`
|
|
14
|
+
`).map(n=>n.replace(ae,"[REDACTED]").replace(/Bearer\s+[a-zA-Z0-9_-]+/gi,"Bearer [REDACTED]")).join(`
|
|
15
15
|
`);process.env.DEBUG||process.env.VEESTACK_DEBUG?console.error(`
|
|
16
|
-
Stack trace:`,
|
|
17
|
-
Run with DEBUG=veestack for full stack trace (sanitized)`);}process.exit(1);}),process.on("unhandledRejection",
|
|
18
|
-
\u274C Unhandled Promise Rejection`);let
|
|
19
|
-
`+"\u2550".repeat(60))),console.log(
|
|
20
|
-
`));for(let
|
|
21
|
-
To install the official CLI:`)),console.log(
|
|
22
|
-
`)),process.exit(1);}process.env.VEESTACK_DEBUG==="true"&&console.log(
|
|
23
|
-
`);for(let s of Xr){s.pattern.lastIndex=0;for(let o=0;o<r.length;o++){let a=r[o],i;for(;(i=s.pattern.exec(a))!==null;)n.push({filePath:t,type:"secret_content",secretName:s.name,severity:s.severity,description:s.description,lineNumber:o+1,match:i[0].substring(0,20)+"..."});s.pattern.lastIndex=0;}}return n}async function es(t){let e=[];if(Un(t))return e.push({filePath:t,type:"sensitive_file",secretName:"Sensitive File",severity:"critical",description:`Sensitive file type detected: ${Ye.basename(t)}`}),e;try{if(se.statSync(t).size>1024*1024)return e;let r=se.readFileSync(t,"utf-8"),s=Qr(t,r);e.push(...s);}catch{}return e}async function Fn(t,e){let n=[];for(let i of e){let c=Ye.join(t,i),l=await es(c);for(let d of l)d.filePath=i,n.push(d);}let r=n.filter(i=>i.severity==="critical").length,s=n.filter(i=>i.severity==="high").length,o=n.filter(i=>i.severity==="medium").length,a=n.filter(i=>i.severity==="low").length;return {totalFiles:e.length,secretsFound:n.length,criticalCount:r,highCount:s,mediumCount:o,lowCount:a,results:n}}function Bn(t){let e=[],n=[];for(let r of t)Un(r)?n.push(r):e.push(r);return {safe:e,blocked:n}}var nn=(t=>typeof Proxy<"u"?new Proxy(t,{get:(e,n)=>e[n]}):t)(function(t){throw Error('Dynamic require of "'+t+'" is not supported')}),zn=typeof process<"u"&&process.versions?.node,ts=zn&&(Array.isArray(process.argv)&&process.argv.includes("--debug")||process.env.VEESTACK_DEBUG==="1"),rn=globalThis||{},sn=null;if(zn)try{let t=function(){let A=d,P=0;for(;A!==i(A)&&P<10;){let C=a(A,"package.json");try{if(o(C)){let R=JSON.parse(s(C,"utf-8"));if(R.name==="vee_stack")return R}}catch{}A=i(A),P++;}return null};ns=t;let e=nn("fs"),n=nn("path"),r=nn("url"),{readFileSync:s,existsSync:o}=e,{join:a,dirname:i}=n,{fileURLToPath:c}=r,l=c(import.meta.url),d=i(l);sn=t();}catch{ts&&console.debug("[veestack:debug] Failed to load package.json dynamically, using defaults");}var ns,_e=sn?.versions||rn.VEESTACK_VERSIONS||{},ee=sn?.version||rn.VEESTACK_VERSION||rn.CLI_VERSION||"unknown",on=`vs_cli_v${ee}`;_e.snapshot||"unknown";_e.engine_target||"unknown";_e.audit||"unknown";_e.session_payload||"unknown";_e.rules||"unknown";_e.analysis||"unknown";_e.api||"unknown";_e.min_node||"unknown";var f={};Hr(f,{BRAND:()=>Ps,DIRTY:()=>be,EMPTY_PATH:()=>ds,INVALID:()=>h,NEVER:()=>vo,OK:()=>J,ParseStatus:()=>z,Schema:()=>_,ZodAny:()=>Ee,ZodArray:()=>he,ZodBigInt:()=>Ce,ZodBoolean:()=>Ie,ZodBranded:()=>yt,ZodCatch:()=>Fe,ZodDate:()=>Ne,ZodDefault:()=>Ue,ZodDiscriminatedUnion:()=>$t,ZodEffects:()=>re,ZodEnum:()=>Ve,ZodError:()=>K,ZodFirstPartyTypeKind:()=>y,ZodFunction:()=>Mt,ZodIntersection:()=>je,ZodIssueCode:()=>u,ZodLazy:()=>Le,ZodLiteral:()=>$e,ZodMap:()=>ot,ZodNaN:()=>at,ZodNativeEnum:()=>Me,ZodNever:()=>oe,ZodNull:()=>Pe,ZodNullable:()=>ue,ZodNumber:()=>Re,ZodObject:()=>W,ZodOptional:()=>te,ZodParsedType:()=>g,ZodPipeline:()=>vt,ZodPromise:()=>Te,ZodReadonly:()=>Be,ZodRecord:()=>Vt,ZodSchema:()=>_,ZodSet:()=>it,ZodString:()=>Se,ZodSymbol:()=>rt,ZodTransformer:()=>re,ZodTuple:()=>le,ZodType:()=>_,ZodUndefined:()=>Oe,ZodUnion:()=>De,ZodUnknown:()=>me,ZodVoid:()=>st,addIssueToContext:()=>p,any:()=>Bs,array:()=>Gs,bigint:()=>$s,boolean:()=>er,coerce:()=>yo,custom:()=>Yn,date:()=>Vs,datetimeRegex:()=>Wn,defaultErrorMap:()=>pe,discriminatedUnion:()=>qs,effect:()=>co,enum:()=>oo,function:()=>no,getErrorMap:()=>et,getParsedType:()=>ce,instanceof:()=>js,intersection:()=>Ys,isAborted:()=>jt,isAsync:()=>tt,isDirty:()=>Lt,isValid:()=>we,late:()=>Ds,lazy:()=>ro,literal:()=>so,makeIssue:()=>ht,map:()=>eo,nan:()=>Ls,nativeEnum:()=>io,never:()=>Hs,null:()=>Fs,nullable:()=>uo,number:()=>Qn,object:()=>Zs,objectUtil:()=>ln,oboolean:()=>ho,onumber:()=>mo,optional:()=>lo,ostring:()=>go,pipeline:()=>po,preprocess:()=>fo,promise:()=>ao,quotelessJson:()=>cs,record:()=>Qs,set:()=>to,setErrorMap:()=>us,strictObject:()=>Ks,string:()=>Xn,symbol:()=>Ms,transformer:()=>co,tuple:()=>Xs,undefined:()=>Us,union:()=>Ws,unknown:()=>zs,util:()=>S,void:()=>Js});var S;(function(t){t.assertEqual=s=>{};function e(s){}t.assertIs=e;function n(s){throw new Error}t.assertNever=n,t.arrayToEnum=s=>{let o={};for(let a of s)o[a]=a;return o},t.getValidEnumValues=s=>{let o=t.objectKeys(s).filter(i=>typeof s[s[i]]!="number"),a={};for(let i of o)a[i]=s[i];return t.objectValues(a)},t.objectValues=s=>t.objectKeys(s).map(function(o){return s[o]}),t.objectKeys=typeof Object.keys=="function"?s=>Object.keys(s):s=>{let o=[];for(let a in s)Object.prototype.hasOwnProperty.call(s,a)&&o.push(a);return o},t.find=(s,o)=>{for(let a of s)if(o(a))return a},t.isInteger=typeof Number.isInteger=="function"?s=>Number.isInteger(s):s=>typeof s=="number"&&Number.isFinite(s)&&Math.floor(s)===s;function r(s,o=" | "){return s.map(a=>typeof a=="string"?`'${a}'`:a).join(o)}t.joinValues=r,t.jsonStringifyReplacer=(s,o)=>typeof o=="bigint"?o.toString():o;})(S||(S={}));var ln;(function(t){t.mergeShapes=(e,n)=>({...e,...n});})(ln||(ln={}));var g=S.arrayToEnum(["string","nan","number","integer","float","boolean","date","bigint","symbol","function","undefined","null","array","object","unknown","promise","void","never","map","set"]),ce=t=>{switch(typeof t){case "undefined":return g.undefined;case "string":return g.string;case "number":return Number.isNaN(t)?g.nan:g.number;case "boolean":return g.boolean;case "function":return g.function;case "bigint":return g.bigint;case "symbol":return g.symbol;case "object":return Array.isArray(t)?g.array:t===null?g.null:t.then&&typeof t.then=="function"&&t.catch&&typeof t.catch=="function"?g.promise:typeof Map<"u"&&t instanceof Map?g.map:typeof Set<"u"&&t instanceof Set?g.set:typeof Date<"u"&&t instanceof Date?g.date:g.object;default:return g.unknown}};var u=S.arrayToEnum(["invalid_type","invalid_literal","custom","invalid_union","invalid_union_discriminator","invalid_enum_value","unrecognized_keys","invalid_arguments","invalid_return_type","invalid_date","invalid_string","too_small","too_big","invalid_intersection_types","not_multiple_of","not_finite"]),cs=t=>JSON.stringify(t,null,2).replace(/"([^"]+)":/g,"$1:"),K=class t extends Error{get errors(){return this.issues}constructor(e){super(),this.issues=[],this.addIssue=r=>{this.issues=[...this.issues,r];},this.addIssues=(r=[])=>{this.issues=[...this.issues,...r];};let n=new.target.prototype;Object.setPrototypeOf?Object.setPrototypeOf(this,n):this.__proto__=n,this.name="ZodError",this.issues=e;}format(e){let n=e||function(o){return o.message},r={_errors:[]},s=o=>{for(let a of o.issues)if(a.code==="invalid_union")a.unionErrors.map(s);else if(a.code==="invalid_return_type")s(a.returnTypeError);else if(a.code==="invalid_arguments")s(a.argumentsError);else if(a.path.length===0)r._errors.push(n(a));else {let i=r,c=0;for(;c<a.path.length;){let l=a.path[c];c===a.path.length-1?(i[l]=i[l]||{_errors:[]},i[l]._errors.push(n(a))):i[l]=i[l]||{_errors:[]},i=i[l],c++;}}};return s(this),r}static assert(e){if(!(e instanceof t))throw new Error(`Not a ZodError: ${e}`)}toString(){return this.message}get message(){return JSON.stringify(this.issues,S.jsonStringifyReplacer,2)}get isEmpty(){return this.issues.length===0}flatten(e=n=>n.message){let n={},r=[];for(let s of this.issues)if(s.path.length>0){let o=s.path[0];n[o]=n[o]||[],n[o].push(e(s));}else r.push(e(s));return {formErrors:r,fieldErrors:n}}get formErrors(){return this.flatten()}};K.create=t=>new K(t);var ls=(t,e)=>{let n;switch(t.code){case u.invalid_type:t.received===g.undefined?n="Required":n=`Expected ${t.expected}, received ${t.received}`;break;case u.invalid_literal:n=`Invalid literal value, expected ${JSON.stringify(t.expected,S.jsonStringifyReplacer)}`;break;case u.unrecognized_keys:n=`Unrecognized key(s) in object: ${S.joinValues(t.keys,", ")}`;break;case u.invalid_union:n="Invalid input";break;case u.invalid_union_discriminator:n=`Invalid discriminator value. Expected ${S.joinValues(t.options)}`;break;case u.invalid_enum_value:n=`Invalid enum value. Expected ${S.joinValues(t.options)}, received '${t.received}'`;break;case u.invalid_arguments:n="Invalid function arguments";break;case u.invalid_return_type:n="Invalid function return type";break;case u.invalid_date:n="Invalid date";break;case u.invalid_string:typeof t.validation=="object"?"includes"in t.validation?(n=`Invalid input: must include "${t.validation.includes}"`,typeof t.validation.position=="number"&&(n=`${n} at one or more positions greater than or equal to ${t.validation.position}`)):"startsWith"in t.validation?n=`Invalid input: must start with "${t.validation.startsWith}"`:"endsWith"in t.validation?n=`Invalid input: must end with "${t.validation.endsWith}"`:S.assertNever(t.validation):t.validation!=="regex"?n=`Invalid ${t.validation}`:n="Invalid";break;case u.too_small:t.type==="array"?n=`Array must contain ${t.exact?"exactly":t.inclusive?"at least":"more than"} ${t.minimum} element(s)`:t.type==="string"?n=`String must contain ${t.exact?"exactly":t.inclusive?"at least":"over"} ${t.minimum} character(s)`:t.type==="number"?n=`Number must be ${t.exact?"exactly equal to ":t.inclusive?"greater than or equal to ":"greater than "}${t.minimum}`:t.type==="bigint"?n=`Number must be ${t.exact?"exactly equal to ":t.inclusive?"greater than or equal to ":"greater than "}${t.minimum}`:t.type==="date"?n=`Date must be ${t.exact?"exactly equal to ":t.inclusive?"greater than or equal to ":"greater than "}${new Date(Number(t.minimum))}`:n="Invalid input";break;case u.too_big:t.type==="array"?n=`Array must contain ${t.exact?"exactly":t.inclusive?"at most":"less than"} ${t.maximum} element(s)`:t.type==="string"?n=`String must contain ${t.exact?"exactly":t.inclusive?"at most":"under"} ${t.maximum} character(s)`:t.type==="number"?n=`Number must be ${t.exact?"exactly":t.inclusive?"less than or equal to":"less than"} ${t.maximum}`:t.type==="bigint"?n=`BigInt must be ${t.exact?"exactly":t.inclusive?"less than or equal to":"less than"} ${t.maximum}`:t.type==="date"?n=`Date must be ${t.exact?"exactly":t.inclusive?"smaller than or equal to":"smaller than"} ${new Date(Number(t.maximum))}`:n="Invalid input";break;case u.custom:n="Invalid input";break;case u.invalid_intersection_types:n="Intersection results could not be merged";break;case u.not_multiple_of:n=`Number must be a multiple of ${t.multipleOf}`;break;case u.not_finite:n="Number must be finite";break;default:n=e.defaultError,S.assertNever(t);}return {message:n}},pe=ls;var Hn=pe;function us(t){Hn=t;}function et(){return Hn}var ht=t=>{let{data:e,path:n,errorMaps:r,issueData:s}=t,o=[...n,...s.path||[]],a={...s,path:o};if(s.message!==void 0)return {...s,path:o,message:s.message};let i="",c=r.filter(l=>!!l).slice().reverse();for(let l of c)i=l(a,{data:e,defaultError:i}).message;return {...s,path:o,message:i}},ds=[];function p(t,e){let n=et(),r=ht({issueData:e,data:t.data,path:t.path,errorMaps:[t.common.contextualErrorMap,t.schemaErrorMap,n,n===pe?void 0:pe].filter(s=>!!s)});t.common.issues.push(r);}var z=class t{constructor(){this.value="valid";}dirty(){this.value==="valid"&&(this.value="dirty");}abort(){this.value!=="aborted"&&(this.value="aborted");}static mergeArray(e,n){let r=[];for(let s of n){if(s.status==="aborted")return h;s.status==="dirty"&&e.dirty(),r.push(s.value);}return {status:e.value,value:r}}static async mergeObjectAsync(e,n){let r=[];for(let s of n){let o=await s.key,a=await s.value;r.push({key:o,value:a});}return t.mergeObjectSync(e,r)}static mergeObjectSync(e,n){let r={};for(let s of n){let{key:o,value:a}=s;if(o.status==="aborted"||a.status==="aborted")return h;o.status==="dirty"&&e.dirty(),a.status==="dirty"&&e.dirty(),o.value!=="__proto__"&&(typeof a.value<"u"||s.alwaysSet)&&(r[o.value]=a.value);}return {status:e.value,value:r}}},h=Object.freeze({status:"aborted"}),be=t=>({status:"dirty",value:t}),J=t=>({status:"valid",value:t}),jt=t=>t.status==="aborted",Lt=t=>t.status==="dirty",we=t=>t.status==="valid",tt=t=>typeof Promise<"u"&&t instanceof Promise;var m;(function(t){t.errToObj=e=>typeof e=="string"?{message:e}:e||{},t.toString=e=>typeof e=="string"?e:e?.message;})(m||(m={}));var ne=class{constructor(e,n,r,s){this._cachedPath=[],this.parent=e,this.data=n,this._path=r,this._key=s;}get path(){return this._cachedPath.length||(Array.isArray(this._key)?this._cachedPath.push(...this._path,...this._key):this._cachedPath.push(...this._path,this._key)),this._cachedPath}},Jn=(t,e)=>{if(we(e))return {success:true,data:e.value};if(!t.common.issues.length)throw new Error("Validation failed but no issues detected.");return {success:false,get error(){if(this._error)return this._error;let n=new K(t.common.issues);return this._error=n,this._error}}};function k(t){if(!t)return {};let{errorMap:e,invalid_type_error:n,required_error:r,description:s}=t;if(e&&(n||r))throw new Error(`Can't use "invalid_type_error" or "required_error" in conjunction with custom error map.`);return e?{errorMap:e,description:s}:{errorMap:(a,i)=>{let{message:c}=t;return a.code==="invalid_enum_value"?{message:c??i.defaultError}:typeof i.data>"u"?{message:c??r??i.defaultError}:a.code!=="invalid_type"?{message:i.defaultError}:{message:c??n??i.defaultError}},description:s}}var _=class{get description(){return this._def.description}_getType(e){return ce(e.data)}_getOrReturnCtx(e,n){return n||{common:e.parent.common,data:e.data,parsedType:ce(e.data),schemaErrorMap:this._def.errorMap,path:e.path,parent:e.parent}}_processInputParams(e){return {status:new z,ctx:{common:e.parent.common,data:e.data,parsedType:ce(e.data),schemaErrorMap:this._def.errorMap,path:e.path,parent:e.parent}}}_parseSync(e){let n=this._parse(e);if(tt(n))throw new Error("Synchronous parse encountered promise.");return n}_parseAsync(e){let n=this._parse(e);return Promise.resolve(n)}parse(e,n){let r=this.safeParse(e,n);if(r.success)return r.data;throw r.error}safeParse(e,n){let r={common:{issues:[],async:n?.async??false,contextualErrorMap:n?.errorMap},path:n?.path||[],schemaErrorMap:this._def.errorMap,parent:null,data:e,parsedType:ce(e)},s=this._parseSync({data:e,path:r.path,parent:r});return Jn(r,s)}"~validate"(e){let n={common:{issues:[],async:!!this["~standard"].async},path:[],schemaErrorMap:this._def.errorMap,parent:null,data:e,parsedType:ce(e)};if(!this["~standard"].async)try{let r=this._parseSync({data:e,path:[],parent:n});return we(r)?{value:r.value}:{issues:n.common.issues}}catch(r){r?.message?.toLowerCase()?.includes("encountered")&&(this["~standard"].async=true),n.common={issues:[],async:true};}return this._parseAsync({data:e,path:[],parent:n}).then(r=>we(r)?{value:r.value}:{issues:n.common.issues})}async parseAsync(e,n){let r=await this.safeParseAsync(e,n);if(r.success)return r.data;throw r.error}async safeParseAsync(e,n){let r={common:{issues:[],contextualErrorMap:n?.errorMap,async:true},path:n?.path||[],schemaErrorMap:this._def.errorMap,parent:null,data:e,parsedType:ce(e)},s=this._parse({data:e,path:r.path,parent:r}),o=await(tt(s)?s:Promise.resolve(s));return Jn(r,o)}refine(e,n){let r=s=>typeof n=="string"||typeof n>"u"?{message:n}:typeof n=="function"?n(s):n;return this._refinement((s,o)=>{let a=e(s),i=()=>o.addIssue({code:u.custom,...r(s)});return typeof Promise<"u"&&a instanceof Promise?a.then(c=>c?true:(i(),false)):a?true:(i(),false)})}refinement(e,n){return this._refinement((r,s)=>e(r)?true:(s.addIssue(typeof n=="function"?n(r,s):n),false))}_refinement(e){return new re({schema:this,typeName:y.ZodEffects,effect:{type:"refinement",refinement:e}})}superRefine(e){return this._refinement(e)}constructor(e){this.spa=this.safeParseAsync,this._def=e,this.parse=this.parse.bind(this),this.safeParse=this.safeParse.bind(this),this.parseAsync=this.parseAsync.bind(this),this.safeParseAsync=this.safeParseAsync.bind(this),this.spa=this.spa.bind(this),this.refine=this.refine.bind(this),this.refinement=this.refinement.bind(this),this.superRefine=this.superRefine.bind(this),this.optional=this.optional.bind(this),this.nullable=this.nullable.bind(this),this.nullish=this.nullish.bind(this),this.array=this.array.bind(this),this.promise=this.promise.bind(this),this.or=this.or.bind(this),this.and=this.and.bind(this),this.transform=this.transform.bind(this),this.brand=this.brand.bind(this),this.default=this.default.bind(this),this.catch=this.catch.bind(this),this.describe=this.describe.bind(this),this.pipe=this.pipe.bind(this),this.readonly=this.readonly.bind(this),this.isNullable=this.isNullable.bind(this),this.isOptional=this.isOptional.bind(this),this["~standard"]={version:1,vendor:"zod",validate:n=>this["~validate"](n)};}optional(){return te.create(this,this._def)}nullable(){return ue.create(this,this._def)}nullish(){return this.nullable().optional()}array(){return he.create(this)}promise(){return Te.create(this,this._def)}or(e){return De.create([this,e],this._def)}and(e){return je.create(this,e,this._def)}transform(e){return new re({...k(this._def),schema:this,typeName:y.ZodEffects,effect:{type:"transform",transform:e}})}default(e){let n=typeof e=="function"?e:()=>e;return new Ue({...k(this._def),innerType:this,defaultValue:n,typeName:y.ZodDefault})}brand(){return new yt({typeName:y.ZodBranded,type:this,...k(this._def)})}catch(e){let n=typeof e=="function"?e:()=>e;return new Fe({...k(this._def),innerType:this,catchValue:n,typeName:y.ZodCatch})}describe(e){let n=this.constructor;return new n({...this._def,description:e})}pipe(e){return vt.create(this,e)}readonly(){return Be.create(this)}isOptional(){return this.safeParse(void 0).success}isNullable(){return this.safeParse(null).success}},fs=/^c[^\s-]{8,}$/i,ps=/^[0-9a-z]+$/,gs=/^[0-9A-HJKMNP-TV-Z]{26}$/i,ms=/^[0-9a-fA-F]{8}\b-[0-9a-fA-F]{4}\b-[0-9a-fA-F]{4}\b-[0-9a-fA-F]{4}\b-[0-9a-fA-F]{12}$/i,hs=/^[a-z0-9_-]{21}$/i,ys=/^[A-Za-z0-9-_]+\.[A-Za-z0-9-_]+\.[A-Za-z0-9-_]*$/,vs=/^[-+]?P(?!$)(?:(?:[-+]?\d+Y)|(?:[-+]?\d+[.,]\d+Y$))?(?:(?:[-+]?\d+M)|(?:[-+]?\d+[.,]\d+M$))?(?:(?:[-+]?\d+W)|(?:[-+]?\d+[.,]\d+W$))?(?:(?:[-+]?\d+D)|(?:[-+]?\d+[.,]\d+D$))?(?:T(?=[\d+-])(?:(?:[-+]?\d+H)|(?:[-+]?\d+[.,]\d+H$))?(?:(?:[-+]?\d+M)|(?:[-+]?\d+[.,]\d+M$))?(?:[-+]?\d+(?:[.,]\d+)?S)?)??$/,ks=/^(?!\.)(?!.*\.\.)([A-Z0-9_'+\-\.]*)[A-Z0-9_+-]@([A-Z0-9][A-Z0-9\-]*\.)+[A-Z]{2,}$/i,_s="^(\\p{Extended_Pictographic}|\\p{Emoji_Component})+$",un,ws=/^(?:(?:25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9][0-9]|[0-9])\.){3}(?:25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9][0-9]|[0-9])$/,Ss=/^(?:(?:25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9][0-9]|[0-9])\.){3}(?:25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9][0-9]|[0-9])\/(3[0-2]|[12]?[0-9])$/,Es=/^(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))$/,Ts=/^(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))\/(12[0-8]|1[01][0-9]|[1-9]?[0-9])$/,xs=/^([0-9a-zA-Z+/]{4})*(([0-9a-zA-Z+/]{2}==)|([0-9a-zA-Z+/]{3}=))?$/,As=/^([0-9a-zA-Z-_]{4})*(([0-9a-zA-Z-_]{2}(==)?)|([0-9a-zA-Z-_]{3}(=)?))?$/,Zn="((\\d\\d[2468][048]|\\d\\d[13579][26]|\\d\\d0[48]|[02468][048]00|[13579][26]00)-02-29|\\d{4}-((0[13578]|1[02])-(0[1-9]|[12]\\d|3[01])|(0[469]|11)-(0[1-9]|[12]\\d|30)|(02)-(0[1-9]|1\\d|2[0-8])))",bs=new RegExp(`^${Zn}$`);function Kn(t){let e="[0-5]\\d";t.precision?e=`${e}\\.\\d{${t.precision}}`:t.precision==null&&(e=`${e}(\\.\\d+)?`);let n=t.precision?"+":"?";return `([01]\\d|2[0-3]):[0-5]\\d(:${e})${n}`}function Rs(t){return new RegExp(`^${Kn(t)}$`)}function Wn(t){let e=`${Zn}T${Kn(t)}`,n=[];return n.push(t.local?"Z?":"Z"),t.offset&&n.push("([+-]\\d{2}:?\\d{2})"),e=`${e}(${n.join("|")})`,new RegExp(`^${e}$`)}function Cs(t,e){return !!((e==="v4"||!e)&&ws.test(t)||(e==="v6"||!e)&&Es.test(t))}function Is(t,e){if(!ys.test(t))return false;try{let[n]=t.split(".");if(!n)return !1;let r=n.replace(/-/g,"+").replace(/_/g,"/").padEnd(n.length+(4-n.length%4)%4,"="),s=JSON.parse(atob(r));return !(typeof s!="object"||s===null||"typ"in s&&s?.typ!=="JWT"||!s.alg||e&&s.alg!==e)}catch{return false}}function Ns(t,e){return !!((e==="v4"||!e)&&Ss.test(t)||(e==="v6"||!e)&&Ts.test(t))}var Se=class t extends _{_parse(e){if(this._def.coerce&&(e.data=String(e.data)),this._getType(e)!==g.string){let o=this._getOrReturnCtx(e);return p(o,{code:u.invalid_type,expected:g.string,received:o.parsedType}),h}let r=new z,s;for(let o of this._def.checks)if(o.kind==="min")e.data.length<o.value&&(s=this._getOrReturnCtx(e,s),p(s,{code:u.too_small,minimum:o.value,type:"string",inclusive:true,exact:false,message:o.message}),r.dirty());else if(o.kind==="max")e.data.length>o.value&&(s=this._getOrReturnCtx(e,s),p(s,{code:u.too_big,maximum:o.value,type:"string",inclusive:true,exact:false,message:o.message}),r.dirty());else if(o.kind==="length"){let a=e.data.length>o.value,i=e.data.length<o.value;(a||i)&&(s=this._getOrReturnCtx(e,s),a?p(s,{code:u.too_big,maximum:o.value,type:"string",inclusive:true,exact:true,message:o.message}):i&&p(s,{code:u.too_small,minimum:o.value,type:"string",inclusive:true,exact:true,message:o.message}),r.dirty());}else if(o.kind==="email")ks.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"email",code:u.invalid_string,message:o.message}),r.dirty());else if(o.kind==="emoji")un||(un=new RegExp(_s,"u")),un.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"emoji",code:u.invalid_string,message:o.message}),r.dirty());else if(o.kind==="uuid")ms.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"uuid",code:u.invalid_string,message:o.message}),r.dirty());else if(o.kind==="nanoid")hs.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"nanoid",code:u.invalid_string,message:o.message}),r.dirty());else if(o.kind==="cuid")fs.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"cuid",code:u.invalid_string,message:o.message}),r.dirty());else if(o.kind==="cuid2")ps.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"cuid2",code:u.invalid_string,message:o.message}),r.dirty());else if(o.kind==="ulid")gs.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"ulid",code:u.invalid_string,message:o.message}),r.dirty());else if(o.kind==="url")try{new URL(e.data);}catch{s=this._getOrReturnCtx(e,s),p(s,{validation:"url",code:u.invalid_string,message:o.message}),r.dirty();}else o.kind==="regex"?(o.regex.lastIndex=0,o.regex.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"regex",code:u.invalid_string,message:o.message}),r.dirty())):o.kind==="trim"?e.data=e.data.trim():o.kind==="includes"?e.data.includes(o.value,o.position)||(s=this._getOrReturnCtx(e,s),p(s,{code:u.invalid_string,validation:{includes:o.value,position:o.position},message:o.message}),r.dirty()):o.kind==="toLowerCase"?e.data=e.data.toLowerCase():o.kind==="toUpperCase"?e.data=e.data.toUpperCase():o.kind==="startsWith"?e.data.startsWith(o.value)||(s=this._getOrReturnCtx(e,s),p(s,{code:u.invalid_string,validation:{startsWith:o.value},message:o.message}),r.dirty()):o.kind==="endsWith"?e.data.endsWith(o.value)||(s=this._getOrReturnCtx(e,s),p(s,{code:u.invalid_string,validation:{endsWith:o.value},message:o.message}),r.dirty()):o.kind==="datetime"?Wn(o).test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{code:u.invalid_string,validation:"datetime",message:o.message}),r.dirty()):o.kind==="date"?bs.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{code:u.invalid_string,validation:"date",message:o.message}),r.dirty()):o.kind==="time"?Rs(o).test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{code:u.invalid_string,validation:"time",message:o.message}),r.dirty()):o.kind==="duration"?vs.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"duration",code:u.invalid_string,message:o.message}),r.dirty()):o.kind==="ip"?Cs(e.data,o.version)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"ip",code:u.invalid_string,message:o.message}),r.dirty()):o.kind==="jwt"?Is(e.data,o.alg)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"jwt",code:u.invalid_string,message:o.message}),r.dirty()):o.kind==="cidr"?Ns(e.data,o.version)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"cidr",code:u.invalid_string,message:o.message}),r.dirty()):o.kind==="base64"?xs.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"base64",code:u.invalid_string,message:o.message}),r.dirty()):o.kind==="base64url"?As.test(e.data)||(s=this._getOrReturnCtx(e,s),p(s,{validation:"base64url",code:u.invalid_string,message:o.message}),r.dirty()):S.assertNever(o);return {status:r.value,value:e.data}}_regex(e,n,r){return this.refinement(s=>e.test(s),{validation:n,code:u.invalid_string,...m.errToObj(r)})}_addCheck(e){return new t({...this._def,checks:[...this._def.checks,e]})}email(e){return this._addCheck({kind:"email",...m.errToObj(e)})}url(e){return this._addCheck({kind:"url",...m.errToObj(e)})}emoji(e){return this._addCheck({kind:"emoji",...m.errToObj(e)})}uuid(e){return this._addCheck({kind:"uuid",...m.errToObj(e)})}nanoid(e){return this._addCheck({kind:"nanoid",...m.errToObj(e)})}cuid(e){return this._addCheck({kind:"cuid",...m.errToObj(e)})}cuid2(e){return this._addCheck({kind:"cuid2",...m.errToObj(e)})}ulid(e){return this._addCheck({kind:"ulid",...m.errToObj(e)})}base64(e){return this._addCheck({kind:"base64",...m.errToObj(e)})}base64url(e){return this._addCheck({kind:"base64url",...m.errToObj(e)})}jwt(e){return this._addCheck({kind:"jwt",...m.errToObj(e)})}ip(e){return this._addCheck({kind:"ip",...m.errToObj(e)})}cidr(e){return this._addCheck({kind:"cidr",...m.errToObj(e)})}datetime(e){return typeof e=="string"?this._addCheck({kind:"datetime",precision:null,offset:false,local:false,message:e}):this._addCheck({kind:"datetime",precision:typeof e?.precision>"u"?null:e?.precision,offset:e?.offset??false,local:e?.local??false,...m.errToObj(e?.message)})}date(e){return this._addCheck({kind:"date",message:e})}time(e){return typeof e=="string"?this._addCheck({kind:"time",precision:null,message:e}):this._addCheck({kind:"time",precision:typeof e?.precision>"u"?null:e?.precision,...m.errToObj(e?.message)})}duration(e){return this._addCheck({kind:"duration",...m.errToObj(e)})}regex(e,n){return this._addCheck({kind:"regex",regex:e,...m.errToObj(n)})}includes(e,n){return this._addCheck({kind:"includes",value:e,position:n?.position,...m.errToObj(n?.message)})}startsWith(e,n){return this._addCheck({kind:"startsWith",value:e,...m.errToObj(n)})}endsWith(e,n){return this._addCheck({kind:"endsWith",value:e,...m.errToObj(n)})}min(e,n){return this._addCheck({kind:"min",value:e,...m.errToObj(n)})}max(e,n){return this._addCheck({kind:"max",value:e,...m.errToObj(n)})}length(e,n){return this._addCheck({kind:"length",value:e,...m.errToObj(n)})}nonempty(e){return this.min(1,m.errToObj(e))}trim(){return new t({...this._def,checks:[...this._def.checks,{kind:"trim"}]})}toLowerCase(){return new t({...this._def,checks:[...this._def.checks,{kind:"toLowerCase"}]})}toUpperCase(){return new t({...this._def,checks:[...this._def.checks,{kind:"toUpperCase"}]})}get isDatetime(){return !!this._def.checks.find(e=>e.kind==="datetime")}get isDate(){return !!this._def.checks.find(e=>e.kind==="date")}get isTime(){return !!this._def.checks.find(e=>e.kind==="time")}get isDuration(){return !!this._def.checks.find(e=>e.kind==="duration")}get isEmail(){return !!this._def.checks.find(e=>e.kind==="email")}get isURL(){return !!this._def.checks.find(e=>e.kind==="url")}get isEmoji(){return !!this._def.checks.find(e=>e.kind==="emoji")}get isUUID(){return !!this._def.checks.find(e=>e.kind==="uuid")}get isNANOID(){return !!this._def.checks.find(e=>e.kind==="nanoid")}get isCUID(){return !!this._def.checks.find(e=>e.kind==="cuid")}get isCUID2(){return !!this._def.checks.find(e=>e.kind==="cuid2")}get isULID(){return !!this._def.checks.find(e=>e.kind==="ulid")}get isIP(){return !!this._def.checks.find(e=>e.kind==="ip")}get isCIDR(){return !!this._def.checks.find(e=>e.kind==="cidr")}get isBase64(){return !!this._def.checks.find(e=>e.kind==="base64")}get isBase64url(){return !!this._def.checks.find(e=>e.kind==="base64url")}get minLength(){let e=null;for(let n of this._def.checks)n.kind==="min"&&(e===null||n.value>e)&&(e=n.value);return e}get maxLength(){let e=null;for(let n of this._def.checks)n.kind==="max"&&(e===null||n.value<e)&&(e=n.value);return e}};Se.create=t=>new Se({checks:[],typeName:y.ZodString,coerce:t?.coerce??false,...k(t)});function Os(t,e){let n=(t.toString().split(".")[1]||"").length,r=(e.toString().split(".")[1]||"").length,s=n>r?n:r,o=Number.parseInt(t.toFixed(s).replace(".","")),a=Number.parseInt(e.toFixed(s).replace(".",""));return o%a/10**s}var Re=class t extends _{constructor(){super(...arguments),this.min=this.gte,this.max=this.lte,this.step=this.multipleOf;}_parse(e){if(this._def.coerce&&(e.data=Number(e.data)),this._getType(e)!==g.number){let o=this._getOrReturnCtx(e);return p(o,{code:u.invalid_type,expected:g.number,received:o.parsedType}),h}let r,s=new z;for(let o of this._def.checks)o.kind==="int"?S.isInteger(e.data)||(r=this._getOrReturnCtx(e,r),p(r,{code:u.invalid_type,expected:"integer",received:"float",message:o.message}),s.dirty()):o.kind==="min"?(o.inclusive?e.data<o.value:e.data<=o.value)&&(r=this._getOrReturnCtx(e,r),p(r,{code:u.too_small,minimum:o.value,type:"number",inclusive:o.inclusive,exact:false,message:o.message}),s.dirty()):o.kind==="max"?(o.inclusive?e.data>o.value:e.data>=o.value)&&(r=this._getOrReturnCtx(e,r),p(r,{code:u.too_big,maximum:o.value,type:"number",inclusive:o.inclusive,exact:false,message:o.message}),s.dirty()):o.kind==="multipleOf"?Os(e.data,o.value)!==0&&(r=this._getOrReturnCtx(e,r),p(r,{code:u.not_multiple_of,multipleOf:o.value,message:o.message}),s.dirty()):o.kind==="finite"?Number.isFinite(e.data)||(r=this._getOrReturnCtx(e,r),p(r,{code:u.not_finite,message:o.message}),s.dirty()):S.assertNever(o);return {status:s.value,value:e.data}}gte(e,n){return this.setLimit("min",e,true,m.toString(n))}gt(e,n){return this.setLimit("min",e,false,m.toString(n))}lte(e,n){return this.setLimit("max",e,true,m.toString(n))}lt(e,n){return this.setLimit("max",e,false,m.toString(n))}setLimit(e,n,r,s){return new t({...this._def,checks:[...this._def.checks,{kind:e,value:n,inclusive:r,message:m.toString(s)}]})}_addCheck(e){return new t({...this._def,checks:[...this._def.checks,e]})}int(e){return this._addCheck({kind:"int",message:m.toString(e)})}positive(e){return this._addCheck({kind:"min",value:0,inclusive:false,message:m.toString(e)})}negative(e){return this._addCheck({kind:"max",value:0,inclusive:false,message:m.toString(e)})}nonpositive(e){return this._addCheck({kind:"max",value:0,inclusive:true,message:m.toString(e)})}nonnegative(e){return this._addCheck({kind:"min",value:0,inclusive:true,message:m.toString(e)})}multipleOf(e,n){return this._addCheck({kind:"multipleOf",value:e,message:m.toString(n)})}finite(e){return this._addCheck({kind:"finite",message:m.toString(e)})}safe(e){return this._addCheck({kind:"min",inclusive:true,value:Number.MIN_SAFE_INTEGER,message:m.toString(e)})._addCheck({kind:"max",inclusive:true,value:Number.MAX_SAFE_INTEGER,message:m.toString(e)})}get minValue(){let e=null;for(let n of this._def.checks)n.kind==="min"&&(e===null||n.value>e)&&(e=n.value);return e}get maxValue(){let e=null;for(let n of this._def.checks)n.kind==="max"&&(e===null||n.value<e)&&(e=n.value);return e}get isInt(){return !!this._def.checks.find(e=>e.kind==="int"||e.kind==="multipleOf"&&S.isInteger(e.value))}get isFinite(){let e=null,n=null;for(let r of this._def.checks){if(r.kind==="finite"||r.kind==="int"||r.kind==="multipleOf")return true;r.kind==="min"?(n===null||r.value>n)&&(n=r.value):r.kind==="max"&&(e===null||r.value<e)&&(e=r.value);}return Number.isFinite(n)&&Number.isFinite(e)}};Re.create=t=>new Re({checks:[],typeName:y.ZodNumber,coerce:t?.coerce||false,...k(t)});var Ce=class t extends _{constructor(){super(...arguments),this.min=this.gte,this.max=this.lte;}_parse(e){if(this._def.coerce)try{e.data=BigInt(e.data);}catch{return this._getInvalidInput(e)}if(this._getType(e)!==g.bigint)return this._getInvalidInput(e);let r,s=new z;for(let o of this._def.checks)o.kind==="min"?(o.inclusive?e.data<o.value:e.data<=o.value)&&(r=this._getOrReturnCtx(e,r),p(r,{code:u.too_small,type:"bigint",minimum:o.value,inclusive:o.inclusive,message:o.message}),s.dirty()):o.kind==="max"?(o.inclusive?e.data>o.value:e.data>=o.value)&&(r=this._getOrReturnCtx(e,r),p(r,{code:u.too_big,type:"bigint",maximum:o.value,inclusive:o.inclusive,message:o.message}),s.dirty()):o.kind==="multipleOf"?e.data%o.value!==BigInt(0)&&(r=this._getOrReturnCtx(e,r),p(r,{code:u.not_multiple_of,multipleOf:o.value,message:o.message}),s.dirty()):S.assertNever(o);return {status:s.value,value:e.data}}_getInvalidInput(e){let n=this._getOrReturnCtx(e);return p(n,{code:u.invalid_type,expected:g.bigint,received:n.parsedType}),h}gte(e,n){return this.setLimit("min",e,true,m.toString(n))}gt(e,n){return this.setLimit("min",e,false,m.toString(n))}lte(e,n){return this.setLimit("max",e,true,m.toString(n))}lt(e,n){return this.setLimit("max",e,false,m.toString(n))}setLimit(e,n,r,s){return new t({...this._def,checks:[...this._def.checks,{kind:e,value:n,inclusive:r,message:m.toString(s)}]})}_addCheck(e){return new t({...this._def,checks:[...this._def.checks,e]})}positive(e){return this._addCheck({kind:"min",value:BigInt(0),inclusive:false,message:m.toString(e)})}negative(e){return this._addCheck({kind:"max",value:BigInt(0),inclusive:false,message:m.toString(e)})}nonpositive(e){return this._addCheck({kind:"max",value:BigInt(0),inclusive:true,message:m.toString(e)})}nonnegative(e){return this._addCheck({kind:"min",value:BigInt(0),inclusive:true,message:m.toString(e)})}multipleOf(e,n){return this._addCheck({kind:"multipleOf",value:e,message:m.toString(n)})}get minValue(){let e=null;for(let n of this._def.checks)n.kind==="min"&&(e===null||n.value>e)&&(e=n.value);return e}get maxValue(){let e=null;for(let n of this._def.checks)n.kind==="max"&&(e===null||n.value<e)&&(e=n.value);return e}};Ce.create=t=>new Ce({checks:[],typeName:y.ZodBigInt,coerce:t?.coerce??false,...k(t)});var Ie=class extends _{_parse(e){if(this._def.coerce&&(e.data=!!e.data),this._getType(e)!==g.boolean){let r=this._getOrReturnCtx(e);return p(r,{code:u.invalid_type,expected:g.boolean,received:r.parsedType}),h}return J(e.data)}};Ie.create=t=>new Ie({typeName:y.ZodBoolean,coerce:t?.coerce||false,...k(t)});var Ne=class t extends _{_parse(e){if(this._def.coerce&&(e.data=new Date(e.data)),this._getType(e)!==g.date){let o=this._getOrReturnCtx(e);return p(o,{code:u.invalid_type,expected:g.date,received:o.parsedType}),h}if(Number.isNaN(e.data.getTime())){let o=this._getOrReturnCtx(e);return p(o,{code:u.invalid_date}),h}let r=new z,s;for(let o of this._def.checks)o.kind==="min"?e.data.getTime()<o.value&&(s=this._getOrReturnCtx(e,s),p(s,{code:u.too_small,message:o.message,inclusive:true,exact:false,minimum:o.value,type:"date"}),r.dirty()):o.kind==="max"?e.data.getTime()>o.value&&(s=this._getOrReturnCtx(e,s),p(s,{code:u.too_big,message:o.message,inclusive:true,exact:false,maximum:o.value,type:"date"}),r.dirty()):S.assertNever(o);return {status:r.value,value:new Date(e.data.getTime())}}_addCheck(e){return new t({...this._def,checks:[...this._def.checks,e]})}min(e,n){return this._addCheck({kind:"min",value:e.getTime(),message:m.toString(n)})}max(e,n){return this._addCheck({kind:"max",value:e.getTime(),message:m.toString(n)})}get minDate(){let e=null;for(let n of this._def.checks)n.kind==="min"&&(e===null||n.value>e)&&(e=n.value);return e!=null?new Date(e):null}get maxDate(){let e=null;for(let n of this._def.checks)n.kind==="max"&&(e===null||n.value<e)&&(e=n.value);return e!=null?new Date(e):null}};Ne.create=t=>new Ne({checks:[],coerce:t?.coerce||false,typeName:y.ZodDate,...k(t)});var rt=class extends _{_parse(e){if(this._getType(e)!==g.symbol){let r=this._getOrReturnCtx(e);return p(r,{code:u.invalid_type,expected:g.symbol,received:r.parsedType}),h}return J(e.data)}};rt.create=t=>new rt({typeName:y.ZodSymbol,...k(t)});var Oe=class extends _{_parse(e){if(this._getType(e)!==g.undefined){let r=this._getOrReturnCtx(e);return p(r,{code:u.invalid_type,expected:g.undefined,received:r.parsedType}),h}return J(e.data)}};Oe.create=t=>new Oe({typeName:y.ZodUndefined,...k(t)});var Pe=class extends _{_parse(e){if(this._getType(e)!==g.null){let r=this._getOrReturnCtx(e);return p(r,{code:u.invalid_type,expected:g.null,received:r.parsedType}),h}return J(e.data)}};Pe.create=t=>new Pe({typeName:y.ZodNull,...k(t)});var Ee=class extends _{constructor(){super(...arguments),this._any=true;}_parse(e){return J(e.data)}};Ee.create=t=>new Ee({typeName:y.ZodAny,...k(t)});var me=class extends _{constructor(){super(...arguments),this._unknown=true;}_parse(e){return J(e.data)}};me.create=t=>new me({typeName:y.ZodUnknown,...k(t)});var oe=class extends _{_parse(e){let n=this._getOrReturnCtx(e);return p(n,{code:u.invalid_type,expected:g.never,received:n.parsedType}),h}};oe.create=t=>new oe({typeName:y.ZodNever,...k(t)});var st=class extends _{_parse(e){if(this._getType(e)!==g.undefined){let r=this._getOrReturnCtx(e);return p(r,{code:u.invalid_type,expected:g.void,received:r.parsedType}),h}return J(e.data)}};st.create=t=>new st({typeName:y.ZodVoid,...k(t)});var he=class t extends _{_parse(e){let{ctx:n,status:r}=this._processInputParams(e),s=this._def;if(n.parsedType!==g.array)return p(n,{code:u.invalid_type,expected:g.array,received:n.parsedType}),h;if(s.exactLength!==null){let a=n.data.length>s.exactLength.value,i=n.data.length<s.exactLength.value;(a||i)&&(p(n,{code:a?u.too_big:u.too_small,minimum:i?s.exactLength.value:void 0,maximum:a?s.exactLength.value:void 0,type:"array",inclusive:true,exact:true,message:s.exactLength.message}),r.dirty());}if(s.minLength!==null&&n.data.length<s.minLength.value&&(p(n,{code:u.too_small,minimum:s.minLength.value,type:"array",inclusive:true,exact:false,message:s.minLength.message}),r.dirty()),s.maxLength!==null&&n.data.length>s.maxLength.value&&(p(n,{code:u.too_big,maximum:s.maxLength.value,type:"array",inclusive:true,exact:false,message:s.maxLength.message}),r.dirty()),n.common.async)return Promise.all([...n.data].map((a,i)=>s.type._parseAsync(new ne(n,a,n.path,i)))).then(a=>z.mergeArray(r,a));let o=[...n.data].map((a,i)=>s.type._parseSync(new ne(n,a,n.path,i)));return z.mergeArray(r,o)}get element(){return this._def.type}min(e,n){return new t({...this._def,minLength:{value:e,message:m.toString(n)}})}max(e,n){return new t({...this._def,maxLength:{value:e,message:m.toString(n)}})}length(e,n){return new t({...this._def,exactLength:{value:e,message:m.toString(n)}})}nonempty(e){return this.min(1,e)}};he.create=(t,e)=>new he({type:t,minLength:null,maxLength:null,exactLength:null,typeName:y.ZodArray,...k(e)});function nt(t){if(t instanceof W){let e={};for(let n in t.shape){let r=t.shape[n];e[n]=te.create(nt(r));}return new W({...t._def,shape:()=>e})}else return t instanceof he?new he({...t._def,type:nt(t.element)}):t instanceof te?te.create(nt(t.unwrap())):t instanceof ue?ue.create(nt(t.unwrap())):t instanceof le?le.create(t.items.map(e=>nt(e))):t}var W=class t extends _{constructor(){super(...arguments),this._cached=null,this.nonstrict=this.passthrough,this.augment=this.extend;}_getCached(){if(this._cached!==null)return this._cached;let e=this._def.shape(),n=S.objectKeys(e);return this._cached={shape:e,keys:n},this._cached}_parse(e){if(this._getType(e)!==g.object){let l=this._getOrReturnCtx(e);return p(l,{code:u.invalid_type,expected:g.object,received:l.parsedType}),h}let{status:r,ctx:s}=this._processInputParams(e),{shape:o,keys:a}=this._getCached(),i=[];if(!(this._def.catchall instanceof oe&&this._def.unknownKeys==="strip"))for(let l in s.data)a.includes(l)||i.push(l);let c=[];for(let l of a){let d=o[l],A=s.data[l];c.push({key:{status:"valid",value:l},value:d._parse(new ne(s,A,s.path,l)),alwaysSet:l in s.data});}if(this._def.catchall instanceof oe){let l=this._def.unknownKeys;if(l==="passthrough")for(let d of i)c.push({key:{status:"valid",value:d},value:{status:"valid",value:s.data[d]}});else if(l==="strict")i.length>0&&(p(s,{code:u.unrecognized_keys,keys:i}),r.dirty());else if(l!=="strip")throw new Error("Internal ZodObject error: invalid unknownKeys value.")}else {let l=this._def.catchall;for(let d of i){let A=s.data[d];c.push({key:{status:"valid",value:d},value:l._parse(new ne(s,A,s.path,d)),alwaysSet:d in s.data});}}return s.common.async?Promise.resolve().then(async()=>{let l=[];for(let d of c){let A=await d.key,P=await d.value;l.push({key:A,value:P,alwaysSet:d.alwaysSet});}return l}).then(l=>z.mergeObjectSync(r,l)):z.mergeObjectSync(r,c)}get shape(){return this._def.shape()}strict(e){return m.errToObj,new t({...this._def,unknownKeys:"strict",...e!==void 0?{errorMap:(n,r)=>{let s=this._def.errorMap?.(n,r).message??r.defaultError;return n.code==="unrecognized_keys"?{message:m.errToObj(e).message??s}:{message:s}}}:{}})}strip(){return new t({...this._def,unknownKeys:"strip"})}passthrough(){return new t({...this._def,unknownKeys:"passthrough"})}extend(e){return new t({...this._def,shape:()=>({...this._def.shape(),...e})})}merge(e){return new t({unknownKeys:e._def.unknownKeys,catchall:e._def.catchall,shape:()=>({...this._def.shape(),...e._def.shape()}),typeName:y.ZodObject})}setKey(e,n){return this.augment({[e]:n})}catchall(e){return new t({...this._def,catchall:e})}pick(e){let n={};for(let r of S.objectKeys(e))e[r]&&this.shape[r]&&(n[r]=this.shape[r]);return new t({...this._def,shape:()=>n})}omit(e){let n={};for(let r of S.objectKeys(this.shape))e[r]||(n[r]=this.shape[r]);return new t({...this._def,shape:()=>n})}deepPartial(){return nt(this)}partial(e){let n={};for(let r of S.objectKeys(this.shape)){let s=this.shape[r];e&&!e[r]?n[r]=s:n[r]=s.optional();}return new t({...this._def,shape:()=>n})}required(e){let n={};for(let r of S.objectKeys(this.shape))if(e&&!e[r])n[r]=this.shape[r];else {let o=this.shape[r];for(;o instanceof te;)o=o._def.innerType;n[r]=o;}return new t({...this._def,shape:()=>n})}keyof(){return qn(S.objectKeys(this.shape))}};W.create=(t,e)=>new W({shape:()=>t,unknownKeys:"strip",catchall:oe.create(),typeName:y.ZodObject,...k(e)});W.strictCreate=(t,e)=>new W({shape:()=>t,unknownKeys:"strict",catchall:oe.create(),typeName:y.ZodObject,...k(e)});W.lazycreate=(t,e)=>new W({shape:t,unknownKeys:"strip",catchall:oe.create(),typeName:y.ZodObject,...k(e)});var De=class extends _{_parse(e){let{ctx:n}=this._processInputParams(e),r=this._def.options;function s(o){for(let i of o)if(i.result.status==="valid")return i.result;for(let i of o)if(i.result.status==="dirty")return n.common.issues.push(...i.ctx.common.issues),i.result;let a=o.map(i=>new K(i.ctx.common.issues));return p(n,{code:u.invalid_union,unionErrors:a}),h}if(n.common.async)return Promise.all(r.map(async o=>{let a={...n,common:{...n.common,issues:[]},parent:null};return {result:await o._parseAsync({data:n.data,path:n.path,parent:a}),ctx:a}})).then(s);{let o,a=[];for(let c of r){let l={...n,common:{...n.common,issues:[]},parent:null},d=c._parseSync({data:n.data,path:n.path,parent:l});if(d.status==="valid")return d;d.status==="dirty"&&!o&&(o={result:d,ctx:l}),l.common.issues.length&&a.push(l.common.issues);}if(o)return n.common.issues.push(...o.ctx.common.issues),o.result;let i=a.map(c=>new K(c));return p(n,{code:u.invalid_union,unionErrors:i}),h}}get options(){return this._def.options}};De.create=(t,e)=>new De({options:t,typeName:y.ZodUnion,...k(e)});var ge=t=>t instanceof Le?ge(t.schema):t instanceof re?ge(t.innerType()):t instanceof $e?[t.value]:t instanceof Ve?t.options:t instanceof Me?S.objectValues(t.enum):t instanceof Ue?ge(t._def.innerType):t instanceof Oe?[void 0]:t instanceof Pe?[null]:t instanceof te?[void 0,...ge(t.unwrap())]:t instanceof ue?[null,...ge(t.unwrap())]:t instanceof yt||t instanceof Be?ge(t.unwrap()):t instanceof Fe?ge(t._def.innerType):[],$t=class t extends _{_parse(e){let{ctx:n}=this._processInputParams(e);if(n.parsedType!==g.object)return p(n,{code:u.invalid_type,expected:g.object,received:n.parsedType}),h;let r=this.discriminator,s=n.data[r],o=this.optionsMap.get(s);return o?n.common.async?o._parseAsync({data:n.data,path:n.path,parent:n}):o._parseSync({data:n.data,path:n.path,parent:n}):(p(n,{code:u.invalid_union_discriminator,options:Array.from(this.optionsMap.keys()),path:[r]}),h)}get discriminator(){return this._def.discriminator}get options(){return this._def.options}get optionsMap(){return this._def.optionsMap}static create(e,n,r){let s=new Map;for(let o of n){let a=ge(o.shape[e]);if(!a.length)throw new Error(`A discriminator value for key \`${e}\` could not be extracted from all schema options`);for(let i of a){if(s.has(i))throw new Error(`Discriminator property ${String(e)} has duplicate value ${String(i)}`);s.set(i,o);}}return new t({typeName:y.ZodDiscriminatedUnion,discriminator:e,options:n,optionsMap:s,...k(r)})}};function dn(t,e){let n=ce(t),r=ce(e);if(t===e)return {valid:true,data:t};if(n===g.object&&r===g.object){let s=S.objectKeys(e),o=S.objectKeys(t).filter(i=>s.indexOf(i)!==-1),a={...t,...e};for(let i of o){let c=dn(t[i],e[i]);if(!c.valid)return {valid:false};a[i]=c.data;}return {valid:true,data:a}}else if(n===g.array&&r===g.array){if(t.length!==e.length)return {valid:false};let s=[];for(let o=0;o<t.length;o++){let a=t[o],i=e[o],c=dn(a,i);if(!c.valid)return {valid:false};s.push(c.data);}return {valid:true,data:s}}else return n===g.date&&r===g.date&&+t==+e?{valid:true,data:t}:{valid:false}}var je=class extends _{_parse(e){let{status:n,ctx:r}=this._processInputParams(e),s=(o,a)=>{if(jt(o)||jt(a))return h;let i=dn(o.value,a.value);return i.valid?((Lt(o)||Lt(a))&&n.dirty(),{status:n.value,value:i.data}):(p(r,{code:u.invalid_intersection_types}),h)};return r.common.async?Promise.all([this._def.left._parseAsync({data:r.data,path:r.path,parent:r}),this._def.right._parseAsync({data:r.data,path:r.path,parent:r})]).then(([o,a])=>s(o,a)):s(this._def.left._parseSync({data:r.data,path:r.path,parent:r}),this._def.right._parseSync({data:r.data,path:r.path,parent:r}))}};je.create=(t,e,n)=>new je({left:t,right:e,typeName:y.ZodIntersection,...k(n)});var le=class t extends _{_parse(e){let{status:n,ctx:r}=this._processInputParams(e);if(r.parsedType!==g.array)return p(r,{code:u.invalid_type,expected:g.array,received:r.parsedType}),h;if(r.data.length<this._def.items.length)return p(r,{code:u.too_small,minimum:this._def.items.length,inclusive:true,exact:false,type:"array"}),h;!this._def.rest&&r.data.length>this._def.items.length&&(p(r,{code:u.too_big,maximum:this._def.items.length,inclusive:true,exact:false,type:"array"}),n.dirty());let o=[...r.data].map((a,i)=>{let c=this._def.items[i]||this._def.rest;return c?c._parse(new ne(r,a,r.path,i)):null}).filter(a=>!!a);return r.common.async?Promise.all(o).then(a=>z.mergeArray(n,a)):z.mergeArray(n,o)}get items(){return this._def.items}rest(e){return new t({...this._def,rest:e})}};le.create=(t,e)=>{if(!Array.isArray(t))throw new Error("You must pass an array of schemas to z.tuple([ ... ])");return new le({items:t,typeName:y.ZodTuple,rest:null,...k(e)})};var Vt=class t extends _{get keySchema(){return this._def.keyType}get valueSchema(){return this._def.valueType}_parse(e){let{status:n,ctx:r}=this._processInputParams(e);if(r.parsedType!==g.object)return p(r,{code:u.invalid_type,expected:g.object,received:r.parsedType}),h;let s=[],o=this._def.keyType,a=this._def.valueType;for(let i in r.data)s.push({key:o._parse(new ne(r,i,r.path,i)),value:a._parse(new ne(r,r.data[i],r.path,i)),alwaysSet:i in r.data});return r.common.async?z.mergeObjectAsync(n,s):z.mergeObjectSync(n,s)}get element(){return this._def.valueType}static create(e,n,r){return n instanceof _?new t({keyType:e,valueType:n,typeName:y.ZodRecord,...k(r)}):new t({keyType:Se.create(),valueType:e,typeName:y.ZodRecord,...k(n)})}},ot=class extends _{get keySchema(){return this._def.keyType}get valueSchema(){return this._def.valueType}_parse(e){let{status:n,ctx:r}=this._processInputParams(e);if(r.parsedType!==g.map)return p(r,{code:u.invalid_type,expected:g.map,received:r.parsedType}),h;let s=this._def.keyType,o=this._def.valueType,a=[...r.data.entries()].map(([i,c],l)=>({key:s._parse(new ne(r,i,r.path,[l,"key"])),value:o._parse(new ne(r,c,r.path,[l,"value"]))}));if(r.common.async){let i=new Map;return Promise.resolve().then(async()=>{for(let c of a){let l=await c.key,d=await c.value;if(l.status==="aborted"||d.status==="aborted")return h;(l.status==="dirty"||d.status==="dirty")&&n.dirty(),i.set(l.value,d.value);}return {status:n.value,value:i}})}else {let i=new Map;for(let c of a){let l=c.key,d=c.value;if(l.status==="aborted"||d.status==="aborted")return h;(l.status==="dirty"||d.status==="dirty")&&n.dirty(),i.set(l.value,d.value);}return {status:n.value,value:i}}}};ot.create=(t,e,n)=>new ot({valueType:e,keyType:t,typeName:y.ZodMap,...k(n)});var it=class t extends _{_parse(e){let{status:n,ctx:r}=this._processInputParams(e);if(r.parsedType!==g.set)return p(r,{code:u.invalid_type,expected:g.set,received:r.parsedType}),h;let s=this._def;s.minSize!==null&&r.data.size<s.minSize.value&&(p(r,{code:u.too_small,minimum:s.minSize.value,type:"set",inclusive:true,exact:false,message:s.minSize.message}),n.dirty()),s.maxSize!==null&&r.data.size>s.maxSize.value&&(p(r,{code:u.too_big,maximum:s.maxSize.value,type:"set",inclusive:true,exact:false,message:s.maxSize.message}),n.dirty());let o=this._def.valueType;function a(c){let l=new Set;for(let d of c){if(d.status==="aborted")return h;d.status==="dirty"&&n.dirty(),l.add(d.value);}return {status:n.value,value:l}}let i=[...r.data.values()].map((c,l)=>o._parse(new ne(r,c,r.path,l)));return r.common.async?Promise.all(i).then(c=>a(c)):a(i)}min(e,n){return new t({...this._def,minSize:{value:e,message:m.toString(n)}})}max(e,n){return new t({...this._def,maxSize:{value:e,message:m.toString(n)}})}size(e,n){return this.min(e,n).max(e,n)}nonempty(e){return this.min(1,e)}};it.create=(t,e)=>new it({valueType:t,minSize:null,maxSize:null,typeName:y.ZodSet,...k(e)});var Mt=class t extends _{constructor(){super(...arguments),this.validate=this.implement;}_parse(e){let{ctx:n}=this._processInputParams(e);if(n.parsedType!==g.function)return p(n,{code:u.invalid_type,expected:g.function,received:n.parsedType}),h;function r(i,c){return ht({data:i,path:n.path,errorMaps:[n.common.contextualErrorMap,n.schemaErrorMap,et(),pe].filter(l=>!!l),issueData:{code:u.invalid_arguments,argumentsError:c}})}function s(i,c){return ht({data:i,path:n.path,errorMaps:[n.common.contextualErrorMap,n.schemaErrorMap,et(),pe].filter(l=>!!l),issueData:{code:u.invalid_return_type,returnTypeError:c}})}let o={errorMap:n.common.contextualErrorMap},a=n.data;if(this._def.returns instanceof Te){let i=this;return J(async function(...c){let l=new K([]),d=await i._def.args.parseAsync(c,o).catch(C=>{throw l.addIssue(r(c,C)),l}),A=await Reflect.apply(a,this,d);return await i._def.returns._def.type.parseAsync(A,o).catch(C=>{throw l.addIssue(s(A,C)),l})})}else {let i=this;return J(function(...c){let l=i._def.args.safeParse(c,o);if(!l.success)throw new K([r(c,l.error)]);let d=Reflect.apply(a,this,l.data),A=i._def.returns.safeParse(d,o);if(!A.success)throw new K([s(d,A.error)]);return A.data})}}parameters(){return this._def.args}returnType(){return this._def.returns}args(...e){return new t({...this._def,args:le.create(e).rest(me.create())})}returns(e){return new t({...this._def,returns:e})}implement(e){return this.parse(e)}strictImplement(e){return this.parse(e)}static create(e,n,r){return new t({args:e||le.create([]).rest(me.create()),returns:n||me.create(),typeName:y.ZodFunction,...k(r)})}},Le=class extends _{get schema(){return this._def.getter()}_parse(e){let{ctx:n}=this._processInputParams(e);return this._def.getter()._parse({data:n.data,path:n.path,parent:n})}};Le.create=(t,e)=>new Le({getter:t,typeName:y.ZodLazy,...k(e)});var $e=class extends _{_parse(e){if(e.data!==this._def.value){let n=this._getOrReturnCtx(e);return p(n,{received:n.data,code:u.invalid_literal,expected:this._def.value}),h}return {status:"valid",value:e.data}}get value(){return this._def.value}};$e.create=(t,e)=>new $e({value:t,typeName:y.ZodLiteral,...k(e)});function qn(t,e){return new Ve({values:t,typeName:y.ZodEnum,...k(e)})}var Ve=class t extends _{_parse(e){if(typeof e.data!="string"){let n=this._getOrReturnCtx(e),r=this._def.values;return p(n,{expected:S.joinValues(r),received:n.parsedType,code:u.invalid_type}),h}if(this._cache||(this._cache=new Set(this._def.values)),!this._cache.has(e.data)){let n=this._getOrReturnCtx(e),r=this._def.values;return p(n,{received:n.data,code:u.invalid_enum_value,options:r}),h}return J(e.data)}get options(){return this._def.values}get enum(){let e={};for(let n of this._def.values)e[n]=n;return e}get Values(){let e={};for(let n of this._def.values)e[n]=n;return e}get Enum(){let e={};for(let n of this._def.values)e[n]=n;return e}extract(e,n=this._def){return t.create(e,{...this._def,...n})}exclude(e,n=this._def){return t.create(this.options.filter(r=>!e.includes(r)),{...this._def,...n})}};Ve.create=qn;var Me=class extends _{_parse(e){let n=S.getValidEnumValues(this._def.values),r=this._getOrReturnCtx(e);if(r.parsedType!==g.string&&r.parsedType!==g.number){let s=S.objectValues(n);return p(r,{expected:S.joinValues(s),received:r.parsedType,code:u.invalid_type}),h}if(this._cache||(this._cache=new Set(S.getValidEnumValues(this._def.values))),!this._cache.has(e.data)){let s=S.objectValues(n);return p(r,{received:r.data,code:u.invalid_enum_value,options:s}),h}return J(e.data)}get enum(){return this._def.values}};Me.create=(t,e)=>new Me({values:t,typeName:y.ZodNativeEnum,...k(e)});var Te=class extends _{unwrap(){return this._def.type}_parse(e){let{ctx:n}=this._processInputParams(e);if(n.parsedType!==g.promise&&n.common.async===false)return p(n,{code:u.invalid_type,expected:g.promise,received:n.parsedType}),h;let r=n.parsedType===g.promise?n.data:Promise.resolve(n.data);return J(r.then(s=>this._def.type.parseAsync(s,{path:n.path,errorMap:n.common.contextualErrorMap})))}};Te.create=(t,e)=>new Te({type:t,typeName:y.ZodPromise,...k(e)});var re=class extends _{innerType(){return this._def.schema}sourceType(){return this._def.schema._def.typeName===y.ZodEffects?this._def.schema.sourceType():this._def.schema}_parse(e){let{status:n,ctx:r}=this._processInputParams(e),s=this._def.effect||null,o={addIssue:a=>{p(r,a),a.fatal?n.abort():n.dirty();},get path(){return r.path}};if(o.addIssue=o.addIssue.bind(o),s.type==="preprocess"){let a=s.transform(r.data,o);if(r.common.async)return Promise.resolve(a).then(async i=>{if(n.value==="aborted")return h;let c=await this._def.schema._parseAsync({data:i,path:r.path,parent:r});return c.status==="aborted"?h:c.status==="dirty"?be(c.value):n.value==="dirty"?be(c.value):c});{if(n.value==="aborted")return h;let i=this._def.schema._parseSync({data:a,path:r.path,parent:r});return i.status==="aborted"?h:i.status==="dirty"?be(i.value):n.value==="dirty"?be(i.value):i}}if(s.type==="refinement"){let a=i=>{let c=s.refinement(i,o);if(r.common.async)return Promise.resolve(c);if(c instanceof Promise)throw new Error("Async refinement encountered during synchronous parse operation. Use .parseAsync instead.");return i};if(r.common.async===false){let i=this._def.schema._parseSync({data:r.data,path:r.path,parent:r});return i.status==="aborted"?h:(i.status==="dirty"&&n.dirty(),a(i.value),{status:n.value,value:i.value})}else return this._def.schema._parseAsync({data:r.data,path:r.path,parent:r}).then(i=>i.status==="aborted"?h:(i.status==="dirty"&&n.dirty(),a(i.value).then(()=>({status:n.value,value:i.value}))))}if(s.type==="transform")if(r.common.async===false){let a=this._def.schema._parseSync({data:r.data,path:r.path,parent:r});if(!we(a))return h;let i=s.transform(a.value,o);if(i instanceof Promise)throw new Error("Asynchronous transform encountered during synchronous parse operation. Use .parseAsync instead.");return {status:n.value,value:i}}else return this._def.schema._parseAsync({data:r.data,path:r.path,parent:r}).then(a=>we(a)?Promise.resolve(s.transform(a.value,o)).then(i=>({status:n.value,value:i})):h);S.assertNever(s);}};re.create=(t,e,n)=>new re({schema:t,typeName:y.ZodEffects,effect:e,...k(n)});re.createWithPreprocess=(t,e,n)=>new re({schema:e,effect:{type:"preprocess",transform:t},typeName:y.ZodEffects,...k(n)});var te=class extends _{_parse(e){return this._getType(e)===g.undefined?J(void 0):this._def.innerType._parse(e)}unwrap(){return this._def.innerType}};te.create=(t,e)=>new te({innerType:t,typeName:y.ZodOptional,...k(e)});var ue=class extends _{_parse(e){return this._getType(e)===g.null?J(null):this._def.innerType._parse(e)}unwrap(){return this._def.innerType}};ue.create=(t,e)=>new ue({innerType:t,typeName:y.ZodNullable,...k(e)});var Ue=class extends _{_parse(e){let{ctx:n}=this._processInputParams(e),r=n.data;return n.parsedType===g.undefined&&(r=this._def.defaultValue()),this._def.innerType._parse({data:r,path:n.path,parent:n})}removeDefault(){return this._def.innerType}};Ue.create=(t,e)=>new Ue({innerType:t,typeName:y.ZodDefault,defaultValue:typeof e.default=="function"?e.default:()=>e.default,...k(e)});var Fe=class extends _{_parse(e){let{ctx:n}=this._processInputParams(e),r={...n,common:{...n.common,issues:[]}},s=this._def.innerType._parse({data:r.data,path:r.path,parent:{...r}});return tt(s)?s.then(o=>({status:"valid",value:o.status==="valid"?o.value:this._def.catchValue({get error(){return new K(r.common.issues)},input:r.data})})):{status:"valid",value:s.status==="valid"?s.value:this._def.catchValue({get error(){return new K(r.common.issues)},input:r.data})}}removeCatch(){return this._def.innerType}};Fe.create=(t,e)=>new Fe({innerType:t,typeName:y.ZodCatch,catchValue:typeof e.catch=="function"?e.catch:()=>e.catch,...k(e)});var at=class extends _{_parse(e){if(this._getType(e)!==g.nan){let r=this._getOrReturnCtx(e);return p(r,{code:u.invalid_type,expected:g.nan,received:r.parsedType}),h}return {status:"valid",value:e.data}}};at.create=t=>new at({typeName:y.ZodNaN,...k(t)});var Ps=Symbol("zod_brand"),yt=class extends _{_parse(e){let{ctx:n}=this._processInputParams(e),r=n.data;return this._def.type._parse({data:r,path:n.path,parent:n})}unwrap(){return this._def.type}},vt=class t extends _{_parse(e){let{status:n,ctx:r}=this._processInputParams(e);if(r.common.async)return (async()=>{let o=await this._def.in._parseAsync({data:r.data,path:r.path,parent:r});return o.status==="aborted"?h:o.status==="dirty"?(n.dirty(),be(o.value)):this._def.out._parseAsync({data:o.value,path:r.path,parent:r})})();{let s=this._def.in._parseSync({data:r.data,path:r.path,parent:r});return s.status==="aborted"?h:s.status==="dirty"?(n.dirty(),{status:"dirty",value:s.value}):this._def.out._parseSync({data:s.value,path:r.path,parent:r})}}static create(e,n){return new t({in:e,out:n,typeName:y.ZodPipeline})}},Be=class extends _{_parse(e){let n=this._def.innerType._parse(e),r=s=>(we(s)&&(s.value=Object.freeze(s.value)),s);return tt(n)?n.then(s=>r(s)):r(n)}unwrap(){return this._def.innerType}};Be.create=(t,e)=>new Be({innerType:t,typeName:y.ZodReadonly,...k(e)});function Gn(t,e){let n=typeof t=="function"?t(e):typeof t=="string"?{message:t}:t;return typeof n=="string"?{message:n}:n}function Yn(t,e={},n){return t?Ee.create().superRefine((r,s)=>{let o=t(r);if(o instanceof Promise)return o.then(a=>{if(!a){let i=Gn(e,r),c=i.fatal??n??true;s.addIssue({code:"custom",...i,fatal:c});}});if(!o){let a=Gn(e,r),i=a.fatal??n??true;s.addIssue({code:"custom",...a,fatal:i});}}):Ee.create()}var Ds={object:W.lazycreate},y;(function(t){t.ZodString="ZodString",t.ZodNumber="ZodNumber",t.ZodNaN="ZodNaN",t.ZodBigInt="ZodBigInt",t.ZodBoolean="ZodBoolean",t.ZodDate="ZodDate",t.ZodSymbol="ZodSymbol",t.ZodUndefined="ZodUndefined",t.ZodNull="ZodNull",t.ZodAny="ZodAny",t.ZodUnknown="ZodUnknown",t.ZodNever="ZodNever",t.ZodVoid="ZodVoid",t.ZodArray="ZodArray",t.ZodObject="ZodObject",t.ZodUnion="ZodUnion",t.ZodDiscriminatedUnion="ZodDiscriminatedUnion",t.ZodIntersection="ZodIntersection",t.ZodTuple="ZodTuple",t.ZodRecord="ZodRecord",t.ZodMap="ZodMap",t.ZodSet="ZodSet",t.ZodFunction="ZodFunction",t.ZodLazy="ZodLazy",t.ZodLiteral="ZodLiteral",t.ZodEnum="ZodEnum",t.ZodEffects="ZodEffects",t.ZodNativeEnum="ZodNativeEnum",t.ZodOptional="ZodOptional",t.ZodNullable="ZodNullable",t.ZodDefault="ZodDefault",t.ZodCatch="ZodCatch",t.ZodPromise="ZodPromise",t.ZodBranded="ZodBranded",t.ZodPipeline="ZodPipeline",t.ZodReadonly="ZodReadonly";})(y||(y={}));var js=(t,e={message:`Input not instance of ${t.name}`})=>Yn(n=>n instanceof t,e),Xn=Se.create,Qn=Re.create,Ls=at.create,$s=Ce.create,er=Ie.create,Vs=Ne.create,Ms=rt.create,Us=Oe.create,Fs=Pe.create,Bs=Ee.create,zs=me.create,Hs=oe.create,Js=st.create,Gs=he.create,Zs=W.create,Ks=W.strictCreate,Ws=De.create,qs=$t.create,Ys=je.create,Xs=le.create,Qs=Vt.create,eo=ot.create,to=it.create,no=Mt.create,ro=Le.create,so=$e.create,oo=Ve.create,io=Me.create,ao=Te.create,co=re.create,lo=te.create,uo=ue.create,fo=re.createWithPreprocess,po=vt.create,go=()=>Xn().optional(),mo=()=>Qn().optional(),ho=()=>er().optional(),yo={string:(t=>Se.create({...t,coerce:true})),number:(t=>Re.create({...t,coerce:true})),boolean:(t=>Ie.create({...t,coerce:true})),bigint:(t=>Ce.create({...t,coerce:true})),date:(t=>Ne.create({...t,coerce:true}))};var vo=h;var ko={api:{rateLimit:{windowMs:900*1e3,maxRequests:100}}};f.object({snapshot_version:f.string(),engine_target_version:f.string(),project_id:f.string(),generated_at:f.string(),root_path_hash:f.string(),metadata:f.object({total_files:f.number().int().nonnegative(),total_dependencies:f.number().int().nonnegative(),total_size_bytes:f.number().int().nonnegative(),total_lines:f.number().int().nonnegative(),max_directory_depth:f.number().int().nonnegative(),language_breakdown:f.record(f.string(),f.number().int().nonnegative())}),files:f.array(f.object({id:f.string(),path_hash:f.string(),depth:f.number().int().nonnegative(),size_bytes:f.number().int().nonnegative(),estimated_lines:f.number().int().nonnegative(),extension:f.string(),is_binary:f.boolean(),import_count:f.number().int().nonnegative().optional(),function_count:f.number().int().nonnegative().optional(),class_count:f.number().int().nonnegative().optional()})),dependencies:f.array(f.object({id:f.string(),name_hash:f.string(),major_version:f.number().int().nonnegative(),minor_version:f.number().int().nonnegative(),category:f.enum(["dev","prod","peer"])}))});f.object({name:f.string().min(1).max(100)});f.object({analysis_version:f.string(),snapshot_schema_version:f.string(),total_score:f.number().min(0).max(100),severity_band:f.enum(["HEALTHY","STABLE","STRUCTURAL_CONCERN","HIGH_RISK"]),engines:f.array(f.object({engine_name:f.string(),score_impact:f.number(),risk_level:f.enum(["HEALTHY","STABLE","STRUCTURAL_CONCERN","HIGH_RISK"]),metrics:f.record(f.number()),findings:f.array(f.object({rule_id:f.string(),title:f.string(),message:f.string(),severity:f.enum(["CRITICAL","HIGH","MEDIUM","LOW"]),category:f.enum(["SECURITY","STRUCTURE","COMPLEXITY","DEPENDENCY","REPOSITORY_HYGIENE","DOCUMENTATION","QUALITY"]),evidence:f.array(f.string()).optional(),explanation:f.string().optional(),impact:f.string().optional(),effort:f.enum(["Low","Medium","High"]).optional(),recommendations:f.array(f.string()).optional()}))})),summary:f.object({total_findings:f.number().int().nonnegative(),critical_count:f.number().int().nonnegative(),high_count:f.number().int().nonnegative(),medium_count:f.number().int().nonnegative(),low_count:f.number().int().nonnegative(),categories:f.record(f.string(),f.number().int().nonnegative())}),generated_at:f.string()});var _o=f.object({NEXT_PUBLIC_SUPABASE_URL:f.string().url("Invalid SUPABASE_URL"),NEXT_PUBLIC_SUPABASE_ANON_KEY:f.string().min(1,"SUPABASE_ANON_KEY is required"),SUPABASE_SERVICE_ROLE_KEY:f.string().min(1,"SERVICE_ROLE_KEY is required"),NODE_ENV:f.enum(["development","production","test"],{errorMap:()=>({message:"NODE_ENV must be development, production, or test"})}),JWT_SECRET:f.string().min(32,"JWT_SECRET must be at least 32 characters").optional()});function wo(){try{return _o.parse(process.env)}catch(t){if(t instanceof f.ZodError){let e=t.errors.map(n=>n.path.join(".")).join(", ");throw new Error(`Environment validation failed:
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
`,"
|
|
29
|
-
`)
|
|
30
|
-
|
|
31
|
-
\u274C
|
|
32
|
-
Your
|
|
33
|
-
\u274C
|
|
34
|
-
Your
|
|
35
|
-
\
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
`)),console.log(
|
|
41
|
-
|
|
42
|
-
\u2728 New version available: ${v.bold(n)} (current: ${ee})`)),console.log(v.gray(` Run: ${v.cyan("veestack upgrade")} to update
|
|
43
|
-
`)));}}catch{}}async function Ho(){let t=process.cwd(),e=join(t,"package.json"),n=[{name:"Next.js",files:["next.config.js","next.config.ts","next.config.mjs"]},{name:"Nuxt.js",files:["nuxt.config.js","nuxt.config.ts"]},{name:"Vue CLI",files:["vue.config.js"]},{name:"Angular",files:["angular.json"]},{name:"SvelteKit",files:["svelte.config.js","svelte.config.ts"]},{name:"Vite",files:["vite.config.js","vite.config.ts"]},{name:"Remix",files:["remix.config.js"]},{name:"Gatsby",files:["gatsby-config.js","gatsby-config.ts"]},{name:"Astro",files:["astro.config.mjs","astro.config.js"]}];for(let r of n)for(let s of r.files)if(existsSync(join(t,s)))return {name:r.name,confidence:95};if(!existsSync(e)){if(existsSync(join(t,"requirements.txt"))){let r=readFileSync(join(t,"requirements.txt"),"utf-8").toLowerCase();if(r.includes("django"))return {name:"Django",confidence:85};if(r.includes("flask"))return {name:"Flask",confidence:85}}return existsSync(join(t,"Gemfile"))&&readFileSync(join(t,"Gemfile"),"utf-8").toLowerCase().includes("rails")?{name:"Ruby on Rails",confidence:85}:existsSync(join(t,"pom.xml"))&&readFileSync(join(t,"pom.xml"),"utf-8").toLowerCase().includes("spring-boot")?{name:"Spring Boot",confidence:85}:{name:"unknown",confidence:0}}try{let r=JSON.parse(readFileSync(e,"utf-8")),s={...r.dependencies,...r.devDependencies},o=[{name:"Next.js",primary:["next"],secondary:["next/core-web-vitals","@next/bundle-analyzer"],indicators:["app","pages"]},{name:"React",primary:["react","react-dom"],secondary:["@types/react","react-scripts","create-react-app"],indicators:["src/components","src/App.js","src/App.tsx"]},{name:"Vue",primary:["vue"],secondary:["vue-router","vuex","pinia","@vue/cli-service"],indicators:["src/views","src/components"]},{name:"Angular",primary:["@angular/core"],secondary:["@angular/cli","@angular/common","@angular/router"],indicators:["src/app"]},{name:"Svelte",primary:["svelte"],secondary:["svelte-check","@sveltejs/kit"],indicators:["src/routes"]},{name:"Express",primary:["express"],secondary:["cors","helmet","morgan","body-parser"],indicators:["routes","controllers"]},{name:"NestJS",primary:["@nestjs/core"],secondary:["@nestjs/common","@nestjs/platform-express"],indicators:["src/modules"]},{name:"Fastify",primary:["fastify"],secondary:["@fastify/cors","@fastify/helmet"],indicators:["routes"]}];for(let a of o){let i=0;for(let l of a.primary)if(s[l]){i+=70;break}let c=0;for(let l of a.secondary)s[l]&&c<2&&(i+=10,c++);for(let l of a.indicators)existsSync(join(t,l))&&(i+=10);if(i>=60)return a.name==="Next.js"&&s.next?{name:a.name,confidence:100}:{name:a.name,confidence:Math.min(i,95)}}return s.astro?{name:"Astro",confidence:80}:s.remix?{name:"Remix",confidence:80}:s.gatsby?{name:"Gatsby",confidence:80}:s.nuxt?{name:"Nuxt.js",confidence:80}:s["@sveltejs/kit"]?{name:"SvelteKit",confidence:85}:{name:"unknown",confidence:0}}catch{return {name:"unknown",confidence:0}}}async function Jo(t,e){try{let n=await fe(),r=await fetch(`${kr}/v1/projects`,{method:"POST",headers:n,body:JSON.stringify({name:t,framework:e,source:"cli-init"})});if(!r.ok){let s=await r.json().catch(()=>({error:"Unknown error"}));throw new Error(s.error||`HTTP ${r.status}`)}return await r.json()}catch(n){return ve.error("Failed to create project:",n instanceof Error?n.message:String(n)),null}}function vr(t){let e={"Next.js":["**/*.{js,jsx,ts,tsx,json,mjs,cjs}"],React:["**/*.{js,jsx,ts,tsx,json}"],Vue:["**/*.{js,jsx,ts,tsx,vue,json}"],Angular:["**/*.{ts,html,json}"],Svelte:["**/*.{js,ts,svelte,json}"],Express:["**/*.{js,ts,json}"],NestJS:["**/*.{ts,json}"],unknown:["**/*.{js,ts,jsx,tsx,json,py,go,rs,rb,php,cs,cpp,c,h}"]};return e[t]||e.unknown}function Go(){return ["node_modules/**/*",".git/**/*","dist/**/*","build/**/*",".next/**/*","coverage/**/*","*.test.ts","*.spec.ts","*.min.js"]}function Zo(t){let e=join(process.cwd(),"veestack.config.json");writeFileSync(e,JSON.stringify(t,null,2));}function Ko(){let t=join(process.cwd(),"veestack.config.json");if(existsSync(t))try{return JSON.parse(readFileSync(t,"utf-8"))}catch{return null}return null}function Wo(t){let e=process.cwd(),n=[],r=["src","app","lib","components","pages","routes","controllers","models","utils"];for(let s of r){let o=join(e,s);existsSync(o)&&n.push(`${s}/**/*`);}return n}function qo(){let t=process.cwd(),e=join(t,".git");return existsSync(e)}function Yo(){let t=process.cwd();return existsSync(join(t,"pnpm-lock.yaml"))?"pnpm":existsSync(join(t,"yarn.lock"))?"yarn":existsSync(join(t,"package-lock.json"))?"npm":existsSync(join(t,"bun.lockb"))?"bun":"npm"}function Xo(){return `Node ${process.version}`}async function ut(t){t?.skipAuthCheck||console.log(v.bold.cyan(`
|
|
16
|
+
Stack trace:`,o):console.error(`
|
|
17
|
+
Run with DEBUG=veestack for full stack trace (sanitized)`);}process.exit(1);}),process.on("unhandledRejection",e=>{let t=e instanceof Error?e:new Error(String(e));console.error(`
|
|
18
|
+
\u274C Unhandled Promise Rejection`);let o=t.message||"Unknown error";o=o.replace(ae,"[REDACTED]").replace(/Bearer\s+[a-zA-Z0-9_-]+/gi,"Bearer [REDACTED]"),console.error(`Error: ${o}`),process.exit(1);});}var ce=["veestack-tools","@vee_stack/cli"],po=["veestack","veestack-cli","veestacktool","veestack-tool","vee-stack","veestack-cli-tool","veestack-scanner","veestack-analyzer"],fo=[/veestak/i,/veestac/i,/veestackk/i,/veestackh/i,/vvestack/i,/veee/i,/veestack-cli-hack/i,/veestack-free/i,/veestack-pro-free/i];function yt(){try{let e=fileURLToPath(import.meta.url),o=ie.dirname(e);for(let n=0;n<5;n++){let r=ie.join(o,"package.json");if(U.existsSync(r))return JSON.parse(U.readFileSync(r,"utf-8")).name||"unknown";let s=ie.dirname(o);if(s===o)break;o=s;}}catch{}return "unknown"}function mo(){let e=yt(),t=[];if(ce.includes(e))return {isOfficial:true,warnings:[]};if(po.includes(e))return t.push(`\u26A0\uFE0F WARNING: You are using "${e}" which is NOT the official VeeStack CLI.`),t.push(`The official package is: ${g.cyan(ce[0])}`),t.push("Unofficial packages may contain malware or steal your data."),{isOfficial:false,warnings:t};for(let o of fo)if(o.test(e))return t.push(`\u26A0\uFE0F WARNING: Package name "${e}" looks suspicious.`),t.push("This might be a typosquatting attack."),t.push(`The official package is: ${g.cyan(ce[0])}`),{isOfficial:false,warnings:t};return t.push(`\u26A0\uFE0F WARNING: Unofficial package "${e}" detected.`),t.push(`The official package is: ${g.cyan(ce[0])}`),{isOfficial:false,warnings:t}}function kt(){let{isOfficial:e,warnings:t}=mo();if(!e){console.log(g.red(`
|
|
19
|
+
`+"\u2550".repeat(60))),console.log(g.red.bold(`\u{1F6A8} SECURITY WARNING
|
|
20
|
+
`));for(let o of t)console.log(g.yellow(o));console.log(g.gray(`
|
|
21
|
+
To install the official CLI:`)),console.log(g.cyan(" npm install -g veestack-tools")),console.log(g.red("\u2550".repeat(60)+`
|
|
22
|
+
`)),process.exit(1);}process.env.VEESTACK_DEBUG==="true"&&console.log(g.gray(`\u2713 Official package verified: ${ce.join(" or ")}`));}function je(){let e=yt(),t=ce.includes(e);return {packageName:e,isOfficial:t,homepage:"https://www.veestack.com",repository:"https://github.com/Mohmed-ElZehiry/VeeStack"}}var ho=[".env",".env.local",".env.development",".env.production",".env.test",".env.example",".envrc",".env.*","id_rsa","id_rsa.pub","id_dsa","id_dsa.pub","id_ecdsa","id_ecdsa.pub","id_ed25519","id_ed25519.pub","*.pem","*.key","*.p12","*.pfx","*.crt","*.cer","*.der","credentials",".aws/credentials",".aws/config",".docker/config.json","kubeconfig","*.kubeconfig",".npmrc",".yarnrc",".pnpmrc",".git-credentials","*.sqlite","*.sqlite3","*.db","secrets/","secret/",".secrets/","config.json","settings.json","local.settings.json"],yo=["veestack.config.json","package.json","tsconfig.json","jsconfig.json",".eslintrc.json",".prettierrc.json","README.md"],ko=[{name:"AWS Access Key ID",pattern:/AKIA[0-9A-Z]{16}/g,severity:"critical",description:"AWS Access Key ID detected"},{name:"AWS Secret Access Key",pattern:/['"\s][A-Za-z0-9/+=]{40}['"\s]/g,severity:"critical",description:"Potential AWS Secret Key detected"},{name:"Private Key",pattern:/-----BEGIN (RSA |DSA |EC |OPENSSH |PGP )?PRIVATE KEY-----/g,severity:"critical",description:"Private key detected"},{name:"JWT Token",pattern:/eyJ[a-zA-Z0-9_-]*\.eyJ[a-zA-Z0-9_-]*\.[a-zA-Z0-9_-]*/g,severity:"high",description:"JWT token detected"},{name:"Bearer Token",pattern:/Bearer\s+[a-zA-Z0-9_-]{20,}/gi,severity:"high",description:"Bearer token detected"},{name:"API Key",pattern:/(?:api[_-]?key|apikey|api_token|apiToken)['"\s]*[:=]\s*['"][a-zA-Z0-9_-]{16,}['"]/gi,severity:"high",description:"API key detected"},{name:"Password in URL",pattern:/[a-zA-Z]+:\/\/[^\s:@]+:[^\s:@]+@[^\s]+/g,severity:"high",description:"Password in URL detected"},{name:"Password Assignment",pattern:/(?:password|passwd|pwd)\s*[=:]\s*['"][^'"]{8,}['"]/gi,severity:"medium",description:"Password assignment detected"},{name:"GitHub Token",pattern:/gh[pousr]_[A-Za-z0-9_]{36,}/g,severity:"critical",description:"GitHub token detected"},{name:"Slack Token",pattern:/xox[baprs]-[0-9]{10,13}-[0-9]{10,13}(-[a-zA-Z0-9]{24})?/g,severity:"critical",description:"Slack token detected"},{name:"Generic Secret",pattern:/(?:secret|token|key)\s*[=:]\s*['"][a-zA-Z0-9_-]{20,}['"]/gi,severity:"medium",description:"Potential secret detected"},{name:"Connection String",pattern:/(?:mongodb|postgres|mysql|redis|amqp):\/\/[^\s]+/gi,severity:"high",description:"Database connection string detected"},{name:"VeeStack Token",pattern:/vs_[a-zA-Z0-9_-]{20,}/g,severity:"critical",description:"VeeStack token detected"}];function wt(e){let t=e.replace(/\\/g,"/").toLowerCase(),o=ie.basename(t);for(let n of yo)if(o===n.toLowerCase())return false;for(let n of ho){if(o===n.toLowerCase())return true;if(n.includes("*")){let r=n.toLowerCase().replace(/\./g,"\\.").replace(/\*/g,".*"),s=new RegExp(r);if(s.test(o)||s.test(t))return true}if(t.includes(n.toLowerCase().replace("*","")))return true}return false}function wo(e,t){let o=[],n=t.split(`
|
|
23
|
+
`);for(let r of ko){r.pattern.lastIndex=0;for(let s=0;s<n.length;s++){let a=n[s],i;for(;(i=r.pattern.exec(a))!==null;)o.push({filePath:e,type:"secret_content",secretName:r.name,severity:r.severity,description:r.description,lineNumber:s+1,match:i[0].substring(0,20)+"..."});r.pattern.lastIndex=0;}}return o}async function So(e){let t=[];if(wt(e))return t.push({filePath:e,type:"sensitive_file",secretName:"Sensitive File",severity:"critical",description:`Sensitive file type detected: ${ie.basename(e)}`}),t;try{if(U.statSync(e).size>1024*1024)return t;let n=U.readFileSync(e,"utf-8"),r=wo(e,n);t.push(...r);}catch{}return t}async function St(e,t){let o=[];for(let i of t){let c=ie.join(e,i),l=await So(c);for(let u of l)u.filePath=i,o.push(u);}let n=o.filter(i=>i.severity==="critical").length,r=o.filter(i=>i.severity==="high").length,s=o.filter(i=>i.severity==="medium").length,a=o.filter(i=>i.severity==="low").length;return {totalFiles:t.length,secretsFound:o.length,criticalCount:n,highCount:r,mediumCount:s,lowCount:a,results:o}}function vt(e){let t=[],o=[];for(let n of e)wt(n)?o.push(n):t.push(n);return {safe:t,blocked:o}}var Ao={TOKEN_BINDING_SALT:TOKEN_SALT};function Tt(e,t){let o=`${e}:${t}:${Ao.TOKEN_BINDING_SALT}`;return z.createHash("sha256").update(o).digest("hex")}function bt(e,t,o,n,r="cli"){let s=new Date().toISOString(),a=Io(),i=Eo(e,t,o,s,a),c=Co(s,r,i),l=xo(n,s,r,c);return {signature:l,timestamp:s,nonce:a,headers:{"X-Signature":l,"X-Timestamp":s,"X-Nonce":a,"X-Signed-Headers":"host;x-timestamp;x-nonce"}}}function Eo(e,t,o,n,r){let s=z.createHash("sha256").update(o).digest("hex");return [e.toUpperCase(),t,"",`host:www.veestack.com
|
|
24
|
+
`,`x-timestamp:${n}
|
|
25
|
+
`,`x-nonce:${r}
|
|
26
|
+
`,"host;x-timestamp;x-nonce",s].join(`
|
|
27
|
+
`)}function Co(e,t,o){let n=e.substring(0,10).replace(/-/g,""),r=z.createHash("sha256").update(o).digest("hex");return ["VEESTACK-HMAC-SHA256",e,`${n}/veestack/${t}/veestack_request`,r].join(`
|
|
28
|
+
`)}function xo(e,t,o,n){let r=t.substring(0,10).replace(/-/g,""),s=Te("VEESTACK"+e,r),a=Te(s,"veestack"),i=Te(a,o),c=Te(i,"veestack_request");return Te(c,n,"hex")}function Te(e,t,o){return z.createHmac("sha256",e).update(t).digest(o||"hex")}function Io(){return z.randomBytes(16).toString("hex")}var $e=null;async function Le(){if($e)return $e;try{return $e=await import('keytar'),$e}catch{return null}}var Ee=ie.join(le.homedir(),".veestack"),H=ie.join(Ee,"tokens.enc"),At=ie.join(Ee,"salt"),Et=ie.join(Ee,".key"),Ve="VeeStack CLI",Fe="auth_tokens",_o=1e5,Po=32,Ro=16;function Oe(){return process.env.DEBUG?.includes("veestack")||process.env.DEBUG?.includes("*")||process.env.NODE_ENV==="development"||process.env.VEESTACK_DEBUG==="true"}async function Do(){try{let t=await b.readFile(At).catch(()=>null);if(t)return t}catch{}let e=z.randomBytes(32);return await b.mkdir(Ee,{recursive:true,mode:448}),await b.writeFile(At,e,{mode:384}),e}async function Ct(){try{let n=await b.readFile(Et,"utf-8").catch(()=>null);if(n){let r=Buffer.from(n,"hex");return await b.unlink(Et).catch(()=>{}),r}}catch{}let e=`${le.userInfo().username}@${le.hostname()}`,t=await Do();return z.pbkdf2Sync(e,t,_o,Po,"sha256")}function be(e){Buffer.isBuffer(e)&&e.fill(0);}async function Ce(e){let t=await Le();if(t)try{let l=JSON.stringify(e);await t.setPassword(Ve,Fe,l),Oe()&&console.log(" Tokens saved to OS Keychain");return}catch(l){Oe()&&console.log(" Keychain failed, falling back to encrypted file:",l);}let o=await Ct(),n=z.randomBytes(Ro),r=z.createCipheriv("aes-256-gcm",o,n),s=JSON.stringify(e),a=Buffer.concat([r.update(s,"utf8"),r.final()]),i=r.getAuthTag(),c={iv:n.toString("hex"),data:a.toString("hex"),authTag:i.toString("hex"),timestamp:Date.now(),version:2};await b.mkdir(Ee,{recursive:true,mode:448}),await b.writeFile(H,JSON.stringify(c),{mode:384}),be(o),Oe()&&console.log(" Tokens saved to encrypted file (AES-256-GCM)");}async function xt(){let e=await Le();if(e)try{let t=await e.getPassword(Ve,Fe);if(t)return JSON.parse(t)}catch(t){Oe()&&console.log("\u26A0\uFE0F Keychain read failed, trying encrypted file:",t);}try{let t=await b.readFile(H,"utf-8"),o=JSON.parse(t);if(o.version===1)return await jo(o);let n=await Ct(),r=null;try{let s=Buffer.from(o.iv,"hex"),a=Buffer.from(o.data,"hex"),i=Buffer.from(o.authTag,"hex"),c=z.createDecipheriv("aes-256-gcm",n,s);c.setAuthTag(i),r=Buffer.concat([c.update(a),c.final()]);let l=JSON.parse(r.toString("utf8"));return be(r),be(n),l}catch(s){throw r&&be(r),be(n),s}}catch{return null}}async function jo(e){try{return console.log("\u{1F510} Migrating from legacy encryption format..."),await b.unlink(H).catch(()=>{}),null}catch{return null}}async function ue(){try{return await b.access(H),!0}catch{return false}}async function ee(){try{let e=await b.stat(H).catch(()=>null);if(!e)return;let t=e.size,o=3;for(let r=0;r<o;r++){let s=z.randomBytes(t);await b.writeFile(H,s);}await b.unlink(H);let n=await Le();n&&await n.deletePassword(Ve,Fe).catch(()=>{});}catch{}}async function Ue(){let e=await Le(),t=!!e,o=false;if(e)try{o=!!await e.getPassword(Ve,Fe);}catch{}let n=false,r,s,a=0;try{let i=await b.stat(H);n=!0,r=i.mode.toString(8),s=i.size;let c=await b.readFile(H,"utf-8");a=JSON.parse(c).version||1;}catch{}return {keychainAvailable:t,keychainHasTokens:o,fileExists:n,filePermissions:r,fileSize:s,encryptionVersion:a}}var No=[{name:"bearer_token",regex:/Bearer\s+[a-zA-Z0-9_-]{20,}/gi,replacement:"Bearer [REDACTED]"},{name:"api_key",regex:/api[_-]?key['"\s]*[:=]\s*['"]?([a-zA-Z0-9_-]{16,})/gi,replacement:"api_key: [REDACTED]"},{name:"access_token",regex:/access[_-]?token['"\s]*[:=]\s*['"]?([a-zA-Z0-9_-]{16,})/gi,replacement:"access_token: [REDACTED]"},{name:"refresh_token",regex:/refresh[_-]?token['"\s]*[:=]\s*['"]?([a-zA-Z0-9_-]{16,})/gi,replacement:"refresh_token: [REDACTED]"},{name:"auth_token",regex:/auth[_-]?token['"\s]*[:=]\s*['"]?([a-zA-Z0-9_-]{16,})/gi,replacement:"auth_token: [REDACTED]"},{name:"password",regex:/password['"\s]*[:=]\s*['"]?([^'"\s]{8,})/gi,replacement:"password: [REDACTED]"},{name:"secret",regex:/secret['"\s]*[:=]\s*['"]?([a-zA-Z0-9_-]{16,})/gi,replacement:"secret: [REDACTED]"},{name:"private_key",regex:/private[_-]?key['"\s]*[:=]\s*['"]?([a-zA-Z0-9_-]{16,})/gi,replacement:"private_key: [REDACTED]"},{name:"jwt_token",regex:/eyJ[a-zA-Z0-9_-]*\.eyJ[a-zA-Z0-9_-]*\.[a-zA-Z0-9_-]*/g,replacement:"[REDACTED_JWT]"},{name:"supabase_key",regex:/eyJ[a-zA-Z0-9_-]{20,}\.[a-zA-Z0-9_-]{20,}\.[a-zA-Z0-9_-]{20,}/g,replacement:"[REDACTED_SUPABASE_KEY]"}];function te(e){if(!e||typeof e!="string")return e;let t=e;for(let o of No)t=t.replace(o.regex,o.replacement);return t}function Ye(e){return e instanceof Error?te(e.message).slice(0,500):typeof e=="string"?te(e).slice(0,500):te(String(e)).slice(0,500)}function Be(e){if(!e||typeof e!="object")return e;let t=["token","accessToken","refreshToken","apiKey","api_key","secret","password","privateKey","private_key","authToken","auth_token","jwt","credential","credentials"];if(Array.isArray(e))return e.map(n=>Be(n));let o={};for(let[n,r]of Object.entries(e)){let s=n.toLowerCase();t.some(a=>s.includes(a))?o[n]="[REDACTED]":typeof r=="object"&&r!==null?o[n]=Be(r):typeof r=="string"?o[n]=te(r):o[n]=r;}return o}function xe(e,t,...o){let n=te(t),r=o.map(s=>typeof s=="string"?te(s):typeof s=="object"&&s!==null?Be(s):s);console[e](n,...r);}var q={log:(e,...t)=>xe("log",e,...t),error:(e,...t)=>xe("error",e,...t),warn:(e,...t)=>xe("warn",e,...t),info:(e,...t)=>xe("info",e,...t),debug:(e,...t)=>xe("debug",e,...t)};configEnv.NODE_ENV==="development";var j=configEnv.VEESTACK_API_URL,ge=configEnv.VEESTACK_WEB_URL,K=`${j}/api/cli`,W={device:`${K}/device`,authorize:`${K}/authorize`,token:`${K}/token`,refresh:`${K}/refresh`,logout:`${K}/logout`,whoami:`${K}/whoami`,status:`${K}/status`,createAuth:`${K}/device`,verifyCode:`${K}/token`,projects:`${j}/api/projects`,upload:`${j}/api/upload`};function _t(){let e=validateEnvironment(configEnv);return {environment:configEnv.NODE_ENV,apiVersion:"unversioned",apiBaseUrl:j,webBaseUrl:ge,cliApiBase:K,endpoints:W,validated:e.ok,warnings:e.warnings}}function Pt(){let e=validateEnvironment(configEnv);return {valid:e.ok,errors:e.errors}}var $o=globalThis,Rt=$o.CLI_VERSION,Nt=ie.join(le.homedir(),".veestack"),Me=ie.join(Nt,"config.json");async function Lo(){try{if(!U.existsSync(Me))return;let e=U.readFileSync(Me,"utf-8"),t=JSON.parse(e);if(await ue()){try{U.unlinkSync(Me);}catch{}return}let o={token:t.token,refreshToken:t.refreshToken,tokenType:t.tokenType,tokenExpiresAt:t.tokenExpiresAt,device:t.device,user:t.user,subscription:t.subscription,lastLoginAt:t.lastLoginAt,apiKey:t.apiKey};await Ce(o);try{U.unlinkSync(Me);}catch{}q.info("\u{1F510} Authentication migrated to encrypted storage");}catch{}}async function N(){await Lo();let e=await xt();return e?{token:e.token,tokenType:e.tokenType,refreshToken:e.refreshToken,tokenExpiresAt:e.tokenExpiresAt,device:e.device,user:e.user,subscription:e.subscription,lastLoginAt:e.lastLoginAt,apiKey:e.apiKey}:null}async function Y(){let e=await N();if(!e)return false;let t=e.token!==void 0&&e.token.length>0,o=e.apiKey!==void 0&&e.apiKey.length>0;return t||o}async function Vo(){let e=await N();return e&&(e.token||e.apiKey)||null}async function Fo(){let e=await N();return {id:e?.device?.id,fingerprint:e?.device?.fingerprint}}async function G(e="GET",t="",o="",n=["project:read"]){let r=await Vo();if(!r)return {};let s=await N(),a=await Fo();if(!a.id||!a.fingerprint||!s?.refreshToken)return {};let i=Tt(s.refreshToken,a.fingerprint),c=bt(e,t,o,s.refreshToken,"cli");return {Authorization:`Bearer ${r}`,"Content-Type":"application/json","X-Device-ID":a.id,"X-CLI-Version":Rt||"unknown","X-Device-Fingerprint":a.fingerprint,"X-Token-Binding":i,"X-Signature":c.signature,"X-Timestamp":c.timestamp,"X-Nonce":c.nonce,"X-Scope":n.join(","),"X-Security-Version":Rt||"unknown"}}function Xe(e){if(!e.tokenExpiresAt)return true;let t=new Date(e.tokenExpiresAt),o=300*1e3;return Date.now()>=t.getTime()-o}async function Uo(e){if(!e.refreshToken)return null;try{let t={"Content-Type":"application/json"},o=W.refresh,n=JSON.stringify({refresh_token:e.refreshToken,device_id:e.device?.id,device_fingerprint:e.device?.fingerprint}),r=await fetch(o,{method:"POST",headers:t,body:n});if(r.status===401){let i=await r.json().catch(()=>({}));throw i.code==="device_mismatch"&&(await ee(),console.log(g.red(`
|
|
29
|
+
\u274C Security Alert: Device mismatch`)),console.log(g.yellow(`
|
|
30
|
+
Your token was used from a different device.`)),console.log(g.gray("This could indicate a token theft attempt.")),console.log(g.gray("Please login again:")),console.log(g.cyan(" veestack login")),process.exit(1)),i.code==="device_revoked"&&(await ee(),console.log(g.red(`
|
|
31
|
+
\u274C Device authorization revoked`)),console.log(g.yellow(`
|
|
32
|
+
Your device was removed from authorized devices.`)),console.log(g.gray("Please login again:")),console.log(g.cyan(" veestack login")),process.exit(1)),(i.code==="token_invalid"||i.code==="session_expired")&&(await ee(),console.log(g.red(`
|
|
33
|
+
\u274C Session expired`)),console.log(g.yellow(`
|
|
34
|
+
Your session has expired or your password was changed.`)),console.log(g.gray("Please login again:")),console.log(g.cyan(" veestack login")),process.exit(1)),new Error("Token refresh failed: Unauthorized")}if(!r.ok)throw new Error("Token refresh failed");let s=await r.json(),a={...e,token:s.access_token,tokenExpiresAt:new Date(Date.now()+s.expires_in*1e3).toISOString()};return s.refresh_token&&(a.refreshToken=s.refresh_token),await Ce({token:a.token,refreshToken:a.refreshToken,tokenType:a.tokenType,tokenExpiresAt:a.tokenExpiresAt,device:a.device,user:a.user,subscription:a.subscription,lastLoginAt:a.lastLoginAt,apiKey:a.apiKey}),a}catch(t){return t instanceof Error&&t.message.includes("fetch")&&(q.warn(`
|
|
35
|
+
\u26A0\uFE0F Network error`),q.info("Could not connect to authentication server."),q.info("Please check your connection and try again.")),null}}async function Q(){let e=await N();if(!e)return console.log(g.yellow(`
|
|
36
|
+
\u26A0\uFE0F You are not logged in`)),console.log(g.gray(`
|
|
37
|
+
Login to enable:`)),console.log(g.gray(" \u2022 Cloud reports")),console.log(g.gray(" \u2022 Team dashboard")),console.log(g.gray(` \u2022 Historical scans
|
|
38
|
+
`)),console.log(g.gray("Run:")),console.log(g.cyan(" veestack login")),null;if(e.refreshToken&&Xe(e)){console.log(g.yellow("Token expired, refreshing..."));let t=await Uo(e);return t?(console.log(g.green("\u2713 Token refreshed")),t):(await ee(),console.log(g.red(`
|
|
39
|
+
\u274C Session expired`)),console.log(g.yellow("Your refresh token has expired.")),console.log(g.gray("Run: veestack login")),null)}return e}async function ze(){let e=await N();return !e||!e.subscription?"free":e.subscription.tier||"free"}async function $t(){let e=await N();return !e||!e.subscription||e.subscription.tier==="free"?true:e.subscription.expiresAt?new Date(e.subscription.expiresAt)>new Date&&e.subscription.isActive:e.subscription.isActive}function Ot(e){if(e.user)try{let t=join(Nt,"accounts"),o=lo("fs");o.mkdirSync(t,{recursive:!0});let n=join(t,`${e.user.id}.json`);o.writeFileSync(n,JSON.stringify(e,null,2),{mode:384});}catch{}}async function Ut(){try{let e=await fetch(`${j}/v1/cli/version`,{method:"GET",headers:{Accept:"application/json"}});if(e.ok){let o=(await e.json()).version;o&&o!==VERSION&&(console.log(g.yellow(`
|
|
40
|
+
\u2728 New version available: ${g.bold(o)} (current: ${VERSION})`)),console.log(g.gray(` Run: ${g.cyan("veestack upgrade")} to update
|
|
41
|
+
`)));}}catch{}}async function Mo(){let e=process.cwd(),t=join(e,"package.json"),o=[{name:"Next.js",files:["next.config.js","next.config.ts","next.config.mjs"]},{name:"Nuxt.js",files:["nuxt.config.js","nuxt.config.ts"]},{name:"Vue CLI",files:["vue.config.js"]},{name:"Angular",files:["angular.json"]},{name:"SvelteKit",files:["svelte.config.js","svelte.config.ts"]},{name:"Vite",files:["vite.config.js","vite.config.ts"]},{name:"Remix",files:["remix.config.js"]},{name:"Gatsby",files:["gatsby-config.js","gatsby-config.ts"]},{name:"Astro",files:["astro.config.mjs","astro.config.js"]}];for(let n of o)for(let r of n.files)if(existsSync(join(e,r)))return {name:n.name,confidence:95};if(!existsSync(t)){if(existsSync(join(e,"requirements.txt"))){let n=readFileSync(join(e,"requirements.txt"),"utf-8").toLowerCase();if(n.includes("django"))return {name:"Django",confidence:85};if(n.includes("flask"))return {name:"Flask",confidence:85}}return existsSync(join(e,"Gemfile"))&&readFileSync(join(e,"Gemfile"),"utf-8").toLowerCase().includes("rails")?{name:"Ruby on Rails",confidence:85}:existsSync(join(e,"pom.xml"))&&readFileSync(join(e,"pom.xml"),"utf-8").toLowerCase().includes("spring-boot")?{name:"Spring Boot",confidence:85}:{name:"unknown",confidence:0}}try{let n=JSON.parse(readFileSync(t,"utf-8")),r={...n.dependencies,...n.devDependencies},s=[{name:"Next.js",primary:["next"],secondary:["next/core-web-vitals","@next/bundle-analyzer"],indicators:["app","pages"]},{name:"React",primary:["react","react-dom"],secondary:["@types/react","react-scripts","create-react-app"],indicators:["src/components","src/App.js","src/App.tsx"]},{name:"Vue",primary:["vue"],secondary:["vue-router","vuex","pinia","@vue/cli-service"],indicators:["src/views","src/components"]},{name:"Angular",primary:["@angular/core"],secondary:["@angular/cli","@angular/common","@angular/router"],indicators:["src/app"]},{name:"Svelte",primary:["svelte"],secondary:["svelte-check","@sveltejs/kit"],indicators:["src/routes"]},{name:"Express",primary:["express"],secondary:["cors","helmet","morgan","body-parser"],indicators:["routes","controllers"]},{name:"NestJS",primary:["@nestjs/core"],secondary:["@nestjs/common","@nestjs/platform-express"],indicators:["src/modules"]},{name:"Fastify",primary:["fastify"],secondary:["@fastify/cors","@fastify/helmet"],indicators:["routes"]}];for(let a of s){let i=0;for(let l of a.primary)if(r[l]){i+=70;break}let c=0;for(let l of a.secondary)r[l]&&c<2&&(i+=10,c++);for(let l of a.indicators)existsSync(join(e,l))&&(i+=10);if(i>=60)return a.name==="Next.js"&&r.next?{name:a.name,confidence:100}:{name:a.name,confidence:Math.min(i,95)}}return r.astro?{name:"Astro",confidence:80}:r.remix?{name:"Remix",confidence:80}:r.gatsby?{name:"Gatsby",confidence:80}:r.nuxt?{name:"Nuxt.js",confidence:80}:r["@sveltejs/kit"]?{name:"SvelteKit",confidence:85}:{name:"unknown",confidence:0}}catch{return {name:"unknown",confidence:0}}}async function zo(e,t){try{let o=await G(),n=await fetch(`${j}/v1/projects`,{method:"POST",headers:o,body:JSON.stringify({name:e,framework:t,source:"cli-init"})});if(!n.ok){let r=await n.json().catch(()=>({error:"Unknown error"}));throw new Error(r.error||`HTTP ${n.status}`)}return await n.json()}catch(o){return q.error("Failed to create project:",o instanceof Error?o.message:String(o)),null}}function Ft(e){let t={"Next.js":["**/*.{js,jsx,ts,tsx,json,mjs,cjs}"],React:["**/*.{js,jsx,ts,tsx,json}"],Vue:["**/*.{js,jsx,ts,tsx,vue,json}"],Angular:["**/*.{ts,html,json}"],Svelte:["**/*.{js,ts,svelte,json}"],Express:["**/*.{js,ts,json}"],NestJS:["**/*.{ts,json}"],unknown:["**/*.{js,ts,jsx,tsx,json,py,go,rs,rb,php,cs,cpp,c,h}"]};return t[e]||t.unknown}function Ko(){return ["node_modules/**/*",".git/**/*","dist/**/*","build/**/*",".next/**/*","coverage/**/*","*.test.ts","*.spec.ts","*.min.js"]}function Jo(e){let t=join(process.cwd(),"veestack.config.json");writeFileSync(t,JSON.stringify(e,null,2));}function Go(){let e=join(process.cwd(),"veestack.config.json");if(existsSync(e))try{return JSON.parse(readFileSync(e,"utf-8"))}catch{return null}return null}function Ho(e){let t=process.cwd(),o=[],n=["src","app","lib","components","pages","routes","controllers","models","utils"];for(let r of n){let s=join(t,r);existsSync(s)&&o.push(`${r}/**/*`);}return o}function qo(){let e=process.cwd(),t=join(e,".git");return existsSync(t)}function Wo(){let e=process.cwd();return existsSync(join(e,"pnpm-lock.yaml"))?"pnpm":existsSync(join(e,"yarn.lock"))?"yarn":existsSync(join(e,"package-lock.json"))?"npm":existsSync(join(e,"bun.lockb"))?"bun":"npm"}function Yo(){return `Node ${process.version}`}async function pe(e){e?.skipAuthCheck||console.log(g.bold.cyan(`
|
|
44
42
|
\u{1F680} Initializing VeeStack...
|
|
45
|
-
`));let
|
|
43
|
+
`));let t=false;e?.skipAuthCheck||(t=await Q()!==null,!t&&e?.ci&&console.log(g.yellow("\u26A0 Not logged in. Cloud reports and team dashboard are disabled in CI mode.")));let o=Go();if(o?.projectId&&!e?.ci&&e?.interactive){let{overwrite:A}=await Lt({type:"confirm",name:"overwrite",message:`Project already linked to ${o.name||o.projectId}. Re-initialize?`,initial:false});if(!A){console.log(g.gray(`
|
|
46
44
|
Cancelled. Existing configuration preserved.
|
|
47
|
-
`));return}}let
|
|
48
|
-
Project name: ${c}`)),console.log(
|
|
45
|
+
`));return}}let n=await Mo(),r=n.name!=="unknown"?n.name:"Unknown";n.confidence>70?console.log(g.green(`\u2714 Framework detected: ${n.name}`)):n.confidence>0?console.log(g.yellow(`\u26A0 Framework detected: ${n.name} (low confidence)`)):(console.log(g.yellow('\u26A0 Framework detection failed. Using "Unknown".')),console.log(g.gray(" Some analysis rules may not apply correctly.")),console.log(g.gray(` \u2139 You can manually edit ${g.cyan("veestack.config.json")} later for better analysis.`)));let s=Ho(n.name);s.length>0&&console.log(g.green(`\u2714 Structure detected: ${s.length} source directories`));let a=Wo(),i=Yo();console.log(g.green(`\u2714 Package manager: ${a}`)),console.log(g.green(`\u2714 Runtime: ${i}`)),qo()&&console.log(g.green("\u2714 Git repository detected"));let c="",l=join(process.cwd(),"package.json");if(existsSync(l))try{c=JSON.parse(readFileSync(l,"utf-8")).name||"";}catch{}c||(c=process.cwd().split(/[\\/]/).pop()||"my-project");let u;if(!(!e?.ci&&(e?.interactive||n.confidence<30)))u={projectName:c,framework:r,scanPatterns:s.length>0?s:Ft(n.name),createProject:false},console.log(g.gray(`
|
|
46
|
+
Project name: ${c}`)),console.log(g.gray(`Framework: ${u.framework}`)),console.log(g.gray(`Scan directories: ${u.scanPatterns.join(", ")}`));else if(console.log(g.gray(`
|
|
49
47
|
Configure your project:
|
|
50
|
-
`)),
|
|
48
|
+
`)),u=await Lt([{type:"text",name:"projectName",message:"Project name:",initial:c||"my-project",validate:A=>A.length>0||"Project name is required"},{type:"text",name:"framework",message:"Framework:",initial:n.name!=="unknown"?n.name:"Unknown"},{type:"multiselect",name:"scanPatterns",message:"Select directories to scan:",choices:Ft(n.name).map(A=>({title:A,value:A,selected:true})),hint:"Space to toggle, Enter to confirm"},{type:t?"confirm":null,name:"createProject",message:"Create project on VeeStack dashboard?",initial:true}],{onCancel:()=>{console.log(g.gray(`
|
|
51
49
|
Cancelled.
|
|
52
|
-
`)),process.exit(0);}}),!
|
|
50
|
+
`)),process.exit(0);}}),!u.projectName){console.log(g.gray(`
|
|
53
51
|
Cancelled.
|
|
54
|
-
`));return}let
|
|
55
|
-
Creating project on VeeStack...`));let
|
|
56
|
-
\u2714 Configuration saved to veestack.config.json`)),
|
|
57
|
-
\u2714 Configuration saved to veestack.config.json`)),
|
|
58
|
-
Next steps:`)),console.log(
|
|
59
|
-
`));}var
|
|
60
|
-
`).filter(Boolean)}catch{return []}}async function
|
|
61
|
-
VeeStack Security Scan`)),console.log(
|
|
62
|
-
\u26A1 CI mode detected: Using default project name and scan directories`)),await
|
|
63
|
-
\u2728 Welcome to VeeStack!`)),console.log(
|
|
64
|
-
`));let{runInit:
|
|
65
|
-
Using smart defaults for this scan...`));}}let l=
|
|
66
|
-
`+
|
|
67
|
-
`)),l.start());try{let
|
|
68
|
-
\u26A0 No source files found to scan.`));return}let
|
|
69
|
-
\u274C ${
|
|
70
|
-
Issues detail:`)),
|
|
71
|
-
\u{1F4C4} Detailed report saved to: ${
|
|
72
|
-
For your protection, local snapshot generation is blocked.`)),console.log(
|
|
73
|
-
\u2139 Recommended actions:`)),console.log(
|
|
74
|
-
\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500`)),console.log(
|
|
75
|
-
Next steps:`)),console.log(
|
|
76
|
-
2. View detailed report:`)),console.log(
|
|
52
|
+
`));return}let x;if(u.createProject){console.log(g.gray(`
|
|
53
|
+
Creating project on VeeStack...`));let A=await zo(u.projectName,u.framework);A?(x=A.id,console.log(g.green("\u2714 Project created"))):console.log(g.yellow("\u26A0\uFE0F Could not create project on server (offline mode)"));}let E={projectId:x,name:u.projectName,framework:u.framework,scanPatterns:u.scanPatterns,excludePatterns:Ko()};Jo(E);let v=n.confidence===0;if(e?.skipNextSteps){console.log(g.green(`
|
|
54
|
+
\u2714 Configuration saved to veestack.config.json`)),v&&console.log(g.yellow("\u26A0 Framework detection failed. Some settings may need manual adjustment."));return}console.log(g.green(`
|
|
55
|
+
\u2714 Configuration saved to veestack.config.json`)),v&&console.log(g.yellow("\u26A0 Framework detection failed. Some settings may need manual adjustment.")),console.log(g.bold(`
|
|
56
|
+
Next steps:`)),console.log(g.gray(" 1. Run analysis:")),console.log(g.cyan(" veestack scan")),console.log(g.gray(" 2. Upload results:")),console.log(g.cyan(" veestack upload")),console.log(g.gray(" 3. View in dashboard:")),console.log(g.cyan(` https://www.veestack.com/dashboard${x?`/projects/${x}`:""}
|
|
57
|
+
`));}var Qe=globalThis,rn=Qe.CLI_VERSION||"unknown",sn=Qe.SNAPSHOT_VERSION||"unknown",an=Qe.ENGINE_TARGET||"unknown";function cn(e){let t={},o=e.split(/\r?\n/),n=false,r=null;for(let s of o){let a=s.replace(/\t/g," "),i=a.trim();if(!n){/^packages\s*:\s*$/.test(i)&&(n=true,r=a.match(/^\s*/)?.[0].length??0);continue}if(i!==""&&!i.startsWith("#")){let E=a.match(/^\s*/)?.[0].length??0;if(r!==null&&E<=r)break}let c=i.match(/^\/?([^\s]+)\s*:\s*$/);if(!c)continue;let l=c[1].replace(/^\/+/,""),u=l.lastIndexOf("@");if(u<=0)continue;let O=l.slice(0,u),x=l.slice(u+1);!O||!x||!/^\d+\./.test(x)||(t[O]=x);}return t}function ln(){if(process.env.GITHUB_ACTIONS){let[e,t]=(process.env.GITHUB_REPOSITORY||"").split("/");return {provider:"github_actions",repo_owner:e,repo_name:t,commit_sha:process.env.GITHUB_SHA,run_id:process.env.GITHUB_RUN_ID,event_name:process.env.GITHUB_EVENT_NAME,pr_number:process.env.GITHUB_REF?.includes("refs/pull/")?parseInt(process.env.GITHUB_REF.split("/")[2]):void 0}}}function et(e){return z__default.createHash("sha256").update(e).digest("hex")}function un(e){let t=[".exe",".dll",".so",".dylib",".bin",".png",".jpg",".jpeg",".gif",".pdf",".zip",".tar",".gz",".7z",".woff",".woff2",".ttf",".eot"],o=e.split(".").pop()?.toLowerCase();return o?t.includes("."+o):false}function gn(e){return {ts:"TypeScript",js:"JavaScript",tsx:"TypeScript",jsx:"JavaScript",py:"Python",go:"Go",rs:"Rust",java:"Java",kt:"Kotlin",rb:"Ruby",php:"PHP",cs:"C#",cpp:"C++",c:"C",h:"C",json:"JSON",yaml:"YAML",yml:"YAML",md:"Markdown",html:"HTML",css:"CSS",scss:"SCSS",sql:"SQL",sh:"Shell",mjs:"JavaScript",cjs:"JavaScript",svelte:"Svelte",vue:"Vue"}[e]||"Other"}function dn(e){let t={};for(let o of e){let n=gn(o.extension.toLowerCase());t[n]=(t[n]||0)+1;}return t}function pn(e,t){let a=0,i={critical:0,high:0,medium:0,low:0};t&&(i={critical:t.criticalCount||0,high:t.highCount||0,medium:t.mediumCount||0,low:t.lowCount||0},a=i.critical*25+i.high*15+i.medium*5+i.low*2);let c=Math.max(0,100-a),l="F";return c===100?l="A+":c>=90?l="A":c>=80?l="B":c>=70?l="C":c>=60&&(l="D"),{score:c,grade:l,breakdown:i}}async function fn(e){try{return execSync("git diff --name-only HEAD",{cwd:e,encoding:"utf-8"}).split(`
|
|
58
|
+
`).filter(Boolean)}catch{return []}}async function mn(e,t,o,n=false){let r=[],s=await glob(t,{cwd:e,ignore:o,nodir:true,dot:true,absolute:false});if(n){let i=await fn(e);i.length>0&&(s=s.filter(c=>i.includes(c)));}let a=s.filter(i=>!i.replace(/\\/g,"/").match(/(node_modules|\.next|dist|build|\.git)\//));for(let i of a){let c=statSync(join(e,i));c.isFile()&&r.push({id:z__default.randomUUID(),path:i,path_hash:et(i),depth:i.split(/[\\/]/).length,size_bytes:c.size,estimated_lines:Math.floor(c.size/50),extension:i.split(".").pop()||"",is_binary:un(i)});}return r.sort((i,c)=>i.path_hash.localeCompare(c.path_hash))}async function hn(e){let t=[];try{let o=join(e,"package.json");if(!existsSync(o))return [];let n=JSON.parse(readFileSync(o,"utf-8")),r={},s=join(e,"pnpm-lock.yaml"),a=join(e,"package-lock.json");if(existsSync(s))r=cn(readFileSync(s,"utf8"));else if(existsSync(a)){let c=JSON.parse(readFileSync(a,"utf8"));for(let[l,u]of Object.entries(c.packages||{}))l&&u.version&&(r[l.replace("node_modules/","")]=u.version);}let i=(c,l)=>{for(let[u,O]of Object.entries(c)){let x=r[u]||O.replace(/[\^~]/,""),E=x.match(/^(\d+)\.(\d+)/);t.push({id:z__default.randomUUID(),name_hash:et(u),name:u,version:x,major_version:E?parseInt(E[1]):0,minor_version:E?parseInt(E[2]):0,category:l});}};n.dependencies&&i(n.dependencies,"prod"),n.devDependencies&&i(n.devDependencies,"dev"),n.peerDependencies&&i(n.peerDependencies,"peer");}catch{}return t.sort((o,n)=>o.name_hash.localeCompare(n.name_hash))}async function yn(e,t){let o=await hn(e);return {snapshot_version:sn,engine_target_version:an,project_id:z__default.randomUUID(),generated_at:new Date().toISOString(),root_path_hash:et(e),project_root:resolve(e),metadata:{total_files:t.length,total_dependencies:o.length,total_size_bytes:t.reduce((n,r)=>n+r.size_bytes,0),total_lines:t.reduce((n,r)=>n+(r.estimated_lines||0),0),max_directory_depth:Math.max(...t.map(n=>n.depth),0),language_breakdown:dn(t)},files:t,dependencies:o,ci_metadata:ln()}}async function tt(e){let t=e.quiet||e.json,o=e.ci||process.env.CI==="true",n=resolve(e.path),r=basename(n),s=r,a=join(n,"package.json"),i=join(n,"veestack.config.json");if(existsSync(a))try{let u=JSON.parse(readFileSync(a,"utf-8"));u.name&&(s=u.name);}catch{}if(existsSync(i))try{let u=JSON.parse(readFileSync(i,"utf-8"));u.name&&(s=u.name);}catch{}t||(console.log(g.bold.cyan(`
|
|
59
|
+
VeeStack Security Scan`)),console.log(g.gray("\u2500".repeat(40))));await Y();if(!existsSync(i)&&!e.json){if(o)console.log(g.gray(`
|
|
60
|
+
\u26A1 CI mode detected: Using default project name and scan directories`)),await pe({ci:true,skipAuthCheck:true,skipNextSteps:true});else if(!t){console.log(g.cyan(`
|
|
61
|
+
\u2728 Welcome to VeeStack!`)),console.log(g.gray(`Let's configure your project to start scanning for security issues.
|
|
62
|
+
`));let{runInit:u}=await Lt({type:"confirm",name:"runInit",message:"Would you like to run 'veestack init' first?",initial:true});u?await pe({skipAuthCheck:true,skipNextSteps:true}):console.log(g.gray(`
|
|
63
|
+
Using smart defaults for this scan...`));}}let l=en({text:"Preparing scan...",spinner:"dots",stream:process.stdout});t||(console.log(`
|
|
64
|
+
`+g.bold.cyan("\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501")),console.log(g.bold.white(" Analyzing Project")),console.log(g.bold.cyan(`\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501\u2501
|
|
65
|
+
`)),l.start());try{let u=Date.now(),O=existsSync(i)?JSON.parse(readFileSync(i,"utf-8")):{},x=O.scanPatterns||["**/*.{js,jsx,ts,tsx,json,py,go,rs,rb,php,cs,cpp,c,h,mjs,cjs,svelte,vue,html}"],E=O.excludePatterns||["**/node_modules/**","**/.next/**","**/dist/**","**/build/**","**/.git/**","**/coverage/**","**/*.test.ts","**/*.spec.ts"],v=await mn(n,x,E,e.diff);if(v.length===0&&!e.json){t||console.log(g.yellow(`
|
|
66
|
+
\u26A0 No source files found to scan.`));return}let A=new on.SingleBar({format:"Scanning |"+g.cyan("{bar}")+"| {percentage}% ({value}/{total} files)",barCompleteChar:"\u2588",barIncompleteChar:"\u2591",hideCursor:!0});t||A.start(v.length,0);let _=await St(n,v.map(V=>V.path));t||(A.update(Math.floor(v.length*.5)),l.text="Analyzing security...");let T=pn(v.length,_),ke=`report-${s}-security.json`;if(_.secretsFound>0){let V={project:s,directory:r,timestamp:new Date().toISOString(),score:T.score,grade:T.grade,criticalIssues:_.criticalCount,issues:_.results};await(await import('fs/promises')).writeFile(ke,JSON.stringify(V,null,2));}e.json&&(console.log(JSON.stringify({version:rn,timestamp:new Date().toISOString(),score:T.score,grade:T.grade,files:v.length,issues:T.breakdown,project:s,directory:r},null,2)),process.exit(0)),_.criticalCount>0&&(t||(A.stop(),l.fail("Security validation failed"),console.log(g.red(`
|
|
67
|
+
\u274C ${_.criticalCount} Critical security risks detected.`)),_.secretsFound>0&&(console.log(g.gray(`
|
|
68
|
+
Issues detail:`)),_.results.slice(0,5).forEach(V=>{console.log(g.yellow(` \u2022 ${V.ruleId}: `)+g.gray(`${V.filePath}:${V.line}`));}),_.secretsFound>5&&console.log(g.gray(` ... and ${_.secretsFound-5} more issues.`))),console.log(g.cyan(`
|
|
69
|
+
\u{1F4C4} Detailed report saved to: ${ke}`)),console.log(g.yellow(`
|
|
70
|
+
For your protection, local snapshot generation is blocked.`)),console.log(g.gray(`
|
|
71
|
+
\u2139 Recommended actions:`)),console.log(g.gray(" 1. Open the affected file(s) and review the reported security issue.")),console.log(g.gray(" 2. Fix the vulnerability or sensitive data exposure.")),console.log(g.gray(" 3. Run 'veestack scan' again.")),process.exit(1)));let{safe:P}=vt(v.map(V=>V.path)),B=await yn(n,v.filter(V=>P.includes(V.path)));if(t||(A.update(v.length),A.stop(),l.succeed(`Analysis prepared in ${((Date.now()-u)/1e3).toFixed(1)}s`)),t)console.log(g.green(`\u2714 Scan completed. Score: ${T.grade}`));else {console.log(g.gray(`
|
|
72
|
+
\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500`)),console.log(g.bold.cyan(" Security Summary")),console.log(g.gray("\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500")),console.log(g.gray("Project: "),g.white(s)),s!==r&&console.log(g.gray("Directory: "),g.white(r));let V=T.score>=90?g.green:T.score>=70?g.yellow:g.red;console.log(g.gray("Score: "),V(`${T.score} Grade: ${T.grade}`)),console.log(g.gray("Issues found: "),g.white(`${T.breakdown.critical+T.breakdown.high+T.breakdown.medium+T.breakdown.low}`)),console.log(g.gray("Dependencies: "),g.white(B.metadata.total_dependencies)),console.log(g.gray("Files: "),g.white(v.length)),console.log(g.gray(`
|
|
73
|
+
Next steps:`)),console.log(g.gray(" 1. Upload results to dashboard:")),console.log(g.cyan(" veestack login")),console.log(g.cyan(" veestack upload")),console.log(g.gray(`
|
|
74
|
+
2. View detailed report:`)),console.log(g.cyan(` ${e.output}`)),console.log(g.gray(`
|
|
77
75
|
\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500
|
|
78
|
-
`));}await(await import('fs/promises')).writeFile(
|
|
79
|
-
\u2705 Snapshot saved to ${
|
|
80
|
-
\u274C Error:`),
|
|
76
|
+
`));}await(await import('fs/promises')).writeFile(e.output,JSON.stringify(B,null,2)),console.log(`
|
|
77
|
+
\u2705 Snapshot saved to ${e.output}`);}catch(u){l.fail("Scan failed"),console.error(g.red(`
|
|
78
|
+
\u274C Error:`),u),process.exit(1);}}var Tn=3e4;async function ot(e,t={}){let{timeout:o=Tn}=t,n=new AbortController,r=setTimeout(()=>n.abort(),o);try{let s=await fetch(e,{...t,signal:n.signal});return clearTimeout(r),s}catch(s){throw clearTimeout(r),s instanceof Error&&s.name==="AbortError"?new Error(`Request timed out after ${o/1e3}s. Please check your connection.`):s}}async function bn(){try{let e=await G("GET","/api/projects"),t=await ot(`${j}/api/projects`,{headers:e});return t.ok?(await t.json()).projects||[]:[]}catch{return []}}async function Mt(e){try{let t=JSON.stringify({name:e}),o=await G("POST","/api/projects",t),n=await ot(`${j}/api/projects`,{method:"POST",headers:o,body:t});if(n.ok){let r=await n.json();return r.project?.id||r.id||null}return null}catch{return null}}function Je(e){let t=Sn.createInterface({input:process.stdin,output:process.stdout});return new Promise(o=>{t.question(e,n=>{t.close(),o(n);});})}async function An(){console.log(g.blue(`
|
|
81
79
|
\u{1F4C1} Loading projects...
|
|
82
|
-
`));let
|
|
83
|
-
`)),(await
|
|
84
|
-
\u2705 Project "${
|
|
85
|
-
`)),console.log(
|
|
86
|
-
`)),
|
|
87
|
-
`));});let
|
|
88
|
-
Enter project name: `);if(
|
|
89
|
-
\u2705 Project "${
|
|
90
|
-
\u2705 Selected project: "${
|
|
91
|
-
\u274C Invalid selection`)),null}async function
|
|
92
|
-
\u26A0 Skipping cloud upload in CI mode because login is not available.`)),console.log(
|
|
93
|
-
\u26A0 Oops! You're not logged in.`)),console.log(
|
|
94
|
-
`)),console.log(
|
|
95
|
-
\u{1F510} Authentication verified`)),
|
|
96
|
-
`)));let
|
|
97
|
-
Tip: Run "veestack scan" first to generate a snapshot.`)),process.exit(1));let i=await a.readFile(
|
|
98
|
-
\u274C No project selected. Exiting.`)),process.exit(1)),l=
|
|
99
|
-
\u2705 Report generated and saved to VeeStack`)),console.log(
|
|
100
|
-
\u{1F4CA} Security Score:`),
|
|
101
|
-
\u{1F517} View your full report at:`)),console.log(
|
|
102
|
-
\u{1F4CA} Fetching report ${
|
|
103
|
-
\u2705 SARIF report exported to: ${a}`)),console.log(
|
|
104
|
-
\u274C Export failed:`),
|
|
105
|
-
\
|
|
106
|
-
|
|
107
|
-
\u274C Server error: ${r.error||n.statusText}`)),new Error(r.error||`Failed to verify code: ${n.statusText}`)}return await n.json()}catch(n){throw console.log(v.red(`
|
|
108
|
-
\u274C Connection error: ${n instanceof Error?n.message:"Unknown error"}`)),n}}async function At(){console.log(v.bold.cyan(`
|
|
80
|
+
`));let e=await bn();if(e.length===0){if(console.log(g.yellow(`No projects found.
|
|
81
|
+
`)),(await Je("Do you want to create a new project? (y/n): ")).toLowerCase()==="y"){let r=await Je("Enter project name: ");if(r.trim()){let s=await Mt(r.trim());if(s)return console.log(g.green(`
|
|
82
|
+
\u2705 Project "${r}" created successfully!`)),s}}return null}console.log(g.white(`Select a project:
|
|
83
|
+
`)),console.log(g.gray(`0. [+] Create new project
|
|
84
|
+
`)),e.forEach((n,r)=>{console.log(g.white(`${r+1}. ${n.name}`)),console.log(g.gray(` ID: ${n.id}`)),console.log(g.gray(` Created: ${new Date(n.created_at).toLocaleDateString()}
|
|
85
|
+
`));});let t=await Je("Enter number (0-"+e.length+"): "),o=parseInt(t,10);if(o===0){let n=await Je(`
|
|
86
|
+
Enter project name: `);if(n.trim()){let r=await Mt(n.trim());if(r)return console.log(g.green(`
|
|
87
|
+
\u2705 Project "${n}" created successfully!`)),r}return null}else if(o>0&&o<=e.length){let n=e[o-1];return console.log(g.green(`
|
|
88
|
+
\u2705 Selected project: "${n.name}"`)),n.id}else return console.log(g.red(`
|
|
89
|
+
\u274C Invalid selection`)),null}async function nt(e){let t=e.ci||process.env.CI==="true",o=t,n=await Q();if(!n){if(t){console.log(g.yellow(`
|
|
90
|
+
\u26A0 Skipping cloud upload in CI mode because login is not available.`)),console.log(g.gray(`Snapshot saved locally: ${e.file||"snapshot.json"}`));return}console.log(g.yellow(`
|
|
91
|
+
\u26A0 Oops! You're not logged in.`)),console.log(g.gray(`Run 'veestack login' to upload your snapshot and unlock cloud features.
|
|
92
|
+
`)),console.log(g.cyan(" veestack login")),process.exit(1);}let r=await ze();o||(console.log(g.blue(`
|
|
93
|
+
\u{1F510} Authentication verified`)),n.user&&console.log(g.gray(`User: ${n.user.name}`)),console.log(g.gray(`Subscription tier: ${r==="pro"?"Pro":"Free"}`)),console.log(g.gray("\u2500".repeat(40)+`
|
|
94
|
+
`)));let s=en({text:"Preparing upload...",isSilent:o}).start();try{let a=await import('fs/promises');existsSync(e.file)||(s.fail(`File not found: ${e.file}`),o||console.log(g.yellow(`
|
|
95
|
+
Tip: Run "veestack scan" first to generate a snapshot.`)),process.exit(1));let i=await a.readFile(e.file,"utf-8"),c=JSON.parse(i),l=e.projectId||process.env.VEESTACK_PROJECT_ID;if(!l){o&&(s.fail("Project ID is required in CI mode. Please set VEESTACK_PROJECT_ID."),process.exit(1)),s.stop();let B=await An();B||(console.log(g.red(`
|
|
96
|
+
\u274C No project selected. Exiting.`)),process.exit(1)),l=B,s.start("Uploading snapshot...");}s.text="Compressing and uploading snapshot...";let u=gzipSync(JSON.stringify(c)).toString("base64"),O=JSON.stringify({project_id:l,snapshot:u,compressed:!0,encoding:"base64"}),x=await G("POST","/api/snapshots/upload",O),E=await ot(`${j}/api/snapshots/upload`,{method:"POST",headers:x,body:O});if(!E.ok){let B=await E.json().catch(()=>({}));s.fail("Upload failed"),console.error(g.red(`Error: ${B.message||B.error||"Server error"}`)),process.exit(1);}let v=await E.json(),{snapshotId:A,reportId:_,score:T,severity:ke,findings:P}=v;if(s.succeed("Analysis complete"),o)console.log(`\u2714 Upload successful. Report: ${ge}/dashboard/reports/${_}?project=${l}`);else {console.log(g.green(`
|
|
97
|
+
\u2705 Report generated and saved to VeeStack`)),console.log(g.gray("Project ID: "),g.white(l)),console.log(g.gray("Snapshot ID: "),g.white(A)),console.log(g.gray("Report ID: "),g.white(_)),console.log(g.bold(`
|
|
98
|
+
\u{1F4CA} Security Score:`),T>=90?g.green(T):T>=70?g.yellow(T):g.red(T)),console.log(g.gray("Severity: "),ke),console.log(g.gray("Findings: "),P);let B=`${ge}/dashboard/reports/${_}?project=${l}`;console.log(g.blue(`
|
|
99
|
+
\u{1F517} View your full report at:`)),console.log(g.underline(B));}}catch(a){s.fail("Upload failed"),console.error(a),process.exit(1);}}async function zt(e){e.format==="sarif"?await En(e):console.log(g.red('\u274C Unsupported format. Currently only "sarif" is supported.'));}async function En(e){await Q()||(console.error(g.red("\u274C Authentication required. Please login first.")),process.exit(1));let o=e.reportId;o||(console.error(g.red("\u274C Report ID is required for SARIF export.")),process.exit(1)),console.log(g.blue(`
|
|
100
|
+
\u{1F4CA} Fetching report ${o} for SARIF export...`));try{let n=await G("GET",`/api/reports/${o}/sarif`),r=await fetch(`${j}/api/reports/${o}/sarif`,{headers:n});if(!r.ok){let c=await r.json().catch(()=>({}));throw new Error(c.message||"Failed to fetch SARIF report")}let s=await r.json(),a=e.output||"veestack-results.sarif";await(await import('fs/promises')).writeFile(a,JSON.stringify(s,null,2)),console.log(g.green(`
|
|
101
|
+
\u2705 SARIF report exported to: ${a}`)),console.log(g.gray("You can now upload this to GitHub Security Tab."));}catch(n){console.error(g.red(`
|
|
102
|
+
\u274C Export failed:`),n instanceof Error?n.message:n),process.exit(1);}}var In=globalThis,_n=In.CLI_VERSION||"unknown";function Pn(){return z__default.randomBytes(16).toString("hex")}function Rn(){let e=z__default.randomBytes(32).toString("base64url"),t=z__default.createHash("sha256").update(e).digest("base64url");return {code_verifier:e,code_challenge:t}}function Dn(){let e=process.platform,t=le.hostname(),o=_n,n=t||z__default.randomBytes(8).toString("hex"),r=z__default.createHash("sha256").update(`${n}:${e}:${o}`).digest("hex"),s=z__default.randomBytes(12).toString("hex"),a=`${t||"Unknown"} (${e==="win32"?"Windows":e==="darwin"?"macOS":"Linux"})`;return {id:s,name:a,fingerprint:r,os:e,cli_version:o}}async function jn(e,t){try{let o=new URL(W.token);o.searchParams.set("device_code",e),o.searchParams.set("code_verifier",t);let n=await fetch(o.toString(),{method:"GET",headers:{"Content-Type":"application/json"}});if(n.status===202)return null;if(!n.ok){let r=await n.json().catch(()=>({}));if(r.code==="slow_down")return await new Promise(s=>setTimeout(s,2e3)),null;throw new Error(r.error||`Failed to poll for token: ${n.statusText}`)}return await n.json()}catch{return null}}async function Nn(e,t){try{let o=Pn();console.log(g.gray(`[DEBUG] Creating device request at: ${W.device}`));let n=await fetch(W.device,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({device_code:o,client_id:e.id,code_challenge:t.code_challenge,code_challenge_method:"S256",device_info:e})});if(!n.ok){let r=await n.json().catch(()=>({}));throw console.log(g.red(`
|
|
103
|
+
\u274C Server error: ${r.error||n.statusText}`)),new Error(r.error||`Failed to create device request: ${n.statusText}`)}return await n.json()}catch(o){throw console.log(g.red(`
|
|
104
|
+
\u274C Connection error: ${o instanceof Error?o.message:"Unknown error"}`)),o}}async function Ie(){console.log(g.bold.cyan(`
|
|
109
105
|
\u{1F510} Login to VeeStack
|
|
110
|
-
`));let t
|
|
111
|
-
`))
|
|
112
|
-
`)),
|
|
113
|
-
\u274C
|
|
114
|
-
|
|
115
|
-
|
|
116
|
-
|
|
106
|
+
`));let e=Dn(),t=Rn();console.log(g.gray("Creating device authorization request..."));let o;try{if(o=await Nn(e,t),!o)throw new Error("Failed to create device request");console.log(g.gray(`Device request created
|
|
107
|
+
`));}catch(c){console.log(g.red(`
|
|
108
|
+
\u274C Failed to create device request`)),console.error(c),process.exit(1);}o||(console.log(g.red(`
|
|
109
|
+
\u274C Failed to get authorization data`)),process.exit(1));let n=`${ge}/cli-auth?code=${o.user_code}`;console.log(g.yellow(`Opening browser to authenticate...
|
|
110
|
+
`)),console.log(g.gray(`Your code: ${o.user_code}
|
|
111
|
+
`));try{await xn(n),console.log(g.gray(`If your browser did not open, visit: ${n}
|
|
112
|
+
`));}catch{console.log(g.yellow(`\u26A0\uFE0F Could not open browser automatically
|
|
113
|
+
`)),console.log(g.gray(`Please visit: ${n}
|
|
114
|
+
`));}let r=en({text:"Waiting for browser authorization...",spinner:"dots",stream:process.stdout});r.start();let s=null,a=0,i=300;try{for(;!s&&a<i;)if(await new Promise(u=>setTimeout(u,2e3)),s=await jn(o.device_code,t.code_verifier),a++,!s){let u=a*2,O=i*2-u;r.text=`Waiting for browser authorization... (${u}s elapsed, ${O}s remaining)`;}s||(r.fail("Authentication timeout"),console.log(g.red(`
|
|
115
|
+
\u274C Authentication request expired after 10 minutes.`)),console.log(g.yellow(`
|
|
116
|
+
The device code has expired for security reasons.`)),console.log(g.gray("Device codes are valid for 10 minutes only.")),console.log(g.yellow(`
|
|
117
|
+
Please try again with: `)+g.cyan(`veestack login
|
|
118
|
+
`)),process.exit(1)),r.succeed("Authentication successful");let c=typeof s.expires_in=="number"?s.expires_in:900,l={token:s.access_token,tokenType:s.token_type,refreshToken:s.refresh_token,tokenExpiresAt:new Date(Date.now()+c*1e3).toISOString(),device:{id:e.id,name:e.name,fingerprint:e.fingerprint},user:{id:s.user.id,email:s.user.email,name:s.user.name,provider:s.user.provider},subscription:s.subscription||{tier:"free",isActive:!0},lastLoginAt:new Date().toISOString()};try{await Ce(l);let u=await Ue();console.log(g.green(`
|
|
117
119
|
\u2714 Authentication successful
|
|
118
|
-
`)),console.log(
|
|
120
|
+
`)),console.log(g.gray("Account: ")+g.white(l.user.name)),console.log(g.gray("Email: ")+g.white(l.user.email)),console.log(g.gray("Device: ")+g.white(l.device.name)),console.log(g.gray("Subscription: ")+(l.subscription?.tier==="pro"?g.cyan("Pro"):g.blue("Free"))),u.keychainAvailable&&u.keychainHasTokens?console.log(g.gray(`
|
|
119
121
|
Token saved securely to OS Keychain
|
|
120
|
-
`))
|
|
121
|
-
|
|
122
|
-
|
|
122
|
+
`)):u.fileExists?console.log(g.gray(`
|
|
123
|
+
Tokens saved to encrypted file (AES-256-GCM)
|
|
124
|
+
`)):console.log(g.gray(`
|
|
125
|
+
Token storage completed
|
|
126
|
+
`)),Ot({token:l.token,tokenType:l.tokenType,refreshToken:l.refreshToken,tokenExpiresAt:l.tokenExpiresAt,device:l.device,user:l.user,subscription:l.subscription,lastLoginAt:l.lastLoginAt});}catch(u){r.fail("Failed to save authentication"),console.error(g.red(`
|
|
127
|
+
\u274C Could not securely store tokens:`),u),process.exit(1);}}catch(c){console.error(g.red(`
|
|
128
|
+
\u274C Error:`),c instanceof Error?c.message:c),process.exit(1);}}async function Jt(){try{let e=await N();if(!e){console.log(g.yellow("\u26A0\uFE0F Not logged in"));return}if(console.log(g.bold.cyan(`
|
|
123
129
|
\u{1F6AA} Logout from VeeStack
|
|
124
|
-
`)),
|
|
125
|
-
\u{1F510} All local tokens securely deleted`)),console.log(
|
|
126
|
-
`));}catch(
|
|
127
|
-
Please login first:`)),console.log(
|
|
130
|
+
`)),e.token||e.apiKey)try{let t=e.token||e.apiKey;await fetch(W.logout,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${t}`},body:JSON.stringify({device_id:e.device?.id})});}catch{}await ue()&&await ee();try{let{existsSync:t,unlinkSync:o}=await import('fs'),{join:n}=await import('path'),{homedir:r}=await import('os'),s=n(r(),".veestack"),a=n(s,"config.json");t(a)&&o(a);}catch{}e.user?console.log(g.green(`\u2714 Logged out ${e.user.name}`)):console.log(g.green("\u2714 Logged out")),console.log(g.gray(`
|
|
131
|
+
\u{1F510} All local tokens securely deleted`)),console.log(g.gray("See you soon! \u{1F44B}")),console.log(g.gray(`Run "veestack login" to authenticate again.
|
|
132
|
+
`));}catch(e){q.error("\u274C Error during logout:",Ye(e)),process.exit(1);}}async function Gt(){try{let e=await Q();e||(console.log(g.yellow("\u26A0\uFE0F Not authenticated")),console.log(g.gray(`
|
|
133
|
+
Please login first:`)),console.log(g.cyan(" veestack login")),process.exit(1)),console.log(g.bold.cyan(`
|
|
128
134
|
\u{1F464} VeeStack Account
|
|
129
|
-
`)),
|
|
135
|
+
`)),e.user&&(console.log(g.gray("User: ")+g.white(e.user.name)),console.log(g.gray("Email: ")+g.white(e.user.email)),console.log(g.gray("Provider: ")+g.cyan(e.user.provider))),e.device&&(console.log(g.gray("Device: ")+g.white(e.device.name)),console.log(g.gray("Device ID: ")+g.gray(e.device.id.substring(0,8)+"...")));let t=e.subscription?.tier||"free";if(console.log(g.gray("Subscription: ")+(t==="pro"?g.cyan("Pro"):g.blue("Free"))),e.tokenExpiresAt){let n=Xe(e)?g.red("Expired (will refresh)"):g.green("Valid");console.log(g.gray("Token Status: ")+n),console.log(g.gray("Expires: ")+g.yellow(new Date(e.tokenExpiresAt).toLocaleString()));}e.lastLoginAt&&console.log(g.gray("Last Login: ")+g.gray(new Date(e.lastLoginAt).toLocaleString())),console.log();}catch(e){console.error(g.red("\u274C Error:"),e instanceof Error?e.message:e),process.exit(1);}}function qt(){return join(homedir(),".veestack","accounts")}function $n(){try{let e=qt();if(!U.existsSync(e))return [];let t=[],o=U.readdirSync(e);for(let n of o)if(n.endsWith(".json")){let r=U.readFileSync(join(e,n),"utf-8"),s=JSON.parse(r);s.user&&t.push({id:s.user.id,name:s.user.name,email:s.user.email,provider:s.user.provider,config:s});}return t}catch{return []}}function On(e){try{let t=qt();if(U.mkdirSync(t,{recursive:!0}),e.user){let o=join(t,`${e.user.id}.json`);U.writeFileSync(o,JSON.stringify(e,null,2),{mode:384});}}catch{}}async function Wt(){let e=await N(),t=$n();console.log(g.bold.cyan(`
|
|
130
136
|
\u{1F464} Switch Account
|
|
131
|
-
`)),
|
|
132
|
-
To add a new account:`)),console.log(
|
|
133
|
-
${c+1}) ${i.name}`)),console.log(
|
|
134
|
-
0) Add new account`)),console.log();let
|
|
135
|
-
\u2714 Switched to ${i.name}`)),console.log(
|
|
136
|
-
\u274C Invalid selection`)),process.exit(1);}function
|
|
137
|
+
`)),e?.user&&(console.log(g.gray("Currently logged in as:")),console.log(g.white(` ${e.user.name} (${e.user.email})`)),console.log(g.gray(` Provider: ${e.user.provider}`)),console.log());let o=t.filter(i=>i.id!==e?.user?.id);if(o.length===0){console.log(g.yellow("No other saved accounts found.")),console.log(g.gray(`
|
|
138
|
+
To add a new account:`)),console.log(g.cyan(" veestack login")),console.log();return}console.log(g.gray("Available accounts:")),o.forEach((i,c)=>{console.log(g.white(`
|
|
139
|
+
${c+1}) ${i.name}`)),console.log(g.gray(` ${i.email}`)),console.log(g.gray(` Provider: ${i.provider}`));}),console.log(g.gray(`
|
|
140
|
+
0) Add new account`)),console.log();let r=(await import('readline')).createInterface({input:process.stdin,output:process.stdout}),s=await new Promise(i=>{r.question(g.white("Select account (number): "),c=>{r.close(),i(c);});}),a=parseInt(s,10);if(a===0){await Ie();return}if(a>0&&a<=o.length){let i=o[a-1];e&&On(e);let c=join(homedir(),".veestack"),l=join(c,"config.json");U.mkdirSync(c,{recursive:true}),U.writeFileSync(l,JSON.stringify(i.config,null,2),{mode:384}),console.log(g.green(`
|
|
141
|
+
\u2714 Switched to ${i.name}`)),console.log(g.gray(` ${i.email}`)),console.log();}else console.log(g.red(`
|
|
142
|
+
\u274C Invalid selection`)),process.exit(1);}function Vn(){let e=join(process.cwd(),"veestack.config.json");if(!existsSync(e))return null;try{return JSON.parse(readFileSync(e,"utf-8"))}catch{return null}}function Fn(){let e=join(process.env.HOME||process.env.USERPROFILE||"",".veestack","last-scan.json");if(existsSync(e))try{return JSON.parse(readFileSync(e,"utf-8"))}catch{return null}return null}function Un(e){let t=new Date(e),n=Math.floor((new Date().getTime()-t.getTime())/1e3);if(n<60)return `${n} seconds ago`;let r=Math.floor(n/60);if(r<60)return `${r} minutes ago`;let s=Math.floor(r/60);return s<24?`${s} hours ago`:t.toLocaleDateString()}async function rt(){console.log(g.bold.cyan(`
|
|
137
143
|
\u{1F4CA} VeeStack Status
|
|
138
|
-
`)),console.log(
|
|
139
|
-
CLI Version: ${
|
|
140
|
-
User`)),
|
|
141
|
-
\u26A0\uFE0F You are not logged in`)),console.log(
|
|
142
|
-
Login to enable:`)),console.log(
|
|
143
|
-
`)),console.log(
|
|
144
|
-
Project`)),
|
|
145
|
-
Scan Status`)),
|
|
146
|
-
`+"\u2500".repeat(40)));}var
|
|
147
|
-
Opening ${
|
|
148
|
-
`));}catch{console.log(
|
|
149
|
-
\u274C Could not open browser automatically.`)),console.log(
|
|
150
|
-
`));}}var
|
|
144
|
+
`)),console.log(g.gray("\u2500".repeat(40)));let e=await Y(),t=await ze(),o=await $t(),n=Vn(),r=Fn();if(console.log(g.gray(`
|
|
145
|
+
CLI Version: ${g.white(VERSION)}`)),console.log(g.bold(`
|
|
146
|
+
User`)),e?(console.log(g.green(" \u2714 Authenticated")),console.log(t==="pro"?g.cyan(" \u{1F48E} Pro plan"):g.blue(" \u{1F4E6} Free plan")),o||console.log(g.red(" \u26A0 Subscription expired"))):(console.log(g.yellow(`
|
|
147
|
+
\u26A0\uFE0F You are not logged in`)),console.log(g.gray(`
|
|
148
|
+
Login to enable:`)),console.log(g.gray(" \u2022 Cloud reports")),console.log(g.gray(" \u2022 Team dashboard")),console.log(g.gray(` \u2022 Historical scans
|
|
149
|
+
`)),console.log(g.gray("Run:")),console.log(g.cyan(" veestack login"))),console.log(g.bold(`
|
|
150
|
+
Project`)),n?(console.log(g.green(` \u2714 ${n.name||"Unnamed project"}`)),n.framework&&console.log(g.gray(` Framework: ${n.framework}`)),n.projectId?console.log(g.gray(" Linked: Yes")):console.log(g.gray(" Linked: No"))):(console.log(g.yellow(" \u26A0 No project initialized")),console.log(g.gray(" Run: veestack init"))),console.log(g.bold(`
|
|
151
|
+
Scan Status`)),r){console.log(g.gray(` Last scan: ${Un(r.timestamp)}`));let s=r.grade.startsWith("A")?g.green:r.grade==="B"?g.blue:g.yellow;console.log(g.gray(` Score: ${s.bold(r.grade)} (${r.score}/100)`)),console.log(g.gray(` Issues: ${r.issues>0?g.red(r.issues):g.green(0)}`));}else console.log(g.gray(" Last scan: Never")),console.log(g.gray(" Issues: -"));console.log(g.gray(`
|
|
152
|
+
`+"\u2500".repeat(40)));}var Qt=process.env.VEESTACK_DASHBOARD_URL||"https://www.veestack.com/dashboard";function Jn(){let e=join(process.cwd(),"veestack.config.json");if(existsSync(e))try{return JSON.parse(readFileSync(e,"utf-8")).projectId||null}catch{return null}return null}async function eo(){let e=Jn(),t=e?`${Qt}/projects/${e}`:Qt;console.log(g.cyan(`
|
|
153
|
+
Opening ${t}...`));try{await xn(t),console.log(g.green(`\u2714 Dashboard opened in your browser
|
|
154
|
+
`));}catch{console.log(g.red(`
|
|
155
|
+
\u274C Could not open browser automatically.`)),console.log(g.gray(`Please visit: ${g.white(t)}
|
|
156
|
+
`));}}var it=globalThis;async function Hn(){let e=process.version,t=parseInt(e.slice(1).split(".")[0]);return t>=18?{name:"Node.js Version",status:"ok",message:`${e} (>= 18)`}:t>=16?{name:"Node.js Version",status:"warning",message:`${e} (>= 16, but 18+ recommended)`}:{name:"Node.js Version",status:"error",message:`${e} (>= 18 required)`,details:"Please upgrade Node.js: https://nodejs.org"}}async function qn(){try{let e=dirname(fileURLToPath(import.meta.url)),t=join(e,"version.json");if(!existsSync(t))return null;let o=readFileSync(t,"utf-8");return JSON.parse(o)}catch{return null}}async function Wn(){let e=it.CLI_VERSION;try{let t=await fetch("https://registry.npmjs.org/veestack-tools/latest",{signal:AbortSignal.timeout(3e3)});if(t.ok){let n=(await t.json()).version;return e===n?{name:"CLI Version",status:"ok",message:`v${e} (latest)`}:{name:"CLI Version",status:"warning",message:`v${e} (latest: v${n})`,details:"Upgrade: npm install -g veestack-tools"}}}catch{}return {name:"CLI Version",status:"ok",message:`v${e}`}}async function Yn(){try{let e=dirname(fileURLToPath(import.meta.url)),t=join(e,"version.json");if(!existsSync(t))return {name:"CLI Build",status:"ok",message:"Metadata not found"};let o=readFileSync(t,"utf-8"),n=JSON.parse(o),r=n.commit||"unknown",s=n.buildTime||"unknown";return {name:"CLI Build",status:"ok",message:r,details:s}}catch{return {name:"CLI Build",status:"warning",message:"Unable to read metadata"}}}async function Zn(){try{let e=await N();return e?{name:"Authentication",status:"ok",message:e.user?.email||"Authenticated via API Key"}:{name:"Authentication",status:"warning",message:"Not authenticated",details:"Run: veestack login"}}catch{return {name:"Authentication",status:"error",message:"Auth system error",details:"Try: veestack logout && veestack login"}}}async function Xn(){if(!await Y())return {name:"API Connectivity",status:"ok",message:"Skipped (not authenticated)",details:"Login to enable API checks"};try{let t=await G(),o=await fetch(`${j}/v1/health`,{method:"GET",headers:t,signal:AbortSignal.timeout(5e3)});return o.ok?{name:"API Connectivity",status:"ok",message:"Reachable"}:{name:"API Connectivity",status:"warning",message:`HTTP ${o.status}`}}catch{return {name:"API Connectivity",status:"warning",message:"Unreachable",details:`Check:
|
|
151
157
|
\u2022 Internet connection
|
|
152
|
-
\u2022 API endpoint configuration`}}}async function
|
|
158
|
+
\u2022 API endpoint configuration`}}}async function Qn(){let e=process.cwd(),t=join(e,"veestack.config.json"),o=join(e,"package.json");if(existsSync(t))try{return {name:"Project Config",status:"ok",message:`Found: ${JSON.parse(readFileSync(t,"utf-8")).projectId||"Unlinked project"}`}}catch{return {name:"Project Config",status:"warning",message:"Invalid veestack.config.json",details:"Check JSON syntax"}}return existsSync(o)?{name:"Project Config",status:"warning",message:"Not initialized",details:"Run: veestack init"}:{name:"Project Config",status:"warning",message:"No project found",details:"Navigate to a project directory"}}async function er(){let{isOfficial:e,packageName:t}=je();return e?{name:"Package Security",status:"ok",message:"Official package verified",details:t}:{name:"Package Security",status:"error",message:"Unofficial package detected!",details:`Expected: veestack-tools, Found: ${t}`}}async function tr(){let e=await Ue();return e.keychainAvailable&&e.keychainHasTokens?{name:"Token Storage",status:"ok",message:"OS Keychain (secure)"}:e.fileExists?{name:"Token Storage",status:"warning",message:`File-based (${e.encryptionVersion>=2?"AES-256-GCM":"Encrypted"})`,details:"Install keytar for OS Keychain: npm install -g keytar"}:{name:"Token Storage",status:"ok",message:"No tokens stored"}}async function or(){try{return {name:"Git",status:"ok",message:execSync("git --version",{encoding:"utf-8"}).trim().replace("git version ","")}}catch{return {name:"Git",status:"warning",message:"Not installed",details:"Some features may not work"}}}async function nr(){try{return {name:"Disk Space",status:"ok",message:"Sufficient"}}catch{return {name:"Disk Space",status:"warning",message:"Unable to check"}}}function Re(e){let t={ok:g.green("\u2714"),warning:g.yellow("\u26A0"),error:g.red("\u2718")},o={ok:g.green,warning:g.yellow,error:g.red};console.log(` ${t[e.status]} ${g.bold(e.name)}: ${o[e.status](e.message)}`),e.details&&console.log(` ${g.gray(e.details)}`);}async function at(){console.log(g.bold.cyan(`
|
|
153
159
|
\u{1F50D} VeeStack Doctor
|
|
154
|
-
`));let
|
|
155
|
-
Project`));let a=await Promise.all([
|
|
156
|
-
Authentication`));let i=await Promise.all([
|
|
157
|
-
Connectivity`));let c=await Promise.all([
|
|
158
|
-
Security`));let l=await Promise.all([
|
|
159
|
-
`)));let
|
|
160
|
-
`))),c.find(
|
|
161
|
-
`))),a.find(
|
|
162
|
-
`))),process.exit(
|
|
160
|
+
`));let e=await qn(),t=e?.name||"VeeStack CLI",o=e?.version||it.CLI_VERSION||"unknown",n=e?.commit?e.commit.slice(0,7):void 0,r=e?.buildTime?e.buildTime.slice(0,10):void 0;console.log(g.bold(t)),console.log(`Version: ${o}`),n&&console.log(`Commit: ${n}`),r&&console.log(`Built: ${r}`),console.log(""),console.log(g.bold("Environment"));let s=await Promise.all([Hn(),Wn(),Yn(),or(),nr()]);s.forEach(Re),console.log(g.bold(`
|
|
161
|
+
Project`));let a=await Promise.all([Qn()]);a.forEach(Re),console.log(g.bold(`
|
|
162
|
+
Authentication`));let i=await Promise.all([Zn(),tr()]);i.forEach(Re),console.log(g.bold(`
|
|
163
|
+
Connectivity`));let c=await Promise.all([Xn()]);c.forEach(Re),console.log(g.bold(`
|
|
164
|
+
Security`));let l=await Promise.all([er()]);l.forEach(Re);let u=[...s,...a,...i,...c,...l];u.filter(P=>P.status==="ok").length;let x=u.filter(P=>P.status==="warning").length,E=u.filter(P=>P.status==="error").length;console.log(""),console.log(E===0&&x===0?g.green.bold("\u2728 All systems operational!"):E===0?g.yellow.bold(`\u26A0 ${x} issue(s) detected`):g.red.bold(`\u2718 ${E} error(s) found`)),console.log("");let v=0;i.find(P=>P.name==="Authentication")?.status!=="ok"&&(v++,console.log(g.bold(`${v}. Authentication`)),console.log(g.gray(" Run:")),console.log(g.cyan(` veestack login
|
|
165
|
+
`)));let _=i.find(P=>P.name==="Token Storage");_?.status==="warning"&&_.message.includes("File-based")&&(v++,console.log(g.bold(`${v}. Secure token storage`)),console.log(g.gray(" Install OS keychain support:")),console.log(g.cyan(` npm install -g keytar
|
|
166
|
+
`))),c.find(P=>P.name==="API Connectivity")?.status==="warning"&&await Y()&&(v++,console.log(g.bold(`${v}. API connectivity`)),console.log(g.gray(" Check your internet connection")),console.log(g.gray(` or verify API endpoint
|
|
167
|
+
`))),a.find(P=>P.name==="Project Config")?.status==="warning"&&(v++,console.log(g.bold(`${v}. Project initialization`)),console.log(g.gray(" Run:")),console.log(g.cyan(` veestack init
|
|
168
|
+
`))),process.exit(E>0?1:0);}var ur=globalThis;function gr(){try{let e=dirname(fileURLToPath(import.meta.url)),t=join(e,"version.json");if(!existsSync(t))return {meta:null,source:"fallback"};let o=readFileSync(t,"utf-8");return {meta:JSON.parse(o),source:"dist/version.json"}}catch{return {meta:null,source:"fallback"}}}async function no(){let{meta:e,source:t}=gr(),o=e?.name||"VeeStack CLI",n=e?.version||ur.CLI_VERSION||"unknown",r=e?.commit?e.commit.slice(0,7):void 0,s=e?.commit,a=e?.buildTime?e.buildTime.slice(0,10):void 0,i=e?.node,c=process.argv.includes("--json"),l=process.argv.includes("--debug")||process.env.VEESTACK_DEBUG==="1";if(c){console.log(JSON.stringify({name:o,version:n,commit:s,built:a,node:i}));return}console.log(g.bold(o)),console.log(`v${n}`),r&&console.log(`commit ${r}`),a&&console.log(`built ${a}`),l&&console.log(`metadata ${t}`);}var dr=globalThis,ro=dr.AUDIT_VERSION||"unknown",lt=class{results=[];fullMode;configDir;constructor(t=false){this.fullMode=t,this.configDir=ie.join(le.homedir(),".veestack");}async run(){return console.log(g.blue.bold(`
|
|
163
169
|
\u{1F510} VeeStack Security Audit
|
|
164
|
-
`)),console.log(
|
|
165
|
-
`)),await this.runTokenSecurityTests(),await this.runDeviceBindingTests(),await this.runStorageTests(),await this.runFilesystemTests(),await this.runDependencyTests(),this.fullMode&&(await this.runAPITests(),await this.runNetworkTests()),this.generateReport()}addResult(
|
|
170
|
+
`)),console.log(g.gray("=".repeat(60))),console.log(g.gray(`Version: ${ro} | Mode: ${this.fullMode?"Full":"Quick"}
|
|
171
|
+
`)),await this.runTokenSecurityTests(),await this.runDeviceBindingTests(),await this.runStorageTests(),await this.runFilesystemTests(),await this.runDependencyTests(),this.fullMode&&(await this.runAPITests(),await this.runNetworkTests()),this.generateReport()}addResult(t,o,n,r,s){this.results.push({test:t,category:o,status:n,message:r,details:s});let a=n==="pass"?g.green("\u2713"):n==="fail"?g.red("\u2717"):n==="warn"?g.yellow("\u26A0"):g.gray("-");console.log(` ${a} ${g.white(t)}: ${this.getStatusColor(n)(r)}`),s&&console.log(g.gray(` ${s}`));}getStatusColor(t){return t==="pass"?g.green:t==="fail"?g.red:t==="warn"?g.yellow:g.gray}async runTokenSecurityTests(){console.log(g.blue.bold(`
|
|
166
172
|
\u{1F3AB} Token Security Tests
|
|
167
|
-
`));try{let
|
|
173
|
+
`));try{let t=await this.checkTokenStorage();t.secure?this.addResult("Secure Token Storage","Token Security","pass",t.method):this.addResult("Secure Token Storage","Token Security","fail","Insecure storage detected",t.method);}catch{this.addResult("Secure Token Storage","Token Security","skip","Unable to check");}try{let t=await this.getConfig();if(t?.tokenExpiresAt){let o=new Date(t.tokenExpiresAt),n=new Date,r=Math.floor((o.getTime()-n.getTime())/36e5);r<0?this.addResult("Token Expiration","Token Security","warn","Token expired","Will auto-refresh"):r<24?this.addResult("Token Expiration","Token Security","warn",`Expires in ${r}h`):this.addResult("Token Expiration","Token Security","pass",`Valid for ${r}h`);}else this.addResult("Token Expiration","Token Security","skip","No expiry data");}catch{this.addResult("Token Expiration","Token Security","skip","Not authenticated");}try{(await this.getConfig())?.refreshToken?this.addResult("Refresh Token","Token Security","pass","Present (long-lived)"):this.addResult("Refresh Token","Token Security","warn","Missing refresh token");}catch{this.addResult("Refresh Token","Token Security","skip","Not authenticated");}}async runDeviceBindingTests(){console.log(g.blue.bold(`
|
|
168
174
|
\u{1F4F1} Device Binding Tests
|
|
169
|
-
`));try{let
|
|
175
|
+
`));try{let t=await this.getConfig();t?.device?.id?this.addResult("Device ID","Device Binding","pass",`Configured (${t.device.id.substring(0,8)}...)`):this.addResult("Device ID","Device Binding","warn","No device ID");}catch{this.addResult("Device ID","Device Binding","skip","Not authenticated");}try{let t=await this.getConfig();t?.device?.fingerprint?t.device.fingerprint.length>=16?this.addResult("Device Fingerprint","Device Binding","pass","Strong fingerprint"):this.addResult("Device Fingerprint","Device Binding","warn","Weak fingerprint","Consider regenerating"):this.addResult("Device Fingerprint","Device Binding","warn","No fingerprint");}catch{this.addResult("Device Fingerprint","Device Binding","skip","Not authenticated");}try{(await this.getConfig())?.tokenBinding?this.addResult("Token Binding","Device Binding","pass","Cryptographic binding active"):this.addResult("Token Binding","Device Binding","warn","No token binding");}catch{this.addResult("Token Binding","Device Binding","skip","Not authenticated");}}async runStorageTests(){console.log(g.blue.bold(`
|
|
170
176
|
\u{1F4BE} Storage Security Tests
|
|
171
|
-
`));try{let
|
|
177
|
+
`));try{let t=ie.join(this.configDir,"config.json");((await b.stat(t)).mode&36)!==0?this.addResult("Config Permissions","Storage","fail","World readable!","Run: chmod 600 ~/.veestack/config.json"):this.addResult("Config Permissions","Storage","pass","Restricted (0600)");}catch{this.addResult("Config Permissions","Storage","skip","No config file");}try{let t=ie.join(this.configDir,"config.json"),o=await b.readFile(t,"utf-8");!(/"token":\s*"vs_[a-f0-9]+"/i.test(o)||/"refreshToken":\s*"vs_[a-f0-9]+"/i.test(o))||o.includes("encrypted")?this.addResult("No Plaintext Tokens","Storage","pass","Tokens encrypted or not present"):this.addResult("No Plaintext Tokens","Storage","fail","Plaintext tokens found!","Use OS Keychain");}catch{this.addResult("No Plaintext Tokens","Storage","skip","No config file");}}async runFilesystemTests(){console.log(g.blue.bold(`
|
|
172
178
|
\u{1F4C1} Filesystem Safety Tests
|
|
173
|
-
`)),this.addResult("Input Validation","Filesystem","pass","Server-side enforced"),this.addResult("Path Traversal","Filesystem","pass","Server-side blocked"),this.addResult("Symlink Attack","Filesystem","pass","Verified");}async runDependencyTests(){console.log(
|
|
179
|
+
`)),this.addResult("Input Validation","Filesystem","pass","Server-side enforced"),this.addResult("Path Traversal","Filesystem","pass","Server-side blocked"),this.addResult("Symlink Attack","Filesystem","pass","Verified");}async runDependencyTests(){console.log(g.blue.bold(`
|
|
174
180
|
\u{1F4E6} Dependency Security Tests
|
|
175
|
-
`));try{let
|
|
181
|
+
`));try{let t=await b.readFile(ie.join(process.cwd(),"package.json"),"utf-8"),o=JSON.parse(t),n=JSON.stringify(o.dependencies||{}),s=["veestack-core","veestackcli","veestak","@veestack/core"].filter(a=>n.includes(a));s.length===0?this.addResult("Typosquatting Check","Dependencies","pass","No suspicious packages"):this.addResult("Typosquatting Check","Dependencies","fail","Suspicious packages found",s.join(", "));}catch{this.addResult("Typosquatting Check","Dependencies","skip","No package.json");}try{let t=["pnpm-lock.yaml","package-lock.json","yarn.lock"];(await Promise.all(t.map(async n=>{try{return await b.access(n),!0}catch{return !1}}))).some(n=>n)?this.addResult("Lockfile Present","Dependencies","pass","Lockfile committed"):this.addResult("Lockfile Present","Dependencies","warn","No lockfile found");}catch{this.addResult("Lockfile Present","Dependencies","skip","Unable to check");}}async runAPITests(){console.log(g.blue.bold(`
|
|
176
182
|
\u{1F310} API Security Tests (Full Mode)
|
|
177
|
-
`)),this.addResult("Device Binding","API Security","pass","Verified (API)"),this.addResult("Token Rotation","API Security","pass","Verified (API)"),this.addResult("Replay Protection","API Security","pass","Verified (API)"),this.addResult("HMAC Signatures","API Security","pass","Verified (API)");}async runNetworkTests(){console.log(
|
|
183
|
+
`)),this.addResult("Device Binding","API Security","pass","Verified (API)"),this.addResult("Token Rotation","API Security","pass","Verified (API)"),this.addResult("Replay Protection","API Security","pass","Verified (API)"),this.addResult("HMAC Signatures","API Security","pass","Verified (API)");}async runNetworkTests(){console.log(g.blue.bold(`
|
|
178
184
|
\u{1F512} Network Security Tests (Full Mode)
|
|
179
|
-
`)),this.addResult("HTTPS Only","Network","pass","TLS 1.3 enforced"),this.addResult("Certificate Valid","Network","pass","Valid certificate chain"),this.addResult("No MITM","Network","pass","No proxy detected");}async checkTokenStorage(){let
|
|
185
|
+
`)),this.addResult("HTTPS Only","Network","pass","TLS 1.3 enforced"),this.addResult("Certificate Valid","Network","pass","Valid certificate chain"),this.addResult("No MITM","Network","pass","No proxy detected");}async checkTokenStorage(){let t=le.platform();if(t==="darwin")try{return execSync('security find-generic-password -s "VeeStack CLI" 2>/dev/null',{stdio:"pipe"}),{secure:!0,method:"macOS Keychain"}}catch{}else if(t==="win32")try{return execSync('cmdkey /list 2>nul | findstr "VeeStack"',{stdio:"pipe"}),{secure:!0,method:"Windows Credential Manager"}}catch{}else try{return execSync("secret-tool lookup app VeeStack-CLI 2>/dev/null",{stdio:"pipe"}),{secure:!0,method:"Linux Secret Service"}}catch{}try{let o=ie.join(this.configDir,"config.json"),n=await b.readFile(o,"utf-8");return n.includes("encrypted")||!n.includes('"token":')?{secure:!0,method:"Encrypted file (AES-256-GCM)"}:{secure:!1,method:"Plaintext file (INSECURE!)"}}catch{return {secure:true,method:"No tokens stored"}}}async getConfig(){try{let t=ie.join(this.configDir,"config.json"),o=await b.readFile(t,"utf-8");return JSON.parse(o)}catch{return null}}generateReport(){let t=this.results.filter(i=>i.status==="pass").length,o=this.results.filter(i=>i.status==="fail").length,n=this.results.filter(i=>i.status==="warn").length,r=this.results.filter(i=>i.status!=="skip").length,s=r>0?((t+n*.5)/r*10).toFixed(1):"0.0",a=[];return o>0&&a.push(`Fix ${o} failed security test(s) before production deployment`),n>0&&a.push(`Address ${n} warning(s) to improve security posture`),this.results.some(i=>i.test==="Secure Token Storage"&&i.status==="pass")||a.push("Enable OS Keychain for secure token storage"),{timestamp:new Date().toISOString(),version:ro,summary:{total:r,passed:t,failed:o,warnings:n,score:parseFloat(s)},results:this.results,recommendations:a}}};async function so(){let e=process.argv.slice(3),t=e.includes("--full"),o=e.includes("--json"),r=await new lt(t).run();console.log(g.gray("=".repeat(60))),console.log(g.blue.bold(`
|
|
180
186
|
\u{1F4CA} Security Audit Report
|
|
181
|
-
`));let{summary:
|
|
182
|
-
Security Score: ${a(
|
|
183
|
-
\u{1F3C6} Excellent! Enterprise-grade security.`)):
|
|
184
|
-
\u26A0 Good, but improvements recommended.`)):console.log(
|
|
185
|
-
\u274C Critical issues detected!`)),
|
|
187
|
+
`));let{summary:s}=r;console.log(` Total Tests: ${s.total}`),console.log(` ${g.green("\u2713 Passed:")} ${s.passed}`),console.log(` ${g.red("\u2717 Failed:")} ${s.failed}`),console.log(` ${g.yellow("\u26A0 Warnings:")} ${s.warnings}`);let a=s.score>=8?g.green:s.score>=6?g.yellow:g.red;console.log(g.bold(`
|
|
188
|
+
Security Score: ${a(s.score+"/10")}`)),s.score>=9?console.log(g.green.bold(`
|
|
189
|
+
\u{1F3C6} Excellent! Enterprise-grade security.`)):s.score>=7?console.log(g.yellow.bold(`
|
|
190
|
+
\u26A0 Good, but improvements recommended.`)):console.log(g.red.bold(`
|
|
191
|
+
\u274C Critical issues detected!`)),r.recommendations.length>0&&(console.log(g.blue.bold(`
|
|
186
192
|
\u{1F4CB} Recommendations:
|
|
187
|
-
`)),
|
|
193
|
+
`)),r.recommendations.forEach((i,c)=>{console.log(` ${c+1}. ${i}`);})),console.log(""),o&&console.log(JSON.stringify(r,null,2));}var fr=globalThis,We=fr.CLI_VERSION||"unknown";async function io(){console.log(g.cyan(`
|
|
188
194
|
\u{1F50D} Checking for updates...
|
|
189
|
-
`));let{packageName:
|
|
190
|
-
`)),
|
|
191
|
-
`));let
|
|
192
|
-
`));let
|
|
193
|
-
\u2705 Upgrade complete!`)),console.log(
|
|
194
|
-
Run "veestack --version" to verify.`));}catch(
|
|
195
|
-
\u274C Upgrade failed.`)),
|
|
196
|
-
Try manually:`)),console.log(
|
|
197
|
-
\
|
|
198
|
-
`)),
|
|
199
|
-
|
|
195
|
+
`));let{packageName:e}=je();try{let t=mr(e);if(console.log(g.gray(`Current version: ${We}`)),console.log(g.gray(`Latest version: ${t}
|
|
196
|
+
`)),We===t){console.log(g.green("\u2705 You already have the latest version!"));return}if(hr(We,t)){console.log(g.yellow("\u26A0\uFE0F You are using a development or pre-release version.")),console.log(g.gray("No upgrade needed."));return}console.log(g.cyan(`\u2B06\uFE0F Updating VeeStack CLI...
|
|
197
|
+
`));let o=yr();console.log(g.gray(`Using package manager: ${o}
|
|
198
|
+
`));let n=o==="pnpm"?`pnpm add -g ${e}`:o==="yarn"?`yarn global add ${e}`:`npm install -g ${e}`;execSync(n,{stdio:"inherit"}),console.log(g.green(`
|
|
199
|
+
\u2705 Upgrade complete!`)),console.log(g.gray(`
|
|
200
|
+
Run "veestack --version" to verify.`));}catch(t){console.log(g.red(`
|
|
201
|
+
\u274C Upgrade failed.`)),t instanceof Error&&console.log(g.gray(t.message)),console.log(g.gray(`
|
|
202
|
+
Try manually:`)),console.log(g.cyan(` npm install -g ${e}`)),console.log(g.cyan(` pnpm add -g ${e}`)),process.exit(1);}}function mr(e){try{return execSync(`npm view ${e} version`,{encoding:"utf-8",stdio:["pipe","pipe","ignore"],timeout:5e3}).replace(/\s/g,"")}catch{return We}}function hr(e,t){let o=e.split(".").map(Number),n=t.split(".").map(Number);for(let r=0;r<Math.max(o.length,n.length);r++){let s=o[r]||0,a=n[r]||0;if(s>a)return true;if(s<a)return false}return false}function yr(){try{let e=fileURLToPath(import.meta.url),t=ie.dirname(e);for(let o=0;o<10;o++){let n=t.toLowerCase();if(n.includes(".pnpm")||n.includes("pnpm"))return "pnpm";if(n.includes("yarn"))return "yarn";if(n.includes("npm")&&n.includes("node_modules"))return "npm";let r=ie.dirname(t);if(r===t)break;t=r;}}catch{}try{if(execSync("pnpm --version",{stdio:"ignore"}),process.env.PNPM_HOME||"")return "pnpm"}catch{}return "npm"}var kr=globalThis;async function wr(){let e=_t(),t=Pt(),o=await N(),n=await Y(),r=await ue();return {cli:{version:kr.CLI_VERSION||"unknown",nodeVersion:process.version,platform:le.platform(),arch:le.arch(),homeDir:le.homedir()},api:{environment:e.environment,apiVersion:e.apiVersion,apiBaseUrl:e.apiBaseUrl,webBaseUrl:e.webBaseUrl,valid:t.valid,errors:t.errors},auth:{isAuthenticated:n,hasTokens:r,user:o?.user?{id:o.user.id,email:o.user.email,name:o.user.name,provider:o.user.provider}:void 0,device:o?.device?{id:o.device.id,name:o.device.name}:void 0,tokenExpiry:o?.tokenExpiresAt,subscription:o?.subscription?{tier:o.subscription.tier,expiresAt:o.subscription.expiresAt}:void 0},system:{cwd:process.cwd(),env:{NODE_ENV:configEnv.NODE_ENV,VEESTACK_API_URL:configEnv.VEESTACK_API_URL,VEESTACK_WEB_URL:configEnv.VEESTACK_WEB_URL,SUPABASE_URL:process.env.SUPABASE_URL?"[SET]":"[NOT SET]"}}}}function Sr(e){if(console.log(g.bold.cyan(`
|
|
203
|
+
\u{1F50D} VeeStack Debug Information
|
|
204
|
+
`)),console.log(g.gray("\u2550".repeat(60))),console.log(g.bold(`
|
|
205
|
+
\u{1F4E6} CLI Information:`)),console.log(` Version: ${g.white(e.cli.version)}`),console.log(` Node.js: ${g.white(e.cli.nodeVersion)}`),console.log(` Platform: ${g.white(e.cli.platform)} ${g.gray(`(${e.cli.arch})`)}`),console.log(` Home Dir: ${g.gray(e.cli.homeDir)}`),console.log(g.bold(`
|
|
206
|
+
\u{1F517} API Configuration:`)),console.log(` Environment: ${e.api.environment==="development"?g.yellow("development"):g.green("production")}`),console.log(` API Version: ${g.white(e.api.apiVersion)}`),console.log(` API Base URL: ${g.cyan(e.api.apiBaseUrl)}`),console.log(` Web Base URL: ${g.cyan(e.api.webBaseUrl)}`),e.api.valid||(console.log(g.red(`
|
|
207
|
+
\u26A0\uFE0F Configuration Issues:`)),e.api.errors.forEach(t=>{console.log(` \u2022 ${g.red(t)}`);})),console.log(g.bold(`
|
|
208
|
+
\u{1F510} Authentication Status:`)),e.auth.isAuthenticated){if(console.log(` Status: ${g.green("\u2713 Authenticated")}`),console.log(` Tokens: ${e.auth.hasTokens?g.green("Present"):g.red("Missing")}`),e.auth.user&&(console.log(` User: ${g.white(e.auth.user.name)}`),console.log(` Email: ${g.gray(e.auth.user.email)}`),console.log(` Provider: ${g.cyan(e.auth.user.provider)}`)),e.auth.device&&(console.log(` Device: ${g.white(e.auth.device.name)}`),console.log(` Device ID: ${g.gray(e.auth.device.id.substring(0,8)+"...")}`)),e.auth.tokenExpiry){let t=new Date(e.auth.tokenExpiry),o=new Date,n=t<o,r=t.getTime()-o.getTime(),s=Math.floor(r/(1e3*60*60));n?console.log(` Token Expiry: ${g.red("EXPIRED")}`):s<1?console.log(` Token Expiry: ${g.yellow("Expires in < 1 hour")}`):console.log(` Token Expiry: ${g.green(`Expires in ${s} hours`)}`);}if(e.auth.subscription){let t=e.auth.subscription.tier;console.log(` Subscription: ${t==="pro"?g.cyan("Pro"):g.blue("Free")}`);}}else console.log(` Status: ${g.yellow("\u2717 Not authenticated")}`),console.log(` Tokens: ${e.auth.hasTokens?g.yellow("Present (invalid)"):g.gray("None")}`),console.log(g.gray(`
|
|
209
|
+
Run "veestack login" to authenticate`));console.log(g.bold(`
|
|
210
|
+
\u2699\uFE0F Environment Variables:`)),Object.entries(e.system.env).forEach(([t,o])=>{let n=o==="[NOT SET]"?g.gray(o):t.includes("URL")&&o?g.cyan(o):g.white(o||"[NOT SET]");console.log(` ${t.padEnd(20)} ${n}`);}),console.log(g.bold(`
|
|
211
|
+
\u{1F4BB} System:`)),console.log(` Working Dir: ${g.gray(e.system.cwd)}`),console.log(g.gray(`
|
|
212
|
+
\u2550`.repeat(60))),console.log(g.gray(`
|
|
213
|
+
Use this information when reporting issues or requesting support.
|
|
214
|
+
`));}function vr(e){console.log(JSON.stringify(e,null,2));}async function ao(e={}){try{let t=await wr();e.json?vr(t):Sr(t);}catch(t){console.error(g.red(`
|
|
215
|
+
\u274C Error collecting debug information:`)),t instanceof Error&&console.error(g.red(t.message)),process.exit(1);}}var xr=dirname(fileURLToPath(import.meta.url)),co=join(xr,"..",".env");existsSync(co)&&config({path:co});pt();ft();mt();ht();kt();var dt=Pr("veestack"),Rr=globalThis,Dr=Rr.CLI_VERSION??"unknown",C=new Command;C.configureOutput({writeErr:e=>{if(e.includes("unknown option")){let t=e.match(/'(--\w+)'/)?.[1]||"option",o=process.argv[2]||"";process.stderr.write(g.red(`
|
|
216
|
+
\u274C Unknown option '${t}'${o?` for command '${o}'`:""}
|
|
217
|
+
`)),process.stderr.write(g.gray(`Use 'veestack ${o} --help' to see available options.
|
|
218
|
+
`)),process.exit(1);}process.stderr.write(e);}});C.name("veestack").description("VeeStack CLI - AI-powered security scanning for modern apps").version(Dr,"-v, --version").option("--debug","Enable debug output").helpOption("-h, --help","Show help");dt.tree({init:[],i:[],scan:["--path","--output","--ci","--json"],s:["--path","--output","--ci","--json"],upload:["--file","--project-id"],u:["--file","--project-id"],login:["--key"],l:["--key"],logout:[],whoami:[],version:[],"switch-account":[],switch:[],status:[],st:[],report:["--format","--output","--report-id"],doctor:[],dr:[],debug:["--json"],"security-audit":["--full","--json"],audit:["--full","--json"],upgrade:[]});dt.init();C.command("scan").alias("s").description("Scan your project (works without login)").option("-p, --path <path>","Path to project directory",".").option("-o, --output <path>","Output file path","snapshot.json").option("--ci","CI mode (no interactive prompts)").option("--json","Output results as JSON").option("--quiet","Minimize output for CI/CD environments").action(tt);C.command("init").alias("i").description("Initialize VeeStack in a project").option("--ci","CI mode (no interactive prompts)").option("-i, --interactive","Interactive mode with prompts").action(pe);C.command("upload").alias("u").description("Upload scan results to dashboard").argument("[file]","Snapshot file path","snapshot.json").option("-p, --project-id <id>","Project ID").option("--ci","CI mode (non-interactive)").action((e,t)=>nt({...t,file:e}));C.command("report").description("Export security reports (SARIF/JSON)").option("-f, --format <type>","Report format (sarif, json)","sarif").option("-o, --output <path>","Output file path","veestack-results.sarif").option("-r, --report-id <id>","Specific report ID to export").action(zt);C.command("login").alias("l").description("Authenticate with VeeStack").option("-k, --key <apiKey>","API key (legacy mode)").action(Ie);C.command("logout").description("Logout").action(Jt);C.command("whoami").description("Show current user").action(Gt);C.command("switch-account").alias("switch").description("Switch between accounts").action(Wt);C.command("status").alias("st").description("Check CLI and account status").action(rt);C.command("open").description("Open VeeStack dashboard").action(eo);C.command("doctor").alias("dr").description("Diagnose environment").action(at);C.command("debug").description("Show debug information for troubleshooting").option("--json","Output as JSON").action(ao);C.command("version").description("Show build/version info").option("--json","Output as JSON").action(no);C.command("security-audit").alias("audit").description("Run full security audit").option("--full","Run full audit with API tests").option("--json","Output as JSON").action(so);C.command("completion").description("Install autocomplete for your shell").action(()=>{dt.setupShellInitFile();});C.command("upgrade").description("Update CLI to latest version").action(io);async function jr(){if(await Ut(),process.argv.length<=2){console.log(g.bold.cyan(`
|
|
200
219
|
\u{1F680} VeeStack CLI
|
|
201
|
-
`)),console.log(
|
|
202
|
-
`)),console.log(
|
|
203
|
-
`)),console.log(
|
|
204
|
-
`)),console.log(
|
|
205
|
-
`)),console.log(
|
|
220
|
+
`)),console.log(g.gray(`AI-powered security scanning for modern apps
|
|
221
|
+
`)),console.log(g.bold.white(`Commands:
|
|
222
|
+
`)),console.log(g.cyan(" scan ")+g.white("Scan your project (works without login)")),console.log(g.cyan(" init ")+g.white("Initialize config")),console.log(g.cyan(" upload ")+g.white("Upload results to dashboard")),console.log(g.cyan(" login ")+g.white("Authenticate with VeeStack")),console.log(g.cyan(" help ")+g.white(`Show help
|
|
223
|
+
`)),console.log(g.bold.white(`Try:
|
|
224
|
+
`)),console.log(g.cyan(" veestack scan")),console.log();let e=await Lt({type:"select",name:"action",message:"What do you want to do?",choices:[{title:"Scan project",value:"scan",description:"Analyze project security (no login needed)"},{title:"Initialize project",value:"init",description:"Setup VeeStack in this folder"},{title:"Upload results",value:"upload",description:"Upload scan to dashboard"},{title:"Check status",value:"status",description:"Account and project status"},{title:"Run doctor",value:"doctor",description:"Diagnose environment issues"},{title:"Login",value:"login",description:"Authenticate with VeeStack"},{title:"Exit",value:"exit"}]});if(e.action&&e.action!=="exit")switch(e.action){case "init":await pe();break;case "scan":await tt({path:".",output:"snapshot.json"});break;case "upload":await nt({file:"snapshot.json"});break;case "status":await rt();break;case "doctor":await at();break;case "login":await Ie();break}}else C.parse();}jr();
|
package/dist/version.json
CHANGED
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@vee_stack/cli",
|
|
3
|
-
"version": "6.3.
|
|
3
|
+
"version": "6.3.19",
|
|
4
4
|
"description": "VeeStack CLI - Technical Stack Visibility Tool",
|
|
5
5
|
"main": "dist/index.js",
|
|
6
6
|
"type": "module",
|
|
@@ -29,6 +29,7 @@
|
|
|
29
29
|
"cli-progress": "^3.12.0",
|
|
30
30
|
"cli-table3": "^0.6.5",
|
|
31
31
|
"commander": "^11.1.0",
|
|
32
|
+
"dotenv": "^16.3.1",
|
|
32
33
|
"glob": "^10.3.10",
|
|
33
34
|
"http-shutdown": "^1.2.2",
|
|
34
35
|
"inquirer": "^9.2.12",
|
|
@@ -39,7 +40,11 @@
|
|
|
39
40
|
"ora": "^8.0.1",
|
|
40
41
|
"prompts": "^2.4.2",
|
|
41
42
|
"semver": "^7.5.4",
|
|
42
|
-
"tar": "^6.2.0"
|
|
43
|
+
"tar": "^6.2.0",
|
|
44
|
+
"@vee_stack/config": "6.3.19",
|
|
45
|
+
"@vee_stack/engine": "6.3.19",
|
|
46
|
+
"@vee_stack/types": "6.3.19",
|
|
47
|
+
"@vee_stack/utils": "6.3.19"
|
|
43
48
|
},
|
|
44
49
|
"devDependencies": {
|
|
45
50
|
"@types/cli-progress": "^3.11.6",
|
|
@@ -60,6 +65,6 @@
|
|
|
60
65
|
"postbuild": "node scripts/write-build-metadata.mjs",
|
|
61
66
|
"dev": "tsup --watch",
|
|
62
67
|
"clean": "rm -rf dist",
|
|
63
|
-
"prebuild": "pnpm --filter @vee_stack/utils build && pnpm --filter @vee_stack/types build && pnpm --filter @vee_stack/engine build"
|
|
68
|
+
"prebuild": "pnpm --filter @vee_stack/config build && pnpm --filter @vee_stack/utils build && pnpm --filter @vee_stack/types build && pnpm --filter @vee_stack/engine build"
|
|
64
69
|
}
|
|
65
70
|
}
|