autoremediator 0.14.0 → 0.14.1

package/dist/{chunk-3NNNFJLV.js → chunk-IXCNMTOO.js}

@@ -613,13 +613,21 @@ function validatePatchDiff(patchContent) {
 // src/api/patches/helpers.ts
 import { existsSync as existsSync3 } from "fs";
 import { readFile } from "fs/promises";
-import { isAbsolute, resolve } from "path";
+import { isAbsolute, resolve, sep } from "path";
 var DEFAULT_PATCHES_DIR = "./patches";
 function resolvePatchesDir(cwd, patchesDir = DEFAULT_PATCHES_DIR) {
   return isAbsolute(patchesDir) ? patchesDir : resolve(cwd, patchesDir);
 }
 function resolveArtifactPath(cwd, patchFilePath) {
-  return isAbsolute(patchFilePath) ? patchFilePath : resolve(cwd, patchFilePath);
+  const resolved = isAbsolute(patchFilePath) ? patchFilePath : resolve(cwd, patchFilePath);
+  if (!resolved.endsWith(".patch")) {
+    throw new Error(`patchFilePath must point to a .patch file: ${patchFilePath}`);
+  }
+  const patchesRoot = resolvePatchesDir(cwd);
+  if (!resolved.startsWith(patchesRoot + sep)) {
+    throw new Error(`patchFilePath must be inside the patches directory: ${patchFilePath}`);
+  }
+  return resolved;
 }
 async function readManifest(manifestFilePath) {
   if (!existsSync3(manifestFilePath)) {
@@ -627,7 +635,11 @@ async function readManifest(manifestFilePath) {
   }
   try {
     const raw = await readFile(manifestFilePath, "utf8");
-    return JSON.parse(raw);
+    const parsed = JSON.parse(raw);
+    if (parsed === null || typeof parsed !== "object" || parsed.schemaVersion !== "1.0" || typeof parsed.packageName !== "string" || typeof parsed.vulnerableVersion !== "string" || typeof parsed.patchFilePath !== "string" || typeof parsed.patchFileName !== "string" || typeof parsed.applied !== "boolean" || typeof parsed.dryRun !== "boolean" || typeof parsed.generatedAt !== "string") {
+      return void 0;
+    }
+    return parsed;
   } catch {
     return void 0;
   }
@@ -1062,6 +1074,11 @@ async function loadRemoteFactory() {
       "AUTOREMEDIATOR_REMOTE_CLIENT_MODULE is required for remote provider model loading."
     );
   }
+  if (moduleName.startsWith("./") || moduleName.startsWith("../") || moduleName.startsWith("/") || moduleName.startsWith("file:")) {
+    throw new Error(
+      `AUTOREMEDIATOR_REMOTE_CLIENT_MODULE must be a package name, not a file path: ${moduleName}`
+    );
+  }
   const loaded = await import(moduleName);
   const factory = loaded[exportName];
   if (typeof factory !== "function") {
@@ -1223,7 +1240,15 @@ async function httpClient(request) {
   }
   try {
     const res = await requestWithTimeout(url, init, timeout);
+    const MAX_RESPONSE_BYTES = 10 * 1024 * 1024;
+    const contentLength = res.headers?.get?.("content-length") ?? null;
+    if (contentLength && parseInt(contentLength, 10) > MAX_RESPONSE_BYTES) {
+      throw new HttpError(`Response too large (content-length: ${contentLength})`, "HTTP_ERROR");
+    }
     const text = await res.text();
+    if (Buffer.byteLength(text) > MAX_RESPONSE_BYTES) {
+      throw new HttpError("Response body exceeds 10 MB limit", "HTTP_ERROR");
+    }
     let data;
     try {
       data = text ? JSON.parse(text) : {};
@@ -1862,7 +1887,7 @@ import semver2 from "semver";
 import { mkdir, rm } from "fs/promises";
 import { join as join10 } from "path";
 async function sleep(ms) {
-  await new Promise((resolve2) => setTimeout(resolve2, ms));
+  await new Promise((resolve3) => setTimeout(resolve3, ms));
 }
 async function acquireRepoLock(cwd, options = {}) {
   const timeoutMs = options.timeoutMs ?? 15e3;
@@ -2621,8 +2646,9 @@ async function resolvePrimaryResult(params) {
 
 // src/remediation/tools/fetch-package-source.ts
 import { z as z6 } from "zod";
-import { mkdir as mkdir2, readdir as readdir2, readFile as readFile3, rm as rm2 } from "fs/promises";
+import { mkdir as mkdir2, mkdtemp, readdir as readdir2, readFile as readFile3, rm as rm2 } from "fs/promises";
 import { join as join13 } from "path";
+import { tmpdir } from "os";
 import { execa as execa8 } from "execa";
 var fetchPackageSourceTool = defineTool({
   description: "Download package tarball from npm and extract source files for CVE analysis. Supports custom file patterns (default: *.js, *.ts).",
@@ -2638,10 +2664,20 @@ var fetchPackageSourceTool = defineTool({
     version,
     filePatterns
   }) => {
-    const tempBaseDir = `/tmp/autoremediator-pkg-${Date.now()}`;
+    if (!/^(@[a-z0-9][a-z0-9._-]*\/)?[a-z0-9][a-z0-9._-]*$/i.test(packageName)) {
+      return { success: false, error: `Invalid package name: ${packageName}` };
+    }
+    const safePatterns = (filePatterns ?? ["*.js", "*.ts"]).filter(
+      (p) => /^[a-zA-Z0-9._/*?-]+$/.test(p)
+    );
+    if (safePatterns.length === 0) {
+      return { success: false, error: "No valid file patterns provided." };
+    }
+    const tempBaseDir = await mkdtemp(join13(tmpdir(), "autoremediator-pkg-"));
     const extractDir = join13(tempBaseDir, "out");
     try {
-      const npmUrl = `https://registry.npmjs.org/${packageName}/-/${packageName.split("/").pop()}-${version}.tgz`;
+      const scopedName = packageName.split("/").pop();
+      const npmUrl = `https://registry.npmjs.org/${packageName}/-/${scopedName}-${version}.tgz`;
       await mkdir2(tempBaseDir, { recursive: true });
       const tarballPath = join13(tempBaseDir, "package.tgz");
       await execa8("curl", ["-L", "-o", tarballPath, npmUrl]);
@@ -2669,7 +2705,7 @@ var fetchPackageSourceTool = defineTool({
                 await walkDir(fullPath, relPath);
               }
             } else if (file.isFile()) {
-              const matches = filePatterns.some((pattern) => {
+              const matches = safePatterns.some((pattern) => {
                 const regex = new RegExp(
                   `^${pattern.replace(/\*/g, ".*").replace(/\./g, "\\.")}$`
                 );
@@ -2691,7 +2727,7 @@ var fetchPackageSourceTool = defineTool({
       if (Object.keys(sourceCode).length === 0) {
         return {
           success: false,
-          error: `No source files matching patterns [${filePatterns.join(", ")}] found in ${packageName}@${version}. Download succeeded but extraction yielded no matching files.`
+          error: `No source files matching patterns [${safePatterns.join(", ")}] found in ${packageName}@${version}. Download succeeded but extraction yielded no matching files.`
         };
       }
       return {
@@ -3032,9 +3068,9 @@ import { execa as execa10 } from "execa";
 
 // src/remediation/tools/apply-patch-file/helpers.ts
 import { existsSync as existsSync8 } from "fs";
-import { mkdtemp, readFile as readFile4, rm as rm3, writeFile } from "fs/promises";
+import { mkdtemp as mkdtemp2, readFile as readFile4, rm as rm3, writeFile } from "fs/promises";
 import { createHash } from "crypto";
-import { tmpdir } from "os";
+import { tmpdir as tmpdir2 } from "os";
 import { join as join14 } from "path";
 import { execa as execa9 } from "execa";
 async function resolvePatchMode(packageManager, cwd) {
@@ -3179,7 +3215,7 @@ ${createResult.stderr}`);
       error: `Could not determine native patch directory for ${packageSpec}.`
     };
   }
-  const tempPatchDir = await mkdtemp(join14(tmpdir(), "autoremediator-native-patch-"));
+  const tempPatchDir = await mkdtemp2(join14(tmpdir2(), "autoremediator-native-patch-"));
   const tempPatchFile = join14(tempPatchDir, "change.patch");
   try {
     await writeFile(tempPatchFile, patchContent, "utf8");
@@ -4661,6 +4697,13 @@ async function enrichWithOssfScorecard(details) {
 async function probeFeed(url, cveId, token) {
   try {
     const feedUrl = new URL(url);
+    const hostname = feedUrl.hostname.toLowerCase();
+    if (hostname === "localhost" || /^127\./.test(hostname) || /^10\./.test(hostname) || /^172\.(1[6-9]|2\d|3[01])\./.test(hostname) || /^192\.168\./.test(hostname) || hostname === "0.0.0.0" || /^169\.254\./.test(hostname) || hostname === "[::1]" || hostname === "::1") {
+      return void 0;
+    }
+    if (feedUrl.protocol !== "https:" && feedUrl.protocol !== "http:") {
+      return void 0;
+    }
     feedUrl.searchParams.set("cve", cveId);
     const headers = {};
     if (token) headers.Authorization = `Bearer ${token}`;
@@ -5091,6 +5134,7 @@ async function runRemediationPipeline(cveId, options = {}) {
 
 // src/api/change-request/index.ts
 import { execa as execa11 } from "execa";
+import { randomBytes } from "crypto";
 function sanitizeBranchToken(value) {
   return value.toLowerCase().replace(/[^a-z0-9._/-]+/g, "-").replace(/^-+|-+$/g, "").slice(0, 80);
 }
@@ -5143,7 +5187,7 @@ async function ensureRepoHasChanges(cwd) {
 }
 function toBranchName(prefix, cveIds) {
   const token = sanitizeBranchToken(cveIds.join("-") || "remediation");
-  return `${sanitizeBranchToken(prefix)}/${token}-${Date.now()}`;
+  return `${sanitizeBranchToken(prefix)}/${token}-${randomBytes(6).toString("hex")}`;
 }
 async function createGitHubRequest(params) {
   const args = ["pr", "create", "--head", params.head, "--base", params.base, "--title", params.title, "--body", params.body];
@@ -5189,11 +5233,12 @@ async function createChangeRequestsForReports(params) {
   const provider = resolveProvider2(options);
   const grouping = resolveGrouping(options);
   const plan = buildPlan(reports);
-  const titlePrefix = options.titlePrefix?.trim();
+  const titlePrefix = options.titlePrefix?.trim().slice(0, 200);
+  const bodyFooter = options.bodyFooter ? options.bodyFooter.slice(0, 2e3) : void 0;
   const title = titlePrefix ? `${titlePrefix} ${plan.title}` : plan.title;
-  const body = options.bodyFooter ? `${plan.body}
+  const body = bodyFooter ? `${plan.body}
 
-${options.bodyFooter}` : plan.body;
+${bodyFooter}` : plan.body;
   try {
     const hasChanges = await ensureRepoHasChanges(cwd);
     if (!hasChanges) {
@@ -5216,6 +5261,12 @@ ${options.bodyFooter}` : plan.body;
     const branchPrefix = options.branchPrefix ?? "autoremediator";
     const branchName = toBranchName(branchPrefix, plan.cveIds);
     const pushRemote = options.pushRemote ?? "origin";
+    if (options.pushRemote && !/^[a-zA-Z0-9._-]+$/.test(options.pushRemote)) {
+      throw new Error(`Invalid pushRemote value: ${options.pushRemote}`);
+    }
+    if (options.repository && !/^[a-zA-Z0-9._-]+\/[a-zA-Z0-9._-]+$/.test(options.repository)) {
+      throw new Error(`Invalid repository format: ${options.repository}`);
+    }
     await execa11("git", ["checkout", "-b", branchName], { cwd, stdio: "pipe" });
     await execa11("git", ["add", "-A"], { cwd, stdio: "pipe" });
     await execa11("git", ["commit", "-m", title], { cwd, stdio: "pipe" });
@@ -5903,13 +5954,13 @@ async function planRemediation(cveId, options = {}) {
 }
 
 // src/scanner/parse-input.ts
-import { extname as extname2 } from "path";
+import { extname as extname2, resolve as resolve2 } from "path";
 import { readFileSync as readFileSync14 } from "fs";
 import { execa as execa12 } from "execa";
 
 // src/scanner/adapters/npm-audit.ts
 import { readFileSync as readFileSync11 } from "fs";
-var CVE_REGEX = /CVE-\d{4}-\d+/gi;
+var CVE_REGEX = /CVE-\d{4}-\d{1,7}/gi;
 function normalizeSeverity(raw) {
   if (!raw) return "UNKNOWN";
   const up = raw.toUpperCase();
@@ -5948,7 +5999,7 @@ function parseNpmAuditJsonFile(filePath) {
 
 // src/scanner/adapters/yarn-audit.ts
 import { readFileSync as readFileSync12 } from "fs";
-var CVE_REGEX2 = /CVE-\d{4}-\d+/gi;
+var CVE_REGEX2 = /CVE-\d{4}-\d{1,7}/gi;
 function normalizeSeverity2(raw) {
   if (!raw) return "UNKNOWN";
   const up = raw.toUpperCase();
@@ -5996,7 +6047,7 @@ function parseYarnAuditJsonFile(filePath) {
 
 // src/scanner/adapters/sarif.ts
 import { readFileSync as readFileSync13 } from "fs";
-var CVE_REGEX3 = /CVE-\d{4}-\d+/gi;
+var CVE_REGEX3 = /CVE-\d{4}-\d{1,7}/gi;
 function extractPackageName(result) {
   const pkg = result.properties?.["packageName"];
   return typeof pkg === "string" ? pkg : void 0;
@@ -6005,9 +6056,15 @@ function parseSarifFromString(content) {
   const report = JSON.parse(content);
   const findings = [];
   const seen = /* @__PURE__ */ new Set();
-  for (const run of report.runs ?? []) {
+  const MAX_RUNS = 100;
+  const MAX_TOTAL_RESULTS = 1e4;
+  let totalResults = 0;
+  for (const run of (report.runs ?? []).slice(0, MAX_RUNS)) {
     for (const result of run.results ?? []) {
-      const combined = `${result.ruleId ?? ""} ${result.message?.text ?? ""}`;
+      if (totalResults++ >= MAX_TOTAL_RESULTS) break;
+      const ruleId = (result.ruleId ?? "").slice(0, 1024);
+      const messageText = (result.message?.text ?? "").slice(0, 4096);
+      const combined = `${ruleId} ${messageText}`;
       const matches = combined.match(CVE_REGEX3) ?? [];
       for (const match of matches) {
         const cveId = match.toUpperCase();
@@ -6033,15 +6090,19 @@ function parseSarifFile(filePath) {
 
 // src/scanner/parse-input.ts
 function parseScanInput(filePath, format) {
-  const resolved = format === "auto" ? inferFormat(filePath) : format;
+  if (filePath.includes("\0")) {
+    throw new Error("Invalid scan input path: path contains null bytes");
+  }
+  const resolvedPath = resolve2(filePath);
+  const resolved = format === "auto" ? inferFormat(resolvedPath) : format;
   if (resolved === "npm-audit") {
-    return parseNpmAuditJsonFile(filePath);
+    return parseNpmAuditJsonFile(resolvedPath);
   }
   if (resolved === "yarn-audit") {
-    return parseYarnAuditJsonFile(filePath);
+    return parseYarnAuditJsonFile(resolvedPath);
   }
   if (resolved === "sarif") {
-    return parseSarifFile(filePath);
+    return parseSarifFile(resolvedPath);
   }
   throw new Error(`Unsupported input format: ${resolved}`);
 }
@@ -6840,4 +6901,3 @@ export {
   updateOutdated,
   PACKAGE_VERSION
 };
-//# sourceMappingURL=chunk-3NNNFJLV.js.map

package/dist/cli.js

@@ -12,7 +12,7 @@ import {
   toSarifOutput,
   updateOutdated,
   validatePatchArtifact
-} from "./chunk-3NNNFJLV.js";
+} from "./chunk-IXCNMTOO.js";
 
 // src/cli/index.ts
 import { fileURLToPath } from "url";
@@ -507,7 +507,7 @@ async function runPortfolio(targetsFilePath, opts) {
 
 // src/cli/types.ts
 function isCveId(value) {
-  return /^CVE-\d{4}-\d+$/i.test(value);
+  return /^CVE-\d{4}-\d{1,7}$/i.test(value);
 }
 
 // src/cli/validators.ts
@@ -727,4 +727,3 @@ if (isMainModule()) {
 export {
   createProgram2 as createProgram
 };
-//# sourceMappingURL=cli.js.map

package/dist/index.js

@@ -1007,13 +1007,21 @@ function validatePatchDiff(patchContent) {
 // src/api/patches/helpers.ts
 import { existsSync as existsSync3 } from "fs";
 import { readFile } from "fs/promises";
-import { isAbsolute, resolve } from "path";
+import { isAbsolute, resolve, sep } from "path";
 var DEFAULT_PATCHES_DIR = "./patches";
 function resolvePatchesDir(cwd, patchesDir = DEFAULT_PATCHES_DIR) {
   return isAbsolute(patchesDir) ? patchesDir : resolve(cwd, patchesDir);
 }
 function resolveArtifactPath(cwd, patchFilePath) {
-  return isAbsolute(patchFilePath) ? patchFilePath : resolve(cwd, patchFilePath);
+  const resolved = isAbsolute(patchFilePath) ? patchFilePath : resolve(cwd, patchFilePath);
+  if (!resolved.endsWith(".patch")) {
+    throw new Error(`patchFilePath must point to a .patch file: ${patchFilePath}`);
+  }
+  const patchesRoot = resolvePatchesDir(cwd);
+  if (!resolved.startsWith(patchesRoot + sep)) {
+    throw new Error(`patchFilePath must be inside the patches directory: ${patchFilePath}`);
+  }
+  return resolved;
 }
 async function readManifest(manifestFilePath) {
   if (!existsSync3(manifestFilePath)) {
@@ -1021,7 +1029,11 @@ async function readManifest(manifestFilePath) {
   }
   try {
     const raw = await readFile(manifestFilePath, "utf8");
-    return JSON.parse(raw);
+    const parsed = JSON.parse(raw);
+    if (parsed === null || typeof parsed !== "object" || parsed.schemaVersion !== "1.0" || typeof parsed.packageName !== "string" || typeof parsed.vulnerableVersion !== "string" || typeof parsed.patchFilePath !== "string" || typeof parsed.patchFileName !== "string" || typeof parsed.applied !== "boolean" || typeof parsed.dryRun !== "boolean" || typeof parsed.generatedAt !== "string") {
+      return void 0;
+    }
+    return parsed;
   } catch {
     return void 0;
   }
@@ -1456,6 +1468,11 @@ async function loadRemoteFactory() {
       "AUTOREMEDIATOR_REMOTE_CLIENT_MODULE is required for remote provider model loading."
     );
   }
+  if (moduleName.startsWith("./") || moduleName.startsWith("../") || moduleName.startsWith("/") || moduleName.startsWith("file:")) {
+    throw new Error(
+      `AUTOREMEDIATOR_REMOTE_CLIENT_MODULE must be a package name, not a file path: ${moduleName}`
+    );
+  }
   const loaded = await import(moduleName);
   const factory = loaded[exportName];
   if (typeof factory !== "function") {
@@ -1617,7 +1634,15 @@ async function httpClient(request) {
   }
   try {
     const res = await requestWithTimeout(url, init, timeout);
+    const MAX_RESPONSE_BYTES = 10 * 1024 * 1024;
+    const contentLength = res.headers?.get?.("content-length") ?? null;
+    if (contentLength && parseInt(contentLength, 10) > MAX_RESPONSE_BYTES) {
+      throw new HttpError(`Response too large (content-length: ${contentLength})`, "HTTP_ERROR");
+    }
     const text = await res.text();
+    if (Buffer.byteLength(text) > MAX_RESPONSE_BYTES) {
+      throw new HttpError("Response body exceeds 10 MB limit", "HTTP_ERROR");
+    }
     let data;
     try {
       data = text ? JSON.parse(text) : {};
@@ -2256,7 +2281,7 @@ import semver2 from "semver";
 import { mkdir, rm } from "fs/promises";
 import { join as join10 } from "path";
 async function sleep(ms) {
-  await new Promise((resolve2) => setTimeout(resolve2, ms));
+  await new Promise((resolve3) => setTimeout(resolve3, ms));
 }
 async function acquireRepoLock(cwd, options = {}) {
   const timeoutMs = options.timeoutMs ?? 15e3;
@@ -3015,8 +3040,9 @@ async function resolvePrimaryResult(params) {
 
 // src/remediation/tools/fetch-package-source.ts
 import { z as z6 } from "zod";
-import { mkdir as mkdir2, readdir as readdir2, readFile as readFile3, rm as rm2 } from "fs/promises";
+import { mkdir as mkdir2, mkdtemp, readdir as readdir2, readFile as readFile3, rm as rm2 } from "fs/promises";
 import { join as join13 } from "path";
+import { tmpdir } from "os";
 import { execa as execa8 } from "execa";
 var fetchPackageSourceTool = defineTool({
   description: "Download package tarball from npm and extract source files for CVE analysis. Supports custom file patterns (default: *.js, *.ts).",
@@ -3032,10 +3058,20 @@ var fetchPackageSourceTool = defineTool({
     version,
     filePatterns
   }) => {
-    const tempBaseDir = `/tmp/autoremediator-pkg-${Date.now()}`;
+    if (!/^(@[a-z0-9][a-z0-9._-]*\/)?[a-z0-9][a-z0-9._-]*$/i.test(packageName)) {
+      return { success: false, error: `Invalid package name: ${packageName}` };
+    }
+    const safePatterns = (filePatterns ?? ["*.js", "*.ts"]).filter(
+      (p) => /^[a-zA-Z0-9._/*?-]+$/.test(p)
+    );
+    if (safePatterns.length === 0) {
+      return { success: false, error: "No valid file patterns provided." };
+    }
+    const tempBaseDir = await mkdtemp(join13(tmpdir(), "autoremediator-pkg-"));
     const extractDir = join13(tempBaseDir, "out");
     try {
-      const npmUrl = `https://registry.npmjs.org/${packageName}/-/${packageName.split("/").pop()}-${version}.tgz`;
+      const scopedName = packageName.split("/").pop();
+      const npmUrl = `https://registry.npmjs.org/${packageName}/-/${scopedName}-${version}.tgz`;
       await mkdir2(tempBaseDir, { recursive: true });
       const tarballPath = join13(tempBaseDir, "package.tgz");
       await execa8("curl", ["-L", "-o", tarballPath, npmUrl]);
@@ -3063,7 +3099,7 @@ var fetchPackageSourceTool = defineTool({
                 await walkDir(fullPath, relPath);
               }
             } else if (file.isFile()) {
-              const matches = filePatterns.some((pattern) => {
+              const matches = safePatterns.some((pattern) => {
                 const regex = new RegExp(
                   `^${pattern.replace(/\*/g, ".*").replace(/\./g, "\\.")}$`
                 );
@@ -3085,7 +3121,7 @@ var fetchPackageSourceTool = defineTool({
       if (Object.keys(sourceCode).length === 0) {
         return {
           success: false,
-          error: `No source files matching patterns [${filePatterns.join(", ")}] found in ${packageName}@${version}. Download succeeded but extraction yielded no matching files.`
+          error: `No source files matching patterns [${safePatterns.join(", ")}] found in ${packageName}@${version}. Download succeeded but extraction yielded no matching files.`
         };
       }
       return {
@@ -3426,9 +3462,9 @@ import { execa as execa10 } from "execa";
 
 // src/remediation/tools/apply-patch-file/helpers.ts
 import { existsSync as existsSync8 } from "fs";
-import { mkdtemp, readFile as readFile4, rm as rm3, writeFile } from "fs/promises";
+import { mkdtemp as mkdtemp2, readFile as readFile4, rm as rm3, writeFile } from "fs/promises";
 import { createHash } from "crypto";
-import { tmpdir } from "os";
+import { tmpdir as tmpdir2 } from "os";
 import { join as join14 } from "path";
 import { execa as execa9 } from "execa";
 async function resolvePatchMode(packageManager, cwd) {
@@ -3573,7 +3609,7 @@ ${createResult.stderr}`);
       error: `Could not determine native patch directory for ${packageSpec}.`
     };
   }
-  const tempPatchDir = await mkdtemp(join14(tmpdir(), "autoremediator-native-patch-"));
+  const tempPatchDir = await mkdtemp2(join14(tmpdir2(), "autoremediator-native-patch-"));
   const tempPatchFile = join14(tempPatchDir, "change.patch");
   try {
     await writeFile(tempPatchFile, patchContent, "utf8");
@@ -5055,6 +5091,13 @@ async function enrichWithOssfScorecard(details) {
 async function probeFeed(url, cveId, token) {
   try {
     const feedUrl = new URL(url);
+    const hostname = feedUrl.hostname.toLowerCase();
+    if (hostname === "localhost" || /^127\./.test(hostname) || /^10\./.test(hostname) || /^172\.(1[6-9]|2\d|3[01])\./.test(hostname) || /^192\.168\./.test(hostname) || hostname === "0.0.0.0" || /^169\.254\./.test(hostname) || hostname === "[::1]" || hostname === "::1") {
+      return void 0;
+    }
+    if (feedUrl.protocol !== "https:" && feedUrl.protocol !== "http:") {
+      return void 0;
+    }
     feedUrl.searchParams.set("cve", cveId);
     const headers = {};
     if (token) headers.Authorization = `Bearer ${token}`;
@@ -5485,6 +5528,7 @@ async function runRemediationPipeline(cveId, options = {}) {
 
 // src/api/change-request/index.ts
 import { execa as execa11 } from "execa";
+import { randomBytes } from "crypto";
 function sanitizeBranchToken(value) {
   return value.toLowerCase().replace(/[^a-z0-9._/-]+/g, "-").replace(/^-+|-+$/g, "").slice(0, 80);
 }
@@ -5537,7 +5581,7 @@ async function ensureRepoHasChanges(cwd) {
 }
 function toBranchName(prefix, cveIds) {
   const token = sanitizeBranchToken(cveIds.join("-") || "remediation");
-  return `${sanitizeBranchToken(prefix)}/${token}-${Date.now()}`;
+  return `${sanitizeBranchToken(prefix)}/${token}-${randomBytes(6).toString("hex")}`;
 }
 async function createGitHubRequest(params) {
   const args = ["pr", "create", "--head", params.head, "--base", params.base, "--title", params.title, "--body", params.body];
@@ -5583,11 +5627,12 @@ async function createChangeRequestsForReports(params) {
   const provider = resolveProvider2(options);
   const grouping = resolveGrouping(options);
   const plan = buildPlan(reports);
-  const titlePrefix = options.titlePrefix?.trim();
+  const titlePrefix = options.titlePrefix?.trim().slice(0, 200);
+  const bodyFooter = options.bodyFooter ? options.bodyFooter.slice(0, 2e3) : void 0;
   const title = titlePrefix ? `${titlePrefix} ${plan.title}` : plan.title;
-  const body = options.bodyFooter ? `${plan.body}
+  const body = bodyFooter ? `${plan.body}
 
-${options.bodyFooter}` : plan.body;
+${bodyFooter}` : plan.body;
   try {
     const hasChanges = await ensureRepoHasChanges(cwd);
     if (!hasChanges) {
@@ -5610,6 +5655,12 @@ ${options.bodyFooter}` : plan.body;
     const branchPrefix = options.branchPrefix ?? "autoremediator";
     const branchName = toBranchName(branchPrefix, plan.cveIds);
     const pushRemote = options.pushRemote ?? "origin";
+    if (options.pushRemote && !/^[a-zA-Z0-9._-]+$/.test(options.pushRemote)) {
+      throw new Error(`Invalid pushRemote value: ${options.pushRemote}`);
+    }
+    if (options.repository && !/^[a-zA-Z0-9._-]+\/[a-zA-Z0-9._-]+$/.test(options.repository)) {
+      throw new Error(`Invalid repository format: ${options.repository}`);
+    }
     await execa11("git", ["checkout", "-b", branchName], { cwd, stdio: "pipe" });
     await execa11("git", ["add", "-A"], { cwd, stdio: "pipe" });
     await execa11("git", ["commit", "-m", title], { cwd, stdio: "pipe" });
@@ -5966,13 +6017,13 @@ async function planRemediation(cveId, options = {}) {
 }
 
 // src/scanner/parse-input.ts
-import { extname as extname2 } from "path";
+import { extname as extname2, resolve as resolve2 } from "path";
 import { readFileSync as readFileSync14 } from "fs";
 import { execa as execa12 } from "execa";
 
 // src/scanner/adapters/npm-audit.ts
 import { readFileSync as readFileSync11 } from "fs";
-var CVE_REGEX = /CVE-\d{4}-\d+/gi;
+var CVE_REGEX = /CVE-\d{4}-\d{1,7}/gi;
 function normalizeSeverity(raw) {
   if (!raw) return "UNKNOWN";
   const up = raw.toUpperCase();
@@ -6011,7 +6062,7 @@ function parseNpmAuditJsonFile(filePath) {
 
 // src/scanner/adapters/yarn-audit.ts
 import { readFileSync as readFileSync12 } from "fs";
-var CVE_REGEX2 = /CVE-\d{4}-\d+/gi;
+var CVE_REGEX2 = /CVE-\d{4}-\d{1,7}/gi;
 function normalizeSeverity2(raw) {
   if (!raw) return "UNKNOWN";
   const up = raw.toUpperCase();
@@ -6059,7 +6110,7 @@ function parseYarnAuditJsonFile(filePath) {
 
 // src/scanner/adapters/sarif.ts
 import { readFileSync as readFileSync13 } from "fs";
-var CVE_REGEX3 = /CVE-\d{4}-\d+/gi;
+var CVE_REGEX3 = /CVE-\d{4}-\d{1,7}/gi;
 function extractPackageName(result) {
   const pkg = result.properties?.["packageName"];
   return typeof pkg === "string" ? pkg : void 0;
@@ -6068,9 +6119,15 @@ function parseSarifFromString(content) {
   const report = JSON.parse(content);
   const findings = [];
   const seen = /* @__PURE__ */ new Set();
-  for (const run of report.runs ?? []) {
+  const MAX_RUNS = 100;
+  const MAX_TOTAL_RESULTS = 1e4;
+  let totalResults = 0;
+  for (const run of (report.runs ?? []).slice(0, MAX_RUNS)) {
     for (const result of run.results ?? []) {
-      const combined = `${result.ruleId ?? ""} ${result.message?.text ?? ""}`;
+      if (totalResults++ >= MAX_TOTAL_RESULTS) break;
+      const ruleId = (result.ruleId ?? "").slice(0, 1024);
+      const messageText = (result.message?.text ?? "").slice(0, 4096);
+      const combined = `${ruleId} ${messageText}`;
       const matches = combined.match(CVE_REGEX3) ?? [];
       for (const match of matches) {
         const cveId = match.toUpperCase();
@@ -6096,15 +6153,19 @@ function parseSarifFile(filePath) {
 
 // src/scanner/parse-input.ts
 function parseScanInput(filePath, format) {
-  const resolved = format === "auto" ? inferFormat(filePath) : format;
+  if (filePath.includes("\0")) {
+    throw new Error("Invalid scan input path: path contains null bytes");
+  }
+  const resolvedPath = resolve2(filePath);
+  const resolved = format === "auto" ? inferFormat(resolvedPath) : format;
   if (resolved === "npm-audit") {
-    return parseNpmAuditJsonFile(filePath);
+    return parseNpmAuditJsonFile(resolvedPath);
   }
   if (resolved === "yarn-audit") {
-    return parseYarnAuditJsonFile(filePath);
+    return parseYarnAuditJsonFile(resolvedPath);
   }
   if (resolved === "sarif") {
-    return parseSarifFile(filePath);
+    return parseSarifFile(resolvedPath);
   }
   throw new Error(`Unsupported input format: ${resolved}`);
 }