agent-security-scanner-mcp 3.20.1 → 4.0.1

package/code-review-agent/bin/cr-agent.ts

@@ -0,0 +1,313 @@
+#!/usr/bin/env node
+
+// Suppress Node.js deprecation warnings (e.g. punycode from dependencies)
+process.removeAllListeners('warning');
+
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { Command } from 'commander';
+import chalk from 'chalk';
+import { AnalysisEngine } from '../src/analyzer/engine.js';
+import { IntentProfiler } from '../src/analyzer/intent.js';
+import { ModelRouter } from '../src/llm/router.js';
+import { DependencyGraphBuilder } from '../src/graph/dependency.js';
+import { buildProjectContext } from '../src/context/project.js';
+import { loadConfig, resolveOptions } from '../src/types/config.js';
+import type { AnalysisOptions } from '../src/types/config.js';
+import type { AnalysisResult, Finding } from '../src/index.js';
+
+const program = new Command();
+
+program
+  .name('cr-agent')
+  .description('LLM-powered semantic code review agent')
+  .version('0.1.0');
+
+program
+  .command('analyze')
+  .description('Analyze a file or directory for bugs and vulnerabilities')
+  .argument('<target>', 'File or directory to analyze')
+  .option('-p, --provider <provider>', 'LLM provider (anthropic|openai|claude-cli)')
+  .option('-m, --model <model>', 'Model to use for analysis')
+  .option('--triage-model <model>', 'Model to use for triage')
+  .option('-c, --confidence <threshold>', 'Confidence threshold (0-1)', parseFloat)
+  .option('-f, --format <format>', 'Output format (text|json|sarif)')
+  .option('-v, --verbose', 'Verbose output')
+  .option('--exclude <patterns...>', 'Patterns to exclude')
+  .option('--concurrency <limit>', 'Concurrency limit', parseInt)
+  .action(async (target: string, flags: Record<string, unknown>) => {
+    try {
+      // Resolve project root from target, not cwd
+      const resolvedTarget = path.resolve(target);
+      const targetProjectRoot = fs.statSync(resolvedTarget).isDirectory()
+        ? resolvedTarget
+        : findProjectRoot(resolvedTarget);
+      const config = loadConfig(targetProjectRoot);
+      const options = resolveOptions(
+        {
+          provider: flags.provider as AnalysisOptions['provider'] | undefined,
+          model: flags.model as string | undefined,
+          triageModel: flags.triageModel as string | undefined,
+          confidenceThreshold: flags.confidence as number | undefined,
+          format: (flags.format as AnalysisOptions['format']) ?? 'text',
+          verbose: flags.verbose as boolean | undefined,
+          exclude: flags.exclude as string[] | undefined,
+          concurrencyLimit: flags.concurrency as number | undefined,
+          projectRoot: targetProjectRoot,
+        },
+        config,
+      );
+
+      const showProgress = options.format === 'text';
+      let lastStep = '';
+      const engine = new AnalysisEngine(options, showProgress ? (step, detail) => {
+        const icons: Record<string, string> = {
+          discover: '[1/7 discover]',
+          context:  '[2/7 context ]',
+          intent:   '[3/7 intent  ]',
+          graph:    '[4/7 graph   ]',
+          triage:   '[5/7 triage  ]',
+          analyze:  '[6/7 analyze ]',
+          finalize: '[7/7 finalize]',
+          done:     '[  done  ]',
+        };
+        const label = icons[step] ?? `[${step}]`;
+        if (step !== lastStep) {
+          // New stage — print on a new line, keep it visible
+          if (lastStep) process.stderr.write('\n');
+          lastStep = step;
+          process.stderr.write(`${chalk.cyan(label)} ${detail ?? ''}`);
+        } else {
+          // Same stage — overwrite the current line with updated detail
+          process.stderr.write(`\r\x1b[K${chalk.dim(label)} ${detail ?? ''}`);
+        }
+        if (step === 'done') process.stderr.write('\n');
+      } : undefined);
+      const result = await engine.analyze(target);
+
+      if (options.format === 'json') {
+        console.log(JSON.stringify(result, null, 2));
+      } else if (options.format === 'sarif') {
+        console.log(JSON.stringify(toSarif(result), null, 2));
+      } else {
+        printTextResult(result, options.verbose);
+      }
+
+      process.exit(result.findings.some((f) => f.severity === 'critical' || f.severity === 'high') ? 1 : 0);
+    } catch (err) {
+      // Never leak full prompt/context in error output
+      const msg = err instanceof Error ? err.message : String(err);
+      const safeLine = msg.split('\n')[0].slice(0, 300);
+      process.stderr.write('\n');
+      console.error(chalk.red(`Error: ${safeLine}`));
+      process.exit(2);
+    }
+  });
+
+program
+  .command('intent')
+  .description('Show the intent profile for a project')
+  .argument('<dir>', 'Project directory')
+  .option('-p, --provider <provider>', 'LLM provider (anthropic|openai|claude-cli)')
+  .option('-m, --model <model>', 'Model to use')
+  .action(async (dir: string, flags: Record<string, unknown>) => {
+    try {
+      const config = loadConfig(dir);
+      const options = resolveOptions(
+        {
+          provider: flags.provider as AnalysisOptions['provider'] | undefined,
+          model: flags.model as string | undefined,
+          projectRoot: dir,
+        },
+        config,
+      );
+
+      const router = new ModelRouter(options);
+      const profiler = new IntentProfiler(router.getAnalysisProvider());
+      const projectContext = buildProjectContext(dir);
+      const intent = await profiler.profile(projectContext);
+
+      console.log(chalk.bold('\nIntent Profile'));
+      console.log(chalk.cyan('Purpose: ') + intent.purpose);
+      console.log(chalk.cyan('Risk Domain: ') + intent.riskDomain);
+      console.log(chalk.cyan('Framework: ') + intent.framework);
+      console.log(chalk.green('\nExpected Behaviors:'));
+      for (const b of intent.expectedBehaviors) {
+        console.log(`  + ${b}`);
+      }
+      console.log(chalk.red('\nUnexpected Behaviors:'));
+      for (const b of intent.unexpectedBehaviors) {
+        console.log(`  - ${b}`);
+      }
+    } catch (err) {
+      const msg = err instanceof Error ? err.message : String(err);
+      console.error(chalk.red(`Error: ${msg.split('\n')[0].slice(0, 300)}`));
+      process.exit(2);
+    }
+  });
+
+program
+  .command('graph')
+  .description('Show the dependency graph for a project')
+  .argument('<dir>', 'Project directory')
+  .action((dir: string) => {
+    const builder = new DependencyGraphBuilder(dir);
+
+    // Discover entry files — support all languages the engine supports
+    const codeExtRe = /\.(js|mjs|cjs|jsx|ts|tsx|py|go|rs|java|rb|php|c|cpp|h|hpp|cs|swift|kt)$/;
+    const excludeSet = new Set(['node_modules', 'dist', '.git', 'vendor', '__pycache__', 'venv', '.venv']);
+    const entries: string[] = [];
+    const walkGraph = (d: string) => {
+      let dirEntries: import('node:fs').Dirent[];
+      try { dirEntries = fs.readdirSync(d, { withFileTypes: true }); } catch { return; }
+      for (const entry of dirEntries) {
+        if (excludeSet.has(entry.name) || entry.name.startsWith('.')) continue;
+        const full = path.join(d, entry.name);
+        if (entry.isDirectory()) walkGraph(full);
+        else if (codeExtRe.test(entry.name)) entries.push(full);
+      }
+    };
+    walkGraph(dir);
+
+    const graph = builder.build(entries.map((e: string) => path.relative(dir, e)));
+
+    console.log(chalk.bold(`\nDependency Graph (${graph.nodes.size} files)\n`));
+    for (const [file, node] of graph.nodes) {
+      console.log(chalk.cyan(file));
+      if (node.imports.length > 0) {
+        console.log(`  imports: ${node.imports.join(', ')}`);
+      }
+      if (node.importedBy.length > 0) {
+        console.log(`  imported by: ${node.importedBy.join(', ')}`);
+      }
+    }
+  });
+
+program.parse();
+
+// --- Output formatting ---
+
+function printTextResult(result: AnalysisResult, verbose: boolean): void {
+  const { findings, intentProfile, stats } = result;
+
+  if (intentProfile) {
+    console.log(chalk.bold('\nIntent Profile'));
+    console.log(`  Purpose: ${intentProfile.purpose}`);
+    console.log(`  Domain: ${intentProfile.riskDomain}`);
+    console.log('');
+  }
+
+  if (findings.length === 0) {
+    console.log(chalk.green('\nNo findings above confidence threshold.\n'));
+  } else {
+    console.log(chalk.bold(`\n${findings.length} Finding(s)\n`));
+    for (const f of findings) {
+      printFinding(f, verbose);
+    }
+  }
+
+  console.log(chalk.bold('Stats'));
+  console.log(`  Files analyzed: ${stats.filesAnalyzed}`);
+  console.log(`  Files skipped: ${stats.filesSkipped}`);
+  console.log(`  Total findings: ${stats.totalFindings}`);
+  console.log(`  Tokens used: ${stats.totalTokensUsed.toLocaleString()}`);
+  console.log(`  Estimated cost: $${stats.estimatedCost.toFixed(4)}`);
+  console.log(`  Duration: ${(stats.durationMs / 1000).toFixed(1)}s`);
+  console.log('');
+}
+
+function printFinding(f: Finding, verbose: boolean): void {
+  const severityColors: Record<string, (s: string) => string> = {
+    critical: chalk.bgRed.white.bold,
+    high: chalk.red.bold,
+    medium: chalk.yellow,
+    low: chalk.blue,
+    info: chalk.gray,
+  };
+
+  const colorFn = severityColors[f.severity] ?? chalk.white;
+  const badge = colorFn(` ${f.severity.toUpperCase()} `);
+  const alignment =
+    f.intentAlignment === 'violates-intent' ? chalk.red('VIOLATES INTENT') :
+    f.intentAlignment === 'matches-intent' ? chalk.green('MATCHES INTENT') :
+    chalk.gray('UNCLEAR');
+
+  console.log(`${badge} ${f.title}`);
+  console.log(`  ${chalk.dim(`${f.location.file}:${f.location.startLine}-${f.location.endLine}`)}  ${alignment}  confidence: ${f.confidence}`);
+  console.log(`  ${chalk.dim(f.category)}${f.cwe ? ` | ${f.cwe}` : ''}`);
+
+  if (verbose) {
+    console.log(`  ${chalk.dim('Reasoning:')} ${f.reasoning}`);
+    console.log(`  ${chalk.dim('Action:')} ${f.suggestedAction}`);
+  }
+
+  console.log('');
+}
+
+function findProjectRoot(filePath: string): string {
+  const markers = ['package.json', 'pyproject.toml', 'go.mod', 'Cargo.toml', 'requirements.txt', '.git', '.cr-agent.json'];
+  let dir = path.dirname(path.resolve(filePath));
+  while (dir !== path.dirname(dir)) {
+    if (markers.some((m) => { try { fs.statSync(path.join(dir, m)); return true; } catch { return false; } })) {
+      return dir;
+    }
+    dir = path.dirname(dir);
+  }
+  return path.dirname(path.resolve(filePath));
+}
+
+function toSarif(result: AnalysisResult): object {
+  return {
+    $schema: 'https://raw.githubusercontent.com/oasis-tcs/sarif-spec/main/sarif-2.1/schema/sarif-schema-2.1.0.json',
+    version: '2.1.0',
+    runs: [
+      {
+        tool: {
+          driver: {
+            name: 'cr-agent',
+            version: '0.1.0',
+            informationUri: 'https://github.com/sinewaveai/agent-security-scanner-mcp',
+            rules: result.findings.map((f, i) => ({
+              id: `CR${String(i + 1).padStart(3, '0')}`,
+              name: f.title.replace(/\s+/g, ''),
+              shortDescription: { text: f.title },
+              fullDescription: { text: f.reasoning },
+              defaultConfiguration: {
+                level: f.severity === 'critical' || f.severity === 'high' ? 'error' :
+                       f.severity === 'medium' ? 'warning' : 'note',
+              },
+              properties: {
+                category: f.category,
+                intentAlignment: f.intentAlignment,
+              },
+            })),
+          },
+        },
+        results: result.findings.map((f, i) => ({
+          ruleId: `CR${String(i + 1).padStart(3, '0')}`,
+          level: f.severity === 'critical' || f.severity === 'high' ? 'error' :
+                 f.severity === 'medium' ? 'warning' : 'note',
+          message: { text: f.reasoning },
+          locations: [
+            {
+              physicalLocation: {
+                artifactLocation: { uri: f.location.file },
+                region: {
+                  startLine: f.location.startLine,
+                  endLine: f.location.endLine,
+                },
+              },
+            },
+          ],
+          properties: {
+            confidence: f.confidence,
+            intentAlignment: f.intentAlignment,
+            suggestedAction: f.suggestedAction,
+            cwe: f.cwe,
+            owasp: f.owasp,
+          },
+        })),
+      },
+    ],
+  };
+}

package/code-review-agent/dist/bin/cr-agent.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=cr-agent.d.ts.map

package/code-review-agent/dist/bin/cr-agent.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cr-agent.d.ts","sourceRoot":"","sources":["../../bin/cr-agent.ts"],"names":[],"mappings":""}

package/code-review-agent/dist/bin/cr-agent.js

@@ -0,0 +1,299 @@
+#!/usr/bin/env node
+// Suppress Node.js deprecation warnings (e.g. punycode from dependencies)
+process.removeAllListeners('warning');
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { Command } from 'commander';
+import chalk from 'chalk';
+import { AnalysisEngine } from '../src/analyzer/engine.js';
+import { IntentProfiler } from '../src/analyzer/intent.js';
+import { ModelRouter } from '../src/llm/router.js';
+import { DependencyGraphBuilder } from '../src/graph/dependency.js';
+import { buildProjectContext } from '../src/context/project.js';
+import { loadConfig, resolveOptions } from '../src/types/config.js';
+const program = new Command();
+program
+    .name('cr-agent')
+    .description('LLM-powered semantic code review agent')
+    .version('0.1.0');
+program
+    .command('analyze')
+    .description('Analyze a file or directory for bugs and vulnerabilities')
+    .argument('<target>', 'File or directory to analyze')
+    .option('-p, --provider <provider>', 'LLM provider (anthropic|openai|claude-cli)')
+    .option('-m, --model <model>', 'Model to use for analysis')
+    .option('--triage-model <model>', 'Model to use for triage')
+    .option('-c, --confidence <threshold>', 'Confidence threshold (0-1)', parseFloat)
+    .option('-f, --format <format>', 'Output format (text|json|sarif)')
+    .option('-v, --verbose', 'Verbose output')
+    .option('--exclude <patterns...>', 'Patterns to exclude')
+    .option('--concurrency <limit>', 'Concurrency limit', parseInt)
+    .action(async (target, flags) => {
+    try {
+        // Resolve project root from target, not cwd
+        const resolvedTarget = path.resolve(target);
+        const targetProjectRoot = fs.statSync(resolvedTarget).isDirectory()
+            ? resolvedTarget
+            : findProjectRoot(resolvedTarget);
+        const config = loadConfig(targetProjectRoot);
+        const options = resolveOptions({
+            provider: flags.provider,
+            model: flags.model,
+            triageModel: flags.triageModel,
+            confidenceThreshold: flags.confidence,
+            format: flags.format ?? 'text',
+            verbose: flags.verbose,
+            exclude: flags.exclude,
+            concurrencyLimit: flags.concurrency,
+            projectRoot: targetProjectRoot,
+        }, config);
+        const showProgress = options.format === 'text';
+        let lastStep = '';
+        const engine = new AnalysisEngine(options, showProgress ? (step, detail) => {
+            const icons = {
+                discover: '[1/7 discover]',
+                context: '[2/7 context ]',
+                intent: '[3/7 intent  ]',
+                graph: '[4/7 graph   ]',
+                triage: '[5/7 triage  ]',
+                analyze: '[6/7 analyze ]',
+                finalize: '[7/7 finalize]',
+                done: '[  done  ]',
+            };
+            const label = icons[step] ?? `[${step}]`;
+            if (step !== lastStep) {
+                // New stage — print on a new line, keep it visible
+                if (lastStep)
+                    process.stderr.write('\n');
+                lastStep = step;
+                process.stderr.write(`${chalk.cyan(label)} ${detail ?? ''}`);
+            }
+            else {
+                // Same stage — overwrite the current line with updated detail
+                process.stderr.write(`\r\x1b[K${chalk.dim(label)} ${detail ?? ''}`);
+            }
+            if (step === 'done')
+                process.stderr.write('\n');
+        } : undefined);
+        const result = await engine.analyze(target);
+        if (options.format === 'json') {
+            console.log(JSON.stringify(result, null, 2));
+        }
+        else if (options.format === 'sarif') {
+            console.log(JSON.stringify(toSarif(result), null, 2));
+        }
+        else {
+            printTextResult(result, options.verbose);
+        }
+        process.exit(result.findings.some((f) => f.severity === 'critical' || f.severity === 'high') ? 1 : 0);
+    }
+    catch (err) {
+        // Never leak full prompt/context in error output
+        const msg = err instanceof Error ? err.message : String(err);
+        const safeLine = msg.split('\n')[0].slice(0, 300);
+        process.stderr.write('\n');
+        console.error(chalk.red(`Error: ${safeLine}`));
+        process.exit(2);
+    }
+});
+program
+    .command('intent')
+    .description('Show the intent profile for a project')
+    .argument('<dir>', 'Project directory')
+    .option('-p, --provider <provider>', 'LLM provider (anthropic|openai|claude-cli)')
+    .option('-m, --model <model>', 'Model to use')
+    .action(async (dir, flags) => {
+    try {
+        const config = loadConfig(dir);
+        const options = resolveOptions({
+            provider: flags.provider,
+            model: flags.model,
+            projectRoot: dir,
+        }, config);
+        const router = new ModelRouter(options);
+        const profiler = new IntentProfiler(router.getAnalysisProvider());
+        const projectContext = buildProjectContext(dir);
+        const intent = await profiler.profile(projectContext);
+        console.log(chalk.bold('\nIntent Profile'));
+        console.log(chalk.cyan('Purpose: ') + intent.purpose);
+        console.log(chalk.cyan('Risk Domain: ') + intent.riskDomain);
+        console.log(chalk.cyan('Framework: ') + intent.framework);
+        console.log(chalk.green('\nExpected Behaviors:'));
+        for (const b of intent.expectedBehaviors) {
+            console.log(`  + ${b}`);
+        }
+        console.log(chalk.red('\nUnexpected Behaviors:'));
+        for (const b of intent.unexpectedBehaviors) {
+            console.log(`  - ${b}`);
+        }
+    }
+    catch (err) {
+        const msg = err instanceof Error ? err.message : String(err);
+        console.error(chalk.red(`Error: ${msg.split('\n')[0].slice(0, 300)}`));
+        process.exit(2);
+    }
+});
+program
+    .command('graph')
+    .description('Show the dependency graph for a project')
+    .argument('<dir>', 'Project directory')
+    .action((dir) => {
+    const builder = new DependencyGraphBuilder(dir);
+    // Discover entry files — support all languages the engine supports
+    const codeExtRe = /\.(js|mjs|cjs|jsx|ts|tsx|py|go|rs|java|rb|php|c|cpp|h|hpp|cs|swift|kt)$/;
+    const excludeSet = new Set(['node_modules', 'dist', '.git', 'vendor', '__pycache__', 'venv', '.venv']);
+    const entries = [];
+    const walkGraph = (d) => {
+        let dirEntries;
+        try {
+            dirEntries = fs.readdirSync(d, { withFileTypes: true });
+        }
+        catch {
+            return;
+        }
+        for (const entry of dirEntries) {
+            if (excludeSet.has(entry.name) || entry.name.startsWith('.'))
+                continue;
+            const full = path.join(d, entry.name);
+            if (entry.isDirectory())
+                walkGraph(full);
+            else if (codeExtRe.test(entry.name))
+                entries.push(full);
+        }
+    };
+    walkGraph(dir);
+    const graph = builder.build(entries.map((e) => path.relative(dir, e)));
+    console.log(chalk.bold(`\nDependency Graph (${graph.nodes.size} files)\n`));
+    for (const [file, node] of graph.nodes) {
+        console.log(chalk.cyan(file));
+        if (node.imports.length > 0) {
+            console.log(`  imports: ${node.imports.join(', ')}`);
+        }
+        if (node.importedBy.length > 0) {
+            console.log(`  imported by: ${node.importedBy.join(', ')}`);
+        }
+    }
+});
+program.parse();
+// --- Output formatting ---
+function printTextResult(result, verbose) {
+    const { findings, intentProfile, stats } = result;
+    if (intentProfile) {
+        console.log(chalk.bold('\nIntent Profile'));
+        console.log(`  Purpose: ${intentProfile.purpose}`);
+        console.log(`  Domain: ${intentProfile.riskDomain}`);
+        console.log('');
+    }
+    if (findings.length === 0) {
+        console.log(chalk.green('\nNo findings above confidence threshold.\n'));
+    }
+    else {
+        console.log(chalk.bold(`\n${findings.length} Finding(s)\n`));
+        for (const f of findings) {
+            printFinding(f, verbose);
+        }
+    }
+    console.log(chalk.bold('Stats'));
+    console.log(`  Files analyzed: ${stats.filesAnalyzed}`);
+    console.log(`  Files skipped: ${stats.filesSkipped}`);
+    console.log(`  Total findings: ${stats.totalFindings}`);
+    console.log(`  Tokens used: ${stats.totalTokensUsed.toLocaleString()}`);
+    console.log(`  Estimated cost: $${stats.estimatedCost.toFixed(4)}`);
+    console.log(`  Duration: ${(stats.durationMs / 1000).toFixed(1)}s`);
+    console.log('');
+}
+function printFinding(f, verbose) {
+    const severityColors = {
+        critical: chalk.bgRed.white.bold,
+        high: chalk.red.bold,
+        medium: chalk.yellow,
+        low: chalk.blue,
+        info: chalk.gray,
+    };
+    const colorFn = severityColors[f.severity] ?? chalk.white;
+    const badge = colorFn(` ${f.severity.toUpperCase()} `);
+    const alignment = f.intentAlignment === 'violates-intent' ? chalk.red('VIOLATES INTENT') :
+        f.intentAlignment === 'matches-intent' ? chalk.green('MATCHES INTENT') :
+            chalk.gray('UNCLEAR');
+    console.log(`${badge} ${f.title}`);
+    console.log(`  ${chalk.dim(`${f.location.file}:${f.location.startLine}-${f.location.endLine}`)}  ${alignment}  confidence: ${f.confidence}`);
+    console.log(`  ${chalk.dim(f.category)}${f.cwe ? ` | ${f.cwe}` : ''}`);
+    if (verbose) {
+        console.log(`  ${chalk.dim('Reasoning:')} ${f.reasoning}`);
+        console.log(`  ${chalk.dim('Action:')} ${f.suggestedAction}`);
+    }
+    console.log('');
+}
+function findProjectRoot(filePath) {
+    const markers = ['package.json', 'pyproject.toml', 'go.mod', 'Cargo.toml', 'requirements.txt', '.git', '.cr-agent.json'];
+    let dir = path.dirname(path.resolve(filePath));
+    while (dir !== path.dirname(dir)) {
+        if (markers.some((m) => { try {
+            fs.statSync(path.join(dir, m));
+            return true;
+        }
+        catch {
+            return false;
+        } })) {
+            return dir;
+        }
+        dir = path.dirname(dir);
+    }
+    return path.dirname(path.resolve(filePath));
+}
+function toSarif(result) {
+    return {
+        $schema: 'https://raw.githubusercontent.com/oasis-tcs/sarif-spec/main/sarif-2.1/schema/sarif-schema-2.1.0.json',
+        version: '2.1.0',
+        runs: [
+            {
+                tool: {
+                    driver: {
+                        name: 'cr-agent',
+                        version: '0.1.0',
+                        informationUri: 'https://github.com/sinewaveai/agent-security-scanner-mcp',
+                        rules: result.findings.map((f, i) => ({
+                            id: `CR${String(i + 1).padStart(3, '0')}`,
+                            name: f.title.replace(/\s+/g, ''),
+                            shortDescription: { text: f.title },
+                            fullDescription: { text: f.reasoning },
+                            defaultConfiguration: {
+                                level: f.severity === 'critical' || f.severity === 'high' ? 'error' :
+                                    f.severity === 'medium' ? 'warning' : 'note',
+                            },
+                            properties: {
+                                category: f.category,
+                                intentAlignment: f.intentAlignment,
+                            },
+                        })),
+                    },
+                },
+                results: result.findings.map((f, i) => ({
+                    ruleId: `CR${String(i + 1).padStart(3, '0')}`,
+                    level: f.severity === 'critical' || f.severity === 'high' ? 'error' :
+                        f.severity === 'medium' ? 'warning' : 'note',
+                    message: { text: f.reasoning },
+                    locations: [
+                        {
+                            physicalLocation: {
+                                artifactLocation: { uri: f.location.file },
+                                region: {
+                                    startLine: f.location.startLine,
+                                    endLine: f.location.endLine,
+                                },
+                            },
+                        },
+                    ],
+                    properties: {
+                        confidence: f.confidence,
+                        intentAlignment: f.intentAlignment,
+                        suggestedAction: f.suggestedAction,
+                        cwe: f.cwe,
+                        owasp: f.owasp,
+                    },
+                })),
+            },
+        ],
+    };
+}
+//# sourceMappingURL=cr-agent.js.map

package/code-review-agent/dist/bin/cr-agent.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cr-agent.js","sourceRoot":"","sources":["../../bin/cr-agent.ts"],"names":[],"mappings":";AAEA,0EAA0E;AAC1E,OAAO,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;AAEtC,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAClC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAC3D,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAC3D,OAAO,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AACnD,OAAO,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AACpE,OAAO,EAAE,mBAAmB,EAAE,MAAM,2BAA2B,CAAC;AAChE,OAAO,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAIpE,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;AAE9B,OAAO;KACJ,IAAI,CAAC,UAAU,CAAC;KAChB,WAAW,CAAC,wCAAwC,CAAC;KACrD,OAAO,CAAC,OAAO,CAAC,CAAC;AAEpB,OAAO;KACJ,OAAO,CAAC,SAAS,CAAC;KAClB,WAAW,CAAC,0DAA0D,CAAC;KACvE,QAAQ,CAAC,UAAU,EAAE,8BAA8B,CAAC;KACpD,MAAM,CAAC,2BAA2B,EAAE,4CAA4C,CAAC;KACjF,MAAM,CAAC,qBAAqB,EAAE,2BAA2B,CAAC;KAC1D,MAAM,CAAC,wBAAwB,EAAE,yBAAyB,CAAC;KAC3D,MAAM,CAAC,8BAA8B,EAAE,4BAA4B,EAAE,UAAU,CAAC;KAChF,MAAM,CAAC,uBAAuB,EAAE,iCAAiC,CAAC;KAClE,MAAM,CAAC,eAAe,EAAE,gBAAgB,CAAC;KACzC,MAAM,CAAC,yBAAyB,EAAE,qBAAqB,CAAC;KACxD,MAAM,CAAC,uBAAuB,EAAE,mBAAmB,EAAE,QAAQ,CAAC;KAC9D,MAAM,CAAC,KAAK,EAAE,MAAc,EAAE,KAA8B,EAAE,EAAE;IAC/D,IAAI,CAAC;QACH,4CAA4C;QAC5C,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QAC5C,MAAM,iBAAiB,GAAG,EAAE,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,WAAW,EAAE;YACjE,CAAC,CAAC,cAAc;YAChB,CAAC,CAAC,eAAe,CAAC,cAAc,CAAC,CAAC;QACpC,MAAM,MAAM,GAAG,UAAU,CAAC,iBAAiB,CAAC,CAAC;QAC7C,MAAM,OAAO,GAAG,cAAc,CAC5B;YACE,QAAQ,EAAE,KAAK,CAAC,QAAmD;YACnE,KAAK,EAAE,KAAK,CAAC,KAA2B;YACxC,WAAW,EAAE,KAAK,CAAC,WAAiC;YACpD,mBAAmB,EAAE,KAAK,CAAC,UAAgC;YAC3D,MAAM,EAAG,KAAK,CAAC,MAAoC,IAAI,MAAM;YAC7D,OAAO,EAAE,KAAK,CAAC,OAA8B;YAC7C,OAAO,EAAE,KAAK,CAAC,OAA+B;YAC9C,gBAAgB,EAAE,KAAK,CAAC,WAAiC;YACzD,WAAW,EAAE,iBAAiB;SAC/B,EACD,MAAM,CACP,CAAC;QAEF,MAAM,YAAY,GAAG,OAAO,CAAC,MAAM,KAAK,MAAM,CAAC;QAC/C,IAAI,QAAQ,GAAG,EAAE,CAAC;QAClB,MAAM,MAAM,GAAG,IAAI,cAAc,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE;YACzE,MAAM,KAAK,GAA2B;gBACpC,QAAQ,EAAE,gBAAgB;gBAC1B,OAAO,EAAG,gBAAgB;gBAC1B,MAAM,EAAI,gBAAgB;gBAC1B,KAAK,EAAK,gBAAgB;gBAC1B,MAAM,EAAI,gBAAgB;gBAC1B,OAAO,EAAG,gBAAgB;gBAC1B,QAAQ,EAAE,gBAAgB;gBAC1B,IAAI,EAAM,YAAY;aACvB,CAAC;YACF,MAAM,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,IAAI,IAAI,GAAG,CAAC;YACzC,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACtB,mDAAmD;gBACnD,IAAI,QAAQ;oBAAE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACzC,QAAQ,GAAG,IAAI,CAAC;gBAChB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,MAAM,IAAI,EAAE,EAAE,CAAC,CAAC;YAC/D,CAAC;iBAAM,CAAC;gBACN,8DAA8D;gBAC9D,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,MAAM,IAAI,EAAE,EAAE,CAAC,CAAC;YACtE,CAAC;YACD,IAAI,IAAI,KAAK,MAAM;gBAAE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;QACf,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QAE5C,IAAI,OAAO,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YAC9B,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC;aAAM,IAAI,OAAO,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;YACtC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACxD,CAAC;aAAM,CAAC;YACN,eAAe,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;QAC3C,CAAC;QAED,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,IAAI,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACxG,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,iDAAiD;QACjD,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC7D,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;QAClD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC3B,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,QAAQ,EAAE,CAAC,CAAC,CAAC;QAC/C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO;KACJ,OAAO,CAAC,QAAQ,CAAC;KACjB,WAAW,CAAC,uCAAuC,CAAC;KACpD,QAAQ,CAAC,OAAO,EAAE,mBAAmB,CAAC;KACtC,MAAM,CAAC,2BAA2B,EAAE,4CAA4C,CAAC;KACjF,MAAM,CAAC,qBAAqB,EAAE,cAAc,CAAC;KAC7C,MAAM,CAAC,KAAK,EAAE,GAAW,EAAE,KAA8B,EAAE,EAAE;IAC5D,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,OAAO,GAAG,cAAc,CAC5B;YACE,QAAQ,EAAE,KAAK,CAAC,QAAmD;YACnE,KAAK,EAAE,KAAK,CAAC,KAA2B;YACxC,WAAW,EAAE,GAAG;SACjB,EACD,MAAM,CACP,CAAC;QAEF,MAAM,MAAM,GAAG,IAAI,WAAW,CAAC,OAAO,CAAC,CAAC;QACxC,MAAM,QAAQ,GAAG,IAAI,cAAc,CAAC,MAAM,CAAC,mBAAmB,EAAE,CAAC,CAAC;QAClE,MAAM,cAAc,GAAG,mBAAmB,CAAC,GAAG,CAAC,CAAC;QAChD,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;QAEtD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC;QAC5C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC,CAAC;QACtD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,eAAe,CAAC,GAAG,MAAM,CAAC,UAAU,CAAC,CAAC;QAC7D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,MAAM,CAAC,SAAS,CAAC,CAAC;QAC1D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC;QAClD,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,iBAAiB,EAAE,CAAC;YACzC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAC1B,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC,CAAC;QAClD,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,mBAAmB,EAAE,CAAC;YAC3C,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC7D,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;QACvE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO;KACJ,OAAO,CAAC,OAAO,CAAC;KAChB,WAAW,CAAC,yCAAyC,CAAC;KACtD,QAAQ,CAAC,OAAO,EAAE,mBAAmB,CAAC;KACtC,MAAM,CAAC,CAAC,GAAW,EAAE,EAAE;IACtB,MAAM,OAAO,GAAG,IAAI,sBAAsB,CAAC,GAAG,CAAC,CAAC;IAEhD,mEAAmE;IACnE,MAAM,SAAS,GAAG,yEAAyE,CAAC;IAC5F,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,CAAC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IACvG,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,MAAM,SAAS,GAAG,CAAC,CAAS,EAAE,EAAE;QAC9B,IAAI,UAAsC,CAAC;QAC3C,IAAI,CAAC;YAAC,UAAU,GAAG,EAAE,CAAC,WAAW,CAAC,CAAC,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC;YAAC,OAAO;QAAC,CAAC;QAClF,KAAK,MAAM,KAAK,IAAI,UAAU,EAAE,CAAC;YAC/B,IAAI,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YACvE,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YACtC,IAAI,KAAK,CAAC,WAAW,EAAE;gBAAE,SAAS,CAAC,IAAI,CAAC,CAAC;iBACpC,IAAI,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC;gBAAE,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC,CAAC;IACF,SAAS,CAAC,GAAG,CAAC,CAAC;IAEf,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;IAE/E,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,uBAAuB,KAAK,CAAC,KAAK,CAAC,IAAI,WAAW,CAAC,CAAC,CAAC;IAC5E,KAAK,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;QACvC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC9B,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5B,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACvD,CAAC;QACD,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO,CAAC,KAAK,EAAE,CAAC;AAEhB,4BAA4B;AAE5B,SAAS,eAAe,CAAC,MAAsB,EAAE,OAAgB;IAC/D,MAAM,EAAE,QAAQ,EAAE,aAAa,EAAE,KAAK,EAAE,GAAG,MAAM,CAAC;IAElD,IAAI,aAAa,EAAE,CAAC;QAClB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC;QAC5C,OAAO,CAAC,GAAG,CAAC,cAAc,aAAa,CAAC,OAAO,EAAE,CAAC,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC,aAAa,aAAa,CAAC,UAAU,EAAE,CAAC,CAAC;QACrD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;IAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,6CAA6C,CAAC,CAAC,CAAC;IAC1E,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,QAAQ,CAAC,MAAM,eAAe,CAAC,CAAC,CAAC;QAC7D,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;YACzB,YAAY,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QAC3B,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;IACjC,OAAO,CAAC,GAAG,CAAC,qBAAqB,KAAK,CAAC,aAAa,EAAE,CAAC,CAAC;IACxD,OAAO,CAAC,GAAG,CAAC,oBAAoB,KAAK,CAAC,YAAY,EAAE,CAAC,CAAC;IACtD,OAAO,CAAC,GAAG,CAAC,qBAAqB,KAAK,CAAC,aAAa,EAAE,CAAC,CAAC;IACxD,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,eAAe,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC;IACxE,OAAO,CAAC,GAAG,CAAC,sBAAsB,KAAK,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,KAAK,CAAC,UAAU,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AAClB,CAAC;AAED,SAAS,YAAY,CAAC,CAAU,EAAE,OAAgB;IAChD,MAAM,cAAc,GAA0C;QAC5D,QAAQ,EAAE,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI;QAChC,IAAI,EAAE,KAAK,CAAC,GAAG,CAAC,IAAI;QACpB,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,GAAG,EAAE,KAAK,CAAC,IAAI;QACf,IAAI,EAAE,KAAK,CAAC,IAAI;KACjB,CAAC;IAEF,MAAM,OAAO,GAAG,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC;IAC1D,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;IACvD,MAAM,SAAS,GACb,CAAC,CAAC,eAAe,KAAK,iBAAiB,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,CAAC;QACxE,CAAC,CAAC,eAAe,KAAK,gBAAgB,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC;YACxE,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAExB,OAAO,CAAC,GAAG,CAAC,GAAG,KAAK,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;IACnC,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,SAAS,IAAI,CAAC,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC,KAAK,SAAS,iBAAiB,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC;IAC7I,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAEvE,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC;QAC3D,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,eAAe,EAAE,CAAC,CAAC;IAChE,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AAClB,CAAC;AAED,SAAS,eAAe,CAAC,QAAgB;IACvC,MAAM,OAAO,GAAG,CAAC,cAAc,EAAE,gBAAgB,EAAE,QAAQ,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,EAAE,gBAAgB,CAAC,CAAC;IACzH,IAAI,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;IAC/C,OAAO,GAAG,KAAK,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QACjC,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,GAAG,IAAI,CAAC;YAAC,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC;YAAC,OAAO,IAAI,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC;YAAC,OAAO,KAAK,CAAC;QAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC1G,OAAO,GAAG,CAAC;QACb,CAAC;QACD,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IAC1B,CAAC;IACD,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;AAC9C,CAAC;AAED,SAAS,OAAO,CAAC,MAAsB;IACrC,OAAO;QACL,OAAO,EAAE,sGAAsG;QAC/G,OAAO,EAAE,OAAO;QAChB,IAAI,EAAE;YACJ;gBACE,IAAI,EAAE;oBACJ,MAAM,EAAE;wBACN,IAAI,EAAE,UAAU;wBAChB,OAAO,EAAE,OAAO;wBAChB,cAAc,EAAE,0DAA0D;wBAC1E,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;4BACpC,EAAE,EAAE,KAAK,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE;4BACzC,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC;4BACjC,gBAAgB,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,KAAK,EAAE;4BACnC,eAAe,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,SAAS,EAAE;4BACtC,oBAAoB,EAAE;gCACpB,KAAK,EAAE,CAAC,CAAC,QAAQ,KAAK,UAAU,IAAI,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;oCAC9D,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM;6BACpD;4BACD,UAAU,EAAE;gCACV,QAAQ,EAAE,CAAC,CAAC,QAAQ;gCACpB,eAAe,EAAE,CAAC,CAAC,eAAe;6BACnC;yBACF,CAAC,CAAC;qBACJ;iBACF;gBACD,OAAO,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC;oBACtC,MAAM,EAAE,KAAK,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE;oBAC7C,KAAK,EAAE,CAAC,CAAC,QAAQ,KAAK,UAAU,IAAI,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;wBAC9D,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM;oBACnD,OAAO,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,SAAS,EAAE;oBAC9B,SAAS,EAAE;wBACT;4BACE,gBAAgB,EAAE;gCAChB,gBAAgB,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC,QAAQ,CAAC,IAAI,EAAE;gCAC1C,MAAM,EAAE;oCACN,SAAS,EAAE,CAAC,CAAC,QAAQ,CAAC,SAAS;oCAC/B,OAAO,EAAE,CAAC,CAAC,QAAQ,CAAC,OAAO;iCAC5B;6BACF;yBACF;qBACF;oBACD,UAAU,EAAE;wBACV,UAAU,EAAE,CAAC,CAAC,UAAU;wBACxB,eAAe,EAAE,CAAC,CAAC,eAAe;wBAClC,eAAe,EAAE,CAAC,CAAC,eAAe;wBAClC,GAAG,EAAE,CAAC,CAAC,GAAG;wBACV,KAAK,EAAE,CAAC,CAAC,KAAK;qBACf;iBACF,CAAC,CAAC;aACJ;SACF;KACF,CAAC;AACJ,CAAC"}

package/code-review-agent/dist/src/analyzer/engine.d.ts

@@ -0,0 +1,16 @@
+import type { AnalysisResult } from '../types/analysis.js';
+import type { AnalysisOptions } from '../types/config.js';
+export type ProgressCallback = (step: string, detail?: string) => void;
+export declare class AnalysisEngine {
+    private options;
+    private router;
+    private onProgress;
+    constructor(options: AnalysisOptions, onProgress?: ProgressCallback);
+    analyze(targetPath: string): Promise<AnalysisResult>;
+    private discoverFiles;
+    private dedup;
+    private mergeOverlapping;
+    private countBySeverity;
+    private runParallel;
+}
+//# sourceMappingURL=engine.d.ts.map

package/code-review-agent/dist/src/analyzer/engine.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../../../src/analyzer/engine.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EACV,cAAc,EAGf,MAAM,sBAAsB,CAAC;AAE9B,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAuB1D,MAAM,MAAM,gBAAgB,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,IAAI,CAAC;AAEvE,qBAAa,cAAc;IACzB,OAAO,CAAC,OAAO,CAAkB;IACjC,OAAO,CAAC,MAAM,CAAc;IAC5B,OAAO,CAAC,UAAU,CAAmB;gBAEzB,OAAO,EAAE,eAAe,EAAE,UAAU,CAAC,EAAE,gBAAgB;IAM7D,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IAyM1D,OAAO,CAAC,aAAa;IAsCrB,OAAO,CAAC,KAAK;IAoBb,OAAO,CAAC,gBAAgB;IAuCxB,OAAO,CAAC,eAAe;YAQT,WAAW;CAuB1B"}