acidtest 0.7.0 → 1.0.0

package/dist/analysis/dataflow-graph.js

@@ -0,0 +1,365 @@
+/**
+ * Dataflow Graph Construction
+ *
+ * Builds a dataflow graph from TypeScript AST by tracking:
+ * - Variable declarations and assignments
+ * - Property access (read/write)
+ * - Function calls and arguments
+ * - Template literals
+ * - Object construction
+ *
+ * Phase 3.1: Dataflow Implementation
+ */
+import * as ts from 'typescript';
+/**
+ * Build dataflow graph from TypeScript source code
+ */
+export function buildDataFlowGraph(sourceFile) {
+    const builder = new DataFlowGraphBuilder();
+    builder.visitNode(sourceFile);
+    return builder.getGraph();
+}
+/**
+ * Internal graph builder with visitor pattern
+ */
+class DataFlowGraphBuilder {
+    nodes = [];
+    edges = [];
+    nodeIdCounter = 0;
+    variableMap = new Map(); // variable name → node ID
+    sourceNodeIds = [];
+    sinkNodeIds = [];
+    /**
+     * Get the constructed graph
+     */
+    getGraph() {
+        return {
+            nodes: this.nodes,
+            edges: this.edges,
+            sourceNodeIds: this.sourceNodeIds,
+            sinkNodeIds: this.sinkNodeIds,
+        };
+    }
+    /**
+     * Create a unique node ID
+     */
+    createNodeId(prefix, line, column) {
+        return `${prefix}_${line}_${column}_${this.nodeIdCounter++}`;
+    }
+    /**
+     * Add a node to the graph
+     */
+    addNode(type, identifier, line, column, metadata) {
+        const id = this.createNodeId(type, line, column);
+        this.nodes.push({
+            id,
+            type,
+            identifier,
+            line,
+            column,
+            metadata,
+        });
+        return id;
+    }
+    /**
+     * Add an edge to the graph
+     */
+    addEdge(from, to, type, label) {
+        this.edges.push({ from, to, type, label });
+    }
+    /**
+     * Visit AST node and build graph
+     */
+    visitNode(node) {
+        // Variable declarations: const a = b
+        if (ts.isVariableDeclaration(node)) {
+            this.visitVariableDeclaration(node);
+        }
+        // Binary expressions: a = b
+        if (ts.isBinaryExpression(node) && node.operatorToken.kind === ts.SyntaxKind.EqualsToken) {
+            this.visitAssignment(node);
+        }
+        // Property access: obj.prop
+        if (ts.isPropertyAccessExpression(node)) {
+            this.visitPropertyAccess(node);
+        }
+        // Call expressions: func(arg)
+        if (ts.isCallExpression(node)) {
+            this.visitCallExpression(node);
+        }
+        // Template literals: `${expr}`
+        if (ts.isTemplateExpression(node)) {
+            this.visitTemplateExpression(node);
+        }
+        // Object literals: { key: value }
+        if (ts.isObjectLiteralExpression(node)) {
+            this.visitObjectLiteral(node);
+        }
+        // Recurse into children
+        ts.forEachChild(node, (child) => this.visitNode(child));
+    }
+    /**
+     * Handle variable declaration: const a = b
+     */
+    visitVariableDeclaration(node) {
+        const varName = node.name.getText();
+        const line = this.getLine(node);
+        const column = this.getColumn(node);
+        // Create node for the variable
+        const varNodeId = this.addNode('variable', varName, line, column);
+        this.variableMap.set(varName, varNodeId);
+        // If initializer exists, create dataflow edge
+        if (node.initializer) {
+            this.handleInitializer(varNodeId, node.initializer);
+        }
+    }
+    /**
+     * Handle assignment: a = b
+     */
+    visitAssignment(node) {
+        const left = node.left;
+        const right = node.right;
+        // Get or create node for left side
+        let leftNodeId;
+        if (ts.isIdentifier(left)) {
+            const varName = left.getText();
+            leftNodeId = this.variableMap.get(varName);
+            if (!leftNodeId) {
+                leftNodeId = this.addNode('variable', varName, this.getLine(left), this.getColumn(left));
+                this.variableMap.set(varName, leftNodeId);
+            }
+        }
+        else if (ts.isPropertyAccessExpression(left)) {
+            // Handle property assignment: obj.prop = value
+            leftNodeId = this.addNode('property', left.getText(), this.getLine(left), this.getColumn(left));
+        }
+        if (leftNodeId) {
+            this.handleInitializer(leftNodeId, right);
+        }
+    }
+    /**
+     * Handle property access: obj.prop
+     */
+    visitPropertyAccess(node) {
+        const propName = node.getText();
+        const line = this.getLine(node);
+        const column = this.getColumn(node);
+        // Check for process.env (taint source)
+        if (propName.startsWith('process.env.') || propName.includes('process.env[')) {
+            const sourceNodeId = this.addNode('source', propName, line, column, {
+                sourceType: 'env-var',
+                envVarName: propName.replace(/^process\.env\./, '').replace(/process\.env\[['"](.+)['"]\]/, '$1'),
+            });
+            this.sourceNodeIds.push(sourceNodeId);
+        }
+    }
+    /**
+     * Handle call expression: func(arg1, arg2)
+     */
+    visitCallExpression(node) {
+        const funcName = this.getFunctionName(node);
+        const line = this.getLine(node);
+        const column = this.getColumn(node);
+        // Check if this is a taint sink
+        if (this.isSinkFunction(funcName)) {
+            const sinkNodeId = this.addNode('sink', funcName, line, column, {
+                sinkType: this.getSinkType(funcName),
+                functionName: funcName,
+            });
+            this.sinkNodeIds.push(sinkNodeId);
+            // Create edges from arguments to sink
+            node.arguments.forEach((arg, index) => {
+                const argNodeId = this.getOrCreateNodeForExpression(arg);
+                if (argNodeId) {
+                    this.addEdge(argNodeId, sinkNodeId, 'function-call', `arg${index}`);
+                }
+            });
+        }
+    }
+    /**
+     * Handle template expression: `${expr}`
+     */
+    visitTemplateExpression(node) {
+        const line = this.getLine(node);
+        const column = this.getColumn(node);
+        const templateNodeId = this.addNode('operation', 'template-literal', line, column);
+        // Create edges from each template span expression
+        node.templateSpans.forEach((span) => {
+            const exprNodeId = this.getOrCreateNodeForExpression(span.expression);
+            if (exprNodeId) {
+                this.addEdge(exprNodeId, templateNodeId, 'template-literal');
+            }
+        });
+    }
+    /**
+     * Handle object literal: { key: value }
+     * Note: We don't create the object node here, as it's created in getOrCreateNodeForExpression
+     * This method just ensures we visit the properties
+     */
+    visitObjectLiteral(node) {
+        // Properties will be visited through recursive forEachChild
+    }
+    /**
+     * Handle initializer expression (right side of assignment)
+     */
+    handleInitializer(targetNodeId, initializer) {
+        const sourceNodeId = this.getOrCreateNodeForExpression(initializer);
+        if (sourceNodeId) {
+            this.addEdge(sourceNodeId, targetNodeId, 'assignment');
+        }
+    }
+    /**
+     * Get or create node for an expression
+     */
+    getOrCreateNodeForExpression(expr) {
+        // Identifier: variable reference
+        if (ts.isIdentifier(expr)) {
+            const varName = expr.getText();
+            let nodeId = this.variableMap.get(varName);
+            if (!nodeId) {
+                nodeId = this.addNode('variable', varName, this.getLine(expr), this.getColumn(expr));
+                this.variableMap.set(varName, nodeId);
+            }
+            return nodeId;
+        }
+        // Property access: process.env.X, obj.prop
+        if (ts.isPropertyAccessExpression(expr)) {
+            const propName = expr.getText();
+            const line = this.getLine(expr);
+            const column = this.getColumn(expr);
+            // Check for process.env (taint source)
+            if (propName.startsWith('process.env.') || propName.includes('process.env[')) {
+                const sourceNodeId = this.addNode('source', propName, line, column, {
+                    sourceType: 'env-var',
+                    envVarName: propName.replace(/^process\.env\./, '').replace(/process\.env\[['"](.+)['"]\]/, '$1'),
+                });
+                this.sourceNodeIds.push(sourceNodeId);
+                return sourceNodeId;
+            }
+            // Property read: obj.prop (create edge from obj to prop)
+            const propNodeId = this.addNode('property', propName, line, column);
+            // Get the object being accessed
+            const objExpr = expr.expression;
+            if (ts.isIdentifier(objExpr)) {
+                const objName = objExpr.getText();
+                const objNodeId = this.variableMap.get(objName);
+                if (objNodeId) {
+                    this.addEdge(objNodeId, propNodeId, 'property-read', expr.name.getText());
+                }
+            }
+            return propNodeId;
+        }
+        // Template literal
+        if (ts.isTemplateExpression(expr) || ts.isNoSubstitutionTemplateLiteral(expr)) {
+            const line = this.getLine(expr);
+            const column = this.getColumn(expr);
+            return this.addNode('operation', 'template-literal', line, column);
+        }
+        // Object literal
+        if (ts.isObjectLiteralExpression(expr)) {
+            const line = this.getLine(expr);
+            const column = this.getColumn(expr);
+            const objNodeId = this.addNode('operation', 'object-literal', line, column);
+            // Create edges from property values to object
+            expr.properties.forEach((prop) => {
+                if (ts.isPropertyAssignment(prop)) {
+                    const valueNodeId = this.getOrCreateNodeForExpression(prop.initializer);
+                    if (valueNodeId) {
+                        const propName = prop.name.getText();
+                        this.addEdge(valueNodeId, objNodeId, 'object-construction', propName);
+                    }
+                }
+            });
+            return objNodeId;
+        }
+        // Call expression
+        if (ts.isCallExpression(expr)) {
+            const funcName = this.getFunctionName(expr);
+            const line = this.getLine(expr);
+            const column = this.getColumn(expr);
+            // If it's a source (e.g., fetch response), create source node
+            if (funcName === 'fetch' || funcName.includes('.json') || funcName.includes('.text')) {
+                const sourceNodeId = this.addNode('source', funcName, line, column, {
+                    sourceType: 'network-response',
+                });
+                this.sourceNodeIds.push(sourceNodeId);
+                return sourceNodeId;
+            }
+            return this.addNode('operation', funcName, line, column);
+        }
+        return undefined;
+    }
+    /**
+     * Check if function is a taint sink
+     */
+    isSinkFunction(funcName) {
+        const sinks = [
+            // Command execution
+            'exec', 'execSync', 'spawn', 'spawnSync', 'execFile', 'execFileSync',
+            // Code evaluation
+            'eval', 'Function',
+            // Network (only fetch for body/URL, not all network calls)
+            'fetch',
+            // File system
+            'writeFile', 'writeFileSync', 'appendFile', 'appendFileSync',
+            // Dynamic imports
+            'require', 'import',
+        ];
+        return sinks.some((sink) => funcName === sink || funcName.endsWith(`.${sink}`));
+    }
+    /**
+     * Get sink type based on function name
+     */
+    getSinkType(funcName) {
+        if (funcName.includes('exec') || funcName.includes('spawn')) {
+            return 'command-execution';
+        }
+        if (funcName === 'eval' || funcName === 'Function') {
+            return 'code-evaluation';
+        }
+        if (funcName === 'fetch' || funcName.includes('axios') || funcName.includes('http')) {
+            return 'network-request';
+        }
+        if (funcName.includes('write') || funcName.includes('append')) {
+            return 'file-write';
+        }
+        if (funcName === 'require' || funcName === 'import') {
+            return 'dynamic-import';
+        }
+        return 'unknown';
+    }
+    /**
+     * Get function name from call expression
+     */
+    getFunctionName(node) {
+        const expr = node.expression;
+        if (ts.isIdentifier(expr)) {
+            return expr.getText();
+        }
+        if (ts.isPropertyAccessExpression(expr)) {
+            return expr.name.getText();
+        }
+        return expr.getText();
+    }
+    /**
+     * Get line number for node
+     */
+    getLine(node) {
+        const sourceFile = node.getSourceFile();
+        if (!sourceFile)
+            return 0;
+        const { line } = sourceFile.getLineAndCharacterOfPosition(node.getStart());
+        return line + 1; // Convert to 1-indexed
+    }
+    /**
+     * Get column number for node
+     */
+    getColumn(node) {
+        const sourceFile = node.getSourceFile();
+        if (!sourceFile)
+            return 0;
+        const { character } = sourceFile.getLineAndCharacterOfPosition(node.getStart());
+        return character;
+    }
+}
+//# sourceMappingURL=dataflow-graph.js.map

package/dist/analysis/dataflow-graph.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dataflow-graph.js","sourceRoot":"","sources":["../../src/analysis/dataflow-graph.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,MAAM,YAAY,CAAC;AAGjC;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAAC,UAAyB;IAC1D,MAAM,OAAO,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC3C,OAAO,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAC9B,OAAO,OAAO,CAAC,QAAQ,EAAE,CAAC;AAC5B,CAAC;AAED;;GAEG;AACH,MAAM,oBAAoB;IAChB,KAAK,GAAmB,EAAE,CAAC;IAC3B,KAAK,GAAmB,EAAE,CAAC;IAC3B,aAAa,GAAG,CAAC,CAAC;IAClB,WAAW,GAAG,IAAI,GAAG,EAAkB,CAAC,CAAC,0BAA0B;IACnE,aAAa,GAAa,EAAE,CAAC;IAC7B,WAAW,GAAa,EAAE,CAAC;IAEnC;;OAEG;IACH,QAAQ;QACN,OAAO;YACL,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,WAAW,EAAE,IAAI,CAAC,WAAW;SAC9B,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,MAAc,EAAE,IAAY,EAAE,MAAc;QAC/D,OAAO,GAAG,MAAM,IAAI,IAAI,IAAI,MAAM,IAAI,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC;IAC/D,CAAC;IAED;;OAEG;IACK,OAAO,CACb,IAAc,EACd,UAA8B,EAC9B,IAAY,EACZ,MAAc,EACd,QAA8B;QAE9B,MAAM,EAAE,GAAG,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;QACjD,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC;YACd,EAAE;YACF,IAAI;YACJ,UAAU;YACV,IAAI;YACJ,MAAM;YACN,QAAQ;SACT,CAAC,CAAC;QACH,OAAO,EAAE,CAAC;IACZ,CAAC;IAED;;OAEG;IACK,OAAO,CAAC,IAAY,EAAE,EAAU,EAAE,IAAc,EAAE,KAAc;QACtE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,IAAa;QACrB,qCAAqC;QACrC,IAAI,EAAE,CAAC,qBAAqB,CAAC,IAAI,CAAC,EAAE,CAAC;YACnC,IAAI,CAAC,wBAAwB,CAAC,IAAI,CAAC,CAAC;QACtC,CAAC;QAED,4BAA4B;QAC5B,IAAI,EAAE,CAAC,kBAAkB,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,KAAK,EAAE,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;YACzF,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC;QAED,4BAA4B;QAC5B,IAAI,EAAE,CAAC,0BAA0B,CAAC,IAAI,CAAC,EAAE,CAAC;YACxC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;QACjC,CAAC;QAED,8BAA8B;QAC9B,IAAI,EAAE,CAAC,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;QACjC,CAAC;QAED,+BAA+B;QAC/B,IAAI,EAAE,CAAC,oBAAoB,CAAC,IAAI,CAAC,EAAE,CAAC;YAClC,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC,CAAC;QACrC,CAAC;QAED,kCAAkC;QAClC,IAAI,EAAE,CAAC,yBAAyB,CAAC,IAAI,CAAC,EAAE,CAAC;YACvC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC;QAChC,CAAC;QAED,wBAAwB;QACxB,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;IAC1D,CAAC;IAED;;OAEG;IACK,wBAAwB,CAAC,IAA4B;QAC3D,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;QACpC,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QAEpC,+BAA+B;QAC/B,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;QAClE,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;QAEzC,8CAA8C;QAC9C,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,IAAI,CAAC,iBAAiB,CAAC,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,IAAyB;QAC/C,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;QACvB,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC;QAEzB,mCAAmC;QACnC,IAAI,UAA8B,CAAC;QAEnC,IAAI,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC;YAC/B,UAAU,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC3C,IAAI,CAAC,UAAU,EAAE,CAAC;gBAChB,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;gBACzF,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;YAC5C,CAAC;QACH,CAAC;aAAM,IAAI,EAAE,CAAC,0BAA0B,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/C,+CAA+C;YAC/C,UAAU,GAAG,IAAI,CAAC,OAAO,CACvB,UAAU,EACV,IAAI,CAAC,OAAO,EAAE,EACd,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAClB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CACrB,CAAC;QACJ,CAAC;QAED,IAAI,UAAU,EAAE,CAAC;YACf,IAAI,CAAC,iBAAiB,CAAC,UAAU,EAAE,KAAK,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IAED;;OAEG;IACK,mBAAmB,CAAC,IAAiC;QAC3D,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC;QAChC,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QAEpC,uCAAuC;QACvC,IAAI,QAAQ,CAAC,UAAU,CAAC,cAAc,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YAC7E,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE;gBAClE,UAAU,EAAE,SAAS;gBACrB,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,8BAA8B,EAAE,IAAI,CAAC;aAClG,CAAC,CAAC;YACH,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED;;OAEG;IACK,mBAAmB,CAAC,IAAuB;QACjD,MAAM,QAAQ,GAAG,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;QAC5C,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QAEpC,gCAAgC;QAChC,IAAI,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,EAAE,CAAC;YAClC,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE;gBAC9D,QAAQ,EAAE,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC;gBACpC,YAAY,EAAE,QAAQ;aACvB,CAAC,CAAC;YACH,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAElC,sCAAsC;YACtC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,KAAK,EAAE,EAAE;gBACpC,MAAM,SAAS,GAAG,IAAI,CAAC,4BAA4B,CAAC,GAAG,CAAC,CAAC;gBACzD,IAAI,SAAS,EAAE,CAAC;oBACd,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,UAAU,EAAE,eAAe,EAAE,MAAM,KAAK,EAAE,CAAC,CAAC;gBACtE,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED;;OAEG;IACK,uBAAuB,CAAC,IAA2B;QACzD,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACpC,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,kBAAkB,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;QAEnF,kDAAkD;QAClD,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE;YAClC,MAAM,UAAU,GAAG,IAAI,CAAC,4BAA4B,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACtE,IAAI,UAAU,EAAE,CAAC;gBACf,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,cAAc,EAAE,kBAAkB,CAAC,CAAC;YAC/D,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;OAIG;IACK,kBAAkB,CAAC,IAAgC;QACzD,4DAA4D;IAC9D,CAAC;IAED;;OAEG;IACK,iBAAiB,CAAC,YAAoB,EAAE,WAA0B;QACxE,MAAM,YAAY,GAAG,IAAI,CAAC,4BAA4B,CAAC,WAAW,CAAC,CAAC;QACpE,IAAI,YAAY,EAAE,CAAC;YACjB,IAAI,CAAC,OAAO,CAAC,YAAY,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC;QACzD,CAAC;IACH,CAAC;IAED;;OAEG;IACK,4BAA4B,CAAC,IAAmB;QACtD,iCAAiC;QACjC,IAAI,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC;YAC/B,IAAI,MAAM,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC3C,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;gBACrF,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;YACxC,CAAC;YACD,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,2CAA2C;QAC3C,IAAI,EAAE,CAAC,0BAA0B,CAAC,IAAI,CAAC,EAAE,CAAC;YACxC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC;YAChC,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YAEpC,uCAAuC;YACvC,IAAI,QAAQ,CAAC,UAAU,CAAC,cAAc,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;gBAC7E,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE;oBAClE,UAAU,EAAE,SAAS;oBACrB,UAAU,EAAE,QAAQ,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,8BAA8B,EAAE,IAAI,CAAC;iBAClG,CAAC,CAAC;gBACH,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;gBACtC,OAAO,YAAY,CAAC;YACtB,CAAC;YAED,yDAAyD;YACzD,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;YAEpE,gCAAgC;YAChC,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC;YAChC,IAAI,EAAE,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC7B,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC;gBAClC,MAAM,SAAS,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;gBAChD,IAAI,SAAS,EAAE,CAAC;oBACd,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,UAAU,EAAE,eAAe,EAAE,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;gBAC5E,CAAC;YACH,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QAED,mBAAmB;QACnB,IAAI,EAAE,CAAC,oBAAoB,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,+BAA+B,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9E,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YACpC,OAAO,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,kBAAkB,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;QACrE,CAAC;QAED,iBAAiB;QACjB,IAAI,EAAE,CAAC,yBAAyB,CAAC,IAAI,CAAC,EAAE,CAAC;YACvC,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YACpC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,gBAAgB,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;YAE5E,8CAA8C;YAC9C,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE;gBAC/B,IAAI,EAAE,CAAC,oBAAoB,CAAC,IAAI,CAAC,EAAE,CAAC;oBAClC,MAAM,WAAW,GAAG,IAAI,CAAC,4BAA4B,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;oBACxE,IAAI,WAAW,EAAE,CAAC;wBAChB,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;wBACrC,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,SAAS,EAAE,qBAAqB,EAAE,QAAQ,CAAC,CAAC;oBACxE,CAAC;gBACH,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,kBAAkB;QAClB,IAAI,EAAE,CAAC,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YAC5C,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YAEpC,8DAA8D;YAC9D,IAAI,QAAQ,KAAK,OAAO,IAAI,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBACrF,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE;oBAClE,UAAU,EAAE,kBAAkB;iBAC/B,CAAC,CAAC;gBACH,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;gBACtC,OAAO,YAAY,CAAC;YACtB,CAAC;YAED,OAAO,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;QAC3D,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACK,cAAc,CAAC,QAAgB;QACrC,MAAM,KAAK,GAAG;YACZ,oBAAoB;YACpB,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,WAAW,EAAE,UAAU,EAAE,cAAc;YACpE,kBAAkB;YAClB,MAAM,EAAE,UAAU;YAClB,2DAA2D;YAC3D,OAAO;YACP,cAAc;YACd,WAAW,EAAE,eAAe,EAAE,YAAY,EAAE,gBAAgB;YAC5D,kBAAkB;YAClB,SAAS,EAAE,QAAQ;SACpB,CAAC;QAEF,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,QAAQ,KAAK,IAAI,IAAI,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,CAAC;IAClF,CAAC;IAED;;OAEG;IACK,WAAW,CAAC,QAAgB;QAClC,IAAI,QAAQ,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC5D,OAAO,mBAAmB,CAAC;QAC7B,CAAC;QACD,IAAI,QAAQ,KAAK,MAAM,IAAI,QAAQ,KAAK,UAAU,EAAE,CAAC;YACnD,OAAO,iBAAiB,CAAC;QAC3B,CAAC;QACD,IAAI,QAAQ,KAAK,OAAO,IAAI,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACpF,OAAO,iBAAiB,CAAC;QAC3B,CAAC;QACD,IAAI,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC9D,OAAO,YAAY,CAAC;QACtB,CAAC;QACD,IAAI,QAAQ,KAAK,SAAS,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;YACpD,OAAO,gBAAgB,CAAC;QAC1B,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,IAAuB;QAC7C,MAAM,IAAI,GAAG,IAAI,CAAC,UAAU,CAAC;QAE7B,IAAI,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1B,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC;QACxB,CAAC;QAED,IAAI,EAAE,CAAC,0BAA0B,CAAC,IAAI,CAAC,EAAE,CAAC;YACxC,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;QAC7B,CAAC;QAED,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC;IACxB,CAAC;IAED;;OAEG;IACK,OAAO,CAAC,IAAa;QAC3B,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACxC,IAAI,CAAC,UAAU;YAAE,OAAO,CAAC,CAAC;QAC1B,MAAM,EAAE,IAAI,EAAE,GAAG,UAAU,CAAC,6BAA6B,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC3E,OAAO,IAAI,GAAG,CAAC,CAAC,CAAC,uBAAuB;IAC1C,CAAC;IAED;;OAEG;IACK,SAAS,CAAC,IAAa;QAC7B,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACxC,IAAI,CAAC,UAAU;YAAE,OAAO,CAAC,CAAC;QAC1B,MAAM,EAAE,SAAS,EAAE,GAAG,UAAU,CAAC,6BAA6B,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;QAChF,OAAO,SAAS,CAAC;IACnB,CAAC;CACF"}

package/dist/analysis/dataflow-types.d.ts

@@ -0,0 +1,86 @@
+/**
+ * Type definitions for dataflow/taint analysis
+ *
+ * Phase 3.1: Dataflow Implementation
+ * v1.0.0 Scope: Single-file, intraprocedural analysis
+ */
+/**
+ * Dataflow graph representing data dependencies in code
+ */
+export interface DataFlowGraph {
+    nodes: DataFlowNode[];
+    edges: DataFlowEdge[];
+    sourceNodeIds: string[];
+    sinkNodeIds: string[];
+}
+/**
+ * Node in the dataflow graph
+ */
+export interface DataFlowNode {
+    id: string;
+    type: NodeType;
+    identifier?: string;
+    line: number;
+    column: number;
+    scope?: string;
+    isTainted?: boolean;
+    metadata?: {
+        astNodeKind?: string;
+        [key: string]: any;
+    };
+}
+export type NodeType = 'source' | 'sink' | 'variable' | 'operation' | 'parameter' | 'property';
+/**
+ * Edge in the dataflow graph (data dependency)
+ */
+export interface DataFlowEdge {
+    from: string;
+    to: string;
+    type: EdgeType;
+    label?: string;
+}
+export type EdgeType = 'assignment' | 'property-read' | 'property-write' | 'function-call' | 'function-return' | 'template-literal' | 'object-construction';
+/**
+ * Taint source (where untrusted/sensitive data originates)
+ */
+export interface TaintSource {
+    nodeId: string;
+    type: TaintSourceType;
+    identifier: string;
+    line: number;
+    column: number;
+    metadata?: {
+        envVarName?: string;
+        paramName?: string;
+        apiUrl?: string;
+    };
+}
+export type TaintSourceType = 'env-var' | 'user-input' | 'network-response' | 'file-input';
+/**
+ * Taint sink (where tainted data causes security issues)
+ */
+export interface TaintSink {
+    nodeId: string;
+    type: TaintSinkType;
+    function: string;
+    line: number;
+    column: number;
+    argumentIndex?: number;
+    metadata?: {
+        url?: string;
+        filePath?: string;
+    };
+}
+export type TaintSinkType = 'command-execution' | 'code-evaluation' | 'network-request' | 'file-write' | 'dynamic-import';
+/**
+ * Dataflow path from source to sink
+ */
+export interface DataFlowPath {
+    source: TaintSource;
+    sink: TaintSink;
+    path: DataFlowNode[];
+    confidence: ConfidenceLevel;
+    severity: 'CRITICAL' | 'HIGH' | 'MEDIUM' | 'LOW' | 'INFO';
+}
+export type ConfidenceLevel = 'high' | 'medium' | 'low';
+//# sourceMappingURL=dataflow-types.d.ts.map

package/dist/analysis/dataflow-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dataflow-types.d.ts","sourceRoot":"","sources":["../../src/analysis/dataflow-types.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,KAAK,EAAE,YAAY,EAAE,CAAC;IACtB,KAAK,EAAE,YAAY,EAAE,CAAC;IACtB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,WAAW,EAAE,MAAM,EAAE,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,QAAQ,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,QAAQ,CAAC,EAAE;QACT,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;KACpB,CAAC;CACH;AAED,MAAM,MAAM,QAAQ,GAChB,QAAQ,GACR,MAAM,GACN,UAAU,GACV,WAAW,GACX,WAAW,GACX,UAAU,CAAC;AAEf;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,QAAQ,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,MAAM,QAAQ,GAChB,YAAY,GACZ,eAAe,GACf,gBAAgB,GAChB,eAAe,GACf,iBAAiB,GACjB,kBAAkB,GAClB,qBAAqB,CAAC;AAE1B;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,eAAe,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE;QACT,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB,CAAC;CACH;AAED,MAAM,MAAM,eAAe,GACvB,SAAS,GACT,YAAY,GACZ,kBAAkB,GAClB,YAAY,CAAC;AAEjB;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,aAAa,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,EAAE;QACT,GAAG,CAAC,EAAE,MAAM,CAAC;QACb,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED,MAAM,MAAM,aAAa,GACrB,mBAAmB,GACnB,iBAAiB,GACjB,iBAAiB,GACjB,YAAY,GACZ,gBAAgB,CAAC;AAErB;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,MAAM,EAAE,WAAW,CAAC;IACpB,IAAI,EAAE,SAAS,CAAC;IAChB,IAAI,EAAE,YAAY,EAAE,CAAC;IACrB,UAAU,EAAE,eAAe,CAAC;IAC5B,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;CAC3D;AAED,MAAM,MAAM,eAAe,GACvB,MAAM,GACN,QAAQ,GACR,KAAK,CAAC"}

package/dist/analysis/dataflow-types.js

@@ -0,0 +1,8 @@
+/**
+ * Type definitions for dataflow/taint analysis
+ *
+ * Phase 3.1: Dataflow Implementation
+ * v1.0.0 Scope: Single-file, intraprocedural analysis
+ */
+export {};
+//# sourceMappingURL=dataflow-types.js.map

package/dist/analysis/dataflow-types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dataflow-types.js","sourceRoot":"","sources":["../../src/analysis/dataflow-types.ts"],"names":[],"mappings":"AAAA;;;;;GAKG"}

package/dist/analysis/dataflow.test.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Tests for dataflow/taint analysis
+ *
+ * Phase 3.1: Dataflow Implementation
+ */
+export {};
+//# sourceMappingURL=dataflow.test.d.ts.map

package/dist/analysis/dataflow.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dataflow.test.d.ts","sourceRoot":"","sources":["../../src/analysis/dataflow.test.ts"],"names":[],"mappings":"AAAA;;;;GAIG"}