npm - agent-threat-rules - Versions diffs - 0.3.1 → 1.0.0 - Mend

agent-threat-rules 0.3.1 → 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (287) hide show

package/dist/adapters/default-adapter.d.ts DELETED Viewed

@@ -1,24 +0,0 @@
-/**
- * Default Platform Adapter - No-op implementation for CLI and testing.
- *
- * Every method logs the action and returns a success result.
- * This adapter is safe to use in any environment as it performs
- * no actual enforcement.
- *
- * @module agent-threat-rules/adapters/default-adapter
- */
-import type { ActionResult, ExecutionContext, PlatformAdapter } from '../types.js';
-export declare class DefaultAdapter implements PlatformAdapter {
-    readonly name = "default";
-    blockInput(ctx: ExecutionContext): Promise<ActionResult>;
-    blockOutput(ctx: ExecutionContext): Promise<ActionResult>;
-    blockTool(ctx: ExecutionContext): Promise<ActionResult>;
-    quarantineSession(ctx: ExecutionContext): Promise<ActionResult>;
-    resetContext(ctx: ExecutionContext): Promise<ActionResult>;
-    alert(ctx: ExecutionContext): Promise<ActionResult>;
-    snapshot(ctx: ExecutionContext): Promise<ActionResult>;
-    escalate(ctx: ExecutionContext): Promise<ActionResult>;
-    reducePermissions(ctx: ExecutionContext): Promise<ActionResult>;
-    killAgent(ctx: ExecutionContext): Promise<ActionResult>;
-}
-//# sourceMappingURL=default-adapter.d.ts.map

package/dist/adapters/default-adapter.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"default-adapter.d.ts","sourceRoot":"","sources":["../../src/adapters/default-adapter.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EACV,YAAY,EACZ,gBAAgB,EAChB,eAAe,EAChB,MAAM,aAAa,CAAC;AAcrB,qBAAa,cAAe,YAAW,eAAe;IACpD,QAAQ,CAAC,IAAI,aAAa;IAEpB,UAAU,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAIxD,WAAW,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAIzD,SAAS,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAIvD,iBAAiB,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAI/D,YAAY,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAI1D,KAAK,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAInD,QAAQ,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAItD,QAAQ,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAItD,iBAAiB,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAI/D,SAAS,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;CAG9D"}

package/dist/adapters/default-adapter.js DELETED Viewed

@@ -1,51 +0,0 @@
-/**
- * Default Platform Adapter - No-op implementation for CLI and testing.
- *
- * Every method logs the action and returns a success result.
- * This adapter is safe to use in any environment as it performs
- * no actual enforcement.
- *
- * @module agent-threat-rules/adapters/default-adapter
- */
-function createResult(action, ctx) {
-    return Object.freeze({
-        action,
-        success: true,
-        message: `[${action}] logged (no-op) for verdict: ${ctx.verdict.outcome}`,
-        timestamp: new Date().toISOString(),
-    });
-}
-export class DefaultAdapter {
-    name = 'default';
-    async blockInput(ctx) {
-        return createResult('block_input', ctx);
-    }
-    async blockOutput(ctx) {
-        return createResult('block_output', ctx);
-    }
-    async blockTool(ctx) {
-        return createResult('block_tool', ctx);
-    }
-    async quarantineSession(ctx) {
-        return createResult('quarantine_session', ctx);
-    }
-    async resetContext(ctx) {
-        return createResult('reset_context', ctx);
-    }
-    async alert(ctx) {
-        return createResult('alert', ctx);
-    }
-    async snapshot(ctx) {
-        return createResult('snapshot', ctx);
-    }
-    async escalate(ctx) {
-        return createResult('escalate', ctx);
-    }
-    async reducePermissions(ctx) {
-        return createResult('reduce_permissions', ctx);
-    }
-    async killAgent(ctx) {
-        return createResult('kill_agent', ctx);
-    }
-}
-//# sourceMappingURL=default-adapter.js.map

package/dist/adapters/default-adapter.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"default-adapter.js","sourceRoot":"","sources":["../../src/adapters/default-adapter.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAQH,SAAS,YAAY,CACnB,MAA8B,EAC9B,GAAqB;IAErB,OAAO,MAAM,CAAC,MAAM,CAAC;QACnB,MAAM;QACN,OAAO,EAAE,IAAI;QACb,OAAO,EAAE,IAAI,MAAM,iCAAiC,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE;QACzE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,OAAO,cAAc;IAChB,IAAI,GAAG,SAAS,CAAC;IAE1B,KAAK,CAAC,UAAU,CAAC,GAAqB;QACpC,OAAO,YAAY,CAAC,aAAa,EAAE,GAAG,CAAC,CAAC;IAC1C,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,GAAqB;QACrC,OAAO,YAAY,CAAC,cAAc,EAAE,GAAG,CAAC,CAAC;IAC3C,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,GAAqB;QACnC,OAAO,YAAY,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,GAAqB;QAC3C,OAAO,YAAY,CAAC,oBAAoB,EAAE,GAAG,CAAC,CAAC;IACjD,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,GAAqB;QACtC,OAAO,YAAY,CAAC,eAAe,EAAE,GAAG,CAAC,CAAC;IAC5C,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,GAAqB;QAC/B,OAAO,YAAY,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IACpC,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,GAAqB;QAClC,OAAO,YAAY,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;IACvC,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,GAAqB;QAClC,OAAO,YAAY,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;IACvC,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,GAAqB;QAC3C,OAAO,YAAY,CAAC,oBAAoB,EAAE,GAAG,CAAC,CAAC;IACjD,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,GAAqB;QACnC,OAAO,YAAY,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;IACzC,CAAC;CACF"}

package/dist/adapters/stdio-adapter.d.ts DELETED Viewed

@@ -1,30 +0,0 @@
-/**
- * Stdio Platform Adapter - Adapter for Claude Code hook integration.
- *
- * Block actions write JSON responses to an internal buffer that can
- * be flushed to stdout. Alert and snapshot actions log to stderr
- * to avoid interfering with the JSON protocol on stdout.
- *
- * @module agent-threat-rules/adapters/stdio-adapter
- */
-import type { ActionResult, ExecutionContext, PlatformAdapter } from '../types.js';
-export declare class StdioAdapter implements PlatformAdapter {
-    readonly name = "stdio";
-    private readonly responseBuffer;
-    /**
-     * Get buffered responses and clear the buffer.
-     * Returns a frozen copy.
-     */
-    flushResponses(): readonly unknown[];
-    blockInput(ctx: ExecutionContext): Promise<ActionResult>;
-    blockOutput(ctx: ExecutionContext): Promise<ActionResult>;
-    blockTool(ctx: ExecutionContext): Promise<ActionResult>;
-    quarantineSession(ctx: ExecutionContext): Promise<ActionResult>;
-    resetContext(ctx: ExecutionContext): Promise<ActionResult>;
-    alert(ctx: ExecutionContext): Promise<ActionResult>;
-    snapshot(ctx: ExecutionContext): Promise<ActionResult>;
-    escalate(ctx: ExecutionContext): Promise<ActionResult>;
-    reducePermissions(ctx: ExecutionContext): Promise<ActionResult>;
-    killAgent(ctx: ExecutionContext): Promise<ActionResult>;
-}
-//# sourceMappingURL=stdio-adapter.d.ts.map

package/dist/adapters/stdio-adapter.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"stdio-adapter.d.ts","sourceRoot":"","sources":["../../src/adapters/stdio-adapter.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EACV,YAAY,EACZ,gBAAgB,EAChB,eAAe,EAChB,MAAM,aAAa,CAAC;AAcrB,qBAAa,YAAa,YAAW,eAAe;IAClD,QAAQ,CAAC,IAAI,WAAW;IACxB,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAiB;IAEhD;;;OAGG;IACH,cAAc,IAAI,SAAS,OAAO,EAAE;IAM9B,UAAU,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAUxD,WAAW,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAUzD,SAAS,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAWvD,iBAAiB,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAU/D,YAAY,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAS1D,KAAK,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAWnD,QAAQ,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAetD,QAAQ,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAWtD,iBAAiB,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;IAU/D,SAAS,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,YAAY,CAAC;CAS9D"}

package/dist/adapters/stdio-adapter.js DELETED Viewed

@@ -1,128 +0,0 @@
-/**
- * Stdio Platform Adapter - Adapter for Claude Code hook integration.
- *
- * Block actions write JSON responses to an internal buffer that can
- * be flushed to stdout. Alert and snapshot actions log to stderr
- * to avoid interfering with the JSON protocol on stdout.
- *
- * @module agent-threat-rules/adapters/stdio-adapter
- */
-function makeResult(action, message) {
-    return Object.freeze({
-        action,
-        success: true,
-        message,
-        timestamp: new Date().toISOString(),
-    });
-}
-export class StdioAdapter {
-    name = 'stdio';
-    responseBuffer = [];
-    /**
-     * Get buffered responses and clear the buffer.
-     * Returns a frozen copy.
-     */
-    flushResponses() {
-        const copy = Object.freeze([...this.responseBuffer]);
-        this.responseBuffer.length = 0;
-        return copy;
-    }
-    async blockInput(ctx) {
-        const entry = {
-            action: 'block_input',
-            verdict: ctx.verdict.outcome,
-            reason: ctx.verdict.reason,
-        };
-        this.responseBuffer.push(entry);
-        return makeResult('block_input', 'Input blocked via stdio protocol');
-    }
-    async blockOutput(ctx) {
-        const entry = {
-            action: 'block_output',
-            verdict: ctx.verdict.outcome,
-            reason: ctx.verdict.reason,
-        };
-        this.responseBuffer.push(entry);
-        return makeResult('block_output', 'Output blocked via stdio protocol');
-    }
-    async blockTool(ctx) {
-        const entry = {
-            action: 'block_tool',
-            verdict: ctx.verdict.outcome,
-            reason: ctx.verdict.reason,
-            tool: ctx.event.fields?.['tool_name'] ?? 'unknown',
-        };
-        this.responseBuffer.push(entry);
-        return makeResult('block_tool', 'Tool blocked via stdio protocol');
-    }
-    async quarantineSession(ctx) {
-        const entry = {
-            action: 'quarantine_session',
-            verdict: ctx.verdict.outcome,
-            sessionId: ctx.sessionId ?? 'unknown',
-        };
-        this.responseBuffer.push(entry);
-        return makeResult('quarantine_session', 'Session quarantined via stdio protocol');
-    }
-    async resetContext(ctx) {
-        const entry = {
-            action: 'reset_context',
-            verdict: ctx.verdict.outcome,
-        };
-        this.responseBuffer.push(entry);
-        return makeResult('reset_context', 'Context reset via stdio protocol');
-    }
-    async alert(ctx) {
-        const alertMsg = {
-            type: 'alert',
-            severity: ctx.verdict.highestSeverity,
-            reason: ctx.verdict.reason,
-            matchCount: ctx.verdict.matchCount,
-        };
-        process.stderr.write(JSON.stringify(alertMsg) + '\n');
-        return makeResult('alert', 'Alert written to stderr');
-    }
-    async snapshot(ctx) {
-        const snapshotData = {
-            type: 'snapshot',
-            event: {
-                type: ctx.event.type,
-                contentPreview: ctx.event.content.slice(0, 200),
-            },
-            verdict: ctx.verdict.outcome,
-            matchCount: ctx.verdict.matchCount,
-            timestamp: new Date().toISOString(),
-        };
-        process.stderr.write(JSON.stringify(snapshotData) + '\n');
-        return makeResult('snapshot', 'Snapshot written to stderr');
-    }
-    async escalate(ctx) {
-        const escalation = {
-            type: 'escalation',
-            severity: ctx.verdict.highestSeverity,
-            reason: ctx.verdict.reason,
-            matchCount: ctx.verdict.matchCount,
-        };
-        process.stderr.write(JSON.stringify(escalation) + '\n');
-        return makeResult('escalate', 'Escalation written to stderr');
-    }
-    async reducePermissions(ctx) {
-        const entry = {
-            action: 'reduce_permissions',
-            verdict: ctx.verdict.outcome,
-            reason: ctx.verdict.reason,
-        };
-        this.responseBuffer.push(entry);
-        return makeResult('reduce_permissions', 'Permissions reduced via stdio protocol');
-    }
-    async killAgent(ctx) {
-        const entry = {
-            action: 'kill_agent',
-            verdict: ctx.verdict.outcome,
-            reason: ctx.verdict.reason,
-        };
-        this.responseBuffer.push(entry);
-        return makeResult('kill_agent', 'Agent kill requested via stdio protocol');
-    }
-}
-//# sourceMappingURL=stdio-adapter.js.map

package/dist/adapters/stdio-adapter.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"stdio-adapter.js","sourceRoot":"","sources":["../../src/adapters/stdio-adapter.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAQH,SAAS,UAAU,CACjB,MAA8B,EAC9B,OAAe;IAEf,OAAO,MAAM,CAAC,MAAM,CAAC;QACnB,MAAM;QACN,OAAO,EAAE,IAAI;QACb,OAAO;QACP,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,OAAO,YAAY;IACd,IAAI,GAAG,OAAO,CAAC;IACP,cAAc,GAAc,EAAE,CAAC;IAEhD;;;OAGG;IACH,cAAc;QACZ,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC;QACrD,IAAI,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC;QAC/B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,GAAqB;QACpC,MAAM,KAAK,GAAG;YACZ,MAAM,EAAE,aAAa;YACrB,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YAC5B,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;SAC3B,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,OAAO,UAAU,CAAC,aAAa,EAAE,kCAAkC,CAAC,CAAC;IACvE,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,GAAqB;QACrC,MAAM,KAAK,GAAG;YACZ,MAAM,EAAE,cAAc;YACtB,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YAC5B,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;SAC3B,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,OAAO,UAAU,CAAC,cAAc,EAAE,mCAAmC,CAAC,CAAC;IACzE,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,GAAqB;QACnC,MAAM,KAAK,GAAG;YACZ,MAAM,EAAE,YAAY;YACpB,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YAC5B,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;YAC1B,IAAI,EAAE,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,WAAW,CAAC,IAAI,SAAS;SACnD,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,OAAO,UAAU,CAAC,YAAY,EAAE,iCAAiC,CAAC,CAAC;IACrE,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,GAAqB;QAC3C,MAAM,KAAK,GAAG;YACZ,MAAM,EAAE,oBAAoB;YAC5B,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YAC5B,SAAS,EAAE,GAAG,CAAC,SAAS,IAAI,SAAS;SACtC,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,OAAO,UAAU,CAAC,oBAAoB,EAAE,wCAAwC,CAAC,CAAC;IACpF,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,GAAqB;QACtC,MAAM,KAAK,GAAG;YACZ,MAAM,EAAE,eAAe;YACvB,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;SAC7B,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,OAAO,UAAU,CAAC,eAAe,EAAE,kCAAkC,CAAC,CAAC;IACzE,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,GAAqB;QAC/B,MAAM,QAAQ,GAAG;YACf,IAAI,EAAE,OAAO;YACb,QAAQ,EAAE,GAAG,CAAC,OAAO,CAAC,eAAe;YACrC,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;YAC1B,UAAU,EAAE,GAAG,CAAC,OAAO,CAAC,UAAU;SACnC,CAAC;QACF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,CAAC;QACtD,OAAO,UAAU,CAAC,OAAO,EAAE,yBAAyB,CAAC,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,GAAqB;QAClC,MAAM,YAAY,GAAG;YACnB,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE;gBACL,IAAI,EAAE,GAAG,CAAC,KAAK,CAAC,IAAI;gBACpB,cAAc,EAAE,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;aAChD;YACD,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YAC5B,UAAU,EAAE,GAAG,CAAC,OAAO,CAAC,UAAU;YAClC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACpC,CAAC;QACF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC;QAC1D,OAAO,UAAU,CAAC,UAAU,EAAE,4BAA4B,CAAC,CAAC;IAC9D,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,GAAqB;QAClC,MAAM,UAAU,GAAG;YACjB,IAAI,EAAE,YAAY;YAClB,QAAQ,EAAE,GAAG,CAAC,OAAO,CAAC,eAAe;YACrC,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;YAC1B,UAAU,EAAE,GAAG,CAAC,OAAO,CAAC,UAAU;SACnC,CAAC;QACF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,CAAC;QACxD,OAAO,UAAU,CAAC,UAAU,EAAE,8BAA8B,CAAC,CAAC;IAChE,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,GAAqB;QAC3C,MAAM,KAAK,GAAG;YACZ,MAAM,EAAE,oBAAoB;YAC5B,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YAC5B,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;SAC3B,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,OAAO,UAAU,CAAC,oBAAoB,EAAE,wCAAwC,CAAC,CAAC;IACpF,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,GAAqB;QACnC,MAAM,KAAK,GAAG;YACZ,MAAM,EAAE,YAAY;YACpB,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YAC5B,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;SAC3B,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,OAAO,UAAU,CAAC,YAAY,EAAE,yCAAyC,CAAC,CAAC;IAC7E,CAAC;CACF"}

package/dist/capability-extractor.d.ts DELETED Viewed

@@ -1,35 +0,0 @@
-/**
- * Shared capability extraction from text content.
- *
- * Used by both SkillFingerprintStore (behavioral drift detection)
- * and InvariantChecker (manifest enforcement).
- *
- * Regex-based, no LLM needed. Analyzes first 10KB to prevent ReDoS.
- *
- * @module agent-threat-rules/capability-extractor
- */
-export declare const FS_WRITE_PATTERN: RegExp;
-export declare const FS_READ_PATTERN: RegExp;
-export declare const FS_DELETE_PATTERN: RegExp;
-export declare const NETWORK_PATTERN: RegExp;
-export declare const ENV_PATTERN: RegExp;
-export declare const ENV_INLINE_PATTERN: RegExp;
-export declare const EXEC_PATTERN: RegExp;
-export declare const EXFIL_PATTERN: RegExp;
-export declare const REDIRECT_PATTERN: RegExp;
-/** Path extraction: find filesystem paths referenced in text (min 2 segments to reduce noise) */
-export declare const PATH_PATTERN: RegExp;
-/** Config file modification patterns */
-export declare const CONFIG_MOD_PATTERN: RegExp;
-export interface ExtractedCapabilities {
-    readonly filesystemOps: readonly string[];
-    readonly filesystemPaths: readonly string[];
-    readonly networkTargets: readonly string[];
-    readonly envAccesses: readonly string[];
-    readonly processExecs: readonly string[];
-    readonly outputPatterns: readonly string[];
-    readonly configModifications: boolean;
-}
-/** Classify text content into behavioral capabilities */
-export declare function extractCapabilities(text: string): ExtractedCapabilities;
-//# sourceMappingURL=capability-extractor.d.ts.map

package/dist/capability-extractor.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"capability-extractor.d.ts","sourceRoot":"","sources":["../src/capability-extractor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAMH,eAAO,MAAM,gBAAgB,QACkD,CAAC;AAChF,eAAO,MAAM,eAAe,QACiC,CAAC;AAC9D,eAAO,MAAM,iBAAiB,QAC0B,CAAC;AAEzD,eAAO,MAAM,eAAe,QAC0F,CAAC;AAEvH,eAAO,MAAM,WAAW,QAC0D,CAAC;AACnF,eAAO,MAAM,kBAAkB,QAAmC,CAAC;AAEnE,eAAO,MAAM,YAAY,QACiG,CAAC;AAE3H,eAAO,MAAM,aAAa,QAC6D,CAAC;AACxF,eAAO,MAAM,gBAAgB,QACqC,CAAC;AAEnE,iGAAiG;AACjG,eAAO,MAAM,YAAY,QACuB,CAAC;AASjD,wCAAwC;AACxC,eAAO,MAAM,kBAAkB,QACqD,CAAC;AAMrF,MAAM,WAAW,qBAAqB;IACpC,QAAQ,CAAC,aAAa,EAAE,SAAS,MAAM,EAAE,CAAC;IAC1C,QAAQ,CAAC,eAAe,EAAE,SAAS,MAAM,EAAE,CAAC;IAC5C,QAAQ,CAAC,cAAc,EAAE,SAAS,MAAM,EAAE,CAAC;IAC3C,QAAQ,CAAC,WAAW,EAAE,SAAS,MAAM,EAAE,CAAC;IACxC,QAAQ,CAAC,YAAY,EAAE,SAAS,MAAM,EAAE,CAAC;IACzC,QAAQ,CAAC,cAAc,EAAE,SAAS,MAAM,EAAE,CAAC;IAC3C,QAAQ,CAAC,mBAAmB,EAAE,OAAO,CAAC;CACvC;AAED,yDAAyD;AACzD,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,GAAG,qBAAqB,CAwDvE"}

package/dist/capability-extractor.js DELETED Viewed

@@ -1,91 +0,0 @@
-/**
- * Shared capability extraction from text content.
- *
- * Used by both SkillFingerprintStore (behavioral drift detection)
- * and InvariantChecker (manifest enforcement).
- *
- * Regex-based, no LLM needed. Analyzes first 10KB to prevent ReDoS.
- *
- * @module agent-threat-rules/capability-extractor
- */
-// ---------------------------------------------------------------------------
-// Pattern detectors
-// ---------------------------------------------------------------------------
-export const FS_WRITE_PATTERN = /(?:write(?:File)?|appendFile|fs\.write|truncate|mkdir|rmdir|unlink|rm\s+-)/i;
-export const FS_READ_PATTERN = /(?:read(?:File)?|readdir|stat|access|exists|glob|find\s)/i;
-export const FS_DELETE_PATTERN = /(?:unlink|rm\s+-rf|delete(?:File)?|removeDir|rmdir)/i;
-export const NETWORK_PATTERN = /(?:https?:\/\/|fetch|curl|wget|axios|http\.request|net\.connect|socket)[\s('"]*([a-zA-Z0-9.-]+(?:\.[a-zA-Z]{2,}))/i;
-export const ENV_PATTERN = /(?:process\.env|os\.environ|getenv|System\.getenv)\[?['"(]?([A-Z_][A-Z0-9_]*)/i;
-export const ENV_INLINE_PATTERN = /\$\{?([A-Z_][A-Z0-9_]{2,})\}?/g;
-export const EXEC_PATTERN = /(?:child_process|spawn|exec(?:File)?|system\(|popen|subprocess|shell_exec|os\.system)\s*\(\s*['"(]?([^\s'")\]]{1,80})/i;
-export const EXFIL_PATTERN = /(?:base64|btoa|encode|compress|deflate|gzip).*(?:http|fetch|curl|send|post|upload)/i;
-export const REDIRECT_PATTERN = /(?:redirect|forward|proxy|tunnel)\s+(?:to\s+)?(?:https?:\/\/)/i;
-/** Path extraction: find filesystem paths referenced in text (min 2 segments to reduce noise) */
-export const PATH_PATTERN = /(?:["'`]|^|\s)(\/(?:[\w.-]+\/){1,}[\w.-]+)/gm;
-/** Common benign paths that appear in docs/version strings -- skip these */
-const BENIGN_PATH_PREFIXES = [
-    '/usr/bin/', '/usr/lib/', '/usr/local/',
-    '/node_modules/', '/dist/', '/build/',
-    '/v1/', '/v2/', '/api/',
-];
-/** Config file modification patterns */
-export const CONFIG_MOD_PATTERN = /(?:\.mcp\.json|\.claude\/|\.cursor\/|mcp-config|settings\.json|\.env(?:\.\w+)?)/i;
-/** Classify text content into behavioral capabilities */
-export function extractCapabilities(text) {
-    const result = {
-        filesystemOps: [],
-        filesystemPaths: [],
-        networkTargets: [],
-        envAccesses: [],
-        processExecs: [],
-        outputPatterns: [],
-        configModifications: false,
-    };
-    if (!text || text.length === 0)
-        return result;
-    // Limit analysis to first 10KB to prevent ReDoS
-    const safeText = text.slice(0, 10_240);
-    // Filesystem operations
-    if (FS_WRITE_PATTERN.test(safeText))
-        result.filesystemOps.push('write');
-    if (FS_READ_PATTERN.test(safeText))
-        result.filesystemOps.push('read');
-    if (FS_DELETE_PATTERN.test(safeText))
-        result.filesystemOps.push('delete');
-    // Filesystem paths (filter out benign paths from docs/version strings)
-    for (const m of safeText.matchAll(PATH_PATTERN)) {
-        const path = m[1];
-        if (!path || result.filesystemPaths.includes(path))
-            continue;
-        const isBenign = BENIGN_PATH_PREFIXES.some((p) => path.startsWith(p));
-        if (!isBenign) {
-            result.filesystemPaths.push(path);
-        }
-    }
-    // Network targets
-    const netMatch = safeText.match(NETWORK_PATTERN);
-    if (netMatch?.[1])
-        result.networkTargets.push(netMatch[1]);
-    // Environment variable accesses
-    const envMatch = safeText.match(ENV_PATTERN);
-    if (envMatch?.[1])
-        result.envAccesses.push(envMatch[1]);
-    for (const m of safeText.matchAll(ENV_INLINE_PATTERN)) {
-        if (m[1] && !result.envAccesses.includes(m[1])) {
-            result.envAccesses.push(m[1]);
-        }
-    }
-    // Process executions
-    const execMatch = safeText.match(EXEC_PATTERN);
-    if (execMatch?.[1])
-        result.processExecs.push(execMatch[1]);
-    // Output patterns
-    if (EXFIL_PATTERN.test(safeText))
-        result.outputPatterns.push('exfiltration');
-    if (REDIRECT_PATTERN.test(safeText))
-        result.outputPatterns.push('redirect');
-    // Config modifications
-    result.configModifications = CONFIG_MOD_PATTERN.test(safeText);
-    return result;
-}
-//# sourceMappingURL=capability-extractor.js.map

package/dist/capability-extractor.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"capability-extractor.js","sourceRoot":"","sources":["../src/capability-extractor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,8EAA8E;AAC9E,oBAAoB;AACpB,8EAA8E;AAE9E,MAAM,CAAC,MAAM,gBAAgB,GAC3B,6EAA6E,CAAC;AAChF,MAAM,CAAC,MAAM,eAAe,GAC1B,2DAA2D,CAAC;AAC9D,MAAM,CAAC,MAAM,iBAAiB,GAC5B,sDAAsD,CAAC;AAEzD,MAAM,CAAC,MAAM,eAAe,GAC1B,oHAAoH,CAAC;AAEvH,MAAM,CAAC,MAAM,WAAW,GACtB,gFAAgF,CAAC;AACnF,MAAM,CAAC,MAAM,kBAAkB,GAAG,gCAAgC,CAAC;AAEnE,MAAM,CAAC,MAAM,YAAY,GACvB,wHAAwH,CAAC;AAE3H,MAAM,CAAC,MAAM,aAAa,GACxB,qFAAqF,CAAC;AACxF,MAAM,CAAC,MAAM,gBAAgB,GAC3B,gEAAgE,CAAC;AAEnE,iGAAiG;AACjG,MAAM,CAAC,MAAM,YAAY,GACvB,8CAA8C,CAAC;AAEjD,4EAA4E;AAC5E,MAAM,oBAAoB,GAAG;IAC3B,WAAW,EAAE,WAAW,EAAE,aAAa;IACvC,gBAAgB,EAAE,QAAQ,EAAE,SAAS;IACrC,MAAM,EAAE,MAAM,EAAE,OAAO;CACf,CAAC;AAEX,wCAAwC;AACxC,MAAM,CAAC,MAAM,kBAAkB,GAC7B,kFAAkF,CAAC;AAgBrF,yDAAyD;AACzD,MAAM,UAAU,mBAAmB,CAAC,IAAY;IAC9C,MAAM,MAAM,GAAG;QACb,aAAa,EAAE,EAAc;QAC7B,eAAe,EAAE,EAAc;QAC/B,cAAc,EAAE,EAAc;QAC9B,WAAW,EAAE,EAAc;QAC3B,YAAY,EAAE,EAAc;QAC5B,cAAc,EAAE,EAAc;QAC9B,mBAAmB,EAAE,KAAK;KAC3B,CAAC;IAEF,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,MAAM,CAAC;IAE9C,gDAAgD;IAChD,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;IAEvC,wBAAwB;IACxB,IAAI,gBAAgB,CAAC,IAAI,CAAC,QAAQ,CAAC;QAAE,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACxE,IAAI,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC;QAAE,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACtE,IAAI,iBAAiB,CAAC,IAAI,CAAC,QAAQ,CAAC;QAAE,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAE1E,uEAAuE;IACvE,KAAK,MAAM,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QAChD,MAAM,IAAI,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAClB,IAAI,CAAC,IAAI,IAAI,MAAM,CAAC,eAAe,CAAC,QAAQ,CAAC,IAAI,CAAC;YAAE,SAAS;QAC7D,MAAM,QAAQ,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;QACtE,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;IAED,kBAAkB;IAClB,MAAM,QAAQ,GAAG,QAAQ,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;IACjD,IAAI,QAAQ,EAAE,CAAC,CAAC,CAAC;QAAE,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IAE3D,gCAAgC;IAChC,MAAM,QAAQ,GAAG,QAAQ,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;IAC7C,IAAI,QAAQ,EAAE,CAAC,CAAC,CAAC;QAAE,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IACxD,KAAK,MAAM,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;QACtD,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC/C,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;IAED,qBAAqB;IACrB,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;IAC/C,IAAI,SAAS,EAAE,CAAC,CAAC,CAAC;QAAE,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC;IAE3D,kBAAkB;IAClB,IAAI,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC;QAAE,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;IAC7E,IAAI,gBAAgB,CAAC,IAAI,CAAC,QAAQ,CAAC;QAAE,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IAE5E,uBAAuB;IACvB,MAAM,CAAC,mBAAmB,GAAG,kBAAkB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAE/D,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/cli.d.ts DELETED Viewed

@@ -1,12 +0,0 @@
-#!/usr/bin/env node
-/**
- * ATR CLI - Command-line interface for Agent Threat Rules
- *
- * Usage:
- *   npx agent-threat-rules scan <events.json>     Scan events against all rules
- *   npx agent-threat-rules validate <rule.yaml>    Validate a rule file
- *   npx agent-threat-rules test <rule.yaml>        Run a rule's test cases
- *   npx agent-threat-rules stats                   Show rule collection stats
- */
-export {};
-//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AACA;;;;;;;;GAQG"}