@vibecheckai/cli 2.5.1

package/dist/scan/structural-verifier.js

@@ -0,0 +1,112 @@
+"use strict";
+/**
+ * Structural Verification (Level 2)
+ *
+ * AST + reachability + callsite context analysis
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.StructuralVerifier = void 0;
+const fs_1 = require("fs");
+class StructuralVerifier {
+    /**
+     * Verify finding using AST and structural analysis
+     */
+    async verify(finding, projectPath) {
+        try {
+            // Try to use TypeScript compiler API if available
+            if (this.isTypeScriptAvailable()) {
+                return await this.verifyWithTypeScript(finding, projectPath);
+            }
+            // Fallback to basic structural analysis
+            return await this.verifyBasic(finding, projectPath);
+        }
+        catch (error) {
+            // If structural verification fails, return null (fallback to lexical)
+            return null;
+        }
+    }
+    async verifyWithTypeScript(finding, projectPath) {
+        // TODO: Implement full TypeScript AST analysis
+        // This would:
+        // 1. Parse file with TypeScript compiler API
+        // 2. Find the specific node at file:line
+        // 3. Analyze reachability (is it called? is it exported?)
+        // 4. Analyze context (is it in error handler? is it in test?)
+        // 5. Calculate evidence strength based on context
+        // For now, return basic structural evidence
+        return {
+            level: 'structural',
+            strength: 0.7,
+            data: {
+                method: 'ast_analysis',
+                reachable: true, // TODO: Actually check
+                context: 'production', // TODO: Actually determine
+            },
+        };
+    }
+    async verifyBasic(finding, projectPath) {
+        try {
+            const content = (0, fs_1.readFileSync)(finding.file, 'utf-8');
+            const lines = content.split('\n');
+            const targetLine = lines[finding.line - 1];
+            // Basic structural checks
+            const isExported = this.isExported(content, finding.line);
+            const isInErrorHandler = this.isInErrorHandler(content, finding.line);
+            const isInTest = finding.file.includes('test') || finding.file.includes('spec');
+            const isReachable = !this.isDeadCode(content, finding.line);
+            // Calculate strength based on context
+            let strength = 0.6; // Base strength
+            if (isExported && !isInTest) {
+                strength += 0.1; // Exported code is more important
+            }
+            if (isInErrorHandler && finding.type === 'fake_success') {
+                strength += 0.2; // Fake success in error handler is worse
+            }
+            if (!isReachable) {
+                strength -= 0.2; // Dead code is less critical
+            }
+            return {
+                level: 'structural',
+                strength: Math.max(0.3, Math.min(1.0, strength)),
+                data: {
+                    method: 'basic_analysis',
+                    exported: isExported,
+                    inErrorHandler: isInErrorHandler,
+                    inTest: isInTest,
+                    reachable: isReachable,
+                },
+            };
+        }
+        catch {
+            return null;
+        }
+    }
+    isExported(content, lineNum) {
+        const lines = content.split('\n');
+        const beforeContext = lines.slice(Math.max(0, lineNum - 10), lineNum).join('\n');
+        return /\bexport\b/.test(beforeContext);
+    }
+    isInErrorHandler(content, lineNum) {
+        const lines = content.split('\n');
+        const beforeContext = lines.slice(Math.max(0, lineNum - 20), lineNum).join('\n');
+        return /catch|onError|error|exception/i.test(beforeContext);
+    }
+    isDeadCode(content, lineNum) {
+        const lines = content.split('\n');
+        const afterContext = lines.slice(lineNum, Math.min(lines.length, lineNum + 20)).join('\n');
+        // Check if there's a return or throw before this line that would make it unreachable
+        const beforeContext = lines.slice(Math.max(0, lineNum - 20), lineNum).join('\n');
+        return /return\s*;|throw\s+/.test(beforeContext) && !/if\s*\(/.test(beforeContext);
+    }
+    isTypeScriptAvailable() {
+        try {
+            require.resolve('typescript');
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+}
+exports.StructuralVerifier = StructuralVerifier;
+//# sourceMappingURL=structural-verifier.js.map

package/dist/scan/structural-verifier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"structural-verifier.js","sourceRoot":"","sources":["../../src/scan/structural-verifier.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;;AAEH,2BAAkC;AAIlC,MAAa,kBAAkB;IAC7B;;OAEG;IACH,KAAK,CAAC,MAAM,CAAC,OAAuB,EAAE,WAAmB;QACvD,IAAI,CAAC;YACH,kDAAkD;YAClD,IAAI,IAAI,CAAC,qBAAqB,EAAE,EAAE,CAAC;gBACjC,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;YAC/D,CAAC;YAED,wCAAwC;YACxC,OAAO,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QACtD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,sEAAsE;YACtE,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,oBAAoB,CAAC,OAAuB,EAAE,WAAmB;QAC7E,+CAA+C;QAC/C,cAAc;QACd,6CAA6C;QAC7C,yCAAyC;QACzC,0DAA0D;QAC1D,8DAA8D;QAC9D,kDAAkD;QAElD,4CAA4C;QAC5C,OAAO;YACL,KAAK,EAAE,YAAY;YACnB,QAAQ,EAAE,GAAG;YACb,IAAI,EAAE;gBACJ,MAAM,EAAE,cAAc;gBACtB,SAAS,EAAE,IAAI,EAAE,uBAAuB;gBACxC,OAAO,EAAE,YAAY,EAAE,2BAA2B;aACnD;SACF,CAAC;IACJ,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,OAAuB,EAAE,WAAmB;QACpE,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAA,iBAAY,EAAC,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;YACpD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAClC,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC;YAE3C,0BAA0B;YAC1B,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;YAC1D,MAAM,gBAAgB,GAAG,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;YACtE,MAAM,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAChF,MAAM,WAAW,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;YAE5D,sCAAsC;YACtC,IAAI,QAAQ,GAAG,GAAG,CAAC,CAAC,gBAAgB;YAEpC,IAAI,UAAU,IAAI,CAAC,QAAQ,EAAE,CAAC;gBAC5B,QAAQ,IAAI,GAAG,CAAC,CAAC,kCAAkC;YACrD,CAAC;YAED,IAAI,gBAAgB,IAAI,OAAO,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;gBACxD,QAAQ,IAAI,GAAG,CAAC,CAAC,yCAAyC;YAC5D,CAAC;YAED,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,QAAQ,IAAI,GAAG,CAAC,CAAC,6BAA6B;YAChD,CAAC;YAED,OAAO;gBACL,KAAK,EAAE,YAAY;gBACnB,QAAQ,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;gBAChD,IAAI,EAAE;oBACJ,MAAM,EAAE,gBAAgB;oBACxB,QAAQ,EAAE,UAAU;oBACpB,cAAc,EAAE,gBAAgB;oBAChC,MAAM,EAAE,QAAQ;oBAChB,SAAS,EAAE,WAAW;iBACvB;aACF,CAAC;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAEO,UAAU,CAAC,OAAe,EAAE,OAAe;QACjD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,MAAM,aAAa,GAAG,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,GAAG,EAAE,CAAC,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACjF,OAAO,YAAY,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAC1C,CAAC;IAEO,gBAAgB,CAAC,OAAe,EAAE,OAAe;QACvD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,MAAM,aAAa,GAAG,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,GAAG,EAAE,CAAC,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACjF,OAAO,gCAAgC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAC9D,CAAC;IAEO,UAAU,CAAC,OAAe,EAAE,OAAe;QACjD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,MAAM,YAAY,GAAG,KAAK,CAAC,KAAK,CAAC,OAAO,EAAE,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,OAAO,GAAG,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC3F,qFAAqF;QACrF,MAAM,aAAa,GAAG,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,GAAG,EAAE,CAAC,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACjF,OAAO,qBAAqB,CAAC,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IACrF,CAAC;IAEO,qBAAqB;QAC3B,IAAI,CAAC;YACH,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC;YAC9B,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;CACF;AA/GD,gDA+GC"}

package/dist/scan/verification-engine.d.ts

@@ -0,0 +1,47 @@
+/**
+ * Verification Engine with 3-Level Evidence Ladder
+ *
+ * Level 1: Lexical (fast regex/keywords) → usually WARN
+ * Level 2: Structural (AST + reachability + callsite context) → can FAIL
+ * Level 3: Runtime witness (probes / Playwright trace / HAR) → definitive FAIL
+ */
+import { RealityFinding } from './reality-sniff';
+export type EvidenceLevel = 'lexical' | 'structural' | 'runtime';
+export type Verdict = 'PASS' | 'FAIL' | 'WARN';
+export interface Evidence {
+    level: EvidenceLevel;
+    strength: number;
+    data: any;
+}
+export interface VerifiedFinding {
+    finding: RealityFinding;
+    evidence: Evidence[];
+    verdict: Verdict;
+    confidence: number;
+}
+export declare class VerificationEngine {
+    /**
+     * Verify finding with evidence ladder
+     */
+    verify(finding: RealityFinding, options?: {
+        enableStructural?: boolean;
+        enableRuntime?: boolean;
+    }): Promise<VerifiedFinding>;
+    /**
+     * Level 1: Lexical verification (fast regex/keywords)
+     */
+    private lexicalVerification;
+    /**
+     * Level 2: Structural verification (AST + reachability)
+     */
+    private structuralVerification;
+    /**
+     * Level 3: Runtime verification (probes / Playwright / HAR)
+     */
+    private runtimeVerification;
+    /**
+     * Calculate verdict based on evidence
+     */
+    private calculateVerdict;
+}
+//# sourceMappingURL=verification-engine.d.ts.map

package/dist/scan/verification-engine.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verification-engine.d.ts","sourceRoot":"","sources":["../../src/scan/verification-engine.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAEjD,MAAM,MAAM,aAAa,GAAG,SAAS,GAAG,YAAY,GAAG,SAAS,CAAC;AACjE,MAAM,MAAM,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC;AAE/C,MAAM,WAAW,QAAQ;IACvB,KAAK,EAAE,aAAa,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,GAAG,CAAC;CACX;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,cAAc,CAAC;IACxB,QAAQ,EAAE,QAAQ,EAAE,CAAC;IACrB,OAAO,EAAE,OAAO,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,qBAAa,kBAAkB;IAC7B;;OAEG;IACG,MAAM,CAAC,OAAO,EAAE,cAAc,EAAE,OAAO,GAAE;QAC7C,gBAAgB,CAAC,EAAE,OAAO,CAAC;QAC3B,aAAa,CAAC,EAAE,OAAO,CAAC;KACpB,GAAG,OAAO,CAAC,eAAe,CAAC;IAkCjC;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAY3B;;OAEG;YACW,sBAAsB;IAQpC;;OAEG;YACW,mBAAmB;IAMjC;;OAEG;IACH,OAAO,CAAC,gBAAgB;CAgCzB"}

package/dist/scan/verification-engine.js

@@ -0,0 +1,141 @@
+"use strict";
+/**
+ * Verification Engine with 3-Level Evidence Ladder
+ *
+ * Level 1: Lexical (fast regex/keywords) → usually WARN
+ * Level 2: Structural (AST + reachability + callsite context) → can FAIL
+ * Level 3: Runtime witness (probes / Playwright trace / HAR) → definitive FAIL
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.VerificationEngine = void 0;
+class VerificationEngine {
+    /**
+     * Verify finding with evidence ladder
+     */
+    async verify(finding, options = {}) {
+        const evidence = [];
+        // Level 1: Lexical (always done)
+        const lexicalEvidence = this.lexicalVerification(finding);
+        evidence.push(lexicalEvidence);
+        // Level 2: Structural (if enabled)
+        if (options.enableStructural) {
+            const structuralEvidence = await this.structuralVerification(finding);
+            if (structuralEvidence) {
+                evidence.push(structuralEvidence);
+            }
+        }
+        // Level 3: Runtime (if enabled)
+        if (options.enableRuntime) {
+            const runtimeEvidence = await this.runtimeVerification(finding);
+            if (runtimeEvidence) {
+                evidence.push(runtimeEvidence);
+            }
+        }
+        // Determine verdict and confidence
+        const { verdict, confidence } = this.calculateVerdict(evidence, finding);
+        return {
+            finding,
+            evidence,
+            verdict,
+            confidence,
+        };
+    }
+    /**
+     * Level 1: Lexical verification (fast regex/keywords)
+     */
+    lexicalVerification(finding) {
+        // Already detected by lexical scan, so this is confirmation
+        return {
+            level: 'lexical',
+            strength: 0.6, // Moderate confidence
+            data: {
+                pattern: finding.evidence.pattern,
+                snippet: finding.evidence.snippet,
+            },
+        };
+    }
+    /**
+     * Level 2: Structural verification (AST + reachability)
+     */
+    async structuralVerification(finding) {
+        const { StructuralVerifier } = await Promise.resolve().then(() => __importStar(require('./structural-verifier')));
+        const verifier = new StructuralVerifier();
+        // Extract project path from finding file
+        const projectPath = finding.file.split('/').slice(0, -1).join('/') || '.';
+        return await verifier.verify(finding, projectPath);
+    }
+    /**
+     * Level 3: Runtime verification (probes / Playwright / HAR)
+     */
+    async runtimeVerification(finding) {
+        // TODO: Implement runtime probes
+        // For now, return null (not implemented)
+        return null;
+    }
+    /**
+     * Calculate verdict based on evidence
+     */
+    calculateVerdict(evidence, finding) {
+        if (evidence.length === 0) {
+            return { verdict: 'WARN', confidence: 0.5 };
+        }
+        // Check for runtime evidence (definitive)
+        const runtimeEvidence = evidence.find(e => e.level === 'runtime');
+        if (runtimeEvidence && runtimeEvidence.strength > 0.8) {
+            return { verdict: 'FAIL', confidence: runtimeEvidence.strength };
+        }
+        // Check for structural evidence
+        const structuralEvidence = evidence.find(e => e.level === 'structural');
+        if (structuralEvidence && structuralEvidence.strength > 0.7) {
+            // Can FAIL if severity is high/critical
+            if (finding.severity === 'critical' || finding.severity === 'high') {
+                return { verdict: 'FAIL', confidence: structuralEvidence.strength };
+            }
+            return { verdict: 'WARN', confidence: structuralEvidence.strength };
+        }
+        // Lexical only → WARN (unless critical severity)
+        const lexicalEvidence = evidence.find(e => e.level === 'lexical');
+        if (lexicalEvidence) {
+            if (finding.severity === 'critical' && lexicalEvidence.strength > 0.7) {
+                return { verdict: 'FAIL', confidence: lexicalEvidence.strength };
+            }
+            return { verdict: 'WARN', confidence: lexicalEvidence.strength };
+        }
+        return { verdict: 'WARN', confidence: 0.5 };
+    }
+}
+exports.VerificationEngine = VerificationEngine;
+//# sourceMappingURL=verification-engine.js.map

package/dist/scan/verification-engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verification-engine.js","sourceRoot":"","sources":["../../src/scan/verification-engine.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoBH,MAAa,kBAAkB;IAC7B;;OAEG;IACH,KAAK,CAAC,MAAM,CAAC,OAAuB,EAAE,UAGlC,EAAE;QACJ,MAAM,QAAQ,GAAe,EAAE,CAAC;QAEhC,iCAAiC;QACjC,MAAM,eAAe,GAAG,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAC1D,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAE/B,mCAAmC;QACnC,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;YAC7B,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;YACtE,IAAI,kBAAkB,EAAE,CAAC;gBACvB,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;YACpC,CAAC;QACH,CAAC;QAED,gCAAgC;QAChC,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;YAC1B,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;YAChE,IAAI,eAAe,EAAE,CAAC;gBACpB,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YACjC,CAAC;QACH,CAAC;QAED,mCAAmC;QACnC,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC,gBAAgB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAEzE,OAAO;YACL,OAAO;YACP,QAAQ;YACR,OAAO;YACP,UAAU;SACX,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,mBAAmB,CAAC,OAAuB;QACjD,4DAA4D;QAC5D,OAAO;YACL,KAAK,EAAE,SAAS;YAChB,QAAQ,EAAE,GAAG,EAAE,sBAAsB;YACrC,IAAI,EAAE;gBACJ,OAAO,EAAE,OAAO,CAAC,QAAQ,CAAC,OAAO;gBACjC,OAAO,EAAE,OAAO,CAAC,QAAQ,CAAC,OAAO;aAClC;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,sBAAsB,CAAC,OAAuB;QAC1D,MAAM,EAAE,kBAAkB,EAAE,GAAG,wDAAa,uBAAuB,GAAC,CAAC;QACrE,MAAM,QAAQ,GAAG,IAAI,kBAAkB,EAAE,CAAC;QAC1C,yCAAyC;QACzC,MAAM,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC;QAC1E,OAAO,MAAM,QAAQ,CAAC,MAAM,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IACrD,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,mBAAmB,CAAC,OAAuB;QACvD,iCAAiC;QACjC,yCAAyC;QACzC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACK,gBAAgB,CAAC,QAAoB,EAAE,OAAuB;QACpE,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,GAAG,EAAE,CAAC;QAC9C,CAAC;QAED,0CAA0C;QAC1C,MAAM,eAAe,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC;QAClE,IAAI,eAAe,IAAI,eAAe,CAAC,QAAQ,GAAG,GAAG,EAAE,CAAC;YACtD,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,eAAe,CAAC,QAAQ,EAAE,CAAC;QACnE,CAAC;QAED,gCAAgC;QAChC,MAAM,kBAAkB,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,YAAY,CAAC,CAAC;QACxE,IAAI,kBAAkB,IAAI,kBAAkB,CAAC,QAAQ,GAAG,GAAG,EAAE,CAAC;YAC5D,wCAAwC;YACxC,IAAI,OAAO,CAAC,QAAQ,KAAK,UAAU,IAAI,OAAO,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;gBACnE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,kBAAkB,CAAC,QAAQ,EAAE,CAAC;YACtE,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,kBAAkB,CAAC,QAAQ,EAAE,CAAC;QACtE,CAAC;QAED,iDAAiD;QACjD,MAAM,eAAe,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC;QAClE,IAAI,eAAe,EAAE,CAAC;YACpB,IAAI,OAAO,CAAC,QAAQ,KAAK,UAAU,IAAI,eAAe,CAAC,QAAQ,GAAG,GAAG,EAAE,CAAC;gBACtE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,eAAe,CAAC,QAAQ,EAAE,CAAC;YACnE,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,eAAe,CAAC,QAAQ,EAAE,CAAC;QACnE,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,GAAG,EAAE,CAAC;IAC9C,CAAC;CACF;AA/GD,gDA+GC"}

package/dist/scanner/baseline.d.ts

@@ -0,0 +1,52 @@
+/**
+ * Baseline support for suppressing known findings
+ */
+export interface BaselineFinding {
+    fingerprint: string;
+    category: string;
+    title: string;
+    file: string;
+    line: number;
+    suppressedAt: string;
+}
+export interface Baseline {
+    version: string;
+    createdAt: string;
+    findings: BaselineFinding[];
+}
+export interface Finding {
+    type?: string;
+    category?: string;
+    title: string;
+    file: string;
+    line: number;
+    match?: string;
+    snippet?: string;
+}
+export declare class BaselineManager {
+    /**
+     * Generate stable fingerprint for a finding
+     * fingerprint = sha256(category + title + file + line + snippetNormalized)
+     */
+    static generateFingerprint(finding: Finding): string;
+    /**
+     * Load baseline from file
+     */
+    static loadBaseline(path: string): Baseline | null;
+    /**
+     * Save baseline to file
+     */
+    static saveBaseline(path: string, findings: Finding[]): void;
+    /**
+     * Check if a finding is suppressed by baseline
+     */
+    static isSuppressed(finding: Finding, baseline: Baseline | null): boolean;
+    /**
+     * Filter findings by baseline
+     */
+    static filterFindings<T extends Finding>(findings: T[], baselinePath?: string): {
+        filtered: T[];
+        suppressed: number;
+    };
+}
+//# sourceMappingURL=baseline.d.ts.map

package/dist/scanner/baseline.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"baseline.d.ts","sourceRoot":"","sources":["../../src/scanner/baseline.ts"],"names":[],"mappings":"AAAA;;GAEG;AAKH,MAAM,WAAW,eAAe;IAC9B,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,QAAQ;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,eAAe,EAAE,CAAC;CAC7B;AAED,MAAM,WAAW,OAAO;IACtB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,qBAAa,eAAe;IAC1B;;;OAGG;IACH,MAAM,CAAC,mBAAmB,CAAC,OAAO,EAAE,OAAO,GAAG,MAAM;IAcpD;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,QAAQ,GAAG,IAAI;IAalD;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,IAAI;IAiB5D;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,GAAG,IAAI,GAAG,OAAO;IASzE;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,CAAC,SAAS,OAAO,EAAE,QAAQ,EAAE,CAAC,EAAE,EAAE,YAAY,CAAC,EAAE,MAAM,GAAG;QAAE,QAAQ,EAAE,CAAC,EAAE,CAAC;QAAC,UAAU,EAAE,MAAM,CAAA;KAAE;CAetH"}

package/dist/scanner/baseline.js

@@ -0,0 +1,85 @@
+"use strict";
+/**
+ * Baseline support for suppressing known findings
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.BaselineManager = void 0;
+const crypto_1 = require("crypto");
+const fs_1 = require("fs");
+class BaselineManager {
+    /**
+     * Generate stable fingerprint for a finding
+     * fingerprint = sha256(category + title + file + line + snippetNormalized)
+     */
+    static generateFingerprint(finding) {
+        const category = finding.category || finding.type || 'unknown';
+        const title = finding.title || '';
+        const file = finding.file || '';
+        const line = finding.line || 0;
+        // Normalize snippet by removing whitespace variations
+        let snippet = finding.snippet || finding.match || '';
+        snippet = snippet.replace(/\s+/g, ' ').trim();
+        const data = `${category}:${title}:${file}:${line}:${snippet}`;
+        return (0, crypto_1.createHash)('sha256').update(data).digest('hex');
+    }
+    /**
+     * Load baseline from file
+     */
+    static loadBaseline(path) {
+        if (!(0, fs_1.existsSync)(path)) {
+            return null;
+        }
+        try {
+            const content = (0, fs_1.readFileSync)(path, 'utf8');
+            return JSON.parse(content);
+        }
+        catch {
+            return null;
+        }
+    }
+    /**
+     * Save baseline to file
+     */
+    static saveBaseline(path, findings) {
+        const baseline = {
+            version: '1.0.0',
+            createdAt: new Date().toISOString(),
+            findings: findings.map(f => ({
+                fingerprint: this.generateFingerprint(f),
+                category: f.category || f.type || 'unknown',
+                title: f.title,
+                file: f.file,
+                line: f.line,
+                suppressedAt: new Date().toISOString(),
+            })),
+        };
+        (0, fs_1.writeFileSync)(path, JSON.stringify(baseline, null, 2), 'utf8');
+    }
+    /**
+     * Check if a finding is suppressed by baseline
+     */
+    static isSuppressed(finding, baseline) {
+        if (!baseline) {
+            return false;
+        }
+        const fingerprint = this.generateFingerprint(finding);
+        return baseline.findings.some(bf => bf.fingerprint === fingerprint);
+    }
+    /**
+     * Filter findings by baseline
+     */
+    static filterFindings(findings, baselinePath) {
+        if (!baselinePath) {
+            return { filtered: findings, suppressed: 0 };
+        }
+        const baseline = this.loadBaseline(baselinePath);
+        if (!baseline) {
+            return { filtered: findings, suppressed: 0 };
+        }
+        const filtered = findings.filter(f => !this.isSuppressed(f, baseline));
+        const suppressed = findings.length - filtered.length;
+        return { filtered, suppressed };
+    }
+}
+exports.BaselineManager = BaselineManager;
+//# sourceMappingURL=baseline.js.map

package/dist/scanner/baseline.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"baseline.js","sourceRoot":"","sources":["../../src/scanner/baseline.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAEH,mCAAoC;AACpC,2BAA6D;AA2B7D,MAAa,eAAe;IAC1B;;;OAGG;IACH,MAAM,CAAC,mBAAmB,CAAC,OAAgB;QACzC,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,IAAI,IAAI,SAAS,CAAC;QAC/D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;QAClC,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,IAAI,EAAE,CAAC;QAChC,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC;QAE/B,sDAAsD;QACtD,IAAI,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;QACrD,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;QAE9C,MAAM,IAAI,GAAG,GAAG,QAAQ,IAAI,KAAK,IAAI,IAAI,IAAI,IAAI,IAAI,OAAO,EAAE,CAAC;QAC/D,OAAO,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACzD,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,IAAY;QAC9B,IAAI,CAAC,IAAA,eAAU,EAAC,IAAI,CAAC,EAAE,CAAC;YACtB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAA,iBAAY,EAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YAC3C,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC7B,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,IAAY,EAAE,QAAmB;QACnD,MAAM,QAAQ,GAAa;YACzB,OAAO,EAAE,OAAO;YAChB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,QAAQ,EAAE,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBAC3B,WAAW,EAAE,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC;gBACxC,QAAQ,EAAE,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,IAAI,IAAI,SAAS;gBAC3C,KAAK,EAAE,CAAC,CAAC,KAAK;gBACd,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,YAAY,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACvC,CAAC,CAAC;SACJ,CAAC;QAEF,IAAA,kBAAa,EAAC,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;IACjE,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,OAAgB,EAAE,QAAyB;QAC7D,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,WAAW,GAAG,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;QACtD,OAAO,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,WAAW,KAAK,WAAW,CAAC,CAAC;IACtE,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,cAAc,CAAoB,QAAa,EAAE,YAAqB;QAC3E,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;QAC/C,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC;QACjD,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;QAC/C,CAAC;QAED,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,CAAC;QACvE,MAAM,UAAU,GAAG,QAAQ,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAC;QAErD,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC;IAClC,CAAC;CACF;AArFD,0CAqFC"}

package/dist/scanner/incremental.d.ts

@@ -0,0 +1,30 @@
+/**
+ * Incremental scanning with git diff support
+ */
+export interface IncrementalOptions {
+    since?: string;
+    projectPath: string;
+}
+export interface IncrementalResult {
+    enabled: boolean;
+    changedFiles: string[];
+    baseCommit?: string;
+    error?: string;
+}
+export declare class IncrementalScanner {
+    /**
+     * Get list of changed files since a commit
+     * Returns all files if not a git repo or if since is not provided
+     */
+    static getChangedFiles(options: IncrementalOptions): IncrementalResult;
+    /**
+     * Filter files to scan based on incremental mode
+     * Only applies to secrets scan - vulnerabilities/compliance run full
+     */
+    static shouldScanFile(filePath: string, incrementalResult: IncrementalResult): boolean;
+    /**
+     * Get explanation message for incremental mode
+     */
+    static getIncrementalMessage(incrementalResult: IncrementalResult): string;
+}
+//# sourceMappingURL=incremental.d.ts.map

package/dist/scanner/incremental.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"incremental.d.ts","sourceRoot":"","sources":["../../src/scanner/incremental.ts"],"names":[],"mappings":"AAAA;;GAEG;AAMH,MAAM,WAAW,kBAAkB;IACjC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,OAAO,CAAC;IACjB,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,qBAAa,kBAAkB;IAC7B;;;OAGG;IACH,MAAM,CAAC,eAAe,CAAC,OAAO,EAAE,kBAAkB,GAAG,iBAAiB;IA8CtE;;;OAGG;IACH,MAAM,CAAC,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,iBAAiB,EAAE,iBAAiB,GAAG,OAAO;IAWtF;;OAEG;IACH,MAAM,CAAC,qBAAqB,CAAC,iBAAiB,EAAE,iBAAiB,GAAG,MAAM;CAW3E"}

package/dist/scanner/incremental.js

@@ -0,0 +1,82 @@
+"use strict";
+/**
+ * Incremental scanning with git diff support
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IncrementalScanner = void 0;
+const child_process_1 = require("child_process");
+const fs_1 = require("fs");
+const path_1 = require("path");
+class IncrementalScanner {
+    /**
+     * Get list of changed files since a commit
+     * Returns all files if not a git repo or if since is not provided
+     */
+    static getChangedFiles(options) {
+        if (!options.since) {
+            return {
+                enabled: false,
+                changedFiles: [],
+            };
+        }
+        // Check if this is a git repository
+        const gitDir = (0, path_1.join)(options.projectPath, '.git');
+        if (!(0, fs_1.existsSync)(gitDir)) {
+            return {
+                enabled: false,
+                changedFiles: [],
+                error: 'Not a git repository',
+            };
+        }
+        try {
+            // Get changed files using git diff
+            const output = (0, child_process_1.execSync)(`git diff --name-only ${options.since}...HEAD`, {
+                cwd: options.projectPath,
+                encoding: 'utf8',
+                stdio: ['pipe', 'pipe', 'pipe'],
+            });
+            const changedFiles = output
+                .split('\n')
+                .map(f => f.trim())
+                .filter(f => f.length > 0);
+            return {
+                enabled: true,
+                changedFiles,
+                baseCommit: options.since,
+            };
+        }
+        catch (error) {
+            // Git command failed (invalid commit, not a repo, etc.)
+            return {
+                enabled: false,
+                changedFiles: [],
+                error: error.message || 'Git diff failed',
+            };
+        }
+    }
+    /**
+     * Filter files to scan based on incremental mode
+     * Only applies to secrets scan - vulnerabilities/compliance run full
+     */
+    static shouldScanFile(filePath, incrementalResult) {
+        if (!incrementalResult.enabled) {
+            return true; // Scan all files if incremental mode disabled
+        }
+        // Check if file is in changed files list
+        return incrementalResult.changedFiles.some(changed => filePath.includes(changed) || changed.includes(filePath));
+    }
+    /**
+     * Get explanation message for incremental mode
+     */
+    static getIncrementalMessage(incrementalResult) {
+        if (!incrementalResult.enabled) {
+            return '';
+        }
+        if (incrementalResult.error) {
+            return `Incremental mode disabled: ${incrementalResult.error}`;
+        }
+        return `Incremental mode: scanning ${incrementalResult.changedFiles.length} changed files since ${incrementalResult.baseCommit}`;
+    }
+}
+exports.IncrementalScanner = IncrementalScanner;
+//# sourceMappingURL=incremental.js.map

package/dist/scanner/incremental.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"incremental.js","sourceRoot":"","sources":["../../src/scanner/incremental.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAEH,iDAAyC;AACzC,2BAAgC;AAChC,+BAA4B;AAc5B,MAAa,kBAAkB;IAC7B;;;OAGG;IACH,MAAM,CAAC,eAAe,CAAC,OAA2B;QAChD,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;YACnB,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,YAAY,EAAE,EAAE;aACjB,CAAC;QACJ,CAAC;QAED,oCAAoC;QACpC,MAAM,MAAM,GAAG,IAAA,WAAI,EAAC,OAAO,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QACjD,IAAI,CAAC,IAAA,eAAU,EAAC,MAAM,CAAC,EAAE,CAAC;YACxB,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,YAAY,EAAE,EAAE;gBAChB,KAAK,EAAE,sBAAsB;aAC9B,CAAC;QACJ,CAAC;QAED,IAAI,CAAC;YACH,mCAAmC;YACnC,MAAM,MAAM,GAAG,IAAA,wBAAQ,EAAC,wBAAwB,OAAO,CAAC,KAAK,SAAS,EAAE;gBACtE,GAAG,EAAE,OAAO,CAAC,WAAW;gBACxB,QAAQ,EAAE,MAAM;gBAChB,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;aAChC,CAAC,CAAC;YAEH,MAAM,YAAY,GAAG,MAAM;iBACxB,KAAK,CAAC,IAAI,CAAC;iBACX,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;iBAClB,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YAE7B,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,YAAY;gBACZ,UAAU,EAAE,OAAO,CAAC,KAAK;aAC1B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YACpB,wDAAwD;YACxD,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,YAAY,EAAE,EAAE;gBAChB,KAAK,EAAE,KAAK,CAAC,OAAO,IAAI,iBAAiB;aAC1C,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,MAAM,CAAC,cAAc,CAAC,QAAgB,EAAE,iBAAoC;QAC1E,IAAI,CAAC,iBAAiB,CAAC,OAAO,EAAE,CAAC;YAC/B,OAAO,IAAI,CAAC,CAAC,8CAA8C;QAC7D,CAAC;QAED,yCAAyC;QACzC,OAAO,iBAAiB,CAAC,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CACnD,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CACzD,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,qBAAqB,CAAC,iBAAoC;QAC/D,IAAI,CAAC,iBAAiB,CAAC,OAAO,EAAE,CAAC;YAC/B,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,IAAI,iBAAiB,CAAC,KAAK,EAAE,CAAC;YAC5B,OAAO,8BAA8B,iBAAiB,CAAC,KAAK,EAAE,CAAC;QACjE,CAAC;QAED,OAAO,8BAA8B,iBAAiB,CAAC,YAAY,CAAC,MAAM,wBAAwB,iBAAiB,CAAC,UAAU,EAAE,CAAC;IACnI,CAAC;CACF;AAhFD,gDAgFC"}

package/dist/scanner/index.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Scanner Module
+ * Re-exports all scanner functionality
+ */
+export { PlaceholderDetector, type PlaceholderFinding, type PlaceholderDetectorConfig, } from './placeholder-detector';
+export { RouteDetector, type RouteInfo, type RouteDetectionResult, type RouteDetectorConfig, } from './route-detector';
+export { calculateScore, formatScoreAsText, type ScoringResult, type ScoringInputs, type ScoreComponent, } from './scoring';
+//# sourceMappingURL=index.d.ts.map

package/dist/scanner/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,mBAAmB,EACnB,KAAK,kBAAkB,EACvB,KAAK,yBAAyB,GAC/B,MAAM,wBAAwB,CAAC;AAChC,OAAO,EACL,aAAa,EACb,KAAK,SAAS,EACd,KAAK,oBAAoB,EACzB,KAAK,mBAAmB,GACzB,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,KAAK,aAAa,EAClB,KAAK,aAAa,EAClB,KAAK,cAAc,GACpB,MAAM,WAAW,CAAC"}

package/dist/scanner/index.js

@@ -0,0 +1,15 @@
+"use strict";
+/**
+ * Scanner Module
+ * Re-exports all scanner functionality
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.formatScoreAsText = exports.calculateScore = exports.RouteDetector = exports.PlaceholderDetector = void 0;
+var placeholder_detector_1 = require("./placeholder-detector");
+Object.defineProperty(exports, "PlaceholderDetector", { enumerable: true, get: function () { return placeholder_detector_1.PlaceholderDetector; } });
+var route_detector_1 = require("./route-detector");
+Object.defineProperty(exports, "RouteDetector", { enumerable: true, get: function () { return route_detector_1.RouteDetector; } });
+var scoring_1 = require("./scoring");
+Object.defineProperty(exports, "calculateScore", { enumerable: true, get: function () { return scoring_1.calculateScore; } });
+Object.defineProperty(exports, "formatScoreAsText", { enumerable: true, get: function () { return scoring_1.formatScoreAsText; } });
+//# sourceMappingURL=index.js.map

package/dist/scanner/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAEH,+DAIgC;AAH9B,2HAAA,mBAAmB,OAAA;AAIrB,mDAK0B;AAJxB,+GAAA,aAAa,OAAA;AAKf,qCAMmB;AALjB,yGAAA,cAAc,OAAA;AACd,4GAAA,iBAAiB,OAAA"}